function wikiplugin_insert_rewrite($data, $params, $context) { $tikilib = TikiLib::lib('tiki'); $trackerIds = $tikilib->get_preference('tracker_insert_allowed', array(), true); foreach ($trackerIds as $trackerId) { $utilities = new Services_Tracker_Utilities(); $item = Tracker_Item::newItem($trackerId); if (!$item->canModify()) { continue; } $definition = $item->getDefinition(); if (!$definition->canInsert(array_keys($params))) { continue; } $available = array(); foreach ($params as $key => $value) { if ($item->canModifyField($key)) { $available[$key] = $value; } } $id = $utilities->insertItem($definition, array('status' => 'o', 'fields' => $available)); if (false !== $id) { $relationlib = TikiLib::lib('relation'); $relationlib->add_relation('tiki.source.creator', 'trackeritem', $id, $context['type'], $context['itemId']); return "{objectlink type=trackeritem id={$id}}"; } } return false; }
function wikiplugin_trackercalendar($data, $params) { static $id = 0; $headerlib = TikiLib::lib('header'); $headerlib->add_cssfile('vendor_extra/fullcalendar-resourceviews/fullcalendar/fullcalendar.css'); $headerlib->add_jsfile('vendor_extra/fullcalendar-resourceviews/fullcalendar/fullcalendar.min.js'); $jit = new JitFilter($params); $definition = Tracker_Definition::get($jit->trackerId->int()); $itemObject = Tracker_Item::newItem($jit->trackerId->int()); if (!$definition) { return WikiParser_PluginOutput::userError(tr('Tracker not found.')); } $beginField = $definition->getFieldFromPermName($jit->begin->word()); $endField = $definition->getFieldFromPermName($jit->end->word()); if (!$beginField || !$endField) { return WikiParser_PluginOutput::userError(tr('Fields not found.')); } $views = array('month', 'agendaWeek', 'agendaDay'); $resources = array(); if ($resourceField = $jit->resource->word()) { $field = $definition->getFieldFromPermName($resourceField); $resources = wikiplugin_trackercalendar_get_resources($field); $views[] = 'resourceMonth'; $views[] = 'resourceWeek'; $views[] = 'resourceDay'; } $smarty = TikiLib::lib('smarty'); $smarty->assign('trackercalendar', array('id' => 'trackercalendar' . ++$id, 'trackerId' => $jit->trackerId->int(), 'begin' => $jit->begin->word(), 'end' => $jit->end->word(), 'resource' => $resourceField, 'resourceList' => $resources, 'coloring' => $jit->coloring->word(), 'beginFieldName' => 'ins_' . $beginField['fieldId'], 'endFieldName' => 'ins_' . $endField['fieldId'], 'firstDayofWeek' => 0, 'views' => implode(',', $views), 'viewyear' => (int) date('Y'), 'viewmonth' => (int) date('n'), 'viewday' => (int) date('j'), 'minHourOfDay' => 7, 'maxHourOfDay' => 20, 'addTitle' => tr('Insert'), 'canInsert' => $itemObject->canModify(), 'body' => $data)); return $smarty->fetch('wiki-plugins/trackercalendar.tpl'); }
/** * @param $mod_reference * @param $module_params */ function module_tracker_input($mod_reference, $module_params) { global $prefs; $smarty = TikiLib::lib('smarty'); $trackerId = $module_params['trackerId']; $itemObject = Tracker_Item::newItem($trackerId); $definition = Tracker_Definition::get($trackerId); if (!$itemObject->canModify()) { $smarty->assign('tracker_input', array('trackerId' => 0, 'textInput' => array(), 'hiddenInput' => array(), 'location' => null)); return; } $textinput = isset($module_params['textinput']) ? $module_params['textinput'] : ''; $hiddeninput = isset($module_params['hiddeninput']) ? $module_params['hiddeninput'] : ''; $streetview = isset($module_params['streetview']) ? $module_params['streetview'] : ''; $streetViewField = $definition->getFieldFromPermName($streetview); $success = isset($module_params['success']) ? $module_params['success'] : ''; $insertmode = isset($module_params['insertmode']) ? $module_params['insertmode'] : ''; if (!$streetview || $prefs['fgal_upload_from_source'] != 'y' || !$streetViewField) { $streetview = ''; } $location = null; $locationMode = null; if (isset($module_params['location'])) { $parts = explode(':', $module_params['location'], 2); $location = array_shift($parts); $locationMode = array_shift($parts); if (!$locationMode) { $locationMode = 'marker'; } $hiddeninput .= " {$location}()"; } preg_match_all('/(\\w+)\\(([^\\)]+)\\)/', $textinput, $parts, PREG_SET_ORDER); $text = array(); foreach ($parts as $p) { $text[$p[1]] = tra($p[2]); } preg_match_all('/(\\w+)\\(([^\\)]*)\\)/', $hiddeninput, $parts, PREG_SET_ORDER); $hidden = array(); foreach ($parts as $p) { $hidden[$p[1]] = $p[2]; } $galleryId = null; if ($streetview) { $galleryId = TikiLib::lib('filegal')->check_user_file_gallery($streetViewField['options_array'][0]); } $operation = null; $operationArgument = null; if (preg_match("/(\\w+)\\(([^\\)]*)\\)/", $success, $parts)) { $operation = $parts[1]; $operationArgument = $parts[2]; } $smarty->assign('tracker_input', array('trackerId' => $trackerId, 'textInput' => $text, 'hiddenInput' => $hidden, 'location' => $location, 'locationMode' => $locationMode, 'streetview' => $streetview, 'galleryId' => $galleryId, 'submit' => isset($module_params['submit']) ? $module_params['submit'] : tr('Create'), 'success' => array('operation' => $operation, 'argument' => $operationArgument), 'insertMode' => $insertmode)); }
$xfields = array('data' => $trackerDefinition->getFields()); $popupFields = $trackerDefinition->getPopupFields(); $smarty->assign_by_ref('popupFields', $popupFields); $smarty->assign('tracker_sync', $trackerDefinition->getSyncInformation()); $orderkey = false; $listfields = array(); $usecategs = false; $textarea_options = false; $all_descends = false; $fieldFactory = $trackerDefinition->getFieldFactory(); $itemObject = Tracker_Item::newItem($_REQUEST['trackerId']); foreach ($xfields['data'] as $i => $current_field) { $current_field_ins = null; $fid = $current_field["fieldId"]; $ins_id = 'ins_' . $fid; $current_field["ins_id"] = $ins_id; $current_field["id"] = $fid; $filter_id = 'filter_' . $fid; $current_field["filter_id"] = $filter_id; if (!empty($sort_field) and $sort_field == $fid) { $orderkey = true; } $fieldIsVisible = $itemObject->canViewField($fid);
function wikiplugin_trackercalendar($data, $params) { static $id = 0; $headerlib = TikiLib::lib('header'); $headerlib->add_cssfile('vendor_extra/fullcalendar-resourceviews/fullcalendar/fullcalendar.css'); $headerlib->add_jsfile('vendor_extra/fullcalendar-resourceviews/fullcalendar/fullcalendar.min.js'); $jit = new JitFilter($params); $definition = Tracker_Definition::get($jit->trackerId->int()); $itemObject = Tracker_Item::newItem($jit->trackerId->int()); if (!$definition) { return WikiParser_PluginOutput::userError(tr('Tracker not found.')); } $beginField = $definition->getFieldFromPermName($jit->begin->word()); $endField = $definition->getFieldFromPermName($jit->end->word()); if (!$beginField || !$endField) { return WikiParser_PluginOutput::userError(tr('Fields not found.')); } $views = array(); if (!empty($params['amonth']) and $params['amonth'] != 'y') { $amonth = 'n'; } else { $amonth = 'y'; $views[] = 'month'; } if (!empty($params['aweek']) and $params['aweek'] != 'y') { $aweek = 'n'; } else { $aweek = 'y'; $views[] = 'agendaWeek'; } if (!empty($params['aday']) and $params['aday'] != 'y') { $aday = 'n'; } else { $aday = 'y'; $views[] = 'agendaDay'; } $resources = array(); if ($resourceField = $jit->resource->word()) { $field = $definition->getFieldFromPermName($resourceField); $resources = wikiplugin_trackercalendar_get_resources($field); if (!empty($params['rmonth']) and $params['rmonth'] != 'y') { $rmonth = 'n'; } else { $rmonth = 'y'; $views[] = 'resourceMonth'; } if (!empty($params['rweek']) and $params['rweek'] != 'y') { $rweek = 'n'; } else { $rweek = 'y'; $views[] = 'resourceWeek'; } if (!empty($params['rday']) and $params['rday'] != 'y') { $rday = 'n'; } else { $rday = 'y'; $views[] = 'resourceDay'; } } // Define the default View (dView) if (!empty($params['dView'])) { $dView = $params['dView']; } else { $dView = 'month'; } // Define the default date (dYear, dMonth, dDay) if (!empty($params['dYear'])) { $dYear = $params['dYear']; } else { $dYear = (int) date('Y'); } if (!empty($params['dMonth']) and $params['dMonth'] > 0 and $params['dMonth'] < 13) { $dMonth = $params['dMonth']; } else { $dMonth = (int) date('n'); } if (!empty($params['dDay']) and $params['dDay'] > 0 and $params['dDay'] < 32) { $dDay = $params['dDay']; } else { $dDay = (int) date('j'); } global $prefs; if (!empty($params['fDayofWeek']) and $params['fDayofWeek'] > -1 and $params['fDayofWeek'] < 7) { $firstDayofWeek = $params['fDayofWeek']; } elseif ($prefs['calendar_firstDayofWeek'] !== 'user') { $firstDayofWeek = $prefs['calendar_firstDayofWeek']; } else { $firstDayofWeek = 0; } $params['addAllFields'] = empty($params['addAllFields']) ? 'y' : $params['addAllFields']; $params['useSessionStorage'] = empty($params['useSessionStorage']) ? 'y' : $params['useSessionStorage']; $params['weekends'] = empty($params['weekends']) ? 'y' : $params['weekends']; $smarty = TikiLib::lib('smarty'); $smarty->assign('trackercalendar', array('id' => 'trackercalendar' . ++$id, 'trackerId' => $jit->trackerId->int(), 'begin' => $jit->begin->word(), 'end' => $jit->end->word(), 'resource' => $resourceField, 'resourceList' => $resources, 'coloring' => $jit->coloring->word(), 'beginFieldName' => 'ins_' . $beginField['fieldId'], 'endFieldName' => 'ins_' . $endField['fieldId'], 'firstDayofWeek' => $firstDayofWeek, 'views' => implode(',', $views), 'viewyear' => $dYear, 'viewmonth' => $dMonth, 'viewday' => $dDay, 'minHourOfDay' => 7, 'maxHourOfDay' => 24, 'addTitle' => tr('Insert'), 'canInsert' => $itemObject->canModify(), 'dView' => $dView, 'body' => $data, 'url' => $params['external'] === 'y' ? $params['url'] : '', 'trkitemid' => $params['external'] === 'y' ? $params['trkitemid'] : '', 'addAllFields' => $params['external'] === 'y' ? $params['addAllFields'] : '', 'useSessionStorage' => $params['external'] === 'y' ? $params['useSessionStorage'] : '', 'timeFormat' => $prefs['display_12hr_clock'] === 'y' ? 'h(:mm)TT' : 'HH:mm', 'weekends' => $params['weekends'] === 'y' ? 1 : 0)); return $smarty->fetch('wiki-plugins/trackercalendar.tpl'); }
function wikiplugin_tracker($data, $params) { global $user, $group, $page, $prefs; $parserlib = TikiLib::lib('parser'); $trklib = TikiLib::lib('trk'); $userlib = TikiLib::lib('user'); $tikilib = TikiLib::lib('tiki'); $smarty = TikiLib::lib('smarty'); $captchalib = TikiLib::lib('captcha'); static $iTRACKER = 0; ++$iTRACKER; if (isset($params['itemId']) && empty($params['itemId'])) { return; } $smarty->assign('trackerEditFormId', $iTRACKER); $default = array('overwrite' => 'n', 'embedded' => 'n', 'showtitle' => 'n', 'showdesc' => 'n', 'showfieldsdesc' => 'y', 'sort' => 'n', 'showmandatory' => 'y', 'status' => '', 'transactionFinalStep' => 'y', 'registration' => 'n', 'chosenGroup' => 'Registered', 'validateusers' => '', 'emailformat' => 'text'); $params = array_merge($default, $params); $item = array(); extract($params, EXTR_SKIP); if (empty($transactionName) xor empty($transactionStep)) { return '<b>' . tra("You need to define both transaction name and transaction step, or none of the two.") . '</b>'; } else { if (isset($transactionName) && !isset($_SESSION[$transactionName])) { $_SESSION[$transactionName] = array(); } if (isset($transactionStep) && !isset($_SESSION[$transactionName][$transactionStep])) { $_SESSION[$transactionName][$transactionStep] = array(); } if (!isset($_SESSION[$transactionName]['transactionStep'])) { $_SESSION[$transactionName]['transactionStep'] = 0; } if ($_SESSION[$transactionName]['transactionStep'] != $transactionStep) { return; } } if ($prefs['feature_trackers'] != 'y') { return $smarty->fetch("wiki-plugins/error_tracker.tpl"); } if (empty($trackerId) || !($definition = Tracker_Definition::get($trackerId))) { return $smarty->fetch("wiki-plugins/error_tracker.tpl"); } $tracker = $definition->getInformation(); if (empty($trackerId) && !empty($view) && $view == 'user' && $prefs['userTracker'] == 'y') { // the user tracker item $utid = $userlib->get_tracker_usergroup($user); if (!empty($utid) && !empty($utid['usersTrackerId'])) { $itemId = $trklib->get_item_id($utid['usersTrackerId'], $utid['usersFieldId'], $user); $trackerId = $utid['usersTrackerId']; $usertracker = true; } } elseif (!empty($trackerId) && !empty($view) && $view == 'user') { // the user item of a tracker $itemId = $trklib->get_user_item($trackerId, $tracker, null, null, strlen($status) == 1 ? $status : ''); $usertracker = true; } elseif (!empty($trackerId) && !empty($view) && $view == 'page' && !empty($_REQUEST['page']) && ($f = $trklib->get_page_field($trackerId))) { // the page item $itemId = $trklib->get_item_id($trackerId, $f['fieldId'], $_REQUEST['page']); } elseif (!empty($trackerId) && !empty($_REQUEST['view_user'])) { $itemId = $trklib->get_user_item($trackerId, $tracker, $_REQUEST['view_user']); } elseif (!empty($_REQUEST['itemId']) && (empty($ignoreRequestItemId) || $ignoreRequestItemId != 'y')) { $itemId = $_REQUEST['itemId']; $item = $trklib->get_tracker_item($itemId); $trackerId = $item['trackerId']; } elseif (!empty($view) && $view == 'group') { $gtid = $userlib->get_grouptrackerid($group); if (isset($gtid['groupTrackerId'])) { $trackerId = $gtid['groupTrackerId']; $itemId = $trklib->get_item_id($trackerId, $gtid['groupFieldId'], $group); $grouptracker = true; } } if (!isset($trackerId)) { return $smarty->fetch("wiki-plugins/error_tracker.tpl"); } //test for validation errors for registration tracker calls if (isset($_REQUEST['register']) && ($_REQUEST['register'] == 'Register' || $_REQUEST['register'] == 'register')) { $regtracker = $userlib->get_usertrackerid('Registered'); if ($trackerId == $regtracker['usersTrackerId'] && $_REQUEST['valerror'] !