16 |
} |
} |
17 |
function my_cmp($a, $b) { return MyCompare($a["txt"], $b["txt"]); } |
function my_cmp($a, $b) { return MyCompare($a["txt"], $b["txt"]); } |
18 |
function newsEdit($art, $trigger = "", $isVijest = false) { |
function newsEdit($art, $trigger = "", $isVijest = false) { |
19 |
global $phptmp, $picdir, $syspicdir, $aupicdir, $sysaupicdir, $section, $section_menu, $dbh, $tpl; |
global $phptmp, $picdir, $syspicdir, $aupicdir, $sysaupicdir, $dbh, $tpl; |
20 |
|
global $section, $section_menu, $section_menu2, $spec; |
21 |
global $ed_id, $ed_cat, $isMed; |
global $ed_id, $ed_cat, $isMed; |
22 |
$i = 1; |
$i = 1; |
23 |
global $ed_delete_main, $ed_del_main; |
global $ed_delete_main, $ed_del_main; |
117 |
} |
} |
118 |
global $ed_title, $ed_lead, $ed_titlepic_alt, |
global $ed_title, $ed_lead, $ed_titlepic_alt, |
119 |
$ed_titlepic_pos, $ed_more, $ed_more_title, |
$ed_titlepic_pos, $ed_more, $ed_more_title, |
120 |
$ed_cat, $ed_author_alt, $ed_author_info; |
$ed_cat, $ed_author_alt, $ed_author_info, |
121 |
|
$ed_author_ime, $ed_prikazi; |
122 |
$ed_title = MyQuote($ed_title); |
$ed_title = MyQuote($ed_title); |
123 |
$ed_lead = MyQuote($ed_lead); |
$ed_lead = MyQuote($ed_lead); |
124 |
$ed_author_nm = urldecode(MyQuote(basename($author_name))); |
$ed_author_nm = urldecode(MyQuote(basename($author_name))); |
125 |
$ed_author_alt = MyQuote($ed_author_alt); |
$ed_author_alt = MyQuote($ed_author_alt); |
126 |
|
$ed_author_ime = MyQuote($ed_author_ime); |
127 |
$ed_author_info = MyQuote($ed_author_info); |
$ed_author_info = MyQuote($ed_author_info); |
128 |
$ed_titlepic_nm = urldecode(MyQuote(basename($titlepic_name))); |
$ed_titlepic_nm = urldecode(MyQuote(basename($titlepic_name))); |
129 |
$ed_titlepic_alt = MyQuote($ed_titlepic_alt); |
$ed_titlepic_alt = MyQuote($ed_titlepic_alt); |
131 |
$ed_more_title = MyQuote($ed_more_title); |
$ed_more_title = MyQuote($ed_more_title); |
132 |
if (!$ed_titlepic_pos) $ed_titlepic_pos = 0; |
if (!$ed_titlepic_pos) $ed_titlepic_pos = 0; |
133 |
if ($ed_id > 0) { |
if ($ed_id > 0) { |
134 |
$sql = "UPDATE news SET category = '$ed_cat', title = $ed_title, lead = $ed_lead, title_pic = $ed_titlepic_nm, title_alt = $ed_titlepic_alt, title_pos = $ed_titlepic_pos, author_pic = $ed_author_nm, author_alt = $ed_author_alt, author_info = $ed_author_info, url = $ed_more, url_title = $ed_more_title, plivamed = ".($isMed?"true":"false").", ord = 0, d_change = NOW() WHERE (news_id = $ed_id)"; |
$sql = "UPDATE news SET category = '$ed_cat', title = $ed_title, lead = $ed_lead, title_pic = $ed_titlepic_nm, title_alt = $ed_titlepic_alt, title_pos = $ed_titlepic_pos, author_pic = $ed_author_nm, author_alt = $ed_author_alt, author_info = $ed_author_info, author_name = $ed_author_ime, url = $ed_more, url_title = $ed_more_title, plivamed = ".($isMed?"true":"false").", prikazi = ".($ed_prikazi?"true":"false").", ord = 0, d_change = NOW() WHERE (news_id = $ed_id)"; |
