Gazelle/sections/collages/edit_handle.php

<?
authorize();

$CollageID = $_POST['collageid'];
if (!is_number($CollageID)) {
	error(0);
}

$DB->query("SELECT UserID, CategoryID, Locked, MaxGroups, MaxGroupsPerUser FROM collages WHERE ID='$CollageID'");
list($UserID, $CategoryID, $Locked, $MaxGroups, $MaxGroupsPerUser) = $DB->next_record();
if ($CategoryID == 0 && $UserID != $LoggedUser['ID'] && !check_perms('site_collages_delete')) {
	error(403);
}

$DB->query("SELECT ID,Deleted FROM collages WHERE Name='".db_string($_POST['name'])."' AND ID!='$CollageID' LIMIT 1");
if ($DB->record_count()) {
	list($ID, $Deleted) = $DB->next_record();
	if ($Deleted) {
		$Err = 'A collage with that name already exists but needs to be recovered, please <a href="staffpm.php">contact</a> the staff team!';
	} else {
		$Err = "A collage with that name already exists: <a href=\"/collages.php?id=$ID\">$_POST[name]</a>.";
	}
	$ErrNoEscape = true;
	include(SERVER_ROOT.'/sections/collages/edit.php');
	die();
}

$TagList = explode(',',$_POST['tags']);
foreach ($TagList as $ID=>$Tag) {
	$TagList[$ID] = Misc::sanitize_tag($Tag);
}
$TagList = implode(' ',$TagList);

$Updates = array("Description='".db_string($_POST['description'])."', TagList='".db_string($TagList)."'");

if (!check_perms('site_collages_delete') && ($CategoryID == 0 && $UserID == $LoggedUser['ID'] && check_perms('site_collages_renamepersonal'))) {
	if (!stristr($_POST['name'], $LoggedUser['Username'])) {
		error("Your personal collage's title must include your username.");
	}
}

if (isset($_POST['featured']) && $CategoryID == 0 && (($LoggedUser['ID'] == $UserID && check_perms('site_collages_personal')) || check_perms('site_collages_delete'))) {
	$DB->query("UPDATE collages SET Featured=0 WHERE CategoryID=0 and UserID=$UserID");
	$Updates[] = 'Featured=1';
}

if (check_perms('site_collages_delete') || ($CategoryID == 0 && $UserID == $LoggedUser['ID'] && check_perms('site_collages_renamepersonal'))) {
	$Updates[] = "Name='".db_string($_POST['name'])."'";
}

if (isset($_POST['category']) && !empty($CollageCats[$_POST['category']]) && $_POST['category'] != $CategoryID && ($_POST['category'] != 0 || check_perms('site_collages_delete'))) {
	$Updates[] = 'CategoryID='.$_POST['category'];
}

if (check_perms('site_collages_delete')) {
	if (isset($_POST['locked']) != $Locked) {
		$Updates[] = 'Locked=' . ($Locked ? "'0'" : "'1'");
	}
	if (isset($_POST['maxgroups']) && ($_POST['maxgroups'] == 0 || is_number($_POST['maxgroups'])) && $_POST['maxgroups'] != $MaxGroups) {
		$Updates[] = 'MaxGroups=' . $_POST['maxgroups'];
	}
	if (isset($_POST['maxgroups']) && ($_POST['maxgroupsperuser'] == 0 || is_number($_POST['maxgroupsperuser'])) && $_POST['maxgroupsperuser'] != $MaxGroupsPerUser) {
		$Updates[] = 'MaxGroupsPerUser=' . $_POST['maxgroupsperuser'];
	}
}

if (!empty($Updates)) {
	$DB->query("UPDATE collages SET ".implode(', ', $Updates)." WHERE ID=$CollageID");
}
$Cache->delete_value('collage_'.$CollageID);
header('Location: collages.php?id='.$CollageID);
?>
Initial import from revision 11440 2011-03-28 14:21:28 +00:00			`<?`
			`authorize();`

