X-Git-Url: https://jasonwoof.com/gitweb/?a=blobdiff_plain;ds=sidebyside;f=metaform%2Ftemplate.php;h=9742f4ef73e8078e1b7656fd262ea5547a2c9501;hb=37e83a7d771b652435ae2a57efb0aeb988484642;hp=14836c777594093fdd01bc038fd132b34b2d4c26;hpb=7f1caa3f91565d537999324dd9088cf5d9c73183;p=wfpl.git diff --git a/metaform/template.php b/metaform/template.php index 14836c7..9742f4e 100644 --- a/metaform/template.php +++ b/metaform/template.php @@ -1,130 +1,219 @@ # To send results by e-mail, all you have to do is set your e-mail address here: -$GLOBALS['~form_name~_form_recipient'] = "fixme@example.com"; - +$GLOBALS['~file_name~_form_recipient'] = "fixme@example.com"; + +# To save results to a database, you'll need to create the ~table_name~ table +# (the file ~file_name~.sql should help with this), and create the file +# 'code/db_connect.php' which calls db_connect() see: +# code/wfpl/examples/db_connect.php +# +# if you rename any of the database fields, you'll need to update this: + +define('~file_name.upper~_DB_FIELDS', '~db_fields~'); + # Set this to the path to your uploads directory. It can be relative to the # location of this script. IT MUST END WITH A SLASH $GLOBALS['upload_directory'] = 'uploads/'; + +$GLOBALS['~name~_max_width'] = '400'; +$GLOBALS['~name~_max_height'] = '400'; +$GLOBALS['~name~_thumb_max_width'] = '70'; +$GLOBALS['~name~_thumb_max_height'] = '70'; +$GLOBALS['~name~_file_name'] = uniqid() . getmypid() . '.jpg'; # comment this out to use uploader's filename + +# Define the username and password required to view this form: +define('AUTH_REALM', '~file_name~ administration area'); +define('AUTH_USER', 'fixme'); +define('AUTH_PASS', 'fixme'); -# To save results to a database, you'll need to create the ~form_name~ table -# (the file ~form_name~.sql should help with this), and create a file called -# 'db_connect.php' which calls db_connect() see: -# code/wfpl/examples/db_connect.php -if(!file_exists('code/wfpl/template.php')) { die('This form requires wfpl.'); } require_once('code/wfpl/template.php'); require_once('code/wfpl/format.php'); require_once('code/wfpl/messages.php'); -require_once('code/wfpl/email.php'); -require_once('code/wfpl/db.php'); +require_once('code/wfpl/email.php'); +require_once('code/db_connect.php'); require_once('code/wfpl/upload.php'); -function ~form_name~_get_fields() { - - $~name~ = format_~format~($_REQUEST['~name~']); - $~name~ = save_uploaded_image('~name~', $GLOBALS['upload_directory']); - - tem_set('~name~', $~name~); +function ~file_name~_get_fields() { + $~name~ = format_~format~($_REQUEST['~name~'], '~name~'); + if($_FILES['~name~'] && $_FILES['~name~']['error'] == 0) { + $~name~ = convert_uploaded_image('~name~', $GLOBALS['upload_directory'] . $GLOBALS['~name~_file_name'], $GLOBALS['~name~_max_width'], $GLOBALS['~name~_max_height'], $GLOBALS['~name~_thumb_max_width'], $GLOBALS['~name~_thumb_max_height']); + } else { + if($_REQUEST['delete_~name~'] == 'Yes') { + $~name~ = ''; + } else { + $~name~ = format_image_w_h_thumb_w_h($_REQUEST['old_~name~']); + } + } + + ~file_name~_tem_sets(~php_fields~); return array(~php_fields~); } -function ~form_name~() { - $edit_id = format_int($_REQUEST['~form_name~_edit_id']); - unset($_REQUEST['~form_name~_edit_id']); +function ~file_name~_tem_sets(~php_fields~) { + tem_set('~name~', $~name~); +} + +# You may pass a "where clause" for the db query. +function ~file_name~_display_listing($where = 'order by ~always_field~ limit 100') { + $rows = db_get_rows('~table_name~', 'id,~name~', $where); + if($rows == false || count($rows) == 0) { + tem_show('empty_listing'); + tem_show('listings'); + return false; + } + + foreach($rows as $row) { + list($id, $~name~) = $row; + tem_set('id', $id); + if($~always_field~ == '') { + $~always_field~ = '--'; + } + ~file_name~_tem_sets(~php_fields~); + tem_show('listing_row'); + } + tem_show('populated_listing'); + tem_show('listings'); + return true; +} + +function ~file_name~_main() { + if(isset($_REQUEST['~file_name~_id'])) { + $ret = ~file_name~_display_main(); + if($ret) { + return $ret; + } + tem_show('display_body'); + } else { + $ret = ~file_name~_edit_main(); + if($ret) { + return $ret; + } + tem_show('edit_body'); + } + + $ret = _~file_name~_main(); + if($ret) { + return $ret; + } + + # sections displayed with tem_show() will be coppied to the main template if you have one. + tem_show('main_body'); +} + +function ~file_name~_display_main() { + $id = format_int($_REQUEST['~file_name~_id']); + unset($_REQUEST['~file_name~_id']); + if(!$id) { + message('Error: Broken link'); + return './~file_name~'; + } + $row = db_get_row('~table_name~', ~file_name.upper~_DB_FIELDS, 'where id=%i', $id); + if(!$row) { + message('Error: ~singular.cap~ not found'); + return './~file_name~'; + } + list(~php_fields~) = $row; + ~file_name~_tem_sets(~php_fields~); + tem_set('id', $id); +} + +function ~file_name~_edit_main() { + + +function _~file_name~_main() { + # To remove password protection, just delete this block: + if (!isset($_SERVER['PHP_AUTH_USER']) || $_SERVER['PHP_AUTH_USER'] != AUTH_USER || $_SERVER['PHP_AUTH_PW'] != AUTH_PASS) { + header('WWW-Authenticate: Basic realm="' . AUTH_REALM . '"'); + header('HTTP/1.0 401 Unauthorized'); + echo '401 Unauthorized'; + exit; + } + + pulldown('~name~', array('option 1', 'option 2', 'option 3')); + + $edit_id = format_int($_REQUEST['~file_name~_edit_id']); + unset($_REQUEST['~file_name~_edit_id']); if($edit_id) { # add hidden field for database id of row we're editing - tem_set('~form_name~_edit_id', $edit_id); - tem_sub('editing'); - tem_sub('edit_msg'); + tem_set('~file_name~_edit_id', $edit_id); + tem_show('editing'); } - $delete_id = format_int($_REQUEST['~form_name~_delete_id']); - unset($_REQUEST['~form_name~_delete_id']); + $delete_id = format_int($_REQUEST['~file_name~_delete_id']); + unset($_REQUEST['~file_name~_delete_id']); if($delete_id) { - db_delete('~form_name~', 'where id=%i', $delete_id); - message('Entry deleted.'); + db_delete('~table_name~', 'where id=%i', $delete_id); + message('~singular.cap~ deleted.'); - # FIXME: what to do after delete? - return; + return './~file_name~'; } - if(!$edit_id && !$delet_id) { - tem_sub('new_msg'); - } - - if(isset($_REQUEST['~always_field~'])) { - list(~php_fields~) = ~form_name~_get_fields(); - - if("you're happy with the POSTed values") { - # to enable saving to a database, create a file called 'db_connect.php' - # see: code/wfpl/examples/db_connect.php - if(file_exists('db_connect.php') || file_exists('code/db_connect.php')) { - if(file_exists('db_connect.php') { - require_once('db_connect.php'); - } else { - require_once('code/db_connect.php'); - } - if($edit_id) { - # uploading nothing means leaving it as is. - if(!