WB 2.08.x

<?php

/**

 *

 * @category        module

 * @package         Form

 * @author          WebsiteBaker Project

 * @copyright       2009-2011, Website Baker Org. e.V.

 * @link			http://www.websitebaker2.org/

 * @license         http://www.gnu.org/licenses/gpl.html

 * @platform        WebsiteBaker 2.8.x

 * @requirements    PHP 5.2.2 and higher

 * @version         $Id: save_settings.php 1573 2012-01-16 02:01:52Z Luisehahne $

 * @filesource		$HeadURL: svn://isteam.dynxs.de/wb-archiv/branches/2.8.x/wb/modules/form/save_settings.php $

 * @lastmodified    $Date: 2012-01-16 03:01:52 +0100 (Mon, 16 Jan 2012) $

 * @description     

 */

require('../../config.php');

$admin_header = false;

// Tells script to update when this page was last updated

$update_when_modified = true;

// Include WB admin wrapper script

require(WB_PATH.'/modules/admin.php');

if (!$admin->checkFTAN())

{

	$admin->print_header();

	$admin->print_error($MESSAGE['GENERIC_SECURITY_ACCESS'], ADMIN_URL.'/pages/modify.php?page_id='.$page_id);

}

$admin->print_header();

$sec_anchor = (defined( 'SEC_ANCHOR' ) && ( SEC_ANCHOR != '' )  ? '#'.SEC_ANCHOR.$section['section_id'] : '' );

if (!function_exists('emailAdmin')) {

	function emailAdmin() {

		global $database,$admin;

        $retval = $admin->get_email();

        if($admin->get_user_id()!='1') {

			$sql  = 'SELECT `email` FROM `'.TABLE_PREFIX.'users` ';

			$sql .= 'WHERE `user_id`=\'1\' ';

	        $retval = $database->get_one($sql);

        }

		return $retval;

	}

}

// load module language file

$lang = (dirname(__FILE__)) . '/languages/' . LANGUAGE . '.php';

require_once(!file_exists($lang) ? (dirname(__FILE__)) . '/languages/EN.php' : $lang );

// This code removes any <?php tags and adds slashes

$friendly = array('<', '>', '?php');

$raw = array('<', '>', '');

$header = $admin->add_slashes($_POST['header']);

$field_loop = $admin->add_slashes($_POST['field_loop']);

$footer = $admin->add_slashes($_POST['footer']);

$email_to = $admin->add_slashes($_POST['email_to']);

$email_to = ($email_to != '' ? $email_to : emailAdmin());

$use_captcha = $admin->add_slashes($_POST['use_captcha']);

if( isset($_POST['email_from_field']) && ($_POST['email_from_field'] != '')) {

	$email_from = $admin->add_slashes($_POST['email_from_field']);

} else {

	$email_from = $admin->add_slashes($_POST['email_from']);

}

if( isset($_POST['email_fromname_field']) && ($_POST['email_fromname_field'] != '')) {

	$email_fromname = $admin->add_slashes($_POST['email_fromname_field']);

} else {

	$email_fromname = $admin->add_slashes($_POST['email_fromname']);

}

$email_subject = $admin->add_slashes($_POST['email_subject']);

$email_subject = (($email_subject  != '') ? $email_subject : '');

$success_page = $admin->add_slashes($_POST['success_page']);

$success_email_to = $admin->add_slashes($_POST['success_email_to']);

$success_email_from = $admin->add_slashes($_POST['success_email_from']);

$success_email_fromname = $admin->add_slashes($_POST['success_email_fromname']);

$success_email_fromname = ($success_email_fromname != '' ? $success_email_fromname : WBMAILER_DEFAULT_SENDERNAME);

$success_email_text = $admin->add_slashes($_POST['success_email_text']);

$success_email_text = (($success_email_text != '') ? $success_email_text : '');

$success_email_subject = $admin->add_slashes($_POST['success_email_subject']);

$success_email_subject = (($success_email_subject  != '') ? $success_email_subject : '');

if(!is_numeric($_POST['max_submissions'])) {

	$max_submissions = 50;

} else {

	$max_submissions = $_POST['max_submissions'];

}

if(!is_numeric($_POST['stored_submissions'])) {

	$stored_submissions = 100;

} else {

	$stored_submissions = $_POST['stored_submissions'];

}

// Make sure max submissions is not greater than stored submissions if stored_submissions <>0

if($max_submissions > $stored_submissions) {

	$max_submissions = $stored_submissions;

}

$sec_anchor = (defined( 'SEC_ANCHOR' ) && ( SEC_ANCHOR != '' )  ? '#'.SEC_ANCHOR.$section['section_id'] : '' );

// Update settings

$sql  = 'UPDATE `'.TABLE_PREFIX.'mod_form_settings` SET ';

$sql .= '`header` = \''.$header.'\', ';

$sql .= '`field_loop` = \''.$field_loop.'\', ';

$sql .= '`footer` = \''.$footer.'\', ';

$sql .= '`email_to` = \''.$email_to.'\', ';

$sql .= '`email_from` = \''.$email_from.'\', ';

$sql .= '`email_fromname` = \''.$email_fromname.'\', ';

$sql .= '`email_subject` = \''.$email_subject.'\', ';

$sql .= '`success_page` = \''.$success_page.'\', ';

$sql .= '`success_email_to` = \''.$success_email_to.'\', ';

$sql .= '`success_email_from` = \''.$success_email_from.'\', ';

$sql .= '`success_email_fromname` = \''.$success_email_fromname.'\', ';

$sql .= '`success_email_text` = \''.$success_email_text.'\', ';

$sql .= '`success_email_subject` = \''.$success_email_subject.'\', ';

$sql .= '`max_submissions` = \''.$max_submissions.'\', ';

$sql .= '`stored_submissions` = \''.$stored_submissions.'\', ';

$sql .= '`use_captcha` = \''.$use_captcha.'\' ';

$sql .= 'WHERE `section_id` = '.(int)$section_id.' ';

$sql .= '';

if($database->query($sql)) {

	$admin->print_success($TEXT['SUCCESS'], ADMIN_URL.'/pages/modify.php?page_id='.$page_id.$sec_anchor);

}

// Check if there is a db error, otherwise say successful

if($database->is_error()) {

	$admin->print_error($database->get_error(), ADMIN_URL.'/pages/modify.php?page_id='.$page_id.$sec_anchor);

}

// Print admin footer

$admin->print_footer();