<?PHP
/* ====================
Seditio - Website engine
Copyright Neocrome
http://www.neocrome.net
==================== */
/**
* Page display.
*
* @package Cotonti
* @version 0.0.3
* @author Neocrome, Cotonti Team
* @copyright Copyright (c) 2008-2009 Cotonti Team
* @license BSD License
*/
defined('SED_CODE') or die('Wrong URL');
list($usr['auth_read'], $usr['auth_write'], $usr['isadmin']) = sed_auth('page', 'any');
sed_block($usr['auth_read']);
$id = sed_import('id','G','INT');
$al = sed_sql_prep(sed_import('al','G','TXT'));
$r = sed_import('r','G','ALP');
$c = sed_import('c','G','TXT');
$pg = sed_import('pg','G','INT');
/* === Hook === */
$extp = sed_getextplugins('page.first');
if (is_array($extp))
{ foreach($extp as $k => $pl) { include_once($cfg['plugins_dir'].'/'.$pl['pl_code'].'/'.$pl['pl_file'].'.php'); } }
/* ===== */
if (!empty($al))
{ $sql = sed_sql_query("SELECT p.*, u.user_name, u.user_avatar FROM $db_pages AS p
LEFT JOIN $db_users AS u ON u.user_id=p.page_ownerid
WHERE page_alias='$al' LIMIT 1"); }
else
{ $sql = sed_sql_query("SELECT p.*, u.user_name, u.user_avatar FROM $db_pages AS p
LEFT JOIN $db_users AS u ON u.user_id=p.page_ownerid
WHERE page_id='$id'"); }
sed_die(sed_sql_numrows($sql)==0);
$pag = sed_sql_fetcharray($sql);
$pag['page_begin_noformat'] = $pag['page_begin'];
$pag['page_tab'] = (empty($pg)) ? 0 : $pg;
$pag['page_pageurl'] = (empty($pag['page_alias'])) ? sed_url('page', "id=".$pag['page_id']) : sed_url('page', "al=".$pag['page_alias']);
list($usr['auth_read'], $usr['auth_write'], $usr['isadmin'], $usr['auth_download']) = sed_auth('page', $pag['page_cat'], 'RWA1');
sed_block($usr['auth_read']);
if ($pag['page_state'] == 1 && !$usr['isadmin'] && $usr['id'] != $pag['page_ownerid'])
{
sed_log("Attempt to directly access an un-validated page", 'sec');
header("Location: " . SED_ABSOLUTE_URL . sed_url('message', "msg=930", '', true));
exit;
}
if (mb_substr($pag['page_text'], 0, 6)=='redir:')
{
$redir = trim(str_replace('redir:', '', $pag['page_text']));
$sql = sed_sql_query("UPDATE $db_pages SET page_filecount=page_filecount+1 WHERE page_id='".$pag['page_id']."'");
header('Location: ' . (preg_match('#^(http|ftp)s?://#', $redir) ? '' : SED_ABSOLUTE_URL) . $redir);
exit;
}
elseif (mb_substr($pag['page_text'], 0, 8)=='include:')
{
$pag['page_text'] = sed_readraw('datas/html/'.trim(mb_substr($pag['page_text'], 8, 255)));
}
if($pag['page_file'] && $sys['now_offset']>$pag['page_begin_noformat'] && $a=='dl' && (($pag['page_file'] == 2 && $usr['auth_download']) || $pag['page_file'] == 1))
{
/* === Hook === */
$extp = sed_getextplugins('page.download.first');
if (is_array($extp))
{ foreach($extp as $k => $pl) { include_once($cfg['plugins_dir'].'/'.$pl['pl_code'].'/'.$pl['pl_file'].'.php'); } }
/* ===== */
if ($_SESSION['dl']!=$pag['page_id'])
{
header('Location: ' . SED_ABSOLUTE_URL . $pag['page_pageurl']);
exit;
}
unset($_SESSION['dl']);
$file_size = @filesize($row['page_url']);
if(!$usr['isadmin'] || $cfg['count_admin'])
{
$pag['page_filecount']++;
$sql = sed_sql_query("UPDATE $db_pages SET page_filecount=page_filecount+1 WHERE page_id=".(int)$pag['page_id']);
}
if(preg_match('#^(http|ftp)s?://#', $pag['page_url']))
{
header("Location: ".$pag['page_url']);
