\n"; echo "function PreviewNewsCat() {\n"; echo "\tvar selectNewsCat = document.getElementById('newscat_image');\n"; echo "\tvar imageNewsCat = document.getElementById('newscat_preview');\n"; echo "\tvar optionValue = selectNewsCat.options[selectNewsCat.selectedIndex].value;\n"; echo "\tif (optionValue!='') {\n"; echo "\t\timageNewsCat.src = '".IMAGES_NC."' + optionValue;\n"; echo "\t} else {\n"; echo "\t\timageNewsCat.src = '".IMAGES_NC."default.png';\n"; echo "\t}\n"; echo "}\n"; echo "\n"; if (!checkrights("N") || !defined("iAUTH") || !isset($_GET['aid']) || $_GET['aid'] != iAUTH) { redirect("../index.php"); } require_once THEMES."templates/admin_header_mce.php"; include LOCALE.LOCALESET."admin/news.php"; if ($settings['tinymce_enabled']) { echo "\n"; } else { require_once INCLUDES."html_buttons_include.php"; } if (isset($_GET['error']) && isnum($_GET['error'])) { if ($_GET['error'] == 1) { $message = $locale['413']; } elseif ($_GET['error'] == 2) { $message = sprintf($locale['414'], parsebytesize($settings['news_photo_max_b'])); } elseif ($_GET['error'] == 3) { $message = $locale['415']; } elseif ($_GET['error'] == 4) { $message = sprintf($locale['416'], $settings['news_photo_max_w'], $settings['news_photo_max_h']); } if ($message) { echo "
".$message."
\n"; } } if (isset($_GET['status'])) { if ($_GET['status'] == "sn") { $message = $locale['410']; } elseif ($_GET['status'] == "su") { $message = $locale['411']; } elseif ($_GET['status'] == "del") { $message = $locale['412']; } if ($message) { echo "
".$message."
\n"; } } if (isset($_POST['save'])) { $error = ""; $news_subject = stripinput($_POST['news_subject']); $news_cat = isnum($_POST['news_cat']) ? $_POST['news_cat'] : "0"; if (isset($_FILES['news_image']) && is_uploaded_file($_FILES['news_image']['tmp_name'])) { require_once INCLUDES."photo_functions_include.php"; $image = $_FILES['news_image']; $image_name = stripfilename(str_replace(" ", "_", strtolower(substr($image['name'], 0, strrpos($image['name'], "."))))); $image_ext = strtolower(strrchr($image['name'],".")); if ($image_ext == ".gif") { $filetype = 1; } elseif ($image_ext == ".jpg") { $filetype = 2; } elseif ($image_ext == ".png") { $filetype = 3; } else { $filetype = false; } if (!preg_match("/^[-0-9A-Z_\.\[\]]+$/i", $image_name)) { $error = 1; } elseif ($image['size'] > $settings['news_photo_max_b']){ $error = 2; } elseif (!$filetype) { $error = 3; } else { $image_t1 = image_exists(IMAGES_N_T, $image_name."_t1".$image_ext); $image_t2 = image_exists(IMAGES_N_T, $image_name."_t2".$image_ext); $image_full = image_exists(IMAGES_N, $image_name.$image_ext); move_uploaded_file($_FILES['news_image']['tmp_name'], IMAGES_N.$image_full); if (function_exists("chmod")) { chmod(IMAGES_N.$image_full, 0644); } $imagefile = @getimagesize(IMAGES_N.$image_full); if ($imagefile[0] > $settings['news_photo_max_w'] || $imagefile[1] > $settings['news_photo_max_h']) { $error = 4; unlink(IMAGES_N.$image_full); } else { createthumbnail($filetype, IMAGES_N.$image_full, IMAGES_N_T.$image_t1, $settings['news_photo_w'], $settings['news_photo_h']); if ($settings['news_thumb_ratio'] == 0) { createthumbnail($filetype, IMAGES_N.