/**
*
* controller for all actions on administrator
*
* @param \Symfony\Component\HttpFoundation\Request $request
*/
public function action(Request $request)
{
switch ($request->get("action")) {
case "modifier":
$noms = $request->request->get("nom");
$error = array();
foreach ($noms as $id => $nom) {
try {
AdministrateurAdmin::getInstance($id)->modify($nom, $request->request->get("prenom[" . $id . "]", null, true), $request->request->get("identifiant[" . $id . "]", null, true), $request->request->get("lang[" . $id . "]", null, true));
} catch (TheliaAdminException $e) {
$error[$id][] = $e->getCode();
}
}
if (!empty($error)) {
throw new TheliaAdminException("multiple errors", TheliaAdminException::ADMIN_MULTIPLE_ERRORS, null, $error);
}
redirige("gestadm.php");
break;
case "delete":
AdministrateurAdmin::getInstance($request->query->get("administrateur"))->delete();
break;
case "ajouter":
AdministrateurAdmin::getInstance()->add($request->request->get("nom"), $request->request->get("prenom"), $request->request->get("identifiant"), $request->request->get("password"), $request->request->get("verifyPassword"), $request->request->get("lang"), $request->request->get("profil"));
break;
case "modifier_password":
AdministrateurAdmin::getInstance($request->request->get("id"))->modifyPassword($request->request->get("password"), $request->request->get("verifyPassword"));
break;
case "change_droits_admin":
AdministrateurAdmin::getInstance($request->request->get("administrateur"))->changePermissions($request->request->get("profil"), $request->request->get("droits_g"), $request->request->get("droits_m"));
break;
}
}
public function add($nom)
{
$this->nom = $nom;
$this->unite = 0;
$this->id = parent::add();
redirige("zone.php?id=" . $this->id . "&action=showZone#zone");
}
public function action(Request $request)
{
switch ($request->get("action")) {
case "modClassementDeclinaison":
DeclinaisonAdmin::getInstance($request->query->get("id"))->modClassement($request->query->get("type"));
break;
case "supprimer":
DeclinaisonAdmin::getInstance($request->query->get("id"))->delete();
redirige("declinaison.php");
break;
case "ajouter":
DeclinaisonAdmin::getInstance()->ajouter($request->request->get("titre"), $request->request->get("ajoutrub"));
break;
case "modifier":
DeclinaisonAdmin::getInstance($request->request->get("id"))->modifier($request->request->get("titre"), $request->request->get("chapo"), $request->request->get("description"), $request->request->get("declinaisondesc_titre"), $request->request->get("lang"));
break;
case "delDeclidisp":
DeclinaisonAdmin::getInstance($request->query->get("id"))->delDeclidisp($request->query->get("declidisp_id"), $request->query->get("lang"));
break;
case "modClassementDeclidisp":
DeclinaisonAdmin::getInstance($request->query->get("id"))->modclassementdeclidisp($request->query->get("declidispdesc"), $request->query->get("type"), $request->query->get("lang"));
break;
case "setclassementdeclidisp":
DeclinaisonAdmin::getInstance($request->request->get("id"))->setclassementdeclidisp($request->request->get("desclidispdesc"), $request->request->get("newClassement"), $request->request->get("lang"));
break;
case "ajDeclidisp":
DeclinaisonAdmin::getInstance($request->request->get("id"))->ajDeclidisp($request->request->get("titre"), $request->request->get("lang"));
break;
}
}
public function action(Request $request)
{
switch ($request->get("action")) {
case "modClassementCaracteristique":
CaracteristiqueAdmin::getInstance($request->query->get("id"))->modifyOrder($request->query->get("type"));
redirige('caracteristique.php');
break;
case "supprimer":
CaracteristiqueAdmin::getInstance($request->query->get("id"))->delete();
redirige('caracteristique.php');
break;
case "ajouter":
CaracteristiqueAdmin::getInstance()->add($request->request->get("titre"), $request->request->get("affiche"), $request->request->get("ajoutrub"));
