Fixed bug #14021: Simplify the code to get nested GET Parameters with TS
[Packages/TYPO3.CMS.git] / typo3 / wizard_rte.php
old mode 100755 (executable)
new mode 100644 (file)
index e89d9d5..8d82ea7
@@ -1,22 +1,22 @@
 <?php
 /***************************************************************
 *  Copyright notice
-*  
-*  (c) 1999-2003 Kasper Skaarhoj (kasper@typo3.com)
+*
+*  (c) 1999-2009 Kasper Skaarhoj (kasperYYYY@typo3.com)
 *  All rights reserved
 *
-*  This script is part of the TYPO3 project. The TYPO3 project is 
+*  This script is part of the TYPO3 project. The TYPO3 project is
 *  free software; you can redistribute it and/or modify
 *  it under the terms of the GNU General Public License as published by
 *  the Free Software Foundation; either version 2 of the License, or
 *  (at your option) any later version.
-* 
+*
 *  The GNU General Public License can be found at
 *  http://www.gnu.org/copyleft/gpl.html.
-*  A copy is found in the textfile GPL.txt and important notices to the license 
+*  A copy is found in the textfile GPL.txt and important notices to the license
 *  from the author is found in LICENSE.txt distributed with these scripts.
 *
-* 
+*
 *  This script is distributed in the hope that it will be useful,
 *  but WITHOUT ANY WARRANTY; without even the implied warranty of
 *  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 *
 *  This copyright notice MUST APPEAR in all copies of the script!
 ***************************************************************/
-/** 
+/**
  * Wizard to display the RTE in "full screen" mode
  *
  * $Id$
- * 
- * @author     Kasper Skaarhoj <kasper@typo3.com>
+ * Revised for TYPO3 3.6 November/2003 by Kasper Skaarhoj
+ * XHTML compliant
+ *
+ * @author     Kasper Skaarhoj <kasperYYYY@typo3.com>
  */
 /**
  * [CLASS/FUNCTION INDEX of SCRIPT]
  *
  *
  *
- *   79: class SC_wizard_rte 
- *   87:     function init()   
- *  103:     function main()   
- *  112:     function jumpToUrl(URL,formEl)    
- *  203:     function printContent()   
+ *   81: class SC_wizard_rte
+ *   99:     function init()
+ *  123:     function main()
+ *  285:     function printContent()
+ *  298:     function checkEditAccess($table,$uid)
  *
  * TOTAL FUNCTIONS: 4
  * (This index is automatically created/updated by the extension "extdeveval")
  *
  */
 
+
 
 $BACK_PATH='';
 require ('init.php');
 require ('template.php');
-include ('sysext/lang/locallang_wizards.php');
-require_once (PATH_t3lib.'class.t3lib_tceforms.php');
-require_once (PATH_t3lib.'class.t3lib_loaddbgroup.php');
-require_once (PATH_t3lib.'class.t3lib_transferdata.php');
+$LANG->includeLLFile('EXT:lang/locallang_wizards.xml');
 
 t3lib_BEfunc::lockRecords();
 
@@ -70,155 +69,267 @@ t3lib_BEfunc::lockRecords();
 
 
 /**
- * Script Class
- * 
- * @author     Kasper Skaarhoj <kasper@typo3.com>
+ * Script Class for rendering the full screen RTE display
+ *
+ * @author     Kasper Skaarhoj <kasperYYYY@typo3.com>
  * @package TYPO3
  * @subpackage core
  */
 class SC_wizard_rte {
-       var $content;
-       var $P;
-       var $doc;       
-       
+
+               // Internal, dynamic:
        /**
-        * @return      [type]          ...
+        * document template object
+        *
+        * @var mediumDoc
         */
-       function init() {
-               global $BE_USER,$LANG,$BACK_PATH,$TCA_DESCR,$TCA,$HTTP_GET_VARS,$HTTP_POST_VARS,$CLIENT,$TYPO3_CONF_VARS;
+       var $doc;
+       var $content;                           // Content accumulation for the module.
+
+               // Internal, static: GPvars
+       var $P;                                         // Wizard parameters, coming from TCEforms linking to the wizard.
+       var $popView;                           // If set, launch a new window with the current records pid.
+       var $R_URI;                                     // Set to the URL of this script including variables which is needed to re-display the form. See main()
+
+
 
