"; echo "

\n"; $cm_authornames = fcm_user_names ($cm_uauthor); echo "{$cm_text["author"]}: " . fcm_htmlentity ($cm_authornames[1] . " " . $cm_authornames[2]) . "  "; echo "{$cm_text["creation"]}: $cm_pub_date {$cm_text["update"]}: $cm_oldupd_date ($cm_upd_date) "; echo "{$cm_text["owner"]}:"; if (!$cm_uowner) { $cm_uowner = $user_kurz; } echo ""; $result3 = db_query("select kurz, vorname, nachname from " . CM_PP_PREFIX . "users order by (nachname)") or db_die(); while ($row3 = db_fetch_row($result3)) { echo "" . fcm_htmlentity ($row3[2] . ", " . $row3[1]) . "\n"; } echo " "; echo "{$cm_text["visibleto"]}:"; $cm_defgroup = fcm_default_group (); if (!$cm_gviewer) { $cm_gviewer = $cm_defgroup[0]; } echo ""; echo "\n"; if ($groups) { $result3 = db_query("select kurz, name from " . CM_PP_PREFIX . "gruppen order by (name)") or db_die(); while ($row3 = db_fetch_row($result3)) { echo "" . fcm_htmlentity ($row3[1]) . "\n"; } } echo " "; echo " {$cm_text["enablerating"]} "; echo " {$cm_text["enablecomments"]} "; if ($cm_enable_htmledit) { echo " {$cm_text["enablehtml"]}"; } else { echo ""; } echo "  {$cm_text["enablecontentless"]} "; echo " {$cm_text["enablepriority"]} "; echo " {$cm_text["shorttitle"]}: "; echo "

\n"; echo "
{$cm_text["title"]}:

{$cm_text["directory"]}:
$cm_path
{$cm_text["logoimage"]}:

{$cm_text["keywords"]}:
$cm_keywords
{$cm_text["summary"]}:
$cm_abstract
{$cm_text["content"]}:
{$cm_text["dontusehtml"]} {$cm_text["awmvariant"]}\n"; fcm_call_htmleditor ("edit.php", ($cm_enable_htmledit && $cm_enable_visedit), true); echo"
$cm_content
"; } function cm_firsttimeform () { global $cm_text, $cm_docpath, $cm_enable_htmledit, $cm_enable_visedit; global $row1; global $timezone, $user_group, $groups, $user_kurz, $cm_langua; $cm_upd_date = fcm_curdate_string (); echo "

"; $cm_authornames = fcm_user_names ($row1[2]); echo "

\n"; echo "{$cm_text["author"]}: " . fcm_htmlentity ($cm_authornames[1] . " " . $cm_authornames[2]) . "  "; echo "{$cm_text["creation"]}: $row1[5] {$cm_text["update"]}: $row1[9] ($cm_upd_date) "; echo "{$cm_text["owner"]}:"; if (!$row1[3]) { $cm_uowner = $user_kurz; } else { $cm_uowner = $row1[3]; } echo ""; $result3 = db_query("select kurz, vorname, nachname from " . CM_PP_PREFIX . "users order by upper(nachname)") or db_die(); while ($row3 = db_fetch_row($result3)) { echo "" . fcm_htmlentity ($row3[2] . ", " . $row3[1]) . "\n"; } echo " "; echo "{$cm_text["visibleto"]}:"; $cm_defgroup = fcm_default_group (); if (!$row1[4]) { $cm_gviewer = $cm_defgroup[0]; } else { $cm_gviewer = $row1[4]; } echo ""; echo "\n"; if ($groups) { $result3 = db_query("select kurz, name from " . CM_PP_PREFIX . "gruppen order by upper(name)") or db_die(); while ($row3 = db_fetch_row($result3)) { echo "" . fcm_htmlentity ($row3[1]) . "\n"; } } echo " "; echo " {$cm_text["enablerating"]} "; echo " {$cm_text["enablecomments"]} "; if ($cm_enable_htmledit) { echo " {$cm_text["enablehtml"]}"; } else { echo ""; } echo "  {$cm_text["enablecontentless"]} "; echo " {$cm_text["enablepriority"]} "; echo " {$cm_text["shorttitle"]}: "; echo "

\n"; echo "
{$cm_text["title"]}:

{$cm_text["directory"]}:
$row1[1]
{$cm_text["logoimage"]}:

{$cm_text["keywords"]}:
$row1[6]
{$cm_text["summary"]}:
$row1[7]
{$cm_text["content"]}:
{$cm_text["dontusehtml"]} {$cm_text["awmvariant"]}\n"; fcm_call_htmleditor ("edit.php", ($cm_enable_htmledit && $cm_enable_visedit), true); echo "
"; if ($row1[15]) { echo fcm_decode_html ($row1[8]); } else { echo $row1[8]; } echo "

"; } if (!$cm_save) { if ($cm_path) { if (fcm_check_constraints (CM_SEC_CHANGE, $user_kurz, $cm_path)) { if ($cm_preview) { $cm_validops = fcm_check_validops ($user_kurz, $cm_path); fcm_title_nav2 ($cm_path, $cm_validops[CM_SEC_CREATE], $cm_validops[CM_SEC_DELETE], $cm_validops[CM_SEC_CHANGE], $cm_validops[CM_SEC_DISPLA], ($cm_validops[CM_SEC_COMMEN] && fcm_can_becommented ($cm_path)), $cm_validops[CM_SEC_DISPLA], fcm_user_is_superuser($user_kurz), ($cm_validops[CM_SEC_COMMEN] && fcm_can_berated ($cm_path))); // if (get_magic_quotes_gpc ()) { $cm_short_title = stripslashes ($cm_short_title); $cm_title = stripslashes ($cm_title); $cm_keywords = stripslashes ($cm_keywords); $cm_abstract = stripslashes ($cm_abstract); $cm_content = stripslashes ($cm_content); $cm_logo = stripslashes ($cm_logo); // } $cm_logo = ereg_replace("[^[:alnum:]_\.-]", "", $cm_logo); $cm_short_title = fcm_truncate_string (fcm_htmlentity ($cm_short_title), 20); $cm_title = fcm_truncate_string (fcm_htmlentity ($cm_title), 255); fcm_warn_logoimage ($cm_path, $cm_logo, $cm_enable_verifylogo); cm_redisplayform (); $cm_enable_html = abs ($cm_enable_html); echo "

 

"; if (abs ($cm_enable_contentless) != 1) { if ($cm_enable_html) { $cm_content = fcm_recode_URIs ($cm_content, $cm_path, " href=\""); $cm_content = fcm_recode_URIs ($cm_content, $cm_path, " src=\""); if ($cm_enable_htmledit) { echo fcm_process_markup (fcm_secure_html (fcm_decode_htmlfull ($cm_content)), $cm_path, true); } else { echo fcm_process_markup (fcm_htmlentity (fcm_decode_html ($cm_content)), $cm_path, false); } } else { echo fcm_process_markup (fcm_htmlentity ($cm_content), $cm_path, false); } } echo "

