PageRenderTime 53ms CodeModel.GetById 18ms RepoModel.GetById 1ms app.codeStats 0ms

/source/function/function_portalcp.php

https://github.com/kuaileshike/upload
PHP | 1104 lines | 1079 code | 19 blank | 6 comment | 42 complexity | 15f5a06fe7a77fa1fc2e4682048e31f5 MD5 | raw file
    

  1. <?php
    2. 

  2. 

  3. /**
    4. 

  4.  *      [Discuz!] (C)2001-2099 Comsenz Inc.
    5. 

  5.  *      This is NOT a freeware, use is subject to license terms
    6. 

  6.  *
    7. 

  7.  *      $Id: function_portalcp.php 31861 2012-10-17 08:36:52Z zhangguosheng $
    8. 

  8.  */
    9. 

  9. 

  10. if(!defined('IN_DISCUZ')) {
    11. 

  11. 	exit('Access Denied');
    12. 

  12. }
    13. 

  13. 

  14. function get_uploadcontent($attach, $type='portal', $dotype='') {
    15. 

  15. 

  16. 	$return = '';
    17. 

  17. 	$dotype = $dotype ? 'checked' : '';
    18. 

  18. 	if($attach['isimage']) {
    19. 

  19. 		$pic = pic_get($attach['attachment'], $type, $attach['thumb'], $attach['remote'], 0);
    20. 

  20. 		$small_pic = $attach['thumb'] ? getimgthumbname($pic) : '';
    21. 

  21. 		$check = $attach['pic'] == $type.'/'.$attach['attachment'] ? 'checked' : $dotype;
    22. 

  22. 		$aid = $check ? $attach['aid'] : '';
    23. 

  23. 

  24. 		$return .= '<a href="javascript:;" class="opattach"><span class="opattach_ctrl">';
    25. 

  25. 		$return .= '<span onclick="insertImage(\''.$pic.'\');" class="cur1">'.lang('portalcp', 'insert_large_image').'</span>';
    26. 

  26. 		$return .= '<span class="pipe">|</span>';
    27. 

  27. 		if($small_pic) $return .= '<span onclick="insertImage(\''.$small_pic.'\', \''.$pic.'\');" class="cur1">'.lang('portalcp', 'small_image').'</span>';
    28. 

  28. 		$return .= '</span><img src="'.($small_pic ? $small_pic : $pic).'" onclick="insertImage(\''.$pic.'\');" class="cur1"></a>';
    29. 

  29. 		$return .= '<label for="setconver'.$attach['attachid'].'" class="cur1 xi2"><input type="radio" name="setconver" id="setconver'.$attach['attachid'].'" class="pr" value="1" onclick="setConver(\''.addslashes(serialize(array('pic'=>$type.'/'.$attach['attachment'], 'thumb'=>$attach['thumb'], 'remote'=>$attach['remote']))).'\') '.$check.'>'.lang('portalcp', 'set_to_conver').'</label>';
    30. 

  30. 		$return .= '<span class="pipe">|</span>';
    31. 

  31. 		if($type == 'portal') $return .= '<span class="cur1 xi2" onclick="deleteAttach(\''.$attach['attachid'].'\', \'portal.php?mod=attachment&id='.$attach['attachid'].'&aid='.$aid.'&op=delete\');">'.lang('portalcp', 'delete').'</span>';
    32. 

  32. 

  33. 	} else {
    34. 

  34. 		$attach_url = $type == 'forum' ? 'forum.php?mod=attachment&aid='.aidencode($attach['attachid'], 1) : 'portal.php?mod=attachment&id='.$attach['attachid'];
    35. 

  35. 		$return .= '<table id="attach_list_'.$attach['attachid'].'" width="100%" class="xi2">';
    36. 

  36. 		$return .= '<td width="50" class="bbs"><a href="'.$attach_url.'" target="_blank">'.$attach['filename'].'</a></td>';
    37. 

  37. 		$return .= '<td align="right" class="bbs">';
    38. 

  38. 		$return .= '<a href="javascript:void(0);" onclick="insertFile(\''.$attach['filename'].'\', \''.$attach_url.'\');return false;">'.lang('portalcp', 'insert_file').'</a><br>';
    39. 

  39. 		if($type == 'portal') $return .= '<a href="javascript:void(0);" onclick="deleteAttach(\''.$attach['attachid'].'\', \'portal.php?mod=attachment&id='.$attach['attachid'].'&op=delete\');return false;">'.lang('portalcp', 'delete').'</a>';
    40. 

  40. 		$return .= '</td>';
    41. 

  41. 		$return .= '</table>';
    42. 

  42. 	}
    43. 

  43. 	return $return;
    44. 

  44. 

  45. }
    46. 

  46. 

  47. function get_upload_content($attachs, $dotype='') {
    48. 

  48. 	$html = '';
    49. 

  49. 	$dotype = $dotype ? 'checked' : '';
    50. 

  50. 	$i = 0;
    51. 

  51. 	foreach($attachs as $key => $attach) {
    52. 

  52. 		$type = $attach['from'] == 'forum' ? 'forum' : 'portal';
    53. 

  53. 		$html .= '<td id="attach_list_'.$attach['attachid'].'">';
    54. 

  54. 		if($attach['isimage']) {
    55. 

  55. 			$pic = pic_get($attach['attachment'], $type, $attach['thumb'], $attach['remote'], 0);
    56. 

  56. 			$small_pic = $attach['thumb'] ? getimgthumbname($pic) : '';
    57. 

  57. 			$check = $attach['pic'] == $type.'/'.$attach['attachment'] ? 'checked' : $dotype;
    58. 

  58. 			$aid = $check ? $attach['aid'] : '';
    59. 

  59. 

  60. 			$html .= '<a href="javascript:;" class="opattach">';
    61. 

  61. 			$html .= '<span class="opattach_ctrl">';
    62. 

  62. 			$html .= '<span onclick="insertImage(\''.$pic.'\');" class="cur1">'.lang('portalcp', 'insert_large_image').'</span><span class="pipe">|</span>';
    63. 

  63. 			if($small_pic) $html .= '<span onclick="insertImage(\''.$small_pic.'\', \''.$pic.'\');" class="cur1">'.lang('portalcp', 'small_image').'</span>';
    64. 

  64. 			$html .= '</span><img src="'.($small_pic ? $small_pic : $pic).'" onclick="insertImage(\''.$pic.'\');" class="cur1" /></a>';
    65. 

  65. 			$html .= '<label for="setconver'.$attach['attachid'].'" class="cur1 xi2"><input type="radio" name="setconver" id="setconver'.$attach['attachid'].'" class="pr" value="1" onclick=setConver(\''.addslashes(serialize(array('pic'=>$type.'/'.$attach['attachment'], 'thumb'=>$attach['thumb'], 'remote'=>$attach['remote']))).'\') '.$check.'>'.lang('portalcp', 'set_to_conver').'</label>';
    66. 

  66. 			if($type == 'portal') {
    67. 

  67. 				$html .= '<span class="pipe">|</span><span class="cur1 xi2" onclick="deleteAttach(\''.$attach['attachid'].'\', \'portal.php?mod=attachment&id='.$attach['attachid'].'&aid='.$aid.'&op=delete\');">'.lang('portalcp', 'delete').'</span>';
    68. 

  68. 			}
    69. 

  69. 		} else {
    70. 

  70. 			$html .= '<img src="static/image/editor/editor_file_thumb.png" class="cur1" onclick="insertFile(\''.$attach['filename'].'\', \'portal.php?mod=attachment&id='.$attach['attachid'].'\');" tip="'.$attach['filename'].'" onmouseover="showTip(this);" /><br/>';
    71. 

  71. 			$html .= '<span onclick="deleteAttach(\''.$attach['attachid'].'\', \'portal.php?mod=attachment&id='.$attach['attachid'].'&op=delete\');" class="cur1 xi2">'.lang('portalcp', 'delete').'</span>';
    72. 

  72. 		}
    73. 

  73. 		$html .= '</td>';
    74. 

  74. 		$i++;
    75. 

  75. 

  76. 		if($i % 4 == 0 && isset($attachs[$i])) {
    77. 

  77. 			$html .= '</tr><tr>';
    78. 

  78. 		}
    79. 

  79. 	}
    80. 

  80. 	if(!empty($html)) {
    81. 

  81. 		if(($imgpad = $i % 4) > 0) {
    82. 

  82. 			$html .= str_repeat('<td width="25%"></td>', 4 - $imgpad);
    83. 

  83. 		}
    84. 

  84. 

  85. 		$html = '<table class="imgl"><tr>'.$html.'</tr></table>';
    86. 

  86. 	}
    87. 

  87. 	return $html;
    88. 

  88. }
    89. 

  89. 

  90. function getallowcategory($uid){
    91. 

  91. 	global $_G;
    92. 

  92. 	$permission = array();
    93. 

  93. 	if (empty($uid)) return $permission;
    94. 

