Index: trunk/kernel/action.php
===================================================================
diff -u -N -r3471 -r3508
--- trunk/kernel/action.php (.../action.php) (revision 3471)
+++ trunk/kernel/action.php (.../action.php) (revision 3508)
@@ -6,7 +6,7 @@
if (!isset($_SERVER['SCRIPT_FILENAME'])) {
$_SERVER['SCRIPT_FILENAME'] = $_SERVER['SCRIPT_NAME'];
}
-$script = basename($_SERVER['SCRIPT_FILENAME']);
+$script = basename($_SERVER['PHP_SELF']);
$skipDebug = Array('index.php','tree.php','head.php','credits.php');
if( admin_login() && !in_array($script, $skipDebug) )
{
@@ -36,13 +36,13 @@
if( GetVar('categorylist', true) !== false )
{
$cat_id = $_POST['categorylist'];
- $objSession->SetVariable('categoryid', $cat_id);
-
+ $objSession->SetVariable('categoryid', $cat_id);
+
if($cat_id > 0)
{
$cat = $objCatList->GetByResource($cat_id);
if(is_object($cat))
- {
+ {
$navbar = $cat->Get('CachedNavbar');
$objSession->SetVariable('catnavbar', $navbar);
$objSession->SetVariable('import_category_id', $cat->UniqueId() );
@@ -52,40 +52,40 @@
global $objConfig;
$objSession->SetVariable('import_category_id', 0);
}
-
+
$objSession->SetVariable('categorylist', $_POST['categorylist']);
}
-
+
// Set Import Admin Group
if( GetVar('grouplist1', true) )
- {
+ {
$group_id = $_POST['grouplist1'];
$group = $objGroups->GetItemByField('ResourceId',$group_id);
- $objSession->SetVariable('user_admin_names', $group->Get('Name'));
+ $objSession->SetVariable('user_admin_names', $group->Get('Name'));
$objSession->SetVariable('user_admin_values', $group->Get('GroupId'));
$objSession->SetVariable('grouplist1', $_POST['grouplist1']);
- }
-
+ }
+
// Set Import User Group
if( GetVar('grouplist2', true) )
- {
+ {
$group_id = $_POST['grouplist2'];
$group = $objGroups->GetItemByField('ResourceId', $group_id);
- $objSession->SetVariable('user_regular_names', $group->Get('Name'));
+ $objSession->SetVariable('user_regular_names', $group->Get('Name'));
$objSession->SetVariable('user_regular_values', $group->Get('GroupId'));
$objSession->SetVariable('grouplist2', $_POST['grouplist2']);
}
break;
-
- case "m_add_user":
+
+ case "m_add_user":
$dupe_user = '';
//$user_pending = (int)$_POST["user_pending"];
//$user_enabled = (int)$_POST["user_enabled"];
- $CreatedOn = DateTimestamp($_POST["user_date"],GetDateFormat());
+ $CreatedOn = DateTimestamp($_POST["user_date"],GetDateFormat());
$CreatedOn += SecondsSinceMidnight($_POST["user_time"]);
-
+
$dob = DateTimestamp($_POST["user_dob"],GetDateFormat());
-
+
$objEditItems = new clsUserManager();
$objEditItems->SourceTable = $objSession->GetEditTable("PortalUser");
@@ -95,26 +95,26 @@
$id = 1;
else
$id = $objUsers->GetUserId($_POST["user_login"]);
- }
+ }
else
$dob = 0;
-
+
if(!empty($id))
{
$lvErrorString = language('la_error_duplicate_username');
$dupe_user = $_POST["user_login"];
$_POST["user_login"] = '';
}
else
- {
+ {
$password = md5($_POST["password"]);
$u = $objEditItems->Add_User($_POST["user_login"], $password,
- $_POST["user_email"], $CreatedOn, $_POST["user_firstname"],
- $_POST["user_lastname"], $_POST["status"],
- $_POST["user_phone"],
- $_POST["user_street"], $_POST["user_city"],
+ $_POST["user_email"], $CreatedOn, $_POST["user_firstname"],
+ $_POST["user_lastname"], $_POST["status"],
+ $_POST["user_phone"],
+ $_POST["user_street"], $_POST["user_city"],
$_POST["user_state"], $_POST["user_zip"], $_POST["user_country"], $dob);
-
+
$objCustomEdit = new clsCustomDataList(); //$objSession->GetEditTable("CustomMetaData"));
$objCustomEdit->SetTable('edit');
$objCustomEdit->LoadResource($u->Get("ResourceId"));
@@ -126,24 +126,24 @@
{
$field = substr($key,1);
$cvalue = $CustomFields->GetItemByField("FieldName",$field,FALSE);
-
+
if(is_object($cvalue))
{
$objCustomEdit->SetFieldValue($cvalue->Get("CustomFieldId"),$u->Get("ResourceId"),$value);
$DataChanged = TRUE;
}
}
- }
- if($DataChanged)
+ }
+ if($DataChanged)
$objCustomEdit->SaveData();
-
+
$objCustomEdit->SetTable('live');
}
-
+
break;
-
+
case "m_edit_user":
- //$CreatedOn = DateTimestamp($_POST["user_date"],GetDateFormat());
+ //$CreatedOn = DateTimestamp($_POST["user_date"],GetDateFormat());
//$CreatedOn += SecondsSinceMidnight($_POST["user_time"]);
$dob = DateTimestamp($_POST["user_dob"],GetDateFormat());
$objEditItems = new clsUserManager();
@@ -156,32 +156,32 @@
$dob = 0;
if(strlen($_POST["password"]))
{
- $password = md5($_POST["password"]);
- }
+ $password = md5($_POST["password"]);
+ }
else
$password = "";
$u = $objEditItems->Edit_User($UserId, $_POST["user_login"], $password,
- $_POST["user_email"], $CreatedOn, $_POST["user_firstname"],
- $_POST["user_lastname"], $_POST["status"],
- $_POST["user_phone"],
- $_POST["user_street"], $_POST["user_city"],
+ $_POST["user_email"], $CreatedOn, $_POST["user_firstname"],
+ $_POST["user_lastname"], $_POST["status"],
+ $_POST["user_phone"],
+ $_POST["user_street"], $_POST["user_city"],
$_POST["user_state"], $_POST["user_zip"], $_POST["user_country"],
$dob);
-
+
$objCustomEdit = new clsCustomDataList(); //$objSession->GetEditTable("CustomMetaData"));
$objCustomEdit->SetTable('edit');
$DataChanged = false;
-
+
$objCustomEdit->LoadResource($u->Get("ResourceId"));
$CustomFields = new clsCustomFieldList(6);
-
+
foreach($_POST as $key=>$value)
{
if(substr($key,0,1)=="_")
{
$field = substr($key,1);
$cvalue = $CustomFields->GetItemByField("FieldName",$field,FALSE);
-
+
if(is_object($cvalue))
{
//echo "Saving CF: (".$cvalue->Get("CustomFieldId")." ; ".$u->Get("ResourceId")." ; $value)
";
@@ -190,43 +190,43 @@
}
}
}
-
+
if($DataChanged)
$objCustomEdit->SaveData();
$objCustomEdit->SetTable('live');
break;
-
- case "m_user_primarygroup":
+
+ case "m_user_primarygroup":
if($ro_perm) break;
$users = explode(',', $_POST["userlist"]);
$GroupResourceId = $_POST['grouplist'];
$g = $objGroups->GetItemByField("ResourceId", $GroupResourceId);
$GroupId = $g->UniqueId();
-
+
if( is_array($users) )
foreach($users as $user_id)
{
$u = $objUsers->GetItemByField("ResourceId", $user_id);
$g->AddUser($u->Get("PortalUserId"),1,false);
}
break;
-
- case "m_edit_group":
+
+ case "m_edit_group":
$objEditItems = new clsGroupList();
$objEditItems->SourceTable = $objSession->GetEditTable("PortalGroup");
$objEditItems->Edit_Group($_POST["group_id"], $_POST["group_name"],$_POST["group_comments"]);
break;
-
-
+
+
case 'm_group_edit': // when editing user membership in group
$membership_expires = DateTimestamp( $_POST['membership_expires_date'], GetDateFormat() );
