Snapr: comparison plugins/gallery/browser.php

equal deleted inserted replaced

-:0944c9354e9c
+:7c6e2e97aa08
 * @access private
 */
 class SnaprFormatter
 {
-/**
+	/**
-* Main render method, called from pagination function
+	* Main render method, called from pagination function
-* @access private
+	* @access private
-*/
+	*/
-function render($column_crap, $row, $row_crap = false)
+	function render($column_crap, $row, $row_crap = false)
-{
+	{
-global $db, $session, $paths, $template, $plugins; // Common objects
+		global $db, $session, $paths, $template, $plugins; // Common objects
-$out = '<li class="snapr-icon">';
+		$out = '<li class="snapr-icon">';
-$title_safe = $row['img_title'];
+		$title_safe = $row['img_title'];
-$title_safe = htmlspecialchars($title_safe);
+		$title_safe = htmlspecialchars($title_safe);
-if ( $row['is_folder'] == 1 )
+		if ( $row['is_folder'] == 1 )
-{
+		{
-// It's a folder, show the icon
+			// It's a folder, show the icon
-$f_url_particle = sanitize_page_id($row['img_title']);
+			$f_url_particle = sanitize_page_id($row['img_title']);
-$f_url_particle = htmlspecialchars($f_url_particle);
+			$f_url_particle = htmlspecialchars($f_url_particle);
-$image_link = makeUrl( $paths->fullpage . '/' . $f_url_particle );
+			$image_link = makeUrl( $paths->fullpage . '/' . $f_url_particle );
-$image_url = scriptPath . '/plugins/gallery/folder.png';
+			$image_url = scriptPath . '/plugins/gallery/folder.png';
-}
+		}
-else
+		else
-{
+		{
-// It's an image, show a thumbnail
+			// It's an image, show a thumbnail
-$image_link = makeUrlNS('Gallery', $row['img_id']);
+			$image_link = makeUrlNS('Gallery', $row['img_id']);
-$image_url  = makeUrlNS('Special', 'GalleryFetcher/thumb/' . $row['img_id']);
+			$image_url  = makeUrlNS('Special', 'GalleryFetcher/thumb/' . $row['img_id']);
-}
+		}
-if ( isset($row['score']) )
+		if ( isset($row['score']) )
-{
+		{
-$row['score'] = number_format($row['score'], 2);
+			$row['score'] = number_format($row['score'], 2);
-}
+		}
-$image_url_js = addslashes($image_link);
+		$image_url_js = addslashes($image_link);
-$jsclick = ( $session->user_level < USER_LEVEL_ADMIN ) ? ' onclick="window.location=\'' . $image_url_js . '\'"' : '';
+		$jsclick = ( $session->user_level < USER_LEVEL_ADMIN ) ? ' onclick="window.location=\'' . $image_url_js . '\'"' : '';
-$out .= '<div class="gallery_icon"' . $jsclick . '>';
+		$out .= '<div class="gallery_icon"' . $jsclick . '>';
-$out .= '<a class="snapr-imagelink" href="' . $image_link . '"><img alt="&lt;Thumbnail&gt;" class="gallery_thumb" src="' . $image_url . '" /></a>';
+		$out .= '<a class="snapr-imagelink" href="' . $image_link . '"><img alt="&lt;Thumbnail&gt;" class="gallery_thumb" src="' . $image_url . '" /></a>';
-if ( $session->user_level < USER_LEVEL_ADMIN )
+		if ( $session->user_level < USER_LEVEL_ADMIN )
-{
+		{
-$out .= '<span class="snapr-icon-label">' . $title_safe . ( isset($row['score']) ? "<br /><small>Relevance: {$row['score']}</small>" : '' ) . '</span>';
+			$out .= '<span class="snapr-icon-label">' . $title_safe . ( isset($row['score']) ? "<br /><small>Relevance: {$row['score']}</small>" : '' ) . '</span>';
-}
+		}
-else if ( $session->user_level >= USER_LEVEL_ADMIN )
+		else if ( $session->user_level >= USER_LEVEL_ADMIN )
-{
+		{
-$out .= '<div class="menu_nojs snapr-icon-label" style="text-align: center;"><a href="#" onclick="return false;" style="width: 74px;">' . $title_safe . ( isset($row['score']) ? "<br /><small>Relevance: {$row['score']}</small>" : '' ) . '</a>';
+			$out .= '<div class="menu_nojs snapr-icon-label" style="text-align: center;"><a href="#" onclick="return false;" style="width: 74px;">' . $title_safe . ( isset($row['score']) ? "<br /><small>Relevance: {$row['score']}</small>" : '' ) . '</a>';
