23,10 → 23,10 |
|
require_once dirname(__FILE__)."/sign-valid.php"; |
|
$mode = abs(intval($_GET["mode"])); |
$act = abs(intval($_GET["action"])); |
$uid = abs(intval($_GET["uid"])); |
$err = abs(intval($_GET["error"])); |
$mode = $secure->wrapInt($_GET["mode"]); |
$act = $secure->wrapInt($_GET["action"]); |
$uid = $secure->wrapInt($_GET["uid"]); |
$err = $secure->wrapInt($_GET["error"]); |
|
// Admin file/interface |
$admin = "./admin.php"; |
94,10 → 94,10 |
$verlist = ""; |
$sreq =& $db->query("SELECT * FROM version WHERE dist_id='".$info["dist_id"]."'"); |
while ($sreq->fetchInto($sinfo, DB_FETCHMODE_ASSOC)) { |
$verlist .= "<em>".stripslashes($sinfo["vname"])."</em>, "; |
$verlist .= "<em>".$secure->stripStr($sinfo["vname"])."</em>, "; |
} |
$verlist = substr($verlist, 0, -2); |
$display .= "<tr><td>".stripslashes($info['distname'])."</td>"; |
$display .= "<tr><td>".$secure->stripStr($info['distname'])."</td>"; |
$display .= "<td><a href=".$admin."?mode=".$mode."&action=2&uid=".$info["dist_id"]."><img title='Редактировать' src='img/edt.png' width='16' height='16'></a>"; |
$display .= "<a href=".$admin."?mode=".$mode."&action=3&uid=".$info["dist_id"]."><img title='Удалить' src='img/del.png' width='16' height='16'></a></td>"; |
$display .= "<td>".$verlist."</td></tr>"; |
110,7 → 110,7 |
$dtype =& $db->query("SELECT * FROM dtype"); |
$type = "<select name='distType'>"; |
while ($dtype->fetchInto($dtinfo, DB_FETCHMODE_ASSOC)) { |
$type .= "<option value='".$dtinfo["type_id"]."'>".stripslashes($dtinfo["type"])."</option>"; |
$type .= "<option value='".$dtinfo["type_id"]."'>".$secure->stripStr($dtinfo["type"])."</option>"; |
} |
$type .= "</select>\n"; |
$display = "<div class='modulename'><a href='admin.php?mode=1'>Дистрибутивы</a> :: Добавление нового apt-дистрибутива</div>"; |
131,19 → 131,19 |
$type = "<select name='distType'>"; |
while ($dtype->fetchInto($dtinfo, DB_FETCHMODE_ASSOC)) { |
if ($info["disttype"]==$dtinfo["type_id"]) { |
$type .= "<option value='".$dtinfo["type_id"]."' selected>".stripslashes($dtinfo["type"])."</option>"; |
$type .= "<option value='".$dtinfo["type_id"]."' selected>".$secure->stripStr($dtinfo["type"])."</option>"; |
} else { |
$type .= "<option value='".$dtinfo["type_id"]."'>".stripslashes($dtinfo["type"])."</option>"; |
$type .= "<option value='".$dtinfo["type_id"]."'>".$secure->stripStr($dtinfo["type"])."</option>"; |
} |
} |
$type .= "</select>\n"; |
$display = "<div class='modulename'><a href='admin.php?mode=".$mode."'>Дистрибутивы</a> :: Правка apt-дистрибутива <em class='".stripslashes($info["distua"])."-em'>".stripslashes($info["distname"])."</em></div>"; |
$display = "<div class='modulename'><a href='admin.php?mode=".$mode."'>Дистрибутивы</a> :: Правка apt-дистрибутива <em class='".$secure->stripStr($info["distua"])."-em'>".$secure->stripStr($info["distname"])."</em></div>"; |
$display .= "<form action='./process.php' method='POST' enctype='multipart/form-data'>\n"; |
$display .= "<input type='hidden' name='mode' value='".$mode."'>\n"; |
$display .= "<input type='hidden' name='act' value='".$act."'>\n"; |
$display .= "<input type='hidden' name='distID' value='$uid'>\n"; |
$display .= "Название дистрибутива: <input type='text' name='distName' value='".stripslashes($info["distname"])."'><br>\n"; |
$display .= "Представление в строке User-Agent'a: <input type='text' name='distUA' value='".stripslashes($info["distua"])."'><br>\n"; |
$display .= "Название дистрибутива: <input type='text' name='distName' value='".$secure->stripStr($info["distname"])."'><br>\n"; |
$display .= "Представление в строке User-Agent'a: <input type='text' name='distUA' value='".$secure->stripStr($info["distua"])."'><br>\n"; |
$display .= "Тип дистрибутива: ".$type."<br>"; |
$display .= "Логотип дистрибутива (Прозрачный PNG): <input type='file' name='distLOGO'><br>"; |
$display .= "<input type='submit' value='Править'></form>\n"; |
152,12 → 152,12 |
// Удаление существующего дистрибутива |
$dist =& $db->query("SELECT * FROM distribution WHERE dist_id='$uid'"); |
$dist->fetchInto($info, DB_FETCHMODE_ASSOC); |
$display = "<div class='modulename'><a href='admin.php?mode=".$mode."'>Дистрибутивы</a> :: Удаление apt-дистрибутива <em class='".stripslashes($info["distua"])."-em'>".stripslashes($info["distname"])."</em></div>"; |
$display = "<div class='modulename'><a href='admin.php?mode=".$mode."'>Дистрибутивы</a> :: Удаление apt-дистрибутива <em class='".$secure->stripStr($info["distua"])."-em'>".$secure->stripStr($info["distname"])."</em></div>"; |
