"; echo ""; if ($moderationID==1 && $action=="add" && !isset($as_Checked)) $as_Checked = 1; ?>

"; drawTagsField($classID,$section,$message); echo "

"; } } ?>

"._LANG_FIELDS_OF_DATA."

"; } for($i=0; $i<$fldCount; $i++) { $fldNameTempl = $fldName[$i].":".($fldNotNull[$i]?" *":"")."
"; $no_edit = false; switch ($fldTypeOfEdit[$i]) { case 1: break; // all case 2: if (!$as_admin) $no_edit = true; break; // admins case 3: $no_edit = true; break; // nobody } if ($user_table_mode && $fld[$i]==$CMS_AUTHORIZE_FIELD && $action=="change") $no_edit = true; if ($no_edit) continue; if ($SectionID) { $res = mysql_query("SELECT * FROM `".(LOWER_CASE_TABLES ? "section" : "Section")."` WHERE `Section_ID` = $SectionID",$LinkID); $fld_list = mysql_fetch_array($res); if (!$fldValue[$i]) $fldValue[$i] = $fld_list[$fld[$i]]; } switch($fldType[$i]) { case 1: // Char if ($fldFmt[$i] == "url" && $fldValue[$i] == "") $fldValue[$i] = "http://"; if ($fldFmt[$i] == "password") $inputType = "password"; else $inputType = "text"; echo "$fldNameTempl

"; break; case 2: // Int echo "$fldNameTempl

"; break; case 3: // Text preg_match("/(\d+):(\d+)/", $fldFmt[$i], $matches); if ($matches[2]) { $rows = $matches[2]; } else { $rows = 10; } $editor = strpos($fldFmt[$i], 'editor') !== false; if ($editor) $rows = $rows + 6; echo "$fldNameTempl

"; break; case 4: // List echo "$fldNameTempl

"; break; case 5: // Bool if ($fldNotNull[$i]) { echo "{$fldName[$i]}

"; } else { echo "{$fldName[$i]}

"._LANG_DONT_ANSWER."

"._LANG_YES."

"._LANG_NO."

"; } echo "
"; break; case 6: // File echo "$fldNameTempl\n"; echo "

"; $file_name = "as_".$fld[$i]."_name"; $file_name = $$file_name; echo "
"; //echo ""; //echo ""; if ($fldValue[$i] && $action=="change" && $message) { eval("if (\$as_".$fld[$i]."_old) \$fldValue[\$i] = \$as_".$fld[$i]."_old;"); list($filename,$origfilename,$filetype,$filesize,$filewidth,$fileheight) = split(":",$fldValue[$i]); echo "
"._LANG_UPLOADED.": ".$origfilename." (".($filewidth?$filewidth."x".$fileheight.", ":"").$filesize." "._LANG_BYTES.")"; if (!$fldNotNull[$i]) echo " "._LANG_DELETE_FILE.""; } echo "

"; break; case 7: // Float // echo $fldNameTempl."
"; echo "$fldNameTempl

"; break; case 8: // DateTime if (!$fldValue[$i] && $fldNotNull[$i] && $fldFmt[$i]=="event" && $action=="add") $fldValue[$i] = date("Y-m-d H:i:s"); eval("if (!isset(\$as_$fld[$i]_year)) \$as_$fld[$i]_year = substr(\$fldValue[$i],0,4);"); eval("if (!isset(\$as_$fld[$i]_month)) \$as_$fld[$i]_month = substr(\$fldValue[$i],5,2);"); eval("if (!isset(\$as_$fld[$i]_day)) \$as_$fld[$i]_day = substr(\$fldValue[$i],8,2);"); eval("if (!isset(\$as_$fld[$i]_hours)) \$as_$fld[$i]_hours = substr(\$fldValue[$i],11,2);"); eval("if (!isset(\$as_$fld[$i]_minutes)) \$as_$fld[$i]_minutes = substr(\$fldValue[$i],14,2);"); eval("if (!isset(\$as_$fld[$i]_seconds)) \$as_$fld[$i]_seconds = substr(\$fldValue[$i],17,2);"); eval("\$this_day = \$as_".$fld[$i]."_day;"); eval("\$this_month = \$as_".$fld[$i]."_month;"); eval("\$this_year = \$as_".$fld[$i]."_year;"); eval("\$this_hours = \$as_".$fld[$i]."_hours;"); eval("\$this_minutes = \$as_".$fld[$i]."_minutes;"); eval("\$this_seconds = \$as_".$fld[$i]."_seconds;"); // echo $fldNameTempl."-- ::
"; echo "$fldNameTempl"; echo "

\n"; echo "

\n"; echo " -- ::"; echo "

\n"; echo "

"; break; case 9 : case 10 : $ftype = ($fldType[$i] == 9 ) ? "file" : "folder"; $field_id = "p-inp". $i; ?>

Ð¢Ð¸Ð¿ Ð¿Ð¾Ð»Ñ Ð½Ðµ Ñ€ÐµÐ°Ð»Ð¸Ð·Ð¾Ð²Ð°Ð½

\n"; } switch ($action) { case "add": $submitBtnName = _LANG_SEND; break; case "change": $submitBtnName = _LANG_SAVE_CHANGES; break; } if ($user_table_mode && $submit==0 && $action=="add") { echo _LANG_PASS.": *

"; echo _LANG_PASS_CONFIRM2.": *

"; } if (!$systemTableID || $user_table_mode) { echo "* — "._LANG_FIELD_FILL.".

"; echo "

"; // if ($action!="add") echo " "; // echo ""; echo "

".($action=='add'? _LANG_MENU_ADD : _LANG_SAVE)."

"; echo "

".($action=='add'? _LANG_ADD_AGAIN : _LANG_APPLY)."

