X-Git-Url: https://jasonwoof.com/gitweb/?a=blobdiff_plain;f=metaform%2Ftemplate.php;h=9742f4ef73e8078e1b7656fd262ea5547a2c9501;hb=608ecf965408645758cdca1e5f01ff5ac3eff166;hp=fcbbc369d3742a6e72935cf6323eeb90b3c1f55d;hpb=81c4b7d584ff89d86e846e4e501d7a2f355aadfc;p=wfpl.git diff --git a/metaform/template.php b/metaform/template.php index fcbbc36..9742f4e 100644 --- a/metaform/template.php +++ b/metaform/template.php @@ -11,23 +11,29 @@ # SETUP # To send results by e-mail, all you have to do is set your e-mail address here: -$GLOBALS['~form_name~_form_recipient'] = "fixme@example.com"; +$GLOBALS['~file_name~_form_recipient'] = "fixme@example.com"; -# To save results to a database, you'll need to create the ~form_name~ table -# (the file ~form_name~.sql should help with this), and create the file +# To save results to a database, you'll need to create the ~table_name~ table +# (the file ~file_name~.sql should help with this), and create the file # 'code/db_connect.php' which calls db_connect() see: # code/wfpl/examples/db_connect.php # # if you rename any of the database fields, you'll need to update this: -define('~form_name.upper~_DB_FIELDS', '~db_fields~'); +define('~file_name.upper~_DB_FIELDS', '~db_fields~'); # Set this to the path to your uploads directory. It can be relative to the # location of this script. IT MUST END WITH A SLASH $GLOBALS['upload_directory'] = 'uploads/'; - + +$GLOBALS['~name~_max_width'] = '400'; +$GLOBALS['~name~_max_height'] = '400'; +$GLOBALS['~name~_thumb_max_width'] = '70'; +$GLOBALS['~name~_thumb_max_height'] = '70'; +$GLOBALS['~name~_file_name'] = uniqid() . getmypid() . '.jpg'; # comment this out to use uploader's filename + # Define the username and password required to view this form: -define('AUTH_REALM', '~form_name~ administration area'); +define('AUTH_REALM', '~file_name~ administration area'); define('AUTH_USER', 'fixme'); define('AUTH_PASS', 'fixme'); @@ -39,56 +45,95 @@ require_once('code/wfpl/email.php'); require_once('code/db_connect.php'); require_once('code/wfpl/upload.php'); -function ~form_name~_get_fields() { +function ~file_name~_get_fields() { $~name~ = format_~format~($_REQUEST['~name~'], '~name~'); if($_FILES['~name~'] && $_FILES['~name~']['error'] == 0) { - $~name~ = substr(save_uploaded_image('~name~', $GLOBALS['upload_directory']), strlen($GLOBALS['upload_directory'])); + $~name~ = convert_uploaded_image('~name~', $GLOBALS['upload_directory'] . $GLOBALS['~name~_file_name'], $GLOBALS['~name~_max_width'], $GLOBALS['~name~_max_height'], $GLOBALS['~name~_thumb_max_width'], $GLOBALS['~name~_thumb_max_height']); } else { if($_REQUEST['delete_~name~'] == 'Yes') { - $name = ''; + $~name~ = ''; } else { - $~name~ = format_filename($_REQUEST['old_~name~']); + $~name~ = format_image_w_h_thumb_w_h($_REQUEST['old_~name~']); } } - ~form_name~_tem_sets(~php_fields~); + ~file_name~_tem_sets(~php_fields~); return array(~php_fields~); } -function ~form_name~_tem_sets(~php_fields~) { +function ~file_name~_tem_sets(~php_fields~) { tem_set('~name~', $~name~); } # You may pass a "where clause" for the db query. -function ~form_name~_display_listing($where = 'order by ~always_field~ limit 100') { - $rows = db_get_rows('~form_name~', 'id,~always_field~', $where); +function ~file_name~_display_listing($where = 'order by ~always_field~ limit 100') { + $rows = db_get_rows('~table_name~', 'id,~name~', $where); if($rows == false || count($rows) == 0) { + tem_show('empty_listing'); + tem_show('listings'); return false; } foreach($rows as $row) { - list($id, $~always_field~) = $row; + list($id, $~name~) = $row; tem_set('id', $id); if($~always_field~ == '') { $~always_field~ = '--'; } - tem_set('~always_field~', $~always_field~); + ~file_name~_tem_sets(~php_fields~); tem_show('listing_row'); } + tem_show('populated_listing'); tem_show('listings'); return true; } -function ~form_name~_main() { - $ret = _~form_name~_main(); +function ~file_name~_main() { + if(isset($_REQUEST['~file_name~_id'])) { + $ret = ~file_name~_display_main(); + if($ret) { + return $ret; + } + tem_show('display_body'); + } else { + $ret = ~file_name~_edit_main(); + if($ret) { + return $ret; + } + tem_show('edit_body'); + } + + $ret = _~file_name~_main(); if($ret) { return $ret; } - display_messages(); + + # sections displayed with tem_show() will be coppied to the main template if you have one. + tem_show('main_body'); +} + +function ~file_name~_display_main() { + $id = format_int($_REQUEST['~file_name~_id']); + unset($_REQUEST['~file_name~_id']); + if(!$id) { + message('Error: Broken link'); + return './~file_name~'; + } + $row = db_get_row('~table_name~', ~file_name.upper~_DB_FIELDS, 'where id=%i', $id); + if(!