1 |
2
|
Manuela
|
<?php
|
2 |
|
|
/**
|
3 |
|
|
*
|
4 |
|
|
* @category admin
|
5 |
|
|
* @package pages
|
6 |
|
|
* @author WebsiteBaker Project
|
7 |
|
|
* @copyright Ryan Djurovich
|
8 |
|
|
* @copyright WebsiteBaker Org. e.V.
|
9 |
|
|
* @link http://websitebaker.org/
|
10 |
|
|
* @license http://www.gnu.org/licenses/gpl.html
|
11 |
|
|
* @platform WebsiteBaker 2.8.3
|
12 |
|
|
* @requirements PHP 5.3.6 and higher
|
13 |
|
|
* @version $Id$
|
14 |
|
|
* @filesource $HeadURL$
|
15 |
|
|
* @lastmodified $Date$
|
16 |
|
|
*
|
17 |
|
|
*/
|
18 |
|
|
|
19 |
|
|
// Include config file
|
20 |
|
|
if ( !defined( 'WB_PATH' ) ){ require( dirname(dirname((__DIR__))).'/config.php' ); }
|
21 |
|
|
|
22 |
|
|
// Make sure people are allowed to access this page
|
23 |
|
|
if(MANAGE_SECTIONS != 'enabled')
|
24 |
|
|
{
|
25 |
|
|
header('Location: '.ADMIN_URL.'/pages/index.php');
|
26 |
|
|
exit(0);
|
27 |
|
|
}
|
28 |
|
|
/* */
|
29 |
|
|
$bDebug = false; // to show position and section_id
|
30 |
|
|
if(!defined('PAGE_DEBUG')) { define('PAGE_DEBUG',$bDebug);}
|
31 |
|
|
// Include the WB functions file
|
32 |
|
|
if ( !function_exists( 'create_access_file' ) ) { require(WB_PATH.'/framework/functions.php'); }
|
33 |
|
|
// Create new admin object
|
34 |
|
|
if ( !class_exists('admin', false) ) { require(WB_PATH.'/framework/class.admin.php'); }
|
35 |
|
|
$admin = new admin('Pages', 'pages_modify', false);
|
36 |
|
|
$action = 'show';
|
37 |
|
|
//$echo = $myPath; //
|
38 |
|
|
// Get page id
|
39 |
|
|
$requestMethod = '_'.strtoupper($_SERVER['REQUEST_METHOD']);
|
40 |
|
|
$page_id = intval((isset(${$requestMethod}['page_id'])) ? ${$requestMethod}['page_id'] : 0);
|
41 |
|
|
$action = ($page_id ? 'show' : $action);
|
42 |
|
|
// Get section id if there is one
|
43 |
|
|
$requestMethod = '_'.strtoupper($_SERVER['REQUEST_METHOD']);
|
44 |
|
|
$section_id = ((isset(${$requestMethod}['section_id'])) ? ${$requestMethod}['section_id'] : 0);
|
45 |
|
|
$action = ($section_id ? 'delete' : $action);
|
46 |
|
|
// Get module if there is one
|
47 |
|
|
$requestMethod = '_'.strtoupper($_SERVER['REQUEST_METHOD']);
|
48 |
|
|
$module = ((isset(${$requestMethod}['module'])) ? ${$requestMethod}['module'] : 0);
|
49 |
|
|
$action = ($module != '' ? 'add' : $action);
|
50 |
|
|
$admin_header = true;
|
51 |
|
|
$backlink = ADMIN_URL.'/pages/sections.php?page_id='.(int)$page_id;
|
52 |
|
|
switch ($action):
|
53 |
|
|
case 'delete' :
|
54 |
|
|
if( (!($section_id = intval($admin->checkIDKEY('section_id', 0, $_SERVER['REQUEST_METHOD'])))) )
|
55 |
|
|
{
|
56 |
|
|
if($admin_header) { $admin->print_header(); }
|
57 |
|
|
$sInfo = strtoupper(basename(__DIR__).'_'.basename(__FILE__, ''.PAGE_EXTENSION)).'_idkey::';
|
58 |
|
|
$sDEBUG=(@DEBUG?$sInfo:'');
|
59 |
|
|
$admin->print_error($sDEBUG.$MESSAGE['GENERIC_SECURITY_ACCESS'], $backlink);
|
60 |
|
|
}
|
61 |
|
|
$action = 'show';
|
62 |
|
|
$sql = 'SELECT `module` FROM `'.TABLE_PREFIX.'sections` ';
|
63 |
|
|
$sql .= ' WHERE `section_id` ='.$section_id;
|
64 |
|
|
if( ( ($modulname = $database->get_one($sql)) == $module) && ($section_id > 0 ) ) {
|
65 |
|
|
// Include the modules delete file if it exists
|
66 |
|
|
if(file_exists(WB_PATH.'/modules/'.$modulname.'/delete.php'))
|
67 |
