Asset Manage

<?
php
/*======================================================================*\
|| #################################################################### ||
|| # vBulletin 4.2.0
|| # ---------------------------------------------------------------- # ||
|| # Copyright 2000-2012 vBulletin Solutions Inc. All Rights Reserved. ||
|| # This file may not be redistributed in whole or significant part. # ||
|| # ---------------- VBULLETIN IS NOT FREE SOFTWARE ---------------- # ||
|| # http://www.vbulletin.com | http://www.vbulletin.com/license.html # ||
|| #################################################################### ||
\*======================================================================*/
// ####################### SET PHP ENVIRONMENT ###########################
error_reporting(E_ALL & ~E_NOTICE);
@set_time_limit(0);
// #################### DEFINE IMPORTANT CONSTANTS #######################
#define('GET_EDIT_TEMPLATES', true);
define('THIS_SCRIPT', 'assetmanage');
define('CSRF_PROTECTION', true);
// ################### PRE-CACHE TEMPLATES AND DATA ######################
// get special phrase groups
$phrasegroups = array('posting');
// get special data templates from the datastore
$specialtemplates = array();
// pre-cache templates used by all actions
$globaltemplates = array();
// pre-cache templates used by specific actions
$actiontemplates = array(
'loadassets' => array(
'assetmanager_thumbview',
'assetmanager_listview',
'assetmanager_detailedview',
),
'help' => array(
'assetmanager_help',
),
);
// ######################### REQUIRE BACK-END ############################
require_once('./global.php');
require_once(DIR . '/includes/functions_newpost.php');
require_once(DIR . '/includes/functions_file.php');
require_once(DIR . '/packages/vbattach/attach.php');
// #######################################################################
// ######################## START MAIN SCRIPT ############################
// #######################################################################
$vbulletin->input->clean_array_gpc('r', array(
'poststarttime' => TYPE_UINT,
'posthash'
=> TYPE_NOHTML,
'userid'
=> TYPE_UINT,
));
if (
!$vbulletin->userinfo['userid'] // Guests can not post attachments

OR
empty($vbulletin->userinfo['attachmentextensions'])
OR
($vbulletin->GPC['posthash'] != md5($vbulletin->GPC['poststarttime'] . $
vbulletin->userinfo['userid'] . $vbulletin->userinfo['salt']))
)
{
print_no_permission();
}
if ($_POST['ajax'])
{
require_once(DIR . '/includes/class_xml.php');
$xml = new vB_AJAX_XML_Builder($vbulletin, 'text/xml');
// Still undecided about this
// $userinfo = verify_id('user', $vbulletin->GPC['userid'], 1, 1);
$userinfo = $vbulletin->userinfo;
if ($_POST['do'] == 'loadnode')
{
$vbulletin->input->clean_array_gpc('p', array(
'parentid' => TYPE_UINT,
));
$xml->add_group('categories');
$categories = $db->query_read_slave("
SELECT categoryid, title
FROM " . TABLE_PREFIX . "attachmentcategory
WHERE
userid = {$userinfo['userid']}
AND
parentid = {$vbulletin->GPC['parentid']}
ORDER BY displayorder
");
while ($category = $db->fetch_array($categories))
{
$xml->add_tag('category', $category['title'], array('cat
egoryid' => $category['categoryid']));
}
// Update posthash if this is the root node.
if ($vbulletin->GPC['parentid'] == 0)
{
$userdm =& datamanager_init('User', $vbulletin, ERRTYPE_
SILENT);
$userdm->set_existing($userinfo);
$userdm->set('assetposthash', $vbulletin->GPC['posthash'
]);
$userdm->save();
$userinfo['assetposthash'] = $vbulletin->GPC['posthash']
;
}
$xml->close_group();
$xml->print_xml();
}
if ($_POST['do'] == 'loadassets')
{
'categoryid'
=> TYPE_UINT,
'view'
=> TYPE_STR,
'orderby'
=> TYPE_STR,
'sortorder'
=> TYPE_STR,
'pagenumber'
=> TYPE_UINT,
'init'
=> TYPE_BOOL,
'contenttypeid' => TYPE_UINT,
));
if ($vbulletin->GPC['categoryid'] AND !($db->query_first("
SELECT categoryid
WHERE
AND
categoryid = {$vbulletin->GPC['categoryid']}
")))
{
eval(standard_error(fetch_error('invalidid', 'categoryid
', $vbulletin->options['contactuslink'])));
}
switch($vbulletin->GPC['orderby'])
{
case 'filename':
$orderby = 'acu.filename';
break;
default:
$handled = false;
($hook = vBulletinHook::fetch_hook('assetmanager
_orderby')) ? eval($hook) : false;
if (!$handled)
{
$orderby = 'acu.dateline';
}
}
switch($vbulletin->GPC['sortorder'])
{
case 'asc':
$sortorder = 'ASC';
break;
default:
$sortorder = 'DESC';
}
switch($vbulletin->GPC['view'])
{
case 'list':
$template = 'assetmanager_listview';
break;
case 'detailed':
$template = 'assetmanager_detailedview';
break;
default:
$handled = false;
($hook = vBulletinHook::fetch_hook('assetmanager
_viewtype')) ? eval($hook) : false;