  94. 	if(getstatus($_G['member']['allowadmincp'], 2) || getstatus($_G['member']['allowadmincp'], 3)) {
    95. 

  95. 		$uid = max(0,intval($uid));
    96. 

  96. 		foreach(C::t('portal_category_permission')->fetch_all_by_uid($uid) as $catid=>$value) {
    97. 

  97. 			if ($value['allowpublish'] || $value['allowmanage']) {
    98. 

  98. 				$permission[$catid] = $value;
    99. 

  99. 			}
    100. 

  100. 		}
    101. 

  101. 	}
    102. 

  102. 	return $permission;
    103. 

  103. }
    104. 

  104. 

  105. function getpermissioncategory($category, $permission = array()) {
    106. 

  106. 

  107. 	$cats = array();
    108. 

  108. 	foreach ($permission as $k=>$v) {
    109. 

  109. 		$cur = $category[$v];
    110. 

  110. 

  111. 		if ($cur['level'] != 0) {
    112. 

  112. 			while ($cur['level']) {
    113. 

  113. 				$cats[$cur['upid']]['permissionchildren'][$cur['catid']] = $cur['catid'];
    114. 

  114. 				$cur = $category[$cur['upid']];
    115. 

  115. 			}
    116. 

  116. 		} elseif(empty($cats[$v])) {
    117. 

  117. 			$cats[$v] = array();
    118. 

  118. 		}
    119. 

  119. 	}
    120. 

  120. 

  121. 	return $cats;
    122. 

  122. }
    123. 

  123. 

  124. function getallowdiytemplate($uid){
    125. 

  125. 	if (empty($uid)) return false;
    126. 

  126. 	$permission = array();
    127. 

  127. 	$uid = max(0,intval($uid));
    128. 

  128. 	$permission = C::t('common_template_permission')->fetch_all_by_uid($uid);
    129. 

  129. 	return $permission;
    130. 

  130. }
    131. 

  131. 

  132. function getdiytpldir($targettplname) {
    133. 

  133. 	global $_G;
    134. 

  134. 	$tpldir = $pre = '';
    135. 

  135. 	if (substr($targettplname, 0, 13) === ($pre = 'forum/discuz_')) {
    136. 

  136. 	} elseif (substr($targettplname, 0, 19) === ($pre = 'forum/forumdisplay_')) {
    137. 

  137. 	}
    138. 

  138. 	if($pre) {
    139. 

  139. 		$forum = C::t('forum_forum')->fetch(intval(str_replace($pre, '', $targettplname)));
    140. 

  140. 		if(!empty($forum['styleid'])) {
    141. 

  141. 			$_cname = 'style_'.$forum['styleid'];
    142. 

  142. 			loadcache($_cname);
    143. 

  143. 			$tpldir = empty($_G['cache'][$_cname]['tpldir']) ? '' : $_G['cache'][$_cname]['tpldir'];
    144. 

  144. 		}
    145. 

  145. 	}
    146. 

  146. 	return $tpldir ? $tpldir : ($_G['cache']['style_default']['tpldir'] ? $_G['cache']['style_default']['tpldir'] : './template/default');
    147. 

  147. }
    148. 

  148. 

  149. function save_diy_data($tpldirectory, $primaltplname, $targettplname, $data, $database = false, $optype = '') {
    150. 

  150. 	global $_G;
    151. 

  151. 	if (empty($data) || !is_array($data)) return false;
    152. 

  152. 	checksecurity($data['spacecss']);
    153. 

  153. 	if(empty($tpldirectory)) {
    154. 

  154. 		$tpldirectory = getdiytpldir($targettplname);
    155. 

  155. 	}
    156. 

  156. 	$isextphp = false;
    157. 

  157. 	$file = $tpldirectory.'/'.$primaltplname.'.htm';
    158. 

  158. 	if (!file_exists($file)) {
    159. 

  159. 		$file = $tpldirectory.'/'.$primaltplname.'.php';
    160. 

  160. 		if (!file_exists($file)) {
    161. 

  161. 			$file = './template/default/'.$primaltplname.'.htm';
    162. 

  162. 		} else {
    163. 

  163. 			$isextphp = true;
    164. 

  164. 		}
    165. 

  165. 	}
    166. 

  166. 	if(!file_exists($file)) return false;
    167. 

  167. 	$content = file_get_contents(DISCUZ_ROOT.$file);
    168. 

  168. 	if($isextphp) {
    169. 

  169. 		$content = substr($content, strpos($content, "\n"));
    170. 

  170. 	}
    171. 

  171. 	$content = preg_replace("/\<\!\-\-\[name\].+?\[\/name\]\-\-\>\s+/is", '', $content);
    172. 

  172. 	$content = preg_replace("/\<script src\=\"misc\.php\?mod\=diyhelp\&action\=get.+?\>\<\/script\>/", '', $content);
    173. 

  173. 	foreach ($data['layoutdata'] as $key => $value) {
    174. 

  174. 		$key = trimdxtpllang($key);
    175. 

  175. 		$html = '';
    176. 

  176. 		$html .= '<div id="'.$key.'" class="area">';
    177. 

  177. 		$html .= getframehtml($value);
    178. 

  178. 		$html .= '</div>';
    179. 

  179. 		$content = preg_replace("/(\<\!\-\-\[diy\=$key\]\-\-\>).+?(\<\!\-\-\[\/diy\]\-\-\>)/is", "\\1".$html."\\2", $content);
    180. 

  180. 	}
    181. 

  181. 	$data['spacecss'] = str_replace('.content', '.dxb_bc', $data['spacecss']);
    182. 

  182. 	$data['spacecss'] = trimdxtpllang($data['spacecss']);
    183. 

  183. 	$content = preg_replace("/(\<style id\=\"diy_style\" type\=\"text\/css\"\>).*?(\<\/style\>)/is", "\\1".$data['spacecss']."\\2", $content);
    184. 

  184. 	if (!empty($data['style'])) {
    185. 

  185. 		$content = preg_replace("/(\<link id\=\"style_css\" rel\=\"stylesheet\" type\=\"text\/css\" href\=\").+?(\"\>)/is", "\\1".$data['style']."\\2", $content);
    186. 

  186. 	}
    187. 

  187. 

  188. 	$flag = $optype == 'savecache' ? true : false;
    189. 

  189. 	if($flag) {
    190. 

  190. 		$targettplname = $targettplname.'_diy_preview';
    191. 

  191. 	} else {
    192. 

  192. 		@unlink('./data/diy/'.$tpldirectory.'/'.$targettplname.'_diy_preview.htm');
    193. 

  193. 	}
    194. 

  194. 

  195. 	$tplfile =DISCUZ_ROOT.'./data/diy/'.$tpldirectory.'/'.$targettplname.'.htm';
    196. 

  196. 	$tplpath = dirname($tplfile);
    197. 

  197. 	if (!is_dir($tplpath)) {
    198. 

  198. 		dmkdir($tplpath);
    199. 

  199. 	} else {
    200. 

  200. 		if (file_exists($tplfile) && !$flag) copy($tplfile, $tplfile.'.bak');
    201. 

  201. 	}
    202. 

  202. 	$r = file_put_contents($tplfile, $content);
    203. 

  203. 	if ($r && $database && !$flag) {
    204. 

  204. 		$diytplname = getdiytplname($targettplname, $tpldirectory);
    205. 

  205. 		C::t('common_diy_data')->insert(array(
    206. 

  206. 			'targettplname' => $targettplname,
    207. 

  207. 			'tpldirectory' => $tpldirectory,
    208. 

  208. 			'primaltplname' => $primaltplname,
    209. 

  209. 			'diycontent' => serialize($data),
    210. 

  210. 			'name' => $diytplname,
    211. 

  211. 			'uid' => $_G['uid'],
    212. 

  212. 			'username' => $_G['username'],
    213. 

  213. 			'dateline' => TIMESTAMP,
    214. 

  214. 		), false, true);
    215. 

  215. 	}
    216. 

  216. 	return $r;
    217. 

  217. }
    218. 

  218. 

  219. 

  220. function getdiytplnames($tpls) {
    221. 

  221. 	$arr = $ret = array();
    222. 

  222. 	foreach((array)$tpls as $targettplname) {
    223. 

  223. 		$id = $pre = '';
    224. 

  224. 		if (substr($targettplname, 0, 12) === ($pre = 'portal/list_')) {
    225. 

  225. 		} elseif (substr($targettplname, 0, 12) === ($pre = 'portal/view_')) {
    226. 

  226. 		} elseif (substr($targettplname, 0, 13) === ($pre = 'forum/discuz_')) {
    227. 

  227. 		} elseif (substr($targettplname, 0, 17) === ($pre = 'forum/viewthread_')) {
    228. 

  228. 		} elseif (substr($targettplname, 0, 19) === ($pre = 'forum/forumdisplay_')) {
    229. 

