/branches/2.8.x/wb/modules/form/save_settings.php - Annotate - WB 2.08.x - Tracking

wb-archiv283/branches/2.8.x/wb/modules/form/save_settings.php @ 1782

-            Ruebenwurz
+<?php
-            FrankH
+/**
+ *
  * @category        module
  * @package         Form
  * @author          WebsiteBaker Project
-            Luisehahne
+ * @copyright       2009-2012, WebsiteBaker Org. e.V.
-            FrankH
+ * @link			http://www.websitebaker2.org/
  * @license         http://www.gnu.org/licenses/gpl.html
  * @platform        WebsiteBaker 2.8.x
  * @requirements    PHP 5.2.2 and higher
  * @version         $Id$
-            Luisehahne
+ * @filesource		$HeadURL$
  * @lastmodified    $Date$
-            Luisehahne
+ * @description
-            FrankH
+ */
             Ruebenwurz
 require('../../config.php');
-            Luisehahne
+$admin_header = false;
 // Tells script to update when this page was last updated
 $update_when_modified = true;
-            Ruebenwurz
+// Include WB admin wrapper script
 require(WB_PATH.'/modules/admin.php');
-            FrankH
+if (!$admin->checkFTAN())
+{
-            Luisehahne
+	$admin->print_header();
-            FrankH
+	$admin->print_error($MESSAGE['GENERIC_SECURITY_ACCESS'], ADMIN_URL.'/pages/modify.php?page_id='.$page_id);
+}
-            Luisehahne
+$admin->print_header();
             FrankH
-            Luisehahne
+$sec_anchor = (defined( 'SEC_ANCHOR' ) && ( SEC_ANCHOR != '' )  ? '#'.SEC_ANCHOR.$section['section_id'] : 'section_'.$section_id );
             Luisehahne
-            Luisehahne
+if (!function_exists('emailAdmin')) {
 	function emailAdmin() {
 		global $database,$admin;
         $retval = $admin->get_email();
         if($admin->get_user_id()!='1') {
 			$sql  = 'SELECT `email` FROM `'.TABLE_PREFIX.'users` ';
 			$sql .= 'WHERE `user_id`=\'1\' ';
 	        $retval = $database->get_one($sql);
+        }
 		return $retval;
+	}
+}
-            Luisehahne
+// load module language file
 $lang = (dirname(__FILE__)) . '/languages/' . LANGUAGE . '.php';
 require_once(!file_exists($lang) ? (dirname(__FILE__)) . '/languages/EN.php' : $lang );
-            Luisehahne
+// later in upgrade.php
 $table_name = TABLE_PREFIX.'mod_form_settings';
 $field_name = 'perpage_submissions';
 $description = "INT NOT NULL DEFAULT '10' AFTER `max_submissions`";
 if(!$database->field_exists($table_name,$field_name)) {
 	$database->field_add($table_name, $field_name, $description);
+}
             Luisehahne
             Luisehahne
-            Ruebenwurz
+// This code removes any <?php tags and adds slashes
 $friendly = array('&lt;', '&gt;', '?php');
 $raw = array('<', '>', '');
-            Luisehahne
+$header     = $admin->add_slashes($_POST['header']);
-            Ruebenwurz
+$field_loop = $admin->add_slashes($_POST['field_loop']);
-            Luisehahne
+$footer     = $admin->add_slashes($_POST['footer']);
 $email_to   = $admin->add_slashes($_POST['email_to']);
 $email_to   = ($email_to != '' ? $email_to : emailAdmin());
-            Luisehahne
+$email_from = $admin->add_slashes(SERVER_EMAIL);
-            thorn
+$use_captcha = $admin->add_slashes($_POST['use_captcha']);
-            Luisehahne
+/*
-            Luisehahne
+if( isset($_POST['email_from_field']) && ($_POST['email_from_field'] != '')) {
 	$email_from = $admin->add_slashes($_POST['email_from_field']);
 } else {
-            Ruebenwurz
+	$email_from = $admin->add_slashes($_POST['email_from']);
             Luisehahne
-            Luisehahne
+*/
-            Luisehahne
+if( isset($_POST['email_fromname_field']) && ($_POST['email_fromname_field'] != '')) {
 	$email_fromname = $admin->add_slashes($_POST['email_fromname_field']);
-            Ruebenwurz
+} else {
-            Luisehahne
+	$email_fromname = $admin->add_slashes($_POST['email_fromname']);
             Ruebenwurz
             Luisehahne