$row) { + message('Error: ~singular.cap~ not found'); + return './~file_name~'; + } + list(~php_fields~) = $row; + ~file_name~_tem_sets(~php_fields~); + tem_set('id', $id); } -function _~form_name~_main() { +function ~file_name~_edit_main() { + + +function _~file_name~_main() { # To remove password protection, just delete this block: if (!isset($_SERVER['PHP_AUTH_USER']) || $_SERVER['PHP_AUTH_USER'] != AUTH_USER || $_SERVER['PHP_AUTH_PW'] != AUTH_PASS) { header('WWW-Authenticate: Basic realm="' . AUTH_REALM . '"'); @@ -96,86 +141,79 @@ function _~form_name~_main() { echo '401 Unauthorized'; exit; } - + pulldown('~name~', array('option 1', 'option 2', 'option 3')); - - $edit_id = format_int($_REQUEST['~form_name~_edit_id']); - unset($_REQUEST['~form_name~_edit_id']); + + $edit_id = format_int($_REQUEST['~file_name~_edit_id']); + unset($_REQUEST['~file_name~_edit_id']); if($edit_id) { # add hidden field for database id of row we're editing - tem_set('~form_name~_edit_id', $edit_id); + tem_set('~file_name~_edit_id', $edit_id); tem_show('editing'); } - $delete_id = format_int($_REQUEST['~form_name~_delete_id']); - unset($_REQUEST['~form_name~_delete_id']); + $delete_id = format_int($_REQUEST['~file_name~_delete_id']); + unset($_REQUEST['~file_name~_delete_id']); if($delete_id) { - db_delete('~form_name~', 'where id=%i', $delete_id); - message('Entry deleted.'); + db_delete('~table_name~', 'where id=%i', $delete_id); + message('~singular.cap~ deleted.'); - if(~form_name~_display_listing()) { - return; - } - unset($delete_id); - - # FIXME: what to do after delete? - return; + return './~file_name~'; } if(!$edit_id) { - if(!isset($_REQUEST['~form_name~_new']) && !isset($_REQUEST['~always_field~'])) { - if(~form_name~_display_listing()) { - return; - } + if(!isset($_REQUEST['~file_name~_new']) && !isset($_REQUEST['~always_field~'])) { + ~file_name~_display_listing(); + return; } - + tem_show('new_msg'); } - if(isset($_REQUEST['~always_field~'])) { - list(~php_fields~) = ~form_name~_get_fields(); + if(isset($_POST['~always_field~'])) { + list(~php_fields~) = ~file_name~_get_fields(); if("you're happy with the POSTed values") { if($edit_id) { - db_update('~form_name~', ~form_name.upper~_DB_FIELDS, ~php_fields~, 'where id=%i', $edit_id); - message('Entry updated.'); + db_update('~table_name~', ~file_name.upper~_DB_FIELDS, ~php_fields~, 'where id=%i', $edit_id); + message('~singular.cap~ updated.'); } else { - db_insert('~form_name~', ~form_name.upper~_DB_FIELDS, ~php_fields~); - message('Entry saved.'); + db_insert('~table_name~', ~file_name.upper~_DB_FIELDS, ~php_fields~); + message('~singular.cap~ saved.'); } - if($GLOBALS['~form_name~_form_recipient'] != "fixme@example.com") { - $to = $GLOBALS['~form_name~_form_recipient']; + if($GLOBALS['~file_name~_form_recipient'] != "fixme@example.com") { + $to = $GLOBALS['~file_name~_form_recipient']; + $from = $to; + $reply_to = ''; if(isset($_REQUEST['email']) and valid_email($_REQUEST['email'])) { - $from = $_REQUEST['email']; + $reply_to = $_REQUEST['email']; if($_REQUEST['name'] and ereg('^[a-zA-Z0-9_\' -]*$', $_REQUEST['name']) !== false) { - $from = "$_REQUEST[name] <$from>"; + $reply_to = "$_REQUEST[name] <$reply_to>"; } - } else { - $from = $to; } - $subject = '~form_name~ form submitted'; - $message = tem_run('~form_name~.email.txt'); + $subject = '~plural.cap~ form submitted'; + $message = tem_run('~file_name~.email.txt'); $cc = ''; $bcc = ''; - if(email($from, $to, $subject, $message, $cc, $bcc)) { + if(email($from, $to, $subject, $message, $reply_to, $cc, $bcc)) { message('Due to an internal error, your message could not be sent. Please try again later.'); $error = true; + } else { + message('Message sent'); } } - if($error !== true) { - ~form_name~_display_listing(); - tem_show('thankyou'); - return; + if($error !== true) { + return './~file_name~'; # FIXME is this the page you want to go to after successful form submission? } } - # otherwise, we display the form again. ~form_name~_get_fields() has + # otherwise, we display the form again. ~file_name~_get_fields() has # already put the posted values back into the template engine, so they will # show up in the form fields. You should add some message asking people to # fix their entry in whatever way you require. } elseif($edit_id) { # we've recieved an edit id, but no data. So we grab the values to be edited from the database - list(~php_fields~) = db_get_row('~form_name~', ~form_name.upper~_DB_FIELDS, 'where id=%i', $edit_id); - ~form_name~_tem_sets(~php_fields~); + list(~php_fields~) = db_get_row('~table_name~', ~file_name.upper~_DB_FIELDS, 'where id=%i', $edit_id); + ~file_name~_tem_sets(~php_fields~); } else { # form not submitted, you can set default values like so: #tem_set('~always_field~', 'Yes'); @@ -188,7 +226,8 @@ function _~form_name~_main() { tem_show('edit_msg'); } - tem_show('form'); + tem_show('form'); + tem_show('extra_headers'); } ?>