template.php

groupoffice

<?php
/*
Copyright Intermesh 2003
Author: Merijn Schering <mschering@intermesh.nl>
Version: 1.0 Release date: 08 July 2003

This program is free software; you can redistribute it and/or modify it
under the terms of the GNU General Public License as published by the
Free Software Foundation; either version 2 of the License, or (at your
option) any later version.
*/

//load Group-Office
require_once("../../Group-Office.php");


//authenticate the user
$GO_SECURITY->authenticate();

//see if the user has access to this module
//for this to work there must be a module named 'example'
$GO_MODULES->authenticate('cms', true);

//load the CMS module class library
require_once($GO_MODULES->class_path.'cms.class.inc');
$cms = new cms();


//get the language file
require_once($GO_LANGUAGE->get_language_file('cms'));

$task = isset($_REQUEST['task']) ? $_REQUEST['task'] : '';
$template_id = isset($_REQUEST['template_id']) ? $_REQUEST['template_id'] : 0;

//create a tab window
$tpl_table = new tabtable('template_tab',$cms_theme,'100%','100%', '100','', true);

$link_back = $_SERVER['PHP_SELF'].'?template_id='.$template_id.'&template_tab='.$tpl_table->get_active_tab_id();

switch($task)
{
	case 'save_template':
	if($_SERVER['REQUEST_METHOD'] == 'POST')
	{
		$name = trim($_POST['name']);
		$restrict_editor = isset($_POST['restrict_editor']) ? '1' : '0';
		$activate_frontpage = isset($_POST['activate_frontpage']) ? '1' : '0';
		if ($name == '')
		{
			$feedback= '<p class="Error">'.$error_missing_field.'</p>';
		}else
		{
			if (isset($_FILES['additional_style_file']) && is_uploaded_file($_FILES['additional_style_file']['tmp_name']))
			{
				$fp = fopen($_FILES['additional_style_file']['tmp_name'], 'r');
				$additional_style = addslashes(fread($fp, $_FILES['additional_style_file']['size']));
				fclose($fp);
				unlink($_FILES['additional_style_file']['tmp_name']);
			}else
			{
				$additional_style = smart_addslashes($_POST['additional_style']);
			}

			if (isset($_FILES['style_file']) && is_uploaded_file($_FILES['style_file']['tmp_name']))
			{
				$fp = fopen($_FILES['style_file']['tmp_name'], 'r');
				$style = addslashes(fread($fp, $_FILES['style_file']['size']));
				fclose($fp);
				unlink($_FILES['style_file']['tmp_name']);
			}else
			{
				$style = smart_addslashes($_POST['style']);
			}
			
			if (isset($_FILES['print_style_file']) && is_uploaded_file($_FILES['print_style_file']['tmp_name']))
			{
				$fp = fopen($_FILES['print_style_file']['tmp_name'], 'r');
				$style = addslashes(fread($fp, $_FILES['print_style_file']['size']));
				fclose($fp);
				unlink($_FILES['print_style_file']['tmp_name']);
			}else
			{
				$print_style = smart_addslashes($_POST['print_style']);
			}

			if ($template_id > 0)
			{
				$template = $cms->get_template_by_name($GO_SECURITY->user_id, $name);
				if ($template && $template['id'] != $template_id)
				{
					$feedback = '<p class="Error">'.$fbNameExists.'</p>';
				}else
				{
					if (!$cms->update_template($template_id, $name, $style, $additional_style, $print_style, $restrict_editor, $activate_frontpage))
					{
						$feedback = '<p class="Error">'.$strSaveError.'</p>';
					}
				}
			}else
			{
				if ($cms->get_template_by_name($GO_SECURITY->user_id, $name))
				{
					$feedback = '<p class="Error">'.$fbNameExists.'</p>';
				}else
				{
					if (!$acl_read = $GO_SECURITY->get_new_acl('cms template read: '.$name))
					{
						die($strAclError);
					}

					if (!$acl_write = $GO_SECURITY->get_new_acl('cms template write: '.$name))
					{
						$GO_SECURITY->delete_acl($acl_read);
						die($strAclError);
					}

					if (!$GO_SECURITY->add_user_to_acl($GO_SECURITY->user_id, $acl_write))
					{
						$GO_SECURITY->delete_acl($acl_read);
						$GO_SECURITY->delete_acl($acl_write);
						die($strAclError);
					}

					if(!$template_id = $cms->add_template($GO_SECURITY->user_id, $name, $style, $additional_style, $print_style, $restrict_editor, $activate_frontpage, $acl_read, $acl_write))
					{
						$GO_SECURITY->delete_acl($acl_read);
						$GO_SECURITY->delete_acl($acl_write);
						$feedback = '<p class="Error">'.$strSaveError.'</p>';
					}
				}
			}
			if ($_POST['close'] == 'true')
			{
				header('Location: templates.php');
				exit();
			}

		}
	}
	break;

	case 'save_template_item':
	$task='template_item';
	if($_SERVER['REQUEST_METHOD'] == 'POST')
	{
		$name = trim($_POST['name']);
		if ($name == '')
		{
			$feedback= '<p class="Error">'.$error_missing_field.'</p>';
		}else
		{
			if (isset($_FILES['content_file']) && is_uploaded_file($_FILES['content_file']['tmp_name']))
			{
				$fp = fopen($_FILES['content_file']['tmp_name'], 'r');
				$_POST['content'] = addslashes(fread($fp, $_FILES['content_file']['size']));
				fclose($fp);
				unlink($_FILES['content_file']['tmp_name']);
			}else
			{
				$_POST['content'] = smart_addslashes($_POST['content']);
			}

