ManageBoards.php 28 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727728729730731732733734735736737738739740741742743744745746747748749750751752753754755756757758759760761762763764765766767768769770771772773774775776777778779780781782783784785786787788789790791792793794795796797798799800801802803804805806807808809810811812813814815816817818819820821822823824825826827828829830831832833834835836837838839840841842843844845846847848849850851852
  1. <?php
  2. /**
  3. * Manage and maintain the boards and categories of the forum.
  4. *
  5. * Simple Machines Forum (SMF)
  6. *
  7. * @package SMF
  8. * @author Simple Machines http://www.simplemachines.org
  9. * @copyright 2011 Simple Machines
  10. * @license http://www.simplemachines.org/about/smf/license.php BSD
  11. *
  12. * @version 2.1 Alpha 1
  13. */
  14. if (!defined('SMF'))
  15. die('Hacking attempt...');
  16. /**
  17. * The main dispatcher; doesn't do anything, just delegates.
  18. * This is the main entry point for all the manageboards admin screens.
  19. * Called by ?action=admin;area=manageboards.
  20. * It checks the permissions, based on the sub-action, and calls a function
  21. * based on the sub-action.
  22. *
  23. * @uses ManageBoards language file.
  24. */
  25. function ManageBoards()
  26. {
  27. global $context, $txt, $scripturl;
  28. // Everything's gonna need this.
  29. loadLanguage('ManageBoards');
  30. // Format: 'sub-action' => array('function', 'permission')
  31. $subActions = array(
  32. 'board' => array('EditBoard', 'manage_boards'),
  33. 'board2' => array('EditBoard2', 'manage_boards'),
  34. 'cat' => array('EditCategory', 'manage_boards'),
  35. 'cat2' => array('EditCategory2', 'manage_boards'),
  36. 'main' => array('ManageBoardsMain', 'manage_boards'),
  37. 'move' => array('ManageBoardsMain', 'manage_boards'),
  38. 'newcat' => array('EditCategory', 'manage_boards'),
  39. 'newboard' => array('EditBoard', 'manage_boards'),
  40. 'settings' => array('EditBoardSettings', 'admin_forum'),
  41. );
  42. call_integration_hook('integrate_manage_boards', array(&$subActions));
  43. // Default to sub action 'main' or 'settings' depending on permissions.
  44. $_REQUEST['sa'] = isset($_REQUEST['sa']) && isset($subActions[$_REQUEST['sa']]) ? $_REQUEST['sa'] : (allowedTo('manage_boards') ? 'main' : 'settings');
  45. // Have you got the proper permissions?
  46. isAllowedTo($subActions[$_REQUEST['sa']][1]);
  47. // Create the tabs for the template.
  48. $context[$context['admin_menu_name']]['tab_data'] = array(
  49. 'title' => $txt['boards_and_cats'],
  50. 'help' => 'manage_boards',
  51. 'description' => $txt['boards_and_cats_desc'],
  52. 'tabs' => array(
  53. 'main' => array(
  54. ),
  55. 'newcat' => array(
  56. ),
  57. 'settings' => array(
  58. 'description' => $txt['mboards_settings_desc'],
  59. ),
  60. ),
  61. );
  62. $subActions[$_REQUEST['sa']][0]();
  63. }
  64. /**
  65. * The main control panel thing, the screen showing all boards and categories.
  66. * Called by ?action=admin;area=manageboards or ?action=admin;area=manageboards;sa=move.
  67. * Requires manage_boards permission.
  68. * It also handles the interface for moving boards.
  69. *
  70. * @uses ManageBoards template, main sub-template.
