2005-09-27 01:55:36 +02:00
< ? php
2005-10-01 00:42:26 +02:00
2005-09-27 01:55:36 +02:00
require_once ( 'admin.php' );
if ( ! current_user_can ( 'edit_posts' ))
2005-10-06 02:44:04 +02:00
die ( __ ( 'You do not have permission to edit posts.' ));
2005-09-27 01:55:36 +02:00
2005-10-04 19:38:04 +02:00
$wpvarstoreset = array ( 'action' , 'post' , 'all' , 'last' , 'link' , 'sort' , 'start' , 'imgtitle' , 'descr' , 'object' );
2005-09-27 01:55:36 +02:00
for ( $i = 0 ; $i < count ( $wpvarstoreset ); $i += 1 ) {
$wpvar = $wpvarstoreset [ $i ];
if ( ! isset ( $$wpvar )) {
if ( empty ( $_POST [ " $wpvar " ])) {
if ( empty ( $_GET [ " $wpvar " ])) {
$$wpvar = '' ;
} else {
$$wpvar = $_GET [ " $wpvar " ];
}
} else {
$$wpvar = $_POST [ " $wpvar " ];
}
}
}
$post = ( int ) $post ;
2005-10-01 00:42:26 +02:00
$images_width = 1 ;
function get_udims ( $width , $height ) {
if ( $height < 96 && $width < 128 )
return array ( $width , $height );
elseif ( $width / $height > 4 / 3 )
return array ( 128 , ( int ) ( $height / $width * 128 ));
else
return array (( int ) ( $width / $height * 96 ), 96 );
}
2005-09-27 01:55:36 +02:00
switch ( $action ) {
2005-10-04 19:38:04 +02:00
case 'delete' :
wp_delete_object ( $object );
header ( " Location: " . basename ( __FILE__ ) . " ?post= $post &all= $all &action=view&start= $start " );
die ;
2005-09-27 01:55:36 +02:00
case 'save' :
// Define acceptable image extentions/types here. Tests will apply strtolower().
$exts = array ( 'gif' => IMAGETYPE_GIF , 'jpg' => IMAGETYPE_JPEG , 'png' => IMAGETYPE_PNG );
// Define the error messages for bad uploads.
$upload_err = array ( false ,
2005-10-06 02:44:04 +02:00
__ ( " The uploaded file exceeds the <code>upload_max_filesize</code> directive in <code>php.ini</code>. " ),
__ ( " The uploaded file exceeds the <em>MAX_FILE_SIZE</em> directive that was specified in the HTML form. " ),
__ ( " The uploaded file was only partially uploaded. " ),
__ ( " No file was uploaded. " ),
__ ( " Missing a temporary folder. " ),
__ ( " Failed to write file to disk. " ));
2005-09-27 01:55:36 +02:00
$iuerror = false ;
// Failing any single one of the following tests is fatal.
// A correct form post will pass this test.
if ( ! isset ( $_POST [ 'action' ]) || $_POST [ 'action' ] != 'save' || count ( $_FILES ) != 1 || ! isset ( $_FILES [ 'image' ]) || is_array ( $_FILES [ 'image' ][ 'name' ]) )
2005-10-06 02:44:04 +02:00
$error = __ ( 'Invalid form submission. Only submit approved forms.' );
2005-09-27 01:55:36 +02:00
// A successful upload will pass this test.
elseif ( $_FILES [ 'image' ][ 'error' ] > 0 )
$error = $upload_err [ $_FILES [ 'image' ][ 'error' ]];
// A non-empty file will pass this test.
elseif ( 0 == $_FILES [ 'image' ][ 'size' ] )
2005-10-06 02:44:04 +02:00
$error = __ ( 'File is empty. Please upload something more substantial.' );
2005-09-27 01:55:36 +02:00
// A correct MIME category will pass this test. Full types are not consistent across browsers.
elseif ( ! 'image/' == substr ( $_FILES [ 'image' ][ 'type' ], 0 , 6 ) )
2005-10-06 02:44:04 +02:00
$error = __ ( 'Bad MIME type submitted by your browser.' );
2005-09-27 01:55:36 +02:00
// An acceptable file extension will pass this test.