-$url_delete = makeUrlNS('Special', 'GalleryUpload', 'rm=' . $row['img_id'], true);
+			$url_delete = makeUrlNS('Special', 'GalleryUpload', 'rm=' . $row['img_id'], true);
-$url_edit   = makeUrlNS('Special', 'GalleryUpload', 'edit_img=' . $row['img_id'], true);
+			$url_edit   = makeUrlNS('Special', 'GalleryUpload', 'edit_img=' . $row['img_id'], true);
-// Tools menu
+			// Tools menu
-$out .= '<ul style="text-align: left;">';
+			$out .= '<ul style="text-align: left;">';
-$out .= '<li><a href="' . $url_delete . '">Delete ' . ( $row['is_folder'] == 1 ? 'this folder and all contents' : 'this image' ) . '</a></li>';
+			$out .= '<li><a href="' . $url_delete . '">Delete ' . ( $row['is_folder'] == 1 ? 'this folder and all contents' : 'this image' ) . '</a></li>';
-$out .= '<li><a href="' . $url_edit   . '">Rename, move, or edit description</a></li>';
+			$out .= '<li><a href="' . $url_edit   . '">Rename, move, or edit description</a></li>';
-$out .= '</ul>';
+			$out .= '</ul>';
-$out .= '</div>';
+			$out .= '</div>';
-$out .= '<span class="menuclear"></span>';
+			$out .= '<span class="menuclear"></span>';
-}
+		}
-$out .= '  </div>';
+		$out .= '  </div>';
-$out .= '</li>';
+		$out .= '</li>';
-return $out;
+		return $out;
-}
+	}
 }
 function page_Special_Gallery()
 {
-global $db, $session, $paths, $template, $plugins; // Common objects
+	global $db, $session, $paths, $template, $plugins; // Common objects
-// die('<pre>' . print_r(gallery_folder_hierarchy(), true) . '</pre>');
+	// die('<pre>' . print_r(gallery_folder_hierarchy(), true) . '</pre>');
-$sort_column = ( isset($_GET['sort'])  && in_array($_GET['sort'],  array('img_title', 'img_time_upload', 'img_time_mod')) ) ? $_GET['sort'] : 'img_title';
+	$sort_column = ( isset($_GET['sort'])  && in_array($_GET['sort'],  array('img_title', 'img_time_upload', 'img_time_mod')) ) ? $_GET['sort'] : 'img_title';
-$sort_order  = ( isset($_GET['order']) && in_array($_GET['order'], array('ASC', 'DESC')) ) ? $_GET['order'] : 'ASC';
+	$sort_order  = ( isset($_GET['order']) && in_array($_GET['order'], array('ASC', 'DESC')) ) ? $_GET['order'] : 'ASC';
-// Determine number of pictures per page
+	// Determine number of pictures per page
-$template->load_theme();
+	$template->load_theme();
-$where = 'WHERE folder_parent IS NULL ' . "\n  ORDER BY is_folder DESC, $sort_column $sort_order, img_title ASC";
+	$where = 'WHERE folder_parent IS NULL ' . "\n  ORDER BY is_folder DESC, $sort_column $sort_order, img_title ASC";
-$parms = $paths->getAllParams();
+	$parms = $paths->getAllParams();
-$sql = "SELECT img_id, img_title, is_folder, 'NULL' AS folder_id FROM ".table_prefix."gallery $where;";
+	$sql = "SELECT img_id, img_title, is_folder, 'NULL' AS folder_id FROM ".table_prefix."gallery $where;";
-// Breadcrumb browser
+	// Breadcrumb browser
-$breadcrumbs = array();
+	$breadcrumbs = array();
-$breadcrumbs[] = '<a href="' . makeUrlNS('Special', 'Gallery') . '">Gallery index</a>';
+	$breadcrumbs[] = '<a href="' . makeUrlNS('Special', 'Gallery') . '">Gallery index</a>';
-$breadcrumb_urlcache = '';
+	$breadcrumb_urlcache = '';
-// CSS for gallery browser
+	// CSS for gallery browser
-// Moved to search.php
+	// Moved to search.php
-//$template->add_header('<link rel="stylesheet" href="' . scriptPath . '/plugins/gallery/browser.css" type="text/css" />');
+	//$template->add_header('<link rel="stylesheet" href="' . scriptPath . '/plugins/gallery/browser.css" type="text/css" />');
-//$template->add_header('<link rel="stylesheet" href="' . scriptPath . '/plugins/gallery/dropdown.css" type="text/css" />');
+	//$template->add_header('<link rel="stylesheet" href="' . scriptPath . '/plugins/gallery/dropdown.css" type="text/css" />');
-$header = $template->getHeader();