break;
case "setclassementcaracdisp":
CaracteristiqueAdmin::getInstance($request->request->get("id"))->setClassementCaracdisp($request->request->get("caracdispdesc"), $request->request->get("newClassement"), $request->request->get("lang"));
break;
case "modClassementCaracdisp":
CaracteristiqueAdmin::getInstance($request->query->get("id"))->modClassementCaracdisp($request->query->get("cacacdispdesc"), $request->query->get("type"), $request->query->get("lang"));
break;
case "modifier":
CaracteristiqueAdmin::getInstance($request->request->get("id"))->modifier($request->request->get("titre"), $request->request->get("chapo"), $request->request->get("description"), $request->request->get("affiche"), $request->request->get("caracdispdesc_titre"), $request->request->get("lang"));
break;
case "ajCaracdisp":
CaracteristiqueAdmin::getInstance($request->request->get("id"))->addCaracdisp($request->request->get("titre"), $request->request->get("lang"));
break;
case "delCaracdisp":
CaracteristiqueAdmin::getInstance($request->query->get("id"))->delCaracdisp($request->query->get("caracdisp"), $request->query->get("lang"));
break;
}
}
public function update_config()
{
if (!empty($_REQUEST['fichier'])) {
$_REQUEST[Tlog::VAR_FILES] = ltrim($_REQUEST[Tlog::VAR_FILES] . ";" . trim($_REQUEST['fichier']), ";");
}
foreach ($_REQUEST as $var => $value) {
if (!preg_match('/^tlog_/', $var)) {
continue;
}
$this->maj_variable($var, $value);
}
// Mise à jour des destinations
$actives = "";
foreach ($_REQUEST['destinations'] as $classname) {
if (isset($_REQUEST["{$classname}_actif"])) {
$actives .= $classname . ";";
foreach ($_REQUEST as $var => $valeur) {
if (strpos($var, "{$classname}_") !== false) {
$nom = str_replace("{$classname}_", "", $var);
if ($nom == 'actif') {
continue;
}
$this->maj_variable($nom, $valeur);
}
}
}
}
$this->maj_variable(self::VAR_DESTINATIONS, rtrim($actives, ";"));
redirige("logs.php");
}
/**
* Mettre à jour les taux de conversions par rapport à l'Euro
*/
public function refresh()
{
$file_contents = file_get_contents('http://www.ecb.int/stats/eurofxref/eurofxref-daily.xml');
$devise = new Devise();
if ($file_contents && ($sxe = new SimpleXMLElement($file_contents))) {
foreach ($sxe->Cube[0]->Cube[0]->Cube as $last) {
$devise->query("UPDATE {$devise->table} SET taux='" . $devise->escape_string($last["rate"]) . "' WHERE code='" . $devise->escape_string($last["currency"]) . "'");
}
}
redirige("devise.php");
}
public function edit($request)
{
foreach ($this->getList() as $variable) {
if ($this->charger_id($variable['id'])) {
$this->valeur = $request->request->get("valeur_" . $this->id);
$this->maj();
ActionsModules::instance()->appel_module("modvariable", new Variable($this->nom));
}
}
redirige("variable.php");
}
public function updateConfig()
{
if ('' != ($value = lireParam('white_list'))) {
$this->updateParam('htmlpurifier_whiteList', $value);
unset($_REQUEST['white_list']);
}
foreach ($_REQUEST as $key => $value) {
if (!preg_match('/^sanitize/', $key)) {
continue;
}
self::ecrire($key, $value);
}
redirige($_SERVER['PHP_SELF']);
}
public function ajouter($nom)
{
$nom = trim($nom);
if (empty($nom)) {
throw new TheliaAdminException("Empty message name", TheliaAdminException::MESSAGE_NAME_EMPTY);
}
if (Message::exist_nom($nom)) {
throw new TheliaAdminException("Message already exists", TheliaAdminException::MESSAGE_ALREADY_EXISTS);
}
$message = new Message();
$message->nom = $nom;
$message->id = $message->add();
redirige("message_modifier.php?id=" . $message->id);
}
public function edit($request)
{
$this->serveur = $request->request->get("serveur");
$this->port = $request->request->get("port");
$this->username = $request->request->get("username");
$this->password = $request->request->get("password");
$this->secure = $request->request->get("secure");
