function show($view, $loc = null, $title = "")
{
global $db;
if (!defined("SYS_USERS")) {
require_once BASE . "subsystems/users.php";
}
$boards = $db->selectObjects("bb_board", "location_data='" . serialize($loc) . "'");
$iloc = pathos_core_makeLocation($loc->mod, $loc->src);
for ($i = 0; $i < count($boards); $i++) {
$iloc->int = "b" . $boards[$i]->id;
$boards[$i]->permissions = array("edit_board" => pathos_permissions_check("edit_board", $iloc), "delete_board" => pathos_permissions_check("delete_board", $iloc));
if ($boards[$i]->last_post_id != 0) {
$lp = $db->selectObject("bb_post", "id=" . $boards[$i]->last_post_id);
$lp->poster = pathos_users_getUserById($lp->poster);
$boards[$i]->last_post = $lp;
} else {
$boards[$i]->last_post = null;
}
}
$template = new template("bbmodule", $view, $loc);
$template->assign("moduletitle", $title);
$template->assign("boards", $boards);
$template->register_permissions(array("administrate", "configure", "create_board", "edit_board", "delete_board"), $loc);
$template->output();
}
function show($view, $loc = null, $title = '')
{
if (pathos_permissions_check('administrate', $loc) || pathos_permissions_check('create', $loc) || pathos_permissions_check('edit', $loc) || pathos_permissions_check('delete', $loc)) {
$template = new template('htmltemplatemodule', $view, $loc);
if (!defined('SYS_FILES')) {
require_once BASE . 'subsystems/files.php';
}
$directory = 'files/htmltemplatemodule/' . $loc->src;
if (!file_exists(BASE . $directory)) {
$err = pathos_files_makeDirectory($directory);
if ($err != SYS_FILES_SUCCESS) {
$template->assign('noupload', 1);
$template->assign('uploadError', $err);
}
}
global $db;
$templates = $db->selectObjects('htmltemplate');
for ($i = 0; $i < count($templates); $i++) {
$assocs = $db->selectObjects('htmltemplateassociation', 'template_id=' . $templates[$i]->id);
if (count($assocs) == 1 && $assocs[0]->global == 1) {
$templates[$i]->global_assoc = 1;
} else {
$templates[$i]->global_assoc = 0;
$templates[$i]->associations = $assocs;
}
}
$template->assign('moduletitle', $title);
$template->assign('templates', $templates);
$template->register_permissions(array('administrate', 'create', 'edit', 'delete'), pathos_core_makeLocation('htmltemplatemodule'));
$template->output();
}
}
function register_permissions($perms, $locs)
{
$permissions_register = array();
if (!is_array($perms)) {
$perms = array($perms);
}
if (!is_array($locs)) {
$locs = array($locs);
}
foreach ($perms as $perm) {
foreach ($locs as $loc) {
$permissions_register[$perm] = pathos_permissions_check($perm, $loc) ? 1 : 0;
}
}
$this->tpl->assign("permissions", $permissions_register);
}
function show($view, $loc = null, $title = '')
{
global $db;
$template = new template('translatormodule', $view, $loc);
$langs = array();
$lloc = pathos_core_makeLocation('translatormodule');
foreach ($db->selectObjects('translation_language') as $lang) {
$lloc->int = $lang->id;
$lang->permissions = array('administrate' => pathos_permissions_check('administrate', $lloc) ? 1 : 0, 'configure' => pathos_permissions_check('configure', $lloc) ? 1 : 0);
$langs[] = $lang;
}
$template->assign('languages', $langs);
$template->assign('dictionaries', translatormodule::dictionaries());
$template->assign('moduletitle', $title);
$template->register_permissions(array('administrate', 'configure'), $loc);
$template->output();
}
#
# You should have received a copy of the GNU
# General Public License along with Exponent; if
# not, write to:
#
# Free Software Foundation, Inc.,
# 59 Temple Place,
# Suite 330,
# Boston, MA 02111-1307 USA
#
# $Id: assoc_save.php,v 1.4 2005/02/19 00:32:37 filetreefrog Exp $
##################################################
if (!defined("PATHOS")) {
exit("");
}
if (pathos_permissions_check('workflow', pathos_core_makeLocation('administrationmodule'))) {
if (isset($_POST['s'])) {
$assoc = $db->selectObject("approvalpolicyassociation", "module='" . $_POST['m'] . "' AND source='" . $_POST['s'] . "' AND is_global=0");
if ($assoc) {
$assoc->policy_id = $_POST['policy'];
$db->updateObject($assoc, "approvalpolicyassociation", "module='" . $_POST['m'] . "' AND source='" . $_POST['s'] . "' AND is_global=0");
} else {
$assoc->module = $_POST['m'];
$assoc->source = $_POST['s'];
$assoc->policy_id = $_POST['policy'];
$assoc->is_global = 0;
$db->insertObject($assoc, "approvalpolicyassociation");
}
} else {
// Save global
$assoc = $db->selectObject("approvalpolicyassociation", "module='" . $_POST['m'] . "' AND is_global=1");
# Free Software Foundation, Inc.,
# 59 Temple Place,
# Suite 330,
# Boston, MA 02111-1307 USA
#
# $Id: edit.php,v 1.5 2005/03/11 15:18:37 filetreefrog Exp $
##################################################
if (!defined("PATHOS")) {
exit("");
}
$item = null;
if (isset($_GET['id'])) {
$item = $db->selectObject("imagemanageritem", "id=" . $_GET['id']);
$loc = unserialize($item->location_data);
}
if ($item == null && pathos_permissions_check("post", $loc) || $item != null && pathos_permissions_check("edit", $loc)) {
$form = imagemanageritem::form($item);
$form->location($loc);
$form->meta("action", "save");
$template = new template("imagemanagermodule", "_form_edit", $loc);
$directory = BASE . "files/imagemanagermodule/" . $loc->src;
if (!isset($item->id) && !is_really_writable($directory)) {
$template->assign("dir_not_writable", 1);
$form->controls['submit']->disabled = 1;
} else {
$template->assign("dir_not_writable", 0);
}
$template->assign("form_html", $form->toHTML());
$template->assign("is_edit", isset($_GET['id']));
$template->output();
