/**
* Returns a redirection link for the password form
*
* @return string
*/
function getPageRedirect()
{
global $_zp_login_error, $_zp_password_form_printed, $_zp_current_search, $_zp_gallery_page, $_zp_current_album, $_zp_current_image, $_zp_current_zenpage_news;
switch ($_zp_gallery_page) {
case 'index.php':
$action = '/index.php';
break;
case 'album.php':
$action = '/index.php?userlog=1&album=' . pathurlencode($_zp_current_album->name);
break;
case 'image.php':
$action = '/index.php?userlog=1&album=' . pathurlencode($_zp_current_album->name) . '&image=' . urlencode($_zp_current_image->filename);
break;
case 'pages.php':
$action = '/index.php?userlog=1&p=pages&title=' . urlencode(getPageTitlelink());
break;
case 'news.php':
$action = '/index.php?userlog=1&p=news';
if (!is_null($_zp_current_zenpage_news)) {
$action .= '&title=' . urlencode($_zp_current_zenpage_news->getTitlelink());
}
break;
case 'password.php':
$action = str_replace(SEO_WEBPATH, '', getRequestURI());
if ($action == '/' . _PAGE_ . '/password' || $action == '/index.php?p=password') {
$action = '/index.php';
}
break;
default:
if (in_context(ZP_SEARCH)) {
$action = '/index.php?userlog=1&p=search' . $_zp_current_search->getSearchParams();
} else {
$action = '/index.php?userlog=1&p=' . substr($_zp_gallery_page, 0, -4);
}
}
return SEO_WEBPATH . $action;
}
/**
* Returns a redirection link for the password form
*
* @return string
*/
function getPageRedirect()
{
global $_zp_login_error, $_zp_password_form_printed, $_zp_current_search, $_zp_gallery_page, $_zp_current_album, $_zp_current_image;
switch ($_zp_gallery_page) {
case 'index.php':
$action = '/index.php';
break;
case 'album.php':
$action = '/index.php?userlog=1&album=' . urlencode($_zp_current_album->name);
break;
case 'image.php':
$action = '/index.php?userlog=1&album=' . urlencode($_zp_current_album->name) . '&image=' . urlencode($_zp_current_image->filename);
break;
case 'pages.php':
$action = '/index.php?userlog=1&p=pages&title=' . urlencode(getPageTitlelink());
break;
case 'news.php':
$action = '/index.php?userlog=1&p=news';
$title = getNewsTitlelink();
if (!empty($title)) {
$action .= '&title=' . urlencode(getNewsTitlelink());
}
break;
case 'password.php':
return urldecode(sanitize($_SERVER['REQUEST_URI'], 0));
default:
if (in_context(ZP_SEARCH)) {
$action = '/index.php?userlog=1&p=search' . $_zp_current_search->getSearchParams();
} else {
$action = '/index.php?userlog=1&p=' . substr($_zp_gallery_page, 0, -4);
}
}
return WEBPATH . $action;
}
static function admin_toolbox_pages($redirect, $zf)
{
global $_zp_CMS;
if (zp_loggedin(ZENPAGE_PAGES_RIGHTS) && $_zp_CMS && $_zp_CMS->pages_enabled) {
// page is zenpage page--provide edit, delete, and add links
echo "<li><a href=\"" . $zf . '/' . PLUGIN_FOLDER . "/zenpage/admin-edit.php?page&edit&titlelink=" . urlencode(getPageTitlelink()) . "&subpage=object\">" . gettext("Edit Page") . "</a></li>";
if (GALLERY_SESSION) {
// XSRF defense requires sessions
?>
<li><a href="javascript:confirmDelete('<?php
echo $zf . '/' . PLUGIN_FOLDER;
?>
/zenpage/page-admin.php?del=<?php
echo getPageID();
?>
&XSRFToken=<?php
echo getXSRFToken('delete');
?>
',deletePage)"
title="<?php
echo gettext("Delete page");
?>
"><?php
echo gettext("Delete Page");
?>
</a></li>
<?php
}
echo "<li><a href=\"" . FULLWEBPATH . "/" . ZENFOLDER . '/' . PLUGIN_FOLDER . "/zenpage/admin-edit.php?page&add\">" . gettext("Add Page") . "</a></li>";
}
return $redirect . '&title=' . urlencode(getPageTitlelink());
}
/**
* Prints the clickable drop down toolbox on any theme page with generic admin helpers
* @param string $id the html/css theming id
*/
function printAdminToolbox($id = 'admin')
{
global $_zp_current_album, $_zp_current_image, $_zp_current_search, $_zp_loggedin, $_zp_gallery_page;