$image_full, IMAGES_N_T.$image_t2, $settings['news_thumb_w'], $settings['news_thumb_h']); } else { createsquarethumbnail($filetype, IMAGES_N.$image_full, IMAGES_N_T.$image_t2, $settings['news_thumb_w']); } } } if (!$error) { $news_image = $image_full; $news_image_t1 = $image_t1; $news_image_t2 = $image_t2; } else { $news_image = ""; $news_image_t1 = ""; $news_image_t2 = ""; } } else { $news_image = (isset($_POST['news_image']) ? $_POST['news_image'] : ""); $news_image_t1 = (isset($_POST['news_image_t1']) ? $_POST['news_image_t1'] : ""); $news_image_t2 = (isset($_POST['news_image_t2']) ? $_POST['news_image_t2'] : ""); } $body = addslash($_POST['body']); $news_start_date = 0; $news_end_date = 0; if ($_POST['news_start']['mday']!="--" && $_POST['news_start']['mon']!="--" && $_POST['news_start']['year']!="----") { $news_start_date = mktime($_POST['news_start']['hours'],$_POST['news_start']['minutes'],0,$_POST['news_start']['mon'],$_POST['news_start']['mday'],$_POST['news_start']['year']); } if ($_POST['news_end']['mday']!="--" && $_POST['news_end']['mon']!="--" && $_POST['news_end']['year']!="----") { $news_end_date = mktime($_POST['news_end']['hours'],$_POST['news_end']['minutes'],0,$_POST['news_end']['mon'],$_POST['news_end']['mday'],$_POST['news_end']['year']); } $news_visibility = isnum($_POST['news_visibility']) ? $_POST['news_visibility'] : "0"; $news_draft = isset($_POST['news_draft']) ? "1" : "0"; $news_sticky = isset($_POST['news_sticky']) ? "1" : "0"; if ($settings['tinymce_enabled'] != 1) { $news_breaks = isset($_POST['line_breaks']) ? "y" : "n"; } else { $news_breaks = "n"; } $news_comments = isset($_POST['news_comments']) ? "1" : "0"; $news_ratings = isset($_POST['news_ratings']) ? "1" : "0"; $news_czyt = isset($_POST['news_czyt']) ? "1" : "0"; $news_czytpo = stripinput($_POST['news_czytpo']); if (isset($_POST['news_id']) && isnum($_POST['news_id'])) { $result = dbquery("SELECT news_image, news_image_t1, news_image_t2 FROM ".DB_NEWS." WHERE news_id='".$_POST['news_id']."' LIMIT 1"); if (dbrows($result)) { $data = dbarray($result); if ($news_sticky == "1") { $result = dbquery("UPDATE ".DB_NEWS." SET news_sticky='0' WHERE news_sticky='1'"); } if (isset($_POST['del_image'])) { if (!empty($data['news_image']) && file_exists(IMAGES_N.$data['news_image'])) { unlink(IMAGES_N.$data['news_image']); } if (!empty($data['news_image_t1']) && file_exists(IMAGES_N_T.$data['news_image_t1'])) { unlink(IMAGES_N_T.$data['news_image_t1']); } if (!empty($data['news_image_t2']) && file_exists(IMAGES_N_T.$data['news_image_t2'])) { unlink(IMAGES_N_T.$data['news_image_t2']); } $news_image = ""; $news_image_t1 = ""; $news_image_t2 = ""; } $result = dbquery("UPDATE ".DB_NEWS." SET news_subject='$news_subject', news_cat='$news_cat', news_end='$news_end_date', news_image='$news_image', news_news='$body', news_breaks='$news_breaks',".($news_start_date != 0 ? " news_datestamp='$news_start_date'," : "")." news_start='$news_start_date', news_image_t1='$news_image_t1', news_image_t2='$news_image_t2', news_visibility='$news_visibility', news_draft='$news_draft', news_sticky='$news_sticky', news_allow_comments='$news_comments', news_allow_ratings='$news_ratings', news_czyt='$news_czyt', news_czytpo='$news_czytpo' WHERE news_id='".