Project

General

Profile

1 238 stefan
<?php
2
3 399 Ruebenwurz
// $Id$
4
5 238 stefan
/*
6
7
 Website Baker Project <http://www.websitebaker.org/>
8 915 Ruebenwurz
 Copyright (C) 2004-2009, Ryan Djurovich
9 238 stefan
10
 Website Baker is free software; you can redistribute it and/or modify
11
 it under the terms of the GNU General Public License as published by
12
 the Free Software Foundation; either version 2 of the License, or
13
 (at your option) any later version.
14
15
 Website Baker is distributed in the hope that it will be useful,
16
 but WITHOUT ANY WARRANTY; without even the implied warranty of
17
 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
18
 GNU General Public License for more details.
19
20
 You should have received a copy of the GNU General Public License
21
 along with Website Baker; if not, write to the Free Software
22
 Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA  02111-1307  USA
23
24
*/
25
26
// Include config file
27
require('../../config.php');
28
29
// Make sure people are allowed to access this page
30
if(MANAGE_SECTIONS != 'enabled') {
31
	header('Location: '.ADMIN_URL.'/pages/index.php');
32 286 stefan
	exit(0);
33 238 stefan
}
34
35
// Get page id
36
if(!isset($_GET['page_id']) OR !is_numeric($_GET['page_id'])) {
37
	header("Location: index.php");
38 286 stefan
	exit(0);
39 238 stefan
} else {
40
	$page_id = $_GET['page_id'];
41
}
42
43
// Create new admin object
44
require_once(WB_PATH.'/framework/class.admin.php');
45
$admin = new admin('Pages', 'pages_modify');
46
47
// Check if we are supposed to add or delete a section
48
if(isset($_GET['section_id']) AND is_numeric($_GET['section_id'])) {
49
	// Get more information about this section
50
	$section_id = $_GET['section_id'];
51
	$query_section = $database->query("SELECT module FROM ".TABLE_PREFIX."sections WHERE section_id = '$section_id'");
52
	if($query_section->numRows() == 0) {
53
		$admin->print_error('Section not found');
54
	}
55
	$section = $query_section->fetchRow();
56
	// Include the modules delete file if it exists
57
	if(file_exists(WB_PATH.'/modules/'.$section['module'].'/delete.php')) {
58
		require(WB_PATH.'/modules/'.$section['module'].'/delete.php');
59
	}
60
	$database->query("DELETE FROM ".TABLE_PREFIX."sections WHERE section_id = '$section_id' LIMIT 1");
61
	if($database->is_error()) {
62
		$admin->print_error($database->get_error());
63
	} else {
64
		require(WB_PATH.'/framework/class.order.php');
65
		$order = new order(TABLE_PREFIX.'sections', 'position', 'section_id', 'page_id');
66
		$order->clean($page_id);
67
		$admin->print_success($TEXT['SUCCESS'], ADMIN_URL.'/pages/sections.php?page_id='.$page_id);
68
		$admin->print_footer();
69
		exit();
70
	}
71
} elseif(isset($_POST['module']) AND $_POST['module'] != '') {
72
	// Get section info
73 656 thorn
	$module = $admin->add_slashes($_POST['module']);
74 238 stefan
	// Include the ordering class
75
	require(WB_PATH.'/framework/class.order.php');
76
	// Get new order
77
	$order = new order(TABLE_PREFIX.'sections', 'position', 'section_id', 'page_id');
78
	$position = $order->get_new($page_id);
79
	// Insert module into DB
80
	$database->query("INSERT INTO ".TABLE_PREFIX."sections (page_id,module,position,block) VALUES ('$page_id','$module','$position','1')");
81
	// Get the section id
82
	$section_id = $database->get_one("SELECT LAST_INSERT_ID()");
83
	// Include the selected modules add file if it exists
84
	if(file_exists(WB_PATH.'/modules/'.$module.'/add.php')) {
85
		require(WB_PATH.'/modules/'.$module.'/add.php');
86
	}
87
}
88
89
// Get perms
90
$database = new database();
91
$results = $database->query("SELECT admin_groups,admin_users FROM ".TABLE_PREFIX."pages WHERE page_id = '$page_id'");
92
$results_array = $results->fetchRow();
93
$old_admin_groups = explode(',', $results_array['admin_groups']);
94
$old_admin_users = explode(',', $results_array['admin_users']);
95 546 doc
$in_old_group = FALSE;
