KXStudio
/
Website
mirror of https://github.com/KXStudio/Website
1
0
Fork 0
Code Releases 0 Activity
KXStudio Website https://kx.studio/
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
160 Commits
2 Branches
188MB
Tree: 72a43afc6c
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '72a43afc6c'
${ noResults }
Website/News/includes/ajax.php

208 lines
8.5KB
Raw Blame History 

  1. <?php

  2.     define('AJAX', true);

  3. 

  4.     require_once "common.php";

  5. 

  6.     # Prepare the controller.

  7.     $main = MainController::current();

  8. 

  9.     # Parse the route.

  10.     $route = Route::current($main);

  11. 

  12.     if (!$visitor->group->can("view_site"))

  13.         if ($trigger->exists("can_not_view_site"))

  14.             $trigger->call("can_not_view_site");

  15.         else

  16.             show_403(__("Access Denied"), __("You are not allowed to view this site."));

  17. 

  18.     switch($_POST['action']) {

  19.         case "edit_post":

  20.             if (!isset($_POST['id']))

  21.                 error(__("No ID Specified"), __("Please specify an ID of the post you would like to edit."));

  22. 

  23.             $post = new Post($_POST['id'], array("filter" => false, "drafts" => true));

  24. 

  25.             if ($post->no_results) {

  26.                 header("HTTP/1.1 404 Not Found");

  27.                 $trigger->call("not_found");

  28.                 exit;

  29.             }

  30. 

  31.             if (!$post->editable())

  32.                 show_403(__("Access Denied"), __("You do not have sufficient privileges to edit posts."));

  33. 

  34.             $title = $post->title();

  35.             $theme_file = THEME_DIR."/forms/feathers/".$post->feather.".php";

  36.             $default_file = FEATHERS_DIR."/".$post->feather."/fields.php";

  37. 

  38.             $options = array();

  39.             Trigger::current()->filter($options, array("edit_post_options", "post_options"), $post);

  40. 

  41.             $main->display("forms/post/edit", array("post" => $post,

  42.                                                     "feather" => Feathers::$instances[$post->feather],

  43.                                                     "options" => $options,

  44.                                                     "groups" => Group::find(array("order" => "id ASC"))));

  45.             break;

  46. 

  47.         case "delete_post":

  48.             $post = new Post($_POST['id'], array("drafts" => true));

  49. 

  50.             if ($post->no_results) {

  51.                 header("HTTP/1.1 404 Not Found");

  52.                 $trigger->call("not_found");

  53.                 exit;

  54.             }

  55. 

  56.             if (!$post->deletable())

  57.                 show_403(__("Access Denied"), __("You do not have sufficient privileges to delete this post."));

  58. 

  59.             Post::delete($_POST['id']);

  60.             break;

  61. 

  62.         case "view_post":

  63.             fallback($_POST['offset'], 0);

  64.             fallback($_POST['context']);

  65. 

  66.             $reason = (isset($_POST['reason'])) ? $_POST['reason'] : "" ;

  67. 

  68.             if (isset($_POST['id']))

  69.                 $post = new Post($_POST['id'], array("drafts" => true));

  70. 

  71.             if ($post->no_results) {

  72.                 header("HTTP/1.1 404 Not Found");

  73.                 $trigger->call("not_found");

  74.                 exit;

  75.             }

  76. 

  77.             $main->display("feathers/".$post->feather, array("post" => $post, "ajax_reason" => $reason));

  78.             break;

  79. 

  80.         case "preview":

  81.             if (empty($_POST['content']))

  82.                 break;

  83. 

  84.             $trigger->filter($_POST['content'],

  85.                              array("preview_".$_POST['feather'], "preview"),

  86.                              $_POST['field'],

  87.                              $_POST['feather']);

  88. 

  89.             echo "<h2 class=\"preview-header\">".__("Preview")."</h2>\n".

  90.                  "<div class=\"preview-content\">".fix($_POST['content'])."</div>";

  91.             break;

  92. 

  93.         case "check_confirm":

  94.             if (!$visitor->group->can("toggle_extensions"))

  95.                 show_403(__("Access Denied"), __("You do not have sufficient privileges to enable/disable extensions."));

  96. 

  97.             $dir = ($_POST['type'] == "module") ? MODULES_DIR : FEATHERS_DIR ;

  98.             $info = YAML::load($dir."/".$_POST['check']."/info.yaml");

  99.             fallback($info["confirm"], "");

  100. 

  101.             if (!empty($info["confirm"]))

  102.                 echo __($info["confirm"], $_POST['check']);

  103. 

  104.             break;

  105. 

  106.         case "organize_pages":

  107.             foreach ($_POST['parent'] as $id => $parent)

  108.                 $sql->update("pages", array("id" => $id), array("parent_id" => $parent));

  109. 

  110.             foreach ($_POST['page_list'] as $index => $page)

  111.                 $sql->update("pages", array("id" => $page), array("list_order" => $index));

  112. 