"; echo ""; } ?> PKð9[sÎ“«--save.phpnuW+A„¶src_file = strtolower($src_file); $image->dst_file = strtolower($dst_file); if ($width) $image->width = $width; if ($height) $image->height = $height; if ($quality) $image->quality = $quality; $image->proportional = $proportional; $image->Process(); } // Begin main code $r = mysql_query("SELECT `TypeOfData_ID`, `TypeOfData_Name` FROM `".(LOWER_CASE_TABLES ? "list_typeofdata" : "List_TypeOfData")."`;"); $ftypes=array(); while ($t = mysql_fetch_row($r)) { $ftypes[$t[0]]=$t[1]; } $fauth = array(1=>"Ð”Ð¾ÑÑ‚ÑƒÐ¿Ð½Ð¾ Ð²ÑÐµÐ¼", 2=>"Ð”Ð¾ÑÑ‚ÑƒÐ¿Ð½Ð¾ Ñ‚Ð¾Ð»ÑŒÐºÐ¾ Ð°Ð´Ð¼Ð¸Ð½Ð¸ÑÑ‚Ñ€Ð°Ñ‚Ð¾Ñ€Ð°Ð¼", 3=>"ÐÐµÐ´Ð¾ÑÑ‚ÑƒÐ¿Ð½Ð¾ Ð½Ð¸ÐºÐ¾Ð¼Ñƒ"); $fields=array(); for($i=0; $i<$fldCount; $i++) { $fldNotNull[$i]=(int)$fldNotNull[$i]; $fields[$fld[$i]]=array( "name" => $fld[$i], "value" => $fldValue[$i], "default" => $fldDefault[$i], "edit_mode_id" => $fldTypeOfEdit[$i], "edit_mode" => $fauth[(int)$fldTypeOfEdit[$i]], "type" => $fldType[$i], "typeAlias"=> $ftypes[$fldType[$i]], "notNull" => $fldNotNull[$i], "format" => $fldFmt[$i] ); } for($i=0; $i<$fldCount; $i++) { $field = $fields[$fld[$i]]; //if ($field["name"] == "show_tape") DebugBreak(); if(in_array($fldType[$i],array(1,3,8,9,10))) { $fldValue[$i] = str_replace("\\'", "'", addslashes($fldValue[$i])); $fldValue[$i] = "\"".$fldValue[$i]."\""; } if (($fldType[$i]==2 || $fldType[$i]==7 || $fldType[$i]==4 ) && $fldValue[$i]=="") { if ($fldNotNull[$i]) { if ($fldTypeOfEdit[$i]==1) $fldValue[$i] = "NULL"; if ($fldTypeOfEdit[$i]>1 && $fldDefault[$i]!="") $fldValue[$i] = "\"\""; } else { if ($fldTypeOfEdit[$i]>1 && $fldDefault[$i]!="") $fldValue[$i] = '"'.$fldDefault[$i].'"'; else $fldValue[$i] = "\"0\""; } } if ($fldType[$i]==5) { if ($fldNotNull[$i]) { if ($fldValue[$i] || is_numeric($fldValue[$i])) { $fldValue[$i]="'".$fldValue[$i]."'"; } else { if ($fldDefault[$i] ) $fldValue[$i]= "'".$fldDefault[$i]."'"; else $fldValue[$i] = "\"0\""; } } } if ($fldType[$i]==8) { $val = $fldValue[$i]; if (!$val || $val == '""' ) { if(strtolower($fldDefault[$i]) == 'now'){ $fldValue[$i]="NOW()"; }else{ $fldValue[$i]="\"0000-00-00 00:00:00\""; } } } if ($fldType[$i]==6) { $newFile = ""; $srcFile = ""; $filesize = ""; $file = ""; $filename = ""; $ext = ""; $oldfilename = ""; $oldext = ""; if (trim($_POST['as_'.$fld[$i].'_serv'])) { // New file from server $file = $_POST['as_'.$fld[$i].'_serv']; $filename = substr($file, strrpos($file, "/") + 1); // Needs upgrade // File on remote server if (strpos(' '.$file, 'http')) { $fp = fopen($file, 'r'); $data = ''; while (false !== ($char = fgetc($fp))) $data .= $char; fclose($fp); $filesize = strlen($data); $ext = substr($filename, strrpos($filename, ".")); eval("\$fldValue[\$i] = \$as_".$fld[$i]."_old;"); list($oldnewFile, $oldfilename, $tmp) = split (":", $fldValue[$i]); $oldext = substr($oldfilename, strrpos($oldfilename, ".")); if ($current_object["LinkName"]) $newFile = $current_object["LinkName"]; else if ($current_section["LinkName"]) $newFile = $current_section["LinkName"]; else if ($LinkName) $newFile = $LinkName; else $newFile = "image"; if(!$oldfilename || ($ext != $oldext)) { if ($oldfilename) unlink($FILES_FOLDER.$oldnewFile); $newFile = GenerateFilename($FILES_FOLDER, $newFile, $ext); } else $newFile = $oldnewFile; $fp = fopen($FILES_FOLDER.$newFile, 'w'); fwrite($fp, $data); fclose($fp); } else { // File on local server $srcFile = $IMAGES_FOLDER.$file; $filesize = filesize($srcFile); $ext = substr($filename, strrpos($filename, ".")); eval("\$fldValue[\$i] = \$as_".$fld[$i]."_old;"); list($oldnewFile, $oldfilename, $tmp) = split (":", $fldValue[$i]); $oldext = substr($oldfilename, strrpos($oldfilename, ".")); if ($current_object["LinkName"]) $newFile = strtolower($current_object["LinkName"]); else if ($current_section["LinkName"]) $newFile = strtolower($current_section["LinkName"]); else if ($LinkName) $newFile = strtolower($LinkName); else $newFile = "image"; if(!$oldfilename || ($ext != $oldext)) { if ($oldfilename) unlink($FILES_FOLDER.$oldnewFile); $newFile = GenerateFilename($FILES_FOLDER, $newFile, $ext); if (!strpos(' '.$file, 'http')) { // Ñ„Ð°Ð¹Ð» Ñ Ð»Ð¾ÐºÐ°Ð»ÑŒÐ½Ð¾Ð³Ð¾ ÑÐµÑ€Ð²ÐµÑ€Ð°, Ð¾ÑÑ‚Ð°Ð²Ð¸Ð¼ Ð½Ð°Ð·Ð²Ð°Ð½Ð¸Ðµ Ð½Ð° ÑÐ¾Ð²ÐµÑÑ‚Ð¸ Ð³ÑƒÑ€Ñƒ FTP-ÐºÐ»Ð¸ÐµÐ½Ñ‚Ð¾Ð² ;) $newFile = strtolower($srcFile); clearstatcache(); $filesize = filesize('../../..'.$CMS_UPLOAD_PATH.$newFile); } } else $newFile = strtolower($oldnewFile); copy ($srcFile, $FILES_FOLDER.strtolower($newFile)); } } else { // New file from upload $srcFile = $_FILES["as_".$fld[$i]]["tmp_name"]; if ($srcFile && $srcFile!="none" && is_uploaded_file($srcFile)) { $filename = strtolower(LatinFilename($_FILES["as_".$fld[$i]]["name"])); $filetype = $_FILES["as_".$fld[$i]]["type"]; $filesize = $_FILES["as_".$fld[$i]]["size"]; $ext = substr($filename, strrpos($filename, ".")); eval("\$fldValue[\$i] = \$as_".$fld[$i]."_old;"); list($oldnewFile, $oldfilename, $tmp) = split (":", $fldValue[$i]); $oldext = substr($oldfilename, strrpos($oldfilename, ".")); if ($current_object["LinkName"]) $newFile = strtolower($current_object["LinkName"]); else if ($current_section["LinkName"]) $newFile = strtolower($current_section["LinkName"]); else if ($LinkName) $newFile = strtolower($LinkName); else $newFile = "image"; //clear cache $pathinfo=pathinfo($filename); $fname=$pathinfo['filename']; //DebugBreak(); if ($CMS_THUMB_PATH) { $thumbs = @scandir($DOCUMENT_ROOT.