malhuda/developer
1
0
Fork 0
mirror of https://github.com/easy-wi/developer.git synced 2025-02-20 11:23:28 +08:00
Code Issues Actions Packages Projects Releases Wiki Activity

#17: Partials

Browse Source
This commit is contained in:
Ulrich Block 2014-01-10 11:45:30 +01:00
parent b901ef6e68
commit 6560769c27
5 changed files with 576 additions and 462 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

59
web/stuff/page_news_edit.php
View File

@ -72,7 +72,6 @@ if ($ui->w('action',4, 'post') and !token(true)) {
// Default variables // Default variables
$categories = array(); $categories = array();
$keywords = array(); $keywords = array();
$subpages = array();
$categories_used = array(); $categories_used = array();
$keywords_used = array(); $keywords_used = array();
$author = ''; $author = '';
@ -140,14 +139,13 @@ if ($ui->w('action',4, 'post') and !token(true)) {
$categories_used[$lg] = array(); $categories_used[$lg] = array();
} }
$query = $sql->prepare("SELECT `released`,`subpage`,`comments` FROM `page_pages` WHERE `id`=? AND `resellerid`=? LIMIT 1"); $query = $sql->prepare("SELECT `released`,`comments` FROM `page_pages` WHERE `id`=? AND `resellerid`=? LIMIT 1");
$query2 = $sql->prepare("SELECT `id`,`language`,`title`,`text` FROM `page_pages_text` WHERE `pageid`=? AND `resellerid`=? ORDER BY `language`"); $query2 = $sql->prepare("SELECT `id`,`language`,`title`,`text` FROM `page_pages_text` WHERE `pageid`=? AND `resellerid`=? ORDER BY `language`");
$query3 = $sql->prepare("SELECT t.`name`,t.`type` FROM `page_terms_used` u LEFT JOIN `page_terms` t ON u.`term_id`=t.`id` WHERE u.`page_id`=? AND u.`language_id`=? AND u.`resellerid`=? ORDER BY t.`name` DESC"); $query3 = $sql->prepare("SELECT t.`name`,t.`type` FROM `page_terms_used` u LEFT JOIN `page_terms` t ON u.`term_id`=t.`id` WHERE u.`page_id`=? AND u.`language_id`=? AND u.`resellerid`=? ORDER BY t.`name` DESC");
$query->execute(array($id, $resellerLockupID)); $query->execute(array($id, $resellerLockupID));
foreach ($query->fetchAll(PDO::FETCH_ASSOC) as $row) { foreach ($query->fetchAll(PDO::FETCH_ASSOC) as $row) {
$released = $row['released']; $released = $row['released'];
$subpage = $row['subpage'];
$comments = $row['comments']; $comments = $row['comments'];
$query2->execute(array($id, $resellerLockupID)); $query2->execute(array($id, $resellerLockupID));
@ -169,20 +167,19 @@ if ($ui->w('action',4, 'post') and !token(true)) {
// Check if database entry exists and if not display 404 page // Check if database entry exists and if not display 404 page
if ($query->rowCount() > 0) { if ($query->rowCount() > 0) {
$query = $sql->prepare("SELECT p.`id`,t.`title` FROM `page_pages` p LEFT JOIN `page_pages_text` t ON p.`id`=t.`pageid` AND t.`language`=? WHERE p.`resellerid`=? AND p.`type`='news' ORDER BY t.`title`"); $newsTitle = '';
$query->execute(array($user_language, $resellerLockupID));
foreach ($query->fetchAll(PDO::FETCH_ASSOC) as $row) { if (isset($table[$user_language]['title'])) {
if ($row['id'] != $id) { $newsTitle = $table[$user_language]['title'];
$page_title = $row['title']; } else if (isset($table[$default_language]['title'])) {
if ($row['title'] == null or $row['title'] == '') { $newsTitle = $table[$default_language]['title'];
$query5 = $sql->prepare("SELECT `title` FROM `page_pages_text` WHERE `pageid`=? AND `resellerid`=? ORDER BY `language` LIMIT 1"); } else {
$query5->execute(array($row['id'], $resellerLockupID)); foreach ($lang_avail as $lg) {
foreach ($query5->fetchAll(PDO::FETCH_ASSOC) as $row5) { if (!empty($newsTitle) and isset($table[$lg]['title'])) {
$page_title = $row5['title']; $newsTitle = $table[$lg]['title'];
break;
} }
} }
$subpages[$row['id']] = $page_title;
}
} }
$query = $sql->prepare("SELECT `name` FROM `page_terms` WHERE `type`='category' AND `language`=? AND `resellerid`=? GROUP BY `name` ORDER BY `name` DESC"); $query = $sql->prepare("SELECT `name` FROM `page_terms` WHERE `type`='category' AND `language`=? AND `resellerid`=? GROUP BY `name` ORDER BY `name` DESC");
@ -240,8 +237,8 @@ if ($ui->w('action',4, 'post') and !token(true)) {
// Make the inserts or updates define the log entry and get the affected rows from insert // Make the inserts or updates define the log entry and get the affected rows from insert
if ($ui->st('action', 'post') == 'ad') { if ($ui->st('action', 'post') == 'ad') {
$query = $sql->prepare("INSERT INTO `page_pages` (`released`,`subpage`,`authorid`,`authorname`,`date`,`type`,`comments`,`resellerid`) VALUES (?,?,?,?,NOW(),'news',?,?)"); $query = $sql->prepare("INSERT INTO `page_pages` (`released`,`authorid`,`authorname`,`date`,`type`,`comments`,`resellerid`) VALUES (?,?,?,NOW(),'news',?,?)");
$query->execute(array($ui->id('released', 1, 'post'), $ui->id('subpage', 19, 'post'), $admin_id, $author, $ui->active('comments', 'post'), $resellerLockupID)); $query->execute(array($ui->id('released', 1, 'post'), $admin_id, $author, $ui->active('comments', 'post'), $resellerLockupID));
$rowCount = $query->rowCount(); $rowCount = $query->rowCount();
@ -249,8 +246,8 @@ if ($ui->w('action',4, 'post') and !token(true)) {
} }
$query = $sql->prepare("UPDATE `page_pages` SET `released`=?,`comments`=?,`subpage`=? WHERE `id`=? AND `resellerid`=? LIMIT 1"); $query = $sql->prepare("UPDATE `page_pages` SET `released`=?,`comments`=?,`subpage`=`id` WHERE `id`=? AND `resellerid`=? LIMIT 1");
$query->execute(array($ui->id('released', 1, 'post'), $ui->active('comments', 'post'), $id, $id, $resellerLockupID)); $query->execute(array($ui->id('released', 1, 'post'), $ui->active('comments', 'post'), $id, $resellerLockupID));
$rowCount += (int) $query->rowCount(); $rowCount += (int) $query->rowCount();
if (count($posted_languages) > 0) { if (count($posted_languages) > 0) {
@ -320,13 +317,13 @@ if ($ui->w('action',4, 'post') and !token(true)) {
foreach ($keywords as $keyword) { foreach ($keywords as $keyword) {
if (!in_array($keyword, $keyword_exist)) { if (!in_array($keyword, $keyword_exist)) {
$addterms[$row['language']][] = array('lid' => $row['id'], 'keyword' => $keyword, 'termtype' => 'tag'); $addterms[$row['language']][] = array('lid' => $row['id'], 'word' => $keyword, 'termtype' => 'tag');
} }
} }
foreach ($categories as $category) { foreach ($categories as $category) {
if (!in_array($category, $category_exist)) { if (!in_array($category, $category_exist)) {
$addterms[$row['language']][] = array('lid' => $row['id'], 'keyword' => $category, 'termtype' => 'category'); $addterms[$row['language']][] = array('lid' => $row['id'], 'word' => $category, 'termtype' => 'category');
} }
} }
@ -492,10 +489,6 @@ if ($ui->w('action',4, 'post') and !token(true)) {
$removedCount += $query->rowCount(); $removedCount += $query->rowCount();
$query = $sql->prepare("UPDATE `page_pages` SET `subpage`=`id` WHERE `subpage`=? AND `resellerid`=?");
