/branches/2.8.x/wb/admin/pages/sections_save.php - Annotate - WB 2.08.x - Tracking

wb-archiv283/branches/2.8.x/wb/admin/pages/sections_save.php @ 2044

-            stefan
+<?php
-            Luisehahne
+/**
+ *
-            Luisehahne
+ * @category        backend
  * @package         admin
  * @subpackage      pages
  * @author          Ryan Djurovich, WebsiteBaker Project
-            Luisehahne
+ * @copyright       2004-2009, Ryan Djurovich
-            Luisehahne
+ * @copyright       2009-2013, WebsiteBaker Org. e.V.
  * @link            http://www.websitebaker.org/
-            Luisehahne
+ * @license         http://www.gnu.org/licenses/gpl.html
  * @platform        WebsiteBaker 2.8.x
  * @requirements    PHP 5.2.2 and higher
  * @version         $Id$
-            Luisehahne
+ * @filesource      $HeadURL$
-            Luisehahne
+ * @lastmodified    $Date$
             Luisehahne
  */
             stefan
-            ryan
+// Include config file
-            stefan
+require('../../config.php');
-            thorn
+require_once(WB_PATH."/include/jscalendar/jscalendar-functions.php");
-            Luisehahne
+/**/
 // Create new admin object
-            Luisehahne
+if(!class_exists('admin')) {
 	require_once(WB_PATH.'/framework/class.admin.php');
+}
-            Luisehahne
+// suppress to print the header, so no new FTAN will be set
 $admin = new admin('Pages', 'pages_modify',false);
             thorn
-            Luisehahne
+// Make sure people are allowed to access this page
 if(MANAGE_SECTIONS == false) {
 	$admin->send_header('Location: '.ADMIN_URL.'/pages/index.php');
 	exit(0);
+}
-            Luisehahne
+// Get page id
-            Luisehahne
+$iPageId = (isset($_GET['page_id']) ? intval($_GET['page_id']) : 0);
 if(!$iPageId) {
-            Luisehahne
+	$admin->send_header("Location: index.php");
-            Luisehahne
+	exit(0);
+}
-            Luisehahne
+if (!$admin->checkFTAN()) {
-            Luisehahne
+	$admin->print_header();
-            Luisehahne
+	$admin->print_error($MESSAGE['GENERIC_SECURITY_ACCESS'],ADMIN_URL.'/pages/sections.php?page_id='.$iPageId);
             Luisehahne
             Luisehahne
 // After check print the header
 $admin->print_header();
-            Luisehahne
+$sBackLink = ADMIN_URL.'/pages/sections.php?page_id='.$iPageId;
             Luisehahne
-            ryan
+// Get perms
-            Luisehahne
+// Get page details
 $sql  = 'SELECT * FROM `'.TABLE_PREFIX.'pages` ';
-            Luisehahne
+$sql .= 'WHERE `page_id`='.$iPageId;
 $aMsg = array();
 if(($oPage = $database->query($sql))) {
     if(!$oPage->numRows()) {
-            Luisehahne
+    	$aMsg[] = $MESSAGE['PAGES_NOT_FOUND'];
-            Luisehahne
+	}else {
 		if(!($aPage = $oPage->fetchRow())) {
 			$aMsg[] = $MESSAGE['PAGES_NOT_FOUND'];
+		}
+	}
 }else {
-            Luisehahne
+    if($database->is_error()) {
     	$aMsg[] = $database->get_error();
+    }
             Luisehahne
 if(sizeof($aMsg)>0) {
     array_unshift($aMsg, $MESSAGE['GENERIC_NOT_UPGRADED']);
-            Luisehahne
+	$admin->print_error(implode('<br />',$aMsg), $sBackLink );
-            Luisehahne
+	exit;
             Luisehahne
-            Luisehahne
+if(!$admin->ami_group_member($aPage['admin_users']) &&
    !$admin->is_group_match($admin->get_groups_id(), $aPage['admin_groups']))
+{
 	$admin->print_error($MESSAGE['PAGES_INSUFFICIENT_PERMISSIONS'], $sBackLink);
             doc
             stefan
-            ryan
+// Set module permissions
-            Luisehahne
+// $module_permissions = $_SESSION['MODULE_PERMISSIONS'];
-            Luisehahne
+$aMsg = array();
 $sql  = 'SELECT * FROM `'.TABLE_PREFIX.'sections` ';
-            Luisehahne
+$sql .= 'WHERE `page_id`='.$iPageId.' ';
 $sql .= 'ORDER BY `position` ASC';
-            Luisehahne
+if(!($oSection = $database->query($sql))) {
     $aMsg = array();
     $aMsg[] = $MESSAGE['GENERIC_NOT_UPGRADED'];
     if($database->is_error()) {
     	$aMsg[] = $database->get_error();
+    }
 	$admin->print_error(implode('<br />',$aMsg), $sBackLink );
-            Luisehahne
+	exit;
             stefan
             Luisehahne
-            Luisehahne
+$aSql = array();
 // Loop through sections and build sql statements for update
 while($section = $oSection->fetchRow(MYSQL_ASSOC))
+{
 	$section_id  = $section['section_id'];
 	$sid = 'wb'.$section_id;
 	$dst = date('I') ? ' UTC' : ''; // daylight saving time? date('P')
-            Luisehahne
+	$iBlock      = intval($admin->get_post('block'.$section_id));
 	$iBlock      = ($iBlock==0) ? $section['block'] : $iBlock;
-            Luisehahne
+	$sStartDate  = $admin->get_post_escaped('start_date'.$section_id);
 	$sStartDate  = ($sStartDate==null)||($sStartDate=='') ? 0 : jscalendar_to_timestamp($sStartDate)-TIMEZONE;
 	$sEndDate    = $admin->get_post_escaped('end_date'.$section_id);
 	$sEndDate    = ($sEndDate==null)||($sEndDate=='') ? 0 : jscalendar_to_timestamp($sEndDate)-TIMEZONE;
 	$aSql[]  = 'UPDATE `'.TABLE_PREFIX.'sections` '
 	         . 'SET `block`=\''.(int)$iBlock.'\', '
 	         .     '`module`=\''.$section['module'].'\', '
 	         .     '`publ_start`=\''.$sStartDate.'\','
 	         .     '`publ_end`=\''.$sEndDate.'\' '
 	         . 'WHERE `section_id`='.(int)$section_id;
             ryan
-            Luisehahne
+// Update all of the sql statements
 foreach( $aSql as $sSql ) {
 	if(!$database->query($sSql)) {
 	    $aMsg = array();
 	    $aMsg[] = $MESSAGE['GENERIC_NOT_UPGRADED'];
 	    if($database->is_error()) {
 	        $aMsg[] = $database->get_error();
+	    }
 	$admin->print_error(implode('<br />',$aMsg), $sBackLink );
+	}
             Luisehahne
 $admin->print_success($MESSAGE['PAGES_SECTIONS_PROPERTIES_SAVED'], $sBackLink );
-            ryan
+// Print admin footer
-            stefan
+$admin->print_footer();

Project

General

Profile

WB 2.08.x