+	$header = $template->getHeader();
-if ( !empty($parms) )
+	$folders = $f_errors = array();
-{
+	if ( !empty($parms) )
-$parms = dirtify_page_id($parms);
+	{
-if ( strstr($parms, '/') )
+		$parms = dirtify_page_id($parms);
-{
+		if ( strstr($parms, '/') )
-$folders = explode('/', $parms);
+		{
-}
+			$folders = explode('/', $parms);
-else
+		}
-{
+		else
-$folders = array(0 => $parms);
+		{
-}
+			$folders = array(0 => $parms);
-foreach ( $folders as $i => $_crap )
+		}
-{
+		foreach ( $folders as $i => $_crap )
-$folder =& $folders[$i];
+		{
+			$folder =& $folders[$i];
-$f_url = sanitize_page_id($folder);
-$breadcrumb_urlcache .= '/' . $f_url;
+			$f_url = sanitize_page_id($folder);
-$breadcrumb_url = makeUrlNS('Special', 'Gallery' . $breadcrumb_urlcache);
+			$breadcrumb_urlcache .= '/' . $f_url;
+			$breadcrumb_url = makeUrlNS('Special', 'Gallery' . $breadcrumb_urlcache);
-$folder = str_replace('_', ' ', $folder);
+			$folder = str_replace('_', ' ', $folder);
-if ( $i == ( count($folders) - 1 ) )
-{
+			if ( $i == ( count($folders) - 1 ) )
-$breadcrumbs[] = htmlspecialchars($folder);
+			{
-}
+				$breadcrumbs[] = htmlspecialchars($folder);
-else
+			}
-{
+			else
-$breadcrumbs[] = '<a href="' . $breadcrumb_url . '">' . htmlspecialchars($folder) . '</a>';
+			{
-}
+				$breadcrumbs[] = '<a href="' . $breadcrumb_url . '">' . htmlspecialchars($folder) . '</a>';
-}
+			}
-unset($folder);
+		}
-$folders = array_reverse($folders);
+		unset($folder);
-// This is one of the best MySQL tricks on the market. We're going to reverse-travel a folder path using LEFT JOIN and the incredible power of metacoded SQL
+		$folders = array_reverse($folders);
-$sql = 'SELECT gm.img_id, gm.img_title, gm.is_folder, g0.img_title AS folder_name, g0.img_id AS folder_id FROM '.table_prefix.'gallery AS gm' . "\n  " . 'LEFT JOIN '.table_prefix.'gallery AS g0' . "\n    " . 'ON ( gm.folder_parent = g0.img_id )';
+		// This is one of the best MySQL tricks on the market. We're going to reverse-travel a folder path using LEFT JOIN and the incredible power of metacoded SQL
-$where = "\n  " . 'WHERE g0.img_title=\'' . $db->escape($folders[0]) . '\'';
+		$sql = 'SELECT gm.img_id, gm.img_title, gm.is_folder, g0.img_title AS folder_name, g0.img_id AS folder_id FROM '.table_prefix.'gallery AS gm' . "\n  " . 'LEFT JOIN '.table_prefix.'gallery AS g0' . "\n    " . 'ON ( gm.folder_parent = g0.img_id )';
-foreach ( $folders as $i => $folder )
+		$where = "\n  " . 'WHERE g0.img_title=\'' . $db->escape($folders[0]) . '\'';
-{
+		foreach ( $folders as $i => $folder )
-if ( $i == 0 )
+		{
-continue;
+			if ( $i == 0 )
-$i_dec = $i - 1;
+				continue;
-$folder = $db->escape($folder);
+			$i_dec = $i - 1;
-$sql .= "\n  LEFT JOIN ".table_prefix."gallery AS g{$i}\n    ON ( g{$i}.img_id=g{$i_dec}.folder_parent AND g{$i}.img_title='$folder' )";
+			$folder = $db->escape($folder);
-$where .= "\n    ".'AND g'.$i.'.img_id IS NOT NULL';
+			$sql .= "\n  LEFT JOIN ".table_prefix."gallery AS g{$i}\n    ON ( g{$i}.img_id=g{$i_dec}.folder_parent AND g{$i}.img_title='$folder' )";
-}
+			$where .= "\n    ".'AND g'.$i.'.img_id IS NOT NULL';
-$where .= "\n    AND g{$i}.folder_parent IS NULL";
+		}
-$sql .= $where . "\n  ORDER BY is_folder DESC, gm.$sort_column $sort_order, gm.img_title ASC" . ';';
+		$where .= "\n    AND g{$i}.folder_parent IS NULL";
-}
+		$sql .= $where . "\n  ORDER BY is_folder DESC, gm.$sort_column $sort_order, gm.img_title ASC" . ';';
+	}
-$img_query = $db->sql_query($sql);
-if ( !$img_query )
+	$img_query = $db->sql_query($sql);
-$db->_die('The folder ID could not be selected.');
+	if ( !$img_query )
+		$db->_die('The folder ID could not be selected.');
-if ( $db->numrows() < 1 )
-{
+	if ( $db->numrows() < 1 )
-// Nothing in this folder, for one of two reasons:
+	{
-//   1) The folder doesn't exist
+		// Nothing in this folder, for one of two reasons:
-//   2) The folder exists but doesn't have any images in it
+		//   1) The folder doesn't exist
+		//   2) The folder exists but doesn't have any images in it
-if ( sizeof($folders) < 1 )
-{
+		if ( count($folders) < 1 )
-// Nothing in the root folder
+		{
+			// Nothing in the root folder
-$first_row['folder_id'] = 'NULL';
-if ( $session->user_level >= USER_LEVEL_ADMIN && isset($_POST['create_folder']) && isset($first_row['folder_id']) )
+			$first_row['folder_id'] = 'NULL';
-{
+			if ( $session->user_level >= USER_LEVEL_ADMIN && isset($_POST['create_folder']) && isset($first_row['folder_id']) )
-if ( empty($_POST['create_folder']) )
+			{
-{
+				if ( empty($_POST['create_folder']) )
-$f_errors[] = 'Please enter a folder name.';
+				{
-}
+					$f_errors[] = 'Please enter a folder name.';
-if ( $_POST['create_folder'] == '_id' )
+				}
-{
+				if ( $_POST['create_folder'] == '_id' )
-$f_errors[] = 'The name "_id" is reserved for internal functions and cannot be used on any image or folder.';
+				{
-}
+					$f_errors[] = 'The name "_id" is reserved for internal functions and cannot be used on any image or folder.';
-if ( count($f_errors) < 1 )
+				}
-{
+				if ( count($f_errors) < 1 )
-$q = $db->sql_query('INSERT INTO '.table_prefix.'gallery(img_title, is_folder, folder_parent) VALUES(\'' . $db->escape($_POST['create_folder']) . '\', 1, ' . $first_row['folder_id'] . ');');
+				{
-if ( !$q )
+					$q = $db->sql_query('INSERT INTO '.table_prefix.'gallery(img_title, is_folder, folder_parent, img_author) VALUES(\'' . $db->escape($_POST['create_folder']) . '\', 1, ' . $first_row['folder_id'] . ', ' . $session->user_id . ');');
-$db->_die();
+					if ( !$q )
-redirect(makeUrl($paths->fullpage), 'Folder created', 'The folder "' . htmlspecialchars($_POST['create_folder']) . '" has been created. Redirecting to last viewed folder...', 2);
+						$db->_die();
-}
+					redirect(makeUrl($paths->fullpage), 'Folder created', 'The folder "' . htmlspecialchars($_POST['create_folder']) . '" has been created. Redirecting to last viewed folder...', 2);
-}
+				}
+			}
-$html = '';
-if ( $session->user_level >= USER_LEVEL_ADMIN )
+			$html = '';
-{
+			if ( $session->user_level >= USER_LEVEL_ADMIN )
-$html .= '<p><a href="' . makeUrlNS('Special', 'GalleryUpload') . '">Upload an image</a></p>';
+			{
-$html .= '<div class="select-outer">Create new folder';
+				$html .= '<p><a href="' . makeUrlNS('Special', 'GalleryUpload') . '">Upload an image</a></p>';
-$html .= '<div class="select-inner" style="padding-top: 4px;">';
+				$html .= '<div class="select-outer">Create new folder';
-$html .= '<form action="' . makeUrl($paths->fullpage) . '" method="post">';
+				$html .= '<div class="select-inner" style="padding-top: 4px;">';
-$html .= '<input type="text" name="create_folder" size="30" /> <input type="submit" value="Create" />';
+				$html .= '<form action="' . makeUrl($paths->fullpage) . '" method="post">';
-$html .= '</form></div>';
+				$html .= '<input type="text" name="create_folder" size="30" /> <input type="submit" value="Create" />';
-$html .= '</div><div class="select-pad">&nbsp;</div><br />';
+				$html .= '</form></div>';
-}
+				$html .= '</div><div class="select-pad">&nbsp;</div><br />';
+			}
-die_friendly('No images', '<p>No images have been uploaded to the gallery yet.</p>' . $html);
-}
+			die_friendly('No images', '<p>No images have been uploaded to the gallery yet.</p>' . $html);
+		}
-/*
-$folders_old = $folders;
+		/*
-$folders = array(
+		$folders_old = $folders;
-0 => $folders_old[0]
+		$folders = array(
-);
+			0 => $folders_old[0]
-$x = $folders_old;
+			);
-unset($x[0]);
+		$x = $folders_old;