} else {
# for more details.
#
# You should have received a copy of the GNU
# General Public License along with Exponent; if
# not, write to:
#
# Free Software Foundation, Inc.,
# 59 Temple Place,
# Suite 330,
# Boston, MA 02111-1307 USA
#
# $Id: delete.php,v 1.5 2005/02/19 00:32:29 filetreefrog Exp $
##################################################
if (!defined('PATHOS')) {
exit('');
}
$item = $db->selectObject('file', 'id=' . $_GET['id']);
if ($item) {
$loc = unserialize($item->location_data);
$iloc = pathos_core_makeLocation($loc->mod, $loc->src, $item->id);
if (pathos_permissions_check('delete', $loc) || pathos_permissions_check('delete', $iloc)) {
$db->delete('file', 'id=' . $item->id);
unlink(BASE . "files/" . $item->filename);
pathos_template_clear();
pathos_flow_redirect();
} else {
echo SITE_403_HTML;
}
} else {
echo SITE_404_HTML;
}
# You should have received a copy of the GNU
# General Public License along with Exponent; if
# not, write to:
#
# Free Software Foundation, Inc.,
# 59 Temple Place,
# Suite 330,
# Boston, MA 02111-1307 USA
#
# $Id: import_form.php,v 1.3 2005/04/26 03:01:57 filetreefrog Exp $
##################################################
if (!defined("PATHOS")) {
exit("");
}
$loc = pathos_core_makeLocation('translatormodule');
if (pathos_permissions_check('configure', $loc)) {
if (!defined('SYS_FORMS')) {
require_once BASE . 'subsystems/forms.php';
}
pathos_forms_initialize();
$form = new form();
$form->meta('module', 'translatormodule');
$form->meta('action', 'import');
$form->register('file', '', new uploadcontrol());
$form->register('submit', '', new buttongroupcontrol('Save', '', 'Cancel'));
$template = new template('translatormodule', '_form_import');
$template->assign('form_html', $form->toHTML());
$template->output();
} else {
echo SITE_403_HTML;
}
# will be useful, but WITHOUT ANY WARRANTY;
# without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR
# PURPOSE. See the GNU General Public License
# for more details.
#
# You should have received a copy of the GNU
# General Public License along with Exponent; if
# not, write to:
#
# Free Software Foundation, Inc.,
# 59 Temple Place,
# Suite 330,
# Boston, MA 02111-1307 USA
#
# $Id: rank_switch.php,v 1.2 2005/02/19 16:53:34 filetreefrog Exp $
##################################################
if (!defined("PATHOS")) {
exit("");
}
if (pathos_permissions_check("manage", $loc)) {
$action_a = $db->selectObject("article", "location_data='" . serialize($loc) . "' AND category_id=" . $_GET['category_id'] . " AND rank=" . $_GET['a']);
$action_b = $db->selectObject("article", "location_data='" . serialize($loc) . "' AND category_id=" . $_GET['category_id'] . " AND rank=" . $_GET['b']);
$action_a->rank = $_GET['b'];
$action_b->rank = $_GET['a'];
$db->updateObject($action_a, "article");
$db->updateObject($action_b, "article");
pathos_flow_redirect();
} else {
echo SITE_403_HTML;
}
# for more details.
#
# You should have received a copy of the GNU
# General Public License along with Exponent; if
# not, write to:
#
# Free Software Foundation, Inc.,
# 59 Temple Place,
# Suite 330,
# Boston, MA 02111-1307 USA
#
# $Id: edit_core.php,v 1.6 2005/04/26 04:42:00 filetreefrog Exp $
##################################################
if (!defined('PATHOS')) {
exit('');
}
if (pathos_permissions_check('manage_core', pathos_core_makeLocation('sharedcoremodule'))) {
$core = null;
if (isset($_GET['id'])) {
$core = $db->selectObject('sharedcore_core', 'id=' . $_GET['id']);
}
$form = sharedcore_core::form($core);
$form->meta('module', 'sharedcoremodule');
$form->meta('action', 'save_core');
$template = new template('sharedcoremodule', '_form_editCore');
$template->assign('is_edit', isset($core->id) ? 1 : 0);
$template->assign('form_html', $form->toHTML());
$template->output();
} else {
echo SITE_403_HTML;
}
# for more details.
#
# You should have received a copy of the GNU
# General Public License along with Exponent; if
# not, write to:
#
# Free Software Foundation, Inc.,
# 59 Temple Place,
# Suite 330,
# Boston, MA 02111-1307 USA
#
# $Id: delete.php,v 1.5 2005/02/19 00:32:33 filetreefrog Exp $
##################################################
//GREP:HARDCODEDTEXT
if (!defined("PATHOS")) {
exit("");
}
$item = $db->selectObject("imagemanageritem", "id=" . $_GET['id']);
if ($item != null) {
$loc = unserialize($item->location_data);
if (pathos_permissions_check("delete", $loc)) {
$file = $db->selectObject("file", "id=" . $item->file_id);
$db->delete("file", "id=" . $file->id);
$db->delete("imagemanageritem", "id=" . $item->id);
pathos_flow_redirect();
} else {
echo SITE_403_HTML;
}
} else {
echo SITE_404_HTML;