echo("<script type='text/javascript'>location.href='".$pag['page_url']."';</script>Redirecting...");
exit;
}
else
{
header('Location: ' . SED_ABSOLUTE_URL . $pag['page_url']);
echo("<script type='text/javascript'>location.href='". SED_ABSOLUTE_URL . $pag['page_url']."';</script>Redirecting...");
exit;
}
}
if(!$usr['isadmin'] || $cfg['count_admin'])
{
$pag['page_count']++;
$sql = (!$cfg['disablehitstats']) ? sed_sql_query("UPDATE $db_pages SET page_count='".$pag['page_count']."' WHERE page_id='".$pag['page_id']."'") : '';
}
$catpath = sed_build_catpath($pag['page_cat'], '<a href="%1$s">%2$s</a>');
$pag['page_fulltitle'] = empty($catpath) ? '' : $catpath . ' ' . $cfg['separator'] . ' ';
$pag['page_fulltitle'] .= "<a href=\"".$pag['page_pageurl']."\">".$pag['page_title']."</a>";
$pag['page_fulltitle'] .= ($pag['page_totaltabs']>1 && !empty($pag['page_tabtitle'][$pag['page_tab']-1])) ? " (".$pag['page_tabtitle'][$pag['page_tab']-1].")" : '';
$comments = ($sed_cat[$pag['page_cat']]['com']) ? true : false;
$ratings = ($sed_cat[$pag['page_cat']]['ratings']) ? true : false;
$item_code = 'p'.$pag['page_id'];
list($comments_link, $comments_display, $comments_count) = sed_build_comments($item_code, $pag['page_pageurl'], $comments);
list($ratings_link, $ratings_display) = sed_build_ratings($item_code, $pag['page_pageurl'], $ratings);
if ($pag['page_cat'] == 'system')
{
$title_tags[] = array('{TITLE}');
$title_tags[] = array('%1$s');
$title_data = array($pag['page_title']);
$out['subtitle'] = sed_title('title_list', $title_tags, $title_data);
}
else
{
$title_tags[] = array('{TITLE}', '{CATEGORY}');
$title_tags[] = array('%1$s', '%2$s');
$title_data = array($pag['page_title'], $sed_cat[$pag['page_cat']]['title']);
$out['subtitle'] = sed_title('title_page', $title_tags, $title_data);
}
/* === Hook === */
$extp = sed_getextplugins('page.main');
if (is_array($extp))
{ foreach($extp as $k => $pl) { include_once($cfg['plugins_dir'].'/'.$pl['pl_code'].'/'.$pl['pl_file'].'.php'); } }
/* ===== */
if ($pag['page_file'])
{
unset($_SESSION['dl']);
$_SESSION['dl'] = $pag['page_id'];
}
require_once $cfg['system_dir'] . '/header.php';
$mskin = sed_skinfile(array('page', $sed_cat[$pag['page_cat']]['tpl']));
$t = new XTemplate($mskin);
$t->assign(array(
"PAGE_ID" => $pag['page_id'],
"PAGE_STATE" => $pag['page_state'],
"PAGE_TITLE" => $pag['page_fulltitle'],
"PAGE_SHORTTITLE" => $pag['page_title'],
"PAGE_CAT" => $pag['page_cat'],
"PAGE_CATURL" => sed_url('list', 'c=' . $pag['page_cat']),
"PAGE_CATTITLE" => $sed_cat[$pag['page_cat']]['title'],
"PAGE_CATPATH" => $catpath,
"PAGE_CATDESC" => $sed_cat[$pag['page_cat']]['desc'],
"PAGE_CATICON" => $sed_cat[$pag['page_cat']]['icon'],
"PAGE_KEY" => $pag['page_key'],
"PAGE_DESC" => $pag['page_desc'],
"PAGE_AUTHOR" => $pag['page_author'],
"PAGE_OWNER" => sed_build_user($pag['page_ownerid'], htmlspecialchars($pag['user_name'])),
"PAGE_AVATAR" => sed_build_userimage($pag['user_avatar'], 'avatar'),
"PAGE_DATE" => @date($cfg['dateformat'], $pag['page_date'] + $usr['timezone'] * 3600),
"PAGE_BEGIN" => @date($cfg['dateformat'], $pag['page_begin'] + $usr['timezone'] * 3600),
"PAGE_EXPIRE" => @date($cfg['dateformat'], $pag['page_expire'] + $usr['timezone'] * 3600),
"PAGE_ALIAS" => $pag['page_alias'],
