PageRenderTime 52ms CodeModel.GetById 20ms RepoModel.GetById 1ms app.codeStats 0ms

/Zikula-1.2.3/system/Categories/pnuser.php

#
PHP | 254 lines | 206 code | 18 blank | 30 comment | 19 complexity | 9498b6488a3dbabeda968f06aef30570 MD5 | raw file
Possible License(s): GPL-2.0, LGPL-2.1, BSD-3-Clause 
    

  1. <?php
    2. 

  2. /**
    3. 

  3.  * Zikula Application Framework
    4. 

  4.  *
    5. 

  5.  * @copyright Zikula Development Team
    6. 

  6.  * @link http://www.zikula.org
    7. 

  7.  * @version $Id: pnuser.php 27396 2009-11-04 01:38:04Z mateo $
    8. 

  8.  * @license GNU/GPL - http://www.gnu.org/copyleft/gpl.html
    9. 

  9.  * @author Robert Gasch rgasch@gmail.com
    10. 

  10.  * @package Zikula_Core
    11. 

  11.  */
    12. 

  12. 

  13. Loader::loadClass ('HtmlUtil');
    14. 

  14. Loader::loadClass ('LanguageUtil');
    15. 

  15. Loader::loadClassFromModule ('Categories', 'category');
    16. 

  16. 

  17. /**
    18. 

  18.  * main user function
    19. 

  19.  */
    20. 

  20. function Categories_user_main()
    21. 

  21. {
    22. 

  22.     if (!SecurityUtil::checkPermission('Categories::', '::', ACCESS_EDIT)) {
    23. 

  23.         return LogUtil::registerPermissionError();
    24. 

  24.     }
    25. 

  25. 

  26.     $referer = pnServerGetVar ('HTTP_REFERER');
    27. 

  27.     if (strpos ($referer, 'module=Categories') === false) {
    28. 

  28.         SessionUtil::setVar('categories_referer', $referer);
    29. 

  29.     }
    30. 

  30. 

  31.     $pnRender = & pnRender::getInstance('Categories', false);
    32. 

  32.     $pnRender->assign ('allowusercatedit', pnModGetVar('Categories', 'allowusercatedit', 0));
    33. 

  33.     return $pnRender->fetch('categories_user_editcategories.htm');
    34. 

  34. }
    35. 

  35. 

  36. /**
    37. 

  37.  * edit category for a simple, non-recursive set of categories
    38. 

  38.  */
    39. 

  39. function Categories_user_edit ()
    40. 

  40. {
    41. 

  41.     $docroot = FormUtil::getPassedValue('dr', 0);
    42. 

  42.     $cid     = FormUtil::getPassedValue('cid', 0);
    43. 

  43.     $url     = pnModURL('Categories', 'user', 'edit', array('dr' => $docroot));
    44. 

  44. 

  45.     if (!SecurityUtil::checkPermission('Categories::category', "ID::$docroot", ACCESS_EDIT)) {
    46. 

  46.         return LogUtil::registerPermissionError($url);
    47. 

  47.     }
    48. 

  48. 

  49.     $referer = pnServerGetVar ('HTTP_REFERER');
    50. 

  50.     if (strpos($referer, 'module=Categories') === false) {
    51. 

  51.         SessionUtil::setVar('categories_referer', $referer);
    52. 

  52.     }
    53. 

  53. 

  54.     $rootCat = array();
    55. 

  55.     $allCats = array();
    56. 

  56.     $editCat = array();
    57. 

  57. 

  58.     if (!$docroot) {
    59. 

  59.         return LogUtil::registerError(__("Error! The URL contains an invalid 'document root' parameter."), null, $url);
    60. 

  60.     }
    61. 

  61.     if ($docroot == 1) {
    62. 

  62.         return LogUtil::registerError(__("Error! The root directory cannot be modified in 'user' mode"), null, $url);
    63. 

  63.     }
    64. 

  64. 

