X-Git-Url: https://git.mxchange.org/?a=blobdiff_plain;f=inc%2Fmodules%2Fadmin%2Fwhat-guestedit.php;h=f36e508510c936d84cd318db4211ccd95181a7ab;hb=3afdce4fe00b4af570122ce7b8158ced44aec7d3;hp=3f67c4ca9c2612ccf4403e7d662bf9fdf7cb7718;hpb=08b3c51b70b6498fd92a2760979d64470ad1b586;p=mailer.git
diff --git a/inc/modules/admin/what-guestedit.php b/inc/modules/admin/what-guestedit.php
index 3f67c4ca9c..f36e508510 100644
--- a/inc/modules/admin/what-guestedit.php
+++ b/inc/modules/admin/what-guestedit.php
@@ -10,7 +10,12 @@
* -------------------------------------------------------------------- *
* Kurzbeschreibung : Menue fuer die Gaeste editieren *
* -------------------------------------------------------------------- *
- * *
+ * $Revision:: $ *
+ * $Date:: $ *
+ * $Tag:: 0.2.1-FINAL $ *
+ * $Author:: $ *
+ * Needs to be in all Files and every File needs "svn propset *
+ * svn:keywords Date Revision" (autoprobset!) at least!!!!!! *
* -------------------------------------------------------------------- *
* Copyright (c) 2003 - 2008 by Roland Haeder *
* For more information visit: http://www.mxchange.org *
@@ -33,40 +38,40 @@
// Some security stuff...
if ((!defined('__SECURITY')) || (!IS_ADMIN())) {
- $INC = substr(dirname(__FILE__), 0, strpos(dirname(__FILE__), "/inc") + 4) . "/security.php";
+ $INC = substr(dirname(__FILE__), 0, strpos(dirname(__FILE__), '/inc') + 4) . '/security.php';
require($INC);
}
// Add description as navigation point
-ADD_DESCR("admin", __FILE__);
+ADD_DESCR('admin', __FILE__);
// Do we edit/delete/change main menus or sub menus?
-$AND = "(`what` = '' OR `what` IS NULL)"; $SUB = "";
+$AND = "(`what` = '' OR `what` IS NULL)"; $SUB = '';
-if (!empty($_GET['sub'])) {
- $AND = sprintf("action='%s' AND `what` IS NOT NULL", SQL_ESCAPE($_GET['sub']));
- $SUB = SQL_ESCAPE($_GET['sub']);
+if (REQUEST_ISSET_GET('sub')) {
+ $AND = sprintf("`action`='%s' AND `what` IS NOT NULL", REQUEST_GET('sub'));
+ $SUB = REQUEST_GET('sub');
} // END - if
// Get count of (maybe) selected menu points
$chk = 0;
-if (!empty($_POST['sel'])) $chk = SELECTION_COUNT($_POST['sel']);
+if (REQUEST_ISSET_POST('sel')) $chk = countPostSelection();
// List all menu points and make them editable
-if ((isset($_POST['edit'])) && ($chk > 0) && (!IS_DEMO()))
+if ((REQUEST_ISSET_POST('edit')) && ($chk > 0) && (!IS_DEMO()))
{
// Edit menu entries
define('__SUB_VALUE', $SUB);
define('__CHK_VALUE', $chk);
- $cnt = 0; $SW = 2; $OUT = "";
- foreach ($_POST['sel'] as $sel => $confirm)
+ $cnt = 0; $OUT = ''; $SW = 2;
+ foreach (REQUEST_POST('sel') as $sel => $confirm)
{
if ($confirm == 1)
{
$cnt++;
$result = SQL_QUERY_ESC("SELECT title, action, what FROM `{!_MYSQL_PREFIX!}_guest_menu` WHERE ".$AND." AND id=%s LIMIT 1",
- array(bigintval($sel)), __FILE__, __LINE__);
+ array(bigintval($sel)), __FILE__, __LINE__);
if (SQL_NUMROWS($result) == 1)
{
// Entry found so we load the stuff...
