Fixed bug #13137: redirect/returnUrl isn't validated in core (thanks to Georg Ringer...
[Packages/TYPO3.CMS.git] / typo3 / db_new.php
1 <?php
2 /***************************************************************
3 * Copyright notice
4 *
5 * (c) 1999-2010 Kasper Skaarhoj (kasperYYYY@typo3.com)
6 * All rights reserved
7 *
8 * This script is part of the TYPO3 project. The TYPO3 project is
9 * free software; you can redistribute it and/or modify
10 * it under the terms of the GNU General Public License as published by
11 * the Free Software Foundation; either version 2 of the License, or
12 * (at your option) any later version.
13 *
14 * The GNU General Public License can be found at
15 * http://www.gnu.org/copyleft/gpl.html.
16 * A copy is found in the textfile GPL.txt and important notices to the license
17 * from the author is found in LICENSE.txt distributed with these scripts.
18 *
19 *
20 * This script is distributed in the hope that it will be useful,
21 * but WITHOUT ANY WARRANTY; without even the implied warranty of
22 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
23 * GNU General Public License for more details.
24 *
25 * This copyright notice MUST APPEAR in all copies of the script!
26 ***************************************************************/
27 /**
28 * New database item menu
29 *
30 * This script lets users choose a new database element to create.
31 * Includes a wizard mode for visually pointing out the position of new pages
32 *
33 * $Id$
34 * Revised for TYPO3 3.6 November/2003 by Kasper Skaarhoj
35 * XHTML compliant
36 *
37 * @author Kasper Skaarhoj <kasperYYYY@typo3.com>
38 */
39 /**
40 * [CLASS/FUNCTION INDEX of SCRIPT]
41 *
42 *
43 *
44 * 90: class localPageTree extends t3lib_pageTree
45 * 99: function wrapIcon($icon,$row)
46 * 110: function expandNext($id)
47 *
48 *
49 * 128: class SC_db_new
50 * 157: function init()
51 * 224: function main()
52 * 276: function pagesOnly()
53 * 294: function regularNew()
54 * 458: function printContent()
55 * 473: function linkWrap($code,$table,$pid,$addContentTable=0)
56 * 493: function isTableAllowedForThisPage($pid_row, $checkTable)
57 * 523: function showNewRecLink($table,$allowedNewTables='')
58 *
59 * TOTAL FUNCTIONS: 10
60 * (This index is automatically created/updated by the extension "extdeveval")
61 *
62 */
63
64
65
66
67 $BACK_PATH='';
68 require('init.php');
69 require('template.php');
70 $LANG->includeLLFile('EXT:lang/locallang_misc.xml');
71
72
73 /**
74 * Extension for the tree class that generates the tree of pages in the page-wizard mode
75 *
76 * @author Kasper Skaarhoj <kasperYYYY@typo3.com>
77 * @package TYPO3
78 * @subpackage core
79 */
80 class localPageTree extends t3lib_pageTree {
81
82 /**
83 * Inserting uid-information in title-text for an icon
84 *
85 * @param string Icon image
86 * @param array Item row
87 * @return string Wrapping icon image.
88 */
89 function wrapIcon($icon,$row) {
90 return $this->addTagAttributes($icon,' title="id='.htmlspecialchars($row['uid']).'"');
91 }
92
93 /**
94 * Determines whether to expand a branch or not.
95 * Here the branch is expanded if the current id matches the global id for the listing/new
96 *
97 * @param integer The ID (page id) of the element
98 * @return boolean Returns true if the IDs matches
99 */
100 function expandNext($id) {
101 return $id==$GLOBALS['SOBE']->id ? 1 : 0;
102 }
103 }
104
105
106
107
108
109
110
111 /**
112 * Script class for 'db_new'
113 *
114 * @author Kasper Skaarhoj <kasperYYYY@typo3.com>
115 * @package TYPO3
116 * @subpackage core
117 */
118 class SC_db_new {
119 var $pageinfo;
120 var $pidInfo;
121 var $newPagesInto;
122 var $newContentInto;
123 var $newPagesAfter;
124 var $web_list_modTSconfig;
125 var $allowedNewTables;
126 var $deniedNewTables;
127 var $web_list_modTSconfig_pid;
128 var $allowedNewTables_pid;
129 var $deniedNewTables_pid;
130 var $code;
131 var $R_URI;
132
133 // Internal, static: GPvar
134 var $id; // see init()
135 var $returnUrl; // Return url.
