X-Git-Url: https://jasonwoof.com/gitweb/?a=blobdiff_plain;f=metaform%2Ftemplate.php;h=b591fbcba2db4d74494d71d4ac7877bc4ee0b996;hb=5ee58fc7dd8f44e53075e6898f89409c980ad34d;hp=48fb37f53cd0608cbae4404a70ab285a1230646c;hpb=d98d81886649a863d0e902f7c4e63b1257217e1f;p=wfpl.git diff --git a/metaform/template.php b/metaform/template.php index 48fb37f..b591fbc 100644 --- a/metaform/template.php +++ b/metaform/template.php @@ -1,10 +1,9 @@ # To save results to a database, you'll need to create the ~form_name~ table -# (the file ~form_name~.sql should help with this), and create a file called -# 'db_connect.php' or 'code/db_connect.php' which calls db_connect() see: +# (the file ~form_name~.sql should help with this), and create the file +# 'code/db_connect.php' which calls db_connect() see: # code/wfpl/examples/db_connect.php # # if you rename any of the database fields, you'll need to update this: @@ -33,20 +32,23 @@ define('AUTH_USER', 'fixme'); define('AUTH_PASS', 'fixme'); -if(!file_exists('code/wfpl/template.php')) { die('This form requires wfpl.'); } require_once('code/wfpl/template.php'); require_once('code/wfpl/format.php'); require_once('code/wfpl/messages.php'); require_once('code/wfpl/email.php'); -require_once('db_connect.php'); +require_once('code/db_connect.php'); require_once('code/wfpl/upload.php'); function ~form_name~_get_fields() { $~name~ = format_~format~($_REQUEST['~name~'], '~name~'); - if($_FILE['~name~'] && $_FILE['~name~']['error'] == 0) { + if($_FILES['~name~'] && $_FILES['~name~']['error'] == 0) { $~name~ = substr(save_uploaded_image('~name~', $GLOBALS['upload_directory']), strlen($GLOBALS['upload_directory'])); } else { - $~name~ = format_filename($_REQUEST['old_~name~']); + if($_REQUEST['delete_~name~'] == 'Yes') { + $~name~ = ''; + } else { + $~name~ = format_filename($_REQUEST['old_~name~']); + } } ~form_name~_tem_sets(~php_fields~); @@ -62,6 +64,8 @@ function ~form_name~_tem_sets(~php_fields~) { function ~form_name~_display_listing($where = 'order by ~always_field~ limit 100') { $rows = db_get_rows('~form_name~', 'id,~always_field~', $where); if($rows == false || count($rows) == 0) { + tem_show('empty_listing'); + tem_show('listings'); return false; } @@ -72,13 +76,58 @@ function ~form_name~_display_listing($where = 'order by ~always_field~ limit 100 $~always_field~ = '--'; } tem_set('~always_field~', $~always_field~); - tem_sub('listing_row'); + tem_show('listing_row'); } - tem_sub('listings'); + tem_show('populated_listing'); + tem_show('listings'); return true; } -function ~form_name~() { +function ~form_name~_main() { + if(isset($_REQUEST['~form_name~_id'])) { + $ret = ~form_name~_display_main(); + if($ret) { + return $ret; + } + tem_show('display_body'); + } else { + $ret = ~form_name~_edit_main(); + if($ret) { + return $ret; + } + tem_show('edit_body'); + } + + $ret = _~form_name~_main(); + if($ret) { + return $ret; + } + + # sections displayed with tem_show() will be coppied to the main template if you have one. + tem_show('main_body'); +} + +function ~form_name~_display_main() { + $id = format_int($_REQUEST['~form_name~_id']); + unset($_REQUEST['~form_name~_id']); + if(!$id) { + message('Error: Broken link'); + return './~form_name~'; + } + $row = db_get_row('~form_name~', ~form_name.upper~_DB_FIELDS, 'where id=%i', $id); + if(!