/** * This function creates a Group of Overlay Form * * Creates a Form for a group of overlay using the supplied defaults (if specified). * * @param array $group array of values describing a group of overlay * @return string HTML string of overlay form */ function MAPS_getGroupOverlayForm($group = array()) { global $_CONF, $_TABLES, $_MAPS_CONF, $LANG_MAPS_1, $LANG_configselects, $LANG_ACCESS, $_USER, $_GROUPS, $_SCRIPTS; $display = COM_startBlock('<h1>' . $LANG_MAPS_1['group_edit'] . ' ' . $group['o_group_name'] . '</h1>'); $template = COM_newTemplate($_CONF['path'] . 'plugins/maps/templates'); $template->set_file(array('map' => 'group_overlay_form.thtml')); $template->set_var('yes', $LANG_MAPS_1['yes']); $template->set_var('no', $LANG_MAPS_1['no']); //informations $template->set_var('group_overlay_presentation', $LANG_MAPS_1['group_overlay_presentation']); $template->set_var('informations', $LANG_MAPS_1['informations']); $template->set_var('name_label', $LANG_MAPS_1['group_overlay_name_label']); $template->set_var('name', stripslashes($group['o_group_name'])); $template->set_var('required_field', $LANG_MAPS_1['required_field']); //Form validation $template->set_var('save_button', $LANG_MAPS_1['save_button']); if ($group['o_group_id'] > 0) { $template->set_var('delete_button', '<option value="delete">' . $LANG_MAPS_1['delete_button'] . '</option>'); } else { $template->set_var('delete_button', ''); } $template->set_var('ok_button', $LANG_MAPS_1['ok_button']); if (isset($group['o_group_id'])) { $template->set_var('o_group_id', '<input type="hidden" name="o_group_id" value="' . $group['o_group_id'] . '" />'); } else { $template->set_var('o_group_id', ''); } $display .= $template->parse('output', 'map'); $display .= COM_endBlock(); return $display; }
/** * Shows all polls in system * * List all the polls on the system if no $pid is provided * * @return string HTML for poll listing * */ function polllist() { global $_CONF, $_TABLES, $_USER, $_PO_CONF, $LANG25, $LANG_LOGIN, $LANG_POLLS; $retval = ''; if (empty($_USER['username']) && ($_CONF['loginrequired'] == 1 || $_PO_CONF['pollsloginrequired'] == 1)) { $retval = COM_startBlock($LANG_LOGIN[1], '', COM_getBlockTemplate('_msg_block', 'header')); $login = new Template($_CONF['path_layout'] . 'submit'); $login->set_file(array('login' => 'submitloginrequired.thtml')); $login->set_var('xhtml', XHTML); $login->set_var('login_message', $LANG_LOGIN[2]); $login->set_var('site_url', $_CONF['site_url']); $login->set_var('lang_login', $LANG_LOGIN[3]); $login->set_var('lang_newuser', $LANG_LOGIN[4]); $login->parse('output', 'login'); $retval .= $login->finish($login->get_var('output')); $retval .= COM_endBlock(COM_getBlockTemplate('_msg_block', 'footer')); } else { require_once $_CONF['path_system'] . 'lib-admin.php'; $header_arr = array(array('text' => $LANG25[9], 'field' => 'topic', 'sort' => true), array('text' => $LANG25[20], 'field' => 'voters', 'sort' => true), array('text' => $LANG25[3], 'field' => 'unixdate', 'sort' => true), array('text' => $LANG_POLLS['open_poll'], 'field' => 'is_open', 'sort' => true)); $defsort_arr = array('field' => 'unixdate', 'direction' => 'desc'); $text_arr = array('has_menu' => false, 'title' => $LANG_POLLS['pollstitle'], 'instructions' => "", 'icon' => '', 'form_url' => ''); $query_arr = array('table' => 'polltopics', 'sql' => $sql = "SELECT *,UNIX_TIMESTAMP(date) AS unixdate, display " . "FROM {$_TABLES['polltopics']} WHERE 1=1", 'query_fields' => array('topic'), 'default_filter' => COM_getPermSQL(), 'query' => '', 'query_limit' => 0); $retval .= ADMIN_list('polls', 'plugin_getListField_polls', $header_arr, $text_arr, $query_arr, $defsort_arr); } return $retval; }
function MG_access_denied() { global $LANG_MG00, $LANG_ACCESS; $display = COM_startBlock($LANG_ACCESS['accessdenied'], '', COM_getBlockTemplate('_msg_block', 'header')) . '<br' . XHTML . '>' . $LANG_MG00['access_denied_msg'] . COM_endBlock(COM_getBlockTemplate('_msg_block', 'footer')); $display = MG_createHTMLDocument($display); COM_output($display); exit; }
function MG_invalidRequest() { global $LANG_MG02, $_CONF, $_MG_CONF; $retval = ''; $retval .= COM_startBlock($LANG_MG02['error_header'], '', COM_getBlockTemplate('_admin_block', 'header')); $T = new Template($_MG_CONF['template_path']); $T->set_file('admin', 'error.thtml'); $T->set_var('errormessage', $LANG_MG02['generic_error']); $T->parse('output', 'admin'); $retval .= $T->finish($T->get_var('output')); $retval .= COM_endBlock(COM_getBlockTemplate('_admin_block', 'footer')); return $retval; }
/** * Returns admin menu display * * Generates the admin menu from the template and returns the result as a string of HTML * * @return string HTML of admin menu */ function CLASSIFIEDS_admin_menu() { global $_CONF, $LANG_CLASSIFIEDS_1, $_TABLES; $retval = COM_startBlock(); // generate the menu from the template $menu = new Template($_CONF['path'] . 'plugins/classifieds/templates/menus'); $menu->set_file(array('menu' => 'admin_menu.thtml')); $menu->set_var('site_url', $_CONF['site_url']); $menu->set_var('classifieds', $LANG_CLASSIFIEDS_1['plugin_name']); $menu->set_var('classifieds_list', $LANG_CLASSIFIEDS_1['classifieds_list']); $menu->set_var('categories_list', $LANG_CLASSIFIEDS_1['categories_list']); $retval .= $menu->parse('output', 'menu'); $retval .= COM_endBlock(); // retval results return $retval; }
/** * Build the admin list of pages * @return string HTML content */ function EXP_adminList() { global $_CONF, $_TABLES, $LANG_ADMIN, $LANG_ACCESS, $_CONF_EXP, $LANG_EX00; USES_lib_admin(); $retval = ''; $header_arr = array(array('text' => $LANG_ADMIN['edit'], 'field' => 'edit', 'sort' => false), array('text' => 'Page ID', 'field' => 'exid', 'sort' => true), array('text' => 'Title', 'field' => 'title', 'sort' => true), array('text' => 'URL', 'field' => 'url', 'sort' => true), array('text' => 'Hits', 'field' => 'hits', 'sort' => true)); $menu_arr = array(array('url' => $_CONF['site_admin_url'] . '/plugins/' . $_CONF_EXP['pi_name'] . '/edit.php?exid=0', 'text' => 'Add New'), array('url' => $_CONF['site_admin_url'], 'text' => $LANG_ADMIN['admin_home'])); $defsort_arr = array('field' => 'exid', 'direction' => 'asc'); $header_str = $LANG_EX00['header'] . ' ' . $LANG_EX00['version'] . ' ' . $_CONF_EXP['pi_version']; $retval .= COM_startBlock($header_str, '', COM_getBlockTemplate('_admin_block', 'header')); $retval .= ADMIN_createMenu($menu_arr, 'Administer External Pages', plugin_geticon_external()); $text_arr = array('has_extras' => true, 'form_url' => "{$_CONF['site_admin_url']}/plugins/{$_CONF_EXP['pi_name']}/index.php"); $query_arr = array('table' => 'external', 'sql' => "SELECT * FROM {$_TABLES['external']} ", 'query_fields' => array('title', 'url'), 'default_filter' => COM_getPermSql()); $retval .= ADMIN_list('external', 'EXP_getAdminListField', $header_arr, $text_arr, $query_arr, $defsort_arr, '', '', '', $form_arr); $retval .= COM_endBlock(COM_getBlockTemplate('_admin_block', 'footer')); return $retval; }
function CUSTOM_handle404($alternate_url = '') { global $_CONF, $_USER, $LANG_404; // send 404 in any case header('HTTP/1.1 404 Not Found'); header('Status: 404 Not Found'); $display .= COM_startBlock($LANG_404[1]); if (isset($_SERVER['SCRIPT_URI'])) { $url = strip_tags($_SERVER['SCRIPT_URI']); } else { $request = $_SERVER['REQUEST_URI']; $url = 'http://' . $_SERVER['HTTP_HOST'] . strip_tags($request); } // Add log stuff if (isset($_USER['uid'])) { $byuser = $_USER['uid'] . '@' . $_SERVER['REMOTE_ADDR']; } else { $byuser = '******' . $_SERVER['REMOTE_ADDR']; } $refurl = $_SERVER['HTTP_REFERER']; $remoteaddress = $_SERVER['REMOTE_ADDR']; $timestamp = @strftime('%c'); $logentry = "404 Error generated by {$byuser} for url: {$url} - Referring url: {$refurl}"; $logfile = $_CONF['path_log'] . '404.log'; if (!($file = fopen($logfile, 'a'))) { } else { fputs($file, "{$timestamp} - {$logentry} \n"); } $display .= CUSTOM_getStaticpage('404'); $display .= sprintf($LANG_404[2], $url); if ($alternate_url != '') { $display .= sprintf($LANG_404[4], $alternate_url); } else { $display .= $LANG_404[3]; } $display .= COM_endBlock(); // $display = COM_createHTMLDocument($display, array('pagetitle' => $LANG_404[1])); $display = COM_createHTMLDocument($display, array('what' => 'none', 'pagetitle' => $LANG_404[1], 'rightblock' => false)); COM_output($display); exit; // Do not want to go any further }