$membership_expires += SecondsSinceMidnight( $_POST['membership_expires_time'] );
-
+
$objEditItems = new clsUserGroupList();
$objEditItems->SourceTable = $objSession->GetEditTable('UserGroup');
$objEditItems->Edit_UserGroup($_POST['GroupId'], $_POST['PortalUserId'], $membership_expires);
break;
-
+
case "m_add_group":
$objEditItems = new clsGroupList();
$objEditItems->SourceTable = $objSession->GetEditTable("PortalGroup");
@@ -245,7 +245,7 @@
$g = $objEditItems->GetItemByField("ResourceId",$GroupId);
if(is_object($g))
{
-
+
$PermList = explode(",",$_POST["PermList"]);
for($i=0;$iGetPersonalGroup(TRUE);
- $value = 0;
+ $value = 0;
if(is_array($_POST["permvalue"]))
{
if(in_array($PermList[$i],$_POST["permvalue"]))
@@ -310,7 +310,7 @@
}
}
break;
-
+
case "m_approve_user":
if($ro_perm) break;
foreach($_POST["itemlist"] as $userid)
@@ -330,53 +330,53 @@
}
$objUsers->Clear();
break;
-
+
case "m_delete_user":
if($ro_perm) break;
foreach($_POST["itemlist"] as $userid)
$objUsers->Delete_User($userid);
break;
-
+
case "m_delete_group":
if($ro_perm) break;
foreach($_POST["itemlist"] as $groupid)
- {
+ {
$objGroups->Delete_Group($groupid);
}
break;
-
+
case "m_user_assign": // not sure if action is used anywhere
if($ro_perm) break;
$useridlist = implode("-", $userlist);
$objSession->SetUserStatus($useridlist, "g_usergroup_status");
$g_usergroup_status = $useridlist;
break;
-
+
case "m_group_assign": // not sure if action is used anywhere
if($ro_perm) break;
foreach($grouplist as $group) $objGroups->Add_Users_To_Group($group);
break;
-
+
case "m_remove_group":
if($ro_perm) break;
$adodbConnection = &GetADODBConnection();
$adodbConnection->Execute("DELETE FROM UserGroup where UserId='$UserId' AND GroupId='$GroupId'");
break;
- case "m_SetVariable":
+ case "m_SetVariable":
$objSession->SetPersistantVariable($_POST["fieldname"], $_POST["varvalue"]);
break;
-
+
case "m_SetSessionVariable":
$objSession->SetVariable($_POST["fieldname"], $_POST["varvalue"]);
//echo "Setting $fieldname to $varvalue
\n";
if($_POST["fieldname"]=="SearchType")
$objSession->SetVariable("SearchWord","");
break;
-
- case "m_edit_permissions":
+
+ case "m_edit_permissions":
if($ro_perm) break;
-
+
if($_POST["CatEditStatus"] != -1)
{
$objSession->SetVariable('PermCache_UpdateRequired', 1);
@@ -393,18 +393,18 @@
$PermNames[] = $data["PermissionName"];
$rs->MoveNext();
}
-
+
$inherit = array();
if(is_array($_POST["inherit"]))
- {
+ {
foreach($_POST["inherit"] as $perm)
{
$inherit[$perm] = 1;
}
}
$access = array();
if(is_array($_POST["permvalue"]))
- {
+ {
foreach($_POST["permvalue"] as $perm)
{
$access[$perm] = 1;
@@ -414,12 +414,12 @@
$objPermList->LoadCategory($CatId);
for($i=0;$iGetPermByName($PermNames[$i]);
+
+ $Perm = $objPermList->GetPermByName($PermNames[$i]);
if($Perm)
{
$Id = $Perm->Get("PermissionId");
@@ -433,7 +433,7 @@
}
}
else
- {
+ {
$Perm = $objPermList->GetPermByName($PermNames[$i]);
if($Perm)
{
@@ -448,7 +448,7 @@
//$c->SetViewPerms("CATEGORY.VIEW",$ViewList,$glist);
//$c->Update();
}
- break;
+ break;
case "m_perm_delete_group":
if($ro_perm) break;
$ado = &GetADODBConnection();
@@ -457,16 +457,16 @@
{
$g = $objGroups->GetItemByField("ResourceId",$groupid);
if(is_object($g))
- {
+ {
$sql = "DELETE FROM ".GetTablePrefix()."Permissions WHERE CatId=$CatId AND GroupId=".$g->Get("GroupId");
if($objSession->HasSystemPermission("DEBUG.LIST"))
echo $sql."
\n";
- $ado->Execute($sql);
+ $ado->Execute($sql);
}
}
break;
- case "m_user_addto_group":
+ case "m_user_addto_group":
if($ro_perm) break;
$objSession->SetVariable("HasChanges", 1);
$user = $_POST["UserId"];
@@ -491,8 +491,8 @@
}
}
break;
-
- case "m_group_add_user":
+
+ case "m_group_add_user":
if($ro_perm) break;
$objSession->SetVariable("HasChanges", 1);
$group = $_POST["GroupId"];
@@ -524,13 +524,13 @@
$g->DeleteUser($u->Get("PortalUserId"));
}
//}
- break;
+ break;
case "m_user_removegroup":
if($ro_perm) break;
$objSession->SetVariable("HasChanges", 1);
$user = $_POST["UserId"];
//if($user>0)
- //{
+ //{
foreach($_POST["itemlist"] as $groupid)
{
$g = $objGroups->GetItem($groupid);
@@ -564,17 +564,17 @@
}/*switch*/
}
break;
-
+
// not used anywhere
/* case "m_item_recount":
if($ro_perm) break;
RunDown($m_var_list["cat"],"UpdateCacheCounts");
break; */
-
- case "m_cat_delete":
- if($ro_perm) break;
+
+ case "m_cat_delete":
+ if($ro_perm) break;
if($objSession->HasCatPermission("CATEGORY.DELETE",$objCatList->CurrentCategoryID()))
- {
+ {
if(isset($_POST["catlist"]))
{
if(is_array($_POST["catlist"]))
@@ -587,9 +587,9 @@
}
break;
case "m_cat_cut":
- if($ro_perm) break;
+ if($ro_perm) break;
if(isset($_POST["catlist"]))
- {
+ {
if($objSession->HasCatPermission("CATEGORY.DELETE",$catid))
{
$objCatList->CopyToClipboard("CUT","CategoryId",$_POST["catlist"]);
@@ -598,17 +598,17 @@
$objCatList->CopyToClipboard("COPY","CategoryId",$_POST["catlist"]);
}
break;
-
+
case "m_cat_copy":
- if($ro_perm) break;
+ if($ro_perm) break;
if(isset($_POST["catlist"]))
{
$objCatList->CopyToClipboard("COPY","CategoryId",$_POST["catlist"]);
}
break;
case "m_paste":
- if($ro_perm) break;
+ if($ro_perm) break;
if($objCatList->ItemsOnClipboard()>0)
{
/* category's paste function populates a sparse array where array[old_id]=new_id */
@@ -625,21 +625,21 @@
}
}
break;
-
+
case "m_cat_move_up":
- if($ro_perm) break;
+ if($ro_perm) break;
if (isset($_POST["catlist"]))
- {
+ {
foreach($_POST["catlist"] as $catid)
{
$cat =& $objCatList->GetCategory($catid);
$cat->MoveUp();
}
}
break;
-
+
case "m_cat_move_down":
- if($ro_perm) break;
+ if($ro_perm) break;
if (isset($_POST["catlist"]))
{
$catlist=array_reverse($_POST["catlist"]);
@@ -672,7 +672,7 @@
RunDown($catid,"Deny");
}
}
- break;
+ break;
case "m_rel_delete":
$adodbConnection= &GetADODBConnection();
@@ -708,16 +708,16 @@
$NewId = intval($ado->GetOne('SELECT MIN(RelationshipId) as MinValue FROM '.$RelList->SourceTable));
if($NewId > 0) $NewId = 0;
$NewId--;
-
+
$priority = (int)GetVar('priority');
$r = $RelList->Add($_POST["SourceId"],$_POST["SourceType"],$_POST["TargetId"],$_POST["TargetType"],
- $priority,(int)$_POST["Enabled"],$_POST["RelType"], $NewId);
-
- $sql = "UPDATE ".$RelList->SourceTable." SET RelationshipId=".$NewId." WHERE RelationshipId=".$r->Get("RelationshipId");
+ $priority,(int)$_POST["Enabled"],$_POST["RelType"], $NewId);
+
+ $sql = "UPDATE ".$RelList->SourceTable." SET RelationshipId=".$NewId." WHERE RelationshipId=".$r->Get("RelationshipId");
if($objSession->HasSystemPermission("DEBUG.LIST"))
echo $sql."