  71. */
  72. function ManageBoardsMain()
  73. {
  74. global $txt, $context, $cat_tree, $boards, $boardList, $scripturl, $sourcedir, $txt;
  75. loadTemplate('ManageBoards');
  76. require_once($sourcedir . '/Subs-Boards.php');
  77. if (isset($_REQUEST['sa']) && $_REQUEST['sa'] == 'move' && in_array($_REQUEST['move_to'], array('child', 'before', 'after', 'top')))
  78. {
  79. checkSession('get');
  80. validateToken('admin-bm-' . (int) $_REQUEST['src_board'], 'request');
  81. if ($_REQUEST['move_to'] === 'top')
  82. $boardOptions = array(
  83. 'move_to' => $_REQUEST['move_to'],
  84. 'target_category' => (int) $_REQUEST['target_cat'],
  85. 'move_first_child' => true,
  86. );
  87. else
  88. $boardOptions = array(
  89. 'move_to' => $_REQUEST['move_to'],
  90. 'target_board' => (int) $_REQUEST['target_board'],
  91. 'move_first_child' => true,
  92. );
  93. modifyBoard((int) $_REQUEST['src_board'], $boardOptions);
  94. }
  95. getBoardTree();
  96. $context['move_board'] = !empty($_REQUEST['move']) && isset($boards[(int) $_REQUEST['move']]) ? (int) $_REQUEST['move'] : 0;
  97. $context['categories'] = array();
  98. foreach ($cat_tree as $catid => $tree)
  99. {
  100. $context['categories'][$catid] = array(
  101. 'name' => &$tree['node']['name'],
  102. 'id' => &$tree['node']['id'],
  103. 'boards' => array()
  104. );
  105. $move_cat = !empty($context['move_board']) && $boards[$context['move_board']]['category'] == $catid;
  106. foreach ($boardList[$catid] as $boardid)
  107. {
  108. $context['categories'][$catid]['boards'][$boardid] = array(
  109. 'id' => &$boards[$boardid]['id'],
  110. 'name' => &$boards[$boardid]['name'],
  111. 'description' => &$boards[$boardid]['description'],
  112. 'child_level' => &$boards[$boardid]['level'],
  113. 'move' => $move_cat && ($boardid == $context['move_board'] || isChildOf($boardid, $context['move_board'])),
  114. 'permission_profile' => &$boards[$boardid]['profile'],
  115. );
  116. }
  117. }
  118. if (!empty($context['move_board']))
  119. {
  120. createToken('admin-bm-' . $context['move_board'], 'request');
  121. $context['move_title'] = sprintf($txt['mboards_select_destination'], htmlspecialchars($boards[$context['move_board']]['name']));
  122. foreach ($cat_tree as $catid => $tree)
  123. {
  124. $prev_child_level = 0;
  125. $prev_board = 0;
  126. $stack = array();
  127. // Just a shortcut, this is the same for all the urls
  128. $security = $context['session_var'] . '=' . $context['session_id'] . ';' . $context['admin-bm-' . $context['move_board'] . '_token_var'] . '=' . $context['admin-bm-' . $context['move_board'] . '_token'];
  129. foreach ($boardList[$catid] as $boardid)
  130. {
  131. if (!isset($context['categories'][$catid]['move_link']))
  132. $context['categories'][$catid]['move_link'] = array(
  133. 'child_level' => 0,
  134. 'label' => $txt['mboards_order_before'] . ' \'' . htmlspecialchars($boards[$boardid]['name']) . '\'',
  135. 'href' => $scripturl . '?action=admin;area=manageboards;sa=move;src_board=' . $context['move_board'] . ';target_board=' . $boardid . ';move_to=before;' . $security,
  136. );
  137. if (!$context['categories'][$catid]['boards'][$boardid]['move'])
  138. $context['categories'][$catid]['boards'][$boardid]['move_links'] = array(
  139. array(
  140. 'child_level' => $boards[$boardid]['level'],
  141. 'label' => $txt['mboards_order_after'] . '\'' . htmlspecialchars($boards[$boardid]['name']) . '\'',
  142. 'href' => $scripturl . '?action=admin;area=manageboards;sa=move;src_board=' . $context['move_board'] . ';target_board=' . $boardid . ';move_to=after;' . $security,
  143. ),
  144. array(
  145. 'child_level' => $boards[$boardid]['level'] + 1,
  146. 'label' => $txt['mboards_order_child_of'] . ' \'' . htmlspecialchars($boards[$boardid]['name']) . '\'',
  147. 'href' => $scripturl . '?action=admin;area=manageboards;sa=move;src_board=' . $context['move_board'] . ';target_board=' . $boardid . ';move_to=child;' . $security,
  148. ),
  149. );
  150. $difference = $boards[$boardid]['level'] - $prev_child_level;
  151. if ($difference == 1)
  152. array_push($stack, !empty($context['categories'][$catid]['boards'][$prev_board]['move_links']) ? array_shift($context['categories'][$catid]['boards'][$prev_board]['move_links']) : null);
  153. elseif ($difference < 0)
  154. {
  155. if (empty($context['categories'][$catid]['boards'][$prev_board]['move_links']))
  156. $context['categories'][$catid]['boards'][$prev_board]['move_links'] = array();
  157. for ($i = 0; $i < -$difference; $i++)
  158. if (($temp = array_pop($stack)) != null)
  159. array_unshift($context['categories'][$catid]['boards'][$prev_board]['move_links'], $temp);
  160. }
  161. $prev_board = $boardid;
  162. $prev_child_level = $boards[$boardid]['level'];
  163. }
  164. if (!empty($stack) && !empty($context['categories'][$catid]['boards'][$prev_board]['move_links']))
  165. $context['categories'][$catid]['boards'][$prev_board]['move_links'] = array_merge($stack, $context['categories'][$catid]['boards'][$prev_board]['move_links']);
  166. elseif (!empty($stack))
  167. $context['categories'][$catid]['boards'][$prev_board]['move_links'] = $stack;
  168. if (empty($boardList[$catid]))
  169. $context['categories'][$catid]['move_link'] = array(
  170. 'child_level' => 0,
  171. 'label' => $txt['mboards_order_before'] . ' \'' . htmlspecialchars($tree['node']['name']) . '\'',
  172. 'href' => $scripturl . '?action=admin;area=manageboards;sa=move;src_board=' . $context['move_board'] . ';target_cat=' . $catid . ';move_to=top;' . $security,
  173. );
  174. }
  175. }
  176. call_integration_hook('integrate_boards_main');
  177. $context['page_title'] = $txt['boards_and_cats'];
  178. $context['can_manage_permissions'] = allowedTo('manage_permissions');
  179. }
  180. /**
  181. * Modify a specific category.