if (zp_loggedin()) {
echo '<script type="text/javascript" src="' . WEBPATH . '/' . ZENFOLDER . '/js/admin.js"></script>';
$zf = WEBPATH . "/" . ZENFOLDER;
$dataid = $id . '_data';
$page = getCurrentPage();
$redirect = '';
echo '<div id="' . $id . '">' . "\n" . '<h3><a href="javascript: toggle(' . "'" . $dataid . "'" . ');">' . gettext('Admin Toolbox') . '</a></h3>' . "\n" . "\n</div>";
echo '<div id="' . $dataid . '" style="display: none;">' . "\n";
// open the list--all links go between here and the close of the list below
echo "<ul style='list-style-type: none;'>";
// generic link to Admin.php
echo "<li>";
printAdminLink(gettext('Admin'), '', "</li>\n");
// setup for return links
if (isset($_GET['p'])) {
$redirect = "&p=" . $_GET['p'];
}
if ($page > 1) {
$redirect .= "&page={$page}";
}
if ($_zp_loggedin & (ADMIN_RIGHTS | OPTIONS_RIGHTS)) {
// options link for all admins with options rights
echo "<li>";
printLink($zf . '/admin-options.php', gettext("Options"), NULL, NULL, NULL);
echo "</li>\n";
}
apply_filter('admin_toolbox_global');
$gal = getOption('custom_index_page');
if (empty($gal) || !file_exists(SERVERPATH . '/' . THEMEFOLDER . '/' . getOption('current_theme') . '/' . UTF8ToFilesystem($gal) . '.php')) {
$gal = 'index.php';
} else {
$gal .= '.php';
}
if ($_zp_gallery_page === $gal) {
// script is either index.php or the gallery index page
if ($_zp_loggedin & (ADMIN_RIGHTS | EDIT_RIGHTS)) {
// admin has edit rights so he can sort the gallery (at least those albums he is assigned)
echo "<li>";
printSortableGalleryLink(gettext('Sort gallery'), gettext('Manual sorting'));
echo "</li>\n";
}
if ($_zp_loggedin & (ADMIN_RIGHTS | UPLOAD_RIGHTS)) {
// admin has upload rights, provide an upload link for a new album
echo "<li>";
printLink($zf . '/admin-upload.php', gettext("New album"), NULL, NULL, NULL);
echo "</li>\n";
}
apply_filter('admin_toolbox_gallery');
} else {
if ($_zp_gallery_page === 'album.php') {
// script is album.php
$albumname = $_zp_current_album->name;
if (isMyAlbum($albumname, EDIT_RIGHTS)) {
// admin is empowered to edit this album--show an edit link
echo "<li>";
printSubalbumAdmin(gettext('Edit album'), '', "</li>\n");
if (!$_zp_current_album->isDynamic()) {
echo "<li>";
printSortableAlbumLink(gettext('Sort album'), gettext('Manual sorting'));
echo "</li>\n";
}
// and a delete link
echo "<li><a href=\"javascript: confirmDeleteAlbum('" . $zf . "/admin-edit.php?page=edit&action=deletealbum&album=" . urlencode(urlencode($albumname)) . "','" . js_encode(gettext("Are you sure you want to delete this entire album?")) . "','" . js_encode(gettext("Are you Absolutely Positively sure you want to delete the album? THIS CANNOT BE UNDONE!")) . "');\" title=\"" . gettext("Delete the album") . "\">" . gettext("Delete album") . "</a></li>\n";
}
if (isMyAlbum($albumname, UPLOAD_RIGHTS) && !$_zp_current_album->isDynamic()) {
// provide an album upload link if the admin has upload rights for this album and it is not a dynamic album
echo "<li>";
printLink($zf . '/admin-upload.php?album=' . urlencode($albumname), gettext("Upload Here"), NULL, NULL, NULL);
echo "</li>\n";
echo "<li>";
printLink($zf . '/admin-upload.php?new&album=' . urlencode($albumname), gettext("New Album Here"), NULL, NULL, NULL);
echo "</li>\n";
}
// set the return to this album/page
apply_filter('admin_toolbox_album');
$redirect = "&album=" . urlencode($albumname) . "&page={$page}";
} else {
if ($_zp_gallery_page === 'image.php') {
// script is image.php
$albumname = $_zp_current_album->name;
$imagename = urlencode($_zp_current_image->filename);
if (isMyAlbum($albumname, EDIT_RIGHTS)) {
// if admin has edit rights on this album, provide a delete link for the image.