$this->active = $request->request->get("active");
if ($this->id > 0) {
$this->maj();
} else {
$this->id = 1;
$this->add();
}
redirige("smtp.php");
}
function modification($serveur, $port, $username, $password, $secure, $active)
{
$smtp = new Smtpconfig();
$smtp->charger(1);
$smtp->serveur = $serveur;
$smtp->port = $port;
$smtp->username = $username;
$smtp->password = $password;
$smtp->secure = $secure;
if ($active == "on") {
$smtp->active = 1;
} else {
$smtp->active = 0;
}
if ($smtp->id != "") {
$smtp->maj();
} else {
$smtp->add();
}
redirige("smtp.php");
}
if ($_FILES['plugin']['error'] == UPLOAD_ERR_OK) {
$plugin = $_FILES['plugin']['tmp_name'];
$plugin_name = $_FILES['plugin']['name'];
ActionsAdminModules::instance()->installer($plugin, $plugin_name);
} else {
throw new TheliaException(trad("L'envoi du fichier a échoué", 'admin'), TheliaException::MODULE_ECHEC_UPLOAD);
}
}
break;
case 'modclassement':
$module = new Modules($id);
$module->changer_classement($id, $type);
redirige("plugins.php#mod_{$id}");
break;
}
redirige($_SERVER['PHP_SELF']);
}
// Mise a jour de la base suivant le contenu du repertoire plugins
ActionsAdminModules::instance()->mettre_a_jour();
} catch (Exception $ex) {
$message_erreur = $ex->getMessage() . ' (erreur ' . $ex->getCode() . ')';
}
?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<?php
require_once "title.php";
?>
$admin->valeur = $valeur;
$admin->nom = $nom;
$admin->prenom = $prenom;
$admin->identifiant = $identifiant;
$motdepasse1 = trim($motdepasse1);
$admin->motdepasse = $motdepasse1;
$admin->profil = $_POST['profil'];
$admin->crypter();
$lastid = $admin->add();
$autorisation_profil = new Autorisation_profil();
$query = "select * from {$autorisation_profil->table} where profil=\"" . $_POST['profil'] . "\"";
$resul = mysql_query($query, $autorisation_profil->link);
while ($row = mysql_fetch_object($resul)) {
$autorisation_administrateur = new Autorisation_administrateur();
$autorisation_administrateur->administrateur = $lastid;
$autorisation_administrateur->autorisation = $row->autorisation;
$autorisation_administrateur->lecture = $row->lecture;
$autorisation_administrateur->ecriture = $row->ecriture;
$autorisation_administrateur->add();
}
redirige("gestadm.php");
}
if ($action == "supprimer") {
$autorisation_administrateur = new Autorisation_administrateur();
$query = "delete from {$autorisation_administrateur->table} where administrateur=\"{$id}\"";
$resul = mysql_query($query, $autorisation_administrateur->link);
$admin = new Administrateur();
$admin->charger_id($id);
$admin->delete();
redirige("gestadm.php");
}
<?php
require_once __DIR__ . '/../auth.php';
$request = Symfony\Component\HttpFoundation\Request::createFromGlobals();
if ($request->isXmlHttpRequest() === false) {
redirige("../accueil.php");
}
if (!est_autorise("acces_contenu")) {
exit;
}
switch ($request->query->get('action')) {
case 'changeDisplay':
FolderAdmin::getInstance($request->query->get('folder_id'))->display($request->query->get('display'));
break;
}
}
}
// Ajout éventuel d'une devise
if (intval($_REQUEST['flag_ajouter']) != 0) {
ActionsAdminDevises::instance()->ajouter(trim($ajout_nom), trim($ajout_taux), trim($ajout_symbole), trim($ajout_code));
}
} else {
if ($action == "supprimer") {
ActionsAdminDevises::instance()->supprimer($id);
} else {
if ($action == "refresh") {
ActionsAdminDevises::instance()->refresh();
}
}
}
redirige("devise.php");
}
$devises = ActionsAdminDevises::instance()->lister();
?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<?php
require_once "title.php";
?>
<script type="text/javascript">
function confirmer_suppression() {
return confirm("<?php
if ($variable->charger_id($id)) {
if ($valeur != $variable->valeur) {
$variable->valeur = $valeur;
$variable->maj();
ActionsModules::instance()->appel_module("modvariable", $variable);
}
}
}
}
// Ajouter ?