96
foreach($admin->get_groups_id() as $cur_gid){
97
    if (in_array($cur_gid, $old_admin_groups)) {
98
	$in_old_group = TRUE;
99
    }
100
}
101
if((!$in_old_group) AND !is_numeric(array_search($admin->get_user_id(), $old_admin_users))) {
102 238 stefan
	$admin->print_error($MESSAGE['PAGES']['INSUFFICIENT_PERMISSIONS']);
103
}
104
105
// Get page details
106
$database = new database();
107
$query = "SELECT * FROM ".TABLE_PREFIX."pages WHERE page_id = '$page_id'";
108
$results = $database->query($query);
109
if($database->is_error()) {
110
	$admin->print_header();
111
	$admin->print_error($database->get_error());
112
}
113
if($results->numRows() == 0) {
114
	$admin->print_header();
115
	$admin->print_error($MESSAGE['PAGES']['NOT_FOUND']);
116
}
117
$results_array = $results->fetchRow();
118
119
// Set module permissions
120
$module_permissions = $_SESSION['MODULE_PERMISSIONS'];
121
122
// Unset block var
123
unset($block);
124
// Include template info file (if it exists)
125
if($results_array['template'] != '') {
126
	$template_location = WB_PATH.'/templates/'.$results_array['template'].'/info.php';
127
} else {
128
	$template_location = WB_PATH.'/templates/'.DEFAULT_TEMPLATE.'/info.php';
129
}
130
if(file_exists($template_location)) {
131
	require($template_location);
132
}
133
// Check if $menu is set
134
if(!isset($block[1]) OR $block[1] == '') {
135
	// Make our own menu list
136
	$block[1] = $TEXT['MAIN'];
137
}
138 552 thorn
?>
139 238 stefan
140 552 thorn
<?php // include jscalendar-setup
141 574 thorn
	$jscal_use_time = true; // whether to use a clock, too
142 552 thorn
	require_once(WB_PATH."/include/jscalendar/wb-setup.php");
143 238 stefan
?>
144 944 Ruebenwurz
<table cellpadding="0" cellspacing="0" class="sections_header">
145
<tr>
146 238 stefan
	<td valign="middle" align="left">
147
		<h2><?php echo $HEADING['MANAGE_SECTIONS']; ?></h2>
148
	</td>
149
	<td align="right">
150
		<?php echo $TEXT['CURRENT_PAGE']; ?>:
151 442 Ruebenwurz
		<b><?php echo ($results_array['page_title']); ?></b>
152 238 stefan
		-
153
		<a href="<?php echo ADMIN_URL; ?>/pages/modify.php?page_id=<?php echo $page_id; ?>"><?php echo $HEADING['MODIFY_PAGE']; ?></a>
154
		-
155
		<a href="<?php echo ADMIN_URL; ?>/pages/settings.php?page_id=<?php echo $page_id; ?>"><?php echo $TEXT['CHANGE_SETTINGS']; ?></a>
156
	</td>
157
</tr>
158
</table>
159
160
<?php
161 552 thorn
$query_sections = $database->query("SELECT section_id,module,position,block,publ_start,publ_end FROM ".TABLE_PREFIX."sections WHERE page_id = '$page_id' ORDER BY position ASC");
162 238 stefan
if($query_sections->numRows() > 0) {
163
?>
164
<form name="section_properties" action="<?php echo ADMIN_URL; ?>/pages/sections_save.php?page_id=<?php echo $page_id; ?>" method="post">
165
166
<table cellpadding="5" cellspacing="0" border="0" align="center" width="100%">
167
<tr>
168
	<td><?php echo $TEXT['TYPE']; ?>:</td>
169
	<?php if(SECTION_BLOCKS) { ?>
170
	<td style="display: {DISPLAY_BLOCK}"><?php echo $TEXT['BLOCK']; ?>:</td>
171
	<?php } ?>
172 552 thorn
	<td><?php echo $TEXT['PUBL_START_DATE']; ?>:</td>
173
	<td><?php echo $TEXT['PUBL_END_DATE']; ?>:</td>
174 238 stefan
	<td colspan="3" width="60"><?php echo $TEXT['ACTIONS']; ?>:</td>
175
</tr>
176
<?php
177
	$num_sections = $query_sections->numRows();
178
	while($section = $query_sections->fetchRow()) {
179
		// Get the modules real name
180 346 stefan
		$module_name=$database->get_one("SELECT name FROM ".TABLE_PREFIX."addons WHERE directory='".$section['module']."'");
181
		if(!is_numeric(array_search($section['module'], $module_permissions))) {
182 238 stefan
			?>
183 693 doc
			<tr onmouseover="this.style.backgroundColor = '#F1F8DD'" onmouseout="this.style.backgroundColor = '#FFF'">
184 944 Ruebenwurz
				<td class="<?php if(SECTION_BLOCKS) print 'input_normal'; else print 'input_wide'; ?>"><a href="<?php echo ADMIN_URL; ?>/pages/modify.php?page_id=<?php echo $page_id; ?>#<?php echo $section['section_id']; ?>"><?php echo $module_name; ?></a></td>