function _logoEdit() { global $_CONF, $_LOGO, $_TABLES, $LANG_ADMIN, $LANG_LOGO, $_IMAGE_TYPE; $retval = ''; $menu_arr = array(array('url' => $_CONF['site_admin_url'], 'text' => $LANG_ADMIN['admin_home'])); $retval .= COM_startBlock($LANG_LOGO['logo_options'], '', COM_getBlockTemplate('_admin_block', 'header')); $retval .= ADMIN_createMenu($menu_arr, $LANG_LOGO['instructions'], $_CONF['layout_url'] . '/images/icons/logo.' . $_IMAGE_TYPE); $retval .= COM_endBlock(COM_getBlockTemplate('_admin_block', 'footer')); if (file_exists($_CONF['path_html'] . '/images/' . $_LOGO['logo_name'])) { $current_logo = '<img src="' . $_CONF['site_url'] . '/images/' . $_LOGO['logo_name'] . '" alt="" border="0"/>'; } else { $current_logo = $LANG_LOGO['no_logo_graphic']; } $T = new Template($_CONF['path_layout'] . 'admin/logo/'); $T->set_file('admin', 'logo.thtml'); $T->set_var(array('s_form_action' => $_CONF['site_admin_url'] . '/logo.php', 'graphic_logo_selected' => $_LOGO['use_graphic_logo'] == 1 ? ' checked="checked"' : '', 'text_logo_selected' => $_LOGO['use_graphic_logo'] == 0 ? ' checked="checked"' : '', 'no_logo_selected' => $_LOGO['use_graphic_logo'] == -1 ? ' checked="checked"' : '', 'slogan_selected' => $_LOGO['display_site_slogan'] == 1 ? ' checked="checked"' : '', 'current_logo_graphic' => $current_logo)); $T->parse('output', 'admin'); $retval .= $T->finish($T->get_var('output')); return $retval; }
/** * Create the common header for all admin functions * * @param string $page Current page. Used for selecting menus * @return string HTML for admin header portion. */ function EVLIST_adminHeader($page) { global $_CONF, $LANG_ADMIN, $LANG_EVLIST, $_EV_CONF; $retval = ''; USES_lib_admin(); $menu_arr = array(); if ($page == 'events') { $menu_arr[] = array('url' => EVLIST_URL . '/event.php?edit=event', 'text' => $LANG_EVLIST['new_event']); } else { $menu_arr[] = array('url' => EVLIST_ADMIN_URL . '/index.php', 'text' => $LANG_EVLIST['events']); } if ($page == 'calendars') { $menu_arr[] = array('url' => EVLIST_ADMIN_URL . '/index.php?editcal=x', 'text' => $LANG_EVLIST['new_calendar']); } else { $menu_arr[] = array('url' => EVLIST_ADMIN_URL . '/index.php?view=calendars', 'text' => $LANG_EVLIST['calendars']); } if ($page == 'categories') { $menu_arr[] = array('url' => EVLIST_ADMIN_URL . '/index.php?editcat=x', 'text' => $LANG_EVLIST['new_category']); } else { $menu_arr[] = array('url' => EVLIST_ADMIN_URL . '/index.php?categories=x', 'text' => $LANG_EVLIST['categories']); } if ($_EV_CONF['enable_rsvp']) { if ($page == 'tickettypes') { $menu_arr[] = array('url' => EVLIST_ADMIN_URL . '/index.php?editticket=0', 'text' => $LANG_EVLIST['new_ticket_type']); } else { $menu_arr[] = array('url' => EVLIST_ADMIN_URL . '/index.php?tickettypes', 'text' => $LANG_EVLIST['ticket_types']); } } $menu_arr[] = array('url' => EVLIST_ADMIN_URL . '/index.php?importcalendar=x', 'text' => $LANG_EVLIST['import_calendar']); $menu_arr[] = array('url' => EVLIST_ADMIN_URL . '/index.php?import=x', 'text' => $LANG_EVLIST['import_from_csv']); $menu_arr[] = array('url' => $_CONF['site_admin_url'], 'text' => $LANG_ADMIN['admin_home']); $retval .= COM_startBlock('evList ' . $_EV_CONF['pi_version'], '', COM_getBlockTemplate('_admin_block', 'header')); $retval .= ADMIN_createMenu($menu_arr, $LANG_EVLIST['admin_instr'][$page], plugin_geticon_evlist()); $retval .= COM_endBlock(); return $retval; }
if (isset($_GET['mode'])) { $mode = COM_applyFilter($_GET['mode']); } } $T = new Template($_MG_CONF['template_path']); $T->set_file('admin', 'administration.thtml'); $T->set_var(array('site_admin_url' => $_CONF['site_admin_url'], 'site_url' => $_MG_CONF['site_url'], 'lang_admin' => $LANG_MG00['admin'], 'xhtml' => XHTML)); if ($mode == $LANG_MG01['save'] && !empty($LANG_MG01['save'])) { MG_createUsers(); exit; } elseif ($mode == $LANG_MG01['cancel']) { echo COM_refresh($_MG_CONF['admin_url'] . 'index.php'); exit; } else { if (isset($_REQUEST['page'])) { $page = COM_applyFilter($_REQUEST['page'], true) - 1; if ($page < 0) { $page = 0; } } else { $page = 0; } $T->set_var(array('admin_body' => MG_selectUsers($page), 'title' => $LANG_MG01['batch_create_members'], 'lang_help' => '<img src="' . MG_getImageFile('button_help.png') . '" style="border:none;" alt="?"' . XHTML . '>', 'help_url' => $_MG_CONF['site_url'] . '/docs/usage.html#Batch_Create_Member_Albums')); } $T->parse('output', 'admin'); $display = COM_startBlock($LANG_MG00['admin'], '', COM_getBlockTemplate('_admin_block', 'header')); $display .= MG_showAdminMenu('member_albums'); $display .= $T->finish($T->get_var('output')); $display .= COM_endBlock(COM_getBlockTemplate('_admin_block', 'footer')); $display = COM_createHTMLDocument($display); COM_output($display);
function LIB_import($pi_name) { global $_CONF; $lang_box_admin = "LANG_" . strtoupper($pi_name) . "_ADMIN"; global ${$lang_box_admin}; $lang_box_admin = ${$lang_box_admin}; $tmpl = new Template($_CONF['path'] . "plugins/" . THIS_PLUGIN . "/templates/admin/"); $tmpl->set_file(array('import' => 'import.thtml')); $tmpl->set_var('site_admin_url', $_CONF['site_admin_url']); $tmpl->set_var('gltoken_name', CSRF_TOKEN); $tmpl->set_var('gltoken', SEC_createToken()); $tmpl->set_var('xhtml', XHTML); $tmpl->set_var('script', THIS_SCRIPT); $tmpl->set_var('importmsg', $lang_box_admin['importmsg']); $tmpl->set_var('importfile', $lang_box_admin['importfile']); $tmpl->set_var('submit', $lang_box_admin['submit']); $tmpl->parse('output', 'import'); $import = $tmpl->finish($tmpl->get_var('output')); $retval = ""; $retval .= COM_startBlock($lang_box_admin['import'], '', COM_getBlockTemplate('_admin_block', 'header')); $retval .= $import; $retval .= COM_endBlock(COM_getBlockTemplate('_admin_block', 'footer')); return $retval; }
$p->set_var('LANG_deleteafter', $LANG_GF01['DELETEAFTER']); $p->set_var('LANG_all', $LANG_GF01['ALL']); $p->set_var('LANG_topic', $LANG_GF01['TOPIC']); $p->set_var('LANG_title', $LANG_GF01['TITLE']); $p->set_var('LANG_date', $LANG_GF01['DATE']); $p->set_var('LANG_comments', $LANG_GF01['COMMENTS']); if ($numrows > 0) { $base_url = $_CONF['site_admin_url'] . '/plugins/forum/migrate.php?seltopic=' . $curtopic; for ($i = 0; $i < $numrows; $i++) { list($topic, $sid, $story, $date, $comments) = DB_fetchArray($result); $p->set_var('sid', $sid); $p->set_var('topic', $topic); if (isset($_POST['seltopic']) && $_POST['seltopic'] == "submissions") { $p->set_var('story_link', $_CONF['site_admin_url'] . '/story.php?moderate=x&sid=' . $sid); } else { $p->set_var('story_link', $_CONF['site_url'] . '/article.php?story=' . $sid); } $p->set_var('story_title', $story); $p->set_var('date', $date); $p->set_var('num_comments', $comments); $p->set_var('cssid', $i % 2 + 1); $p->parse('story_record', 'records', true); } $p->set_var('page_navigation', COM_printPageNavigation($base_url, $page, $numpages)); } $p->parse('output', 'page'); $display .= $p->finish($p->get_var('output')); $display .= COM_endBlock(); $display .= FF_adminfooter(); $display .= FF_siteFooter(); echo $display;
