Home Explore Help
Sign In
Paenibacillus
/
sorbetcms
forked from richard/sorbetcms
Watch 1
Star 0
Fork 0
Code Issues 0 Pull Requests 0 Commits 17 Releases 0 Wiki

A tumblelog CMS built on AJAX, PHP and MySQL.

Tree: 61f52e29ab
Branches Tags
sorbetcms/admin/add.php

add.php 6.8KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198 
  1. <?

  2. /* ===========================

  3. 

  4.   gelato CMS development version

  5.   http://www.gelatocms.com/

  6. 

  7.   gelato CMS is a free software licensed under GPL (General public license)

  8. 

  9.   =========================== */

  10. ?>

  11. <?

  12. require_once('../config.php');

  13. include("../classes/user.class.php");

  14. include("../classes/gelato.class.php");

  15. include("../classes/templates.class.php");

  16. require_once("../classes/configuration.class.php");

  17. 

  18. $user = new user();

  19. $tumble = new gelato();

  20. $conf = new configuration();

  21. $template = new plantillas("admin");

  22. 

  23. if ($user->isAdmin()) {

  24. 

  25. 	if(isset($_POST["btnAdd"]))	{

  26. 		unset($_POST["btnAdd"]);

  27. 		

  28. 		

  29. 		if ($_POST["type"]=="2") { // is Photo type			

  30. 			if (isset($_POST["url"]) && $_POST["url"]!="")  {			

  31. 				$photoName = getFileName($_POST["url"]);

  32. 				if (!$tumble->savePhoto($_POST["url"])) {

  33. 					header("Location: ".$conf->urlGelato."/admin/index.php?photo=false");

  34. 					die();

  35. 				}

  36. 				$_POST["url"] = $conf->urlGelato."/uploads/".$photoName;

  37. 			}

  38. 			

  39. 			if ( move_uploaded_file( $_FILES['photo']['tmp_name'], "../uploads/".$_FILES['photo']['name'] ) ) {

  40. 				$_POST["url"] = $conf->urlGelato."/uploads/".$_FILES['photo']['name'];

  41. 			}

  42. 			

  43. 			unset($_POST["photo"]);

  44. 			unset($_POST["MAX_FILE_SIZE"]);

  45. 		}

  46. 		

  47. 		if ($_POST["type"]=="7") { // is MP3 type

  48. 			set_time_limit(300);

  49. 			$mp3Name = getFileName($_POST["url"]);

  50. 			if (!$tumble->saveMP3($_POST["url"])) {

  51. 				header("Location: ".$conf->urlGelato."/admin/index.php?mp3=false");

  52. 				die();

  53. 			}

  54. 			$_POST["url"] = $conf->urlGelato."/uploads/".$mp3Name;

  55. 		}

  56. 		

  57. 		if (get_magic_quotes_gpc()) {

  58. 			$_POST["title"] = htmlspecialchars(stripslashes($_POST["title"]));

  59. 			$_POST["description"] = htmlspecialchars(stripslashes($_POST["description"]));

  60. 		} else {

  61. 			$_POST["title"] = htmlspecialchars($_POST["title"]);

  62. 			$_POST["description"] = htmlspecialchars($_POST["description"]);

  63. 		}

  64. 		

  65. 		$_POST["title"] = strip_tags($_POST["title"]);

  66. 		$_POST["description"] = strip_tags($_POST["description"]);

  67. 		

  68. 		

  69. 		if (isset($_POST["id_post"])) {

  70. 			//$tumble->modifyPost($_POST, $_POST["id_post"]);

  71. 		} else {			

  72. 			if ($tumble->addPost($_POST)) {

  73. 				header("Location: ".$conf->urlGelato."/admin/index.php?added=true");

  74. 				die();

  75. 			} else {

  76. 				header("Location: ".$conf->urlGelato."/admin/index.php?error=2&des=".$this->merror);

  77. 				die();

  78. 			}

  79. 		}	

  80. 	} elseif (isset($_GET["new"])) {	

  81. ?>

  82. 		<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd">

  83. 		<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">

  84. 		<head>

  85. 			<title>gelato</title>

  86. 			<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />

  87. 			<link rel="shortcut icon" href="<?=$conf->urlGelato;?>/images/favicon.ico" />

  88. 			<script language="javascript" type="text/javascript" src="<?=$conf->urlGelato;?>/admin/scripts/tiny_mce/tiny_mce.js"></script>

  89. 			<script language="javascript" type="text/javascript" src="<?=$conf->urlGelato;?>/admin/scripts/tools.js"></script>

  90. 			<script language="javascript" type="text/javascript" src="<?=$conf->urlGelato;?>/admin/scripts/mootools.js"></script>			

  91. 			<style type="text/css" media="screen">	

  92. 				@import "<?=$conf->urlGelato;?>/admin/css/style-codice.css";

  93. 			</style>

  94. 		</head>

  95. 		<body>

  96. 			<div id="div-process" style="display:none;">Processing request...</div>

  97. 			<div id="titulo">

  98. 				<img src="<?=$conf->urlGelato;?>/images/logo.jpg" alt="gelato CMS" title="gelato CMS" />	

  99. 			</div>

  100. 			