\n";
$ado->Execute($sql);
-
+
break;
case "m_edit_relation":
if($_POST["CatEditStatus"]==0)
@@ -739,7 +739,7 @@
$objRelList = new clsRelationshipList();
$objRelList->SourceTable = $objSession->GetEditTable("Relationship");
if (isset($_POST["itemlist"]))
- {
+ {
foreach($_POST["itemlist"] as $id)
{
$r = $objRelList->GetItem($id);
@@ -764,7 +764,7 @@
case "m_add_category":
if(ValidDate($_POST["cat_date"],GetDateFormat()))
- {
+ {
$CreatedOn = DateTimestamp($_POST["cat_date"],GetDateFormat());
}
else
@@ -774,13 +774,13 @@
$cat_pick = $_POST["cat_pick"];
$Status = (int)$_POST["status"];
$Hot=(int)$_POST["itemhot"];
- $Pop = (int)$_POST["itempop"];
+ $Pop = (int)$_POST["itempop"];
$New = (int)$_POST["itemnew"];
$objEditItems = new clsCatList();
$objEditItems->SourceTable = $objSession->GetEditTable("Category");
- $cat = $objEditItems->Add($_POST["ParentId"], $_POST["cat_name"], inp_escape($_POST["cat_desc"],$html), $CreatedOn,
- $cat_pick, $Status, $Hot, $New, $Pop, $_POST["Priority"],
+ $cat = $objEditItems->Add($_POST["ParentId"], $_POST["cat_name"], inp_escape($_POST["cat_desc"],$html), $CreatedOn,
+ $cat_pick, $Status, $Hot, $New, $Pop, $_POST["Priority"],
$_POST["meta_keywords"],$_POST["meta_desc"], GetVar('auto_filename'), GetVar('filename') );
$objCustomEdit = new clsCustomDataList($objSession->GetEditTable("CustomMetaData"));
$objCustomEdit->LoadResource($cat->Get("ResourceId"));
@@ -792,37 +792,37 @@
{
$field = substr($key,1);
$cvalue = $CustomFields->GetItemByField("FieldName",$field,FALSE);
-
+
if(is_object($cvalue))
{
$objCustomEdit->SetFieldValue($cvalue->Get("CustomFieldId"),$cat->Get("ResourceId"),$value);
$DataChanged = TRUE;
}
}
- }
+ }
if($DataChanged)
- $objCustomEdit->SaveData();
-
- break;
+ $objCustomEdit->SaveData();
- case "m_edit_category":
+ break;
+
+ case "m_edit_category":
$CreatedOn = DateTimestamp($_POST["cat_date"],GetDateFormat());
$cat_pick = GetVar('cat_pick', true);
$Status = (int)$_POST["status"];
$Hot = false; //(int)$_POST["itemhot"];
- $Pop = false; //(int)$_POST["itempop"];
+ $Pop = false; //(int)$_POST["itempop"];
$New = (int)$_POST["itemnew"];
$html = (int)$_POST["html_enable"];
$objEditItems = new clsCatList();
$objEditItems->SourceTable = $objSession->GetEditTable("Category");
-
+
// check if name of cat isn't changed: begin
if( GetVar('CategoryId') > 0 )
{
$original_cats = new clsCatList();
$original_cat = $original_cats->GetItemByField('CategoryId', GetVar('CategoryId'));
-
+
$match_fields = Array('Name' => 'cat_name', 'Filename' => 'filename');
foreach ($match_fields as $db_field => $submit_field)
{
@@ -832,17 +832,17 @@
break;
}
}
-
+
unset($original_cat, $original_cats);
}
else
{
$objSession->SetVariable('PermCache_UpdateRequired', 1);
}
// check if name of cat isn't changed: end
-
+
$cat = $objEditItems->Edit_Category($_POST["CategoryId"],inp_escape($_POST["cat_name"],$html), inp_escape($_POST["cat_desc"],$html), $CreatedOn, $cat_pick, $Status, $Hot, $New, $Pop, $_POST["Priority"], $_POST["meta_keywords"], $_POST["meta_desc"], GetVar('auto_filename'), GetVar('filename') );
-
+
$objCustomEdit = new clsCustomDataList($objSession->GetEditTable("CustomMetaData"));
$objCustomEdit->LoadResource($cat->Get("ResourceId"));
$CustomFields = new clsCustomFieldList(1);
@@ -853,20 +853,20 @@
{
$field = substr($key,1);
$cvalue = $CustomFields->GetItemByField("FieldName",$field,FALSE);
-
+
if(is_object($cvalue))
{
$objCustomEdit->SetFieldValue($cvalue->Get("CustomFieldId"),$cat->Get("ResourceId"),$value);
$DataChanged = TRUE;
}
}
- }
+ }
if($DataChanged)
- $objCustomEdit->SaveData();
-
+ $objCustomEdit->SaveData();
+
break;
case "m_edit_custom_data":
- $id = $_POST["ItemId"];
+ $id = $_POST["ItemId"];
$objCustomEdit = new clsCustomDataList($objSession->GetEditTable("CustomMetaData"));
$objCustomEdit->LoadResource($id);
@@ -878,31 +878,31 @@
{
$field = substr($key,1);
$cvalue = $CustomFields->GetItemByField("FieldName",$field,FALSE);
-
+
if(is_object($cvalue))
{
$objCustomEdit->SetFieldValue($cvalue->Get("CustomFieldId"),$id,$value);
$DataChanged = TRUE;
}
}
- }
+ }
if($DataChanged)
- $objCustomEdit->SaveData();
-/*
- $id = $_POST["ItemId"];
- $objEditData = new clsCustomDataList(); //$objSession->GetEditTable("CustomMetaData"));
+ $objCustomEdit->SaveData();
+/*
+ $id = $_POST["ItemId"];
+ $objEditData = new clsCustomDataList(); //$objSession->GetEditTable("CustomMetaData"));
$objEditData->SetTable('edit');
$ado = &GetADODBConnection();
if($id && is_array($_POST["CustomData"]))
{
foreach($_POST["CustomData"] as $FieldId => $Value)
- {
+ {
$sql = "SELECT count(*) as reccount FROM ".$objEditData->SourceTable." WHERE CustomFieldId=$FieldId AND ResourceId=".$_POST["ItemId"];
- $rs = $ado->Execute($sql);
+ $rs = $ado->Execute($sql);
$intable = $rs->fields["reccount"];
if(!$intable)
- {
+ {
$sql = "INSERT INTO ".$objEditData->SourceTable." (ResourceId,CustomFieldId,Value) VALUES ('".$id."','$FieldId','$Value')";
$ado->Execute($sql);
//echo $sql."
\n";
@@ -913,7 +913,7 @@
$ado->Execute($sql);
//echo $sql."
\n";
}
- }
+ }
}
$objEditData->SetTable('live');
*/
@@ -925,7 +925,7 @@
$FieldName = $_POST["fieldname"];
//$FieldLabel = $_POST["fieldlabel"];
if(strlen($FieldName))
- {
+ {
$objCustomFields = new clsCustomFieldList($DataType);
$objCustomFields->EditField($FieldId,$DataType,$FieldName,"",(int)$_POST["generaltab"],
$_POST["heading"],$_POST["fieldprompt"],$_POST["input_type"],
@@ -935,7 +935,7 @@
break;
case "m_customfield_add":
if($ro_perm) break;
- $DataType = $_POST["DataType"];
+ $DataType = $_POST["DataType"];
$FieldName = $_POST["fieldname"];
//$FieldLabel = $_POST["fieldlabel"];
if(strlen($FieldName))
@@ -949,7 +949,7 @@
break;
case "m_customfield_delete":
if($ro_perm) break;
- $DataType = $_POST["DataType"];
+ $DataType = $_POST["DataType"];
$objCustomFields = new clsCustomFieldList($DataType);
foreach($_POST["itemlist"] as $f)
@@ -971,7 +971,7 @@
foreach($objSearchConfig->Items as $i)
{
$id = $i->Get("SearchConfigId");
- $objSearchConfig->EditFieldSettings($id,(int)$SimpleValues[$id],(int)$AdvValues[$id],$priority[$id]);
+ $objSearchConfig->EditFieldSettings($id,(int)$SimpleValues[$id],(int)$AdvValues[$id],$priority[$id]);
}
$objSearchConfig->Clear();
/* save relevence settings */
@@ -999,7 +999,7 @@
$cfg = "SearchRel_Rating_".$var;
$objConfig->Set($cfg,$value);
}
-
+
$vals = $_POST["multiple"];
if (count($vals) > 0) {
@@ -1013,11 +1013,11 @@
$cfg = "Search_ShowMultiple_".$_POST['cfg_var'];
$objConfig->Set($cfg, 0);
}
-
+
if (isset($_POST['minkeyword'])) {
$objConfig->Set("Search_MinKeyword_Length", $_POST['minkeyword']);
}
-
+
$objConfig->Save();
break;
case "m_keyword_reset":
@@ -1029,14 +1029,14 @@
$c->Delete();
}
break;
-
+
case 'm_clear_searchlog':
$objSearchList = new clsSearchLogList();
$db =& GetADODBConnection();
$db->Execute('DELETE FROM '.$objSearchList->SourceTable );
break;
-
- case "m_review_add":
+
+ case "m_review_add":
$post_info = GetSubmitVariable($_POST, 'EditStatus');
if($post_info['variable'] > -1)
{
@@ -1045,19 +1045,19 @@
$Pending = (int)$_POST["review_pending"];
$Enabled = (int)$_POST["review_enabled"];
$Status = (int)$_POST["status"];
- $CreatedOn = DateTimestamp($_POST["review_date"],GetDateFormat());
