| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152 |
- <?
- if (!check_perms('admin_manage_permissions') && !check_perms('users_mod')) {
- error(403);
- }
-
- if (!check_perms('admin_manage_permissions')) {
- View::show_header('Site Options');
- $DB->query("SELECT Name, Value, Comment FROM site_options");
- ?>
- <div class="header">
- <h1>Site Options</h1>
- </div>
- <table width="100%">
- <tr class="colhead">
- <td>Name</td>
- <td>Value</td>
- <td>Comment</td>
- </tr>
- <?
- while (list($Name, $Value, $Comment) = $DB->next_record()) {
- ?>
- <tr class="row">
- <td><?=$Name?></td>
- <td><?=$Value?></td>
- <td><?=$Comment?></td>
- </tr>
- <?
- }
- ?>
- </table>
- <?
- View::show_footer();
- die();
- }
-
- if (isset($_POST['submit'])) {
- authorize();
-
- if ($_POST['submit'] == 'Delete') {
- $Name = db_string($_POST['name']);
- $DB->query("DELETE FROM site_options WHERE Name = '" . $Name . "'");
- $Cache->delete_value('site_option_' . $Name);
- } else {
- $Val->SetFields('name', '1', 'regex', 'The name must be separated by underscores. No spaces are allowed.', array('regex' => '/^[a-z][_a-z0-9]{0,63}$/i'));
- $Val->SetFields('value', '1', 'string', 'You must specify a value for the option.');
- $Val->SetFields('comment', '1', 'string', 'You must specify a comment for the option.');
-
- $Error = $Val->ValidateForm($_POST);
- if ($Error) {
- error($Error);
- }
-
- $Name = db_string($_POST['name']);
- $Value = db_string($_POST['value']);
- $Comment = db_string($_POST['comment']);
-
- if ($_POST['submit'] == 'Edit') {
- $DB->query("SELECT Name FROM site_options WHERE ID = '" . db_string($_POST['id']) . "'");
- list($OldName) = $DB->next_record();
- $DB->query("
- UPDATE site_options
- SET
- Name = '$Name',
- Value = '$Value',
- Comment = '$Comment'
- WHERE ID = '" . db_string($_POST['id']) . "'
- ");
- $Cache->delete_value('site_option_' . $OldName);
- } else {
- $DB->query("
- INSERT INTO site_options (Name, Value, Comment)
- VALUES ('$Name', '$Value', '$Comment')
- ");
- }
-
- $Cache->delete_value('site_option_' . $Name);
- }
- }
-
- $DB->query("
- SELECT
- ID,
- Name,
- Value,
- Comment
- FROM site_options
- ORDER BY LOWER(Name) DESC
- ");
-
- View::show_header('Site Options');
- ?>
-
- <div class="header">
- <h2>Site Options</h2>
- </div>
- <div class="box slight_margin">
- <table>
- <tr class="colhead">
- <td>
- <span class="tooltip" title="Words must be separated by underscores">Name</span>
- </td>
- <td>Value</td>
- <td>Comment</td>
- <td>Submit</td>
- </tr>
- <tr>
- <form class="create_form" name="site_option" action="" method="post">
- <input type="hidden" name="action" value="site_options" />
- <input type="hidden" name="auth" value="<?=$LoggedUser['AuthKey']?>" />
- <td>
- <input type="text" size="40" name="name" />
- </td>
- <td>
- <input type="text" size="20" name="value" />
- </td>
- <td>
- <input type="text" size="75" name="comment" />
- </td>
- <td>
- <input type="submit" name="submit" value="Create" />
- </td>
- </form>
- </tr>
- <?
- while (list($ID, $Name, $Value, $Comment) = $DB->next_record()) {
- ?>
- <tr>
- <form class="manage_form" name="site_option" action="" method="post">
- <input type="hidden" name="id" value="<?=$ID?>" />
- <input type="hidden" name="action" value="site_options" />
- <input type="hidden" name="auth" value="<?=$LoggedUser['AuthKey']?>" />
- <td>
- <input type="text" size="40" name="name" value="<?=$Name?>" />
- </td>
- <td>
- <input type="text" size="20" name="value" value="<?=$Value?>" />
- </td>
- <td>
- <input type="text" size="75" name="comment" value="<?=$Comment?>" />
- </td>
- <td>
- <input type="submit" name="submit" value="Edit" />
- <input type="submit" name="submit" value="Delete" />
- </td>
- </form>
- </tr>
- <?
- }
- ?>
- </table>
- </div>
- <? View::show_footer(); ?>
|