/wp-content/plugins/wp-responder-email-autoresponder-and-newsletter-plugin/controllers/custom_fields.php

https://gitlab.com/Gashler/sg · PHP · 218 lines · 191 code · 26 blank · 1 comment · 25 complexity · 8374f5685d3dec9a69c1268409304720 MD5 · raw file 

    

  1. <?php

    2. 

  2. 

    3. 

  3. function _wpr_custom_fields_handler()

    4. 

  4. {

    5. 

  5. 	$action = @$_GET['cfact'];

    6. 

  6. 	switch ($action)

    7. 

  7. 	{

    8. 

  8. 		case 'create':

    9. 

  9. 		  _wpr_newsletter_custom_fields_create();

    10. 

  10. 		break;

    11. 

  11. 		case 'edit':

    12. 

  12. 			_wpr_newsletter_custom_fields_edit();

    13. 

  13. 		break;

    14. 

  14. 		case 'delete':

    15. 

  15. 			_wpr_newsletter_custom_fields_delete();

    16. 

  16. 		break;

    17. 

  17. 		case 'manage':

    18. 

  18. 			_wpr_newsletter_custom_fields_list();

    19. 

  19. 			break;

    20. 

  20. 		default:

    21. 

  21. 		  wpr_customfields();

    22. 

  22. 		  break;

    23. 

  23. 		

    24. 

  24. 	}

    25. 

  25. }

    26. 

  26. 

    27. 

  27. function _wpr_newsletter_custom_fields_edit()

    28. 

  28. {

    29. 

  29. 	global $wpdb;

    30. 

  30. 	$error="";

    31. 

  31. 	$id = $_GET['cid'];

    32. 

  32. 	if (isset($_POST['name']))

    33. 

  33. 	{

    34. 

  34. 		$params['nid'] = $nid = $_GET['nid'];

    35. 

  35. 		$params['id'] = $cid = $_POST['id'];

    36. 

  36. 		$params['name'] = $name = $_POST['name'];

    37. 

  37. 		$params['type'] = $type = $_POST['type'];

    38. 

  38. 		$params['label'] = $label = $_POST['label'];

    39. 

  39. 		$params['enum'] = $enum = $_POST['enum'];

    40. 

  40. 		if ($name && $type)

    41. 

  41. 		{

    42. 

  42. 			if ($type == "enum")

    43. 

  43. 			{

    44. 

  44. 				if (count(explode(",",$enum)) <= 1)

    45. 

  45. 				{

    46. 

  46. 					$error = "Not enough options given for multiple choice field or invalid format";

    47. 

  47. 				}

    48. 

  48. 			}

    49. 

  49. 			else

    50. 

  50. 			{

    51. 

  51. 				$enum='';

    52. 

  52. 			}

    53. 

  53. 			if (!$error)

    54. 

  54. 			{

    55. 

  55. 				$query = "UPDATE `".$wpdb->prefix."wpr_custom_fields` SET `type`='$type',`label`='$label',`enum`='$enum' where id='$cid';" ;

    56. 

  56. 				 $wpdb->query($query);

    57. 

  57. 				wp_redirect("admin.php?page=_wpr/custom_fields&cfact=manage&nid=$nid");

    58. 

  58. 				exit;

    59. 

  59. 			}

    60. 

  60. 		}

    61. 

  61. 		else

    62. 

  62. 		{

    63. 

  63. 			$error = "The name and type fields are required";

    64. 

  64. 		}

    65. 

  65. 		$params = (object) $params;

    66. 

  66. 	}

    67. 

  67. 	

    68. 

  68. 	if (!isset($params))

    69. 

  69. 		$params = _wpr_newsletter_custom_fields_get($id);

    70. 

  70. 		

    71. 

  71. 	_wpr_set("_wpr_view","custom_fields_form");

    72. 

  72. 	_wpr_set("parameters",$params);

    73. 

  73. 	_wpr_set("error",$error);

    74. 