$query->execute(array($id, $resellerLockupID));
$removedCount += $query->rowCount();
$query = $sql->prepare("DELETE FROM `page_pages` WHERE `id`=? AND `resellerid`=? LIMIT 1"); $query = $sql->prepare("DELETE FROM `page_pages` WHERE `id`=? AND `resellerid`=? LIMIT 1");
$query->execute(array($id, $resellerLockupID)); $query->execute(array($id, $resellerLockupID));
$removedCount += $query->rowCount(); $removedCount += $query->rowCount();
@ -537,21 +530,19 @@ if ($ui->w('action',4, 'post') and !token(true)) {
} else if ($o == 'dt') { } else if ($o == 'dt') {
$orderby = 't.`title` DESC'; $orderby = 't.`title` DESC';
} else if ($o == 'aa') { } else if ($o == 'aa') {
$orderby = 'p.`authorname` ASC, p.`id` ASC, p.`subpage` ASC'; $orderby = 'p.`authorname` ASC, p.`id` ASC';
} else if ($o == 'da') { } else if ($o == 'da') {
$orderby = 'p.`authorname` DESC, p.`id` ASC, p.`subpage` ASC'; $orderby = 'p.`authorname` DESC, p.`id` ASC';
} else if ($o == 'ar') { } else if ($o == 'ar') {
$orderby = 'p.`released` ASC, p.`id` ASC, p.`subpage` ASC'; $orderby = 'p.`released` ASC, p.`id` ASC';
} else if ($o == 'dr') { } else if ($o == 'dr') {
$orderby = 'p.`released` DESC, p.`id` ASC, p.`subpage` ASC'; $orderby = 'p.`released` DESC, p.`id` ASC';
} else if ($o == 'ad') { } else if ($o == 'ad') {
$orderby = 'p.`date` ASC'; $orderby = 'p.`date` ASC';
} else if ($o == 'dd') { } else if ($o == 'dd') {
$orderby = 'p.`date` DESC'; $orderby = 'p.`date` DESC';
} else if ($o == 'ad') { } else if ($o == 'ad') {
$orderby = 'p.`subpage`, p.`id` ASC'; $orderby = 'p.`id` ASC';
} else if ($o == 'di') {
$orderby = 'p.`id` DESC';
} else { } else {
$orderby = 'p.`id` ASC'; $orderby = 'p.`id` ASC';
} }
@ -560,7 +551,7 @@ if ($ui->w('action',4, 'post') and !token(true)) {
$query->execute(array($resellerLockupID)); $query->execute(array($resellerLockupID));
$seo = $query->fetchColumn(); $seo = $query->fetchColumn();
$query = $sql->prepare("SELECT COUNT(`id`) AS `amount` FROM `page_pages` WHERE `resellerid`=?"); $query = $sql->prepare("SELECT COUNT(`id`) AS `amount` FROM `page_pages` WHERE `type`='news' AND `resellerid`=?");
$query->execute(array($resellerLockupID)); $query->execute(array($resellerLockupID));
$colcount = $query->fetchColumn(); $colcount = $query->fetchColumn();
@ -584,7 +575,7 @@ if ($ui->w('action',4, 'post') and !token(true)) {
} }
$pages = implode(', ', $pages); $pages = implode(', ', $pages);
$query = $sql->prepare("SELECT p.`id`,p.`date`,p.`released`,p.`subpage`,p.`authorid`,p.`authorname`,t.`title`,t.`shortlink`,t.`language` FROM `page_pages` p LEFT JOIN `page_pages_text` t ON p.`id`=t.`pageid` AND t.`language`=? WHERE p.`type`='news' AND p.`resellerid`=? GROUP BY p.`id` ORDER BY $orderby LIMIT $start,$amount"); $query = $sql->prepare("SELECT p.`id`,p.`date`,p.`released`,p.`authorid`,p.`authorname`,t.`title`,t.`shortlink`,t.`language` FROM `page_pages` p LEFT JOIN `page_pages_text` t ON p.`id`=t.`pageid` AND t.`language`=? WHERE p.`type`='news' AND p.`resellerid`=? GROUP BY p.`id` ORDER BY $orderby LIMIT $start,$amount");
$query2 = $sql->prepare("SELECT `cname`,`name`,`vname` FROM `userdata` WHERE `id`=? AND `resellerid`=? LIMIT 1"); $query2 = $sql->prepare("SELECT `cname`,`name`,`vname` FROM `userdata` WHERE `id`=? AND `resellerid`=? LIMIT 1");
$query3 = $sql->prepare("SELECT `language` FROM `page_pages_text` WHERE `pageid`=? AND `resellerid`=? ORDER BY `language`"); $query3 = $sql->prepare("SELECT `language` FROM `page_pages_text` WHERE `pageid`=? AND `resellerid`=? ORDER BY `language`");
$query4 = $sql->prepare("SELECT `title` FROM `page_pages_text` WHERE `pageid`=? AND `language`=? AND `resellerid`=? ORDER BY `language` LIMIT 1"); $query4 = $sql->prepare("SELECT `title` FROM `page_pages_text` WHERE `pageid`=? AND `language`=? AND `resellerid`=? ORDER BY `language` LIMIT 1");

840
web/stuff/page_pages.php
View File

@ -1,4 +1,5 @@
<?php <?php
/** /**
* File: page_pages.php. * File: page_pages.php.
* Author: Ulrich Block * Author: Ulrich Block
@ -39,466 +40,587 @@ if ((!isset($admin_id) or $main != 1) or (isset($admin_id) and !$pa['cms_pages']
header('Location: admin.php'); header('Location: admin.php');
die; die;
} }
$sprache = getlanguagefile('page',$user_language,$reseller_id);
$sprache = getlanguagefile('page', $user_language, $resellerLockupID);
$loguserid = $admin_id; $loguserid = $admin_id;
$logusername = getusername($admin_id); $logusername = getusername($admin_id);
$logusertype = 'admin'; $logusertype = 'admin';
$logreseller = 0;
$logsubuser = 0; if ($reseller_id == 0) {
$logsubuser = 0; $logreseller = 0;
if ($ui->w('action', 4, 'post') and !token(true)) { $logsubuser = 0;
} else {
$logsubuser = (isset($_SESSION['oldid'])) ? $_SESSION['oldid'] : 0;
$logreseller = 0;
}
// CSFR protection with hidden tokens. If token(true) returns false, we likely have an attack
if ($ui->w('action',4, 'post') and !token(true)) {
$template_file = $spracheResponse->token; $template_file = $spracheResponse->token;
} else if ($ui->st('d', 'get')=="ad") {
if (!$ui->smallletters('action',2, 'post')) { // Add and modify entries. Same validation can be used.
$lang_avail=getlanguages($template_to_use); } else if ($ui->st('d', 'get') == 'ad' or $ui->st('d', 'get') == 'md') {
$query = $sql->prepare("SELECT p.`id`,t.`title` FROM `page_pages` p LEFT JOIN `page_pages_text` t ON p.`id`=t.`pageid` AND t.`language`=? WHERE p.`resellerid`=? AND p.`type`='page' ORDER BY t.`title`");
$query->execute(array($user_language,$reseller_id)); // Error handling. Check if required attributes are set and can be validated
$errors = array();
// At this point all variables are defined that can come from the user
$id = ($ui->id('id', 19, 'post')) ? $ui->id('id', 19, 'post') : $ui->id('id', 19, 'get');
// Default variables
$keywords = array();
$subpages = array();
$keywords_used = array();
$author = '';
$lang_avail = getlanguages($template_to_use);
// Add or mod is opened
if (!$ui->smallletters('action', 2, 'post')) {
/**if (is_file(EASYWIDIR . '/css/' . $template_to_use . '/summernote.css')) {
$htmlExtraInformation['css'][] = '<link href="css/' . $template_to_use . '/summernote.css" rel="stylesheet">' . "\n";
} else {
$htmlExtraInformation['css'][] = '<link href="css/default/summernote.css" rel="stylesheet">' . "\n";
}
if (is_file(EASYWIDIR . '/js/' . $template_to_use . '/summernote.js')) {
$htmlExtraInformation['js'][] = '<link href="js/' . $template_to_use . '/summernote.js" type="text/javascript">' . "\n";
} else {
$htmlExtraInformation['js'][] = '<link href="js/default/summernote.js" type="text/javascript">' . "\n";
}
if ($user_language == 'de') {
if (is_file(EASYWIDIR . '/js/' . $template_to_use . '/summernote-de-DE.js')) {
$htmlExtraInformation['js'][] = '<link href="js/' . $template_to_use . '/summernote-de-DE.js" type="text/javascript">' . "\n";
} else {
