X-Git-Url: https://jasonwoof.com/gitweb/?a=blobdiff_plain;f=metaform%2Ftemplate.php;h=b591fbcba2db4d74494d71d4ac7877bc4ee0b996;hb=5ee58fc7dd8f44e53075e6898f89409c980ad34d;hp=76ce31faf71ec3a7671e7488ac529bd5cf9c9fc1;hpb=cf0e2ed3d4be7a68b8a4480ebded912361521e6e;p=wfpl.git diff --git a/metaform/template.php b/metaform/template.php index 76ce31f..b591fbc 100644 --- a/metaform/template.php +++ b/metaform/template.php @@ -1,10 +1,9 @@ -if(!file_exists('code/wfpl/template.php')) { die('This form requires wfpl.'); } require_once('code/wfpl/template.php'); require_once('code/wfpl/format.php'); require_once('code/wfpl/messages.php'); @@ -47,7 +45,7 @@ function ~form_name~_get_fields() { $~name~ = substr(save_uploaded_image('~name~', $GLOBALS['upload_directory']), strlen($GLOBALS['upload_directory'])); } else { if($_REQUEST['delete_~name~'] == 'Yes') { - $name = ''; + $~name~ = ''; } else { $~name~ = format_filename($_REQUEST['old_~name~']); } @@ -66,6 +64,8 @@ function ~form_name~_tem_sets(~php_fields~) { function ~form_name~_display_listing($where = 'order by ~always_field~ limit 100') { $rows = db_get_rows('~form_name~', 'id,~always_field~', $where); if($rows == false || count($rows) == 0) { + tem_show('empty_listing'); + tem_show('listings'); return false; } @@ -76,21 +76,58 @@ function ~form_name~_display_listing($where = 'order by ~always_field~ limit 100 $~always_field~ = '--'; } tem_set('~always_field~', $~always_field~); - tem_sub('listing_row'); + tem_show('listing_row'); } - tem_sub('listings'); + tem_show('populated_listing'); + tem_show('listings'); return true; } -function ~form_name~_main() { +function ~form_name~_main() { + if(isset($_REQUEST['~form_name~_id'])) { + $ret = ~form_name~_display_main(); + if($ret) { + return $ret; + } + tem_show('display_body'); + } else { + $ret = ~form_name~_edit_main(); + if($ret) { + return $ret; + } + tem_show('edit_body'); + } + $ret = _~form_name~_main(); if($ret) { return $ret; } - display_messages(); + + # sections displayed with tem_show() will be coppied to the main template if you have one. + tem_show('main_body'); +} + +function ~form_name~_display_main() { + $id = format_int($_REQUEST['~form_name~_id']); + unset($_REQUEST['~form_name~_id']); + if(!$id) { + message('Error: Broken link'); + return './~form_name~'; + } + $row = db_get_row('~form_name~', ~form_name.upper~_DB_FIELDS, 'where id=%i', $id); + if(!$row) { + message('Error: Not found'); + return './~form_name~'; + } + list(~php_fields~) = $row; + ~form_name~_tem_sets(~php_fields~); + tem_set('id', $id); } -function _~form_name~_main() { +function ~form_name~_edit_main() { + + +function _~form_name~_main() { # To remove password protection, just delete this block: if (!isset($_SERVER['PHP_AUTH_USER']) || $_SERVER['PHP_AUTH_USER'] != AUTH_USER || $_SERVER['PHP_AUTH_PW'] != AUTH_PASS) { header('WWW-Authenticate: Basic realm="' . AUTH_REALM . '"'); @@ -106,32 +143,25 @@ function _~form_name~_main() { if($edit_id) { # add hidden field for database id of row we're editing tem_set('~form_name~_edit_id', $edit_id); - tem_sub('editing'); + tem_show('editing'); } $delete_id = format_int($_REQUEST['~form_name~_delete_id']); unset($_REQUEST['~form_name~_delete_id']); if($delete_id) { db_delete('~form_name~', 'where id=%i', $delete_id); - message('Entry deleted.'); - - if(~form_name~_display_listing()) { - return; - } - unset($delete_id); + message('Entry deleted.'); - # FIXME: what to do after delete? - return; + return './~form_name~'; } if(!$edit_id) { if(!isset($_REQUEST['~form_name~_new']) && !isset($_REQUEST['~always_field~'])) { - if(~form_name~_display_listing()) { - return; - } + ~form_name~_display_listing(); + return; } - tem_sub('new_msg'); + tem_show('new_msg'); } if(isset($_REQUEST['~always_field~'])) { @@ -140,34 +170,34 @@ function _~form_name~_main() { if("you're happy with the POSTed values") { if($edit_id) { db_update('~form_name~', ~form_name.upper~_DB_FIELDS, ~php_fields~, 'where id=%i', $edit_id); - message('Entry updated.'); + message('Updated.'); } else { db_insert('~form_name~', ~form_name.upper~_DB_FIELDS, ~php_fields~); - message('Entry saved.'); + message('Saved.'); } if($GLOBALS['~form_name~_form_recipient'] != "fixme@example.com") { $to = $GLOBALS['~form_name~_form_recipient']; + $from = $to; + $reply_to = ''; if(isset($_REQUEST['email']) and valid_email($_REQUEST['email'])) { - $from = $_REQUEST['email']; + $reply_to = $_REQUEST['email']; if($_REQUEST['name'] and ereg('^[a-zA-Z0-9_\' -]*$', $_REQUEST['name']) !== false) { - $from = "$_REQUEST[name] <$from>"; + $reply_to = "$_REQUEST[name] <$reply_to>"; } - } else { - $from = $to; } $subject = '~form_name~ form submitted'; $message = tem_run('~form_name~.email.txt'); $cc = ''; $bcc = ''; - if(email($from, $to, $subject, $message, $cc, $bcc)) { + if(email($from, $to, $subject, $message, $reply_to, $cc, $bcc)) { message('Due to an internal error, your message could not be sent. Please try again later.'); $error = true; + } else { + message('Message sent'); } } - if($error !== true) { - ~form_name~_display_listing(); - tem_sub('thankyou'); - return; + if($error !== true) { + return './~form_name~'; # FIXME is this the page you want to go to after successful form submission? } } # otherwise, we display the form again. ~form_name~_get_fields() has @@ -187,10 +217,10 @@ function _~form_name~_main() { # this has to be later in the file because it requres that ~always_field~ be set already if($edit_id) { - tem_sub('edit_msg'); + tem_show('edit_msg'); } - tem_sub('form'); + tem_show('form'); } ?>