}
# General Public License as published by the Free
# Software Foundation; either version 2 of the
# License, or (at your option) any later version.
#
# Exponent is distributed in the hope that it
# will be useful, but WITHOUT ANY WARRANTY;
# without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR
# PURPOSE. See the GNU General Public License
# for more details.
#
# You should have received a copy of the GNU
# General Public License along with Exponent; if
# not, write to:
#
# Free Software Foundation, Inc.,
# 59 Temple Place,
# Suite 330,
# Boston, MA 02111-1307 USA
#
# $Id: order.php,v 1.5 2005/04/03 07:57:14 filetreefrog Exp $
##################################################
if (!defined("PATHOS")) {
exit("");
}
if (pathos_permissions_check('manage', pathos_core_makeLocation('navigationmodule', '', $_GET['parent']))) {
$db->switchValues('section', 'rank', $_GET['a'], $_GET['b'], 'parent=' . $_GET['parent']);
pathos_flow_redirect();
} else {
echo SITE_403_HTML;
}
# You should have received a copy of the GNU
# General Public License along with Exponent; if
# not, write to:
#
# Free Software Foundation, Inc.,
# 59 Temple Place,
# Suite 330,
# Boston, MA 02111-1307 USA
#
# $Id: finish_install_extension.php,v 1.7 2005/04/18 15:33:33 filetreefrog Exp $
##################################################
// Part of the Extensions category
if (!defined('PATHOS')) {
exit('');
}
if (pathos_permissions_check('extensions', pathos_core_makeLocation('administrationmodule'))) {
$template = new template('administrationmodule', '_upload_finalSummary', $loc);
$sessid = session_id();
if (!file_exists(BASE . "extensionuploads/{$sessid}") || !is_dir(BASE . "extensionuploads/{$sessid}")) {
$template->assign('nofiles', 1);
} else {
if (!defined('SYS_FILES')) {
require_once BASE . 'subsystems/files.php';
}
$success = array();
foreach (array_keys(pathos_files_listFlat(BASE . "extensionuploads/{$sessid}", true, null, array(), BASE . "extensionuploads/{$sessid}")) as $file) {
if ($file != '/archive.tar' && $file != '/archive.tar.gz' && $file != 'archive.tar.bz2' && $file != '/archive.zip') {
pathos_files_makeDirectory(dirname($file));
$success[$file] = copy(BASE . "extensionuploads/{$sessid}" . $file, BASE . substr($file, 1));
if (basename($file) == 'views_c') {
chmod(BASE . substr($file, 1), 0777);
# You should have received a copy of the GNU
# General Public License along with Exponent; if
# not, write to:
#
# Free Software Foundation, Inc.,
# 59 Temple Place,
# Suite 330,
# Boston, MA 02111-1307 USA
#
# $Id: revisions_view.php,v 1.4 2005/04/18 15:33:05 filetreefrog Exp $
##################################################
if (!defined("PATHOS")) {
exit("");
}
$rloc = pathos_core_makeLocation($_GET['m'], $_GET['s']);
if (pathos_permissions_check("manage_approval", $rloc)) {
pathos_flow_set(SYS_FLOW_PROTECTED, SYS_FLOW_ACTION);
if (!defined("SYS_WORKFLOW")) {
require_once BASE . "subsystems/workflow.php";
}
$template = new template("workflow", "_revisions", $loc);
$current = $db->max($_GET['datatype'] . "_wf_revision", "wf_major", "wf_original", "wf_original=" . $_GET['id']);
$template->assign("current", $current);
$template->assign("datatype", $_GET['datatype']);
$revisions = $db->selectObjects($_GET['datatype'] . "_wf_revision", "wf_original=" . $_GET['id']);
if (!defined('SYS_SORTING')) {
require_once BASE . 'subsystems/sorting.php';
}
usort($revisions, "pathos_sorting_workflowRevisionDescending");
$template->assign("revisions", $revisions);
$css = array(SYS_WORKFLOW_ACTION_POSTED => "workflow_action workflow_action_posted", SYS_WORKFLOW_ACTION_EDITED => "workflow_action workflow_action_", SYS_WORKFLOW_ACTION_APPROVED_APPROVED => "workflow_action workflow_action_approved_approved", SYS_WORKFLOW_ACTION_APPROVED_EDITED => "workflow_action workflow_action_approved_edited", SYS_WORKFLOW_ACTION_APPROVED_DENIED => "workflow_action workflow_action_approved_denied", SYS_WORKFLOW_ACTION_APPROVED_FINAL => "workflow_action workflow_action_approved_final", SYS_WORKFLOW_ACTION_DELETED => "workflow_action workflow_action_deleted", SYS_WORKFLOW_ACTION_RESTARTED => "workflow_action workflow_action_restarted", SYS_WORKFLOW_ACTION_IMPLICIT_APPROVAL => "workflow_action workflow_action_implicit_approval", SYS_WORKFLOW_ACTION_RESTORED => "workflow_action workflow_action_restored");
function form($object)
{
pathos_lang_loadDictionary('modules', 'inboxmodule');
pathos_lang_loadDictionary('standard', 'core');
if (!defined('SYS_FORMS')) {
require_once BASE . 'subsystems/forms.php';
}
pathos_forms_initialize();
$form = new form();
$users = array();
$groups = array();
global $db, $user;
if (!defined('SYS_USERS')) {
require_once BASE . 'subsystems/users.php';
}
if (pathos_permissions_check('contact_all', pathos_core_makeLocation('inboxmodule'))) {
foreach (pathos_users_getAllUsers() as $u) {
$users[$u->id] = $u->firstname . ' ' . $u->lastname . ' (' . $u->username . ')';
}
} else {
foreach (pathos_users_getGroupsForUser($user, 1, 0) as $g) {
foreach (pathos_users_getUsersInGroup($g) as $u) {
$users[$u->id] = $u->firstname . ' ' . $u->lastname . ' (' . $u->username . ')';
}
}
}
// Process other uses who the current user has blocked, and remove them from the list
// Process other users who have blocked the current user, and remove them from the list.
