PageRenderTime 37ms CodeModel.GetById 7ms RepoModel.GetById 1ms app.codeStats 0ms

/infusions/addondb/submit.php

http://addondb.googlecode.com/
PHP | 240 lines | 207 code | 16 blank | 17 comment | 59 complexity | 80c962c42e969c7ecf5f14f51fa0a964 MD5 | raw file
    

  1. <?php

    2. 

  2. /*-------------------------------------------------------+

    3. 

  3. | PHP-Fusion Content Management System

    4. 

  4. | Copyright (C) 2002 - 2010 Nick Jones

    5. 

  5. | http://www.php-fusion.co.uk/

    6. 

  6. +--------------------------------------------------------+

    7. 

  7. | Filename: submit_addon.php

    8. 

  8. | Author: PHP-Fusion Addons Team

    9. 

  9. +--------------------------------------------------------+

    10. 

  10. | This program is released as free software under the

    11. 

  11. | Affero GPL license. You can redistribute it and/or

    12. 

  12. | addonify it under the terms of this license which you

    13. 

  13. | can read by viewing the included agpl.txt or online

    14. 

  14. | at www.gnu.org/licenses/agpl.html. Removal of this

    15. 

  15. | copyright header is strictly prohibited without

    16. 

  16. | written permission from the original author(s).

    17. 

  17. +--------------------------------------------------------*/

    18. 

  18. require_once "../../maincore.php";

    19. 

  19. require_once THEMES."templates/header.php";

    20. 

  20. 

    21. 

  21. require_once INFUSIONS."addondb/inc/inc.functions.php";

    22. 

  22. require_once ADDON."infusion_db.php";

    23. 

  23. include ADDON_LOCALE.LOCALESET."submit_addon.php";

    24. 

  24. 

    25. 

  25. if ($_REQUEST['addon_type'] != '') { $addon_sub_type = ($_REQUEST['addon_type']); } else { redirect("index.php"); }

    26. 

  26. 

    27. 

  27. if (!iMEMBER) {

    28. 

  28. 	opentable($locale['addondb600']);

    29. 

  29. 	echo "<center><br />".$locale['addondb608']."<br /><br /></center>\n";

    30. 

  30. 	closetable();

    31. 

  31. } elseif (isset($_POST['btn_submit'])) {

    32. 

  32. 	$error = "";

    33. 

  33. 	$addon_ext = "";

    34. 

  34. 	$addon_ext_img = "";

    35. 

  35. 	$upload_id = "";

    36. 

  36. 	$submit_info['addon_name'] = stripinput($_POST['addon_name']);

    37. 

  37. 	$submit_info['addon_cat_id'] = stripinput($_POST['addon_cat_id']);

    38. 

  38. 	$submit_info['addon_cat_type'] = stripinput($_POST['addon_cat_type']);

    39. 

  39. 	$submit_info['addon_status'] = 1;

    40. 

  40. 	$submit_info['addon_description'] = stripinput($_POST['addon_description']);

    41. 

  41. 	$submit_info['addon_demo_url'] = stripinput($_POST['addon_demo_url']);

    42. 

  42. 	$submit_info['addon_copyright'] = stripinput($_POST['addon_copyright']);

    43. 

  43. 	$submit_info['addon_version'] = stripinput($_POST['addon_version']);

    44. 

  44. 	$submit_info['addon_version_id'] = stripinput($_POST['addon_version_id']);

    45. 

  45. 	$submit_info['addon_submitter_name'] = stripinput($_POST['addon_submitter_name']);

    46. 

  46. 	$submit_info['addon_submitter_id'] = stripinput($_POST['addon_submitter_id']);

    47. 

  47. 	$submit_info['addon_forum_status'] = stripinput($_POST['addon_forum_status']);

    48. 

  48. 	$submit_info['addon_share_status'] = stripinput($_POST['addon_share_status']);

    49. 

  49. 	$submit_info['addon_author_name'] = stripinput($_POST['addon_author_name']);

    50. 

  50. 	$submit_info['addon_author_status'] = stripinput($_POST['addon_author_status']);

    51. 

  51. 	$submit_info['addon_co_author_name'] = stripinput($_POST['addon_co_author_name']);

    52. 