  101. 			<div id="menuContenedor">

  102. 				<ul>

  103. 					<li id="active"><a href="#" id="current">Posts</a></li>

  104. 						<ul>

  105. 							<li id="subactive"><a href="#" id="subcurrent">Add</a></li>

  106. 						</ul>

  107. 					</li>

  108. 					<li><a href="index.php">Control Panel</a></li>

  109. 				</ul>

  110. 			</div>

  111. 			

  112. 			<div id="contenido">

  113. 				<div class="center">

  114. 					<div  class="ventana">

  115. 						<p class="titulo"><span class="handle">Add content</span></p>

  116. 						<div id="formulario">

  117. 							<form action="add.php" method="post" <?=($_GET["new"]=="photo") ? "enctype=\"multipart/form-data\"" : ""?> name="frmAdd">

  118. 								<fieldset>

  119. <?

  120. 						switch ($_GET["new"]) {

  121. 							case "post":

  122. 								$input = array("{type}", "{date}", "{id_user}");

  123. 								$output = array("1", time(), $_SESSION['user_id']);

  124. 								

  125. 								$template->cargarPlantilla($input, $output, "template_add_post");

  126. 								$template->mostrarPlantilla();

  127. 							   	break;

  128. 							case "photo":

  129. 								$input = array("{type}", "{date}", "{id_user}");

  130. 								$output = array("2", time(), $_SESSION['user_id']);

  131. 								

  132. 								$template->cargarPlantilla($input, $output, "template_add_photo");

  133. 								$template->mostrarPlantilla();							   

  134. 							   	break;

  135. 							case "quote":

  136. 							   	$input = array("{type}", "{date}", "{id_user}");

  137. 								$output = array("3", time(), $_SESSION['user_id']);

  138. 								

  139. 								$template->cargarPlantilla($input, $output, "template_add_quote");

  140. 								$template->mostrarPlantilla();

  141. 							   	break;

  142. 							case "url":

  143. 							   	$input = array("{type}", "{date}", "{id_user}");

  144. 								$output = array("4", time(), $_SESSION['user_id']);

  145. 								

  146. 								$template->cargarPlantilla($input, $output, "template_add_link");

  147. 								$template->mostrarPlantilla();

  148. 							   	break;

  149. 							case "conversation":

  150. 							   	$input = array("{type}", "{date}", "{id_user}");

  151. 								$output = array("5", time(), $_SESSION['user_id']);

  152. 								

  153. 								$template->cargarPlantilla($input, $output, "template_add_conversation");

  154. 								$template->mostrarPlantilla();

  155. 							   	break;

  156. 							case "video":

  157. 							   	$input = array("{type}", "{date}", "{id_user}");

  158. 								$output = array("6", time(), $_SESSION['user_id']);

  159. 								

  160. 								$template->cargarPlantilla($input, $output, "template_add_video");

  161. 								$template->mostrarPlantilla();

  162. 							   	break;

  163. 							case "mp3":

  164. 							   	$input = array("{type}", "{date}", "{id_user}");

  165. 								$output = array("7", time(), $_SESSION['user_id']);

  166. 								

  167. 								$template->cargarPlantilla($input, $output, "template_add_mp3");

  168. 								$template->mostrarPlantilla();

  169. 							   	break;

  170. 							default:

  171. 								echo "<div class=\"error\">The specified type is not valid.</div>";

  172. 								break;

  173. 						}

  174. ?>

  175. 									<p>

  176. 										<input class="submit" type="submit" name="btnAdd" value="Create post" />&nbsp;&nbsp;

  177. 										<a href="#" onclick="if (confirm('Cancel editing this post?  All changes will be lost.'))

  178. 	{location.href='index.php';}; return false;">Cancel</a>

  179. 									</p>

  180. 								</fieldset>

  181. 							</form>

  182. 						</div>

  183. 					</div> 

  184. 				</div> 		

  185. 				<div id="pie">

  186. 					<p>

  187. 						<a href="http://www.gelatocms.com/" title="gelato CMS" target="_blank">gelato CMS</a> :: PHP/MySQL Tumblelog Content Management System.

  188. 					</p>

  189. 				</div>				

  190. 			</div>

  191. 		</body>

  192. 		</html>

  193. <?

  194. 	}

  195. } else {

  196. 	header("Location: ".$conf->urlGelato."/login.php");

  197. }

  198. ?>