/system/expressionengine/modules/safecracker/libraries/safecracker_lib.php

Large files files are truncated, but you can click here to view the full file

<?php  if ( ! defined('BASEPATH')) exit('No direct script access allowed');

/**
 * ExpressionEngine - by EllisLab
 *
 * @package		ExpressionEngine
 * @author		EllisLab Dev Team, 
 * 		- Original Development by Barrett Newton -- http://barrettnewton.com
 * @copyright	Copyright (c) 2003 - 2012, EllisLab, Inc.
 * @license		http://expressionengine.com/user_guide/license.html
 * @link		http://expressionengine.com
 * @since		Version 2.0
 * @filesource
 */

// ------------------------------------------------------------------------

/**
 * ExpressionEngine SafeCracker Module Library 
 *
 * @package		ExpressionEngine
 * @subpackage	Libraries
 * @category	Modules
 * @author		EllisLab Dev Team
 * @link		http://expressionengine.com
 */

class Safecracker_lib
{
	public $initialized = FALSE;
	public $form_error = FALSE;
	public $site_id;
	
	public $categories;
	public $channel;
	public $checkboxes;
	public $custom_field_conditional_names;
	public $custom_fields;
	public $custom_option_fields;
	public $date_fields;
	public $datepicker;
	public $default_fields;
	public $edit;
	public $entry;
	public $error_handling;
	public $errors;
	public $field_errors;
	public $file;
	public $file_fields;
	public $form_validation_methods;
	public $head;
	public $json;
	public $logged_out_member_id;
	public $logged_out_group_id;
	public $native_option_fields;
	public $native_variables;
	public $option_fields;
	public $parse_variables;
	public $pre_save;
	public $preserve_checkboxes;
	public $post_error_callbacks;
	public $require_save_call;
	public $settings;
	public $skip_xss_fieldtypes;
	public $skip_xss_field_ids;
	public $statuses;
	public $show_fields;
	public $title_fields;
	public $valid_callbacks;
	
	public $lang, $api_channel_fields, $form_validation;
	
	/**
	 * constructor
	 * 
	 * @return	void
	 */
	public function __construct()
	{
		$this->EE =& get_instance();
		
		//set a global object
		$this->EE->safecracker = $this;
	}
	
	// --------------------------------------------------------------------

	/**
	 * Creates the entry form
	 * 
	 * @return	string
	 */
	public function entry_form()
	{
		//can't be used in a form action
		if ( ! isset($this->EE->TMPL))
		{
			return '';
		}
		
		$this->EE->lang->loadfile('safecracker');
		
		if ( ! isset($this->EE->extensions->extensions['form_declaration_modify_data'][10]['Safecracker_ext']))
		{
			return $this->EE->output->show_user_error(FALSE, lang('safecracker_extension_not_installed'));
		}
		
		// -------------------------------------------
		// 'safecracker_entry_form_tagdata_start' hook.
		//  - Developers, if you want to modify the $this object remember
		//	to use a reference on func call.
		//

		if ($this->EE->extensions->active_hook('safecracker_entry_form_absolute_start') === TRUE)
		{
			$this->EE->extensions->call('safecracker_entry_form_absolute_start');
			if ($this->EE->extensions->end_script === TRUE) return;
		}
		
		$this->fetch_site($this->EE->TMPL->fetch_param('site'));
		
		$this->initialize(empty($this->form_error));
		
		$this->EE->load->helper('form');
		$this->EE->router->set_class('cp');
		$this->EE->load->library('cp');
		$this->EE->router->set_class('ee');
		$this->EE->load->library('javascript');
		$this->EE->load->library('api');
		$this->EE->load->library('form_validation');
		$this->EE->api->instantiate('channel_fields');
		$this->load_channel_standalone();
		
		$this->EE->lang->loadfile('content');
		$this->EE->lang->loadfile('upload');
		
		$this->EE->javascript->output('if (typeof SafeCracker == "undefined" || ! SafeCracker) { var SafeCracker = {markItUpFields:{}};}');
		
		// Figure out what channel we're working with
		$this->fetch_channel($this->EE->TMPL->fetch_param('channel_id'), $this->EE->TMPL->fetch_param('channel'));
		
		if ( ! $this->channel)
		{
			return $this->EE->output->show_user_error('submission', lang('safecracker_no_channel'));
		}
		
		//get the entry data, if an entry was specified
		$this->fetch_entry($this->EE->TMPL->fetch_param('entry_id'), $this->EE->TMPL->fetch_param('url_title'));
		
		// Whoa there big conditional, what's going on here?
		// We want to make sure no one's being tricky here and supplying
		// an invalid entry_id or url_title via a segment, so we need to
		// check to see if either exists and if it does make sure that the
		// passed in version is the same as what we find in the database.
		// If they are different (most likely it wasn't found in the 
		// database) then don't show them the form
		
		if (
			($this->EE->TMPL->fetch_param('entry_id') != '' AND
			$this->entry('entry_id') != $this->EE->TMPL->fetch_param('entry_id')) OR
			($this->EE->TMPL->fetch_param('url_title') != '' AND
			$this->entry('url_title') != $this->EE->TMPL->fetch_param('url_title'))
		)
		{
			if ($this->EE->TMPL->no_results())
			{
				return $this->EE->TMPL->no_results();
			}
			
			return $this->EE->output->show_user_error(FALSE, lang('safecracker_require_entry'));
		}
		
		// @added rev 57
		if ( ! $this->entry('entry_id') && $this->bool_string($this->EE->TMPL->fetch_param('require_entry')))
		{
			if ($this->EE->TMPL->no_results())
			{
				return $this->EE->TMPL->no_results();
			}
			
			return $this->EE->output->show_user_error(FALSE, lang('safecracker_require_entry'));
		}
		
		if ($this->entry('entry_id') && ! $this->form_error)
		{
			$this->edit = TRUE;
		}
		
		// @added rev 57
		if ($this->edit && $this->bool_string($this->EE->TMPL->fetch_param('author_only')) && $this->entry('author_id') != $this->EE->session->userdata('member_id'))
		{
			return $this->EE->output->show_user_error(FALSE, lang('safecracker_author_only'));
		}
		
		if (is_array($this->entry('category')))
		{
			$this->entry['categories'] = $this->entry('category');
		}
		