136 var $pagesOnly; // pagesOnly flag.
137
138 // Internal
139 var $perms_clause; // see init()
140
141 /**
142 * Document template object
143 *
144 * @var mediumDoc
145 */
146 var $doc;
147 var $content; // Accumulated HTML output
148 var $tRows;
149
150 /**
151 * Constructor function for the class
152 *
153 * @return void
154 */
155 function init() {
156 global $BE_USER,$LANG,$BACK_PATH;
157
158 // page-selection permission clause (reading)
159 $this->perms_clause = $BE_USER->getPagePermsClause(1);
160
161 // this will hide records from display - it has nothing todo with user rights!!
162 if ($pidList = $GLOBALS['BE_USER']->getTSConfigVal('options.hideRecords.pages')) {
163 if ($pidList = $GLOBALS['TYPO3_DB']->cleanIntList($pidList)) {
164 $this->perms_clause .= ' AND pages.uid NOT IN ('.$pidList.')';
165 }
166 }
167 // Setting GPvars:
168 $this->id = intval(t3lib_div::_GP('id')); // The page id to operate from
169 $this->returnUrl = t3lib_div::sanitizeLocalUrl(t3lib_div::_GP('returnUrl'));
170 $this->pagesOnly = t3lib_div::_GP('pagesOnly');
171
172 // Create instance of template class for output
173 $this->doc = t3lib_div::makeInstance('template');
174 $this->doc->backPath = $BACK_PATH;
175 $this->doc->setModuleTemplate('templates/db_new.html');
176 $this->doc->JScode='';
177
178 // Setting up the context sensitive menu:
179 $this->doc->getContextMenuCode();
180
181 // Creating content
182 $this->content='';
183 $this->content.=$this->doc->header($LANG->sL('LLL:EXT:lang/locallang_core.php:db_new.php.pagetitle'));
184
185 // Id a positive id is supplied, ask for the page record with permission information contained:
186 if ($this->id > 0) {
187 $this->pageinfo = t3lib_BEfunc::readPageAccess($this->id,$this->perms_clause);
188 }
189
190 // If a page-record was returned, the user had read-access to the page.
191 if ($this->pageinfo['uid']) {
192 // Get record of parent page
193
194 $this->pidInfo=t3lib_BEfunc::getRecord('pages',$this->pageinfo['pid']);
195 // Checking the permissions for the user with regard to the parent page: Can he create new pages, new content record, new page after?
196 if ($BE_USER->doesUserHaveAccess($this->pageinfo,8)) {
197 $this->newPagesInto=1;
198 }
199 if ($BE_USER->doesUserHaveAccess($this->pageinfo,16)) {
200 $this->newContentInto=1;
201 }
202
203 if (($BE_USER->isAdmin()||is_array($this->pidInfo)) && $BE_USER->doesUserHaveAccess($this->pidInfo,8)) {
204 $this->newPagesAfter=1;
205 }
206 } elseif ($BE_USER->isAdmin()) {
207 // Admins can do it all
208 $this->newPagesInto=1;
209 $this->newContentInto=1;
210 $this->newPagesAfter=0;
211 } else {
212 // People with no permission can do nothing
213 $this->newPagesInto=0;
214 $this->newContentInto=0;
215 $this->newPagesAfter=0;
216 }
217 }
218
219 /**
220 * Main processing, creating the list of new record tables to select from
221 *
222 * @return void
223 */
224 function main() {
225 global $BE_USER,$LANG;
226
227 // If there was a page - or if the user is admin (admins has access to the root) we proceed:
228 if ($this->pageinfo['uid'] || $BE_USER->isAdmin()) {
229 // Acquiring TSconfig for this module/current page:
230 $this->web_list_modTSconfig = t3lib_BEfunc::getModTSconfig($this->pageinfo['uid'],'mod.web_list');
231 $this->allowedNewTables = t3lib_div::trimExplode(',',$this->web_list_modTSconfig['properties']['allowedNewTables'],1);