  229. 		} elseif (substr($targettplname, 0, 28) === ($pre = 'portal/portal_topic_content_')) {
    230. 

  230. 		}
    231. 

  231. 		if($pre && ($id = dintval(str_replace($pre, '', $targettplname)))) {
    232. 

  232. 			$arr[$pre][$id] = $id;
    233. 

  233. 		}
    234. 

  234. 	}
    235. 

  235. 	foreach($arr as $pre => $ids) {
    236. 

  236. 		if ($pre === 'portal/list_') {
    237. 

  237. 			foreach(C::t('portal_category')->fetch_all($ids) as $id => $value) {
    238. 

  238. 				$ret[$pre][$id] = $value['catname'];
    239. 

  239. 			}
    240. 

  240. 		} elseif ($pre === 'portal/view_') {
    241. 

  241. 			$portal_view_name = lang('portalcp', 'portal_view_name');
    242. 

  242. 			foreach(C::t('portal_category')->fetch_all($ids) as $id => $value) {
    243. 

  243. 				$ret[$pre][$id] = $value['catname'].$portal_view_name;
    244. 

  244. 			}
    245. 

  245. 		} elseif ($pre === 'forum/forumdisplay_' || $pre === 'forum/discuz_') {
    246. 

  246. 			foreach(C::t('forum_forum')->fetch_all($ids) as $id => $value) {
    247. 

  247. 				$ret[$pre][$id] = $value['name'];
    248. 

  248. 			}
    249. 

  249. 		} elseif ($pre === 'forum/viewthread_') {
    250. 

  250. 			$forum_viewthread_name = lang('portalcp', 'forum_viewthread_name');
    251. 

  251. 			foreach(C::t('forum_forum')->fetch_all($ids) as $id => $value) {
    252. 

  252. 				$ret[$pre][$id] = $value['name'].$forum_viewthread_name;
    253. 

  253. 			}
    254. 

  254. 		} elseif ($pre === 'portal/portal_topic_content_') {
    255. 

  255. 			foreach(C::t('portal_topic')->fetch_all($ids) as $id => $value) {
    256. 

  256. 				$ret[$pre][$id] = $value['title'];
    257. 

  257. 			}
    258. 

  258. 		}
    259. 

  259. 	}
    260. 

  260. 	return $ret;
    261. 

  261. }
    262. 

  262. 

  263. function getdiytplname($targettplname, $tpldirectory) {
    264. 

  264. 	$diydata = C::t('common_diy_data')->fetch($targettplname, $tpldirectory);
    265. 

  265. 	$diytplname = $diydata ? $diydata['name'] : '';
    266. 

  266. 	if(empty($diytplname) && ($data = getdiytplnames(array($targettplname)))) {
    267. 

  267. 		$diytplname = array_shift(array_shift($data));
    268. 

  268. 	}
    269. 

  269. 	return $diytplname;
    270. 

  270. }
    271. 

  271. function getframehtml($data = array()) {
    272. 

  272. 	global $_G;
    273. 

  273. 	$html = $style = '';
    274. 

  274. 	foreach ((array)$data as $id => $content) {
    275. 

  275. 		$id = trimdxtpllang($id);
    276. 

  276. 		$flag = $name = '';
    277. 

  277. 		list($flag, $name) = explode('`', $id);
    278. 

  278. 		if ($flag == 'frame') {
    279. 

  279. 			$fattr = $content['attr'];
    280. 

  280. 			$fattr['name'] = trimdxtpllang($fattr['name']);
    281. 

  281. 			$fattr['className'] = trimdxtpllang($fattr['className']);
    282. 

  282. 			$moveable = $fattr['moveable'] == 'true' ? ' move-span' : '';
    283. 

  283. 			$html .= '<div id="'.$fattr['name'].'" class="'.$fattr['className'].'">';
    284. 

  284. 			if (checkhastitle($fattr['titles'])) {
    285. 

  285. 				$style = gettitlestyle($fattr['titles']);
    286. 

  286. 				$cn = trimdxtpllang(implode(' ',$fattr['titles']['className']));
    287. 

  287. 				$html .= '<div class="'.$cn.'"'.$style.'>'.gettitlehtml($fattr['titles'], 'frame').'</div>';
    288. 

  288. 			}
    289. 

  289. 			foreach ((array)$content as $colid => $coldata) {
    290. 

  290. 				list($colflag, $colname) = explode('`', $colid);
    291. 

  291. 				$colname = trimdxtpllang($colname);
    292. 

  292. 				$cn = trimdxtpllang($coldata['attr']['className']);
    293. 

  293. 				if ($colflag == 'column') {
    294. 

  294. 					$html .= '<div id="'.$colname.'" class="'.$cn.'">';
    295. 

  295. 					$html .= '<div id="'.$colname.'_temp" class="move-span temp"></div>';
    296. 

  296. 					$html .= getframehtml($coldata);
    297. 

  297. 					$html .= '</div>';
    298. 

  298. 				}
    299. 

  299. 			}
    300. 

  300. 			$html .= '</div>';
    301. 

  301. 		} elseif ($flag == 'tab') {
    302. 

  302. 			$fattr = $content['attr'];
    303. 

  303. 			$fattr['name'] = trimdxtpllang($fattr['name']);
    304. 

  304. 			$fattr['className'] = trimdxtpllang($fattr['className']);
    305. 

  305. 			$moveable = $fattr['moveable'] == 'true' ? ' move-span' : '';
    306. 

  306. 			$html .= '<div id="'.$fattr['name'].'" class="'.$fattr['className'].'">';
    307. 

  307. 			$switchtype = 'click';
    308. 

  308. 			foreach ((array)$content as $colid => $coldata) {
    309. 

  309. 				list($colflag, $colname) = explode('`', $colid);
    310. 

  310. 				$colname = trimdxtpllang($colname);
    311. 

  311. 				$cn = trimdxtpllang($coldata['attr']['className']);
    312. 

  312. 				if ($colflag == 'column') {
    313. 

  313. 					if (checkhastitle($fattr['titles'])) {
    314. 

  314. 						$style = gettitlestyle($fattr['titles']);
    315. 

  315. 						$title = gettitlehtml($fattr['titles'], 'tab');
    316. 

  316. 					}
    317. 

  317. 					$switchtype = is_array($fattr['titles']['switchType']) && !empty($fattr['titles']['switchType'][0]) ? $fattr['titles']['switchType'][0] : 'click';
    318. 

  318. 					$switchtype = in_array(strtolower($switchtype), array('click', 'mouseover')) ? $switchtype : 'click';
    319. 

  319. 					$html .= '<div id="'.$colname.'" class="'.$cn.'"'.$style.' switchtype="'.$switchtype.'">'.$title;
    320. 

  320. 					$html .= getframehtml($coldata);
    321. 

  321. 					$html .= '</div>';
    322. 

  322. 				}
    323. 

  323. 			}
    324. 

  324. 			$html .= '<div id="'.$fattr['name'].'_content" class="tb-c"></div>';
    325. 

  325. 			$html .= '<script type="text/javascript">initTab("'.$fattr['name'].'","'.$switchtype.'");</script>';
    326. 

  326. 			$html .= '</div>';
    327. 

  327. 		} elseif ($flag == 'block') {
    328. 

  328. 			$battr = $content['attr'];
    329. 

  329. 			$bid = intval(str_replace('portal_block_', '', $battr['name']));
    330. 

  330. 			if (!empty($bid)) {
    331. 

  331. 				$html .= "<!--{block/{$bid}}-->";
    332. 

  332. 				$_G['curtplbid'][$bid] = $bid;
    333. 

  333. 			}
    334. 

  334. 		}
    335. 

  335. 	}
    336. 

  336. 

  337. 	return $html;
    338. 

  338. }
    339. 

  339. function gettitlestyle($title) {
    340. 

  340. 	$style = '';
    341. 

  341. 	if (is_array($title['style']) && count($title['style'])) {
    342. 

  342. 		foreach ($title['style'] as $k=>$v){
    343. 

  343. 			$style .= trimdxtpllang($k).':'.trimdxtpllang($v).';';
    344. 

  344. 		}
    345. 

  345. 	}
    346. 

  346. 	$style = $style ? ' style=\''.$style.'\'' : '';
    347. 

  347. 	return $style;
    348. 

  348. }
    349. 

  349. function checkhastitle($title) {
    350. 

  350. 	if (!is_array($title)) return false;
    351. 

  351. 	foreach ($title as $k => $v) {
    352. 

  352. 		if (strval($k) == 'className') continue;
    353. 

  353. 		if (!empty($v['text'])) return true;
    354. 

  354. 	}
    355. 

  355. 	return false;
    356. 

  356. }
    357. 

  357. 

  358. function gettitlehtml($title, $type) {
    359. 

  359. 	global $_G;
    360. 

  360. 	if (!is_array($title)) return '';
    361. 

  361. 	$html = $one = $style = $color =  '';
    362. 

  362. 	foreach ($title as $k => $v) {
    363. 

