2 /************************************************************************
\r
3 * MXChange v0.2.1 Start: 09/28/2003 *
\r
4 * =============== Last change: 12/13/2004 *
\r
6 * -------------------------------------------------------------------- *
\r
7 * File : what-guestedit.php *
\r
8 * -------------------------------------------------------------------- *
\r
9 * Short description : Edit guest's menu *
\r
10 * -------------------------------------------------------------------- *
\r
11 * Kurzbeschreibung : Men� f�r die G�ste editieren *
\r
12 * -------------------------------------------------------------------- *
\r
14 * -------------------------------------------------------------------- *
\r
15 * Copyright (c) 2003 - 2008 by Roland Haeder *
\r
16 * For more information visit: http://www.mxchange.org *
\r
18 * This program is free software; you can redistribute it and/or modify *
\r
19 * it under the terms of the GNU General Public License as published by *
\r
20 * the Free Software Foundation; either version 2 of the License, or *
\r
21 * (at your option) any later version. *
\r
23 * This program is distributed in the hope that it will be useful, *
\r
24 * but WITHOUT ANY WARRANTY; without even the implied warranty of *
\r
25 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
\r
26 * GNU General Public License for more details. *
\r
28 * You should have received a copy of the GNU General Public License *
\r
29 * along with this program; if not, write to the Free Software *
\r
30 * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, *
\r
31 * MA 02110-1301 USA *
\r
32 ************************************************************************/
\r
34 // Some security stuff...
\r
35 if ((ereg(basename(__FILE__), $_SERVER['PHP_SELF'])) || (!IS_ADMIN()))
\r
37 $INC = substr(dirname(__FILE__), 0, strpos(dirname(__FILE__), "/inc") + 4) . "/security.php";
\r
40 // Add description as navigation point
\r
41 ADD_DESCR("admin", basename(__FILE__));
\r
43 // Do we edit/delete/change main menus or sub menus?
\r
44 $AND = "what=''"; $SUB = "";
\r
46 if (!empty($_GET['sub']))
\r
48 $AND = sprintf("action='%s'", SQL_ESCAPE($_GET['sub']));
\r
49 $SUB = SQL_ESCAPE($_GET['sub']);
\r
52 // Get count of (maybe) selected menu points
\r
54 if (!empty($_POST['sel'])) $chk = SELECTION_COUNT($_POST['sel']);
\r
56 OPEN_TABLE("100%", "admin_content admin_content_align", "");
\r
57 // List all menu points and make them editable
\r
58 OUTPUT_HTML ("<BR><BR></FONT>
\r
59 <DIV align=\"center\">");
\r
60 if ((isset($_POST['edit'])) && ($chk > 0) && (!IS_DEMO()))
\r
62 // Edit menu entries
\r
63 define('__SUB_VALUE', $SUB);
\r
64 define('__CHK_VALUE', $chk);
\r
66 $cnt = 0; $SW = 2; $OUT = "";
\r
67 foreach ($_POST['sel'] as $sel=>$confirm)
\r
72 $query = SQL_QUERY_ESC("SELECT title, action, what FROM "._MYSQL_PREFIX."_guest_menu WHERE ".$AND." AND id=%d LIMIT 1",
\r
73 array(bigintval($sel)), __FILE__, __LINE__);
\r
74 if (SQL_NUMROWS($query) == 1)
\r
76 // Entry found so we load the stuff...
\r
77 list($menu, $act, $wht) = SQL_FETCHROW($query);
\r
78 SQL_FREERESULT($result);
\r
82 'action' => ADMIN_MAKE_MENU_SELECTION("guest", "action", "sel_action[".$sel."]", $act),
\r
83 'what' => ADMIN_MAKE_MENU_SELECTION("guest", "what", "sel_what[".$sel."]", $wht),
\r
87 $OUT .= LOAD_TEMPLATE("admin_gmenu_edit_row", true, $DATA);
\r
96 $OUT .= LOAD_TEMPLATE("admin_menu_404_row", true, $content);
\r
101 define('__MENU_ROWS', $OUT);
\r
102 define('__CNT_VALUE', $cnt);
\r
105 LOAD_TEMPLATE("admin_gmenu_edit_form");
\r
107 elseif ((isset($_POST['del'])) && (!IS_DEMO()))
\r
109 // Del menu entries with or without confirmation
\r
110 define('__SUB_VALUE', $SUB);
\r
111 define('__CHK_VALUE', $chk);
\r
113 $cnt = 0; $OUT = ""; $SW = 2;
\r
114 foreach ($_POST['sel'] as $sel=>$confirm)
\r
119 $query = SQL_QUERY_ESC("SELECT title FROM "._MYSQL_PREFIX."_guest_menu WHERE ".$AND." AND id=%d LIMIT 1",
\r
120 array(bigintval($sel)), __FILE__, __LINE__);
\r
121 if (SQL_NUMROWS($query) == 1)
\r
123 // Entry found so we load the stuff...