232 $this->deniedNewTables = t3lib_div::trimExplode(',',$this->web_list_modTSconfig['properties']['deniedNewTables'],1);
233
234 // Acquiring TSconfig for this module/parent page:
235 $this->web_list_modTSconfig_pid = t3lib_BEfunc::getModTSconfig($this->pageinfo['pid'],'mod.web_list');
236 $this->allowedNewTables_pid = t3lib_div::trimExplode(',',$this->web_list_modTSconfig_pid['properties']['allowedNewTables'],1);
237 $this->deniedNewTables_pid = t3lib_div::trimExplode(',',$this->web_list_modTSconfig_pid['properties']['deniedNewTables'],1);
238
239 // More init:
240 if (!$this->showNewRecLink('pages')) {
241 $this->newPagesInto=0;
242 }
243 if (!$this->showNewRecLink('pages', $this->allowedNewTables_pid, $this->deniedNewTables_pid)) {
244 $this->newPagesAfter=0;
245 }
246
247
248 // Set header-HTML and return_url
249 if (is_array($this->pageinfo) && $this->pageinfo['uid']) {
250 $iconImgTag = t3lib_iconWorks::getSpriteIconForRecord('pages', $this->pageinfo, array('title' => htmlspecialchars($this->pageinfo['_thePath'])));
251 $title = strip_tags($this->pageinfo[$GLOBALS['TCA']['pages']['ctrl']['label']]);
252 } else {
253 $iconImgTag = t3lib_iconWorks::getSpriteIcon('apps-pagetree-root', array('title' => htmlspecialchars($this->pageinfo['_thePath'])));
254 $title = $GLOBALS['TYPO3_CONF_VARS']['SYS']['sitename'];
255 }
256
257 $this->code = '<span class="typo3-moduleHeader">' . $this->doc->wrapClickMenuOnIcon($iconImgTag, 'pages', $this->pageinfo['uid']) . htmlspecialchars(t3lib_div::fixed_lgd_cs($title, 45)) . '</span><br />';
258
259 $this->R_URI = $this->returnUrl;
260
261 // GENERATE the HTML-output depending on mode (pagesOnly is the page wizard)
262 if (!$this->pagesOnly) { // Regular new element:
263 $this->regularNew();
264 } elseif ($this->showNewRecLink('pages')) { // Pages only wizard
265 $this->pagesOnly();
266 }
267
268 // Add all the content to an output section
269 $this->content.=$this->doc->section('',$this->code);
270
271 // Setting up the buttons and markers for docheader
272 $docHeaderButtons = $this->getButtons();
273 $markers['CSH'] = $docHeaderButtons['csh'];
274
275 $markers['CONTENT'] = $this->content;
276
277 // Build the <body> for the module
278 $this->content = $this->doc->startPage($LANG->sL('LLL:EXT:lang/locallang_core.php:db_new.php.pagetitle'));
279 $this->content.= $this->doc->moduleBody($this->pageinfo, $docHeaderButtons, $markers);
280 $this->content.= $this->doc->endPage();
281 $this->content = $this->doc->insertStylesAndJS($this->content);
282 }
283 }
284
285 /**
286 * Create the panel of buttons for submitting the form or otherwise perform operations.
287 *
288 * @return array all available buttons as an assoc. array
289 */
290 protected function getButtons() {
291 global $LANG, $BACK_PATH;
292
293 $buttons = array(
294 'csh' => '',
295 'back' => '',
296 'view' => '',
297 'new_page' => '',
298 'record_list' => ''
299 );
300
301
302 if (!$this->pagesOnly) { // Regular new element:
303 // New page
304 if ($this->showNewRecLink('pages')) {
305 $buttons['new_page'] = '<a href="' . htmlspecialchars(t3lib_div::linkThisScript(array('pagesOnly' => '1'))) . '" title="' . $LANG->sL('LLL:EXT:cms/layout/locallang.xml:newPage', 1) . '">' .
306 t3lib_iconWorks::getSpriteIcon('actions-page-new') .