== false) { if (is_array($_REQUEST['valerror'])) { foreach ($_REQUEST['valerror'] as $valerror) { if (is_a($valerror, 'RegistrationError')) { return false; break; } } } elseif (is_a($_REQUEST['valerror'], 'RegistrationError')) { return false; } } } if (!isset($action)) { $action = array('Save'); } if (!is_array($action)) { $action = array($action); } $dynamicSave = false; if (count($action) == 1 && reset($action) == 'NONE') { $action = array(); $dynamicSave = true; } if (!isset($action_style)) { $action_style = array(); foreach ($action as $ac) { $action_style[] = 'btn btn-primary'; } } if (isset($preview)) { if (empty($preview)) { $preview = 'Preview'; } } else { unset($_REQUEST['tr_preview']); } if (isset($reset)) { if (empty($reset)) { $reset = 'reset'; } } else { unset($_REQUEST['tr_reset']); } $smarty->assign('showmandatory', empty($wiki) && empty($tpl) ? 'n' : $showmandatory); if (!empty($wiki)) { if (preg_match('/^wiki:(.+)$/', $wiki, $wiki_matches)) { $wiki = $wiki_matches[1]; } $wiki = trim($wiki); } if (!isset($params['formtag'])) { $params['formtag'] = 'y'; } $fields_prefix = 'ins_'; if (isset($values)) { if (!is_array($values)) { $values = $parserlib->quotesplit(':', $values); foreach ($values as $i => $v) { $values[$i] = preg_replace('/^"(.*)"$/', '$1', $v); } } } if (isset($_REQUEST['values'])) { if (is_array($_REQUEST['values'])) { foreach ($_REQUEST['values'] as $i => $k) { $_REQUEST['values'][$i] = urldecode($k); } } else { $_REQUEST['values'] = urldecode($_REQUEST['values']); } } $perms = $tikilib->get_perm_object($trackerId, 'tracker', $tracker, false); if (empty($_SERVER['SCRIPT_NAME']) || strpos($_SERVER['SCRIPT_NAME'], 'tiki-register.php') === false) { if ($perms['tiki_p_create_tracker_items'] == 'n' && empty($itemId)) { return '<b>' . tra("You do not have permission to insert an item") . '</b>'; } elseif (!empty($itemId)) { $item_info = $trklib->get_tracker_item($itemId); if (empty($item_info)) { return '<b>' . tra("Incorrect item") . '</b>'; } $itemObject = Tracker_Item::fromInfo($item_info); if (!$itemObject->canModify()) { return '<b>' . tra("You do not have permission to modify an item") . '</b>'; } } } if (!empty($itemId)) { $logslib = TikiLib::lib('logs'); $logslib->add_action('Viewed', $itemId, 'trackeritem', $_SERVER['REQUEST_URI']); } if (isset($_REQUEST['removeattach']) && $tracker['useAttachments'] == 'y') { $owner = $trklib->get_item_attachment_owner($_REQUEST['removeattach']); if ($perms['tiki_p_admin_trackers'] == 'y' || $user && $user == $owner) { $trklib->remove_item_attachment($_REQUEST["removeattach"]); unset($_REQUEST['removeattach']); } } if (isset($_REQUEST['removeImage']) && !empty($_REQUEST['trackerId']) && !empty($_REQUEST['itemId']) && !empty($_REQUEST['fieldId']) && !empty($_REQUEST['fieldName'])) { $img_field = array('data' => array()); $img_field['data'][] = array('fieldId' => $_REQUEST['fieldId'], 'type' => 'i', 'name' => $_REQUEST['fieldName'], 'value' => 'blank'); $trklib->replace_item($_REQUEST['trackerId'], $_REQUEST['itemId'], $img_field); } $back = ''; $thisIsThePlugin = isset($_REQUEST['iTRACKER']) && $_REQUEST['iTRACKER'] == $iTRACKER; if (!isset($_REQUEST["ok"]) || $_REQUEST["ok"] == "n" || !$thisIsThePlugin || isset($_REQUEST['tr_preview'])) { $field_errors = array('err_mandatory' => array(), 'err_value' => array()); $notificationlib = TikiLib::lib('notification'); $tracker = $trklib->get_tracker($trackerId); $tracker = array_merge($tracker, $trklib->get_tracker_options($trackerId)); if (!empty($tracker['start']) && $tikilib->now < $tracker['start'] || !empty($tracker['end']) && $tikilib->now > $tracker['end']) { return; } $outf = array(); $auto_fieldId = array(); $hidden_fieldId = array(); if (!empty($fields) || !empty($wiki) || !empty($tpl)) { if ($registration == 'y' && $prefs["user_register_prettytracker"] == 'y' && !empty($prefs["user_register_prettytracker_tpl"])) { $registrationlib = TikiLib::lib('registration'); $smarty->assign('listgroups', $registrationlib->merged_prefs['choosable_groups']); $smarty->assign('register_login', $smarty->fetch('register-login.tpl')); $smarty->assign('register_email', $smarty->fetch('register-email.tpl')); $smarty->assign('register_pass', $smarty->fetch('register-pass.tpl')); $smarty->assign('register_pass2', $smarty->fetch('register-pass2.tpl')); $smarty->assign('register_passcode', $smarty->fetch('register-passcode.tpl')); $smarty->assign('register_groupchoice', $smarty->fetch('register-groupchoice.tpl')); if ($prefs['feature_antibot'] == 'y') { $smarty->assign('showantibot', true); $smarty->assign('form', 'register'); $smarty->assign('register_antibot', $smarty->fetch('antibot.tpl')); } $wiki = $prefs["user_register_prettytracker_tpl"]; } if (!empty($wiki)) { $outf = $trklib->get_pretty_fieldIds($wiki, 'wiki', $prettyModifier, $trackerId); } elseif (!empty($tpl)) { $outf = $trklib->get_pretty_fieldIds($tpl, 'tpl', $prettyModifier, $trackerId); } elseif (!empty($fields)) { $outf = $fields; } if (!empty($_REQUEST['autosavefields'])) { $autosavefields = explode(':', $_REQUEST['autosavefields']); $autosavevalues = explode(':', $_REQUEST['autosavevalues']); if (isset($params['autosavefields'])) { $autosavefields = array_merge($autosavefields, $params['autosavefields']); $autosavevalues = array_merge($autosavevalues, $params['autosavevalues']); } } if (!empty($autosavefields)) { $auto_fieldId = array_merge($auto_fieldId, $autosavefields); } foreach ($definition->getFields() as $field) { // User and group on autoassign create/modify if (($user || $registration == 'y' || isset($_SESSION[$transactionName]) && isset($_SESSION[$transactionName]['registrationName'])) && ($field['type'] == 'u' || $field['type'] == 'g')) { $autoassign = $field['options_map']['autoassign']; if ($autoassign == 1 || $autoassign == 2) { if ($user) { $hidden_fieldId[] = $field['fieldId']; } $userField = $field['fieldId']; } } // IP and page on autoassign if ($field['type'] == 'I' || $field['type'] == 'k') { $autoassign = $field['options_map']['autoassign']; if ($autoassign == 1) { $hidden_fieldId[] = $field['fieldId']; } } // Auto-increment if ($field['type'] == 'q') { $auto_fieldId[] = $field['fieldId']; } } foreach ($auto_fieldId as $k => $v) { if (empty($v) || in_array($v, $outf)) { unset($auto_fieldId[$k]); } else { $outf[] = $v; } } foreach ($hidden_fieldId as $k => $v) { if (empty($v) || in_array($v, $outf)) { unset($hidden_fieldId[$k]); } else { $outf[] = $v; } } } $definition = Tracker_Definition::get($trackerId); $item_info = isset($item_info) ? $item_info : array(); $factory = $definition->getFieldFactory(); if (empty($item_info)) { $itemObject = Tracker_Item::newItem($trackerId); } elseif (!isset($itemObject)) { $itemObject = Tracker_Item::fromInfo($item_info); } if (empty($outf)) { $unfiltered = array('data' => $definition->getFields()); } else { $unfiltered = array('data' => array()); foreach ($outf as $fieldId) { $unfiltered['data'][] = $definition->getField($fieldId); } } $flds = array('data' => array()); foreach ($unfiltered['data'] as $f) { if ($itemObject->canModifyField($f['fieldId']) || $registration == 'y' && empty($item_info)) { $flds['data'][] = $f; } } // If we create multiple items, get field Ids, default values and separator if (!empty($fieldsfill)) { $fill_fields = $fieldsfill; // Allow for superfluous spaces and ignore them $fill_flds = array('data' => array()); $fill_defaults = array(); $fill_flds_defaults = array(); // May be different from fill_defaults if some fields are not editable $fieldsfillnames = array(); if (trim($fieldsfilldefaults) != '') { $fill_defaults = preg_split('/ *: */', $fieldsfilldefaults); } foreach ($fill_fields as $k => $fieldId) { if ($itemObject->canModifyField($fieldId)) { $tmp = $definition->getField($fieldId); $fill_flds['data'][] = $tmp; if (isset($fill_defaults[$k])) { $fill_flds_defaults[] = $fill_defaults[$k]; } else { $fill_flds_defaults[] = ''; } $fieldsfillnames[] = $tmp['name']; } } $fill_line_cant = count($fill_flds['data']); if ($fieldsfillseparator == '') { $fieldsfillseparator = '|'; } } $bad = array(); $embeddedId = false; $onemandatory = false; $full_fields = array(); $mainfield = ''; if ($thisIsThePlugin) { /* ------------------------------------- Recup all values from REQUEST -------------- */ if (!empty($autosavefields)) { foreach ($autosavefields as $i => $f) { if (!($ff = $trklib->get_field($f, $flds['data']))) { continue; } if (preg_match('/categories\\(([0-9]+)\\)/', $autosavevalues[$i], $matches)) { if (ctype_digit($matches[1]) && $matches[1] > 0) { $filter = array('identifier' => $matches[1], 'type' => 'descendants'); } else { $filter = NULL; } $categlib = TikiLib::lib('categ'); $categs = $categlib->getCategories($filter, true, false); $_REQUEST["{$fields_prefix}{$f}"][] = $categs[0]['categId']; } elseif (preg_match('/preference\\((.*)\\)/', $autosavevalues[$i], $matches)) { $_REQUEST["{$fields_prefix}{$f}"] = $prefs[$matches[1]]; } elseif (isset($transactionName) && preg_match('/#TSTEP\\[(\\d+)\\]\\[(\\d+|name|pass)\\]/', $autosavevalues[$i], $matches)) { $traStep = $matches[1]; $traStepInsField = $matches[2]; if (preg_match('/\\d+/', $matches[2])) { $traStepInsField = "{$fields_prefix}{$traStepInsField}"; } $_REQUEST["{$fields_prefix}{$f}"] = str_replace($matches[0], $_SESSION[$transactionName][$traStep]['request'][$traStepInsField], $autosavevalues[$i]); } elseif ($ff['type'] == 'e') { $_REQUEST["{$fields_prefix}{$f}"][] = $autosavevalues[$i]; } else { if (isset($params['levelupfields']) && in_array($f, $params['levelupfields'])) { $current_levelup_val = $trklib->get_item_value($trackerId, $itemId, $f); if ($autosavevalues[$i] <= $current_levelup_val) { continue; } } $_REQUEST["{$fields_prefix}{$f}"] = $autosavevalues[$i]; } } } if ($registration == 'y' && isset($userField) && isset($_REQUEST['name'])) { $_REQUEST["{$fields_prefix}{$userField}"] = $_REQUEST['name']; } foreach ($flds['data'] as $k => $field) { $handler = $factory->getHandler($field, $item_info); if ($handler) { $value_field = $handler->getFieldData($_REQUEST); $ins_fields['data'][$k] = array_merge($field, $value_field); if (isset($ins_fields['data'][$k]['value'])) { // add ins value into field if creating or editing item $flds['data'][$k] = $ins_fields['data'][$k]; // to keep user input in case of errors (not only value) } } } $cpt = 0; if (isset($fields)) { $fields_plugin = $fields; } if (!isset($itemId) && $tracker['oneUserItem'] == 'y' && $registration != 'y') { $itemId = $trklib->get_user_item($trackerId, $tracker); } if ($embedded == 'y' && isset($_REQUEST['page'])) { $ins_fields["data"][] = array('fieldId' => $embeddedId, 'value' => $_REQUEST['page']); } if (isset($userField) && ($registration == 'y' && isset($_REQUEST['name']) || isset($_SESSION[$transactionName]) && isset($_SESSION[$transactionName]['registrationName']))) { $userFieldDef = $definition->getField($userField); if (isset($_REQUEST['name'])) { $userFieldDef['value'] = $_REQUEST['name']; if (isset($_SESSION[$transactionName])) { $_SESSION[$transactionName]['registrationName'] = $_REQUEST['name']; } } elseif (isset($_SESSION[$transactionName]) && isset($_SESSION[$transactionName]['registrationName'])) { $userFieldDef['value'] = $_SESSION[$transactionName]['registrationName']; } $ins_fields['data'][] = $userFieldDef; } $ins_categs = 0; // important: non-array ins_categs means categories should remain unchanged $parent_categs_only = array(); foreach ($ins_fields['data'] as $current_field) { if ($current_field['type'] == 'e' && isset($current_field['selected_categories'])) { if (!is_array($ins_categs)) { $ins_categs = array(); } $ins_categs = array_merge($ins_categs, $current_field['selected_categories']); $parent_categs_only[] = $current_field['options_array'][0]; } } $categorized_fields = $definition->getCategorizedFields(); /* ------------------------------------- End recup all values from REQUEST -------------- */ /* ------------------------------------- Check field values for each type and presence of mandatory ones ------------------- */ $field_errors = $trklib->check_field_values($ins_fields, $categorized_fields, $trackerId, empty($itemId) ? '' : $itemId); if ($prefs['feature_antibot'] === 'y' && $registration === 'y' && isset($_REQUEST['valerror'])) { // in_tracker session var checking is for tiki-register.php if (isset($_REQUEST['valerror'])) { $rve = $_REQUEST['valerror']; if (is_array($rve)) { foreach ($rve as $ve) { if (is_a($ve, 'RegistrationError')) { if (isset($ve->field) && $ve->field == 'antibotcode') { $field_errors['err_antibot'] = 'y'; continue; } } } } elseif (is_a($rve, 'RegistrationError')) { if (isset($rve->field) && $rve->field == 'antibotcode') { $field_errors['err_antibot'] = 'y'; } } } else { if (!