/admin_pages: listing sorts, missing image doesn't bork ckeditor

[wfpl-cms.git] / admin_pages.php

<?php

# This form requires wfpl. See: http://sametwice.com/wfpl

define('ADMIN_PAGES_DB_FIELDS', 'title,filename,navbar,nav_title,content,description,keywords');


function format_cms_filename($str) {
        $str = format_filename($str);
        $str = str_replace('.', '_', $str);
        return $str;
}


function admin_pages_get_fields() {
        $data = array();

        $data['title'] = format_oneline(_REQUEST_cut('title'));
        $data['filename'] = format_cms_filename(_REQUEST_cut('filename'));
        $data['navbar'] = format_options(_REQUEST_cut('navbar'), 'navbar');
        $data['nav_title'] = format_oneline(_REQUEST_cut('nav_title'));
        $data['content'] = format_unix(_REQUEST_cut('content'));
        $data['description'] = format_unix(_REQUEST_cut('description'));
        $data['keywords'] = format_unix(_REQUEST_cut('keywords'));

        return $data;
}


function admin_pages_main() {
        session_auth_must('edit_page');

        $id = _REQUEST_cut('edit_id');
        if($id) {
                return admin_pages_main_form($id);
        }

        $id = _REQUEST_cut('admin_pages_delete_id');
        if($id) {
                return admin_pages_main_delete($id);
        }

        if(_REQUEST_cut('new')) {
                return admin_pages_main_form();
        }

        if(_REQUEST_cut('list')) {
                return admin_pages_main_listing();
        }

        $id = _REQUEST_cut('id');
        if($id) {
                return admin_pages_main_display($id);
        }

        if(isset($_POST['title'])) {
                return admin_pages_main_form();
        }

        # default action:
        return admin_pages_main_listing();
}

# admin-only access to view pages with no filename
function admin_pages_main_display($id) {
        cms_display_content($GLOBALS['wfpl_main_template'], 'where id=%i', $id);
}

function admin_pages_main_delete($id) {
        db_delete('cms_pages', 'where id=%i', $id);
        message('Page deleted.');
        return './admin_pages';
}

# get all images from admin_images (for cms)
function admin_pages_get_images() {
        $out = [];
        $rows = db_get_assocs('cms_images', 'image,name,caption,sizes', 'order by name, caption, image');
        if ($rows) {
                $id = 0;
                foreach($rows as &$row) {
                        $parts = explode(' ', $row['image'] . '      ', 7);
                        $out[] = [
                                'id' => '' . $id,
                                'thumb' => $parts[3],
                                'image' => $parts[0],
                                'image_width' => (int)$parts[1],
                                'image_height' => (int)$parts[2],
                                'sizes' => $row['sizes'],
                                'name' => $row['name'],
                                'caption' => $row['caption']
                        ];
                        $id += 1;
                } unset($row);
        }
        return $out;
}

function admin_pages_main_listing() {
        $data = array();
        $desc = '';
        $sort = _REQUEST_cut('sort');
        if ($sort && substr($sort, 0, 1) === '-') {
                $sort = substr($sort, 1);
                $desc = ' DESC ';
        } else {
                $data["sorting-by-$sort"] = '-';
        }
        $legal_sorts = explode(',', ADMIN_PAGES_DB_FIELDS);
        if (!$sort || !in_array($sort, $legal_sorts)) {
                $sort = 'filename';
        }

        $data['rows'] = db_get_assocs('cms_pages', 'id,coalesce(nullif(nav_title,\'\'), title) as title,filename', "order by $sort $desc limit 1000");
        tem_set('listing', $data);
}

function admin_pages_main_form($id = false) {
        if($id) {
                tem_set('id', $id);
        }

        tem_set('$basename', 'admin_pages');

        $navbar_options = array(array('ignored', 'Not at all'), array('0', 'First'));
        $rows = db_get_rows('cms_pages', 'id,coalesce(nullif(nav_title,\'\'), title) as title,navbar', 'where navbar != 0 order by navbar');
        if($rows) for($i = 0; $i < count($rows); ++$i) {
                list($other_id, $other_title, $other_ord) = $rows[$i];
                if($other_id != $id) { # don't display ourselves
                        $navbar_options[] = array($i + 1, "After \"$other_title\"");
                }
        }
        pulldown('navbar', $navbar_options, PULLDOWN_2D);

        if(isset($_POST['title'])) {
                $data = admin_pages_get_fields();

                # We'll save anything (no required fields)

                $data['navbar'] = db_reposition('cms_pages', $id, $data['navbar'], 'navbar', 'page');

                if($data['navbar'] && $data['filename'] == '') {
                        message('This page was removed from the navigation column because it does not have a filename. (Pages without filenames are visible only to admins.)');
                        $data['navbar'] = 0;
                }

                if($id) {
                        db_update_assoc('cms_pages', $data, 'where id=%i', $id);
                        $id = $id;
                        message('Page updated.');
                } else {
                        db_insert_assoc('cms_pages', $data);
                        $id = db_auto_id();
                        message('Page saved.');
                }
                if($data['filename']) {
                        return "./$data[filename]";
                } else {
                        return "./admin_pages?id=$id";
                }
        } elseif($id) {
                # we've recieved an edit id, but no data. So we grab the values to be edited from the database
                $data = db_get_assoc('cms_pages', ADMIN_PAGES_DB_FIELDS, 'where id=%i', $id);
                if($data['navbar']) {
                        $data['navbar'] = db_count('cms_pages', 'where navbar!=0 && navbar<%i', $data['navbar']);
                } else {
                        $data['navbar'] = 'ignored';
                }
        } else {
                # form not submitted, set default values:
                $data = array('filename' => format_cms_filename($_REQUEST['new_filename']));
        }

        tem_set('wfpl_images_json', json_encode(admin_pages_get_images()));
        tem_set('form', $data);
        tem_set('$head'); # wysiwyg init goes in <head>
}