source: branches/2.0/admin/plugins_update.php @ 4506

Last change on this file since 4506 was 4506, checked in by plg, 14 years ago

bug 1328: implements check_pwg_token at plugin management level.
  • Property svn:eol-style set to LF
  • Property svn:keywords set to Author Date Id Revision
File size: 6.2 KB
Line 
1<?php
2// +-----------------------------------------------------------------------+
3// | Piwigo - a PHP based picture gallery                                  |
4// +-----------------------------------------------------------------------+
5// | Copyright(C) 2008-2009 Piwigo Team                  http://piwigo.org |
6// | Copyright(C) 2003-2008 PhpWebGallery Team    http://phpwebgallery.net |
7// | Copyright(C) 2002-2003 Pierrick LE GALL   http://le-gall.net/pierrick |
8// +-----------------------------------------------------------------------+
9// | This program is free software; you can redistribute it and/or modify  |
10// | it under the terms of the GNU General Public License as published by  |
11// | the Free Software Foundation                                          |
12// |                                                                       |
13// | This program is distributed in the hope that it will be useful, but   |
14// | WITHOUT ANY WARRANTY; without even the implied warranty of            |
15// | MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU      |
16// | General Public License for more details.                              |
17// |                                                                       |
18// | You should have received a copy of the GNU General Public License     |
19// | along with this program; if not, write to the Free Software           |
20// | Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, |
21// | USA.                                                                  |
22// +-----------------------------------------------------------------------+
23
24if( !defined("PHPWG_ROOT_PATH") )
25{
26  die ("Hacking attempt!");
27}
28
29include_once(PHPWG_ROOT_PATH.'admin/include/plugins.class.php');
30
31$template->set_filenames(array('plugins' => 'plugins_update.tpl'));
32
33$base_url = get_root_url().'admin.php?page='.$page['page'];
34
35$plugins = new plugins();
36
37//-----------------------------------------------------------automatic upgrade
38if (isset($_GET['plugin']) and isset($_GET['revision']) and !is_adviser())
39{
40  check_pwg_token();
41 
42  $plugin_id = $_GET['plugin'];
43  $revision = $_GET['revision'];
44
45  if (isset($plugins->db_plugins_by_id[$plugin_id])
46    and $plugins->db_plugins_by_id[$plugin_id]['state'] == 'active')
47  {
48    $plugins->perform_action('deactivate', $plugin_id);
49
50    redirect($base_url
51      . '&revision=' . $revision
52      . '&plugin=' . $plugin_id
53      . '&pwg_token='.get_pwg_token()
54      . '&reactivate=true');
55  }
56
57  $upgrade_status = $plugins->extract_plugin_files('upgrade', $revision, $plugin_id);
58
59  if (isset($_GET['reactivate']))
60  {
61    $plugins->perform_action('activate', $plugin_id);
62  }
63  redirect($base_url.'&plugin='.$plugin_id.'&upgradestatus='.$upgrade_status);
64}
65
66//--------------------------------------------------------------upgrade result
67if (isset($_GET['upgradestatus']) and isset($_GET['plugin']))
68{
69  switch ($_GET['upgradestatus'])
70  {
71    case 'ok':
72      array_push($page['infos'],
73         sprintf(
74            l10n('plugins_upgrade_ok'),
75            $plugins->fs_plugins[$_GET['plugin']]['name']));
76      break;
77
78    case 'temp_path_error':
79      array_push($page['errors'], l10n('plugins_temp_path_error'));
80      break;
81
82    case 'dl_archive_error':
83      array_push($page['errors'], l10n('plugins_dl_archive_error'));
84      break;
85
86    case 'archive_error':
87      array_push($page['errors'], l10n('plugins_archive_error'));
88      break;
89
90    default:
91      array_push($page['errors'],
92        sprintf(l10n('plugins_extract_error'), $_GET['upgradestatus']),
93        l10n('plugins_check_chmod'));
94  } 
95}
96
97//--------------------------------------------------------------------Tabsheet
98set_plugins_tabsheet($page['page']);
99
100// +-----------------------------------------------------------------------+
101// |                     start template output                             |
102// +-----------------------------------------------------------------------+
103if ($plugins->get_server_plugins())
104{
105  foreach($plugins->fs_plugins as $plugin_id => $fs_plugin)
106  {
107    if (isset($fs_plugin['extension'])
108      and isset($plugins->server_plugins[$fs_plugin['extension']]))
109    {
110      $plugin_info = $plugins->server_plugins[$fs_plugin['extension']];
111
112      list($date, ) = explode(' ', $plugin_info['revision_date']);
113
114      $ext_desc = '<i>'.l10n('Downloads').':</i> '.$plugin_info['extension_nb_downloads']."\r\n"
115        ."\r\n"
116        .$plugin_info['extension_description'];
117
118      $rev_desc = '<i>'.l10n('Version').':</i> '.$plugin_info['revision_name']."\r\n"
119        .'<i>'.l10n('Released on').':</i> '.$date."\r\n"
120        .'<i>'.l10n('Downloads').':</i> '.$plugin_info['revision_nb_downloads']."\r\n"
121        ."\r\n"
122        .$plugin_info['revision_description'];
123
124      if ($plugins->plugin_version_compare($fs_plugin['version'], $plugin_info['revision_name']))
125      {
126        // Plugin is up to date
127        $template->append('plugins_uptodate', array(
128          'URL' => PEM_URL.'/extension_view.php?eid='.$plugin_info['extension_id'],
129          'NAME' => $fs_plugin['name'],
130          'EXT_DESC' => $ext_desc,
131          'VERSION' => $fs_plugin['version'],
132          'VER_DESC' => $rev_desc));
133      }
134      else
135      {
136        // Plugin need upgrade
137        $url_auto_update = $base_url
138          . '&amp;revision=' . $plugin_info['revision_id']
139          . '&amp;plugin=' . $plugin_id
140          . '&amp;pwg_token='.get_pwg_token()
141          ;
142
143        $template->append('plugins_not_uptodate', array(
144          'EXT_NAME' => $fs_plugin['name'],
145          'EXT_URL' => PEM_URL.'/extension_view.php?eid='.$plugin_info['extension_id'],
146          'EXT_DESC' => $ext_desc,
147          'VERSION' => $fs_plugin['version'],
148          'NEW_VERSION' => $plugin_info['revision_name'],
149          'NEW_VER_DESC' => $rev_desc,
150          'URL_UPDATE' => $url_auto_update,
151          'URL_DOWNLOAD' => $plugin_info['download_url'] . '&amp;origin=piwigo_download'));
152      }
153    }
154    else
155    {
156      // Can't check plugin
157      $template->append('plugins_cant_check', array(
158        'NAME' => $fs_plugin['name'],
159        'VERSION' => $fs_plugin['version']));
160    }
161  }
162}
163else
164{
165  array_push($page['errors'], l10n('plugins_server_error'));
166}
167
168$template->assign_var_from_handle('ADMIN_CONTENT', 'plugins');
169?>
Note: See TracBrowser for help on using the repository browser.