diff -r ac34de920762 -r eefe9ab7fe7c plugins/admin/PageManager.php --- /dev/null Thu Jan 01 00:00:00 1970 +0000 +++ b/plugins/admin/PageManager.php Sun Dec 30 01:13:24 2007 -0500 @@ -0,0 +1,594 @@ +auth_level < USER_LEVEL_ADMIN || $session->user_level < USER_LEVEL_ADMIN ) + { + $login_link = makeUrlNS('Special', 'Login/' . $paths->nslist['Special'] . 'Administration', 'level=' . USER_LEVEL_ADMIN, true); + echo '

' . $lang->get('adm_err_not_auth_title') . '

'; + echo '

' . $lang->get('adm_err_not_auth_body', array( 'login_link' => $login_link )) . '

'; + return; + } + + echo '

' . $lang->get('acppm_heading_main') . '

'; + $show_select = true; + + if ( isset($_REQUEST['action']) || isset($_REQUEST['source']) ) + { + if ( isset($_REQUEST['action']) ) + { + $act =& $_REQUEST['action']; + $act = strtolower($act); + } + else if ( isset($_REQUEST['source']) && $_REQUEST['source'] == 'ajax' ) + { + $act = 'select'; + } + switch ( $act ) + { + case 'save': + case 'select': + // First step is to determine the page ID and namespace + + if ( isset($_REQUEST['pid_search']) ) + { + list($page_id, $namespace) = RenderMan::strToPageID($_REQUEST['page_id']); + $name = $db->escape(dirtify_page_id($page_id)); + $page_id = $db->escape(sanitize_page_id($page_id)); + $namespace = $db->escape($namespace); + $name = strtolower($name); + $page_id = strtolower($page_id); + $sql = "SELECT * FROM " . table_prefix . "pages WHERE ( " . ENANO_SQLFUNC_LOWERCASE . "(urlname) LIKE '%$page_id%' OR " . ENANO_SQLFUNC_LOWERCASE . "(name) LIKE '%$name%' ) ORDER BY name ASC;"; + } + else + { + // pid_search was not set, assume absolute page ID + list($page_id, $namespace) = RenderMan::strToPageID($_REQUEST['page_id']); + $page_id = $db->escape(sanitize_page_id($page_id)); + $namespace = $db->escape($namespace); + + $sql = "SELECT * FROM " . table_prefix . "pages WHERE urlname = '$page_id' AND namespace = '$namespace';"; + } + + if ( !($q = $db->sql_query($sql)) ) + { + $db->_die('PageManager selecting dataset for page'); + } + + if ( $db->numrows() < 1 ) + { + echo '
+ ' . $lang->get('acppm_err_page_not_found') . ' +
'; + break; + } + + if ( $db->numrows() > 1 ) + { + // Ambiguous results + if ( isset($_REQUEST['pid_search']) ) + { + echo '

' . $lang->get('acppm_msg_results_ambiguous_title') . '

'; + echo '

' . $lang->get('acppm_msg_results_ambiguous_body') . '

'; + echo ''; + $show_select = false; + break; + } + else + { + echo '

' . $lang->get('acppm_err_ambig_absolute') . '