  363. 		if (in_array(strval($k),array('className','style'))) continue;
    364. 

  364. 		if (empty($v['src']) && empty($v['text'])) continue;
    365. 

  365. 		$v['className'] = trimdxtpllang($v['className']);
    366. 

  366. 		$v['font-size'] = intval($v['font-size']);
    367. 

  367. 		$v['margin'] = intval($v['margin']);
    368. 

  368. 		$v['float'] = trimdxtpllang($v['float']);
    369. 

  369. 		$v['color'] = trimdxtpllang($v['color']);
    370. 

  370. 		$v['src'] = trimdxtpllang($v['src']);
    371. 

  371. 		$v['href'] = trimdxtpllang($v['href']);
    372. 

  372. 		$v['text'] = dhtmlspecialchars(str_replace(array('{', '$'), array('{ ', '$ '), $v['text']));
    373. 

  373. 		$one = "<span class=\"{$v['className']}\"";
    374. 

  374. 		$style = $color = "";
    375. 

  375. 		$style .= empty($v['font-size']) ? '' : "font-size:{$v['font-size']}px;";
    376. 

  376. 		$style .= empty($v['float']) ? '' : "float:{$v['float']};";
    377. 

  377. 		$margin_ = empty($v['float']) ? 'left' : $v['float'];
    378. 

  378. 		$style .= empty($v['margin']) ? '' : "margin-{$margin_}:{$v['margin']}px;";
    379. 

  379. 		$color = empty($v['color']) ? '' : "color:{$v['color']};";
    380. 

  380. 		$img = !empty($v['src']) ? '<img src="'.$v['src'].'" class="vm" alt="'.$v['text'].'"/>' : '';
    381. 

  381. 		if (empty($v['href'])) {
    382. 

  382. 			$style = empty($style)&&empty($color) ? '' : ' style="'.$style.$color.'"';
    383. 

  383. 			$one .= $style.">$img{$v['text']}";
    384. 

  384. 		} else {
    385. 

  385. 			$style = empty($style) ? '' : ' style="'.$style.'"';
    386. 

  386. 			$colorstyle = empty($color) ? '' : ' style="'.$color.'"';
    387. 

  387. 			$one .= $style.'><a href="'.$v['href'].'" target="_blank"'.$colorstyle.'>'.$img.$v['text'].'</a>';
    388. 

  388. 		}
    389. 

  389. 		$one .= '</span>';
    390. 

  390. 

  391. 		$siteurl = str_replace(array('/','.'),array('\/','\.'),$_G['siteurl']);
    392. 

  392. 		$one = preg_replace('/\"'.$siteurl.'(.*?)\"/','"$1"',$one);
    393. 

  393. 

  394. 		$html = $k === 'first' ? $one.$html : $html.$one;
    395. 

  395. 	}
    396. 

  396. 	return $html;
    397. 

  397. }
    398. 

  398. 

  399. function gettheme($type) {
    400. 

  400. 	$themes = array();
    401. 

  401. 	$themedirs = dreaddir(DISCUZ_ROOT."/static/$type");
    402. 

  402. 	foreach ($themedirs as $key => $dirname) {
    403. 

  403. 		$now_dir = DISCUZ_ROOT."/static/$type/$dirname";
    404. 

  404. 		if(file_exists($now_dir.'/style.css') && file_exists($now_dir.'/preview.jpg')) {
    405. 

  405. 			$themes[] = array(
    406. 

  406. 				'dir' => $type.'/'.$dirname,
    407. 

  407. 				'name' => getcssname($type.'/'.$dirname)
    408. 

  408. 			);
    409. 

  409. 		}
    410. 

  410. 	}
    411. 

  411. 	return $themes;
    412. 

  412. }
    413. 

  413. 

  414. function getcssname($dirname) {
    415. 

  415. 	$css = @file_get_contents(DISCUZ_ROOT.'./static/'.$dirname.'/style.css');
    416. 

  416. 	if($css) {
    417. 

  417. 		preg_match("/\[name\](.+?)\[\/name\]/i", trim($css), $mathes);
    418. 

  418. 		if(!empty($mathes[1])) $name = dhtmlspecialchars($mathes[1]);
    419. 

  419. 	} else {
    420. 

  420. 		$name = 'No name';
    421. 

  421. 	}
    422. 

  422. 	return $name;
    423. 

  423. }
    424. 

  424. 

  425. function checksecurity($str) {
    426. 

  426. 

  427. 	$filter = array(
    428. 

  428. 		'/\/\*[\n\r]*(.+?)[\n\r]*\*\//is',
    429. 

  429. 		'/[^a-z0-9]+/i',
    430. 

  430. 		'/important/i',
    431. 

  431. 	);
    432. 

  432. 	$str = preg_replace($filter, '', $str);
    433. 

  433. 	if(preg_match("/(expression|import|javascript)/i", $str)) {
    434. 

  434. 		showmessage('css_contains_elements_of_insecurity');
    435. 

  435. 	}
    436. 

  436. 	return true;
    437. 

  437. }
    438. 

  438. 

  439. function block_export($bids) {
    440. 

  440. 	$return = array('block'=>array(), 'style'=>array());
    441. 

  441. 	if(empty($bids)) {
    442. 

  442. 		return;
    443. 

  443. 	}
    444. 

  444. 	$styleids = array();
    445. 

  445. 	foreach(C::t('common_block')->fetch_all($bids) as $value) {
    446. 

  446. 		$value['param'] = dunserialize($value['param']);
    447. 

  447. 		if(!empty($value['blockstyle'])) $value['blockstyle'] = dunserialize($value['blockstyle']);
    448. 

  448. 

  449. 		$return['block'][$value['bid']] = $value;
    450. 

  450. 		if(!empty($value['styleid'])) $styleids[] = intval($value['styleid']);
    451. 

  451. 	}
    452. 

  452. 	if($styleids) {
    453. 

  453. 		$styleids = array_unique($styleids);
    454. 

  454. 		foreach(C::t('common_block_style')->fetch_all($styleids) as $value) {
    455. 

  455. 			$value['template'] = dunserialize($value['template']);
    456. 

  456. 			if(!empty($value['fields'])) $value['fields'] = dunserialize($value['fields']);
    457. 

  457. 			$return['style'][$value['styleid']] = $value;
    458. 

  458. 		}
    459. 

  459. 	}
    460. 

  460. 	return $return ;
    461. 

  461. }
    462. 

  462. 

  463. function block_import($data) {
    464. 

  464. 	global $_G;
    465. 

  465. 	if(!is_array($data['block'])) {
    466. 

  466. 		return ;
    467. 

  467. 	}
    468. 

  468. 	$stylemapping = array();
    469. 

  469. 	if($data['style']) {
    470. 

  470. 		$hashes = $styles = array();
    471. 

  471. 		foreach($data['style'] as $value) {
    472. 

  472. 			$hashes[] = $value['hash'];
    473. 

  473. 			$styles[$value['hash']] = $value['styleid'];
    474. 

  474. 		}
    475. 

  475. 		if(!empty($hashes)) {
    476. 

  476. 			foreach(C::t('common_block_style')->fetch_all_by_hash($hashes) as $value) {
    477. 

  477. 				$id = $styles[$value['hash']];
    478. 

  478. 				$stylemapping[$id] = intval($value['styleid']);
    479. 

  479. 				unset($styles[$value['hash']]);
    480. 

  480. 			}
    481. 

  481. 		}
    482. 

  482. 		foreach($styles as $id) {
    483. 

  483. 			$style = $data['style'][$id];
    484. 

  484. 			$style['styleid'] = '';
    485. 

  485. 			if(is_array($style['template'])) {
    486. 

  486. 				$style['template'] = serialize($style['template']);
    487. 

  487. 			}
    488. 

  488. 			if(is_array($style['fields'])) {
    489. 

  489. 				$style['fields'] = serialize($style['fields']);
    490. 

  490. 			}
    491. 

  491. 			$newid = C::t('common_block_style')->insert($style, true);
    492. 

  492. 			$stylemapping[$id] = $newid;
    493. 

  493. 		}
    494. 

  494. 	}
    495. 

  495. 

  496. 	$blockmapping = array();
    497. 

  497. 	foreach($data['block'] as $block) {
    498. 

  498. 		$oid = $block['bid'];
    499. 

  499. 		if(!empty($block['styleid'])) {
    500. 

  500. 			$block['styleid'] = intval($stylemapping[$block['styleid']]);
    501. 

  501. 		}
    502. 

  502. 		$block['bid'] = '';
    503. 

  503. 		$block['uid'] = $_G['uid'];
    504. 

  504. 		$block['username'] = $_G['username'];
    505. 

  505. 		$block['dateline'] = 0;
    506. 

  506. 		$block['notinherited'] = 0;
    507. 

  507. 		if(is_array($block['param'])) {
    508. 

  508. 			$block['param'] = serialize($block['param']);
    509. 