$display .= "<form action='./process.php' method='POST'>\n"; |
$display .= "<input type='hidden' name='mode' value='".$mode."'>\n"; |
$display .= "<input type='hidden' name='act' value='".$act."'>\n"; |
$display .= "<input type='hidden' name='distID' value='$uid'>\n"; |
$display .= "<input type='hidden' name='distUA' value='".stripslashes($info["distua"])."'>\n"; |
$display .= "<input type='hidden' name='distUA' value='".$secure->stripStr($info["distua"])."'>\n"; |
$display .= "<input type='submit' value='Удалить'></form>\n"; |
break; |
} |
171,7 → 171,7 |
$display = "<div class='modulename'>".$menu_item[$mode]["title"]." :: <a href='admin.php?mode=".$mode."'>".$menu_item[$mode]["item"]."</a></div>"; |
$display .= "<table><tr><th>Версия</th><th>Действие</th></tr>\n"; |
while ($dist->fetchInto($info, DB_FETCHMODE_ASSOC)) { |
$display .= "<tr><td>".stripslashes($info["distname"])." ".stripslashes($info["version"])." “".stripslashes($info["vname"])."”</td>\n"; |
$display .= "<tr><td>".$secure->stripStr($info["distname"])." ".$secure->stripStr($info["version"])." “".$secure->stripStr($info["vname"])."”</td>\n"; |
$display .= "<td><a href='".$admin."?mode=".$mode."&action=2&uid=".$info["version_id"]."' class='edit'><img title='Редактировать' src='img/edt.png' width='16' height='16'></a>"; |
$display .= "<a href='".$admin."?mode=".$mode."&action=3&uid=".$info["version_id"]."' class='delete'><img title='Удалить' src='img/del.png' width='16' height='16'></a></td></tr>\n"; |
} |
182,7 → 182,7 |
$dtype =& $db->query("SELECT * FROM distribution"); |
$type = "<select name='distName'>"; |
while ($dtype->fetchInto($dtinfo, DB_FETCHMODE_ASSOC)) { |
$type .= "<option value='".$dtinfo["dist_id"]."'>".stripslashes($dtinfo["distname"])."</option>"; |
$type .= "<option value='".$dtinfo["dist_id"]."'>".$secure->stripStr($dtinfo["distname"])."</option>"; |
} |
$type .= "</select>\n"; |
$display = "<div class='modulename'><a href='admin.php?mode=".$mode."'>Версии</a> :: Добавление новой версии apt-дистрибутива</div>"; |
199,14 → 199,14 |
// Правка имеющейся версии дистрибутива |
$vers =& $db->query("SELECT * FROM version v JOIN distribution d ON d.dist_id=v.dist_id WHERE version_id='$uid'"); |
$vers->fetchInto($info, DB_FETCHMODE_ASSOC); |
$display = "<div class='modulename'><a href='admin.php?mode=".$mode."'>Версии</a> :: Правка имеющейся версии <em>".stripslashes($info["distname"])."</em></div>"; |
$display = "<div class='modulename'><a href='admin.php?mode=".$mode."'>Версии</a> :: Правка имеющейся версии <em>".$secure->stripStr($info["distname"])."</em></div>"; |
$display .= "<form action='./process.php' method='POST'>\n"; |
$display .= "<input type='hidden' name='mode' value='".$mode."'>\n"; |
$display .= "<input type='hidden' name='act' value='".$act."'>\n"; |
$display .= "<input type='hidden' name='versID' value='$uid'>\n"; |
$display .= "Номер версии: <input type='text' name='versNum' value='".stripslashes($info["version"])."'><br>\n"; |
$display .= "Название версии: <input type='text' name='versNam' value='".stripslashes($info["vname"])."'><br>\n"; |
$display .= "Кодовое имя версии: <input type='text' name='versCN' value='".stripslashes($info["vcodename"])."'><br>\n"; |
$display .= "Номер версии: <input type='text' name='versNum' value='".$secure->stripStr($info["version"])."'><br>\n"; |
$display .= "Название версии: <input type='text' name='versNam' value='".$secure->stripStr($info["vname"])."'><br>\n"; |
$display .= "Кодовое имя версии: <input type='text' name='versCN' value='".$secure->stripStr($info["vcodename"])."'><br>\n"; |
$display .= "<input type='submit' value='Править'></form>\n"; |
break; |
case '3': |
213,7 → 213,7 |
// Удаление существующей версии дистрибутива |
$dist =& $db->query("SELECT * FROM version v JOIN distribution d ON v.dist_id=d.dist_id WHERE v.version_id='$uid'"); |
$dist->fetchInto($info, DB_FETCHMODE_ASSOC); |
$display = "<div class='modulename'><a href='admin.php?mode=".$mode."'>Версии</a> :: Удаление версии ".stripslashes($info["version"])." (“".stripslashes($info["vname"])."”) <em>".stripslashes($info["distname"])."</em></div>"; |
$display = "<div class='modulename'><a href='admin.php?mode=".$mode."'>Версии</a> :: Удаление версии ".$secure->stripStr($info["version"])." (“".$secure->stripStr($info["vname"])."”) <em>".$secure->stripStr($info["distname"])."</em></div>"; |