135 |
sql($sql); |
sql($sql); |
136 |
$dbh->dbh_do($sql); |
$dbh->dbh_do($sql); |
137 |
} else { |
} else { |
138 |
$sql = "INSERT INTO news (category, title, lead, title_pic, title_alt, title_pos, author_pic, author_alt, author_info, url, url_title, plivamed, d_orig, d_change) VALUES ('$ed_cat', $ed_title, $ed_lead, $ed_titlepic_nm, $ed_titlepic_alt, $ed_titlepic_pos, $ed_author_nm, $ed_author_alt, $ed_author_info, $ed_more, $ed_more_title, ".($isMed?"true":"false").", NOW(), NOW())"; |
$sql = "INSERT INTO news (category, title, lead, title_pic, title_alt, title_pos, author_pic, author_alt, author_info, author_name, url, url_title, plivamed, prikazi, d_orig, d_change) VALUES ('$ed_cat', $ed_title, $ed_lead, $ed_titlepic_nm, $ed_titlepic_alt, $ed_titlepic_pos, $ed_author_nm, $ed_author_alt, $ed_author_info, $ed_author_ime, $ed_more, $ed_more_title, ".($isMed?"true":"false").", ".($ed_prikazi?"true":"false").", NOW(), NOW())"; |
139 |
sql($sql); |
sql($sql); |
140 |
$dbh->dbh_do($sql); |
$dbh->dbh_do($sql); |
141 |
$sql = "SELECT news_id FROM news WHERE (title = $ed_title)"; |
$sql = "SELECT currval('news_news_id_seq')::text"; |
142 |
sql($sql); |
sql($sql); |
143 |
$sth = $dbh->prepare($sql); |
$sth = $dbh->prepare($sql); |
144 |
if (!$sth) error("Cannot prepare query: \"$sql\""); |
if (!$sth) error("Cannot prepare query: \"$sql\""); |
297 |
} |
} |
298 |
// ----- |
// ----- |
299 |
$tp = new Smarty(); |
$tp = new Smarty(); |
|
// ----- |
|
300 |
$tp->assign("levels", $levels); |
$tp->assign("levels", $levels); |
301 |
// ----- |
// ----- |
302 |
global $ed_id, $ed_title, $ed_lead, $ed_titlepic_pos, |
global $ed_id, $ed_title, $ed_lead, $ed_titlepic_pos, |
303 |
$ed_titlepic_alt, $ed_cat, $ed_more, |
$ed_titlepic_alt, $ed_cat, $ed_more, |
304 |
$ed_more_title, $ed_author_url, $ed_author_alt, |
$ed_more_title, $ed_author_url, $ed_author_alt, |
305 |
$ed_author_info; |
$ed_author_info, $ed_author_ime, $ed_prikazi; |
306 |
global $ed_edit, $ed_preview, $preview, $add; |
global $ed_edit, $ed_preview, $preview, $add; |
307 |
if (!$ed_preview) $ed_preview = ($preview ? true : false); |
if (!$ed_preview) $ed_preview = ($preview ? true : false); |
308 |
if ($ed_edit) $ed_preview = false; |
if ($ed_edit) $ed_preview = false; |
333 |
global $ed_title, $ed_lead, $ed_titlepic_pos, |
global $ed_title, $ed_lead, $ed_titlepic_pos, |
334 |
$ed_titlepic_alt, $ed_cat, $ed_more, |
$ed_titlepic_alt, $ed_cat, $ed_more, |
335 |
$ed_more_title, $ed_author_url, |
$ed_more_title, $ed_author_url, |
336 |
$ed_author_alt, $ed_author_info; |
$ed_author_alt, $ed_author_info, |
337 |
|
$ed_author_ime, $ed_prikazi; |
338 |
if (!$HTTP_POST_FILES["ed_titlepic_url"]["name"]) $titlepic_url = ""; |
if (!$HTTP_POST_FILES["ed_titlepic_url"]["name"]) $titlepic_url = ""; |
339 |
if (!$titlepic_url) $titlepic_url = $titlepic_url2; |