foreach ($db->selectObjects('inbox_contactbanned', 'owner=' . $user->id . ' OR user_id=' . $user->id) as $blocked) {
if ($blocked->user_id == $user->id) {
// Blocked by someone else. Remove the owner (user who blocked us)
unset($users[$blocked->owner]);
} else {
if ($blocked->owner == $user->id) {
// We blocked the user, remove the blocked user_id
unset($users[$blocked->user_id]);
}
}
}
uasort($users, 'strnatcmp');
$groups = array();
foreach ($db->selectObjects('inbox_contactlist', 'owner=' . $user->id) as $g) {
$groups['list_' . $g->id] = $g->name . ' ' . TR_INBOXMODULE_PERSONALLIST;
}
if (pathos_permissions_check('contact_all', pathos_core_makeLocation('inboxmodule'))) {
foreach (pathos_users_getAllGroups(1, 0) as $g) {
$groups['group_' . $g->id] = $g->name . ' ' . TR_INBOXMODULE_SYSGROUP;
}
} else {
foreach (pathos_users_getGroupsForUser($user, 1, 0) as $g) {
$groups['group_' . $g->id] = $g->name . ' ' . TR_INBOXMODULE_SYSGROUP;
}
}
uasort($groups, 'strnatcmp');
$recipient_caption = TR_INBOXMODULE_RECIPIENT;
$group_recipient_caption = TR_INBOXMODULE_GROUPRECIPIENT;
$btn = new buttongroupcontrol(TR_INBOXMODULE_SEND, '', TR_CORE_CANCEL);
$object->group_recipient = array();
if ($object == null || !isset($object->recipient)) {
$object->subject = '';
$object->body = '';
$object->recipient = array();
if (!count($users) && !count($groups)) {
$btn->disabled = true;
}
} else {
if (!defined('SYS_USERS')) {
require_once BASE . 'subsystems/users.php';
}
$u = pathos_users_getUserById($object->recipient);
$form->register(null, '', new htmlcontrol(sprintf(TR_INBOXMODULE_REPLYTO, $u->firstname . ' ' . $u->lastname . ' (' . $u->username . ')')));
$form->meta('replyto', $object->recipient);
$object->recipient = array();
unset($users[$u->id]);
$recipient_caption = TR_INBOXMODULE_COPYTO;
$group_recipient_caption = TR_INBOXMODULE_GROUPCOPYTO;
}
if (count($users)) {
$form->register('recipients', $recipient_caption, new listbuildercontrol($object->recipient, $users));
}
if (count($groups)) {
$form->register('group_recipients', $group_recipient_caption, new listbuildercontrol($object->group_recipient, $groups));
}
if (!count($groups) && !count($users)) {
$form->register(null, '', new htmlcontrol('<div class="error">' . TR_INBOXMODULE_NOCONTACTSWARNING . '</div>'));
}
$form->register('subject', TR_INBOXMODULE_SUBJECT, new textcontrol($object->subject));
$form->register('body', TR_INBOXMODULE_MESSAGE, new htmleditorcontrol($object->body));
$form->register('submit', '', $btn);
return $form;
}
# for more details.
#
# You should have received a copy of the GNU
# General Public License along with Exponent; if
# not, write to:
#
# Free Software Foundation, Inc.,
# 59 Temple Place,
# Suite 330,
# Boston, MA 02111-1307 USA
#
# $Id: stepstone_delete.php,v 1.4 2005/02/23 23:51:17 filetreefrog Exp $
##################################################
if (!defined('PATHOS')) {
exit('');
}
$stepstone = null;
if (isset($_GET['id'])) {
$stepstone = $db->selectObject('codemap_stepstone', 'id=' . $_GET['id']);
}
if ($stepstone) {
$loc = unserialize($stepstone->location_data);
if (pathos_permissions_check('manage_steps', $loc)) {
$db->delete('codemap_stepstone', 'id=' . $stepstone->id);
pathos_flow_redirect();
} else {
echo SITE_403_HTML;
}
} else {
echo SITE_404_HTML;
}
# will be useful, but WITHOUT ANY WARRANTY;
# without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR
# PURPOSE. See the GNU General Public License
# for more details.
#
# You should have received a copy of the GNU
# General Public License along with Exponent; if
# not, write to:
#
# Free Software Foundation, Inc.,
# 59 Temple Place,
# Suite 330,
# Boston, MA 02111-1307 USA
#
# $Id: delete_record.php,v 1.2 2005/02/19 00:32:32 filetreefrog Exp $
##################################################
if (!defined("PATHOS")) {
exit("");
}
$f = $db->selectObject("formbuilder_form", "id=" . $_GET['form_id']);
if ($f) {
if (pathos_permissions_check("deletedata", unserialize($f->location_data))) {
$db->delete("formbuilder_" . $f->table_name, "id=" . $_GET['id']);
pathos_flow_redirect();
} else {
echo SITE_403_HTML;
}
} else {
echo SITE_404_HTML;
}
exit('');
}
$check_id = -1;
$section = null;
$old_parent = null;
if (isset($_POST['id'])) {
// Saving an existing content page. Read it from the database.
$section = $db->selectObject('section', 'id=' . $_POST['id']);
if ($section) {
$old_parent = $section->parent;
$check_id = $section->id;
}
} else {
$check_id = $_POST['parent'];
}
if ($check_id != -1 && pathos_permissions_check('manage', pathos_core_makeLocation('navigationmodule', '', $check_id))) {
pathos_lang_loadDictionary('modules', 'navigationmodule');
// Update the section from the _POST data.
$section = section::updateInternalAlias($_POST, $section);
if ($section->active == 0) {
// User tried to link to an inactive section. This makes little or no sense in
// this context, so throw them back to the edit form, with an error message.
$_POST['_formError'] = TR_NAVIGATIONMODULE_INTERNALLINKERR;
pathos_sessions_set("last_POST", $_POST);
header("Location: " . $_SERVER['HTTP_REFERER']);
exit('Redirecting...');
}
if (isset($section->id)) {
if ($section->parent != $old_parent) {
// Old_parent id was different than the new parent id. Need to decrement the ranks
