Commits vergleichen
4 Commits
af5bf9be94
...
0589fd287e
Autor | SHA1 | Datum |
---|---|---|
o.pinke | 0589fd287e | |
o.pinke | c0e250a21f | |
o.pinke | efa03003be | |
o.pinke | d3e73bfe0a |
|
@ -1311,7 +1311,7 @@ abstract class Item extends cItemBaseAbstract {
|
|||
* List of funcion names of the filtersused when data is retrieved from the db
|
||||
* @var array
|
||||
*/
|
||||
protected $_arrOutFilters = array('stripslashes', 'htmldecode','urldecode');
|
||||
protected $_arrOutFilters = array('stripslashes', 'htmldecode','urldecode', 'utf8_encode');
|
||||
|
||||
/**
|
||||
* Class name of meta object
|
||||
|
|
|
@ -1,4 +1,5 @@
|
|||
<?php
|
||||
|
||||
/**
|
||||
* Project:
|
||||
* Contenido Content Management System
|
||||
|
@ -29,31 +30,28 @@
|
|||
* }}
|
||||
*
|
||||
*/
|
||||
|
||||
if (!defined('CON_FRAMEWORK')) {
|
||||
die('Illegal call');
|
||||
die('Illegal call');
|
||||
}
|
||||
|
||||
|
||||
//notice $oTpl is filled and generated in file rights.inc.php this file renders $oTpl to browser
|
||||
include_once($cfg['path']['contenido'].'includes/grouprights.inc.php');
|
||||
include_once($cfg['path']['contenido'] . 'includes/grouprights.inc.php');
|
||||
|
||||
//set the areas which are in use fore selecting these
|
||||
$possible_area = "'".implode("','", $area_tree[$perm->showareas("lay")])."'";
|
||||
$sql = "SELECT A.idarea, A.idaction, A.idcat, B.name, C.name FROM ".$cfg["tab"]["rights"]." AS A, ".$cfg["tab"]["area"]." AS B, ".$cfg["tab"]["actions"]." AS C WHERE user_id='".Contenido_Security::escapeDB($groupid, $db)."' AND idclient='".Contenido_Security::toInteger($rights_client)."' AND A.type = 1 AND idlang='".Contenido_Security::toInteger($rights_lang)."' AND B.idarea IN ($possible_area) AND idcat!='0' AND A.idaction = C.idaction AND A.idarea = C.idarea AND A.idarea = B.idarea";
|
||||
$possible_area = "'" . implode("','", $area_tree[$perm->showareas("lay")]) . "'";
|
||||
$sql = "SELECT A.idarea, A.idaction, A.idcat, B.name, C.name FROM " . $cfg["tab"]["rights"] . " AS A, " . $cfg["tab"]["area"] . " AS B, " . $cfg["tab"]["actions"] . " AS C WHERE user_id='" . Contenido_Security::escapeDB($groupid, $db) . "' AND idclient='" . Contenido_Security::toInteger($rights_client) . "' AND A.type = 1 AND idlang='" . Contenido_Security::toInteger($rights_lang) . "' AND B.idarea IN ($possible_area) AND idcat!='0' AND A.idaction = C.idaction AND A.idarea = C.idarea AND A.idarea = B.idarea";
|
||||
$db->query($sql);
|
||||
$rights_list_old = array ();
|
||||
$rights_list_old = array();
|
||||
while ($db->next_record()) { //set a new rights list fore this user
|
||||
$rights_list_old[$db->f(3)."|".$db->f(4)."|".$db->f("idcat")] = "x";
|
||||
$rights_list_old[$db->f(3) . "|" . $db->f(4) . "|" . $db->f("idcat")] = "x";
|
||||
}
|
||||
if (($perm->have_perm_area_action($area, $action)) && ($action == "user_edit"))
|
||||
{
|
||||
saverights();
|
||||
}else {
|
||||
if (!$perm->have_perm_area_action($area, $action))
|
||||
{
|
||||
$notification->displayNotification("error", i18n("Permission denied"));
|
||||
}
|
||||
if (($perm->have_perm_area_action($area, $action)) && ($action == "user_edit")) {
|
||||
saverights();
|
||||
} else {
|
||||
if (!$perm->have_perm_area_action($area, $action)) {
|