if (!$titlepic_url) $titlepic_url = $titlepic_url2; |
340 |
if (!$titlepic_url && !($clear_main || $clr_main)) $titlepic_url = $art["pic_url"]; |
if (!$titlepic_url && !($clear_main || $clr_main)) $titlepic_url = $art["pic_url"]; |
382 |
if (!$sth->execute()) error("Cannot execute query: \"$sql\""); |
if (!$sth->execute()) error("Cannot execute query: \"$sql\""); |
383 |
while ($row = $sth->fetchrow_array()) $ncats[$row[0]] = true; |
while ($row = $sth->fetchrow_array()) $ncats[$row[0]] = true; |
384 |
$sth->finish(); |
$sth->finish(); |
385 |
} |
} else $art["show"] = true; |
386 |
list($ed_title, $ed_lead, $ed_titlepic_pos, $titlepic_url, |
list($ed_title, $ed_lead, $ed_titlepic_pos, $titlepic_url, |
387 |
$titlepic_url2, $titlepic_name, $ed_titlepic_alt, |
$titlepic_url2, $titlepic_name, $ed_titlepic_alt, |
388 |
$ed_cat, $ed_more, $ed_more_title, $width, $height, |
$ed_cat, $ed_more, $ed_more_title, $width, $height, |
389 |
$author_url, $author_url2, $author_name, |
$author_url, $author_url2, $author_name, |
390 |
$ed_author_alt, $ed_author_info, $width2, $height2) = |
$ed_author_alt, $ed_author_info, $width2, $height2, |
391 |
array($art["title"], $art["lead"], $art["pic_pos"], |
$ed_author_ime, $ed_prikazi) = array($art["title"], $art["lead"], |
392 |
$art["pic_url"], $art["pic_url"], urldecode($art["pic_url"]), |
$art["pic_pos"], $art["pic_url"], $art["pic_url"], |
393 |
$art["pic_alt"], $art["category"], $art["more"], |
urldecode($art["pic_url"]), $art["pic_alt"], $art["category"], |
394 |
$art["more_title"], $art["pic_w"], $art["pic_h"], |
$art["more"], $art["more_title"], $art["pic_w"], $art["pic_h"], |
395 |
$art["au_pic"], $art["au_pic"], urldecode($art["au_pic"]), |
$art["au_pic"], $art["au_pic"], urldecode($art["au_pic"]), |
396 |
$art["au_alt"], $art["au_info"], $art["au_w"], $art["au_h"]); |
$art["au_alt"], $art["au_info"], $art["au_w"], $art["au_h"], |
397 |
|
$art["au_name"], $art["show"]); |
398 |
|
if ($art["text"]) reset($art["text"]); |
399 |
while ($art["text"] && list($id, $val) = each($art["text"])) { |
while ($art["text"] && list($id, $val) = each($art["text"])) { |
400 |
array_push($ed_pgfs, array($val["id"], $val["text"], $val["title"], |
array_push($ed_pgfs, array($val["id"], $val["text"], $val["title"], |
401 |
$val["level"], urldecode($val["pic"]), |
$val["level"], urldecode($val["pic"]), |
504 |
$tp->assign("ed_author_name", MyEscape(convert_html($author_name))); |
$tp->assign("ed_author_name", MyEscape(convert_html($author_name))); |
505 |
$tp->assign("ed_author_alt", MyEscape(convert_html($ed_author_alt))); |
$tp->assign("ed_author_alt", MyEscape(convert_html($ed_author_alt))); |
506 |
$tp->assign("ed_author_info", MyEscape(convert_html($ed_author_info))); |
$tp->assign("ed_author_info", MyEscape(convert_html($ed_author_info))); |
507 |
|
$tp->assign("ed_author_ime", MyEscape(convert_html($ed_author_ime))); |