// of the old children (after ours), and then add
# without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR
# PURPOSE. See the GNU General Public License
# for more details.
#
# You should have received a copy of the GNU
# General Public License along with Exponent; if
# not, write to:
#
# Free Software Foundation, Inc.,
# 59 Temple Place,
# Suite 330,
# Boston, MA 02111-1307 USA
#
# $Id: approve.php,v 1.5 2005/04/18 15:33:05 filetreefrog Exp $
##################################################
if (!defined('PATHOS')) {
exit('');
}
$info = $db->selectObject($_GET['datatype'] . "_wf_info", "real_id=" . $_GET['id']);
$object = $db->selectObject($_GET['datatype'] . "_wf_revision", "wf_original=" . $_GET['id'] . " AND wf_major=" . $info->current_major . " AND wf_minor=" . $info->current_minor);
$state = unserialize($object->wf_state_data);
$rloc = unserialize($object->location_data);
if (pathos_permissions_check("approve", $rloc) || $user && $user->id == $state[0][0]) {
if (!defined('SYS_WORKFLOW')) {
require_once BASE . 'subsystems/workflow.php';
}
pathos_workflow_processApproval($_GET['id'], $_GET['datatype'], SYS_WORKFLOW_APPROVE_APPROVE);
} else {
echo SITE_403_HTML;
}
# General Public License along with Exponent; if
# not, write to:
#
# Free Software Foundation, Inc.,
# 59 Temple Place,
# Suite 330,
# Boston, MA 02111-1307 USA
#
# $Id: gmgr_savemembers.php,v 1.7 2005/02/19 00:32:28 filetreefrog Exp $
##################################################
// Part of the User Management category
if (!defined('PATHOS')) {
exit('');
}
$memb = $db->selectObject('groupmembership', 'member_id=' . $user->id . ' AND group_id=' . $_GET['id'] . ' AND is_admin=1');
if (pathos_permissions_check('user_management', pathos_core_makeLocation('administrationmodule')) || $memb) {
$group = $db->selectObject('group', 'id=' . $_POST['id']);
if ($group) {
$db->delete('groupmembership', 'group_id=' . $group->id);
$memb = null;
$memb->group_id = $group->id;
if ($_POST['membdata'] != "") {
foreach (explode(',', $_POST['membdata']) as $str) {
$str = explode(':', $str);
$memb->member_id = $str[0];
$memb->is_admin = $str[1];
$db->insertObject($memb, 'groupmembership');
}
}
pathos_permissions_triggerRefresh();
pathos_flow_redirect();
# will be useful, but WITHOUT ANY WARRANTY;
# without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR
# PURPOSE. See the GNU General Public License
# for more details.
#
# You should have received a copy of the GNU
# General Public License along with Exponent; if
# not, write to:
#
# Free Software Foundation, Inc.,
# 59 Temple Place,
# Suite 330,
# Boston, MA 02111-1307 USA
#
# $Id: af_delete.php,v 1.5 2005/02/19 00:32:29 filetreefrog Exp $
##################################################
if (!defined('PATHOS')) {
exit('');
}
if (pathos_permissions_check('manage_af', $loc)) {
$af = $db->selectObject('banner_affiliate', 'id=' . $_GET['id']);
if ($af) {
$db->delete('banner_affiliate', 'id=' . $_GET['id']);
pathos_flow_redirect();
} else {
echo SITE_404_HTML;
}
} else {
echo SITE_403_HTML;
}
# PURPOSE. See the GNU General Public License
# for more details.
#
# You should have received a copy of the GNU
# General Public License along with Exponent; if
# not, write to:
#
# Free Software Foundation, Inc.,
# 59 Temple Place,
# Suite 330,
# Boston, MA 02111-1307 USA
#
# $Id: orphanedcontent_delete.php,v 1.7 2005/02/19 00:32:28 filetreefrog Exp $
##################################################
if (!defined('PATHOS')) {
exit('');
}
// Part of the Database category
if (pathos_permissions_check('database', pathos_core_makeLocation('administrationmodule'))) {
$src = urldecode($_GET['delsrc']);
$mod = new $_GET['mod']();
if ($mod->hasContent()) {
// may not need the check, but it doesn't hurt
$mod->deleteIn(pathos_core_makeLocation($_GET['mod'], $_GET['delsrc']));
}
$db->delete('locationref', "module='" . $_GET['mod'] . "' AND source='{$src}' AND refcount=0");
$db->delete('sectionref', "module='" . $_GET['mod'] . "' AND source='{$src}' AND refcount=0");
pathos_flow_redirect();
} else {
echo SITE_403_HTML;
}
file::delete($file);
$db->delete("file", "id=" . $file->id);
}
$file = file::update($filefield, $directory, null);
if ($file != null) {
$data->alt_image_id = $db->insertObject($file, "file");
}
}
if (isset($data->id)) {
$db->updateObject($data, "swfitem");
} else {
$db->insertObject($data, "swfitem");
}
pathos_flow_redirect();
} else {
echo SITE_403_HTML;
}
} else {
echo SITE_404_HTML;
}
if (pathos_permissions_check("configure", $loc)) {
$textitem = textitem::update($_POST, $textitem);
$textitem->location_data = serialize($loc);
pathos_template_clear();
if (!defined("SYS_WORKFLOW")) {
require_once BASE . "subsystems/workflow.php";
}
pathos_workflow_post($textitem, "textitem", $loc);
} else {
echo SITE_403_HTML;
}
# You should have received a copy of the GNU
# General Public License along with Exponent; if
# not, write to:
#
# Free Software Foundation, Inc.,
# 59 Temple Place,
# Suite 330,
# Boston, MA 02111-1307 USA
#
# $Id: manage.php,v 1.9 2005/04/18 15:22:30 filetreefrog Exp $
##################################################
if (!defined("PATHOS")) {
exit("");
}
$mloc = pathos_core_makeLocation($_GET['orig_module'], $loc->src, $loc->int);
if (pathos_permissions_check('manage_categories', $mloc)) {
pathos_flow_set(SYS_FLOW_PROTECTED, SYS_FLOW_ACTION);
$categories = $db->selectObjects("category", "location_data='" . serialize($mloc) . "'");
if (pathos_template_getModuleViewFile($mloc->mod, "_cat_manageCategories", false) == TEMPLATE_FALLBACK_VIEW) {
$template = new template("categories", "_cat_manageCategories", $loc);
} else {
$template = new template($mloc->mod, "_cat_manageCategories", $loc);
}
if (!defined('SYS_SORTING')) {
require_once BASE . 'subsystems/sorting.php';
}
usort($categories, "pathos_sorting_byRankAscending");
$template->assign("origmodule", $_GET['orig_module']);
$template->assign("categories", $categories);
$template->output();
} else {
$db_data = null;
$fields = array();
$captions = array();
foreach ($controls as $c) {
$ctl = unserialize($c->data);
$control_type = get_class($ctl);
$def = call_user_func(array($control_type, "getFieldDefinition"));
if ($def != null) {
$value = call_user_func(array($control_type, 'parseData'), $c->name, $_POST, true);
$varname = $c->name;
$db_data->{$varname} = $value;
$fields[$c->name] = call_user_func(array($control_type, 'templateFormat'), $value, $ctl);
$captions[$c->name] = $c->caption;
}
}
if (!isset($_POST['data_id']) || isset($_POST['data_id']) && pathos_permissions_check("editdata", unserialize($f->location_data))) {
if ($f->is_saved == 1) {
if (isset($_POST['data_id'])) {
//if this is an edit we remove the record and insert a new one.
