d8c339cfdc4938e6d60c3c05a603514bc31b1f24
[mailer.git] / inc / modules / admin / what-adminedit.php
1 <?php
2 /************************************************************************
3  * Mailer v0.2.1-FINAL                                Start: 09/05/2003 *
4  * ===================                          Last change: 12/13/2004 *
5  *                                                                      *
6  * -------------------------------------------------------------------- *
7  * File              : what-adminedit.php                               *
8  * -------------------------------------------------------------------- *
9  * Short description : Edit the admin menu                              *
10  * -------------------------------------------------------------------- *
11  * Kurzbeschreibung  : Das Admin-Menue editieren                        *
12  * -------------------------------------------------------------------- *
13  * $Revision::                                                        $ *
14  * $Date::                                                            $ *
15  * $Tag:: 0.2.1-FINAL                                                 $ *
16  * $Author::                                                          $ *
17  * Needs to be in all Files and every File needs "svn propset           *
18  * svn:keywords Date Revision" (autoprobset!) at least!!!!!!            *
19  * -------------------------------------------------------------------- *
20  * Copyright (c) 2003 - 2009 by Roland Haeder                           *
21  * Copyright (c) 2009, 2010 by Mailer Developer Team                    *
22  * For more information visit: http://www.mxchange.org                  *
23  *                                                                      *
24  * This program is free software; you can redistribute it and/or modify *
25  * it under the terms of the GNU General Public License as published by *
26  * the Free Software Foundation; either version 2 of the License, or    *
27  * (at your option) any later version.                                  *
28  *                                                                      *
29  * This program is distributed in the hope that it will be useful,      *
30  * but WITHOUT ANY WARRANTY; without even the implied warranty of       *
31  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the        *
32  * GNU General Public License for more details.                         *
33  *                                                                      *
34  * You should have received a copy of the GNU General Public License    *
35  * along with this program; if not, write to the Free Software          *
36  * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston,               *
37  * MA  02110-1301  USA                                                  *
38  ************************************************************************/
39
40 // Some security stuff...
41 if ((!defined('__SECURITY')) || (!isAdmin())) {
42         die();
43 }
44
45 // Add description as navigation point
46 addMenuDescription('admin', __FILE__);
47
48 // Do we edit/delete/change main menus or sub menus?
49 $AND = "(`what` = '' OR `what` IS NULL)"; $SUB = '';
50 if (isGetRequestParameterSet('sub')) {
51         $AND = sprintf("`action`='%s' AND `what` != '' AND `what` IS NOT NULL", getRequestParameter('sub'));
52         $SUB = getRequestParameter('sub');
53 } // END - if
54
55 // List all menu points and make them editable
56 if ((isFormSent('edit')) && (ifPostContainsSelections()) && (!isDemoModeActive())) {
57         // Edit menu entries
58         // @TODO Kill all constants in this file
59         $content['sub'] = $SUB;
60         $content['chk'] = countPostSelection();
61         $cnt = '0';
62         foreach (postRequestParameter('sel') as $sel => $confirm) {
63                 if ($confirm == 1) {
64                         $cnt++;
65                         $result = SQL_QUERY_ESC("SELECT `title`, `action`, `what`, `descr` FROM `{?_MYSQL_PREFIX?}_admin_menu` WHERE ".$AND." AND `id`=%s LIMIT 1",
66                                 array(bigintval($sel)), __FILE__, __LINE__);
67                         if (SQL_NUMROWS($result) == 1) {
68                                 // Entry found so we load the stuff...
69                                 $data = SQL_FETCHARRAY($result);
70
71                                 // Prepare data for the row template
72                                 $data = array(
73                                         'action' => adminAddMenuSelectionBox('admin', 'action', 'sel_action[' . $sel . ']', $data['action']),
74                                         'what'   => adminAddMenuSelectionBox('admin', 'what'  , 'sel_what['   . $sel . ']', $data['what']),
75                                         'sel'    => $sel,
76                                         'menu'   => $data['title'],
77                                         'descr'  => $data['descr'],
78                                         'cnt'    => $cnt,
79                                 );
80
81                                 // Load row template
82                                 $OUT .= loadTemplate('form_submit_admin_menu_row', true, $data);
83                         } else {
84                                 // Entry not found?
