aboutsummaryrefslogtreecommitdiffstats
path: root/mod/pconfig.php
blob: d6719792b75d7a2c5e501ff6d5a571c76896dbee (plain) (blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
<?php


function disallowed_pconfig() {
	return array(
		'permissions_role'
	);
}


function pconfig_post(&$a) {

	if(! local_channel())
		return;


   if($_SESSION['delegate'])
        return;

	check_form_security_token_redirectOnErr('/pconfig', 'pconfig');

	$cat = trim(escape_tags($_POST['cat']));
	$k = trim(escape_tags($_POST['k']));
	$v = trim($_POST['v']);

	if(in_array(argv(2),disallowed_pconfig())) {
		notice( t('This setting requires special processing and has been blocked.') . EOL);
		return;
	}
	
	if(strpos($k,'password') !== false) {
		$v = z_obscure($v);
	}

	set_pconfig(local_channel(),$cat,$k,$v);

	goaway(z_root() . '/pconfig/' . $cat . '/' .  $k);

}


function pconfig_content(&$a) {

	if(! local_channel()) {
		return login();
	}



	if(argc() == 3) {
		$content = '<a href="pconfig">pconfig[' . local_channel() . ']</a>' . EOL;
		$content .= '<a href="pconfig/' . escape_tags(argv(1)) . '">pconfig[' . local_channel() . '][' . escape_tags(argv(1)) . ']</a>' . EOL . EOL;
		$content .= '<a href="pconfig/' . escape_tags(argv(1)) . '/' . escape_tags(argv(2)) . '" >pconfig[' . local_channel() . '][' . escape_tags(argv(1)) . '][' . escape_tags(argv(2)) . ']</a> = ' . get_pconfig(local_channel(),escape_tags(argv(1)),escape_tags(argv(2))) . EOL;
		$content .= pconfig_form(escape_tags(argv(1)),escape_tags(argv(2)));
	}


	if(argc() == 2) {
		$content = '<a href="pconfig">pconfig[' . local_channel() . ']</a>' . EOL;
		load_pconfig(local_channel(),escape_tags(argv(1)));
		foreach($a->config[local_channel()][escape_tags(argv(1))] as $k => $x) {
			$content .= '<a href="pconfig/' . escape_tags(argv(1)) . '/' . $k . '" >pconfig[' . local_channel() . '][' . escape_tags(argv(1)) . '][' . $k . ']</a> = ' . escape_tags($x) . EOL;
		}
	}

	if(argc() == 1) {

		$content = '';

		$r = q("select * from pconfig where uid = " . local_channel());
		if($r) {
			foreach($r as $rr) {
				$content .= '<a href="' . 'pconfig/' . escape_tags($rr['cat']) . '/' . escape_tags($rr['k']) . '" >pconfig[' . local_channel() . '][' . escape_tags($rr['cat']) . '][' . escape_tags($rr['k']) . ']</a> = ' . escape_tags($rr['v']) . EOL;
			}
		}
	}
	return $content;

}


function pconfig_form($cat,$k) {

	$o = '<form action="pconfig" method="post" >';
	$o .= '<input type="hidden" name="form_security_token" value="' . get_form_security_token('pconfig') . '" />';

	$v = get_pconfig(local_channel(),$cat,$k);
	if(strpos($k,'password') !== false) 
		$v = z_unobscure($v);

	$o .= '<input type="hidden" name="cat" value="' . $cat . '" />';
	$o .= '<input type="hidden" name="k" value="' . $k . '" />';

	if(strpos($v,"\n"))
		$o .= '<textarea name="v" >' . escape_tags($v) . '</textarea>';
 	else
		$o .= '<input type="text" name="v" value="' . escape_tags($v) . '" />';

	$o .= EOL . EOL; 
	$o .= '<input type="submit" name="submit" value="' . t('Submit') . '" />';
	$o .= '</form>';

	return $o;

}