185 238 stefan
				<?php if(SECTION_BLOCKS) { ?>
186
				<td>
187 944 Ruebenwurz
					<select name="block<?php echo $section['section_id']; ?>" class="input_normal">
188 238 stefan
						<?php
189
						foreach($block AS $number => $name) {
190
							?>
191 847 doc
							<option value="<?php echo $number; ?>"<?php
192
							if($number == $section['block']) { echo ' selected'; } ?>><?php
193
							$block_name = htmlentities(strip_tags($name));
194
							$block_name = ($block_name == '') ? $TEXT['BLOCK'] . '#' . (int) $number : $block_name;
195
							echo $block_name; ?></option>
196 238 stefan
							<?php
197
						}
198
						?>
199
					</select>
200
				</td>
201 552 thorn
				<?php } // jscalendar-stuff following ?>
202 944 Ruebenwurz
				<td><input type="text" id="start_date<?php echo $section['section_id']; ?>" name="start_date<?php echo $section['section_id']; ?>" value="<?php if($section['publ_start']==0) print ""; else print date($jscal_format, $section['publ_start'])?>" class="input_normal" />
203
					<img src="<?php echo THEME_URL ?>/images/clock_16.png" id="trigger_start<?php echo $section['section_id']; ?>" style="cursor: pointer;" title="<?php echo $TEXT['CALENDAR']; ?>" />
204
					<img src="<?php echo THEME_URL ?>/images/clock_del_16.png" style="cursor: pointer;" title="<?php echo $TEXT['DELETE_DATE']; ?>" onclick="document.section_properties.start_date<?php echo $section['section_id']; ?>.value=''" />
205 585 thorn
				</td>
206 944 Ruebenwurz
				<td><input type="text" id="end_date<?php echo $section['section_id']; ?>" name="end_date<?php echo $section['section_id']; ?>" value="<?php if($section['publ_end']==0) print ""; else print date($jscal_format, $section['publ_end'])?>" class="input_normal" />
207
					<img src="<?php echo THEME_URL ?>/images/clock_16.png" id="trigger_stop<?php echo $section['section_id']; ?>" style="cursor: pointer;" title="<?php echo $TEXT['CALENDAR']; ?>" onmouseover="this.style.background='lightgrey';" onmouseout="this.style.background=''" />
208
					<img src="<?php echo THEME_URL ?>/images/clock_del_16.png" title="<?php echo $TEXT['DELETE_DATE']; ?>" onclick="document.section_properties.end_date<?php echo $section['section_id']; ?>.value=''"/>
209 585 thorn
				</td>
210 238 stefan
				<td width="20">
211
					<?php if($section['position'] != 1) { ?>
212
					<a href="<?php echo ADMIN_URL; ?>/pages/move_up.php?page_id=<?php echo $page_id; ?>&section_id=<?php echo $section['section_id']; ?>">
213 944 Ruebenwurz
						<img src="<?php echo THEME_URL; ?>/images/up_16.png" alt="^" border="0" />
214 238 stefan
					</a>
215
					<?php } ?>
216
				</td>
217
				<td width="20">
218
					<?php if($section['position'] != $num_sections) { ?>
219
					<a href="<?php echo ADMIN_URL; ?>/pages/move_down.php?page_id=<?php echo $page_id; ?>&section_id=<?php echo $section['section_id']; ?>">
220 944 Ruebenwurz
						<img src="<?php echo THEME_URL; ?>/images/down_16.png" alt="v" border="0" />
221 238 stefan
					</a>
222
					<?php } ?>
223
				</td>
224
				<td width="20">
225
					<a href="javascript: confirm_link('<?php echo $TEXT['ARE_YOU_SURE']; ?>', '<?php echo ADMIN_URL; ?>/pages/sections.php?page_id=<?php echo $page_id; ?>&section_id=<?php echo $section['section_id']; ?>');">
226 944 Ruebenwurz
						<img src="<?php echo THEME_URL; ?>/images/delete_16.png" alt="Del" border="0" />
227 238 stefan
					</a>
228
				</td>
229
			</tr>
230
			<?php
231
			}
232
	}
233
	?>
234
	<tr>
235 944 Ruebenwurz
		<td align="center" colspan="<?php if(SECTION_BLOCKS) print '7'; else print '6'; ?>"><input type="submit" name="save" value="<?php echo $TEXT['SAVE']; ?>" class="input_medium" /></td>
236 238 stefan
	</tr>
237
	</table>
238
239
</form>
240
<?php
241 552 thorn
	// now add the calendars -- remember to to set the range to [1970, 2037] if the date is used as timestamp!