|
|
{
|
68 |
|
|
require(WB_PATH.'/modules/'.$modulname.'/delete.php');
|
69 |
|
|
}
|
70 |
|
|
$sql = 'DELETE FROM `'.TABLE_PREFIX.'sections` ';
|
71 |
|
|
$sql .= 'WHERE `section_id` ='.(int)$section_id;
|
72 |
|
|
if( !$database->query($sql) ) {
|
73 |
|
|
if($admin_header) { $admin->print_header(); }
|
74 |
|
|
$admin->print_error($database->get_error(),$backlink);
|
75 |
|
|
} else {
|
76 |
|
|
if ( !class_exists( 'order', false ) ) { require(WB_PATH.'/framework/class.order.php'); }
|
77 |
|
|
$order = new order(TABLE_PREFIX.'sections', 'position', 'section_id', 'page_id');
|
78 |
|
|
$order->clean($page_id);
|
79 |
|
|
$format = $TEXT['SECTION'].' %d %s %s '.strtolower( $TEXT['DELETED']);
|
80 |
|
|
$message = sprintf ($format,$section_id,strtoupper($modulname),strtolower($TEXT['SUCCESS']));
|
81 |
|
|
if($admin_header) { $admin->print_header(); }
|
82 |
|
|
$admin_header = false;
|
83 |
|
|
unset($_POST);
|
84 |
|
|
$admin->print_success($message, $backlink );
|
85 |
|
|
}
|
86 |
|
|
} else {
|
87 |
|
|
if($admin_header) { $admin->print_header(); }
|
88 |
|
|
$admin->print_error($module.' '.strtolower($TEXT['NOT_FOUND']), $backlink);
|
89 |
|
|
}
|
90 |
|
|
|
91 |
|
|
break;
|
92 |
|
|
case 'add' :
|
93 |
|
|
if (!$admin->checkFTAN())
|
94 |
|
|
{
|
95 |
|
|
$admin->print_header();
|
96 |
|
|
$sInfo = strtoupper(basename(__DIR__).'_'.basename(__FILE__, ''.PAGE_EXTENSION)).'::';
|
97 |
|
|
$sDEBUG=(@DEBUG?$sInfo:'');
|
98 |
|
|
$admin->print_error($sDEBUG.$MESSAGE['GENERIC_SECURITY_ACCESS'], $backlink);
|
99 |
|
|
}
|
100 |
|
|
$action = 'show';
|
101 |
|
|
$module = preg_replace('/\W/', '', $module ); // fix secunia 2010-91-4
|
102 |
|
|
require_once(WB_PATH.'/framework/class.order.php');
|
103 |
|
|
// Get new order
|
104 |
|
|
$order = new order(TABLE_PREFIX.'sections', 'position', 'section_id', 'page_id');
|
105 |
|
|
$position = $order->get_new($page_id);
|
106 |
|
|
// Insert module into DB
|
107 |
|
|
$sql = 'INSERT INTO `'.TABLE_PREFIX.'sections` SET '
|
108 |
|
|
. '`page_id` = '.(int)$page_id.', '
|
109 |
|
|
. '`module` = \''.$module.'\', '
|
110 |
|
|
. '`position` = '.(int)$position.', '
|
111 |
|
|
. '`block` = 1';
|
112 |
|
|
if($database->query($sql)) {
|
113 |
|
|
// Get the section id
|
114 |
|
|
$section_id = $database->get_one("SELECT LAST_INSERT_ID()");
|
115 |
|
|
// Include the selected modules add file if it exists
|
116 |
|
|
if (
|
117 |
|
|
file_exists(WB_PATH.'/modules/'.$module.'/addon.php') &&
|
118 |
|
|
file_exists(WB_PATH.'/modules/'.$module.'/cmd/cmdModify.inc')
|
119 |
|
|
) { break; }
|
120 |
|
|
if(file_exists(WB_PATH.'/modules/'.$module.'/add.php'))
|
121 |
|
|
{
|
122 |
|
|
require(WB_PATH.'/modules/'.$module.'/add.php');
|
123 |
|
|
}
|
124 |
|
|
} elseif ($database->is_error()) {
|
125 |
|
|
if($admin_header) { $admin->print_header(); }
|
126 |
|
|
$admin->print_error($database->get_error());
|
127 |
|
|
}
|
128 |
|
|
break;
|
129 |
|
|
default:
|
130 |
|
|
break;
|
131 |
|
|
endswitch;
|
132 |
|
|
|
133 |
|
|
switch ($action):
|
134 |
|
|
default:
|
135 |
|
|
if($admin_header) { $admin->print_header(); }
|
136 |
|
|
// Get perms
|
137 |
|
|
$sql = 'SELECT `admin_groups`,`admin_users` FROM `'.TABLE_PREFIX.'pages` '
|
138 |
|
|
. 'WHERE `page_id` = '.$page_id;