  74. 	_wpr_set("title","Edit Custom Field");

    75. 

  75. 	_wpr_set("buttontext","Save");

    76. 

  76. 	_wpr_set("nameIsHidden",true);

    77. 

  77. }

    78. 

  78. 

    79. 

  79. function _wpr_newsletter_custom_fields_create()

    80. 

  80. {

    81. 

  81. 	global $wpdb;

    82. 

  82. 	$parameters = (object) array();

    83. 

  83. 	$error="";

    84. 

  84. 	if (isset($_POST['name']))

    85. 

  85. 	{

    86. 

  86. 

    87. 

  87. 		$nid = $_GET['nid'];

    88. 

  88. 		$name = $_POST['name'];

    89. 

  89. 		$type = $_POST['type'];

    90. 

  90. 		$label = $_POST['label'];

    91. 

  91. 		$enum = $_POST['enum'];

    92. 

  92. 		if ($name && $type && $label)

    93. 

  93. 		{

    94. 

  94. 			if ($type == "enum")

    95. 

  95. 			{

    96. 

  96. 				if (!count(explode(",",$enum)) > 1)

    97. 

  97. 				{

    98. 

  98. 					$error = "Not enough options given for multiple choice field or invalid format";

    99. 

  99. 				}

    100. 

  100. 			}

    101. 

  101. 			else

    102. 

  102. 			{

    103. 

  103. 				$enum='';

    104. 

  104. 			}

    105. 

  105. 			 preg_match_all("@[^a-z0-9_]@",$name,$match);

    106. 

  106. 

    107. 

  107. 

    108. 

  108. 			if (count($match[0]) > 0)

    109. 

  109. 			{

    110. 

  110. 				$error = "Only lowercase characters and underscore is allowed in name";

    111. 

  111. 			}						   

    112. 

  112. 								 

    113. 

  113. 			if (!$error)

    114. 

  114. 			{

    115. 

  115. 				$query = "INSERT INTO `".$wpdb->prefix."wpr_custom_fields` (`nid`,`type`,`name`,`label`,`enum`) values ('$nid','$type','$name','$label','$enum');" ;

    116. 

  116. 				$wpdb->query($query);

    117. 

  117. 					

    118. 

  118. 				//get the id of this field

    119. 

  119. 				$query = "SELECT id from ".$wpdb->prefix."wpr_custom_fields where nid=$nid and name='$name'";

    120. 

  120. 				$cf = $wpdb->get_results($query);

    121. 

  121. 				$cid = $cf[0]->id;

    122. 

  122. 				

    123. 

  123. 				$query = "SELECT * FROM ".$wpdb->prefix."wpr_subscribers where nid=$nid";

    124. 

  124. 				$subscribers = $wpdb->get_results($query);

    125. 

  125. 				if (count($subscribers) > 0)

    126. 

  126. 				{

    127. 

  127. 					$qTemplate = " ( '$nid','$cid','%%sid%%','') ";

    128. 

  128. 					$theQuery = "";

    129. 

  129. 					foreach ($subscribers as $subscriber)

    130. 

  130. 					{

    131. 

  131. 						$theQuery[] = str_replace("%%sid%%",$subscriber->id,$qTemplate);

    132. 

  132. 					}

    133. 

  133. 					$theQuery = implode(", ",$theQuery);

    134. 

  134. 					$theQuery = "INSERT INTO ".$wpdb->prefix."wpr_custom_fields_values (nid, cid, sid, value) VALUES ".$theQuery;

    135. 

  135. 					$wpdb->query($theQuery);

    136. 

  136. 				}

    137. 

  137. 				wp_redirect("admin.php?page=_wpr/custom_fields&cfact=manage&nid=$nid");

    138. 

  138. 				exit;

    139. 

  139. 			}

    140. 

  140. 			$parameters = (object) array();

    141. 

  141. 			$parameters->name = $name;

    142. 

