<?php
/**
 *
 * @category        modules
 * @package         news
 * @author          WebsiteBaker Project
 * @copyright       WebsiteBaker Org. e.V.
 * @link            http://websitebaker.org/
 * @license         http://www.gnu.org/licenses/gpl.html
 * @platform        WebsiteBaker 2.8.3
 * @requirements    PHP 5.3.6 and higher
 * @version         $Id: save_group.php 2 2017-07-02 15:14:29Z Manuela $
 * @filesource      $HeadURL: svn://isteam.dynxs.de/wb/2.10.x/trunk/modules/news/save_group.php $
 * @lastmodified    $Date: 2017-07-02 17:14:29 +0200 (Sun, 02 Jul 2017) $
 *
 */

if ( !defined( 'WB_PATH' ) ){ require( dirname(dirname((__DIR__))).'/config.php' ); }

// Get id
//if(!isset($_POST['group_id']) || !is_numeric($_POST['group_id']))
//{
//   header("Location: ".ADMIN_URL."/pages/index.php");
//   exit( 0 );
//}
//else
//{
//   $group_id = $_POST['group_id'];
//}

$admin_header = false;
// Tells script to update when this page was last updated
$update_when_modified = true;
// Include WB admin wrapper script
require(WB_PATH.'/modules/admin.php');

$group_id = intval(isset(${$requestMethod}['group_id']) 
                  ? ${$requestMethod}['group_id'] 
                  : (isset($group_id) ? $group_id : 0)
           );
if (!$admin->checkFTAN())
{
   $admin->print_header();
   $admin->print_error($MESSAGE['GENERIC_SECURITY_ACCESS'], ADMIN_URL.'/pages/modify.php?page_id='.$page_id);
}
$admin->print_header();

// Include WB functions file
require(WB_PATH.'/framework/functions.php');

// Validate all fields
if($admin->get_post('title') == '')
{
   $admin->print_error($MESSAGE['GENERIC_FILL_IN_ALL'], WB_URL.'/modules/news/modify_group.php?page_id='.$page_id.'&section_id='.$section_id.'&group_id='.$admin->getIDKEY($group_id));
}
else
{
   $title = $admin->StripCodeFromText($admin->get_post('title'));
   $active = intval($admin->get_post('active'));
}

// Update row
$sql  = 'UPDATE `'.TABLE_PREFIX.'mod_news_groups` SET '
      . '`title`=\''.$database->escapeString($title).'\', '
      . '`active`=\''.$database->escapeString($active).'\' '
      . 'WHERE `group_id`='.$database->escapeString($group_id);
$database->query($sql);

// Check if the user uploaded an image or wants to delete one
if(isset($_FILES['image']['tmp_name']) AND $_FILES['image']['tmp_name'] != '') {
   // Get real filename and set new filename
   $filename = $_FILES['image']['name'];
   $file_image_type = $_FILES['image']['type'];
   $new_filename = WB_PATH.MEDIA_DIRECTORY.'/.news/image'.$group_id.'.jpg';
   // Make sure the image is a jpg file
   $file4=substr($filename, -4, 4);

   switch ($file_image_type) :
      case 'image/jpeg' :
      case 'image/pjpeg' :
      case 'image/png' :
      case 'image/x-png' :
      break;
      default:
         $admin->print_error($MESSAGE['GENERIC_FILE_TYPE'].' JPG (JPEG) or PNG',ADMIN_URL.'/pages/modify.php?page_id='.$page_id);
      break;
   endswitch;

/*
   if(($file4 != '.jpg')and($file4 != '.JPG')and($file4 != '.png')and($file4 != '.PNG') and ($file4 !='jpeg') and ($file4 != 'JPEG'))
    {
      $admin->print_error($MESSAGE['GENERIC']['FILE_TYPE'].' JPG (JPEG) or PNG',ADMIN_URL.'/pages/modify.php?page_id='.$page_id);
   } elseif(
   (($_FILES['image']['type']) != 'image/jpeg' AND mime_content_type($_FILES['image']['tmp_name']) != 'image/jpg')
   and
   (($_FILES['image']['type']) != 'image/png' AND mime_content_type($_FILES['image']['tmp_name']) != 'image/png')
   ){
      $admin->print_error($MESSAGE['GENERIC']['FILE_TYPE'].' JPG (JPEG) or PNG',ADMIN_URL.'/pages/modify.php?page_id='.$page_id);
   }
*/

   // Make sure the target directory exists
   make_dir(WB_PATH.MEDIA_DIRECTORY.'/.news');
   // Upload image
   move_uploaded_file($_FILES['image']['tmp_name'], $new_filename);
   // Check if we need to create a thumb
   $query_settings = $database->query("SELECT resize FROM ".TABLE_PREFIX."mod_news_settings WHERE section_id = '$section_id'");
   $fetch_settings = $query_settings->fetchRow();
   $resize = $fetch_settings['resize'];
   if($resize != 0)
    {
      // Resize the image
      $thumb_location = WB_PATH.MEDIA_DIRECTORY.'/.news/thumb'.$group_id.'.jpg';
      if(make_thumb($new_filename, $thumb_location, $resize))
        {
         // Delete the actual image and replace with the resized version
         unlink($new_filename);
         rename($thumb_location, $new_filename);
      }
   }
}
if(isset($_POST['delete_image']) AND $_POST['delete_image'] != '')
{
   // Try unlinking image
   if(file_exists(WB_PATH.MEDIA_DIRECTORY.'/.news/image'.$group_id.'.jpg'))
    {
      unlink(WB_PATH.MEDIA_DIRECTORY.'/.news/image'.$group_id.'.jpg');
   }
}

// Check if there is a db error, otherwise say successful
if($database->is_error()) {
   $admin->print_error($database->get_error(), WB_URL.'/modules/news/modify_group.php?page_id='.$page_id.'&section_id='.$section_id.'&group_id='.$admin->getIDKEY($group_id));
} else {
   $admin->print_success($TEXT['SUCCESS'], ADMIN_URL.'/pages/modify.php?page_id='.$page_id);
}

// Print admin footer
$admin->print_footer();