$olddata = $db->selectObject('formbuilder_' . $f->table_name, 'id=' . $_POST['data_id']);
$db_data->ip = $olddata->ip;
$db_data->user_id = $olddata->user_id;
$db_data->timestamp = $olddata->timestamp;
$db->delete('formbuilder_' . $f->table_name, 'id=' . $_POST['data_id']);
} else {
$db_data->ip = $_SERVER['REMOTE_ADDR'];
if (pathos_sessions_loggedIn()) {
$db_data->user_id = $user->id;
} else {
$db_data->user_id = 0;
}
# You should have received a copy of the GNU
# General Public License along with Exponent; if
# not, write to:
#
# Free Software Foundation, Inc.,
# 59 Temple Place,
# Suite 330,
# Boston, MA 02111-1307 USA
#
# $Id: save.php,v 1.4 2005/04/18 15:26:01 filetreefrog Exp $
##################################################
if (!defined('PATHOS')) {
exit('');
}
if (isset($_POST['id'])) {
$textitem = $db->selectObject('textitem', 'id=' . $_POST['id']);
if ($textitem) {
$loc = unserialize($textitem->location_data);
}
}
if (pathos_permissions_check('edit', $loc)) {
$textitem = textitem::update($_POST, $textitem);
$textitem->location_data = serialize($loc);
pathos_template_clear();
if (!defined('SYS_WORKFLOW')) {
require_once BASE . 'subsystems/workflow.php';
}
pathos_workflow_post($textitem, 'textitem', $loc);
} else {
echo SITE_403_HTML;
}
# You should have received a copy of the GNU
# General Public License along with Exponent; if
# not, write to:
#
# Free Software Foundation, Inc.,
# 59 Temple Place,
# Suite 330,
# Boston, MA 02111-1307 USA
#
# $Id: htmlarea_saveconfig.php,v 1.5 2005/02/19 00:32:28 filetreefrog Exp $
##################################################
// Part of the HTMLArea category
if (!defined('PATHOS')) {
exit('');
}
if (pathos_permissions_check('htmlarea', pathos_core_makeLocation('administrationmodule'))) {
$config = null;
if (isset($_POST['id'])) {
$config = $db->selectObject('htmlareatoolbar', 'id=' . $_POST['id']);
}
$config->name = $_POST['config_name'];
$config->data = array();
foreach (explode(':', $_POST['config']) as $line) {
$line = trim($line);
if ($line != '') {
$i = count($config->data);
$config->data[] = array();
foreach (explode(';', $line) as $icon) {
$config->data[$i][] = $icon;
// MAY need to strip off ed
}
# General Public License along with Exponent; if
# not, write to:
#
# Free Software Foundation, Inc.,
# 59 Temple Place,
# Suite 330,
# Boston, MA 02111-1307 USA
#
# $Id: delete_control.php,v 1.3 2005/02/19 00:32:32 filetreefrog Exp $
##################################################
if (!defined("PATHOS")) {
exit("");
}
$ctl = null;
if (isset($_GET['id'])) {
$ctl = $db->selectObject("formbuilder_control", "id=" . $_GET['id']);
}
if ($ctl) {
$f = $db->selectObject("formbuilder_form", "id=" . $ctl->form_id);
if (pathos_permissions_check("editform", unserialize($f->location_data))) {
$db->delete("formbuilder_control", "id=" . $ctl->id);
$db->decrement("formbuilder_control", "rank", 1, "form_id=" . $ctl->form_id . " AND rank > " . $ctl->rank);
$f = $db->selectObject("formbuilder_form", "id=" . $ctl->form_id);
formbuilder_form::updateTable($f);
pathos_flow_redirect();
} else {
echo SITE_403_HTML;
}
} else {
echo SITE_404_HTML;
}
# You should have received a copy of the GNU
# General Public License along with Exponent; if
# not, write to:
#
# Free Software Foundation, Inc.,
# 59 Temple Place,
# Suite 330,
# Boston, MA 02111-1307 USA
#
# $Id: admin_editmimetype.php,v 1.7 2005/04/18 15:49:02 filetreefrog Exp $
##################################################
// Part of the Administration Control Panel : Files Subsystem category
if (!defined('PATHOS')) {
exit('');
}
if (pathos_permissions_check('files_subsystem', pathos_core_makeLocation('administrationmodule'))) {
$type = null;
if (isset($_GET['type'])) {
$type = $db->selectObject('mimetype', "mimetype='" . $_GET['type'] . "'");
}
if (!defined('SYS_FORMS')) {
require_once BASE . 'subsystems/forms.php';
}
pathos_forms_initialize();
$form = mimetype::form($type);
$form->meta('module', 'filemanager');
$form->meta('action', 'admin_savemimetype');
$template = new template('filemanager', '_form_editmimetype', $loc);
$template->assign('form_html', $form->toHTML());
$template->assign('is_edit', isset($type->id) ? 1 : 0);
$template->output();
function show($view, $loc = null, $title = '')
{
global $user;
global $db;
$template = new template('calendarmodule', $view, $loc);
$template->assign('moduletitle', $title);
$canviewapproval = false;
$inapproval = false;
if ($user) {
$canviewapproval = pathos_permissions_check("approve", $loc) || pathos_permissions_check("manage_approval", $loc);
}
if ($db->countObjects("calendar", "location_data='" . serialize($loc) . "' AND approved!=1")) {
foreach ($db->selectObjects("calendar", "location_data='" . serialize($loc) . "' AND approved!=1") as $c) {
if ($c->poster == $user->id) {
$canviewapproval = true;
}
}
$inapproval = true;
}
$time = isset($_GET['time']) ? $_GET['time'] : time();
$template->assign("time", $time);
$viewconfig = $template->viewparams;
if ($viewconfig === null) {
$viewconfig = array("type" => "default");
}
if (!defined("SYS_DATETIME")) {
require_once BASE . "subsystems/datetime.php";
}
if (!defined('SYS_SORTING')) {
require_once BASE . 'subsystems/sorting.php';
}
if (!function_exists("pathos_sorting_byEventStartAscending")) {