  509. 		}
    510. 

  510. 		if(is_array($block['blockstyle'])) {
    511. 

  511. 			$block['blockstyle'] = serialize($block['blockstyle']);
    512. 

  512. 		}
    513. 

  513. 		$newid = C::t('common_block')->insert($block, true);
    514. 

  514. 		$blockmapping[$oid] = $newid;
    515. 

  515. 	}
    516. 

  516. 	include_once libfile('function/cache');
    517. 

  517. 	updatecache('blockclass');
    518. 

  518. 	return $blockmapping;
    519. 

  519. }
    520. 

  520. 

  521. function getobjbyname($name, $data) {
    522. 

  522. 	if (!$name || !$data) return false;
    523. 

  523. 

  524. 	foreach ((array)$data as $id => $content) {
    525. 

  525. 		list($type, $curname) = explode('`', $id);
    526. 

  526. 		if ($curname == $name) {
    527. 

  527. 			return array('type'=>$type,'content'=>$content);
    528. 

  528. 		} elseif ($type == 'frame' || $type == 'tab' || $type == 'column') {
    529. 

  529. 			$r = getobjbyname($name, $content);
    530. 

  530. 			if ($r) return $r;
    531. 

  531. 		}
    532. 

  532. 	}
    533. 

  533. 	return false;
    534. 

  534. }
    535. 

  535. 

  536. function getframeblock($data) {
    537. 

  537. 	global $_G;
    538. 

  538. 

  539. 	if (!isset($_G['curtplbid'])) $_G['curtplbid'] = array();
    540. 

  540. 	if (!isset($_G['curtplframe'])) $_G['curtplframe'] = array();
    541. 

  541. 

  542. 	foreach ((array)$data as $id => $content) {
    543. 

  543. 		list($flag, $name) = explode('`', $id);
    544. 

  544. 		if ($flag == 'frame' || $flag == 'tab') {
    545. 

  545. 			foreach ((array)$content as $colid => $coldata) {
    546. 

  546. 				list($colflag, $colname) = explode('`', $colid);
    547. 

  547. 				if ($colflag == 'column') {
    548. 

  548. 					getframeblock($coldata,$framename);
    549. 

  549. 				}
    550. 

  550. 			}
    551. 

  551. 			$_G['curtplframe'][$name] = array('type'=>$flag,'name'=>$name);
    552. 

  552. 		} elseif ($flag == 'block') {
    553. 

  553. 			$battr = $content['attr'];
    554. 

  554. 			$bid = intval(str_replace('portal_block_', '', $battr['name']));
    555. 

  555. 			if (!empty($bid)) {
    556. 

  556. 				$_G['curtplbid'][$bid] = $bid;
    557. 

  557. 			}
    558. 

  558. 		}
    559. 

  559. 	}
    560. 

  560. }
    561. 

  561. 

  562. function getcssdata($css) {
    563. 

  563. 	global $_G;
    564. 

  564. 	if (empty($css)) return '';
    565. 

  565. 	$reglist = array();
    566. 

  566. 	foreach ((array)$_G['curtplframe'] as $value) {
    567. 

  567. 		$reglist[] = '#'.$value['name'].'.*?\{.*?\}';
    568. 

  568. 	}
    569. 

  569. 	foreach ((array)$_G['curtplbid'] as $value) {
    570. 

  570. 		$reglist[] = '#portal_block_'.$value.'.*?\{.*?\}';
    571. 

  571. 	}
    572. 

  572. 	$reg = implode('|',$reglist);
    573. 

  573. 	preg_match_all('/'.$reg.'/',$css,$csslist);
    574. 

  574. 	return implode('', $csslist[0]);
    575. 

  575. }
    576. 

  576. 

  577. function import_diy($file) {
    578. 

  578. 	global $_G;
    579. 

  579. 

  580. 	$css = '';
    581. 

  581. 	$html = array();
    582. 

  582. 	$arr = array();
    583. 

  583. 

  584. 	$content = file_get_contents($file);
    585. 

  585. 	require_once libfile('class/xml');
    586. 

  586. 	if (empty($content)) return $arr;
    587. 

  587. 	$content = preg_replace("/\<\!\-\-\[name\](.+?)\[\/name\]\-\-\>\s+/i", '', $content);
    588. 

  588. 	$diycontent = xml2array($content);
    589. 

  589. 

  590. 	if ($diycontent) {
    591. 

  591. 

  592. 		foreach ($diycontent['layoutdata'] as $key => $value) {
    593. 

  593. 			if (!empty($value)) getframeblock($value);
    594. 

  594. 		}
    595. 

  595. 		$newframe = array();
    596. 

  596. 		foreach ($_G['curtplframe'] as $value) {
    597. 

  597. 			$newframe[] = $value['type'].random(6);
    598. 

  598. 		}
    599. 

  599. 

  600. 		$mapping = array();
    601. 

  601. 		if (!empty($diycontent['blockdata'])) {
    602. 

  602. 			$mapping = block_import($diycontent['blockdata']);
    603. 

  603. 			unset($diycontent['blockdata']);
    604. 

  604. 		}
    605. 

  605. 

  606. 		$oldbids = $newbids = array();
    607. 

  607. 		if (!empty($mapping)) {
    608. 

  608. 			foreach($mapping as $obid=>$nbid) {
    609. 

  609. 				$oldbids[] = '#portal_block_'.$obid.' ';
    610. 

  610. 				$newbids[] = '#portal_block_'.$nbid.' ';
    611. 

  611. 				$oldbids[] = '[portal_block_'.$obid.']';
    612. 

  612. 				$newbids[] = '[portal_block_'.$nbid.']';
    613. 

  613. 				$oldbids[] = '~portal_block_'.$obid.'"';
    614. 

  614. 				$newbids[] = '~portal_block_'.$nbid.'"';
    615. 

  615. 			}
    616. 

  616. 		}
    617. 

  617. 

  618. 		require_once libfile('class/xml');
    619. 

  619. 		$xml = array2xml($diycontent['layoutdata'],true);
    620. 

  620. 		$xml = str_replace($oldbids, $newbids, $xml);
    621. 

  621. 		$xml = str_replace((array)array_keys($_G['curtplframe']), $newframe, $xml);
    622. 

  622. 		$diycontent['layoutdata'] = xml2array($xml);
    623. 

  623. 

  624. 		$css = str_replace($oldbids, $newbids, $diycontent['spacecss']);
    625. 

  625. 		$css = str_replace((array)array_keys($_G['curtplframe']), $newframe, $css);
    626. 

  626. 		foreach ($diycontent['layoutdata'] as $key => $value) {
    627. 

  627. 			$html[$key] = getframehtml($value);
    628. 

  628. 		}
    629. 

  629. 	}
    630. 

  630. 	if (!empty($html)) {
    631. 

  631. 		$xml = array2xml($html, true);
    632. 

  632. 		require_once libfile('function/block');
    633. 

  633. 		block_get_batch(implode(',', $mapping));
    634. 

  634. 		foreach ($mapping as $bid) {
    635. 

  635. 			$blocktag[] = '<!--{block/'.$bid.'}-->';
    636. 

  636. 			$blockcontent[] = block_fetch_content($bid);
    637. 

  637. 		}
    638. 

  638. 		$xml = str_replace($blocktag,$blockcontent,$xml);
    639. 

  639. 		$html = xml2array($xml);
    640. 

  640. 		$arr = array('html'=>$html,'css'=>$css,'mapping'=>$mapping);
    641. 

  641. 	}
    642. 

  642. 	return $arr;
    643. 

  643. }
    644. 

  644. 

  645. function checkprimaltpl($template) {
    646. 

  646. 	global $_G;
    647. 

  647. 	$tpldirectory = '';
    648. 

  648. 	if(strpos($template, ':') !== false) {
    649. 

  649. 		list($tpldirectory, $template) = explode(':', $template);
    650. 

  650. 	}
    651. 

  651. 	if(!$template || preg_match("/(\.)(exe|jsp|asp|aspx|cgi|fcgi|pl)(\.|$)/i", $template)) {
    652. 

  652. 		return 'diy_template_filename_invalid';
    653. 

  653. 	}
    654. 

  654. 	if(strpos($tpldirectory, '..') !== false || strpos($tpldirectory, "\0") !== false) {
    655. 

  655. 		return 'diy_tpldirectory_invalid';
    656. 

  656. 	}
    657. 

  657. 	$primaltplname = (!$tpldirectory ? DISCUZ_ROOT.$_G['cache']['style_default']['tpldir'] : $tpldirectory).'/'.$template.'.htm';
    658. 

  658. 	if (!file_exists($primaltplname)) {
    659. 

  659. 		$primaltplname = DISCUZ_ROOT.'./template/default/'.$template.'.htm';
    660. 

  660. 	}
    661. 

  661. 	$pathinfos = pathinfo($primaltplname);
    662. 

  662. 	if(strtolower($pathinfos['extension']) != 'htm') {
    663. 