$htmlExtraInformation['js'][] = '<link href="js/default/summernote-de-DE.js" type="text/javascript">' . "\n";
}
}
foreach ($lang_avail as $lg) {
$htmlExtraInformation['js'][] = "<script type=\"text/javascript\"> $(document).ready(function() { $('#text[{$lg}]').summernote({height: 300});});</script>" . "\n";
}**/
$subpage = array(); $subpage = array();
foreach ($query->fetchall(PDO::FETCH_ASSOC) as $row) {
$page_title = $row['title']; $query = $sql->prepare("SELECT p.`id`,t.`title` FROM `page_pages` p LEFT JOIN `page_pages_text` t ON p.`id`=t.`pageid` AND t.`language`=? WHERE p.`resellerid`=? AND p.`type`='page' ORDER BY t.`title`");
if ($row['title'] == null or $row['title'] == '') {
$query2 = $sql->prepare("SELECT `title` FROM `page_pages_text` WHERE `pageid`=? AND `resellerid`=? ORDER BY `language` LIMIT 1"); $query2 = $sql->prepare("SELECT `title` FROM `page_pages_text` WHERE `pageid`=? AND `resellerid`=? ORDER BY `language` LIMIT 1");
$query2->execute(array($row['id'],$reseller_id)); $query->execute(array($user_language, $resellerLockupID));
foreach ($query2->fetchall(PDO::FETCH_ASSOC) as $row2) { foreach ($query->fetchall(PDO::FETCH_ASSOC) as $row) {
$page_title = $row2['title'];
} $page_title = $row['title'];
if ($row['title'] == null or $row['title'] == '') {
$query2->execute(array($row['id'], $resellerLockupID));
$page_title = $query2->fetchColumn();
} }
$subpage[$row['id']] = $page_title; $subpage[$row['id']] = $page_title;
} }
$keywords = array();
// Gather data for adding if needed and define add template
if ($ui->st('d', 'get') == 'ad') {
$query = $sql->prepare("SELECT `name` FROM `page_terms` WHERE `type`='tag' AND `language`=? AND `resellerid`=? GROUP BY `name` ORDER BY `count` DESC LIMIT 10");
foreach ($lang_avail as $lg) { foreach ($lang_avail as $lg) {
$keywords[$lg] = array(); $keywords[$lg] = array();
$query3 = $sql->prepare("SELECT `name` FROM `page_terms` WHERE `type`='tag' AND `language`=? AND `resellerid`=? GROUP BY `name` ORDER BY `count` DESC LIMIT 10");
$query3->execute(array($lg,$reseller_id)); $query->execute(array($lg, $resellerLockupID));
foreach ($query3->fetchall(PDO::FETCH_ASSOC) as $row3) { foreach ($query->fetchAll(PDO::FETCH_ASSOC) as $row) {
$keywords[$lg][] = $row3['name']; $keywords[$lg][] = $row['name'];
} }
} }
$template_file = "admin_page_pages_add.tpl";
} else if ($ui->smallletters('action',2, 'post')=="ad" and $ui->id('released','1', 'post') and ($ui->id('subpage',19, 'post') or $ui->id('subpage',19, 'post')==0)) { $template_file = 'admin_page_pages_add.tpl';
if (is_object($ui->st('language', 'post'))) {
foreach ($ui->st('language', 'post') as $key=>$lg) { // Gather data for modding in case we have an ID and define mod template
$posted_languages[$key] = $lg; } else if ($ui->st('d', 'get') == 'md' and $id) {
}
} else {
$posted_languages = array();
}
if (count($posted_languages)>0) {
$addkeywords = array();
$query = $sql->prepare("SELECT `cname`,`name`,`vname` FROM `userdata` WHERE `id`=? AND `resellerid`=? LIMIT 1");
$query->execute(array($admin_id,$reseller_id));
foreach ($query->fetchall(PDO::FETCH_ASSOC) as $row) {
if (($row['name'] == '' or $row['name'] == null) and ($row['vname'] == '' or $row['vname'] == null)) {
$author = $row['cname'];
} else {
$author = $row['vname'] . ' ' . $row['name'];
}
}
$query = $sql->prepare("INSERT INTO `page_pages` (`released`,`subpage`,`authorid`,`authorname`,`date`,`type`,`naviDisplay`,`resellerid`) VALUES (?,?,?,?,NOW(),'page',?,?)");
$query->execute(array($ui->id('released','1', 'post'),$ui->id('subpage',19, 'post'),$admin_id,$author,$ui->active('naviDisplay', 'post'),$reseller_id));
$query = $sql->prepare("SELECT `id` FROM `page_pages` WHERE `resellerid`=? ORDER BY `id` DESC LIMIT 1");
$query->execute(array($reseller_id));
$pageid = $query->fetchColumn();
if (!$ui->id('subpage',19, 'post')) {
$query = $sql->prepare("UPDATE `page_pages` SET `subpage`=`id` WHERE `id`=? AND `resellerid`=? LIMIT 1");
$query->execute(array($pageid,$reseller_id));
}
$query2 = $sql->prepare("INSERT INTO `page_pages_text` (`pageid`,`language`,`title`,`text`,`resellerid`) VALUES (?,?,?,?,?)");
$query3 = $sql->prepare("SELECT `id` FROM `page_pages_text` WHERE `pageid`=? AND `language`=? AND `resellerid`=? LIMIT 1");
foreach ($posted_languages as $lg) {
$query2->execute(array($pageid,$lg,$ui->htmlcode('title', 'post',$lg),$ui->escaped('text', 'post',$lg),$reseller_id));
$query3->execute(array($pageid,$lg,$reseller_id));
foreach ($query3->fetchall(PDO::FETCH_ASSOC) as $row3) {
$newpageid = $row3['id'];
}
foreach (preg_split('/\,/',$ui->escaped('keywords', 'post',$lg),-1,PREG_SPLIT_NO_EMPTY) as $keyword) {
$addkeywords[] = array('lid' => $newpageid,'keyword' => $keyword);
}
}
$query = $sql->prepare("SELECT `id` FROM `page_terms` WHERE `type`='tag' AND `name`=? AND `resellerid`=? LIMIT 1");
$query2 = $sql->prepare("UPDATE `page_terms` SET `count`=`count`+1 WHERE `name`=? AND `resellerid`=? LIMIT 1");
$query3 = $sql->prepare("INSERT INTO `page_terms` (`name`,`search_name`,`type`,`count`,`resellerid`) VALUES (?,?,'tag','1',?)");
$query4 = $sql->prepare("SELECT `id` FROM `page_terms` WHERE `type`='tag' AND `name`=? AND `resellerid`=? LIMIT 1");
$query5 = $sql->prepare("INSERT INTO `page_terms_used` (`page_id`,`term_id`,`language_id`,`resellerid`) VALUES (?,?,?,?)");
foreach ($addkeywords as $keyword) {
unset($term_id);
$query->execute(array($keyword['keyword'],$reseller_id));
foreach ($query->fetchall(PDO::FETCH_ASSOC) as $row) {
$term_id = $row['id'];
}
if (isset($term_id)) {
$query2->execute(array($keyword['keyword'],$reseller_id));
} else {
$query3->execute(array($keyword['keyword'],strtolower(szrp($keyword['keyword'])),$reseller_id));
$query4->execute(array($keyword['keyword'],$reseller_id));
foreach ($query4->fetchall(PDO::FETCH_ASSOC) as $row) {
$term_id = $row['id'];
}
}
$query5->execute(array($pageid,$term_id,$keyword['lid'],$reseller_id));
}
$template_file = $spracheResponse->table_add;
} else {
$template_file = "Error: No language selected";
}
} else {
$template_file = "Unknown Error";
}
} else if ($ui->st('d', 'get') == 'dl' and $ui->id('id',19, 'get')) {
$id = $ui->id('id',19, 'get');
if (!isset($action)) {
$query = $sql->prepare("SELECT p.`id`,p.`released`,t.`title` FROM `page_pages` p LEFT JOIN `page_pages_text` t ON p.`id`=t.`pageid` AND t.`language`=? WHERE p.`id`=? AND p.`resellerid`=? LIMIT 1");
$query->execute(array($user_language,$id,$reseller_id));
foreach ($query->fetchall(PDO::FETCH_ASSOC) as $row) {
$page_title = $row['title'];
if ($row['released'] == 1) {
$page_active = $gsprache->yes;
} else {
$page_active = $gsprache->no;
}
$query = $sql->prepare("SELECT `language` FROM `page_pages_text` WHERE `pageid`=? AND `resellerid`=? ORDER BY `language`");
$query->execute(array($id,$reseller_id));
foreach ($query->fetchall(PDO::FETCH_ASSOC) as $row) {