function pathos_sorting_byEventStartAscending($a, $b)
{
return $a->eventstart < $b->eventstart ? -1 : 1;
}
}
if ($viewconfig['type'] == "minical") {
$monthly = array();
$datesWithEvents = array();
$info = getdate(time());
$info = getdate(time());
// Grab non-day numbers only (before end of month)
$week = 0;
$currentweek = 0;
$currentday = $info['mday'];
$infofirst = getdate(mktime(12, 0, 0, $info['mon'], 1, $info['year']));
if ($infofirst['wday'] == 0) {
$monthly[$week] = array();
}
// initialize for non days
for ($i = 0 - $infofirst['wday']; $i < 0; $i++) {
$monthly[$week][$i] = array("number" => -1, "ts" => -1);
}
$weekday = $infofirst['wday'];
// day number in grid. if 7+, switch weeks
// Grab day counts
$endofmonth = pathos_datetime_endOfMonthDay(time());
for ($i = 1; $i <= $endofmonth; $i++) {
$start = mktime(0, 0, 0, $info['mon'], $i, $info['year']);
if ($i == $info['mday']) {
$currentweek = $week;
}
#$monthly[$week][$i] = array("ts"=>$start,"number"=>$db->countObjects("calendar","location_data='".serialize($loc)."' AND approved!=0 AND (eventstart >= $start AND eventend <= " . ($start+86399) . ")"));
// NO WORKFLOW CONSIDERATIONS
$monthly[$week][$i] = array("ts" => $start, "number" => $db->countObjects("eventdate", "location_data='" . serialize($loc) . "' AND date = {$start}"));
if ($monthly[$week][$i]["number"] > 0) {
$datesWithEvents[] = $i;
}
if ($weekday >= 6) {
$week++;
$monthly[$week] = array();
// allocate an array for the next week
$weekday = 0;
} else {
$weekday++;
}
}
// Grab non-day numbers only (after end of month)
for ($i = 1; $weekday && $i <= 7 - $weekday; $i++) {
$monthly[$week][$i + $endofmonth] = -1;
}
$template->assign("datesWithEvents", implode(",", $datesWithEvents));
$template->assign("monthly", $monthly);
$template->assign("currentweek", $currentweek);
$template->assign("currentday", $currentday);
$template->assign("now", time());
} else {
if ($viewconfig['type'] == "byday") {
$startperiod = 0;
$totaldays = 0;
if ($viewconfig['range'] == "week") {
$startperiod = pathos_datetime_startOfWeekTimestamp($time);
$totaldays = 7;
} else {
$startperiod = pathos_datetime_startOfMonthTimestamp($time);
$totaldays = pathos_datetime_endOfMonthDay($time);
}
$template->assign("prev_timestamp", $startperiod - 3600);
$template->assign("next_timestamp", $startperiod + $totaldays * 86400 + 3600);
$days = array();
for ($i = 0; $i < $totaldays; $i++) {
$start = $startperiod + $i * 86400;
#$days[$start] = $db->selectObjects("calendar","location_data='".serialize($loc)."' AND (eventstart >= $start AND eventend <= " . ($start+86399) . ") AND approved!=0");
$edates = $db->selectObjects("eventdate", "location_data='" . serialize($loc) . "' AND date = {$start}");
$days[$start] = calendarmodule::_getEventsForDates($edates);
for ($j = 0; $j < count($days[$start]); $j++) {
$thisloc = pathos_core_makeLocation($loc->mod, $loc->src, $days[$start][$j]->id);
$days[$start][$j]->permissions = array("administrate" => pathos_permissions_check("administrate", $thisloc) || pathos_permissions_check("administrate", $loc), "edit" => pathos_permissions_check("edit", $thisloc) || pathos_permissions_check("edit", $loc), "delete" => pathos_permissions_check("delete", $thisloc) || pathos_permissions_check("delete", $loc));
}
usort($days[$start], "pathos_sorting_byEventStartAscending");
}
$template->assign("days", $days);
} else {
if ($viewconfig['type'] == "monthly") {
$monthly = array();
$counts = array();
$info = getdate($time);
$nowinfo = getdate(time());
if ($info['mon'] != $nowinfo['mon']) {
$nowinfo['mday'] = -10;
}
// Grab non-day numbers only (before end of month)
$week = 0;
$currentweek = -1;
$timefirst = mktime(12, 0, 0, $info['mon'], 1, $info['year']);
$infofirst = getdate($timefirst);
if ($infofirst['wday'] == 0) {
$monthly[$week] = array();
// initialize for non days
$counts[$week] = array();
}
for ($i = 1 - $infofirst['wday']; $i < 1; $i++) {
$monthly[$week][$i] = array();
$counts[$week][$i] = -1;
}
$weekday = $infofirst['wday'];
// day number in grid. if 7+, switch weeks
// Grab day counts
$endofmonth = pathos_datetime_endOfMonthDay($time);
for ($i = 1; $i <= $endofmonth; $i++) {
$start = mktime(0, 0, 0, $info['mon'], $i, $info['year']);
if ($i == $nowinfo['mday']) {
$currentweek = $week;
}
#$monthly[$week][$i] = $db->selectObjects("calendar","location_data='".serialize($loc)."' AND (eventstart >= $start AND eventend <= " . ($start+86399) . ") AND approved!=0");
$dates = $db->selectObjects("eventdate", "location_data='" . serialize($loc) . "' AND date = {$start}");
$monthly[$week][$i] = calendarmodule::_getEventsForDates($dates);
$counts[$week][$i] = count($monthly[$week][$i]);
if ($weekday >= 6) {
$week++;
$monthly[$week] = array();
// allocate an array for the next week
$counts[$week] = array();
$weekday = 0;
} else {
$weekday++;
}
}
// Grab non-day numbers only (after end of month)
for ($i = 1; $weekday && $i < 8 - $weekday; $i++) {
$monthly[$week][$i + $endofmonth] = array();
$counts[$week][$i + $endofmonth] = -1;
}
$template->assign("currentweek", $currentweek);
$template->assign("monthly", $monthly);
$template->assign("counts", $counts);
$template->assign("nextmonth", $timefirst + 86400 * 45);
$template->assign("prevmonth", $timefirst - 86400 * 15);