  142. 			$parameters->label = $label;

    143. 

  143. 			$parameters->type = $type;

    144. 

  144. 			$parameters->enum = $enum;

    145. 

  145. 		}

    146. 

  146. 		else

    147. 

  147. 		{

    148. 

  148. 			$error = "The name, label and type fields are required fields";

    149. 

  149. 		}

    150. 

  150. 	}

    151. 

  151. 	

    152. 

  152. 	_wpr_set("_wpr_view","custom_fields_form");

    153. 

  153. 	_wpr_set("parameters",$parameters);

    154. 

  154. 	_wpr_set("error",$error);

    155. 

  155. 	_wpr_set("title","Create Custom Field");

    156. 

  156. 	_wpr_set("buttontext","Create Custom Field");

    157. 

  157. 	_wpr_set("nameIsHidden",false);

    158. 

  158. }

    159. 

  159. 

    160. 

  160. 

    161. 

  161. function _wpr_newsletter_custom_fields_delete()

    162. 

  162. {

    163. 

  163. 	global $wpdb;

    164. 

  164. 	$cid = $_GET['cid'];

    165. 

  165. 	$nid = $_GET['nid'];

    166. 

  166. 	if (isset($_GET['confirm']) && $_GET['confirm'] == 'true')

    167. 

  167. 	{

    168. 

  168. 

    169. 

  169. 		$query = "DELETE FROM ".$wpdb->prefix."wpr_custom_fields WHERE id='$cid'";

    170. 

  170. 		$wpdb->query($query);

    171. 

  171. 		wp_redirect("admin.php?page=_wpr/custom_fields&cfact=manage&nid=$nid");

    172. 

  172. 		exit;

    173. 

  173.     }

    174. 

  174.    $field = _wpr_newsletter_custom_fields_get($cid);

    175. 

  175.    _wpr_set("_wpr_view","delete_custom_fields");

    176. 

  176.    _wpr_set("field",$field);

    177. 

  177.    

    178. 

  178. }

    179. 

  179. 

    180. 

  180. function _wpr_newsletter_custom_fields_list()

    181. 

  181. {

    182. 

  182. 	global $wpdb;

    183. 

  183. 	$id = intval($_GET['nid']);

    184. 

  184. 	$newsletter = _wpr_newsletter_get($id);

    185. 

  185. 	$query = "SELECT * FROM ".$wpdb->prefix."wpr_custom_fields where nid=$id";

    186. 

  186. 	$result = $wpdb->get_results($query);

    187. 

  187. 	_wpr_set("newsletter",$newsletter);

    188. 

  188. 	_wpr_set("newsletterCustomFieldList",$result);

    189. 

  189. 	_wpr_set("_wpr_view","newsletter_custom_fields_list");

    190. 

  190. }

    191. 

  191. 

    192. 

  192. 

    193. 

  193. 

    194. 

  194. function _wpr_custom_field_name($name,$options)

    195. 

  195. {

    196. 

  196. 	switch ($name)

    197. 

  197. 	{

    198. 

  198. 		case 'text':

    199. 

  199. 		  return 'One Line Text';

    200. 

  200. 		  break;

    201. 

  201. 		case 'enum':

    202. 

  202. 		  return 'Multiple Choice'." ($options)";

    203. 

  203. 		  break;

    204. 

  204. 	}

    205. 

  205. 	

    206. 

  206. }

    207. 

  207. 

    208. 

  208. 

    209. 

  209. function wpr_customfields()

    210. 

  210. {

    211. 

  211. 	global $wpdb;

    212. 

  212.      

    213. 

  213.       $query = "SELECT * FROM ".$wpdb->prefix."wpr_newsletters";

    214. 

  214.       $newsletterList = $wpdb->get_results($query);

    215. 

  215. 	  _wpr_set("newsletterList",$newsletterList);

    216. 

  216. 	  _wpr_set("_wpr_view","custom_fields_list");

    217. 

  217. }
    218.