||||
$notification->displayNotification("error", i18n("Permission denied"));
|
||||
}
|
||||
}
|
||||
|
||||
// declare temp variables
|
||||
|
@ -65,52 +63,47 @@ $sTable = '';
|
|||
$sJsBefore .= "var itemids=new Array();
|
||||
var actareaids=new Array(); \n";
|
||||
|
||||
if (($perm->have_perm_area_action($area, $action)) && ($action == "group_edit"))
|
||||
{
|
||||
saverights();
|
||||
}else {
|
||||
if (!$perm->have_perm_area_action($area, $action))
|
||||
{
|
||||
$notification->displayNotification("error", i18n("Permission denied"));
|
||||
}
|
||||
if (($perm->have_perm_area_action($area, $action)) && ($action == "group_edit")) {
|
||||
saverights();
|
||||
} else {
|
||||
if (!$perm->have_perm_area_action($area, $action)) {
|
||||
$notification->displayNotification("error", i18n("Permission denied"));
|
||||
}
|
||||
}
|
||||
|
||||
|
||||
$colspan=0;
|
||||
$colspan = 0;
|
||||
|
||||
$oTable = new Table($cfg["color"]["table_border"], "solid", 0, 2, $cfg["color"]["table_header"], $cfg["color"]["table_light"], $cfg["color"]["table_dark"], 0, 0);
|
||||
|
||||
$sTable .= $oTable->start_table();
|
||||
$sTable .= $oTable->header_row();
|
||||
$sTable .= $oTable->header_cell(i18n("Layout name"));
|
||||
$sTable .= $oTable->header_cell(i18n("Description"));
|
||||
$sTable .= $oTable->header_cell(i18n("Description"));
|
||||
|
||||
$possible_areas=array();
|
||||
$possible_areas = array();
|
||||
$sCheckboxesRow = '';
|
||||
$aSecondHeaderRow = array();
|
||||
|
||||
// look for possible actions in mainarea []
|
||||
foreach($right_list["lay"] as $value2)
|
||||
{
|
||||
//if there are some actions
|
||||
if(is_array($value2["action"]))
|
||||
//set the areas that are in use
|
||||
foreach($value2["action"] as $key3 => $value3)
|
||||
{
|
||||
$possible_areas[$value2["perm"]]="";
|
||||
$colspan++;
|
||||
//set the possible areas and actions for this areas
|
||||
$sJsBefore .= "actareaids[\"$value3|".$value2["perm"]."\"]=\"x\";\n";
|
||||
|
||||
//checkbox for the whole action
|
||||
$sTable .= $oTable->header_cell($lngAct[$value2["perm"]][$value3]);
|
||||
array_push($aSecondHeaderRow, "<input type=\"checkbox\" name=\"checkall_".$value2["perm"]."_$value3\" value=\"\" onClick=\"setRightsFor('".$value2["perm"]."','$value3','')\">");
|
||||
foreach ($right_list["lay"] as $value2) {
|
||||
//if there are some actions
|
||||
if (is_array($value2["action"]))
|
||||
//set the areas that are in use
|
||||
foreach ($value2["action"] as $key3 => $value3) {
|
||||
$possible_areas[$value2["perm"]] = "";
|
||||
$colspan++;
|
||||
//set the possible areas and actions for this areas
|
||||
$sJsBefore .= "actareaids[\"$value3|" . $value2["perm"] . "\"]=\"x\";\n";
|
||||
|
||||
}
|
||||
//checkbox for the whole action
|
||||
$sTable .= $oTable->header_cell($lngAct[$value2["perm"]][$value3]);
|
||||
array_push($aSecondHeaderRow, "<input type=\"checkbox\" name=\"checkall_" . $value2["perm"] . "_$value3\" value=\"\" onClick=\"setRightsFor('" . $value2["perm"] . "','$value3','')\">");
|
||||
}
|
||||
}
|
||||
|
||||
//checkbox for all rights
|
||||
$sTable .= $oTable->header_cell(i18n("Check all"));
|
||||
//checkbox for all rights
|
||||
$sTable .= $oTable->header_cell(i18n("Check all"));
|
||||