$CMS_THUMB_PATH); if ($thumbs) { foreach ($thumbs as $thumb) { if (substr_count($thumb,$fname)) @unlink($CMS_THUMB_PATH.$thumb); } } } if(!$oldfilename || ($ext != $oldext)) { if ($oldfilename) unlink($FILES_FOLDER.$oldnewFile); $newFile = GenerateFilename($FILES_FOLDER, $newFile, $ext); } else $newFile = strtolower($oldnewFile); copy ($srcFile,$FILES_FOLDER.strtolower($newFile)); } elseif ($fldValue[$i]=="" || $fldValue[$i]=="none") { eval("\$fldValue[\$i] = \$as_".$fld[$i]."_old;"); } } $is_image = (strstr($fldFmt[$i],'type=image/')) ? true : false; if ($newFile && $is_image) { // Creating image copies $fileSystem_Config = explode("|",$fldFmt[$i]); $width = null; $height = null; for ($j = 1; $j < sizeof($fileSystem_Config); $j++) { $fileSystem_Config[$j] .= ';'; if (strstr($fileSystem_Config[$j],'w=') || strstr($fileSystem_Config[$j],'h=') || strstr($fileSystem_Config[$j],'postfix=') || strstr($fileSystem_Config[$j],'quality=')) { $w = null; $h = null; $postfix = null; $proportional=1; if (strstr($fileSystem_Config[$j],'w=')) { $w = substr($fileSystem_Config[$j],strpos($fileSystem_Config[$j],'w=') + 2); $w = substr($w,0,strpos($w,';')); }; if (strstr($fileSystem_Config[$j],'h=')) { $h = substr($fileSystem_Config[$j],strpos($fileSystem_Config[$j],'h=') + 2); $h = substr($h,0,strpos($h,';')); }; if (strstr($fileSystem_Config[$j],'quality=')) { $quality = substr($fileSystem_Config[$j],strpos($fileSystem_Config[$j],'quality=') + 8); $quality = substr($quality,0,strpos($quality,';')); }; if (strstr($fileSystem_Config[$j],'postfix=')) { $postfix = substr($fileSystem_Config[$j],strpos($fileSystem_Config[$j],'postfix=') + 8); $postfix = substr($postfix,0,strpos($postfix,';')); }; if (strstr($fileSystem_Config[$j],'proportional=')) { $proportional = substr($fileSystem_Config[$j],strpos($fileSystem_Config[$j],'proportional=') + strlen('proportional=')); $proportional = substr($proportional,0,strpos($proportional,';')); }; if ($w || $h){ ProcessImage($FILES_FOLDER.strtolower($newFile),$FILES_FOLDER.strtolower($newFile), $postfix,$w,$h,$quality,$proportional); }; } } $imagesize = getimagesize($FILES_FOLDER.strtolower($newFile)); $fldValue[$i] = $newFile.":".$filename.":".$imagesize[mime].":".$filesize.":".$imagesize[0].":".$imagesize[1]; } else if ($newFile) { $fldValue[$i] = $newFile.":".$filename."::".$filesize; } $fldValue[$i] = "\"".$fldValue[$i]."\""; if ($user_table_mode) $message = $AUTH_USER_ID; // Checking file size any mime-type if ($filesize > $max_filesize) $errCode = 7; if ($mime_type) { $fileformat = explode(",",$mime_type); $filetypeParsed = explode("/",$filetype); $filetypeNotAllowed = true; for ($j=0; $jPKð9[zc8ó33 fields.phpnuW+A„¶$message" : ""), $LinkID); list($isDuplicatedKeyword) = mysql_fetch_row($res); mysql_free_result($res); if (!$isDuplicatedKeyword && !$user_table_mode) { $res = mysql_query("SELECT COUNT(*) FROM `".(LOWER_CASE_TABLES ? "section_object" : "Section_Object")."` WHERE `LinkName`='$as_Keyword' AND `Section_ID`='$section'", $LinkID); list($isDuplicatedKeyword) = mysql_fetch_row($res); mysql_free_result($res); } } else { $isDuplicatedKeyword = false; } if ($SectionID) { $res = mysql_query("SELECT * FROM `".(LOWER_CASE_TABLES ? "section" : "Section")."` WHERE `Section_ID` = $SectionID", $LinkID); $fld_list = mysql_fetch_array($res); } $res = mysql_query("SELECT `Object_Field_ID`, `Object_Field_Name`, `Description`, `TypeOfData_ID`, `Format`, `NotNull`, `Inheritance`, `DefaultState`, `TypeOfEdit_ID`, " . ($systemTableID ? "1" : "DoSearch") . " FROM `".(LOWER_CASE_TABLES ? "object_field" : "Object_Field")."` WHERE " . ($systemTableID ? "`System_ID`=" . $systemTableID : "`Object_ID`=" . $classID) . " ORDER BY `Priority`", $LinkID); $srcCharset = getCharsetCode($CHARSET); $trgCharset = getCharsetCode($SOURCE_CHARSET); $fldCount = mysql_num_rows($res); for ($i = 0; $i < $fldCount; $i++) { list($fldID[], $fld[], $fldName[], $fldType[], $fldFmt[], $fldNotNull[], $fldInheritance[], $fldDefault[], $fldTypeOfEdit[], $fldDoSearch[]) = mysql_fetch_row($res); // ---- eval("\$checkKillFile = \$as_KILL" . $fldID[$i] . ";"); if ($checkKillFile && $action == "change" && $message) DeleteFile($fld[$i], $classID, $systemTableName, $message, $fldID[$i]); // ---- $fldValue[$i]=stripslashes(trim(${'as_'.$fld[$i]})); if ($srcCharset != $trgCharset && $srcCharset && $trgCharset && $is_there_any_files) $fldValue[$i] = convert_cyr_string($fldValue[$i], $srcCharset, $trgCharset); if ($fldType[$i] == 8) eval("if (\$as_" . $fld[$i] . "_day || \$as_" . $fld[$i] . "_month || \$as_" . $fld[$i] . "_year || \$as_" . $fld[$i] . "_hours || \$as_" . $fld[$i] . "_minutes || \$as_" . $fld[$i] . "_seconds) \$fldValue[\$i] = sprintf(\"%04d-%02d-%02d %02d:%02d:%02d\",\$as_" . $fld[$i] . "_year,\$as_" . $fld[$i] . "_month,\$as_" . $fld[$i] . "_day,\$as_" . $fld[$i] . "_hours,\$as_" . $fld[$i] . "_minutes,\$as_" . $fld[$i] . "_seconds);"); } mysql_free_result($res); $errDescr[1] = "ÐŸÐ¾Ð»Ðµ %NAME ÑÐ²Ð»ÑÐµÑ‚ÑÑ Ð¾Ð±ÑÐ·Ð°Ñ‚ÐµÐ»ÑŒÐ½Ñ‹Ð¼ Ð´Ð»Ñ Ð·Ð°Ð¿Ð¾Ð»Ð½ÐµÐ½Ð¸Ñ."; $errDescr[2] = "Ð’ Ð¿Ð¾Ð»Ðµ %NAME Ð²Ð²ÐµÐ´ÐµÐ½Ð¾ Ð·Ð½Ð°Ñ‡ÐµÐ½Ð¸Ðµ Ð½ÐµÐ´Ð¾Ð¿ÑƒÑÑ‚Ð¸Ð¼Ð¾Ð³Ð¾ Ñ‚Ð¸Ð¿Ð°."; $errDescr[6] = "ÐÐµÐ¾Ð±Ñ…Ð¾Ð´Ð¸Ð¼Ð¾ Ð·Ð°ÐºÐ°Ñ‡Ð°Ñ‚ÑŒ Ñ„Ð°Ð¹Ð» %NAME."; $errDescr[7] = "Ð¤Ð°Ð¹Ð» %NAME Ð¿Ñ€ÐµÐ²Ñ‹ÑˆÐ°ÐµÑ‚ Ð´Ð¾Ð¿ÑƒÑÑ‚Ð¸Ð¼Ñ‹Ð¹ Ñ€Ð°Ð·Ð¼ÐµÑ€."; $errDescr[8] = "ÐÐµÐ´Ð¾Ð¿ÑƒÑÑ‚Ð¸Ð¼Ñ‹Ð¹ Ñ„Ð¾Ñ€Ð¼Ð°Ñ‚ Ñ„Ð°Ð¹Ð»Ð° %NAME."; $errDescr[21] = "Ð’Ð²ÐµÐ´ÐµÐ½Ð¾ Ð½ÐµÐ´Ð¾Ð¿ÑƒÑÑ‚Ð¸Ð¼Ð¾Ðµ ÐºÐ»ÑŽÑ‡ÐµÐ²Ð¾Ðµ ÑÐ»Ð¾Ð²Ð¾."; $errDescr[100] = "Ð£ÐºÐ°Ð·Ð°Ð½ Ð½Ðµ ÑÑƒÑ‰ÐµÑÑ‚Ð²ÑƒÑŽÑ‰Ð¸Ð¹ Ñ„Ð°Ð¹Ð»."; if ($isDuplicatedKeyword && $submit) { $submit = 0; $errCode = 21; $warnText = $errDescr[$errCode]; } if ($submit) { for ($i = 0; $i < $fldCount; $i++) { $errCode = 0; switch ($fldType[$i]) { case 1: { if ($fldNotNull[$i] && $fldValue[$i] == "" && !