-$folders = array_merge($folders, $x);
+		unset($x[0]);
-unset($x);
+		$folders = array_merge($folders, $x);
-*/
+		unset($x);
-// die('<pre>' . print_r($folders, true) . '</pre>');
+		*/
+		// die('<pre>' . print_r($folders, true) . '</pre>');
-// This next query will try to determine if the folder itself exists
-$sql = 'SELECT g0.img_id, g0.img_title FROM '.table_prefix.'gallery AS g0';
+		// This next query will try to determine if the folder itself exists
-$where = "\n  " . 'WHERE g0.img_title=\'' . $db->escape($folders[0]) . '\'';
+		$sql = 'SELECT g0.img_id, g0.img_title FROM '.table_prefix.'gallery AS g0';
-foreach ( $folders as $i => $folder )
+		$where = "\n  " . 'WHERE g0.img_title=\'' . $db->escape($folders[0]) . '\'';
-{
+		foreach ( $folders as $i => $folder )
-if ( $i == 0 )
+		{
-continue;
+			if ( $i == 0 )
-$i_dec = $i - 1;
+				continue;
-$folder = $db->escape($folder);
+			$i_dec = $i - 1;
-$sql .= "\n  LEFT JOIN ".table_prefix."gallery AS g{$i}\n    ON ( g{$i}.img_id=g{$i_dec}.folder_parent AND g{$i}.img_title='$folder' )";
+			$folder = $db->escape($folder);
-$where .= "\n    ".'AND g'.$i.'.img_id IS NOT NULL';
+			$sql .= "\n  LEFT JOIN ".table_prefix."gallery AS g{$i}\n    ON ( g{$i}.img_id=g{$i_dec}.folder_parent AND g{$i}.img_title='$folder' )";
-}
+			$where .= "\n    ".'AND g'.$i.'.img_id IS NOT NULL';
-$where .= "\n    AND g{$i}.folder_parent IS NULL";
+		}
-$where .= "\n    AND g0.is_folder=1";
+		$where .= "\n    AND g{$i}.folder_parent IS NULL";
-$sql .= $where . ';';
+		$where .= "\n    AND g0.is_folder=1";
+		$sql .= $where . ';';
-$nameq = $db->sql_query($sql);
-if ( !$nameq )
+		$nameq = $db->sql_query($sql);
-$db->_die();
+		if ( !$nameq )
+			$db->_die();
-if ( $db->numrows($nameq) < 1 )
-{
+		if ( $db->numrows($nameq) < 1 )
-die_friendly('Folder not found', '<p>The folder you requested doesn\'t exist. Please check the URL and try again, or return to the <a href="' . makeUrlNS('Special', 'Gallery') . '">gallery index</a>.</p>');
+		{
-}
+			die_friendly('Folder not found', '<p>The folder you requested doesn\'t exist. Please check the URL and try again, or return to the <a href="' . makeUrlNS('Special', 'Gallery') . '">gallery index</a>.</p>');
+		}
-$row = $db->fetchrow($nameq);
+		$row = $db->fetchrow($nameq);
-// Generate title
-$title = dirtify_page_id($row['img_title']);
+		// Generate title
-$title = str_replace('_', ' ', $title);
+		$title = dirtify_page_id($row['img_title']);
-$title = htmlspecialchars($title);
+		$title = str_replace('_', ' ', $title);
+		$title = htmlspecialchars($title);
-$template->tpl_strings['PAGE_NAME'] = $title;
+		$template->tpl_strings['PAGE_NAME'] = $title;
-$first_row = $row;
+		$first_row = $row;
-if ( $db->numrows($img_query) > 0 )
-$db->sql_data_seek(0, $img_query);
+		if ( $db->numrows($img_query) > 0 )
+			$db->sql_data_seek(0, $img_query);
-/* $folders = $folders_old; */
-}
+		/* $folders = $folders_old; */
-else if ( !empty($parms) )
+	}
-{
+	else if ( !empty($parms) )
-$row = $db->fetchrow($img_query);
+	{
-$first_row = $row;
+		$row = $db->fetchrow($img_query);
+		$first_row = $row;
-// Generate title
-$title = htmlspecialchars($row['folder_name']);
+		// Generate title
+		$title = htmlspecialchars($row['folder_name']);
-$template->tpl_strings['PAGE_NAME'] = $title;
+		$template->tpl_strings['PAGE_NAME'] = $title;
-$db->sql_data_seek(0, $img_query);
-}
+		$db->sql_data_seek(0, $img_query);
-else
+	}
-{
+	else
-$row = $db->fetchrow($img_query);
+	{
-$first_row = $row;
+		$row = $db->fetchrow($img_query);
+		$first_row = $row;
-$template->tpl_strings['PAGE_NAME'] = 'Image Gallery';
-$breadcrumbs = array('<b>Gallery index</b>');
+		$template->tpl_strings['PAGE_NAME'] = 'Image Gallery';
+		$breadcrumbs = array('<b>Gallery index</b>');