"PAGE_COMMENTS" => $comments_link,
"PAGE_COMMENTS_DISPLAY" => $comments_display,
"PAGE_COMMENTS_COUNT" => $comments_count,
"PAGE_RATINGS" => $ratings_link,
"PAGE_RATINGS_DISPLAY" => $ratings_display,
"PAGE_COMMENTS_RSS" => sed_url("rss", "c=comments&id=".$pag['page_id'])
));
// Extra fields
$fieldsres = sed_sql_query("SELECT * FROM $db_extra_fields WHERE field_location='pages'");
while($row = sed_sql_fetchassoc($fieldsres))
{
$uname = strtoupper($row['field_name']);
$t->assign('PAGE_'.$uname, sed_build_extrafields_data('page', $row['field_type'], $row['field_name'], $pag['page_'.$row['field_name']]));
isset($L['page_'.$row['field_name'].'_title']) ? $t->assign('PAGE_'.$uname.'_TITLE', $L['page_'.$row['field_name'].'_title']) : $t->assign('PAGE_'.$uname.'_TITLE', $row['field_description']);
}
if ($usr['isadmin'] || $usr['id'] == $pag['page_ownerid'])
{
$t->assign("PAGE_ADMIN_EDIT",
"<a href=\"".sed_url('page', 'm=edit&id='.$pag['page_id'].'&r=list')."\">".$L['Edit'].'</a>');
}
if ($usr['isadmin'])
{
if($pag['page_state'] == 1)
{
$validation = "<a href=\"".sed_url('admin', "m=page&s=queue&a=validate&id=".$pag['page_id']."&".sed_xg())."\">".$L['Validate']."</a>";
}
else
{
$validation = "<a href=\"".sed_url('admin', "m=page&s=queue&a=unvalidate&id=".$pag['page_id']."&".sed_xg())."\">".$L['Putinvalidationqueue']."</a>";
}
$t->assign(array(
"PAGE_ADMIN_COUNT" => $pag['page_count'],
"PAGE_ADMIN_UNVALIDATE" => $validation
));
}
if ($pag['page_begin_noformat']>$sys['now_offset'])
{
$pag['page_text'] = $L['pag_notavailable'].sed_build_timegap($sys['now_offset'], $pag['page_begin_noformat']);
$t->assign("PAGE_TEXT", $pag['page_text']);
}
else
{
switch($pag['page_type'])
{
case '1':
$t->assign("PAGE_TEXT", $pag['page_text']);
break;
case '2':
if ($cfg['allowphp_pages'] && $cfg['allowphp_override'])
{
ob_start();
eval($pag['page_text']);
$t->assign("PAGE_TEXT", ob_get_clean());
}
else
{
$t->assign("PAGE_TEXT", "The PHP mode is disabled for pages.<br />Please see the administration panel, then \"Configuration\", then \"Parsers\".");
}
break;
default:
if($cfg['parser_cache'])
{
if(empty($pag['page_html']) && !empty($pag['page_text']))
{
$pag['page_html'] = sed_parse(htmlspecialchars($pag['page_text']), $cfg['parsebbcodepages'], $cfg['parsesmiliespages'], true);
sed_sql_query("UPDATE $db_pages SET page_html = '".sed_sql_prep($pag['page_html'])."' WHERE page_id = " . $pag['page_id']);
}
$html = $cfg['parsebbcodepages'] ? sed_post_parse($pag['page_html']) : htmlspecialchars($pag['page_text']);
$t->assign('PAGE_TEXT', $html);
}
else
{
$text = sed_parse(htmlspecialchars($pag['page_text']), $cfg['parsebbcodepages'], $cfg['parsesmiliespages'], true);
$text = sed_post_parse($text, 'pages');
$t->assign('PAGE_TEXT', $text);
}
break;
}
}
$pag['page_file'] = intval($pag['page_file']);
if($pag['page_file'] > 0)
{
if ($sys['now_offset']>$pag['page_begin_noformat'])
{
if (!empty($pag['page_url']))
{
$dotpos = mb_strrpos($pag['page_url'],".")+1;
$pag['page_fileicon'] = "images/pfs/".mb_strtolower(mb_substr($pag['page_url'], $dotpos, 5)).".gif";
if (!file_exists($pag['page_fileicon']))
{ $pag['page_fileicon'] = "images/admin/page.gif"; }
$pag['page_fileicon'] = "<img src=\"".$pag['page_fileicon']."\" alt=\"\" />";