|
139 |
|
|
$oPages = $database->query($sql);
|
140 |
|
|
$aPages = $oPages->fetchRow(MYSQLI_ASSOC);
|
141 |
|
|
$in_old_group = $admin->is_group_match($aPages['admin_groups'],$admin->get_groups_id());
|
142 |
|
|
/*
|
143 |
|
|
$old_admin_groups = explode(',', $aPages['admin_groups']);
|
144 |
|
|
$old_admin_users = explode(',', $aPages['admin_users']);
|
145 |
|
|
$in_old_group = false;
|
146 |
|
|
foreach($admin->get_groups_id() as $cur_gid)
|
147 |
|
|
{
|
148 |
|
|
if (in_array($cur_gid, $old_admin_groups))
|
149 |
|
|
{
|
150 |
|
|
$in_old_group = true;
|
151 |
|
|
}
|
152 |
|
|
}
|
153 |
|
|
*/
|
154 |
|
|
if ((!$in_old_group) && !is_numeric(array_search($admin->get_user_id(), $old_admin_users)))
|
155 |
|
|
{
|
156 |
|
|
$admin->print_header();
|
157 |
|
|
$sInfo = strtoupper(basename(__DIR__).'_'.basename(__FILE__, ''.PAGE_EXTENSION)).'::';
|
158 |
|
|
$sDEBUG=(@DEBUG?$sInfo:'');
|
159 |
|
|
$admin->print_error($sDEBUG.$MESSAGE['PAGES_INSUFFICIENT_PERMISSIONS']);
|
160 |
|
|
}
|
161 |
|
|
// Get page details
|
162 |
|
|
$sql = 'SELECT * FROM `'.TABLE_PREFIX.'pages` '
|
163 |
|
|
. 'WHERE `page_id` = '.$page_id;
|
164 |
|
|
$results = $database->query($sql);
|
165 |
|
|
if($database->is_error())
|
166 |
|
|
{
|
167 |
|
|
// $admin->print_header();
|
168 |
|
|
$admin->print_error($database->get_error());
|
169 |
|
|
}
|
170 |
|
|
if($results->numRows() == 0)
|
171 |
|
|
{
|
172 |
|
|
// $admin->print_header();
|
173 |
|
|
$admin->print_error($MESSAGE['PAGES_NOT_FOUND']);
|
174 |
|
|
}
|
175 |
|
|
$results_array = $results->fetchRow(MYSQLI_ASSOC);
|
176 |
|
|
// Set module permissions
|
177 |
|
|
$aAllowedModules = array();
|
178 |
|
|
$sAllowedModules = '';
|
179 |
|
|
$module_permissions = $_SESSION['MODULE_PERMISSIONS'];
|
180 |
|
|
$sAllowedModules = implode(', ',
|
181 |
|
|
array_map(function(&$item) use ($database){
|
182 |
|
|
return '\''.$database->escapeString($item) .'\'';
|
183 |
|
|
}, $module_permissions));
|
184 |
|
|
$sqlAddons = 'SELECT * FROM `'.TABLE_PREFIX.'addons` '
|
185 |
|
|
. 'WHERE `type` = \'module\' '
|
186 |
|
|
. ($sAllowedModules?'AND `directory` NOT IN ('.$sAllowedModules.')' :'')
|
187 |
|
|
. 'ORDER BY `name`';
|
188 |
|
|
if($oAddons = $database->query($sqlAddons))
|
189 |
|
|
{
|
190 |
|
|
while($aAddons = $oAddons->fetchRow(MYSQLI_ASSOC))
|
191 |
|
|
{
|
192 |
|
|
$aAllowedModules[] = $aAddons['directory'];
|
193 |
|
|
}
|
194 |
|
|
}
|
195 |
|
|
|
196 |
|
|
$sAllowedModules = '';
|
197 |
|
|
$sAllowedModules = implode(', ',
|
198 |
|
|
array_map(function(&$item) use ($database){
|
199 |
|
|
return '\''.$database->escapeString($item) .'\'';
|
200 |
|
|
}, $aAllowedModules));
|
201 |
|
|
// Unset block var
|
202 |
|
|
unset($block);
|
203 |
|
|
// Include template info file (if it exists)
|
204 |
|
|
if($results_array['template'] != '')
|
205 |
|
|
{
|
206 |
|
|
$template_location = WB_PATH.'/templates/'.$results_array['template'].'/info.php';
|
207 |
|
|
} else {
|
208 |
|
|
$template_location = WB_PATH.'/templates/'.DEFAULT_TEMPLATE.'/info.php';
|
209 |
|
|
}
|
210 |
|
|
if(file_exists($template_location))
|
211 |
|
|
{
|
212 |
|
|
require($template_location);
|
213 |
|
|
}
|
214 |
|
|
// Check if $menu is set
|
215 |
|
|
if(!isset($block[1]) || $block[1] == '')
