Your IP : 216.73.216.130
<?php
# ***** BEGIN LICENSE BLOCK *****
# This file is part of DotClear.
# Copyright (c) 2005 Olivier Meunier and contributors. All rights
# reserved.
#
# DotClear is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License as published by
# the Free Software Foundation; either version 2 of the License, or
# (at your option) any later version.
#
# DotClear is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with DotClear; if not, write to the Free Software
# Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
#
# ***** END LICENSE BLOCK *****
require dirname(__FILE__).'/../inc/admin/prepend.php';
dcPage::check('usage,contentadmin');
$post_id = '';
$cat_id = '';
$post_dt = '';
$post_format = $core->auth->getOption('post_format');
$post_password = '';
$post_url = '';
$post_lang = $core->auth->getInfo('user_lang');
$post_title = '';
$post_excerpt = '';
$post_excerpt_xhtml = '';
$post_content = '';
$post_content_xhtml = '';
$post_notes = '';
$post_status = $core->auth->getInfo('user_post_status');
$post_selected = false;
$post_open_comment = $core->blog->settings->allow_comments;
$post_open_tb = $core->blog->settings->allow_trackbacks;
$post_media = array();
$page_title = __('New entry');
$can_view_page = true;
$can_edit_post = $core->auth->check('usage,contentadmin',$core->blog->id);
$can_publish = $core->auth->check('publish,contentadmin',$core->blog->id);
$can_delete = false;
$preview = false;
$post_headlink = '<link rel="%s" title="%s" href="post.php?id=%s" />';
$post_link = '<a href="post.php?id=%s" title="%s">%s</a>';
$next_link = $prev_link = $next_headlink = $prev_headlink = null;
# If user can't publish
if (!$can_publish) {
$post_status = -2;
}
# Getting categories
$categories_combo = array(' ' => '');
try {
$categories = $core->blog->getCategories();
while ($categories->fetch()) {
$categories_combo[html::escapeHTML($categories->cat_title)] = $categories->cat_id;
}
} catch (Exception $e) { }
# Status combo
foreach ($core->blog->getAllPostStatus() as $k => $v) {
$status_combo[$v] = (string) $k;
}
# Formaters combo
foreach ($core->getFormaters() as $v) {
$formaters_combo[$v] = $v;
}
# Get entry informations
if (!empty($_REQUEST['id']))
{
$params['post_id'] = $_REQUEST['id'];
$post = $core->blog->getPosts($params);
if ($post->isEmpty())
{
$core->error->add(__('This entry does not exist.'));
$can_view_page = false;
}
else
{
$post_id = $post->post_id;
$cat_id = $post->cat_id;
$post_dt = date('Y-m-d H:i',strtotime($post->post_dt));
$post_format = $post->post_format;
$post_password = $post->post_password;
$post_url = $post->post_url;
$post_lang = $post->post_lang;
$post_title = $post->post_title;
$post_excerpt = $post->post_excerpt;
$post_excerpt_xhtml = $post->post_excerpt_xhtml;
$post_content = $post->post_content;
$post_content_xhtml = $post->post_content_xhtml;
$post_notes = $post->post_notes;
$post_status = $post->post_status;
$post_selected = (boolean) $post->post_selected;
$post_open_comment = (boolean) $post->post_open_comment;
$post_open_tb = (boolean) $post->post_open_tb;
$page_title = __('Edit entry');
$can_edit_post = $post->isEditable();
$can_delete= $post->isDeletable();
$next_rs = $core->blog->getNextPost($post_id,strtotime($post->post_dt),1);
$prev_rs = $core->blog->getNextPost($post_id,strtotime($post->post_dt),-1);
if ($next_rs !== null) {
$next_link = sprintf($post_link,$next_rs->post_id,
html::escapeHTML($next_rs->post_title),__('next entry').' »');
$next_headlink = sprintf($post_headlink,'next',
html::escapeHTML($next_rs->post_title),$next_rs->post_id);
}
if ($prev_rs !== null) {
$prev_link = sprintf($post_link,$prev_rs->post_id,
