inc/modules/admin/what-memedit.php

   1 <?php
   2 /************************************************************************
   3  * MXChange v0.2.1                                    Start: 09/28/2003 *
   4  * ===============                              Last change: 05/13/2004 *
   5  *                                                                      *
   6  * -------------------------------------------------------------------- *
   7  * File              : what-memedit.php                                 *
   8  * -------------------------------------------------------------------- *
   9  * Short description : Edit member's menu                               *
  10  * -------------------------------------------------------------------- *
  11  * Kurzbeschreibung  : Editieren Sie das Menue fuer Ihre Mitglieder     *
  12  * -------------------------------------------------------------------- *
  13  * $Revision::                                                        $ *
  14  * $Date::                                                            $ *
  15  * $Tag:: 0.2.1-FINAL                                                 $ *
  16  * $Author::                                                          $ *
  17  * Needs to be in all Files and every File needs "svn propset           *
  18  * svn:keywords Date Revision" (autoprobset!) at least!!!!!!            *
  19  * -------------------------------------------------------------------- *
  20  * Copyright (c) 2003 - 2008 by Roland Haeder                           *
  21  * For more information visit: http://www.mxchange.org                  *
  22  *                                                                      *
  23  * This program is free software; you can redistribute it and/or modify *
  24  * it under the terms of the GNU General Public License as published by *
  25  * the Free Software Foundation; either version 2 of the License, or    *
  26  * (at your option) any later version.                                  *
  27  *                                                                      *
  28  * This program is distributed in the hope that it will be useful,      *
  29  * but WITHOUT ANY WARRANTY; without even the implied warranty of       *
  30  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the        *
  31  * GNU General Public License for more details.                         *
  32  *                                                                      *
  33  * You should have received a copy of the GNU General Public License    *
  34  * along with this program; if not, write to the Free Software          *
  35  * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston,               *
  36  * MA  02110-1301  USA                                                  *
  37  ************************************************************************/
  38
  39 // Some security stuff...
  40 if ((!defined('__SECURITY')) || (!IS_ADMIN())) {
  41         $INC = substr(dirname(__FILE__), 0, strpos(dirname(__FILE__), "/inc") + 4) . "/security.php";
  42         require($INC);
  43 }
  44
  45 // Add description as navigation point
  46 ADD_DESCR("admin", __FILE__);
  47
  48 // Do we edit/delete/change main menus or sub menus?
  49 $AND = "(`what` = '' OR `what` IS NULL)"; $SUB = "";
  50
  51 if (REQUEST_ISSET_GET(('sub'))) {
  52         $AND = sprintf("`action`='%s' AND `what` IS NOT NULL", REQUEST_GET(('sub')));
  53         $SUB = REQUEST_GET(('sub'));
  54 }
  55
  56 // Get count of (maybe) selected menu points
  57 $chk = 0;
  58 if (REQUEST_ISSET_POST('sel')) $chk = SELECTION_COUNT(REQUEST_POST('sel'));
  59
  60 // List all menu points and make them editable
  61 if ((REQUEST_ISSET_POST('edit')) && ($chk > 0) && (!IS_DEMO())) {
  62         // Edit menu entries
  63         define('__SUB_VALUE', $SUB);
  64         define('__CHK_VALUE', $chk);
  65         $SW = 2; $cnt = 0; $OUT = "";
  66         foreach (REQUEST_POST('sel') as $sel => $confirm) {
  67                 if ($confirm == 1) {
  68                         $cnt++;
  69                         $result = SQL_QUERY_ESC("SELECT title, action, what FROM `{!_MYSQL_PREFIX!}_member_menu` WHERE ".$AND." AND id=%s LIMIT 1",
  70                                 array(bigintval($sel)), __FILE__, __LINE__);
  71                         if (SQL_NUMROWS($result) == 1) {
  72                                 // Entry found so we load the stuff...
  73                                 list($menu, $act, $wht, $descr) = SQL_FETCHROW($result);
  74                                 SQL_FREERESULT($result);
  75                                 $content = array(
  76                                         'cnt'    => $cnt,
  77                                         'sel'    => $sel,
  78                                         'menu'   => $menu,
  79                                         'sw'     => $SW,
  80                                         'act'    => ADMIN_MAKE_MENU_SELECTION("member", "act", "sel_act[".$sel."]", $act),
  81                                         'what'   => ADMIN_MAKE_MENU_SELECTION("member", "what", "sel_what[".$sel."]", $wht),
  82                                 );
  83                                 // Load template
  84                                 $OUT .= LOAD_TEMPLATE("admin_mmenu_edit_row", true, $content);
  85                         } else {
  86                                 // Entry not found?