$display .= "<form action='./process.php' method='POST'>\n"; |
$display .= "<input type='hidden' name='mode' value='".$mode."'>\n"; |
$display .= "<input type='hidden' name='act' value='".$act."'>\n"; |
233,7 → 233,7 |
$display .= "<table><tr><th>Источник</th><th>Действие</th></tr>\n"; |
while ($orig->fetchInto($info, DB_FETCHMODE_ASSOC)) { |
$distlist = substr($distlist, 0, -2); |
$display .= "<tr><td>".stripslashes($info["origin"])."</td>\n"; |
$display .= "<tr><td>".$secure->stripStr($info["origin"])."</td>\n"; |
$display .= "<td><a href='".$admin."?mode=".$mode."&action=2&uid=".$info["orig_id"]."' class='nodec'><img src='img/edt.png' width='16' height='16' title='Редактировать'></a>"; |
$display .= "<a href='".$admin."?mode=".$mode."&action=3&uid=".$info["orig_id"]."'><img title='Удалить' src='img/del.png' width='16' height='16'></a></td>\n"; |
$display .= "</tr>"; |
255,12 → 255,12 |
$orig =& $db->query("SELECT * FROM origin WHERE orig_id='$uid'"); |
$orig->fetchInto($info, DB_FETCHMODE_ASSOC); |
$type .= "</select>\n"; |
$display = "<div class='modulename'><a href='admin.php?mode=".$mode."'>Источники</a> :: Правка источника репозиториев <em>'".stripslashes($info["origin"])."'</em></div>"; |
$display = "<div class='modulename'><a href='admin.php?mode=".$mode."'>Источники</a> :: Правка источника репозиториев <em>'".$secure->stripStr($info["origin"])."'</em></div>"; |
$display .= "<form action='./process.php' method='POST' enctype='multipart/form-data'>\n"; |
$display .= "<input type='hidden' name='mode' value='".$mode."'>\n"; |
$display .= "<input type='hidden' name='act' value='".$act."'>\n"; |
$display .= "<input type='hidden' name='originID' value='$uid'>\n"; |
$display .= "Название источника: <input type='text' name='origin' value='".stripslashes($info["origin"])."'><br>\n"; |
$display .= "Название источника: <input type='text' name='origin' value='".$secure->stripStr($info["origin"])."'><br>\n"; |
$display .= "<input type='submit' value='Править'></form>\n"; |
break; |
case '3': |
267,7 → 267,7 |
// Удаление существующего источника |
$orig =& $db->query("SELECT * FROM origin WHERE orig_id='$uid'"); |
$orig->fetchInto($info, DB_FETCHMODE_ASSOC); |
$display = "<div class='modulename'><a href='admin.php?mode=".$mode."'>Источники</a> :: Удаление источника репозиториев <em>'".stripslashes($info["origin"])."'</em></div>"; |
$display = "<div class='modulename'><a href='admin.php?mode=".$mode."'>Источники</a> :: Удаление источника репозиториев <em>'".$secure->stripStr($info["origin"])."'</em></div>"; |
$display .= "<form action='./process.php' method='POST'>\n"; |
$display .= "<input type='hidden' name='mode' value='".$mode."'>\n"; |
$display .= "<input type='hidden' name='act' value='".$act."'>\n"; |
298,29 → 298,29 |
$rep =& $db->query("SELECT * FROM distribution d JOIN version v ON v.dist_id=d.dist_id WHERE v.version_id='$uid'"); |
$rep->fetchInto($dist, DB_FETCHMODE_ASSOC); |
$dist_id = $dist["dist_id"]; |
$dist_vname = stripslashes($dist["distname"])." ".stripslashes($dist["version"])." “".stripslashes($dist["vname"])."”"; |
$dist_vname = $secure->stripStr($dist["distname"])." ".$secure->stripStr($dist["version"])." “".$secure->stripStr($dist["vname"])."”"; |
$dtype =& $db->query("SELECT * FROM scheme"); |
$rscheme = "<select name='scheme'>"; |
while ($dtype->fetchInto($dtinfo, DB_FETCHMODE_ASSOC)) { |
$rscheme .= "<option value='".$dtinfo["scheme_id"]."'>".stripslashes($dtinfo["scheme"])."</option>"; |
$rscheme .= "<option value='".$dtinfo["scheme_id"]."'>".$secure->stripStr($dtinfo["scheme"])."</option>"; |
} |
$rscheme .= "</select>"; |
$origin_q =& $db->query("SELECT * FROM origin"); |
$origin = "<select name='origin'>"; |
while ($origin_q->fetchInto($origin_info, DB_FETCHMODE_ASSOC)) { |
$origin .= "<option value='".$origin_info["orig_id"]."'>".stripslashes($origin_info["origin"])."</option>"; |
$origin .= "<option value='".$origin_info["orig_id"]."'>".$secure->stripStr($origin_info["origin"])."</option>"; |
} |
$origin .= "</select>\n"; |
$sect =& $db->query("SELECT * FROM section s JOIN sect2dist d ON d.sect_id=s.sect_id WHERE d.dist_id='$dist_id'"); |
$list = ""; |
while ($sect->fetchInto($slist, DB_FETCHMODE_ASSOC)) { |
$list .= "<input type='checkbox' name='sect[]' value='".$slist["sect_id"]."'> <span title='".stripslashes($slist["sectinfo"])."'>".stripslashes($slist["sectname"])."</span> "; |
$list .= "<input type='checkbox' name='sect[]' value='".$slist["sect_id"]."'> <span title='".$secure->stripStr($slist["sectinfo"])."'>".$secure->stripStr($slist["sectname"])."</span> "; |