$nom = lireParam('ajout_nom', 'string');
if ($nom != '') {
$variable = new Variable();
$variable->nom = $nom;
$variable->valeur = lireParam('ajout_valeur', 'string');
$variable->protege = 0;
$variable->cache = 0;
$variable->add();
ActionsModules::instance()->appel_module("addvariable", $variable);
}
} else {
if ($action == "supprimer") {
$variable = new Variable();
if ($variable->charger_id(intval(lireParam('id', 'int')))) {
$variable->delete();
}
ActionsModules::instance()->appel_module("delvariable", $variable);
}
}
redirige("variable.php");
function majcaracdisp($id, $lang)
{
global $caracdispdesc_titre;
foreach ($caracdispdesc_titre as $idcaracdisp => $valeur) {
$caracdispdesc = new Caracdispdesc();
$existe = $caracdispdesc->charger_caracdisp($idcaracdisp, $lang);
$caracdispdesc->caracdisp = $idcaracdisp;
$caracdispdesc->lang = $lang;
$caracdispdesc->titre = $valeur;
if (!$existe) {
$caracdispdesc->classement = 1 + maxClassement($id, $lang);
$caracdispdesc->add();
} else {
$caracdispdesc->maj();
}
$caracdisp = new Caracdisp($idcaracdisp);
ActionsModules::instance()->appel_module("modcaracdisp", $caracdisp);
}
redirige('caracteristique_modifier.php?id=' . $id);
}
/**
* en caso de que getruta con este formato ?ruta=nombrefichero
* se enviara via get (esto se usa para que el login sepa donde queria acceder antes de loguearse el usuario)
* si El usuario no está logueado lo redirige al login2.php
* a no ser que se le de como parametro otra ruta
*/
function checkAccess($getruta = "", $ruta = "Registro.php")
{
if (!estaLogueado()) {
redirige($ruta . $getruta);
}
}
<?php
require_once "auth.php";
require_once "../fonctions/divers.php";
if (!est_autorise("acces_clients")) {
exit;
}
use Symfony\Component\HttpFoundation\Request;
$request = Request::createFromGlobals();
$client = new Client();
if (!$request->get("ref") || !$client->charger_ref($request->get("ref"))) {
redirige('client.php');
}
$errorCode = 0;
try {
ActionsAdminClient::getInstance()->action($request);
} catch (TheliaAdminException $e) {
$errorCode = $e->getCode();
switch ($errorCode) {
case TheliaAdminException::CLIENT_ADD_ADRESS:
$addError = 1;
break;
case TheliaAdminException::CLIENT_ADRESS_EDIT_ERROR:
$editAddressError[$request->get("id")] = 1;
break;
}
}
$raisondesc = new Raisondesc($client->raison);
if ($client->parrain) {
$parrain = new Client();
$parrain->charger_id($client->parrain);
protected function ajouter($id, $nom_arg, $extensions_valides = array(), $point_d_entree)
{
for ($i = 1; $i <= $this->nombre_champs_upload; $i++) {
$fichier = $_FILES[$nom_arg . $i]['tmp_name'];
$nom = $_FILES[$nom_arg . $i]['name'];
if ($fichier != "") {
$dot = strrpos($nom, '.');
if ($dot !== false) {
$fich = substr($nom, 0, $dot);
$extension = substr($nom, $dot + 1);
if ($fich != "" && $extension != "" && (empty($extensions_valides) || in_array($extension, $extensions_valides))) {
$obj = new $this->class();
$colonne = $this->typeobjet;
$obj->{$colonne} = $id;
$lastid = $obj->add();
$obj->charger($lastid);
$obj->fichier = eregfic(sprintf("%s_%s", $fich, $lastid)) . "." . $extension;
$obj->maj();
copy($fichier, $this->chemin_objet($obj->fichier));
ActionsModules::instance()->appel_module($point_d_entree, $obj);
}
}
}
}
redirige($this->url_page_admin());
}
function supprimer($ref, $parent)
{