|
216 |
|
|
{
|
217 |
|
|
// Make our own menu list
|
218 |
|
|
$block[1] = $TEXT['MAIN'];
|
219 |
|
|
}
|
220 |
|
|
// Get display name of person who last modified the page
|
221 |
|
|
$user=$admin->get_user_details($results_array['modified_by']);
|
222 |
|
|
// Convert the unix ts for modified_when to human a readable form
|
223 |
|
|
if($results_array['modified_when'] != 0)
|
224 |
|
|
{
|
225 |
|
|
$modified_ts = gmdate(TIME_FORMAT.', '.DATE_FORMAT, $results_array['modified_when']+TIMEZONE);
|
226 |
|
|
} else {
|
227 |
|
|
$modified_ts = 'Unknown';
|
228 |
|
|
}
|
229 |
|
|
/*-- load css files with jquery --*/
|
230 |
|
|
// include jscalendar-setup
|
231 |
|
|
$jscal_use_time = true; // whether to use a clock, too
|
232 |
|
|
require_once(WB_PATH."/include/jscalendar/wb-setup.php");
|
233 |
|
|
// Setup template object, parse vars to it, then parse it
|
234 |
|
|
// Create new template object
|
235 |
|
|
$tpl = new Template(dirname($admin->correct_theme_source('pages_sections.htt')));
|
236 |
|
|
// $template->debug = true;
|
237 |
|
|
$tpl->set_file('page', 'pages_sections.htt');
|
238 |
|
|
$tpl->set_block('page', 'main_block', 'main');
|
239 |
|
|
$tpl->set_block('main_block', 'module_block', 'module_list');
|
240 |
|
|
$tpl->set_block('main_block', 'show_section_block', 'show_section');
|
241 |
|
|
$tpl->set_block('main_block', 'calendar_block', 'calendar_list');
|
242 |
|
|
$tpl->set_var('FTAN', $admin->getFTAN());
|
243 |
|
|
// setting trash only if more than one section exists
|
244 |
|
|
$tpl->set_block('show_section_block', 'can_delete_block', 'can_delete');
|
245 |
|
|
$sql = 'SELECT COUNT(*) FROM `'.TABLE_PREFIX.'sections` '
|
246 |
|
|
. 'WHERE `page_id`='.intval($page_id).' '
|
247 |
|
|
. 'AND `module` IN ('.$sAllowedModules.')';
|
248 |
|
|
$bSectionCanDelete = ($database->get_one($sql) > 1);
|
249 |
|
|
// set first defaults and messages
|
250 |
|
|
$tpl->set_var(array(
|
251 |
|
|
'PAGE_ID' => $results_array['page_id'],
|
252 |
|
|
// 'PAGE_IDKEY' => $admin->getIDKEY($results_array['page_id']),
|
253 |
|
|
'PAGE_IDKEY' => $results_array['page_id'],
|
254 |
|
|
'TEXT_PAGE' => $TEXT['PAGE'],
|
255 |
|
|
'TIMEZONE' => 'TIMEZONE',
|
256 |
|
|
'PAGE_TITLE' => ($results_array['page_title']),
|
257 |
|
|
'MENU_TITLE' => ($results_array['menu_title']),
|
258 |
|
|
'TEXT_CURRENT_PAGE' => $TEXT['CURRENT_PAGE'],
|
259 |
|
|
'HEADING_MANAGE_SECTIONS' => $HEADING['MANAGE_SECTIONS'],
|
260 |
|
|
'HEADING_MODIFY_PAGE' => $HEADING['MODIFY_PAGE'],
|
261 |
|
|
'TEXT_CHANGE_SETTINGS' => $TEXT['CHANGE_SETTINGS'],
|
262 |
|
|
'TEXT_ADD_SECTION' => $TEXT['ADD_SECTION'],
|
263 |
|
|
'TEXT_ID' => 'ID',
|
264 |
|
|
'TEXT_TYPE' => $TEXT['TYPE'],
|
265 |
|
|
'TEXT_BLOCK' => $TEXT['BLOCK'],
|
266 |
|
|
'TEXT_PUBL_START_DATE' => $TEXT{'PUBL_START_DATE'},
|
267 |
|
|
'TEXT_PUBL_END_DATE' => $TEXT['PUBL_END_DATE'],
|
268 |
|
|
'TEXT_ACTIONS' => $TEXT['ACTIONS'],
|
269 |
|
|
'TEXT_MODIFY' => $TEXT['MODIFY'],
|
270 |
|
|
'TEXT_MODIFY_PAGE' => $HEADING['MODIFY_PAGE'],
|
271 |
|
|
'LAST_MODIFIED' => $MESSAGE['PAGES']['LAST_MODIFIED'],
|
272 |
|
|
'MODIFIED_BY' => $user['display_name'],
|
273 |
|
|
'MODIFIED_BY_USERNAME' => $user['username'],
|
274 |
|
|
'MODIFIED_WHEN' => $modified_ts,
|