} |
$type .= "</select>\n"; |
$rootfolder = "<select name='rootFolder'>\n"; |
$root =& $db->query("SELECT * FROM root"); |
while ($root->fetchInto($rfi, DB_FETCHMODE_ASSOC)) { |
$rootfolder .= "<option value='".$rfi["root_id"]."'>".stripslashes($rfi["root_folder"])."</option>"; |
$rootfolder .= "<option value='".$rfi["root_id"]."'>".$secure->stripStr($rfi["root_folder"])."</option>"; |
} |
$rootfolder .= "</select>"; |
$display = "<div class='modulename'>Управление :: <a href='admin.php?mode=".$mode."'>Репозитории</a> :: <a href='admin.php?mode=".$mode."&act=".$act."'>Добавление</a></div>"; |
341,14 → 341,14 |
// Редактирование репозитория |
$rep =& $db->query("SELECT * FROM repository r JOIN ver2rep l ON l.rep_id=r.rep_id JOIN version v ON v.version_id=l.ver_id JOIN distribution d ON v.dist_id=d.dist_id JOIN root r2 ON r2.root_id=r.root_id WHERE r.rep_id='$uid'"); |
$rep->fetchInto($info, DB_FETCHMODE_ASSOC); |
$dist_vname = stripslashes($info["distname"])." ".stripslashes($info["version"])." “".stripslashes($info["vname"])."”"; |
$dist_vname = $secure->stripStr($info["distname"])." ".$secure->stripStr($info["version"])." “".$secure->stripStr($info["vname"])."”"; |
$tlist = "<select name='scheme'>"; |
$sq =& $db->query("SELECT * FROM scheme"); |
while ($sq->fetchInto($type, DB_FETCHMODE_ASSOC)) { |
if ($type["scheme_id"]==$info["scheme_id"]) { |
$tlist .= "<option value='".$type["scheme_id"]."' selected>".stripslashes($type["scheme"])."</option>"; |
$tlist .= "<option value='".$type["scheme_id"]."' selected>".$secure->stripStr($type["scheme"])."</option>"; |
} else { |
$tlist .= "<option value='".$type["scheme_id"]."'>".stripslashes($type["scheme"])."</option>"; |
$tlist .= "<option value='".$type["scheme_id"]."'>".$secure->stripStr($type["scheme"])."</option>"; |
} |
} |
$tlist .= "</select>"; |
356,9 → 356,9 |
$sq =& $db->query("SELECT * FROM origin"); |
while ($sq->fetchInto($type, DB_FETCHMODE_ASSOC)) { |
if ($type["orig_id"]==$info["orig_id"]) { |
$tlist2 .= "<option value='".$type["orig_id"]."' selected>".stripslashes($type["origin"])."</option>"; |
$tlist2 .= "<option value='".$type["orig_id"]."' selected>".$secure->stripStr($type["origin"])."</option>"; |
} else { |
$tlist2 .= "<option value='".$type["orig_id"]."'>".stripslashes($type["origin"])."</option>"; |
$tlist2 .= "<option value='".$type["orig_id"]."'>".$secure->stripStr($type["origin"])."</option>"; |
} |
} |
$tlist2 .= "</select>"; |
366,13 → 366,13 |
$req =& $db->query("SELECT * FROM section s JOIN sect2rep r ON s.sect_id=r.sect_id WHERE r.rep_id='$uid'"); |
if ($req->numRows()>0) { |
while ($req->fetchInto($sect, DB_FETCHMODE_ASSOC)) { |
$list .= "<input type='checkbox' name='sect[]' value='".$sect["sect_id"]."' checked><span title='".stripslashes($sect["sectinfo"])."'>".stripslashes($sect["sectname"])."</span> "; |
$list .= "<input type='checkbox' name='sect[]' value='".$sect["sect_id"]."' checked><span title='".$secure->stripStr($sect["sectinfo"])."'>".$secure->stripStr($sect["sectname"])."</span> "; |
} |
} |
$req =& $db->query("SELECT s.* FROM section s WHERE s.sect_id NOT IN (SELECT sect_id FROM sect2rep WHERE rep_id='$uid')"); |
if ($req->numRows()>0) { |
while ($req->fetchInto($sect, DB_FETCHMODE_ASSOC)) { |
$list .= "<input type='checkbox' name='sect[]' value='".$sect["sect_id"]."'><span title='".stripslashes($sect["sectinfo"])."'>".stripslashes($sect["sectname"])."</span> "; |
$list .= "<input type='checkbox' name='sect[]' value='".$sect["sect_id"]."'><span title='".$secure->stripStr($sect["sectinfo"])."'>".$secure->stripStr($sect["sectname"])."</span> "; |
} |
} |
$rootfolder = "<select name='rootFolder'>\n"; |
380,9 → 380,9 |
if ($req->numRows()>0) { |
while ($req->fetchInto($rfi, DB_FETCHMODE_ASSOC)) { |
if ($rfi["root_id"]==$info["root_id"]) { |
$rootfolder .= "<option value='".$rfi["root_id"]."' selected>".stripslashes($rfi["root_folder"])."</option>"; |
$rootfolder .= "<option value='".$rfi["root_id"]."' selected>".$secure->stripStr($rfi["root_folder"])."</option>"; |
} else { |
$rootfolder .= "<option value='".$rfi["root_id"]."'>".stripslashes($rfi["root_folder"])."</option>"; |
$rootfolder .= "<option value='".$rfi["root_id"]."'>".$secure->stripStr($rfi["root_folder"])."</option>"; |
} |
} |
} |
395,8 → 395,8 |
$display .= "<input type='hidden' name='mode' value=".$mode.">\n"; |
$display .= "<input type='hidden' name='act' value=".$act.">\n"; |
