X-Git-Url: https://jasonwoof.com/gitweb/?a=blobdiff_plain;f=metaform%2Ftemplate.php;h=be61e2f8bbd538ca28c5627ad29144fbcad37fb1;hb=9adfcab5e81171f196b369076da10561b8997dbf;hp=890c49b63a0b10341f4bc3014435991365788f51;hpb=7add2ea3f61e40c5f0f5539ac6e02533c9390db4;p=wfpl.git diff --git a/metaform/template.php b/metaform/template.php index 890c49b..be61e2f 100644 --- a/metaform/template.php +++ b/metaform/template.php @@ -1,10 +1,9 @@ # To save results to a database, you'll need to create the ~form_name~ table -# (the file ~form_name~.sql should help with this), and create a file called -# 'db_connect.php' or 'code/db_connect.php' which calls db_connect() see: +# (the file ~form_name~.sql should help with this), and create the file +# 'code/db_connect.php' which calls db_connect() see: # code/wfpl/examples/db_connect.php # # if you rename any of the database fields, you'll need to update this: @@ -33,20 +32,23 @@ define('AUTH_USER', 'fixme'); define('AUTH_PASS', 'fixme'); -if(!file_exists('code/wfpl/template.php')) { die('This form requires wfpl.'); } require_once('code/wfpl/template.php'); require_once('code/wfpl/format.php'); require_once('code/wfpl/messages.php'); require_once('code/wfpl/email.php'); -require_once('code/wfpl/db.php'); +require_once('code/db_connect.php'); require_once('code/wfpl/upload.php'); function ~form_name~_get_fields() { $~name~ = format_~format~($_REQUEST['~name~'], '~name~'); - if($_FILE['~name~'] && $_FILE['~name~']['error'] == 0) { + if($_FILES['~name~'] && $_FILES['~name~']['error'] == 0) { $~name~ = substr(save_uploaded_image('~name~', $GLOBALS['upload_directory']), strlen($GLOBALS['upload_directory'])); } else { - $~name~ = format_filename($_REQUEST['old_~name~']); + if($_REQUEST['delete_~name~'] == 'Yes') { + $~name~ = ''; + } else { + $~name~ = format_filename($_REQUEST['old_~name~']); + } } ~form_name~_tem_sets(~php_fields~); @@ -57,8 +59,75 @@ function ~form_name~_get_fields() { function ~form_name~_tem_sets(~php_fields~) { tem_set('~name~', $~name~); } + +# You may pass a "where clause" for the db query. +function ~form_name~_display_listing($where = 'order by ~always_field~ limit 100') { + $rows = db_get_rows('~form_name~', 'id,~always_field~', $where); + if($rows == false || count($rows) == 0) { + tem_show('empty_listing'); + tem_show('listings'); + return false; + } -function ~form_name~() { + foreach($rows as $row) { + list($id, $~always_field~) = $row; + tem_set('id', $id); + if($~always_field~ == '') { + $~always_field~ = '--'; + } + tem_set('~always_field~', $~always_field~); + tem_show('listing_row'); + } + tem_show('populated_listing'); + tem_show('listings'); + return true; +} + +function ~form_name~_main() { + if(isset($_REQUEST['~form_name~_id'])) { + $ret = ~form_name~_display_main(); + if($ret) { + return $ret; + } + tem_show('display_body'); + } else { + $ret = ~form_name~_edit_main(); + if($ret) { + return $ret; + } + tem_show('edit_body'); + } + + $ret = _~form_name~_main(); + if($ret) { + return $ret; + } + + # sections displayed with tem_show() will be coppied to the main template if you have one. + tem_show('main_body'); +} + +function ~form_name~_display_main() { + $id = format_int($_REQUEST['~form_name~_id']); + unset($_REQUEST['~form_name~_id']); + if(!$id) { + message('Error: Broken link'); + return './~form_name~'; + } + $row = db_get_row('~form_name~', ~form_name.upper~_DB_FIELDS, 'where id=%i', $id); + if(!