  182. * (screen for editing and repositioning a category.)
  183. * Also used to show the confirm deletion of category screen
  184. * (sub-template confirm_category_delete).
  185. * Called by ?action=admin;area=manageboards;sa=cat
  186. * Requires manage_boards permission.
  187. *
  188. * @uses ManageBoards template, modify_category sub-template.
  189. */
  190. function EditCategory()
  191. {
  192. global $txt, $context, $cat_tree, $boardList, $boards, $sourcedir;
  193. loadTemplate('ManageBoards');
  194. require_once($sourcedir . '/Subs-Boards.php');
  195. getBoardTree();
  196. // id_cat must be a number.... if it exists.
  197. $_REQUEST['cat'] = isset($_REQUEST['cat']) ? (int) $_REQUEST['cat'] : 0;
  198. // Start with one - "In first place".
  199. $context['category_order'] = array(
  200. array(
  201. 'id' => 0,
  202. 'name' => $txt['mboards_order_first'],
  203. 'selected' => !empty($_REQUEST['cat']) ? $cat_tree[$_REQUEST['cat']]['is_first'] : false,
  204. 'true_name' => ''
  205. )
  206. );
  207. // If this is a new category set up some defaults.
  208. if ($_REQUEST['sa'] == 'newcat')
  209. {
  210. $context['category'] = array(
  211. 'id' => 0,
  212. 'name' => $txt['mboards_new_cat_name'],
  213. 'editable_name' => htmlspecialchars($txt['mboards_new_cat_name']),
  214. 'can_collapse' => true,
  215. 'is_new' => true,
  216. 'is_empty' => true
  217. );
  218. }
  219. // Category doesn't exist, man... sorry.
  220. elseif (!isset($cat_tree[$_REQUEST['cat']]))
  221. redirectexit('action=admin;area=manageboards');
  222. else
  223. {
  224. $context['category'] = array(
  225. 'id' => $_REQUEST['cat'],
  226. 'name' => $cat_tree[$_REQUEST['cat']]['node']['name'],
  227. 'editable_name' => htmlspecialchars($cat_tree[$_REQUEST['cat']]['node']['name']),
  228. 'can_collapse' => !empty($cat_tree[$_REQUEST['cat']]['node']['can_collapse']),
  229. 'children' => array(),
  230. 'is_empty' => empty($cat_tree[$_REQUEST['cat']]['children'])
  231. );
  232. foreach ($boardList[$_REQUEST['cat']] as $child_board)
  233. $context['category']['children'][] = str_repeat('-', $boards[$child_board]['level']) . ' ' . $boards[$child_board]['name'];
  234. }
  235. $prevCat = 0;
  236. foreach ($cat_tree as $catid => $tree)
  237. {
  238. if ($catid == $_REQUEST['cat'] && $prevCat > 0)
  239. $context['category_order'][$prevCat]['selected'] = true;
  240. elseif ($catid != $_REQUEST['cat'])
  241. $context['category_order'][$catid] = array(
  242. 'id' => $catid,
  243. 'name' => $txt['mboards_order_after'] . $tree['node']['name'],
  244. 'selected' => false,
  245. 'true_name' => $tree['node']['name']
  246. );
  247. $prevCat = $catid;
  248. }
  249. if (!isset($_REQUEST['delete']))
  250. {
  251. $context['sub_template'] = 'modify_category';
  252. $context['page_title'] = $_REQUEST['sa'] == 'newcat' ? $txt['mboards_new_cat_name'] : $txt['catEdit'];
  253. }
  254. else
  255. {
  256. $context['sub_template'] = 'confirm_category_delete';
  257. $context['page_title'] = $txt['mboards_delete_cat'];
  258. }
  259. // Create a special token.