/** * Shows search form * * Shows advanced search page * * @author Tony Bibbs, tony AT geeklog DOT net * @return string HTML output for form * */ public function showForm() { global $_CONF, $_TABLES, $LANG09; $retval = ''; // Verify current user my use the search form if (!$this->_isFormAllowed()) { return SEC_loginRequiredForm(); } $retval .= COM_startBlock($LANG09[1], 'advancedsearch.html'); $searchform = COM_newTemplate($_CONF['path_layout'] . 'search'); $searchform->set_file(array('searchform' => 'searchform.thtml', 'authors' => 'searchauthors.thtml')); $searchform->set_var('search_intro', $LANG09[19]); $searchform->set_var('lang_keywords', $LANG09[2]); $searchform->set_var('lang_keytype', $LANG09[36]); $searchform->set_var('lang_date', $LANG09[20]); $searchform->set_var('lang_to', $LANG09[21]); $searchform->set_var('date_format', $LANG09[22]); $searchform->set_var('lang_topic', $LANG09[3]); $searchform->set_var('lang_all', $LANG09[4]); $searchform->set_var('topic_option_list', TOPIC_getTopicListSelect($this->_topic, 2, true)); $searchform->set_var('lang_type', $LANG09[5]); $searchform->set_var('lang_results', $LANG09[59]); $searchform->set_var('lang_per_page', $LANG09[60]); $searchform->set_var('lang_exact_phrase', $LANG09[43]); $searchform->set_var('lang_all_words', $LANG09[44]); $searchform->set_var('lang_any_word', $LANG09[45]); $searchform->set_var('lang_titles', $LANG09[69]); $escquery = htmlspecialchars($this->_query); $escquery = str_replace(array('{', '}'), array('{', '}'), $escquery); $searchform->set_var('query', $escquery); $searchform->set_var('datestart', $this->_dateStart); $searchform->set_var('dateend', $this->_dateEnd); if ($this->_titlesOnly) { $searchform->set_var('title_checked', ' checked="checked"'); } else { $searchform->set_var('title_checked', ''); } $phrase_selected = ''; $all_selected = ''; $any_selected = ''; if ($this->_keyType == 'phrase') { $phrase_selected = 'selected="selected"'; } else { if ($this->_keyType == 'all') { $all_selected = 'selected="selected"'; } else { if ($this->_keyType == 'any') { $any_selected = 'selected="selected"'; } } } $searchform->set_var('key_phrase_selected', $phrase_selected); $searchform->set_var('key_all_selected', $all_selected); $searchform->set_var('key_any_selected', $any_selected); $options = ''; $plugintypes = array('all' => $LANG09[4], 'stories' => $LANG09[6], 'comments' => $LANG09[7]); $plugintypes = array_merge($plugintypes, PLG_getSearchTypes()); // Generally I don't like to hardcode HTML but this seems easiest foreach ($plugintypes as $key => $val) { $options .= "<option value=\"{$key}\""; if ($this->_type == $key) { $options .= ' selected="selected"'; } $options .= ">{$val}</option>" . LB; } $searchform->set_var('plugin_types', $options); if ($_CONF['contributedbyline'] == 1) { $searchform->set_var('lang_authors', $LANG09[8]); $searchusers = array(); $result = DB_query("SELECT DISTINCT uid FROM {$_TABLES['comments']}"); while ($A = DB_fetchArray($result)) { $searchusers[$A['uid']] = $A['uid']; } $result = DB_query("SELECT DISTINCT uid FROM {$_TABLES['stories']} WHERE (date <= NOW()) AND (draft_flag = 0)"); while ($A = DB_fetchArray($result)) { $searchusers[$A['uid']] = $A['uid']; } $inlist = implode(',', $searchusers); if (!empty($inlist)) { $sql = "SELECT uid,username,fullname FROM {$_TABLES['users']} WHERE uid IN ({$inlist})"; if (isset($_CONF['show_fullname']) && $_CONF['show_fullname'] == 1) { /* Caveat: This will group all users with an emtpy fullname * together, so it's not exactly sorted by their * full name ... */ $sql .= ' ORDER BY fullname,username'; } else { $sql .= ' ORDER BY username'; } $result = DB_query($sql); $options = ''; while ($A = DB_fetchArray($result)) { $options .= '<option value="' . $A['uid'] . '"'; if ($A['uid'] == $this->_author) { $options .= ' selected="selected"'; } $options .= '>' . htmlspecialchars(COM_getDisplayName('', $A['username'], $A['fullname'])) . '</option>'; } $searchform->set_var('author_option_list', $options); $searchform->parse('author_form_element', 'authors', true); } else { $searchform->set_var('author_form_element', '<input type="hidden" name="author" value="0"' . XHTML . '>'); } } else { $searchform->set_var('author_form_element', '<input type="hidden" name="author" value="0"' . XHTML . '>'); } // Results per page $options = ''; $limits = explode(',', $_CONF['search_limits']); foreach ($limits as $limit) { $options .= "<option value=\"{$limit}\""; if ($_CONF['num_search_results'] == $limit) { $options .= ' selected="selected"'; } $options .= ">{$limit}</option>" . LB; } $searchform->set_var('search_limits', $options); $searchform->set_var('lang_search', $LANG09[10]); PLG_templateSetVars('search', $searchform); $searchform->parse('output', 'searchform'); $retval .= $searchform->finish($searchform->get_var('output')); $retval .= COM_endBlock(); return $retval; }
function _at_Header() { global $_CONF, $LANG_ADMIN, $LANG32; $retval = ''; $retval .= COM_startBlock($LANG32[87], '', COM_getBlockTemplate('_admin_block', 'header')); $retval .= COM_endBlock(COM_getBlockTemplate('_admin_block', 'footer')); return $retval; }
function MB_editMenu($mid) { global $_CONF, $_TABLES, $_ST_CONF, $stMenu, $LANG_MB00, $LANG_MB01, $LANG_MB_ADMIN, $LANG_MB_TYPES, $LANG_MB_GLTYPES, $LANG_MB_GLFUNCTION, $LANG_MB_MENU_TYPES; $retval = ''; $menu_id = $mid; $menu = menu::getInstance($menu_id); $menu_arr = array(array('url' => $_CONF['site_admin_url'] . '/menu.php?mode=menu&menu=' . $menu_id, 'text' => $LANG_MB01['return_to'] . $menu->name), array('url' => $_CONF['site_admin_url'] . '/menu.php', 'text' => $LANG_MB01['menu_list'])); $retval .= COM_startBlock($LANG_MB01['menu_builder'] . ' :: ' . $LANG_MB01['edit_element'] . ' for ' . $menu->name, '', COM_getBlockTemplate('_admin_block', 'header')); $retval .= ADMIN_createMenu($menu_arr, $LANG_MB_ADMIN[5], $_CONF['layout_url'] . '/images/icons/menubuilder.png'); // build menu type select $menuTypeSelect = '<select id="menutype" name="menutype">' . LB; while ($types = current($LANG_MB_MENU_TYPES)) { $menuTypeSelect .= '<option value="' . key($LANG_MB_MENU_TYPES) . '"'; if (key($LANG_MB_MENU_TYPES) == $menu->type) { $menuTypeSelect .= ' selected="selected"'; } $menuTypeSelect .= '>' . $types . '</option>' . LB; next($LANG_MB_MENU_TYPES); } $menuTypeSelect .= '</select>' . LB; // build group select $rootUser = DB_getItem($_TABLES['group_assignments'], 'ug_uid', 'ug_main_grp_id=1'); $usergroups = SEC_getUserGroups($rootUser); $usergroups[$LANG_MB01['non-logged-in']] = 998; uksort($usergroups, "strnatcasecmp"); $group_select = '<select id="group" name="group">' . LB; for ($i = 0; $i < count($usergroups); $i++) { $group_select .= '<option value="' . $usergroups[key($usergroups)] . '"'; if ($usergroups[key($usergroups)] == $menu->group_id) { $group_select .= ' selected="selected"'; } $group_select .= '>' . ucfirst(key($usergroups)) . '</option>' . LB; next($usergroups); } $group_select .= '</select>' . LB; $T = new Template($_CONF['path_layout'] . 'admin/menu'); $T->set_file(array('admin' => 'editmenu.thtml')); if ($mid == 1 || $mid == 2 || $mid == 3) { $disabled = ' readonly '; } else { $disabled = ''; } $menu_active_check = $menu->active == 1 ? ' checked="checked"' : ''; $T->set_var(array('group_select' => $group_select, 'menutype' => $menu->type, 'menutype_select' => $menuTypeSelect, 'menuactive' => $menu->active == 1 ? ' checked="checked"' : ' ', 'form_action' => $_CONF['site_admin_url'] . '/menu.php', 'menu_id' => $mid, 'menuname' => $menu->name, 'enabled' => $menu_active_check, 'disabled' => $disabled)); $T->parse('output', 'admin'); $retval .= $T->finish($T->get_var('output')); $retval .= COM_endBlock(COM_getBlockTemplate('_admin_block', 'footer')); return $retval; }
/** * Display "batch add" (import) form * * @return string HTML for import form * */ function display_batchAddform() { global $_CONF, $LANG28, $LANG_ADMIN, $_IMAGE_TYPE; require_once $_CONF['path_system'] . 'lib-admin.php'; $retval = ''; $token = SEC_createToken(); $retval .= COM_startBlock($LANG28[24], '', COM_getBlockTemplate('_admin_block', 'header')); $menu_arr = array(array('url' => $_CONF['site_admin_url'] . '/user.php', 'text' => $LANG28[11]), array('url' => $_CONF['site_admin_url'] . '/user.php?mode=batchdelete', 'text' => $LANG28[54]), array('url' => $_CONF['site_admin_url'], 'text' => $LANG_ADMIN['admin_home'])); $desc = '<p>' . $LANG28[25] . '</p>'; $icon = $_CONF['layout_url'] . '/images/icons/user.' . $_IMAGE_TYPE; $retval .= ADMIN_createMenu($menu_arr, $desc, $icon); $retval .= '<form action="' . $_CONF['site_admin_url'] . '/user.php" method="post" enctype="multipart/form-data"><div>' . $LANG28[29] . ': <input type="file" dir="ltr" name="importfile" size="40"' . XHTML . '>' . '<input type="hidden" name="mode" value="import"' . XHTML . '>' . '<input type="submit" name="submit" value="' . $LANG28[30] . '"' . XHTML . '><input type="hidden" name="' . CSRF_TOKEN . "\" value=\"{$token}\"" . XHTML . '></div></form>' . LB; $retval .= COM_endBlock(COM_getBlockTemplate('_admin_block', 'footer')); $retval = COM_createHTMLDocument($retval, array('pagetitle' => $LANG28[24])); return $retval; }