html::escapeHTML($prev_rs->post_title),'« '.__('previous entry'));
$prev_headlink = sprintf($post_headlink,'previous',
html::escapeHTML($prev_rs->post_title),$prev_rs->post_id);
}
try {
$core->media = new dcMedia($core);
$post_media = $core->media->getPostMedia($post_id);
} catch (Exception $e) {}
}
}
# Format excerpt and content
if (!empty($_POST) && $can_edit_post)
{
$post_format = $_POST['post_format'];
$post_excerpt = $_POST['post_excerpt'];
$post_content = $_POST['post_content'];
$post_title = $_POST['post_title'];
$cat_id = (integer) $_POST['cat_id'];
if (isset($_POST['post_status'])) {
$post_status = (integer) $_POST['post_status'];
}
if (empty($_POST['post_dt'])) {
$post_dt = '';
} else {
$post_dt = strtotime($_POST['post_dt']);
$post_dt = date('Y-m-d H:i',$post_dt);
}
$post_open_comment = !empty($_POST['post_open_comment']);
$post_open_tb = !empty($_POST['post_open_tb']);
$post_selected = !empty($_POST['post_selected']);
$post_lang = $_POST['post_lang'];
$post_password = !empty($_POST['post_password']) ? $_POST['post_password'] : null;
$post_notes = $_POST['post_notes'];
if (isset($_POST['post_url'])) {
$post_url = $_POST['post_url'];
}
$core->blog->setPostContent(
$post_id,$post_format,$post_lang,
$post_excerpt,$post_excerpt_xhtml,$post_content,$post_content_xhtml
);
$preview = !empty($_POST['preview']);
}
# Create or update post
if (!empty($_POST) && !empty($_POST['save']) && $can_edit_post)
{
$cur = $core->con->openCursor($core->prefix.'post');
$cur->post_title = $post_title;
$cur->cat_id = ($cat_id ? $cat_id : null);
$cur->post_dt = $post_dt ? date('Y-m-d H:i:00',strtotime($post_dt)) : '';
$cur->post_format = $post_format;
$cur->post_password = $post_password;
$cur->post_lang = $post_lang;
$cur->post_title = $post_title;
$cur->post_excerpt = $post_excerpt;
$cur->post_excerpt_xhtml = $post_excerpt_xhtml;
$cur->post_content = $post_content;
$cur->post_content_xhtml = $post_content_xhtml;
$cur->post_notes = $post_notes;
$cur->post_status = $post_status;
$cur->post_selected = (integer) $post_selected;
$cur->post_open_comment = (integer) $post_open_comment;
$cur->post_open_tb = (integer) $post_open_tb;
if (isset($_POST['post_url'])) {
$cur->post_url = $post_url;
}
# Update post
if ($post_id)
{
try
{
# --BEHAVIOR-- adminBeforePostUpdate
$core->callBehavior('adminBeforePostUpdate',$cur,$post_id);
$core->blog->updPost($post_id,$cur);
# --BEHAVIOR-- adminAfterPostUpdate
$core->callBehavior('adminAfterPostUpdate',$cur,$post_id);
http::redirect('post.php?id='.$post_id.'&upd=1');
}
catch (Exception $e)
{
$core->error->add($e->getMessage());
}
}
else
{
$cur->user_id = $core->auth->userID();
try
{
# --BEHAVIOR-- adminBeforePostCreate
$core->callBehavior('adminBeforePostCreate',$cur);
$return_id = $core->blog->addPost($cur);
# --BEHAVIOR-- adminAfterPostCreate
$core->callBehavior('adminAfterPostCreate',$cur,$return_id);
http::redirect('post.php?id='.$return_id.'&crea=1');
}
catch (Exception $e)
{
$core->error->add($e->getMessage());
}
}
}
if (!empty($_POST['delete']) && $can_delete)
{
try {
$core->blog->delPost($post_id);
http::redirect('posts.php');
} catch (Exception $e) {
$core->error->add($e->getMessage());
}
}
/* DISPLAY
-------------------------------------------------------- */
$default_tab = 'edit-entry';
if (!$can_edit_post || !empty($_POST['preview'])) {
$default_tab = 'preview-entry';
}
if (!empty($_GET['co'])) {
$default_tab = 'comments';
}
dcPage::open($page_title,
dcPage::jsDatePicker().
dcPage::jsToolBar().
dcPage::jsLoad('js/_post.js').
dcPage::jsConfirmClose('entry-form','comment-form').
# --BEHAVIOR-- adminPostHeaders
$core->callBehavior('adminPostHeaders').
dcPage::jsPageTabs($default_tab).