\r
124 list($menu) = SQL_FETCHROW($query);
\r
125 SQL_FREERESULT($result);
\r
132 $OUT .= LOAD_TEMPLATE("admin_gmenu_delete_row", true, $DATA);
\r
136 // Entry not found?
\r
141 $OUT .= LOAD_TEMPLATE("admin_menu_404_row", true, $content);
\r
146 define('__MENU_ROWS', $OUT);
\r
147 define('__CNT_VALUE', $cnt);
\r
150 LOAD_TEMPLATE("admin_gmenu_delete");
\r
152 elseif ((isset($_POST['ok'])) && (!IS_DEMO()))
\r
154 // An action is done...
\r
155 switch ($_POST['ok'])
\r
157 case "edit": // Edit menu
\r
158 foreach ($_POST['sel'] as $sel=>$menu)
\r
161 $sel = bigintval($sel);
\r
164 $query = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_guest_menu SET title='%s', action='%s', what='%s' WHERE ".$AND." AND id=%d LIMIT 1",
\r
165 array($menu, $_POST['sel_action'][$sel], $_POST['sel_what'][$sel], $sel),__FILE__, __LINE__);
\r
167 LOAD_TEMPLATE("admin_data_saved");
\r
170 case "del": // Delete menu
\r
171 foreach ($_POST['sel'] as $sel=>$menu)
\r
174 $query = SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM "._MYSQL_PREFIX."_guest_menu WHERE ".$AND." AND id=%d LIMIT 1",
\r
175 array(bigintval($sel)), __FILE__, __LINE__);
\r
177 LOAD_TEMPLATE("admin_data_saved");
\r
180 case "status": // Change access levels
\r
181 foreach ($_POST['sel'] as $sel=>$menu)
\r
184 $sel = bigintval($sel);
\r
187 $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_guest_menu SET visible='%s', locked='%s' WHERE ".$AND." AND id=%d LIMIT 1",
\r
188 array($_POST['visible'][$sel], $_POST['locked'][$sel], $sel), __FILE__, __LINE__);
\r
190 LOAD_TEMPLATE("admin_data_saved");
\r
193 default: // Unexpected action
\r
194 define('__OK_VALUE', $_POST['ok']);
\r
195 LOAD_TEMPLATE("admin_menu_unknown_okay");
\r
199 elseif ((isset($_POST['status'])) && ($chk > 0) && (!IS_DEMO()))
\r
201 // Change status (visible / locked)
\r
202 define('__SUB_VALUE', $SUB);
\r
203 define('__CHK_VALUE', $chk);
\r
206 $SW = 2; $cnt = 0; $OUT = "";
\r
207 foreach ($_POST['sel'] as $sel=>$confirm)
\r
212 $result = SQL_QUERY_ESC("SELECT title, visible, locked FROM "._MYSQL_PREFIX."_guest_menu WHERE ".$AND." AND id=%d LIMIT 1",
\r
213 array(bigintval($sel)), __FILE__, __LINE__);
\r
214 if (SQL_NUMROWS($result) == 1)
\r
216 // Entry found so we load the stuff...
\r
217 list($menu, $vis, $locked) = SQL_FETCHROW($result);
\r
218 SQL_FREERESULT($result);
\r
224 'visible' => ADD_SELECTION("yn", $vis , "visible", $sel),
\r
225 'locked' => ADD_SELECTION("yn", $locked, "locked" , $sel),
\r
229 $OUT .= LOAD_TEMPLATE("admin_menu_status_row", true, $content);
\r
233 // Entry not found?