array_push($aSecondHeaderRow, "<input type=\"checkbox\" name=\"checkall\" value=\"\" onClick=\"setRightsForAll()\">");
|
||||
$sTable .= $oTable->end_row();
|
||||
|
||||
|
@ -121,71 +114,59 @@ $sTable .= $oTable->header_cell(' ', 'center', '', '', 0);
|
|||
$sTable .= $oTable->header_cell(' ', 'center', '', '', 0);
|
||||
|
||||
// Put the checkbox in the table
|
||||
foreach($aSecondHeaderRow as $value){
|
||||
$sTable .= $oTable->header_cell($value, "center", "", "", 0);
|
||||
foreach ($aSecondHeaderRow as $value) {
|
||||
$sTable .= $oTable->header_cell($value, "center", "", "", 0);
|
||||
}
|
||||
$sTable .= $oTable->end_row();
|
||||
|
||||
//Select the itemid<69>s
|
||||
$sql = "SELECT * FROM ".$cfg["tab"]["lay"]." WHERE idclient='".Contenido_Security::toInteger($rights_client)."' ORDER BY name";
|
||||
$sql = "SELECT * FROM " . $cfg["tab"]["lay"] . " WHERE idclient='" . Contenido_Security::toInteger($rights_client) . "' ORDER BY name";
|
||||
$db->query($sql);
|
||||
|
||||
|
||||
while ($db->next_record()) {
|
||||
|
||||
$sTplName = clHtmlEntities($db->f("name"));
|
||||
$sDescription = clHtmlEntities($db->f("description"));
|
||||
$sTplName = clHtmlEntities($db->f("name"));
|
||||
$sDescription = empty($db->f("description")) ? '' : clHtmlEntities($db->f("description"));
|
||||
|
||||
$sTable .= $oTable->row();
|
||||
$sTable .= $oTable->cell($sTplName, "", "", " class=\"td_rights0\"", false);
|
||||
$sTable .= $oTable->cell($sDescription, "", "", " class=\"td_rights1\" style=\"white-space:normal; \"", false);
|
||||
|
||||
//set javscript array for itemids
|
||||
$sJsBefore .= "itemids[\"" . $db->f("idlay") . "\"]=\"x\";\n";
|
||||
|
||||
// look for possible actions in mainarea[]
|
||||
foreach ($right_list["lay"] as $value2) {
|
||||
|
||||
//if there area some
|
||||
if (is_array($value2["action"]))
|
||||
foreach ($value2["action"] as $key3 => $value3) {
|
||||
//does the user have the right
|
||||
if (in_array($value2["perm"] . "|$value3|" . $db->f("idlay"), array_keys($rights_list_old)))
|
||||
$checked = "checked=\"checked\"";
|
||||
else
|
||||
$checked = "";
|
||||
|
||||
|
||||
$sTable .= $oTable->row();
|
||||
$sTable .= $oTable->cell($sTplName, "", "", " class=\"td_rights0\"", false);
|
||||
$sTable .= $oTable->cell($sDescription, "", "", " class=\"td_rights1\" style=\"white-space:normal; \"", false);
|
||||
|
||||
|
||||
//set javscript array for itemids
|
||||
$sJsBefore .= "itemids[\"".$db->f("idlay")."\"]=\"x\";\n";
|
||||
|
||||
// look for possible actions in mainarea[]
|
||||
foreach($right_list["lay"] as $value2)
|
||||
{
|
||||
|
||||
//if there area some
|
||||
if(is_array($value2["action"]))
|
||||
foreach($value2["action"] as $key3 => $value3)
|
||||
{
|
||||
//does the user have the right
|
||||
if(in_array($value2["perm"]."|$value3|".$db->f("idlay"),array_keys($rights_list_old)))
|
||||
$checked="checked=\"checked\"";
|
||||
else
|
||||
$checked="";
|
||||
|
||||
|
||||
//set the checkbox the name consits of areait+actionid+itemid
|
||||
//"<input type=\"checkbox\" name=\"rights_list[".$value2["perm"]."|$value3|".$db->f("idlay")."]\" value=\"x\" $checked>
|
||||
$sTable .= $oTable->cell("<input type=\"checkbox\" name=\"rights_list[".$value2["perm"]."|$value3|".$db->f("idlay")."]\" value=\"x\" $checked>", "", "", " class=\"td_rights3\"", false );