@@ -75,14 +80,14 @@ if ((isset($_POST['edit'])) && ($chk > 0) && (!IS_DEMO()))
$DATA = array(
'cnt' => $cnt,
'sel' => $sel,
- 'action' => ADMIN_MAKE_MENU_SELECTION("guest", "action", "sel_action[".$sel."]", $act),
- 'what' => ADMIN_MAKE_MENU_SELECTION("guest", "what", "sel_what[".$sel."]", $wht),
+ 'action' => ADMIN_MAKE_MENU_SELECTION('guest', "action", "sel_action[".$sel."]", $act),
+ 'what' => ADMIN_MAKE_MENU_SELECTION('guest', "what", "sel_what[".$sel."]", $wht),
'menu' => $menu,
'sw' => $SW,
);
$OUT .= LOAD_TEMPLATE("admin_gmenu_edit_row", true, $DATA);
}
- else
+ else
{
// Entry not found?
$content = array(
@@ -99,23 +104,18 @@ if ((isset($_POST['edit'])) && ($chk > 0) && (!IS_DEMO()))
// Load template
LOAD_TEMPLATE("admin_gmenu_edit_form");
-}
- elseif ((isset($_POST['del'])) && (!IS_DEMO()))
-{
+} elseif ((REQUEST_ISSET_POST('del')) && (!IS_DEMO())) {
// Del menu entries with or without confirmation
define('__SUB_VALUE', $SUB);
define('__CHK_VALUE', $chk);
- $cnt = 0; $OUT = ""; $SW = 2;
- foreach ($_POST['sel'] as $sel => $confirm)
- {
- if ($confirm == 1)
- {
+ $cnt = 0; $OUT = ''; $SW = 2;
+ foreach (REQUEST_POST('sel') as $sel => $confirm) {
+ if ($confirm == 1) {
$cnt++;
$result = SQL_QUERY_ESC("SELECT title FROM `{!_MYSQL_PREFIX!}_guest_menu` WHERE ".$AND." AND id=%s LIMIT 1",
- array(bigintval($sel)), __FILE__, __LINE__);
- if (SQL_NUMROWS($result) == 1)
- {
+ array(bigintval($sel)), __FILE__, __LINE__);
+ if (SQL_NUMROWS($result) == 1) {
// Entry found so we load the stuff...
list($menu) = SQL_FETCHROW($result);
SQL_FREERESULT($result);
@@ -126,9 +126,7 @@ if ((isset($_POST['edit'])) && ($chk > 0) && (!IS_DEMO()))
'sw' => $SW,
);
$OUT .= LOAD_TEMPLATE("admin_gmenu_delete_row", true, $DATA);
- }
- else
- {
+ } else {
// Entry not found?
$content = array(
'sw' => $SW,
@@ -144,70 +142,63 @@ if ((isset($_POST['edit'])) && ($chk > 0) && (!IS_DEMO()))
// Load template
LOAD_TEMPLATE("admin_gmenu_delete");
-}
- elseif ((isset($_POST['ok'])) && (!IS_DEMO()))
-{
+} elseif ((isFormSent()) && (!IS_DEMO())) {
// An action is done...
- switch ($_POST['ok'])
+ switch (REQUEST_POST('ok'))
{
- case "edit": // Edit menu
- foreach ($_POST['sel'] as $sel => $menu)
- {
- // Secure selector
- $sel = bigintval($sel);
+ case 'edit': // Edit menu
+ foreach (REQUEST_POST('sel') as $sel => $menu) {
+ // Secure selector
+ $sel = bigintval($sel);
- // Update entry
- SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_guest_menu` SET `title`='%s', `action`='%s', `what`='%s' WHERE ".$AND." AND id=%s LIMIT 1",
- array($menu, $_POST['sel_action'][$sel], $_POST['sel_what'][$sel], $sel),__FILE__, __LINE__);
- }
- LOAD_TEMPLATE("admin_settings_saved", false, getMessage('SETTINGS_SAVED'));
- break;
+ // Update entry
+ SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_guest_menu` SET `title`='%s', `action`='%s', `what`='%s' WHERE ".$AND." AND id=%s LIMIT 1",
+ array($menu, REQUEST_POST('sel_action', $sel), REQUEST_POST('sel_what', $sel), $sel),__FILE__, __LINE__);
+ }
+ LOAD_TEMPLATE('admin_settings_saved', false, getMessage('SETTINGS_SAVED'));
+ break;
- case "del": // Delete menu
- foreach ($_POST['sel'] as $sel => $menu)
- {
- // Delete enty
- SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM `{!_MYSQL_PREFIX!}_guest_menu` WHERE ".$AND." AND id=%s LIMIT 1",
+ case 'del': // Delete menu
+ foreach (REQUEST_POST('sel') as $sel => $menu) {
+ // Delete enty
+ SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM `{!_MYSQL_PREFIX!}_guest_menu` WHERE ".$AND." AND id=%s LIMIT 1",
array(bigintval($sel)), __FILE__, __LINE__);
- }
- LOAD_TEMPLATE("admin_settings_saved", false, getMessage('SETTINGS_SAVED'));
- break;
+ }
+ LOAD_TEMPLATE('admin_settings_saved', false, getMessage('SETTINGS_SAVED'));
+ break;
- case "status": // Change access levels
- foreach ($_POST['sel'] as $sel => $menu)
- {
- // Secure selector
- $sel = bigintval($sel);
+ case 'status': // Change access levels
+ foreach (REQUEST_POST('sel') as $sel => $menu) {
+ // Secure selector
+ $sel = bigintval($sel);
- // Update entry
- SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_guest_menu` SET `visible`='%s', `locked`='%s' WHERE ".$AND." AND id=%s LIMIT 1",
- array($_POST['visible'][$sel], $_POST['locked'][$sel], $sel), __FILE__, __LINE__);
- }
- LOAD_TEMPLATE("admin_settings_saved", false, getMessage('SETTINGS_SAVED'));
- break;
+ // Update entry
+ SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_guest_menu` SET `visible`='%s', `locked`='%s' WHERE ".$AND." AND id=%s LIMIT 1",
+ array(REQUEST_POST('visible', $sel), REQUEST_POST('locked', $sel), $sel), __FILE__, __LINE__);
+ }
+ LOAD_TEMPLATE('admin_settings_saved', false, getMessage('SETTINGS_SAVED'));
+ break;
- default: // Unexpected action
- define('__OK_VALUE', $_POST['ok']);
- DEBUG_LOG(__FILE__, __LINE__, sprintf("Unsupported action %s detected.", $_POST['ok']));
- LOAD_TEMPLATE("admin_menu_unknown_okay");
- break;
+ default: // Unexpected action
+ define('__OK_VALUE', REQUEST_POST('ok'));
+ DEBUG_LOG(__FILE__, __LINE__, sprintf("Unsupported action %s detected.", REQUEST_POST('ok')));
+ LOAD_TEMPLATE("admin_menu_unknown_okay");
+ break;
}
-}
- elseif ((isset($_POST['status'])) && ($chk > 0) && (!IS_DEMO()))
-{
+} elseif ((REQUEST_ISSET_POST(('status'))) && ($chk > 0) && (!IS_DEMO())) {
// Change status (visible / locked)
define('__SUB_VALUE', $SUB);
define('__CHK_VALUE', $chk);
// Load template
- $SW = 2; $cnt = 0; $OUT = "";
- foreach ($_POST['sel'] as $sel => $confirm)
+ $SW = 2; $cnt = 0; $OUT = '';
+ foreach (REQUEST_POST('sel') as $sel => $confirm)
{
if ($confirm == 1)
{
$cnt++;
$result = SQL_QUERY_ESC("SELECT title, visible, locked FROM `{!_MYSQL_PREFIX!}_guest_menu` WHERE ".$AND." AND id=%s LIMIT 1",
- array(bigintval($sel)), __FILE__, __LINE__);
+ array(bigintval($sel)), __FILE__, __LINE__);
if (SQL_NUMROWS($result) == 1)
{
// Entry found so we load the stuff...
@@ -218,14 +209,14 @@ if ((isset($_POST['edit'])) && ($chk > 0) && (!IS_DEMO()))
'menu' => $menu,
'sel' => $sel,
'sw' => $SW,
- 'visible' => ADD_SELECTION("yn", $vis , "visible", $sel),
- 'locked' => ADD_SELECTION("yn", $locked, "locked" , $sel),
+ 'visible' => ADD_SELECTION('yn', $vis , "visible", $sel),
+ 'locked' => ADD_SELECTION('yn', $locked, "locked" , $sel),
);
// Load template
$OUT .= LOAD_TEMPLATE("admin_menu_status_row", true, $content);
}
- else
+ else
{
// Entry not found?