307 '</a>';
308 }
309 // CSH
310 $buttons['csh'] = t3lib_BEfunc::cshItem('xMOD_csh_corebe', 'new_regular', $GLOBALS['BACK_PATH'], '', TRUE);
311 } elseif($this->showNewRecLink('pages')) { // Pages only wizard
312 // CSH
313 $buttons['csh'] = t3lib_BEfunc::cshItem('xMOD_csh_corebe', 'new_pages', $GLOBALS['BACK_PATH'], '', TRUE);
314 }
315
316 // Back
317 if ($this->R_URI) {
318 $buttons['back'] = '<a href="' . htmlspecialchars($this->R_URI) . '" class="typo3-goBack" title="' . $GLOBALS['LANG']->sL('LLL:EXT:lang/locallang_core.php:labels.goBack', 1) . '">' .
319 t3lib_iconWorks::getSpriteIcon('actions-view-go-back') .
320 '</a>';
321 }
322
323 if (is_array($this->pageinfo) && $this->pageinfo['uid']) {
324 // View
325 $buttons['view'] = '<a href="#" onclick="' . htmlspecialchars(t3lib_BEfunc::viewOnClick($this->pageinfo['uid'], $this->backPath, t3lib_BEfunc::BEgetRootLine($this->pageinfo['uid']))) . '" title="' . $GLOBALS['LANG']->sL('LLL:EXT:lang/locallang_core.php:labels.showPage', 1) . '">' .
326 t3lib_iconWorks::getSpriteIcon('actions-document-view') .
327 '</a>';
328
329 // Record list
330 // If access to Web>List for user, then link to that module.
331 $buttons['record_list'] = t3lib_extMgm::createListViewLink(
332 $this->pageinfo['uid'],
333 '&returnUrl=' . rawurlencode(t3lib_div::getIndpEnv('REQUEST_URI')),
334 $GLOBALS['LANG']->sL('LLL:EXT:lang/locallang_core.php:labels.showList', TRUE)
335 );
336 }
337
338
339
340 return $buttons;
341 }
342
343 /**
344 * Creates the position map for pages wizard
345 *
346 * @return void
347 */
348 function pagesOnly() {
349 global $LANG;
350
351 $posMap = t3lib_div::makeInstance('t3lib_positionMap');
352 $this->code.='
353 <h3>'.htmlspecialchars($LANG->getLL('selectPosition')).':</h3>
354 ';
355 $this->code.= $posMap->positionTree($this->id,$this->pageinfo,$this->perms_clause,$this->R_URI);
356 }
357
358 /**
359 * Create a regular new element (pages and records)
360 *
361 * @return void
362 */
363 function regularNew() {
364
365 $doNotShowFullDescr = false;
366 // Initialize array for accumulating table rows:
367 $this->tRows = array();
368
369 // tree images
370 $halfLine = '<img' . t3lib_iconWorks::skinImg($this->doc->backPath,'gfx/ol/halfline.gif', 'width="18" height="8"') . ' alt="" />';
371 $firstLevel = '<img' . t3lib_iconWorks::skinImg($this->doc->backPath,'gfx/ol/join.gif', 'width="18" height="16"') . ' alt="" />';
372 $secondLevel = '<img' . t3lib_iconWorks::skinImg($this->doc->backPath,'gfx/ol/line.gif', 'width="18" height="16"') . ' alt="" />
373 <img' . t3lib_iconWorks::skinImg($this->doc->backPath,'gfx/ol/join.gif', 'width="18" height="16"') . ' alt="" />';
374 $secondLevelLast = '<img' . t3lib_iconWorks::skinImg($this->doc->backPath,'gfx/ol/line.gif', 'width="18" height="16"') . ' alt="" />
375 <img' . t3lib_iconWorks::skinImg($this->doc->backPath, 'gfx/ol/joinbottom.gif', 'width="18" height="16"') . ' alt="" />';
376
377 // Slight spacer from header:
378 $this->code .= $halfLine;
379
380 // New Page
381 $table = 'pages';
382 $v = $GLOBALS['TCA'][$table];
383 $pageIcon = t3lib_iconWorks::getSpriteIconForRecord($table,array());
384
385 $newPageIcon = t3lib_iconWorks::getSpriteIcon('actions-page-new');
386 $rowContent = $firstLevel . $newPageIcon . '&nbsp;<strong>' . $GLOBALS['LANG']->getLL('createNewPage') . '</strong>';
387
388 // New pages INSIDE this pages
389 if ($this->newPagesInto
390 && $this->isTableAllowedForThisPage($this->pageinfo, 'pages')
391 && $GLOBALS['BE_USER']->check('tables_modify','pages')
392 && $GLOBALS['BE_USER']->workspaceCreateNewRecord($this->pageinfo['_ORIG_uid']?$this->pageinfo['_ORIG_uid']:$this->id, 'pages')
393 ) {
394
395 // Create link to new page inside:
396
397 $rowContent .= '<br />' . $secondLevel . $this->linkWrap(
398 t3lib_iconWorks::getSpriteIconForRecord($table, array()) .