$_POST['news_id']."'"); redirect(FUSION_SELF.$aidlink."&status=su".($error ? "&error=$error" : "")); } else { redirect(FUSION_SELF.$aidlink); } } else { if ($news_sticky == "1") { $result = dbquery("UPDATE ".DB_NEWS." SET news_sticky='0' WHERE news_sticky='1'"); } $result = dbquery("INSERT INTO ".DB_NEWS." (news_subject, news_cat, news_news, news_breaks, news_name, news_datestamp, news_start, news_end, news_image, news_image_t1, news_image_t2, news_visibility, news_draft, news_sticky, news_reads, news_allow_comments, news_allow_ratings, news_czyt, news_czytpo) VALUES ('$news_subject', '$news_cat', '$body', '$news_breaks', '".$userdata['user_id']."', '".($news_start_date != 0 ? $news_start_date : time())."', '$news_start_date', '$news_end_date', '$news_image', '$news_image_t1', '$news_image_t2', '$news_visibility', '$news_draft', '$news_sticky', '0', '$news_comments', '$news_ratings', '$news_czyt', '$news_czytpo')"); redirect(FUSION_SELF.$aidlink."&status=sn".($error ? "&error=$error" : "")); } } else if (isset($_POST['delete']) && (isset($_POST['news_id']) && isnum($_POST['news_id']))) { $result = dbquery("SELECT news_image, news_image_t1, news_image_t2 FROM ".DB_NEWS." WHERE news_id='".$_POST['news_id']."' LIMIT 1"); if (dbrows($result)) { $data = dbarray($result); if (!empty($data['news_image']) && file_exists(IMAGES_N.$data['news_image'])) { unlink(IMAGES_N.$data['news_image']); } if (!empty($data['news_image_t1']) && file_exists(IMAGES_N_T.$data['news_image_t1'])) { unlink(IMAGES_N_T.$data['news_image_t1']); } if (!empty($data['news_image_t2']) && file_exists(IMAGES_N_T.$data['news_image_t2'])) { unlink(IMAGES_N_T.$data['news_image_t2']); } $result = dbquery("DELETE FROM ".DB_NEWS." WHERE news_id='".$_POST['news_id']."'"); $result = dbquery("DELETE FROM ".DB_COMMENTS." WHERE comment_item_id='".$_POST['news_id']."' and comment_type='N'"); $result = dbquery("DELETE FROM ".DB_RATINGS." WHERE rating_item_id='".$_POST['news_id']."' and rating_type='N'"); redirect(FUSION_SELF.$aidlink."&status=del"); } else { redirect(FUSION_SELF.$aidlink); } } else { if (isset($_POST['preview'])) { $news_subject = stripinput($_POST['news_subject']); $news_cat = isnum($_POST['news_cat']) ? $_POST['news_cat'] : "0"; $body = phpentities(stripslash($_POST['body'])); $bodypreview = str_replace("src='".str_replace("../", "", IMAGES_N), "src='".IMAGES_N, stripslash($_POST['body'])); if (isset($_POST['line_breaks'])) { $news_breaks = " checked='checked'"; $bodypreview = nl2br($bodypreview); $news_breaks = ""; } $news_start = array( "mday" => isnum($_POST['news_start']['mday']) ? $_POST['news_start']['mday'] : "--", "mon" => isnum($_POST['news_start']['mon']) ? $_POST['news_start']['mon'] : "--", "year" => isnum($_POST['news_start']['year']) ? $_POST['news_start']['year'] : "----", "hours" => isnum($_POST['news_start']['hours']) ? $_POST['news_start']['hours'] : "0", "minutes" => isnum($_POST['news_start']['minutes']) ? $_POST['news_start']['minutes'] : "0", ); $news_end = array( "mday" => isnum($_POST['news_end']['mday']) ? $_POST['news_end']['mday'] : "--", "mon" => isnum($_POST['news_end']['mon']) ? $_POST['news_end']['mon'] : "--", "year" => isnum($_POST['news_end']['year']) ? $_POST['news_end']['year'] : "----", "hours" => isnum($_POST['news_end']['hours']) ? $_POST['news_end']['hours'] : "0", "minutes" => isnum($_POST['news_end']['minutes']) ? $_POST['news_end']['minutes'] : "0", ); $news_image = (isset($_POST['news_image']) ? $_POST['news_image'] : ""); $news_image_t1 = (isset($_POST['news_image_t1']) ? $_POST['news_image_t1'] : ""); $news_image_t2 = (isset($_POST['news_image_t2']) ? $_POST['news_image_t2'] : ""); $news_visibility = isnum($_POST['news_visibility']) ? $_POST['news_visibility'] : "0"; $news_draft = isset($_POST['news_draft']) ? " checked='checked'" : ""; $news_sticky = isset($_POST['news_sticky']) ? " checked='checked'" : ""; $news_comments = isset($_POST['news_comments']) ? " checked='checked'" : ""; $news_ratings = isset($_POST['news_ratings']) ? " checked='checked'" : ""; $news_czyt = isset($_POST['news_czyt']) ? " checked='checked'" : ""; $news_czytpo = stripinput($_POST['news_czytpo']); opentable($news_subject); echo "$bodypreview\n"; closetable(); } $result = dbquery("SELECT news_id, news_subject, news_draft FROM ".DB_NEWS." ORDER BY news_draft DESC, news_datestamp DESC"); if (dbrows($result) != 0) { $editlist = ""; $sel = ""; while ($data = dbarray($result)) { if ((isset($_POST['news_id']) && isnum($_POST['news_id'])) || (isset($_GET['news_id']) && isnum($_GET['news_id']))) { $news_id = isset($_POST['news_id']) ? $_POST['news_id'] : $_GET['news_id']; $sel = ($news_id == $data['news_id'] ? " selected='selected'" : ""); } $editlist .= "\n"; } opentable($locale['400']); echo "
\n
\n"; echo "\n"; echo "\n"; echo "\n"; echo "
\n
\n"; closetable(); } if ((isset($_GET['action']) && $_GET['action'] == "edit") && (isset($_POST['news_id']) && isnum($_POST['news_id'])) || (isset($_GET['news_id']) && isnum($_GET['news_id']))) { $result = dbquery("SELECT news_subject, news_cat, news_news, news_start, news_end, news_image, news_image_t1, news_image_t2, news_visibility, news_draft, news_sticky, news_breaks, news_allow_comments, news_allow_ratings, news_czyt, news_czytpo FROM ".DB_NEWS." WHERE news_id='".(isset($_POST['news_id']) ? $_POST['news_id'] : $_GET['news_id'])."' LIMIT 1"); if (dbrows($result)) { $data = dbarray($result); $news_subject = $data['news_subject']; $news_cat = $data['news_cat']; $body = phpentities(stripslashes($data['news_news'])); if ($data['news_start'] > 0) $news_start = getdate($data['news_start']); if ($data['news_end'] > 0) $news_end = getdate($data['news_end']); $news_image = $data['news_image']; $news_image_t1 = $data['news_image_t1']; $news_image_t2 = $data['news_image_t2']; $news_visibility = $data['news_visibility']; $news_draft = $data['news_draft'] == "1" ? " checked='checked'" : ""; $news_sticky = $data['news_sticky'] == "1" ? " checked='checked'" : ""; $news_breaks = $data['news_breaks'] == "y" ? " checked='checked'" : ""; $news_comments = $data['news_allow_comments'] == "1" ? " checked='checked'" : ""; $news_ratings = $data['news_allow_ratings'] == "1" ? " checked='checked'" : ""; $news_czyt = $data['news_czyt'] == "1" ? " checked='checked'" : ""; $news_czytpo = $data['news_czytpo']; } else { redirect(FUSION_SELF.