  65.     Loader::loadClass('CategoryUtil');
    66. 

  66. 

  67.     if (is_int((int)$docroot) && $docroot > 0) {
    68. 

  68.         $rootCat = CategoryUtil::getCategoryByID($docroot);
    69. 

  69.     } else {
    70. 

  70.         $rootCat = CategoryUtil::getCategoryByPath($docroot);
    71. 

  71.         if (!$rootCat) {
    72. 

  72.             $rootCat = CategoryUtil::getCategoryByPath($docroot, 'ipath');
    73. 

  73.         }
    74. 

  74.     }
    75. 

  75. 

  76.     // now check if someone is trying edit another user's categories
    77. 

  77.     $userRoot = pnModGetVar('Categories', 'userrootcat', 0);
    78. 

  78.     if ($userRoot) {
    79. 

  79.         $userRootCat = CategoryUtil::getCategoryByPath($userRoot);
    80. 

  80.         if ($userRootCat) {
    81. 

  81.             $userRootCatIPath = $userRootCat['ipath'];
    82. 

  82.             $rootCatIPath     = $rootCat['ipath'];
    83. 

  83.             if (strpos($rootCatIPath, $userRootCatIPath) !== false) {
    84. 

  84.                 if (!SecurityUtil::checkPermission('Categories::category', "ID::$docroot", ACCESS_ADMIN)) {
    85. 

  85.                     $thisUserRootCategoryName = pnModAPIFunc ('Categories', 'user', 'getusercategoryname');
    86. 

  86.                     $thisUserRootCatPath      = $userRootCat['path'] . '/' . $thisUserRootCategoryName;
    87. 

  87.                     $userRootCatPath          = $userRootCat['path'];
    88. 

  88.                     $rootCatPath              = $rootCat['path'];
    89. 

  89.                     if (strpos($rootCatPath, $userRootCatPath) === false) {
    90. 

  90.                         //! %s represents the root path (id), passed in the url
    91. 

  91.                         return LogUtil::registerError(__f("Error! It looks like you are trying to edit another user's categories. Only site administrators can do that (%s).", $docroot), null, $url);
    92. 

  92.                     }
    93. 

  93.                 }
    94. 

  94.             }
    95. 

  95.         }
    96. 

  96.     }
    97. 

  97. 

  98.     if ($cid) {
    99. 

  99.        $editCat = CategoryUtil::getCategoryByID ($cid);
    100. 

  100.        if ($editCat['is_locked']) {
    101. 

  101.            //! %1$s is the id, %2$s is the name
    102. 

  102.            return LogUtil::registerError(__f('Notice: The administrator has locked the category \'%2$s\' (ID \'%$1s\'). You cannot edit or delete it.', array($cid, $editCat['name'])), null, $url);
    103. 

  103.        }
    104. 

  104.     }
    105. 

  105. 

  106.     if (!$rootCat) {
    107. 

  107.         return LogUtil::registerError(__f("Error! Cannot access root directory (%s).", $docroot), null, $url);
    108. 

  108.     }
    109. 

  109.     if ($editCat && !$editCat['is_leaf']) {
    110. 

  110.         return LogUtil::registerError(__f('Error! The specified category is not a leaf-level category (%s).', $cid), null, $url);
    111. 

  111.     }
    112. 

  112.     if ($editCat && !CategoryUtil::isDirectSubCategory ($rootCat, $editCat)) {
    113. 

  113.         return LogUtil::registerError(__f('Error! The specified category is not a child of the document root (%1$s; %2$s).', array($docroot, $cid)), null, $url);
    114. 

  114.     }
    115. 

  115. 

  116.     $allCats = CategoryUtil::getSubCategoriesForCategory($rootCat, false, false, false, true, true);
    117. 

  117. 

  118.     $attributes = isset($editCat['__ATTRIBUTES__']) ? $editCat['__ATTRIBUTES__'] : array();
    119. 

  119. 