}
else
{ $pag['page_fileicon'] = ''; }
$t->assign(array(
"PAGE_FILE_SIZE" => $pag['page_size'],
"PAGE_FILE_COUNT" => $pag['page_filecount'],
"PAGE_FILE_ICON" => $pag['page_fileicon'],
"PAGE_FILE_NAME" => basename($pag['page_url'])
));
if(($pag['page_file'] === 2 && $usr['id'] == 0) || ($pag['page_file'] === 2 && !$usr['auth_download']))
{
$t->assign(array(
'PAGE_FILETITLE' => $L['Members_download'],
'PAGE_FILE_URL' => sed_url('users', 'm=register')
));
}
else
{
$t->assign(array(
'PAGE_FILETITLE' => $pag['page_title'],
'PAGE_FILE_URL' => sed_url('page', "id=".$pag['page_id']."&a=dl")
));
}
}
}
// Multi tabs
$pag['page_tabs'] = explode('[newpage]', $t->vars['PAGE_TEXT'], 99);
$pag['page_totaltabs'] = count($pag['page_tabs']);
if ($pag['page_totaltabs'] > 1)
{
if (empty($pag['page_tabs'][0]))
{
$remove = array_shift($pag['page_tabs']);
$pag['page_totaltabs']--;
}
$max_tab = $pag['page_totaltabs'] - 1;
$pag['page_tab'] = ($pag['page_tab'] > $max_tab) ? 0 : $pag['page_tab'];
$pag['page_tabtitles'] = array();
for ($i = 0; $i < $pag['page_totaltabs']; $i++)
{
if(mb_strpos($pag['page_tabs'][$i], '<br />') === 0)
{
$pag['page_tabs'][$i] = mb_substr($pag['page_tabs'][$i], 6);
}
$p1 = mb_strpos($pag['page_tabs'][$i], '[title]');
$p2 = mb_strpos($pag['page_tabs'][$i], '[/title]');
if ($p2 > $p1 && $p1 < 4)
{
$pag['page_tabtitle'][$i] = mb_substr($pag['page_tabs'][$i], $p1+7, ($p2-$p1)-7);
if ($i == $pag['page_tab'])
{
$pag['page_tabs'][$i] = trim(str_replace('[title]'.$pag['page_tabtitle'][$i].'[/title]', '', $pag['page_tabs'][$i]));
}
}
else
{
$pag['page_tabtitle'][$i] = $i == 1 ? $pag['page_title'] : $L['Page'] . ' ' . ($i + 1);
}
$tab_url = empty($pag['page_alias']) ? sed_url('page', 'id='.$pag['page_id'].'&pg='.$i) : sed_url('page', 'al='.$pag['page_alias'].'&pg='.$i);
$pag['page_tabtitles'][] .= '<a href="'.$tab_url.'">'.($i+1).'. '.$pag['page_tabtitle'][$i].'</a>';
$pag['page_tabnav'] = sed_pagination($pag['page_pageurl'], $pag['page_tab'], $pag['page_totaltabs'], 1, 'pg');
$pag['page_tabs'][$i] = str_replace('[newpage]', '', $pag['page_tabs'][$i]);
$pag['page_tabs'][$i] = preg_replace('#^(<br />)+#', '', $pag['page_tabs'][$i]);
$pag['page_tabs'][$i] = trim($pag['page_tabs'][$i]);
}
$pag['page_tabtitles'] = implode('<br />', $pag['page_tabtitles']);
$pag['page_text'] = $pag['page_tabs'][$pag['page_tab']];
$t->assign(array(
'PAGE_MULTI_TABNAV' => $pag['page_tabnav'],
'PAGE_MULTI_TABTITLES' => $pag['page_tabtitles'],
'PAGE_MULTI_CURTAB' => $pag['page_tab'] + 1,
'PAGE_MULTI_MAXTAB' => $pag['page_totaltabs'],
'PAGE_TEXT' => $pag['page_text']
));
$t->parse('MAIN.PAGE_MULTI');
}
/* === Hook === */
$extp = sed_getextplugins('page.tags');
if (is_array($extp))
{ foreach($extp as $k => $pl) { include_once($cfg['plugins_dir'].'/'.$pl['pl_code'].'/'.$pl['pl_file'].'.php'); } }
/* ===== */
if($usr['isadmin'])
{
$t->parse('MAIN.PAGE_ADMIN');
}
if(($pag['page_file'] === 2 && $usr['id'] == 0) || ($pag['page_file'] === 2 && !$usr['auth_download']))
{
$t->parse('MAIN.PAGE_FILE.MEMBERSONLY');
}
else
{
$t->parse('MAIN.PAGE_FILE.DOWNLOAD');
}
if(!empty($pag['page_url']))
{
$t->parse('MAIN.PAGE_FILE');
}
$t->parse('MAIN');
$t->out('MAIN');
require_once $cfg['system_dir'] . '/footer.php';
?>