+ $CreatedOn = DateTimestamp($_POST["review_date"],GetDateFormat());
$CreatedOn += SecondsSinceMidnight($_POST["review_time"]);
- $html = (int)$_POST["html_enable"];
+ $html = (int)$_POST["html_enable"];
$ReviewText = inp_escape($_POST["review_body"],1);
-
+
$CreatedById = 0;
if(strlen($_POST["createdby"])>0)
{
if(strtolower($_POST["createdby"])=="root")
{
$CreatedById = -1;
}
- else
+ else
{
$u = $objUsers->GetItemByField("Login",$_POST["createdby"]);
if(is_object($u))
@@ -1074,10 +1074,10 @@
}
else
$CreatedById = $objSession->Get("PortalUserId");
-
- $r = $objReviews->AddReview($CreatedOn,$ReviewText,$Status, $IPAddress,
+
+ $r = $objReviews->AddReview($CreatedOn,$ReviewText,$Status, $IPAddress,
(int)$_POST["review_priority"], $_POST["ItemId"],$_POST["ItemType"],
- $CreatedById,$html, $post_info['Module']);
+ $CreatedById,$html, $post_info['Module']);
$ado = &GetADODBConnection();
$rs = $ado->Execute("SELECT MIN(ReviewId) as MinValue FROM ".$objReviews->SourceTable);
$NewId = $rs->fields["MinValue"]-1;
@@ -1087,27 +1087,27 @@
$ado->Execute($sql);
}
break;
- case "m_review_edit":
+ case "m_review_edit":
case 'm_review_direct_edit';
$post_info = GetSubmitVariable($_POST, 'EditStatus');
if($post_info['variable'] > -1)
{
$objReviews = new clsItemReviewList();
$objReviews->SourceTable = $objSession->GetEditTable("ItemReview");
$Status = (int)$_POST["status"];
- $CreatedOn = DateTimestamp($_POST["review_date"],GetDateFormat());
+ $CreatedOn = DateTimestamp($_POST["review_date"],GetDateFormat());
$CreatedOn += SecondsSinceMidnight($_POST["review_time"]);
$html = (int)$_POST["html_enable"];
$ReviewText = inp_escape($_POST["review_body"],1);
- $ReviewId = $_POST["ReviewId"];
+ $ReviewId = $_POST["ReviewId"];
$CreatedById = 0;
if(strlen($_POST["createdby"])>0)
{
if(strtolower($_POST["createdby"])=="root")
{
$CreatedById = -1;
}
- else
+ else
{
$u = $objUsers->GetItemByField("Login",$_POST["createdby"]);
if(is_object($u))
@@ -1121,35 +1121,35 @@
else
$CreatedById = $objSession->Get("PortalUserId");
}
- }
- $r = $objReviews->EditReview($ReviewId,$CreatedOn,$ReviewText,$Status, $IPAddress,
+ }
+ $r = $objReviews->EditReview($ReviewId,$CreatedOn,$ReviewText,$Status, $IPAddress,
(int)$_POST["review_priority"],$_POST["ItemId"],$_POST["ItemType"],
- $CreatedById,$html);
+ $CreatedById,$html);
}
break;
-
-
-
-
+
+
+
+
case "m_review_delete":
$objReviews = new clsItemReviewList();
$objReviews->SourceTable = $objSession->GetEditTable("ItemReview");
foreach($_POST["itemlist"] as $id)
{
$objReviews->DeleteReview($id);
- }
+ }
break;
-
-
+
+
case 'm_review_direct_delete':
$objReviews = new clsItemReviewList();
foreach($_POST['reviewlist'] as $id)
{
$objReviews->DeleteReview($id);
}
break;
-
-
+
+
case "m_review_approve":
if (isset($_POST["itemlist"]))
{
@@ -1163,7 +1163,7 @@
}
}
break;
-
+
case 'm_review_direct_approve':
if(isset($_POST["reviewlist"]))
{
@@ -1175,11 +1175,11 @@
$i->Update();
}
}
- break;
-
-
-
-
+ break;
+
+
+
+
case "m_review_deny":
if (isset($_POST["itemlist"]))
{
@@ -1206,14 +1206,14 @@
}
}
break;
-
-
-
-
-
+
+
+
+
+
case "m_review_move_up":
if (isset($_POST["itemlist"]))
- {
+ {
$objReviews = new clsItemReviewList();
$objReviews->SourceTable = $objSession->GetEditTable("ItemReview");
foreach($_POST["itemlist"] as $id)
@@ -1236,23 +1236,23 @@
}
}
break;
-
+
case 'm_themes_rescan':
$objThemes->CreateMissingThemes();
if (!$objThemes->Items)
{
$objThemes->Query_Item('SELECT * FROM '.$objThemes->SourceTable);
}
-
+
$keys = array_keys($objThemes->Items);
foreach ($keys as $theme_index)
{
$theme =& $objThemes->Items[$theme_index];
$theme->VerifyTemplates();
}
-
+
break;
-
+
case "m_theme_add":
$ado = &GetADODBConnection();
$rs = $ado->Execute("SELECT COUNT(*) as c FROM ".GetTablePrefix().'Theme WHERE Name="'.$_POST["name"].'"');
@@ -1266,7 +1266,7 @@
$t = $objEditItems->AddTheme($_POST["name"],$_POST["description"],(int)$_POST["enabled"],$Primary,
(int)$_POST["CacheTimeout"],GetVar('StylesheetId'));
$t->Files->ThemeId=$t->Get("ThemeId");
-
+
$rs = $ado->Execute("SELECT MIN(ThemeId) as MinValue FROM ".$objEditItems->SourceTable);
$NewId = $rs->fields["MinValue"]-1;
$sql = "UPDATE ".$objEditItems->SourceTable." SET ThemeId=".$NewId." WHERE ThemeId=".$t->Get("ThemeId");
@@ -1276,25 +1276,25 @@
// $t->Files->FindMissingFiles(strtolower($t->Get('name')));
}
break;
- case "m_theme_edit":
+ case "m_theme_edit":
$objEditItems = new clsThemeList();
$objEditItems->SourceTable = $objSession->GetEditTable("Theme");
$Primary = (int)$_POST["primary"];
if(!(int)$_POST["enabled"])
- $Primary = 0;
-
+ $Primary = 0;
+
$objEditItems->EditTheme($_POST["ThemeId"],$_POST["name"],$_POST["description"],
(int)$_POST["enabled"],$Primary,(int)$_POST["CacheTimeout"], GetVar('StylesheetId'));
-// if ($Primary==1)
+// if ($Primary==1)
// {
// $objEditItems->SetPrimaryTheme($_POST["ThemeId"]);
// }
-
+
break;
case "m_theme_delete":
- if($ro_perm) break;
+ if($ro_perm) break;
if (isset($_POST["itemlist"]))
- {
+ {
$Themes = new clsThemeList();
foreach($_POST["itemlist"] as $id)
{
@@ -1311,27 +1311,27 @@
$t->SetPrimaryTheme($ThemeId);
}
break;
-
+
case "m_template_edit":
if($ro_perm) break;
$objSession->SetVariable("HasChanges", 1);
$ThemeId = $_POST["ThemeId"];
$FileId = $_POST["FileId"];
$f = new clsThemeFile($FileId);
-
+
$f->Set("Description", $_POST["Description"] );
$f->Update();
$c = stripslashes($_POST["contents"]);
$f->SaveFileContents($c);
- break;
+ break;
case "m_template_add":
if($ro_perm) break;
$objSession->SetVariable("HasChanges", 1);
$ThemeId = $_POST["ThemeId"];
if( !is_object($f) ) $f = new clsThemeFile();
-
+
$FilePath = $_POST['name'];
-
+
if(!$FilePath)
{
$f->SetError('Template Name is required',3);
@@ -1343,18 +1343,18 @@
if( substr($FilePath,-3) != '.tpl' ) $FilePath .= '.tpl';
$FileName = basename($FilePath);
$FilePath = dirname($FilePath);
-
+
// test if such file not already created
-
- $f->LoadFromDataBase( Array($FilePath,$FileName), Array('FilePath','FileName') );
+
+ $f->LoadFromDataBase( Array($FilePath,$FileName), Array('FilePath','FileName') );
if( !$f->Get('FileId') )
{
$f->Set( Array('FilePath','FileName','ThemeId', 'Description'),
Array($FilePath, $FileName,$_POST['ThemeId'], $_POST["Description"])
);
-
+
if( $f->IsWriteablePath(true) )
- {
+ {
$f->Create();
$c = stripslashes($_POST["contents"]);
$f->SaveFileContents($c, true);
@@ -1369,17 +1369,17 @@
$objSession->SetVariable("HasChanges", 1);
$dummy = new clsThemeFile();
foreach($_POST["itemlist"] as $FileId)
- {
+ {
$dummy->LoadFromDatabase($FileId);
$dummy->Delete();
- }
+ }
break;
-
- case "m_lang_add":
+
+ case "m_lang_add":
$ado = &GetADODBConnection();
$objEditItems = new clsLanguageList();
- $objEditItems->SourceTable = $objSession->GetEditTable("Language");
-
+ $objEditItems->SourceTable = $objSession->GetEditTable("Language");
+
$l = $objEditItems->AddLanguage($_POST["packname"],$_POST["localname"],
(int)$_POST["enabled"],(int)$_POST["primary"],
$_POST["icon"],$_POST["date_format"],$_POST["time_format"],
@@ -1390,16 +1390,16 @@
$sql = "UPDATE ".$objEditItems->SourceTable." SET LanguageId=".$NewId." WHERE LanguageId=".$l->Get("LanguageId");
if($objSession->HasSystemPermission("DEBUG.LIST"))
echo $sql."