-            Ruebenwurz
+$email_subject = $admin->add_slashes($_POST['email_subject']);
-            Luisehahne
+$email_subject = (($email_subject  != '') ? $email_subject : '');
-            thorn
+$success_page = $admin->add_slashes($_POST['success_page']);
-            Ruebenwurz
+$success_email_to = $admin->add_slashes($_POST['success_email_to']);
-            Luisehahne
+$success_email_from = $admin->add_slashes(SERVER_EMAIL);
-            thorn
+$success_email_fromname = $admin->add_slashes($_POST['success_email_fromname']);
-            Luisehahne
+$success_email_fromname = ($success_email_fromname != '' ? $success_email_fromname : WBMAILER_DEFAULT_SENDERNAME);
-            Ruebenwurz
+$success_email_text = $admin->add_slashes($_POST['success_email_text']);
-            Luisehahne
+$success_email_text = (($success_email_text != '') ? $success_email_text : '');
-            Ruebenwurz
+$success_email_subject = $admin->add_slashes($_POST['success_email_subject']);
-            Luisehahne
+$success_email_subject = (($success_email_subject  != '') ? $success_email_subject : '');
             Luisehahne
-            Luisehahne
+//print '<pre style="text-align: left;"><strong>function '.__FUNCTION__.'( '.''.' );</strong>  basename: '.basename(__FILE__).'  line: '.__LINE__.' -> <br />';
 //print_r( $_POST ); print '</pre>';
-            Ruebenwurz
+if(!is_numeric($_POST['max_submissions'])) {
 	$max_submissions = 50;
 } else {
 	$max_submissions = $_POST['max_submissions'];
+}
 if(!is_numeric($_POST['stored_submissions'])) {
 	$stored_submissions = 100;
 } else {
 	$stored_submissions = $_POST['stored_submissions'];
+}
-            Luisehahne
+if(!is_numeric($_POST['perpage_submissions'])) {
 	$perpage_submissions = 10;
 } else {
 	$perpage_submissions = $_POST['perpage_submissions'];
+}
-            Ruebenwurz
+// Make sure max submissions is not greater than stored submissions if stored_submissions <>0
 if($max_submissions > $stored_submissions) {
 	$max_submissions = $stored_submissions;
+}
-            Luisehahne
+$sec_anchor = (defined( 'SEC_ANCHOR' ) && ( SEC_ANCHOR != '' )  ? '#'.SEC_ANCHOR.$section['section_id'] : 'section_'.$section_id );
             Ruebenwurz
 // Update settings
-            Luisehahne
+$sql  = 'UPDATE `'.TABLE_PREFIX.'mod_form_settings` SET ';
 $sql .= '`header` = \''.$header.'\', ';
 $sql .= '`field_loop` = \''.$field_loop.'\', ';
 $sql .= '`footer` = \''.$footer.'\', ';
 $sql .= '`email_to` = \''.$email_to.'\', ';
 $sql .= '`email_from` = \''.$email_from.'\', ';
 $sql .= '`email_fromname` = \''.$email_fromname.'\', ';
 $sql .= '`email_subject` = \''.$email_subject.'\', ';
 $sql .= '`success_page` = \''.$success_page.'\', ';
 $sql .= '`success_email_to` = \''.$success_email_to.'\', ';
 $sql .= '`success_email_from` = \''.$success_email_from.'\', ';
 $sql .= '`success_email_fromname` = \''.$success_email_fromname.'\', ';
 $sql .= '`success_email_text` = \''.$success_email_text.'\', ';
 $sql .= '`success_email_subject` = \''.$success_email_subject.'\', ';
 $sql .= '`max_submissions` = \''.$max_submissions.'\', ';
 $sql .= '`stored_submissions` = \''.$stored_submissions.'\', ';
-            Luisehahne
+$sql .= '`perpage_submissions` = \''.$perpage_submissions.'\', ';
-            Luisehahne
+$sql .= '`use_captcha` = \''.$use_captcha.'\' ';
 $sql .= 'WHERE `section_id` = '.(int)$section_id.' ';
 $sql .= '';
 if($database->query($sql)) {
 	$admin->print_success($TEXT['SUCCESS'], ADMIN_URL.'/pages/modify.php?page_id='.$page_id.$sec_anchor);
+}
-            Ruebenwurz
+// Check if there is a db error, otherwise say successful
 if($database->is_error()) {
-            Luisehahne
+	$admin->print_error($database->get_error(), ADMIN_URL.'/pages/modify.php?page_id='.$page_id.$sec_anchor);
             Ruebenwurz
 // Print admin footer
 $admin->print_footer();

Project

General

Profile

WB 2.08.x