echo "<li><a href=\"javascript: confirmDeleteImage('" . $zf . "/admin-edit.php?page=edit&action=deleteimage&album=" . urlencode(urlencode($albumname)) . "&image=" . urlencode($imagename) . "','" . js_encode(gettext("Are you sure you want to delete the image? THIS CANNOT BE UNDONE!")) . "');\" title=\"" . gettext("Delete the image") . "\">" . gettext("Delete image") . "</a>";
echo "</li>\n";
echo '<li><a href="' . $zf . '/admin-edit.php?page=edit&album=' . urlencode($albumname) . '&image=' . urlencode($imagename) . '&tab=imageinfo#IT" title="' . gettext('Edit this image') . '">' . gettext('Edit image') . '</a></li>' . "\n";
}
// set return to this image page
apply_filter('admin_toolbox_image');
$redirect = "&album=" . urlencode($albumname) . "&image={$imagename}";
} else {
if ($_zp_gallery_page === 'search.php' && !empty($_zp_current_search->words)) {
// script is search.php with a search string
if ($_zp_loggedin & (ADMIN_RIGHTS | UPLOAD_RIGHTS)) {
// if admin has edit rights allow him to create a dynamic album from the search
echo "<li><a href=\"" . $zf . "/admin-dynamic-album.php\" title=\"" . gettext("Create an album from the search") . "\">" . gettext("Create Album") . "</a></li>";
}
apply_filter('admin_toolbox_search');
$redirect = "&p=search" . $_zp_current_search->getSearchParams() . "&page={$page}";
}
}
}
}
// zenpage script pages
if (function_exists('is_NewsArticle')) {
if ($_zp_loggedin & (ADMIN_RIGHTS | ZENPAGE_RIGHTS)) {
// admin has zenpage rights, provide link to the zenpage admin tab
echo "<li><a href=\"" . $zf . "/plugins/zenpage/\">" . gettext("Zenpage") . "</a></li>";
if (is_NewsArticle()) {
// page is a NewsArticle--provide zenpage edit, delete, and Add links
echo "<li><a href=\"" . $zf . "/plugins/zenpage/admin-edit.php?newsarticle&edit&titlelink=" . urlencode(getNewsTitlelink()) . "\">" . gettext("Edit Article") . "</li>";
?>
<li><a href="javascript: confirmDeleteImage('<?php
echo $zf;
?>
/plugins/zenpage/news-article-admin.php?del=<?php
echo getNewsID();
?>
','<?php
echo js_encode(gettext("Are you sure you want to delete this article? THIS CANNOT BE UNDONE!"));
?>
')" title="<?php
echo gettext("Delete article");
?>
"><?php
echo gettext("Delete Article");
?>
</a></li>
<?php
echo "<li><a href=\"" . $zf . "/plugins/zenpage/admin-edit.php?newsarticle&add\">" . gettext("Add Article") . "</li>";
}
if (is_Pages()) {
// page is zenpage page--provide edit, delete, and add links
echo "<li><a href=\"" . $zf . "/plugins/zenpage/admin-edit.php?page&edit&titlelink=" . urlencode(getPageTitlelink()) . "\">" . gettext("Edit Page") . "</li>";
?>
<li><a href="javascript: confirmDeleteImage('<?php
echo $zf;
?>
/plugins/zenpage/page-admin.php?del=<?php
echo getPageID();
?>
','<?php
echo js_encode(gettext("Are you sure you want to delete this page? THIS CANNOT BE UNDONE!"));
?>
')" title="<?php
echo gettext("Delete page");
?>
"><?php
echo gettext("Delete Page");
?>
</a></li>
<?php
echo "<li><a href=\"" . FULLWEBPATH . "/" . ZENFOLDER . "/plugins/zenpage/admin-edit.php?page&add\">" . gettext("Add Page") . "</li>";
}
}
apply_filter('admin_toolbox_news');
}
// logout link
echo "<li><a href=\"" . $zf . "/admin.php?logout{$redirect}\">" . gettext("Logout") . "</a></li>\n";
// close the list
echo "</ul>\n";
echo "</div>\n";
}
}
