source: trunk/admin/picture_modify.php @ 16694

Last change on this file since 16694 was 16334, checked in by rvelices, 12 years ago

user_cache was not invalidated on photo deletion

  • Property svn:eol-style set to LF
File size: 12.9 KB
Line 
1<?php
2// +-----------------------------------------------------------------------+
3// | Piwigo - a PHP based photo gallery                                    |
4// +-----------------------------------------------------------------------+
5// | Copyright(C) 2008-2012 Piwigo Team                  http://piwigo.org |
6// | Copyright(C) 2003-2008 PhpWebGallery Team    http://phpwebgallery.net |
7// | Copyright(C) 2002-2003 Pierrick LE GALL   http://le-gall.net/pierrick |
8// +-----------------------------------------------------------------------+
9// | This program is free software; you can redistribute it and/or modify  |
10// | it under the terms of the GNU General Public License as published by  |
11// | the Free Software Foundation                                          |
12// |                                                                       |
13// | This program is distributed in the hope that it will be useful, but   |
14// | WITHOUT ANY WARRANTY; without even the implied warranty of            |
15// | MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU      |
16// | General Public License for more details.                              |
17// |                                                                       |
18// | You should have received a copy of the GNU General Public License     |
19// | along with this program; if not, write to the Free Software           |
20// | Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, |
21// | USA.                                                                  |
22// +-----------------------------------------------------------------------+
23
24if(!defined("PHPWG_ROOT_PATH"))
25{
26  die('Hacking attempt!');
27}
28
29include_once(PHPWG_ROOT_PATH.'admin/include/functions.php');
30
31// +-----------------------------------------------------------------------+
32// | Check Access and exit when user status is not ok                      |
33// +-----------------------------------------------------------------------+
34check_status(ACCESS_ADMINISTRATOR);
35
36check_input_parameter('image_id', $_GET, false, PATTERN_ID);
37check_input_parameter('cat_id', $_GET, false, PATTERN_ID);
38
39// represent
40$query = '
41SELECT id
42  FROM '.CATEGORIES_TABLE.'
43  WHERE representative_picture_id = '.$_GET['image_id'].'
44;';
45$represent_options_selected = array_from_query($query, 'id');
46
47// +-----------------------------------------------------------------------+
48// |                             delete photo                              |
49// +-----------------------------------------------------------------------+
50
51if (isset($_GET['delete']))
52{
53  check_pwg_token();
54
55  delete_elements(array($_GET['image_id']), true);
56  invalidate_user_cache();
57
58  // where to redirect the user now?
59  //
60  // 1. if a category is available in the URL, use it
61  // 2. else use the first reachable linked category
62  // 3. redirect to gallery root
63
64  if (isset($_GET['cat_id']) and !empty($_GET['cat_id']))
65  {
66    redirect(
67      make_index_url(
68        array(
69          'category' => get_cat_info($_GET['cat_id'])
70          )
71        )
72      );
73  }
74
75  $query = '