$captchalib->validate()) { $field_errors['err_antibot'] = 'y'; } } } // check valid page name for wiki output if requested if (isset($outputtowiki) && !empty($outputwiki)) { $newpagename = ''; foreach ($ins_fields["data"] as $fl) { if ($fl["fieldId"] == $outputtowiki) { $newpagename = $fl["value"]; } if ($fl["type"] == 'F') { $newpagefreetags = $fl["value"]; } $newpagefields[] = $fl["fieldId"]; } if ($newpagename) { if ($prefs['namespace_enabled'] == 'y' && !empty($outputwikinamespace)) { $newpagename = $outputwikinamespace . $prefs['namespace_separator'] . $newpagename; } if ($tikilib->page_exists($newpagename)) { $field_errors['err_outputwiki'] = tra('The page to output the results to already exists. Try another name.'); } $page_badchars_display = TikiLib::lib('wiki')->get_badchars(); if (TikiLib::lib('wiki')->contains_badchars($newName)) { $field_errors['err_outputwiki'] = tr("The page to output the results to contains the following prohibited characters: %0. Try another name.", $page_badchars_display); } } else { unset($outputtowiki); } } if (count($field_errors['err_mandatory']) == 0 && count($field_errors['err_value']) == 0 && empty($field_errors['err_antibot']) && empty($field_errors['err_outputwiki']) && !isset($_REQUEST['tr_preview'])) { if (isset($_REQUEST['status'])) { $status = $_REQUEST['status']; } elseif (isset($newstatus) && ($newstatus == 'o' || $newstatus == 'c' || $newstatus == 'p')) { $status = $newstatus; } elseif (empty($itemId) && isset($tracker['newItemStatus'])) { $status = $tracker['newItemStatus']; } else { $status = ''; } $saveThis = array('trackerId' => $trackerId, 'request' => $_REQUEST, 'chosenGroup' => $chosenGroup, 'registration' => $registration, 'registrationTrackerId' => $registrationTrackerId, 'validateusers' => $validateusers, 'status' => $status, 'ins_fields' => $ins_fields, 'itemId' => $itemId, 'ins_categs' => $ins_categs, 'newItemRate' => $newItemRate); //-- check if we are in a transaction if (isset($transactionName)) { $_SESSION[$transactionName][$transactionStep] = $saveThis; if ($transactionFinalStep == 'y') { //-- final step: commit the transaction of registrations and tracker changes of all the transaction steps foreach ($_SESSION[$transactionName] as $saveStep) { $rid = wikiplugin_tracker_save($saveStep); } unset($_SESSION[$transactionName]); // the tracker transaction can be closed } else { $_SESSION[$transactionName]['transactionStep'] += 1; // switch to the next step } } else { // no transaction is used $rid = wikiplugin_tracker_save($saveThis); } // now for wiki output if desired if (isset($outputtowiki) && !empty($outputwiki)) { // note that values will be raw - that is the limit of the capability of this feature for now $newpageinfo = $tikilib->get_page_info($outputwiki); $wikioutput = $newpageinfo["data"]; $newpagefields = $trklib->get_pretty_fieldIds($outputwiki, 'wiki', $prettyModifier, $trackerId); $tracker_definition = Tracker_Definition::get($trackerId); foreach ($newpagefields as $lf) { $field = $tracker_definition->getField($lf); $lfpermname = $field['permName']; $wikioutput = str_replace('{$f_' . $lf . '}', $trklib->get_item_value($trackerId, $rid, $lf), $wikioutput); $wikioutput = str_replace('{$f_' . $lfpermname . '}', $trklib->get_item_value($trackerId, $rid, $lf), $wikioutput); } if (isset($registration)) { $wikioutput = str_replace('{$register_login}', $user, $wikioutput); $wikioutput = str_replace('{$register_email}', $_REQUEST['email'], $wikioutput); } $tikilib->create_page($newpagename, 0, $wikioutput, $tikilib->now, '', $user, $tikilib->get_ip_address()); $cat_desc = ''; $cat_type = 'wiki page'; $cat_name = $newpagename; $cat_objid = $newpagename; $cat_href = "tiki-index.php?page=" . urlencode($newpagename); if (count($ins_categs)) { $_REQUEST['cat_categories'] = $ins_categs; $_REQUEST['cat_categorize'] = 'on'; include_once "categorize.php"; } if (isset($newpagefreetags) && $newpagefreetags) { $_REQUEST['freetag_string'] = $newpagefreetags; include_once "freetag_apply.php"; } if ($discarditem == 'y') { $trklib->remove_tracker_item($rid); } elseif ($outputwikirelation == 'y') { TikiLib::lib('relation')->add_relation('tiki.wiki.linkeditem', 'wiki page', $newpagename, 'trackeritem', $rid); TikiLib::lib('relation')->add_relation('tiki.wiki.linkedfield', 'wiki page', $newpagename, 'trackerfield', $outputtowiki); } if (empty($url)) { $wikilib = TikiLib::lib('wiki'); $url[0] = $wikilib->sefurl($newpagename); } } // end wiki output // send emails if email param is set and tracker_always_notify or something was changed (mail_data is set in \TrackerLib::send_replace_item_notifications) if (!empty($email) && ($prefs['tracker_always_notify'] === 'y' || !empty($smarty->getTemplateVars('mail_data')))) { // expose the pretty tracker fields to the email tpls foreach ($flds['data'] as $f) { $prettyout = strip_tags(wikiplugin_tracker_render_value($f, $item)); $smarty->assign('f_' . $f['fieldId'], $prettyout); $smarty->assign('f_' . $f['permName'], $prettyout); } $emailOptions = preg_split("#\\|#", $email); if (is_numeric($emailOptions[0])) { $emailOptions[0] = $trklib->get_item_value($trackerId, $rid, $emailOptions[0]); } if (empty($emailOptions[0])) { // from $emailOptions[0] = $prefs['sender_email']; } if (empty($emailOptions[1])) { // to $emailOptions[1][0] = $prefs['sender_email']; } else { $emailOptions[1] = preg_split('/ *, */', $emailOptions[1]); foreach ($emailOptions[1] as $key => $email) { if (is_numeric($email)) { $emailOptions[1][$key] = $trklib->get_item_value($trackerId, $rid, $email); } } } include_once 'lib/webmail/tikimaillib.php'; $mail = new TikiMail(); $mail->setFrom($emailOptions[0]); if (!empty($emailOptions[2])) { //tpl $emailOptions[2] = preg_split('/ *, */', $emailOptions[2]); foreach ($emailOptions[2] as $ieo => $eo) { if (!preg_match('/\\.tpl$/', $eo)) { $emailOptions[2][$ieo] = $eo . '.tpl'; } $tplSubject[$ieo] = str_replace('.tpl', '_subject.tpl', $emailOptions[2][$ieo]); } } else { $emailOptions[2] = array('tracker_changed_notification.tpl'); } if (empty($tplSubject)) { $tplSubject = array('tracker_changed_notification_subject.tpl'); } $itpl = 0; $smarty->assign('mail_date', $tikilib->now); $smarty->assign('mail_itemId', $rid); foreach ($emailOptions[1] as $ieo => $ueo) { @($mail_data = $smarty->fetch('mail/' . $tplSubject[$itpl])); if (empty($mail_data)) { $mail_data = tra('Tracker was modified at ') . $_SERVER["SERVER_NAME"]; } $mail->setSubject($mail_data); $mail_data = $smarty->fetch('mail/' . $emailOptions[2][$itpl]); if ($emailformat == 'html') { $mail->setHtml($mail_data); } else { $mail->setText($mail_data); } try { $mail->send($ueo); $title = 'mail'; } catch (Zend_Mail_Exception $e) { $title = 'mail error'; } if ($title == 'mail error') { // Log the email error at the tiki syslog $logslib = TikiLib::lib('logs'); $logslib->add_log('mail error', 'plugin tracker email error / ' . $emailOptions[1][$ieo] . ' / item' . $rid); } elseif ($title == 'mail' && $prefs['log_mail'] == 'y') { // Log the email at the tiki syslog $logslib = TikiLib::lib('logs'); $logslib->add_log('mail', 'plugin tracker email sent / ' . $emailOptions[1][$ieo] . ' / item' . $rid); } if (isset($tplSubject[$itpl + 1])) { ++$itpl; } } } if (empty($url)) { if (!empty($_REQUEST['ajax_add'])) { // called by tracker ItemLink fields when adding new list items while (ob_get_level()) { ob_end_clean(); } if ($prefs['feature_obzip'] == 'y') { ob_start('ob_gzhandler'); } else { ob_start(); } // Need to add newly created itemId for item link selector $ins_fields['itemId'] = $rid; $access = TikiLib::lib('access'); $access->output_serialized($ins_fields); ob_end_flush(); die; } else { if (!empty($page)) { $url = "tiki-index.php?page=" . urlencode($page); if (!empty($itemId)) { $url .= "&itemId=" . $itemId; } $url .= "&ok=y&iTRACKER={$iTRACKER}"; $url .= "#wikiplugin_tracker{$iTRACKER}"; TikiLib::lib('access')->redirect($url); exit; } else { return ''; } } } else { $key = 0; foreach ($action as $key => $act) { if (!empty($_REQUEST["action{$key}"])) { break; } } $itemIdPos = strpos($url[$key], 'itemId'); if ($itemIdPos !== false) { if (strstr($url[$key], '#itemId')) { $url[$key] = str_replace('#itemId', $rid, $url[$key]); } else { if ($itemIdPos + strlen('itemId') >= strlen($url[$key]) - 1 || substr($url[$key], $itemIdPos + strlen('itemId'), 1) == "&") { // replace by the itemId if in the end (or -1: for backward compatibility so that "&itemId=" also works) or if it is followed by an '&' $url[$key] = str_replace('itemId', 'itemId=' . $rid, $url[$key]); } } } TikiLib::lib('access')->redirect($url[$key]); exit; } } elseif (isset($_REQUEST['trackit']) and $_REQUEST['trackit'] == $trackerId) { $smarty->assign('wikiplugin_tracker', $trackerId); //used in vote plugin } } else { if ((empty($itemId) || $overwrite == 'y') && !empty($values) || (!empty($_REQUEST['values']) and empty($_REQUEST['prefills']))) { // assign default values for each filedId specify if (empty($values)) { // url with values[]=x&values[] witouth the list of fields $values = $_REQUEST['values']; } if (!is_array($values)) { $values = array($values); } if (isset($fields)) { $fl = $fields; for ($j = 0, $count_fl = count($fl); $j < $count_fl; $j++) { for ($i = 0, $count_flds = count($flds['data']); $i < $count_flds; $i++) { if ($flds['data'][$i]['fieldId'] == $fl[$j]) { $flds['data'][$i]['value'] = $values[$j]; } } } } else { // values contains all the fields value in the default order $i = 0; foreach ($values as $value) { $flds['data'][$i++]['value'] = $value; } } } elseif (!empty($itemId)) { if (isset($fields)) { $fl = $fields; $filter = ''; foreach ($flds['data'] as $f) { if (in_array($f['fieldId'], $fl)) { $filter[] = $f; } } } else { $filter =& $flds['data']; } if (!empty($filter)) { foreach ($filter as $f) { $filter2[$f['fieldId']] = $f; } $flds['data'] = $trklib->get_item_fields($trackerId, $itemId, $filter2, $itemUser, true); } // todo: apply the values for fields with no values } else { if (isset($_REQUEST['values']) && isset($_REQUEST['prefills'])) { //url:prefills=1:2&values[]=x&values[]=y if (!is_array($_REQUEST['values'])) { $_REQUEST['values'] = array($_REQUEST['values']); } $fl = preg_split('/:/', $_REQUEST['prefills']); } else { unset($fl); } for ($i = 0, $count_flds2 = count($flds['data']); $i < $count_flds2; $i++) { if (isset($fl) && ($j = array_search($flds['data'][$i]['fieldId'], $fl)) !== false) { $flds['data'][$i]['value'] = $_REQUEST['values'][$j]; } else { // setting default value prevent dropdown default value working $options = $flds['data'][$i]['options_array']; if (!in_array($flds['data'][$i]['type'], array('d', 'D', 'R', 'M')) || count($options) === count(array_unique($options))) { $flds['data'][$i]['value'] = ''; // initialize fields with blank values } } } } } // Check that individual fields are in the tracker if (!empty($fields)) { $fl = $fields; if ($sort == 'y') { $flds = $trklib->sort_fields($flds, $fl); } foreach ($fl as $l) { $ok = false; foreach ($flds['data'] as $f) { if ($f['fieldId'] == $l) { $ok = true; break; } } if (!$ok) { $back .= '<div class="alert alert-warning"><strong>' . tra('Incorrect fieldId:') . ' ' . $l . '</strong>.<br> ' . tra("Please ensure you are using the correct field ID and that it is properly included in the template, if any.") . '</div>'; } } } elseif (empty($fields) && empty($wiki) && empty($tpl)) { // in this case outf still be blank and needs to be filled foreach ($flds['data'] as $f) { $outf[] = $f['fieldId']; } } // Check that multiple fill fields are in the tracker if (!empty($fieldsfill)) { foreach ($fill_fields as $l) { $ok = false; foreach ($fill_flds['data'] as $f) { if ($f['fieldId'] == $l) { $ok = true; break; } } if (!$ok) { $back .= '<div class="alert alert-warning">' . tra('Incorrect fieldId:') . ' ' . $l . '</div>'; } } } // Display warnings when needed if (count($field_errors['err_mandatory']) > 0 || count($field_errors['err_value']) > 0) { $back .= $smarty->fetch('tracker_error.tpl'); $_REQUEST['error'] = 'y'; if (count($field_errors['err_mandatory']) > 0) { $msg = tra('Following mandatory fields are missing'); foreach ($field_errors['err_mandatory'] as $err) { $msg .= '<br> ' . $err['name']; } TikiLib::lib('errorreport')->report($msg); } if (count($field_errors['err_value']) > 0) { $msg = tra('Following fields are incorrect'); foreach ($field_errors['err_value'] as $err) { $msg .= '<br> ' . $err['name']; } TikiLib::lib('errorreport')->report($msg); } if ($registration && !empty($userField) && isset($_REQUEST['name']) && $_REQUEST['name'] === $userField['value'] && $_REQUEST['name'] === $user) { // if in registration and creating a user tracker item for the new user // remove the user if they did not complete the tracker correctly $userlib->remove_user($userField['value']); if ($prefs['eponymousGroups'] == 'y') { // eponymous group will contain only this (former) user so remove that too $userlib->remove_group($userField['value']); } $user = ''; // needed to re-include the captcha inputs $hidden_fieldId = array(); // remove hidden user fields which are otherwise required foreach ($flds['data'] as $k => $v) { // remove the login field otherwise it gets rendered in the form also required if ($v['fieldId'] == $userField['fieldId']) { unset($flds['data'][$k]); } } } if (isset($field_errors['err_antibot'])) { $_REQUEST['error'] = 'y'; } if (isset($field_errors['err_outputwiki'])) { $smarty->loadPlugin('smarty_function_icon'); $icon = smarty_function_icon(['name' => 'warning'], $smarty); $back .= '<div class="alert alert-warning">' . $icon . ' '; $back .= $field_errors['err_outputwiki']; $back .= '</div><br />'; $_REQUEST['error'] = 'y'; } if (count($field_errors['err_mandatory']) > 0 || count($field_errors['err_value']) > 0 || isset($field_errors['err_antibot']) || isset($field_errors['err_outputwiki'])) { $smarty->assign('input_err', 'y'); } } if (!empty($page)) { $back .= '~np~'; $smarty->assign_by_ref('tiki_p_admin_trackers', $perms['tiki_p_admin_trackers']); } if (!empty($params['_ajax_form_ins_id'])) { $headerlib = TikiLib::lib('header'); $old_js['js'] = $headerlib->js; // of tracker form JS into a function to initialise it when the dialog is created $old_js['jq_onready'] = $headerlib->jq_onready; $headerlib->clear_js(); // so store existing js for later and clear } if ($prefs['feature_jquery'] == 'y' && $prefs['feature_jquery_validation'] == 'y') { $validatorslib = TikiLib::lib('validators'); $customvalidation = ''; $customvalidation_m = ''; if ($registration == 'y') { // email validation $customvalidation .= 'email: { '; $customvalidation .= 'required: true, '; $customvalidation .= 'email: true }, '; $customvalidation_m .= 'email: { email: "' . tra("Invalid email") . '", required: "' . tra("This field is required") . '"}, '; // password validation $customvalidation .= 'pass: { '; $customvalidation .= 'required: true, '; $customvalidation .= 'remote: { '; $customvalidation .= 'url: "validate-ajax.php", '; $customvalidation .= 'type: "post", '; $customvalidation .= 'data: { '; $customvalidation .= 'validator: "password", '; $customvalidation .= 'input: function() { '; $customvalidation .= 'return $("#pass1").val(); '; $customvalidation .