399 $GLOBALS['LANG']->sL($v['ctrl']['title'], 1) . ' (' . $GLOBALS['LANG']->sL('LLL:EXT:lang/locallang_core.php:db_new.php.inside', 1) . ')',
400 $table,
401 $this->id);
402 }
403
404 // New pages AFTER this pages
405 if ($this->newPagesAfter
406 && $this->isTableAllowedForThisPage($this->pidInfo, 'pages')
407 && $GLOBALS['BE_USER']->check('tables_modify', 'pages')
408 && $GLOBALS['BE_USER']->workspaceCreateNewRecord($this->pidInfo['uid'], 'pages')
409 ) {
410
411 $rowContent .= '<br />' . $secondLevel .
412 $this->linkWrap(
413 $pageIcon .
414 $GLOBALS['LANG']->sL($v['ctrl']['title'], 1) . ' (' . $GLOBALS['LANG']->sL('LLL:EXT:lang/locallang_core.php:db_new.php.after',1) . ')',
415 'pages',
416 -$this->id
417 );
418
419 }
420
421 // Link to page-wizard:
422 $rowContent.= '<br />' . $secondLevelLast .
423 '<a href="' . htmlspecialchars(t3lib_div::linkThisScript(array('pagesOnly' => 1))) . '">' .
424 $pageIcon .
425 htmlspecialchars($GLOBALS['LANG']->getLL('pageSelectPosition')) .
426 '</a>';
427
428 // Half-line:
429 $rowContent.= '<br />' . $halfLine;
430
431 // Compile table row to show the icon for "new page (select position)"
432 $startRows = array();
433 if ($this->showNewRecLink('pages')) {
434 $startRows[] = '
435 <tr>
436 <td nowrap="nowrap">' . $rowContent . '</td>
437 <td>' . t3lib_BEfunc::cshItem($table, '', $this->doc->backPath, '', $doNotShowFullDescr) . '</td>
438 </tr>
439 ';
440 }
441
442
443 // New tables (but not pages) INSIDE this pages
444 $isAdmin = $GLOBALS['BE_USER']->isAdmin();
445 $newContentIcon = t3lib_iconWorks::getSpriteIcon('actions-document-new');
446 if ($this->newContentInto) {
447 if (is_array($GLOBALS['TCA'])) {
448 $groupName = '';
449 foreach($GLOBALS['TCA'] as $table => $v) {
450 $count = count($GLOBALS['TCA'][$table]);
451 $counter = 1;
452 if ($table != 'pages'
453 && $this->showNewRecLink($table)
454 && $this->isTableAllowedForThisPage($this->pageinfo, $table)
455 && $GLOBALS['BE_USER']->check('tables_modify', $table)
456 && (($v['ctrl']['rootLevel'] xor $this->id) || $v['ctrl']['rootLevel'] == -1)
457 && $GLOBALS['BE_USER']->workspaceCreateNewRecord($this->pageinfo['_ORIG_uid'] ? $this->pageinfo['_ORIG_uid'] : $this->id, $table)
458 ) {
459
460 $newRecordIcon = t3lib_iconWorks::getSpriteIconForRecord($table, array());
461 $rowContent = '';
462
463 // Create new link for record:
464 $newLink = $this->linkWrap(
465 $newRecordIcon . $GLOBALS['LANG']->sL($v['ctrl']['title'],1)
466 ,$table
467 ,$this->id);
468
469 // If the table is 'tt_content' (from "cms" extension), create link to wizard
470 if ($table == 'tt_content') {
471 $groupName = $GLOBALS['LANG']->getLL('createNewContent');
472 $rowContent = $firstLevel . $newContentIcon . '&nbsp;<strong>' . $GLOBALS['LANG']->getLL('createNewContent') . '</strong>';
473 // If mod.web_list.newContentWiz.overrideWithExtension is set, use that extension's wizard instead:
474 $overrideExt = $this->web_list_modTSconfig['properties']['newContentWiz.']['overrideWithExtension'];
475 $pathToWizard = (t3lib_extMgm::isLoaded($overrideExt)) ? (t3lib_extMgm::extRelPath($overrideExt).'mod1/db_new_content_el.php') : 'sysext/cms/layout/db_new_content_el.php';
476
477 $href = $pathToWizard . '?id=' . $this->id . '&returnUrl=' . rawurlencode(t3lib_div::getIndpEnv('REQUEST_URI'));
478 $rowContent.= '<br />' . $secondLevel . $newLink . '<br />' .