  87                                 $content = array(
  88                                         'sw'  => $SW,
  89                                         'sel' => $sel
  90                                 );
  91                                 $OUT .= LOAD_TEMPLATE("admin_menu_404_row", true, $content);
  92                         }
  93                         $SW = 3 - $SW;
  94                 }
  95         }
  96         define('__MENU_ROWS', $OUT);
  97         define('__CNT_VALUE', $cnt);
  98
  99         // Load template
 100         LOAD_TEMPLATE("admin_mmenu_edit");
 101 } elseif ((REQUEST_ISSET_POST('del')) && ($chk > 0) && (!IS_DEMO())) {
 102         // Del menu entries with or without confirmation
 103         define('__SUB_VALUE', $SUB);
 104         define('__CHK_VALUE', $chk);
 105         $SW = 2; $cnt = 0; $OUT = "";
 106         foreach (REQUEST_POST('sel') as $sel => $confirm) {
 107                 if ($confirm == 1) {
 108                         $cnt++;
 109                         $result = SQL_QUERY_ESC("SELECT title FROM `{!_MYSQL_PREFIX!}_member_menu` WHERE ".$AND." AND id=%s LIMIT 1",
 110                          array(bigintval($sel)), __FILE__, __LINE__);
 111                         if (SQL_NUMROWS($result) == 1)
 112                         {
 113                                 // Entry found so we load the stuff...
 114                                 list($title) = SQL_FETCHROW($result);
 115                                 SQL_FREERESULT($result);
 116                                 $content = array(
 117                                         'cnt'   => $cnt,
 118                                         'sel'   => $sel,
 119                                         'title' => $title
 120                                 );
 121                                 $OUT .= LOAD_TEMPLATE("admin_mmenu_delete_row", true, $content);
 122                         }
 123                          else
 124                         {
 125                                 // Entry not found?
 126                                 $content = array(
 127                                         'sw'  => $SW,
 128                                         'sel' => $sel
 129                                 );
 130                                 $OUT .= LOAD_TEMPLATE("admin_menu_404_row", true, $content);
 131                         }
 132                 }
 133         }
 134         define('__MENU_ROWS', $OUT);
 135         define('__CNT_VALUE', $cnt);
 136
 137         // Load template
 138         LOAD_TEMPLATE("admin_mmenu_delete");
 139 } elseif ((REQUEST_ISSET_POST(('status'))) && ($chk > 0) && (!IS_DEMO())) {
 140         // Change status (visible / locked)
 141         define('__SUB_VALUE', $SUB);
 142         define('__CHK_VALUE', $chk);
 143         $SW = 2; $cnt = 0; $OUT = "";
 144         foreach (REQUEST_POST('sel') as $sel => $confirm) {
 145                 if ($confirm == 1) {
 146                         $cnt++;
 147                         $result = SQL_QUERY_ESC("SELECT title, visible, locked FROM `{!_MYSQL_PREFIX!}_member_menu` WHERE ".$AND." AND id=%s LIMIT 1",
 148                                 array(bigintval($sel)), __FILE__, __LINE__);
 149                         if (SQL_NUMROWS($result) == 1) {
 150                                 // Entry found so we load the stuff...
 151                                 list($menu, $vis, $locked) = SQL_FETCHROW($result);
 152                                 SQL_FREERESULT($result);
 153                                 $content = array(
 154                                         'cnt'     => $cnt,
 155                                         'menu'    => $menu,
 156                                         'sel'     => $sel,
 157                                         'sw'      => $SW,
 158                                         'visible' => ADD_SELECTION("yn", $vis   , "visible", $sel),
 159                                         'locked'  => ADD_SELECTION("yn", $locked, "locked" , $sel),
 160                                 );
 161
 162                                 // Load template
 163                                 $OUT .= LOAD_TEMPLATE("admin_menu_status_row", true, $content);
 164                         }
 165                          else
 166                         {
 167                                 // Entry not found?