= '} } } '; $customvalidation .= '}, '; $customvalidation_m .= 'pass: { required: "' . tra("This field is required") . '"}, '; // password repeat validation $customvalidation .= 'passAgain: { equalTo: "#pass1" }, '; $customvalidation_m .= 'passAgain: { equalTo: "' . tra("Passwords do not match") . '"}, '; // username validation $customvalidation .= 'name: { '; $customvalidation .= 'required: true, '; $customvalidation .= 'remote: { '; $customvalidation .= 'url: "validate-ajax.php", '; $customvalidation .= 'type: "post", '; $customvalidation .= 'data: { '; $customvalidation .= 'validator: "username", '; $customvalidation .= 'input: function() { '; $customvalidation .= 'return $("#name").val(); '; $customvalidation .= '} } } '; $customvalidation .= '}, '; $customvalidation_m .= 'name: { required: "' . tra("This field is required") . '"}, '; if (extension_loaded('gd') && function_exists('imagepng') && function_exists('imageftbbox') && $prefs['feature_antibot'] == 'y' && empty($user) && $prefs['recaptcha_enabled'] != 'y') { // antibot validation $customvalidation .= '"captcha[input]": { '; $customvalidation .= 'required: true, '; $customvalidation .= 'remote: { '; $customvalidation .= 'url: "validate-ajax.php", '; $customvalidation .= 'type: "post", '; $customvalidation .= 'data: { '; $customvalidation .= 'validator: "captcha", '; $customvalidation .= 'parameter: function() { '; $customvalidation .= 'return $("#captchaId").val(); '; $customvalidation .= '}, '; $customvalidation .= 'input: function() { '; $customvalidation .= 'return $("#antibotcode").val(); '; $customvalidation .= '} } } '; $customvalidation .= '}, '; $customvalidation_m .= '"captcha[input]": { required: "' . tra("This field is required") . '"}, '; } if ($prefs['useRegisterPasscode'] == 'y') { $customvalidation .= 'passcode: { required: true, remote: { url: "validate-ajax.php", type: "post", data: { validator: "passcode", input: function() { return $("#passcode").val(); } } } }, '; $customvalidation_m .= 'passcode: { required: "' . tra("This field is required") . '"}, '; } } $validationjs = $validatorslib->generateTrackerValidateJS($flds['data'], $fields_prefix, $customvalidation, $customvalidation_m); if (!empty($params['_ajax_form_ins_id']) && $params['_ajax_form_ins_id'] === 'group') { $headerlib->add_jq_onready("var ajaxTrackerValidation_group={validation:{" . $validationjs . '};'); // return clean rules and messages object for ajax } else { $smarty->assign('validationjs', $validationjs); $back .= $smarty->fetch('tracker_validator.tpl'); } } if ($params['formtag'] == 'y') { //check if tracker has custom form classes, else default to form-horizontal $formClasses = $tracker['useFormClasses'] == 'y' ? $tracker['formClasses'] : "form-horizontal"; $back .= '<form class="' . $formClasses . '" name="editItemForm' . $iTRACKER . '" id="editItemForm' . $iTRACKER . '" enctype="multipart/form-data" method="post"' . (isset($target) ? ' target="' . $target . '"' : '') . ' action="' . $_SERVER['REQUEST_URI'] . '"><input type="hidden" name="trackit" value="' . $trackerId . '" />'; $back .= '<input type="hidden" name="refresh" value="1" />'; } $back .= '<input type="hidden" name="iTRACKER" value="' . $iTRACKER . '" />'; if (isset($_REQUEST['page'])) { $back .= '<input type="hidden" name="page" value="' . $_REQUEST["page"] . '" />'; } // for registration if (isset($_REQUEST['name'])) { $back .= '<input type="hidden" name="name" value="' . $_REQUEST["name"] . '" />'; } if (isset($_REQUEST['pass'])) { $back .= '<input type="hidden" name="pass" value="' . $_REQUEST["pass"] . '" />'; $back .= '<input type="hidden" name="passAgain" value="' . $_REQUEST["pass"] . '" />'; } if (isset($_REQUEST['email'])) { $back .= '<input type="hidden" name="email" value="' . $_REQUEST["email"] . '" />'; } if (isset($_REQUEST['antibotcode'])) { $back .= '<input type="hidden" name="antibotcode" value="' . $_REQUEST["antibotcode"] . '" />'; } if (isset($_REQUEST['chosenGroup'])) { // for registration $back .= '<input type="hidden" name="chosenGroup" value="' . $_REQUEST["chosenGroup"] . '" />'; } if (isset($_REQUEST['register'])) { $back .= '<input type="hidden" name="register" value="' . $_REQUEST["register"] . '" />'; } if ($showtitle == 'y') { $back .= '<div class="h1">' . $tracker["name"] . '</div>'; } if ($showdesc == 'y' && $tracker['description']) { if ($tracker['descriptionIsParsed'] == 'y') { $back .= '<div class="wikitext">' . $tikilib->parse_data($tracker['description']) . '</div><br />'; } else { $back .= '<div class="wikitext">' . tra($tracker["description"]) . '</div><br />'; } } if (isset($_REQUEST['tr_preview'])) { // use for the computed and join fields $assocValues = array(); $assocNumerics = array(); foreach ($flds['data'] as $f) { if (empty($f['value']) && ($f['type'] == 'u' || $f['type'] == 'g' || $f['type'] == 'I') && ($f['options_array'][0] == '1' || $f['options_array'][0] == '2')) { //need to fill the selector fields for the join $f['value'] = $f['type'] == 'I' ? $tikilib->get_ip_address() : ($f['type'] == 'g' ? $group : $user); } $assocValues[$f['fieldId']] = $f['value']; $assocNumerics[$f['fieldId']] = preg_replace('/[^0-9\\.\\+]/', '', $f['value']); // get rid off the $ and such unit } } if (!empty($itemId)) { $item = array('itemId' => $itemId, 'trackerId' => $trackerId); } else { $item = array('itemId' => ''); } foreach ($flds['data'] as $i => $f) { // collect additional infos if (in_array($f['fieldId'], $outf)) { $flds['data'][$i]['ins_id'] = $f['type'] == 'e' ? 'ins_' . $f['fieldId'] : $fields_prefix . $f['fieldId']; if (($f['isHidden'] == 'c' || $f['isHidden'] == 'p') && !empty($itemId) && !isset($item['creator'])) { $item['creator'] = $trklib->get_item_creator($trackerId, $itemId); } } } if (!empty($showstatus) && $showstatus == 'y') { $status_types = $trklib->status_types(); $smarty->assign_by_ref('status_types', $status_types); $smarty->assign('form_status', 'status'); $smarty->assign_by_ref('tracker', $tracker); if (!empty($item_info)) { $smarty->assign_by_ref('item', $item_info); } $status_input = $smarty->fetch('tracker_status_input.tpl'); } $labelclass = 'col-md-3'; $inputclass = 'col-md-9'; $buttonclass = 'col-md-9 col-md-offset-3'; if ($registration == "y") { $back .= '<input type="hidden" name="register" value="Register">'; $labelclass = 'col-md-4 col-sm-3'; $inputclass = 'col-md-4 col-sm-6'; $buttonclass = 'col-md-8 col-md-offset-4'; } // Loop on tracker fields and display form if (empty($tpl) && empty($wiki)) { $back .= '<div class="wikiplugin_tracker">'; if (!empty($showstatus) && $showstatus == 'y') { $back .= '<div class="alert alert-info">' . tra('Status') . $status_input . '</div>'; // <tr><td>'.tra('Status').'</td><td>'.$status_input.'</td></tr> } if ($registration == 'y' && $prefs["user_register_prettytracker"] != 'y') { $back .= $smarty->fetch('register-form.tpl'); } } else { $back .= '<div class="wikiplugin_tracker">'; if (!empty($showstatus) && $showstatus == 'y') { $smarty->assign_by_ref('f_status_input', $status_input); } } $backLength0 = strlen($back); foreach ($flds['data'] as $f) { if (!in_array($f['fieldId'], $auto_fieldId) && in_array($f['fieldId'], $hidden_fieldId)) { // Show in hidden form $back .= '<span style="display:none;">' . wikiplugin_tracker_render_input($f, $item, $dynamicSave) . '</span>'; } elseif (!in_array($f['fieldId'], $auto_fieldId) && in_array($f['fieldId'], $outf)) { if ($showmandatory == 'y' and $f['isMandatory'] == 'y') { $onemandatory = true; } if ($f['type'] == 'A') { $smarty->assign_by_ref('tiki_p_attach_trackers', $perms['tiki_p_attach_trackers']); } if (!empty($tpl) || !empty($wiki)) { if ($prettyModifier[$f['fieldId']] == "output") { //check if modifier is set to "output" ( set in getPrettyFieldIds() in trackerlib ) $prettyout = '<span class="outputPretty" id="track_' . $f['fieldId'] . '" name="track_' . $f['fieldId'] . '">' . wikiplugin_tracker_render_value($f, $item) . '</span>'; $smarty->assign('f_' . $f['fieldId'], $prettyout); $smarty->assign('f_' . $f['permName'], $prettyout); } else { $mand = ($showmandatory == 'y' and $f['isMandatory'] == 'y') ? " <strong class='mandatory_star'>*</strong> " : ''; if (!empty($f['description'])) { $desc = $f['descriptionIsParsed'] == 'y' ? $tikilib->parse_data($f['description']) : tra($f['description']); $desc = '<div class="trackerplugindesc">' . $desc . '</div>'; } else { $desc = ''; } if (!empty($prettyModifier[$f['fieldId']])) { // check if a template was specified in prettyModifier $smarty->assign("field_name", $f['name']); $smarty->assign("field_id", $f['fieldId']); $smarty->assign("permname", $f['permName']); $smarty->assign("mandatory_sym", $mand); $smarty->assign("field_input", wikiplugin_tracker_render_input($f, $item, $dynamicSave)); $smarty->assign("description", $desc); $smarty->assign("field_type", $f['type']); $prettyout = $smarty->fetch($prettyModifier[$f['fieldId']]); //fetch template identified in prettyModifier } else { $prettyout = wikiplugin_tracker_render_input($f, $item, $dynamicSave) . $mand . $desc; } $smarty->assign('f_' . $f['fieldId'], $prettyout); $smarty->assign('f_' . $f['permName'], $prettyout); } } else { $back .= '<div class="form-group tracker_input_label"'; // <tr><td class="tracker_input_label" // If type is has a samerow param and samerow is "No", show text on one line and the input field on the next $isTextOnSameRow = true; switch ($f['type']) { case 't': // Text field // Text field case 'n': // Numeric field // Numeric field case 'b': // Currency if (empty($f['options_array']) || isset($f['options_array']['0']) && strlen($f['options_array']['0']) == 0) { // Use default // Pending: Unable to locate the object to check to determine the default (in the tracker field definitions). Hardcode true. Arild $isTextOnSameRow = true; } else { $isTextOnSameRow = intval($f['options_array']['0']) == 0 ? false : true; } break; case 'a': // Text area $isTextOnSameRow = true; if (isset($f['options_array']['8'])) { if (empty($f['options_array']) || isset($f['options_array']['8']) && strlen($f['options_array']['8']) == 0) { // Use default // Pending: Unable to locate the object to check to determine the default (in the tracker field definitions). Hardcode true. Arild $isTextOnSameRow = true; } else { $isTextOnSameRow = intval($f['options_array']['8']) == 0 ? false : true; } } break; } if (!empty($colwidth)) { $back .= " width='" . $colwidth . "'"; } $back .= '><label class="' . $labelclass . ' control-label" for="' . $f['ins_id'] . '">' . wikiplugin_tracker_name($f['fieldId'], tra($f['name']), $field_errors); // if ($showmandatory == 'y' and $f['isMandatory'] == 'y' && $registration != 'y') { $back .= " <strong class='mandatory_star'>*</strong> "; } $back .= '</label>'; // If use different lines, add a line break. // Otherwise a new column if (!$isTextOnSameRow) { $back .= "<br/>"; } else { $back .= '<div class="' . $inputclass . ' tracker_input_value tracker_field' . $f['fieldId'] . '">'; // '</td><td class="tracker_input_value">'; } $back .= wikiplugin_tracker_render_input($f, $item, $dynamicSave) . "</div>"; // chibaguy added /divs if ($showmandatory == 'y' and $f['isMandatory'] == 'y' && $registration == 'y') { $back .= '<div class="col-md-1 col-sm-1"><span class="text-danger tips" title=":' . tra('This field is mandatory') . '">*</span></div>'; } if ($isTextOnSameRow) { $back .= '</div>'; } } if ($f['type'] != 'S' && empty($tpl) && empty($wiki)) { if ($showfieldsdesc == 'y') { $back .= '<div class="form-group tracker-help-block"><div class="' . $labelclass . ' control-label sr-only">Label</div><div class="' . $inputclass . ' trackerplugindesc help-block">'; if ($f['descriptionIsParsed'] == 'y') { $back .= $tikilib->parse_data($f['description']); } else { $back .= tra($f['description']); } $back .= '</div></div>'; } } } } if (isset($params['fieldsfill']) && !empty($params['fieldsfill']) && empty($itemId)) { // $back.= '<tr><td><label for="ins_fill">' . tra("Create multiple items (one per line).") . '</label>'; $back .= '<div class="form-group"><label class="col-md-3" for="ins_fill">' . tra("Insert one item per line:") . '<br />' . '<br />' . '<br />' . '</label>'; $back .= <<<FILL // </td><td> <input type="hidden" value="" name="mode_wysiwyg"/> <input type="hidden" value="" name="mode_normal"/> <div class="edit-zone"> <textarea id="ins_fill" class="wikiedit class="form-control" data-syntax="" data-codemirror="" onkeyup="" rows="15" name="ins_fill" > </textarea> </div> <input type="hidden" value="n" name="wysiwyg"/> <div name="ins_fill_desc" class="trackerplugindesc" > FILL; $back .= sprintf(tra('Each line is a list of %d field values separated with: %s'), $fill_line_cant, htmlspecialchars($fieldsfillseparator)); $back .= '</div><div name="ins_fill_desc2" class="trackerplugindesc" >' . htmlspecialchars(implode($fieldsfillseparator, $fieldsfillnames)); $back .= '</div>'; // $back .= '</td></tr>'; } if ($prefs['feature_antibot'] == 'y' && (empty($user) || !empty($user) && isset($_REQUEST['error']) && $_REQUEST['error'] == 'y')) { $smarty->assign('showantibot', true); } if (!empty($tpl)) { $smarty->security = true; $back .= $smarty->fetch($tpl); } elseif (!empty($wiki)) { $smarty->security = true; if ($tikilib->page_exists($wiki)) { $back .= $smarty->fetch('wiki:' . $wiki); } else { $back .= '<span class="alert-warning">' . tr('Missing wiki template page "%0"', htmlspecialchars($wiki)) . '</span>'; } } $smarty->assign('showmandatory', $showmandatory); if ($prefs['feature_antibot'] == 'y' && empty($user) && (!isset($transactionStep) || $transactionStep == 0) && $params['formtag'] != 'n' && ($registration != 'y' || $prefs["user_register_prettytracker"] != 'y')) { // in_tracker session var checking is for tiki-register.php $smarty->assign('antibot_table', empty($wiki) && empty($tpl) ? 