85                                 $data = array(
86                                         'sel' => $sel
87                                 );
88
89                                 // Load row template
90                                 $OUT .= loadTemplate('admin_menu_404_row', true, $data);
91                         }
92
93                         // Free result and switch color
94                         SQL_FREERESULT($result);
95                 } // END - if
96         } // END - foreach
97
98         $content['rows'] = $OUT;
99         $content['cnt'] = $cnt;
100
101         // Load template
102         loadTemplate('form_submit_admin_menu_form', false, $content);
103 } elseif ((isFormSent('del')) && (ifPostContainsSelections()) && (!isDemoModeActive())) {
104         // Prepare misc content
105         $content['sub'] = $SUB;
106         $content['chk'] = countPostSelection();
107
108         // Del menu entries with or without confirmation
109         $cnt = '0'; $OUT = '';
110         foreach (postRequestParameter('sel') as $sel => $confirm) {
111                 if ($confirm == 1) {
112                         $cnt++;
113                         $result = SQL_QUERY_ESC("SELECT `title` FROM `{?_MYSQL_PREFIX?}_admin_menu` WHERE ".$AND." AND `id`=%s LIMIT 1",
114                                 array(bigintval($sel)), __FILE__, __LINE__);
115                         if (SQL_NUMROWS($result) == 1) {
116                                 // Entry found so we load the stuff...
117                                 $data = SQL_FETCHARRAY($result);
118
119                                 // Prepare data for the row template
120                                 $data = array(
121                                         'menu' => $data['title'],
122                                         'cnt'  => $cnt,
123                                         'sel'  => $sel,
124                                 );
125                                 $OUT .= loadTemplate('admin_del_admin_menu_row', true, $data);
126                         } else {
127                                 // Entry not found?
128                                 $data = array(
129                                         'sel' => $sel
130                                 );
131                                 $OUT .= loadTemplate('admin_menu_404_row', true, $data);
132                         }
133                         SQL_FREERESULT($result);
134                 } // END - if
135         } // END - switch
136         $content['rows'] = $OUT;
137         $content['cnt'] = $cnt;
138
139         // Load template
140         loadTemplate('admin_del_admin_menu', false, $content);
141 } elseif ((isFormSent()) && (!isDemoModeActive())) {
142         // An action is done...
143         switch (postRequestParameter('ok')) {
144                 case 'edit': // Edit menu
145                         foreach (postRequestParameter('sel') as $sel => $menu) {
146                                 // Secure id
147                                 $sel = bigintval($sel);
148
149                                 // Update entry
150                                 SQL_QUERY_ESC("UPDATE
151         `{?_MYSQL_PREFIX?}_admin_menu`
152 SET
153         `title`='%s',
154         `action`='%s',
155         `what`='%s',
156         `descr`='%s'
157 WHERE
158         ".$AND." AND
159         `id`=%s
160 LIMIT 1",
161                                 array(
162                                         $menu,
163                                         postRequestParameter('sel_action', $sel),
164                                         postRequestParameter('sel_what', $sel),
165                                         postRequestParameter('sel_desc', $sel),
166                                         $sel,
167                                 ), __FILE__, __LINE__);
168                         }
169
170                         // Load template
171                         loadTemplate('admin_settings_saved', false, '{--SETTINGS_SAVED--}');
172                         break;
173
174                 case 'del': // Delete menu
175                         foreach (postRequestParameter('sel') as $sel => $menu) {
176                                 SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM `{?_MYSQL_PREFIX?}_admin_menu` WHERE ".$AND." AND `id`=%s LIMIT 1",
177                                         array(bigintval($sel)), __FILE__, __LINE__);
178                         } // END - foreach
179
180                         // Load template
181                         loadTemplate('admin_settings_saved', false, '{--SETTINGS_SAVED--}');
182                         break;
183
184                 default: // Unexpected action
185                         logDebugMessage(__FILE__, __LINE__, sprintf("Unsupported action %s detected.", postRequestParameter('ok')));
186                         loadTemplate('admin_settings_saved', false, getMaskedMessage('ADMIN_UNKNOWN_OKAY', postRequestParameter('ok')));
187                         break;
188         }
189 } else {
190         if ((isGetRequestParameterSet('act')) && (isGetRequestParameterSet('tid')) && (isGetRequestParameterSet('fid'))) {
191                 // Get ids
192                 if (isGetRequestParameterSet('w')) {
193                         // Sub menus selected
194                         $result = SQL_QUERY_ESC("SELECT `id` FROM `{?_MYSQL_PREFIX?}_admin_menu` WHERE ".$AND." AND `what` != '%s' AND `sort`=%s LIMIT 1",
195                                 array(
196                                         getRequestParameter('w'),
197                                         bigintval(getRequestParameter('tid'))
198                                 ), __FILE__, __LINE__);
199                         list($tid) = SQL_FETCHROW($result);
200                         SQL_FREERESULT($result);
201                         $result = SQL_QUERY_ESC("SELECT `id` FROM `{?_MYSQL_PREFIX?}_admin_menu` WHERE ".$AND." AND `what`='%s' AND `sort`=%s LIMIT 1",
202                                 array(
203                                         getRequestParameter('w'),
204                                         bigintval(getRequestParameter('fid'))
205                                 ), __FILE__, __LINE__);
206                         list($fid) = SQL_FETCHROW($result);
207                         SQL_FREERESULT($result);
208                 } else {
209                         // Main menu selected
210                         $result = SQL_QUERY_ESC("SELECT `id` FROM `{?_MYSQL_PREFIX?}_admin_menu` WHERE `action` != %s AND ".$AND." AND `sort`=%s LIMIT 1",
211                                 array(
212                                         getRequestParameter('act'),
213                                         bigintval(getRequestParameter('tid'))
214                                 ), __FILE__, __LINE__);
215                         list($tid) = SQL_FETCHROW($result);
216                         SQL_FREERESULT($result);
217                         $result = SQL_QUERY_ESC("SELECT `id` FROM `{?_MYSQL_PREFIX?}_admin_menu` WHERE `action`=%s AND ".$AND." AND `sort`=%s LIMIT 1",
218                                 array(
219                                         getRequestParameter('act'),
220                                         bigintval(getRequestParameter('fid'))
221                                 ), __FILE__, __LINE__);
222                         list($fid) = SQL_FETCHROW($result);
223                         SQL_FREERESULT($result);
224                 }
225
226                 // Do we have entries found?