  120.     $languages = ZLanguage::getInstalledLanguages();
    121. 

  121. 

  122.     $pnRender = & pnRender::getInstance('Categories', false);
    123. 

  123.     $pnRender->assign('rootCat', $rootCat);
    124. 

  124.     $pnRender->assign('category', $editCat);
    125. 

  125.     $pnRender->assign('attributes', $attributes);
    126. 

  126.     $pnRender->assign('allCats', $allCats);
    127. 

  127.     $pnRender->assign('languages', $languages);
    128. 

  128.     $pnRender->assign('userlanguage', ZLanguage::getLanguageCode());
    129. 

  129.     $pnRender->assign('referer', SessionUtil::getVar('categories_referer'));
    130. 

  130. 

  131.     return $pnRender->fetch('categories_user_edit.htm');
    132. 

  132. }
    133. 

  133. 

  134. /**
    135. 

  135.  * edit categories for the currently logged in user
    136. 

  136.  */
    137. 

  137. function Categories_user_edituser ()
    138. 

  138. {
    139. 

  139.     if (!SecurityUtil::checkPermission('Categories::category', '::', ACCESS_EDIT)) {
    140. 

  140.         return LogUtil::registerPermissionError();
    141. 

  141.     }
    142. 

  142. 

  143.     if (!pnUserLoggedIn()) {
    144. 

  144.         return LogUtil::registerError(__('Error! Editing mode for user-owned categories is only available to users who have logged-in.'));
    145. 

  145.     }
    146. 

  146. 

  147.     $allowUserEdit = pnModGetVar ('Categories', 'allowusercatedit', 0);
    148. 

  148.     if (!$allowUserEdit) {
    149. 

  149.         return LogUtil::registerError(__('Error! User-owned category editing has not been enabled. This feature can be enabled by the site administrator.'));
    150. 

  150.     }
    151. 

  151. 

  152.     $userRoot = pnModGetVar('Categories', 'userrootcat', 0);
    153. 

  153.     if (!$userRoot) {
    154. 

  154.         return LogUtil::registerError(__('Error! Could not determine the user root node.'));
    155. 

  155.     }
    156. 

  156. 

  157.     Loader::loadClass ('CategoryUtil');
    158. 

  158.     $userRootCat = CategoryUtil::getCategoryByPath($userRoot);
    159. 

  159.     if (!$userRoot) {
    160. 

  160.         return LogUtil::registerError(__f('Error! The user root node seems to point towards an invalid category: %s.', $userRoot));
    161. 

  161.     }
    162. 

  162. 

  163.     if ($userRootCat == 1) {
    164. 

  164.         return LogUtil::registerError(__("Error! The root directory cannot be modified in 'user' mode"));
    165. 

  165.     }
    166. 

  166. 

  167.     $userCatName = Categories_user_getusercategoryname();
    168. 

  168.     if (!$userCatName) {
    169. 

  169.         return LogUtil::registerError(__('Error! Cannot determine user category root node name.'));
    170. 

  170.     }
    171. 

  171. 

  172.     $thisUserRootCatPath = $userRoot . '/' . $userCatName;
    173. 

  173.     $thisUserRootCat = CategoryUtil::getCategoryByPath($thisUserRootCatPath);
    174. 

  174. 

  175.     $dr = null;
    176. 

  176.     if (!$thisUserRootCat) {
    177. 

  177.         $autoCreate = pnModGetVar ('Categories', 'autocreateusercat', 0);
    178. 

  178.         if (!$autoCreate) {
    179. 

  179.             return LogUtil::registerError(__("Error! The user root category node for this user does not exist, and the automatic creation flag (autocreate) has not been set."));
    180. 

  180.         }
    181. 

  181. 

  182.         require_once ('system/Categories/pninit.php'); // need this for Categories_makeDisplayName() && Categories_makeDisplayDesc()
    183. 

  183.         $cat = array('id'               => '',
    184. 

