metaform/template.php

   1 <?php
   2
   3 # This form requires wfpl. If you didn't recieve wfpl along with this file,
   4 # see: http://jasonwoof.org/wfpl
   5
   6 # This form was auto-generated. If you would like to alter the parameters and
   7 # generate a new one try this URL:
   8 #
   9 # ~metaform_url~
  10
  11
  12 # SETUP
  13 <!--~opt_email_1 start~-->
  14 # To send results by e-mail, all you have to do is set your e-mail address here:
  15 $GLOBALS['~form_name~_form_recipient'] = "fixme@example.com";
  16 <!--~end~--><!--~opt_db_1 start~-->
  17 # To save results to a database, you'll need to create the ~form_name~ table
  18 # (the file ~form_name~.sql should help with this), and create the file
  19 # 'code/db_connect.php' which calls db_connect() see:
  20 # code/wfpl/examples/db_connect.php
  21 #
  22 # if you rename any of the database fields, you'll need to update this:
  23
  24 define('~form_name.upper~_DB_FIELDS', '~db_fields~');
  25 <!--~end~--><!--~upload_settings start~-->
  26 # Set this to the path to your uploads directory. It can be relative to the
  27 # location of this script. IT MUST END WITH A SLASH
  28 $GLOBALS['upload_directory'] = 'uploads/';
  29 <!--~end~--><!--~opt_http_pass_1 start~-->
  30 # Define the username and password required to view this form:
  31 define('AUTH_REALM', '~form_name~ administration area');
  32 define('AUTH_USER', 'fixme');
  33 define('AUTH_PASS', 'fixme');
  34 <!--~end~-->
  35
  36 if(!file_exists('code/wfpl/template.php')) { die('This form requires <a href="http://jasonwoof.org/wfpl">wfpl</a>.'); }
  37 require_once('code/wfpl/template.php');
  38 require_once('code/wfpl/format.php');
  39 require_once('code/wfpl/messages.php');
  40 require_once('code/wfpl/email.php');<!--~opt_db_2 start~-->
  41 require_once('code/db_connect.php');<!--~end~--><!--~image_include start~-->
  42 require_once('code/wfpl/upload.php');<!--~end~-->
  43
  44 function ~form_name~_get_fields() {<!--~formats start~-->
  45         $~name~ = format_~format~($_REQUEST['~name~']<!--~pulldown_format_extra start~-->, '~name~'<!--~end~-->);<!--~end~--><!--~image_upload start~-->
  46         if($_FILE['~name~'] && $_FILE['~name~']['error'] == 0) {
  47                 $~name~ = substr(save_uploaded_image('~name~', $GLOBALS['upload_directory']), strlen($GLOBALS['upload_directory']));
  48         } else {
  49                 $~name~ = format_filename($_REQUEST['old_~name~']);
  50         }<!--~end~-->
  51
  52         ~form_name~_tem_sets(~php_fields~);
  53
  54         return array(~php_fields~);
  55 }
  56
  57 function ~form_name~_tem_sets(~php_fields~) {<!--~tem_sets start~-->
  58         tem_set('~name~', $~name~);<!--~end~-->
  59 }
  60 <!--~opt_listing_2 start~-->
  61 # You may pass a "where clause" for the db query.
  62 function ~form_name~_display_listing($where = 'order by ~always_field~ limit 100') {
  63         $rows = db_get_rows('~form_name~', 'id,~always_field~', $where);
  64         if($rows == false || count($rows) == 0) {
  65                 return false;
  66         }
  67
  68         foreach($rows as $row) {
  69                 list($id, $~always_field~) = $row;
  70                 tem_set('id', $id);
  71                 if($~always_field~ == '') {
  72                         $~always_field~ = '--';
  73                 }
  74                 tem_set('~always_field~', $~always_field~);
  75                 tem_sub('listing_row');
  76         }
  77         tem_sub('listings');
  78         return true;
  79 }
  80 <!--~end~-->
  81 function ~form_name~_main() {<!--~opt_http_pass_2 start~-->
  82         # To remove password protection, just delete this block:
  83         if (!isset($_SERVER['PHP_AUTH_USER']) || $_SERVER['PHP_AUTH_USER'] != AUTH_USER || $_SERVER['PHP_AUTH_PW'] != AUTH_PASS) {
  84                 header('WWW-Authenticate: Basic realm="' . AUTH_REALM . '"');
  85                 header('HTTP/1.0 401 Unauthorized');
  86                 echo '401 Unauthorized';
  87                 exit;
  88         }
  89         <!--~end~--><!--~pulldowns start~-->
  90         pulldown('~name~', array('option 1', 'option 2', 'option 3'));
  91         <!--~end~--><!--~opt_db_3 start~-->
  92         $edit_id = format_int($_REQUEST['~form_name~_edit_id']);
  93         unset($_REQUEST['~form_name~_edit_id']);
  94         if($edit_id) {
  95                 # add hidden field for database id of row we're editing
  96                 tem_set('~form_name~_edit_id', $edit_id);
  97                 tem_sub('editing');
  98         }
  99
 100         $delete_id = format_int($_REQUEST['~form_name~_delete_id']);
 101         unset($_REQUEST['~form_name~_delete_id']);
 102         if($delete_id) {
 103                 db_delete('~form_name~', 'where id=%i', $delete_id);
 104                 message('Entry deleted.');<!--~opt_listing_3 start~-->
 105
 106                 if(~form_name~_display_listing()) {
 107                         return;
 108                 }
 109                 unset($delete_id);<!--~end~--><!--~opt_listing_3_else start~-->
 110
 111                 # FIXME: what to do after delete?