|
||||
|
||||
}
|
||||
|
||||
|
||||
}
|
||||
//set the checkbox the name consits of areait+actionid+itemid
|
||||
//"<input type=\"checkbox\" name=\"rights_list[".$value2["perm"]."|$value3|".$db->f("idlay")."]\" value=\"x\" $checked>
|
||||
$sTable .= $oTable->cell("<input type=\"checkbox\" name=\"rights_list[" . $value2["perm"] . "|$value3|" . $db->f("idlay") . "]\" value=\"x\" $checked>", "", "", " class=\"td_rights3\"", false);
|
||||
}
|
||||
}
|
||||
//checkbox for checking all actions fore this itemid
|
||||
$sTable .= $oTable->cell("<input type=\"checkbox\" name=\"checkall_".$value2["perm"]."_".$value3."_".$db->f("idlay")."\" value=\"\" onClick=\"setRightsFor('".$value2["perm"]."','$value3','".$db->f("idlay")."')\">","", "", " class=\"td_rights3\"", false);
|
||||
$sTable .= $oTable->end_row();
|
||||
|
||||
$sTable .= $oTable->cell("<input type=\"checkbox\" name=\"checkall_" . $value2["perm"] . "_" . $value3 . "_" . $db->f("idlay") . "\" value=\"\" onClick=\"setRightsFor('" . $value2["perm"] . "','$value3','" . $db->f("idlay") . "')\">", "", "", " class=\"td_rights3\"", false);
|
||||
$sTable .= $oTable->end_row();
|
||||
}
|
||||
|
||||
$sTable .= $oTable->end_row();
|
||||
$sTable .= $oTable->row();
|
||||
$sTable .= $oTable->sumcell("<a href=javascript:submitrightsform('','area')><img src=\"".$cfg['path']['images']."but_cancel.gif\" border=0></a><img src=\"images/spacer.gif\" width=\"20\"> <a href=javascript:submitrightsform('group_edit','')><img src=\"".$cfg['path']['images']."but_ok.gif\" border=0></a>","right");
|
||||
$sTable .= $oTable->sumcell("<a href=javascript:submitrightsform('','area')><img src=\"" . $cfg['path']['images'] . "but_cancel.gif\" border=0></a><img src=\"images/spacer.gif\" width=\"20\"> <a href=javascript:submitrightsform('group_edit','')><img src=\"" . $cfg['path']['images'] . "but_ok.gif\" border=0></a>", "right");
|
||||
$sTable .= $oTable->end_row();
|
||||
$sTable .= $oTable->end_table();
|
||||
|
||||
|
||||
// generate Template
|
||||
$oTpl->set('s', 'JS_SCRIPT_BEFORE', $sJsBefore);
|
||||
$oTpl->set('s', 'JS_SCRIPT_AFTER', $sJsAfter);
|
||||
$oTpl->set('s', 'RIGHTS_CONTENT', $sTable);
|
||||
$oTpl->set('s', 'EXTERNAL_SCRIPTS', $sJsExternal);
|
||||
$oTpl->generate('templates/standard/'.$cfg['templates']['rights_inc']);
|
||||
|
||||
?>
|
||||
$oTpl->generate('templates/standard/' . $cfg['templates']['rights_inc']);
|
|
@ -116,8 +116,8 @@ $db->query($sql);
|
|||
|
||||
while ($db->next_record()) {
|
||||
|
||||
$tplname = clHtmlEntities($db->f("name"));
|
||||
$description = clHtmlEntities($db->f("description"));
|
||||
$tplname = clHtmlEntities($db->f("name"));
|
||||
$description = empty($db->f("description"))?'':clHtmlEntities($db->f("description"));
|
||||
|
||||
$sTable .= $table->row();
|
||||
$sTable .= $table->cell($tplname,"", "", " class=\"td_rights0\"", false);
|
||||
|
|
|
@ -121,8 +121,8 @@ $db->query($sql);
|
|||
|
||||
while ($db->next_record()) {
|
||||
|
||||
$tplname = clHtmlEntities($db->f("name"));
|
||||
$description = clHtmlEntities($db->f("description"));
|
||||
$tplname = clHtmlEntities($db->f("name"));
|
||||
$description = empty($db->f("description"))?'':clHtmlEntities($db->f("description"));