479 $secondLevelLast .
480 '<a href="' . htmlspecialchars($href) . '">' .
481 $newContentIcon . htmlspecialchars($GLOBALS['LANG']->getLL('clickForWizard')) .
482 '</a>';
483
484 // Half-line added:
485 $rowContent.= '<br />' . $halfLine;
486 } else {
487 // get the title
488 if ($v['ctrl']['readOnly'] || $v['ctrl']['hideTable'] || $v['ctrl']['is_static']) {
489 continue;
490 }
491 if ($v['ctrl']['adminOnly'] && !$isAdmin) {
492 continue;
493 }
494 $nameParts = explode('_', $table);
495 $thisTitle = '';
496 if ($nameParts[0] == 'tx' || $nameParts[0] == 'tt') {
497 // try to extract extension name
498 if (substr($v['ctrl']['title'], 0, 8) == 'LLL:EXT:') {
499 $_EXTKEY = substr($v['ctrl']['title'], 8);
500 $_EXTKEY = substr($_EXTKEY, 0, strpos($_EXTKEY, '/'));
501 if ($_EXTKEY != '') {
502 // first try to get localisation of extension title
503 $temp = explode(':', substr($v['ctrl']['title'], 9 + strlen($_EXTKEY)));
504 $langFile = $temp[0];
505 $thisTitle = $GLOBALS['LANG']->sL('LLL:EXT:' . $_EXTKEY . '/' . $langFile . ':extension.title');
506 // if no localisation available, read title from ext_emconf.php
507 if (!$thisTitle && is_file(t3lib_extMgm::extPath($_EXTKEY) . 'ext_emconf.php')) {
508 include(t3lib_extMgm::extPath($_EXTKEY) . 'ext_emconf.php');
509 $thisTitle = $EM_CONF[$_EXTKEY]['title'];
510 }
511 $iconFile[$_EXTKEY] = '<img src="' . t3lib_extMgm::extRelPath($_EXTKEY) . 'ext_icon.gif" />';
512 } else {
513 $thisTitle = $nameParts[1];
514 $iconFile[$_EXTKEY] = '';
515 }
516 } else {
517 $thisTitle = $nameParts[1];
518 $iconFile[$_EXTKEY] = '';
519 }
520 } else {
521 $_EXTKEY = 'system';
522 $thisTitle = $GLOBALS['LANG']->getLL('system_records');
523 $iconFile['system'] = t3lib_iconWorks::getSpriteIcon('apps-pagetree-root');
524 }
525
526 if($groupName == '' || $groupName != $_EXTKEY) {
527 $groupName = $_EXTKEY;
528 }
529
530 $rowContent .= $newLink;
531 $counter++;
532
533 }
534
535
536 // Compile table row:
537 if ($table == 'tt_content') {
538 $startRows[] = '
539 <tr>
540 <td nowrap="nowrap">' . $rowContent . '</td>
541 <td>' . t3lib_BEfunc::cshItem($table, '', $this->doc->backPath, '', $doNotShowFullDescr) . '</td>
542 </tr>';
543 } else {
544 $this->tRows[$groupName]['title'] = $thisTitle;
545 $this->tRows[$groupName]['html'][] = $rowContent;
546 $this->tRows[$groupName]['table'][] = $table;
547 }
548 }
549 }
550 }
551 }
552
553 // user sort
554 $pageTS = t3lib_BEfunc::getPagesTSconfig($this->id);
555 if (isset($pageTS['mod.']['wizards.']['newRecord.']['order'])) {
556 $this->newRecordSortList = t3lib_div::trimExplode(',', $pageTS['mod.']['wizards.']['newRecord.']['order'], true);
557 }
558 uksort($this->tRows, array($this, 'sortNewRecordsByConfig'));
559
560 // Compile table row:
561 $finalRows = array();
562 $finalRows[] = implode('', $startRows);
563 foreach ($this->tRows as $key => $value) {
564 $row = '<tr>
565 <td nowrap="nowrap">' . $halfLine . '<br />' .
