3 * Nucleus: PHP/MySQL Weblog CMS (http://nucleuscms.org/)
4 * Copyright (C) 2002-2012 The Nucleus Group
6 * This program is free software; you can redistribute it and/or
7 * modify it under the terms of the GNU General Public License
8 * as published by the Free Software Foundation; either version 2
9 * of the License, or (at your option) any later version.
10 * (see nucleus/documentation/index.html#license for more info)
13 * This script allows adding items to Nucleus through bookmarklets. The member must be logged in
14 * in order to use this.
16 * @license http://nucleuscms.org/license.txt GNU General Public License
17 * @copyright Copyright (C) 2002-2012 The Nucleus Group
18 * @version $Id: bookmarklet.php 1624 2012-01-09 11:36:20Z sakamocchi $
21 // bookmarklet is part of admin area (might need XML-RPC)
23 $CONF['UsingAdminArea'] = 1;
25 // include all classes and config data
26 include('../config.php');
29 $skinid = $CONF['BookmarkletSkin'];
30 if ( !Skin::existsID($skinid) )
35 $skin = new Skin($skinid, 'AdminActions', 'AdminSkin');
37 // check logged-in or pass through
38 $action = requestVar('action');
39 if ( !$member->isLoggedIn() )
41 bm_loginAndPassThrough($skin, $action);
44 else if ( $action == 'login')
46 $action = requestVar('nextaction');
49 $action = strtolower($action);
51 if ( $action == 'contextmenucode' )
53 bm_doContextMenuCode();
56 else if ( $action == '' )
62 $aActionsNotToCheck = array('login', 'add', 'edit');
63 if ( !in_array($action, $aActionsNotToCheck) )
65 if ( !$manager->checkTicket() )
67 bm_doError($skin, _ERROR_BADTICKET);
71 // find out what to do
74 // adds the item for real
79 // shows the edit item form
84 // edits the item for real
89 // on login, 'action' gets changed to 'nextaction'
91 bm_doError($skin, 'Something went wrong');
94 // shows the fill in form
101 function bm_doAddItem($skin)
103 global $member, $manager, $CONF;
105 $manager->loadClass('ITEM');
106 $result = Item::createFromRequest();
108 if ( $result['status'] == 'error' )
110 bm_doError($skin, $result['message']);
113 $blogid = getBlogIDFromItemID($result['itemid']);
114 $blog =& $manager->getBlog($blogid);
116 if ( $result['status'] == 'newcategory' )
118 $message = 'Item was added, and a new category was created. <a href="index.php?action=categoryedit&blogid=' . $blogid . '&catid=' . $result['catid'] . '" onclick="if (event && event.preventDefault) event.preventDefault(); window.open(this.href); return false;" title="Opens in new window">Click here to edit the name and description of the category.</a>';
123 $message = _ITEM_ADDED;
127 bm_message($skin, _ITEM_ADDED, $message,$extrahead);
132 function bm_doEditItem($skin)
134 global $member, $manager, $CONF;
136 $itemid = intRequestVar('itemid');
137 $catid = postVar('catid');
139 // only allow if user is allowed to alter item
140 if ( !$member->canUpdateItem($itemid, $catid) )
142 bm_doError($skin, _ERROR_DISALLOWED);
145 $body = postVar('body');
146 $title = postVar('title');
147 $more = postVar('more');
148 $closed = intPostVar('closed');
149 $actiontype = postVar('actiontype');
150 $draftid = intPostVar('draftid');
152 // redirect to admin area on delete (has delete confirmation)
153 if ( $actiontype == 'delete' )
155 redirect('index.php?action=itemdelete&itemid=' . $itemid);
159 // create new category if needed (only on edit/changedate)
160 if ( i18n::strpos($catid,'newcat') === 0 )
163 list($blogid) = sscanf($catid, "newcat-%d");
166 $blog =& $manager->getBlog($blogid);
167 $catid = $blog->createNewCategory();
169 // show error when sth goes wrong
172 bm_doError($skin, 'Could not create new category');
176 // only edit action is allowed for bookmarklet edit
177 switch ( $actiontype )
182 $timestamp = mktime(intPostVar('hour'), intPostVar('minutes'), 0, intPostVar('month'), intPostVar('day'), intPostVar('year') );
195 bm_doError($skin, 'Something went wrong');
198 // update item for real
199 Item::update($itemid, $catid, $title, $body, $more, $closed, $wasdraft, $publish, $timestamp);
203 Item::delete($draftid);
206 if ( $result['status'] == 'newcategory' )