			$content = convert_html($_POST['content']);

			$template_item_id = isset($_POST['template_item_id']) ? $_POST['template_item_id'] : 0;

			if ($template_item_id > 0)
			{
				if ($template_item = $cms->get_template_by_name($template_id, $name) && $template_item['id'] != $template_item_id)
				{
					$feedback = '<p class="Error">'.$fbNameExists.'</p>';
				}else
				{
					if (!$cms->update_template_item($template_item_id, $name, $_POST['content']))
					{
						$feedback = '<p class="Error">'.$strSaveError.'</p>';
					}
				}
			}else
			{
				if ($cms->get_template_item_by_name($template_id, $name))
				{
					$feedback = '<p class="Error">'.$fbNameExists.'</p>';
				}else
				{
					if(!$template_item_id = $cms->add_template_item($template_id, $name, $_POST['content']))
					{
						$feedback = '<p class="Error">'.$strSaveError.'</p>';
					}
				}
			}
			if ($cms->get_template_items($template_id) == 1)
			{
				$cms->set_template_items($template_id, $template_item_id, 0);
			}
			if ($_POST['close'] == 'true')
			{
				$task = '';
			}
		}
	}
	break;

	/*case 'upload':

	if ($_SERVER['REQUEST_METHOD'] == 'POST')
	{
		$active_tab = 'template_files.inc';
		$task = 'list';
		if (isset($_FILES['file']))
		{

			for ($i=0;$i<count($_FILES['file']['tmp_name']);$i++)
			{
				if (is_uploaded_file($_FILES['file']['tmp_name'][$i]))
				{
					$name = $_FILES['file']['name'][$i];
					while ($cms->template_file_exists($template_id, $name))
					{
						$x++;
						$name = strip_extension($_FILES['file']['name'][$i]).' ('.$x.').'.get_extension($_FILES['file']['name'][$i]);
					}

					$fp = fopen($_FILES['file']['tmp_name'][$i], 'r');
					$content = addslashes(fread($fp, $_FILES['file']['size'][$i]));
					fclose($fp);
					unlink($_FILES['file']['tmp_name'][$i]);
					$file_id = $cms->add_template_file($template_id, $name, $content);
				}
			}
		}
	}
	break;*/

	case 'set_template_items':
	$cms->set_template_items($template_id, $_POST['main_template_item_id'], $_POST['frontpage_template_item_id']);
	break;
}

if ($template_id > 0)
{
	$template = $cms->get_template($template_id);

	if (!$GO_SECURITY->has_permission($GO_SECURITY->user_id, $template['acl_write']))
	{
		header('Location: '.$GO_CONFIG->host.'error_docs/403.php');
		exit();
	}
}

//set the page title for the content file
$page_title = $lang_modules['cms'];

//require the content file. This will draw the logo's and the menu

$htmlarea = new htmlarea();
$htmlarea->force_textmode();
$GO_HEADER['head'] = $htmlarea->get_header('content', -50, -160, 25);
$GO_HEADER['head'] .= datatable::get_header();
$GO_HEADER['body_arguments'] = 'onload="initEditor()"';
require_once($GO_THEME->theme_path."header.inc");

?>
<form name="cms" method="post" action="<?php echo $_SERVER['PHP_SELF']; ?>" enctype="multipart/form-data">
<input type="hidden" name="template_id" value="<?php echo $template_id; ?>" />

  <?php
  switch ($task)
  {
  	case 'upload':
  	require_once('upload_template_file.inc');
  	break;

  	default:
  	if ($template_id > 0)
  	{
  		$tpl_table->add_tab('template.inc', $strProperties);
  		$tpl_table->add_tab('template_items.inc', $cms_templates);
  		$tpl_table->add_tab('template_files.inc', $cms_files);
  		$tpl_table->add_tab('template_read_permissions.inc', $strReadRights);
  		$tpl_table->add_tab('template_write_permissions.inc', $strWriteRights);
  		if(isset($active_tab))
  		{
  			$tpl_table->set_active_tab($active_tab);
  		}
  		
  		if($tpl_table->get_active_tab_id() == 'template_files.inc')
  		{
  			$template_file_path = $GO_CONFIG->local_path.'cms/templates/'.$template_id.'/';		
				if(!is_dir($template_file_path))
				{
					require_once($GO_CONFIG->class_path.'filesystem.class.inc');
					$fs = new filesystem();
					mkdir_recursive($template_file_path);	
					$fs->add_share($template['user_id'], $template_file_path, 'template', $template['acl_read'], $template['acl_write']);
				}
				require($GO_MODULES->modules['filesystem']['class_path'].'filesystem_list.class.inc');


				$fl = new filesystem_list('cms_templatefiles_list', $template_file_path);

  			$menu = new button_menu();
	  		$menu->add_button(
						'upload', 
						$strUpload, 
						$GO_MODULES->modules['filesystem']['url'].
							'index.php?task=upload&path='.urlencode($template_file_path).'&return_to='.
								urlencode($link_back));
				$menu->add_button(
					'delete_big', 
					$cmdDelete, 
					$fl->get_delete_handler());
					
			echo $menu->get_html();
			}
			
			
  		$tpl_table->print_head('templates.php');
  		require_once($tpl_table->get_active_tab_id());
  	}else
  	{
  		$tpl_table->print_head('templates.php');
  		require_once('template.inc');
  	}
  	$tpl_table->print_foot();
  	break;
  }
?>

</form>
<?php
require_once($GO_THEME->theme_path."footer.inc");
?>