'; + break; + } + } + + // From this point on we can assume that exactly one matching page was found. + $dataset = $db->fetchrow(); + $page_id = $dataset['urlname']; + $namespace = $dataset['namespace']; + + // This is used to re-determine the page ID after submit. + $pathskey = $paths->nslist[$namespace] . sanitize_page_id($page_id); + + // The extra switch allows us to break out of the save routine if needed + switch ( $act ) + { + case 'save': + + $errors = array(); + $page_id_changed = false; + $namespace_changed = false; + + // Backup the dataset to avoid redundantly updating values + $dataset_backup = $dataset; + + // We've elected to save the page. The angle of attack here is to validate each form field, + // and if the field validates successfully, change the value in $dataset accordingly. + + // Field: page name + $page_name = $_POST['page_name']; + $page_name = trim($page_name); + if ( empty($page_name) ) + { + $errors[] = $lang->get('acppm_err_invalid_page_name'); + } + else + { + $dataset['name'] = $page_name; + } + + // Field: page URL string + $page_urlname = $_POST['page_urlname']; + $page_urlname = trim($_POST['page_urlname']); + if ( empty($page_urlname) && getConfig('main_page') !== '' ) + { + $errors[] = $lang->get('acppm_err_invalid_url_string'); + } + else + { + $page_id_changed = ( $_POST['page_urlname'] !== $dataset['urlname'] ); + $dataset['urlname'] = sanitize_page_id($page_urlname); + } + + // Field: namespace + $namespace = $_POST['page_namespace']; + if ( !isset($paths->nslist[ $namespace ]) ) + { + $errors[] = $lang->get('acppm_err_invalid_namespace'); + } + else + { + $namespace_changed = ( $_POST['page_namespace'] !== $dataset['namespace'] ); + $dataset['namespace'] = $namespace; + } + + // Field: comments enabled + $dataset['comments_on'] = ( isset($_POST['comments_on']) ) ? 1 : 0; + + // Field: page visible + $dataset['visible'] = ( isset($_POST['visible']) ) ? 1 : 0; + + // Field: standalone page + $dataset['special'] = ( isset($_POST['special']) ) ? 1 : 0; + + // Field: page protection + $protect_level = $_POST['protected']; + if ( !in_array($protect_level, array('0', '1', '2')) ) + { + $errors[] = $lang->get('acppm_err_invalid_protection'); + } + else + { + $dataset['protected'] = intval($protect_level); + } + + // Field: wiki mode + $wiki_mode = $_POST['wikimode']; + if ( !in_array($wiki_mode, array('0', '1', '2')) ) + { + $errors[] = $lang->get('acppm_err_invalid_wiki_mode'); + } + else + { + $dataset['wiki_mode'] = intval($wiki_mode); + } + + if ( count($errors) < 1 ) + { + // We're free of errors. Build a SQL query to update the page table. + $particles = array(); + + foreach ( $dataset as $key => $value ) + { + if ( $value === $dataset_backup[$key] || ( is_int($value) && $value === intval($dataset_backup[$key]) ) ) + continue; + if ( is_int($value) ) + { + $particle = "$key = $value"; + } + else + { + $value = $db->escape($value); + $particle = "$key = '$value'"; + } + $particles[] = $particle; + unset($particle); + } + + $page_id_new = $db->escape($dataset['urlname']); + $namespace_new = $db->escape($dataset['namespace']); + + // Only run the update query if at least one field was changed. + if ( count($particles) > 0 ) + { + $particles = implode(', ', $particles); + $page_id_db = $db->escape($page_id); + $namespace_db = $db->escape($namespace); + $sql = 'UPDATE ' . table_prefix . "pages SET $particles WHERE urlname = '$page_id_db' AND namespace = '$namespace_db';"; + + if ( !$db->sql_query($sql) ) + $db->_die('PageManager running primary update query'); + + // Did we change the page ID or namespace? If so we need to also change logs, comments, tags, etc. + if ( $page_id_changed || $namespace_changed ) + { + $sql = array( + 'UPDATE ' . table_prefix . "logs SET page_id = '$page_id_new', namespace = '$namespace_new' WHERE page_id = '$page_id_db' AND namespace = '$namespace_db';", + 'UPDATE ' . table_prefix . "tags SET page_id = '$page_id_new', namespace = '$namespace_new' WHERE page_id = '$page_id_db' AND namespace = '$namespace_db';", + 'UPDATE ' . table_prefix . "comments SET page_id = '$page_id_new', namespace = '$namespace_new' WHERE page_id = '$page_id_db' AND namespace = '$namespace_db';", + 'UPDATE ' . table_prefix . "page_text SET page_id = '$page_id_new', namespace = '$namespace_new' WHERE page_id = '$page_id_db' AND namespace = '$namespace_db';", + 'UPDATE ' . table_prefix . "categories SET page_id = '$page_id_new', namespace = '$namespace_new' WHERE page_id = '$page_id_db' AND namespace = '$namespace_db';" + ); + foreach ( $sql as $q ) + { + if ( !$db->sql_query($q) ) + $db->_die('PageManager running slave update query after page ID/namespace change'); + } + } + + // Did we change the name of the page? If so, make PageUtils log it + if ( $dataset_backup['name'] != $dataset['name'] ) + { + PageUtils::rename($page_id_new, $namespace_new, $dataset['name']); + } + } + + // Did the user ask to delete the page? + if ( isset($_POST['delete']) ) + { + PageUtils::deletepage($page_id_new, $namespace_new, $lang->get('acppm_delete_reason')); + } + + echo '
' . $lang->get('acppm_msg_save_success', array( 'viewpage_url' => makeUrlNS($dataset['namespace'], $dataset['urlname']) )) . '
'; + break 2; + } + + break; + } + $tpl_code = << + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +
+ {lang:acppm_heading_editing} "{PAGE_NAME}" +
+ {lang:acppm_lbl_page_name} + + +
+ {lang:acppm_lbl_page_urlname}
+ {lang:acppm_lbl_page_urlname_hint} + 		+ +
+ {lang:acppm_lbl_namespace} + + +
+ {lang:acppm_heading_advanced} +
+ {lang:acppm_lbl_enable_comments_title} + + +
+ {lang:acppm_lbl_enable_comments_hint} +
+ {lang:acppm_lbl_special_title} + + +
+ {lang:acppm_lbl_special_hint} +
+ {lang:acppm_lbl_visible_title} + + +
+ {lang:acppm_lbl_visible_hint} +
+ {lang:acppm_lbl_protected_title} + + +
+ +
+ +
+ {lang:acppm_lbl_protected_hint} +
+ {lang:acppm_lbl_wikimode_title} + + +
+ +
+ +
+ {lang:acppm_lbl_wikimode_hint} +
+ {lang:acppm_lbl_delete_title} + + +
+ {lang:acppm_lbl_delete_hint} +
+ + +
+ + + +TPLCODE; + $parser = $template->makeParserText($tpl_code); + + $ns_list = ''; + foreach ( $paths->nslist as $ns => $prefix ) + { + // FIXME: Plugins need to specify whether they want Enano's regular PageProcessor + // to handle these pages, and whether such pages from namespaces created by plugins + // can be stored in the database or not. + if ( $ns == 'Special' || $ns == 'Admin' || $ns == 'Anonymous' ) + continue; + $ns = htmlspecialchars($ns); + $prefix = htmlspecialchars($prefix); + if ( empty($prefix) ) + $prefix = $lang->get('acppm_ns_article'); + $sel = ( $dataset['namespace'] == $ns ) ? ' selected="selected"' : ''; + $ns_list .= " \n "; + } + + $parser->assign_vars(array( + 'PAGE_NAME' => htmlspecialchars($dataset['name']), + 'PAGE_URLNAME' => htmlspecialchars($dataset['urlname']), + 'NAMESPACE_LIST' => $ns_list, + 'PATHS_KEY' => $pathskey + )); + + $parser->assign_bool(array( + 'comments_enabled' => ( $dataset['comments_on'] == 1 ), + 'special' => ( $dataset['special'] == 1 ), + 'visible' => ( $dataset['visible'] == 1 ), + 'protected_off' => ( $dataset['protected'] == 0 ), + 'protected_on' => ( $dataset['protected'] == 1 ), + 'protected_semi' => ( $dataset['protected'] == 2 ), + 'wikimode_off' => ( $dataset['wiki_mode'] == 0 ), + 'wikimode_on' => ( $dataset['wiki_mode'] == 1 ), + 'wikimode_global' => ( $dataset['wiki_mode'] == 2 ) + )); + + if ( isset($errors) ) + { + echo '
'; + echo $lang->get('acppm_err_header'); + echo ''; + echo '
'; + } + + $form_action = makeUrlNS('Special', 'Administration', "module={$paths->nslist['Admin']}PageManager", true); + + echo "
"; + echo $parser->run(); + echo "
"; + + $show_select = false; + break; + } + } + + if ( $show_select ) + { + echo '