		//add hidden field data
		$this->form_hidden(
			array(
				'ACT' => $this->EE->functions->fetch_action_id('Safecracker', 'submit_entry'),
				'site_id' => $this->site_id,
				'return' => ($this->EE->TMPL->fetch_param('return_'.$this->EE->session->userdata('group_id'))) ? $this->EE->TMPL->fetch_param('return_'.$this->EE->session->userdata('group_id')) : $this->EE->TMPL->fetch_param('return'),
				'json' => $this->bool_string($this->EE->TMPL->fetch_param('json')) ? 1 : FALSE,
				'dynamic_title' => ($this->EE->TMPL->fetch_param('dynamic_title')) ? base64_encode($this->EE->TMPL->fetch_param('dynamic_title')) : FALSE,
				'error_handling' => ($this->EE->TMPL->fetch_param('error_handling')) ? $this->EE->TMPL->fetch_param('error_handling') : FALSE,
				'preserve_checkboxes' => ($this->EE->TMPL->fetch_param('preserve_checkboxes')) ? $this->EE->TMPL->fetch_param('preserve_checkboxes') : FALSE,
				'secure_return' => $this->bool_string($this->EE->TMPL->fetch_param('secure_return')) ? 1 : FALSE,
				'allow_comments' => $this->bool_string($this->EE->TMPL->fetch_param('allow_comments'), $this->channel['comment_system_enabled']) == 'y' ? 'y' : 'n'
			)
		);
		
		unset($this->EE->TMPL->tagparams['allow_comments']);
		
		//add form attributes
		$this->form_attribute(
			array(
				'onsubmit' => $this->EE->TMPL->fetch_param('onsubmit'),
				'name' => $this->EE->TMPL->fetch_param('name'),
				'class' => $this->EE->TMPL->fetch_param('class'),
				'id' => $this->EE->TMPL->fetch_param('id')
			)
		);
		
		if ($this->EE->TMPL->fetch_param('datepicker'))
		{
			$this->datepicker = $this->bool_string($this->EE->TMPL->fetch_param('datepicker'), $this->datepicker);
		}
		
		if ($this->datepicker)
		{
			$this->EE->javascript->output('$.datepicker.setDefaults({dateFormat:$.datepicker.W3C+EE.date_obj_time});');
		}
		
		foreach ($this->EE->TMPL->tagparams as $key => $value)
		{
			if (preg_match('/^rules:(.+)/', $key, $match))
			{
				$this->form_hidden('rules['.$match[1].']', $this->encrypt_input($value));
			}
		}
		
		//decide which fields to show, based on pipe delimited list of field id's and/or field short names
		if ($this->EE->TMPL->fetch_param('show_fields'))
		{
			if (preg_match('/not (.*)/', $this->EE->TMPL->fetch_param('show_fields'), $match))
			{
				foreach ($this->custom_fields as $field_name => $field)
				{
					$this->show_fields[] = $field_name;
				}
				
				foreach (explode('|', $match[1]) as $field_name)
				{
					if (is_numeric($field_name))
					{
						$field_name = $this->get_field_name($field_name);
					}
					
					$index = ($field_name !== FALSE) ? array_search($field_name, $this->show_fields) : FALSE;
					
					if ($index !== FALSE)
					{
						unset($this->show_fields[$index]);
					}
				}
			}
			else
			{
				foreach (explode('|', $this->EE->TMPL->fetch_param('show_fields')) as $field_name)
				{
					if (is_numeric($field_name))
					{
						$field_name = $this->get_field_name($field_name);
					}
					
					if ($field_name)
					{	
						$this->show_fields[] = $field_name;
					}
				}
			}
		}
		
		// -------------------------------------------
		// 'safecracker_entry_form_tagdata_start' hook.
		//  - Developers, if you want to modify the $this object remember
		//	to use a reference on func call.
		//

		if ($this->EE->extensions->active_hook('safecracker_entry_form_tagdata_start') === TRUE)
		{
			$this->EE->TMPL->tagdata = $this->EE->extensions->call('safecracker_entry_form_tagdata_start', $this->EE->TMPL->tagdata, $this);
			if ($this->EE->extensions->end_script === TRUE) return;
		}
		
		// build custom field variables
		$custom_field_variables = array();
		
		foreach ($this->custom_fields as $field_name => $field)
		{
			/*
			if ($this->EE->TMPL->fetch_param($field_name))
			{
				$this->form_hidden($field_name, $this->EE->TMPL->fetch_param($field_name));
			}
			*/
			
			// standard vars/conditionals
			$custom_field_variables_row = array(
				'required' => ($field['field_required'] == 'n') ? 0 : 1,
				'text_direction' => $field['field_text_direction'],
				'field_data' => $this->entry($field_name),
				'rows' => $field['field_ta_rows'],
				'maxlength' => $field['field_maxl'],
				'formatting_buttons' => '',
				'field_show_formatting_btns' => (isset($field['field_show_formatting_btns']) && $field['field_show_formatting_btns'] == 'y') ? 1 : 0,
				'textinput' => 0,
				'pulldown' => 0,
				'checkbox' => 0,
				'relationship' => 0,
				'multiselect' => 0,
				'date' => 0,
				'radio' => 0,
				'display_field' => '',
				'options' => $this->get_field_options($field_name),
				'error' => ( ! empty($this->field_errors[$field['field_name']])) ? lang($this->field_errors[$field['field_name']]) : ''
			);
			
			$custom_field_variables_row = array_merge($field, $custom_field_variables_row);
			
			$fieldtypes = $this->EE->api_channel_fields->fetch_installed_fieldtypes();
			
			//add a negative conditional based on fieldtype
			foreach ($fieldtypes as $type => $fieldtype)
			{
				$custom_field_variables_row[$type] = 0;
			}
			
			// fieldtype conditionals
			foreach ($this->custom_fields as $f_name => $f)
			{
				$custom_field_variables_row[$f['field_type']] = $custom_field_variables_row[$f_name] = ($field['field_type'] == $f['field_type']) ? 1 : 0;
			}
			
			if (array_key_exists($field['field_type'], $this->custom_field_conditional_names))
			{
				$custom_field_variables_row[$this->custom_field_conditional_names[$field['field_type']]] = 1;
			}
			
			if ($field['field_type'] == 'date')
			{
				if ($this->datepicker)
				{
					$default_date = (($this->entry($field_name)) ? $this->entry($field_name) : $this->EE->localize->now) * 1000;
					$this->EE->javascript->output('
						$(\'input[name="'.$field_name.'"]\').datepicker({
							constrainInput: false,
							defaultDate: new Date('.$default_date.')
						});
					');
				}
				
				$custom_field_variables_row['field_data'] = $this->EE->localize->set_human_time($this->entry($field_name));
			}
			
			$custom_field_variables[$field_name] = $custom_field_variables_row;
		}
		
		// parse custom fields loop
		if (preg_match('/'.LD.'custom_fields'.RD.'(.*)'.LD.'\/custom_fields'.RD.'/s', $this->EE->TMPL->tagdata, $match))
		{
			$custom_field_output = '';
			
			$tagdata = $match[1];
			
			$formatting_buttons = (strpos($tagdata, LD.'formatting_buttons'.RD) !== FALSE);
			
			foreach ($custom_field_variables as $field_name => $custom_field_variables_row)
			{
				if ($this->show_fields && ! in_array($field_name, $this->show_fields))
				{
					continue;
				}
				
				if ($formatting_buttons && $custom_field_variables_row['field_show_formatting_btns'])
				{
					$this->markitup = TRUE;
					$this->EE->javascript->output('SafeCracker.markItUpFields["'.$field_name.'"] = '.$custom_field_variables_row['field_id'].';');
				}
				
