<?php
/*-------------------------------------------------------+
| PHPFusion Content Management System
| Copyright (C) PHP Fusion Inc
| https://phpfusion.com/
+--------------------------------------------------------+
| Filename: photo_submit.php
| Author: Core Development Team
+--------------------------------------------------------+
| This program is released as free software under the
| Affero GPL license. You can redistribute it and/or
| modify it under the terms of this license which you
| can read by viewing the included agpl.txt or online
| at www.gnu.org/licenses/agpl.html. Removal of this
| copyright header is strictly prohibited without
| written permission from the original author(s).
+--------------------------------------------------------*/
defined('IN_FUSION') || exit;
$locale = fusion_get_locale('', [GALLERY_LOCALE, GALLERY_ADMIN_LOCALE]);
$gll_settings = get_settings("gallery");
add_to_title($locale['gallery_0100']);
opentable("<i class='fa fa-camera-retro m-r-5 fa-lg'></i> ".$locale['gallery_0100']);
if (iMEMBER && $gll_settings['gallery_allow_submission'] && checkgroup($gll_settings['gallery_submission_access'])) {
$criteriaArray = [
'album_id' => 0,
'photo_title' => '',
'photo_description' => '',
'photo_filename' => '',
'photo_thumb1' => '',
'photo_thumb2' => '',
'photo_keywords' => '',
];
if (isset($_POST['submit_photo'])) {
$criteriaArray = [
'album_id' => form_sanitizer($_POST['album_id'], 0, 'album_id'),
'photo_title' => form_sanitizer($_POST['photo_title'], '', 'photo_title'),
'photo_keywords' => form_sanitizer($_POST['photo_keywords'], '', 'photo_keywords'),
'photo_description' => form_sanitizer($_POST['photo_description'], '', 'photo_description'),
'photo_filename' => '',
'photo_thumb1' => '',
'photo_thumb2' => '',
];
if (fusion_safe()) {
if (!empty($_FILES['photo_image']) && is_uploaded_file($_FILES['photo_image']['tmp_name'])) {
$upload = form_sanitizer($_FILES['photo_image'], "", "photo_image");
if (isset($upload['error']) && !$upload['error']) {
if (isset($upload['image_name']) && isset($upload['thumb1_name']) && isset($upload['thumb2_name'])) {
$criteriaArray['photo_filename'] = $upload['image_name'];
$criteriaArray['photo_thumb1'] = $upload['thumb1_name'];
$criteriaArray['photo_thumb2'] = $upload['thumb2_name'];
} else {
fusion_stop();
\Defender::setInputError("photo_image");
addnotice("danger", $locale['photo_0014']);
}
}
} else {
fusion_stop();
\Defender::setInputError('photo_image');
addnotice('danger', $locale['photo_0014']);
}
}
if (fusion_safe()) {
$inputArray = [
"submit_id" => 0,
"submit_type" => 'p',
"submit_user" => fusion_get_userdata('user_id'),
"submit_datestamp" => time(),
"submit_criteria" => addslashes(serialize($criteriaArray))
];
dbquery_insert(DB_SUBMISSIONS, $inputArray, "save");
addnotice("success", $locale['gallery_0101']);
redirect(clean_request("submitted=p", ["stype"]));
}
}
if (isset($_GET['submitted']) && $_GET['submitted'] == "p") {
echo "<div class='well text-center'><p><strong>".$locale['gallery_0101']."</strong></p>";
echo "<p><a href='submit.php?stype=p'>".$locale['gallery_0102']."</a></p>";
echo "<p><a href='index.php'>".str_replace('[SITENAME]', fusion_get_settings('sitename'), $locale['gallery_0113'])."</a></p>\n";
echo "</div>\n";
} else {
$result = dbquery("SELECT album_id, album_title, album_order, album_datestamp FROM ".DB_PHOTO_ALBUMS." ".(multilang_table("PG") ? "WHERE ".in_group('album_language', LANGUAGE)." AND" : "WHERE")." ".groupaccess("album_access")." ORDER BY album_order DESC, album_datestamp DESC");
if (dbrows($result) > 0) {
$opts = [];
while ($data = dbarray($result)) {
$opts[$data['album_id']] = $data['album_title'];
}
echo openform('submit_form', 'post', BASEDIR."submit.php?stype=p", ["enctype" => TRUE]);
echo "<div class='alert alert-info m-b-20 submission-guidelines'>".str_replace('[SITENAME]', fusion_get_settings('sitename'), $locale['gallery_0107'])."</div>\n";
echo form_select('album_id', $locale['photo_0003'], '', ["options" => $opts, "inline" => TRUE]);
echo form_text('photo_title', $locale['photo_0001'], '', ['required' => TRUE, "inline" => TRUE]);
echo form_select('photo_keywords', $locale['photo_0005'], '', [
'placeholder' => $locale['album_0006'],
'inline' => TRUE,
'multiple' => TRUE,
"tags" => TRUE,
'width' => '100%',
'inner_width' => '100%',
]);
echo form_fileinput('photo_image', $locale['photo_0004'], '', [
'upload_path' => INFUSIONS.'gallery/submissions/',
'required' => TRUE,
'thumbnail_folder' => 'thumbs',
'thumbnail' => TRUE,
'thumbnail_w' => $gll_settings['thumb_w'],
'thumbnail_h' => $gll_settings['thumb_h'],
'thumbnail_suffix' => '_t1',
'thumbnail2' => TRUE,
'thumbnail2_w' => $gll_settings['photo_w'],
'thumbnail2_h' => $gll_settings['photo_h'],
'thumbnail2_suffix' => '_t2',
'max_width' => $gll_settings['photo_max_w'],
'max_height' => $gll_settings['photo_max_h'],
'max_byte' => $gll_settings['photo_max_b'],
'delete_original' => FALSE,
'multiple' => FALSE,
'inline' => TRUE,
'error_text' => $locale['photo_0014'],
'template' => 'thumbnail',
'valid_ext' => $gll_settings['gallery_file_types'],
]);
echo "<div class='m-b-10 col-xs-12 col-sm-9 col-sm-offset-3'>".sprintf($locale['album_0010'], parsebytesize($gll_settings['photo_max_b']), $gll_settings['gallery_file_types'], $gll_settings['photo_max_w'], $gll_settings['photo_max_h'])."</div>\n";
$textArea_opts = [
'required' => $gll_settings['gallery_extended_required'],
'autosize' => TRUE,
'form_name' => 'submit_form',
];
echo form_textarea('photo_description', $locale['photo_0008'], '', $textArea_opts);
echo form_button('submit_photo', $locale['gallery_0111'], $locale['gallery_0111'], ['class' => 'btn-success', 'icon' => 'fa fa-hdd-o']);
echo closeform();
} else {
echo "<div class='well' style='text-align:center'><br />".$locale['gallery_0024']."<br /><br /></div>\n";
}
}
} else {
echo "<div class='well text-center'>".$locale['gallery_0112']."</div>\n";
}
closetable();