'n' : 'y'); $captchalib = TikiLib::lib('captcha'); $smarty->assign('captchalib', $captchalib); if ($registration == 'y') { $smarty->assign('form', 'register'); } $back .= $smarty->fetch('antibot.tpl'); } $back .= '</div>'; if ($params['formtag'] == 'y') { if (empty($wiki) && empty($tpl)) { $back .= '<div class="form-group"><div class="input_submit_container btn-bar ' . $buttonclass . '">'; } else { $back .= '<div class="form-group"><div class="input_submit_container btn-bar">'; } if (!empty($reset)) { $back .= '<input class="button submit preview" type="reset" name="tr_reset" value="' . tra($reset) . '" />'; } if (!empty($preview)) { $back .= '<input class="btn btn-default button submit preview" type="submit" name="tr_preview" value="' . tra($preview) . '" />'; } foreach ($action as $key => $act) { $back .= '<input class="button submit ' . $action_style[$key] . '" type="submit" name="action' . $key . '" value="' . tra($act) . '" onclick="needToConfirm=false" />'; } $back .= '</div></div>'; } if ($showmandatory == 'y' and $onemandatory) { if (empty($wiki) && empty($tpl)) { $back .= "<div class='form-group'><div class='" . $buttonclass . "'><div class='text-center alert alert-danger'><em>" . tra("Fields marked with an * are mandatory.") . "</em></div></div></div>"; } else { $back .= "<div class='form-group'><div class='text-center alert alert-danger'><em>" . tra("Fields marked with an * are mandatory.") . "</em></div></div>"; } } if ($params['formtag'] == 'y') { $back .= '</form>'; } if (!empty($params['_ajax_form_ins_id'])) { // save new js in a function for the form init fn $headerlib->add_js(' var ajaxTrackerFormInit_' . $params['_ajax_form_ins_id'] . ' = function() {' . $headerlib->output_js(false) . '}', 10); // put back the pre-existing js $headerlib->js = array_merge($headerlib->js, $old_js['js']); $headerlib->jq_onready = array_merge($headerlib->jq_onready, $old_js['jq_onready']); } if (!empty($page)) { $back .= '~/np~'; } $smarty->assign_by_ref('tiki_p_admin_trackers', $perms['tiki_p_admin_trackers']); return $back; } else { if (isset($_REQUEST['trackit']) and $_REQUEST['trackit'] == $trackerId) { $smarty->assign('wikiplugin_tracker', $trackerId); } //used in vote plugin $id = ' id="wikiplugin_tracker' . $iTRACKER . '"'; if ($showtitle == 'y') { $back .= '<div class="h1"' . $id . '>' . $tracker["name"] . '</div>'; $id = ''; } if ($showdesc == 'y') { $back .= '<div class="wikitext"' . $id . '>' . $tracker["description"] . '</div><br />'; $id = ''; } $back .= "<div{$id}>" . $data . '</div>'; return $back; } }
function wikiplugin_vimeo($data, $params) { global $prefs; static $instance = 0; $instance++; if (isset($params['url'])) { $params['vimeo'] = $params['url']; unset($params['url']); return wikiplugin_flash($data, $params); } elseif (isset($params['fileId'])) { $fileIds = preg_split('/\\D+/', $params['fileId'], -1, PREG_SPLIT_NO_EMPTY); unset($params['fileId']); $out = ''; foreach ($fileIds as $fileId) { $attributelib = TikiLib::lib('attribute'); $attributes = $attributelib->get_attributes('file', $fileId); if (!empty($attributes['tiki.content.url'])) { $params['vimeo'] = $attributes['tiki.content.url']; $out .= wikiplugin_flash($data, $params); } else { TikiLib::lib('errorreport')->report(tr('Vimeo video not found for file #%0', $fileId)); } } return $out; } else { global $page; $smarty = TikiLib::lib('smarty'); if ($prefs['vimeo_upload'] !== 'y') { $smarty->loadPlugin('smarty_block_remarksbox'); $repeat = false; return smarty_block_remarksbox(array('type' => 'error', 'title' => tra('Feature required')), tra('Feature "vimeo_upload" is required to be able to add videos here.'), $smarty, $repeat); } // old perms access to get "special" gallery perms to handle user gals etc $perms = TikiLib::lib('tiki')->get_perm_object(!empty($params['galleryId']) ? $params['galleryId'] : $prefs['vimeo_default_gallery'], 'file gallery', TikiLib::lib('filegal')->get_file_gallery_info($prefs['vimeo_default_gallery']), false); if ($perms['tiki_p_upload_files'] !== 'y') { return ''; //$permMessage = tra('You do not have permsission to add files here.'); } else { if (!empty($params['fromFieldId'])) { $fieldInfo = TikiLib::lib('trk')->get_tracker_field($params['fromFieldId']); if (empty($params['fromItemId'])) { $item = Tracker_Item::newItem($fieldInfo['trackerId']); } else { $item = Tracker_Item::fromId($params['fromItemId']); } if (!$item->canModify()) { return ''; //$permMessage = tra('You do not have permsission modify this tracker item.'); } } else { if ($page) { $pagePerms = Perms::get(array('type' => 'wiki page', 'object' => $page))->edit; if (!$pagePerms) { return ''; //$permMessage = tra('You do not have permsission modify this page.'); } } } } // set up for an upload $smarty->loadPlugin('smarty_function_button'); $smarty->loadPlugin('smarty_function_service'); $html = smarty_function_button(array('_keepall' => 'y', '_class' => 'vimeo dialog', 'href' => smarty_function_service(array('controller' => 'vimeo', 'action' => 'upload'), $smarty), '_text' => tra('Upload Video')), $smarty); $js = ' $(".vimeo.dialog").click(function () { var link = this; $(this).serviceDialog({ title: tr("Upload Video"), data: { controller: "vimeo", action: "upload"' . (!empty($params['galleryId']) ? ',galleryId:' . $params['galleryId'] : '') . (!empty($params['fromFieldId']) ? ',fieldId:' . $params['fromFieldId'] : '') . (!empty($params['fromItemId']) ? ',itemId:' . $params['fromItemId'] : '') . ' }, load: function(data) { var $dialog = $(".vimeo_upload").parents(".ui-dialog-content"); // odd its the content, not the outer div $(".vimeo_upload").on("vimeo_uploaded", function(event, data) {'; if (!empty($page) && empty($params['fromFieldId'])) { $js .= ' var params = { page: ' . json_encode($page) . ', content: "", index: ' . $instance . ', type: "vimeo", params: { url: data.url } }; $.post("tiki-wikiplugin_edit.php", params, function() { $("input[type=file]", $dialog).val(""); // webkit reloads the dialog as it destroys it for some reason $dialog.dialog("destroy").remove(); $.get($.service("wiki", "get_page", {page:' . json_encode($page) . '}), function (data) { if (data) { $("#page-data").html(data); } }); });'; } else { $js .= ' $dialog.dialog("destroy").remove(); handleVimeoFile(link, data); '; } $js .= ' }); } }); return false; });'; TikiLib::lib('header')->add_jq_onready($js); return $html; } }
function action_insert_item($input) { $processedFields = array(); $trackerId = $input->trackerId->int(); if (!$trackerId) { return ['FORWARD' => ['controller' => 'tracker', 'action' => 'select_tracker']]; } $trackerName = $this->trackerName($trackerId); $definition = Tracker_Definition::get($trackerId); if (!$definition) { throw new Services_Exception_NotFound(); } $itemObject = Tracker_Item::newItem($trackerId); if (!$itemObject->canModify()) { throw new Services_Exception_Denied(); } $fields = $input->fields->none(); $forced = $input->forced->none(); if (empty($fields)) { $toRemove = array(); $processedFields = $itemObject->prepareInput($input); $fields = array(); foreach ($processedFields as $k => $f) { $permName = $f['permName']; $fields[$permName] = $f['value']; if (isset($forced[$permName])) { $toRemove[$permName] = $k; } } foreach ($toRemove as $permName => $key) { unset($fields[$permName]); unset($processedFields[$key]); } } else { $out = array(); foreach ($fields as $key => $value) { if ($itemObject->canModifyField($key)) { $out[$key] = $value; } } $fields = $out; } global $prefs; if ($prefs['feature_jquery_validation'] === 'y') { $validationjs = TikiLib::lib('validators')->generateTrackerValidateJS($definition->getFields()); TikiLib::lib('header')->add_jq_onready('$("#insertItemForm' . $trackerId . '").validate({' . $validationjs . $this->get_validation_options()); } $itemId = 0; if (!empty($fields) && $_SERVER['REQUEST_METHOD'] == 'POST') { foreach ($forced as $key => $value) { if ($itemObject->canModifyField($key)) { $fields[$key] = $value; } } $itemId = $this->utilities->insertItem($definition, array('status' => $input->status->word(), 'fields' => $fields)); if ($itemId) { TikiLib::lib('unifiedsearch')->processUpdateQueue(); TikiLib::events()->trigger('tiki.process.redirect'); // wait for indexing to complete before loading of next request to ensure updated info shown if ($next = $input->next->url()) { $access = TikiLib::lib('access'); $access->redirect($next, tr('Item created')); } $item = $this->utilities->getItem($trackerId, $itemId); $item['itemTitle'] = $this->utilities->getTitle($definition, $item); return $item; } else { throw new Services_Exception(tr('Item could not be created.'), 400); } } return array('title' => tr('Create Item'), 'trackerId' => $trackerId, 'trackerName' => $trackerName, 'itemId' => $itemId, 'fields' => $processedFields, 'forced' => $forced, 'trackerLogo' => $definition->getConfiguration('logo'), 'modal' => $input->modal->int(), 'status' => $itemObject->getDisplayedStatus(), 'format' => $input->format->word()); }
function action_object($input) { global $prefs; $definition = Tracker_Definition::get($prefs['mustread_tracker']); if (!$definition) { throw new Services_Exception_NotFound(tr('Misconfigured feature')); } $field = $definition->getFieldFromPermName($input->field->word()); if (!$field) { throw new Services_Exception_NotFound(tr('Target field not found.')); } $type = $input->type->text(); $object = $input->object->text(); $objectlib = TikiLib::lib('object'); $servicelib = TikiLib::lib('service'); if (!$type || !$object || !($title = $objectlib->get_title($type, $object))) { throw new Services_Exception_NotFound(tr('Object not found.')); } $list = []; if ($field['type'] == 'REL') { $searchlib = TikiLib::lib('unifiedsearch'); $query = $this->getListQuery(); $main = '"' . Search_Query_Relation::token($field['options_map']['relation'], $type, $object) . '"'; $invert = '"' . Search_Query_Relation::token($field['options_map']['relation'] . '.invert', $type, $object) . '"'; if ($field['options_map']['invert']) { $query->filterRelation("{$main} OR {$invert}"); } else { $query->filterRelation($main); } $list = $query->search($searchlib->getIndex()); } return ['title' => tr('Must Read for %0', $title), 'type' => $type, 'object' => $object, 'fields' => [$field['permName'] => "{$type}:{$object}"], 'current' => $list, 'canAdd' => Tracker_Item::newItem($prefs['mustread_tracker'])->canModify()]; }
function action_insert_item($input) { $processedFields = array(); $trackerId = $input->trackerId->int(); if (!$trackerId) { return ['FORWARD' => ['controller' => 'tracker', 'action' => 'select_tracker']]; } $trackerName = $this->trackerName($trackerId); $definition = Tracker_Definition::get($trackerId); if (!$definition) { throw new Services_Exception_NotFound(); } $itemObject = Tracker_Item::newItem($trackerId); if (!$itemObject->canModify()) { throw new Services_Exception_Denied(); } $fields = $input->fields->none(); $forced = $input->forced->none(); if (empty($fields)) { $toRemove = array(); $processedFields = $itemObject->prepareInput($input); $fields = array(); foreach ($processedFields as $k => $f) { $permName = $f['permName']; $fields[$permName] = $f['value']; if (isset($forced[$permName])) { $toRemove[$permName] = $k; } } foreach ($toRemove as $permName => $key) { unset($fields[$permName]); unset($processedFields[$key]); } } else { $out = array(); foreach ($fields as $key => $value) { if ($itemObject->canModifyField($key)) { $out[$key] = $value; } } $fields = $out; } global $prefs; if ($prefs['feature_jquery_validation'] === 'y') { $validationjs = TikiLib::lib('validators')->generateTrackerValidateJS($definition->getFields()); TikiLib::lib('header')->add_jq_onready('$("#insertItemForm' . $trackerId . '").validate({' . $validationjs . $this->get_validation_options()); } $itemId = 0; if (!empty($fields) && $_SERVER['REQUEST_METHOD'] == 'POST') { foreach ($forced as $key => $value) { if ($itemObject->canModifyField($key)) { $fields[$key] = $value; } } // test if one item per user if ($definition->getConfiguration('oneUserItem', 'n') == 'y') { $tmp = TikiLib::lib('trk')->get_user_item($trackerId, $definition->getInformation()); if ($tmp > 0) { throw new Services_Exception(tr('Item could not be created. Only one item per user is allowed.'), 400); } } $itemId = $this->utilities->insertItem($definition, array('status' => $input->status->word(), 'fields' => $fields)); if ($itemId) { TikiLib::lib('unifiedsearch')->processUpdateQueue(); TikiLib::events()->trigger('tiki.process.redirect'); // wait for indexing to complete before loading of next request to ensure updated info shown if ($next = $input->next->url()) { $access = TikiLib::lib('access'); $access->redirect($next, tr('Item created')); } $item = $this->utilities->getItem($trackerId, $itemId); $item['itemTitle'] = $this->utilities->getTitle($definition, $item); return $item; } else { throw new Services_Exception(tr('Item could not be created.'), 400); } } $editableFields = $input->editable->none(); if (empty($editableFields)) { //if editable fields, show all fields in the form (except the ones from forced which have been removed). $displayedFields = $processedFields; } else { // if editableFields is set, only add the field if found in the editableFields array $displayedFields = array(); foreach ($processedFields as $k => $f) { $permName = $f['permName']; if (in_array($permName, $editableFields)) { $displayedFields[] = $f; } } } $status = $input->status->word(); if ($status === null) { // '=== null' means status was not set. if status is set to "", it skips the status and uses the default $status = $itemObject->getDisplayedStatus(); } else { $status = $input->status->word(); } $title = $input->title->none(); if (empty($title)) { // '=== null' means status was not set. if status is set to "", it skips the status and uses the default $title = tr('Create Item'); } else { $title = $title; } return array('title' => $title, 'trackerId' => $trackerId, 'trackerName' => $trackerName, 'itemId' => $itemId, 'fields' => $displayedFields, 'forced' => $forced, 'trackerLogo' => $definition->getConfiguration('logo'), 'modal' => $input->modal->int(), 'status' => $status, 'format' => $input->format->word()); }