  113.             break;

  114. 

  115.         case "enable_module": case "enable_feather":

  116.             $type = ($_POST['action'] == "enable_module") ? "module" : "feather" ;

  117. 

  118.             if (!$visitor->group->can("change_settings"))

  119.                 if ($type == "module")

  120.                     exit("{ \"notifications\": [\"".__("You do not have sufficient privileges to enable/disable modules.")."\"] }");

  121.                 else

  122.                     exit("{ \"notifications\": [\"".__("You do not have sufficient privileges to enable/disable feathers.")."\"] }");

  123. 

  124.             if (($type == "module" and module_enabled($_POST['extension'])) or

  125.                 ($type == "feather" and feather_enabled($_POST['extension'])))

  126.                 exit("{ \"notifications\": [] }");

  127. 

  128.             $enabled_array = ($type == "module") ? "enabled_modules" : "enabled_feathers" ;

  129.             $folder        = ($type == "module") ? MODULES_DIR : FEATHERS_DIR ;

  130. 

  131.             if (file_exists($folder."/".$_POST["extension"]."/locale/".$config->locale.".mo"))

  132.                 load_translator($_POST["extension"], $folder."/".$_POST["extension"]."/locale/".$config->locale.".mo");

  133. 

  134.             $info = YAML::load($folder."/".$_POST["extension"]."/info.yaml");

  135.             fallback($info["uploader"], false);

  136.             fallback($info["notifications"], array());

  137. 

  138.             foreach ($info["notifications"] as &$notification)

  139.                 $notification = addslashes(__($notification, $_POST["extension"]));

  140. 

  141.             require $folder."/".$_POST["extension"]."/".$_POST["extension"].".php";

  142. 

  143.             if ($info["uploader"])

  144.                 if (!file_exists(MAIN_DIR.$config->uploads_path))

  145.                     $info["notifications"][] = _f("Please create the <code>%s</code> directory at your Chyrp install's root and CHMOD it to 777.", array($config->uploads_path));

  146.                 elseif (!is_writable(MAIN_DIR.$config->uploads_path))

  147.                     $info["notifications"][] = _f("Please CHMOD <code>%s</code> to 777.", array($config->uploads_path));

  148. 

  149.             $class_name = camelize($_POST["extension"]);

  150. 

  151.             if ($type == "module" and !is_subclass_of($class_name, "Modules"))

  152.                 error("", __("Item is not a module."));

  153. 

  154.             if ($type == "feather" and !is_subclass_of($class_name, "Feathers"))

  155.                 error("", __("Item is not a feather."));

  156. 

  157.             if (method_exists($class_name, "__install"))

  158.                 call_user_func(array($class_name, "__install"));

  159. 

  160.             $new = $config->$enabled_array;

  161.             array_push($new, $_POST["extension"]);

  162.             $config->set($enabled_array, $new);

  163. 

  164.             exit('{ "notifications": ['.

  165.                  (!empty($info["notifications"]) ? '"'.implode('", "', $info["notifications"]).'"' : "").

  166.                  '] }');

  167. 

  168.             break;

  169. 

  170.         case "disable_module": case "disable_feather":

  171.             $type = ($_POST['action'] == "disable_module") ? "module" : "feather" ;

  172. 

  173.             if (!$visitor->group->can("change_settings"))

  174.                 if ($type == "module")

  175.                     exit("{ \"notifications\": [\"".__("You do not have sufficient privileges to enable/disable modules.")."\"] }");

  176.                 else

  177.                     exit("{ \"notifications\": [\"".__("You do not have sufficient privileges to enable/disable feathers.")."\"] }");

  178. 

  179.             if (($type == "module" and !module_enabled($_POST['extension'])) or

  180.                 ($type == "feather" and !feather_enabled($_POST['extension'])))

  181.                 exit("{ \"notifications\": [] }");

  182. 

  183.             $class_name = camelize($_POST["extension"]);

  184.             if (method_exists($class_name, "__uninstall"))

  185.                 call_user_func(array($class_name, "__uninstall"), ($_POST['confirm'] == "1"));

  186. 

  187.             $enabled_array = ($type == "module") ? "enabled_modules" : "enabled_feathers" ;

  188.             $config->set($enabled_array,

  189.                          array_diff($config->$enabled_array, array($_POST['extension'])));

  190. 

  191.             exit('{ "notifications": [] }');

  192. 

  193.             break;

  194. 

  195.         case "reorder_feathers":

  196.             $reorder = oneof(@$_POST['list'], $config->enabled_feathers);

  197.             foreach ($reorder as &$value)

  198.                 $value = preg_replace("/feathers\[([^\]]+)\]/", "\\1", $value);

  199. 

  200.             $config->set("enabled_feathers", $reorder);

  201.             break;

  202.     }

  203. 

  204.     $trigger->call("ajax");

  205. 

  206.     if (!empty($_POST['action']))

  207.         $trigger->call("ajax_".$_POST['action']);