 112                 return;<!--~end~-->
 113         }
 114
 115         if(!$edit_id) {<!--~opt_listing_1 start~-->
 116                 if(!isset($_REQUEST['~form_name~_new']) && !isset($_REQUEST['~always_field~'])) {
 117                         if(~form_name~_display_listing()) {
 118                                 return;
 119                         }
 120                 }
 121                 <!--~end~-->
 122                 tem_sub('new_msg');
 123         }<!--~end~-->
 124
 125         if(isset($_REQUEST['~always_field~'])) {
 126                 list(~php_fields~) = ~form_name~_get_fields();
 127
 128                 if("you're happy with the POSTed values") {<!--~opt_db_4 start~-->
 129                         if($edit_id) {<!--~image_db start~-->
 130                                 # uploading nothing means leaving it as is.
 131                                 if(!$~name~ && $delete_~name~ != 'Yes') {
 132                                         $~name~ = db_get_value('~form_name~', '~name~', 'where id=%i', $edit_id);
 133                                 }
 134                                 <!--~end~-->
 135                                 db_update('~form_name~', ~form_name.upper~_DB_FIELDS, ~php_fields~, 'where id=%i', $edit_id);
 136                                 message('Entry updated.');
 137                         } else {
 138                                 db_insert('~form_name~', ~form_name.upper~_DB_FIELDS, ~php_fields~);
 139                                 message('Entry saved.');
 140                         }<!--~end~--><!--~opt_email_2 start~-->
 141                         if($GLOBALS['~form_name~_form_recipient'] != "fixme@example.com") {
 142                                 $to = $GLOBALS['~form_name~_form_recipient'];
 143                                 if(isset($_REQUEST['email']) and valid_email($_REQUEST['email'])) {
 144                                         $from = $_REQUEST['email'];
 145                                         if($_REQUEST['name'] and ereg('^[a-zA-Z0-9_\' -]*$', $_REQUEST['name']) !== false) {
 146                                                 $from = "$_REQUEST[name] <$from>";
 147                                         }
 148                                 } else {
 149                                         $from = $to;
 150                                 }
 151                                 $subject = '~form_name~ form submitted';
 152                                 $message = tem_run('~form_name~.email.txt');
 153                                 $cc = '';
 154                                 $bcc = '';
 155                                 if(email($from, $to, $subject, $message, $cc, $bcc)) {
 156                                         message('Due to an internal error, your message could not be sent. Please try again later.');
 157                                         $error = true;
 158                                 }
 159                         }<!--~end~-->
 160                         if($error !== true) {<!--~opt_listing_4 start~-->
 161                                 ~form_name~_display_listing();<!--~end~--><!--~opt_listing_4_else start~-->
 162                                 tem_sub('thankyou');<!--~end~-->
 163                                 return;
 164                         }
 165                 }
 166                 # otherwise, we display the form again. ~form_name~_get_fields() has
 167                 # already put the posted values back into the template engine, so they will
 168                 # show up in the form fields. You should add some message asking people to
 169                 # fix their entry in whatever way you require.<!--~opt_db_5 start~-->
 170         } elseif($edit_id) {
 171                 # we've recieved an edit id, but no data. So we grab the values to be edited from the database
 172                 list(~php_fields~) = db_get_row('~form_name~', ~form_name.upper~_DB_FIELDS, 'where id=%i', $edit_id);
 173                 ~form_name~_tem_sets(~php_fields~);<!--~end~-->
 174         } else {
 175                 # form not submitted, you can set default values like so:
 176                 #tem_set('~always_field~', 'Yes');
 177         }<!--~upload_max start~-->
 178
 179         tem_set('upload_max_filesize', upload_max_filesize());<!--~end~-->
 180
 181         # this has to be later in the file because it requres that ~always_field~ be set already
 182         if($edit_id) {
 183                 tem_sub('edit_msg');
 184         }
 185
 186         tem_sub('form');
 187 }
 188
 189 ?>