function action_insert_item($input) { $processedFields = array(); $trackerId = $input->trackerId->int(); $definition = Tracker_Definition::get($trackerId); if (!$definition) { throw new Services_Exception_NotFound(); } $itemObject = Tracker_Item::newItem($trackerId); if (!$itemObject->canModify()) { throw new Services_Exception_Denied(); } $fields = $input->fields->none(); $forced = $input->forced->none(); if (empty($fields)) { $toRemove = array(); $processedFields = $itemObject->prepareInput($input); $fields = array(); foreach ($processedFields as $k => $f) { $permName = $f['permName']; $fields[$permName] = $f['value']; if (isset($forced[$permName])) { $toRemove[$permName] = $k; } } foreach ($toRemove as $permName => $key) { unset($fields[$permName]); unset($processedFields[$key]); } } else { $out = array(); foreach ($fields as $key => $value) { if ($itemObject->canModifyField($key)) { $out[$key] = $value; } } $fields = $out; } global $prefs; if ($prefs['feature_jquery_validation'] === 'y') { $validationjs = TikiLib::lib('validators')->generateTrackerValidateJS($definition->getFields()); TikiLib::lib('header')->add_jq_onready('$("#insertItemForm").validate({' . $validationjs . ', ignore: ".ignore"});'); } $itemId = 0; if (!empty($fields) && $_SERVER['REQUEST_METHOD'] == 'POST') { foreach ($forced as $key => $value) { if ($itemObject->canModifyField($key)) { $fields[$key] = $value; } } $itemId = $this->utilities->insertItem($definition, array('status' => $input->status->word(), 'fields' => $fields)); if ($itemId) { TikiLib::lib('unifiedsearch')->processUpdateQueue(); return $this->utilities->getItem($trackerId, $itemId); } else { throw new Services_Exception(tr('Item could not be created.'), 400); } } return array('trackerId' => $trackerId, 'itemId' => $itemId, 'fields' => $processedFields, 'forced' => $forced); }
function action_insert_item($input) { $processedFields = array(); $trackerId = $input->trackerId->int(); $definition = Tracker_Definition::get($trackerId); if (!$definition) { throw new Services_Exception_NotFound(); } $itemObject = Tracker_Item::newItem($trackerId); if (!$itemObject->canModify()) { throw new Services_Exception(tr('Permission denied.'), 403); } $fields = $input->fields->none(); $forced = $input->forced->none(); if (empty($fields)) { $toRemove = array(); $processedFields = $itemObject->prepareInput($input); $fields = array(); foreach ($processedFields as $k => $f) { $permName = $f['permName']; $fields[$permName] = $f['value']; if (isset($forced[$permName])) { $toRemove[$permName] = $k; } } foreach ($toRemove as $permName => $key) { unset($fields[$permName]); unset($processedFields[$key]); } } else { $out = array(); foreach ($fields as $key => $value) { if ($itemObject->canModifyField($key)) { $out[$key] = $value; } } $fields = $out; } $itemId = 0; if (!empty($fields) && $_SERVER['REQUEST_METHOD'] == 'POST') { foreach ($forced as $key => $value) { if ($itemObject->canModifyField($key)) { $fields[$key] = $value; } } $itemId = $this->utilities->insertItem($definition, array('status' => $input->status->word(), 'fields' => $fields)); if ($itemId) { TikiLib::lib('unifiedsearch')->processUpdateQueue(); return $this->utilities->getItem($trackerId, $itemId); } else { throw new Services_Exception(tr('Item could not be created.'), 400); } } return array('trackerId' => $trackerId, 'itemId' => $itemId, 'fields' => $processedFields, 'forced' => $forced); }
function wikiplugin_tracker($data, $params) { global $tikilib, $userlib, $user, $group, $page, $smarty, $prefs, $trklib, $captchalib; $parserlib = TikiLib::lib('parser'); static $iTRACKER = 0; ++$iTRACKER; if (isset($params['itemId']) && empty($params['itemId'])) return; include_once('lib/trackers/trackerlib.php'); $default = array('overwrite' => 'n', 'embedded' => 'n', 'showtitle' => 'n', 'showdesc' => 'n', 'sort' => 'n', 'showmandatory'=>'y', 'status' => '', 'registration' => 'n', 'emailformat' => 'text'); $params = array_merge($default, $params); $item = array(); extract($params, EXTR_SKIP); if ($prefs['feature_trackers'] != 'y') { return $smarty->fetch("wiki-plugins/error_tracker.tpl"); } if (empty($trackerId) || !($tracker = $trklib->get_tracker($trackerId))) { return $smarty->fetch("wiki-plugins/error_tracker.tpl"); } if ($t = $trklib->get_tracker_options($trackerId)) { $tracker = array_merge($tracker, $t); } if (empty($trackerId) && !empty($view) && $view == 'user' && $prefs['userTracker'] == 'y') { // the user tracker item $utid = $userlib->get_tracker_usergroup($user); if (!empty($utid) && !empty($utid['usersTrackerId'])) { $itemId = $trklib->get_item_id($utid['usersTrackerId'], $utid['usersFieldId'], $user); $trackerId = $utid['usersTrackerId']; $usertracker = true; } } elseif (!empty($trackerId) && !empty($view) && $view == 'user') {// the user item of a tracker $itemId = $trklib->get_user_item($trackerId, $tracker, null, null, strlen($status) == 1 ? $status : ''); $usertracker = true; } elseif (!empty($trackerId) && !empty($view) && $view == 'page' && !empty($_REQUEST['page']) && (($f = $trklib->get_field_id_from_type($trackerId, 'k', '1%')) || ($f = $trklib->get_field_id_from_type($trackerId, 'k', '%,1%')) || ($f = $trklib->get_field_id_from_type($trackerId, 'k')))) {// the page item $itemId = $trklib->get_item_id($trackerId, $f, $_REQUEST['page']); } elseif (!empty($trackerId) && !empty($_REQUEST['view_user'])) { $itemId = $trklib->get_user_item($trackerId, $tracker, $_REQUEST['view_user']); } elseif (!empty($_REQUEST['itemId']) && (empty($ignoreRequestItemId) || $ignoreRequestItemId != 'y')) { $itemId = $_REQUEST['itemId']; $item = $trklib->get_tracker_item($itemId); $trackerId = $item['trackerId']; } elseif (!empty($view) && $view == 'group') { $gtid = $userlib->get_grouptrackerid($group); if (isset($gtid['groupTrackerId'])) { $trackerId = $gtid['groupTrackerId']; $itemId = $trklib->get_item_id($trackerId, $gtid['groupFieldId'], $group); $grouptracker = true; } } if (!isset($trackerId)) { return $smarty->fetch("wiki-plugins/error_tracker.tpl"); } if (!isset($action)) { $action = array('Save'); } if (!is_array($action)) { $action = array( $action ); } if (isset($preview)) { if (empty($preview)) { $preview = 'Preview'; } } else { unset($_REQUEST['tr_preview']); } if (isset($reset)) { if (empty($reset)) { $reset = 'reset'; } } else { unset($_REQUEST['tr_reset']); } $smarty->assign('showmandatory', empty($wiki) && empty($tpl)? 'n': $showmandatory); if (!empty($wiki)) { if (preg_match('/^wiki:(.+)$/', $wiki, $wiki_matches)) { $wiki = $wiki_matches[1]; } $wiki = trim($wiki); } if (!isset($params['formtag'])) { $params['formtag'] = 'y'; } $fields_prefix = 'ins_'; if (isset($values)) { if (!is_array($values)) { $values = $parserlib->quotesplit(':', $values); foreach ($values as $i=>$v) { $values[$i] = preg_replace('/^"(.*)"$/', '$1', $v); } } } if (isset($_REQUEST['values'])) { if (is_array($_REQUEST['values'])) { foreach ($_REQUEST['values'] as $i=>$k) { $_REQUEST['values'][$i] = urldecode($k); } } else { $_REQUEST['values'] = urldecode($_REQUEST['values']); } } $perms = $tikilib->get_perm_object($trackerId, 'tracker', $tracker, false); if (empty($_SERVER['SCRIPT_NAME']) || strpos($_SERVER['SCRIPT_NAME'], 'tiki-register.php') === false) { if ($perms['tiki_p_create_tracker_items'] == 'n' && empty($itemId)) { return '<b>'.tra("You do not have permission to insert an item").'</b>'; } elseif (!empty($itemId)) { $item_info = $trklib->get_tracker_item($itemId); if (empty($item_info)) { return '<b>'.tra("Incorrect item").'</b>'; } $itemObject = Tracker_Item::fromInfo($item_info); if (! $itemObject->canModify()) { return '<b>'.tra("You do not have permission to modify an item").'</b>'; } } } if (!empty($itemId)) { global $logslib; include_once('lib/logs/logslib.php'); $logslib->add_action('Viewed', $itemId, 'trackeritem', $_SERVER['REQUEST_URI']); } if (isset($_REQUEST['removeattach']) && $tracker['useAttachments'] == 'y') { $owner = $trklib->get_item_attachment_owner($_REQUEST['removeattach']); if ($perms['tiki_p_admin_trackers'] == 'y' || ($user && $user == $owner)) { $trklib->remove_item_attachment($_REQUEST["removeattach"]); unset($_REQUEST['removeattach']); } } if (isset($_REQUEST['removeImage']) && !empty($_REQUEST['trackerId']) && !empty($_REQUEST['itemId']) && !empty($_REQUEST['fieldId']) && !empty($_REQUEST['fieldName'])) { $img_field = array('data' => array()); $img_field['data'][] = array('fieldId' => $_REQUEST['fieldId'], 'type' => 'i', 'name' => $_REQUEST['fieldName'], 'value' => 'blank'); $trklib->replace_item($_REQUEST['trackerId'], $_REQUEST['itemId'], $img_field); } $back = ''; $thisIsThePlugin = isset($_REQUEST['iTRACKER']) && $_REQUEST['iTRACKER'] == $iTRACKER; if (!isset($_REQUEST["ok"]) || $_REQUEST["ok"] == "n" || !$thisIsThePlugin || isset($_REQUEST['tr_preview'])) { $field_errors = array('err_mandatory'=>array(), 'err_value'=>array()); global $notificationlib; include_once('lib/notifications/notificationlib.php'); $tracker = $trklib->get_tracker($trackerId); $tracker = array_merge($tracker, $trklib->get_tracker_options($trackerId)); if ((!empty($tracker['start']) && $tikilib->now < $tracker['start']) || (!empty($tracker['end']) && $tikilib->now > $tracker['end'])) return; $outf = array(); $auto_fieldId = array(); $hidden_fieldId = array(); if (!empty($fields) || !empty($wiki) || !empty($tpl)) { if ($registration == 'y' && $prefs["user_register_prettytracker"] == 'y' && !empty($prefs["user_register_prettytracker_tpl"])) { $smarty->assign('register_login', $smarty->fetch('register-login.tpl')); $smarty->assign('register_email', $smarty->fetch('register-email.tpl')); $smarty->assign('register_pass', $smarty->fetch('register-pass.tpl')); $smarty->assign('register_pass2', $smarty->fetch('register-pass2.tpl')); $smarty->assign('register_passcode', $smarty->fetch('register-passcode.tpl')); $smarty->assign('register_groupchoice', $smarty->fetch('register-groupchoice.tpl')); $smarty->assign('register_antibot', $smarty->fetch('antibot.tpl')); $wiki = $prefs["user_register_prettytracker_tpl"]; } if (!empty($wiki)) { $outf = $trklib->get_pretty_fieldIds($wiki, 'wiki', $outputPretty); } elseif (!empty($tpl)) { $outf = $trklib->get_pretty_fieldIds($tpl, 'tpl', $outputPretty); } elseif (!empty($fields)) { $outf = preg_split('/ *: */', $fields); } if (!empty($_REQUEST['autosavefields'])) { $autosavefields = explode(':', $_REQUEST['autosavefields']); $autosavevalues = explode(':', $_REQUEST['autosavevalues']); if (isset($params['autosavefields'])) { $autosavefields = array_merge($autosavefields, $params['autosavefields']); $autosavevalues = array_merge($autosavevalues, $params['autosavevalues']); } } if (!empty($autosavefields)) { $auto_fieldId = array_merge($auto_fieldId, $autosavefields); } if ($user) { $hidden_fieldId[] = $trklib->get_field_id_from_type($trackerId, 'u', '1%'); // user owner $hidden_fieldId[] = $trklib->get_field_id_from_type($trackerId, 'u', '2%'); // user modifier $hidden_fieldId[] = $trklib->get_field_id_from_type($trackerId, 'g', '1%'); // owner group $hidden_fieldId[] = $trklib->get_field_id_from_type($trackerId, 'g', '2%'); // owner modifier } $hidden_fieldId[] = $trklib->get_field_id_from_type($trackerId, 'I', '1%'); // IP auto-assign $hidden_fieldId[] = $trklib->get_field_id_from_type($trackerId, 'k', '1%'); // page creator $auto_fieldId[] = $trklib->get_field_id_from_type($trackerId, 'q'); // auto-increment foreach ($auto_fieldId as $k => $v) { if (empty($v) || in_array($v, $outf)) { unset($auto_fieldId[$k]); } else { $outf[] = $v; } } foreach ($hidden_fieldId as $k => $v) { if (empty($v) || in_array($v, $outf)) { unset($hidden_fieldId[$k]); } else { $outf[] = $v; } } } $definition = Tracker_Definition::get($trackerId); $item_info = isset($item_info) ? $item_info : array(); $factory = $definition->getFieldFactory(); if (empty($item_info)) { $itemObject = Tracker_Item::newItem($trackerId); } elseif (! isset($itemObject)) { $itemObject = Tracker_Item::fromInfo($item_info); } if (empty($outf)) { $unfiltered = array('data' => $definition->getFields()); } else { $unfiltered = array('data' => array()); foreach ($outf as $fieldId) { $unfiltered['data'][] = $definition->getField($fieldId); } } $flds = array('data' => array()); foreach ($unfiltered['data'] as $f) { if ($itemObject->canModifyField($f['fieldId']) || $registration == 'y' && empty($item_info)) { $flds['data'][] = $f; } } // If we create multiple items, get field Ids, default values and separator if (!empty($fieldsfill)) { $fill_fields = preg_split('/ *: */', $fieldsfill); // Allow for superfluous spaces and ignore them $fill_flds = array('data' => array()); $fill_defaults = array(); $fill_flds_defaults = array(); // May be different from fill_defaults if some fields are not editable $fieldsfillnames = array(); if (trim($fieldsfilldefaults) != '') { $fill_defaults = preg_split('/ *: */', $fieldsfilldefaults); } foreach ($fill_fields as $k=>$fieldId) { if ($itemObject->canModifyField($fieldId)) { $tmp = $definition->getField($fieldId); $fill_flds['data'][] = $tmp; if (isset($fill_defaults[$k])) { $fill_flds_defaults[] = $fill_defaults[$k]; } else { $fill_flds_defaults[] = ''; } $fieldsfillnames[] = $tmp['name']; } } $fill_line_cant = count($fill_flds['data']); if ($fieldsfillseparator == '') { $fieldsfillseparator = '|'; } } $bad = array(); $embeddedId = false; $onemandatory = false; $full_fields = array(); $mainfield = ''; if ($thisIsThePlugin) { /* ------------------------------------- Recup all values from REQUEST -------------- */ if (!empty($autosavefields)) { foreach ($autosavefields as $i=>$f) { if (!