source: branches/2.0/admin/plugins_list.php @ 4506

Last change on this file since 4506 was 4506, checked in by plg, 15 years ago

bug 1328: implements check_pwg_token at plugin management level.

  • Property svn:eol-style set to LF
  • Property svn:keywords set to Author Date Id Revision
File size: 4.9 KB
Line 
1<?php
2// +-----------------------------------------------------------------------+
3// | Piwigo - a PHP based picture gallery                                  |
4// +-----------------------------------------------------------------------+
5// | Copyright(C) 2008-2009 Piwigo Team                  http://piwigo.org |
6// | Copyright(C) 2003-2008 PhpWebGallery Team    http://phpwebgallery.net |
7// | Copyright(C) 2002-2003 Pierrick LE GALL   http://le-gall.net/pierrick |
8// +-----------------------------------------------------------------------+
9// | This program is free software; you can redistribute it and/or modify  |
10// | it under the terms of the GNU General Public License as published by  |
11// | the Free Software Foundation                                          |
12// |                                                                       |
13// | This program is distributed in the hope that it will be useful, but   |
14// | WITHOUT ANY WARRANTY; without even the implied warranty of            |
15// | MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU      |
16// | General Public License for more details.                              |
17// |                                                                       |
18// | You should have received a copy of the GNU General Public License     |
19// | along with this program; if not, write to the Free Software           |
20// | Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, |
21// | USA.                                                                  |
22// +-----------------------------------------------------------------------+
23
24if( !defined("PHPWG_ROOT_PATH") )
25{
26  die ("Hacking attempt!");
27}
28
29include_once(PHPWG_ROOT_PATH.'admin/include/plugins.class.php');
30
31$template->set_filenames(array('plugins' => 'plugins_list.tpl'));
32
33$order = isset($_GET['order']) ? $_GET['order'] : 'name';
34$base_url = get_root_url().'admin.php?page='.$page['page'].'&amp;order='.$order;
35
36$plugins = new plugins();
37
38//--------------------------------------------------perform requested actions
39if (isset($_GET['action']) and isset($_GET['plugin']) and !is_adviser())
40{
41  check_pwg_token();
42 
43  $page['errors'] = $plugins->perform_action($_GET['action'], $_GET['plugin']);
44
45  if (empty($page['errors']))
46  {
47    if ($_GET['action'] == 'activate' or $_GET['action'] == 'deactivate')
48    {
49      $template->delete_compiled_templates();
50    }
51    redirect($base_url);
52  }
53}
54
55//--------------------------------------------------------------------Tabsheet
56set_plugins_tabsheet($page['page']);
57
58//---------------------------------------------------------------Order options
59$link = get_root_url().'admin.php?page='.$page['page'].'&amp;order=';
60$template->assign('order_options',
61  array(
62    $link.'name' => l10n('Name'),
63    $link.'status' => l10n('Status'),
64    $link.'author' => l10n('Author'),
65    $link.'id' => 'Id'));
66$template->assign('order_selected', $link.$order);
67
68// +-----------------------------------------------------------------------+
69// |                     start template output                             |
70// +-----------------------------------------------------------------------+
71$plugins->sort_fs_plugins($order);
72
73foreach($plugins->fs_plugins as $plugin_id => $fs_plugin)
74{
75  $display_name = $fs_plugin['name'];
76  if (!empty($fs_plugin['uri']))
77  {
78    $display_name = '<a href="' . $fs_plugin['uri']
79                    . '" onclick="window.open(this.href); return false;">'
80                    . $display_name . '</a>';
81  }
82  $desc = $fs_plugin['description'];
83  if (!empty($fs_plugin['author']))
84  {
85    $desc .= ' (<em>';
86    if (!empty($fs_plugin['author uri']))
87    {
88      $desc .= '<a href="' . $fs_plugin['author uri'] . '">'
89               . $fs_plugin['author'] . '</a>';
90    }
91    else
92    {
93      $desc .= $fs_plugin['author'];
94    }
95    $desc .= '</em>)';
96  }
97  $tpl_plugin =
98    array('NAME' => $display_name,
99          'VERSION' => $fs_plugin['version'],
100          'DESCRIPTION' => $desc,
101          'U_ACTION' => $base_url.'&amp;plugin='.$plugin_id.'&amp;pwg_token='.get_pwg_token());
102
103  if (isset($plugins->db_plugins_by_id[$plugin_id]))
104  {
105    $tpl_plugin['STATE'] = $plugins->db_plugins_by_id[$plugin_id]['state'];
106  }
107  else
108  {
109    $tpl_plugin['STATE'] = 'uninstalled';
110  }
111  $template->append('plugins', $tpl_plugin);
112}
113
114$missing_plugin_ids = array_diff(
115    array_keys($plugins->db_plugins_by_id), array_keys($plugins->fs_plugins)
116    );
117
118foreach($missing_plugin_ids as $plugin_id)
119{
120  $action_url = $base_url.'&amp;plugin='.$plugin_id;
121
122  $template->append( 'plugins',
123      array(
124        'NAME' => $plugin_id,
125        'VERSION' => $plugins->db_plugins_by_id[$plugin_id]['version'],
126        'DESCRIPTION' => "ERROR: THIS PLUGIN IS MISSING BUT IT IS INSTALLED! UNINSTALL IT NOW !",
127        'U_ACTION' => $base_url.'&amp;plugin='.$plugin_id,
128        'STATE' => 'missing'
129      )
130    );
131}
132
133$template->assign_var_from_handle('ADMIN_CONTENT', 'plugins');
134?>
Note: See TracBrowser for help on using the repository browser.