($action == "change" && $fld[$i] == $CMS_AUTHORIZE_FIELD)) $errCode = 1; if ($fldNotNull[$i] && $fldFmt[$i] == "url" && ($fldValue[$i] == "http://" || $fldValue[$i] == "ftp://")) $errCode = 1; if ($fldFmt[$i] == "email" && $fldValue[$i] && !eregi("^[a-z0-9\._-]+@[a-z0-9\._-]+\.[a-z]{2,4}\$", $fldValue[$i])) $errCode = 2; if ($fldFmt[$i] == "url" && $fldValue[$i] && substr(strtolower($fldValue[$i]), 0, 7) != "http://" && substr(strtolower($fldValue[$i]), 0, 6) != "ftp://") $errCode = 2; if ($fldType[$i] == 1 && $fldFmt[$i] == "url" && ($fldValue[$i] == "http://" || $fldValue[$i] == "ftp://")) $fldValue[$i] = ""; } break; case 2: { if ($fldNotNull[$i] && $fldValue[$i] == "") $errCode = 1; if ($fldValue[$i] != "" && $fldValue[$i] != strval(intval($fldValue[$i]))) $errCode = 2; } break; case 3: { if ($fldNotNull[$i] && $fldValue[$i] == "") $errCode = 1; } break; case 4: { if ($fldNotNull[$i] && !$fldValue[$i]) $errCode = 1; if ($fldValue[$i] != "") $fldValue[$i] += 0; } break; case 5: { if ($fldNotNull[$i] && $fldValue[$i] == "") $fldValue[$i] = 0; } break; case 6: { // Retrieving size and type $arFileSystemConfigs = explode("|", $fldFmt[$i]); $max_filesize = $GLOBALS['CMS_REMOTE_MAX_FILESIZE']; foreach ($arFileSystemConfigs as $config){ if (strstr($config, 'size')){ $max_filesize = substr($config, strpos($config, '=') + 1); }elseif (strstr($config, 'type')){ $mime_type = substr($config, strpos($config, '=') + 1); }; }; if ($action == "change") { $oldValue = "as_" . $fld[$i] . "_old"; $oldValue = $$oldValue; if ($oldValue && ($fldValue[$i] == "" || $fldValue[$i] == "none")) $fldValue[$i] = $oldValue; } if ($fldNotNull[$i] && ($fldValue[$i] == "" || $fldValue[$i] == "none")) $errCode = 6; if ($fldValue[$i] && $fldValue[$i] != "none" && is_uploaded_file($fldValue[$i])) { $filetype = $_FILES["as_" . $fld[$i]]['type']; $filesize = $_FILES["as_" . $fld[$i]]['size']; if ($filesize > $max_filesize) $errCode = 7; if ($mime_type) { $fileformat = explode(",", $mime_type); $filetypeParsed = explode("/", $filetype); $filetypeNotAllowed = true; for ($j = 0; $j < count($fileformat); $j++) { $mimetypeParsed = explode("/", $fileformat[$j]); if (($filetypeParsed[0] == $mimetypeParsed[0]) && ($filetypeParsed[1] == $mimetypeParsed[1] || $mimetypeParsed[1] == "*")) { $filetypeNotAllowed = false; break; } } if ($filetypeNotAllowed && !empty($arFileSystemConfigs)) $errCode = 8; } } if ($_POST['as_' . $fld[$i] . '_serv'] != '') { $max_filesize = $GLOBALS['CMS_REMOTE_MAX_FILESIZE']; // New file from server $file = $_POST['as_' . $fld[$i] . '_serv']; $full_storeFolder = $_SERVER['DOCUMENT_ROOT'] . $CMS_UPLOAD_PATH; $full_loadFolder = $_SERVER['DOCUMENT_ROOT'] . $CMS_IMAGE_PATH; $filename = substr($file, strrpos($file, "/") + 1); // Needs upgrade $filetype = 'image/pjpeg'; if (strpos(' ' . $file, 'http')) { // Reading data from remote server --> $fp = fopen($file, 'r'); $data = ''; while (false !== ($char = fgetc($fp))) $data .= $char; fclose($fp); // <-- Reading data from remote server $filesize = strlen($data); } else { $srcFile = $full_loadFolder . $file; $filesize = filesize($srcFile); } // Checking file size if ($filesize > $max_filesize) $errCode = 7; if ($mime_type) { $fileformat = explode(",", $mime_type); $filetypeParsed = explode("/", $filetype); $filetypeNotAllowed = true; for ($j = 0; $j < count($fileformat); $j++) { $mimetypeParsed = explode("/", $fileformat[$j]); if (($filetypeParsed[0] == $mimetypeParsed[0]) && ($filetypeParsed[1] == $mimetypeParsed[1] || $mimetypeParsed[1] == "*")) { $filetypeNotAllowed = false; break; } } if ($filetypeNotAllowed && !empty($arFileSystemConfigs)) $errCode = 8; } } if ($errCode) $fldValue[$i] = $oldValue; } break; case 7: //Float { if ($fldNotNull[$i] && $fldValue[$i] == "") $errCode = 1; /* try{ $fldValue[$i] = floatval($fldValue[$i]); }catch(Exception $e){ $errCode = 2; } */ /* if ($fldValue[$i] != "" && $fldValue[$i] != strval(doubleval($fldValue[$i]))) $errCode = 2; */ $fldValue[$i] = str_replace(',','.', $fldValue[$i]); if (!empty($fldValue[$i]) and ( $fldValue[$i] != str_replace(',','.', (string)((float)$fldValue[$i])) )) $errCode = 2; } break; case 8: { if ($fldNotNull[$i] && $fldValue[$i] == "") $errCode = 1; } break; } if ($user_table_mode && $action == "add") { if (($fld[$i] == $CMS_AUTHORIZE_FIELD) && CheckLoginIfExist($fldValue[$i], 0, $LinkID)) { $warnText = "Ð›Ð¾Ð³Ð¸Ð½ " . $fldValue[$i] . " Ð·Ð°Ð½ÑÑ‚ Ð´Ñ€ÑƒÐ³Ð¸Ð¼ Ð¿Ð¾Ð»ÑŒÐ·Ð¾Ð²Ð°Ñ‚ÐµÐ»ÐµÐ¼
"; $submit = 0; break; } if ($Password1 != $Password2 || !$Password1) { $warnText = "ÐŸÐ¾Ð²Ñ‚Ð¾Ñ€Ð¸Ñ‚Ðµ Ð²Ð²Ð¾Ð´ Ð¿Ð°Ñ€Ð¾Ð»Ñ
"; $submit = 0; break; } else { $Password = $Password1; } } switch ($fldTypeOfEdit[$i]) { case 1: $warnUser = true; break; case 2: if ($as_admin) $warnUser = true; else $warnUser = false; break; case 3: $warnUser = false; break; } if ($warnUser && $errCode) { $warnText = $errDescr[$errCode]; $warnFld = $fld[$i]; $warnText = str_replace("%NAME", $fldName[$i], $warnText); $submit = 0; break; } } } ?>PKð9[ª>çT5T5 index.phpnuW+A„¶"._LANG_BACK_TO_SECTION.""; //if (!$delete) $goBack .= ""; // ---------------- // delete record if ($delete) { if ($message) { if ($delete && empty($submit)) { eval("echo \"$template_header\";"); echo "