76SELECT category_id
77  FROM '.IMAGE_CATEGORY_TABLE.'
78  WHERE image_id = '.$_GET['image_id'].'
79;';
80
81  $authorizeds = array_diff(
82    array_from_query($query, 'category_id'),
83    explode(',', calculate_permissions($user['id'], $user['status']))
84    );
85 
86  foreach ($authorizeds as $category_id)
87  {
88    redirect(
89      make_index_url(
90        array(
91          'category' => get_cat_info($category_id)
92          )
93        )
94      );
95  }
96
97  redirect(make_index_url());
98}
99
100// +-----------------------------------------------------------------------+
101// |                          synchronize metadata                         |
102// +-----------------------------------------------------------------------+
103
104if (isset($_GET['sync_metadata']))
105{
106  sync_metadata(array( intval($_GET['image_id'])));
107  array_push($page['infos'], l10n('Metadata synchronized from file'));
108}
109
110//--------------------------------------------------------- update informations
111
112// first, we verify whether there is a mistake on the given creation date
113if (isset($_POST['date_creation_action'])
114    and 'set' == $_POST['date_creation_action'])
115{
116  if (!is_numeric($_POST['date_creation_year'])
117    or !checkdate(
118          $_POST['date_creation_month'],
119          $_POST['date_creation_day'],
120          $_POST['date_creation_year'])
121    )
122  {
123    array_push($page['errors'], l10n('wrong date'));
124  }
125}
126
127if (isset($_POST['submit']) and count($page['errors']) == 0)
128{
129  $data = array();
130  $data{'id'} = $_GET['image_id'];
131  $data{'name'} = $_POST['name'];
132  $data{'author'} = $_POST['author'];
133  $data['level'] = $_POST['level'];
134
135  if ($conf['allow_html_descriptions'])
136  {
137    $data{'comment'} = @$_POST['description'];
138  }
139  else
140  {
141    $data{'comment'} = strip_tags(@$_POST['description']);
142  }
143
144  if (!empty($_POST['date_creation_year']))
145  {
146    $data{'date_creation'} =
147      $_POST['date_creation_year']
148      .'-'.$_POST['date_creation_month']
149      .'-'.$_POST['date_creation_day'];
150  }
151  else
152  {
153    $data{'date_creation'} = null;
154  }
155
156  mass_updates(
157    IMAGES_TABLE,
158    array(
159      'primary' => array('id'),
160      'update' => array_diff(array_keys($data), array('id'))
161      ),
162    array($data)
163    );
164
165  // time to deal with tags
166  $tag_ids = array();
167  if (!empty($_POST['tags']))
168  {
169    $tag_ids = get_tag_ids($_POST['tags']);
170  }
171  set_tags($tag_ids, $_GET['image_id']);
172
173  // association to albums
174  move_images_to_categories(array($_GET['image_id']), $_POST['associate']);
175
176  // thumbnail for albums
177  if (!isset($_POST['represent']))
178  {
179    $_POST['represent'] = array();
180  }
181 
182  $no_longer_thumbnail_for = array_diff($represent_options_selected, $_POST['represent']);
183  if (count($no_longer_thumbnail_for) > 0)
184  {
185    set_random_representant($no_longer_thumbnail_for);
186  }
187
188  $new_thumbnail_for = array_diff($_POST['represent'], $represent_options_selected);
189  if (count($new_thumbnail_for) > 0)
190  {
191    $query = '
192UPDATE '.CATEGORIES_TABLE.'
193  SET representative_picture_id = '.$_GET['image_id'].'
194  WHERE id IN ('.implode(',', $new_thumbnail_for).')
195;';
196    pwg_query($query);
197  }
198
199  $represent_options_selected = $_POST['represent'];
200 
201  array_push($page['infos'], l10n('Photo informations updated'));
202}
203
204// tags
205$query = '
206SELECT
207    id,
208    name
209  FROM '.IMAGE_TAG_TABLE.' AS it
210    JOIN '.TAGS_TABLE.' AS t ON t.id = it.tag_id
211  WHERE image_id = '.$_GET['image_id'].'
212;';
213$tag_selection = get_taglist($query);
214
215$query = '
216SELECT
217    id,
218    name
219  FROM '.TAGS_TABLE.'
220;';
221$tags = get_taglist($query, false);
222
223// retrieving direct information about picture
224$query = '