-$db->sql_data_seek(0, $img_query);
-}
+		$db->sql_data_seek(0, $img_query);
+	}
-$f_errors = array();
+	$f_errors = array();
-if ( $session->user_level >= USER_LEVEL_ADMIN && isset($_POST['create_folder']) )
-{
+	if ( $session->user_level >= USER_LEVEL_ADMIN && isset($_POST['create_folder']) )
-if ( !isset($first_row['folder_id']) )
+	{
-{
+		if ( !isset($first_row['folder_id']) )
-//die('FALLING<pre>' . print_r($first_row, true) . '</pre>');
+		{
-$first_row['folder_id'] =& $first_row['img_id'];
+			//die('FALLING<pre>' . print_r($first_row, true) . '</pre>');
-}
+			$first_row['folder_id'] =& $first_row['img_id'];
-if ( !isset($first_row['folder_id']) )
+		}
-{
+		if ( !isset($first_row['folder_id']) )
-$f_errors[] = 'Internal error getting parent folder ID';
+		{
-}
+			$f_errors[] = 'Internal error getting parent folder ID';
-if ( empty($_POST['create_folder']) )
+		}
-{
+		if ( empty($_POST['create_folder']) )
-$f_errors[] = 'Please enter a folder name.';
+		{
-}
+			$f_errors[] = 'Please enter a folder name.';
-if ( $_POST['create_folder'] == '_id' )
+		}
-{
+		if ( $_POST['create_folder'] == '_id' )
-$f_errors[] = 'The name "_id" is reserved for internal functions and cannot be used on any image or folder.';
+		{
-}
+			$f_errors[] = 'The name "_id" is reserved for internal functions and cannot be used on any image or folder.';
-if ( count($f_errors) < 1 )
+		}
-{
+		if ( count($f_errors) < 1 )
-$q = $db->sql_query('INSERT INTO '.table_prefix.'gallery(img_title, is_folder, folder_parent) VALUES(\'' . $db->escape($_POST['create_folder']) . '\', 1, ' . $first_row['folder_id'] . ');');
+		{
-if ( !$q )
+			$q = $db->sql_query('INSERT INTO '.table_prefix.'gallery(img_title, is_folder, folder_parent, img_author) VALUES(\'' . $db->escape($_POST['create_folder']) . '\', 1, ' . $first_row['folder_id'] . ', ' . $session->user_id . ');');
-$db->_die();
+			if ( !$q )
-redirect(makeUrl($paths->fullpage), 'Folder created', 'The folder "' . htmlspecialchars($_POST['create_folder']) . '" has been created. Redirecting to last viewed folder...', 2);
+				$db->_die();
-}
+			redirect(makeUrl($paths->fullpage), 'Folder created', 'The folder "' . htmlspecialchars($_POST['create_folder']) . '" has been created. Redirecting to last viewed folder...', 2);
-}
+		}
+	}
-echo $header;
+	echo $header;
-if ( count($f_errors) > 0 )
-{
+	if ( count($f_errors) > 0 )
-echo '<div class="error-box">Error creating folder:<ul><li>' . implode('</li><li>', $f_errors) . '</li></ul></div>';
+	{
-}
+		echo '<div class="error-box">Error creating folder:<ul><li>' . implode('</li><li>', $f_errors) . '</li></ul></div>';
+	}
-// From here, this breadcrumb stuff is a piece of... sourdough French bread :-) *smacks lips*
-echo '<div class="breadcrumbs" style="padding: 4px; margin-bottom: 7px;">';
+	// From here, this breadcrumb stuff is a piece of... sourdough French bread :-) *smacks lips*
-// Upload image link for admins
+	echo '<div class="breadcrumbs" style="padding: 4px; margin-bottom: 7px;">';
-if ( $session->user_level >= USER_LEVEL_ADMIN )
+	// Upload image link for admins
-{
+	if ( $session->user_level >= USER_LEVEL_ADMIN )
-echo '<div style="float: right; font-size: smaller;">';
+	{
-echo '<a href="' . makeUrlNS('Special', 'GalleryUpload') . '">Upload new image(s)</a>';
+		echo '<div style="float: right; font-size: smaller;">';
-echo '</div>';
+		echo '<a href="' . makeUrlNS('Special', 'GalleryUpload') . '">Upload new image(s)</a>';
-}
+		echo '</div>';
-// The actual breadcrumbs
+	}
-echo '<small>' . implode(' &raquo; ', $breadcrumbs) . '</small>';
+	// The actual breadcrumbs
-echo '</div>';
+	echo '<small>' . implode(' &raquo; ', $breadcrumbs) . '</small>';
+	echo '</div>';
-// "Edit all" link