$produit = new Produit($ref);
$produit->delete();
ActionsModules::instance()->appel_module("supprod", $produit);
redirige("parcourir.php?parent=" . $parent);
}
function supprimer($ref)
{
$client = new Client();
$client->charger_ref($ref);
$client->delete();
ActionsModules::instance()->appel_module("supcli", $client);
redirige("client.php");
}
public function redirect()
{
redirige("cache.php");
}
protected function redirect()
{
redirige("gestadm.php");
}
public function delete()
{
$this->verifyLoaded();
$this->query('DELETE FROM ' . Profildesc::TABLE . ' WHERE profil=' . $this->id);
parent::delete();
redirige("droits.php");
}
public function add($titre, $isocode, $isoalpha2, $isoalpha3, $tva, $zone)
{
$titre = trim($titre);
if (empty($titre)) {
throw new TheliaAdminException("Title can not be empty", TheliaAdminException::COUNTRY_TITLE_EMPTY);
}
$this->isocode = $isocode;
$this->isoalpha2 = $isoalpha2;
$this->isoalpha3 = $isoalpha3;
$this->tva = $tva;
$this->zone = $zone;
$this->id = parent::add();
$paysdesc = new Paysdesc();
$paysdesc->pays = $this->id;
$paysdesc->lang = ActionsAdminLang::instance()->get_id_langue_courante();
$paysdesc->titre = $titre;
$paysdesc->add();
redirige("pays.php");
}
function supprimer($id, $parent)
{
$contenu = new Contenu($id);
$contenu->delete();
ActionsModules::instance()->appel_module("supcont", $contenu);
redirige("listdos.php?parent=" . $parent);
exit;
}
} else {
if ($_SESSION["navig"]->urlpageret == "") {
$_SESSION["navig"]->urlpageret = urlfond();
}
}
// Sécurisation
if ($securise && !$_SESSION["navig"]->connecte) {
redirige(urlfond("connexion"));
}
// Vérif transport
if ($transport && !$_SESSION["navig"]->commande->transport) {
redirige(urlfond("adresse"));
}
// Vérif panier
if ($panier && !$_SESSION["navig"]->panier->nbart) {
redirige(urlfond());
}
$parseur = new Parseur();
// fonctions à éxecuter avant les inclusions
ActionsModules::instance()->appel_module("inclusion");
// inclusion
$parseur->inclusion($res);
// inclusions des plugins
ActionsModules::instance()->appel_module("action");
$res = $parseur->analyse($res);
ActionsModules::instance()->appel_module("analyse");
Filtres::exec($res);
$res = $parseur->post($res);
// inclusions des plugins filtres
ActionsModules::instance()->appel_module("post");
Tlog::ecrire($res);
// Mettre à jour les paramètres
ActionsAdminLang::instance()->maj_parametres($_REQUEST['un_domaine_par_langue'], $_REQUEST['action_si_trad_absente'], $_REQUEST['urlsite']);
// Appliquer les modifications
foreach ($_REQUEST['description'] as $id => $description) {
ActionsAdminLang::instance()->modifier($id, $description, $_REQUEST['code'][$id], $_REQUEST['url'][$id], $id == $_REQUEST['defaut'] ? 1 : 0);
}
// Ajout éventuel d'une langue
if (intval($_REQUEST['flag_ajouter']) != 0) {
ActionsAdminLang::instance()->ajouter($_REQUEST['ajout_description'], $_REQUEST['ajout_code'], $_REQUEST['ajout_url']);
}
} else {
if ($action == "supprimer") {
ActionsAdminLang::instance()->supprimer($id);
}
}
redirige("langue.php");
}
$langues = ActionsAdminLang::instance()->lister();
?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<?php
require_once "title.php";
?>
<script type="text/javascript">
function change_lang_type(mode, select) {
if (mode == 1) {
public function redirect()
{
redirige('devise.php');
}