$display .= "<input type='hidden' name='rep' value='$uid'>\n"; |
$display .= "Название репозитория (codename): <input type='text' name='repName' value='".stripslashes($info["repname"])."'><br>\n"; |
$display .= "Описание репозитория:<br> <textarea name='repInfo'>".stripslashes($info["repdescribe"])."</textarea><br>\n"; |
$display .= "Название репозитория (codename): <input type='text' name='repName' value='".$secure->stripStr($info["repname"])."'><br>\n"; |
$display .= "Описание репозитория:<br> <textarea name='repInfo'>".$secure->stripStr($info["repdescribe"])."</textarea><br>\n"; |
$display .= "Схема репозитория: ".$tlist."<br>"; |
$display .= "Источник репозитория: ".$tlist2."<br>"; |
$display .= "Корневая папка репозитория: ".$rootfolder."<br>"; |
408,7 → 408,7 |
// Удаление репозитория |
$rep =& $db->query("SELECT * FROM repository r JOIN ver2rep l ON l.rep_id=r.rep_id JOIN version v ON v.version_id=l.ver_id JOIN distribution d ON v.dist_id=d.dist_id WHERE r.rep_id='$uid'"); |
$rep->fetchInto($info, DB_FETCHMODE_ASSOC); |
$dist_vname = stripslashes($info["distname"])." ".stripslashes($info["version"])." “".stripslashes($info["vname"])."”"; |
$dist_vname = $secure->stripStr($info["distname"])." ".$secure->stripStr($info["version"])." “".$secure->stripStr($info["vname"])."”"; |
$display = "<div class='modulename'>Управление :: <a href='admin.php?mode=".$mode."'>Репозитории</a> :: <a href='admin.php?mode=".$mode."&act=".$act."'>Удаление : ".$info["repname"]."</a></div>"; |
$display .= "<form action='./process.php' method='POST'>\n"; |
$display .= "<input type='hidden' name='mode' value='".$mode."'>\n"; |
430,10 → 430,10 |
$replist = ""; |
$sreq =& $db->query("SELECT * FROM distribution d JOIN sect2dist s ON s.dist_id=d.dist_id WHERE s.sect_id='".$sect["sect_id"]."'"); |
while ($sreq->fetchInto($rep, DB_FETCHMODE_ASSOC)) { |
$replist .= "<em>".stripslashes($rep["distname"])."</em>, "; |
$replist .= "<em>".$secure->stripStr($rep["distname"])."</em>, "; |
} |
$replist = substr($replist, 0, -2); |
$display .= "<tr><td>".stripslashes($sect["sectname"])."</td>"; |
$display .= "<tr><td>".$secure->stripStr($sect["sectname"])."</td>"; |
$display .= "<td><a href='".$admin."?mode=".$mode."&action=2&uid=".$sect["sect_id"]."' class='edit'><img title='Редактировать' src='img/edt.png' width='16' height='16'></a>"; |
$display .= "<a href='".$admin."?mode=".$mode."&action=3&uid=".$sect["sect_id"]."' class='delete'><img title='Удалить' src='img/del.png' width='16' height='16'></a></td>"; |
$display .= "<td>".$replist."</td></tr>"; |
443,7 → 443,7 |
case '1': |
$req =& $db->query("SELECT * FROM distribution"); |
while ($req->fetchInto($dist, DB_FETCHMODE_ASSOC)) { |
$list .= "<br><input type='checkbox' name='dist' value='".$dist["dist_id"]."'>".stripslashes($dist["distname"])." "; |
$list .= "<br><input type='checkbox' name='dist' value='".$dist["dist_id"]."'>".$secure->stripStr($dist["distname"])." "; |
} |
$display = "<div class='modulename'><a href='admin.php?mode=".$mode."'>Секции</a> :: Создание секции репозитория</div>"; |
$display .= "<form action='./process.php' method='POST'>\n"; |
458,13 → 458,13 |
$req =& $db->query("SELECT * FROM distribution d JOIN sect2dist s ON s.dist_id=d.dist_id WHERE s.sect_id='$uid'"); |
if ($req->numRows()>0) { |
while ($req->fetchInto($dist, DB_FETCHMODE_ASSOC)) { |
$list .= "<br><input type='checkbox' name='dist[]' value='".$dist["dist_id"]."' checked>".stripslashes($dist["distname"])." "; |
$list .= "<br><input type='checkbox' name='dist[]' value='".$dist["dist_id"]."' checked>".$secure->stripStr($dist["distname"])." "; |
} |
} |
$req =& $db->query("SELECT d.* FROM distribution d WHERE dist_id NOT IN (SELECT dist_id FROM sect2dist WHERE sect_id='$uid')"); |
if ($req->numRows()>0) { |
while ($req->fetchInto($dist, DB_FETCHMODE_ASSOC)) { |
$list .= "<br><input type='checkbox' name='dist[]' value='".$dist["dist_id"]."'>".stripslashes($dist["distname"])." "; |
$list .= "<br><input type='checkbox' name='dist[]' value='".$dist["dist_id"]."'>".$secure->stripStr($dist["distname"])." "; |
} |
} |
$req =& $db->query("SELECT * FROM section WHERE sect_id='$uid'"); |
474,8 → 474,8 |
$display .= "<input type='hidden' name='mode' value='".$mode."'>\n"; |
$display .= "<input type='hidden' name='act' value='".$act."'>\n"; |
$display .= "<input type='hidden' name='sectID' value='$uid'>\n"; |
$display .= "Название секции (codename): <input type='text' name='sectName' value='".stripslashes($sect["sectname"])."'><br>\n"; |
$display .= "Описание секции:<br> <textarea name='sectInfo'>".stripslashes($sect["sectinfo"])."</textarea><br>\n"; |
$display .= "Название секции (codename): <input type='text' name='sectName' value='".$secure->stripStr($sect["sectname"])."'><br>\n"; |
$display .= "Описание секции:<br> <textarea name='sectInfo'>".$secure->stripStr($sect["sectinfo"])."</textarea><br>\n"; |
$display .= "Используется в дистрибутивах: ".$list; |
$display .= "<br><input type='submit' value='Править'></form>\n"; |
break; |
482,7 → 482,7 |
case '3': |
$req =& $db->query("SELECT * FROM section WHERE sect_id='$uid'"); |
$req->fetchInto($sect, DB_FETCHMODE_ASSOC); |
$display = "<div class='modulename'><a href='admin.php?mode=".$mode."'>Секции</a> :: Удаление секции <em>".stripslashes($sect["sectname"])."</em></div>"; |
$display = "<div class='modulename'><a href='admin.php?mode=".$mode."'>Секции</a> :: Удаление секции <em>".$secure->stripStr($sect["sectname"])."</em></div>"; |
$display .= "<form action='./process.php' method='POST'>\n"; |
$display .= "<input type='hidden' name='mode' value='".$mode."'>\n"; |
$display .= "<input type='hidden' name='act' value='".$act."'>\n"; |
500,7 → 500,7 |
$display = "<div class='modulename'>".$menu_item[$mode]["title"]." :: <a href='admin.php?mode=".$mode."'>".$menu_item[$mode]["item"]."</a></div>"; |
$display .= "<table><th>Схема</th><th>Действие</th></tr>"; |
while ($req->fetchInto($sect, DB_FETCHMODE_ASSOC)) { |
$display .= "<tr><td>".stripslashes($sect["scheme"])."</td>"; |
$display .= "<tr><td>".$secure->stripStr($sect["scheme"])."</td>"; |
$display .= "<td><a href='".$admin."?mode=".$mode."&action=2&uid=".$sect["scheme_id"]."' class='edit'><img title='Редактировать' src='img/edt.png' width='16' height='16'></a>"; |
$display .= "<a href='".$admin."?mode=".$mode."&action=3&uid=".$sect["scheme_id"]."' class='delete'><img title='Удалить' src='img/del.png' width='16' height='16'></a></td></tr>"; |
} |
524,8 → 524,8 |
$display .= "<form action='./process.php' method='POST'>\n"; |
$display .= "<input type='hidden' name='mode' value='".$mode."'>\n"; |
$display .= "<input type='hidden' name='act' value='".$act."'>\n"; |
$display .= "<input type='hidden' name='schemeID' value='".stripslashes($scheme["scheme_id"])."'><br>\n"; |
$display .= "Схема репозитория: <input type='text' name='scheme' value='".stripslashes($scheme["scheme"])."'><br>\n"; |
$display .= "<input type='hidden' name='schemeID' value='".$secure->stripStr($scheme["scheme_id"])."'><br>\n"; |
$display .= "Схема репозитория: <input type='text' name='scheme' value='".$secure->stripStr($scheme["scheme"])."'><br>\n"; |
$display .= "<input type='submit' value='Править'></form>\n"; |
} else { |
$display = "Такой схемы репозитория не существует"; |
537,7 → 537,7 |
if ($req->numRows()>0) { |
$req->fetchInto($scheme, DB_FETCHMODE_ASSOC); |
$display = "<div class='modulename'><a href='admin.php?mode=".$mode."'>Схемы</a> :: Удаление схемы репозитория</div>"; |
$display .= "Удаляемая схема: ".stripslashes($scheme["scheme"])."<br>"; |
$display .= "Удаляемая схема: ".$secure->stripStr($scheme["scheme"])."<br>"; |
$display .= "<form action='./process.php' method='POST'>\n"; |
$display .= "<input type='hidden' name='mode' value='".$mode."'>\n"; |
$display .= "<input type='hidden' name='act' value='".$act."'>\n"; |
559,7 → 559,7 |
$display .= "<table><tr><th>Тип</th><th>Действие</th></tr>"; |
if ($req->numRows()>0) { |
while ($req->fetchInto($setting, DB_FETCHMODE_ASSOC)) { |
$display .= "<tr><td>".stripslashes($setting["rtype"])."</td>"; |
$display .= "<tr><td>".$secure->stripStr($setting["rtype"])."</td>"; |
$display .= "<td><a href='".$admin."?mode=".$mode."&action=2&uid=".$setting["rtype_id"]."' class='edit'><img title='Редактировать' src='img/edt.png' width='16' height='16'></a>"; |
$display .= "<a href='".$admin."?mode=".$mode."&action=3&uid=".$setting["rtype_id"]."' class='delete'><img title='Удалить' src='img/del.png' width='16' height='16'></a></td></tr>"; |
} |
584,8 → 584,8 |
$display .= "<form action='./process.php' method='POST'>\n"; |
$display .= "<input type='hidden' name='mode' value='".$mode."'>\n"; |
$display .= "<input type='hidden' name='act' value='".$act."'>\n"; |
$display .= "<input type='hidden' name='rtypeID' value='".stripslashes($setting["rtype_id"])."'><br>\n"; |
$display .= "Тип: <input type='text' name='rtype' value='".stripslashes($setting["rtype"])."'><br>\n"; |