$row) { + message('Error: ~singular.cap~ not found'); + return './~form_name~'; + } + list(~php_fields~) = $row; + ~form_name~_tem_sets(~php_fields~); + tem_set('id', $id); +} + +function ~form_name~_edit_main() { + + +function _~form_name~_main() { # To remove password protection, just delete this block: if (!isset($_SERVER['PHP_AUTH_USER']) || $_SERVER['PHP_AUTH_USER'] != AUTH_USER || $_SERVER['PHP_AUTH_PW'] != AUTH_PASS) { header('WWW-Authenticate: Basic realm="' . AUTH_REALM . '"'); @@ -66,75 +135,69 @@ function ~form_name~() { echo '401 Unauthorized'; exit; } - + pulldown('~name~', array('option 1', 'option 2', 'option 3')); - + $edit_id = format_int($_REQUEST['~form_name~_edit_id']); unset($_REQUEST['~form_name~_edit_id']); if($edit_id) { # add hidden field for database id of row we're editing tem_set('~form_name~_edit_id', $edit_id); - tem_sub('editing'); - tem_sub('edit_msg'); + tem_show('editing'); } $delete_id = format_int($_REQUEST['~form_name~_delete_id']); unset($_REQUEST['~form_name~_delete_id']); if($delete_id) { db_delete('~form_name~', 'where id=%i', $delete_id); - message('Entry deleted.'); + message('~singular.cap~ deleted.'); - # FIXME: what to do after delete? - return; + return './~form_name~'; } - if(!$edit_id && !$delet_id) { - tem_sub('new_msg'); + if(!$edit_id) { + if(!isset($_REQUEST['~form_name~_new']) && !isset($_REQUEST['~always_field~'])) { + ~form_name~_display_listing(); + return; + } + + tem_show('new_msg'); } - if(isset($_REQUEST['~always_field~'])) { + if(isset($_POST['~always_field~'])) { list(~php_fields~) = ~form_name~_get_fields(); if("you're happy with the POSTed values") { - if(file_exists($db_connector = 'db_connect.php') || file_exists($db_connector = 'code/db_connect.php')) { - require_once($db_connector); - if($edit_id) { - # uploading nothing means leaving it as is. - if(!$~name~ && $delete_~name~ != 'Yes') { - $~name~ = db_get_value('~form_name~', '~name~', 'where id=%i', $edit_id); - } - - db_update('~form_name~', ~form_name.upper~_DB_FIELDS, ~php_fields~, 'where id=%i', $edit_id); - message('Entry updated.'); - } else { - db_insert('~form_name~', ~form_name.upper~_DB_FIELDS, ~php_fields~); - message('Entry saved.'); - } + if($edit_id) { + db_update('~form_name~', ~form_name.upper~_DB_FIELDS, ~php_fields~, 'where id=%i', $edit_id); + message('~singular.cap~ updated.'); + } else { + db_insert('~form_name~', ~form_name.upper~_DB_FIELDS, ~php_fields~); + message('~singular.cap~ saved.'); } if($GLOBALS['~form_name~_form_recipient'] != "fixme@example.com") { $to = $GLOBALS['~form_name~_form_recipient']; + $from = $to; + $reply_to = ''; if(isset($_REQUEST['email']) and valid_email($_REQUEST['email'])) { - $from = $_REQUEST['email']; + $reply_to = $_REQUEST['email']; if($_REQUEST['name'] and ereg('^[a-zA-Z0-9_\' -]*$', $_REQUEST['name']) !== false) { - $from = "$_REQUEST[name] <$from>"; + $reply_to = "$_REQUEST[name] <$reply_to>"; } - } else { - $from = $to; } $subject = '~form_name~ form submitted'; $message = tem_run('~form_name~.email.txt'); $cc = ''; $bcc = ''; - if(email($from, $to, $subject, $message, $cc, $bcc)) { + if(email($from, $to, $subject, $message, $reply_to, $cc, $bcc)) { message('Due to an internal error, your message could not be sent. Please try again later.'); $error = true; + } else { + message('Message sent'); } } if($error !== true) { - tem_load('~form_name~.html'); - tem_sub('thankyou'); - tem_output(); - exit(); + return './~form_name~'; # FIXME is this the page you want to go to after successful form submission? } } # otherwise, we display the form again. ~form_name~_get_fields() has @@ -152,8 +215,12 @@ function ~form_name~() { tem_set('upload_max_filesize', upload_max_filesize()); - display_messages(); - tem_sub('form'); + # this has to be later in the file because it requres that ~always_field~ be set already + if($edit_id) { + tem_show('edit_msg'); + } + + tem_show('form'); } ?>