\r
238 $OUT .= LOAD_TEMPLATE("admin_menu_404_row", true, $content);
\r
243 define('__CNT_VALUE', $cnt);
\r
244 define('__MENU_ROWS', $OUT);
\r
247 LOAD_TEMPLATE("admin_gmenu_status");
\r
251 if ((!empty($_GET['act'])) && (!empty($_GET['tid'])) && (!empty($_GET['fid'])))
\r
254 if (!empty($_GET['w']))
\r
256 // Sub menus selected
\r
257 $result = SQL_QUERY_ESC("SELECT id FROM "._MYSQL_PREFIX."_guest_menu WHERE action='%s' AND sort='%s' LIMIT 1",
\r
258 array($_GET['act'], bigintval($_GET['tid'])), __FILE__, __LINE__);
\r
259 list($tid) = SQL_FETCHROW($result);
\r
260 SQL_FREERESULT($result);
\r
261 $result = SQL_QUERY_ESC("SELECT id FROM "._MYSQL_PREFIX."_guest_menu WHERE action='%s' AND sort='%s' LIMIT 1",
\r
262 array($_GET['act'], bigintval($_GET['fid'])), __FILE__, __LINE__);
\r
263 list($fid) = SQL_FETCHROW($result);
\r
264 SQL_FREERESULT($result);
\r
268 // Main menu selected
\r
269 $result = SQL_QUERY_ESC("SELECT id FROM "._MYSQL_PREFIX."_guest_menu WHERE what='' AND sort='%s' LIMIT 1",
\r
270 array(bigintval($_GET['tid'])), __FILE__, __LINE__);
\r
271 list($tid) = SQL_FETCHROW($result);
\r
272 SQL_FREERESULT($result);
\r
273 $result = SQL_QUERY_ESC("SELECT id FROM "._MYSQL_PREFIX."_guest_menu WHERE what='' AND sort='%s' LIMIT 1",
\r
274 array(bigintval($_GET['fid'])), __FILE__, __LINE__);
\r
275 list($fid) = SQL_FETCHROW($result);
\r
276 SQL_FREERESULT($result);
\r
279 if ((!empty($tid)) && (!empty($fid)))
\r
282 $result_sort = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_guest_menu SET sort='%s' WHERE ".$AND." AND id=%d LIMIT 1",
\r
283 array(bigintval($_GET['tid']), bigintval($fid)), __FILE__, __LINE__);
\r
284 $result_sort = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_guest_menu SET sort='%s' WHERE ".$AND." AND id=%d LIMIT 1",
\r
285 array(bigintval($_GET['fid']), bigintval($tid)), __FILE__, __LINE__);
\r
289 // By default list menus
\r
292 // List only main menus
\r
293 $query = SQL_QUERY("SELECT id, action, what, title, sort FROM "._MYSQL_PREFIX."_guest_menu WHERE what='' ORDER BY sort ASC", __FILE__, __LINE__);
\r
298 $query = SQL_QUERY_ESC("SELECT id, action, what, title, sort FROM "._MYSQL_PREFIX."_guest_menu WHERE action='%s' AND what != '' ORDER BY sort ASC",
\r
299 array($SUB), __FILE__, __LINE__);
\r
302 // Get number of menu entries
\r
303 $max = SQL_NUMROWS($query);
\r
306 // Some entties does exist!
\r
310 define('__SUB_VALUE', $SUB);
\r
314 // No sub menu selected
\r
315 define('__SUB_VALUE', "");
\r
318 $SW = 2; $cnt = 0; $OUT = "";
\r
319 while (list($id, $act, $wht, $title, $sort) = SQL_FETCHROW($query))
\r
322 if (($sort == 0) || (($sort == 1) && (!empty($SUB))))
\r
324 // Is highest position
\r
325 $NAVI = "<A href=\"".URL."/modules.php?module=admin&what=guestedit&sub=".__SUB_VALUE."&act=".$act."&w=".$wht."&tid=".($sort+1)."&fid=".$sort."\">".LOWER."</A>";
\r
327 elseif ($cnt == $max)
\r
329 // Is lowest position
\r
330 $NAVI = "<A href=\"".URL."/modules.php?module=admin&what=guestedit&sub=".__SUB_VALUE."&act=".$act."&w=".$wht."&tid=".($sort-1)."&fid=".$sort."\">".HIGHER."</A>";
\r
334 // Anything else between highest and lowest
\r
335 $NAVI = "<A href=\"".URL."/modules.php?module=admin&what=guestedit&sub=".__SUB_VALUE."&act=".$act."&w=".$wht."&tid=".($sort-1)."&fid=".$sort."\">".HIGHER."</A>/<A href=\"".URL."/modules.php?module=admin&what=guestedit&sub=".__SUB_VALUE."&act=".$act."&w=".$wht."&tid=".($sort+1)."&fid=".$sort."\">".LOWER."</A>";
\r
337 if (empty($act)) $act = " ";
\r
338 if (empty($wht)) $wht = " ";
\r
339 if (empty($title)) $title = " ";
\r
349 $OUT .= LOAD_TEMPLATE("admin_menu_overview_row", true, $content);
\r
354 SQL_FREERESULT($query);
\r
355 define('__MENU_ROWS', $OUT);
\r
358 LOAD_TEMPLATE("admin_gmenu_edit");
\r
362 // Menu entries are missing... (???)
\r
363 LOAD_TEMPLATE("admin_settings_saved", false, ADMIN_NO_MENUS_FOUND);
\r
366 OUTPUT_HTML ("</DIV>");
\r