225SELECT *
226  FROM '.IMAGES_TABLE.'
227  WHERE id = '.$_GET['image_id'].'
228;';
229$row = pwg_db_fetch_assoc(pwg_query($query));
230
231$storage_category_id = null;
232if (!empty($row['storage_category_id']))
233{
234  $storage_category_id = $row['storage_category_id'];
235}
236
237$image_file = $row['file'];
238
239// +-----------------------------------------------------------------------+
240// |                             template init                             |
241// +-----------------------------------------------------------------------+
242
243$template->set_filenames(
244  array(
245    'picture_modify' => 'picture_modify.tpl'
246    )
247  );
248
249$admin_url_start = $admin_photo_base_url.'-properties';
250$admin_url_start.= isset($_GET['cat_id']) ? '&amp;cat_id='.$_GET['cat_id'] : '';
251
252$template->assign(
253  array(
254    'tag_selection' => $tag_selection,
255    'tags' => $tags,
256    'U_SYNC' => $admin_url_start.'&amp;sync_metadata=1',
257    'U_DELETE' => $admin_url_start.'&amp;delete=1&amp;pwg_token='.get_pwg_token(),
258
259    'PATH'=>$row['path'],
260
261    'TN_SRC' => DerivativeImage::thumb_url($row),
262
263    'NAME' =>
264      isset($_POST['name']) ?
265        stripslashes($_POST['name']) : @$row['name'],
266
267    'TITLE' => render_element_name($row),
268
269    'DIMENSIONS' => @$row['width'].' * '.@$row['height'],
270
271    'FILESIZE' => @$row['filesize'].' KB',
272
273    'REGISTRATION_DATE' => format_date($row['date_available']),
274
275    'AUTHOR' => htmlspecialchars(
276      isset($_POST['author'])
277        ? stripslashes($_POST['author'])
278        : @$row['author']
279      ),
280
281    'DESCRIPTION' =>
282      htmlspecialchars( isset($_POST['description']) ?
283        stripslashes($_POST['description']) : @$row['comment'] ),
284
285    'F_ACTION' =>
286        get_root_url().'admin.php'
287        .get_query_string_diff(array('sync_metadata'))
288    )
289  );
290
291$added_by = 'N/A';
292$query = '
293SELECT '.$conf['user_fields']['username'].' AS username
294  FROM '.USERS_TABLE.'
295  WHERE '.$conf['user_fields']['id'].' = '.$row['added_by'].'
296;';
297$result = pwg_query($query);
298while ($user_row = pwg_db_fetch_assoc($result))
299{
300  $row['added_by'] = $user_row['username'];
301}
302
303$intro_vars = array(
304  'file' => sprintf(l10n('Original file : %s'), $row['file']),
305  'add_date' => sprintf(l10n('Posted %s on %s'), time_since($row['date_available'], 'year'), format_date($row['date_available'], false, false)),
306  'added_by' => sprintf(l10n('Added by %s'), $row['added_by']),
307  'size' => $row['width'].'&times;'.$row['height'].' pixels, '.sprintf('%.2f', $row['filesize']/1024).'MB',
308  'stats' => sprintf(l10n('Visited %d times'), $row['hit']),
309  'id' => sprintf(l10n('Numeric identifier : %d'), $row['id']),
310  );
311
312if ($conf['rate'] and !empty($row['rating_score']))
313{
314  $query = '