566 $firstLevel . '' . $iconFile[$key] . '&nbsp;<strong>' . $value['title'] . '</strong>' .
567 '</td><td>'.t3lib_BEfunc::cshItem($t,'',$this->doc->backPath,'',$doNotShowFullDescr).'</td>
568 </tr>';
569 $count = count($value['html']) - 1;
570 foreach ($value['html'] as $recordKey => $record) {
571 $row .= '
572 <tr>
573 <td nowrap="nowrap">' . ($recordKey < $count ? $secondLevel : $secondLevelLast) . $record . '</td>
574 <td>'.t3lib_BEfunc::cshItem($value['table'][$recordKey], '', $this->doc->backPath, '', $doNotShowFullDescr) . '</td>
575 </tr>';
576 }
577 $finalRows[] = $row;
578 }
579
580 // end of tree
581 $finalRows[]='
582 <tr>
583 <td><img' . t3lib_iconWorks::skinImg($this->doc->backPath, 'gfx/ol/stopper.gif','width="18" height="16"') . ' alt="" /></td>
584 <td></td>
585 </tr>
586 ';
587
588
589 // Make table:
590 $this->code.='
591 <table border="0" cellpadding="0" cellspacing="0" id="typo3-newRecord">
592 ' . implode('', $finalRows) . '
593 </table>
594 ';
595 }
596
597 /**
598 * user array sort function used by regularNew
599 *
600 * @param string first array element for compare
601 * @param string first array element for compare
602 * @return int -1 for lower, 0 for equal, 1 for greater
603 */
604 function sortNewRecordsByConfig($a, $b) {
605 if (count($this->newRecordSortList)) {
606 if (in_array($a, $this->newRecordSortList) && in_array($b, $this->newRecordSortList)) {
607 // both are in the list, return relative to position in array
608 $sub = array_search($a, $this->newRecordSortList) - array_search($b, $this->newRecordSortList);
609 $ret = $sub < 0 ? -1 : $sub == 0 ? 0 : 1;
610 } elseif (in_array($a, $this->newRecordSortList)) {
611 // first element is in array, put to top
612 $ret = -1;
613 } elseif (in_array($b, $this->newRecordSortList)) {
614 // second element is in array, put first to bottom
615 $ret = 1;
616 } else {
617 // no element is in array, return alphabetic order
618 $ret = strnatcasecmp($this->tRows[$a]['title'], $this->tRows[$b]['title']);
619 }
620 return $ret;
621 } else {
622 // return alphabetic order
623 return strnatcasecmp($this->tRows[$a]['title'], $this->tRows[$b]['title']);
624 }
625 }
626
627 /**
628 * Ending page output and echo'ing content to browser.
629 *
630 * @return void
631 */
632 function printContent() {
633 echo $this->content;
634 }
635
636 /**
637 * Links the string $code to a create-new form for a record in $table created on page $pid
638 *
639 * @param string Link text
640 * @param string Table name (in which to create new record)
641 * @param integer PID value for the "&edit['.$table.']['.$pid.']=new" command (positive/negative)
642 * @param boolean If $addContentTable is set, then a new contentTable record is created together with pages
643 * @return string The link.