|
||||
|
||||
$sTable .= $table->row();
|
||||
$sTable .= $table->cell($tplname,"", "", " class=\"td_rights0\"", false);
|
||||
|
|
|
@ -174,6 +174,11 @@ if (!$perm->have_perm_area_action($area, $action)) {
|
|||
}
|
||||
|
||||
$aFileInfo = getFileInformation($client, $sTempFilename, $sTypeContent, $db);
|
||||
if(!empty($aFileInfo["description"])) {
|
||||
$sDescription = clHtmlSpecialChars($aFileInfo["description"]);
|
||||
} else {
|
||||
$sDescription = '';
|
||||
}
|
||||
|
||||
$form = new UI_Table_Form("file_editor");
|
||||
$form->addHeader(i18n("Edit file"));
|
||||
|
@ -186,7 +191,7 @@ if (!$perm->have_perm_area_action($area, $action)) {
|
|||
|
||||
$tb_name = new cHTMLTextbox("file", $sFilename, 60);
|
||||
$ta_code = new cHTMLTextarea("code", clHtmlSpecialChars($sCode), 100, 35, "code");
|
||||
$descr = new cHTMLTextarea("description", clHtmlSpecialChars($aFileInfo["description"]), 100, 5);
|
||||
$descr = new cHTMLTextarea("description", $sDescription, 100, 5);
|
||||
|
||||
$ta_code->setStyle("font-family: monospace;width: 100%;");
|
||||
$descr->setStyle("font-family: monospace;width: 100%;");
|
||||
|
|
|
@ -134,6 +134,11 @@ if (!$perm->have_perm_area_action($area, $action)) {
|
|||
# generate edit form
|
||||
if (isset($_REQUEST['action'])) {
|
||||
$aFileInfo = getFileInformation($client, $sFilename, $sTypeContent, $db);
|
||||
if(!empty($aFileInfo["description"])) {
|
||||
$sDescription = clHtmlSpecialChars($aFileInfo["description"]);
|
||||
} else {
|
||||
$sDescription = '';
|
||||
}
|
||||
|
||||
$sAction = ($bEdit) ? $sActionEdit : $_REQUEST['action'];
|
||||
|
||||
|
@ -154,7 +159,7 @@ if (!$perm->have_perm_area_action($area, $action)) {
|
|||
|
||||
$tb_name = new cHTMLTextbox("file", $sFilename, 60);
|
||||
$ta_code = new cHTMLTextarea("code", clHtmlSpecialChars($sCode), 100, 35, "code");
|
||||
$descr = new cHTMLTextarea("description", clHtmlSpecialChars($aFileInfo["description"]), 100, 5);
|
||||
$descr = new cHTMLTextarea("description", $sDescription, 100, 5);
|
||||
|
||||
$ta_code->setStyle("font-family: monospace;width: 100%;");
|
||||
$descr->setStyle("font-family: monospace;width: 100%;");
|
||||
|
|
|
@ -158,11 +158,9 @@ if (!$perm->have_perm_area_action($area, $action)) {
|
|||
if ($_REQUEST['action'] == $sActionEdit) {
|
||||
$sCode = getFileContent($sFilename, $path);
|
||||
} else {
|
||||
$sCode = $_REQUEST['code']; # stripslashes is required here in case of creating a new file
|
||||
$sCode = $_REQUEST['code'];
|
||||
}
|
||||
|
||||
$aFileInfo = getFileInformation($client, $sTempFilename, "css", $db);
|
||||
|
||||
$form = new UI_Table_Form("file_editor");
|
||||
$form->addHeader(i18n("Edit file"));
|
||||
$form->setWidth("100%");
|
||||
|
@ -173,16 +171,24 @@ if (!$perm->have_perm_area_action($area, $action)) {
|
|||
$form->setVar("tmp_file", $sTempFilename);
|
||||
|
||||
$tb_name = new cHTMLTextbox("file", $sFilename, 60);
|
||||
$ta_code = new cHTMLTextarea("code", clHtmlSpecialChars($sCode), 100, 35, "code");
|
||||
$descr = new cHTMLTextarea("description", clHtmlSpecialChars($aFileInfo["description"]), 100, 5);
|
||||
|
||||
$ta_code->setStyle("font-family: monospace;width: 100%;");
|
||||