$~name~ && $delete_~name~ != 'Yes') { - $~name~ = db_get_value('~form_name~', '~name~', 'where id=%i', $edit_id); - } - - db_update('~form_name~', '~db_fields~', ~php_fields~, 'where id=%i', $edit_id); - message('Entry updated.'); - } else { - db_insert('~form_name~', '~db_fields~', ~php_fields~); - message('Entry saved.'); - } - } - if($GLOBALS['~form_name~_form_recipient'] != "fixme@example.com") { - $to = $GLOBALS['~form_name~_form_recipient']; + if(!$edit_id) { + if(!isset($_REQUEST['~file_name~_new']) && !isset($_REQUEST['~always_field~'])) { + ~file_name~_display_listing(); + return; + } + + tem_show('new_msg'); + } + + if(isset($_POST['~always_field~'])) { + list(~php_fields~) = ~file_name~_get_fields(); + + if("you're happy with the POSTed values") { + if($edit_id) { + db_update('~table_name~', ~file_name.upper~_DB_FIELDS, ~php_fields~, 'where id=%i', $edit_id); + message('~singular.cap~ updated.'); + } else { + db_insert('~table_name~', ~file_name.upper~_DB_FIELDS, ~php_fields~); + message('~singular.cap~ saved.'); + } + if($GLOBALS['~file_name~_form_recipient'] != "fixme@example.com") { + $to = $GLOBALS['~file_name~_form_recipient']; + $from = $to; + $reply_to = ''; if(isset($_REQUEST['email']) and valid_email($_REQUEST['email'])) { - $from = $_REQUEST['email']; + $reply_to = $_REQUEST['email']; if($_REQUEST['name'] and ereg('^[a-zA-Z0-9_\' -]*$', $_REQUEST['name']) !== false) { - $from = "$_REQUEST[name] <$from>"; + $reply_to = "$_REQUEST[name] <$reply_to>"; } - } else { - $from = $to; } - $subject = '~form_name~ form submitted'; - $message = tem_run('~form_name~.email.txt'); + $subject = '~plural.cap~ form submitted'; + $message = tem_run('~file_name~.email.txt'); $cc = ''; $bcc = ''; - if(email($from, $to, $subject, $message, $cc, $bcc)) { - tem_set('error_message', 'Due to an internal error, your message could not be sent. Please try again later.'); - tem_sub('error'); + if(email($from, $to, $subject, $message, $reply_to, $cc, $bcc)) { + message('Due to an internal error, your message could not be sent. Please try again later.'); $error = true; + } else { + message('Message sent'); } - } + } if($error !== true) { - tem_load('~form_name~.html'); - tem_sub('thankyou'); - tem_output(); - exit(); + return './~file_name~'; # FIXME is this the page you want to go to after successful form submission? } } - # otherwise, we display the form again. ~form_name~_get_fields() has + # otherwise, we display the form again. ~file_name~_get_fields() has # already put the posted values back into the template engine, so they will # show up in the form fields. You should add some message asking people to - # fix their entry in whatever way you require. + # fix their entry in whatever way you require. } elseif($edit_id) { # we've recieved an edit id, but no data. So we grab the values to be edited from the database - list(~php_fields~) = db_get_row('~form_name~', '~db_fields~', 'where id=%i', $edit_id); - ~tem_sets.tab~ + list(~php_fields~) = db_get_row('~table_name~', ~file_name.upper~_DB_FIELDS, 'where id=%i', $edit_id); + ~file_name~_tem_sets(~php_fields~); } else { # form not submitted, you can set default values like so: #tem_set('~always_field~', 'Yes'); @@ -132,7 +221,13 @@ function ~form_name~() { tem_set('upload_max_filesize', upload_max_filesize()); - tem_sub('form'); + # this has to be later in the file because it requres that ~always_field~ be set already + if($edit_id) { + tem_show('edit_msg'); + } + + tem_show('form'); + tem_show('extra_headers'); } ?>