$row) { + message('Error: Not found'); + return './~form_name~'; + } + list(~php_fields~) = $row; + ~form_name~_tem_sets(~php_fields~); + tem_set('id', $id); +} + +function ~form_name~_edit_main() { + + +function _~form_name~_main() { # To remove password protection, just delete this block: if (!isset($_SERVER['PHP_AUTH_USER']) || $_SERVER['PHP_AUTH_USER'] != AUTH_USER || $_SERVER['PHP_AUTH_PW'] != AUTH_PASS) { header('WWW-Authenticate: Basic realm="' . AUTH_REALM . '"'); @@ -94,73 +143,61 @@ function ~form_name~() { if($edit_id) { # add hidden field for database id of row we're editing tem_set('~form_name~_edit_id', $edit_id); - tem_sub('editing'); + tem_show('editing'); } $delete_id = format_int($_REQUEST['~form_name~_delete_id']); unset($_REQUEST['~form_name~_delete_id']); if($delete_id) { db_delete('~form_name~', 'where id=%i', $delete_id); - message('Entry deleted.'); - - if(~form_name~_display_listing()) { - return; - } - unset($delete_id); + message('Entry deleted.'); - # FIXME: what to do after delete? - return; + return './~form_name~'; } - if(!$edit_id && !$delet_id) { + if(!$edit_id) { if(!isset($_REQUEST['~form_name~_new']) && !isset($_REQUEST['~always_field~'])) { - if(~form_name~_display_listing()) { - return; - } + ~form_name~_display_listing(); + return; } - tem_sub('new_msg'); + tem_show('new_msg'); } if(isset($_REQUEST['~always_field~'])) { list(~php_fields~) = ~form_name~_get_fields(); if("you're happy with the POSTed values") { - if($edit_id) { - # uploading nothing means leaving it as is. - if(!$~name~ && $delete_~name~ != 'Yes') { - $~name~ = db_get_value('~form_name~', '~name~', 'where id=%i', $edit_id); - } - + if($edit_id) { db_update('~form_name~', ~form_name.upper~_DB_FIELDS, ~php_fields~, 'where id=%i', $edit_id); - message('Entry updated.'); + message('Updated.'); } else { db_insert('~form_name~', ~form_name.upper~_DB_FIELDS, ~php_fields~); - message('Entry saved.'); + message('Saved.'); } if($GLOBALS['~form_name~_form_recipient'] != "fixme@example.com") { $to = $GLOBALS['~form_name~_form_recipient']; + $from = $to; + $reply_to = ''; if(isset($_REQUEST['email']) and valid_email($_REQUEST['email'])) { - $from = $_REQUEST['email']; + $reply_to = $_REQUEST['email']; if($_REQUEST['name'] and ereg('^[a-zA-Z0-9_\' -]*$', $_REQUEST['name']) !== false) { - $from = "$_REQUEST[name] <$from>"; + $reply_to = "$_REQUEST[name] <$reply_to>"; } - } else { - $from = $to; } $subject = '~form_name~ form submitted'; $message = tem_run('~form_name~.email.txt'); $cc = ''; $bcc = ''; - if(email($from, $to, $subject, $message, $cc, $bcc)) { + if(email($from, $to, $subject, $message, $reply_to, $cc, $bcc)) { message('Due to an internal error, your message could not be sent. Please try again later.'); $error = true; + } else { + message('Message sent'); } } - if($error !== true) { - ~form_name~_display_listing(); - tem_sub('thankyou'); - return; + if($error !== true) { + return './~form_name~'; # FIXME is this the page you want to go to after successful form submission? } } # otherwise, we display the form again. ~form_name~_get_fields() has @@ -180,10 +217,10 @@ function ~form_name~() { # this has to be later in the file because it requres that ~always_field~ be set already if($edit_id) { - tem_sub('edit_msg'); + tem_show('edit_msg'); } - tem_sub('form'); + tem_show('form'); } ?>