$p_languages[] = $row['language'];
}
if (($page_title==null or $page_title == '') and isset($p_languages)) {
$query = $sql->prepare("SELECT `title` FROM `page_pages_text` WHERE `pageid`=? AND `language`=? AND `resellerid`=? ORDER BY `language` LIMIT 1");
$query->execute(array($id,$p_languages[0],$reseller_id));
foreach ($query->fetchall(PDO::FETCH_ASSOC) as $row) {
$page_title = $row['title'];
}
} else if ($page_title==null or $page_title == '') {
$page_title = '';
$p_languages = array();
}
}
if (isset($page_active)) {
$template_file = "admin_page_pages_dl.tpl";
} else {
$template_file = "Error: No ID";
}
} else if (isset($action) and $action == 'dl') {
$query = $sql->prepare("SELECT t.`name` FROM `page_terms_used` u LEFT JOIN `page_terms` t ON u.`term_id`=t.`id` WHERE u.`page_id`=? AND u.`resellerid`=?");
$query2 = $sql->prepare("UPDATE `page_terms` SET `count`=`count`-1 WHERE `name`=? AND `resellerid`=? LIMIT 1");
$query->execute(array($id,$reseller_id));
foreach ($query->fetchall(PDO::FETCH_ASSOC) as $row) {
$query2->execute(array($row['name'],$reseller_id));
}
$query = $sql->prepare("UPDATE `page_pages` SET `subpage`=`id` WHERE `subpage`=? AND `resellerid`=?");
$query->execute(array($id,$reseller_id));
$query = $sql->prepare("DELETE FROM `page_pages` WHERE `id`=? AND `resellerid`=? LIMIT 1");
$query->execute(array($id,$reseller_id));
$query = $sql->prepare("DELETE FROM `page_pages_text` WHERE `pageid`=? AND `resellerid`=?");
$query->execute(array($id,$reseller_id));
$query = $sql->prepare("DELETE FROM `page_terms_used` WHERE `page_id`=? AND `resellerid`=?");
$query->execute(array($id,$reseller_id));
$template_file = $spracheResponse->table_del;
} else {
$template_file = "Error: No ID";
}
} else if ($ui->st('d', 'get')=="md" and $ui->id('id',19, 'get')) {
$id = $ui->id('id',19, 'get');
if (!isset($action)) {
$lang_avail=getlanguages($template_to_use);
$table = array(); $table = array();
foreach ($lang_avail as $lg) { foreach ($lang_avail as $lg) {
$table[$lg] = array('title' => false,'keywords' => false,'text' => false); $table[$lg] = array('title' => false, 'keywords' => false, 'text' => false);
$keywords_used[$lg] = array(); $keywords_used[$lg] = array();
} }
$query = $sql->prepare("SELECT `released`,`subpage`,`naviDisplay` FROM `page_pages` WHERE `id`=? AND `resellerid`=? LIMIT 1");
$query = $sql->prepare("SELECT `released`,`subpage`,`comments` FROM `page_pages` WHERE `id`=? AND `resellerid`=? LIMIT 1");
$query2 = $sql->prepare("SELECT `id`,`language`,`title`,`text` FROM `page_pages_text` WHERE `pageid`=? AND `resellerid`=? ORDER BY `language`"); $query2 = $sql->prepare("SELECT `id`,`language`,`title`,`text` FROM `page_pages_text` WHERE `pageid`=? AND `resellerid`=? ORDER BY `language`");
$query3 = $sql->prepare("SELECT t.`name` FROM `page_terms_used` u LEFT JOIN `page_terms` t ON u.`term_id`=t.`id` WHERE t.`type`='tag' AND u.`page_id`=? AND u.`language_id`=? AND u.`resellerid`=? ORDER BY t.`name` DESC"); $query3 = $sql->prepare("SELECT t.`name`,t.`type` FROM `page_terms_used` u LEFT JOIN `page_terms` t ON u.`term_id`=t.`id` WHERE t.`type`='tag' AND u.`page_id`=? AND u.`language_id`=? AND u.`resellerid`=? ORDER BY t.`name` DESC");
$query->execute(array($id,$reseller_id)); $query->execute(array($id, $resellerLockupID));
foreach ($query->fetchall(PDO::FETCH_ASSOC) as $row) { foreach ($query->fetchAll(PDO::FETCH_ASSOC) as $row) {
$released = $row['released']; $released = $row['released'];
$subpage = $row['subpage']; $subpage = $row['subpage'];
$naviDisplay = $row['naviDisplay']; $comments = $row['comments'];
$query2->execute(array($id,$reseller_id));
foreach ($query2->fetchall(PDO::FETCH_ASSOC) as $row2) { $query2->execute(array($id, $resellerLockupID));
$keywords = array(); foreach ($query2->fetchAll(PDO::FETCH_ASSOC) as $row2) {
$query3->execute(array($id, $row2['id'],$reseller_id));
foreach ($query3->fetchall(PDO::FETCH_ASSOC) as $row3) { $query3->execute(array($id, $row2['id'], $resellerLockupID));
foreach ($query3->fetchAll(PDO::FETCH_ASSOC) as $row3) {
$keywords[] = $row3['name']; $keywords[] = $row3['name'];
$keywords_used[$row2['language']][] = $row3['name']; $keywords_used[$row2['language']][] = $row3['name'];
} }
$table[$row2['language']] = array('title' => $row2['title'], 'keywords' => implode(', ',$keywords),'text' => $row2['text']);
$table[$row2['language']] = array('title' => $row2['title'], 'keywords' => implode(', ', $keywords),'text' => $row2['text']);
} }
} }
$subpages = array();
$pageTitle = '';
if (isset($table[$user_language]['title'])) {
$pageTitle = $table[$user_language]['title'];
} else if (isset($table[$default_language]['title'])) {
$pageTitle = $table[$default_language]['title'];
} else {
foreach ($lang_avail as $lg) {
if (!empty($pageTitle) and isset($table[$lg]['title'])) {
$pageTitle = $table[$lg]['title'];
break;
}
}
}
// Check if database entry exists and if not display 404 page
if ($query->rowCount() > 0) {
$query = $sql->prepare("SELECT p.`id`,t.`title` FROM `page_pages` p LEFT JOIN `page_pages_text` t ON p.`id`=t.`pageid` AND t.`language`=? WHERE p.`resellerid`=? AND p.`type`='page' ORDER BY t.`title`"); $query = $sql->prepare("SELECT p.`id`,t.`title` FROM `page_pages` p LEFT JOIN `page_pages_text` t ON p.`id`=t.`pageid` AND t.`language`=? WHERE p.`resellerid`=? AND p.`type`='page' ORDER BY t.`title`");
$query2 = $sql->prepare("SELECT `title` FROM `page_pages_text` WHERE `pageid`=? AND `resellerid`=? ORDER BY `language` LIMIT 1"); $query->execute(array($user_language, $resellerLockupID));
$query->execute(array($user_language,$reseller_id)); foreach ($query->fetchAll(PDO::FETCH_ASSOC) as $row) {
foreach ($query->fetchall(PDO::FETCH_ASSOC) as $row) {
if ($row['id'] != $id) { if ($row['id'] != $id) {
$page_title = $row['title']; $page_title = $row['title'];
if ($row['title'] == null or $row['title'] == '') { if ($row['title'] == null or $row['title'] == '') {
$query2->execute(array($row['id'],$reseller_id)); $query5 = $sql->prepare("SELECT `title` FROM `page_pages_text` WHERE `pageid`=? AND `resellerid`=? ORDER BY `language` LIMIT 1");
foreach ($query2->fetchall(PDO::FETCH_ASSOC) as $row2) { $query5->execute(array($row['id'], $resellerLockupID));
$page_title = $row2['title']; foreach ($query5->fetchAll(PDO::FETCH_ASSOC) as $row5) {
$page_title = $row5['title'];
} }
} }
$subpages[$row['id']] = $page_title; $subpages[$row['id']] = $page_title;
} }
} }
$keywords = array();
$query = $sql->prepare("SELECT `name` FROM `page_terms` WHERE `type`='tag' AND `language`=? AND `resellerid`=? GROUP BY `name` ORDER BY `count` DESC LIMIT 10"); $query = $sql->prepare("SELECT `name` FROM `page_terms` WHERE `type`='tag' AND `language`=? AND `resellerid`=? GROUP BY `name` ORDER BY `count` DESC LIMIT 10");
foreach ($lang_avail as $lg) { foreach ($lang_avail as $lg) {