 168                                 $content = array(
 169                                         'sw'  => $SW,
 170                                         'sel' => $sel
 171                                 );
 172                                 $OUT .= LOAD_TEMPLATE("admin_menu_404_row", true, $content);
 173                         }
 174                         $SW = 3 - $SW;
 175                 }
 176         }
 177         define('__MENU_ROWS', $OUT);
 178         define('__CNT_VALUE', $cnt);
 179         //
 180         LOAD_TEMPLATE("admin_mmenu_status");
 181 } elseif ((IS_FORM_SENT()) && (!IS_DEMO())) {
 182         // An act is done...
 183         foreach (REQUEST_POST('sel') as $sel => $menu) {
 184                 $AND = "(`what` = '' OR `what` IS NULL)";
 185                 $sel = bigintval($sel);
 186                 if (!empty($SUB)) $AND = "`action`='".$SUB."'";
 187                 switch (REQUEST_POST('ok'))
 188                 {
 189                 case "edit": // Edit menu
 190                         SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_member_menu` SET `title`='%s', `action`='%s', `what`='%s' WHERE ".$AND." AND id=%s LIMIT 1",
 191                                 array($menu, REQUEST_POST('sel_act', $sel), REQUEST_POST('sel_what', $sel), $sel), __FILE__, __LINE__);
 192                         break;
 193
 194                 case "del": // Delete menu
 195                         SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM `{!_MYSQL_PREFIX!}_member_menu` WHERE ".$AND." AND id=%s LIMIT 1",
 196                                 array($sel), __FILE__, __LINE__);
 197                         break;
 198
 199                 case "status": // Change status of menus
 200                         SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_member_menu` SET `visible`='%s', `locked`='%s' WHERE ".$AND." AND id=%s LIMIT 1",
 201                                 array(REQUEST_POST('visible', $sel), REQUEST_POST('locked', $sel), $sel), __FILE__, __LINE__);
 202                         break;
 203                 }
 204                 break;
 205         }
 206
 207         // Load template
 208         LOAD_TEMPLATE("admin_settings_saved", false, getMessage('SETTINGS_SAVED'));
 209 } else {
 210         if ((REQUEST_ISSET_GET(('act'))) && (REQUEST_ISSET_GET(('tid'))) && (REQUEST_ISSET_GET(('fid')))) {
 211                 // Init
 212                 $tid = ""; $fid = "";
 213
 214                 // Get IDs
 215                 if (REQUEST_ISSET_GET(('w'))) {
 216                         // Sub menus selected
 217                         $result = SQL_QUERY_ESC("SELECT id FROM `{!_MYSQL_PREFIX!}_member_menu` WHERE `action`='%s' AND `sort`='%s' LIMIT 1",
 218                          array(bigintval(REQUEST_GET('act')), bigintval(REQUEST_GET('tid'))), __FILE__, __LINE__);
 219                         list($tid) = SQL_FETCHROW($result);
 220                         SQL_FREERESULT($result);
 221                         $result = SQL_QUERY_ESC("SELECT id FROM `{!_MYSQL_PREFIX!}_member_menu` WHERE `action`='%s' AND `sort`='%s' LIMIT 1",
 222                          array(bigintval(REQUEST_GET('act')), bigintval(REQUEST_GET('fid'))), __FILE__, __LINE__);
 223                         list($fid) = SQL_FETCHROW($result);
 224                         SQL_FREERESULT($result);
 225                 } else {
 226                         // Main menu selected
 227                         $result = SQL_QUERY_ESC("SELECT id FROM `{!_MYSQL_PREFIX!}_member_menu` WHERE (`what`='' OR `what` IS NULL) AND `sort`='%s' LIMIT 1",
 228                          array(bigintval(REQUEST_GET('tid'))), __FILE__, __LINE__);
 229                         list($tid) = SQL_FETCHROW($result);
 230                         $result = SQL_QUERY_ESC("SELECT id FROM `{!_MYSQL_PREFIX!}_member_menu` WHERE (`what`='' OR `what` IS NULL) AND `sort`='%s' LIMIT 1",
 231                          array(bigintval(REQUEST_GET('fid'))), __FILE__, __LINE__);
 232                         list($fid) = SQL_FETCHROW($result);
 233                 }
 234
 235                 if ((!empty($tid)) && (!empty($fid))) {
 236                         // Sort menu
 237                         SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_member_menu` SET `sort`='%s' WHERE ".$AND." AND id=%s LIMIT 1",