  52. 	$submit_info['addon_author_email'] = stripinput($_POST['addon_author_email']);

    53. 

  53. 	$submit_info['addon_author_www'] = stripinput($_POST['addon_author_www']);

    54. 

  54. 	$submit_info['addon_date'] = time();

    55. 

  55. 	if ($submit_info['addon_name'] == "" || $submit_info['addon_description'] == "" || $submit_info['addon_version'] == "" || $submit_info['addon_author_name'] == "") {

    56. 

  56. 		$error = $locale['addondb603'];

    57. 

  57. 	} elseif ($submit_info['addon_author_email']<>"" && !preg_match("/^[-0-9A-Z_\.]+@([-0-9A-Z_\.]+\.)+([0-9A-Z]){2,4}$/i", $submit_info['addon_author_email'])) {

    58. 

  58. 		$error = $locale['addondb607'];

    59. 

  59. 	} else {

    60. 

  60. 		$sql = dbquery("INSERT INTO ".DB_SUBMISSIONS." VALUES('', 'm', '".$userdata['user_id']."', '".time()."', '".addslashes(serialize($submit_info))."')");

    61. 

  61. 		$upload_id = dbinsert_id();

    62. 

  62. 		if (is_uploaded_file($_FILES['addon_download']['tmp_name'])) {

    63. 

  63. 			if ($_FILES['addon_download']['size'] > $addon_upload_maxsize) {

    64. 

  64. 				$error = sprintf($locale['addondb604'], $addon_upload_maxsize);

    65. 

  65. 			}

    66. 

  66. 			foreach (array_keys($addon_upload_exts) as $addon_upload_ext) {

    67. 

  67. 				if (stristr($_FILES['addon_download']['name'], $addon_upload_ext) == $addon_upload_ext) $addon_ext = $addon_upload_ext;

    68. 

  68. 			}

    69. 

  69. 			if ($addon_ext != "") {

    70. 

  70. 				$addon_ext = ".".$addon_ext;

    71. 

  71. 			} else {

    72. 

  72. 				$error = sprintf($locale['addondb605'],implode(", ",array_keys($addon_upload_exts)));

    73. 

  73. 			}

    74. 

  74. 						

    75. 

  75. 			if ($error == "") {

    76. 

  76. 			

    77. 

  77.         		if (is_uploaded_file($_FILES['addon_screen']['tmp_name'])) {

    78. 

  78.                 if ($_FILES['addon_screen']['size'] > $addon_upload_maxsize_img) {

    79. 

  79.                   $error = sprintf($locale['addondb609'], $addon_upload_maxsize_img);

    80. 

  80.                 }

    81. 

  81.                 foreach (array_keys($addon_upload_exts_img) as $addon_upload_ext_img) {

    82. 

  82.                   if (stristr($_FILES['addon_screen']['name'], $addon_upload_ext_img) == $addon_upload_ext_img) $addon_ext_img = $addon_upload_ext_img;

    83. 

  83.                 }

    84. 

  84.                 if ($addon_ext_img != "") {

    85. 

  85.                   $addon_ext_img = ".".$addon_ext_img;

    86. 

  86.                 } else {

    87. 

  87.                   $error = sprintf($locale['addondb610'],implode(", ",array_keys($addon_upload_exts_img)));

    88. 

  88.                   }

    89. 

  89.                 }

    90. 

  90. 			

    91. 

  91.              if ($error == "") {

    92. 

  92.                 move_uploaded_file($_FILES['addon_download']['tmp_name'], $addon_upload_dir.$addon_upload_prefix.$upload_id.$addon_ext);

    93. 

  93.                

    94. 

  94.                 $submit_info['addon_download'] = $addon_upload_prefix.$upload_id.$addon_ext;

    95. 

  95.                                 

    96. 

  96.                 if (is_uploaded_file($_FILES['addon_screen']['tmp_name'])) {

    97. 

  97.                     move_uploaded_file($_FILES['addon_screen']['tmp_name'], $addon_upload_dir_img.$upload_id.$addon_ext_img);

    98. 

  98.                     

    99. 

  99.                     $submit_info['addon_screen'] = $upload_id.$addon_ext_img;

    100. 