$keywords[$lg] = array(); $keywords[$lg] = array();
$query->execute(array($lg,$reseller_id));
foreach ($query->fetchall(PDO::FETCH_ASSOC) as $row) { $query->execute(array($lg, $resellerLockupID));
if (!in_array($row['name'],$keywords_used[$lg])) { foreach ($query->fetchAll(PDO::FETCH_ASSOC) as $row) {
if (!isset($keywords_used[$lg]) or !in_array($row['name'], $keywords_used[$lg])) {
$keywords[$lg][] = $row['name']; $keywords[$lg][] = $row['name'];
} }
} }
} }
$template_file = "admin_page_pages_md.tpl";
} else if (isset($action) and $action == 'md' and ($ui->id('subpage',19, 'post') or $ui->id('subpage','30', 'post')==0)) { $template_file = 'admin_page_pages_md.tpl';
if (is_object($ui->st('language', 'post'))) {
foreach ($ui->st('language', 'post') as $key=>$lg) {
$posted_languages[$key] = $lg;
}
} else { } else {
$template_file = 'admin_404.tpl';
}
// Show 404 if GET parameters did not add up or no ID was given with mod
} else {
$template_file = 'admin_404.tpl';
}
// Form is submitted
} else if ($ui->st('action', 'post') == 'md' or $ui->st('action', 'post') == 'ad') {
$posted_languages = array(); $posted_languages = array();
} $addterms = array();
$countreduce = array(); $countreduce = array();
if (count($posted_languages)>0) { $rowCount = 0;
$addkeywords = array();
if ($ui->id('subpage','30', 'post')==0) { if (is_object($ui->st('language', 'post'))) {
$subpage = $id; foreach ($ui->st('language', 'post') as $k => $v) {
} else { $posted_languages[$k] = $v;
$subpage = $ui->id('subpage','30', 'post');
} }
$query = $sql->prepare("UPDATE `page_pages` SET `released`=?,`subpage`=?,`naviDisplay`=? WHERE `id`=? AND `resellerid`=? LIMIT 1"); }
$query->execute(array($ui->id('released','1', 'post'),$subpage,$ui->active('naviDisplay', 'post'),$id,$reseller_id));
$query = $sql->prepare("SELECT `id`,`language` FROM `page_pages_text` WHERE `pageid`=? AND `resellerid`=?"); $subpageID = ($ui->id('subpage', 30, 'post') == 0) ? $id : $ui->id('subpage', 30, 'post');
$query->execute(array($id,$reseller_id));
// Submitted values are OK
if (count($errors) == 0) {
$query = $sql->prepare("SELECT `cname`,`name`,`vname` FROM `userdata` WHERE `id`=? AND `resellerid`=? LIMIT 1");
$query->execute(array($admin_id, $resellerLockupID));
foreach ($query->fetchAll(PDO::FETCH_ASSOC) as $row) {
$author = (($row['name'] == '' or $row['name'] == null) and ($row['vname'] == '' or $row['vname'] == null)) ? $row['cname'] : $row['vname'] . ' ' . $row['name'];
}
// Make the inserts or updates define the log entry and get the affected rows from insert
if ($ui->st('action', 'post') == 'ad') {
$query = $sql->prepare("INSERT INTO `page_pages` (`released`,`authorid`,`authorname`,`date`,`type`,`comments`,`resellerid`) VALUES (?,?,?,NOW(),'page',?,?)");
$query->execute(array($ui->id('released', 1, 'post'), $admin_id, $author, $ui->active('comments', 'post'), $resellerLockupID));
$rowCount = $query->rowCount();
$id = $sql->lastInsertId();
}
$query = $sql->prepare("UPDATE `page_pages` SET `released`=?,`comments`=?,`subpage`=? WHERE `id`=? AND `resellerid`=? LIMIT 1");
$query->execute(array($ui->id('released', 1, 'post'), $ui->active('comments', 'post'), $subpageID, $id, $resellerLockupID));
if (count($posted_languages) > 0) {
$addterms = array();
$lang_exist = array(); $lang_exist = array();
foreach ($query->fetchall(PDO::FETCH_ASSOC) as $row) {
$lang_exist[] = $row['language']; $query = $sql->prepare("SELECT `id`,`language` FROM `page_pages_text` WHERE `pageid`=? AND `resellerid`=?");
$query2 = $sql->prepare("UPDATE `page_pages_text` SET `title`=?,`text`=? WHERE `id`=? AND `resellerid`=? LIMIT 1");
$query3 = $sql->prepare("SELECT u.`term_id`,t.`name` FROM `page_terms_used` u LEFT JOIN `page_terms` t ON u.`term_id`=t.`id` WHERE t.`type`='tag' AND u.`page_id`=? AND u.`language_id`=? AND u.`resellerid`=?");
$query5 = $sql->prepare("DELETE FROM `page_terms_used` WHERE `term_id`=? AND `page_id`=? AND `language_id`=? AND `resellerid`=? LIMIT 1");
$query6 = $sql->prepare("DELETE FROM `page_pages_text` WHERE `id`=? AND `resellerid`=? LIMIT 1");
$query7 = $sql->prepare("DELETE FROM `page_terms_used` WHERE `language_id`=? AND `resellerid`=? LIMIT 1");
$query->execute(array($id, $resellerLockupID));
foreach ($query->fetchAll(PDO::FETCH_ASSOC) as $row) {
$keywords = array(); $keywords = array();
foreach (preg_split('/\,/',preg_replace("/\,\s+/",',',preg_replace("/\s+/"," ",$ui->escaped('keywords', 'post', $row['language']))),-1,PREG_SPLIT_NO_EMPTY) as $keyword) {
$lang_exist[] = $row['language'];
foreach (preg_split('/\,/',preg_replace("/\,\s+/", ',',preg_replace("/\s+/"," ", $ui->escaped('keywords', 'post', $row['language']))), -1, PREG_SPLIT_NO_EMPTY) as $keyword) {
$keywords[] = $keyword; $keywords[] = $keyword;
} }
if (in_array($row['language'],$posted_languages)) {
$query2 = $sql->prepare("UPDATE `page_pages_text` SET `title`=?,`text`=? WHERE `id`=? AND `resellerid`=? LIMIT 1"); if (in_array($row['language'], $posted_languages)) {
$query2->execute(array($ui->htmlcode('title', 'post', $row['language']),$ui->escaped('text', 'post', $row['language']), $row['id'],$reseller_id));
$keyword_exist = array(); $keyword_exist = array();
$query2 = $sql->prepare("SELECT u.`term_id`,t.`name` FROM `page_terms_used` u LEFT JOIN `page_terms` t ON u.`term_id`=t.`id` WHERE u.`page_id`=? AND u.`language_id`=? AND u.`resellerid`=?");
$query2->execute(array($id, $row['id'],$reseller_id)); $query2->execute(array($ui->htmlcode('title', 'post', $row['language']), $ui->escaped('text', 'post', $row['language']), $row['id'], $resellerLockupID));
foreach ($query2->fetchall(PDO::FETCH_ASSOC) as $row2) { $rowCount += $query2->rowCount();
$keyword_exist[] = $row2['name'];
if (!in_array($row2['name'],$keywords)) { $query3->execute(array($id, $row['id'], $resellerLockupID));
$query2 = $sql->prepare("DELETE FROM `page_terms_used` WHERE `term_id`=? AND `page_id`=? AND `language_id`=? AND `resellerid`=? LIMIT 1"); foreach ($query3->fetchAll(PDO::FETCH_ASSOC) as $row3) {
$query2->execute(array($row2['term_id'],$id, $row['id'],$reseller_id)); $keyword_exist[] = $row3['name'];
$countreduce[] = $row2['name'];
if (!in_array($row3['name'], $keywords)) {
$countreduce[] = $row3['name'];
$query5->execute(array($row3['term_id'], $id, $row['id'], $resellerLockupID));
$rowCount += $query5->rowCount();
} }
} }
foreach ($keywords as $keyword) { foreach ($keywords as $keyword) {
if (!in_array($keyword,$keyword_exist)) { if (!in_array($keyword, $keyword_exist)) {
$addkeywords[] = array('lid' => $row['id'], 'keyword' => $keyword); $addterms[$row['language']][] = array('lid' => $row['id'], 'word' => $keyword);
} }
} }
} else { } else {
$query2 = $sql->prepare("DELETE FROM `page_pages_text` WHERE `id`=? AND `resellerid`=? LIMIT 1"); $query6->execute(array($row['id'], $resellerLockupID));
