<?php
// $id: submissionAdmin.php3,v 1.0 2000/04/25 12:08:03 ajay Exp $
unset($seclev);            # Security: Don´t use User Vars
$pagetitle = "Administration";   # The name to be displayed in the header
$xsiteobject = "Administration";#Defines The META TAG Page Type

require("config.php3");
page_open(array("sess"=>"slashSess"));

$sl_q = new slashDB;

if (!isset($seclev) and isset($password) and isset($author_id)) {
   $sl_q->query("SELECT seclev,author_name
                   FROM psl_author
                  WHERE author_id = '$author_id'
                    AND password = '$password'");
   if ($sl_q->next_record()) {
      $seclev = $sl_q->Record["seclev"];
      $author_name = $sl_q->Record["author_name"];
      $sess->register("author_id");
      $sess->register("author_name");
      $sess->register("seclev");
   }
}

if (isset($cookie)) {
   $submission_name = $name;
   $submission_email = $email;
   $sess->register("submission_name");
   $sess->register("submission_email");
}

/*****************************
     START OF PAGE
*****************************/

slashhead($pagetitle,$xsiteobject);

debug("HTTP_POST_VARS" , $HTTP_POST_VARS);
debug("HTTP_GET_VARS" , $HTTP_GET_VARS);
debug("topic_id_ary" , $topic_id_ary);
debug("submission_id_ary" , $submission_id_ary);

$submission = new Submission;

/* this is all really unsecure code.  TODO, secure it! */

if ($seclev > 99) {

   switch ($submit) {
      case "delete":
         $count = count($submission_id_ary);
         if ($count > 0 ) {
            for ($i = 0 ; $i < $count ; $i++) {
               $submission->deleteSubmission($submission_id_ary[$i]);
            }
            echo "$count record deleted<BR>\n";
            $submission->listSubmission(0);
         } else {
            echo "<BR><BR>This would work <B>SO</B> much better if
                  you actually selected something to delete!<BR>\n";
         }
         break;

      case "save":
         /* this code is duplicated below for the people with no security
            priviliges */
         if ($submission->saveSubmission($HTTP_POST_VARS)) {
            logwrite("Story Submission", "$REMOTE_ADDR submitted a story as an admin");

			/**** [ Begin Modif for DigitalSook ] ****/
            require ('templates/submissiondone.tpl') ;
            // echo "Thanks for this submission.  We have it and will set our fearless editorial staff upon it right this second.<br>\n";
			/**** [ End Modif for DigitalSook ] ****/

         } else {
			/**** [ Begin Modif for DigitalSook ] ****/
            // echo "<FONT COLOR=RED>Something broke, I'm not sure what though??</FONT>\n";
            /**** [ End Modif for DigitalSook ] ****/
         }
         break;

      case "quickies":
         echo "TODO:  Write a Quickies routine<BR>\n";
         break;

      case "preview":
		 /**** [ Begin Modif for DigitalSook ] ****/
         // echo "<B>PREVIEW SUBMISSION</B><BR>\n";
		 /**** [ end Modif for DigitalSook ] ****/
         $submission->showSubmission($HTTP_POST_VARS);
 		 /**** [ Begin Modif for DigitalSook ] ****/
         // titlebar("100%","Edit Submission");
         /**** [ end Modif for DigitalSook ] ****/
         $submission->newSubmission($HTTP_POST_VARS,"array");
         break;

      case "editasstory":
		/**** [ Begin Modif for DigitalSook ] ****/
        // echo "<B>EDIT AS STORY</B><BR>\n";
		/**** [ end Modif for DigitalSook ] ****/
         $submission->editasStory($submission_id);
         if (getvar("submission_autodelete")) {
            $submission->deleteSubmission($submission_id);
         };
         break;

      case "edit":
		 /**** [ Begin Modif for DigitalSook ] ****/
         // echo "<B>EDIT SUBMISSION</B><BR>\n";
		 /**** [ end Modif for DigitalSook ] ****/
         $submission->displaySubmission($submission_id);
         /**** [ Begin Modif for DigitalSook ] ****/
         // titlebar("100%","Edit Submission");
         /**** [ end Modif for DigitalSook ] ****/
         $ary[submission_id] = $submission_id;
         $submission->newSubmission($ary,"database");
         break;

      case "new":
      	 /**** [ Begin Modif for DigitalSook ] ****/
         // echo "<B>NEW SUBMISSION</B><BR>\n";
         /**** [ end Modif for DigitalSook ] ****/
         $submission->newSubmission($HTTP_POST_VARS,"array");
         break;

      default:
         if (!$submission->listSubmission($next)) {
            echo "when you don't see the submission, it means there aren't any.<BR>\n";
         }

   } /* end of switch */

} else {   /* no permissions! */

   switch ($submit) {

      case "save":
         if ($submission->saveSubmission($HTTP_POST_VARS)) {
            logwrite("Story Submission", "$REMOTE_ADDR submitted a story");
            /**** [ Begin Modif for DigitalSook ] ****/
            require ('templates/submissiondone.tpl');
            // echo "Thanks for this submission.  We have it and will set our fearless editorial staff upon it right this second.<br>\n";
            /**** [ end Modif for DigitalSook ] ****/
         } else {
			 /**** [ Begin Modif for DigitalSook ] ****/
            // echo "<FONT COLOR=RED>Something broke, I'm not sure what though??</FONT>\n";
            /**** [ end Modif for DigitalSook ] ****/
         }
         break;

      case "preview":
      	 /**** [ Begin Modif for DigitalSook ] ****/
         // echo "<B>PREVIEW SUBMISSION</B><BR>\n";
         /**** [ end Modif for DigitalSook ] ****/
         $submission->showSubmission($HTTP_POST_VARS);
         /**** [ Begin Modif for DigitalSook ] ****/
         // titlebar("100%","Edit Submission");
         /**** [ end Modif for DigitalSook ] ****/
         $submission->newSubmission($HTTP_POST_VARS,"array");
         break;

      default:
         /**** [ Begin Modif for DigitalSook ] ****/
         // titlebar("100%","New Submission");
         /**** [ end Modif for DigitalSook ] ****/
         $section_array[0] = $section_id;
         $topic_array[0] = $topic_id;
         $ary[section_id_ary] = $section_array;
         $ary[topic_id_ary] = $topic_array;

         $submission->newSubmission($ary,"array");

   } /* end of no-permission switch */

};

slashfoot();
PAGE_close();

?>