208 $href = "index.php?action=categoryedit&blogid={$blogid}&catid={$result['catid']}";
209 $onclick = 'if (event && event.preventDefault) event.preventDefault(); window.open(this.href); return false;';
210 $title = _BOOKMARKLET_NEW_WINDOW;
211 $aTag = " <a href=\"{$href}\" onclick=\"{$onclick}\" title=\"{$title}\">";
212 $message = _BOOKMARKLET_NEW_CATEGORY . $aTag . _BOOKMARKLET_NEW_CATEGORY_EDIT . '</a>';
216 $message = _ITEM_ADDED;
219 // show success message
220 bm_message($skin, _ITEM_ADDED, $message, '');
224 function bm_loginAndPassThrough($skin, $action='add')
228 $blogid = intRequestVar('blogid');
229 $itemid = intRequestVar('itemid');
230 $log_text = requestVar('logtext');
231 $log_link = requestVar('loglink');
232 $log_linktitle = requestVar('loglinktitle');
234 echo '<input type="hidden" name="blogid" value="' . Entity::hsc($blogid). '" />' . "\n";
235 echo '<input type="hidden" name="itemid" value="' . Entity::hsc($itemid). '" />' . "\n";
236 echo '<input type="hidden" name="logtext" value="' . Entity::hsc($log_text) . '" />' . "\n";
237 echo '<input type="hidden" name="loglink" value="' . Entity::hsc($log_link) . '" />' . "\n";
238 echo '<input type="hidden" name="loglinktitle" value="' . Entity::hsc($log_linktitle) . '" />' . "\n";
239 echo "<input type=\"hidden\" name=\"nextaction\" value=\"{$action}\" />\n";
242 $skin->parse('showlogin');
247 function bm_doShowForm($skin)
249 global $manager, $member;
251 $blogid = intRequestVar('blogid');
252 $log_text = trim(requestVar('logtext'));
253 $log_link = requestVar('loglink');
254 $log_linktitle = requestVar('loglinktitle');
256 if ( !Blog::existsID($blogid) )
258 bm_doError($skin, _ERROR_NOSUCHBLOG);
260 else if ( !$member->isTeamMember($blogid) )
262 bm_doError($skin, _ERROR_NOTONTEAM);
265 $blog =& $manager->getBlog($blogid);
271 $logje .= '<blockquote><div>"' . Entity::hsc($log_text) . '"</div></blockquote>' . "\n";
274 if ( !$log_linktitle )
276 $log_linktitle = $log_link;
281 $logje .= '<a href="' . Entity::hsc($log_link) . '">' . Entity::hsc($log_linktitle) . '</a>';
285 $item['body'] = $logje;
286 $item['title'] = Entity::hsc($log_linktitle);
293 $manager->notify('PreAddItemForm', $data);
295 if ( $blog->convertBreaks() )
297 $item['body'] = removeBreaks($item['body']);
300 Admin::$blog = &$blog;
301 Admin::$contents = &$item;
303 Admin::setAdminAction('createitem');
304 $skin->parse('createitem');
309 function bm_doEditForm($skin)
311 global $member, $manager;
313 $itemid = intRequestVar('itemid');
315 if ( !$manager->existsItem($itemid, 0, 0) )
317 bm_doError($skin, _ERROR_NOSUCHITEM);
319 else if ( !$member->canAlterItem($itemid) )
321 bm_doError($skin, _ERROR_DISALLOWED);
324 $blog =& $manager->getBlog(getBlogIDFromItemID($itemid) );
325 $item =& $manager->getItem($itemid, 1, 1);
331 $manager->notify('PrepareItemForEdit', $data);
333 if ( $blog->convertBreaks() )
335 $item['body'] = removeBreaks($item['body']);
336 $item['more'] = removeBreaks($item['more']);
339 Admin::$blog = &$blog;
340 Admin::$contents = &$item;
342 Admin::setAdminAction('itemedit');
343 $skin->parse('itemedit');
347 function bm_doError($skin, $msg)
349 bm_message($skin, _ERRORMSG, $msg);
353 function bm_message($skin, $title, $msg, $extrahead = '')
355 Admin::$extrahead = $extrahead;
356 Admin::$headMess = $msg;
357 $skin->parse('adminerrorpage');
362 function bm_doContextMenuCode($width=600, $height=500)
365 $blogid = (integer) intGetVar('blogid');
367 echo "<script type=\"text/javascript\" defer=\"defer\">\n";
369 echo " doc = external.menuArguments.document;\n";
370 echo " lt = encodeURIComponent(doc.selection.createRange().text);\n";
371 echo " loglink = encodeURIComponent(external.menuArguments.location.href);\n";
372 echo " loglinktitle = encodeURIComponent(doc.title);\n";
373 echo " wingm = window.open('{$CONF['AdminURL']}bookmarklet.php?blogid={$blogid}&logtext=' + lt + '&loglink=' + loglink + '&loglinktitle=' + loglinktitle, 'nucleusbm', 'scrollbars=yes,width={$width},height={$height},left=10,top=10,status=yes,resizable=yes')\n";
374 echo " wingm.focus()\n";