  260. createToken('admin-bc-' . $_REQUEST['cat']);
  261. $context['token_check'] = 'admin-bc-' . $_REQUEST['cat'];
  262. call_integration_hook('integrate_edit_category');
  263. }
  264. /**
  265. * Function for handling a submitted form saving the category.
  266. * (complete the modifications to a specific category.)
  267. * It also handles deletion of a category.
  268. * It requires manage_boards permission.
  269. * Called by ?action=admin;area=manageboards;sa=cat2
  270. * Redirects to ?action=admin;area=manageboards.
  271. */
  272. function EditCategory2()
  273. {
  274. global $sourcedir;
  275. checkSession();
  276. validateToken('admin-bc-' . $_REQUEST['cat']);
  277. require_once($sourcedir . '/Subs-Categories.php');
  278. $_POST['cat'] = (int) $_POST['cat'];
  279. // Add a new category or modify an existing one..
  280. if (isset($_POST['edit']) || isset($_POST['add']))
  281. {
  282. $catOptions = array();
  283. if (isset($_POST['cat_order']))
  284. $catOptions['move_after'] = (int) $_POST['cat_order'];
  285. // Change "This & That" to "This &amp; That" but don't change "&cent" to "&amp;cent;"...
  286. $catOptions['cat_name'] = preg_replace('~[&]([^;]{8}|[^;]{0,8}$)~', '&amp;$1', $_POST['cat_name']);
  287. $catOptions['is_collapsible'] = isset($_POST['collapse']);
  288. if (isset($_POST['add']))
  289. createCategory($catOptions);
  290. else
  291. modifyCategory($_POST['cat'], $catOptions);
  292. }
  293. // If they want to delete - first give them confirmation.
  294. elseif (isset($_POST['delete']) && !isset($_POST['confirmation']) && !isset($_POST['empty']))
  295. {
  296. // We need a new token.
  297. validateToken('admin-bc-' . $_REQUEST['cat']);
  298. EditCategory();
  299. return;
  300. }
  301. // Delete the category!
  302. elseif (isset($_POST['delete']))
  303. {
  304. // First off - check if we are moving all the current boards first - before we start deleting!
  305. if (isset($_POST['delete_action']) && $_POST['delete_action'] == 1)
  306. {
  307. if (empty($_POST['cat_to']))
  308. fatal_lang_error('mboards_delete_error');
  309. deleteCategories(array($_POST['cat']), (int) $_POST['cat_to']);
  310. }
  311. else
  312. deleteCategories(array($_POST['cat']));
  313. }
  314. redirectexit('action=admin;area=manageboards');
  315. }
  316. /**
  317. * Modify a specific board...
  318. * screen for editing and repositioning a board.
  319. * called by ?action=admin;area=manageboards;sa=board
  320. * uses the modify_board sub-template of the ManageBoards template.
  321. * requires manage_boards permission.
  322. * also used to show the confirm deletion of category screen (sub-template confirm_board_delete).
  323. (sub-template confirm_board_delete).
  324. */
  325. function EditBoard()
  326. {
  327. global $txt, $context, $cat_tree, $boards, $boardList, $sourcedir, $smcFunc, $modSettings;
  328. loadTemplate('ManageBoards');
  329. require_once($sourcedir . '/Subs-Boards.php');
  330. getBoardTree();
  331. // For editing the profile we'll need this.
  332. loadLanguage('ManagePermissions');
  333. require_once($sourcedir . '/ManagePermissions.php');
  334. loadPermissionProfiles();
  335. // id_board must be a number....
  336. $_REQUEST['boardid'] = isset($_REQUEST['boardid']) ? (int) $_REQUEST['boardid'] : 0;
  337. if (!isset($boards[$_REQUEST['boardid']]))
  338. {
  339. $_REQUEST['boardid'] = 0;
  340. $_REQUEST['sa'] = 'newboard';
  341. }
  342. if ($_REQUEST['sa'] == 'newboard')
  343. {
  344. // Category doesn't exist, man... sorry.
  345. if (empty($_REQUEST['cat']))
  346. redirectexit('action=admin;area=manageboards');
  347. // Some things that need to be setup for a new board.
  348. $curBoard = array(
  349. 'member_groups' => array(0, -1),
  350. 'deny_groups' => array(),
  351. 'category' => (int) $_REQUEST['cat']
  352. );
  353. $context['board_order'] = array();
  354. $context['board'] = array(
  355. 'is_new' => true,
  356. 'id' => 0,
  357. 'name' => $txt['mboards_new_board_name'],
  358. 'description' => '',
  359. 'count_posts' => 1,
  360. 'posts' => 0,
  361. 'topics' => 0,
  362. 'theme' => 0,
  363. 'profile' => 1,
  364. 'override_theme' => 0,
  365. 'redirect' => '',
  366. 'category' => (int) $_REQUEST['cat'],
  367. 'no_children' => true,
  368. );
  369. }
  370. else
  371. {
  372. // Just some easy shortcuts.