$query2->execute(array($row['id'],$reseller_id)); $rowCount += $query6->rowCount();
$query2 = $sql->prepare("DELETE FROM `page_terms_used` WHERE `language_id`=? AND `resellerid`=? LIMIT 1");
$query2->execute(array($row['id'],$reseller_id)); $query7->execute(array($row['id'], $resellerLockupID));
$rowCount += $query7->rowCount();
$countreduce = $keywords; $countreduce = $keywords;
} }
} }
foreach ($posted_languages as $lg) {
if (!in_array($lg,$lang_exist)) {
$query = $sql->prepare("INSERT INTO `page_pages_text` (`pageid`,`language`,`title`,`text`,`resellerid`) VALUES (?,?,?,?,?)"); $query = $sql->prepare("INSERT INTO `page_pages_text` (`pageid`,`language`,`title`,`text`,`resellerid`) VALUES (?,?,?,?,?)");
$query->execute(array($id,$lg,$ui->htmlcode('title', 'post',$lg),$ui->escaped('text', 'post',$lg),$reseller_id)); foreach ($posted_languages as $lg) {
$query = $sql->prepare("SELECT `id` FROM `page_pages_text` WHERE `pageid`=? AND `language`=? AND `resellerid`=? LIMIT 1"); if (!in_array($lg, $lang_exist)) {
$query->execute(array($id,$lg,$reseller_id));
foreach ($query->fetchall(PDO::FETCH_ASSOC) as $row) { $query->execute(array($id, $lg, $ui->htmlcode('title', 'post', $lg), $ui->escaped('text', 'post', $lg), $resellerLockupID));
$newpageid = $row['id']; $rowCount += (int) $query->rowCount();
}
foreach (preg_split('/\,/',$ui->escaped('keywords', 'post',$lg),-1,PREG_SPLIT_NO_EMPTY) as $keyword) { $newpageid = $sql->lastInsertId();
$addkeywords[] = array('lid' => $newpageid,'keyword' => $keyword);
foreach (preg_split('/\,/', $ui->escaped('keywords', 'post', $lg), -1, PREG_SPLIT_NO_EMPTY) as $keyword) {
$addterms[$lg][] = array('lid' => $newpageid, 'word' => $keyword);
} }
} }
} }
foreach ($addkeywords as $keyword) {
unset($term_id); $query = $sql->prepare("SELECT `id` FROM `page_terms` WHERE `language`=? AND `type`='tag' AND `name`=? AND `resellerid`=? LIMIT 1");
$query = $sql->prepare("SELECT `id` FROM `page_terms` WHERE `type`='tag' AND `name`=? AND `resellerid`=? LIMIT 1"); $query2 = $sql->prepare("UPDATE `page_terms` SET `count`=`count`+1 WHERE `id`=? AND `resellerid`=? LIMIT 1");
$query->execute(array($keyword['keyword'],$reseller_id)); $query3 = $sql->prepare("INSERT INTO `page_terms` (`language`,`name`,`search_name`,`type`,`count`,`resellerid`) VALUES (?,?,?,'tag', 1,?)");
foreach ($query->fetchall(PDO::FETCH_ASSOC) as $row) { $query4 = $sql->prepare("INSERT INTO `page_terms_used` (`page_id`,`term_id`,`language_id`,`resellerid`) VALUES (?,?,?,?)");
$term_id = $row['id']; $rowCount += (int) $query->rowCount();
} foreach ($addterms as $lg => $terms) {
if (isset($term_id)) {
$query = $sql->prepare("UPDATE `page_terms` SET `count`=`count`+1 WHERE `name`=? AND `resellerid`=? LIMIT 1"); foreach ($terms as $term) {
$query->execute(array($keyword['keyword'],$reseller_id));
if (isset($term['word'])) {
$query->execute(array($lg, $term['word'], $resellerLockupID));
$term_id = $query->fetchColumn();
if (isid($term_id, 19)) {
$query2->execute(array($term_id, $resellerLockupID));
$rowCount += $query2->rowCount();
} else { } else {
$query = $sql->prepare("INSERT INTO `page_terms` (`name`,`search_name`,`type`,`count`,`resellerid`) VALUES (?,?,'tag','1',?)"); $query3->execute(array($lg, $term['word'], strtolower(szrp($term['word'])), $resellerLockupID));
$query->execute(array($keyword['keyword'],strtolower(szrp($keyword['keyword'])),$reseller_id)); $rowCount += $query3->rowCount();
$query = $sql->prepare("SELECT `id` FROM `page_terms` WHERE `type`='tag' AND `name`=? AND `resellerid`=? LIMIT 1");
$query->execute(array($keyword['keyword'],$reseller_id)); $term_id = $sql->lastInsertId();
foreach ($query->fetchall(PDO::FETCH_ASSOC) as $row) { }
$term_id = $row['id'];
if (isid($term_id, 19)) {
$query4->execute(array($id, $term_id, $term['lid'], $resellerLockupID));
$rowCount += (int) $query4->rowCount();
} }
} }
$inserttermsused = $sql->prepare("INSERT INTO `page_terms_used` (`page_id`,`term_id`,`language_id`,`resellerid`) VALUES (?,?,?,?)");
$inserttermsused->execute(array($id,$term_id,$keyword['lid'],$reseller_id));
} }
}
} else { } else {
$query = $sql->prepare("SELECT t.`name` FROM `page_terms_used` u LEFT JOIN `page_terms` t ON u.`term_id`=t.`id` WHERE u.`page_id`=? AND u.`resellerid`=?"); $query = $sql->prepare("SELECT t.`name` FROM `page_terms_used` u LEFT JOIN `page_terms` t ON u.`term_id`=t.`id` WHERE u.`page_id`=? AND u.`resellerid`=?");
$query->execute(array($id,$reseller_id)); $query->execute(array($id, $resellerLockupID));
foreach ($query->fetchall(PDO::FETCH_ASSOC) as $row) { foreach ($query->fetchAll(PDO::FETCH_ASSOC) as $row) {
$countreduce[] = $row['name']; $countreduce[] = $row['name'];
} }
$query = $sql->prepare("DELETE FROM `page_page` WHERE `id`=? AND `resellerid`=? LIMIT 1"); $query = $sql->prepare("DELETE FROM `page_page` WHERE `id`=? AND `resellerid`=? LIMIT 1");
$query->execute(array($id,$reseller_id)); $query->execute(array($id, $resellerLockupID));
$rowCount += (int) $query->rowCount();
$query = $sql->prepare("DELETE FROM `page_pages_text` WHERE `pageid`=? AND `resellerid`=?"); $query = $sql->prepare("DELETE FROM `page_pages_text` WHERE `pageid`=? AND `resellerid`=?");
$query->execute(array($id,$reseller_id)); $query->execute(array($id, $resellerLockupID));
$rowCount += (int) $query->rowCount();
$query = $sql->prepare("DELETE FROM `page_terms_used` WHERE `page_id`=? AND `resellerid`=?"); $query = $sql->prepare("DELETE FROM `page_terms_used` WHERE `page_id`=? AND `resellerid`=?");
$query->execute(array($id,$reseller_id)); $query->execute(array($id, $resellerLockupID));
$rowCount += (int) $query->rowCount();
} }
$query = $sql->prepare("UPDATE `page_terms` SET `count`=`count`-1 WHERE `name`=? AND `resellerid`=? LIMIT 1");
foreach ($countreduce as $keyword) { foreach ($countreduce as $keyword) {
$updateterms = $sql->prepare("UPDATE `page_terms` SET `count`=`count`-1 WHERE `name`=? AND `resellerid`=? LIMIT 1"); $query->execute(array($keyword, $resellerLockupID));
$updateterms->execute(array($keyword,$reseller_id)); $rowCount += (int) $query->rowCount();
} }
// Check if a row was affected during insert or update
if ($rowCount > 0) {
$insertlog->execute();
$template_file = $spracheResponse->table_add; $template_file = $spracheResponse->table_add;
}
} else { // No update or insert failed
if ($ui->smallletters('pageorder',4, 'post') == 'true') {
foreach ($ui->id('pageid','30', 'post') as $pageid => $pageorder) {
$pupdate = $sql->prepare("UPDATE `page_pages` SET `sort`=? WHERE `id`=? LIMIT 1");
$pupdate->execute(array($pageorder,$pageid));
}
}
$settings = $sql->prepare("SELECT `seo` FROM `page_settings` WHERE `resellerid`=? LIMIT 1");
$settings->execute(array($reseller_id));
foreach ($settings->fetchall(PDO::FETCH_ASSOC) as $row) {
$seo = $row['seo'];
}
$o = $ui->st('o', 'get');
if ($ui->st('o', 'get') == 'at') {