227                 if ((!empty($tid)) && (!empty($fid))) {
228                         // Sort menu
229                         SQL_QUERY_ESC("UPDATE `{?_MYSQL_PREFIX?}_admin_menu` SET `sort`=%s WHERE ".$AND." AND `id`=%s LIMIT 1",
230                                 array(
231                                         bigintval(getRequestParameter('tid')),
232                                         bigintval($fid)
233                                 ), __FILE__, __LINE__);
234                         SQL_QUERY_ESC("UPDATE `{?_MYSQL_PREFIX?}_admin_menu` SET `sort`=%s WHERE ".$AND." AND `id`=%s LIMIT 1",
235                                 array(
236                                         bigintval(getRequestParameter('fid')),
237                                         bigintval($tid)
238                                 ), __FILE__, __LINE__);
239                 } // END - if
240         } // END - if
241
242         // Run SQL
243         $result = SQL_QUERY("SELECT id, action, what, title, sort FROM `{?_MYSQL_PREFIX?}_admin_menu` WHERE ".$AND." ORDER BY `sort` ASC", __FILE__, __LINE__);
244
245         // Do we have entries?
246         if (SQL_NUMROWS($result) > 0) {
247                 // Remember sub value
248                 $content['sub'] = $SUB;
249
250                 // Init variables
251                 $OUT = ''; $cnt = '0';
252
253                 // Process all entries
254                 while ($data = SQL_FETCHARRAY($result)) {
255                         // Count this entry
256                         $cnt++;
257
258                         // Init navigation variable
259                         $data['navi'] = '';
260                         if (($data['sort'] == '0') || (($data['sort'] == 1) && (!empty($SUB)))) {
261                                 // Is highest position
262                                 $data['navi'] = '<a href="{%url=modules.php?module=admin&amp;what=adminedit&amp;sub=' . $content['sub'] . '&amp;act=' . $data['action'] . '&amp;w=' . $data['what'] . '&amp;tid=' . ($data['sort']+1) . '&amp;fid=' . $data['sort'] . '%}">{--LOWER--}</a>';
263                         } elseif ($cnt == SQL_NUMROWS($result)) {
264                                 // Is lowest position
265                                 $data['navi'] = '<a href="{%url=modules.php?module=admin&amp;what=adminedit&amp;sub=' . $content['sub'] . '&amp;act=' . $data['action'] . '&amp;w=' . $data['what'] . '&amp;tid=' . ($data['sort']-1) . '&amp;fid=' . $data['sort'] . '%}">{--HIGHER--}</a>';
266                         } elseif ($data['sort'] > 0) {
267                                 // Anything else between highest and lowest
268                                 $data['navi'] = '<a href="{%url=modules.php?module=admin&amp;what=adminedit&amp;sub=' . $content['sub'] . '&amp;act=' . $data['action'] . '&amp;w=' . $data['what'] . '&amp;tid=' . ($data['sort']-1) . '&amp;fid=' . $data['sort'] . '%}">{--HIGHER--}</a>/<a href="{%url=modules.php?module=admin&amp;what=adminedit&amp;sub=' . $content['sub'] . '&amp;act=' . $data['action'] . '&amp;w=' . $data['what'] . '&amp;tid=' . ($data['sort']+1) . '&amp;fid=' . $data['sort'] . '%}">{--LOWER--}</a>';
269                         }
270
271                         // Add more data to $data
272                         $data['mode'] = 'admin';
273
274                         // Load row template and switch colors
275                         $OUT .= loadTemplate('admin_menu_overview_row', true, $data);
276                 } // END - switch
277
278                 // Remember all rows
279                 $content['rows'] = $OUT;
280
281                 // Free memory
282                 SQL_FREERESULT($result);
283
284                 // Load template
285                 loadTemplate('form_submit_admin_menu', false, $content);
286         } else {
287                 // Menu entries are missing... (???)
288                 loadTemplate('admin_settings_saved', false, '{--ADMIN_NO_MENUS_FOUND--}');
289         }
290 }
291
292 //
293 ?>