"._LANG_RECORD_CONFIRM_DELETE." #".$message."

"; echo ""._LANG_RECORD_DELETE." | ".$goBack; echo "

"; eval("echo \"$template_footer\";"); } elseif ($delete && !empty($submit)) { $noRights = false; if (!$modRights) { $res = mysql_query("SELECT `User_ID` FROM `".(LOWER_CASE_TABLES ? "data" : "Data")."".$classID."` WHERE `User_ID`='".$AUTH_USER_ID."' AND `Data_ID`='".$message."'",$LinkID); if (!mysql_num_rows($res)) $noRights = true; else mysql_free_result($res); } if (!$noRights) { // delete files DeleteObjectFiles ($classID, $systemTableName, $message); mysql_query("DELETE FROM `".(LOWER_CASE_TABLES ? "data" : "Data")."".$classID."` WHERE `Data_ID`='".$message."'", $LinkID); // Tag support if(function_exists(deleteTagsAssign)&&$MODULE_VARS[tags][ENABLE_TAGS]){ deleteTagsAssign($classID,$section,$message); } if (!$DeleteActionTemplate) header('Location: ' . $CMS_ADMIN_PATH . '?site='.$site.'§ion='.$section.'&object='.$object.'&noframe=1'); else { eval("echo \"$template_header\";"); eval ("echo \"".$DeleteActionTemplate."\";"); eval("echo \"$template_footer\";"); } } else { echo _LANG_NO_RIGHTS.".