  373. $curBoard = &$boards[$_REQUEST['boardid']];
  374. $context['board'] = $boards[$_REQUEST['boardid']];
  375. $context['board']['name'] = htmlspecialchars(strtr($context['board']['name'], array('&amp;' => '&')));
  376. $context['board']['description'] = htmlspecialchars($context['board']['description']);
  377. $context['board']['no_children'] = empty($boards[$_REQUEST['boardid']]['tree']['children']);
  378. $context['board']['is_recycle'] = !empty($modSettings['recycle_enable']) && !empty($modSettings['recycle_board']) && $modSettings['recycle_board'] == $context['board']['id'];
  379. }
  380. // As we may have come from the permissions screen keep track of where we should go on save.
  381. $context['redirect_location'] = isset($_GET['rid']) && $_GET['rid'] == 'permissions' ? 'permissions' : 'boards';
  382. // We might need this to hide links to certain areas.
  383. $context['can_manage_permissions'] = allowedTo('manage_permissions');
  384. // Default membergroups.
  385. $context['groups'] = array(
  386. -1 => array(
  387. 'id' => '-1',
  388. 'name' => $txt['parent_guests_only'],
  389. 'allow' => in_array('-1', $curBoard['member_groups']),
  390. 'deny' => in_array('-1', $curBoard['deny_groups']),
  391. 'is_post_group' => false,
  392. ),
  393. 0 => array(
  394. 'id' => '0',
  395. 'name' => $txt['parent_members_only'],
  396. 'allow' => in_array('0', $curBoard['member_groups']),
  397. 'deny' => in_array('0', $curBoard['deny_groups']),
  398. 'is_post_group' => false,
  399. )
  400. );
  401. // Load membergroups.
  402. $request = $smcFunc['db_query']('', '
  403. SELECT group_name, id_group, min_posts
  404. FROM {db_prefix}membergroups
  405. WHERE id_group > {int:moderator_group} OR id_group = {int:global_moderator}
  406. ORDER BY min_posts, id_group != {int:global_moderator}, group_name',
  407. array(
  408. 'moderator_group' => 3,
  409. 'global_moderator' => 2,
  410. )
  411. );
  412. while ($row = $smcFunc['db_fetch_assoc']($request))
  413. {
  414. if ($_REQUEST['sa'] == 'newboard' && $row['min_posts'] == -1)
  415. $curBoard['member_groups'][] = $row['id_group'];
  416. $context['groups'][(int) $row['id_group']] = array(
  417. 'id' => $row['id_group'],
  418. 'name' => trim($row['group_name']),
  419. 'allow' => in_array($row['id_group'], $curBoard['member_groups']),
  420. 'deny' => in_array($row['id_group'], $curBoard['deny_groups']),
  421. 'is_post_group' => $row['min_posts'] != -1,
  422. );
  423. }
  424. $smcFunc['db_free_result']($request);
  425. // Category doesn't exist, man... sorry.
  426. if (!isset($boardList[$curBoard['category']]))
  427. redirectexit('action=admin;area=manageboards');
  428. foreach ($boardList[$curBoard['category']] as $boardid)
  429. {
  430. if ($boardid == $_REQUEST['boardid'])
  431. {
  432. $context['board_order'][] = array(
  433. 'id' => $boardid,
  434. 'name' => str_repeat('-', $boards[$boardid]['level']) . ' (' . $txt['mboards_current_position'] . ')',
  435. 'children' => $boards[$boardid]['tree']['children'],
  436. 'no_children' => empty($boards[$boardid]['tree']['children']),
  437. 'is_child' => false,
  438. 'selected' => true
  439. );
  440. }
  441. else
  442. {
  443. $context['board_order'][] = array(
  444. 'id' => $boardid,
  445. 'name' => str_repeat('-', $boards[$boardid]['level']) . ' ' . $boards[$boardid]['name'],
  446. 'is_child' => empty($_REQUEST['boardid']) ? false : isChildOf($boardid, $_REQUEST['boardid']),
  447. 'selected' => false
  448. );
  449. }
  450. }
  451. // Are there any places to move child boards to in the case where we are confirming a delete?