$template->assign("now", $timefirst);
} else {
if ($viewconfig['type'] == "administration") {
// Check perms and return if cant view
if ($viewconfig['type'] == "administration" && !$user) {
return;
}
$continue = pathos_permissions_check("administrate", $loc) || pathos_permissions_check("post", $loc) || pathos_permissions_check("edit", $loc) || pathos_permissions_check("delete", $loc) || pathos_permissions_check("approve", $loc) || pathos_permissions_check("manage_approval", $loc) ? 1 : 0;
$dates = $db->selectObjects("eventdate", "location_data='" . serialize($loc) . "'");
$items = calendarmodule::_getEventsForDates($dates);
if (!$continue) {
foreach ($items as $i) {
$iloc = pathos_core_makeLocation($loc->mod, $loc->src, $i->id);
if (pathos_permissions_check("edit", $iloc) || pathos_permissions_check("delete", $iloc) || pathos_permissions_check("administrate", $iloc)) {
$continue = true;
}
}
}
if (!$continue) {
return;
}
for ($i = 0; $i < count($items); $i++) {
$thisloc = pathos_core_makeLocation($loc->mod, $loc->src, $items[$i]->id);
if ($user && $items[$i]->poster == $user->id) {
$canviewapproval = 1;
}
$items[$i]->permissions = array("administrate" => pathos_permissions_check("administrate", $thisloc) || pathos_permissions_check("administrate", $loc), "edit" => pathos_permissions_check("edit", $thisloc) || pathos_permissions_check("edit", $loc), "delete" => pathos_permissions_check("delete", $thisloc) || pathos_permissions_check("delete", $loc));
}
usort($items, "pathos_sorting_byEventStartAscending");
$template->assign("items", $items);
} else {
if ($viewconfig['type'] == "default") {
if (!isset($viewconfig['range'])) {
$viewconfig['range'] = "all";
}
$limit = '';
if (isset($template->viewconfig) && isset($template->viewconfig['num_events']) && $template->viewconfig['num_events'] != 0) {
$limit = $db->limit($template->viewconfig['num_events'], 0);
}
$items = null;
$dates = null;
$day = pathos_datetime_startOfDayTimestamp(time());
$sort_asc = true;
// For the getEventsForDates call
switch ($viewconfig['range']) {
case "all":
#$items = $db->selectObjects("calendar","location_data='" . serialize($loc) . "' AND approved!=0");
$dates = $db->selectObjects("eventdate", "location_data='" . serialize($loc) . "'");
break;
case "upcoming":
#$items = $db->selectObjects("calendar","location_data='" . serialize($loc) . "' AND approved!=0 AND eventstart >= ".time());
$dates = $db->selectObjects("eventdate", "location_data='" . serialize($loc) . "' AND date > {$day} ORDER BY date ASC " . $limit);
break;
case "past":
#$items = $db->selectObjects("calendar","location_data='" . serialize($loc) . "' AND approved!=0 AND eventstart < ".time());
$dates = $db->selectObjects("eventdate", "location_data='" . serialize($loc) . "' AND date < {$day} ORDER BY date DESC " . $limit);
$sort_asc = false;
break;
case "today":
#$items = $db->selectObjects("calendar","location_data='" . serialize($loc) . "' AND approved!=0 AND eventstart >= ".pathos_datetime_startOfDayTimestamp(time()) . " AND eventend <= " . (pathos_datetime_startOfDayTimestamp(time()) + 86400));
$dates = $db->selectObjects("eventdate", "location_data='" . serialize($loc) . "' AND date = {$day}");
break;
case "next":
#$items = array($db->selectObject("calendar","location_data='" . serialize($loc) . "' AND approved!=0 AND eventstart >= ".time()));
$dates = array($db->selectObject("eventdate", "location_data='" . serialize($loc) . "' AND date >= {$day}"));
break;
case "month":
#$items = $db->selectObjects("calendar","location_data='" . serialize($loc) . "' AND approved!=0 AND eventstart >= ".pathos_datetime_startOfMonthTimestamp(time()) . " AND eventend <= " . pathos_datetime_endOfMonthTimestamp(time()));
$dates = $db->selectObjects("eventdate", "location_data='" . serialize($loc) . "' AND date >= " . pathos_datetime_startOfMonthTimestamp(time()) . " AND date <= " . pathos_datetime_endOfMonthTimestamp(time()));
break;
}
$items = calendarmodule::_getEventsForDates($dates, $sort_asc);
for ($i = 0; $i < count($items); $i++) {
$thisloc = pathos_core_makeLocation($loc->mod, $loc->src, $items[$i]->id);
if ($user && $items[$i]->poster == $user->id) {
$canviewapproval = 1;
}
$items[$i]->permissions = array('administrate' => pathos_permissions_check('administrate', $thisloc) || pathos_permissions_check('administrate', $loc), 'edit' => pathos_permissions_check('edit', $thisloc) || pathos_permissions_check('edit', $loc), 'delete' => pathos_permissions_check('delete', $thisloc) || pathos_permissions_check('delete', $loc));
}
$template->assign('items', $items);
}
}
}
}
}
$template->assign('in_approval', $inapproval);
$template->assign('canview_approval_link', $canviewapproval);
$template->register_permissions(array('administrate', 'configure', 'post', 'edit', 'delete', 'manage_approval', 'manage_categories', 'view'), $loc);
$cats = $db->selectObjectsIndexedArray("category", "location_data='" . serialize($loc) . "'");
$cats[0] = null;
$cats[0]->name = "<i>{#i18n_noitemsfound#}</i>";
$cats[0]->color = "#000000";
$template->assign("categories", $cats);
$config = $db->selectObject("calendarmodule_config", "location_data='" . serialize($loc) . "'");
if (!$config) {
$config->enable_categories = 0;
}
$template->assign("modconfig", $config);
$template->output();
}