$next_headlink."\n".$prev_headlink
);
if (!empty($_GET['upd'])) {
echo '<p class="message">'.__('Entry has been successfully updated.').'</p>';
}
elseif (!empty($_GET['crea'])) {
echo '<p class="message">'.__('Entry has been successfully created.').'</p>';
}
elseif (!empty($_GET['attached'])) {
echo '<p class="message">'.__('File has been successfully attached.').'</p>';
}
elseif (!empty($_GET['rmattach'])) {
echo '<p class="message">'.__('Attachment has been successfully removed.').'</p>';
}
echo '<h2>'.$core->blog->name.' > '.$page_title.'</h2>';
if ($post_id)
{
echo '<p>';
if ($prev_link) {
echo $prev_link.' - ';
}
if ($post->post_status == 1) {
echo '<a href="'.$post->getURL().'">'.__('view entry').'</a>';
} else {
echo __('view entry');
}
if ($next_link) {
echo ' - '.$next_link;
}
echo '</p>';
}
# Exit if we cannot view page
if (!$can_view_page) {
dcPage::close();
exit;
}
if ($post_content_xhtml)
{
echo
'<div id="preview-entry" class="multi-part" title="'.__('Entry preview').'">'.
'<h3>'.html::escapeHTML($post_title).'</h3>'.
($post_excerpt_xhtml ? html::absoluteURLs($post_excerpt_xhtml,$core->blog->url).'<hr />' : '').
html::absoluteURLs($post_content_xhtml,$core->blog->url).
'</div>';
}
/* Post form if we can edit post
-------------------------------------------------------- */
if ($can_edit_post)
{
echo '<div class="multi-part" title="'.__('Edit entry').'" id="edit-entry">';
echo '<form action="post.php" method="post" id="entry-form">';
echo '<div id="entry-sidebar">';
echo
'<p><label>'.__('Category:').dcPage::help('post','p_category').
form::combo('cat_id',$categories_combo,$cat_id,'maximal',3).
'</label></p>'.
'<p><label>'.__('Entry status:').dcPage::help('post','p_status').
form::combo('post_status',$status_combo,$post_status,'',3,!$can_publish).
'</label></p>'.
'<p><label>'.__('Published on:').dcPage::help('post','p_date').
form::field('post_dt',16,16,$post_dt,'',3).
'</label></p>'.
'<p><label>'.__('Text formating:').dcPage::help('post','p_format').
form::combo('post_format',$formaters_combo,$post_format,'',3).
'</label></p>'.
'<p><label class="classic">'.form::checkbox('post_open_comment',1,$post_open_comment,'',3).' '.
__('Accept comments').dcPage::help('post','p_comments').'</label></p>'.
'<p><label class="classic">'.form::checkbox('post_open_tb',1,$post_open_tb,'',3).' '.
__('Accept trackbacks').dcPage::help('post','p_trackbacks').'</label></p>'.
'<p><label class="classic">'.form::checkbox('post_selected',1,$post_selected,'',3).' '.
__('Selected entry').dcPage::help('post','p_selected').'</label></p>'.
'<p><label>'.__('Entry lang:').dcPage::help('post','p_lang').
form::field('post_lang',5,255,html::escapeHTML($post_lang),'',3).
'</label></p>'.
'<p><label>'.__('Entry password:').dcPage::help('post','p_password').
form::field('post_password',10,32,html::escapeHTML($post_password),'maximal',3).
'</label></p>'.
'<div class="lockable">'.
'<p><label>'.__('Basename:').dcPage::help('post','p_basename').
form::field('post_url',10,255,html::escapeHTML($post_url),'maximal',3).
'</label></p>'.
'<p class="form-note warn">'.
__('Warning: If you set the URL manually, it may conflict with another entry.').
'</p>'.
'</div>';
if ($post_id)
{
echo
'<h3 class="clear">'.__('Attachments').'</h3>';
foreach ($post_media as $f)
{
$ftitle = $f->media_title;
if (strlen($ftitle) > 18) {
$ftitle = substr($ftitle,0,16).'...';
}
echo
'<div class="media-item">'.
'<a class="media-icon" href="media_item.php?id='.$f->media_id.'">'.
'<img src="'.$f->media_icon.'" alt="" title="'.$f->basename.'" /></a>'.
'<ul>'.
'<li><a class="media-link" href="media_item.php?id='.$f->media_id.'"'.
