Project

General

Profile

1 317 stefan
<?php
2
3
// $Id$
4
5
/*
6
7
 Website Baker Project <http://www.websitebaker.org/>
8
 Copyright (C) 2004-2006, Ryan Djurovich
9
10
 Website Baker is free software; you can redistribute it and/or modify
11
 it under the terms of the GNU General Public License as published by
12
 the Free Software Foundation; either version 2 of the License, or
13
 (at your option) any later version.
14
15
 Website Baker is distributed in the hope that it will be useful,
16
 but WITHOUT ANY WARRANTY; without even the implied warranty of
17
 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
18
 GNU General Public License for more details.
19
20
 You should have received a copy of the GNU General Public License
21
 along with Website Baker; if not, write to the Free Software
22
 Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA  02111-1307  USA
23
24
*/
25
26
require('../../config.php');
27
28
// Get id
29
if(!isset($_POST['group_id']) OR !is_numeric($_POST['group_id'])) {
30
	header("Location: ".ADMIN_URL."/pages/index.php");
31
	exit(0);
32
} else {
33
	$group_id = $_POST['group_id'];
34
}
35
36
// Include WB admin wrapper script
37
$update_when_modified = true; // Tells script to update when this page was last updated
38
require(WB_PATH.'/modules/admin.php');
39
40
// Include WB functions file
41
require(WB_PATH.'/framework/functions.php');
42
43
// Vagroup_idate all fields
44
if($admin->get_post('title') == '') {
45
	$admin->print_error($MESSAGE['GENERIC']['FILL_IN_ALL'], WB_URL.'/modules/news/modify_group.php?page_id='.$page_id.'&section_id='.$section_id.'&group_id='.$group_id);
46
} else {
47
	$title = $admin->add_slashes($admin->get_post('title'));
48
	$active = $admin->get_post('active');
49
}
50
51
// Update row
52
$database->query("UPDATE ".TABLE_PREFIX."mod_news_groups SET title = '$title', active = '$active' WHERE group_id = '$group_id'");
53
54
// Check if the user uploaded an image or wants to delete one
55
if(isset($_FILES['image']['tmp_name']) AND $_FILES['image']['tmp_name'] != '') {
56
	// Get real filename and set new filename
57
	$filename = $_FILES['image']['name'];
58
	$new_filename = WB_PATH.MEDIA_DIRECTORY.'/.news/image'.$group_id.'.jpg';
59
	// Make sure the image is a jpg file
60 379 Ruebenwurz
	$file3=substr($filename, -3, 3);
61
	$file4=substr($filename, -4, 4);
62
	//echo $file3;
63
	//echo $file4;
64
	if(($file4 != '.jpg')and($file4 != '.JPG')and($file4 != '.png')and($file4 != '.PNG') and ($file4 !='.jpeg') and ($file4 != '.JPEG')) {
65
		$admin->print_error($MESSAGE['GENERIC']['FILE_TYPE'].' JPG (JPEG) or PNG a');
66
	} elseif(
67
	(($_FILES['image']['type']) != 'image/jpeg' AND mime_content_type($_FILES['image']['tmp_name']) != 'image/jpg')
68
	and
69
	(($_FILES['image']['type']) != 'image/png' AND mime_content_type($_FILES['image']['tmp_name']) != 'image/png')
70
	){
71
		$admin->print_error($MESSAGE['GENERIC']['FILE_TYPE'].' JPG (JPEG) or PNG b');
72 317 stefan
	}
73
	// Make sure the target directory exists
74
	make_dir(WB_PATH.MEDIA_DIRECTORY.'/.news');
75
	// Upload image
76
	move_uploaded_file($_FILES['image']['tmp_name'], $new_filename);
77
	// Check if we need to create a thumb
78
	$query_settings = $database->query("SELECT resize FROM ".TABLE_PREFIX."mod_news_settings WHERE section_id = '$section_id'");
79
	$fetch_settings = $query_settings->fetchRow();
80
	$resize = $fetch_settings['resize'];
81
	if($resize != 0) {
82
		// Resize the image
83
		$thumb_location = WB_PATH.MEDIA_DIRECTORY.'/.news/thumb'.$group_id.'.jpg';
84
		if(make_thumb($new_filename, $thumb_location, $resize)) {
85
			// Delete the actual image and replace with the resized version
86
			unlink($new_filename);
87
			rename($thumb_location, $new_filename);
88
		}
89
	}
90
}
91
if(isset($_POST['delete_image']) AND $_POST['delete_image'] != '') {
92
	// Try unlinking image
93
	if(file_exists(WB_PATH.MEDIA_DIRECTORY.'/.news/image'.$group_id.'.jpg')) {
94
		unlink(WB_PATH.MEDIA_DIRECTORY.'/.news/image'.$group_id.'.jpg');
95
	}
96
}
97
98
// Check if there is a db error, otherwise say successful
99
if($database->is_error()) {
100
	$admin->print_error($database->get_error(), WB_URL.'/modules/news/modify_group.php?page_id='.$page_id.'&section_id='.$section_id.'&group_id='.$group_id);
101
} else {
102
	$admin->print_success($TEXT['SUCCESS'], ADMIN_URL.'/pages/modify.php?page_id='.$page_id);
103
}
104
105
// Print admin footer
106
$admin->print_footer();
107
108
?>