$ff = $trklib->get_field($f, $flds['data'])) { continue; } if (preg_match('/categories\(([0-9]+)\)/', $autosavevalues[$i], $matches)) { if (ctype_digit($matches[1]) && $matches[1] > 0) { $filter = array('identifier'=>$matches[1], 'type'=>'descendants'); } else { $filter = NULL; } global $categlib; include_once('lib/categories/categlib.php'); $categs = $categlib->getCategories($filter, true, false); $_REQUEST["ins_$f"][] = $categs[0]['categId']; } elseif (preg_match('/preference\((.*)\)/', $autosavevalues[$i], $matches)) { $_REQUEST["ins_$f"] = $prefs[$matches[1]]; } elseif ($ff['type'] == 'e') { $_REQUEST["ins_$f"][] = $autosavevalues[$i]; } else { if (isset($params['levelupfields']) && in_array($f, $params['levelupfields'])) { $current_levelup_val = $trklib->get_item_value($trackerId, $itemId, $f); if ($autosavevalues[$i] <= $current_levelup_val) { continue; } } $_REQUEST["ins_$f"] = $autosavevalues[$i]; } } } foreach ($flds['data'] as $k => $field) { $handler = $factory->getHandler($field, $item_info); if ($handler) { $ins_fields['data'][$k] = array_merge($field, $handler->getFieldData($_REQUEST)); if (isset($ins_fields['data'][$k]['value'])) { // add ins value into field if creating or editing item $flds['data'][$k] = $ins_fields['data'][$k]; // to keep user input in case of errors (not only value) } } } $cpt = 0; if (isset($fields)) { $fields_plugin = preg_split('/:/', $fields); } if (!isset($itemId) && $tracker['oneUserItem'] == 'y') { $itemId = $trklib->get_user_item($trackerId, $tracker); } if ($embedded == 'y' && isset($_REQUEST['page'])) { $ins_fields["data"][] = array('fieldId' => $embeddedId, 'value' => $_REQUEST['page']); } if ($registration == 'y' && isset($params['userField'])) { $userField = $definition->getField($params['userField']); $userField['value'] = $_REQUEST['name']; $ins_fields['data'][] = $userField; } $ins_categs = 0; // important: non-array ins_categs means categories should remain unchanged $parent_categs_only = array(); foreach ($ins_fields['data'] as $current_field) { if ($current_field['type'] == 'e' && isset($current_field['selected_categories'])) { if (!is_array($ins_categs)) { $ins_categs = array(); } $ins_categs = array_merge($ins_categs, $current_field['selected_categories']); $parent_categs_only[] = $current_field['options_array'][0]; } } $categorized_fields = $definition->getCategorizedFields(); /* ------------------------------------- End recup all values from REQUEST -------------- */ /* ------------------------------------- Check field values for each type and presence of mandatory ones ------------------- */ $field_errors = $trklib->check_field_values($ins_fields, $categorized_fields, $trackerId, empty($itemId)?'':$itemId); if (empty($user) && $prefs['feature_antibot'] == 'y' && $registration != 'y') { // in_tracker session var checking is for tiki-register.php if (!$captchalib->validate()) { $field_errors['err_antibot'] = 'y'; } } // check valid page name for wiki output if requested if (isset($outputtowiki) && !empty($outputwiki)) { $newpagename = ''; foreach ($ins_fields["data"] as $fl) { if ($fl["fieldId"] == $outputtowiki) { $newpagename = $fl["value"]; } if ($fl["type"] == 'F') { $newpagefreetags = $fl["value"]; } $newpagefields[] = $fl["fieldId"]; } if ($newpagename) { if ($tikilib->page_exists($newpagename)) { $field_errors['err_outputwiki'] = tra('The page to output the results to already exists. Try another name.'); } $page_badchars_display = ":/?#[]@!$&'()*+,;=<>"; $page_badchars = "/[:\/?#\[\]@!$&'()*+,;=<>]/"; $matches = preg_match($page_badchars, $newpagename); if ($matches) { $field_errors['err_outputwiki'] = tr("The page to output the results to contains the following prohibited characters: %0. Try another name.", $page_badchars_display); } } else { unset($outputtowiki); } } if ( count($field_errors['err_mandatory']) == 0 && count($field_errors['err_value']) == 0 && empty($field_errors['err_antibot']) && empty($field_errors['err_outputwiki']) && !isset($_REQUEST['tr_preview'])) { /* ------------------------------------- save the item ---------------------------------- */ if (isset($_REQUEST['status'])) { $status = $_REQUEST['status']; } elseif (isset($newstatus) && ($newstatus == 'o' || $newstatus == 'c'|| $newstatus == 'p')) { $status = $newstatus; } elseif (empty($itemId) && isset($tracker['newItemStatus'])) { $status = $tracker['newItemStatus']; } else { $status = ''; } if (!empty($fieldsfill) && !empty($_REQUEST['ins_fill']) ) { // We create multiple items $fill_lines = explode("\n", $_REQUEST['ins_fill']); foreach ($fill_lines as $fill_line) { if (trim($fill_line) == '') { // Ignore blank lines continue; } $fill_line_item = explode($fieldsfillseparator,$fill_line,$fill_line_cant); // Extra fields are merged with the last field. this avoids data loss and permits a last text field with commas $rid = $trklib->replace_item($trackerId, $itemId, $ins_fields, $status, $ins_categs); for ($i=0;$i<$fill_line_cant;$i++) { if ($fill_line_item[$i] != '') { $fill_item = trim($fill_line_item[$i]); } else { $fill_item = $fill_flds_defaults[$i]; } $fill_rid = $trklib->modify_field($rid, $fill_flds['data'][$i]['fieldId'], $fill_item); } if (is_array($ins_categs)) { if ($registration == 'y' && empty($item_info)) { $override_perms = true; } else { $override_perms = false; } $trklib->categorized_item($trackerId, $rid, $mainfield, $ins_categs, $parent_categs_only, $override_perms); } if (isset($newItemRate)) { $trklib->replace_rating($trackerId, $rid, $newItemRateField, $user, $newItemRate); } } } else { if ($registration == 'y' && $_SERVER['REQUEST_METHOD'] != 'POST') { return false; } $rid = $trklib->replace_item($trackerId, $itemId, $ins_fields, $status, $ins_categs); if (is_array($ins_categs)) { if ($registration == 'y' && empty($item_info)) { $override_perms = true; } else { $override_perms = false; } $trklib->categorized_item($trackerId, $rid, $mainfield, $ins_categs, $parent_categs_only, $override_perms); } if (isset($newItemRate)) { $trklib->replace_rating($trackerId, $rid, $newItemRateField, $user, $newItemRate); } } // now for wiki output if desired if (isset($outputtowiki) && !empty($outputwiki)) { // note that values will be raw - that is the limit of the capability of this feature for now $newpageinfo = $tikilib->get_page_info($outputwiki); $wikioutput = $newpageinfo["data"]; $newpagefields = $trklib->get_pretty_fieldIds($outputwiki, 'wiki', $outputPretty); foreach ($newpagefields as $lf) { $wikioutput = str_replace('{$f_' . $lf . '}', $trklib->get_item_value($trackerId, $rid, $lf), $wikioutput); } if (isset($registration)) { $wikioutput = str_replace('{$register_login}', $user, $wikioutput); $wikioutput = str_replace('{$register_email}', $_REQUEST['email'], $wikioutput); } $tikilib->create_page($newpagename, 0, $wikioutput, $tikilib->now, '', $user, $tikilib->get_ip_address()); $cat_desc = ''; $cat_type = 'wiki page'; $cat_name = $newpagename; $cat_objid = $newpagename; $cat_href = "tiki-index.php?page=".urlencode($newpagename); if (count($ins_categs)) { $_REQUEST['cat_categories'] = $ins_categs; $_REQUEST['cat_categorize'] = 'on'; include_once("categorize.php"); } if (isset($newpagefreetags) && $newpagefreetags) { $_REQUEST['freetag_string'] = $newpagefreetags; include_once("freetag_apply.php"); } if ($discarditem == 'y') { $trklib->remove_tracker_item($rid); } if (empty($url)) { global $wikilib; $url[0] = $wikilib->sefurl($newpagename); } } // end wiki output if (!empty($email)) { $emailOptions = preg_split("#\|#", $email); if (is_numeric($emailOptions[0])) { $emailOptions[0] = $trklib->get_item_value($trackerId, $rid, $emailOptions[0]); } if (empty($emailOptions[0])) { // from $emailOptions[0] = $prefs['sender_email']; } if (empty($emailOptions[1])) { // to $emailOptions[1][0] = $prefs['sender_email']; } else { $emailOptions[1] = preg_split('/ *, */', $emailOptions[1]); foreach ($emailOptions[1] as $key=>$email) { if (is_numeric($email)) $emailOptions[1][$key] = $trklib->get_item_value($trackerId, $rid, $email); } } include_once('lib/webmail/tikimaillib.php'); $mail = new TikiMail(); $mail->setHeader('From', $emailOptions[0]); if (!empty($emailOptions[2])) { //tpl $emailOptions[2] = preg_split('/ *, */', $emailOptions[2]); foreach ($emailOptions[2] as $ieo=>$eo) { if (!preg_match('/\.tpl$/', $eo)) $emailOptions[2][$ieo] = $eo.'.tpl'; $tplSubject[$ieo] = str_replace('.tpl', '_subject.tpl', $emailOptions[2][$ieo]); } } else { $emailOptions[2] = array('tracker_changed_notification.tpl'); } if (empty($tplSubject)) { $tplSubject = array('tracker_changed_notification_subject.tpl'); } $itpl = 0; $smarty->assign('mail_date', $tikilib->now); $smarty->assign('mail_itemId', $rid); foreach ($emailOptions[1] as $ieo=>$ueo) { @$mail_data = $smarty->fetch('mail/'.$tplSubject[$itpl]); if (empty($mail_data)) $mail_data = tra('Tracker was modified at '). $_SERVER["SERVER_NAME"]; $mail->setSubject($mail_data); $mail_data = $smarty->fetch('mail/'.$emailOptions[2][$itpl]); if ($emailformat == 'html') { $mail->setHtml($mail_data); } else { $mail->setText($mail_data); } $mail->buildMessage(array('text_encoding' => '8bit')); $mail->send($ueo); if (isset($tplSubject[$itpl+1])) ++$itpl; } } if (empty($url)) { if (!empty($_REQUEST['ajax_add'])) { // called by tracker ItemLink fields when adding new list items global $access; while ( ob_get_level() ) { ob_end_clean(); } if ( $prefs['feature_obzip'] == 'y' ) { ob_start('ob_gzhandler'); } else { ob_start(); } // Need to add newly created itemId for item link selector $ins_fields['itemId'] = $rid; $access->output_serialized($ins_fields); ob_end_flush(); die; } else if (!empty($page)) { $url = "tiki-index.php?page=".urlencode($page); if (!empty($itemId)) { $url .= "&itemId=".$itemId; } $url .= "&ok=y&iTRACKER=$iTRACKER"; $url .= "#wikiplugin_tracker$iTRACKER"; header("Location: $url"); exit; } else { return ''; } } else { $key = 0; foreach ($action as $key=>$act) { if (!empty($_REQUEST["action$key"])) { break; } } $itemIdPos = strpos($url[$key], 'itemId'); if ($itemIdPos !== false) { if (strstr($url[$key], '#itemId')) { $url[$key] = str_replace('#itemId', $rid, $url[$key]); } else if (($itemIdPos+strlen('itemId') >= strlen($url[$key])-1) || (substr($url[$key], $itemIdPos+strlen('itemId'), 1) == "&")) { // replace by the itemId if in the end (or -1: for backward compatibility so that "&itemId=" also works) or if it is followed by an '&' $url[$key] = str_replace('itemId', 'itemId='.$rid, $url[$key]); } } header('Location: '.$url[$key]); exit; } /* ------------------------------------- end save the item ---------------------------------- */ } elseif (isset($_REQUEST['trackit']) and $_REQUEST['trackit'] == $trackerId) { $smarty->assign('wikiplugin_tracker', $trackerId);//used in vote plugin } } else if ((empty($itemId) || $overwrite == 'y') && !empty($values) || (!empty($_REQUEST['values']) and empty($_REQUEST['prefills']))) { // assign default values for each filedId specify if (empty($values)) { // url with values[]=x&values[] witouth the list of fields $values = $_REQUEST['values']; } if (!is_array($values)) { $values = array($values); } if (isset($fields)) { $fl = preg_split('/:/', $fields); for ($j = 0, $count_fl = count($fl); $j < $count_fl; $j++) { for ($i = 0, $count_flds = count($flds['data']); $i < $count_flds; $i++) { if ($flds['data'][$i]['fieldId'] == $fl[$j]) { $flds['data'][$i]['value'] = $values[$j]; } } } } else { // values contains all the fields value in the default order $i = 0; foreach ($values as $value) { $flds['data'][$i++]['value'] = $value; } } } elseif (!empty($itemId)) { if (isset($fields)) { $fl = preg_split('/:/', $fields); $filter = ''; foreach ($flds['data'] as $f) { if (in_array($f['fieldId'], $fl)) $filter[] = $f; } } else { $filter = &$flds['data']; } if (!empty($filter)) { foreach ($filter as $f) { $filter2[$f['fieldId']] = $f; } $flds['data'] = $trklib->get_item_fields($trackerId, $itemId, $filter2, $itemUser, true); } // todo: apply the values for fields with no values } else { if (isset($_REQUEST['values']) && isset($_REQUEST['prefills'])) { //url:prefields=1:2&values[]=x&values[]=y if (!is_array($_REQUEST['values'])) $_REQUEST['values'] = array($_REQUEST['values']); $fl = preg_split('/:/', $_REQUEST['prefills']); } else { unset($fl); } for ($i = 0, $count_flds2 = count($flds['data']); $i < $count_flds2; $i++) { if (isset($fl) && ($j = array_search($flds['data'][$i]['fieldId'], $fl)) !== false) { $flds['data'][$i]['value'] = $_REQUEST['values'][$j]; } else { $flds['data'][$i]['value'] = ''; // initialize fields with blank values } } } // Check that individual fields are in the tracker if (!empty($fields)) { $fl = preg_split('/:/', $fields); if ($sort == 'y') { $flds = $trklib->sort_fields($flds, $fl); } foreach ($fl as $l) { $ok = false; foreach ($flds['data'] as $f) { if ($f['fieldId'] == $l) { $ok = true; break; } } if (!$ok) { $back .= '<div class="error">' . tra('Incorrect fieldId:').' '.$l . '</div>'; } } } elseif (empty($fields) && empty($wiki) && empty($tpl)) { // in this case outf still be blank and needs to be filled foreach ($flds['data'] as $f) { $outf[] = $f['fieldId']; } } // Check that multiple fill fields are in the tracker if (!empty($fieldsfill)) { foreach ($fill_fields as $l) { $ok = false; foreach ($fill_flds['data'] as $f) { if ($f['fieldId'] == $l) { $ok = true; break; } } if (!$ok) { $back .= '<div class="error">' . tra('Incorrect fieldId:').' '.$l . '</div>'; } } } // Display warnings when needed if (count($field_errors['err_mandatory']) > 0) { $smarty->assign_by_ref('err_mandatory', $field_errors['err_mandatory']); } if (count($field_errors['err_value']) > 0) { $smarty->assign_by_ref('err_value', $field_errors['err_value']); } if (count($field_errors['err_mandatory']) > 0 || count($field_errors['err_value']) > 0) { $back .= $smarty->fetch('tracker_error.tpl'); $_REQUEST['error'] = 'y'; } if (isset($field_errors['err_antibot'])) { $back.