metaform/template.php

   1 <?php
   2
   3 # This form requires wfpl. If you didn't recieve wfpl along with this file,
   4 # see: http://jasonwoof.org/wfpl
   5
   6 # This form was auto-generated. If you would like to alter the parameters and
   7 # generate a new one try this URL:
   8 #
   9 # ~metaform_url~
  10
  11
  12 # SETUP
  13 <!--~opt_email_1 start~-->
  14 # To send results by e-mail, all you have to do is set your e-mail address here:
  15 $GLOBALS['~form_name~_form_recipient'] = "fixme@example.com";
  16 <!--~end~--><!--~opt_db_1 start~-->
  17 # To save results to a database, you'll need to create the ~form_name~ table
  18 # (the file ~form_name~.sql should help with this), and create the file
  19 # 'code/db_connect.php' which calls db_connect() see:
  20 # code/wfpl/examples/db_connect.php
  21 #
  22 # if you rename any of the database fields, you'll need to update this:
  23
  24 define('~form_name.upper~_DB_FIELDS', '~db_fields~');
  25 <!--~end~--><!--~upload_settings start~-->
  26 # Set this to the path to your uploads directory. It can be relative to the
  27 # location of this script. IT MUST END WITH A SLASH
  28 $GLOBALS['upload_directory'] = 'uploads/';
  29 <!--~end~--><!--~opt_http_pass_1 start~-->
  30 # Define the username and password required to view this form:
  31 define('AUTH_REALM', '~form_name~ administration area');
  32 define('AUTH_USER', 'fixme');
  33 define('AUTH_PASS', 'fixme');
  34 <!--~end~-->
  35
  36 if(!file_exists('code/wfpl/template.php')) { die('This form requires <a href="http://jasonwoof.org/wfpl">wfpl</a>.'); }
  37 require_once('code/wfpl/template.php');
  38 require_once('code/wfpl/format.php');
  39 require_once('code/wfpl/messages.php');
  40 require_once('code/wfpl/email.php');<!--~opt_db_2 start~-->
  41 require_once('code/db_connect.php');<!--~end~--><!--~image_include start~-->
  42 require_once('code/wfpl/upload.php');<!--~end~-->
  43
  44 function ~form_name~_get_fields() {<!--~formats start~-->
  45         $~name~ = format_~format~($_REQUEST['~name~']<!--~pulldown_format_extra start~-->, '~name~'<!--~end~-->);<!--~end~--><!--~image_upload start~-->
  46         if($_FILES['~name~'] && $_FILES['~name~']['error'] == 0) {
  47                 $~name~ = substr(save_uploaded_image('~name~', $GLOBALS['upload_directory']), strlen($GLOBALS['upload_directory']));
  48         } else {
  49                 if($_REQUEST['delete_~name~'] == 'Yes') {
  50                         $name = '';
  51                 } else {
  52                         $~name~ = format_filename($_REQUEST['old_~name~']);
  53                 }
  54         }<!--~end~-->
  55
  56         ~form_name~_tem_sets(~php_fields~);
  57
  58         return array(~php_fields~);
  59 }
  60
  61 function ~form_name~_tem_sets(~php_fields~) {<!--~tem_sets start~-->
  62         tem_set('~name~', $~name~);<!--~end~-->
  63 }
  64 <!--~opt_listing_2 start~-->
  65 # You may pass a "where clause" for the db query.
  66 function ~form_name~_display_listing($where = 'order by ~always_field~ limit 100') {
  67         $rows = db_get_rows('~form_name~', 'id,~always_field~', $where);
  68         if($rows == false || count($rows) == 0) {
  69                 return false;
  70         }
  71
  72         foreach($rows as $row) {
  73                 list($id, $~always_field~) = $row;
  74                 tem_set('id', $id);
  75                 if($~always_field~ == '') {
  76                         $~always_field~ = '--';
  77                 }
  78                 tem_set('~always_field~', $~always_field~);
  79                 tem_sub('listing_row');
  80         }
  81         tem_sub('listings');
  82         return true;
  83 }
  84 <!--~end~-->
  85 function ~form_name~_main() {<!--~opt_http_pass_2 start~-->
  86         # To remove password protection, just delete this block:
  87         if (!isset($_SERVER['PHP_AUTH_USER']) || $_SERVER['PHP_AUTH_USER'] != AUTH_USER || $_SERVER['PHP_AUTH_PW'] != AUTH_PASS) {
  88                 header('WWW-Authenticate: Basic realm="' . AUTH_REALM . '"');
  89                 header('HTTP/1.0 401 Unauthorized');
  90                 echo '401 Unauthorized';
  91                 exit;
  92         }
  93         <!--~end~--><!--~pulldowns start~-->
  94         pulldown('~name~', array('option 1', 'option 2', 'option 3'));
  95         <!--~end~--><!--~opt_db_3 start~-->
  96         $edit_id = format_int($_REQUEST['~form_name~_edit_id']);
  97         unset($_REQUEST['~form_name~_edit_id']);
  98         if($edit_id) {
  99                 # add hidden field for database id of row we're editing
 100                 tem_set('~form_name~_edit_id', $edit_id);
 101                 tem_sub('editing');
 102         }
 103
 104         $delete_id = format_int($_REQUEST['~form_name~_delete_id']);
 105         unset($_REQUEST['~form_name~_delete_id']);
 106         if($delete_id) {
 107                 db_delete('~form_name~', 'where id=%i', $delete_id);
 108                 message('Entry deleted.');<!--~opt_listing_3 start~-->
 109
 110                 if(~form_name~_display_listing()) {
 111                         return;
 112                 }
 113                 unset($delete_id);<!--~end~--><!--~opt_listing_3_else start~-->
 114
 115                 # FIXME: what to do after delete?
