meillo@0: <?php
meillo@2: 
meillo@14:   require_once 'Config/Config.inc.php';
meillo@2: 
meillo@11:   define('DB_PREFIX', $db_prefix);
meillo@11:   define('TITLE', $title);
meillo@11: 
meillo@11:   require_once $db_connect;
meillo@13:   require_once 'Loginsys.class.php';
meillo@13:   include_once 'Bbcodeparser.inc.php';
meillo@2: 
meillo@2:   $lsys = &new Loginsys();
meillo@2: 
meillo@2: ?>
meillo@2: <!--
meillo@2: 
meillo@2:                        `Owls' - some kind of wiki system
meillo@2: 
meillo@2: 
meillo@2:                 (c) Copyright  2006 &>  by Meillo  r e t u r n s
meillo@2: 
meillo@2:          This program is free software; you can redistribute it and/or
meillo@2:           modify it under the terms of the GNU General Public License
meillo@2:          as published by the Free Software Foundation; either version 2
meillo@2:              of the License, or (at your option) any later version.
meillo@2: 
meillo@2:         This program is distributed in the hope that it will be useful,
meillo@2:          but WITHOUT ANY WARRANTY; without even the implied warranty of
meillo@2:          MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
meillo@2:                   GNU General Public License for more details.
meillo@2: 
meillo@2: 
meillo@2:                           http://prog.marmaro.de/owls/
meillo@2: 
meillo@2: -->
meillo@2: 
meillo@2: <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd">
meillo@2: 
meillo@2: <html xml:lang="de" xmlns="http://www.w3.org/1999/xhtml">
meillo@2: <head>
meillo@2:   <title><?php echo htmlentities(TITLE); ?></title>
meillo@2:   <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1" />
meillo@2:   <link rel="shortcut icon" href="favicon.ico" />
meillo@14:   <link rel="stylesheet" type="text/css" href="Config/Owls.css.php" />
meillo@2:   <script type="text/javascript">
meillo@2:   <!--
meillo@2:     function sureToDelete(id) {
meillo@2:       if (window.prompt("Type 'delete' to delete","") == "delete") {
meillo@2:         location.href = id +"d";
meillo@2:       }
meillo@2:     }
meillo@2: 
meillo@2: /*  I want to use this function later ... perhaps
meillo@2:     function toggleVisibility(boxId) {
meillo@2:       if (document.getElementById('node'+ boxId).style.display == 'none') {
meillo@2:         document.getElementById('node'+ boxId).style.display = "";
meillo@2:         document.getElementById('ctrl'+ boxId).firstChild.nodeValue = "-";
meillo@2:       } else{
meillo@2:         document.getElementById('node'+ boxId).style.display = "none";
meillo@2:         document.getElementById('ctrl'+ boxId).firstChild.nodeValue = "+";
meillo@2:       }
meillo@2:     }
meillo@2: */
meillo@2:   //-->  
meillo@2:   </script>
meillo@2: </head>
meillo@2: 
meillo@2: <body>
meillo@2: <div id="websiteContainer">
meillo@2: 
meillo@2:   <!-- Banner -->
meillo@16:   <img src="<?php echo $banner; ?>" id="banner" alt="<?php echo htmlentities(TITLE); ?>" />
meillo@2: 
meillo@2: <?php
meillo@2: 
meillo@2: 
meillo@0:   if ($_GET['action'] == 'show') {    // show
meillo@0:     show($lsys);
meillo@0: 
meillo@0:   } else if ($_GET['action'] == 'new' && $lsys->loggedIn()) {    // new
meillo@0:     create($lsys);
meillo@0: 
meillo@0:   } else if ($_GET['action'] == 'edit' && $lsys->loggedIn()) {    // edit
meillo@0:     edit($lsys);
meillo@0: 
meillo@0:   } else if ($_GET['action'] == 'delete' && $lsys->loggedIn()) {    // delete
meillo@0:     delete($lsys);
meillo@0: 
meillo@0:   } else if ($_GET['action'] == 'login') {    // login
meillo@0:     $lsys->login($_POST['login_loginname'], md5($_POST['login_password']));
meillo@0:     show($lsys);
meillo@0: 
meillo@0:   } else if ($_GET['action'] == 'logout') {    // logout
meillo@0:     $lsys->logout();
meillo@0:     show($lsys);
meillo@0: 
meillo@0:   } else {    // startpage
meillo@0:     $_GET['id'] = 1;
meillo@0:     show($lsys);
meillo@0: 
meillo@0:   }
meillo@0: 
meillo@0: 
meillo@2: 
meillo@2: 
meillo@2: 
meillo@2: ?>
meillo@2: 
meillo@2:   </div>
meillo@2: 
meillo@2: 
meillo@2: </div>
meillo@2: 
meillo@2: </body>
meillo@2: </html>
meillo@2: <?php
meillo@0: 
meillo@0: 
meillo@0: 
meillo@0: 
meillo@0: 
meillo@0: 
meillo@0: 
meillo@0: 
meillo@0: /*
meillo@0:     displays content of the node
meillo@0:     performs action 'edit'
meillo@0:     shows admincontrols if logged in
meillo@0: */
meillo@0: function show($lsys) {
meillo@0: 
meillo@10: 
meillo@0:   // perform action: write edited node to db
meillo@0:   if (isset($_POST['editDoc']) && $lsys->loggedIn()) {
meillo@0:     $_POST['editDoc_title'] = addslashes($_POST['editDoc_title']);
meillo@0:     $_POST['editDoc_text'] = addslashes($_POST['editDoc_text']);
meillo@0:     mysql_query("update ". DB_PREFIX ."Owls set
meillo@0:       name='$_POST[editDoc_title]',
meillo@0:       text='$_POST[editDoc_text]',
meillo@0:       idParent='$_POST[editDoc_idCategory]',
meillo@0:       date=". time() ."