\n";
- $ado->Execute($sql);
+ $ado->Execute($sql);
if($_POST["importlabels"]==1 && $_POST["srcpack"]>0)
- {
+ {
// Phrase import
/*
$sql = "SELECT * FROM ".GetTablePrefix()."Phrase WHERE LanguageId=".$_POST["srcpack"];
if($objSession->HasSystemPermission("DEBUG.LIST"))
echo $sql."
\n";
- $rs = $ado->Execute($sql);
+ $rs = $ado->Execute($sql);
$plist = new clsPhraseList();
$plist->SourceTable = $objSession->GetEditTable("Phrase");
$sql = "SELECT MIN(PhraseId) as MinId FROM ".$plist->SourceTable;
@@ -1420,52 +1420,52 @@
$MinId--;
$rs->MoveNext();
}
-*/
+*/
$sql='INSERT INTO '.$objSession->GetEditTable('Phrase').' SELECT Phrase, Translation, PhraseType, 0-PhraseId, '.$NewId.' FROM '.GetTablePrefix().'Phrase WHERE LanguageId='.$_POST['srcpack'];
$ado->Execute($sql);
// Events import
$sql = "SELECT * FROM ".GetTablePrefix()."EmailMessage WHERE LanguageId=".$_POST["srcpack"];
if($objSession->HasSystemPermission("DEBUG.LIST"))
echo $sql."
\n";
- $rs = $ado->Execute($sql);
-
+ $rs = $ado->Execute($sql);
+
$eList = new clsEmailMessageList();
//$eList->SourceTable = $objSession->GetEditTable("EmailMessage");
-
+
if (!$l->TableExists($objSession->GetEditTable("EmailMessage"))) {
$eList->CreateEmptyEditTable("EmailMessageId", true);
$eList->SourceTable = $objSession->GetEditTable("EmailMessage");
}
else {
$eList->SourceTable = $objSession->GetEditTable("EmailMessage");
}
-
+
$sql = "SELECT MIN(EmailMessageId) as MinId FROM ".$eList->SourceTable;
$as = $ado->Execute($sql);
-
+
if($as && !$as->EOF)
{
$MinId = (int)$as->fields["MinId"];
}
else {
$MinId = 0;
}
-
+
$MinId--;
while($rs && !$rs->EOF)
{
$data = $rs->fields;
$eList->AddEmailEvent($data["Template"], $data["MessageType"], $NewId, $data["EventId"]);
-
+
$sql = "UPDATE ".$eList->SourceTable." SET EmailMessageId=$MinId WHERE EmailMessageId=0 LIMIT 1";
$ado->Execute($sql);
-
+
$MinId--;
-
+
$rs->MoveNext();
- }
+ }
}
break;
case "m_lang_export":
@@ -1483,20 +1483,20 @@
$ExportResult = $objLanguages->ExportPhrases($ExportFilename,$Ids, $phrase_types);
}
break;
-
+
case "m_lang_edit":
$ado = &GetADODBConnection();
$objEditItems = new clsLanguageList();
$objEditItems->SourceTable = $objSession->GetEditTable("Language");
-
+
$objEditItems->EditLanguage($_POST["LanguageId"],$_POST["packname"],
$_POST["localname"],(int)GetVar('enabled'),
(int)GetVar('primary'), $_POST["icon"],$_POST["date_format"],
$_POST["time_format"], $_POST["decimal"],$_POST["thousand"],
$_POST['charset']);
-
+
if( GetVar('importlabels') && $_POST["srcpack"]>0)
- {
+ {
$rs = $ado->Execute("SELECT * FROM ".GetTablePrefix()."Phrase WHERE LanguageId=".$_POST["srcpack"]);
$plist = new clsPhraseList();
$plist->SourceTable = $objSession->GetEditTable("Phrase");
@@ -1508,7 +1508,7 @@
}
else
$MinId = 0;
- $MinId--;
+ $MinId--;
while($rs && !$rs->EOF)
{
$data = $rs->fields;
@@ -1519,14 +1519,14 @@
$rs->MoveNext();
}
unset($plist);
-
+
// Events import
$sql = "SELECT * FROM ".GetTablePrefix()."EmailMessage WHERE LanguageId=".$_POST["srcpack"];
if($objSession->HasSystemPermission("DEBUG.LIST"))
echo $sql."
\n";
- $rs = $ado->Execute($sql);
-
+ $rs = $ado->Execute($sql);
+
$eList = new clsEmailMessageList();
//$eList->SourceTable = $objSession->GetEditTable("EmailMessage");
$l = new clsEmailMessage();
@@ -1537,30 +1537,30 @@
else {
$eList->SourceTable = $objSession->GetEditTable("EmailMessage");
}
-
+
$sql = "SELECT MIN(EmailMessageId) as MinId FROM ".$eList->SourceTable;
$as = $ado->Execute($sql);
-
+
if($as && !$as->EOF)
{
$MinId = (int)$as->fields["MinId"];
}
else {
$MinId = 0;
}
-
+
$MinId--;
-
+
while($rs && !$rs->EOF)
{
$data = $rs->fields;
$eList->AddEmailEvent($data["Template"], $data["MessageType"], $_POST["LanguageId"], $data["EventId"]);
-
+
$sql = "UPDATE ".$eList->SourceTable." SET EmailMessageId=$MinId WHERE EmailMessageId=0 LIMIT 1";
$ado->Execute($sql);
-
+
$MinId--;
-
+
$rs->MoveNext();
}
unset($eList);
@@ -1583,10 +1583,10 @@
unset($Messages);
}
break;
-
+
case "m_lang_select":
- if($ro_perm) break;
- $LangId = (int)$_POST["langselect"];
+ if($ro_perm) break;
+ $LangId = (int)$_POST["langselect"];
if($LangId)
{
if($objSession->Get("PortalUserId")>0)
@@ -1599,33 +1599,33 @@
$m_var_list_update["lang"] = $LangId;
$m_var_list["lang"] = $LangId;
}
- break;
-
- case "m_phrase_edit":
- if( !GetVar('direct') ) $objSession->SetVariable("HasChanges", 1);
+ break;
+
+ case "m_phrase_edit":
+ if( !GetVar('direct') ) $objSession->SetVariable("HasChanges", 1);
$objPhraseList = new clsPhraseList();
- if((int)$_POST["direct"] != 1)
+ if((int)$_POST["direct"] != 1)
$objPhraseList->SourceTable = $objSession->GetEditTable("Phrase");
$Phrases = $_POST["name"];
foreach($Phrases as $PhraseId =>$name)
{
if($PhraseId>0)
- {
+ {
$objPhraseList->EditPhrase($PhraseId,$_POST["name"][$PhraseId],$_POST["LanguageId"],$_POST["translation"][$PhraseId],$_POST["phrasetype"][$PhraseId]);
}
}
-
+
if(strlen($_POST["name"][0]) && strlen($_POST["translation"][0]) && $_POST['Action1'] == "new")
{
- $r = $objPhraseList->AddPhrase($_POST["name"][0],$_POST["LanguageId"],$_POST["translation"][0],$_POST["phrasetype"][0]);
+ $r = $objPhraseList->AddPhrase($_POST["name"][0],$_POST["LanguageId"],$_POST["translation"][0],$_POST["phrasetype"][0]);
if ($r != "Error") {
$ado = &GetADODBConnection();
$rs = $ado->Execute("SELECT MIN(PhraseId) as MinValue FROM ".$objPhraseList->SourceTable);
$NewId = $rs->fields["MinValue"]-1;
$sql = "UPDATE ".$objPhraseList->SourceTable." SET PhraseId=".$NewId." WHERE PhraseId=$PhraseId";
if($objSession->HasSystemPermission("DEBUG.LIST"))
echo $sql."