275 |
|
|
'ADMIN_URL' => ADMIN_URL,
|
276 |
|
|
'WB_URL' => WB_URL,
|
277 |
|
|
'THEME_URL' => THEME_URL
|
278 |
|
|
)
|
279 |
|
|
);
|
280 |
|
|
// Insert variables
|
281 |
|
|
$tpl->set_var(array(
|
282 |
|
|
'PAGE_ID' => $results_array['page_id'],
|
283 |
|
|
// 'PAGE_IDKEY' => $admin->getIDKEY($results_array['page_id']),
|
284 |
|
|
'PAGE_IDKEY' => $results_array['page_id'],
|
285 |
|
|
'VAR_PAGE_TITLE' => $results_array['page_title'],
|
286 |
|
|
'SETTINGS_LINK' => ADMIN_URL.'/pages/settings.php?page_id='.$results_array['page_id'],
|
287 |
|
|
'MODIFY_LINK' => ADMIN_URL.'/pages/modify.php?page_id='.$results_array['page_id']
|
288 |
|
|
)
|
289 |
|
|
);
|
290 |
|
|
$tpl->set_block('show_section_block', 'section_list_block', 'section_list');
|
291 |
|
|
$tpl->set_block('show_section_block', 'section_title_block', 'section_title');
|
292 |
|
|
$sqlSections = 'SELECT * FROM `'.TABLE_PREFIX.'sections` '
|
293 |
|
|
. 'WHERE `page_id` = '.(int)$page_id.' '
|
294 |
|
|
. 'ORDER BY `position`';
|
295 |
|
|
// $query_sections = $database->query($sql);
|
296 |
|
|
if ($query_sections = $database->query($sqlSections))
|
297 |
|
|
{
|
298 |
|
|
$num_sections = $query_sections->numRows();
|
299 |
|
|
$section = array();
|
300 |
|
|
while($section = $query_sections->fetchRow(MYSQLI_ASSOC))
|
301 |
|
|
{
|
302 |
|
|
if(!is_numeric(array_search($section['module'], $module_permissions)))
|
303 |
|
|
{
|
304 |
|
|
// Get the modules real name
|
305 |
|
|
$sql = 'SELECT `name` FROM `'.TABLE_PREFIX.'addons` '
|
306 |
|
|
. 'WHERE `directory` = "'.$section['module'].'"';
|
307 |
|
|
if(!$database->get_one($sql) || !file_exists(WB_PATH.'/modules/'.$section['module']))
|
308 |
|
|
{
|
309 |
|
|
$edit_page = '<span class="module_disabled">'.$section['module'].'</span>';
|
310 |
|
|
$section['title'] = $MESSAGE['GENERIC_NOT_INSTALLED'];
|
311 |
|
|
}else
|
312 |
|
|
{
|
313 |
|
|
$edit_page = '';
|
314 |
|
|
}
|
315 |
|
|
$sec_anchor = (defined( 'SEC_ANCHOR' ) && ( SEC_ANCHOR != '' ) ? SEC_ANCHOR : '');
|
316 |
|
|
$edit_page_0 = '<a id="sid'.$section['section_id'].'" href="'.ADMIN_URL.'/pages/modify.php?page_id='.$results_array['page_id'];
|
317 |
|
|
$edit_page_1 = ($sec_anchor!='') ? '#'.$sec_anchor.$section['section_id'].'">' : '">';
|
318 |
|
|
$edit_page_1 .= $section['module'].'</a>';
|
319 |
|
|
|
320 |
|
|
if ($section['title']!='') {
|
321 |
|
|
$sSectionTitle = ((mb_strlen($section['title']) > 35) ? mb_substr($section['title'], 0, 34).'…' : $section['title']);
|
322 |
|
|
$tpl->set_var('SECTION_TITLE', $sSectionTitle);
|
323 |
|
|
$tpl->set_var('SEC_TAG_TITLE', $section['title']);
|
324 |
|
|
$tpl->parse('section_title', 'section_title_block', false);
|
325 |
|
|
} else {
|
326 |
|
|
$tpl->parse('section_title', '');
|
327 |
|
|
}
|
328 |
|
|
|
329 |
|
|
if(SECTION_BLOCKS)
|
330 |
|
|
{
|
331 |
|
|
if($edit_page == '')
|
332 |
|
|
{
|
333 |
|
|
if(defined('EDIT_ONE_SECTION') && EDIT_ONE_SECTION)
|
334 |
|
|
{
|
335 |
|
|
$edit_page = $edit_page_0.'&wysiwyg='.$section['section_id'].$edit_page_1;
|
336 |
|
|
} else {
|
337 |
|
|
$edit_page = $edit_page_0.$edit_page_1;
|
338 |
|
|
}
|
339 |
|
|
}
|
340 |
|
|
$input_attribute = 'input_normal';
|
341 |
|
|
$tpl->set_var(array(
|
342 |
|
|