				$temp = $tagdata;
				
				//parse conditionals
				//$temp = $this->swap_conditionals($temp, $custom_field_variables_row);
				$embed_vars = $this->EE->TMPL->embed_vars;
				
				$this->EE->TMPL->embed_vars = array_merge($this->EE->TMPL->embed_vars, $custom_field_variables_row);
				
				$temp = $this->EE->TMPL->advanced_conditionals($temp);
				
				$this->EE->TMPL->embed_vars = $embed_vars;
				
				if (strpos($temp, LD.'display_field'.RD) !== FALSE)
				{
					$custom_field_variables_row['display_field'] = $this->display_field($field_name);
					
					if ($custom_field_variables_row['field_type'] == 'file')
					{
						$custom_field_variables_row['display_field'] = '<div class="publish_field">'.$custom_field_variables_row['display_field'].'</div>';
					}
				}
				
				foreach ($custom_field_variables_row as $key => $value)
				{
					if (is_array($value))
					{
						$temp = $this->swap_var_pair($key, $value, $temp);
					}
					// don't use our conditionals as vars
					else if ( ! is_int($value))
					{
						$temp = $this->EE->TMPL->swap_var_single($key, $value, $temp);
					}
				}
				
				if ($custom_field_variables_row['field_type'] === 'catchall')
				{
					$temp = $this->replace_tag($field_name, $this->entry($field_name), array(), $temp);
				}
				
				$custom_field_output .= $temp;
			}
			
			$this->EE->TMPL->tagdata = str_replace($match[0], $custom_field_output, $this->EE->TMPL->tagdata);
		}
		
		if ( ! empty($this->markitup))
		{
			$this->EE->javascript->output('$.each(SafeCracker.markItUpFields,function(a){$("#"+a).markItUp(mySettings);});');
		}
		
		// We'll store all checkbox fieldnames in here, so that in case one
		// has preserve_checkboxes set to "yes" but still needs to edit
		// checkboxes that have the potential to be blank, the field can be
		// updated while preserving the checkboxes that aren't on screen
		$checkbox_fields = array();
		
		foreach ($this->EE->TMPL->var_pair as $tag_pair_open => $tagparams)
		{
			$tag_name = current(preg_split('/\s/', $tag_pair_open));
			
			if ($tag_name == 'categories')
			{
				$this->EE->TMPL->tagdata = $this->swap_var_pair($tag_pair_open, $this->categories($tagparams), $this->EE->TMPL->tagdata, $tag_name, ! empty($tagparams['backspace']) ? $tagparams['backspace'] : FALSE);
				//$this->parse_variables['categories'] = $this->categories($tagparams);
			}
			
			else if ($tag_name == 'statuses')
			{
				$this->fetch_statuses();
				
				$this->parse_variables['statuses'] = $this->statuses;
			}
			
			//custom field pair parsing with replace_tag
			else if (isset($this->custom_fields[$tag_name]))
			{
				if (preg_match_all('/'.LD.preg_quote($tag_pair_open).RD.'(.*)'.LD.'\/'.$tag_name.RD.'/s', $this->EE->TMPL->tagdata, $matches))
				{	
					foreach ($matches[1] as $match_index => $var_pair_tagdata)
					{
						$this->EE->TMPL->tagdata = str_replace($matches[0][$match_index], $this->replace_tag($tag_name, $this->entry($tag_name), $tagparams, $var_pair_tagdata), $this->EE->TMPL->tagdata);
					}
				}
			}
			
			//options:field_name tag pair parsing
			else if (preg_match('/^options:(.*)/', $tag_name, $match) && in_array($this->get_field_type($match[1]), $this->option_fields))
			{
				$checkbox_fields[] = $match[1];
				
				$this->parse_variables[$match[0]] = (isset($custom_field_variables[$match[1]]['options'])) ? $custom_field_variables[$match[1]]['options'] : '';
			}
			
			//parse category menu
			else if ($tag_name == 'category_menu')
			{
				$this->channel_standalone->_category_tree_form($this->channel('cat_group'), 'edit', '', $this->entry('categories'));
				
				$this->parse_variables['category_menu'] = array(array('select_options' => implode("\n", $this->channel_standalone->categories)));
			}
			
			//parse status menu
			else if ($tag_name = 'status_menu')
			{
				$this->fetch_statuses();
				
				$select_options = '';
				
				foreach ($this->statuses as $status)
				{
					$status['selected'] = ($this->entry('status') == $status['status']) ? ' selected="selected"' : '';
					
					$status['checked'] = ($this->entry('status') == $status['status']) ? ' checked="checked"' : '';
					
					$status['name'] = (in_array($status['status'], array('open', 'closed'))) ? lang($status['status']) : $status['status'];
					
					$select_options .= '<option value="'.$status['status'].'"'.$status['selected'].'>'.$status['name'].'</option>'."\n";
				}
				
				$this->parse_variables['status_menu'] = array(array('select_options' => $select_options));
			}
		}
		
		$this->form_hidden('checkbox_fields', implode('|', $checkbox_fields));
		
		//edit form
		if ($this->entry)
		{
			//not necessary for edit forms
			$this->EE->TMPL->tagparams['use_live_url'] = 'no';
			
			$expiration_date = ($this->entry('expiration_date')) ? $this->entry('expiration_date')*1000 : $this->EE->localize->now*1000;
			$comment_expiration_date = ($this->entry('comment_expiration_date')) ? $this->entry('comment_expiration_date')*1000 : $this->EE->localize->now*1000;
			
			if ($this->datepicker)
			{
				if (strpos($this->EE->TMPL->tagdata, 'entry_date') !== FALSE)
				{
					$this->EE->javascript->output('$("input[name=entry_date]").datepicker({defaultDate: new Date('.($this->entry('entry_date')*1000).')});');
				}
				
				if (strpos($this->EE->TMPL->tagdata, 'expiration_date') !== FALSE)
				{
					$this->EE->javascript->output('$("input[name=expiration_date]").datepicker({defaultDate: new Date('.$expiration_date.')});');
				}
				
				if (strpos($this->EE->TMPL->tagdata, 'comment_expiration_date') !== FALSE)
				{
					$this->EE->javascript->output('$("input[name=comment_expiration_date]").datepicker({defaultDate: new Date('.$comment_expiration_date.')});');
				}
			}
		
			foreach ($this->EE->TMPL->var_single as $key)
			{
				if ($this->entry($key) !== FALSE)
				{
					if (in_array($key, $this->date_fields) || $this->get_field_type($key) == 'date')
					{
						$this->parse_variables[$key] = ($this->entry($key)) ? $this->EE->localize->set_human_time($this->entry($key)) : '';
					}
					elseif (in_array($key, $this->checkboxes))
					{
						$this->parse_variables[$key] = ($this->entry($key) == 'y') ? 'checked="checked"' : '';
					}
					else
					{
						$this->parse_variables[$key] = form_prep($this->entry($key), $key);
					}
				}
				
				else if (preg_match('/entry_id_path=([\042\047])?([^\042\047]*)[\042\047]?/', $key, $match))
				{
					$this->parse_variables[$match[0]] = $this->EE->functions->create_url($match[2].'/'.$this->entry('entry_id'));
				}
				
				else if (preg_match('/(url_title_path|title_permalink)=[\042\047]?([^\042\047]*)[\042\047]?/', $key, $match))
				{
					$this->parse_variables[$match[0]] = $this->EE->functions->create_url($match[2].'/'.$this->entry('url_title'));
				}
				