= '<div class="simplebox highlight"><img src="img/icons/exclamation.png" alt=" '.tra('Error').'" style="vertical-align:middle" /> '; $back .= $captchalib->getErrors(); $back.= '</div><br />'; $_REQUEST['error'] = 'y'; } if (isset($field_errors['err_outputwiki'])) { $back.= '<div class="simplebox highlight"><img src="img/icons/exclamation.png" alt=" '.tra('Error').'" style="vertical-align:middle" /> '; $back .= $field_errors['err_outputwiki']; $back.= '</div><br />'; $_REQUEST['error'] = 'y'; } if (count($field_errors['err_mandatory']) > 0 || count($field_errors['err_value']) > 0 || isset($field_errors['err_antibot']) || isset($field_errors['err_outputwiki'])) { $smarty->assign('input_err', 'y'); } if (!empty($page)) $back .= '~np~'; $smarty->assign_by_ref('tiki_p_admin_trackers', $perms['tiki_p_admin_trackers']); $smarty->assign('trackerEditFormId', $iTRACKER); if (!empty($params['_ajax_form_ins_id'])) { global $headerlib; // when called via AJAX take a copy of the JS so far to allow collection $old_js['js'] = $headerlib->js; // of tracker form JS into a function to initialise it when the dialog is created $old_js['jq_onready'] = $headerlib->jq_onready; $headerlib->clear_js(); // so store existing js for later and clear } if ($prefs['feature_jquery'] == 'y' && $prefs['feature_jquery_validation'] == 'y') { global $validatorslib; include_once('lib/validatorslib.php'); $customvalidation = ''; $customvalidation_m = ''; if ($registration == 'y') { // email validation $customvalidation .= 'email: { '; $customvalidation .= 'required: true, '; $customvalidation .= 'email: true }, '; $customvalidation_m .= 'email: { email: "'. tra("Invalid email") . '", required: "' . tra("This field is required") . '"}, '; // password validation $customvalidation .= 'pass: { '; $customvalidation .= 'required: true, '; $customvalidation .= 'remote: { '; $customvalidation .= 'url: "validate-ajax.php", '; $customvalidation .= 'type: "post", '; $customvalidation .= 'data: { '; $customvalidation .= 'validator: "password", '; $customvalidation .= 'input: function() { '; $customvalidation .= 'return $("#pass1").val(); '; $customvalidation .= '} } } '; $customvalidation .= '}, '; $customvalidation_m .= 'pass: { required: "' . tra("This field is required") . '"}, '; // password repeat validation $customvalidation .= 'passAgain: { equalTo: "#pass1" }, '; $customvalidation_m .= 'passAgain: { equalTo: "'. tra("Passwords do not match") . '"}, '; // username validation $customvalidation .= 'name: { '; $customvalidation .= 'required: true, '; $customvalidation .= 'remote: { '; $customvalidation .= 'url: "validate-ajax.php", '; $customvalidation .= 'type: "post", '; $customvalidation .= 'data: { '; $customvalidation .= 'validator: "username", '; $customvalidation .= 'input: function() { '; $customvalidation .= 'return $("#name").val(); '; $customvalidation .= '} } } '; $customvalidation .= '}, '; $customvalidation_m .= 'name: { required: "' . tra("This field is required") . '"}, '; if (extension_loaded('gd') && function_exists('imagepng') && function_exists('imageftbbox') && $prefs['feature_antibot'] == 'y' && empty($user) && $prefs['recaptcha_enabled'] != 'y') { // antibot validation $customvalidation .= '"captcha[input]": { '; $customvalidation .= 'required: true, '; $customvalidation .= 'remote: { '; $customvalidation .= 'url: "validate-ajax.php", '; $customvalidation .= 'type: "post", '; $customvalidation .= 'data: { '; $customvalidation .= 'validator: "captcha", '; $customvalidation .= 'parameter: function() { '; $customvalidation .= 'return $jq("#captchaId").val(); '; $customvalidation .= '}, '; $customvalidation .= 'input: function() { '; $customvalidation .= 'return $jq("#antibotcode").val(); '; $customvalidation .= '} } } '; $customvalidation .= '}, '; $customvalidation_m .= '"captcha[input]": { required: "' . tra("This field is required") . '"}, '; } if ($prefs['useRegisterPasscode'] == 'y') { $customvalidation .= 'passcode: { required: true, remote: { url: "validate-ajax.php", type: "post", data: { validator: "passcode", input: function() { return $("#passcode").val(); } } } }, '; $customvalidation_m .= 'passcode: { required: "' . tra("This field is required") . '"}, '; } } $validationjs = $validatorslib->generateTrackerValidateJS($flds['data'], $fields_prefix, $customvalidation, $customvalidation_m); $smarty->assign('validationjs', $validationjs); $back .= $smarty->fetch('tracker_validator.tpl'); } if ($params['formtag'] == 'y') { $back .= '<form name="editItemForm' . $iTRACKER . '" id="editItemForm' . $iTRACKER . '" enctype="multipart/form-data" method="post"'.(isset($target)?' target="'.$target.'"':'').' action="'. $_SERVER['REQUEST_URI'] .'"><input type="hidden" name="trackit" value="'.$trackerId.'" />'; $back .= '<input type="hidden" name="refresh" value="1" />'; } $back .= '<input type="hidden" name="iTRACKER" value="'.$iTRACKER.'" />'; if (isset($_REQUEST['page'])) $back.= '<input type="hidden" name="page" value="'.$_REQUEST["page"].'" />'; // for registration if (isset($_REQUEST['name'])) $back.= '<input type="hidden" name="name" value="'.$_REQUEST["name"].'" />'; if (isset($_REQUEST['pass'])) { $back.= '<input type="hidden" name="pass" value="'.$_REQUEST["pass"].'" />'; $back.= '<input type="hidden" name="passAgain" value="'.$_REQUEST["pass"].'" />'; } if (isset($_REQUEST['email'])) $back.= '<input type="hidden" name="email" value="'.$_REQUEST["email"].'" />'; if (isset($_REQUEST['antibotcode'])) $back.= '<input type="hidden" name="antibotcode" value="'.$_REQUEST["antibotcode"].'" />'; if (isset($_REQUEST['chosenGroup'])) // for registration $back.= '<input type="hidden" name="chosenGroup" value="'.$_REQUEST["chosenGroup"].'" />'; if (isset($_REQUEST['register'])) $back.= '<input type="hidden" name="register" value="'.$_REQUEST["register"].'" />'; if ($showtitle == 'y') { $back.= '<div class="titlebar">'.$tracker["name"].'</div>'; } if ($showdesc == 'y' && $tracker['description']) { if ($tracker['descriptionIsParsed'] == 'y') { $back .= '<div class="wikitext">'.$tikilib->parse_data($tracker['description']).'</div><br />'; } else { $back.= '<div class="wikitext">'.tra($tracker["description"]).'</div><br />'; } } if (isset($_REQUEST['tr_preview'])) { // use for the computed and join fields $assocValues = array(); $assocNumerics = array(); foreach ($flds['data'] as $f) { if (empty($f['value']) && ($f['type'] == 'u' || $f['type'] == 'g' || $f['type'] == 'I') && ($f['options_array'][0] == '1' || $f['options_array'][0] == '2')) { //need to fill the selector fields for the join $f['value'] = ($f['type'] == 'I')? $tikilib->get_ip_address(): (($f['type'] == 'g')? $group: $user); } $assocValues[$f['fieldId']] = $f['value']; $assocNumerics[$f['fieldId']] = preg_replace('/[^0-9\.\+]/', '', $f['value']); // get rid off the $ and such unit } } if (!empty($itemId)) { $item = array('itemId'=>$itemId, 'trackerId'=>$trackerId); } else { $item = array('itemId'=>''); } foreach ($flds['data'] as $i=>$f) { // collect additional infos if (in_array($f['fieldId'], $outf)) { $flds['data'][$i]['ins_id'] = ($f['type'] == 'e')?'ins_'.$f['fieldId']: $fields_prefix.$f['fieldId']; if (($f['isHidden'] == 'c' || $f['isHidden'] == 'p') && !empty($itemId) && !isset($item['creator'])) { $item['creator'] = $trklib->get_item_creator($trackerId, $itemId); } } } if (!empty($showstatus) && $showstatus == 'y') { $status_types = $trklib->status_types(); $smarty->assign_by_ref('status_types', $status_types); $smarty->assign('form_status', 'status'); $smarty->assign_by_ref('tracker', $tracker); if (!empty($item_info)) { $smarty->assign_by_ref('item', $item_info); } $status_input = $smarty->fetch('tracker_status_input.tpl'); } if ($registration == "y") { $back .= '<input type="hidden" name="register" value="Register" />'; } // Loop on tracker fields and display form if (empty($tpl) && empty($wiki)) { $back.= '<table class="wikiplugin_tracker">'; if (!empty($showstatus) && $showstatus == 'y') { $back .= '<tr><td>'.tra('Status').'</td><td>'.$status_input.'</td></tr>'; } if ($registration == 'y' && $prefs["user_register_prettytracker"] != 'y') { $back .= $smarty->fetch('register-form.tpl'); } } else { $back .= '<div class="wikiplugin_tracker">'; if (!empty($showstatus) && $showstatus == 'y') { $smarty->assign_by_ref('f_status_input', $status_input); } } $backLength0 = strlen($back); foreach ($flds['data'] as $f) { if (!in_array($f['fieldId'], $auto_fieldId) && in_array($f['fieldId'], $hidden_fieldId)) { // Show in hidden form $back.= '<span style="display:none;">' . wikiplugin_tracker_render_input($f, $item) . '</span>'; } elseif (!in_array($f['fieldId'], $auto_fieldId) && in_array($f['fieldId'], $outf)) { if ($showmandatory == 'y' and $f['isMandatory'] == 'y') { $onemandatory = true; } if ($f['type'] == 'A') { $smarty->assign_by_ref('tiki_p_attach_trackers', $perms['tiki_p_attach_trackers']); } if (!empty($tpl) || !empty($wiki)) { if (!empty($outputPretty) && in_array($f['fieldId'], $outputPretty)) { $smarty->assign('f_'.$f['fieldId'], '<span class="outputPretty" id="track_'.$f['fieldId'].'" name="track_'.$f['fieldId'].'">'. wikiplugin_tracker_render_value($f, $item) . '</span>'); } else { $mand = ($showmandatory == 'y' and $f['isMandatory'] == 'y')? " <strong class='mandatory_star'>*</strong> ":''; $smarty->assign('f_'.$f['fieldId'], wikiplugin_tracker_render_input($f, $item).$mand); } } else { $back.= "<tr><td"; if (!empty($colwidth)) { $back .= " width='".$colwidth."'"; } $back .= '><label for="' . $f['ins_id'] . '">' . wikiplugin_tracker_name($f['fieldId'], tra($f['name']), $field_errors) . '</label>'; if ($showmandatory == 'y' and $f['isMandatory'] == 'y') { $back.= " <strong class='mandatory_star'>*</strong> "; } $back.= '</td><td>'; $back .= wikiplugin_tracker_render_input($f, $item); } if ($f['type'] != 'S') { $back .= '<div class="trackerplugindesc">'; } if ($f['type'] != 'S') { if ($f['descriptionIsParsed'] == 'y') { $back .= $tikilib->parse_data($f['description']); } else { $back .= tra($f['description']); } } if ($f['type'] != 'S') { $back .= '</div>'; } } } if ( isset($params['fieldsfill']) && !empty($params['fieldsfill']) && empty($itemId) ) { // $back.= '<tr><td><label for="ins_fill">' . tra("Create multiple items (one per line).") . '</label>'; $back.= '<tr><td><label for="ins_fill">' . tra("Insert one item per line:") . '<br />' . '<br />' . '<br />' . '</label>'; $back.= <<<FILL </td><td> <input type="hidden" value="" name="mode_wysiwyg"/> <input type="hidden" value="" name="mode_normal"/> <div class="edit-zone"> <textarea id="ins_fill" class="wikiedit" style="width: 99%;" data-syntax="" data-codemirror="" onkeyup="" rows="15" cols="50" name="ins_fill" > </textarea > </div> <input type="hidden" value="n" name="wysiwyg"/> <div name="ins_fill_desc" class="trackerplugindesc" > FILL; $back.= sprintf(tra('Each line is a list of %d field values separated with: %s'),$fill_line_cant,htmlspecialchars($fieldsfillseparator)); $back .= '</div><div name="ins_fill_desc2" class="trackerplugindesc" >' . htmlspecialchars(implode($fieldsfillseparator,$fieldsfillnames)) ; $back .= '</div></td></tr>'; } if (!empty($tpl)) { $smarty->security = true; $back .= $smarty->fetch($tpl); } elseif (!empty($wiki)) { $smarty->security = true; if ($tikilib->page_exists($wiki)) { $back .= $smarty->fetch('wiki:'.$wiki); } else { $back .= '<span class="error">' . tr('Missing wiki template page "%0"', htmlspecialchars($wiki)) . '</span>'; } } include_once('lib/smarty_tiki/function.trackerheader.php'); $back .= smarty_function_trackerheader(array('level'=>-1, 'title'=>'', 'inTable' =>(empty($tpl) && empty($wiki))?'wikiplugin_tracker':'' ), $smarty); if ($prefs['feature_antibot'] == 'y' && empty($user) && $formtag != 'n' && ($registration != 'y' || $prefs["user_register_prettytracker"] != 'y') ) { // in_tracker session var checking is for tiki-register.php $smarty->assign('showmandatory', $showmandatory); $smarty->assign('antibot_table', empty($wiki) && empty($tpl)?'n': 'y'); $back .= $smarty->fetch('antibot.tpl'); } if (empty($tpl) && empty($wiki)) { $back.= "</table>"; } else { $back .= '</div>'; } if ($params['formtag'] == 'y') { $back .= '<div class="input_submit_container">'; if (!empty($reset)) { $back .= '<input class="button submit preview" type="reset" name="tr_reset" value="'.tra($reset).'" />'; } if (!empty($preview)) { $back .= '<input class="button submit preview" type="submit" name="tr_preview" value="'.tra($preview).'" />'; } foreach ($action as $key=>$act) { $back .= '<input class="button submit" type="submit" name="action'.$key.'" value="'.tra($act).'" onclick="needToConfirm=false" />'; } $back .= '</div>'; } if ($showmandatory == 'y' and $onemandatory) { $back.= "<em class='mandatory_note'>".tra("Fields marked with a * are mandatory.")."</em>"; } if ($params['formtag'] == 'y') { $back.= '</form>'; } if (!empty($params['_ajax_form_ins_id'])) { // save new js in a function for the form init fn $headerlib->add_js(' var ajaxTrackerFormInit_' . $params['_ajax_form_ins_id'] . ' = function() {' . $headerlib->output_js(false) . '}', 10); // put back the pre-existing js $headerlib->js = array_merge( $headerlib->js, $old_js['js']); $headerlib->jq_onready = array_merge( $headerlib->jq_onready, $old_js['jq_onready']); } if (!empty($page)) $back .= '~/np~'; $smarty->assign_by_ref('tiki_p_admin_trackers', $perms['tiki_p_admin_trackers']); return $back; } else { if (isset($_REQUEST['trackit']) and $_REQUEST['trackit'] == $trackerId) $smarty->assign('wikiplugin_tracker', $trackerId);//used in vote plugin $id = ' id="wikiplugin_tracker'.$iTRACKER.'"'; if ($showtitle == 'y') { $back.= '<div class="titlebar"'.$id.'>'.$tracker["name"].'</div>'; $id = ''; } if ($showdesc == 'y') { $back.= '<div class="wikitext"'.$id.'>'.$tracker["description"].'</div><br />'; $id = ''; } $back.= "<div$id>".$data.'</div>'; return $back; } }