'STYLE_DISPLAY_SECTION_BLOCK' => ' style="visibility:visible;"',
|
343 |
|
|
'NAME_SIZE' => 300,
|
344 |
|
|
'INPUT_ATTRIBUTE' => $input_attribute,
|
345 |
|
|
'VAR_SECTION_ID' => $section['section_id'],
|
346 |
|
|
'VAR_SECTION_IDKEY' => $admin->getIDKEY($section['section_id']),
|
347 |
|
|
// 'VAR_SECTION_IDKEY' => $section['section_id'],
|
348 |
|
|
'VAR_POSITION' => $section['position'],
|
349 |
|
|
'LINK_MODIFY_URL_VAR_MODUL_NAME' => $edit_page,
|
350 |
|
|
'SELECT' => '',
|
351 |
|
|
'SET_NONE_DISPLAY_OPTION' => ''
|
352 |
|
|
)
|
353 |
|
|
);
|
354 |
|
|
// Add block options to the section_list
|
355 |
|
|
$tpl->clear_var('section_list');
|
356 |
|
|
|
357 |
|
|
foreach($block AS $number => $name)
|
358 |
|
|
{
|
359 |
|
|
$tpl->set_var('NAME', htmlentities(strip_tags($name)));
|
360 |
|
|
$tpl->set_var('VALUE', $number);
|
361 |
|
|
$tpl->set_var('SIZE', 1);
|
362 |
|
|
if($section['block'] == $number)
|
363 |
|
|
{
|
364 |
|
|
$tpl->set_var('SELECTED', ' selected="selected"');
|
365 |
|
|
} else {
|
366 |
|
|
$tpl->set_var('SELECTED', '');
|
367 |
|
|
}
|
368 |
|
|
$tpl->parse('section_list', 'section_list_block', true);
|
369 |
|
|
}
|
370 |
|
|
} else {
|
371 |
|
|
if($edit_page == '')
|
372 |
|
|
{
|
373 |
|
|
$edit_page = $edit_page_0.'#wb_'.$edit_page_1;
|
374 |
|
|
}
|
375 |
|
|
|
376 |
|
|
$input_attribute = 'input_normal';
|
377 |
|
|
$tpl->set_var(array(
|
378 |
|
|
'STYLE_DISPLAY_SECTION_BLOCK' => ' style="visibility:hidden;"',
|
379 |
|
|
'NAME_SIZE' => 300,
|
380 |
|
|
'INPUT_ATTRIBUTE' => $input_attribute,
|
381 |
|
|
'VAR_SECTION_ID' => $section['section_id'],
|
382 |
|
|
'VAR_SECTION_IDKEY' => $admin->getIDKEY($section['section_id']),
|
383 |
|
|
// 'VAR_SECTION_IDKEY' => $section['section_id'],
|
384 |
|
|
'VAR_POSITION' => $section['position'],
|
385 |
|
|
'LINK_MODIFY_URL_VAR_MODUL_NAME' => $edit_page,
|
386 |
|
|
'NAME' => htmlentities(strip_tags($block[1])),
|
387 |
|
|
'VALUE' => 1,
|
388 |
|
|
'SET_NONE_DISPLAY_OPTION' => ''
|
389 |
|
|
)
|
390 |
|
|
);
|
391 |
|
|
}
|
392 |
|
|
// Insert icon and images
|
393 |
|
|
$tpl->set_var(array(
|
394 |
|
|
'CLOCK_16_PNG' => 'clock_16.png',
|
395 |
|
|
'CLOCK_DEL_16_PNG' => 'clock_del_16.png',
|
396 |
|
|
'DELETE_16_PNG' => 'delete_16.png'
|
397 |
|
|
)
|
398 |
|
|
);
|
399 |
|
|
// set calendar start values
|
400 |
|
|
if($section['publ_start']==0)
|
401 |
|
|
{
|
402 |
|
|
$tpl->set_var('VALUE_PUBL_START', '');
|
403 |
|
|
} else {
|
404 |
|
|
$tpl->set_var('VALUE_PUBL_START', date($jscal_format, $section['publ_start']+TIMEZONE));
|
405 |
|
|
}
|
406 |
|
|
// set calendar start values
|
407 |
|
|
if($section['publ_end']==0)
|
408 |
|
|
{
|
409 |
|
|
$tpl->set_var('VALUE_PUBL_END', '');
|
410 |
|
|
} else {
|
411 |
|
|
$tpl->set_var('VALUE_PUBL_END', date($jscal_format, $section['publ_end']+TIMEZONE));
|
412 |
|
|
}
|
413 |
|
|
// Insert icons up and down
|
414 |
|
|
if($section['position'] != 1 )
|
415 |
|
|
{
|
416 |
|
|
$tpl->set_var(
|
417 |
|
|
'VAR_MOVE_UP_URL',
|
418 |
|
|
'<a href="'.ADMIN_URL.'/pages/move_up.php?page_id='.$page_id.'&section_id='.$section['section_id'].'">
|
419 |
|
|
<img src="'.THEME_URL.'/images/up_16.png" alt="up" />
|
420 |
|
|
</a>' );
|
421 |
|
|
} else {
|
422 |
|
|
$tpl->set_var(array(
|
423 |
|
|
'VAR_MOVE_UP_URL' => ''