meillo@0:     where id='$_GET[id]'") or die(mysql_error());
meillo@0:   }
meillo@0: 
meillo@0:   // print nav
meillo@13:   include 'Nav.inc.php';
meillo@0: 
meillo@0: 
meillo@10: 
meillo@10: 
meillo@0:   // query data of the node
meillo@0:   $result = mysql_query("select * from ". DB_PREFIX ."Owls where id=$_GET[id]");
meillo@0:   
meillo@0:   // catch nodes that not exist
meillo@0:   if (!mysql_num_rows($result)) {
meillo@0: 
meillo@0:     $fnord = array('',
meillo@0:       'Fnord is the space between the pixels on your screen.',
meillo@0:       'Fnord is the echo of silence.',
meillo@0:       'Fnord is evaporated herbal tea without the herbs.',
meillo@0:       'Fnord is what you see when you close your eyes.',
meillo@0:       'Fnord is the empty pages at the end of the book.',
meillo@0:       'Fnord is why ducks eat trees.',
meillo@0:       'Fnord is the bucket where they keep the unused serifs for H*lvetica.',
meillo@0:       'Fnord is the source of all the zero bits in your computer.'
meillo@0:     );
meillo@0: 
meillo@0: ?>
meillo@0:       <div id="content">
meillo@0:         <h2>Error 23 - fnord found</h2>
meillo@0:         <p>
meillo@0:           <?php echo $fnord[rand(0, sizeof($fnord)-1)]; ?>
meillo@0:         </p>
meillo@0: <?php
meillo@0: 
meillo@0:   } else {
meillo@0: 
meillo@0:     $row = mysql_fetch_array($result);
meillo@0:     echo '  <div id="content">'."\n";
meillo@0: 
meillo@10:       // display admin controls or login form
meillo@10: ?>
meillo@10:         <div class="ctrl">
meillo@10: <?php
meillo@10:           // display last update
meillo@10:           if ($_GET['id'] == 1) {
meillo@10:             // root node displays date of last modification of any node
meillo@10:             $sql = sprintf("
meillo@10:               select
meillo@10:                 max(date)
meillo@10:               from %sOwls
meillo@10:               ",
meillo@10:               DB_PREFIX
meillo@10:             );
meillo@10:           } else {
meillo@10:             $sql = sprintf("
meillo@10:               select
meillo@10:                 date
meillo@10:               from %sOwls
meillo@10:               where
meillo@10:                 id = ". $_GET['id'] ."
meillo@10:               ",
meillo@10:               DB_PREFIX
meillo@10:             );
meillo@10:           }
meillo@10:           $result = mysql_query($sql) or die(mysql_error());
meillo@10:           unset($sql);
meillo@10: 
meillo@10:           $rowUpdate = mysql_fetch_row($result);
meillo@10:           $lastUpdate = $rowUpdate[0];
meillo@10: ?>
meillo@10:           <span style="font-size: 0.8em;">
meillo@10:             last update: <?php echo date('d.m.Y H:i', $lastUpdate); ?>
meillo@10:           </span>
meillo@10: 
meillo@10: <?php
meillo@0:       if ($lsys->loggedIn()) {
meillo@0: ?>
meillo@0:           <a href="<?php echo $row['id'] .'n'; ?>">new</a>
meillo@0:           <a href="<?php echo $row['id'] .'e'; ?>">edit</a>
meillo@0: <?php
meillo@0:           if ($row['id'] != 1) {
meillo@0:             echo '<a href="javascript:sureToDelete('. $row['id'] .')">delete</a>';
meillo@0:           }
meillo@10:           echo '    <a href="'. $_GET['id'] .'logout" style="color: #c00;">logout</a>';
meillo@10:       } else {
meillo@10: ?>
meillo@10:         <form name="loginform" id="loginform" action="<?php echo $_GET['id']; ?>login" method="post" enctype="multipart/form-data" style="display: inline;">
meillo@10:           <input name="login_loginname" type="text" />
meillo@10:           <input name="login_password" type="password" />
meillo@10:           <input name="login" type="submit" value="login" style="padding: 0; cursor: pointer; width: 5em;" />
meillo@10:         </form>
meillo@10: <?php
meillo@10:       }
meillo@0: ?>
meillo@0:         </div>
meillo@0: <?php
meillo@0: 
