// // ------------------------------------------------------------------------ // // This program is free software; you can redistribute it and/or modify // // it under the terms of the GNU General Public License as published by // // the Free Software Foundation; either version 2 of the License, or // // (at your option) any later version. // // // // You may not change or alter any portion of this comment or credits // // of supporting developers from this source code or any supporting // // source code which is considered copyrighted (c) material of the // // original comment or credit authors. // // // // This program is distributed in the hope that it will be useful, // // but WITHOUT ANY WARRANTY; without even the implied warranty of // // MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the // // GNU General Public License for more details. // // // // You should have received a copy of the GNU General Public License // // along with this program; if not, write to the Free Software // // Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA // // ------------------------------------------------------------------------ // // Author: Kazumi Ono (AKA onokazu) // // URL: http://www.myweb.ne.jp/, http://www.xoops.org/, http://jp.xoops.org/ // // Project: The XOOPS Project // // ------------------------------------------------------------------------- // if ( !is_object($xoopsUser) || !is_object($xoopsModule) || !$xoopsUser->isAdmin($xoopsModule->mid()) ) { exit("Access Denied"); } include_once XOOPS_ROOT_PATH."/modules/system/admin/smilies/smilies.php"; $op ='SmilesAdmin'; if (!empty($_GET['op'])) { $op = $_GET['op']; } elseif (!empty($_POST['op'])) { $op = $_POST['op']; } switch($op) { case "SmilesUpdate": if (!$GLOBALS['xoopsSecurity']->check()) { redirect_header('admin.php?fct=smilies', 3, implode('
', $GLOBALS['xoopsSecurity']->getErrors())); } $count = (!empty($_POST['smile_id']) && is_array($_POST['smile_id'])) ? count($_POST['smile_id']) : 0; $db =& Database::getInstance(); for ($i = 0; $i < $count; $i++) { $smile_id = intval($_POST['smile_id'][$i]); if (empty($smile_id)) { continue; } $smile_display = empty($_POST['smile_display'][$i]) ? 0 : 1; if (isset($_POST['old_display'][$i]) && $_POST['old_display'][$i] != $smile_display[$i]) { $db->query('UPDATE '.$db->prefix('smiles').' SET display='.$smile_display.' WHERE id ='.$smile_id); } } redirect_header('admin.php?fct=smilies',2,_AM_DBUPDATED); break; case "SmilesAdd": if (!$GLOBALS['xoopsSecurity']->check()) { redirect_header('admin.php?fct=smilies', 3, implode('
', $GLOBALS['xoopsSecurity']->getErrors())); } $db =& Database::getInstance(); $myts =& MyTextSanitizer::getInstance(); include_once XOOPS_ROOT_PATH.'/class/uploader.php'; $uploader = new XoopsMediaUploader(XOOPS_UPLOAD_PATH, array('image/gif', 'image/jpeg', 'image/pjpeg', 'image/x-png'), 100000, 120, 120); $uploader->setPrefix('smil'); if ($uploader->fetchMedia($_POST['xoops_upload_file'][0])) { if (!$uploader->upload()) { $err = $uploader->getErrors(); } else { $smile_url = $uploader->getSavedFileName(); $smile_code = $myts->stripSlashesGPC($_POST['smile_code']); $smile_desc = $myts->stripSlashesGPC($_POST['smile_desc']); $smile_display = intval($_POST['smile_display']) > 0 ? 1 : 0; $newid = $db->genId($db->prefix('smilies')."_id_seq"); $sql = sprintf("INSERT INTO %s (id, code, smile_url, emotion, display) VALUES (%d, %s, %s, %s, %d)", $db->prefix('smiles'), $newid, $db->quoteString($smile_code), $db->quoteString($smile_url), $db->quoteString($smile_desc), $smile_display); if (!$db->query($sql)) { $err = 'Failed storing smiley data into the database'; } } } else { $err = $uploader->getErrors(); } if (!isset($err)) { redirect_header('admin.php?fct=smilies&op=SmilesAdmin',2,_AM_DBUPDATED); } else { xoops_cp_header(); xoops_error($err); xoops_cp_footer(); } break; case "SmilesEdit": $id = isset($_GET['id']) ? intval($_GET['id']) : 0; if ($id > 0) { SmilesEdit($id); } break; case "SmilesSave": $id = isset($_POST['id']) ? intval($_POST['id']) : 0; if ($id <= 0 | !$GLOBALS['xoopsSecurity']->check()) { redirect_header('admin.php?fct=smilies', 3, implode('
', $GLOBALS['xoopsSecurity']->getErrors())); } $myts =& MyTextSanitizer::getInstance(); $smile_code = $myts->stripSlashesGPC($_POST['smile_code']); $smile_desc = $myts->stripSlashesGPC($_POST['smile_desc']); $smile_display = intval($_POST['smile_display']) > 0 ? 1 : 0; $db =& Database::getInstance(); if ($_FILES['smile_url']['name'] != "") { include_once XOOPS_ROOT_PATH.'/class/uploader.php'; $uploader = new XoopsMediaUploader(XOOPS_UPLOAD_PATH, array('image/gif', 'image/jpeg', 'image/pjpeg', 'image/x-png'), 100000, 120, 120); $uploader->setPrefix('smil'); if ($uploader->fetchMedia($_POST['xoops_upload_file'][0])) { if (!$uploader->upload()) { $err = $uploader->getErrors(); } else { $smile_url = $uploader->getSavedFileName(); if (!$db->query(sprintf("UPDATE %s SET code = %s, smile_url = %s, emotion = %s, display = %d WHERE id = %d", $db->prefix('smiles'), $db->quoteString($smile_code), $db->quoteString($smile_url), $db->quoteString($smile_desc), $smile_display, $id))) { $err = 'Failed storing smiley data into the database'; } else { $oldsmile_path = str_replace("\\", "/", realpath(XOOPS_UPLOAD_PATH.'/'.trim($_POST['old_smile']))); if (0 === strpos($oldsmile_path, XOOPS_UPLOAD_PATH) && is_file($oldsmile_path)) { unlink($oldsmile_path); } } } } else { $err = $uploader->getErrors(); } } else { $sql = sprintf("UPDATE %s SET code = %s, emotion = %s, display = %d WHERE id = %d", $db->prefix('smiles'), $db->quoteString($smile_code), $db->quoteString($smile_desc), $smile_display, $id); if (!$db->query($sql)) { $err = 'Failed storing smiley data into the database'; } } if (!isset($err)) { redirect_header('admin.php?fct=smilies&op=SmilesAdmin',2,_AM_DBUPDATED); } else { xoops_cp_header(); xoops_error($err); xoops_cp_footer(); exit(); } break; case "SmilesDel": $id = isset($_GET['id']) ? intval($_GET['id']) : 0; if ($id > 0) { xoops_cp_header(); xoops_confirm(array('fct' => 'smilies', 'op' => 'SmilesDelOk', 'id' => $id), 'admin.php', _AM_WAYSYWTDTS); xoops_cp_footer(); } break; case "SmilesDelOk": $id = isset($_POST['id']) ? intval($_POST['id']) : 0; if ($id <= 0 | !$GLOBALS['xoopsSecurity']->check()) { redirect_header('admin.php?fct=smilies', 3, implode('
', $GLOBALS['xoopsSecurity']->getErrors())); } $db =& Database::getInstance(); $sql = sprintf("DELETE FROM %s WHERE id = %u", $db->prefix('smiles'), $id); $db->query($sql); redirect_header("admin.php?fct=smilies&op=SmilesAdmin",2,_AM_DBUPDATED); break; case "SmilesAdmin": default: SmilesAdmin(); break; } ?>