			`$CollageID = $_POST['collageid'];`
Empty commit 2012-11-03 08:00:19 +00:00			`if (!is_number($CollageID)) {`
			`error(0);`
			`}`
Initial import from revision 11440 2011-03-28 14:21:28 +00:00
Empty commit 2012-11-03 08:00:19 +00:00			`$DB->query("SELECT UserID, CategoryID, Locked, MaxGroups, MaxGroupsPerUser FROM collages WHERE ID='$CollageID'");`
			`list($UserID, $CategoryID, $Locked, $MaxGroups, $MaxGroupsPerUser) = $DB->next_record();`
			`if ($CategoryID == 0 && $UserID != $LoggedUser['ID'] && !check_perms('site_collages_delete')) {`
			`error(403);`
			`}`
Initial import from revision 11440 2011-03-28 14:21:28 +00:00
<No commit messages entered> 2011-04-29 13:49:03 +00:00			`$DB->query("SELECT ID,Deleted FROM collages WHERE Name='".db_string($_POST['name'])."' AND ID!='$CollageID' LIMIT 1");`
Empty commit 2012-11-03 08:00:19 +00:00			`if ($DB->record_count()) {`
<No commit messages entered> 2011-04-29 13:49:03 +00:00			`list($ID, $Deleted) = $DB->next_record();`
Empty commit 2012-11-03 08:00:19 +00:00			`if ($Deleted) {`
<No commit messages entered> 2011-04-29 13:49:03 +00:00			`$Err = 'A collage with that name already exists but needs to be recovered, please <a href="staffpm.php">contact</a> the staff team!';`
			`} else {`
Empty commit 2012-11-03 08:00:19 +00:00			`$Err = "A collage with that name already exists: <a href=\"/collages.php?id=$ID\">$_POST[name]</a>.";`
<No commit messages entered> 2011-04-29 13:49:03 +00:00			`}`
Empty commit 2012-11-03 08:00:19 +00:00			`$ErrNoEscape = true;`
			`include(SERVER_ROOT.'/sections/collages/edit.php');`
			`die();`
<No commit messages entered> 2011-04-29 13:49:03 +00:00			`}`
Initial import from revision 11440 2011-03-28 14:21:28 +00:00
			`$TagList = explode(',',$_POST['tags']);`
Empty commit 2012-11-03 08:00:19 +00:00			`foreach ($TagList as $ID=>$Tag) {`
Empty commit 2012-10-11 08:00:15 +00:00			`$TagList[$ID] = Misc::sanitize_tag($Tag);`
Initial import from revision 11440 2011-03-28 14:21:28 +00:00			`}`
			`$TagList = implode(' ',$TagList);`

Empty commit 2012-11-03 08:00:19 +00:00			`$Updates = array("Description='".db_string($_POST['description'])."', TagList='".db_string($TagList)."'");`
Initial import from revision 11440 2011-03-28 14:21:28 +00:00
74 changes from Mon Oct 3 16:42:37 2011 +0000 to Thu Oct 27 02:24:49 2011 +0000 %B> 2011-10-27 08:00:15 +00:00			`if (!check_perms('site_collages_delete') && ($CategoryID == 0 && $UserID == $LoggedUser['ID'] && check_perms('site_collages_renamepersonal'))) {`
Empty commit 2012-11-03 08:00:19 +00:00			`if (!stristr($_POST['name'], $LoggedUser['Username'])) {`
74 changes from Mon Oct 3 16:42:37 2011 +0000 to Thu Oct 27 02:24:49 2011 +0000 %B> 2011-10-27 08:00:15 +00:00			`error("Your personal collage's title must include your username.");`
			`}`
			`}`

			`if (isset($_POST['featured']) && $CategoryID == 0 && (($LoggedUser['ID'] == $UserID && check_perms('site_collages_personal')) \|\| check_perms('site_collages_delete'))) {`
			`$DB->query("UPDATE collages SET Featured=0 WHERE CategoryID=0 and UserID=$UserID");`
Empty commit 2012-11-03 08:00:19 +00:00			`$Updates[] = 'Featured=1';`
74 changes from Mon Oct 3 16:42:37 2011 +0000 to Thu Oct 27 02:24:49 2011 +0000 %B> 2011-10-27 08:00:15 +00:00			`}`

			`if (check_perms('site_collages_delete') \|\| ($CategoryID == 0 && $UserID == $LoggedUser['ID'] && check_perms('site_collages_renamepersonal'))) {`
Empty commit 2012-11-03 08:00:19 +00:00			`$Updates[] = "Name='".db_string($_POST['name'])."'";`
			`}`

			`if (isset($_POST['category']) && !empty($CollageCats[$_POST['category']]) && $_POST['category'] != $CategoryID && ($_POST['category'] != 0 \|\| check_perms('site_collages_delete'))) {`
			`$Updates[] = 'CategoryID='.$_POST['category'];`
Initial import from revision 11440 2011-03-28 14:21:28 +00:00			`}`

Empty commit 2012-11-03 08:00:19 +00:00			`if (check_perms('site_collages_delete')) {`
			`if (isset($_POST['locked']) != $Locked) {`
			`$Updates[] = 'Locked=' . ($Locked ? "'0'" : "'1'");`
			`}`
			`if (isset($_POST['maxgroups']) && ($_POST['maxgroups'] == 0 \|\| is_number($_POST['maxgroups'])) && $_POST['maxgroups'] != $MaxGroups) {`
			`$Updates[] = 'MaxGroups=' . $_POST['maxgroups'];`
			`}`
			`if (isset($_POST['maxgroups']) && ($_POST['maxgroupsperuser'] == 0 \|\| is_number($_POST['maxgroupsperuser'])) && $_POST['maxgroupsperuser'] != $MaxGroupsPerUser) {`
			`$Updates[] = 'MaxGroupsPerUser=' . $_POST['maxgroupsperuser'];`
			`}`
Initial import from revision 11440 2011-03-28 14:21:28 +00:00			`}`

Empty commit 2012-11-03 08:00:19 +00:00			`if (!empty($Updates)) {`
			`$DB->query("UPDATE collages SET ".implode(', ', $Updates)." WHERE ID=$CollageID");`
			`}`
Initial import from revision 11440 2011-03-28 14:21:28 +00:00			`$Cache->delete_value('collage_'.$CollageID);`
			`header('Location: collages.php?id='.$CollageID);`
			`?>`