$content = array(
@@ -243,26 +234,26 @@ if ((isset($_POST['edit'])) && ($chk > 0) && (!IS_DEMO()))
// Load template
LOAD_TEMPLATE("admin_gmenu_status");
} else {
- if ((!empty($_GET['act'])) && (!empty($_GET['tid'])) && (!empty($_GET['fid']))) {
+ if ((REQUEST_ISSET_GET(('act'))) && (REQUEST_ISSET_GET(('tid'))) && (REQUEST_ISSET_GET(('fid')))) {
// Get IDs
- if (!empty($_GET['w'])) {
+ if (REQUEST_ISSET_GET(('w'))) {
// Sub menus selected
- $result = SQL_QUERY_ESC("SELECT id FROM `{!_MYSQL_PREFIX!}_guest_menu` WHERE `action`='%s' AND `sort`='%s' LIMIT 1",
- array($_GET['act'], bigintval($_GET['tid'])), __FILE__, __LINE__);
+ $result = SQL_QUERY_ESC("SELECT `id` FROM `{!_MYSQL_PREFIX!}_guest_menu` WHERE `action`='%s' AND `sort`='%s' LIMIT 1",
+ array(REQUEST_GET('act'), bigintval(REQUEST_GET('tid'))), __FILE__, __LINE__);
list($tid) = SQL_FETCHROW($result);
SQL_FREERESULT($result);
- $result = SQL_QUERY_ESC("SELECT id FROM `{!_MYSQL_PREFIX!}_guest_menu` WHERE `action`='%s' AND `sort`='%s' LIMIT 1",
- array($_GET['act'], bigintval($_GET['fid'])), __FILE__, __LINE__);
+ $result = SQL_QUERY_ESC("SELECT `id` FROM `{!_MYSQL_PREFIX!}_guest_menu` WHERE `action`='%s' AND `sort`='%s' LIMIT 1",
+ array(REQUEST_GET('act'), bigintval(REQUEST_GET('fid'))), __FILE__, __LINE__);
list($fid) = SQL_FETCHROW($result);
SQL_FREERESULT($result);
} else {
// Main menu selected
- $result = SQL_QUERY_ESC("SELECT id FROM `{!_MYSQL_PREFIX!}_guest_menu` WHERE (what='' OR `what` IS NULL) AND `sort`='%s' LIMIT 1",
- array(bigintval($_GET['tid'])), __FILE__, __LINE__);
+ $result = SQL_QUERY_ESC("SELECT `id` FROM `{!_MYSQL_PREFIX!}_guest_menu` WHERE (`what`='' OR `what` IS NULL) AND `sort`='%s' LIMIT 1",
+ array(bigintval(REQUEST_GET('tid'))), __FILE__, __LINE__);
list($tid) = SQL_FETCHROW($result);
SQL_FREERESULT($result);
- $result = SQL_QUERY_ESC("SELECT id FROM `{!_MYSQL_PREFIX!}_guest_menu` WHERE (what='' OR `what` IS NULL) AND `sort`='%s' LIMIT 1",
- array(bigintval($_GET['fid'])), __FILE__, __LINE__);
+ $result = SQL_QUERY_ESC("SELECT `id` FROM `{!_MYSQL_PREFIX!}_guest_menu` WHERE (`what`='' OR `what` IS NULL) AND `sort`='%s' LIMIT 1",
+ array(bigintval(REQUEST_GET('fid'))), __FILE__, __LINE__);
list($fid) = SQL_FETCHROW($result);
SQL_FREERESULT($result);
}
@@ -270,60 +261,63 @@ if ((isset($_POST['edit'])) && ($chk > 0) && (!IS_DEMO()))
if ((!empty($tid)) && (!empty($fid))) {
// Sort menu
SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_guest_menu` SET `sort`='%s' WHERE ".$AND." AND id=%s LIMIT 1",
- array(bigintval($_GET['tid']), bigintval($fid)), __FILE__, __LINE__);
+ array(bigintval(REQUEST_GET('tid')), bigintval($fid)), __FILE__, __LINE__);
SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_guest_menu` SET `sort`='%s' WHERE ".$AND." AND id=%s LIMIT 1",
- array(bigintval($_GET['fid']), bigintval($tid)), __FILE__, __LINE__);
+ array(bigintval(REQUEST_GET('fid')), bigintval($tid)), __FILE__, __LINE__);