|
424 |
|
|
)
|
425 |
|
|
);
|
426 |
|
|
}
|
427 |
|
|
if($section['position'] != $num_sections ) {
|
428 |
|
|
$tpl->set_var(
|
429 |
|
|
'VAR_MOVE_DOWN_URL',
|
430 |
|
|
'<a href="'.ADMIN_URL.'/pages/move_down.php?page_id='.$page_id.'&section_id='.$section['section_id'].'">
|
431 |
|
|
<img src="'.THEME_URL.'/images/down_16.png" alt="down" />
|
432 |
|
|
</a>' );
|
433 |
|
|
} else {
|
434 |
|
|
$tpl->set_var(array(
|
435 |
|
|
'VAR_MOVE_DOWN_URL' => ''
|
436 |
|
|
)
|
437 |
|
|
);
|
438 |
|
|
}
|
439 |
|
|
} else {
|
440 |
|
|
continue;
|
441 |
|
|
}
|
442 |
|
|
$tpl->set_var(array(
|
443 |
|
|
'DISPLAY_DEBUG' => ' style="visibility="visible;"',
|
444 |
|
|
'TEXT_SID' => 'SID',
|
445 |
|
|
'DEBUG_COLSPAN_SIZE' => 9
|
446 |
|
|
)
|
447 |
|
|
);
|
448 |
|
|
if($bDebug)
|
449 |
|
|
{
|
450 |
|
|
$tpl->set_var(array(
|
451 |
|
|
'DISPLAY_DEBUG' => ' style="visibility="visible;"',
|
452 |
|
|
'TEXT_PID' => 'PID',
|
453 |
|
|
'TEXT_SID' => 'SID',
|
454 |
|
|
'POSITION' => $section['position']
|
455 |
|
|
)
|
456 |
|
|
);
|
457 |
|
|
} else {
|
458 |
|
|
$tpl->set_var(array(
|
459 |
|
|
'DISPLAY_DEBUG' => ' style="display:none;"',
|
460 |
|
|
'TEXT_PID' => '',
|
461 |
|
|
'POSITION' => ''
|
462 |
|
|
)
|
463 |
|
|
);
|
464 |
|
|
}
|
465 |
|
|
if($bSectionCanDelete) {
|
466 |
|
|
$tpl->parse('can_delete', 'can_delete_block', false);
|
467 |
|
|
} else {
|
468 |
|
|
// $tpl->parse('can_delete', '', false);
|
469 |
|
|
$tpl->set_block('can_delete_block', '');
|
470 |
|
|
}
|
471 |
|
|
$tpl->parse('show_section', 'show_section_block', true);
|
472 |
|
|
}
|
473 |
|
|
}
|
474 |
|
|
|
475 |
|
|
// now add the calendars -- remember to to set the range to [1970, 2037] if the date is used as timestamp!
|
476 |
|
|
// the loop is simply a copy from above.
|
477 |
|
|
$sql = 'SELECT `section_id`,`module` FROM `'.TABLE_PREFIX.'sections` ';
|
478 |
|
|
$sql .= 'WHERE page_id = '.$page_id.' ';
|
479 |
|
|
$sql .= 'ORDER BY `position` ASC';
|
480 |
|
|
$query_sections = $database->query($sql);
|
481 |
|
|
|
482 |
|
|
if($query_sections->numRows() > 0)
|
483 |
|
|
{
|
484 |
|
|
$num_sections = $query_sections->numRows();
|
485 |
|
|
while($section = $query_sections->fetchRow())
|
486 |
|
|
{
|
487 |
|
|
// Get the modules real name
|
488 |
|
|
$sql = 'SELECT `name` FROM `'.TABLE_PREFIX.'addons` '
|
489 |
|
|
. 'WHERE `directory` = "'.$section['module'].'"';
|
490 |
|
|
$module_name = $database->get_one($sql);
|
491 |
|
|
|
492 |
|
|
if(!is_numeric(array_search($section['module'], $module_permissions)))
|
493 |
|
|
{
|
494 |
|
|
$tpl->set_var(array(
|
495 |
|
|
'jscal_ifformat' => $jscal_ifformat,
|
496 |
|
|
'jscal_firstday' => $jscal_firstday,
|
497 |
|
|
'jscal_today' => $jscal_today,
|
498 |
|
|
'start_date' => 'start_date'.$section['section_id'],
|
499 |
|
|
'end_date' => 'end_date'.$section['section_id'],
|
500 |
|
|
'trigger_start' => 'trigger_start'.$section['section_id'],
|
501 |
|
|
'trigger_end' => 'trigger_stop'.$section['section_id']
|
502 |
|
|
)
|
503 |
|
|
);
|
504 |
|
|
if(isset($jscal_use_time) && $jscal_use_time==TRUE) {
|
505 |
|
|
$tpl->set_var(array(
|
506 |
|
|
'showsTime' => "true",
|
507 |
|
|
'timeFormat' => "24"
|
508 |
|
|
)
|
509 |
|
|
);
|
510 |
|
|
} else {
|
511 |
|
|
