Home Explore Help
Register Sign In
biotorrents
/
Gazelle
forked from Oppaitime/Gazelle
Watch 2
Star 0
Fork 0
Code Issues 0 Pull Requests 0 Releases 2 Wiki Activity
BioTorrents.de’s version of Gazelle
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
1092 Commits
2 Branches
Tree: dd0c25cf67
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'dd0c25cf67'
${ noResults }
Gazelle/sections/collages/edit_handle.php

edit_handle.php 3.2KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112 
  1. <?php

  2. declare(strict_types=1);

  3. 

  4. authorize();

  5. 

  6. $CollageID = $_POST['collageid'];

  7. if (!is_number($CollageID)) {

  8.     error(0);

  9. }

  10. 

  11. $DB->query("

  12.   SELECT UserID, CategoryID, Locked, MaxGroups, MaxGroupsPerUser

  13.   FROM collages

  14.   WHERE ID = '$CollageID'");

  15. list($UserID, $CategoryID, $Locked, $MaxGroups, $MaxGroupsPerUser) = $DB->next_record();

  16. 

  17. if ($CategoryID === 0

  18. && $UserID !== $LoggedUser['ID']

  19. && !check_perms('site_collages_delete')) {

  20.     error(403);

  21. }

  22. 

  23. if (isset($_POST['name'])) {

  24.     $DB->query("

  25.     SELECT ID, Deleted

  26.     FROM collages

  27.     WHERE Name = '".db_string($_POST['name'])."'

  28.       AND ID != '$CollageID'

  29.     LIMIT 1");

  30. 

  31.     if ($DB->has_results()) {

  32.         list($ID, $Deleted) = $DB->next_record();

  33.         if ($Deleted) {

  34.             $Err = 'A collage with that name already exists but needs to be recovered, please <a href="staffpm.php">contact</a> the staff team!';

  35.         } else {

  36.             $Err = "A collage with that name already exists: <a href='/collages.php?id=$ID'>$_POST[name]</a>.";

  37.         }

  38. 

  39.         $ErrNoEscape = true;

  40.         include(SERVER_ROOT.'/sections/collages/edit.php');

  41.         error();

  42.     }

  43. }

  44. 

  45. $TagList = explode(',', $_POST['tags']);

  46. foreach ($TagList as $ID => $Tag) {

  47.     $TagList[$ID] = Misc::sanitize_tag($Tag);

  48. }

  49. $TagList = implode(' ', $TagList);

  50. 

  51. $Updates = array("Description='".db_string($_POST['description'])."', TagList='".db_string($TagList)."'");

  52. 

  53. if (!check_perms('site_collages_delete')

  54. && ($CategoryID === 0

  55. && $UserID === $LoggedUser['ID']

  56. && check_perms('site_collages_renamepersonal'))) {

  57.     if (!stristr($_POST['name'], $LoggedUser['Username'])) {

  58.         error("Your personal collage's title must include your username.");

  59.     }

  60. }

  61. 

  62. if (isset($_POST['featured'])

  63. && $CategoryID === 0

  64. && (($LoggedUser['ID'] === $UserID

  65. && check_perms('site_collages_personal'))

  66. || check_perms('site_collages_delete'))) {

  67.     $DB->query("

  68.     UPDATE collages

  69.     SET Featured = 0

  70.     WHERE CategoryID = 0

  71.       AND UserID = $UserID");

  72.     $Updates[] = 'Featured = 1';

  73. }

  74. 

  75. if (check_perms('site_collages_delete')

  76. || ($CategoryID === 0

  77. && $UserID === $LoggedUser['ID']

  78. && check_perms('site_collages_renamepersonal'))) {

  79.     $Updates[] = "Name = '".db_string($_POST['name'])."'";

  80. }

  81. 

  82. if (isset($_POST['category'])

  83. && !empty($CollageCats[$_POST['category']])

  84. && $_POST['category'] !== $CategoryID

  85. && ($_POST['category'] !== 0

  86. || check_perms('site_collages_delete'))) {

  87.     $Updates[] = 'CategoryID = '.$_POST['category'];

  88. }

  89. 

  90. if (check_perms('site_collages_delete')) {

  91.     if (isset($_POST['locked']) !== $Locked) {

  92.         $Updates[] = 'Locked = ' . ($Locked ? "'0'" : "'1'");

  93.     }

  94. 

  95.     if (isset($_POST['maxgroups']) && ($_POST['maxgroups'] === 0 || is_number($_POST['maxgroups'])) && $_POST['maxgroups'] !== $MaxGroups) {

  96.         $Updates[] = 'MaxGroups = ' . $_POST['maxgroups'];

  97.     }

  98. 

  99.     if (isset($_POST['maxgroups']) && ($_POST['maxgroupsperuser'] === 0 || is_number($_POST['maxgroupsperuser'])) && $_POST['maxgroupsperuser'] !== $MaxGroupsPerUser) {

  100.         $Updates[] = 'MaxGroupsPerUser = ' . $_POST['maxgroupsperuser'];

  101.     }

  102. }

  103. 

  104. if (!empty($Updates)) {

  105.     $DB->query('

  106.     UPDATE collages

  107.     SET '.implode(', ', $Updates)."

  108.     WHERE ID = $CollageID");

  109. }

  110. 

  111. $Cache->delete_value('collage_'.$CollageID);

  112. header('Location: collages.php?id='.$CollageID);