' . $lang->get('acppm_hint') . '

'; + + // Show the search form + + $form_action = makeUrlNS('Special', 'Administration', "module={$paths->nslist['Admin']}PageManager", true); + echo "
"; + echo $lang->get('acppm_lbl_field_search') . ' '; + echo $template->pagename_field('page_id') . ' '; + echo ''; + echo ''; + echo "
"; + + // Grab all pages from the database and show a list of pages on the site + + echo '

' . $lang->get('acppm_heading_select_page_from_list') . '

'; + echo '

' . $lang->get('acppm_hint_select_page_from_list') . '

'; + + $q = $db->sql_query('SELECT COUNT(name) AS num_pages FROM ' . table_prefix . 'pages;'); + if ( !$q ) + $db->_die('PageManager doing initial page count'); + list($num_pages) = $db->fetchrow_num(); + $db->free_result(); + + $pg_start = ( isset($_GET['offset']) ) ? intval($_GET['offset']) : 0; + + $q = $db->sql_unbuffered_query('SELECT urlname, name, namespace, ' . $num_pages . ' AS num_pages, ' . $pg_start . ' AS offset FROM ' . table_prefix . 'pages ORDER BY name ASC;'); + if ( !$q ) + $db->_die('PageManager doing main select query for page list'); + + // Paginate results + $html = paginate( + $q, + '{urlname}', + $num_pages, + makeUrlNS('Special', 'Administration', "module={$paths->nslist['Admin']}PageManager&offset=%s", false), + $pg_start, + 99, + array('urlname' => 'admin_pagemanager_format_listing'), + '
+ ', + '
+
' + ); + echo $html; + } + +} + +function admin_pagemanager_format_listing($_, $row) +{ + global $db, $session, $paths, $template, $plugins; // Common objects + + static $cell_count = 0; + static $td_class = 'row1'; + static $run_count = 0; + static $num_pages_floor = false; + if ( !$num_pages_floor ) + { + $num_pages_floor = $row['num_pages']; + while ( $num_pages_floor % 99 > 0 ) + $num_pages_floor--; + } + $return = ''; + $run_count++; + + $last_page = ( $row['offset'] == $num_pages_floor ); + $last_run = ( ( $last_page && $run_count == $row['num_pages'] % 99 ) || $run_count == 99 ); + if ( $cell_count == 0 ) + { + $return .= "\n"; + } + $title = get_page_title_ns($row['urlname'], $row['namespace']); + $pathskey = $paths->nslist[$row['namespace']] . $row['urlname']; + $url = makeUrlNS('Special', 'Administration', "module={$paths->nslist['Admin']}PageManager&action=select&page_id=$pathskey", true); + $url = '' . htmlspecialchars($title) . ''; + $return .= ' ' . $url . '' . "\n"; + $cell_count++; + if ( $cell_count == 3 && !$last_run ) + { + $cell_count = 0; + $td_class = ( $td_class == 'row2' ) ? 'row1' : 'row2'; + $return .= "\n"; + } + else if ( $last_run ) + { + while ( $cell_count < 3 ) + { + $return .= " \n"; + $cell_count++; + } + $return .= "\n"; + } + return $return; +} + +?>