 238                                 array(bigintval(REQUEST_GET('tid')), bigintval($fid)), __FILE__, __LINE__);
 239                         SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_member_menu` SET `sort`='%s' WHERE ".$AND." AND id=%s LIMIT 1",
 240                                 array(bigintval(REQUEST_GET('fid')), bigintval($tid)), __FILE__, __LINE__);
 241                 } // END - -fi
 242         }
 243
 244         if (!empty($SUB)) {
 245                 // Edit sub menus
 246                 $result = SQL_QUERY("SELECT id, action, what, title, sort FROM `{!_MYSQL_PREFIX!}_member_menu` WHERE ".$AND." AND `what` != '' AND `what` IS NOT NULL ORDER BY `sort` ASC", __FILE__, __LINE__);
 247         } else {
 248                 // Edit main menus
 249                 $result = SQL_QUERY("SELECT id, action, what, title, sort FROM `{!_MYSQL_PREFIX!}_member_menu` WHERE (`what`='' OR `what` IS NULL) ORDER BY `sort` ASC", __FILE__, __LINE__);
 250         }
 251
 252         $max = SQL_NUMROWS($result);
 253         if ($max > 0) {
 254                 // Set sub value
 255                 // @TODO Rewrite this constant
 256                 define('__SUB_VALUE', $SUB);
 257
 258                 $SW = 2; $cnt = 0; $OUT = "";
 259                 while ($content = SQL_FETCHARRAY($result)) {
 260                         // Init navigation
 261                         $content['navi'] = "";
 262                         $cnt++;
 263                         if (($content['sort'] == 0) || (($content['sort'] == 1) && (!empty($SUB)))) {
 264                                 // Is highest position
 265                                 $content['navi'] = "<a href=\"{!URL!}/modules.php?module=admin&amp;what=memedit&amp;sub={!__SUB_VALUE!}&amp;act=".$content['action']."&amp;w=".$content['what']."&amp;tid=".($content['sort']+1)."&amp;fid=".$content['sort']."\">{--LOWER--}</a>";
 266                         } elseif ($cnt == $max) {
 267                                 // Is lowest position
 268                                 $content['navi'] = "<a href=\"{!URL!}/modules.php?module=admin&amp;what=memedit&amp;sub={!__SUB_VALUE!}&amp;act=".$content['action']."&amp;w=".$content['what']."&amp;tid=".($content['sort']-1)."&amp;fid=".$content['sort']."\">{--HIGHER--}</a>";
 269                         } elseif ($content['sort'] > 0) {
 270                                 // Anything else between highest and lowest
 271                                 $content['navi'] = "<a href=\"{!URL!}/modules.php?module=admin&amp;what=memedit&amp;sub={!__SUB_VALUE!}&amp;act=".$content['action']."&amp;w=".$content['what']."&amp;tid=".($content['sort']-1)."&amp;fid=".$content['sort']."\">{--HIGHER--}</a>/<a href=\"{!URL!}/modules.php?module=admin&amp;what=memedit&amp;sub={!__SUB_VALUE!}&amp;act=".$content['action']."&amp;w=".$content['what']."&amp;tid=".($content['sort']+1)."&amp;fid=".$content['sort']."\">{--LOWER--}</a>";
 272                         }
 273
 274                         // Fix empty values for Firefox
 275                         if (empty($content['action'])) $content['action'] = "&nbsp;";
 276                         if (empty($content['what']))   $content['what']   = "&nbsp;";
 277                         if (empty($content['title']))  $content['title']  = "&nbsp;";
 278
 279                         // Add more entries
 280                         $content['sw']   = $SW;
 281                         $content['mode'] = "mem";
 282
 283                         // Load row template and switch color
 284                         $OUT .= LOAD_TEMPLATE("admin_menu_overview_row", true, $content);
 285                         $SW = 3 - $SW;
 286                 }
 287
 288                 // Free memory
 289                 SQL_FREERESULT($result);
 290
 291                 // @TODO Rewrite this constant
 292                 define('__MENU_ROWS', $OUT);
 293
 294                 // Load main template
 295                 LOAD_TEMPLATE("admin_mmenu_overview");
 296         } else {
 297                 // Menu entries are missing... (???)
 298                 LOAD_TEMPLATE("admin_settings_saved", false, getMessage('ADMIN_NO_MENUS_FOUND'));
 299         }
 300 }
 301
 302 //
 303 ?>