".$goBack; } } } else { if ($delete && empty($submit)) { eval("echo \"$template_header\";"); echo "

"; echo "

"._LANG_TEMPLATE_RECORD_CONFIRM_DELETE." #".$object."

"; echo ""._LANG_RECORDS_DELETE." | "; eval("echo \"$template_footer\";"); } elseif ($delete && !empty($submit)) { if ($modRights) { mysql_query("DELETE FROM `".(LOWER_CASE_TABLES ? "data" : "Data")."".$classID."` WHERE `Section_ID`=".$section." AND `Section_Object_ID`='".$object."'", $LinkID); header('Location: ' . $CMS_ADMIN_PATH . '?site='.$site.'§ion='.$section.'&object='.$object.'&noframe=1'); } else { mysql_query("DELETE FROM `".(LOWER_CASE_TABLES ? "data" : "Data")."".$classID."` WHERE `Section_ID`=".$section." AND `Section_Object_ID`='".$object."' AND `User_ID`='".$AUTH_USER_ID."'", $LinkID); if($jact){ echo 'deleted.';exit; } header('Location: ' . $CMS_ADMIN_PATH . '?site='.$site.'§ion='.$section.'&object='.$object.'&noframe=1'); } } } exit; } // check record if (isset($_GET['checked']) && $message && !empty($submit)) { $noRights = false; if (!$modRights) { $res = mysql_query("SELECT `User_ID` FROM `".(LOWER_CASE_TABLES ? "data" : "Data")."".$classID."` WHERE `User_ID`='".$AUTH_USER_ID."' AND `Data_ID`='".$message."'",$LinkID); if (!mysql_num_rows($res)) $noRights = true; else mysql_free_result($res); } if (!$noRights) { $res = mysql_query("UPDATE `".(LOWER_CASE_TABLES ? "data" : "Data")."".$classID."` SET `Checked`=".abs($checked-1)." WHERE `Data_ID`='".$message."'", $LinkID); if($jact){ // ajaxed from CMS echo 'done'; exit; } if (!$CheckActionTemplate) header('Location: ' . $CMS_ADMIN_PATH . '?site='.$site.'§ion='.$section.'&object='.$object.'&noframe=1'); else { eval("echo \"$template_header\";"); echo "

"; eval("echo \"".$CheckActionTemplate."\";"); echo $goBack; echo "

"; eval("echo \"$template_footer\";"); } } else { eval("echo \"$template_header\";"); echo "

"; echo "

"._LANG_AUTH_NO_ACTION."