				// use fieldtype display_field method
				else if (preg_match('/^field:(.*)$/', $key, $match))
				{
					$this->parse_variables[$match[0]] = (array_key_exists($match[1], $this->custom_fields)) ? $this->display_field($match[1]) : '';
				}
				
				else if (preg_match('/^label:(.*)$/', $key, $match))
				{
					$this->parse_variables[$match[0]] = (array_key_exists($match[1], $this->custom_fields)) ? $this->custom_fields[$match[1]]['field_label'] : '';
				}
				
				else if (preg_match('/^selected_option:(.*?)(:label)?$/', $key, $match) && in_array($this->get_field_type($match[1]), $this->option_fields))
				{
					$options = (isset($custom_field_variables[$match[1]]['options'])) ? $custom_field_variables[$match[1]]['options'] : array();
					
					$selected_option = '';
					
					foreach ($options as $option)
					{
						if ($option['option_value'] == $this->entry($match[1]))
						{
							$selected_option = ( ! empty($match[2])) ? $option['option_name'] : $option['option_value'];
						}
					}
					
					$this->parse_variables[$match[0]] = $selected_option;
				}
				
				else if (preg_match('/^instructions:(.*)$/', $key, $match))
				{
					$this->parse_variables[$match[0]] = (array_key_exists($match[1], $this->custom_fields)) ? $this->custom_fields[$match[1]]['field_instructions'] : '';
				}
				
				else if (preg_match('/^error:(.*)$/', $key, $match))
				{
					$this->parse_variables[$match[0]] = ( ! empty($this->field_errors[$match[1]])) ? $this->field_errors[$match[1]] : '';
				}
			}
	
			$this->form_hidden(
				array(
				      'entry_id' => $this->entry('entry_id'),
				      'unique_url_title' => ($this->bool_string($this->EE->TMPL->fetch_param('unique_url_title'))) ? '1' : '',
				      'author_id'=> $this->entry('author_id')
				)	
			);
			
		}
		elseif ($this->channel('channel_id'))
		{
			$this->parse_variables['entry_date'] = $this->EE->localize->set_human_time();
			
			if ($this->datepicker)
			{
				$this->EE->javascript->output('$.datepicker.setDefaults({defaultDate: new Date('.($this->EE->localize->now*1000).')});');

				if (strpos($this->EE->TMPL->tagdata, 'entry_date') !== FALSE)
				{
					$this->EE->javascript->output('$("input[name=entry_date]").datepicker();');
				}
				
				if (strpos($this->EE->TMPL->tagdata, 'expiration_date') !== FALSE)
				{
					$this->EE->javascript->output('$("input[name=expiration_date]").datepicker();');
				}
				
				if (strpos($this->EE->TMPL->tagdata, 'comment_expiration_date') !== FALSE)
				{
					$this->EE->javascript->output('$("input[name=comment_expiration_date]").datepicker();');
				}
			}
			
			foreach ($this->custom_fields as $field)
			{
				foreach ($this->EE->TMPL->var_pair as $tag_pair_open => $tagparams)
				{
					$tag_name = current(preg_split('/\s/', $tag_pair_open));
					
					if ($tag_name == $field['field_name'])
					{
						//special parsing here for catchall fieldtype, pls keep this in
						if ($field['field_type'] === 'catchall')
						{
							if (preg_match_all('/'.LD.$tag_pair_open.RD.'(.*)'.LD.'\/'.$field['field_name'].RD.'/s', $this->EE->TMPL->tagdata, $matches))
							{
								foreach ($matches[1] as $match_index => $var_pair_tagdata)
								{
									if (preg_match_all('/'.LD.'([^\s]*)'.RD.'(.*)'.LD.'\/'.'\1'.RD.'/s', $var_pair_tagdata, $submatches))
									{
										foreach ($submatches[2] as $submatch_index => $sub_var_pair_tagdata)
										{
											$var_pair_tagdata = str_replace($submatches[0][$submatch_index], $sub_var_pair_tagdata, $var_pair_tagdata);
										}
									}
							
									$var_pair_tagdata = preg_replace('/'.LD.'([^\s]*)'.RD.'/s', '', $var_pair_tagdata);
									
									$this->EE->TMPL->tagdata = str_replace($matches[0][$match_index], $var_pair_tagdata, $this->EE->TMPL->tagdata);
								}
							}
						}
						else
						{
							$this->parse_variables[$field['field_name']] = '';
						}
					}
					
					else if ($tag_name == 'options:'.$field['field_name'] && in_array($this->get_field_type($field['field_name']), $this->option_fields))
					{
						$this->parse_variables['options:'.$field['field_name']] = (isset($custom_field_variables[$field['field_name']]['options'])) ? $custom_field_variables[$field['field_name']]['options'] : '';
					}
				}
				
				$this->parse_variables[$field['field_name']] = '';
				$this->parse_variables['label:'.$field['field_name']] = $field['field_label'];
				$this->parse_variables['selected_option:'.$field['field_name'].':label'] = '';
				$this->parse_variables['selected_option:'.$field['field_name']] = '';
				$this->parse_variables['label:'.$field['field_name']] = $field['field_label'];
				$this->parse_variables['instructions:'.$field['field_name']] = $field['field_instructions'];
				$this->parse_variables['error:'.$field['field_name']] = ( ! empty($this->field_errors[$field['field_name']])) ? $this->field_errors[$field['field_name']] : '';
				
				//let's not needlessly call this, otherwise we could get duplicate fields rendering
				if (strpos($this->EE->TMPL->tagdata, LD.'field:'.$field['field_name'].RD) !== FALSE)
				{
					$this->parse_variables['field:'.$field['field_name']] = (array_key_exists($field['field_name'], $this->custom_fields)) ? $this->display_field($field['field_name']) : '';
				}
			}
		}

		foreach ($this->title_fields as $field)
		{
			if (isset($this->EE->TMPL->var_single['error:'.$field]))
			{
				$this->parse_variables['error:'.$field] = ( ! empty($this->field_errors[$field])) ? $this->field_errors[$field] : '';
			}
		}
		