\n";
- $ado->Execute($sql);
+ $ado->Execute($sql);
}
else {
$add_error = "Language tag with the same name already exists!";
@@ -1648,10 +1648,10 @@
foreach($_POST["Phrase"] as $p => $value)
{
if(strlen($value))
- {
+ {
$obj = $objPhraseList->GetItemByField("Phrase",$p,TRUE);
if(is_object($obj))
- {
+ {
if($obj->Get("Phrase")==$p)
{
$obj->Set("Translation",$value);
@@ -1669,7 +1669,7 @@
case "m_phrase_delete":
$objSession->SetVariable("HasChanges", 1);
if (isset($_POST["itemlist"]))
- {
+ {
foreach($_POST["itemlist"] as $id)
{
$sql = "UPDATE ".$objSession->GetEditTable("Phrase")." SET LanguageId = 0 WHERE PhraseId = ".$id;
@@ -1683,7 +1683,7 @@
if($ro_perm) break;
$objEvents = new clsEventList();
if (isset($_POST["itemlist"]))
- {
+ {
foreach($_POST["itemlist"] as $id)
{
$m =& $objEvents->GetItem($id);
@@ -1697,7 +1697,7 @@
if($ro_perm) break;
$objEvents = new clsEventList();
if (isset($_POST["itemlist"]))
- {
+ {
foreach($_POST["itemlist"] as $id)
{
$m =& $objEvents->GetItem($id);
@@ -1711,7 +1711,7 @@
if($ro_perm) break;
$objEvents = new clsEventList();
if (isset($_POST["itemlist"]))
- {
+ {
foreach($_POST["itemlist"] as $id)
{
$m =& $objEvents->GetItem($id);
@@ -1720,7 +1720,7 @@
}
}
unset($objEvents);
- break;
+ break;
case "m_dlid":
echo $Action.":".$DownloadId;
die();
@@ -1735,8 +1735,8 @@
$ids = str_replace("]","",$ids);
$ids = str_replace("\"","",$ids);
$ids = str_replace("\\","",$ids);
-
-
+
+
$idlist = explode(",",$ids);
foreach($idlist as $EventId)
{
@@ -1748,13 +1748,13 @@
$objEvents->Clear();
unset($objEvents);
break;
- case "m_emailevent_edit":
+ case "m_emailevent_edit":
$Template = $_POST["headers"];
if(strlen($Template))
{
$Template .= "\n";
}
- $Template = str_replace("\n\n","",$Template);
+ $Template = str_replace("\n\n","",$Template);
$Template .= "Subject: "._unhtmlentities($_POST['subject'])."\n\n";
$Template .= $_POST["messageBody"];
$objMessages = new clsEmailMessageList();
@@ -1763,7 +1763,7 @@
if(is_object($m))
{
if($_POST["sendhtml"]==1)
- {
+ {
$m->Set("MessageType","html");
}
else
@@ -1786,12 +1786,12 @@
if($_POST["RootPass"]==$_POST["RootPassVerify"])
{
$_POST["RootPass"] = md5($_POST["RootPass"]);
- }
+ }
}
else
{
$_POST["RootPass"] = $objConfig->Get("RootPass");
- $_POST["RootPassVerify"] = $objConfig->Get("RootPassVerify");
+ $_POST["RootPassVerify"] = $objConfig->Get("RootPassVerify");
}
}
$objAdmin->LoadItems(FALSE);
@@ -1801,23 +1801,23 @@
case "m_mod_enable":
if($ro_perm) break;
if (isset($_POST["itemlist"]))
- {
+ {
foreach($_POST["itemlist"] as $id)
{
$m =& $objModules->GetItemByField("Name",$id);
if(is_object($m))
{
$m->Set("Loaded",1);
- $m->Update();
- }
+ $m->Update();
+ }
}
$_GET["Refresh"] = 1;
}
break;
case "m_mod_disable":
if($ro_perm) break;
if (isset($_POST["itemlist"]))
- {
+ {
foreach($_POST["itemlist"] as $id)
{
if($id != "In-Portal")
@@ -1826,7 +1826,7 @@
if(is_object($m))
{
$m->Set("Loaded",0);
- $m->Update();
+ $m->Update();
}
}
}
@@ -1840,12 +1840,12 @@
$LocalImage=0;
$LocalThumb=0;
$DestDir = "kernel/images/";
-
+
$UserThumbSource = (int)$_POST["imgLocalThumb"];
$LocalThumb = $UserThumbSource;
-
+
$thumb_url = !$LocalThumb? $_POST["imgThumbUrl"] : "";
-
+
if($_POST["imgSameImages"])
{
$LocalImage = $LocalThumb;
@@ -1862,27 +1862,27 @@
{
break;
}
-
+
$ado = &GetADODBConnection();
$NewId = $ado->GetOne('SELECT MIN(ImageId) as MinValue FROM '.$objImageList->SourceTable);
if($NewId > 0) $NewId = 0;
$NewId--;
$img = $objImageList->Add($_POST["imgName"], $_POST["imgAlt"], $_POST["ResourceId"], $LocalImage, $LocalThumb, $full_url, $thumb_url, (int)$_POST["imgEnabled"], 0, (int)$_POST["imgDefault"], 0,(int)$_POST["imgSameImages"], $NewId);
$img->Set("ImageId", $NewId);
-
+
// $img->debuglevel=1;
-
+
/*
$sql = "UPDATE ".$objImageList->SourceTable." SET ImageId=".$NewId." WHERE ImageId=0";
$ado->Execute($sql);
-
+
// $img->Update();
*/
// echo "SL: $sql $NewId
";
-
+
// $img->debuglevel=1;
-
- $img->Pending=false;
+
+ $img->Pending=false;
if($LocalImage)
{
$file = $_FILES["imgFullFile"];
@@ -1895,7 +1895,7 @@
}
}
}
-
+
if($LocalThumb)
{
$thumb = $_FILES["imgThumbFile"];
@@ -1907,115 +1907,115 @@
$uploaded=1;
}
}
- }
+ }
if($uploaded==1)
$img->Update();
-
+
break;
-
+
case "m_img_edit":
-
+
$objImageList = new clsImageList();
$objImageList->SourceTable = $objSession->GetEditTable("Images");
-
+
// $img->debuglevel=1;
-
+
$img = $objImageList->GetItem($_POST["ImageId"]);
## Get original values
$LocalImage = $img->Get("LocalImage");
$LocalThumb = $img->Get("LocalThumb");
$SameImages = $img->Get("SameImages");
$ThumbPath = $img->Get("ThumbPath");
-
+
## New values
$LocalThumbN = (int)$_POST["imgLocalThumb"];
$LocalImageN = (int)$_POST["imgLocalFull"];
-
+
$FULLFile = $_FILES["imgFullFile"];
- $THFile = $_FILES["imgThumbFile"];
-
+ $THFile = $_FILES["imgThumbFile"];
+
$DestDir = "kernel/images/";
$img->Pending = FALSE;
-
+
$SameImagesN = 0;
$uploaded = 0;
## Images were the same, but not any more
if ($SameImages && !$_POST["imgSameImages"])
- {
+ {
## TH was a local file
if ($LocalThumb)
{
## TH image
- {
+ {
## Try to Delete OLD FULL
$img->DeleteLocalImage(FALSE, TRUE);
-
- ## FULL image select, but field EMPTY - make a copy of old TH as FULL
+
+ ## FULL image select, but field EMPTY - make a copy of old TH as FULL
if ($LocalImageN && !(int)$FULLFile["size"])
- {
+ {
// echo $pathToPending = $img->GetImageDir();
if (!eregi("pending/$", $pathToPending))
- $pathToPending.= "pending/";
-
+ $pathToPending.= "pending/";
+
$LocalThumb_File = $img->GetFileName(1);
-
+
// echo "CAN'T FIND FILE: ".$pathToPending.$LocalThumb_File."
";
-
+
if (file_exists($pathToPending.$LocalThumb_File))
- {
- $LocalThumb_FileN = eregi_replace("^th_", "", $LocalThumb_File);
- $LocalThumb_FullFileN = $pathToPending.$LocalThumb_FileN;
+ {
+ $LocalThumb_FileN = eregi_replace("^th_", "", $LocalThumb_File);
+ $LocalThumb_FullFileN = $pathToPending.$LocalThumb_FileN;
@unlink($LocalThumb_FullFileN);
@copy($pathToPending.$LocalThumb_File, $LocalThumb_FullFileN);
-
+
$uploaded = 1;
$copied = 1;
// echo "COPING: ".$DestDir."pending/".$LocalThumb_FileN."