"; echo $goBack; echo "

"; eval("echo \"$template_footer\";"); } exit; } // ÐµÑÐ»Ð¸ Ð² ÑƒÑÐ»Ð¾Ð²Ð¸ÑÑ… Ð¸Ð·Ð¼ÐµÐ½ÐµÐ½Ð¸Ñ Ð¾Ð±ÑŠÐµÐºÑ‚Ð° Ð¿Ñ€Ð¸ÑÐ¾Ð²Ð¸Ñ‚ÑŒ 1 ÑÑ‚Ð¾ Ð¿ÐµÑ€ÐµÐ¼ÐµÐ½Ð½Ð¾Ð¹, Ñ‚Ð¾ Ð´ÐµÐ¹ÑÑ‚Ð²Ð¸Ñ Ð¿Ð¾ÑÐ»Ðµ ÑƒÐ´Ð°Ð»ÐµÐ½Ð¸Ñ Ð²Ñ‹Ð¿Ð¾Ð»Ð½ÑÑ‚ÑÑ Ð² Ð»ÑŽÐ±Ð¾Ð¼ ÑÐ»ÑƒÑ‡Ð°Ðµ // Ð±Ñ‹Ð» Ð»Ð¸ Ð°Ð¿Ð´ÐµÐ¹Ñ‚ Ð¸Ð»Ð¸ Ð·Ð°Ð¿Ð¸ÑÐ¸ Ð½Ðµ Ð¸Ð·Ð¼ÐµÐ½Ð¸Ð»Ð¸ÑÑŒ $editActionTemplate_run = 0; if (!empty($submit)) eval($editCond); require_once $ROOT_FOLDER."action/edit/fields.php"; // ÐµÑÐ»Ð¸ Ð½Ðµ Ð·Ð°Ð¿Ð¾Ð»Ð½ÐµÐ½Ð° Ñ„Ð¾Ñ€Ð¼Ð° Ð¿Ð¾ÐºÐ°Ð·Ñ‹Ð²Ð°Ð»Ð°ÑÑŒ Ñ€Ð°Ð½ÑŒÑˆÐµ Ñ„Ð¾Ñ€Ð¼Ð° Ñ€ÐµÐ´Ð°ÐºÑ‚Ð¸Ñ€Ð¾Ð²Ð°Ð½Ð¸Ñ Ñ€Ð°Ð·Ð´ÐµÐ»Ð° if (!$user_table_mode && !$classID) { eval("echo \"$template_header\";"); echo "

"; echo "

"._LANG_AUTH_NO_ACTION."

"; echo "

"; eval("echo \"$template_footer\";"); die(); } $res = mysql_query("SELECT DATE_FORMAT(`Created`, '%d.%m.%Y, %H:%i:%s'),DATE_FORMAT(`LastSystem_Updated`, '%d.%m.%Y, %H:%i:%s')".(!$user_table_mode?",`User_ID`,`IP`,`LastUser_ID`,`LastIP`":"")." FROM ".($user_table_mode?"".(LOWER_CASE_TABLES ? "user" : "User")."":"".(LOWER_CASE_TABLES ? "data" : "Data")."".$classID)." WHERE ".($user_table_mode?"".(LOWER_CASE_TABLES ? "user" : "User")."":"".(LOWER_CASE_TABLES ? "data" : "Data")."")."_ID=".$message,$LinkID); if (!$user_table_mode) { list($as_create_date,$as_LastSystem_Updated,$as_user_id,$as_IP,$as_lastuser_id,$as_lastIP) = mysql_fetch_row($res); } else { list($as_create_date,$as_LastSystem_Updated) = mysql_fetch_row($res); } // edit record if (empty($submit)) { if (count($fld)) { $fieldQuery = join($fld, ","); if ($user_table_mode) { $select = "SELECT ".$fieldQuery." FROM `".(LOWER_CASE_TABLES ? "user" : "User")."` WHERE `User_ID`='".$AUTH_USER_ID."'"; } else { $select = "SELECT ".$fieldQuery." FROM `".(LOWER_CASE_TABLES ? "data" : "Data")."".$classID."` WHERE `Data_ID`='".$message."'"; } $res = mysql_query($select, $LinkID); if (mysql_errno()){ echo "

MySQL Error : ".mysql_error()."

"; if (DEBUG_MODE) { echo '

'.$select.'