-               $this->P = t3lib_div::GPvar('P',1);
-               
-               $this->doc = t3lib_div::makeInstance("mediumDoc");
+
+       /**
+        * Initialization of the class
+        *
+        * @return      void
+        */
+       function init() {
+                       // Setting GPvars:
+               $this->P = t3lib_div::_GP('P');
+               $this->popView = t3lib_div::_GP('popView');
+               $this->R_URI = t3lib_div::linkThisScript(array('popView' => ''));
+
+                       // "Module name":
+               $this->MCONF['name']='xMOD_wizard_rte.php';
+
+                       // Starting the document template object:
+               $this->doc = t3lib_div::makeInstance('template');
+               $this->doc->backPath = $GLOBALS['BACK_PATH'];
+               $this->doc->setModuleTemplate('templates/wizard_rte.html');
                $this->doc->divClass = '';      // Need to NOT have the page wrapped in DIV since if we do that we destroy the feature that the RTE spans the whole height of the page!!!
-               $this->doc->form='<form action="tce_db.php" method="POST" enctype="'.$GLOBALS["TYPO3_CONF_VARS"]["SYS"]["form_enctype"].'" name="editform" onSubmit="return TBE_EDITOR_checkSubmit(1);" autocomplete="off">';
-               $this->doc->backPath = $BACK_PATH;
+               $this->doc->form='<form action="tce_db.php" method="post" enctype="'.$GLOBALS['TYPO3_CONF_VARS']['SYS']['form_enctype'].'" name="editform" onsubmit="return TBE_EDITOR.checkSubmit(1);">';
        }
 
        /**
-        * [Describe function...]
-        * 
-        * @return      [type]          ...
+        * Main function, rendering the document with the iframe with the RTE in.
+        *
+        * @return      void
         */
        function main() {
-               global $BE_USER,$LANG,$BACK_PATH,$TCA_DESCR,$TCA,$HTTP_GET_VARS,$HTTP_POST_VARS,$CLIENT,$TYPO3_CONF_VARS;
+               global $BE_USER,$LANG;
+
+                       // translate id to the workspace version:
+               if ($versionRec = t3lib_BEfunc::getWorkspaceVersionOfRecord($GLOBALS['BE_USER']->workspace, $this->P['table'], $this->P['uid'], 'uid')) {
+                       $this->P['uid'] = $versionRec['uid'];
+               }
+
+                       // If all parameters are available:
+               if ($this->P['table'] && $this->P['field'] && $this->P['uid'] && $this->checkEditAccess($this->P['table'],$this->P['uid']))     {
 
-               if ($this->P["table"] && $this->P["field"] && $this->P["uid"])  {
                                // Getting the raw record (we need only the pid-value from here...)
-                       $rawRec = t3lib_BEfunc::getRecord($this->P["table"],$this->P["uid"]);
-                       
-                       $this->doc->JScode = '
-                               <script language="javascript" type="text/javascript">
-                                       function jumpToUrl(URL,formEl)  {
+                       $rawRec = t3lib_BEfunc::getRecord($this->P['table'],$this->P['uid']);
+                       t3lib_BEfunc::fixVersioningPid($this->P['table'], $rawRec);
+
+                               // Setting JavaScript, including the pid value for viewing:
+                       $this->doc->JScode = $this->doc->wrapScriptTags('
+                                       function jumpToUrl(URL,formEl)  {       //
                                                if (document.editform)  {
-                                                       if (!TBE_EDITOR_isFormChanged())        {
-                                                               document.location = URL;
+                                                       if (!TBE_EDITOR.isFormChanged())        {
+                                                               window.location.href = URL;
                                                        } else if (formEl) {
                                                                if (formEl.type=="checkbox") formEl.checked = formEl.checked ? 0 : 1;
                                                        }
-                                               } else document.location = URL;
+                                               } else window.location.href = URL;
                                        }
-                               '.(t3lib_div::GPVar("popView") ? t3lib_BEfunc::viewOnClick($rawRec["pid"],"",t3lib_BEfunc::BEgetRootLine($rawRec["pid"])) : '').'               
-                               </script>
-                       ';
-                       
-                       $this->content.=$this->doc->startPage("");
-
+                               '.($this->popView ? t3lib_BEfunc::viewOnClick($rawRec['pid'],'',t3lib_BEfunc::BEgetRootLine($rawRec['pid'])) : '').'
+                       ');
 