elseif ( ! ( ( 0 !== preg_match ( '#\.?([^\.]*)$#' , $_FILES [ 'image' ][ 'name' ], $matches ) ) && ( $ext = strtolower ( $matches [ 1 ]) ) && array_key_exists ( $ext , $exts ) ) )
2005-10-06 02:44:04 +02:00
$error = __ ( 'Bad file extension.' );
2005-09-27 01:55:36 +02:00
// A valid uploaded file will pass this test.
elseif ( ! is_uploaded_file ( $_FILES [ 'image' ][ 'tmp_name' ]) )
2005-10-06 02:44:04 +02:00
$error = __ ( 'Bad temp file. Try renaming the file and uploading again.' );
2005-09-27 01:55:36 +02:00
// A valid image file will pass this test.
elseif ( function_exists ( 'exif_imagetype' ) && $exts [ $ext ] != $imagetype = exif_imagetype ( $_FILES [ 'image' ][ 'tmp_name' ]) )
2005-10-06 02:44:04 +02:00
$error = __ ( 'Bad image file. Try again, or try recreating it.' );
2005-09-27 01:55:36 +02:00
// An image with at least one pixel will pass this test.
elseif ( ! ( ( $imagesize = getimagesize ( $_FILES [ 'image' ][ 'tmp_name' ]) ) && $imagesize [ 0 ] > 1 && $imagesize [ 1 ] > 1 ) )
2005-10-06 02:44:04 +02:00
$error = __ ( 'The image has no pixels. Isn\'t that odd?' );
2005-09-27 01:55:36 +02:00
// A writable uploads dir will pass this test.
elseif ( ! ( ( $uploads = wp_upload_dir () ) && false === $uploads [ 'error' ] ) )
$error = $uploads [ 'error' ];
if ( $error )
// Something wasn't right. Abort and never touch the temp file again.
die ( " $error <a href=' " . basename ( __FILE__ ) . " ?action=upload&post= $post '>Back to Image Uploading</a> " );
// Increment the file number until we have a unique file to save in $dir
$number = '' ;
$filename = $_FILES [ 'image' ][ 'name' ];
while ( file_exists ( $uploads [ 'path' ] . " / $filename " ) )
$filename = str_replace ( " $number . $ext " , ++ $number . " . $ext " , $filename );
// Move the file to the uploads dir
$file = $uploads [ 'path' ] . " / $filename " ;
2005-10-04 19:38:04 +02:00
if ( false === move_uploaded_file ( $_FILES [ 'image' ][ 'tmp_name' ], $file ) )
die ( 'The uploaded file could not be moved to $file.' );
2005-09-27 01:55:36 +02:00
chmod ( $file , 0775 );
// Compute the URL
$url = $uploads [ 'url' ] . " / $filename " ;
// Construct the object array
$object = array (
'post_title' => $imgtitle ? $imgtitle : $filename ,
'post_content' => $descr ,
'post_status' => 'object' ,
'post_parent' => $post ,
'post_type' => $_FILES [ 'image' ][ 'type' ],
'guid' => $url
);
// Save the data
$id = wp_attach_object ( $object , $post );
// Generate the object's postmeta.
$imagesize = getimagesize ( $file );
$imagedata [ 'width' ] = $imagesize [ '0' ];
$imagedata [ 'height' ] = $imagesize [ '1' ];
2005-10-01 00:42:26 +02:00
list ( $uwidth , $uheight ) = get_udims ( $imagedata [ 'width' ], $imagedata [ 'height' ]);
2005-09-27 01:55:36 +02:00
$imagedata [ 'hwstring_small' ] = " height=' $uheight ' width=' $uwidth ' " ;
$imagedata [ 'file' ] = $file ;
if ( false == add_post_meta ( $id , 'imagedata' , $imagedata ) )
die ( " failed to add_post_meta " );
header ( " Location: " . basename ( __FILE__ ) . " ?post= $post &all= $all &action=view&last=true " );
die ;
case 'upload' :
2005-10-01 00:42:26 +02:00
$current_1 = ' class="current"' ;
$back = $next = false ;
2005-09-27 01:55:36 +02:00
break ;
case 'view' :
2005-10-01 00:42:26 +02:00
// How many images do we show? How many do we query?