meillo@0:     // print content of the node
meillo@0:     echo '    <h2>'.stripslashes($row['name']).'</h2>'."\n";
meillo@0:     if (!empty($row['text'])) {
meillo@0:       echo '    <p>'.bbcode(stripslashes($row['text']), 1, 1).'</p>';
meillo@0:     }
meillo@0:   }
meillo@0:   echo "\n\n";
meillo@0: 
meillo@0: }
meillo@0: 
meillo@0: 
meillo@0: 
meillo@0: 
meillo@0: 
meillo@0: /*
meillo@0:     displays edit form
meillo@0: */
meillo@0: function edit($lsys) {
meillo@0: 
meillo@13:     include 'Nav.inc.php';
meillo@0: 
meillo@0:     $sql = "select * from ". DB_PREFIX ."Owls where id=$_GET[id]";
meillo@0:     $result = mysql_query($sql) or die(mysql_error());
meillo@0:     $row = mysql_fetch_array($result);
meillo@0:       echo '<div id="content">';
meillo@0: ?>
meillo@4: <div id="edit" style="position: relative; width: 99%">
meillo@0:   <form action="<?php echo $row['id']; ?>" method="post" enctype="multipart/form-data">
meillo@0: <?php
meillo@0:     if ($_GET['id'] != 1) {
meillo@0: ?>
meillo@0:       <select name="editDoc_idCategory" style="width: 99%;">
meillo@0: <?php
meillo@2:       $sql = sprintf("
meillo@2:         select 
meillo@2:           * 
meillo@2:         from %sOwls 
meillo@2:         where 
meillo@2:           id != %d
meillo@2:           and idParent != %d
meillo@2: -- not in (
meillo@2: --            select idParent from %sOwls
meillo@2: --          )
meillo@2:         order by name asc
meillo@2:         ",
meillo@2:         DB_PREFIX,
meillo@2:         $row['id'],
meillo@2:         $row['id'],
meillo@2:         DB_PREFIX
meillo@2:       );
meillo@2:       $result = mysql_query($sql) or die(mysql_error());
meillo@2:       unset($sql);
meillo@0:       while($rowCats = mysql_fetch_array($result)) {
meillo@2:         echo '  <option value="'.$rowCats['id'].'"'. (($row['idParent'] == $rowCats['id']) ? ' selected="selected" style="font-weight: bold;"' : '') .'>'.stripslashes($rowCats['name']).'</option>';
meillo@0:       }
meillo@0: ?>
meillo@0:       </select><br /><br />
meillo@0: <?php
meillo@0:     }
meillo@0: ?>
meillo@2:     <input name="editDoc_title" type="text" value="<?php echo stripslashes($row['name']); ?>" style="width: 99%; font-weight: bold;" /><br />
meillo@0:     <textarea name="editDoc_text" cols="60" rows="15" style="width: 99%; height: 30em;"><?php
meillo@0:       echo stripslashes($row['text']);
meillo@0:     ?></textarea><br /><br />
meillo@0:     <input name="editDoc" type="submit" value="edit" class="button" style="width: 99%;" />
meillo@0:   </form>
meillo@0: </div>
meillo@0: <?php
meillo@0:   unset($row);
meillo@0:   unset($result);
meillo@0: }
meillo@0: 
meillo@0: 
meillo@0: 
meillo@0: 
meillo@0: 
meillo@0: 
meillo@0: /*
meillo@0:     performs action 'new'
meillo@0: */
meillo@0: function create($lsys) {
meillo@0: 
meillo@0:   // perform action: new node
meillo@0:   mysql_query("
meillo@0:     insert into ". DB_PREFIX ."Owls
meillo@0:     (idParent, date)
meillo@0:     values('$_GET[id]',". time() .")
meillo@0:   ") or die(mysql_error());
meillo@0: 
meillo@0:   // set node to jump to (new created node)
meillo@0:   $_GET['id'] = mysql_insert_id();
meillo@0:   edit($lsys);
meillo@0: }
meillo@0: 
meillo@0: 
meillo@0: 
meillo@0: 
meillo@0: 
meillo@0: /*
meillo@0:     performs action 'delete'
meillo@0: */
meillo@0: function delete($lsys) {
meillo@0:   // not allowed to delete the root
meillo@0:   if ($_GET['id'] != 1) {
meillo@0:     // TODO: get the parent of the one which is to delete
meillo@0: 
meillo@0:     // delete
meillo@0:     mysql_query("delete from ". DB_PREFIX ."Owls where id='$_GET[id]'") or die(mysql_error());
meillo@0:   }
meillo@0:   // set node to jump to (TODO: parent from above)
meillo@0:   $_GET['id'] = 1;
meillo@0:   show($lsys);
meillo@0: }
meillo@0: 
meillo@0: 
meillo@0: 
meillo@0: 
meillo@0: ?>
meillo@0: