Changes in admin/media_item.php [2889:7ffa843d5cbc:2614:db6f6a1f4f25]

File:

• admin/media_item.php (modified) (27 diffs)

admin/media_item.php

@@ -17 +17 @@
 $tab = empty($_REQUEST['tab']) ? '' : $_REQUEST['tab'];
 
-$post_id = !empty($_REQUEST['post_id']) ? (integer) $_REQUEST['post_id'] : null;
+$post_id = !empty($_GET['post_id']) ? (integer) $_GET['post_id'] : null;
 if ($post_id) {
      $post = $core->blog->getPosts(array('post_id'=>$post_id));
@@ -28 +28 @@
 
 $file = null;
-$popup = (integer) !empty($_REQUEST['popup']);
-$plugin_id = isset($_REQUEST['plugin_id']) ? html::sanitizeURL($_REQUEST['plugin_id']) : '';
-$page_url_params = array('popup' => $popup,'post_id' => $post_id);
-$media_page_url_params = array('popup' => $popup,'post_id' => $post_id);
-
-if ($plugin_id != '') {
-     $page_url_params['plugin_id'] = $plugin_id;
-     $media_page_url_params['plugin_id'] = $plugin_id;
-}
+$popup = (integer) !empty($_GET['popup']);
+$page_url = 'media_item.php?popup='.$popup.'&post_id='.$post_id;
+$media_page_url = 'media.php?popup='.$popup.'&post_id='.$post_id;
 
 $id = !empty($_REQUEST['id']) ? (integer) $_REQUEST['id'] : '';
-
-if ($id != '') {
-     $page_url_params ['id'] = $id;
-}
 
 if ($popup) {
@@ -93 +83 @@
 
           dcPage::addSuccessNotice(__('File has been successfully updated.'));
-          $core->adminurl->redirect('admin.media.item',$page_url_params);
+          http::redirect($page_url.'&id='.$id);
      } catch (Exception $e) {
           $core->error->add($e->getMessage());
@@ -122 +112 @@
 
           dcPage::addSuccessNotice(__('File has been successfully updated.'));
-          $page_url_params['tab'] = 'media-details-tab';
-          $core->adminurl->redirect('admin.media.item',$page_url_params);
+          http::redirect($page_url.'&id='.$id.'&tab=media-details-tab');
      } catch (Exception $e) {
           $core->error->add($e->getMessage());
@@ -137 +126 @@
 
           dcPage::addSuccessNotice(__('Thumbnails have been successfully updated.'));
-          $page_url_params['tab'] = 'media-details-tab';
-          $core->adminurl->redirect('admin.media.item',$page_url_params);
+          http::redirect($page_url.'&id='.$id.'&tab=media-details-tab');
      } catch (Exception $e) {
           $core->error->add($e->getMessage());
@@ -151 +139 @@
 
           dcPage::addSuccessNotice(__('Zip file has been successfully extracted.'));
-          $media_page_url_params['d'] = $unzip_dir;
-          $core->adminurl->redirect('admin.media',$media_page_url_params);
+          http::redirect($media_page_url.'&d='.$unzip_dir);
      } catch (Exception $e) {
           $core->error->add($e->getMessage());
@@ -177 +164 @@
 
      dcPage::addSuccessNotice(__('Default media insertion settings have been successfully updated.'));
-     $core->adminurl->redirect('admin.media.item',$page_url_params);
+     http::redirect($page_url.'&id='.$id);
 }
 
 # Function to get image title based on meta
-function dcGetImageTitle($file,$pattern,$dto_first=false,$no_date_alone=false)
+function dcGetImageTitle($file,$pattern,$dto_first=false)
 {
      $res = array();
      $pattern = preg_split('/\s*;;\s*/',$pattern);
      $sep = ', ';
-     $dates = 0;
-     $items = 0;
 
      foreach ($pattern as $v) {
@@ -194 +179 @@
                     $res[] = $file->media_title;
                }
-               $items++;
           } elseif ($file->media_meta->{$v}) {
                if ((string) $file->media_meta->{$v} != '') {
                     $res[] = (string) $file->media_meta->{$v};
                }
-               $items++;
           } elseif (preg_match('/^Date\((.+?)\)$/u',$v,$m)) {
                if ($dto_first && ($file->media_meta->DateTimeOriginal != 0)) {
@@ -206 +189 @@
                     $res[] = dt::str($m[1],$file->media_dt);
                }
-               $items++;
-               $dates++;
           } elseif (preg_match('/^DateTimeOriginal\((.+?)\)$/u',$v,$m) && $file->media_meta->DateTimeOriginal) {
                $res[] = dt::dt2str($m[1],(string) $file->media_meta->DateTimeOriginal);
-               $items++;
-               $dates++;
           } elseif (preg_match('/^separator\((.*?)\)$/u',$v,$m)) {
                $sep = $m[1];
           }
-     }
-     if ($no_date_alone && $dates == count($res) && $dates < $items) {
-          // On ne laisse pas les dates seules, sauf si ce sont les seuls items du pattern (hors séparateur)
-          return '';
      }
      return implode($sep,$res);
@@ -232 +207 @@
      "</script>".
      dcPage::jsLoad('js/_media_item.js');
-if ($popup && !empty($plugin_id)) {
-     $starting_scripts .= $core->callBehavior('adminPopupMedia', $plugin_id);
-}
-$temp_params = $media_page_url_params;
-$temp_params['d']='%s';
-$bc_template = $core->adminurl->get('admin.media',$temp_params,'&amp;',true);
-$temp_params['d']='';
-$home_url=$core->adminurl->get('admin.media',$temp_params);
+if ($popup) {
+     $starting_scripts .=
+     $core->callBehavior('adminPopupMedia');
+}
 call_user_func($open_f,__('Media manager'),
      $starting_scripts.
@@ -247 +218 @@
           array(
                html::escapeHTML($core->blog->name) => '',
-               __('Media manager') => $home_url,
-               $core->media->breadCrumb($bc_template).'<span class="page-title">'.$file->basename.'</span>' => ''
+               __('Media manager') => html::escapeURL($media_page_url).'&amp;d=',
+               $core->media->breadCrumb(html::escapeURL($media_page_url).'&amp;d=%s').'<span class="page-title">'.$file->basename.'</span>' => ''
           ),
           array(
@@ -277 +248 @@
 }
 
-# Get major file type (first part of mime type)
-$file_type = explode('/',$file->type);
-
 # Insertion popup
 if ($popup)
@@ -305 +273 @@
           $media_desc = dcGetImageTitle($file,
                $core->blog->settings->system->media_img_title_pattern,
-               $core->blog->settings->system->media_img_use_dto_first,
-               $core->blog->settings->system->media_img_no_date_alone);
+               $core->blog->settings->system->media_img_use_dto_first);
           if ($media_desc == $file->basename) {
                $media_desc = '';
@@ -356 +323 @@
           '</div>';
      }
-     elseif ($file_type[0] == 'audio')
+     elseif ($file->type == 'audio/mpeg3')
      {
           $media_type = 'mp3';
@@ -379 +346 @@
 
           $public_player_style = unserialize($core->blog->settings->themes->mp3player_style);
-          $public_player = dcMedia::audioPlayer($file->type,$file->file_url,$core->blog->getQmarkURL().'pf=player_mp3.swf',$public_player_style);
+          $public_player = dcMedia::mp3player($file->file_url,$core->blog->getQmarkURL().'pf=player_mp3.swf',$public_player_style);
           echo form::hidden('public_player',html::escapeHTML($public_player));
           echo '</p>';
           echo '</div>';
      }
-     elseif ($file_type[0] == 'video')
+     elseif ($file->type == 'video/x-flv' || $file->type == 'video/mp4' || $file->type == 'video/x-m4v')
      {
           $media_type = 'flv';
@@ -419 +386 @@
 
           $public_player_style = unserialize($core->blog->settings->themes->flvplayer_style);
-          $public_player = dcMedia::videoPlayer($file->type,$file->file_url,$core->blog->getQmarkURL().'pf=player_flv.swf',$public_player_style);
+          $public_player = dcMedia::flvplayer($file->file_url,$core->blog->getQmarkURL().'pf=player_flv.swf',$public_player_style);
           echo form::hidden('public_player',html::escapeHTML($public_player));
           echo '</p>';
@@ -445 +412 @@
           echo
           '<div class="border-top">'.
-          '<form id="save_settings" action="'.$core->adminurl->getBase('admin.media.item').'" method="post">'.
+          '<form id="save_settings" action="'.html::escapeURL($page_url).'" method="post">'.
           '<p>'.__('Make current settings as default').' '.
           '<input class="reset" type="submit" name="save_blog_prefs" value="'.__('OK').'" />'.
@@ -451 +418 @@
           form::hidden(array('pref_alignment'),'').
           form::hidden(array('pref_insertion'),'').
-          $core->adminurl->getHiddenFormFields('admin.media.item',$page_url_params).
+          form::hidden(array('id'),$id).
           $core->formNonce().'</p>'.
           '</form>'.'</div>';
@@ -493 +460 @@
      {
           $strong_link = ($s == $thumb_size) ? '<strong>%s</strong>' : '%s';
-          printf($strong_link,'<a href="'.$core->adminurl->get('admin.media.item',array_merge($page_url_params,
-               array("size" => $s,'tab' => 'media-details-tab'))).'">'.$core->media->thumb_sizes[$s][2].'</a> | ');
-     }
-     echo '<a href="'.$core->adminurl->get('admin.media.item',array_merge($page_url_params,array("size" => "o","tab"=>"media-details-tab"))).'">'.__('original').'</a>';
+          printf($strong_link,'<a href="'.html::escapeURL($page_url).
+          '&amp;id='.$id.'&amp;size='.$s.'&amp;tab=media-details-tab">'.$core->media->thumb_sizes[$s][2].'</a> | ');
+     }
+     echo '<a href="'.html::escapeURL($page_url).'&amp;id='.$id.'&amp;size=o&amp;tab=media-details-tab">'.__('original').'</a>';
      echo '</p>';
 }
 