$num = 5 ;
$double = $num * 2 ;
if ( $post && empty ( $all ) ) {
2005-09-27 01:55:36 +02:00
$and_post = " AND post_parent = ' $post ' " ;
2005-10-01 00:42:26 +02:00
$current_2 = ' class="current"' ;
} else {
$current_3 = ' class="current"' ;
}
2005-09-27 01:55:36 +02:00
if ( $last )
2005-10-01 00:42:26 +02:00
$start = $wpdb -> get_var ( " SELECT count(ID) FROM $wpdb->posts WHERE post_status = 'object' AND left(post_type, 5) = 'image' $and_post " ) - $num ;
2005-09-27 01:55:36 +02:00
else
$start = ( int ) $start ;
if ( $start < 0 )
$start = 0 ;
if ( '' == $sort )
$sort = " ID " ;
2005-10-01 00:42:26 +02:00
$images = $wpdb -> get_results ( " SELECT ID, post_date, post_title, guid FROM $wpdb->posts WHERE post_status = 'object' AND left(post_type, 5) = 'image' $and_post ORDER BY $sort LIMIT $start , $double " , ARRAY_A );
2005-09-27 01:55:36 +02:00
2005-10-01 00:42:26 +02:00
if ( count ( $images ) > $num ) {
$next = $start + count ( $images ) - $num ;
2005-09-27 01:55:36 +02:00
} else {
$next = false ;
}
if ( $start > 0 ) {
2005-10-01 00:42:26 +02:00
$back = $start - $num ;
2005-09-27 01:55:36 +02:00
if ( $back < 1 )
$back = '0' ;
} else {
$back = false ;
}
2005-10-04 19:38:04 +02:00
$i = 0 ;
2005-10-01 00:42:26 +02:00
$uwidth_sum = 0 ;
$images_html = '' ;
2005-10-04 19:38:04 +02:00
$images_style = '' ;
2005-10-01 00:42:26 +02:00
if ( count ( $images ) > 0 ) {
$images = array_slice ( $images , 0 , $num );
foreach ( $images as $key => $image ) {
$image = array_merge ( $image , get_post_meta ( $image [ 'ID' ], 'imagedata' , true ) );
list ( $image [ 'uwidth' ], $image [ 'uheight' ]) = get_udims ( $image [ 'width' ], $image [ 'height' ]);
2005-10-04 19:38:04 +02:00
$uwidth_sum += 128 ; //$image['uwidth'];
$xpadding = ( 128 - $image [ 'uwidth' ]) / 2 ;
$ypadding = ( 96 - $image [ 'uheight' ]) / 2 ;
$object = $image [ 'ID' ];
$images_style .= " #target $i img { padding: { $ypadding } px { $xpadding } px; } \n " ;
$images_html .= <<< HERE
< div id = 'target$i' class = 'imagewrap left' >
< div id = 'popup$i' class = 'popup' >
< a onclick = 'return confirm("Delete this photo from the server?")' href = 'image-uploading.php?action=delete&object=$object&all=$all&start=$start&post=$post' > DELETE </ a >
< a onclick = " popup.style.display='none';return false; " href = " javascript:void() " > CANCEL </ a >
</ div >
< a id = 'link$i' class = 'imagelink' href = '{$image[' guid ']}' onclick = 'imagePopup($i);return false;' title = '{$image[' post_title ']}' >
< img id = 'image$i' src = '{$image[' guid ']}' alt = '{$image[' post_title ']}' { $image [ 'hwstring_small' ]} />
</ a >
</ div >
HERE ;
$i ++ ;
2005-10-01 00:42:26 +02:00
}
}
2005-10-04 19:38:04 +02:00
$images_width = $uwidth_sum + ( count ( $images ) * 5 ) + 30 ;
2005-10-01 00:42:26 +02:00
break ;
default :
die ( 'This script was not meant to be called directly.' );
}
2005-09-27 01:55:36 +02:00
?>
<! DOCTYPE html PUBLIC " -//W3C//DTD XHTML 1.0 Transitional//EN " " http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd " >
< html xmlns = " http://www.w3.org/1999/xhtml " >
< head >
2005-10-01 00:42:26 +02:00
< meta http - equiv = " imagetoolbar " content = " no " />
< script type = " text/javascript " >
function validateImageName () {
/* This is more for convenience than security. Server-side validation is very thorough.*/
obj = document . getElementById ( 'upload' );
r = /. jpg $ |. gif $ |. png $ / i ;