'title="'.$f->basename.'">'.$ftitle.'</a></li>'.
'<li>'.$f->media_dtstr.'</li>'.
'<li>'.files::size($f->size).' - '.
'<a href="'.$f->file_url.'">'.__('open').'</a>'.'</li>'.
'<li class="media-action"><a class="attachment-remove" id="attachment-'.$f->media_id.'" '.
'href="post_media.php?post_id='.$post_id.'&media_id='.$f->media_id.'&remove=1">'.
'<img src="images/check-off.png" alt="'.__('remove').'" /></a>'.
'</li>'.
'</ul>'.
'</div>';
}
unset($f);
if (empty($post_media)) {
echo '<p>'.__('No attachment.').'</p>';
}
echo '<p><a href="media.php?post_id='.$post_id.'">'.__('Add files to this entry').'</a>'.
dcPage::help('post','p_attachement').'</p>';
}
# --BEHAVIOR-- adminPostFormSidebar
$core->callBehavior('adminPostFormSidebar',isset($post) ? $post : null);
echo '</div>'; // End #entry-sidebar
echo '<div id="entry-content"><fieldset class="constrained">';
echo
'<p class="col"><label class="required" title="'.__('Required field').'">'.__('Title:').
dcPage::help('post','p_title').
form::field('post_title',20,255,html::escapeHTML($post_title),'maximal',2).
'</label></p>'.
'<p class="area" id="excerpt-area"><label for="post_excerpt">'.__('Excerpt:').
dcPage::help('post','p_excerpt').'</label> '.
form::textarea('post_excerpt',50,5,html::escapeHTML($post_excerpt),'',2).
'</p>'.
'<p class="area"><label class="required" title="'.__('Required field').'" '.
'for="post_content">'.__('Content:').
dcPage::help('post','p_content').'</label> '.
form::textarea('post_content',50,$core->auth->getOption('edit_size'),html::escapeHTML($post_content),'',2).
'</p>'.
'<p class="area" id="notes-area"><label>'.__('Notes:').
dcPage::help('post','p_notes').'</label>'.
form::textarea('post_notes',50,5,html::escapeHTML($post_notes),'',2).
'</p>';
# --BEHAVIOR-- adminPostForm
$core->callBehavior('adminPostForm',isset($post) ? $post : null);
echo
'<p>'.
($post_id ? form::hidden('id',$post_id) : '').
'<input type="submit" value="'.__('save').' (s)" tabindex="4" '.
'accesskey="s" name="save" /> '.
'<input type="submit" value="'.__('preview').' (p)" tabindex="4" '.
'accesskey="p" name="preview" /> '.
($can_delete ? '<input type="submit" value="'.__('delete').'" name="delete" />' : '').
$core->formNonce().
'</p>';
echo '</fieldset></div>'; // End #entry-content
echo '</form>';
echo '</div>';
if ($post_id && $post->post_status == 1) {
echo '<br /><p><a href="trackbacks.php?id='.$post_id.'" class="multi-part">'.
__('Ping blogs').'</a></p>';
}
if ($post_id && !empty($post_media))
{
echo
'<form action="post_media.php" id="attachment-remove-hide" method="post">'.
'<div>'.form::hidden(array('post_id'),$post_id).
form::hidden(array('media_id'),'').
form::hidden(array('remove'),1).
$core->formNonce().'</div></form>';
}
}
/* Comments and trackbacks
-------------------------------------------------------- */
if ($post_id)
{
$params = array('post_id' => $post_id, 'order' => 'comment_dt ASC');
$comments = $core->blog->getComments(array_merge($params,array('comment_trackback'=>0)));
$trackbacks = $core->blog->getComments(array_merge($params,array('comment_trackback'=>1)));
# Actions combo box
$combo_action = array();
if ($can_edit_post && $core->auth->check('publish,contentadmin',$core->blog->id))
{
$combo_action[__('publish')] = 'publish';
$combo_action[__('unpublish')] = 'unpublish';
$combo_action[__('mark as pending')] = 'pending';
$combo_action[__('mark as junk')] = 'junk';
}
if ($can_edit_post && $core->auth->check('delete,contentadmin',$core->blog->id))
{
$combo_action[__('delete')] = 'delete';
}
$has_action = !empty($combo_action) && (!$trackbacks->isEmpty() || !$comments->isEmpty());
echo
'<div id="comments" class="multi-part" title="'.__('Comments').'">';
if ($has_action) {
echo '<form action="comments_actions.php" method="post">';
}
echo '<h3>'.__('Trackbacks').'</h3>';
if (!$trackbacks->isEmpty()) {
showComments($trackbacks,$has_action);
} else {
echo '<p>'.__('No trackback').'</p>';
}
echo '<h3>'.__('Comments').'</h3>';
if (!$comments->isEmpty()) {
showComments($comments,$has_action);
} else {
echo '<p>'.__('No comment').'</p>';
}
if ($has_action) {
echo
'<div class="two-cols">'.