  184.                      'parent_id'        => $userRootCat['id'],
    185. 

  185.                      'name'             => $userCatName,
    186. 

  186.                      'display_name'     => unserialize(Categories_makeDisplayName($userCatName)),
    187. 

  187.                      'display_desc'     => unserialize(Categories_makeDisplayDesc()),
    188. 

  188.                      'security_domain'  => 'Categories::',
    189. 

  189.                      'path'             => $thisUserRootCatPath,
    190. 

  190.                      'status'           => 'A');
    191. 

  191. 

  192.         if (!($class = Loader::loadClassFromModule ('Categories', 'category'))) {
    193. 

  193.             return pn_exit (__f('Error! Unable to load class [%s]', 'category'));
    194. 

  194.         }
    195. 

  195. 

  196.         $obj = new $class ();
    197. 

  197.         $obj->setData ($cat);
    198. 

  198.         $obj->insert ();
    199. 

  199.         // since the original insert can't construct the ipath (since
    200. 

  200.         // the insert id is not known yet) we update the object here
    201. 

  201.         $obj->update ();
    202. 

  202.         $dr = $obj->getID ();
    203. 

  203. 

  204.         $autoCreateDefaultUserCat = pnModGetVar ('Categories', 'autocreateuserdefaultcat', 0);
    205. 

  205.         if ($autoCreateDefaultUserCat) {
    206. 

  206.             $userdefaultcatname = pnModGetVar ('Categories', 'userdefaultcatname', __('Default'));
    207. 

  207.             $cat = array('id'               => '',
    208. 

  208.                          'parent_id'        => $dr,
    209. 

  209.                          'name'             => $userdefaultcatname,
    210. 

  210.                          'display_name'     => unserialize(Categories_makeDisplayName($userdefaultcatname)),
    211. 

  211.                          'display_desc'     => unserialize(Categories_makeDisplayDesc()),
    212. 

  212.                          'security_domain'  => 'Categories::',
    213. 

  213.                          'path'             => $thisUserRootCatPath . '/' . $userdefaultcatname,
    214. 

  214.                          'status'           => 'A');
    215. 

  215.             $obj->setData ($cat);
    216. 

  216.             $obj->insert ();
    217. 

  217.             // since the original insert can't construct the ipath (since
    218. 

  218.             // the insert id is not known yet) we update the object here
    219. 

  219.             $obj->update ();
    220. 

  220.         }
    221. 

  221.     } else {
    222. 

  222.         $dr = $thisUserRootCat['id'];
    223. 

  223.     }
    224. 

  224. 

  225.     $url = pnModURL ('Categories', 'user', 'edit', array('dr' => $dr));
    226. 

  226.     return pnRedirect($url);
    227. 

  227. }
    228. 

  228. 

  229. /**
    230. 

  230.  * refer the user back to the calling page
    231. 

  231.  */
    232. 

  232. function Categories_user_referBack()
    233. 

  233. {
    234. 

  234.     $referer = SessionUtil::getVar ('categories_referer');
    235. 

  235.     SessionUtil::DelVar ('categories_referer');
    236. 

  236.     return pnRedirect ($referer);
    237. 

  237. }
    238. 

  238. 

  239. /**
    240. 

  240.  * return the categories for the currently logged in user, really only used for testing purposes
    241. 

  241.  */
    242. 

  242. function Categories_user_getusercategories ()
    243. 

  243. {
    244. 

  244.     return pnModAPIFunc ('Categories', 'user', 'getusercategories');
    245. 

  245. }
    246. 

  246. 

  247. /**
    248. 

  248.  * return the category name for a user, really only used for testing purposes
    249. 

  249.  */
    250. 

  250. function Categories_user_getusercategoryname ()
    251. 

  251. {
    252. 

  252.     return pnModAPIFunc ('Categories', 'user', 'getusercategoryname');
    253. 

  253. }
    254. 

  254. 

  255.