if (!$handled)
{
$template = 'assetmanager_thumbview';
}
}
$extensions = array();
$contenttypeid = $vbulletin->GPC['contenttypeid'];
foreach($userinfo['attachmentpermissions'] AS $filetype => $exte
nsion)
{
if (
!empty($extension['permissions'])
AND
(
!$extension['contenttypes']["$contenttyp
eid"]
OR
!isset($extension['contenttypes']["$cont
enttypeid"]['e'])
OR
$extension['contenttypes']["$contenttype
id"]['e']
)
)
{
$extensions["$filetype"] = $extension['size'];
}
}
// if we are in the Forum Post context, use maximum post attach
limit, otherwise disable js attachlimit check (0)
// TODO: add an attachlimit for each of the attachment types (li
ke albums, articles, blog entries ect.)
/* Disabling this for now, because its too much overhead for add
ed js validation for posts only
$attachlimit = ($contenttypeid == vB_Types::instance()->getConte
ntTypeID('vBForum_Post')) ? $vbulletin->options['attachlimit'] : 0;
*/
$attachlimit = 0; // disable js attachlimit validation for now
$perpage = ($vbulletin->options['vbasset_perpage'] > 0 ? $vbulle
tin->options['vbasset_perpage'] : 50);
$pagenumber = !$vbulletin->GPC['pagenumber'] ? 1 : $vbulletin->G
PC['pagenumber'];
do
{
$start = ($pagenumber - 1) * $perpage;
$assets = $db->query("
SELECT SQL_CALC_FOUND_ROWS
acu.*, fd.thumbnail_dateline AS dateline
, IF (thumbnail_filesize > 0, 1, 0) AS hasthumbnail, fd.extension, fd.filesize
FROM " . TABLE_PREFIX . "attachmentcategoryuser
AS acu
INNER JOIN " . TABLE_PREFIX . "filedata AS fd ON
(acu.filedataid = fd.filedataid)
WHERE
acu.userid = {$userinfo['userid']}
AND
acu.categoryid = {$vbulletin->GPC['categ
oryid']}
AND
fd.extension IN ('" . implode("' , '", a
rray_keys($extensions)) . "')
ORDER BY $orderby $sortorder
LIMIT $start, $perpage
");
$totalassets = $db->found_rows();
if ($start >= $totalassets)
{
$pagenumber = ceil($totalassets / $perpage);
}
}
while($start >= $totalassets AND $totalassets);
$xml->add_group('results');
$xml->add_group('assets');
// vB_Template::create is resetting $pagenumber
$_pagenumber = $pagenumber;
while ($assetinfo = $db->fetch_array($assets))
{
$assetinfo['date_string'] = vbdate($vbulletin->options['
dateformat'], $assetinfo['dateline']);
$assetinfo['time_string'] = vbdate($vbulletin->options['
timeformat'], $assetinfo['dateline']);
$assetinfo['filesize_formatted'] = vb_number_format($ass
etinfo['filesize'], 1, true);
$assetinfo['filename'] = fetch_censored_text(htmlspecial
chars_uni($assetinfo['filename'], false));
$templater = vB_Template::create($template);
$templater->register('assetinfo', $assetinfo);
$xml->add_tag('asset', $templater->render());
}
$startasset = $totalassets ? $start + 1 : 0;
$endasset = ($start + $perpage > $totalassets ? $totalassets : $
start + $perpage);
$totalpages = ceil($totalassets / $perpage);
$xml->add_tag('totalassets', $totalassets);
$xml->add_tag('startasset', $startasset);
$xml->add_tag('endasset', $endasset);
$xml->add_tag('pagenumber', $_pagenumber);
$xml->add_tag('totalpages', $totalpages);
$xml->add_tag('currentpage', construct_phrase($vbphrase['page_x_
of_y'], $_pagenumber, $totalpages));
$xml->add_tag('pagestats', construct_phrase($vbphrase['assets_x_
to_y_of_z'], $startasset, $endasset, $totalassets));
// Defaults used by program init
if ($vbulletin->GPC['categoryid'] == 0 AND $vbulletin->GPC['init
'])
{
$xml->add_tag('attachboxcount', $vbulletin->options['att
achboxcount']);
$xml->add_tag('attachurlcount', $vbulletin->options['att
achurlcount']);
$xml->add_tag('attachlimit', $attachlimit);
$xml->add_tag('max_file_size', fetch_max_upload_size())
;
$xml->add_group('phrases');
$xml->add_tag('rename', $vbphrase['rename']);
$xml->add_tag('delete', $vbphrase['delete']);
$xml->add_tag('add_folder_to_x', $vbphrase['add_
folder_to_x']);
$xml->add_tag('are_you_sure_delete_asset', $vbph