242
	// the loop is simply a copy from above.
243
	$query_sections = $database->query("SELECT section_id,module FROM ".TABLE_PREFIX."sections WHERE page_id = '$page_id' ORDER BY position ASC");
244
	if($query_sections->numRows() > 0) {
245
		$num_sections = $query_sections->numRows();
246
		while($section = $query_sections->fetchRow()) {
247
			// Get the modules real name
248
			$module_name=$database->get_one("SELECT name FROM ".TABLE_PREFIX."addons WHERE directory='".$section['module']."'");
249
			if(!is_numeric(array_search($section['module'], $module_permissions))) {
250
	?>
251
				<script type="text/javascript">
252
					Calendar.setup(
253
						{
254
							inputField  : "start_date<?php echo $section['section_id']; ?>",
255
							ifFormat    : "<?php echo $jscal_ifformat ?>",
256
							button      : "trigger_start<?php echo $section['section_id']; ?>",
257
							firstDay    : <?php echo $jscal_firstday ?>,
258 574 thorn
							<?php if(isset($jscal_use_time) && $jscal_use_time==TRUE) { ?>
259
								showsTime   : "true",
260
								timeFormat  : "24",
261
							<?php } ?>
262 552 thorn
							date        : "<?php echo $jscal_today ?>",
263
							range       : [1970, 2037],
264
							step        : 1
265
						}
266
					);
267
				</script>
268
				<script type="text/javascript">
269
					Calendar.setup(
270
						{
271
							inputField  : "end_date<?php echo $section['section_id']; ?>",
272
							ifFormat    : "<?php echo $jscal_ifformat ?>",
273
							button      : "trigger_stop<?php echo $section['section_id']; ?>",
274
							firstDay    : <?php echo $jscal_firstday ?>,
275 574 thorn
							<?php if(isset($jscal_use_time) && $jscal_use_time==TRUE) { ?>
276
								showsTime   : "true",
277
								timeFormat  : "24",
278
							<?php } ?>
279 552 thorn
							date        : "<?php echo $jscal_today ?>",
280
							range       : [1970, 2037],
281
							step        : 1
282
						}
283
					);
284
				</script>
285
<?php
286
			}
287
		}
288
	}
289
?>
290
<?php
291 238 stefan
}
292
293
// Work-out if we should show the "Add Section" form
294
$query_sections = $database->query("SELECT section_id FROM ".TABLE_PREFIX."sections WHERE page_id = '$page_id' AND module = 'menu_link'");
295
if($query_sections->numRows() == 0) {
296
	?>
297
	<h2><?php echo $TEXT['ADD_SECTION']; ?></h2>
298
299
	<form name="add" action="<?php echo ADMIN_URL; ?>/pages/sections.php?page_id=<?php echo $page_id; ?>" method="post">
300
301
	<table cellpadding="5" cellspacing="0" border="0" align="center" width="100%">
302
	<tr>
303
		<td>
304 944 Ruebenwurz
			<select name="module" class="input_full">
305 238 stefan
			<?php
306
			// Insert module list
307 384 Ruebenwurz
			$result = $database->query("SELECT * FROM ".TABLE_PREFIX."addons WHERE type = 'module' AND function = 'page' AND directory != 'menu_link' order by name");
308 238 stefan
			if($result->numRows() > 0) {
309
				while($module = $result->fetchRow()) {
310
					// Check if user is allowed to use this module
311
					if(!is_numeric(array_search($module['directory'], $module_permissions))) {
312
						?>
313
						<option value="<?php echo $module['directory']; ?>"<?php if($module['directory'] == 'wysiwyg') { echo 'selected'; } ?>><?php echo $module['name']; ?></option>
314
						<?php
315
					}
316
				}
317
			}
318
			?>
319
			</select>
320
		</td>
321 944 Ruebenwurz
	</tr>
322
	<tr>
323
		<td>
324
			<input type="submit" name="submit" value="<?php echo $TEXT['ADD']; ?>" class="input_narrow" />
325 238 stefan
		</td>
326
	</tr>
327
	</table>
328
329
	</form>
330
	<?php
331
}
332
333
// Print admin footer
334
$admin->print_footer();
335
336 552 thorn
?>