 116                 return;<!--~end~-->
 117         }
 118
 119         if(!$edit_id) {<!--~opt_listing_1 start~-->
 120                 if(!isset($_REQUEST['~form_name~_new']) && !isset($_REQUEST['~always_field~'])) {
 121                         if(~form_name~_display_listing()) {
 122                                 return;
 123                         }
 124                 }
 125                 <!--~end~-->
 126                 tem_sub('new_msg');
 127         }<!--~end~-->
 128
 129         if(isset($_REQUEST['~always_field~'])) {
 130                 list(~php_fields~) = ~form_name~_get_fields();
 131
 132                 if("you're happy with the POSTed values") {<!--~opt_db_4 start~-->
 133                         if($edit_id) {
 134                                 db_update('~form_name~', ~form_name.upper~_DB_FIELDS, ~php_fields~, 'where id=%i', $edit_id);
 135                                 message('Entry updated.');
 136                         } else {
 137                                 db_insert('~form_name~', ~form_name.upper~_DB_FIELDS, ~php_fields~);
 138                                 message('Entry saved.');
 139                         }<!--~end~--><!--~opt_email_2 start~-->
 140                         if($GLOBALS['~form_name~_form_recipient'] != "fixme@example.com") {
 141                                 $to = $GLOBALS['~form_name~_form_recipient'];
 142                                 if(isset($_REQUEST['email']) and valid_email($_REQUEST['email'])) {
 143                                         $from = $_REQUEST['email'];
 144                                         if($_REQUEST['name'] and ereg('^[a-zA-Z0-9_\' -]*$', $_REQUEST['name']) !== false) {
 145                                                 $from = "$_REQUEST[name] <$from>";
 146                                         }
 147                                 } else {
 148                                         $from = $to;
 149                                 }
 150                                 $subject = '~form_name~ form submitted';
 151                                 $message = tem_run('~form_name~.email.txt');
 152                                 $cc = '';
 153                                 $bcc = '';
 154                                 if(email($from, $to, $subject, $message, $cc, $bcc)) {
 155                                         message('Due to an internal error, your message could not be sent. Please try again later.');
 156                                         $error = true;
 157                                 }
 158                         }<!--~end~-->
 159                         if($error !== true) {<!--~opt_listing_4 start~-->
 160                                 ~form_name~_display_listing();<!--~end~--><!--~opt_listing_4_else start~-->
 161                                 tem_sub('thankyou');<!--~end~-->
 162                                 return;
 163                         }
 164                 }
 165                 # otherwise, we display the form again. ~form_name~_get_fields() has
 166                 # already put the posted values back into the template engine, so they will
 167                 # show up in the form fields. You should add some message asking people to
 168                 # fix their entry in whatever way you require.<!--~opt_db_5 start~-->
 169         } elseif($edit_id) {
 170                 # we've recieved an edit id, but no data. So we grab the values to be edited from the database
 171                 list(~php_fields~) = db_get_row('~form_name~', ~form_name.upper~_DB_FIELDS, 'where id=%i', $edit_id);
 172                 ~form_name~_tem_sets(~php_fields~);<!--~end~-->
 173         } else {
 174                 # form not submitted, you can set default values like so:
 175                 #tem_set('~always_field~', 'Yes');
 176         }<!--~upload_max start~-->
 177
 178         tem_set('upload_max_filesize', upload_max_filesize());<!--~end~-->
 179
 180         # this has to be later in the file because it requres that ~always_field~ be set already
 181         if($edit_id) {
 182                 tem_sub('edit_msg');
 183         }
 184
 185         tem_sub('form');
 186 }
 187
 188 ?>