";
}
else
{
// echo "CAN'T FIND FILE: ".$pathToPending.$LocalThumb_File."
";
- }
+ }
}
## Upload new FULL image
elseif ($LocalImageN && (int)$FULLFile['size'])
{
$FULL_FileToUpload = $FULLFile;
- $FULL_URL = "";
-
-// echo " Upload new FULL image";
+ $FULL_URL = "";
+
+// echo " Upload new FULL image";
}
## Full is URL
elseif (!$LocalImageN)
{
$img->DeleteLocalImage(FALSE, TRUE);
- $FULL_URL = $_POST['imgFullUrl'];
- $FULL_FileToUpload = "";
+ $FULL_URL = $_POST['imgFullUrl'];
+ $FULL_FileToUpload = "";
}
else
{
// echo " ## Unknow condition";
}
-
+
## Take care of Thumbnail here
if ($LocalThumbN)
- {
+ {
## Delete old if NEW TH image selected
if ((int)$THFile['size'])
{
$img->DeleteLocalImage(TRUE, FALSE);
$TH_FileToUpload = $THFile;
}
else
- $TH_FileToUpload = "";
+ $TH_FileToUpload = "";
}
else
{
$img->DeleteLocalImage(TRUE, FALSE);
$TH_FileToUpload = "";
- $TH_URL = $_POST['imgThumbUrl'];
+ $TH_URL = $_POST['imgThumbUrl'];
}
}
}
@@ -2025,108 +2025,108 @@
## Take care of FULL image here
if ($LocalImageN && (int)$FULLFile["size"])
{
- $FULL_FileToUpload = $FULLFile;
- $FULL_URL = "";
+ $FULL_FileToUpload = $FULLFile;
+ $FULL_URL = "";
}
## Full is URL (or image size 0)
else
{
$FULL_FileToUpload = "";
- $FULL_URL = $_POST['imgFullUrl'];
+ $FULL_URL = $_POST['imgFullUrl'];
}
-
+
## Take care of Thumbnail here
- if ($LocalThumbN)
- {
- $TH_FileToUpload = (int)$THFile['size']? $THFile : "";
+ if ($LocalThumbN)
+ {
+ $TH_FileToUpload = (int)$THFile['size']? $THFile : "";
$TH_URL = "";
}
else
{
$TH_FileToUpload = "";
- $TH_URL = $_POST['imgThumbUrl'];
- }
+ $TH_URL = $_POST['imgThumbUrl'];
+ }
}
}
## Images were the same, and still the same
elseif ($SameImages && $_POST['imgSameImages'])
- {
+ {
## Take care of Thumbnail & FULL here
if ($LocalThumbN)
- {
+ {
if ((int)$THFile['size'])
{
$img->DeleteLocalImage(TRUE, FALSE);
$TH_FileToUpload = $THFile;
}
- else
+ else
$TH_FileToUpload = "";
-
- $FULL_URL = $TH_URL = "";
+
+ $FULL_URL = $TH_URL = "";
}
else
{
$TH_FileToUpload = $FULL_FileToUpload = "";
- $FULL_URL = $TH_URL = $_POST['imgThumbUrl'];
+ $FULL_URL = $TH_URL = $_POST['imgThumbUrl'];
}
-
- ## Delete old FULL image
+
+ ## Delete old FULL image
$img->DeleteLocalImage(FALSE,TRUE);
-
- $SameImagesN = 1;
+
+ $SameImagesN = 1;
}
## Images were NOT the same, and selected as the same now
elseif (!$SameImages && $_POST["imgSameImages"])
{
## Take care of Thumbnail & FULL here
if ($LocalThumbN)
- {
+ {
if ((int)$THFile['size'])
{
$img->DeleteLocalImage(TRUE, FALSE);
$TH_FileToUpload = $THFile;
}
- else
+ else
$TH_FileToUpload = "";
-
-
- $FULL_URL = $TH_URL = "";
+
+
+ $FULL_URL = $TH_URL = "";
}
else
- {
+ {
$img->DeleteLocalImage(TRUE, FALSE);
$TH_FileToUpload = $FULL_FileToUpload = "";
- $FULL_URL = $TH_URL = $_POST['imgThumbUrl'];
+ $FULL_URL = $TH_URL = $_POST['imgThumbUrl'];
}
-
+
## Clean up FULL image
- $img->DeleteLocalImage(FALSE, TRUE);
-
+ $img->DeleteLocalImage(FALSE, TRUE);
+
$SameImagesN = 1;
}
## Images were NOT the same, and selected as NOT the same
elseif (!$SameImages && !$_POST["imgSameImages"])
{
## Take care of Thumbnail
if ($LocalThumbN)
- {
+ {
if ((int)$THFile['size'])
{
$img->DeleteLocalImage(TRUE, FALSE);
- $TH_FileToUpload = $THFile;
+ $TH_FileToUpload = $THFile;
}
- else
- $TH_FileToUpload = "";
-
+ else
+ $TH_FileToUpload = "";
+
$TH_URL = "";
}
else
{
$img->DeleteLocalImage(TRUE, FALSE);
$TH_FileToUpload = "";
- $TH_URL = $_POST['imgThumbUrl'];
+ $TH_URL = $_POST['imgThumbUrl'];
}
-
+
## Take care of FULL here
if ($LocalImageN)
{
@@ -2136,30 +2136,30 @@
$FULL_FileToUpload = $FULLFile;
}
else
- $FULL_FileToUpload = "";
-
+ $FULL_FileToUpload = "";
+
$FULL_URL = "";
}
else
- {
- $img->DeleteLocalImage(FALSE, TRUE);
+ {
+ $img->DeleteLocalImage(FALSE, TRUE);
$FULL_FileToUpload = "";
$FULL_URL = $_POST['imgFullUrl'];
- }
+ }
}
- ## Unknow condition
+ ## Unknow condition
else
{
;
}
-
+
$img = $objImageList->Edit($_POST["ImageId"],$_POST["imgName"], $_POST["imgAlt"], $_POST["ResourceId"], $LocalImageN, $LocalThumbN, $FULL_URL, $TH_URL, (int)$_POST["imgEnabled"], (int)$_POST["imgPriority"], (int)$_POST["imgDefault"], 0, $SameImagesN);
-
+
// echo "DATA:
LocalImageN: $LocalImageN, LocalThumbN: $LocalThumbN, FULL_URL: $FULL_URL, TH_URL: $TH_URL, SameImagesN: $SameImagesN
";
-
-
+
+
$img->Pending = TRUE;
-
+
if (!empty($FULL_FileToUpload))
{
$img->Set("LocalPath",$img->StoreUploadedImage($FULL_FileToUpload, 1, $DestDir, 0));
@@ -2172,22 +2172,22 @@
$uploaded = 1;
}
*/
-
+
if (!empty($TH_FileToUpload))
{
$img->Set("ThumbPath", $img->StoreUploadedImage($TH_FileToUpload, 1, $DestDir, 1));
$uploaded = 1;
}
-
+
if ($copied)
{
- $img->Set("LocalPath", $DestDir."pending/".$LocalThumb_FileN);
+ $img->Set("LocalPath", $DestDir."pending/".$LocalThumb_FileN);
$uploaded = 1;
}
-
+
if($uploaded==1)
- $img->Update();
-
+ $img->Update();
+
break;
case "m_img_move_up":
if (isset($_POST["itemlist"]))
@@ -2217,12 +2217,12 @@
case "m_img_delete":
if(isset($_POST["itemlist"]))
- {
+ {
$objImageList = new clsImageList();
$objImageList->SourceTable = $objSession->GetEditTable("Images");
foreach($_POST["itemlist"] as $id)
{
- $img = $objImageList->GetItem($id);
+ $img = $objImageList->GetItem($id);
$img->Set("ResourceId", 0);
$img->Update();
//$img->Delete();
@@ -2239,12 +2239,12 @@
unlink($BackupFile);
}
break;
-
+
case "m_taglib":
include($pathtoroot."kernel/include/tag-class.php");
ParseTagLibrary();
break;
-
+
case "m_sql_query":
if($ro_perm) break;
$SqlQuery = $_POST["sql"];
@@ -2258,14 +2258,14 @@
break;
case "m_purge_email_log":
if($ro_perm) break;
- $ado = &GetADODBConnection();
+ $ado = &GetADODBConnection();
$sql = "DELETE FROM ".GetTablePrefix()."EmailLog";
$ado->Execute($sql);
- break;
+ break;
case "m_session_delete":
if($ro_perm) break;
- $ado = &GetADODBConnection();
+ $ado = &GetADODBConnection();
if (count($_POST['itemlist']) > 0) {
foreach($_POST["itemlist"] as $id)
{
@@ -2277,7 +2277,7 @@
}
else {
$sql = "DELETE FROM ".GetTablePrefix()."UserSession WHERE Status='0'";
- $ado->Execute($sql);
+ $ado->Execute($sql);
}
break;
case "m_add_rule":
@@ -2288,48 +2288,48 @@