if ( obj . value . match ( r ) )
return true ;
alert ( 'Please select a JPG, PNG or GIF file.' );
return false ;
}
function cancelUpload () {
o = document . getElementById ( 'uploadForm' );
o . method = 'GET' ;
o . action . value = 'view' ;
o . submit ();
}
2005-10-04 19:38:04 +02:00
function imagePopup ( i ) {
if ( popup )
popup . style . display = 'none' ;
target = document . getElementById ( 'target' + i );
popup = document . getElementById ( 'popup' + i );
//popup.style.top = (target.offsetTop + 3) + 'px';
popup . style . left = ( target . offsetLeft ) + 'px' ;
popup . style . display = 'block' ;
}
function init () {
popup = false ;
}
2005-10-01 00:42:26 +02:00
</ script >
< style type = " text/css " >
body {
font : 13 px " Lucida Grande " , " Lucida Sans Unicode " , Tahoma , Verdana ;
border : none ;
margin : 0 px ;
height : 150 px ;
background : rgb ( 223 , 232 , 241 );
}
form {
margin : 6 px 2 px 0 px 6 px ;
}
#wrap {
clear : both ;
margin : 0 px ;
padding : 0 px ;
height : 133 px ;
width : 100 % ;
overflow : auto ;
}
#images {
clear : both ;
margin : 0 px ;
2005-10-04 19:38:04 +02:00
padding : 5 px 15 px ;
height : 96 px ;
2005-10-01 00:42:26 +02:00
width : < ? php echo $images_width ; ?> px;
}
2005-10-04 19:38:04 +02:00
#images img {
background - color : rgb ( 209 , 226 , 239 );
}
< ? php echo $images_style ; ?>
. imagewrap {
2005-10-01 00:42:26 +02:00
margin - right : 5 px ;
}
2005-10-04 19:38:04 +02:00
. imagewrap * {
2005-10-01 00:42:26 +02:00
margin : 0 px ;
padding : 0 px ;
border : 0 px ;
}
2005-10-04 19:38:04 +02:00
. imagewrap a , . imagewrap a img , . imagewrap a : hover img , . imagewrap a : visited img , . imagewrap a : active img {
2005-10-01 00:42:26 +02:00
text - decoration : none ;
float : left ;
display : block ;
text - align : center ;
}
#menu {
margin : 0 px ;
list - style : none ;
background : rgb ( 109 , 166 , 209 );
padding : 4 px 0 px 0 px 8 px ;
text - align : left ;
border - bottom : 3 px solid rgb ( 68 , 138 , 189 );
}
#menu li {
display : inline ;
margin : 0 px ;
}
#menu a, #menu a:visited, #menu a:active {
padding : 1 px 3 px 3 px ;
text - decoration : none ;
2005-10-04 19:38:04 +02:00
color : #234;
2005-10-01 00:42:26 +02:00
background : transparent ;
}
#menu a:hover {
background : rgb ( 203 , 214 , 228 );
color : #000;
}
#menu .current a, #menu .current a:hover, #menu .current a:visited, #menu .current a:active {
background : rgb ( 223 , 232 , 241 );
2005-10-04 19:38:04 +02:00
padding - bottom : 3 px ;
2005-10-01 00:42:26 +02:00
color : #000;
border - right : 2 px solid rgb ( 20 , 86 , 138 );
}
. tip {
2005-10-04 19:38:04 +02:00
color : rgb ( 68 , 138 , 189 );
2005-10-01 00:42:26 +02:00
padding : 1 px 3 px ;
}
. inactive {
2005-10-04 19:38:04 +02:00
color : #579;
2005-10-01 00:42:26 +02:00
padding : 1 px 3 px ;
}
. left {
float : left ;
}
. right {
float : right ;
}
. center {
text - align : center ;
}
#menu li.spacer {
margin - left : 40 px ;
}
label {
float : left ;
width : 18 % ;
}
#title, #descr {
width : 80 % ;
margin - top : 2 px ;
}
#descr {
height : 35 px ;
v - align : top ;
}
#buttons {
width : 98 % ;
margin - top : 2 px ;
text - align : right ;
}
2005-10-04 19:38:04 +02:00
. popup {
margin : 23 px 9 px ;
padding : 5 px ;
position : absolute ;
width : 100 px ;
height : 40 px ;
display : none ;
background - color : rgb ( 223 , 232 , 241 );
opacity : . 90 ;
filter : alpha ( opacity = 90 );