/** * Display upload form * * @param string $token Security token * @return string HTML for the upload form * */ function plugin_show_uploadform($token) { global $_CONF, $LANG28, $LANG32; $retval = ''; $retval .= COM_startBlock($LANG32[39], '', COM_getBlockTemplate('_admin_block', 'header')); // Check if all the requirements needed to upload a plugin are met $errors = plugin_upload_enabled(); if (count($errors) == 0) { // Show the upload form $retval .= '<p>' . $LANG32[40] . '</p>' . LB . '<form name="plugins_upload" action="' . $_CONF['site_admin_url'] . '/plugins.php" method="post" enctype="multipart/form-data">' . LB . '<div>' . $LANG28[29] . ': ' . '<input type="file" dir="ltr" name="plugin" size="40"' . XHTML . '> ' . LB . '<input type="submit" name="upload" value="' . $LANG32[41] . '"' . XHTML . '>' . LB . '<input type="hidden" name="' . CSRF_TOKEN . '" value="' . $token . '"' . XHTML . '>' . '</div>' . LB . '</form>' . LB; } else { // Show the errors $retval .= '<p>' . $LANG32[65] . '</p>' . LB . '<div><ul>' . LB; foreach ($errors as $key => $value) { $retval .= "<li>{$value}</li>"; } $retval .= '</ul></div>' . LB; } $retval .= COM_endBlock(COM_getBlockTemplate('_admin_block', 'footer')); return $retval; }
/** * View details of an entry * * @param int $id ID of the entry to display * @param int $page page number on the list (for the back link) * @return string HTML for the entry details * */ function _bb_viewEntry($id, $page = 1) { global $_CONF, $_TABLES, $LANG_ADMIN, $LANG_BAD_BEHAVIOR, $LANG_BB2_RESPONSE; $retval = ''; $donate = $LANG_BAD_BEHAVIOR['description']; if (DB_getItem($_TABLES['vars'], 'value', "name = 'bad_behavior2.donate'") == 1) { $donate .= '<p>' . $LANG_BAD_BEHAVIOR['donate_msg'] . '</p>' . LB; } $backlink = $_CONF['site_admin_url'] . '/plugins/' . BAD_BEHAVIOR_PLUGIN . '/index.php?mode=list'; if ($page > 1) { $backlink .= '&page=' . $page; } // writing the menu on top $menu_arr = array(array('url' => $_CONF['site_admin_url'] . '/plugins/bad_behavior2/index.php?mode=list', 'text' => 'Log Entries'), array('url' => $_CONF['site_admin_url'], 'text' => $LANG_ADMIN['admin_home'])); $retval .= COM_startBlock($LANG_BAD_BEHAVIOR['plugin_display_name'] . ' - ' . $LANG_BAD_BEHAVIOR['block_title_entry'], '', COM_getBlockTemplate('_admin_block', 'header')); $retval .= ADMIN_createMenu($menu_arr, $donate, $_CONF['site_url'] . '/bad_behavior2/images/bad_behavior2.png'); $retval .= '<br />'; $templates = new Template($_CONF['path'] . 'plugins/' . BAD_BEHAVIOR_PLUGIN . '/templates'); $templates->set_file('entry', 'entry.thtml'); $templates->set_var('id', $id); $templates->set_var('lang_ip', $LANG_BAD_BEHAVIOR['row_ip']); $templates->set_var('lang_user_agent', $LANG_BAD_BEHAVIOR['row_user_agent']); $templates->set_var('lang_referer', $LANG_BAD_BEHAVIOR['row_referer']); $templates->set_var('lang_response', $LANG_BAD_BEHAVIOR['row_response']); $templates->set_var('lang_method', $LANG_BAD_BEHAVIOR['row_method']); $templates->set_var('lang_protocol', $LANG_BAD_BEHAVIOR['row_protocol']); $templates->set_var('lang_date', $LANG_BAD_BEHAVIOR['row_date']); $templates->set_var('lang_back', $LANG_BAD_BEHAVIOR['link_back']); $templates->set_var('lang_denied_reason', $LANG_BAD_BEHAVIOR['denied_reason']); $templates->set_var('lang_search', $LANG_BAD_BEHAVIOR['search']); $id = DB_escapeString($id); $result = DB_query("SELECT ip,date,request_method,request_uri,server_protocol,http_headers,user_agent,request_entity,`key` FROM " . WP_BB_LOG . " WHERE id = '{$id}'"); $A = DB_fetchArray($result); foreach ($A as $key => $val) { $A[$key] = htmlspecialchars($val); } $templates->set_var('ip', $A['ip']); $templates->set_var('request_method', $A['request_method']); $templates->set_var('http_host', $A['request_uri']); $templates->set_var('server_protocol', $A['server_protocol']); $templates->set_var('http_referer', $A['http_headers']); $templates->set_var('http_user_agent', $A['user_agent']); $templates->set_var('http_response', $A['request_entity']); $templates->set_var('date_and_time', $A['date']); $templates->set_var('http_headers', $A['http_headers']); $templates->set_var('denied_reason', $LANG_BB2_RESPONSE[$A['key']]); if (!empty($_CONF['ip_lookup'])) { $iplookup = str_replace('*', $A['ip'], $_CONF['ip_lookup']); $templates->set_var('start_ip_lookup_anchortag', '<a href="' . $iplookup . '" title="' . $LANG_BAD_BEHAVIOR['title_lookup_ip'] . '">'); $templates->set_var('end_ip_lookup_anchortag', '</a>'); } else { $templates->set_var('start_ip_lookup_anchortag', ''); $templates->set_var('end_ip_lookup_anchortag', ''); } $templates->parse('output', 'entry'); $retval .= $templates->finish($templates->get_var('output')); $retval .= COM_endBlock(COM_getBlockTemplate('_admin_block', 'footer')); return $retval; }
/** * Displays a list of topics * Lists all the topics and their icons. * * @param string $token Security token to use in list * @return string HTML for the topic list */ function listTopics($token) { global $_CONF, $_TABLES, $LANG27, $LANG_ACCESS, $LANG_ADMIN, $_SCRIPTS; require_once $_CONF['path_system'] . 'lib-admin.php'; $_SCRIPTS->setJavaScriptFile('admin.topic', '/javascript/admin.topic.js'); $retval = ''; $retval .= COM_startBlock($LANG27[8], '', COM_getBlockTemplate('_admin_block', 'header')); $menu_arr = array(array('url' => $_CONF['site_admin_url'] . '/topic.php?mode=edit', 'text' => $LANG_ADMIN['create_new']), array('url' => $_CONF['site_admin_url'], 'text' => $LANG_ADMIN['admin_home'])); $retval .= ADMIN_createMenu($menu_arr, $LANG27[9], $_CONF['layout_url'] . "/images/icons/topic.png"); $header_arr[] = array('text' => $LANG_ADMIN['edit'], 'field' => 'edit', 'sort' => false); $header_arr[] = array('text' => $LANG27[10], 'field' => 'sortnum', 'sort' => true); $header_arr[] = array('text' => $LANG27[53], 'field' => 'image', 'sort' => false); $header_arr[] = array('text' => $LANG27[3], 'field' => 'topic', 'sort' => false); $header_arr[] = array('text' => $LANG27[2], 'field' => 'tid', 'sort' => true); $header_arr[] = array('text' => $LANG27[52], 'field' => 'story', 'sort' => false); $header_arr[] = array('text' => $LANG_ACCESS['access'], 'field' => 'access', 'sort' => false); $header_arr[] = array('text' => $LANG27[33], 'field' => 'inherit', 'sort' => false); $header_arr[] = array('text' => $LANG27[35], 'field' => 'hidden', 'sort' => false); $defsort_arr = array('field' => 'sortnum', 'direction' => 'asc'); $text_arr = array('has_extras' => true, 'form_url' => $_CONF['site_admin_url'] . '/topic.php'); $query_arr = array('table' => 'topics', 'sql' => "SELECT * FROM {$_TABLES['topics']} WHERE 1=1 ", 'query_fields' => array('topic'), 'default_filter' => COM_getPermSQL('AND')); $retval .= ADMIN_list('topics', 'ADMIN_getListField_topics', $header_arr, $text_arr, $query_arr, $defsort_arr, '', $token); $retval .= COM_endBlock(COM_getBlockTemplate('_admin_block', 'footer')); return $retval; }
case 'edit': echo COM_refresh($_CONF['site_url'] . "/admin/plugins/maps/marker_edit.php"); exit; break; //Edit marker sumission //Edit marker sumission case 'editsubmission': $id = $_REQUEST['id']; echo COM_refresh($_CONF['site_url'] . "/admin/plugins/maps/marker_edit.php?mode=editsubmission&mkid={$id}"); exit; break; case 'setgeolocation': MAPS_setGeoLocation(); echo COM_refresh($_CONF['site_url'] . "/admin/plugins/maps/index.php?msg=" . urlencode($LANG_MAPS_1['set_geo_location'])); exit; break; default: $display = COM_siteHeader('menu', $LANG_MAPS_1['plugin_name']); $display .= MAPS_admin_menu(); if (!empty($_REQUEST['msg'])) { $display .= COM_startBlock($LANG_MAPS_1['message'], '', 'blockheader-message.thtml'); $display .= $_REQUEST['msg']; $display .= COM_endBlock('blockfooter-message.thtml'); } $display .= '<img src="' . $_CONF['site_admin_url'] . '/plugins/maps/images/maps.png" alt="" align="left" hspace="5">' . '<p>' . $LANG_MAPS_1['plugin_doc'] . ' <a href="http://geeklog.fr/downloads/index.php/maps" target="_blank">' . $LANG_MAPS_1['online'] . '</a>.</p>'; $display .= '<br /><h1>' . $LANG_MAPS_1['maps_list'] . '</h1>'; $display .= '<p>' . $LANG_MAPS_1['you_can'] . '<a href="' . $_CONF['site_url'] . '/admin/plugins/maps/map_edit.php">' . $LANG_MAPS_1['create_map'] . '</a>.</p><p> </p>'; $display .= MAPS_listmaps(); $display .= COM_siteFooter(0); } COM_output($display);