'<p class="col checkboxes-helpers"></p>'.
'<p class="col right">'.__('Selected comments action:').' '.
form::combo('action',$combo_action).
form::hidden('redir','post.php?id='.$post_id.'&co=1').
$core->formNonce().
'<input type="submit" value="'.__('ok').'" /></p>'.
'</div>'.
'</form>';
}
echo '</div>';
}
/* Add a comment
-------------------------------------------------------- */
if ($post_id)
{
echo
'<div class="multi-part" id="add-comment" title="'.__('Add a comment').'">'.
'<h3>'.__('Add a comment').
dcPage::help('post','c_add_comment').'</h3>'.
'<form action="comment.php" method="post" id="comment-form">'.
'<fieldset class="constrained">'.
'<p><label class="required" title="'.__('Required field').'">'.__('Name:').
dcPage::help('comments','c_author').
form::field('comment_author',30,255,html::escapeHTML($core->auth->getInfo('user_cn'))).
'</label></p>'.
'<p><label>'.__('Email:').dcPage::help('comments','c_email').
form::field('comment_email',30,255,html::escapeHTML($core->auth->getInfo('user_email'))).
'</label></p>'.
'<p><label>'.__('Web site:').dcPage::help('comments','c_site').
form::field('comment_site',30,255,html::escapeHTML($core->auth->getInfo('user_url'))).
'</label></p>'.
'<p class="area"><label for="comment_content" class="required" title="'.
__('Required field').'">'.__('Comment:').
dcPage::help('comments','c_comment').'</label> '.
form::textarea('comment_content',50,8,html::escapeHTML('')).
'</p>'.
'<p>'.form::hidden('post_id',$post_id).
$core->formNonce().
'<input type="submit" name="add" value="'.__('save').'" /></p>'.
'</fieldset>'.
'</form>'.
'</div>';
}
# Show comments or trackbacks
function showComments(&$rs,$has_action)
{
echo
'<table class="comments-list"><tr>'.
'<th colspan="2">'.__('Author').'</th>'.
'<th>'.__('Date').'</th>'.
'<th class="nowrap">'.__('IP address').'</th>'.
'<th>'.__('Status').'</th>'.
'<th> </th>'.
'</tr>';
while($rs->fetch())
{
$comment_url = 'comment.php?id='.$rs->comment_id;
$img = '<img alt="%1$s" title="%1$s" src="images/%2$s" />';
switch ($rs->comment_status) {
case 1:
$img_status = sprintf($img,__('published'),'check-on.png');
break;
case 0:
$img_status = sprintf($img,__('unpublished'),'check-off.png');
break;
case -1:
$img_status = sprintf($img,__('pending'),'check-wrn.png');
break;
case -2:
$img_status = sprintf($img,__('junk'),'junk.png');
break;
}
echo
'<tr class="line'.($rs->comment_status != 1 ? ' offline' : '').'"'.
' id="c'.$rs->comment_id.'">'.
'<td class="nowrap">'.
($has_action ? form::checkbox(array('comments[]'),$rs->comment_id,'','','',0) : '').'</td>'.
'<td class="maximal">'.$rs->comment_author.'</td>'.
'<td class="nowrap">'.dt::dt2str(__('%Y-%m-%d %H:%M'),$rs->comment_dt).'</td>'.
'<td class="nowrap"><a href="comments.php?ip='.$rs->comment_ip.'">'.$rs->comment_ip.'</a></td>'.
'<td class="nowrap status">'.$img_status.'</td>'.
'<td class="nowrap status"><a href="'.$comment_url.'">'.
'<img src="images/edit-mini.png" alt="" title="'.__('Edit this comment').'" /></a></td>'.
'</tr>';
}
echo '</table>';
}
dcPage::close();
?>