-// Show player if relevant
-if ($file_type[0] == 'audio')
-{
-     echo dcMedia::audioPlayer($file->type,$file->file_url,$core->adminurl->get("admin.home",array('pf' => 'player_mp3.swf')));
-}
-if ($file_type[0] == 'video')
-{
-     echo dcMedia::videoPlayer($file->type,$file->file_url,$core->adminurl->get("admin.home",array('pf' => 'player_flv.swf')));
+if ($file->type == 'audio/mpeg3')
+{
+     echo dcMedia::mp3player($file->file_url,'index.php?pf=player_mp3.swf');
+}
+
+if ($file->type == 'video/x-flv' || $file->type == 'video/mp4' || $file->type == 'video/x-m4v')
+{
+     echo dcMedia::flvplayer($file->file_url,'index.php?pf=player_flv.swf');
 }
 
@@ -522 +489 @@
 {
      echo
-     '<p><a class="button" href="'.$core->adminurl->get('admin.media.item',array_merge($page_url_params,array("find_posts"=>1,"tab"=>"media-details-tab"))).'">'.
+     '<p><a class="button" href="'.html::escapeHTML($page_url).'&amp;id='.$id.'&amp;find_posts=1&amp;tab=media-details-tab">'.
      __('Show entries containing this media').'</a></p>';
 }
@@ -617 +584 @@
      {
           echo
-          '<form class="clear fieldset" action="'.$core->adminurl->get("admin.media.item").'" method="post">'.
+          '<form class="clear fieldset" action="'.html::escapeURL($page_url).'" method="post">'.
           '<h4>'.__('Update thumbnails').'</h4>'.
           '<p>'.__('This will create or update thumbnails for this image.').'</p>'.
           '<p><input type="submit" name="thumbs" value="'.__('Update thumbnails').'" />'.
-          $core->adminurl->getHiddenFormFields('admin.media',$page_url_params).
+          form::hidden(array('id'),$id).
           $core->formNonce().'</p>'.
           '</form>';
@@ -634 +601 @@
 
           echo
-          '<form class="clear fieldset" id="file-unzip" action="'.$core->adminurl->get("admin.media.item").'" method="post">'.
+          '<form class="clear fieldset" id="file-unzip" action="'.html::escapeURL($page_url).'" method="post">'.
           '<h4>'.__('Extract archive').'</h4>'.
           '<ul>'.
@@ -645 +612 @@
           form::combo('inflate_mode',$inflate_combo,'new').
           '<input type="submit" name="unzip" value="'.__('Extract').'" />'.
-          $core->adminurl->getHiddenFormFields('admin.media',$page_url_params).
+          form::hidden(array('id'),$id).
           $core->formNonce().'</p>'.
           '</form>';
@@ -651 +618 @@
 
      echo
-     '<form class="clear fieldset" action="'.$core->adminurl->get("admin.media.item").'" method="post">'.
+     '<form class="clear fieldset" action="'.html::escapeURL($page_url).'" method="post">'.
      '<h4>'.__('Change media properties').'</h4>'.
      '<p><label for="media_file">'.__('File name:').'</label>'.
@@ -664 +631 @@
      form::combo('media_path',$dirs_combo,dirname($file->relname)).'</p>'.
      '<p><input type="submit" accesskey="s" value="'.__('Save').'" />'.
-     $core->adminurl->getHiddenFormFields('admin.media.item',$page_url_params).
+     form::hidden(array('id'),$id).
      $core->formNonce().'</p>'.
      '</form>';
 
      echo
-     '<form class="clear fieldset" action="'.$core->adminurl->get("admin.media.item").'" method="post" enctype="multipart/form-data">'.
+     '<form class="clear fieldset" action="'.html::escapeURL($page_url).'" method="post" enctype="multipart/form-data">'.
      '<h4>'.__('Change file').'</h4>'.
      '<div>'.form::hidden(array('MAX_FILE_SIZE'),DC_MAX_UPLOAD_SIZE).'</div>'.
@@ -677 +644 @@
      '</label></p>'.
      '<p><input type="submit" value="'.__('Send').'" />'.
-     $core->adminurl->getHiddenFormFields('admin.media',$page_url_params).
+     form::hidden(array('id'),$id).
      $core->formNonce().'</p>'.
      '</form>';
@@ -683 +650 @@
      if ($file->del) {
           echo
-          '<form id="delete-form" method="post" action="'.$core->adminurl->getBase("admin.media").'">'.
+          '<form id="delete-form" method="post" action="'.html::escapeURL($media_page_url).
+          '&amp;d='.rawurlencode(dirname($file->relname)).
+          '&amp;remove='.rawurlencode($file->basename).'">'.
           '<p><input name="delete" type="submit" class="delete" value="'.__('Delete this media').'" />'.
           form::hidden('remove',rawurlencode($file->basename)).
           form::hidden('rmyes',1).
-          $core->adminurl->getHiddenFormFields('admin.media',$media_page_url_params).
           $core->formNonce().'</p>'.
           '</form>';