"slashSess"));
$sl_q = new slashDB;
if (!isset($seclev) and isset($password) and isset($author_id)) {
$sl_q->query("SELECT seclev,author_name
FROM psl_author
WHERE author_id = '$author_id'
AND password = '$password'");
if ($sl_q->next_record()) {
$seclev = $sl_q->Record["seclev"];
$author_name = $sl_q->Record["author_name"];
$sess->register("author_id");
$sess->register("author_name");
$sess->register("seclev");
}
}
if (isset($cookie)) {
$submission_name = $name;
$submission_email = $email;
$sess->register("submission_name");
$sess->register("submission_email");
}
/*****************************
START OF PAGE
*****************************/
slashhead($pagetitle,$xsiteobject);
debug("HTTP_POST_VARS" , $HTTP_POST_VARS);
debug("HTTP_GET_VARS" , $HTTP_GET_VARS);
debug("topic_id_ary" , $topic_id_ary);
debug("submission_id_ary" , $submission_id_ary);
$submission = new Submission;
/* this is all really unsecure code. TODO, secure it! */
if ($seclev > 99) {
switch ($submit) {
case "delete":
$count = count($submission_id_ary);
if ($count > 0 ) {
for ($i = 0 ; $i < $count ; $i++) {
$submission->deleteSubmission($submission_id_ary[$i]);
}
echo "$count record deleted
\n";
$submission->listSubmission(0);
} else {
echo "
This would work SO much better if
you actually selected something to delete!
\n";
}
break;
case "save":
/* this code is duplicated below for the people with no security
priviliges */
if ($submission->saveSubmission($HTTP_POST_VARS)) {
logwrite("Story Submission", "$REMOTE_ADDR submitted a story as an admin");
/**** [ Begin Modif for DigitalSook ] ****/
require ('templates/submissiondone.tpl') ;
// echo "Thanks for this submission. We have it and will set our fearless editorial staff upon it right this second.
\n";
/**** [ End Modif for DigitalSook ] ****/
} else {
/**** [ Begin Modif for DigitalSook ] ****/
// echo "Something broke, I'm not sure what though??\n";
/**** [ End Modif for DigitalSook ] ****/
}
break;
case "quickies":
echo "TODO: Write a Quickies routine
\n";
break;
case "preview":
/**** [ Begin Modif for DigitalSook ] ****/
// echo "PREVIEW SUBMISSION
\n";
/**** [ end Modif for DigitalSook ] ****/
$submission->showSubmission($HTTP_POST_VARS);
/**** [ Begin Modif for DigitalSook ] ****/
// titlebar("100%","Edit Submission");
/**** [ end Modif for DigitalSook ] ****/
$submission->newSubmission($HTTP_POST_VARS,"array");
break;
case "editasstory":
/**** [ Begin Modif for DigitalSook ] ****/
// echo "EDIT AS STORY
\n";
/**** [ end Modif for DigitalSook ] ****/
$submission->editasStory($submission_id);
if (getvar("submission_autodelete")) {
$submission->deleteSubmission($submission_id);
};
break;
case "edit":
/**** [ Begin Modif for DigitalSook ] ****/
// echo "EDIT SUBMISSION
\n";
/**** [ end Modif for DigitalSook ] ****/
$submission->displaySubmission($submission_id);
/**** [ Begin Modif for DigitalSook ] ****/
// titlebar("100%","Edit Submission");
/**** [ end Modif for DigitalSook ] ****/
$ary[submission_id] = $submission_id;
$submission->newSubmission($ary,"database");
break;
case "new":
/**** [ Begin Modif for DigitalSook ] ****/
// echo "NEW SUBMISSION
\n";
/**** [ end Modif for DigitalSook ] ****/
$submission->newSubmission($HTTP_POST_VARS,"array");
break;
default:
if (!$submission->listSubmission($next)) {
echo "when you don't see the submission, it means there aren't any.
\n";
}
} /* end of switch */
} else { /* no permissions! */
switch ($submit) {
case "save":
if ($submission->saveSubmission($HTTP_POST_VARS)) {
logwrite("Story Submission", "$REMOTE_ADDR submitted a story");
/**** [ Begin Modif for DigitalSook ] ****/
require ('templates/submissiondone.tpl');
// echo "Thanks for this submission. We have it and will set our fearless editorial staff upon it right this second.
\n";
/**** [ end Modif for DigitalSook ] ****/
} else {
/**** [ Begin Modif for DigitalSook ] ****/
// echo "Something broke, I'm not sure what though??\n";
/**** [ end Modif for DigitalSook ] ****/
}
break;
case "preview":
/**** [ Begin Modif for DigitalSook ] ****/
// echo "PREVIEW SUBMISSION
\n";
/**** [ end Modif for DigitalSook ] ****/
$submission->showSubmission($HTTP_POST_VARS);
/**** [ Begin Modif for DigitalSook ] ****/
// titlebar("100%","Edit Submission");
/**** [ end Modif for DigitalSook ] ****/
$submission->newSubmission($HTTP_POST_VARS,"array");
break;
default:
/**** [ Begin Modif for DigitalSook ] ****/
// titlebar("100%","New Submission");
/**** [ end Modif for DigitalSook ] ****/
$section_array[0] = $section_id;
$topic_array[0] = $topic_id;
$ary[section_id_ary] = $section_array;
$ary[topic_id_ary] = $topic_array;
$submission->newSubmission($ary,"array");
} /* end of no-permission switch */
};
slashfoot();
PAGE_close();
?>