  100.                     

    101. 

  101.                     require_once INCLUDES."photo_functions_include.php";

    102. 

  102.                     $fileext = $addon_ext_img;

    103. 

  103.                     if ($fileext == ".gif") { $filetype = 1;

    104. 

  104.                      } elseif ($fileext == ".jpg") { $filetype = 2;

    105. 

  105.                      } elseif ($fileext == ".png") { $filetype = 3;

    106. 

  106.                      } else { $filetype = false; }

    107. 

  107.                     createthumbnail($filetype , $addon_upload_dir_img.$upload_id.$addon_ext_img, $addon_upload_dir_img."t_".$upload_id.$addon_ext_img, 200, 150);

    108. 

  108.                  

    109. 

  109.                 } elseif ($addon_sub_type == $locale['addondb425']) { $error = $locale['addondb614']; } else {

    110. 

  110.                     $submit_info['addon_screen'] = "";

    111. 

  111.                   }

    112. 

  112.                 $sql = dbquery("UPDATE ".DB_SUBMISSIONS." SET submit_criteria='".addslashes(serialize($submit_info))."' WHERE submit_id='".$upload_id."'");

    113. 

  113.               }

    114. 

  114.            }

    115. 

  115. 	     } else { $error = $locale['addondb606'];

    116. 

  116. 	   }

    117. 

  117.     }

    118. 

  118. 	if ($error != "") {

    119. 

  119. 		opentable($locale['addondb600']);

    120. 

  120. 		if (isNum($upload_id)) {

    121. 

  121. 			if (file_exists($addon_upload_dir.$addon_upload_prefix.$upload_id.$addon_ext)) unlink($addon_upload_dir.$addon_upload_prefix.$upload_id.$addon_ext);

    122. 

  122. 			$rm = dbquery("DELETE FROM ".DB_SUBMISSIONS." WHERE submit_id='".$upload_id."'");

    123. 

  123. 		}

    124. 

  124. 		echo "<center><br />".$locale['addondb601']."<br /><br />

    125. 

  125. 		<span class='error'>".$error."</span><br /><br />

    126. 

  126. 		<a href='javascript:history.back(-1);'>".$locale['addondb602']."</a><br /><br /></center>\n";

    127. 

  127. 		closetable();

    128. 

  128. 	} else {

    129. 

  129. 	

    130. 

  130. 	if ($addon_sub_type !='') {

    131. 

  131. 		opentable($locale['addondb400'].$addon_sub_type);

    132. 

  132. 		} else {

    133. 

  133. 		opentable($locale['addondb421']); }

    134. 

  134. 		echo "<center><br />

    135. 

  135. 		".$locale['addondb500']."<br /><br />

    136. 

  136. 		".$locale['addondb501']."<br /><br />

    137. 

  137. 		".$locale['addondb502'];

    138. 

  138. 		echo "<form name='select' method='post' action='".FUSION_SELF."'>\n";

    139. 

  139.     	    $addon_type_list = "";

    140. 

  140. 			foreach ($addon_types as $k=>$addon_type) {

    141. 

  141. 				$addon_type_list .= "<option value='$addon_type'>".$addon_type."</option>\n";

    142. 

  142. 			}

    143. 

  143. 		echo "<select class='textbox' name='addon_type' style='width:300px;' onChange='submit()'><option value='0'>".$locale['addondb427']."</option>".$addon_type_list."</select>\n";

    144. 

  144. 		echo "</form>\n";

    145. 

  145. 		echo "<br /><br /><a href='".BASEDIR."index.php'>".$locale['addondb503']."</a><br />\n";

    146. 

  146. 		echo "<br /><a href='".ADDON."index.php'>".$locale['addondb505']."</a><br />\n";

    147. 

  147. 		echo "<br /><a href='".ADDON."dashboard.php'>".$locale['addondb506']."</a><br />\n";

    148. 

  148. 		echo "<br />".(iADMIN ? "<a href='".ADDON_ADMIN."submissions.php".$aidlink."'>".$locale['addondb504']."</a><br /><br />" : "")."

    149. 

  149. 		</center>\n";

    150. 

  150. 		closetable();

    151. 

  151. 	}

    152. 