$tpl->set_var(array(
|
512 |
|
|
'showsTime' => "false",
|
513 |
|
|
'timeFormat' => "24"
|
514 |
|
|
)
|
515 |
|
|
);
|
516 |
|
|
}
|
517 |
|
|
}
|
518 |
|
|
$tpl->parse('calendar_list', 'calendar_block', true);
|
519 |
|
|
}
|
520 |
|
|
}
|
521 |
|
|
|
522 |
|
|
// Work-out if we should show the "Add Section" form
|
523 |
|
|
$sql = 'SELECT `section_id` FROM `'.TABLE_PREFIX.'sections` '
|
524 |
|
|
. 'WHERE `page_id` = '.$page_id.' AND `module` = "menu_link"';
|
525 |
|
|
$query_sections = $database->query($sql);
|
526 |
|
|
if($query_sections->numRows() == 0)
|
527 |
|
|
{
|
528 |
|
|
// Modules list
|
529 |
|
|
$sql = 'SELECT `name`,`directory`,`type` FROM `'.TABLE_PREFIX.'addons` '
|
530 |
|
|
. 'WHERE `type` = \'module\' '
|
531 |
|
|
. 'AND `function` = \'page\' '
|
532 |
|
|
. 'AND `directory` != \'menu_link\' '
|
533 |
|
|
. 'ORDER BY `name`';
|
534 |
|
|
$result = $database->query($sql);
|
535 |
|
|
// if(DEBUG && $database->is_error()) { $admin->print_error($database->get_error()); }
|
536 |
|
|
if($result->numRows() > 0)
|
537 |
|
|
{
|
538 |
|
|
while ($module = $result->fetchRow(MYSQLI_ASSOC))
|
539 |
|
|
{
|
540 |
|
|
// Check if user is allowed to use this module echo $module['directory'],'<br />';
|
541 |
|
|
if(!is_numeric(array_search($module['directory'], $module_permissions)))
|
542 |
|
|
{
|
543 |
|
|
$tpl->set_var('VALUE', $module['directory']);
|
544 |
|
|
$tpl->set_var('NAME', $module['name']);
|
545 |
|
|
if($module['directory'] == 'wysiwyg')
|
546 |
|
|
{
|
547 |
|
|
$tpl->set_var('SELECTED', ' selected="selected"');
|
548 |
|
|
} else {
|
549 |
|
|
$tpl->set_var('SELECTED', '');
|
550 |
|
|
}
|
551 |
|
|
$tpl->parse('module_list', 'module_block', true);
|
552 |
|
|
} else {
|
553 |
|
|
continue;
|
554 |
|
|
}
|
555 |
|
|
}
|
556 |
|
|
}
|
557 |
|
|
}
|
558 |
|
|
// Insert language text and messages
|
559 |
|
|
$tpl->set_var(array(
|
560 |
|
|
'TEXT_MANAGE_SECTIONS' => $HEADING['MANAGE_SECTIONS'],
|
561 |
|
|
'TEXT_ARE_YOU_SURE' => $TEXT['ARE_YOU_SURE'],
|
562 |
|
|
'TEXT_TYPE' => $TEXT['TYPE'],
|
563 |
|
|
'TEXT_ADD' => $TEXT['ADD'],
|
564 |
|
|
'TEXT_SAVE' => $TEXT['SAVE'],
|
565 |
|
|
'TEXTLINK_MODIFY_PAGE' => $HEADING['MODIFY_PAGE'],
|
566 |
|
|
'TEXT_CALENDAR' => $TEXT['CALENDAR'],
|
567 |
|
|
'TEXT_DELETE_DATE' => $TEXT['DELETE_DATE'],
|
568 |
|
|
'TEXT_ADD_SECTION' => $TEXT['ADD_SECTION'],
|
569 |
|
|
'TEXT_MOVE_UP' => $TEXT['MOVE_UP'],
|
570 |
|
|
'TEXT_MOVE_DOWN' => $TEXT['MOVE_DOWN']
|
571 |
|
|
)
|
572 |
|
|
);
|
573 |
|
|
$tpl->set_block('main_block', 'show_settings_block', 'show_settings');
|
574 |
|
|
if ($admin->get_permission('pages_settings')) {
|
575 |
|
|
$tpl->parse('show_settings', 'show_settings_block', true);
|
576 |
|
|
} else {
|
577 |
|
|
$tpl->set_block('show_settings', '');
|
578 |
|
|
}
|
579 |
|
|
$tpl->parse('main', 'main_block', false);
|
580 |
|
|
$tpl->pparse('output', 'page');
|
581 |
|
|
// include the required file for Javascript admin
|
582 |
|
|
if(file_exists(WB_PATH.'/modules/jsadmin/jsadmin_backend_include.php'))
|
583 |
|
|
{
|
584 |
|
|
include(WB_PATH.'/modules/jsadmin/jsadmin_backend_include.php');
|
585 |
|
|
}
|
586 |
|
|
break;
|
587 |
|
|
endswitch;
|
588 |
|
|
|
589 |
|
|
// Print admin footer
|
590 |
|
|
$admin->print_footer();
|