'; } } $fldValue = mysql_fetch_row($res); mysql_free_result($res); $res = mysql_query($select, $LinkID); $fldValueVars = mysql_fetch_assoc($res); mysql_free_result($res); extract($fldValueVars, EXTR_PREFIX_ALL, "as"); for ($i=0;$i<$fldCount;$i++) { if ($fldType[$i]==8) { $tmp = $fld[$i]; eval(" \$as_".$tmp."_year = substr(\$as_".$tmp.",0,4); \$as_".$tmp."_month = substr(\$as_".$tmp.",5,2); \$as_".$tmp."_day = substr(\$as_".$tmp.",8,2); \$as_".$tmp."_hours = substr(\$as_".$tmp.",11,2); \$as_".$tmp."_minutes = substr(\$as_".$tmp.",14,2); \$as_".$tmp."_seconds = substr(\$as_".$tmp.",17,2); "); // eval("\$as_".$fld[$i]."_month = substr(\$as_".$fld[$i].",5,2);"); // eval("\$as_".$fld[$i]."_day = substr(\$as_".$fld[$i].",8,2);"); // eval("\$as_".$fld[$i]."_hours = substr(\$as_".$fld[$i].",11,2);"); // eval("\$as_".$fld[$i]."_minutes = substr(\$as_".$fld[$i].",14,2);"); // eval("\$as_".$fld[$i]."_seconds = substr(\$as_".$fld[$i].",17,2);"); } } $res = mysql_query("SELECT `Checked`, `Keyword`, `Priority` FROM ".($user_table_mode?"".(LOWER_CASE_TABLES ? "user" : "User")."":"".(LOWER_CASE_TABLES ? "data" : "Data")."".$classID)." WHERE ".($user_table_mode?"User":"Data")."_ID=".$message, $LinkID); list($as_Checked, $as_Keyword, $as_Priority) = mysql_fetch_row($res); mysql_free_result($res); } if (!$modRights && $as_user_id!=$AUTH_USER_ID) { eval("echo \"$template_header\";"); echo _LANG_NO_RIGHTS."."; eval("echo \"$template_footer\";"); exit; } if ($editTemplate) { eval("echo \"$template_header\";"); eval("echo \"$editTemplate\";"); eval("echo \"$template_footer\";"); } else { eval("echo \"$template_header\";"); echo $warnText; echo ""; eval("echo \"$template_footer\";"); } exit; // save edit record } elseif ($submit == 1) { require_once $ROOT_FOLDER."action/edit/save.php"; $as_Checked += 0; if ($as_admin) { $cond_check = "Checked=".$as_Checked; $cond_keyword = ", Keyword='".$as_Keyword."'"; } else { $cond_check = "Checked=Checked"; $cond_keyword = ""; } if ($user_table_mode) { $update = "UPDATE `".(LOWER_CASE_TABLES ? "user" : "User")."` SET ".$updateString." `Checked`=Checked ".$cond_keyword." WHERE `User_ID`='".$AUTH_USER_ID."'"; } else { $update = "UPDATE `".(LOWER_CASE_TABLES ? "data" : "Data")."".$classID."` SET ".$updateString." ".$cond_check.$cond_keyword.", `LastUser_ID`=".$AUTH_USER_ID.", `LastIP`=\"".$REMOTE_ADDR."\",`LastUserAgent`=\"".$HTTP_USER_AGENT."\" WHERE `Data_ID`='".$message."'".(!$modRights?" AND `User_ID`=".$AUTH_USER_ID:""); // Tag support if(function_exists(updateTags)&&$MODULE_VARS[tags][ENABLE_TAGS]){ $tags = $_POST['Tag']; updateTags($classID,$section,$message,$tags); } } $resMsg = mysql_query($update, $LinkID); $affectedRows = mysql_affected_rows($LinkID); if ($as_admin && !$user_mode) { if ($as_Priority && !$selfMsg) { $res = mysql_query("SELECT `Priority` FROM `".(LOWER_CASE_TABLES ? "data" : "Data")."$classID` WHERE `Data_ID`='".$message."'", $LinkID); list($tmp_priority) = mysql_fetch_row($res); if ($as_Priority != $tmp_priority) { if(mysql_num_rows(mysql_query("SELECT * FROM `".(LOWER_CASE_TABLES ? "data" : "Data")."$classID` WHERE `Priority`='".$as_Priority."'", $LinkID)) > 0) $res = mysql_query("UPDATE `".(LOWER_CASE_TABLES ? "data" : "Data")."$classID` SET `Priority`=Priority+1,`LastSystem_Updated`=LastSystem_Updated WHERE `Priority`>=".$as_Priority." AND Section_ID='".$section."' AND Section_Object_ID='".$object."'", $LinkID); $res = mysql_query("UPDATE `".(LOWER_CASE_TABLES ? "data" : "Data")."$classID` SET `Priority`=".$as_Priority.",`LastSystem_Updated`=LastSystem_Updated WHERE `Data_ID`='".$message."'", $LinkID); } } } if ($resMsg && ($affectedRows || $editActionTemplate_run)) { if ($editActionTemplate) { eval("echo \"$template_header\";"); eval("echo \"".$editActionTemplate."\";"); eval("echo \"$template_footer\";"); } else { if ($submit_type == 1) { Header('Location: ' . $CMS_ADMIN_PATH . '?site='.$site.'§ion='.$section.'&object='.$object.'&noframe=0&curPos='.$curPos .(empty($_REQUEST['returnScroll']) ? '' : '#returnScroll='.$_REQUEST['returnScroll'])); header("Content-Length:0"); exit(); } } } elseif ($submit_type == 1) { Header('Location: ' . $CMS_ADMIN_PATH . '?site='.$site.'§ion='.$section.'&object='.$object.'&noframe=0&curPos='.$curPos .(empty($_REQUEST['returnScroll']) ? '' : '#returnScroll='.$_REQUEST['returnScroll'])); header("Content-Length:0"); exit(); } if (!isset($submit_type)) { Header('Location: '.$goBackLink); header("Content-Length:0"); exit(); } } //eval("echo \"$template_footer\";"); if ($submit_type == 1 || !$resMsg) eval("echo \"$template_footer\";"); //if ($submit_type == 2 && $resMsg) Header('Location: ' . $CMS_ADMIN_PATH . 'action/edit/?site='.$site.'§ion='.$section.'&object='.$object.'&message='.$message); if ($submit_type == 2 && $resMsg) { jsinitpage(); jsclear('status_text'); jsclear('status_text2'); jsprint('status_text', _LANG_SAVED_IN.' '.date("H:i:s")); jsprint('status_text2', _LANG_SAVED_IN.' '.date("H:i:s")); } ?>PKð9[Yòs}Ø;Ø;edit.phpnuW+A„¶PKð9[sÎ“«--<save.phpnuW+A„¶PKð9[zc8ó33 Õifields.phpnuW+A„¶PKð9[ª>çT5T5 index.phpnuW+A„¶PK#¤Ò

"._LANG_MAIN_OPTIONS."

"._LANG_FIELDS_OF_DATA."