  152. } else {

    153. 

  153. 

    154. 

  154. add_to_title($locale['addondb412'].$locale['addondb400'].$addon_sub_type.$locale['addondb420']);

    155. 

  155. 	opentable($locale['addondb400'].$addon_sub_type.$locale['addondb420']);

    156. 

  156. 	$addon_type_list = ""; $cat_list = ""; $opt = "";

    157. 

  157. 	

    158. 

  158. 	foreach ($addon_types as $k=>$addon_type) $addon_type_list .= "<option value='".$k."'>".$addon_type."</option>\n";

    159. 

  159. //	foreach ($addon_types as $k=>$addon_type) $addon_type_list .= $k;

    160. 

  160. 

    161. 

  161. 	$q_addon_cats = dbquery("SELECT 

    162. 

  162. 	                               addon_cat_id, 

    163. 

  163. 	                               addon_cat_type, 

    164. 

  164. 	                               addon_cat_name 

    165. 

  165. 	                               FROM ".DB_ADDON_CATS." 

    166. 

  166. 	                               WHERE addon_cat_type = 

    167. 

  167. 	                               ".$get_type[$addon_sub_type]." 

    168. 

  168. 	                               ORDER BY addon_cat_type,

    169. 

  169. 	                               addon_cat_order

    170. 

  170. 	                               ");

    171. 

  171. 	if (dbrows($q_addon_cats) != 0) {

    172. 

  172. 		while ($d_addon_cats = dbarray($q_addon_cats)) {

    173. 

  173. 			if (get_addon_type($d_addon_cats['addon_cat_type']) != $opt) {

    174. 

  174. 				if ($opt != "") { $cat_list .= "</optgroup>\n"; }

    175. 

  175. 				$opt = get_addon_type($d_addon_cats['addon_cat_type']);

    176. 

  176. 				$cat_list .= "<optgroup label='".get_addon_type($d_addon_cats['addon_cat_type'])."'>\n";

    177. 

  177. 			}

    178. 

  178. 			$cat_list .= "<option value='".$d_addon_cats['addon_cat_id']."'>".$d_addon_cats['addon_cat_name']."</option>\n";		

    179. 

  179. 		}

    180. 

  180. 		$cat_list .= "</optgroup>\n";

    181. 

  181. echo "

    182. 

  182. <form name='add_addon' method='post' action='".FUSION_SELF."' enctype='multipart/form-data'>

    183. 

  183. <table align='center' cellpadding='0' cellspacing='0' class='tbl-border addonsubmitform' width='100%'>

    184. 

  184. <tr>

    185. 

  185. <td class='tbl1' colspan='2'><p>".$locale['addondb401']."</p></td>

    186. 

  186. </tr>

    187. 

  187. <tr>

    188. 

  188. <td class='tbl1'><label for='addon_name'>".$addon_sub_type.$locale['addondb402']."</label><input type='text' class='textbox' id='addon_name' name='addon_name' /></td>

    189. 

  189. <td class='tbl1'><label for='addon_cat_id'>".$locale['addondb403']."</label><select class='textbox' id='addon_cat_id' name='addon_cat_id'>".$cat_list."</select>

    190. 

  190. <input type='hidden' class='textbox' name='addon_cat_type' value='".$get_type[$opt]."'></td>

    191. 

  191. </tr>

    192. 

  192. <tr>

    193. 

  193. <td class='tbl1'><label for='addon_description'>".$locale['addondb404']."</label><textarea cols='63' rows='9' id='addon_description' class='textbox' id='addon_description' name='addon_description'></textarea>

    194. 

  194. <label for='addon_demo_url'>".$locale['addondb431']."</label><input type='text' class='textbox' id='addon_demo_url' name='addon_demo_url' /></td>

    195. 

  195. <td class='tbl1'><label for='addon_copyright'>".$locale['addondb405']."</label><textarea cols='63' rows='3' class='textbox' id='addon_copyright' name='addon_copyright'></textarea>

    196. 

  196. <label for='addon_forum_status' style='margin-top:16px'>".$locale['addondb417']."</label><select id='addon_forum_status' name='addon_forum_status' class='textbox'>

    197. 

  197. <option value='0'>".$locale['addondb418']."</option>

    198. 