} /* * Main Function */ $display = COM_siteHeader() . COM_startBlock($LANG_GUS00['install_header']); $action = isset($_GET['action']) ? COM_applyFilter($_GET['action']) : ''; if ($action === 'install') { if (plugin_install_gus()) { $img_url = $_CONF['site_url'] . '/gus/images/' . $_GUS_IMG_name; $blockManager = $_CONF['site_admin_url'] . '/block.php'; $admin_url = $_CONF['site_admin_url'] . '/plugins/gus/index.php'; $import_url = $_CONF['site_admin_url'] . '/plugins/gus/import.php'; $readme_url = $_CONF['site_admin_url'] . '/plugins/gus/readme.html'; $display .= "<img align=left src=\"{$img_url}\" alt='GUS Icon' width=48 height=48>" . '<p>I have created all the necessary tables and activated the Who\'s Online block. ' . "If you do not want to use it, then you may disable it by changing the GUS config.php file located in the plugins/gus directory. " . "<p>To configure GUS, go to the <a href=\"{$admin_url}\">admin page</a>.\n\t\t\tInformation about the various configuration options\tmay be found in the \n\t\t\t<a href=\"{$readme_url}#config\">README file</a>." . "<p>If you would like to support development of this plugin, there are some suggestions in the \n\t\t\t<a href=\"{$readme_url}#you\">README file</a>."; // check for old stats to see if we should add an import link if ($_ST_plugin_name != '') { $stats_version = DB_getItem($_TABLES['plugins'], 'pi_version', "pi_name = '{$_ST_plugin_name}'"); $display .= "<hr>I notice you have the stats plugin version {$stats_version} installed as '{$_ST_plugin_name}'. "; if ($stats_version !== '1.3') { $display .= "<p>If you had version 1.3 installed, I could import its data. \n\t\t\t\t\tIf you update this in the future, you can import its data from \n\t\t\t\t\tthe <a href=\"{$admin_url}\">admin page</a>."; } else { $display .= "<p>You may import its data into GUS using the <a href=\"{$import_url}\">import page</a>."; } } } else { plugin_uninstall_gus(); $display .= 'For some reason, installation failed. Check your error logs.'; } } $display .= COM_endBlock() . COM_siteFooter(TRUE); echo $display;
/** * Main Form used for Custom membership when member is registering * * Note: Requires a file custom/memberdetail.thtml in every theme that is * installed on the site! * * @param string $msg an error message to display or the word 'new' * @return string HTML for the registration form * */ function CUSTOM_userForm($msg = '') { global $_CONF, $_TABLES, $LANG04; $retval = ''; if (!empty($msg) && $msg != 'new') { $retval .= COM_startBlock($LANG04[21]) . $msg . COM_endBlock(); } $post_url = $_CONF['site_url'] . '/users.php'; $postmode = 'create'; $submitbutton = '<input type="submit" value="Register Now!"' . XHTML . '>'; $message = "<blockquote style=\"padding-top:10px;\"><b>Please complete the application below. Once you have completed the application, click the Register Now! button and the application will be processed immediately.</b></blockquote>"; $user_templates = COM_newTemplate($_CONF['path_layout'] . 'custom'); $user_templates->set_file('memberdetail', 'memberdetail.thtml'); $user_templates->set_var('post_url', $post_url); $user_templates->set_var('startblock', COM_startBlock("Custom Registration Example")); $user_templates->set_var('message', $message); $user_templates->set_var('USERNAME', $LANG04[2]); $user_templates->set_var('USERNAME_HELP', "Name to be used when accessing this site"); $username = ''; if (isset($_POST['username'])) { $username = COM_applyFilter($_POST['username']); } $user_templates->set_var('username', $username); $user_templates->set_var('EMAIL', $LANG04[5]); $user_templates->set_var('EMAIL_HELP', $LANG04[33]); $email = ''; if (isset($_POST['email'])) { $email = COM_applyFilter($_POST['email']); } $user_templates->set_var('email', $email); $user_templates->set_var('EMAIL_CONF', $LANG04[124]); $user_templates->set_var('EMAIL_CONF_HELP', $LANG04[126]); $email_conf = ''; if (isset($_POST['email_conf'])) { $email_conf = COM_applyFilter($_POST['email_conf']); } $user_templates->set_var('email_conf', $email_conf); $user_templates->set_var('FULLNAME', $LANG04[3]); $user_templates->set_var('FULLNAME_HELP', $LANG04[34]); $fullname = ''; if (isset($_POST['fullname'])) { $fullname = strip_tags($_POST['fullname']); } $user_templates->set_var('fullname', $fullname); $user_templates->set_var('user_id', $user); $user_templates->set_var('postmode', $postmode); $user_templates->set_var('submitbutton', $submitbutton); $user_templates->set_var('endblock', COM_endBlock()); $user_templates->parse('output', 'memberdetail'); $retval .= $user_templates->finish($user_templates->get_var('output')); return $retval; }
// | but WITHOUT ANY WARRANTY; without even the implied warranty of | // | MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the | // | GNU General Public License for more details. | // | | // | You should have received a copy of the GNU General Public License | // | along with this program; if not, write to the Free Software Foundation, | // | Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. | // | | // +--------------------------------------------------------------------------+ require_once '../../../lib-common.php'; require_once $_CONF['path'] . '/plugins/calendar/autoinstall.php'; USES_lib_install(); if (!SEC_inGroup('Root')) { // Someone is trying to illegally access this page COM_errorLog("Someone has tried to illegally access the Calendar install/uninstall page. User id: {$_USER['uid']}, Username: {$_USER['username']}, IP: {$REMOTE_ADDR}", 1); $display = COM_siteHeader('menu', $LANG_ACCESS['accessdenied']) . COM_startBlock($LANG_ACCESS['accessdenied']) . $LANG_ACCESS['plugin_access_denied_msg'] . COM_endBlock() . COM_siteFooter(); echo $display; exit; } /** * Main Function */ if (SEC_checkToken()) { $action = COM_applyFilter($_GET['action']); if ($action == 'install') { if (plugin_install_calendar()) { // Redirects to the plugin editor echo COM_refresh($_CONF['site_admin_url'] . '/plugins.php?msg=44'); exit; } else { echo COM_refresh($_CONF['site_admin_url'] . '/plugins.php?msg=72');
function _mg_profileblocksdisplay($uid) { global $MG_albums, $_TABLES, $_MG_CONF, $_CONF, $LANG_MG10, $_USER; $retval = ''; if ($_MG_CONF['profile_hook'] != 1) { return ''; } if (COM_isAnonUser() && $_MG_CONF['loginrequired'] == 1) { return ''; } if ($uid == '') { return ''; } $template = new Template(MG_getTemplatePath(0)); $template->set_file(array('mblock' => 'mediablock.thtml', 'mrow' => 'mediarow.thtml')); $username = DB_getItem($_TABLES['users'], 'username', 'uid=' . (int) $uid); if ($username == '') { return ''; } $template->set_var('start_block_last10mediaitems', COM_startBlock($LANG_MG10['last_10'] . $username)); $template->set_var('start_block_useralbums', COM_startBlock($LANG_MG10['albums_owned'] . $username)); $template->set_var('lang_thumbnail', $LANG_MG10['thumbnail']); $template->set_var('lang_title', $LANG_MG10['title']); $template->set_var('lang_album', $LANG_MG10['album']); $template->set_var('lang_album_description', $LANG_MG10['album_desc']); $template->set_var('lang_upload_date', $LANG_MG10['upload_date']); $template->set_var('end_block', COM_endBlock()); $class = 0; $sql = "SELECT a.album_id,m.media_upload_time,m.media_id,m.media_filename,m.mime_type,m.media_mime_ext,m.media_title,m.remote_media,m.media_type FROM {$_TABLES['mg_albums']} as a LEFT JOIN {$_TABLES['mg_media_albums']} as ma\n on a.album_id=ma.album_id LEFT JOIN {$_TABLES['mg_media']} as m on ma.media_id=m.media_id WHERE\n m.media_user_id=" . (int) $uid . " AND a.hidden=0 " . COM_getPermSQL('and') . " ORDER BY m.media_upload_time DESC LIMIT 5"; $result = DB_query($sql); $mCount = 0; while ($row = DB_fetchArray($result)) { $album_id = $row['album_id']; $album_title = strip_tags($MG_albums[$album_id]->title); $upload_time = MG_getUserDateTimeFormat($row['media_upload_time']); $url_media = $_MG_CONF['site_url'] . '/media.php?s=' . $row['media_id']; $url_album = $_MG_CONF['site_url'] . '/album.php?aid=' . $album_id; switch ($row['media_type']) { case 0: // standard image $msize = false; foreach ($_MG_CONF['validExtensions'] as $ext) { if (file_exists($_MG_CONF['path_mediaobjects'] . 