rase['are_you_sure_delete_asset']);
$xml->add_tag('are_you_sure_delete_assets', $vbp
hrase['are_you_sure_delete_assets']);
$xml->add_tag('upload_failed', $vbphrase['upload
_failed']);
$xml->add_tag('asset_already_attached', $vbphras
e['asset_already_attached']);
$xml->add_tag('are_you_sure_delete_folder_x', $v
bphrase['are_you_sure_delete_folder_x']);
$xml->add_tag('enter_title', $vbphrase['enter_ti
tle']);
$xml->add_tag('add_folder_to_home', $vbphrase['a
dd_folder_to_home']);
$xml->add_tag('the_following_errors_occurred', $
vbphrase['the_following_errors_occurred']);
$xml->add_tag('file_is_too_large', $vbphrase['fi
le_is_too_large']);
$xml->add_tag('invalid_file', $vbphrase['invalid
_file']);
$xml->add_tag('all_files', $vbphrase['all_files'
]);
$xml->add_tag('maximum_number_of_attachments_rea
ched', $vbphrase['maximum_number_of_attachments_reached']);
$xml->add_tag('assets_x_to_y_of_z', $vbphrase['a
ssets_x_to_y_of_z']);
$xml->add_tag('please_drag_and_drop', $vbphrase[
'please_drag_and_drop']);
$xml->add_tag('please_select_attachment', $vbphr
ase['please_select_attachment']);
$xml->add_tag('insert_inline_x', $vbphrase['inse
rt_inline_x']);
$xml->close_group('phrases');
$xml->add_group('extensions');
foreach($extensions AS $extension => $maxsize)
{
$xml->add_tag('extension', $maxsize, array('name
' => $extension));
}
$xml->close_group('extensions');
}
$xml->print_xml();
}
if ($_POST['do'] == 'help')
{
'filedataid' => TYPE_UINT,
'type'
=> TYPE_STR,
));
switch($vbulletin->GPC['type'])
{
case 'assetusage':
$attachmultiple = new vB_Attachment_Display_Mult
iple($vbulletin);
$attachments = $attachmultiple->fetch_results("a
.userid = $userinfo[userid] AND a.contentid <> 0 AND a.filedataid = " . $vbullet
in->GPC['filedataid']);
$title = $vbphrase['asset_usage'];
$content = '';
if (empty($attachments))
{
eval(standard_error(fetch_error('asset_n
ot_used')));
}
$count = 0;
foreach($attachments AS $attachment)
{
$count++;
$result = $attachmultiple->process_attac
hment($attachment);
$templater = vB_Template::create('assetm
anager_usage_' . $result['template']);
unset($result['template']);
foreach ($result AS $key => $value)
{
$templater->register($key, $valu
e);
}
$templater->register('usagerow', ($count
% 2) == 1 ? 'usagerow1' : 'usagerow2');
$content .= $templater->render();
}
break;
default:
// help
$title = $vbphrase['help'];
$templater = vB_Template::create('assetmanager_h
elp');
$content = $templater->render();
}
$xml->add_group('help');
$xml->add_tag('title', $title);
$xml->add_tag('content', $content);
$xml->print_xml();
}
if ($_POST['do'] == 'orderattachments')
{
'attachment' => TYPE_ARRAY_UINT
));
$casesql = array();
foreach ($vbulletin->GPC['attachment'] AS $attachmentid => $disp
layorder)
{
$casesql[] = " WHEN attachmentid = " . intval($attachmen
tid) . " THEN " . intval($displayorder) . " ";
}
if (!$casesql)
{
exit;
}
$db->query_write("
UPDATE " . TABLE_PREFIX . "attachment
SET displayorder =
CASE
" . implode($casesql, "\r\n") . "
ELSE displayorder
END
WHERE userid = $userinfo[userid]
");
}
if ($vbulletin->GPC['posthash'] AND $userinfo['assetposthash'] != $vbull
etin->GPC['posthash'])
{
eval(standard_error(fetch_error('folder_structure_altered')));
}
// Update posthash for all actions beyond node loading (except if this i
s the first node, see "loadnode")
$userdm =& datamanager_init('User', $vbulletin, ERRTYPE_SILENT);
$userdm->set_existing($userinfo);
$userdm->set('assetposthash', $vbulletin->GPC['posthash']);
$userdm->save();
if ($_POST['do'] == 'updatelabel')
{
'categoryid' => TYPE_UINT,
'title'
=> TYPE_NOHTML,
));
$db->query_write("
UPDATE " . TABLE_PREFIX . "attachmentcategory
SET title = '" . $db->escape_string(convert_urlencoded_u
nicode($vbulletin->GPC['title'])) . "'
WHERE
AND
");
exit;
}
if ($_POST['do'] == 'insertnode')
{