$descr->setStyle("font-family: monospace;width: 100%;");
|
||||
$ta_code->updateAttributes(array("wrap" => getEffectiveSetting('style_editor', 'wrap', 'off')));
|
||||
|
||||
$form->add(i18n("Name"), $tb_name);
|
||||
$form->add(i18n("Description"), $descr->render());
|
||||
|
||||
$ta_code = new cHTMLTextarea("code", clHtmlSpecialChars($sCode), 100, 35, "code");
|
||||
$ta_code->updateAttributes(array("wrap" => getEffectiveSetting('style_editor', 'wrap', 'off')));
|
||||
$ta_code->setStyle("font-family: monospace;width: 100%;");
|
||||
$form->add(i18n("Code"), $ta_code);
|
||||
|
||||
$aFileInfo = getFileInformation($client, $sTempFilename, "css", $db);
|
||||
if(!empty($aFileInfo["description"])) {
|
||||
$sDescription = clHtmlSpecialChars($aFileInfo["description"]);
|
||||
} else {
|
||||
$sDescription = '';
|
||||
}
|
||||
|
||||
$descr = new cHTMLTextarea("description", $sDescription, 100, 5);
|
||||
|
||||
$descr->setStyle("font-family: monospace;width: 100%;");
|
||||
$form->add(i18n("Description"), $descr->render());
|
||||
|
||||
$page->setContent($form->render());
|
||||
|
||||
|
@ -192,5 +198,4 @@ if (!$perm->have_perm_area_action($area, $action)) {
|
|||
$page->addScript('reload', $sReloadScript);
|
||||
$page->render();
|
||||
}
|
||||
}
|
||||
?>
|
||||
}
|
|
@ -118,7 +118,7 @@ $db->query($sql);
|
|||
while ($db->next_record()) {
|
||||
|
||||
$tplname = clHtmlEntities($db->f("name"));
|
||||
$description = clHtmlEntities($db->f("description"));
|
||||
$description = empty($db->f("description"))?'':clHtmlEntities($db->f("description"));
|
||||
|
||||
$sTable .= $table->row();
|
||||
$sTable .= $table->cell($tplname,"", "", " class=\"td_rights0\"", false);
|
||||
|
|
|
@ -117,7 +117,7 @@ $db->query($sql);
|
|||
while ($db->next_record()) {
|
||||
|
||||
$tplname = clHtmlEntities($db->f("name"));
|
||||
$description = clHtmlEntities($db->f("description"));
|
||||
$description = empty($db->f("description"))?'':clHtmlEntities($db->f("description"));
|
||||
|
||||
$sTable .= $table->row();
|
||||
$sTable .= $table->cell($tplname,"", "", " class=\"td_rights0\"", false);
|
||||
|
|
|
@ -112,14 +112,14 @@ foreach ($aSecondHeaderRow as $value) {
|
|||
$sTable .= $table->end_row();
|
||||
|
||||
|
||||
//Select the itemid<EFBFBD>s
|
||||
//Select the itemid
|
||||
$sql = "SELECT * FROM ".$cfg["tab"]["tpl"]." WHERE idclient='".Contenido_Security::toInteger($rights_client)."' ORDER BY name";
|
||||
$db->query($sql);
|
||||
|
||||
while ($db->next_record()) {
|
||||
|
||||
$tplname = clHtmlEntities($db->f("name"));
|
||||
$description = clHtmlEntities($db->f("description"));
|
||||
$tplname = clHtmlEntities($db->f("name"));
|
||||
$description = empty($db->f("description"))?'':clHtmlEntities($db->f("description"));
|
||||
|
||||
$sTable .= $table->row();
|
||||
$sTable .= $table->cell($tplname,"", "", " class=\"td_rights0\"", false);
|
||||
|
|
|
@ -1,7 +1,7 @@
|
|||
<!DOCTYPE html>
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="UTF-8" />
|
||||
<meta charset="utf-8">
|
||||
<title>template.tplcfg_edit_form.html</title>
|
||||
<link rel="stylesheet" type="text/css" href="styles/jquery-ui.css">
|
||||
<link rel="stylesheet" type="text/css" href="styles/contenido.css">
|
||||
|
|
Laden…
In neuem Issue referenzieren