$aidlink); } } if ((isset($_POST['news_id']) && isnum($_POST['news_id'])) || (isset($_GET['news_id']) && isnum($_GET['news_id']))) { opentable($locale['402']); } else { if (!isset($_POST['preview'])) { $news_subject = ""; $news_cat = "0"; $body = ""; $news_image = ""; $news_image_t1 = ""; $news_image_t2 = ""; $news_visibility = 0; $news_draft = ""; $news_sticky = ""; $news_breaks = " checked='checked'"; $news_comments = " checked='checked'"; $news_ratings = " checked='checked'"; $news_czyt = ""; $news_czytpo = "400"; } opentable($locale['401']); } $result = dbquery("SELECT news_cat_id, news_cat_name FROM ".DB_NEWS_CATS." ORDER BY news_cat_name"); $news_cat_opts = ""; $sel = ""; if (dbrows($result)) { while ($data = dbarray($result)) { if (isset($news_cat)) $sel = ($news_cat == $data['news_cat_id'] ? " selected='selected'" : ""); $news_cat_opts .= "\n"; } } $visibility_opts = ""; $sel = ""; $user_groups = getusergroups(); while(list($key, $user_group) = each($user_groups)){ $sel = ($news_visibility == $user_group['0'] ? " selected='selected'" : ""); $visibility_opts .= "\n"; } echo "
\n"; echo "\n\n"; echo "\n"; echo "\n"; echo "\n\n"; echo "\n"; echo "\n"; echo "\n\n"; echo "\n\n\n\n"; echo "\n"; echo "\n"; echo "\n"; if (!$settings['tinymce_enabled']) { echo "\n\n\n\n"; } echo "\n"; echo "\n"; echo "\n\n"; echo "\n"; echo "\n"; echo "\n\n"; echo "\n"; echo "\n"; echo "\n\n"; echo "\n"; echo "\n"; if ($settings['comments_enabled'] == "0" || $settings['ratings_enabled'] == "0") { $sys = ""; if ($settings['comments_enabled'] == "0" && $settings['ratings_enabled'] == "0") { $sys = $locale['455']; } elseif ($settings['comments_enabled'] == "0") { $sys = $locale['453']; } else { $sys = $locale['454']; } echo "\n\n"; } echo "\n"; echo "\n"; echo "\n
".$locale['422']."
".$locale['423']."
".$locale['439'].":"; if ($news_image != "" && $news_image_t1 != "") { echo "\n"; echo "\n"; echo "\n"; echo "\n"; } else { echo "
\n"; echo sprintf($locale['440'], parsebytesize($settings['news_photo_max_b']))."\n"; } echo "
".$locale['425']."
\n"; echo display_html("inputform", "body", true, true, true, IMAGES_N); echo "
".$locale['427']." / : : 00 ".$locale['429']."
".$locale['428']." / : : 00 ".$locale['429']."
".$locale['430']."
\n"; echo "
"; echo "".$locale['443']."\n"; echo "\n
\n
\n"; echo "
\n"; echo "
\n"; if ($settings['tinymce_enabled'] != 1) { echo "
\n"; } echo ""; if ($settings['comments_enabled'] == "0") { echo "*"; } echo "
\n"; echo ""; if ($settings['ratings_enabled'] == "0") { echo "*"; } echo "
"; echo "*".sprintf($locale['452'], $sys); echo "

\n"; if ((isset($_POST['edit']) && (isset($_POST['news_id']) && isnum($_POST['news_id']))) || (isset($_POST['preview']) && (isset($_POST['news_id']) && isnum($_POST['news_id']))) || (isset($_GET['news_id']) && isnum($_GET['news_id']))) { echo "\n"; } echo "\n"; echo "
\n
\n"; closetable(); echo "\n"; } require_once THEMES."templates/footer.php"; ?>