'tn/' . $row['media_filename'][0] . '/' . $row['media_filename'] . $ext)) { $url_thumb = $_MG_CONF['mediaobjects_url'] . '/tn/' . $row['media_filename'][0] . '/' . $row['media_filename'] . $ext; $msize = @getimagesize($_MG_CONF['path_mediaobjects'] . 'disp/' . $row['media_filename'][0] . '/' . $row['media_filename'] . $ext); break; } } break; case 1: // video file switch ($row['mime_type']) { case 'application/x-shockwave-flash': $url_thumb = $_MG_CONF['mediaobjects_url'] . '/flash.png'; $msize = @getimagesize($_MG_CONF['path_mediaobjects'] . 'flash.png'); break; case 'video/quicktime': case 'video/mpeg': case 'video/x-m4v': $url_thumb = $_MG_CONF['mediaobjects_url'] . '/quicktime.png'; $msize = @getimagesize($_MG_CONF['path_mediaobjects'] . 'quicktime.png'); break; case 'video/x-ms-asf': case 'video/x-ms-wvx': case 'video/x-ms-wm': case 'video/x-ms-wmx': case 'video/x-msvideo': case 'application/x-ms-wmz': case 'application/x-ms-wmd': $url_thumb = $_MG_CONF['mediaobjects_url'] . '/wmp.png'; $msize = @getimagesize($_MG_CONF['path_mediaobjects'] . 'wmp.png'); break; default: $url_thumb = $_MG_CONF['mediaobjects_url'] . '/video.png'; $msize = @getimagesize($_MG_CONF['path_mediaobjects'] . 'video.png'); break; } break; case 2: // music file $url_thumb = $_MG_CONF['mediaobjects_url'] . '/audio.png'; $msize = @getimagesize($_MG_CONF['path_mediaobjects'] . 'audio.png'); break; case 4: // other files switch ($row['media_mime_ext']) { case 'zip': case 'arj': case 'rar': case 'gz': $url_thumb = $_MG_CONF['mediaobjects_url'] . '/zip.png'; $msize = @getimagesize($_MG_CONF['path_mediaobjects'] . 'zip.png'); break; case 'pdf': $url_thumb = $_MG_CONF['mediaobjects_url'] . '/pdf.png'; $msize = @getimagesize($_MG_CONF['path_mediaobjects'] . 'pdf.png'); break; default: $url_thumb = $_MG_CONF['mediaobjects_url'] . '/generic.png'; $msize = @getimagesize($_MG_CONF['path_mediaobjects'] . 'generic.png'); break; } break; case 5: $url_thumb = $_MG_CONF['mediaobjects_url'] . '/remote.png'; $msize = @getimagesize($_MG_CONF['path_mediaobjects'] . 'remote.png'); break; } if ($msize == false) { $url_thumb = $_MG_CONF['mediaobjects_url'] . '/placeholder.svg'; $msize = array(200, 200); // @getimagesize($_MG_CONF['path_mediaobjects'] . 'missing.png'); } $imgwidth = $msize[0]; $imgheight = $msize[1]; if ($imgwidth > $imgheight) { $ratio = $imgwidth / 120; $width = 120; $height = round($imgheight / $ratio); } else { $ratio = $imgheight / 120; $height = 120; $width = round($imgwidth / $ratio); } $template->set_var('mediaitem_image_thumb', $url_thumb); $template->set_var('mediaitem_image_height', $height); $template->set_var('mediaitem_image_width', $width); $template->set_var('mediaitem_image', '<img src="' . $url_thumb . '" alt="" style="width:' . $width . 'px;height:' . $height . 'px" />'); $template->set_var('mediaitem_begin_href', '<a href="' . $url_media . '">'); $template->set_var('mediaitem_title', strip_tags($row['media_title'])); $template->set_var('mediaitem_end_href', '</a>'); $template->set_var('mediaitem_album_begin_href', '<a href="' . $url_album . '">'); $template->set_var('mediaitem_album_title', $album_title); $template->set_var('mediaitem_date', $upload_time[0]); $template->set_var('rowclass', $class % 2 ? '1' : '2'); $template->parse('mediaitem_row', 'mrow', true); $class++; $mCount++; } // end of media block $template->parse('output', 'mblock', true); if ($mCount != 0) { $retval .= $template->finish($template->get_var('output')); } $template = new Template(MG_getTemplatePath(0)); $template->set_file(array('mblock' => 'albumblock.thtml', 'arow' => 'albumrow.thtml')); $template->set_var('start_block_useralbums', COM_startBlock($LANG_MG10['albums_owned'] . $username)); $template->set_var('lang_thumbnail', $LANG_MG10['thumbnail']); $template->set_var('lang_album', $LANG_MG10['album']); $template->set_var('lang_album_description', $LANG_MG10['album_desc']); $template->set_var('end_block', COM_endBlock()); $sql = "SELECT album_id,album_title,album_desc,tn_attached " . "FROM " . $_TABLES['mg_albums'] . " WHERE owner_id=" . (int) $uid . " AND hidden=0 " . COM_getPermSQL('and') . " ORDER BY last_update DESC LIMIT 10"; $result = DB_query($sql); $aCount = 0; while ($row = DB_fetchArray($result)) { $aid = $row['album_id']; $url_album = $_MG_CONF['site_url'] . '/album.php?aid=' . $row['album_id']; $url_thumb = ''; $msize = false; if ($row['tn_attached'] == 1) { $msize = false; foreach ($_MG_CONF['validExtensions'] as $ext) { if (file_exists($_MG_CONF['path_mediaobjects'] . 'covers/cover_' . $row['album_id'] . $ext)) { $url_thumb = $_MG_CONF['mediaobjects_url'] . '/covers/cover_' . $row['album_id'] . $ext; $msize = @getimagesize($_MG_CONF['path_mediaobjects'] . 'covers/cover_' . $row['album_id'] . $ext); break; } } } else { $cover_file = $MG_albums[$aid]->findCover(); if ($cover_file != '') { if (substr($cover_file, 0, 3) == 'tn_') { $offset = 3; } else { $offset = 0; } $msize = false; foreach ($_MG_CONF['validExtensions'] as $ext) { if (file_exists($_MG_CONF['path_mediaobjects'] . 'tn/' . $cover_file[$offset] . '/' . $cover_file . $ext)) { $url_thumb = $_MG_CONF['mediaobjects_url'] . '/tn/' . $cover_file[$offset] . '/' . $cover_file . $ext; $msize = @getimagesize($_MG_CONF['path_mediaobjects'] . 'tn/' . $cover_file[$offset] . '/' . $cover_file . $ext); break; } } } } if ($msize == false || $url_thumb == '') { $url_thumb = $_MG_CONF['mediaobjects_url'] . '/placeholder.svg'; $msize = array(200, 200); // @getimagesize($_MG_CONF['path_mediaobjects'] . 'empty.png'); } $imgwidth = $msize[0]; $imgheight = $msize[1]; if ($imgwidth == 0 || $imgheight == 0) { $url_thumb = $_MG_CONF['mediaobjects_url'] . '/placeholder.svg'; $msize = array(200, 200); // @getimagesize($_MG_CONF['path_mediaobjects'] . 'empty.png'); $imgwidth = $msize[0]; $imgheight = $msize[1]; if ($imgwidth == 0 || $imgheight == 0) { continue; } } if ($imgwidth > $imgheight) { $ratio = $imgwidth / 120; $width = 120; $height = round($imgheight / $ratio); } else { $ratio = $imgheight / 120; $height = 120; $width = round($imgwidth / $ratio); } $template->set_var('album_cover_thumb', $url_thumb); $template->set_var('album_cover_height', $height); $template->set_var('album_cover_width', $width); $template->set_var('album_cover', '<img src="' . $url_thumb . '" alt="" style="width:' . $width . 'px;height:' . $height . 'px;border:none;" />'); $template->set_var('album_begin_href', '<a href="' . $url_album . '">'); $template->set_var('album_title', strip_tags($row['album_title'])); $template->set_var('album_end_href', '</a>'); $template->set_var('album_desc', strip_tags($row['album_desc'])); $template->set_var('rowclass', $class % 2 ? '1' : '2'); $template->parse('useralbum_row', 'arow', true); $class++; $aCount++; } $template->parse('output', 'mblock', true); if ($aCount != 0) { $retval .= $template->finish($template->get_var('output')); } return $retval; }