		// Add global errors
		if (count($this->errors) === 0)
		{
			$this->parse_variables['global_errors'] = array(array());
		}
		else
		{
			$this->parse_variables['global_errors'] = array();
			
			foreach ($this->errors as $error)
			{
				$this->parse_variables['global_errors'][] = array('error' => $error);
			}
		}
		
		$this->parse_variables['global_errors:count'] = count($this->errors);
		
		// Add field errors
		if (count($this->field_errors) === 0)
		{
			$this->parse_variables['field_errors'] = array(array());
		}
		else
		{
			$this->parse_variables['field_errors'] = array();
			
			foreach ($this->field_errors as $field => $error)
			{
				$this->parse_variables['field_errors'][] = array('field' => $field, 'error' => $error);
			}
		}
		
		$this->parse_variables['field_errors:count'] = count($this->field_errors);
		
		// Add field errors to conditional parsing
		$conditional_errors = $this->parse_variables;
		if ( ! empty($conditional_errors['field_errors'][0]))
		{
			foreach ($conditional_errors['field_errors'] as $error)
			{
				$conditional_errors['error:' . $error['field']] = $error['error'];
			}
			
			unset($conditional_errors['field_errors']);
		}
		
		//load member data for logged out member
		$this->fetch_logged_out_member($this->EE->TMPL->fetch_param('logged_out_member_id'));

		// Parse captcha conditional
		$captcha_conditional = array(
			'captcha' => ($this->channel('channel_id') && $this->logged_out_member_id && ! empty($this->settings['require_captcha'][$this->EE->config->item('site_id')][$this->channel('channel_id')]))
		);

		// Parse conditionals
		// $this->parse_variables['error:title'] = TRUE;
		$this->EE->TMPL->tagdata = $this->EE->functions->prep_conditionals(
			$this->EE->TMPL->tagdata, 
			array_merge($conditional_errors, $captcha_conditional)
		);
		
		// Make sure {captcha_word} is blank
		$this->EE->TMPL->tagdata = $this->EE->TMPL->swap_var_single('captcha_word', '', $this->EE->TMPL->tagdata);
		
		// Replace {captcha} with actual captcha
		$this->EE->TMPL->tagdata = $this->EE->TMPL->swap_var_single('captcha', $this->EE->functions->create_captcha(), $this->EE->TMPL->tagdata);
		
		// Parse the variables
		if ($this->parse_variables)
		{
			$this->EE->TMPL->tagdata = $this->EE->TMPL->parse_variables($this->EE->TMPL->tagdata, array($this->parse_variables));
		}
			
		if ($this->file)
		{
			$this->EE->session->cache['safecracker']['enctype'] = 'enctype="multipart/form-data"';
		}
				
		//add encrypted member_id to form
		if ($this->EE->TMPL->fetch_param('logged_out_member_id') && $this->logged_out_member_id)
		{
			$this->form_hidden('logged_out_member_id', $this->encrypt_input($this->logged_out_member_id));
		}
		
		//add class to form
		if ($this->EE->TMPL->fetch_param('class'))
		{
			$this->EE->TMPL->tagparams['form_class'] = $this->EE->TMPL->fetch_param('class');
		}
		
		$this->load_session_override();
		
		//set group-based return url
		$this->form_hidden('return', ($this->EE->TMPL->fetch_param('return_'.$this->EE->session->userdata['group_id'])) ? $this->EE->TMPL->fetch_param('return_'.$this->EE->session->userdata['group_id']) : $this->EE->TMPL->fetch_param('return'));
		
		//get rid of the saef_javascript variable, we don't want that parsing in channel_standalone
		if (($array_search = array_search('saef_javascript', $this->EE->TMPL->var_single)) !== FALSE)
		{
			unset($this->EE->TMPL->var_single[$array_search]);
		}
		
		$this->EE->session->cache['safecracker']['form_declaration'] = TRUE;
		
		//temporarily set the site_id for cross-site saef
		$current_site_id = $this->EE->config->item('site_id');
		
		$this->EE->config->set_item('site_id', $this->site_id);
		
		$include_jquery = $this->EE->TMPL->fetch_param('include_jquery');
		
		//force include to no, for channel_standalone parsing
		$this->EE->TMPL->tagparams['include_jquery'] = 'no';
		
		$return = $this->channel_standalone->entry_form(TRUE, $this->EE->functions->cached_captcha);
		
		$this->EE->config->set_item('site_id', $current_site_id);
		
		if (isset($this->EE->session->cache['safecracker']['channel_standalone_output_js']))
		{
			$this->head .= '<script type="text/javascript" charset="utf-8">// <![CDATA[ '."\n";
			
			foreach ($this->EE->session->cache['safecracker']['channel_standalone_output_js']['json'] as $key => $value)
			{
				if ($key == 'EE')
				{
					$value['XID'] = '{XID_HASH}';
					
					$this->head .= 'if (typeof EE == "undefined" || ! EE) { '."\n".'var EE = '.$this->EE->javascript->generate_json($value, TRUE).';}'."\n";
				}
				else 
				{
					$this->head .= $key.' = '.$this->EE->javascript->generate_json($value, TRUE).';'."\n";
				}
				
				$first = FALSE;
			}

			$this->head .= "\n".' // ]]>'."\n".'</script>';
		}
		
		$js_defaults = array(
			'ui' => array('core', 'widget', 'button', 'dialog'),
			'plugin' => array('scrollable', 'scrollable.navigator', 'markitup', 'thickbox'),
		);
		
		if (version_compare(APP_VER, '2.1.3', '>'))
		{
			$js_defaults['plugin'][] = 'toolbox.expose';
			$js_defaults['plugin'][] = 'overlay';
			$js_defaults['plugin'][] = 'tmpl';
		}
		
		if ($this->datepicker)
		{
			$js_defaults['ui'][] = 'datepicker';
		}
		
		foreach ($js_defaults as $type => $files)
		{
			foreach ($files as $file)
			{
				if ( ! isset($this->EE->cp->js_files[$type]))
				{
					$this->EE->cp->js_files[$type] = array();
				}
				else if (is_string($this->EE->cp->js_files[$type]))
				{
					$this->EE->cp->js_files[$type] = explode(',', $this->EE->cp->js_files[$type]);
				}
				
				if ( ! in_array($file, $this->EE->cp->js_files[$type]))
				{
					$this->EE->cp->js_files[$type][] = $file;
				}
			}
		}
		