text - align : center ;
}
. popup a , . popup a : visited , . popup a : active {
margin - bottom : 3 px ;
background - color : transparent ;
display : block ;
width : 100 % ;
text - decoration : none ;
color : #246;
}
. popup a : hover {
margin - bottom : 3 px ;
background - color : #fff;
color : #000;
}
2005-10-01 00:42:26 +02:00
</ style >
2005-09-27 01:55:36 +02:00
</ head >
2005-10-04 19:38:04 +02:00
< body onload = " init() " >
2005-10-01 00:42:26 +02:00
< ul id = " menu " >
< li < ? php echo $current_1 ; ?> ><a href="image-uploading.php?action=upload&post=<?php echo $post; ?>&all=<?php echo $all; ?>">Upload Photo</a></li>
< li < ? php echo $current_2 ; ?> ><a href="image-uploading.php?action=view&post=<?php echo $post; ?>">Browse Attached</a></li>
< li < ? php echo $current_3 ; ?> ><a href="image-uploading.php?action=view&post=<?php echo $post; ?>&all=true">Browse All</a></li>
< li > </ li >
< ? php if ( false !== $back ) : ?>
< li class = " spacer " >< a href = " image-uploading.php?action=view&post=<?php echo $post ; ?>&all=<?php echo $all ; ?>&start=0 " title = " First " >|& lt ; </ a ></ li >
< li >< a href = " image-uploading.php?action=view&post=<?php echo $post ; ?>&all=<?php echo $all ; ?>&start=<?php echo $back ; ?> " title = " Back " >& lt ; & lt ; </ a ></ li >
2005-09-27 01:55:36 +02:00
< ? php else : ?>
2005-10-01 00:42:26 +02:00
< li class = " inactive spacer " >|& lt ; </ li >
< li class = " inactive " >& lt ; & lt ; </ li >
< ? php endif ; ?>
< ? php if ( false !== $next ) : ?>
< li >< a href = " image-uploading.php?action=view&post=<?php echo $post ; ?>&all=<?php echo $all ; ?>&start=<?php echo $next ; ?> " title = " Next " >& gt ; & gt ; </ a ></ li >
< li >< a href = " image-uploading.php?action=view&post=<?php echo $post ; ?>&all=<?php echo $all ; ?>&last=true " title = " Last " >& gt ; |</ a ></ li >
< ? php else : ?>
< li class = " inactive " >& gt ; & gt ; </ li >
< li class = " inactive " >& gt ; |</ li >
< ? php endif ; ?>
</ ul >
< ? php if ( $action == 'view' ) : ?>
< span class = " left tip " > Drag and drop photos to post </ span >
< span class = " right tip " > Click photos for more options </ span >
< div id = " wrap " >
< div id = " images " >
< ? php echo $images_html ; ?>
</ div >
</ div >
< ? php elseif ( $action = 'upload' ) : ?>
< div class = " center tip " > Duplicated filenames will be numbered ( photo . jpg , photo1 . jpg , etc . ) </ div >
< form enctype = " multipart/form-data " id = " uploadForm " method = " POST " action = " image-uploading.php " onsubmit = " return validateImageName() " >
< label for = " upload " > Image :</ label >< input type = " file " id = " upload " name = " image " onchange = " validateImageName() " />
< label for = " title " > Title :</ label >< input type = " text " id = " title " name = " imgtitle " />
< label for = " descr " > Description :</ label >< input type = " textarea " name = " descr " id = " descr " value = " " />
< input type = " hidden " name = " action " value = " save " />
< input type = " hidden " name = " post " value = " <?php echo $post ; ?> " />
< input type = " hidden " name = " all " value = " <?php echo $all ; ?> " />
< div id = " buttons " >
< input type = " submit " value = " Upload " />
< input type = " button " value = " Cancel " onclick = " cancelUpload() " />
</ div >
</ form >
2005-09-27 01:55:36 +02:00
< ? php endif ; ?>
</ body >
</ html >