  663. 		return 'diy_template_extension_invalid';
    664. 

  664. 	}
    665. 

  665. 	if (!is_file($primaltplname)) {
    666. 

  666. 		return 'diy_template_noexist';
    667. 

  667. 	}
    668. 

  668. 	return true;
    669. 

  669. }
    670. 

  670. 

  671. function article_tagnames() {
    672. 

  672. 	global $_G;
    673. 

  673. 	if(!isset($_G['article_tagnames'])) {
    674. 

  674. 		$_G['article_tagnames'] = array();
    675. 

  675. 		for($i=1; $i<=8; $i++) {
    676. 

  676. 			if(isset($_G['setting']['article_tags']) && isset($_G['setting']['article_tags'][$i])) {
    677. 

  677. 				$_G['article_tagnames'][$i] = $_G['setting']['article_tags'][$i];
    678. 

  678. 			} else {
    679. 

  679. 				$_G['article_tagnames'][$i] = lang('portalcp', 'article_tag').$i;
    680. 

  680. 			}
    681. 

  681. 		}
    682. 

  682. 	}
    683. 

  683. 	return $_G['article_tagnames'];
    684. 

  684. }
    685. 

  685. 

  686. function article_parse_tags($tag) {
    687. 

  687. 	$tag = intval($tag);
    688. 

  688. 	$article_tags = array();
    689. 

  689. 	for($i=1; $i<=8; $i++) {
    690. 

  690. 		$k = pow(2, $i-1);
    691. 

  691. 		$article_tags[$i] = ($tag & $k) ? 1 : 0;
    692. 

  692. 	}
    693. 

  693. 	return $article_tags;
    694. 

  694. }
    695. 

  695. 

  696. function article_make_tag($tags) {
    697. 

  697. 	$tags = (array)$tags;
    698. 

  698. 	$tag = 0;
    699. 

  699. 	for($i=1; $i<=8; $i++) {
    700. 

  700. 		if(!empty($tags[$i])) {
    701. 

  701. 			$tag += pow(2, $i-1);
    702. 

  702. 		}
    703. 

  703. 	}
    704. 

  704. 	return $tag;
    705. 

  705. }
    706. 

  706. 

  707. function category_showselect($type, $name='catid', $shownull=true, $current='') {
    708. 

  708. 	global $_G;
    709. 

  709. 	if(! in_array($type, array('portal', 'blog', 'album'))) {
    710. 

  710. 		return '';
    711. 

  711. 	}
    712. 

  712. 	loadcache($type.'category');
    713. 

  713. 	$category = $_G['cache'][$type.'category'];
    714. 

  714. 

  715. 	$select = "<select id=\"$name\" name=\"$name\" class=\"ps vm\">";
    716. 

  716. 	if($shownull) {
    717. 

  717. 		$select .= '<option value="">'.lang('portalcp', 'select_category').'</option>';
    718. 

  718. 	}
    719. 

  719. 	foreach ($category as $value) {
    720. 

  720. 		if($value['level'] == 0) {
    721. 

  721. 			$selected = ($current && $current==$value['catid']) ? 'selected="selected"' : '';
    722. 

  722. 			$select .= "<option value=\"$value[catid]\"$selected>$value[catname]</option>";
    723. 

  723. 			if(!$value['children']) {
    724. 

  724. 				continue;
    725. 

  725. 			}
    726. 

  726. 			foreach ($value['children'] as $catid) {
    727. 

  727. 				$selected = ($current && $current==$catid) ? 'selected="selected"' : '';
    728. 

  728. 				$select .= "<option value=\"{$category[$catid][catid]}\"$selected>-- {$category[$catid][catname]}</option>";
    729. 

  729. 				if($category[$catid]['children']) {
    730. 

  730. 					foreach ($category[$catid]['children'] as $catid2) {
    731. 

  731. 						$selected = ($current && $current==$catid2) ? 'selected="selected"' : '';
    732. 

  732. 						$select .= "<option value=\"{$category[$catid2][catid]}\"$selected>---- {$category[$catid2][catname]}</option>";
    733. 

  733. 					}
    734. 

  734. 				}
    735. 

  735. 			}
    736. 

  736. 		}
    737. 

  737. 	}
    738. 

  738. 	$select .= "</select>";
    739. 

  739. 	return $select;
    740. 

  740. }
    741. 

  741. 

  742. function category_get_childids($type, $catid, $depth=3) {
    743. 

  743. 	global $_G;
    744. 

  744. 	if(! in_array($type, array('portal', 'blog', 'album'))) {
    745. 

  745. 		return array();
    746. 

  746. 	}
    747. 

  747. 	loadcache($type.'category');
    748. 

  748. 	$category = $_G['cache'][$type.'category'];
    749. 

  749. 	$catids = array();
    750. 

  750. 	if(isset($category[$catid]) && !empty($category[$catid]['children']) && $depth) {
    751. 

  751. 		$catids = $category[$catid]['children'];
    752. 

  752. 		foreach($category[$catid]['children'] as $id) {
    753. 

  753. 			$catids = array_merge($catids, category_get_childids($type, $id, $depth-1));
    754. 

  754. 		}
    755. 

  755. 	}
    756. 

  756. 	return $catids;
    757. 

  757. }
    758. 

  758. 

  759. function category_get_num($type, $catid) {
    760. 

  760. 	global $_G;
    761. 

  761. 	if(! in_array($type, array('portal', 'blog', 'album'))) {
    762. 

  762. 		return array();
    763. 

  763. 	}
    764. 

  764. 	loadcache($type.'category');
    765. 

  765. 	$category = $_G['cache'][$type.'category'];
    766. 

  766. 

  767. 	$numkey = $type == 'portal' ? 'articles' : 'num';
    768. 

  768. 	if(! isset($_G[$type.'category_nums'])) {
    769. 

  769. 		$_G[$type.'category_nums'] = array();
    770. 

  770. 		$tables = array('portal'=>'portal_category', 'blog'=>'home_blog_category', 'album'=>'home_album_category');
    771. 

  771. 		$query = C::t($tables[$type])->fetch_all_numkey($numkey);
    772. 

  772. 		foreach ($query as $value) {
    773. 

  773. 			$_G[$type.'category_nums'][$value['catid']] = intval($value[$numkey]);
    774. 

  774. 		}
    775. 

  775. 	}
    776. 

  776. 

  777. 	$nums = $_G[$type.'category_nums'];
    778. 

  778. 	$num = intval($nums[$catid]);
    779. 

  779. 	if($category[$catid]['children']) {
    780. 

  780. 		foreach($category[$catid]['children'] as $id) {
    781. 

  781. 			$num += category_get_num($type, $id);
    782. 

  782. 		}
    783. 

  783. 	}
    784. 

  784. 	return $num;
    785. 

  785. }
    786. 

  786. 

  787. 

  788. function updatetopic($topic = ''){
    789. 

  789. 	global $_G;
    790. 

  790. 

  791. 	$topicid = empty($topic) ? '' : $topic['topicid'];
    792. 

  792. 	include_once libfile('function/home');
    793. 

  793. 	$_POST['title'] = getstr(trim($_POST['title']), 255);
    794. 

  794. 	$_POST['name'] = getstr(trim($_POST['name']), 255);
    795. 

  795. 	$_POST['domain'] = getstr(trim($_POST['domain']), 255);
    796. 

  796. 	if(empty($_POST['title'])) {
    797. 

  797. 		return 'topic_title_cannot_be_empty';
    798. 

  798. 	}
    799. 

  799. 	if(empty($_POST['name'])) {
    800. 

  800. 		$_POST['name'] = $_POST['title'];
    801. 

  801. 	}
    802. 

  802. 	if(!$topicid || $_POST['name'] != $topic['name']) {
    803. 

  803. 		if(($value = C::t('portal_topic')->fetch_by_name($_POST['name']))) {
    804. 

  804. 			return 'topic_name_duplicated';
    805. 

  805. 		}
    806. 

  806. 	}
    807. 

  807. 	if($topicid && !empty($topic['domain'])) {
    808. 

  808. 		require_once libfile('function/delete');
    809. 

  809. 		deletedomain($topicid, 'topic');
    810. 

  810. 	}
    811. 

  811. 	if(!empty($_POST['domain'])) {
    812. 

  812. 		require_once libfile('function/domain');
    813. 

  813. 		domaincheck($_POST['domain'], $_G['setting']['domain']['root']['topic'], 1);
    814. 

  814. 	}
    815. 

  815. 

  816. 	$setarr = array(
    817. 

  817. 		'title' => $_POST['title'],
    818. 

  818. 		'name' => $_POST['name'],
    819. 

  819. 		'domain' => $_POST['domain'],
    820. 

  820. 		'summary' => getstr($_POST['summary']),
    821. 

  821. 		'keyword' => getstr($_POST['keyword']),
    822. 

  822. 		'useheader' => $_POST['useheader'] ? '1' : '0',
    823. 