/** * Display form to email a story to someone. * * @param string $sid ID of article to email * @return string HTML for email story form * */ function mailstoryform($sid, $to = '', $toemail = '', $from = '', $fromemail = '', $shortmsg = '', $msg = 0) { global $_CONF, $_TABLES, $_USER, $LANG08, $LANG_LOGIN; require_once $_CONF['path_system'] . 'lib-story.php'; $retval = ''; if (COM_isAnonUser() && ($_CONF['loginrequired'] == 1 || $_CONF['emailstoryloginrequired'] == 1)) { $retval = COM_startBlock($LANG_LOGIN[1], '', COM_getBlockTemplate('_msg_block', 'header')); $login = new Template($_CONF['path_layout'] . 'submit'); $login->set_file(array('login' => 'submitloginrequired.thtml')); $login->set_var('xhtml', XHTML); $login->set_var('site_url', $_CONF['site_url']); $login->set_var('site_admin_url', $_CONF['site_admin_url']); $login->set_var('layout_url', $_CONF['layout_url']); $login->set_var('login_message', $LANG_LOGIN[2]); $login->set_var('lang_login', $LANG_LOGIN[3]); $login->set_var('lang_newuser', $LANG_LOGIN[4]); $login->parse('output', 'login'); $retval .= $login->finish($login->get_var('output')); $retval .= COM_endBlock(COM_getBlockTemplate('_msg_block', 'footer')); return $retval; } $story = new Story(); $result = $story->loadFromDatabase($sid, 'view'); if ($result != STORY_LOADED_OK) { return COM_refresh($_CONF['site_url'] . '/index.php'); } if ($msg > 0) { $retval .= COM_showMessage($msg); } if (empty($from) && empty($fromemail)) { if (!COM_isAnonUser()) { $from = COM_getDisplayName($_USER['uid'], $_USER['username'], $_USER['fullname']); $fromemail = DB_getItem($_TABLES['users'], 'email', "uid = {$_USER['uid']}"); } } $mail_template = new Template($_CONF['path_layout'] . 'profiles'); $mail_template->set_file('form', 'contactauthorform.thtml'); $mail_template->set_var('xhtml', XHTML); $mail_template->set_var('site_url', $_CONF['site_url']); $mail_template->set_var('site_admin_url', $_CONF['site_admin_url']); $mail_template->set_var('layout_url', $_CONF['layout_url']); $mail_template->set_var('start_block_mailstory2friend', COM_startBlock($LANG08[17])); $mail_template->set_var('lang_title', $LANG08[31]); $mail_template->set_var('story_title', $story->displayElements('title')); $url = COM_buildUrl($_CONF['site_url'] . '/article.php?story=' . $sid); $mail_template->set_var('story_url', $url); $link = COM_createLink($story->displayElements('title'), $url); $mail_template->set_var('story_link', $link); $mail_template->set_var('lang_fromname', $LANG08[20]); $mail_template->set_var('name', $from); $mail_template->set_var('lang_fromemailaddress', $LANG08[21]); $mail_template->set_var('email', $fromemail); $mail_template->set_var('lang_toname', $LANG08[18]); $mail_template->set_var('toname', $to); $mail_template->set_var('lang_toemailaddress', $LANG08[19]); $mail_template->set_var('toemail', $toemail); $mail_template->set_var('lang_cc', $LANG08[36]); $mail_template->set_var('lang_cc_description', $LANG08[37]); $mail_template->set_var('lang_shortmessage', $LANG08[27]); $mail_template->set_var('shortmsg', htmlspecialchars($shortmsg)); $mail_template->set_var('lang_warning', $LANG08[22]); $mail_template->set_var('lang_sendmessage', $LANG08[16]); $mail_template->set_var('story_id', $sid); $mail_template->set_var('end_block', COM_endBlock()); PLG_templateSetVars('emailstory', $mail_template); $mail_template->parse('output', 'form'); $retval .= $mail_template->finish($mail_template->get_var('output')); return $retval; }
/** * Provide an interface to configure backups * * @return string HTML for configuration function */ function DBADMIN_configBackup() { global $_TABLES, $_CONF, $_VARS, $LANG_LGLIB, $pi_title, $_DB_table_prefix; /*$res = DB_query("SHOW TABLES LIKE '{$_DB_table_prefix}%'"); $mysql_tables = array(); while ($A = DB_fetchArray($res)) { $mysql_tables[] = $A[0]; } // Select only tables that we actually use $tablenames = array_intersect($mysql_tables, $_TABLES); */ $tablenames = $_TABLES; $exclude_tables = @unserialize($_VARS['lglib_dbback_exclude']); if (!is_array($exclude_tables)) { $exclude_tables = array(); } $curr_interval = (int) $_VARS['lglib_dbback_cron']; if ($curr_interval == '-1') { $interval_disabled = ' disbled="disabled" '; $disable_cron = ' checked="checked" '; } else { $interval_disabled = ''; $disable_cron = ''; } $chk_gzip = isset($_VARS['lglib_dbback_gzip']) && $_VARS['lglib_dbback_gzip'] == 1 ? ' checked="checked" ' : ''; $max_files = (int) $_VARS['lglib_dbback_files']; $cols = 3; $retval = DBADMIN_menu($LANG_LGLIB['instr_db_bkup_config']); $T = new Template(LGLIB_PI_PATH . '/templates'); $T->set_file('dbform', 'db_backup.thtml'); $col = 0; $included = ''; $excluded = ''; $include_tables = array_diff($tablenames, $exclude_tables); foreach ($include_tables as $key => $name) { $included .= "<option value=\"{$name}\">{$name}</option>\n"; } foreach ($exclude_tables as $key => $name) { $excluded .= "<option value=\"{$name}\">{$name}</option>\n"; } $T->set_var(array('included_tables' => $included, 'excluded_tables' => $excluded, 'interval_disabled' => $interval_disabled, 'curr_interval' => $curr_interval, 'chk_disable_cron' => $disable_cron, 'max_files' => $max_files, 'chk_gzip' => $chk_gzip)); $T->parse('output', 'dbform'); $retval .= $T->finish($T->get_var('output')); $retval .= COM_endBlock(COM_getBlockTemplate('_admin_block', 'footer')); return $retval; }
case 'save': // 保存 $retval = LIB_Save($pi_name, $edt_flg, $navbarMenu, $menuno); $information['pagetitle'] = $retval['title']; $display .= $retval['display']; break; case 'delete': // 削除 $display .= LIB_delete($pi_name); break; case 'copy': //コピー //コピー case 'edit': // 編集 if (!empty($id)) { $information['pagetitle'] = $LANG_DATABOX_ADMIN['piname'] . $LANG_DATABOX_ADMIN['edit']; $display .= LIB_Edit($pi_name, $id, $edt_flg, $msg, "", $mode); } break; default: // 初期表示、一覧表示 $information['pagetitle'] = $LANG_DATABOX_ADMIN['piname']; if (isset($msg)) { $display .= COM_showMessage($msg, $pi_name); } $display .= LIB_List($pi_name); } $display = COM_startBlock($LANG_DATABOX_ADMIN['piname'], '', COM_getBlockTemplate('_admin_block', 'header')) . ppNavbarjp($navbarMenu, $LANG_DATABOX_admin_menu[$menuno]) . LIB_Menu($pi_name) . $display . COM_endBlock(COM_getBlockTemplate('_admin_block', 'footer')); $display = DATABOX_displaypage($pi_name, '_admin', $display, $information); COM_output($display);
/** * Create the banner list depending on the category given * * @param array $message message(s) to display * @return string the banner page * */ function banner_list($message) { global $_CONF, $_TABLES, $_BAN_CONF, $LANG_BANNER_ADMIN, $LANG_BANNER, $LANG_BANNER_STATS; $cid = $_BAN_CONF['root']; $display = ''; if (isset($_GET['category'])) { $cid = strip_tags(COM_stripslashes($_GET['category'])); } elseif (isset($_POST['category'])) { $cid = strip_tags(COM_stripslashes($_POST['category'])); } $cat = addslashes($cid); $page = 0; if (isset($_GET['page'])) { $page = COM_applyFilter($_GET['page'], true); } if ($page == 0) { $page = 1; } if (empty($cid)) { if ($page > 1) { $page_title = sprintf($LANG_BANNER[114] . ' (%d)', $page); } else { $page_title = $LANG_BANNER[114]; } } else { if ($cid == $_BAN_CONF['root']) { $category = $LANG_BANNER['root']; } else { $category = DB_getItem($_TABLES['bannercategories'], 'category', "cid = '{$cat}'"); } if ($page > 1) { $page_title = sprintf($LANG_BANNER[114] . ': %s (%d)', $category, $page); } else { $page_title = sprintf($LANG_BANNER[114] . ': %s', $category); } } // Check has access to this category if ($cid != $_BAN_CONF['root']) { $result = DB_query("SELECT owner_id,group_id,perm_owner,perm_group,perm_members,perm_anon FROM {$_TABLES['bannercategories']} WHERE cid='{$cat}'"); $A = DB_fetchArray($result); if (SEC_hasAccess($A['owner_id'], $A['group_id'], $A['perm_owner'], $A['perm_group'], $A['perm_members'], $A['perm_anon']) < 2) { $display .= COM_siteHeader('menu', $page_title); $display .= COM_showMessage(5, 'banner'); $display .= COM_siteFooter(); echo $display; exit; } } $display .= COM_siteHeader('menu', $page_title); if (is_array($message) && !empty($message[0])) { $display .= COM_startBlock($message[0], '', COM_getBlockTemplate('_msg_block', 'header')); $display .= $message[1]; $display .= COM_endBlock(COM_getBlockTemplate('_msg_block', 'footer')); } else { if (isset($_REQUEST['msg'])) { $msg = COM_applyFilter($_REQUEST['msg'], true); if ($msg > 0) { $display .= COM_showMessage($msg, 'banner'); } } } $bannerlist = new Template($_CONF['path'] . 'plugins/banner/templates/'); $bannerlist->set_file(array('bannerlist' => 'banner.thtml', 'catbanner' => 'categorybanner.thtml', 'banner' => 'bannerdetails.thtml', 'catnav' => 'categorynavigation.thtml', 'catrow' => 'categoryrow.thtml', 'catcol' => 'categorycol.thtml', 'actcol' => 'categoryactivecol.thtml', 'pagenav' => 'pagenavigation.thtml', 'catdrop' => 'categorydropdown.thtml')); $bannerlist->set_var('xhtml', XHTML); $bannerlist->set_var('blockheader', COM_startBlock($LANG_BANNER[114])); $bannerlist->set_var('layout_url', $_CONF['layout_url']); if ($_BAN_CONF['bannercols'] > 0) { // Create breadcrumb trail $bannerlist->set_var('breadcrumbs', banner_breadcrumbs($_BAN_CONF['root'], $cid)); // Set dropdown for category jump $bannerlist->set_var('lang_go', $LANG_BANNER[124]); $bannerlist->set_var('banner_dropdown', banner_select_box(2, $cid)); // Show categories $sql = "SELECT cid,pid,category,description FROM {$_TABLES['bannercategories']} WHERE pid='{$cat}'"; $sql .