} // END - if
} // END - if
// By default list menus
if (empty($SUB)) {
// List only main menus
- $result = SQL_QUERY("SELECT `id`, `action`, `what`, `title`, `sort` FROM `{!_MYSQL_PREFIX!}_guest_menu` WHERE (`what`='' OR `what` IS NULL) ORDER BY `sort` ASC", __FILE__, __LINE__);
+ $result = SQL_QUERY("SELECT `id`,`action`,`what`,`title`,`sort` FROM `{!_MYSQL_PREFIX!}_guest_menu` WHERE (`what`='' OR `what` IS NULL) ORDER BY `sort` ASC", __FILE__, __LINE__);
} else {
// List sub menus
- $result = SQL_QUERY_ESC("SELECT `id`, `action`, `what`, `title`, `sort` FROM `{!_MYSQL_PREFIX!}_guest_menu` WHERE `action`='%s' AND `what` != '' AND `what` IS NOT NULL ORDER BY `sort` ASC",
- array($SUB), __FILE__, __LINE__);
+ $result = SQL_QUERY_ESC("SELECT `id`,`action`,`what`,`title`,`sort` FROM `{!_MYSQL_PREFIX!}_guest_menu` WHERE `action`='%s' AND `what` != '' AND `what` IS NOT NULL ORDER BY `sort` ASC",
+ array($SUB), __FILE__, __LINE__);
}
// Get number of menu entries
$max = SQL_NUMROWS($result);
if ($max > 0) {
// Set sub value
+ // @TODO Rewrite this constant
define('__SUB_VALUE', $SUB);
// Init variables
$SW = 2;
$cnt = 0;
- $OUT = "";
+ $OUT = '';
- while (list($id, $act, $wht, $title, $sort) = SQL_FETCHROW($result)) {
+ // Process all menu entries
+ while ($content = SQL_FETCHARRAY($result)) {
$cnt++;
- if (($sort == 0) || (($sort == 1) && (!empty($SUB)))) {
+ if (($content['sort'] == 0) || (($content['sort'] == 1) && (!empty($SUB)))) {
// Is highest position
- $NAVI = "{--LOWER--}";
+ $NAVI = "{--LOWER--}";
} elseif ($cnt == $max) {
// Is lowest position
- $NAVI = "{--HIGHER--}";
- } elseif ($sort > 0) {
+ $NAVI = "{--HIGHER--}";
+ } elseif ($content['sort'] > 0) {
// Anything else between highest and lowest
- $NAVI = "{--HIGHER--}/{--LOWER--}";
+ $NAVI = "{--HIGHER--}/{--LOWER--}";
}
- if (empty($act)) $act = " ";
- if (empty($wht)) $wht = " ";
- if (empty($title)) $title = " ";
+ if (empty($content['action'])) $content['action'] = " ";
+ if (empty($content['what'])) $content['what'] = " ";
+ if (empty($content['title'])) $content['title'] = " ";
+
$content = array(
'sw' => $SW,
- 'id' => $id,
- 'action' => $act,
- 'what' => $wht,
- 'title' => $title,
+ 'id' => $content['id'],
+ 'action' => $content['action'],
+ 'what' => $content['what'],
+ 'title' => $content['title'],
'navi' => $NAVI,
- 'mode' => "guest"
- );
- $OUT .= LOAD_TEMPLATE("admin_menu_overview_row", true, $content);
- $SW = 3 - $SW;
+ 'mode' => 'guest'
+ );
+ $OUT .= LOAD_TEMPLATE("admin_menu_overview_row", true, $content);
+ $SW = 3 - $SW;
}
// Free memory
@@ -334,7 +328,7 @@ if ((isset($_POST['edit'])) && ($chk > 0) && (!IS_DEMO()))
LOAD_TEMPLATE("admin_gmenu_edit");
} else {
// Menu entries are missing... (???)
- LOAD_TEMPLATE("admin_settings_saved", false, getMessage('ADMIN_NO_MENUS_FOUND'));
+ LOAD_TEMPLATE('admin_settings_saved', false, getMessage('ADMIN_NO_MENUS_FOUND'));
}
}