public static function valid($token)
{
if (!CSRF::valid($token)) {
$css_files = array();
$view = "access_denied";
\CODOF\Smarty\Layout::load($view, $css_files);
return false;
}
return true;
}
public static function tpl($tpl)
{
\CODOF\Smarty\Layout::load('file:' . PLUGIN_DIR . $tpl);
}
//exit;
});
//-------------PAGES--------------------------
dispatch_get('/page/:id/:url', function ($id, $url) {
$pid = (int) $id;
$user = \CODOF\User\User::get();
$qry = 'SELECT title, content FROM ' . PREFIX . 'codo_pages p ' . ' LEFT JOIN ' . PREFIX . 'codo_page_roles r ON r.pid=p.id ' . ' WHERE (r.rid IS NULL OR (r.rid IS NOT NULL AND r.rid IN (' . implode($user->rids) . ')))' . ' AND p.id=' . $pid;
$res = \DB::getPDO()->query($qry);
$row = $res->fetch();
if ($row) {
$title = $row['title'];
$content = $row['content'];
$smarty = CODOF\Smarty\Single::get_instance();
$smarty->assign('contents', $content);
\CODOF\Store::set('sub_title', $title);
\CODOF\Smarty\Layout::load('page');
\CODOF\Hook::call('on_page_load', array($id));
} else {
$page = \DB::table(PREFIX . 'codo_pages')->where('id', $id)->first();
if ($page == null) {
\CODOF\Smarty\Layout::not_found();
} else {
\CODOF\Smarty\Layout::access_denied();
}
}
});
//-------------USER-------------------------------------------------------------
dispatch_get('/user/logout', function () {
$user = new \Controller\user();
$user->logout();
CODOF\Smarty\Layout::load($user->view, $user->css_files, $user->js_files);