$display .= "<input type='hidden' name='rtypeID' value='".$secure->stripStr($setting["rtype_id"])."'><br>\n"; |
$display .= "Тип: <input type='text' name='rtype' value='".$secure->stripStr($setting["rtype"])."'><br>\n"; |
$display .= "<input type='submit' value='Править'></form>\n"; |
} else { |
$display = "Такого типа репозитория не существует"; |
597,7 → 597,7 |
if ($req->numRows()>0) { |
$req->fetchInto($setting, DB_FETCHMODE_ASSOC); |
$display = "<div class='modulename'><a href='admin.php?mode=".$mode."'>Типы репозиториев</a> :: Удаление существующего типа репозитория</div>"; |
$display .= "Удаляемый тип <em>".stripslashes($setting["rtype"])."</em><br>"; |
$display .= "Удаляемый тип <em>".$secure->stripStr($setting["rtype"])."</em><br>"; |
$display .= "<form action='./process.php' method='POST'>\n"; |
$display .= "<input type='hidden' name='mode' value='".$mode."'>\n"; |
$display .= "<input type='hidden' name='act' value='".$act."'>\n"; |
620,7 → 620,7 |
if ($req->numRows()>0) { |
$display .= "<ul>\n"; |
while ($req->fetchInto($root, DB_FETCHMODE_ASSOC)) { |
$display .= "<tr><td>".stripslashes($root["root_folder"])."</td>"; |
$display .= "<tr><td>".$secure->stripStr($root["root_folder"])."</td>"; |
$display .= "<td><a href='".$admin."?mode=".$mode."&action=2&uid=".$root["root_id"]."' class='edit'><img title='Редактировать' src='img/edt.png' width='16' height='16'></a>"; |
$display .= "<a href='".$admin."?mode=".$mode."&action=3&uid=".$root["root_id"]."' class='delete'><img title='Удалить' src='img/del.png' width='16' height='16'></a></td></tr>"; |
} |
649,7 → 649,7 |
$display .= "<input type='hidden' name='mode' value='".$mode."'>\n"; |
$display .= "<input type='hidden' name='act' value='".$act."'>\n"; |
$display .= "<input type='hidden' name='rootID' value='$uid'>\n"; |
$display .= "Корневая папка репозитория: <input type='text' name='rootFolder' value='".stripslashes($root["root_folder"])."'><br>\n"; |
$display .= "Корневая папка репозитория: <input type='text' name='rootFolder' value='".$secure->stripStr($root["root_folder"])."'><br>\n"; |
$display .= "<input type='submit' value='Редактировать'>\n</form>\n"; |
} else { |
$display .= "<p>Такой корневой папки репозиториев не существует</p>"; |
665,7 → 665,7 |
$display .= "<input type='hidden' name='mode' value='".$mode."'>\n"; |
$display .= "<input type='hidden' name='act' value='".$act."'>\n"; |
$display .= "<input type='hidden' name='rootID' value='$uid'>\n"; |
$display .= "Корневая папка репозитория: <input type='text' name='rootFolder' value='".stripslashes($root["root_folder"])."' readonly><br>\n"; |
$display .= "Корневая папка репозитория: <input type='text' name='rootFolder' value='".$secure->stripStr($root["root_folder"])."' readonly><br>\n"; |
$display .= "<input type='submit' value='Удалить'>\n</form>\n"; |
} else { |
$display .= "<p>Такой корневой папки не существует</p>"; |
683,10 → 683,10 |
$display .= "<table><tr><th>Опция</th><th>Действие</th><th>Значение</th></tr>"; |
if ($req->numRows()>0) { |
while ($req->fetchInto($setting, DB_FETCHMODE_ASSOC)) { |
$display .= "<tr><td>".stripslashes($setting["opt"])."</td>"; |
$display .= "<tr><td>".$secure->stripStr($setting["opt"])."</td>"; |
$display .= "<td><a href='".$admin."?mode=".$mode."&action=2&uid=".$setting["opt_id"]."'><img title='Редактировать' src='img/edt.png' width='16' height='16'></a>"; |
$display .= "<a href='".$admin."?mode=".$mode."&action=3&uid=".$setting["opt_id"]."' class='delete'><img title='Удалить' src='img/del.png' width='16' height='16'></a></td>"; |
$display .= "<td>".stripslashes($setting["optvalue"])."</td></tr>"; |
$display .= "<td>".$secure->stripStr($setting["optvalue"])."</td></tr>"; |
} |
} |
$display .= "</table><p><a href='".$admin."?mode=".$mode."&action=1'><img src='img/add.png' width='16' height='16'>Добавить новую опцию</a></p>"; |
710,22 → 710,22 |
$display .= "<form action='./process.php' method='POST'>\n"; |
$display .= "<input type='hidden' name='mode' value='".$mode."'>\n"; |
$display .= "<input type='hidden' name='act' value='".$act."'>\n"; |
$display .= "<input type='hidden' name='optID' value='".stripslashes($setting["opt_id"])."'><br>\n"; |
$display .= "Настройка: <input type='text' name='setoption' value='".stripslashes($setting["opt"])."' readonly><br>\n"; |
$display .= "<input type='hidden' name='optID' value='".$secure->stripStr($setting["opt_id"])."'><br>\n"; |