= COM_getLangSQL('cid', 'AND'); $sql .= COM_getPermSQL('AND') . " ORDER BY category"; $result = DB_query($sql); $nrows = DB_numRows($result); if ($nrows > 0) { $bannerlist->set_var('lang_categories', $LANG_BANNER_ADMIN[14]); for ($i = 1; $i <= $nrows; $i++) { $C = DB_fetchArray($result); // Get number of child banner user can see in this category $ccid = addslashes($C['cid']); $result1 = DB_query("SELECT COUNT(*) AS count FROM {$_TABLES['banner']} WHERE cid='{$ccid}'" . COM_getPermSQL('AND')); $D = DB_fetchArray($result1); // Get number of child categories user can see in this category $result2 = DB_query("SELECT COUNT(*) AS count FROM {$_TABLES['bannercategories']} WHERE pid='{$ccid}'" . COM_getPermSQL('AND')); $E = DB_fetchArray($result2); // Format numbers for display $display_count = ''; // don't show zeroes if ($E['count'] > 0) { $display_count = COM_numberFormat($E['count']); } if ($E['count'] > 0 && $D['count'] > 0) { $display_count .= ', '; } if ($D['count'] > 0) { $display_count .= COM_numberFormat($D['count']); } // add brackets if child items exist if ($display_count != '') { $display_count = '(' . $display_count . ')'; } $bannerlist->set_var('category_name', $C['category']); if ($_BAN_CONF['show_category_descriptions']) { $bannerlist->set_var('category_description', $C['description']); } else { $bannerlist->set_var('category_description', ''); } $bannerlist->set_var('category_link', $_CONF['site_url'] . '/banner/index.php?category=' . urlencode($C['cid'])); $bannerlist->set_var('category_count', $display_count); $bannerlist->set_var('width', floor(100 / $_BAN_CONF['bannercols'])); if (!empty($cid) && $cid == $C['cid']) { $bannerlist->parse('category_col', 'actcol', true); } else { $bannerlist->parse('category_col', 'catcol', true); } if ($i % $_BAN_CONF['bannercols'] == 0) { $bannerlist->parse('category_row', 'catrow', true); $bannerlist->set_var('category_col', ''); } } if ($nrows % $_BAN_CONF['bannercols'] != 0) { $bannerlist->parse('category_row', 'catrow', true); } $bannerlist->parse('category_navigation', 'catnav', true); } else { $bannerlist->set_var('category_navigation', ''); } } else { $bannerlist->set_var('category_navigation', ''); } if ($_BAN_CONF['bannercols'] == 0) { $bannerlist->set_var('category_dropdown', ''); } else { $bannerlist->parse('category_dropdown', 'catdrop', true); } $bannerlist->set_var('site_url', $_CONF['site_url']); $bannerlist->set_var('cid', $cid); $bannerlist->set_var('cid_plain', $cid); $bannerlist->set_var('cid_encoded', urlencode($cid)); $bannerlist->set_var('lang_addabanner', $LANG_BANNER[116]); // Build SQL for banner $sql = 'SELECT bid,cid,url,description,title,hits,owner_id,group_id,perm_owner,perm_group,perm_members,perm_anon'; $from_where = " FROM {$_TABLES['banner']}"; if ($_BAN_CONF['bannercols'] > 0) { if (!empty($cid)) { $from_where .= " WHERE cid='" . addslashes($cid) . "'"; } else { $from_where .= " WHERE cid=''"; } $from_where .= ' AND (publishstart IS NULL OR publishstart < NOW()) and (publishend IS NULL OR publishend > NOW())'; $from_where .= COM_getPermSQL('AND'); } else { $from_where .= COM_getPermSQL(); } $order = ' ORDER BY cid ASC,title'; $limit = ''; if ($_BAN_CONF['bannerperpage'] > 0) { if ($page < 1) { $start = 0; } else { $start = ($page - 1) * $_BAN_CONF['bannerperpage']; } $limit = ' LIMIT ' . $start . ',' . $_BAN_CONF['bannerperpage']; } $result = DB_query($sql . $from_where . $order . $limit); $nrows = DB_numRows($result); if ($nrows == 0) { if ($cid == $_BAN_CONF['root'] && $page <= 1 && $_BAN_CONF['show_top10']) { $result = DB_query("SELECT bid,url,title,description,hits,owner_id,group_id,perm_owner,perm_group,perm_members,perm_anon FROM {$_TABLES['banner']} WHERE (hits > 0) AND (publishstart IS NULL OR publishstart < NOW()) and (publishend IS NULL OR publishend > NOW())" . COM_getPermSQL('AND') . " ORDER BY hits DESC LIMIT 10"); $nrows = DB_numRows($result); if ($nrows > 0) { $bannerlist->set_var('banner_details', ''); $bannerlist->set_var('banner_category', $LANG_BANNER_STATS['stats_headline']); for ($i = 0; $i < $nrows; $i++) { $A = DB_fetchArray($result); prepare_banner_item($A, $bannerlist); $bannerlist->parse('banner_details', 'banner', true); } $bannerlist->parse('category_banner', 'catbanner', true); } } $bannerlist->set_var('page_navigation', ''); } else { $currentcid = ''; for ($i = 0; $i < $nrows; $i++) { $A = DB_fetchArray($result); if (strcasecmp($A['cid'], $currentcid) != 0) { // print the category and banner if ($i > 0) { $bannerlist->parse('category_banner', 'catbanner', true); $bannerlist->set_var('banner_details', ''); } $currentcid = $A['cid']; $currentcategory = DB_getItem($_TABLES['bannercategories'], 'category', "cid = '" . addslashes($currentcid) . "'"); $bannerlist->set_var('banner_category', $currentcategory); } prepare_banner_item($A, $bannerlist); $bannerlist->parse('banner_details', 'banner', true); } $bannerlist->parse('category_banner', 'catbanner', true); $result = DB_query('SELECT COUNT(*) AS count ' . $from_where); list($numbanner) = DB_fetchArray($result); $pages = 0; if ($_BAN_CONF['bannerperpage'] > 0) { $pages = (int) ($numbanner / $_BAN_CONF['bannerperpage']); if ($numbanner % $_BAN_CONF['bannerperpage'] > 0) { $pages++; } } if ($pages > 0) { if ($_BAN_CONF['bannercols'] > 0 && !empty($currentcid)) { $catbanner = '?category=' . urlencode($currentcid); } else { $catbanner = ''; } $bannerlist->set_var('page_navigation', COM_printPageNavigation($_CONF['site_url'] . '/banner/index.php' . $catbanner, $page, $pages)); } else { $bannerlist->set_var('page_navigation', ''); } } $bannerlist->set_var('blockfooter', COM_endBlock()); $bannerlist->parse('output', 'bannerlist'); $display .= $bannerlist->finish($bannerlist->get_var('output')); return $display; }
} else { $theforum = ''; } if ($op == '') { $bannedsql = DB_query("SELECT * FROM {$_TABLES['gf_banned_ip']} ORDER BY host_ip DESC"); $bannum = DB_numRows($bannedsql); $p = new Template($_CONF['path_layout'] . 'forum/layout/admin'); $p->set_file(array('page' => 'banip_mgmt.thtml', 'records' => 'ip_records.thtml')); if ($bannum == 0) { $p->set_var('alertmessage', $LANG_GF96['noips']); $p->set_var('showalert', ''); } else { $p->set_var('showalert', 'none'); } $p->set_var('phpself', $_CONF['site_admin_url'] . '/plugins/forum/ips.php'); $p->set_var('LANG_IP', $LANG_GF96['ipbanned']); $p->set_var('LANG_Actions', $LANG_GF01['ACTIONS']); $i = 1; while ($A = DB_fetchArray($bannedsql)) { $p->set_var('ip', $A['host_ip']); $p->set_var('unban', $LANG_GF96['unban']); $p->set_var('csscode', $i); $p->parse('ip_records', 'records', true); $i = $i == 1 ? 2 : 1; } $p->parse('output', 'page'); echo $p->finish($p->get_var('output')); } echo COM_endBlock(); echo adminfooter(); echo COM_siteFooter();
} else { if (strpos($referrer, $_CONF['site_url']) !== false) { $allowed = 1; } } if ($allowed == 0) { return; } $mid = isset($_GET['mid']) ? COM_applyFilter($_GET['mid']) : ''; if (empty($mid)) { return; } $aid = DB_getItem($_TABLES['mg_media_albums'], 'album_id', 'media_id="' . addslashes($mid) . '"'); $album_data = MG_getAlbumData($aid, array('album_id'), true); if ($album_data['access'] == 0) { $display = COM_startBlock($LANG_ACCESS['accessdenied'], '', COM_getBlockTemplate('_msg_block', 'header')) . '<br' . XHTML . '>' . $LANG_MG00['access_denied_msg'] . COM_endBlock(COM_getBlockTemplate('_msg_block', 'footer')); $display = MG_createHTMLDocument($display); COM_output($display); exit; } $sql = "SELECT * FROM {$_TABLES['mg_media']} WHERE media_id='" . addslashes($mid) . "'"; $result = DB_query($sql); while ($A = DB_fetchArray($result)) { $filename = $A['media_original_filename']; if (empty($filename)) { $filename = $A['media_filename'] . '.' . $A['media_mime_ext']; } $mime_type = $A['mime_type']; if ($mime_type == 'application/octet-stream' && strtolower($A['media_mime_ext']) == 'pdf') { $mime_type = 'application/pdf'; }