508 |
$tp->assign("ed_author_width", $width2); |
$tp->assign("ed_author_width", $width2); |
509 |
$tp->assign("ed_author_height", $height2); |
$tp->assign("ed_author_height", $height2); |
510 |
$tp->assign("ed_more", MyEscape($ed_more)); |
$tp->assign("ed_more", MyEscape($ed_more)); |
511 |
$tp->assign("ed_more_new", strstr($ed_more, "://") ? true : false); |
$tp->assign("ed_more_new", strstr($ed_more, "://") ? true : false); |
512 |
$tp->assign("ed_more_title", MyEscape($ed_more_title)); |
$tp->assign("ed_more_title", MyEscape($ed_more_title)); |
513 |
|
$tp->assign("ed_prikazi", $ed_prikazi); |
514 |
$tp->assign("ed_clr_main", ($clear_main || $clr_main || !$titlepic_url) ? true : false); |
$tp->assign("ed_clr_main", ($clear_main || $clr_main || !$titlepic_url) ? true : false); |
515 |
$tp->assign("ed_clr_author", ($clear_author || $clr_author || !$author_url) ? true : false); |
$tp->assign("ed_clr_author", ($clear_author || $clr_author || !$author_url) ? true : false); |
516 |
$tp->assign("ed_text", $ed_text); |
$tp->assign("ed_text", $ed_text); |
522 |
$tp->assign("aupicdir", "$aupicdir/"); |
$tp->assign("aupicdir", "$aupicdir/"); |
523 |
$tp->assign("vijest", $isVijest ? true : false); |
$tp->assign("vijest", $isVijest ? true : false); |
524 |
if ($ed_preview) { |
if ($ed_preview) { |
|
include_once("author.php"); |
|
525 |
$tp->assign("AUTHOR", GetAuthor(MyEscape(convert_html($author_url)), |
$tp->assign("AUTHOR", GetAuthor(MyEscape(convert_html($author_url)), |
526 |
MyEscape(convert_html($ed_author_alt)), |
MyEscape(convert_html($ed_author_alt)), |
527 |
MyEscape(convert_html($ed_author_info)), |
MyEscape(convert_html($ed_author_info)), |
531 |
$params = array(); |
$params = array(); |
532 |
if ($section) array_push($params, "section=$section"); |
if ($section) array_push($params, "section=$section"); |
533 |
if ($section_menu) array_push($params, "section_menu=$section_menu"); |
if ($section_menu) array_push($params, "section_menu=$section_menu"); |
534 |
|
if ($section_menu2) array_push($params, "section_menu2=$section_menu2"); |
535 |
|
if ($spec) array_push($params, "spec=$spec"); |
536 |
if ($ed_id) array_push($params, "ed_id=$ed_id"); |
if ($ed_id) array_push($params, "ed_id=$ed_id"); |
537 |
if ($ed_preview) array_push($params, "ed_preview=$ed_preview"); |
if ($ed_preview) array_push($params, "ed_preview=$ed_preview"); |
538 |
if ($trigger) array_push($params, "$trigger=1"); |
if ($trigger) array_push($params, "$trigger=1"); |
539 |
global $PHP_SELF; |
$tp->assign("FORM_ACTION", HTMLSpecialChars("?".implode("&", $params))); |
|
$tp->assign("FORM_ACTION", $PHP_SELF.HTMLSpecialChars("?".implode("&", $params))); |
|
540 |
if (!$ed_preview) { |
if (!$ed_preview) { |
541 |
global $onload; |
global $onload; |
542 |
$onload .= "document.forms[1].elements[0].focus();"; |
$onload .= "document.forms[1].elements[0].focus();"; |