$display .= "Настройка: <input type='text' name='setoption' value='".$secure->stripStr($setting["opt"])."' readonly><br>\n"; |
if ($setting["opt"]=="interface") { |
$sq =& $db->query("SELECT * FROM interfaces"); |
$setvalue = "<select name='setvalue'>"; |
while ($sq->fetchInto($if, DB_FETCHMODE_ASSOC)) { |
if ($if["interface"]==$setting["optvalue"]) { |
$setvalue .= "<option value='".stripslashes($if["interface"])."' selected>".stripslashes($if["interfaceinfo"])."</option>\n"; |
$setvalue .= "<option value='".$secure->stripStr($if["interface"])."' selected>".$secure->stripStr($if["interfaceinfo"])."</option>\n"; |
} else { |
$setvalue .= "<option value='".stripslashes($if["interface"])."'>".stripslashes($if["interfaceinfo"])."</option>\n"; |
$setvalue .= "<option value='".$secure->stripStr($if["interface"])."'>".$secure->stripStr($if["interfaceinfo"])."</option>\n"; |
} |
} |
$setvalue .= "</select>"; |
$display .= "Свойство: ".$setvalue."<br>\n"; |
} else { |
$display .= "Свойство: <input type='text' name='setvalue' value='".stripslashes($setting["optvalue"])."'><br>\n"; |
$display .= "Свойство: <input type='text' name='setvalue' value='".$secure->stripStr($setting["optvalue"])."'><br>\n"; |
} |
$display .= "<input type='submit' value='Править'></form>\n"; |
} else { |
738,7 → 738,7 |
if ($req->numRows()>0) { |
$req->fetchInto($setting, DB_FETCHMODE_ASSOC); |
$display = "<div class='modulename'>Настройки :: <a href='admin.php?mode=".$mode."'>Опции</a> :: <a href='admin.php?mode=".$mode."&act=".$act."'>Удаление</a></div>"; |
$display .= "Удаляемая опция <em>".stripslashes($setting["opt"])."</em> с свойством <em>".stripslashes($setting["optvalue"])."</em><br>"; |
$display .= "Удаляемая опция <em>".$secure->stripStr($setting["opt"])."</em> с свойством <em>".$secure->stripStr($setting["optvalue"])."</em><br>"; |
$display .= "<form action='./process.php' method='POST'>\n"; |
$display .= "<input type='hidden' name='mode' value='".$mode."'>\n"; |
$display .= "<input type='hidden' name='act' value='".$act."'>\n"; |
760,7 → 760,7 |
$display .= "<table><tr><th>Интерфейс</th><th>Действие</th></tr>"; |
if ($req->numRows()>0) { |
while ($req->fetchInto($if, DB_FETCHMODE_ASSOC)) { |
$display .= "<tr><td>".stripslashes($if["interfaceinfo"])." (".stripslashes($if["interface"]).") </td>"; |
$display .= "<tr><td>".$secure->stripStr($if["interfaceinfo"])." (".$secure->stripStr($if["interface"]).") </td>"; |
$display .= "<td><a href='".$admin."?mode=".$mode."&action=2&uid=".$if["if_id"]."' class='edit'><img title='Редактировать' src='img/edt.png' width='16' height='16'></a>"; |
$display .= "<a href='".$admin."?mode=".$mode."&action=3&uid=".$if["if_id"]."' class='delete'><img title='Удалить' src='img/del.png' width='16' height='16'></a></td></tr>"; |
} |
787,8 → 787,8 |
$display .= "<input type='hidden' name='mode' value='".$mode."'>\n"; |
$display .= "<input type='hidden' name='act' value='".$act."'>\n"; |
$display .= "<input type='hidden' name='if' value='$uid'>\n"; |
$display .= "Интерфейс (имя файла): <input type='text' name='ifname' value='".stripslashes($if["interface"])."'><br>\n"; |
$display .= "Интерфейс (название): <input type='text' name='ifinfo' value='".stripslashes($if["interfaceinfo"])."'><br>\n"; |
$display .= "Интерфейс (имя файла): <input type='text' name='ifname' value='".$secure->stripStr($if["interface"])."'><br>\n"; |
$display .= "Интерфейс (название): <input type='text' name='ifinfo' value='".$secure->stripStr($if["interfaceinfo"])."'><br>\n"; |
$display .= "<input type='submit' value='Отредактировать'></form>\n"; |
} else { |
$display .= "<p>Такого интерфейса не существует</p>"; |
804,8 → 804,8 |
$display .= "<input type='hidden' name='mode' value='".$mode."'>\n"; |
$display .= "<input type='hidden' name='act' value='".$act."'>\n"; |
$display .= "<input type='hidden' name='if' value='$uid'>\n"; |
$display .= "Интерфейс (имя файла): <input type='text' name='ifname' value='".stripslashes($if["interface"])."' readonly><br>\n"; |
$display .= "Интерфейс (название): <input type='text' name='ifinfo' value='".stripslashes($if["interfaceinfo"])."' readonly><br>\n"; |
$display .= "Интерфейс (имя файла): <input type='text' name='ifname' value='".$secure->stripStr($if["interface"])."' readonly><br>\n"; |
$display .= "Интерфейс (название): <input type='text' name='ifinfo' value='".$secure->stripStr($if["interfaceinfo"])."' readonly><br>\n"; |
$display .= "<input type='submit' value='Удалить'></form>\n"; |
} |
break; |