  823. 		'usefooter' => $_POST['usefooter'] ? '1' : '0',
    824. 

  824. 		'allowcomment' => $_POST['allowcomment'] ? 1 : 0,
    825. 

  825. 		'closed' => $_POST['closed'] ? 0 : 1,
    826. 

  826. 	);
    827. 

  827. 

  828. 	if($_POST['deletecover'] && $topic['cover']) {
    829. 

  829. 		if($topic['picflag'] != '0') pic_delete(str_replace('portal/', '', $topic['cover']), 'portal', 0, $topic['picflag'] == '2' ? '1' : '0');
    830. 

  830. 		$setarr['cover'] = '';
    831. 

  831. 	} else {
    832. 

  832. 		if($_FILES['cover']['tmp_name']) {
    833. 

  833. 			if($topic['cover'] && $topic['picflag'] != '0') pic_delete(str_replace('portal/', '', $topic['cover']), 'portal', 0, $topic['picflag'] == '2' ? '1' : '0');
    834. 

  834. 			$pic = pic_upload($_FILES['cover'], 'portal');
    835. 

  835. 			if($pic) {
    836. 

  836. 				$setarr['cover'] = 'portal/'.$pic['pic'];
    837. 

  837. 				$setarr['picflag'] = $pic['remote'] ? '2' : '1';
    838. 

  838. 			}
    839. 

  839. 		} else {
    840. 

  840. 			if(!empty($_POST['cover']) && $_POST['cover'] != $topic['cover']) {
    841. 

  841. 				if($topic['cover'] && $topic['picflag'] != '0') pic_delete(str_replace('portal/', '', $topic['cover']), 'portal', 0, $topic['picflag'] == '2' ? '1' : '0');
    842. 

  842. 				$setarr['cover'] = $_POST['cover'];
    843. 

  843. 				$setarr['picflag'] = '0';
    844. 

  844. 			}
    845. 

  845. 		}
    846. 

  846. 	}
    847. 

  847. 

  848. 

  849. 	$primaltplname = '';
    850. 

  850. 	if(empty($topicid) || empty($topic['primaltplname']) || ($topic['primaltplname'] && $topic['primaltplname'] != $_POST['primaltplname'])) {
    851. 

  851. 		$primaltplname = $_POST['primaltplname'];
    852. 

  852. 		if(!isset($_POST['signs'][dsign($primaltplname)])) {
    853. 

  853. 			return 'diy_sign_invalid';
    854. 

  854. 		}
    855. 

  855. 		$checktpl = checkprimaltpl($primaltplname);
    856. 

  856. 		if($checktpl !== true) {
    857. 

  857. 			return $checktpl;
    858. 

  858. 		}
    859. 

  859. 		$setarr['primaltplname'] = $primaltplname;
    860. 

  860. 	}
    861. 

  861. 

  862. 	if($topicid) {
    863. 

  863. 		C::t('portal_topic')->update($topicid, $setarr);
    864. 

  864. 		C::t('common_diy_data')->update('portal/portal_topic_content_'.$topicid, getdiydirectory($topic['primaltplname']), array('name'=>$setarr['title']));
    865. 

  865. 	} else {
    866. 

  866. 		$setarr['uid'] = $_G['uid'];
    867. 

  867. 		$setarr['username'] = $_G['username'];
    868. 

  868. 		$setarr['dateline'] = $_G['timestamp'];
    869. 

  869. 		$setarr['closed'] = '1';
    870. 

  870. 		$topicid = addtopic($setarr);
    871. 

  871. 		if(!$topicid) {
    872. 

  872. 			return 'topic_created_failed';
    873. 

  873. 		}
    874. 

  874. 

  875. 	}
    876. 

  876. 

  877. 	if(!empty($_POST['domain'])) {
    878. 

  878. 		C::t('common_domain')->insert(array('domain' => $_POST['domain'], 'domainroot' => $_G['setting']['domain']['root']['topic'], 'id' => $topicid, 'idtype' => 'topic'));
    879. 

  879. 	}
    880. 

  880. 

  881. 	$tpldirectory = '';
    882. 

  882. 	if($primaltplname && $topic['primaltplname'] != $primaltplname) {
    883. 

  883. 		$targettplname = 'portal/portal_topic_content_'.$topicid;
    884. 

  884. 		if(strpos($primaltplname, ':') !== false) {
    885. 

  885. 			list($tpldirectory, $primaltplname) = explode(':', $primaltplname);
    886. 

  886. 		}
    887. 

  887. 		C::t('common_diy_data')->update($targettplname, getdiydirectory($topic['primaltplname']), array('primaltplname'=>$primaltplname, 'tpldirectory'=>$tpldirectory));
    888. 

  888. 		updatediytemplate($targettplname);
    889. 

  889. 	}
    890. 

  890. 

  891. 	if($primaltplname && empty($topic['primaltplname'])) {
    892. 

  892. 		$tpldirectory = ($tpldirectory ? $tpldirectory : $_G['cache']['style_default']['tpldir']);
    893. 

  893. 		$content = file_get_contents(DISCUZ_ROOT.$tpldirectory.'/'.$primaltplname.'.htm');
    894. 

  894. 		$tplfile = DISCUZ_ROOT.'./data/diy/'.$tpldirectory.'/portal/portal_topic_content_'.$topicid.'.htm';
    895. 

  895. 		$tplpath = dirname($tplfile);
    896. 

  896. 		if (!is_dir($tplpath)) {
    897. 

  897. 			dmkdir($tplpath);
    898. 

  898. 		}
    899. 

  899. 		file_put_contents($tplfile, $content);
    900. 

  900. 	}
    901. 

  901. 

  902. 	include_once libfile('function/cache');
    903. 

  903. 	updatecache(array('diytemplatename', 'setting'));
    904. 

  904. 

  905. 	return $topicid;
    906. 

  906. }
    907. 

  907. 

  908. function addtopic($topic) {
    909. 

  909. 	global $_G;
    910. 

  910. 	$topicid = '';
    911. 

  911. 	if($topic && is_array($topic)) {
    912. 

  912. 		$topicid = C::t('portal_topic')->insert($topic, true);
    913. 

  913. 		if(!empty($topicid)) {
    914. 

  914. 			$diydata = array(
    915. 

  915. 				'targettplname' => 'portal/portal_topic_content_'.$topicid,
    916. 

  916. 				'name' => $topic['title'],
    917. 

  917. 				'uid' => $_G['uid'],
    918. 

  918. 				'username' => $_G['username'],
    919. 

  919. 				'dateline' => TIMESTAMP,
    920. 

  920. 			);
    921. 

  921. 			C::t('common_diy_data')->insert($diydata);
    922. 

  922. 		}
    923. 

  923. 	}
    924. 

  924. 	return $topicid;
    925. 

  925. }
    926. 

  926. 

  927. function getblockperm($bid) {
    928. 

  928. 	global $_G;
    929. 

  929. 	$perm = array('allowmanage'=>'0','allowrecommend'=>'0','needverify'=>'1');
    930. 

  930. 	$bid = max(0, intval($bid));
    931. 

  931. 	if(!$bid) return $perm;
    932. 

  932. 	$allperm = array('allowmanage'=>'1','allowrecommend'=>'1','needverify'=>'0');
    933. 

  933. 	if(checkperm('allowdiy')) {
    934. 

  934. 		return $allperm;
    935. 

  935. 	} elseif (!getstatus($_G['member']['allowadmincp'], 4) && !getstatus($_G['member']['allowadmincp'], 5) && !getstatus($_G['member']['allowadmincp'], 6) && !checkperm('allowmanagetopic') && !checkperm('allowaddtopic')) {
    936. 

  936. 		return $perm;
    937. 

  937. 	}
    938. 

  938. 	require_once libfile('class/blockpermission');
    939. 

  939. 	$blockpermsission = & block_permission::instance();
    940. 

  940. 	$perm = $blockpermsission->get_perms_by_bid($bid, $_G['uid']);
    941. 

  941. 	$perm = $perm ? current($perm) : '';
    942. 

  942. 	if(empty($perm)) {
    943. 

  943. 		if(($block = C::t('common_block')->fetch($bid))) {
    944. 

  944. 			$block = array_merge($block, C::t('common_template_block')->fetch_by_bid($bid));
    945. 

  945. 		}
    946. 

  946. 		if(empty($block['targettplname']) && empty($block['blocktype'])) {
    947. 

  947. 			if(($_G['group']['allowmanagetopic'] || ($_G['group']['allowaddtopic'] && $block['uid'] == $_G['uid']))) {
    948. 

  948. 				$perm = $allperm;
    949. 

  949. 			}
    950. 

  950. 		} elseif(substr($block['targettplname'], 0, 28) == 'portal/portal_topic_content_') {
    951. 

  951. 			if(!empty($_G['group']['allowmanagetopic'])) {
    952. 

  952. 				$perm = $allperm;
    953. 