-if ( $row = $db->fetchrow($img_query) && $session->user_level >= USER_LEVEL_ADMIN )
+	// "Edit all" link
-{
+	if ( $row = $db->fetchrow($img_query) && $session->user_level >= USER_LEVEL_ADMIN )
-$img_list = array();
+	{
-$fol_list = array();
+		$img_list = array();
-$all_list = array();
+		$fol_list = array();
-do
+		$all_list = array();
-{
+		do
-if ( $row === true && isset($first_row) )
+		{
-{
+			if ( $row === true && isset($first_row) )
-$row = $first_row;
+			{
-}
+				$row = $first_row;
-// die('<pre>' . var_dump($row) . $db->sql_backtrace() . '</pre>');
+			}
-if ( !$row['img_id'] )
+				// die('<pre>' . var_dump($row) . $db->sql_backtrace() . '</pre>');
-break;
+			if ( !$row['img_id'] )
-$all_list[] = $row['img_id'];
+				break;
-if ( $row['is_folder'] == 1 )
+			$all_list[] = $row['img_id'];
-$fol_list[] = $row['img_id'];
+			if ( $row['is_folder'] == 1 )
-else
+				$fol_list[] = $row['img_id'];
-$img_list[] = $row['img_id'];
+			else
-}
+				$img_list[] = $row['img_id'];
-while ( $row = $db->fetchrow($img_query) );
+		}
+		while ( $row = $db->fetchrow($img_query) );
-$all_list = implode(',', $all_list);
-$fol_list = implode(',', $fol_list);
+		$all_list = implode(',', $all_list);
-$img_list = implode(',', $img_list);
+		$fol_list = implode(',', $fol_list);
+		$img_list = implode(',', $img_list);
-if ( !empty($all_list) )
-{
+		if ( !empty($all_list) )
-echo '<div style="float: right;">
+		{
-Edit all in this folder: ';
+			echo '<div style="float: right;">
-if ( !empty($img_list) )
+							Edit all in this folder: ';
-{
+			if ( !empty($img_list) )
-$edit_link = makeUrlNS('Special', 'GalleryUpload', 'edit_img=' . $img_list, true);
+			{
-echo "<a href=\"$edit_link\">images</a> ";
+				$edit_link = makeUrlNS('Special', 'GalleryUpload', 'edit_img=' . $img_list, true);
-}
+				echo "<a href=\"$edit_link\">images</a> ";
-if ( !empty($fol_list) )
+			}
-{
+			if ( !empty($fol_list) )
-$edit_link = makeUrlNS('Special', 'GalleryUpload', 'edit_img=' . $fol_list, true);
+			{
-echo "<a href=\"$edit_link\">folders</a> ";
+				$edit_link = makeUrlNS('Special', 'GalleryUpload', 'edit_img=' . $fol_list, true);
-}
+				echo "<a href=\"$edit_link\">folders</a> ";
-if ( !empty($img_list) && !empty($fol_list) )
+			}
-{
+			if ( !empty($img_list) && !empty($fol_list) )
-$edit_link = makeUrlNS('Special', 'GalleryUpload', 'edit_img=' . $all_list, true);
+			{
-echo "<a href=\"$edit_link\">both</a> ";
+				$edit_link = makeUrlNS('Special', 'GalleryUpload', 'edit_img=' . $all_list, true);
-}
+				echo "<a href=\"$edit_link\">both</a> ";
-// " Bypass stupid jEdit bug
+			}
-echo '</div>';
+			// " Bypass stupid jEdit bug
-}
+			echo '</div>';
-}
+		}
+	}
-$url_sort_name_asc  = makeUrl($paths->fullpage, 'sort=img_title&order=ASC', true);
-$url_sort_name_desc = makeUrl($paths->fullpage, 'sort=img_title&order=DESC', true);
+	$url_sort_name_asc  = makeUrl($paths->fullpage, 'sort=img_title&order=ASC', true);
-$url_sort_upl_asc   = makeUrl($paths->fullpage, 'sort=img_time_upload&order=ASC', true);
+	$url_sort_name_desc = makeUrl($paths->fullpage, 'sort=img_title&order=DESC', true);
-$url_sort_mod_asc   = makeUrl($paths->fullpage, 'sort=img_time_mod&order=ASC', true);
+	$url_sort_upl_asc   = makeUrl($paths->fullpage, 'sort=img_time_upload&order=ASC', true);
-$url_sort_upl_desc  = makeUrl($paths->fullpage, 'sort=img_time_upload&order=DESC', true);
+	$url_sort_mod_asc   = makeUrl($paths->fullpage, 'sort=img_time_mod&order=ASC', true);
-$url_sort_mod_desc  = makeUrl($paths->fullpage, 'sort=img_time_mod&order=DESC', true);
+	$url_sort_upl_desc  = makeUrl($paths->fullpage, 'sort=img_time_upload&order=DESC', true);
+	$url_sort_mod_desc  = makeUrl($paths->fullpage, 'sort=img_time_mod&order=DESC', true);
-// "Sort by" selector (pure CSS!)