$_POST["rule_verb"],$_POST["rule_value"],(int)$_POST["rule_priority"],
(int)$_POST["rule_status"], $_POST['rule_error']);
break;
- case "m_edit_rule":
+ case "m_edit_rule":
$objEditItems = new clsBanRuleList();
$objEditItems->SourceTable = $objSession->GetEditTable("BanRules");
//$ItemType,$RuleType,$ItemField,$ItemVerb,$ItemValue,$Priority,$Status;
$objEditItems->EditRule($_POST["rule_id"],$_POST["rule_itemtype"],$_POST["rule_type"],$_POST["rule_field"],
$_POST["rule_verb"],$_POST["rule_value"],(int)$_POST["rule_priority"],
(int)$_POST["rule_status"], $_POST['rule_error']);
- break;
+ break;
case "m_rule_move_up":
if($ro_perm) break;
if(isset($_POST["itemlist"]))
- {
+ {
foreach($_POST["itemlist"] as $id)
{
$i = $objBanList->GetItem($id);
$i->Increment("Priority");
}
- }
+ }
break;
case "m_rule_move_down":
if($ro_perm) break;
if(isset($_POST["itemlist"]))
- {
+ {
foreach($_POST["itemlist"] as $id)
{
$i = $objBanList->GetItem($id);
$i->Decrement("Priority");
}
- }
+ }
break;
-
+
case "m_rule_delete":
if($ro_perm) break;
if(isset($_POST["itemlist"]))
- {
+ {
foreach($_POST["itemlist"] as $id)
{
$i = $objBanList->GetItem($id);
$i->Delete();
}
- }
- break;
+ }
+ break;
case "m_ban_user":
if($ro_perm) break;
if($_POST["UserEditStatus"]==1)
@@ -2353,18 +2353,18 @@
{
if(strlen($_POST["user_ip"]))
$objBanList->AddRule(6,0,"ip",3,$_POST["user_ip"],0,1);
- }
- $u->Deny();
+ }
+ $u->Deny();
}
$objUsers->SetTable('restore');
}
break;
-
-
+
+
case 'm_rebuild_cache':
$objSession->SetVariable('PermCache_UpdateRequired', 1);
break;
-
+
}
/* image upload management */
@@ -2396,9 +2396,9 @@
else
{ /* remote images handled here */
if(strlen($url)>0)
- {
+ {
if($relvalue>0)
- {
+ {
$img = $objImageList->GetImageByResource($res_id,$relvalue);
$img->Set("Name",$name);
$img->Set("AltName", $alt);
@@ -2428,11 +2428,11 @@
if( !$has_perm )
{
if( GetVar('ReviewEditStatus') == 1 )
- {
+ {
$objReviews=new clsItemReviewList();
$objReviews->CopyFromEditTable_Direct();
}
-
+
if( GetVar('ReviewEditStatus') == -1 )
{
$objReviews=new clsItemReviewList();
@@ -2441,18 +2441,18 @@
/* category Edit */
if( GetVar('CatEditStatus') == 1 )
- {
+ {
$adodbConnection = &GetADODBConnection();
- // $sql = "SELECT * FROM ".$objSession->GetEditTable("Category")." WHERE CategoryId=0";
+ // $sql = "SELECT * FROM ".$objSession->GetEditTable("Category")." WHERE CategoryId=0";
$sql = "SELECT ParentId FROM ".$objSession->GetEditTable("Category")." WHERE CategoryId=-1";
-
+
$rs = $adodbConnection->Execute($sql);
- while ($rs && !$rs->EOF)
+ while ($rs && !$rs->EOF)
{
if($rs->fields["ParentId"] > 0) RunUp($rs->fields["ParentId"],"Increment_Count");
$rs->MoveNext();
}
-
+
$cat_ids = $objCatList->CopyFromEditTable("CategoryId");
if($cat_ids)
{
@@ -2469,9 +2469,9 @@
$objImages->CopyFromEditTable("ImageId");
}
}
-
+
if( GetVar('CatEditStatus') == 2 )
- {
+ {
$objCatList->PurgeEditTable("CategoryId");
$objCustomDataList->PurgeEditTable("CustomDataId");
if($_REQUEST['CategoryId'] > 0) // not root category is updated
@@ -2482,13 +2482,13 @@
}
$objCatList->Clear();
}
-
+
/* User Edit */
if( GetVar('UserEditStatus') == 1 )
{
$objUserGroupsList = new clsUserGroupList();
- $objUserGroupsList->CopyFromEditTable("PortalUserId");
-
+ $objUserGroupsList->CopyFromEditTable("PortalUserId");
+
$user_ids = $objUsers->CopyFromEditTable("PortalUserId");
if($user_ids)
{
@@ -2497,10 +2497,10 @@
$rids = $db->GetCol($sql);
$objCustomDataList->CopyFromEditTable("CustomDataId", $rids);
}
-
+
$objGroups->Clear();
$objImages = new clsImageList();
- $objImages->CopyFromEditTable("ImageId");
+ $objImages->CopyFromEditTable("ImageId");
}
if( GetVar('UserEditStatus') == 2 )
{
@@ -2510,12 +2510,12 @@
$objCustomDataList->PurgeEditTable("CustomDataId");
$objGroups->Clear();
}
-
+
/* Group Edit */
if( GetVar('GroupEditStatus') == 1 )
{
$objUserGroupsList = new clsUserGroupList();
- $objUserGroupsList->CopyFromEditTable("GroupId");
+ $objUserGroupsList->CopyFromEditTable("GroupId");
$objGroups->CopyFromEditTable("GroupId");
$objCustomDataList->CopyFromEditTable("CustomDataId");
$objGroups->Clear();
@@ -2528,63 +2528,63 @@
$objUserGroupsList->PurgeEditTable("PortalUserId");
$objGroups->Clear();
}
-
+
/* Theme Edit */
if( GetVar('ThemeEditStatus') == 1 )
- {
+ {
$objThemes->CopyFromEditTable();
$objThemes->Clear();
}
-
+
if( GetVar('ThemeEditStatus') == 2 )
{
$objThemes->PurgeEditTable();
$objThemes->Clear();
}
-
+
/* Language Edit */
if( GetVar('LangEditStatus') == 1 )
{
$objLanguages->CopyFromEditTable();
$objLanguages->Clear();
$objLanguages->PurgeEditTable();
-
+
$Phrases = new clsPhraseList();
$Phrases->CopyFromEditTable();
$Phrases->Clear();
$Phrases->PurgeEditTable();
-
+
$Messages = new clsEmailMessageList();
$Messages->CopyFromEditTable();
- $Messages->Clear();
- }
+ $Messages->Clear();
+ }
if( GetVar('LangEditStatus') == 2 )
{
$objLanguages->PurgeEditTable();
$objLanguages->Clear();
$Phrases = new clsPhraseList();
- $Phrases->PurgeEditTable();
+ $Phrases->PurgeEditTable();
$Messages = new clsEmailMessageList();
$Messages->PurgeEditTable();
}
-
+
if( GetVar('MissingLangEditStatus') == 1 )
{
$objPhraseList = new clsPhraseList();
$objPhraseList->SourceTable = $objSession->GetSessionKey()."_".$ThemeId."_labels";
-
+
$objEditList = new clsPhraseList();
$objEditList->SourceTable = $objSession->GetEditTable("Phrase");
-
+
$ado = &GetADODBConnection();
$rs = $ado->Execute("SELECT MIN(PhraseId) as MinValue FROM ".$objEditList->SourceTable);
$NewId = $rs->fields["MinValue"]-1;
-
+
$objPhraseList->Query_Item("SELECT * FROM ".$objPhraseList->SourceTable);
foreach($objPhraseList->Items as $p)
{
if(strlen($p->Get("Translation"))>0)
- {
+ {
$p->tablename = $objEditList->SourceTable;
$p->Dirty();
$p->UnsetIDField();
@@ -2595,17 +2595,17 @@
}
$ado->Execute("DROP TABLE IF EXISTS ".$objPhraseList->SourceTable);
}
-
+
if( GetVar('MissingLangEditStatus') == 2 )
{
$table = $objSession->GetSessionKey()."_".$ThemeId."_labels";
$ado = &GetADODBConnection();
$ado->Execute("DROP TABLE IF EXISTS ".$table);
}
-
+
/* Ban Rule Edit */
if( GetVar('RuleEditStatus') == 1 )
- {
+ {
$objBanList->CopyFromEditTable("RuleId");
$objBanList->Clear();
}