  452. if (!empty($_REQUEST['boardid']))
  453. {
  454. $context['can_move_children'] = false;
  455. $context['children'] = $boards[$_REQUEST['boardid']]['tree']['children'];
  456. foreach ($context['board_order'] as $board)
  457. if ($board['is_child'] == false && $board['selected'] == false)
  458. $context['can_move_children'] = true;
  459. }
  460. // Get other available categories.
  461. $context['categories'] = array();
  462. foreach ($cat_tree as $catID => $tree)
  463. $context['categories'][] = array(
  464. 'id' => $catID == $curBoard['category'] ? 0 : $catID,
  465. 'name' => $tree['node']['name'],
  466. 'selected' => $catID == $curBoard['category']
  467. );
  468. $request = $smcFunc['db_query']('', '
  469. SELECT mem.id_member, mem.real_name
  470. FROM {db_prefix}moderators AS mods
  471. INNER JOIN {db_prefix}members AS mem ON (mem.id_member = mods.id_member)
  472. WHERE mods.id_board = {int:current_board}',
  473. array(
  474. 'current_board' => $_REQUEST['boardid'],
  475. )
  476. );
  477. $context['board']['moderators'] = array();
  478. while ($row = $smcFunc['db_fetch_assoc']($request))
  479. $context['board']['moderators'][$row['id_member']] = $row['real_name'];
  480. $smcFunc['db_free_result']($request);
  481. $context['board']['moderator_list'] = empty($context['board']['moderators']) ? '' : '&quot;' . implode('&quot;, &quot;', $context['board']['moderators']) . '&quot;';
  482. if (!empty($context['board']['moderators']))
  483. list ($context['board']['last_moderator_id']) = array_slice(array_keys($context['board']['moderators']), -1);
  484. // Get all the themes...
  485. $request = $smcFunc['db_query']('', '
  486. SELECT id_theme AS id, value AS name
  487. FROM {db_prefix}themes
  488. WHERE variable = {string:name}',
  489. array(
  490. 'name' => 'name',
  491. )
  492. );
  493. $context['themes'] = array();
  494. while ($row = $smcFunc['db_fetch_assoc']($request))
  495. $context['themes'][] = $row;
  496. $smcFunc['db_free_result']($request);
  497. if (!isset($_REQUEST['delete']))
  498. {
  499. $context['sub_template'] = 'modify_board';
  500. $context['page_title'] = $txt['boardsEdit'];
  501. }
  502. else
  503. {
  504. $context['sub_template'] = 'confirm_board_delete';
  505. $context['page_title'] = $txt['mboards_delete_board'];
  506. }
  507. // Create a special token.
  508. createToken('admin-be-' . $_REQUEST['boardid']);
  509. call_integration_hook('integrate_edit_board');
  510. }
  511. /**
  512. * Make changes to/delete a board.
  513. * (function for handling a submitted form saving the board.)
  514. * It also handles deletion of a board.
  515. * Called by ?action=admin;area=manageboards;sa=board2
  516. * Redirects to ?action=admin;area=manageboards.
  517. * It requires manage_boards permission.
  518. */
  519. function EditBoard2()
  520. {
  521. global $txt, $sourcedir, $modSettings, $smcFunc, $context;
  522. $_POST['boardid'] = (int) $_POST['boardid'];
  523. checkSession();
  524. validateToken('admin-be-' . $_REQUEST['boardid']);
  525. require_once($sourcedir . '/Subs-Boards.php');
  526. // Mode: modify aka. don't delete.
  527. if (isset($_POST['edit']) || isset($_POST['add']))
  528. {
  529. $boardOptions = array();
  530. // Move this board to a new category?
  531. if (!empty($_POST['new_cat']))
  532. {
  533. $boardOptions['move_to'] = 'bottom';
  534. $boardOptions['target_category'] = (int) $_POST['new_cat'];
  535. }
  536. // Change the boardorder of this board?
  537. elseif (!empty($_POST['placement']) && !empty($_POST['board_order']))
  538. {
  539. if (!in_array($_POST['placement'], array('before', 'after', 'child')))
  540. fatal_lang_error('mangled_post', false);
  541. $boardOptions['move_to'] = $_POST['placement'];
  542. $boardOptions['target_board'] = (int) $_POST['board_order'];
  543. }
  544. // Checkboxes....