-echo '<div class="select-outer">
+	// "Sort by" selector (pure CSS!)
-<span>Sort by...</span>
+	echo '<div class="select-outer">
-<div class="select-inner">
+					<span>Sort by...</span>
-<a href="' . $url_sort_name_asc  . '">Image title (A-Z) <b>(default)</b></a>
+					<div class="select-inner">
-<a href="' . $url_sort_name_desc . '">Image title (Z-A)</a>
+						<a href="' . $url_sort_name_asc  . '">Image title (A-Z) <b>(default)</b></a>
-<a href="' . $url_sort_upl_desc  . '">Time first uploaded (newest first)</a>
+						<a href="' . $url_sort_name_desc . '">Image title (Z-A)</a>
-<a href="' . $url_sort_upl_asc   . '">Time first uploaded (oldest first)</a>
+						<a href="' . $url_sort_upl_desc  . '">Time first uploaded (newest first)</a>
-<a href="' . $url_sort_mod_desc  . '">Date of last modification (newest first)</a>
+						<a href="' . $url_sort_upl_asc   . '">Time first uploaded (oldest first)</a>
-<a href="' . $url_sort_mod_asc   . '">Date of last modification (oldest first)</a>
+						<a href="' . $url_sort_mod_desc  . '">Date of last modification (newest first)</a>
-</div>
+						<a href="' . $url_sort_mod_asc   . '">Date of last modification (oldest first)</a>
-</div>
+					</div>
-<div class="select-pad">&nbsp;</div>';
+				</div>
+				<div class="select-pad">&nbsp;</div>';
-if ( $db->numrows($img_query) > 0 )
+	if ( $db->numrows($img_query) > 0 )
 	$db->sql_data_seek(0, $img_query);
-//
+	//
-// Main fetcher
+	// Main fetcher
-//
+	//
-$renderer = new SnaprFormatter();
+	$renderer = new SnaprFormatter();
-$callers = array(
+	$callers = array(
-'img_id' => array($renderer, 'render')
+		'img_id' => array($renderer, 'render')
-);
+		);
-$renderer->icons_per_row = 5;
+	$renderer->icons_per_row = 5;
-$start = 0;
+	$start = 0;
-if ( isset($_GET['start']) && preg_match('/^[0-9]+$/', $_GET['start']) )
+	if ( isset($_GET['start']) && preg_match('/^[0-9]+$/', $_GET['start']) )
-{
+	{
-$start = intval($_GET['start']);
+		$start = intval($_GET['start']);
-}
+	}
-$per_page = 25;
+	$per_page = 25;
-$html = paginate($img_query, '{img_id}', $db->numrows($img_query), makeUrl($paths->fullpage, 'sort=' . $sort_column . '&order=' . $sort_order . '&start=%s', false), $start, $per_page, $callers, '<ul class="snapr-gallery">', '</ul><span class="menuclear"></span>');
+	$html = paginate($img_query, '{img_id}', $db->numrows($img_query), makeUrl($paths->fullpage, 'sort=' . $sort_column . '&order=' . $sort_order . '&start=%s', false), $start, $per_page, $callers, '<ul class="snapr-gallery">', '</ul><span class="menuclear"></span>');
-if ( empty($html) )
+	if ( empty($html) )
-{
+	{
-	  echo '<h2 class="emptymessage">No images</h2>';
+		  echo '<h2 class="emptymessage">No images</h2>';
-}
+	}
-else
+	else
-{
+	{
 	  echo $html;
-}
+	}
-if ( $session->user_level >= USER_LEVEL_ADMIN )
+	if ( $session->user_level >= USER_LEVEL_ADMIN )
-{
+	{
-echo '<div class="select-outer">Create new folder';
+		echo '<div class="select-outer">Create new folder';
-echo '<div class="select-inner" style="padding-top: 4px;">';
+		echo '<div class="select-inner" style="padding-top: 4px;">';
-echo '<form action="' . makeUrl($paths->fullpage) . '" method="post">';
+		echo '<form action="' . makeUrl($paths->fullpage) . '" method="post">';
-echo '<input type="text" name="create_folder" size="30" /> <input type="submit" value="Create" />';
+		echo '<input type="text" name="create_folder" size="30" /> <input type="submit" value="Create" />';
-echo '</form></div>';
+		echo '</form></div>';
-echo '</div><div class="select-pad">&nbsp;</div><br />';
+		echo '</div><div class="select-pad">&nbsp;</div><br />';
-}
+	}
-$template->footer();
+	$template->footer();
 }
 ?>

changeset 42	7c6e2e97aa08
parent 39	e9a7e37bdadd