		$ui = array(
			'core' => FALSE,
			'widget' => array('core'),
			'mouse' => array('core', 'widget'),
			'position' => array('core'),
			'draggable' => array('core', 'widget', 'mouse'),
			'droppable' => array('core', 'widget', 'mouse', 'draggable'),
			'resizable' => array('core', 'widget', 'mouse'),
			'selectable' => array('core', 'widget', 'mouse'),
			'sortable' => array('core', 'widget', 'mouse'),
			'accordion' => array('core', 'widget'),
			'autocomplete' => array('core'),
			'button' => array('core', 'widget', 'position'),
			'dialog' => array('core', 'widget', 'mouse', 'position', 'draggable', 'resizable', 'button'),
			'slider' => array('core', 'widget', 'mouse'),
			'tabs' => array('core', 'widget'),
			'datepicker' => array('core'),
			'progressbar' => array('core', 'widget'),
			'effects' => array('core'),
		);
		
		foreach ($this->EE->cp->js_files as $type => $files)
		{
			//let's get the order right
			if ($type == 'ui')
			{
				$temp = array();
				
				foreach ($files as $file)
				{
					$temp[] = $file;
					if (is_array($ui[$file]))
					{
						$temp = array_merge($ui[$file], $temp);
					}
				}
				
				$files = array();
				
				foreach (array_keys($ui) as $file)
				{
					if (in_array($file, $temp))
					{
						$files[] = $file;
					}
				}
			}
			
			if (empty($files))
			{
				unset($this->EE->cp->js_files[$type]);
			}
			else
			{
				$mtime[] = $this->EE->cp->_get_js_mtime($type, $files);
				$this->EE->cp->js_files[$type] = implode(',', $files);
			}
		}
		
		if (empty($mtime))
		{
			$mtime = array($this->EE->localize->now);
		}
		
		$use_live_url = ($this->bool_string($this->EE->TMPL->fetch_param('use_live_url'), TRUE)) ? '&use_live_url=y' : '';
		
		$include_jquery = ($this->bool_string($include_jquery, TRUE)) ? '&include_jquery=y' : '';

		// RTE Selector parameter?
		$rte_selector = $this->EE->TMPL->fetch_param('rte_selector');

		if ($rte_selector)
		{
			// toolset id specified?
			$rte_toolset_id = (int)$this->EE->TMPL->fetch_param('rte_toolset_id');

			$js_url = $this->EE->functions->fetch_site_index().QUERY_MARKER
				.'ACT='.$this->EE->functions->fetch_action_id('Rte', 'get_js')
				.'&toolset_id='.$rte_toolset_id
				.'&selector='.urlencode($rte_selector)
				.'&include=jquery_ui';
				
			$this->head .= '<script type="text/javascript" src="'.$js_url.'"></script>'."\n";
		}

		$this->head .= '<script type="text/javascript" charset="utf-8" src="'.$this->EE->functions->fetch_site_index().QUERY_MARKER.'ACT='.$this->EE->functions->fetch_action_id('Safecracker', 'combo_loader').'&'.str_replace('%2C', ',', http_build_query($this->EE->cp->js_files)).'&v='.max($mtime).$use_live_url.$include_jquery.'"></script>'."\n";

		//add fieldtype styles
		foreach ($this->EE->cp->its_all_in_your_head as $item)
		{
			$this->head .= $item."\n";
		}
		
		//add fieldtype scripts
		foreach ($this->EE->cp->footer_item as $item)
		{
			$this->head .= $item."\n";
		}
		
		$this->unload_session_override();
		
		//add loaded JS
		$this->EE->javascript->compile();

		if ( ! empty($this->EE->jquery->jquery_code_for_compile))
		{
			$script = '$(document).ready(function() {' . "\n";
			$script .= implode('', $this->EE->jquery->jquery_code_for_compile);
			$script .= '});';
			$script = preg_replace('/\s*eeSpell\.init\(\);\s*/', '', $script);

			$this->head .= $this->EE->javascript->inline($script);
			
			$this->EE->jquery->jquery_code_for_compile = array();
		}
		//if (isset($this->EE->load->_ci_cached_vars['script_foot']))
		//{
			//$script = $this->EE->load->_ci_cached_vars['script_foot'];
			
			//$script = preg_replace('/\s*eeSpell\.init\(\);\s*/', '', $script);
			
			//$this->head .= $script;
		//}

		//add datepicker class
		if ($this->datepicker)
		{
			$date_fmt = $this->EE->session->userdata('time_format');
			$date_fmt = $date_fmt ? $date_fmt : $this->EE->config->item('time_format');

			$this->head .= '<style type="text/css">.hasDatepicker{background:#fff url('.$this->EE->config->item('theme_folder_url').'cp_themes/default/images/calendar_bg.gif) no-repeat 98% 2px;background-repeat:no-repeat;background-position:99%;}</style>';
			$this->head .= trim('
				<script type="text/javascript">
					$.createDatepickerTime=function(){
						date = new Date();
						hours = date.getHours();
						minutes = date.getMinutes();
						suffix = "";
						format = "'.$date_fmt.'";
					
						if (minutes < 10) {
							minutes = "0" + minutes;
						}
					
						if (format == "us") {
							if (hours > 12) {
								hours -= 12;
								suffix = " PM";
							} else if (hours == 12) {
								suffix = " PM";
							} else {
								suffix = " AM";
							}
						}
					
						return " \'" + hours + ":" + minutes + suffix + "\'";
					}
				
					EE.date_obj_time = $.createDatepickerTime();
				</script>');
		}
		
		//make head appear by default
		if (preg_match('/'.LD.'safecracker_head'.RD.'/', $return))
		{
			$return = $this->EE->TMPL->swap_var_single('safecracker_head', $this->head, $return);
		}
		// Head should only be there if the param is there and there is a valid member_id
		else if (
			$this->bool_string($this->EE->TMPL->fetch_param('safecracker_head'), TRUE) AND
			($this->logged_out_member_id OR $this->EE->session->userdata('member_id'))
		)
		{
			$return .= $this->head;
		}
		
		//added in 1.0.3
		if ($this->bool_string($this->EE->TMPL->fetch_param('secure_action')))
		{
			$return = preg_replace('/(<form.*?action=")http:/', '\\1https:', $return);
		}
		
		$return = $this->EE->functions->insert_action_ids($return);
		
		
		// -------------------------------------------
		// 'safecracker_entry_form_tagdata_end' hook.
		//  - Developers, if you want to modify the $this object remember
		//	to use a reference on func call.
		//

		if ($this->EE->extensions->active_hook('safecracker_entry_form_tagdata_end') === TRUE)
		{
			$return = $this->EE->extensions->call('safecracker_entry_form_tagdata_end', $return, $this);
			if ($this->EE->extensions->end_script === TRUE) return;
		}
		
		return $return;
	}

	// --------------------------------------------------------------------
    
	/**
	 * Creates or edits an entry
	 * 
	 * @return	void
	 */
	public function submit_entry()
	{
		$this->initialize();
		
		$this->fetch_site(FALSE, $this->EE->input->post('site_id', TRUE));
		
		$this->fetch_channel($this->EE->input->post('channel_id', TRUE));
		
		$this->EE->load->helper(array('url', 'form'));
		$this->EE->load->library('api');
		$this->EE->api->instantiate('channel_fields');
		$this->EE->load->library('filemanager');
		$this->EE->load->library('form_validation');
		$this->EE->load->library('localize');
		$this->EE->load->model(array('field_model', 'tools_model'));
		