  198. <option value='1'>".$locale['addondb419']."</option></select>

    199. 

  199. <label for='addon_share_status' style='margin-top:16px'>".$locale['addondb430']."&nbsp;<img src='".ADDON_IMG."facebook.png' alt='' />&nbsp;<img src='".ADDON_IMG."twitter.png' alt='' /></label>

    200. 

  200. <select id='addon_share_status' name='addon_share_status' class='textbox'>

    201. 

  201. <option value='1'>".$locale['addondb418']."</option>

    202. 

  202. <option value='0'>".$locale['addondb419']."</option></select>

    203. 

  203. </td>

    204. 

  204. </tr>

    205. 

  205. <tr>

    206. 

  206. <td class='tbl1'><label for='addon_version'>".$locale['addondb406']."</label><input type='text' class='textbox' id='addon_version' name='addon_version' /></td>

    207. 

  207. <td class='tbl1'><label for='addon_version_id'>".$locale['addondb407']."</label><select class='textbox' id='addon_version_id' name='addon_version_id'>".buildversionoptionlist(-1)."</select></td>

    208. 

  208. </tr>

    209. 

  209. <tr>

    210. 

  210. <td class='tbl1'><label for='addon_download'>".$locale['addondb411']."</label><input type='file' class='textbox' id='addon_download' name='addon_download' /></td>

    211. 

  211. <td class='tbl1'><label for='addon_screen'>".$locale['addondb415']."</label><input type='file' class='textbox' id='addon_screen' name='addon_screen' /></td>

    212. 

  212. </tr>

    213. 

  213. <tr>

    214. 

  214. <td class='tbl1'><label for='addon_author_name'>".$locale['addondb408']."</label><input type='text' class='textbox' id='addon_author_name' name='addon_author_name' value='".$userdata['user_name']."' /></td>

    215. 

  215. <td class='tbl1'><label for='addon_co_author_name'>".$locale['addondb613']."</label><input type='text' class='textbox' id='addon_co_author_name' name='addon_co_author_name' /></td>

    216. 

  216. </tr>

    217. 

  217. <tr>

    218. 

  218. <td class='tbl1'><label for='addon_author_email'>".$locale['addondb409']."</label><input type='text' class='textbox' id='addon_author_email' name='addon_author_email' value='".$userdata['user_email']."' /></td>

    219. 

  219. <td class='tbl1'><label for='addon_author_www'>".$locale['addondb410']."</label><input type='text' class='textbox' id='addon_author_www' name='addon_author_www' value='".$userdata['user_web']."' /></td>

    220. 

  220. </tr>

    221. 

  221. <tr>

    222. 

  222. <td class='tbl1' colspan='2' align='center'><hr />

    223. 

  223. <input type='submit' class='button' name='btn_submit' value='".$locale['addondb412']."' /></td>

    224. 

  224. </tr>

    225. 

  225. </table>\n";

    226. 

  226. $status_check = dbarray(dbquery("SELECT addon_author_status FROM ".DB_ADDONS." WHERE addon_author_name = '".$userdata['user_name']."' AND addon_author_status !='0'"));

    227. 

  227. if (isset($status_check['addon_author_status'])) { $status = $status_check['addon_author_status']; } else { $status = "0"; }

    228. 

  228. echo "<input type='hidden' class='textbox' name='addon_author_status' value='".$status."' />\n";

    229. 

  229. echo "<input type='hidden' class='textbox' name='addon_submitter_name' value='".$userdata['user_name']."' />\n

    230. 

  230. <input type='hidden' class='textbox' name='addon_submitter_id' value='".$userdata['user_id']."' />\n

    231. 

  231. <input type='hidden' class='textbox' name='addon_type' value='0' />\n

    232. 

  232. </form>\n";

    233. 

  233. 	} else {

    234. 

  234. 		echo "<center><br />".$locale['addondb611']."<br /><br />".$locale['addondb612']."<br /><br /></center>\n";

    235. 

  235. 	}

    236. 

  236. 	closetable();

    237. 

  237. }

    238. 

  238. 

    239. 

  239. require_once THEMES."templates/footer.php";

    240. 

  240. ?>
    241.