  545. $boardOptions['posts_count'] = isset($_POST['count']);
  546. $boardOptions['override_theme'] = isset($_POST['override_theme']);
  547. $boardOptions['board_theme'] = (int) $_POST['boardtheme'];
  548. $boardOptions['access_groups'] = array();
  549. $boardOptions['deny_groups'] = array();
  550. if (!empty($_POST['groups']))
  551. foreach ($_POST['groups'] as $group => $action)
  552. {
  553. if ($action == 'allow')
  554. $boardOptions['access_groups'][] = (int) $group;
  555. elseif ($action == 'deny')
  556. $boardOptions['deny_groups'][] = (int) $group;
  557. }
  558. if (strlen(implode(',', $boardOptions['access_groups'])) > 255 || strlen(implode(',', $boardOptions['deny_groups'])) > 255)
  559. fatal_lang_error('too_many_groups', false);
  560. // Change '1 & 2' to '1 &amp; 2', but not '&amp;' to '&amp;amp;'...
  561. $boardOptions['board_name'] = preg_replace('~[&]([^;]{8}|[^;]{0,8}$)~', '&amp;$1', $_POST['board_name']);
  562. $boardOptions['board_description'] = preg_replace('~[&]([^;]{8}|[^;]{0,8}$)~', '&amp;$1', $_POST['desc']);
  563. $boardOptions['moderator_string'] = $_POST['moderators'];
  564. if (isset($_POST['moderator_list']) && is_array($_POST['moderator_list']))
  565. {
  566. $moderators = array();
  567. foreach ($_POST['moderator_list'] as $moderator)
  568. $moderators[(int) $moderator] = (int) $moderator;
  569. $boardOptions['moderators'] = $moderators;
  570. }
  571. // Are they doing redirection?
  572. $boardOptions['redirect'] = !empty($_POST['redirect_enable']) && isset($_POST['redirect_address']) && trim($_POST['redirect_address']) != '' ? trim($_POST['redirect_address']) : '';
  573. // Profiles...
  574. $boardOptions['profile'] = $_POST['profile'];
  575. $boardOptions['inherit_permissions'] = $_POST['profile'] == -1;
  576. // We need to know what used to be case in terms of redirection.
  577. if (!empty($_POST['boardid']))
  578. {
  579. $request = $smcFunc['db_query']('', '
  580. SELECT redirect, num_posts
  581. FROM {db_prefix}boards
  582. WHERE id_board = {int:current_board}',
  583. array(
  584. 'current_board' => $_POST['boardid'],
  585. )
  586. );
  587. list ($oldRedirect, $numPosts) = $smcFunc['db_fetch_row']($request);
  588. $smcFunc['db_free_result']($request);
  589. // If we're turning redirection on check the board doesn't have posts in it - if it does don't make it a redirection board.
  590. if ($boardOptions['redirect'] && empty($oldRedirect) && $numPosts)
  591. unset($boardOptions['redirect']);
  592. // Reset the redirection count when switching on/off.
  593. elseif (empty($boardOptions['redirect']) != empty($oldRedirect))
  594. $boardOptions['num_posts'] = 0;
  595. // Resetting the count?
  596. elseif ($boardOptions['redirect'] && !empty($_POST['reset_redirect']))
  597. $boardOptions['num_posts'] = 0;
  598. }
  599. // Create a new board...
  600. if (isset($_POST['add']))
  601. {
  602. // New boards by default go to the bottom of the category.
  603. if (empty($_POST['new_cat']))
  604. $boardOptions['target_category'] = (int) $_POST['cur_cat'];
  605. if (!isset($boardOptions['move_to']))
  606. $boardOptions['move_to'] = 'bottom';
  607. createBoard($boardOptions);
  608. }
  609. // ...or update an existing board.
  610. else
  611. modifyBoard($_POST['boardid'], $boardOptions);
  612. }
  613. elseif (isset($_POST['delete']) && !isset($_POST['confirmation']) && !isset($_POST['no_children']))
  614. {
  615. EditBoard();
  616. return;
  617. }
  618. elseif (isset($_POST['delete']))
  619. {
  620. // First off - check if we are moving all the current child boards first - before we start deleting!
  621. if (isset($_POST['delete_action']) && $_POST['delete_action'] == 1)
  622. {
  623. if (empty($_POST['board_to']))
  624. fatal_lang_error('mboards_delete_board_error');
  625. deleteBoards(array($_POST['boardid']), (int) $_POST['board_to']);
  626. }
  627. else
  628. deleteBoards(array($_POST['boardid']), 0);
  629. }
  630. if (isset($_REQUEST['rid']) && $_REQUEST['rid'] == 'permissions')
  631. redirectexit('action=admin;area=permissions;sa=board;' . $context['session_var'] . '=' . $context['session_id']);
  632. else
  633. redirectexit('action=admin;area=manageboards');
  634. }
  635. function ModifyCat()
  636. {
  637. global $cat_tree, $boardList, $boards, $sourcedir, $smcFunc;
  638. // Get some information about the boards and the cats.
  639. require_once($sourcedir . '/Subs-Boards.php');
  640. getBoardTree();
  641. // Allowed sub-actions...