644 */
645 function linkWrap($linkText, $table, $pid, $addContentTable = false) {
646 $parameters = '&edit[' . $table . '][' . $pid . ']=new';
647
648 if ($table == 'pages'
649 && $GLOBALS['TYPO3_CONF_VARS']['SYS']['contentTable']
650 && isset($GLOBALS['TCA'][$GLOBALS['TYPO3_CONF_VARS']['SYS']['contentTable']])
651 && $addContentTable) {
652 $parameters .= '&edit['.$GLOBALS['TYPO3_CONF_VARS']['SYS']['contentTable'].'][prev]=new&returnNewPageId=1';
653 } elseif ($table == 'pages_language_overlay') {
654 $parameters .= '&overrideVals[pages_language_overlay][doktype]='
655 . (int) $this->pageinfo['doktype'];
656 }
657
658 $onClick = t3lib_BEfunc::editOnClick($parameters, '', $this->returnUrl);
659
660 return '<a href="#" onclick="'.htmlspecialchars($onClick).'">' . $linkText . '</a>';
661 }
662
663 /**
664 * Returns true if the tablename $checkTable is allowed to be created on the page with record $pid_row
665 *
666 * @param array Record for parent page.
667 * @param string Table name to check
668 * @return boolean Returns true if the tablename $checkTable is allowed to be created on the page with record $pid_row
669 */
670 function isTableAllowedForThisPage($pid_row, $checkTable) {
671 global $TCA, $PAGES_TYPES;
672 if (!is_array($pid_row)) {
673 if ($GLOBALS['BE_USER']->user['admin']) {
674 return true;
675 } else {
676 return false;
677 }
678 }
679 // be_users and be_groups may not be created anywhere but in the root.
680 if ($checkTable=='be_users' || $checkTable=='be_groups') {
681 return false;
682 }
683 // Checking doktype:
684 $doktype = intval($pid_row['doktype']);
685 if (!$allowedTableList = $PAGES_TYPES[$doktype]['allowedTables']) {
686 $allowedTableList = $PAGES_TYPES['default']['allowedTables'];
687 }
688 if (strstr($allowedTableList,'*') || t3lib_div::inList($allowedTableList,$checkTable)) { // If all tables or the table is listed as a allowed type, return true
689 return true;
690 }
691 }
692
693 /**
694 * Returns true if:
695 * - $allowedNewTables and $deniedNewTables are empty
696 * - the table is not found in $deniedNewTables and $allowedNewTables is not set or the $table tablename is found in $allowedNewTables
697 *
698 * If $table tablename is found in $allowedNewTables and $deniedNewTables, $deniedNewTables
699 * has priority over $allowedNewTables.
700 *
701 * @param string Table name to test if in allowedTables
702 * @param array Array of new tables that are allowed.
703 * @param array Array of new tables that are not allowed.
704 * @return boolean Returns true if a link for creating new records should be displayed for $table
705 */
706 function showNewRecLink($table, array $allowedNewTables=array(), array $deniedNewTables=array()) {
707 $allowedNewTables = ($allowedNewTables ? $allowedNewTables : $this->allowedNewTables);
708 $deniedNewTables = ($deniedNewTables ? $deniedNewTables : $this->deniedNewTables);
709 // No deny/allow tables are set:
710 if (!count($allowedNewTables) && !count($deniedNewTables)) {
711 return true;
712 // If table is not denied (which takes precedence over allowed tables):
713 } elseif (!in_array($table, $deniedNewTables) && (!count($allowedNewTables) || in_array($table, $allowedNewTables))) {
714 return true;
715 // If table is denied or allowed tables are set, but table is not part of:
716 } else {
717 return false;
718 }
719 }
720 }
721
722
723 if (defined('TYPO3_MODE') && $TYPO3_CONF_VARS[TYPO3_MODE]['XCLASS']['typo3/db_new.php']) {
724 include_once($TYPO3_CONF_VARS[TYPO3_MODE]['XCLASS']['typo3/db_new.php']);
725 }
726
727
728
729 // Make instance:
730 $SOBE = t3lib_div::makeInstance('SC_db_new');
731 $SOBE->init();
732 $SOBE->main();
733 $SOBE->printContent();
734
735 ?>