$orderby = 't.`title` ASC';
} else if ($ui->st('o', 'get') == 'dt') {
$orderby = 't.`title` DESC';
} else if ($ui->st('o', 'get') == 'aa') {
$orderby = 'p.`authorname` ASC, p.`id` ASC, p.`subpage` ASC';
} else if ($ui->st('o', 'get') == 'da') {
$orderby = 'p.`authorname` DESC, p.`id` ASC, p.`subpage` ASC';
} else if ($ui->st('o', 'get') == 'ar') {
$orderby = 'p.`released` ASC, p.`id` ASC, p.`subpage` ASC';
} else if ($ui->st('o', 'get') == 'dr') {
$orderby = 'p.`released` DESC, p.`id` ASC, p.`subpage` ASC';
} else if ($ui->st('o', 'get') == 'as') {
$orderby = 'p.`sort` ASC';
} else if ($ui->st('o', 'get') == 'ds') {
$orderby = 'p.`date` DESC';
} else if ($ui->st('o', 'get') == 'ad') {
$orderby = 'p.`date` ASC';
} else if ($ui->st('o', 'get') == 'dd') {
$orderby = 'p.`date` DESC';
} else if ($ui->st('o', 'get') == 'ad') {
$orderby = 'p.`subpage`, p.`id` ASC';
} else if ($ui->st('o', 'get') == 'di') {
$orderby = 'p.`id` DESC';
} else { } else {
$orderby = 'p.`id` ASC'; $template_file = $spracheResponse->error_table;
$o = 'ai';
} }
$query = $sql->prepare("SELECT p.`id`,p.`date`,p.`released`,p.`subpage`,p.`authorid`,p.`authorname`,p.`sort`,t.`title`,t.`shortlink`,t.`language` FROM `page_pages` p LEFT JOIN `page_pages_text` t ON p.`id`=t.`pageid` AND t.`language`=? WHERE p.`type`='page' AND p.`resellerid`=? GROUP BY p.`id` ORDER BY $orderby LIMIT $start,$amount");
$query->execute(array($user_language,$reseller_id)); // An error occurred during validation unset the redirect information and display the form again
$table = array();
foreach ($query->fetchall(PDO::FETCH_ASSOC) as $row) {
if ($row['released'] == 1) {
$released = $gsprache->yes;
} else { } else {
$released = $gsprache->no; unset($header, $text);
} $template_file = ($ui->st('d', 'get') == 'ad') ? 'admin_roots_add.tpl' : 'admin_roots_md.tpl';
$author = $row['authorname'];
$query2 = $sql->prepare("SELECT `cname`,`name`,`vname` FROM `userdata` WHERE `id`=? AND `resellerid`=? LIMIT 1");
$query2->execute(array($row['authorid'],$reseller_id));
foreach ($query2->fetchall(PDO::FETCH_ASSOC) as $row2) {
if (($row2['name'] == '' or $row2['name'] == null) and ($row2['vname'] == '' or $row2['vname'] == null)) {
$author = $row2['cname'];
} else {
$author = $row2['vname'] . ' ' . $row2['name'];
} }
} }
unset($p_languages);
$query3 = $sql->prepare("SELECT `language` FROM `page_pages_text` WHERE `pageid`=? AND `resellerid`=? ORDER BY `language`"); // Remove entries in case we have an ID given with the GET request
$query3->execute(array($row['id'],$reseller_id)); } else if ($ui->st('d', 'get') == 'dl' and ($ui->id('id', 10, 'get') or $ui->id('id', 19, 'post'))) {
foreach ($query3->fetchall(PDO::FETCH_ASSOC) as $row3) {
$p_languages[] = $row3['language']; // Define the ID variable which will be used at the form and SQLs
$id = ($ui->id('id', 19, 'post')) ? $ui->id('id', 19, 'post') : $ui->id('id', 19, 'get');
// Nothing submitted yet, display the delete form
if (!$ui->st('action', 'post')) {
$query = $sql->prepare("SELECT p.`id`,p.`released`,t.`title` FROM `page_pages` p LEFT JOIN `page_pages_text` t ON p.`id`=t.`pageid` AND t.`language`=? WHERE p.`id`=? AND p.`resellerid`=? LIMIT 1");
$query->execute(array($user_language, $id, $resellerLockupID));
foreach ($query->fetchAll(PDO::FETCH_ASSOC) as $row) {
$page_active = ($row['released'] == 1) ? $gsprache->yes : $gsprache->no;
$query2 = $sql->prepare("SELECT `language` FROM `page_pages_text` WHERE `pageid`=? AND `resellerid`=? ORDER BY `language`");
$query2->execute(array($id, $resellerLockupID));
foreach ($query2->fetchAll(PDO::FETCH_ASSOC) as $row2) {
$p_languages[] = $row2['language'];
} }
$page_title = $row['title']; $page_title = $row['title'];
if (($row['title'] == null or $row['title'] == '') and isset($p_languages[0])) {
$query4 = $sql->prepare("SELECT `title` FROM `page_pages_text` WHERE `pageid`=? AND `language`=? AND `resellerid`=? ORDER BY `language` LIMIT 1"); if (($row['title'] == null or $row['title'] == '') and isset($p_languages)) {
$query4->execute(array($row['id'],$p_languages[0],$reseller_id)); $query3 = $sql->prepare("SELECT `title` FROM `page_pages_text` WHERE `pageid`=? AND `language`=? AND `resellerid`=? ORDER BY `language` LIMIT 1");
foreach ($query4->fetchall(PDO::FETCH_ASSOC) as $row4) { $query3->execute(array($row['id'], $p_languages[0], $resellerLockupID));
$page_title = $row4['title']; foreach ($query3->fetchAll(PDO::FETCH_ASSOC) as $row3) {
$page_title = $row3['title'];
} }
} else if ($row['title'] == null or $row['title'] == '') { } else if ($row['title'] == null or $row['title'] == '') {
$page_title = ''; $page_title = '';
$p_languages = array(); $p_languages = array();
} }
if ($row['subpage'] != $row['id']) {
$page_title=' - '.$page_title;
} }
if ($seo== 'N') {
$link = $page_url.'/index.php?site=page&amp;id='.$row['id']; // Check if we could find an entry and if not display 404 page
$template_file = ($query->rowCount() > 0) ? 'admin_page_pages_dl.tpl' : 'admin_404.tpl';
// User submitted remove the entry
} else if ($ui->st('action', 'post') == 'dl') {
$removedCount = 0;
$query = $sql->prepare("SELECT t.`name` FROM `page_terms_used` u LEFT JOIN `page_terms` t ON u.`term_id`=t.`id` WHERE u.`page_id`=? AND u.`resellerid`=?");
$query2 = $sql->prepare("UPDATE `page_terms` SET `count`=`count`-1 WHERE `name`=? AND `resellerid`=? LIMIT 1");
$query->execute(array($id, $resellerLockupID));
foreach ($query->fetchAll(PDO::FETCH_ASSOC) as $row) {
$query2->execute(array($row['name'], $resellerLockupID));
$removedCount += $query2->rowCount();
}
$removedCount += $query->rowCount();
$query = $sql->prepare("UPDATE `page_pages` SET `subpage`=`id` WHERE `subpage`=? AND `resellerid`=?");
$query->execute(array($id, $resellerLockupID));
$removedCount += $query->rowCount();
$query = $sql->prepare("DELETE FROM `page_pages` WHERE `id`=? AND `resellerid`=? LIMIT 1");
$query->execute(array($id, $resellerLockupID));
$removedCount += $query->rowCount();
$query = $sql->prepare("DELETE FROM `page_pages_text` WHERE `pageid`=? AND `resellerid`=?");
$query->execute(array($id, $resellerLockupID));
$removedCount += $query->rowCount();
$query = $sql->prepare("DELETE FROM `page_terms_used` WHERE `page_id`=? AND `resellerid`=?");
$query->execute(array($id, $resellerLockupID));
$removedCount += $query->rowCount();
$template_file = $spracheResponse->table_del;
// Check if a row was affected meaning an entry could be deleted. If yes add log entry and display success message
if ($removedCount > 0) {
$template_file = $spracheResponse->table_del;
// Nothing was deleted, display an error
} else { } else {
if ($row['language'] == $user_language) { $template_file = $spracheResponse->error_table;
$link = $page_url. '/' . $user_language . '/' . strtolower(szrp($row['title'])) . '/'; }
// GET Request did not add up. Display 404 error.
