Project

General

Profile

1
<?php
2

    
3
// $Id: admin.php 546 2008-01-17 18:10:50Z doc $
4

    
5
/*
6

    
7
 Website Baker Project <http://www.websitebaker.org/>
8
 Copyright (C) 2004-2008, Ryan Djurovich
9

    
10
 Website Baker is free software; you can redistribute it and/or modify
11
 it under the terms of the GNU General Public License as published by
12
 the Free Software Foundation; either version 2 of the License, or
13
 (at your option) any later version.
14

    
15
 Website Baker is distributed in the hope that it will be useful,
16
 but WITHOUT ANY WARRANTY; without even the implied warranty of
17
 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
18
 GNU General Public License for more details.
19

    
20
 You should have received a copy of the GNU General Public License
21
 along with Website Baker; if not, write to the Free Software
22
 Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA  02111-1307  USA
23

    
24
*/
25

    
26
/*
27

    
28
Admin Wrapper Script
29

    
30
This script allows modules to be written without the need to copy code
31
from Website Baker Administration to take advantage of the interface.
32

    
33
*/
34

    
35
// Stop this file being access directly
36
if(!defined('WB_URL')) {
37
	header('Location: ../index.php');
38
	exit(0);
39
}
40

    
41
// Get page id
42
if(!isset($_GET['page_id']) OR !is_numeric($_GET['page_id'])) {
43
	if(!isset($_POST['page_id']) OR !is_numeric($_POST['page_id'])) {
44
		if(!isset($_GET['page_id']) OR !is_numeric($_GET['page_id'])) {
45
			if(!isset($_POST['page_id']) OR !is_numeric($_POST['page_id'])) {
46
				header("Location: index.php");
47
				exit(0);
48
			} else {
49
				$page_id = $_POST['page_id'];
50
			}
51
		} else {
52
			$page_id = $_GET['page_id'];
53
		}
54
	} else {
55
		$page_id = $_POST['page_id'];
56
	}
57
} else {
58
	$page_id = $_GET['page_id'];
59
}
60

    
61
// Get section id if there is one
62
if(isset($_GET['section_id']) AND is_numeric($_GET['section_id'])) {
63
	$section_id = $_GET['section_id'];
64
} elseif(isset($_POST['section_id']) AND is_numeric($_POST['section_id'])) {
65
	$section_id = $_POST['section_id'];
66
} else {
67
	// Check if we should redirect the user if there is no section id
68
	if(!isset($section_required)) {
69
		$section_id = 0;
70
	} else {
71
		header("Location: $section_required");
72
		exit(0);
73
	}
74
}
75

    
76
// Create js back link
77
$js_back = 'javascript: history.go(-1);';
78

    
79
// Create new admin object
80
require(WB_PATH.'/framework/class.admin.php');
81
$admin = new admin('Pages', 'pages_modify');
82

    
83
// Get perms
84
$database = new database();
85
$results = $database->query("SELECT admin_groups,admin_users FROM ".TABLE_PREFIX."pages WHERE page_id = '$page_id'");
86
$results_array = $results->fetchRow();
87
$old_admin_groups = explode(',', str_replace('_', '', $results_array['admin_groups']));
88
$old_admin_users = explode(',', str_replace('_', '', $results_array['admin_users']));
89

    
90
$in_group = FALSE;
91
foreach($admin->get_groups_id() as $cur_gid){
92
    if (in_array($cur_gid, $old_admin_groups)) {
93
        $in_group = TRUE;
94
    }
95
}
96
if((!$in_group) AND !is_numeric(array_search($admin->get_user_id(), $old_admin_users))) {
97
	echo $admin->get_group_id().$admin->get_user_id();
98
	print_r ($old_admin_groups);
99
	$admin->print_error($MESSAGE['PAGES']['INSUFFICIENT_PERMISSIONS']);
100
}
101

    
102
// Workout if the developer wants to show the info banner
103
if(isset($print_info_banner) AND $print_info_banner == true) {
104
	
105
// Get page details
106
$database = new database();
107
$query = "SELECT page_id,page_title,modified_by,modified_when FROM ".TABLE_PREFIX."pages WHERE page_id = '$page_id'";
108
$results = $database->query($query);
109
if($database->is_error()) {
110
	$admin->print_header();
111
	$admin->print_error($database->get_error());
112
}
113
if($results->numRows() == 0) {
114
	$admin->print_header();
115
	$admin->print_error($MESSAGE['PAGES']['NOT_FOUND']);
116
}
117
$results_array = $results->fetchRow();
118

    
119
// Get display name of person who last modified the page
120
$user=$admin->get_user_details($results_array['modified_by']);
121

    
122
// Convert the unix ts for modified_when to human a readable form
123
if($results_array['modified_when'] != 0) {
124
	$modified_ts = gmdate(TIME_FORMAT.', '.DATE_FORMAT, $results_array['modified_when']+TIMEZONE);
125
} else {
126
	$modified_ts = 'Unknown';
127
}
128

    
129
// Include page info script
130
$template = new Template(ADMIN_PATH.'/pages');
131
$template->set_file('page', 'modify.html');
132
$template->set_block('page', 'main_block', 'main');
133
$template->set_var(array(
134
								'PAGE_ID' => $results_array['page_id'],
135
								'PAGE_TITLE' => ($results_array['page_title']),
136
								'MODIFIED_BY' => $user['display_name'],
137
								'MODIFIED_BY_USERNAME' => $user['username'],
138
								'MODIFIED_WHEN' => $modified_ts,
139
								'ADMIN_URL' => ADMIN_URL
140
								)
141
						);
142
if($modified_ts == 'Unknown') {
143
	$template->set_var('DISPLAY_MODIFIED', 'hide');
144
} else {
145
	$template->set_var('DISPLAY_MODIFIED', '');
146
}
147

    
148
// Work-out if we should show the "manage sections" link
149
$query_sections = $database->query("SELECT section_id FROM ".TABLE_PREFIX."sections WHERE page_id = '$page_id' AND module = 'menu_link'");
150
if($query_sections->numRows() > 0) {
151
	$template->set_var('DISPLAY_MANAGE_SECTIONS', 'none');
152
} elseif(MANAGE_SECTIONS == 'enabled') {
153
	$template->set_var('TEXT_MANAGE_SECTIONS', $HEADING['MANAGE_SECTIONS']);
154
} else {
155
	$template->set_var('DISPLAY_MANAGE_SECTIONS', 'none');
156
}
157

    
158
// Insert language TEXT
159
$template->set_var(array(
160
								'TEXT_CURRENT_PAGE' => $TEXT['CURRENT_PAGE'],
161
								'TEXT_CHANGE' => $TEXT['CHANGE'],
162
								'LAST_MODIFIED' => $MESSAGE['PAGES']['LAST_MODIFIED'],
163
								'TEXT_CHANGE_SETTINGS' => $TEXT['CHANGE_SETTINGS'],
164
								'HEADING_MODIFY_PAGE' => $HEADING['MODIFY_PAGE']
165
								)
166
						);
167

    
168
// Parse and print header template
169
$template->parse('main', 'main_block', false);
170
$template->pparse('output', 'page');
171

    
172
}
173

    
174
// Work-out if the developer wants us to update the timestamp for when the page was last modified
175
if(isset($update_when_modified) AND $update_when_modified == true) {
176
	$database->query("UPDATE ".TABLE_PREFIX."pages SET modified_when = '".mktime()."', modified_by = '".$admin->get_user_id()."' WHERE page_id = '$page_id'");
177
}
178

    
179
?>
(1-1/2)