  953. 			} elseif($_G['group']['allowaddtopic']) {
    954. 

  954. 				$id = str_replace('portal/portal_topic_content_', '', $block['targettplname']);
    955. 

  955. 				$topic = C::t('portal_topic')->fetch(intval($id));
    956. 

  956. 				if($topic['uid'] == $_G['uid']) {
    957. 

  957. 					$perm = $allperm;
    958. 

  958. 				}
    959. 

  959. 			}
    960. 

  960. 		}
    961. 

  961. 	}
    962. 

  962. 	return $perm;
    963. 

  963. }
    964. 

  964. 

  965. function check_articleperm($catid, $aid = 0, $article = array(), $isverify = false, $return = false) {
    966. 

  966. 	global $_G;
    967. 

  967. 

  968. 	if(empty($catid)) {
    969. 

  969. 		if(!$return) {
    970. 

  970. 			showmessage('article_category_empty');
    971. 

  971. 		} else {
    972. 

  972. 			return 'article_category_empty';
    973. 

  973. 		}
    974. 

  974. 	}
    975. 

  975. 

  976. 	if($_G['group']['allowmanagearticle'] || (empty($aid) && $_G['group']['allowpostarticle']) || $_GET['modarticlekey'] == modauthkey($aid)) {
    977. 

  977. 		return true;
    978. 

  978. 	}
    979. 

  979. 

  980. 	$permission = getallowcategory($_G['uid']);
    981. 

  981. 	if(isset($permission[$catid])) {
    982. 

  982. 		if($permission[$catid]['allowmanage'] || (empty($aid) && $permission[$catid]['allowpublish'])) {
    983. 

  983. 			return true;
    984. 

  984. 		}
    985. 

  985. 	}
    986. 

  986. 	if(!$isverify && $aid && !empty($article['uid']) && $article['uid'] == $_G['uid'] && ($article['status'] == 1 && $_G['group']['allowpostarticlemod'] || empty($_G['group']['allowpostarticlemod']))) {
    987. 

  987. 		return true;
    988. 

  988. 	}
    989. 

  989. 

  990. 	if(!$return) {
    991. 

  991. 		showmessage('article_edit_nopermission');
    992. 

  992. 	} else {
    993. 

  993. 		return 'article_edit_nopermission';
    994. 

  994. 	}
    995. 

  995. }
    996. 

  996. 

  997. function addportalarticlecomment($id, $message, $idtype = 'aid') {
    998. 

  998. 	global $_G;
    999. 

  999. 

  1000. 	$id = intval($id);
    1001. 

  1001. 	if(empty($id)) {
    1002. 

  1002. 		return 'comment_comment_noexist';
    1003. 

  1003. 	}
    1004. 

  1004. 	$message = getstr($message, $_G['group']['allowcommentarticle'], 0, 0, 1, 0);
    1005. 

  1005. 	if(strlen($message) < 2) return 'content_is_too_short';
    1006. 

  1006. 

  1007. 	$idtype = in_array($idtype, array('aid' ,'topicid')) ? $idtype : 'aid';
    1008. 

  1008. 	$tablename = $idtype == 'aid' ? 'portal_article_title' : 'portal_topic';
    1009. 

  1009. 	$data = C::t($tablename)->fetch($id);
    1010. 

  1010. 	if(empty($data)) {
    1011. 

  1011. 		return 'comment_comment_noexist';
    1012. 

  1012. 	}
    1013. 

  1013. 	if($data['allowcomment'] != 1) {
    1014. 

  1014. 		return 'comment_comment_notallowed';
    1015. 

  1015. 	}
    1016. 

  1016. 

  1017. 	$message = censor($message);
    1018. 

  1018. 	if(censormod($message)) {
    1019. 

  1019. 		$comment_status = 1;
    1020. 

  1020. 	} else {
    1021. 

  1021. 		$comment_status = 0;
    1022. 

  1022. 	}
    1023. 

  1023. 

  1024. 	$setarr = array(
    1025. 

  1025. 		'uid' => $_G['uid'],
    1026. 

  1026. 		'username' => $_G['username'],
    1027. 

  1027. 		'id' => $id,
    1028. 

  1028. 		'idtype' => $idtype,
    1029. 

  1029. 		'postip' => $_G['clientip'],
    1030. 

  1030. 		'dateline' => $_G['timestamp'],
    1031. 

  1031. 		'status' => $comment_status,
    1032. 

  1032. 		'message' => $message
    1033. 

  1033. 	);
    1034. 

  1034. 

  1035. 	$pcid = C::t('portal_comment')->insert($setarr, true);
    1036. 

  1036. 

  1037. 	if($comment_status == 1) {
    1038. 

  1038. 		updatemoderate($idtype.'_cid', $pcid);
    1039. 

  1039. 		$notifykey = $idtype == 'aid' ? 'verifyacommont' : 'verifytopiccommont';
    1040. 

  1040. 		manage_addnotify($notifykey);
    1041. 

  1041. 	}
    1042. 

  1042. 	$tablename = $idtype == 'aid' ? 'portal_article_count' : 'portal_topic';
    1043. 

  1043. 	C::t($tablename)->increase($id, array('commentnum' => 1));
    1044. 

  1044. 	C::t('common_member_status')->update($_G['uid'], array('lastpost' => $_G['timestamp']), 'UNBUFFERED');
    1045. 

  1045. 

  1046. 	if($data['uid'] != $_G['uid']) {
    1047. 

  1047. 		updatecreditbyaction('portalcomment', 0, array(), $idtype.$id);
    1048. 

  1048. 	}
    1049. 

  1049. 	return 'do_success';
    1050. 

  1050. }
    1051. 

  1051. 

  1052. function trimdxtpllang($s){
    1053. 

  1053. 	return str_replace(array('{', '$', '<', '>'), array('{ ', '$ ', '', ''), $s);
    1054. 

  1054. }
    1055. 

  1055. 

  1056. function addrelatedarticle($aid, $raids) {
    1057. 

  1057. 	C::t('portal_article_related')->delete_by_aid_raid($aid, $aid);
    1058. 

  1058. 	if($raids) {
    1059. 

  1059. 		$relatedarr = array();
    1060. 

  1060. 		$relatedarr = array_map('intval', $raids);
    1061. 

  1061. 		$relatedarr = array_unique($relatedarr);
    1062. 

  1062. 		$relatedarr = array_filter($relatedarr);
    1063. 

  1063. 		if($relatedarr) {
    1064. 

  1064. 			$list = C::t('portal_article_title')->fetch_all($relatedarr);
    1065. 

  1065. 			C::t('portal_article_related')->insert_batch($aid, $list);
    1066. 

  1066. 		}
    1067. 

  1067. 	}
    1068. 

  1068. 	return true;
    1069. 

  1069. }
    1070. 

  1070. 

  1071. 

  1072. function getprimaltplname($filename) {
    1073. 

  1073. 	global $_G, $lang;
    1074. 

  1074. 	$tpldirectory = '';
    1075. 

  1075. 	if(strpos($filename, ':') !== false) {
    1076. 

  1076. 		list($tpldirectory, $filename) = explode(':', $filename);
    1077. 

  1077. 	}
    1078. 

  1078. 	if(empty($tpldirectory)) {
    1079. 

  1079. 		$tpldirectory = ($_G['cache']['style_default']['tpldir'] ? $_G['cache']['style_default']['tpldir'] : './template/default');
    1080. 

  1080. 	}
    1081. 

  1081. 	$content = @file_get_contents(DISCUZ_ROOT.$tpldirectory.'/'.$filename);
    1082. 

  1082. 	$name = $tpldirectory.'/'.$filename;
    1083. 

  1083. 	if($content) {
    1084. 

  1084. 		preg_match("/\<\!\-\-\[name\](.+?)\[\/name\]\-\-\>/i", trim($content), $mathes);
    1085. 

  1085. 		if(!empty($mathes[1])) {
    1086. 

  1086. 			preg_match("/^\{lang (.+?)\}$/", $mathes[1], $langs);
    1087. 

  1087. 			if(!empty($langs[1])) {
    1088. 

  1088. 				$name = !$lang[$langs[1]] ? $langs[1] : $lang[$langs[1]];
    1089. 

  1089. 			} else {
    1090. 

  1090. 				$name = dhtmlspecialchars($mathes[1]);
    1091. 

  1091. 			}
    1092. 

  1092. 		}
    1093. 

  1093. 	}
    1094. 

  1094. 	return $name;
    1095. 

  1095. }
    1096. 

  1096. 

  1097. function getdiydirectory($value) {
    1098. 

  1098. 	$directory = '';
    1099. 

  1099. 	if($value && strpos($value, ':') !== false) {
    1100. 

  1100. 		list($directory) = explode(':', $value);
    1101. 

  1101. 	}
    1102. 

  1102. 	return $directory;
    1103. 

  1103. }
    1104. 

  1104. ?>
    1105.