"; } else { $result1 = db_query("select cmdb_title, cmdb_directory, cmdb_author_user, cmdb_owner_user, cmdb_viewer_group, cmdb_date_creation, cmdb_keywords, cmdb_abstract, cmdb_content, cmdb_date_update, cmdb_type, cmdb_rated, cmdb_commented, cmdb_short_title, cmdb_logo, cmdb_enable_html, cmdb_logo from " . CM_DB_PREFIX . "content3 where cmdb_directory like '$cm_path' and cmdb_type like '%" . CM_HITTYPE_PAGE . "%'") or db_die(); $row1 = db_fetch_row($result1); if ($row1[1]) { $cm_validops = fcm_check_validops ($user_kurz, $cm_path); fcm_title_nav2 ($cm_path, $cm_validops[CM_SEC_CREATE], $cm_validops[CM_SEC_DELETE], $cm_validops[CM_SEC_CHANGE], $cm_validops[CM_SEC_DISPLA], ($cm_validops[CM_SEC_COMMEN] && fcm_can_becommented ($cm_path)), $cm_validops[CM_SEC_DISPLA], fcm_user_is_superuser($user_kurz), ($cm_validops[CM_SEC_COMMEN] && fcm_can_berated ($cm_path))); fcm_warn_logoimage ($cm_path, $row1[16], $cm_enable_verifylogo); cm_firsttimeform (); } else { fcm_title_nav2 ("", false, false, false, false, false, false, false); fcm_message ("{$cm_text["dirnotfound"]} {$cm_text["tryfromroot"]}", CM_MSGSTYLE_ERROR); fcm_add_logentry ("", $user_kurz, CM_APPLOG_ERROR, "Error when editing page. Dir not found."); } } } else { fcm_message ($cm_text["needaccess2edit"], CM_MSGSTYLE_WARNING); fcm_add_logentry ("", $user_kurz, CM_APPLOG_ERROR, "Error when editing page. Not enough permissions."); } } else { fcm_title_nav2 ("", false, false, false, false, false, false, false); fcm_message ("{$cm_text["dirnotfound"]} {$cm_text["tryfromroot"]}", CM_MSGSTYLE_ERROR); fcm_add_logentry ("", $user_kurz, CM_APPLOG_ERROR, "Error when editing page. Dir not found."); } } else { // if we are saving and the user have permissions... if (fcm_check_constraints (CM_SEC_CHANGE, $user_kurz, $cm_path)) { $cm_enable_rating = abs ($cm_enable_rating); $cm_enable_comments = abs ($cm_enable_comments); $cm_enable_html = abs ($cm_enable_html); if (abs ($cm_enable_contentless) == 1) { $cm_enable_contentless = CM_HITTYPE_CONTENTLESS; } else { $cm_enable_contentless = ""; }; if (abs ($cm_enable_priority) == 1) { $cm_enable_priority = CM_HITTYPE_ANNOUNCE; } else { $cm_enable_priority = ""; }; $cm_logo = ereg_replace("[^[:alnum:]_\.-]", "", $cm_logo); $cm_short_title = fcm_truncate_string (fcm_htmlentity ($cm_short_title), 20); $cm_title = fcm_truncate_string (fcm_htmlentity ($cm_title), 255); $cm_keywords = fcm_htmlentity ($cm_keywords); $cm_abstract = fcm_htmlentity ($cm_abstract); if (($cm_enable_html) && ($cm_enable_htmledit)) { // TO FIX: should we force this, or depend on these vars; should we omit the second one? $cm_content = fcm_recode_URIs ($cm_content, $cm_path, " href=\\\""); $cm_content = fcm_recode_URIs ($cm_content, $cm_path, " src=\\\""); $cm_content = fcm_htmlentity (fcm_recode_html ($cm_content)); } else { $cm_content = fcm_htmlentity ($cm_content); } $cm_upd_date = fcm_curdate_string (); $result2 = db_query("update " . CM_DB_PREFIX . "content3 set cmdb_type='" . CM_HITTYPE_PAGE . $cm_enable_contentless . $cm_enable_priority . "', cmdb_title='$cm_title', cmdb_owner_user='$cm_uowner', cmdb_viewer_group='$cm_gviewer', cmdb_date_update='$cm_upd_date', cmdb_keywords='$cm_keywords', cmdb_abstract='$cm_abstract', cmdb_content='$cm_content', cmdb_rated=$cm_enable_rating, cmdb_commented=$cm_enable_comments, cmdb_short_title='$cm_short_title', cmdb_version=1, cmdb_sign='', cmdb_enable_html=$cm_enable_html, cmdb_logo='$cm_logo' where cmdb_directory like '$cm_path' and cmdb_type like '%" . CM_HITTYPE_PAGE . "%'") or db_die(); if ($cm_enable_contentless == CM_HITTYPE_CONTENTLESS) { fcm_delete_hitrecord ($cm_path, CM_HITTYPE_PAGE); fcm_delete_rating ($cm_path, CM_HITTYPE_PAGE); fcm_delete_usercomments ($cm_path, CM_HITTYPE_PAGE); } else { fcm_reset_updatedvisit ($cm_path, CM_HITTYPE_PAGE); } $cm_validops = fcm_check_validops ($user_kurz, $cm_path); fcm_title_nav2 ($cm_path, $cm_validops[CM_SEC_CREATE], $cm_validops[CM_SEC_DELETE], $cm_validops[CM_SEC_CHANGE], $cm_validops[CM_SEC_DISPLA], ($cm_validops[CM_SEC_COMMEN] && fcm_can_becommented ($cm_path)), $cm_validops[CM_SEC_DISPLA], fcm_user_is_superuser($user_kurz), ($cm_validops[CM_SEC_COMMEN] && fcm_can_berated ($cm_path))); fcm_message ("{$cm_text["updateddocin"]} $cm_path", CM_MSGSTYLE_INFORMATION); fcm_add_logentry ("", $user_kurz, CM_APPLOG_EDIT_PAGE, "Edited page $cm_path."); } else { fcm_title_nav2 ("", false, false, false, false, false, false, false); fcm_message ($cm_text["needaccess2edit"], CM_MSGSTYLE_WARNING); fcm_add_logentry ("", $user_kurz, CM_APPLOG_ERROR, "Error when editing page. Not enough permissions."); } } echo $cm_html_footer; ?>