		$this->EE->filemanager->_initialize(array());
				
		$this->EE->lang->loadfile('content');
		$this->EE->lang->loadfile('form_validation');
		$this->EE->lang->loadfile('safecracker');
		
		$this->EE->router->set_class('cp');
		$this->EE->load->library('cp');
		$this->EE->router->set_class('ee');
		
		$rules = $this->EE->input->post('rules');
		
		//just to prevent any errors
		if ( ! defined('BASE'))
		{
			$s = ($this->EE->config->item('admin_session_type') != 'c') ? $this->EE->session->userdata('session_id') : 0;
			define('BASE', SELF.'?S='.$s.'&amp;D=cp');
		}
		
		$this->json = $this->EE->input->post('json');
		$this->error_handling = $this->EE->input->post('error_handling');
		
		// -------------------------------------------
		// 'safecracker_submit_entry_start' hook.
		//  - Developers, if you want to modify the $this object remember
		//	to use a reference on func call.
		//

		if ($this->EE->extensions->active_hook('safecracker_submit_entry_start') === TRUE)
		{
			$this->EE->extensions->call('safecracker_submit_entry_start', $this);
			if ($this->EE->extensions->end_script === TRUE) return;
		}
		
		$logged_out_member_id = FALSE;
		
		if ( ! $this->EE->session->userdata('member_id') && $this->EE->input->post('logged_out_member_id'))
		{
			if ($logged_out_member_id = $this->decrypt_input($this->EE->input->post('logged_out_member_id')))
			{
				$this->fetch_logged_out_member($logged_out_member_id);
			}
		}
		else if ($this->channel('channel_id') && ! $this->EE->session->userdata('member_id') &&  ! empty($this->settings['logged_out_member_id'][$this->EE->config->item('site_id')][$this->channel('channel_id')]))
		{
			$this->fetch_logged_out_member($this->settings['logged_out_member_id'][$this->EE->config->item('site_id')][$this->channel('channel_id')]);
		}
		
		//captcha check
		if ($this->channel('channel_id') && ! empty($this->logged_out_member_id) && ! empty($this->settings['require_captcha'][$this->EE->config->item('site_id')][$this->EE->input->post('channel_id', TRUE)]))
		{
			if ( ! $this->EE->input->post('captcha'))
			{
				$this->errors[] = lang('captcha_required');
			}
			
			$this->EE->db->where('word', $this->EE->input->post('captcha', TRUE));
			$this->EE->db->where('ip_address', $this->EE->input->ip_address());
			$this->EE->db->where('date > ', '(UNIX_TIMESTAMP()-7200)', FALSE);
		    
			if ( ! $this->EE->db->count_all_results('captcha'))
			{
				$this->errors[] = lang('captcha_incorrect');
			}
			
			$this->EE->db->where('word', $this->EE->input->post('captcha', TRUE));
			$this->EE->db->where('ip_address', $this->EE->input->ip_address());
			$this->EE->db->where('date < ', '(UNIX_TIMESTAMP()-7200)', FALSE);
			
			$this->EE->db->delete('captcha');
		}
		
		//is an edit form?
		if ($this->EE->input->post('entry_id'))
		{
			$this->edit = TRUE;
			
			$this->fetch_entry($this->EE->input->post('entry_id', TRUE));
			
			if ($this->EE->input->post('category') === FALSE && $this->entry('categories'))
			{
				$_POST['category'] = $this->entry('categories');
			}
		}
		else
		{
			if ($this->EE->input->post('unique_url_title', TRUE))
			{
				$_POST['url_title'] = uniqid($this->EE->input->post('url_title', TRUE) ? $this->EE->input->post('url_title', TRUE) : url_title($this->EE->input->post('title', TRUE)), TRUE);
			}
			
			$this->entry['dst_enabled'] = $this->EE->input->post('dst_enabled');
		}
		
		$this->preserve_checkboxes = $this->bool_string($this->EE->input->post('preserve_checkboxes'), FALSE);
		
		// If any checkbox fields are missing from the POST array,
		// add them in as blank values for form validation to catch
		foreach (explode('|', $_POST['checkbox_fields']) as $checkbox)
		{
			if ( ! isset($_POST[$checkbox]))
			{
				$_POST[$checkbox] = '';
			}
		}
		
		foreach ($this->custom_fields as $i => $field)
		{
			$isset = (isset($_POST['field_id_'.$field['field_id']]) || isset($_POST[$field['field_name']]) || (((isset($_FILES['field_id_'.$field['field_id']]) && $_FILES['field_id_'.$field['field_id']]['error'] != 4) || (isset($_FILES[$field['field_name']]) && $_FILES[$field['field_name']]['error'] != 4)) && in_array($field['field_type'], $this->file_fields)));
			
			// If file exists, add it to the POST array for validation
			if (isset($_FILES[$field['field_name']]['name']))
			{
				$_POST[$field['field_name']] = $_FILES[$field['field_name']]['name'];
			}
			
			$this->custom_fields[$i]['isset'] = $isset;
			
			if ( ! $this->edit || $isset)
			{
				$field_rules = array();
				
				if ( ! empty($rules[$field['field_name']]))
				{
					if (($rules_decrypted = $this->decrypt_input($rules[$field['field_name']])) === FALSE)
					{
						$this->EE->output->show_user_error(FALSE, lang('form_decryption_failed'));
					}
					
					$field_rules = explode('|', $rules_decrypted);
				}
				
				if ( ! in_array('call_field_validation['.$field['field_id'].']', $field_rules))
				{
					array_unshift($field_rules, 'call_field_validation['.$field['field_id'].']');
				}
				
				if ($field['field_required'] == 'y' && ! in_array('required', $field_rules))
				{
					array_unshift($field_rules, 'required');
				}
				
				$this->EE->form_validation->set_rules($field['field_name'], $field['field_label'], implode('|', $field_rules));
			}
			else
			{
				if ($field['field_type'] == 'date')
				{
					$_POST['field_id_'.$field['field_id']] = $_POST[$field['field_name']] = $this->EE->localize->set_human_time($this->entry($field['field_name']));
				}
				else if ($field['field_required'] == 'y')
				{
					//add a dummy value to be removed later
					//to get around _check_data_for_errors, a redundant check
					$_POST['field_id_'.$field['field_id']] = '1';
				}
			}
			
			//$this->EE->form_validation->set_rules($field['field_name'], $field['field_label'], implode('|', $field_rules));
			
			foreach ($_POST as $key => $value)
			{
				//change field_name'd POSTed keys to field_id's
				if ($key == $field['field_name'])
				{
					//@TODO what to do about xss_clean and "naughty" html
					//for now you can crack open this file and manually add fields_ids and/or field types to the respective arrays
					//to prevent xss_clean
					//i had some people complain about not being able to submit <object>'s
					$xss_clean = ( ! in_array($field['field_id'], $this->skip_xss_field_ids) && ! in_array($field['field_type'], $this->skip_xss_fieldtypes));
					
					$_POST['field_id_'.$field['field_id']] = $this->EE->input->post($key, $xss_clean);
					
					//auto set format if not POSTed
					$fmt = $field['field_fmt'];
					
					if ($this->EE->input->post('field_ft_'.$field['field_id']) !== FALSE)
					{
						$fmt = $this->EE->input->post('field_ft_'.$field['field_id'], TRUE);
					}
					elseif ($this->EE->input->post($field['field_name'].'_ft') !== FALSE)
					{
						$fmt = $this->EE->input->post($field['field_name'].'_ft', TRUE);
					}
					
					$_POST['field_ft_'.$field['field_id']] = $fmt;
				}
				else if (preg_match('/^'.$field['field_name'].'_(.+)/', $key, $match))
				{
					//also change utility POST fields, ie my_field_field_directory to field_id_X_directory
					$_POST['field_id_'.$field['field_id'].'_'.$match[1]] = $this->EE->input->post($key, TRUE);
				}
			}
			
			if (in_array($field['field_type'], $this->file_fields) || $field['field_type'] == 'matrix')
			{
				//change field_name'd POSTed files to field_id's
				foreach ($_FILES as $key => $value)
				{
					if ($key == $field['field_name'])
					{
						$_FILES['field_id_'.$field['field_id']] = $value;
						unset($_FILES[$key]);

						// Check to see if a file was actually selected
						if ($_POST[$field['field_name']] === 'NULL')
						{
							if ( ! empty($_POST[$field['field_name'].'_existing']))
							{
								$_POST[$field['field_name']] = $_POST[$field['field_name'].'_existing'];
							}
							else if ( ! empty($_POST[$field['field_name'].'_hidden']))
							{
								$_POST[$field['field_name']] = $_POST[$field['field_name'].'_hidden'];
							}
							else
							{
								$_POST[$field['field_name']] = '';
							}
						}
					}
					else if (preg_match('/^'.$field['field_name'].'_(.+)/', $key, $match))
					{
						$_FILES['field_id_'.$field['field_id'].'_'.$match[1]] = $value;
						unset($_FILES[$key]);
					}
				}
			}
		}
		
		foreach ($this->title_fields as $field)
		{
			if (isset($this->default_fields[$field]))
			{
				$this->EE->api_channel_fields->set_settings($field, $this->default_fields[$field]);
				
				$this->EE->form_validation->set_rules($field, $this->default_fields[$field]['field_label'], $this->default_fields[$field]['rules']);
			}
			
			if ($this->EE->input->post($field) !== FALSE)
			{
				$_POST[$field] = $this->EE->input->post($field, TRUE);
			}
			else
			{
				if ($field == 'entry_date')
				{
					if ($this->entry($field))
					{
						$_POST[$field] = $this->EE->localize->set_human_time($this->entry($field));
					}
					else
					{
						$_POST[$field] = $this->EE->localize->set_human_time($this->EE->localize->now);
					}
				}
				else
				{
					if ($this->entry($field) !== FALSE)
					{
						if ( ! in_array($field, $this->checkboxes) || $this->preserve_checkboxes)
						{
							$_POST[$field] = $this->entry($field);
						}
					}
				}
			}
		}
		
		//don't override status on edit, only on publish
		if ( ! $this->edit && ! empty($this->settings['override_status'][$this->EE->config->item('site_id')][$this->EE->input->post('channel_id')]))
		{
			$_POST['status'] = $this->settings['override_status'][$this->EE->config->item('site_id')][$this->EE->input->post('channel_id')];
		}
		
		$_POST['ping_servers'] = (is_array($this->EE->input->post('ping'))) ? $this->EE->input->post('ping', TRUE) : array();
		
		$_POST['ping_errors'] = FALSE;
		
		$_POST['revision_post'] = $_POST;
		
		$this->load_session_override();
		
		//added for EE2.1.2
		$this->EE->api->instantiate(array('channel_categories'));
		$this->EE->load->library('api/api_sc_channel_entries');
				
		foreach ($this->form_validation_methods as $method)
		{
			$this->EE->form_validation->set_message($method, lang('safecracker_'.$method));
		}
		
		if ($this->EE->input->post('dynamic_title'))
		{
			$dynamic_title = base64_decode($this->EE->input->post('dynamic_title'));
			
			foreach ($_POST as $key => $value)
			{
				if (is_string($value) && strstr($dynamic_title, '['.$key.']') !== FALSE)
				{
					$dynamic_title = str_replace('['.$key.']', $value, $dynamic_title);
				}
			}
			
			$_POST['title'] = $dynamic_title;
		}
		
		foreach ($this->EE->api_channel_fields->settings as $field_id => $settings)
		{
			$settings['field_name'] = 'field_id_'.$field_id;
			
			if (isset($settings['field_settings']))
			{
				$settings = array_merge($settings, $this->unserialize($settings['field_settings'], TRUE));
			}
			
			$this->EE->api_channel_fields->settings[$field_id] = $this->EE->session->cache['safecracker']['field_settings'][$field_id] = $settings;
		}
		
		//moved to before custom field processing,
		//since we are now using the call_field_validation rule
		if ( ! $this->EE->form_validation->run())
		{
			$this->field_errors = $this->EE->form_validation->_error_array;
		}
		
		if ( ! $this->EE->security->check_xid($this->EE->input->post('XID')))
		{
			$this->EE->functions->redirect(stripslashes($this->EE->input->post('RET')));		
		}
		
		if (empty($this->field_errors) && empty($this->errors))
		{
			//temporarily change site_id for cross-site forms
			//channel_entries api doesn't allow you to specifically set site_id
			$current_site_id = $this->EE->config->item('site_id');
			
			$this->EE->config->set_item('site_id', $this->site_id);
			
			if (in_array($this->channel('channel_id'), $this->EE->functions->fetch_assigned_channels()))
			{
				if ($this->entry('entry_id'))
				{
					$submit = $this->EE->api_sc_channel_entries->update_entry($this->entry('entry_id'), $_POST);
				}
				else
				{
					$submit = $this->EE->api_sc_channel_entries->submit_new_entry($this->channel('channel_id'), $_POST);
				}
				
				if ( ! $submit)
				{
					$this->errors = $this->EE->api_sc_channel_entries->errors;
				}
			}
			else
			{
				
				$this->errors[] = lang('unauthorized_for_this_channel');
			}
			
			$this->EE->config->set_item('site_id', $current_site_id);
			
			$this->clear_entry();
			
			//load the just created entry into memory
			$this->fetch_entry($this->EE->api_sc_channel_entries->entry_id);
		}
		
		$this->unload_session_override();
		
		// -------------------------------------------
		// 'safecracker_submit_entry_end' hook.
		//  - Developers, if you want to modify the $this object remember
		//	to use a reference on func call.
		//

		if ($thi…