} else { } else {
$link = $page_url. '/' . $row['language'] . '/' . strtolower(szrp($row['title'])) . '/'; $template_file = 'admin_404.tpl';
}
// List the available entries
} else {
if ($ui->smallletters('pageorder',4, 'post') == 'true') {
foreach ($ui->id('pageid', 30, 'post') as $pageid => $pageorder) {
$query = $sql->prepare("UPDATE `page_pages` SET `sort`=? WHERE `id`=? LIMIT 1");
$query->execute(array($pageorder, $pageid));
} }
} }
$explodedtime=explode(' ', $row['date']);
$explodedtime2=explode('-', $explodedtime[0]); $table = array();
if ($user_language == 'de') {
$date = $explodedtime2[2] . '.' . $explodedtime2[1] . '.' . $explodedtime2[0] . ' ' . $explodedtime[1]; $o = ($ui->st('o', 'get')) ? (string) $ui->st('o', 'get') : 'di';
if ($o == 'at') {
$orderby = 't.`title` ASC';
} else if ($o == 'dt') {
$orderby = 't.`title` DESC';
} else if ($o == 'aa') {
$orderby = 'p.`authorname` ASC, p.`id` ASC, p.`subpage` ASC';
} else if ($o == 'da') {
$orderby = 'p.`authorname` DESC, p.`id` ASC, p.`subpage` ASC';
} else if ($o == 'ar') {
$orderby = 'p.`released` ASC, p.`id` ASC, p.`subpage` ASC';
} else if ($o == 'dr') {
$orderby = 'p.`released` DESC, p.`id` ASC, p.`subpage` ASC';
} else if ($o == 'ad') {
$orderby = 'p.`date` ASC';
} else if ($o == 'dd') {
$orderby = 'p.`date` DESC';
} else if ($o == 'ad') {
$orderby = 'p.`subpage`, p.`id` ASC';
} else if ($o == 'di') {
$orderby = 'p.`id` DESC';
} else { } else {
$date = $explodedtime2[1] . '.' . $explodedtime2[2] . '.' . $explodedtime2[0] . ' ' . $explodedtime[1]; $orderby = 'p.`id` ASC';
}
array_push($table, array('id' => $row['id'], 'author' => $author,'date' => $date,'released' => $released,'title' => $page_title,'link' => $link,'languages' => $p_languages,'sort' => $row['sort']));
}
$next = $start+$amount;
$countp = $sql->prepare("SELECT COUNT(`id`) AS `amount` FROM `page_pages` WHERE `resellerid`=?");
$countp->execute(array($reseller_id));
foreach ($countp->fetchAll(PDO::FETCH_ASSOC) as $row) {
$colcount = $row['amount'];
}
if ($colcount>$next) {
$vor = $start+$amount;
} else {
$vor = $start;
}
$back = $start - $amount;
if ($back>=0){
$zur = $start - $amount;
} else {
$zur = $start;
} }
$query = $sql->prepare("SELECT `seo` FROM `page_settings` WHERE `resellerid`=? LIMIT 1");
$query->execute(array($resellerLockupID));
$seo = $query->fetchColumn();
$query = $sql->prepare("SELECT COUNT(`id`) AS `amount` FROM `page_pages` WHERE `type`='page' AND `resellerid`=?");
$query->execute(array($resellerLockupID));
$colcount = $query->fetchColumn();
$amount = (isset($amount)) ? $amount : 20;
$start = (isset($start) and $start < $colcount) ? $start : 0;
$next = (isset($amount) and ($start + $amount) < $colcount) ? ($start + $amount) : 20;
$vor = ($colcount > $next) ? $start + $amount : $start;
$zur = (($start - $amount) > -1) ? $start - $amount : $start;
$pageamount = ceil($colcount / $amount); $pageamount = ceil($colcount / $amount);
$link='<a href="admin.php?w=pp&amp;d=md&amp;o='.$o.'&amp;a=';
if (!isset($amount)) { $link = '<a href="admin.php?w=pp&amp;d=md&amp;o=' . $o . '&amp;a=' . $amount;
$link .="20"; $link .= ($start == 0) ? '&p=0" class="bold">1</a>' : '&p=0">1</a>';
} else {
$link .= $amount;
}
if ($start==0) {
$link .= '&p=0" class="bold">1</a>';
} else {
$link .= '&p=0">1</a>';
}
$pages[] = $link; $pages[] = $link;
$i = 2; $i = 2;
while ($i<=$pageamount) {
while ($i <= $pageamount) {
$selectpage = ($i - 1) * $amount; $selectpage = ($i - 1) * $amount;
if ($start==$selectpage) { $pages[] = ($start == $selectpage) ? '<a href="admin.php?w=pp&amp;d=md&amp;o=' . $o . '&amp;a=' . $amount . '&p=' . $selectpage . '" class="bold">' . $i . '</a>' : '<a href="admin.php?w=pp&amp;d=md&amp;o=' . $o . '&amp;a=' . $amount . '&p=' . $selectpage . '">' . $i . '</a>';
$pages[] = '<a href="admin.php?w=pp&amp;d=md&amp;o='.$o.'&amp;a=' . $amount . '&p=' . $selectpage . '" class="bold">' . $i . '</a>';
} else {
$pages[] = '<a href="admin.php?w=pp&amp;d=md&amp;o='.$o.'&amp;a=' . $amount . '&p=' . $selectpage . '">' . $i . '</a>';
}
$i++; $i++;
} }
$pages=implode(', ',$pages); $pages = implode(', ', $pages);
$template_file = "admin_page_pages_list.tpl";
$query = $sql->prepare("SELECT p.`id`,p.`date`,p.`released`,p.`subpage`,p.`authorid`,p.`authorname`,p.`sort`,t.`title`,t.`shortlink`,t.`language` FROM `page_pages` p LEFT JOIN `page_pages_text` t ON p.`id`=t.`pageid` AND t.`language`=? WHERE p.`type`='page' AND p.`resellerid`=? GROUP BY p.`id` ORDER BY $orderby LIMIT $start,$amount");
$query2 = $sql->prepare("SELECT `cname`,`name`,`vname` FROM `userdata` WHERE `id`=? AND `resellerid`=? LIMIT 1");
$query3 = $sql->prepare("SELECT `language` FROM `page_pages_text` WHERE `pageid`=? AND `resellerid`=? ORDER BY `language`");
$query4 = $sql->prepare("SELECT `title` FROM `page_pages_text` WHERE `pageid`=? AND `language`=? AND `resellerid`=? ORDER BY `language` LIMIT 1");
$query->execute(array($user_language, $resellerLockupID));
foreach ($query->fetchAll(PDO::FETCH_ASSOC) as $row) {
$author = $row['authorname'];
$page_title = $row['title'];
if (!isset($titleLanguages[$row['language']])) {
$titleLanguages[$row['language']] = array('page' => getlanguagefile('page', $row['language'],0), 'general' => getlanguagefile('general', $row['language'],0));
}
$released = ($row['released'] == 1) ? $gsprache->yes : $gsprache->no;
$query2->execute(array($row['authorid'], $resellerLockupID));
foreach ($query2->fetchAll(PDO::FETCH_ASSOC) as $row2) {
$author = (($row2['name'] == '' or $row2['name'] == null) and ($row2['vname'] == '' or $row2['vname'] == null)) ? $row2['cname'] : $row2['vname'] . ' ' . $row2['name'];
}
unset($p_languages);
$query3->execute(array($row['id'], $resellerLockupID));
foreach ($query3->fetchAll(PDO::FETCH_ASSOC) as $row3) {
$p_languages[] = $row3['language'];
}
if (($row['title'] == null or $row['title'] == '') and isset($p_languages[0])) {
$query4->execute(array($row['id'], $p_languages[0], $resellerLockupID));
$page_title = $query4->fetchColumn();
} else if ($row['title'] == null or $row['title'] == '') {
$page_title = '';
$p_languages = array();
}
if ($row['subpage'] != $row['id']) {
$page_title = ' - ' . $page_title;
}
$link = ($seo == 'N') ? $page_url . '/index.php?site=page&amp;id=' . $row['id'] : $page_url . '/' . $row['language'] . '/' . strtolower(szrp($row['title'])) . '/';
$date = ($user_language == 'de') ? date('d.m.Y H:m:s', strtotime($row['date'])) : $row['date'];
$table[] = array('id' => $row['id'], 'author' => $author,'date' => $date,'released' => $released,'title' => $page_title,'link' => $link,'languages' => $p_languages,'sort' => $row['sort']);
}
$template_file = 'admin_page_pages_list.tpl';
} }

1
web/stuff/settings.php
View File

@ -322,6 +322,7 @@ if ($loguserip!='localhost') {
$query->execute(array($user_language, $user_id, $reseller_id)); $query->execute(array($user_language, $user_id, $reseller_id));
} }
} }
$default_language = (!empty($user_language)) ? $user_language : $rSA['language']; $default_language = (!empty($user_language)) ? $user_language : $rSA['language'];
if (!isset($user_language) or empty($user_language)) { if (!isset($user_language) or empty($user_language)) {

2
web/template/default/admin_page_news_md.tpl
View File

@ -4,7 +4,7 @@
<li><a href="admin.php">Home</a> <span class="divider">/</span></li> <li><a href="admin.php">Home</a> <span class="divider">/</span></li>
<li><a href="admin.php?w=pn"><?php echo $gsprache->news;?></a> <span class="divider">/</span></li> <li><a href="admin.php?w=pn"><?php echo $gsprache->news;?></a> <span class="divider">/</span></li>
<li><?php echo $gsprache->mod;?> <span class="divider">/</span></li> <li><?php echo $gsprache->mod;?> <span class="divider">/</span></li>
<li class="active"><?php echo $table[$default_language]['title'];?></li> <li class="active"><?php echo $newsTitle;?></li>
</ul> </ul>
</div> </div>
</div> </div>

2
web/template/default/admin_page_pages_md.tpl
View File

@ -4,7 +4,7 @@
<li><a href="admin.php">Home</a> <span class="divider">/</span></li> <li><a href="admin.php">Home</a> <span class="divider">/</span></li>
<li><a href="admin.php?w=pp"><?php echo $gsprache->pages;?></a> <span class="divider">/</span></li> <li><a href="admin.php?w=pp"><?php echo $gsprache->pages;?></a> <span class="divider">/</span></li>
<li><?php echo $gsprache->mod;?> <span class="divider">/</span></li> <li><?php echo $gsprache->mod;?> <span class="divider">/</span></li>
<li class="active"><?php echo $table[$default_language]['title'];?></li> <li class="active"><?php echo $pageTitle;?></li>
</ul> </ul>
</div> </div>
</div> </div>