'title'
=> TYPE_NOHTML,
'returnall' => TYPE_BOOL,
));
if (!($maxdo = $db->query_first("
SELECT MAX(displayorder) AS maxdo
WHERE
AND
")))
{
}
$db->query_write("
INSERT INTO " . TABLE_PREFIX . "attachmentcategory
(parentid, userid, title, displayorder)
VALUES
(
{$vbulletin->GPC['parentid']},
{$userinfo['userid']},
'" . $db->escape_string(convert_urlencod
ed_unicode($vbulletin->GPC['title'])) . "',
" . ($maxdo['maxdo'] + 1) . "
)
");
$categoryid = $db->insert_id();
$xml->add_group('categories');
if ($vbulletin->GPC['returnall'])
{
$categories = $db->query_read_slave("
SELECT categoryid, title
WHERE
AND
ORDER BY displayorder
");
while ($category = $db->fetch_array($categories))
{
$xml->add_tag('category', $category['title'], ar
ray('categoryid' => $category['categoryid']));
}
}
else
{
$xml->add_tag('categoryid', $categoryid);
}
$xml->print_xml();
}
if ($_POST['do'] == 'removenode')
{
));
if (!($catinfo = $db->query_first("
SELECT categoryid, parentid
WHERE
AND
")))
{
}
$ids = array($vbulletin->GPC['categoryid']);
$ids = array_merge($ids, fetch_children($userinfo['userid'], $vb
ulletin->GPC['categoryid']));
if (!empty($ids))
{
$db->query_write("
UPDATE " . TABLE_PREFIX . "attachmentcategoryuse
r
SET categoryid = $catinfo[parentid]
WHERE
AND
categoryid IN ( " . implode(', ', $ids)
. ")
");
$db->query_write("
DELETE FROM " . TABLE_PREFIX . "attachmentcatego
ry
WHERE
AND
categoryid IN (" . implode(', ', $ids) .
")
");
$xml->add_tag('response', $db->affected_rows());
$xml->print_xml();
}
exit;
}
if ($_POST['do'] == 'movenode')
{
'siblingids' => TYPE_STR,
));
if (!($db->query_first("
SELECT categoryid
WHERE
AND
")))
{
}
if ($vbulletin->GPC['parentid'] > 0 AND !($db->query_first("
SELECT categoryid
WHERE
AND
categoryid = {$vbulletin->GPC['parentid']}
")))
{
eval(standard_error(fetch_error('invalidid', 'parentid',
$vbulletin->options['contactuslink'])));
}
if (!($maxdo = $db->query_first("
SELECT MAX(displayorder) AS maxdo
WHERE
AND
")))
{
}
$db->query_write("
SET
parentid = {$vbulletin->GPC['parentid']},
displayorder = 0
WHERE
AND
");
$siblingids = explode(',', $vbulletin->GPC['siblingids']);
$siblingids = array_map('intval', $siblingids);
$child_positions = array_flip($siblingids);
$casesql = array();
foreach ($child_positions AS $categoryid => $displayorder)
{
$casesql[] = " WHEN categoryid = $categoryid THEN $displ
ayorder ";
}
if (!empty($casesql))
{
$db->query_write("
SET displayorder =
CASE
" . implode($casesql, "\r\n") . "
ELSE displayorder
END
WHERE
AND
");
}
exit;
}
if ($_POST['do'] == 'moveasset')
{
'filedata' => TYPE_ARRAY_UINT,
));
if ($vbulletin->GPC['categoryid'] AND !($db->query_first("
SELECT categoryid
WHERE
AND
")))
{
}
$count = $db->query_first("
SELECT COUNT(*) AS count
FROM " . TABLE_PREFIX . "attachmentcategoryuser
WHERE
AND
filedataid IN(0," . implode(", ", array_values(
$vbulletin->GPC['filedata'])) . ")
");
if ($count['count'] != count($vbulletin->GPC['filedata']))
{
eval(standard_error(fetch_error('invalidid', 'filedataid
}
$db->query_write("
UPDATE " . TABLE_PREFIX . "attachmentcategoryuser
SET categoryid = {$vbulletin->GPC['categoryid']}
WHERE
userid = $userinfo[userid]
AND
filedataid IN(0," . implode(", ", array_values($