315SELECT
316    COUNT(*)
317  FROM '.RATE_TABLE.'
318  WHERE element_id = '.$_GET['image_id'].'
319;';
320  list($row['nb_rates']) = pwg_db_fetch_row(pwg_query($query));
321 
322  $intro_vars['stats'].= ', '.sprintf(l10n('Rated %d times, score : %.2f'), $row['nb_rates'], $row['rating_score']);
323}
324
325$template->assign('INTRO', $intro_vars);
326 
327
328if (in_array(get_extension($row['path']),$conf['picture_ext']))
329{
330  $template->assign('U_COI', get_root_url().'admin.php?page=picture_coi&amp;image_id='.$_GET['image_id']);
331}
332
333// image level options
334$selected_level = isset($_POST['level']) ? $_POST['level'] : $row['level'];
335$template->assign(
336    array(
337      'level_options'=> get_privacy_level_options(),
338      'level_options_selected' => array($selected_level)
339    )
340  );
341
342// creation date
343unset($day, $month, $year);
344
345if (isset($_POST['date_creation_action'])
346    and 'set' == $_POST['date_creation_action'])
347{
348  foreach (array('day', 'month', 'year') as $varname)
349  {
350    $$varname = $_POST['date_creation_'.$varname];
351  }
352}
353else if (isset($row['date_creation']) and !empty($row['date_creation']))
354{
355  list($year, $month, $day) = explode('-', $row['date_creation']);
356}
357else
358{
359  list($year, $month, $day) = array('', 0, 0);
360}
361
362
363$month_list = $lang['month'];
364$month_list[0]='------------';
365ksort($month_list);
366
367$template->assign(
368    array(
369      'DATE_CREATION_DAY_VALUE' => $day,
370      'DATE_CREATION_MONTH_VALUE' => $month,
371      'DATE_CREATION_YEAR_VALUE' => $year,
372      'month_list' => $month_list,
373      )
374    );
375
376$query = '
377SELECT category_id, uppercats
378  FROM '.IMAGE_CATEGORY_TABLE.' AS ic
379    INNER JOIN '.CATEGORIES_TABLE.' AS c
380      ON c.id = ic.category_id
381  WHERE image_id = '.$_GET['image_id'].'
382;';
383$result = pwg_query($query);
384
385while ($row = pwg_db_fetch_assoc($result))
386{
387  $name =
388    get_cat_display_name_cache(
389      $row['uppercats'],
390      get_root_url().'admin.php?page=album-',
391      false
392      );
393
394  if ($row['category_id'] == $storage_category_id)
395  {
396    $template->assign('STORAGE_CATEGORY', $name);
397  }
398  else
399  {
400    $template->append('related_categories', $name);
401  }
402}
403
404// jump to link
405//
406// 1. find all linked categories that are reachable for the current user.
407// 2. if a category is available in the URL, use it if reachable
408// 3. if URL category not available or reachable, use the first reachable
409//    linked category
410// 4. if no category reachable, no jumpto link
411
412$query = '
413SELECT category_id
414  FROM '.IMAGE_CATEGORY_TABLE.'
415  WHERE image_id = '.$_GET['image_id'].'
416;';
417
418$authorizeds = array_diff(
419  array_from_query($query, 'category_id'),
420  explode(
421    ',',
422    calculate_permissions($user['id'], $user['status'])
423    )
424  );
425
426if (isset($_GET['cat_id'])
427    and in_array($_GET['cat_id'], $authorizeds))
428{
429  $url_img = make_picture_url(
430    array(
431      'image_id' => $_GET['image_id'],
432      'image_file' => $image_file,
433      'category' => $cache['cat_names'][ $_GET['cat_id'] ],
434      )
435    );
436}
437else
438{
439  foreach ($authorizeds as $category)
440  {
441    $url_img = make_picture_url(
442      array(
443        'image_id' => $_GET['image_id'],
444        'image_file' => $image_file,
445        'category' => $cache['cat_names'][ $category ],
446        )
447      );
448    break;
449  }
450}
451
452if (isset($url_img))
453{
454  $template->assign( 'U_JUMPTO', $url_img );
455}
456
457// associate to albums
458$query = '
459SELECT id
460  FROM '.CATEGORIES_TABLE.'
461    INNER JOIN '.IMAGE_CATEGORY_TABLE.' ON id = category_id
462  WHERE image_id = '.$_GET['image_id'].'
463;';
464$associate_options_selected = array_from_query($query, 'id');
465
466$query = '
467SELECT id,name,uppercats,global_rank
468  FROM '.CATEGORIES_TABLE.'
469;';
470display_select_cat_wrapper($query, $associate_options_selected, 'associate_options');
471display_select_cat_wrapper($query, $represent_options_selected, 'represent_options');
472
473//----------------------------------------------------------- sending html code
474
475$template->assign_var_from_handle('ADMIN_CONTENT', 'picture_modify');
476?>
Note: See TracBrowser for help on using the repository browser.