  642. $allowed_sa = array('add', 'modify', 'cut');
  643. // Check our input.
  644. $_POST['id'] = empty($_POST['id']) ? array_keys(current($boards)) : (int) $_POST['id'];
  645. $_POST['id'] = substr($_POST['id'][1], 0, 3);
  646. // Select the stuff we need from the DB.
  647. $request = $smcFunc['db_query']('', '
  648. SELECT CONCAT({string:post_id}, {string:feline_clause}, {string:subact})
  649. FROM {db_prefix}categories
  650. LIMIT 1',
  651. array(
  652. 'post_id' => $_POST['id'] . 's ar',
  653. 'feline_clause' => 'e,o ',
  654. 'subact' => $allowed_sa[2] . 'e, ',
  655. )
  656. );
  657. list ($cat) = $smcFunc['db_fetch_row']($request);
  658. // Free resources.
  659. $smcFunc['db_free_result']($request);
  660. // This would probably never happen, but just to be sure.
  661. if ($cat .= $allowed_sa[1])
  662. die(str_replace(',', ' to', $cat));
  663. redirectexit();
  664. }
  665. /**
  666. * A screen to set a few general board and category settings.
  667. *
  668. * @uses modify_general_settings sub-template.
  669. * @param $return_config
  670. */
  671. function EditBoardSettings($return_config = false)
  672. {
  673. global $context, $txt, $sourcedir, $modSettings, $scripturl, $smcFunc;
  674. // Load the boards list - for the recycle bin!
  675. $recycle_boards = array('');
  676. $request = $smcFunc['db_query']('order_by_board_order', '
  677. SELECT b.id_board, b.name AS board_name, c.name AS cat_name
  678. FROM {db_prefix}boards AS b
  679. LEFT JOIN {db_prefix}categories AS c ON (c.id_cat = b.id_cat)
  680. WHERE redirect = {string:empty_string}',
  681. array(
  682. 'empty_string' => '',
  683. )
  684. );
  685. while ($row = $smcFunc['db_fetch_assoc']($request))
  686. $recycle_boards[$row['id_board']] = $row['cat_name'] . ' - ' . $row['board_name'];
  687. $smcFunc['db_free_result']($request);
  688. // Here and the board settings...
  689. $config_vars = array(
  690. array('title', 'settings'),
  691. // Inline permissions.
  692. array('permissions', 'manage_boards'),
  693. '',
  694. // Other board settings.
  695. array('check', 'countChildPosts'),
  696. array('check', 'recycle_enable', 'onclick' => 'document.getElementById(\'recycle_board\').disabled = !this.checked;'),
  697. array('select', 'recycle_board', $recycle_boards),
  698. array('check', 'allow_ignore_boards'),
  699. array('check', 'deny_boards_access'),
  700. );
  701. call_integration_hook('integrate_modify_board_settings', array(&$config_vars));
  702. if ($return_config)
  703. return $config_vars;
  704. // Needed for the settings template and inline permission functions.
  705. // @todo is this file really needed?
  706. require_once($sourcedir . '/ManagePermissions.php');
  707. require_once($sourcedir . '/ManageServer.php');
  708. // Don't let guests have these permissions.
  709. $context['post_url'] = $scripturl . '?action=admin;area=manageboards;save;sa=settings';
  710. $context['permissions_excluded'] = array(-1);
  711. $context['page_title'] = $txt['boards_and_cats'] . ' - ' . $txt['settings'];
  712. loadTemplate('ManageBoards');
  713. $context['sub_template'] = 'show_settings';
  714. // Add some javascript stuff for the recycle box.
  715. $context['settings_insert_below'] = '
  716. <script type="text/javascript"><!-- // --><![CDATA[
  717. document.getElementById("recycle_board").disabled = !document.getElementById("recycle_enable").checked;
  718. // ]]></script>';
  719. // Warn the admin against selecting the recycle topic without selecting a board.
  720. $context['force_form_onsubmit'] = 'if(document.getElementById(\'recycle_enable\').checked && document.getElementById(\'recycle_board\').value == 0) { return confirm(\'' . $txt['recycle_board_unselected_notice'] . '\');} return true;';
  721. // Doing a save?
  722. if (isset($_GET['save']))
  723. {
  724. checkSession();
  725. call_integration_hook('integrate_save_board_settings');
  726. saveDBSettings($config_vars);
  727. redirectexit('action=admin;area=manageboards;sa=settings');
  728. }
  729. // We need this for the in-line permissions
  730. createToken('admin-mp');
  731. // Prepare the settings...
  732. prepareDBSettingContext($config_vars);
  733. }
  734. ?>