vbulletin->GPC['filedata'])) . ")
");
$xml->add_tag('results', $db->affected_rows());
$xml->print_xml();
}
}
function fetch_children($userid, $categoryid)
{
global $vbulletin;
$ids = array();
$children = $vbulletin->db->query_read("
SELECT categoryid
WHERE
userid = $userid
AND
parentid = $categoryid
");
while ($child = $vbulletin->db->fetch_array($children))
{
$ids[] = $child['categoryid'];
$ids = array_merge($ids, fetch_children($userid, $child['categor
yid']));
}
return $ids;
}
/*======================================================================*\
|| ####################################################################
|| #
|| # CVS: $RCSfile$ - $Revision: 62098 $
|| ####################################################################
\*======================================================================*/
?>

Asset Manage

Diunggah oleh

Informasi Dokumen

Hak Cipta

Format Tersedia

Bagikan dokumen Ini

Bagikan atau Tanam Dokumen

Opsi Berbagi

Apakah menurut Anda dokumen ini bermanfaat?

Apakah konten ini tidak pantas?

Hak Cipta:

Format Tersedia

Asset Manage

Diunggah oleh

Hak Cipta:

Format Tersedia

<?

!$vbulletin->userinfo['userid'] // Guests can not post attachments

_viewtype')) ? eval($hook) : false;

'parentid' => TYPE_UINT,

filedataid IN(0," . implode(", ", array_values($

Anda mungkin juga menyukai