-                       $tceforms = t3lib_div::makeInstance("t3lib_TCEforms");
+                               // Initialize TCeforms - for rendering the field:
+                       $tceforms = t3lib_div::makeInstance('t3lib_TCEforms');
                        $tceforms->initDefaultBEMode(); // Init...
                        $tceforms->disableWizards = 1;  // SPECIAL: Disables all wizards - we are NOT going to need them.
-                       $tceforms->RTEdivStyle = 'position:relative; left:0px; top:0px; height:100%; width:100%;border:solid 0px;';     // SPECIAL: Setting style for the RTE <DIV> layer containing the IFRAME
                        $tceforms->colorScheme[0]=$this->doc->bgColor;  // SPECIAL: Setting background color of the RTE to ordinary background
-               
-                               // Fetching content of record
-                       $trData = t3lib_div::makeInstance("t3lib_transferData");
+
+                               // Initialize style for RTE object:
+                       $RTEobj = t3lib_BEfunc::RTEgetObj();    // Getting reference to the RTE object used to render the field!
+                       if ($RTEobj->ID == 'rte')       {
+                               $RTEobj->RTEdivStyle = 'position:relative; left:0px; top:0px; height:100%; width:100%; border:solid 0px;';      // SPECIAL: Setting style for the RTE <DIV> layer containing the IFRAME
+                       }
+
+                               // Fetching content of record:
+                       $trData = t3lib_div::makeInstance('t3lib_transferData');
                        $trData->lockRecords=1;
-                       $trData->fetchRecord($this->P["table"],$this->P["uid"],"");
-               
+                       $trData->fetchRecord($this->P['table'],$this->P['uid'],'');
+
                                // Getting the processed record content out:
                        reset($trData->regTableItems_data);
                        $rec = current($trData->regTableItems_data);
-                       $rec["uid"] = $this->P["uid"];
-                       $rec["pid"] = $rawRec["pid"];
-               
-               
-                               // Making the toolbar:
-                       $closeUrl = $this->P["returnUrl"];
-               //      $R_URI=t3lib_div::getIndpEnv("REQUEST_URI");
-                       $R_URI=t3lib_div::linkThisScript(array("popView"=>""));
-               
-                       $undoButton=0;
-                       $undoQuery="SELECT tstamp FROM sys_history WHERE tablename='".$this->P["table"]."' AND recuid='".$this->P["uid"]."' ORDER BY tstamp DESC LIMIT 1";
-                       $undoRes = mysql(TYPO3_db,$undoQuery);
-                       if ($undoButtonR = mysql_fetch_assoc($undoRes)) {
-                               $undoButton=1;
+                       $rec['uid'] = $this->P['uid'];
+                       $rec['pid'] = $rawRec['pid'];
+
+                               // TSconfig, setting width:
+                       $fieldTSConfig = $tceforms->setTSconfig($this->P['table'],$rec,$this->P['field']);
+                       if (strcmp($fieldTSConfig['RTEfullScreenWidth'],''))    {
+                               $width=$fieldTSConfig['RTEfullScreenWidth'];
+                       } else {
+                               $width='100%';
                        }
-               
-               
-                               // ShortCut
-                       if ($BE_USER->mayMakeShortcut())        {
-                               $this->MCONF["name"]="xMOD_wizard_rte.php";
-                               $sCut = $this->doc->makeShortcutIcon("P","",$this->MCONF["name"],1);
-                       } else $sCut ="";
-               
-                       $toolBar=''.
-               //              '<input type="image" border=0 name="savedok" src="gfx/savedok.gif" hspace=2 width="21" height="16"'.t3lib_BEfunc::titleAttrib($LANG->sL("LLL:EXT:lang/locallang_core.php:rm.saveDoc"),1).' align=top>'.
-                               '<a href="#" onClick="TBE_EDITOR_checkAndDoSubmit(1); return false;"><img border=0 src="gfx/savedok.gif" hspace=2 width="21" height="16"'.t3lib_BEfunc::titleAttrib($LANG->sL("LLL:EXT:lang/locallang_core.php:rm.saveDoc"),1).' align=top></a>'.
-                               (t3lib_extMgm::isLoaded("cms")?'<a href="#" onClick="document.editform.redirect.value+=\'&popView=1\'; TBE_EDITOR_checkAndDoSubmit(1); return false;"><img border=0 src="gfx/savedokshow.gif" hspace=2 width="21" height="16"'.t3lib_BEfunc::titleAttrib($LANG->sL("LLL:EXT:lang/locallang_core.php:rm.saveDocShow"),1).' align=top></a>':'').
-                               '<a href="#" onClick="jumpToUrl(unescape(\''.rawurlencode($closeUrl).'\')); return false;"><img border=0 src="gfx/closedok.gif" hspace=2 width="21" height="16"'.t3lib_BEfunc::titleAttrib($LANG->sL("LLL:EXT:lang/locallang_core.php:rm.closeDoc"),1).' align=top></a>'.
-                               ($undoButton ? '<a href="#" onClick="document.location=\'show_rechis.php?element='.rawurlencode($this->P["table"].':'.$this->P["uid"]).'&revert='.rawurlencode("field:".$this->P["field"]).'&sumUp=-1&returnUrl='.rawurlencode($R_URI).'\'; return false;"><img border=0 src="gfx/undo.gif" hspace=2 width="21" height="16"'.t3lib_BEfunc::titleAttrib(sprintf($LANG->getLL("rte_undoLastChange"),t3lib_BEfunc::calcAge(time()-$undoButtonR["tstamp"],$LANG->sL("LLL:EXT:lang/locallang_core.php:labels.minutesHoursDaysYears"))),1).'" align=top></a>' : '').
-                               '';
-                       
-                       $panel = $toolBar;
-               
-                       $fieldTSConfig = $tceforms->setTSconfig($this->P["table"],$rec,$this->P["field"]);
-                       if (strcmp($fieldTSConfig["RTEfullScreenWidth"],""))    {
-                               $width=$fieldTSConfig["RTEfullScreenWidth"];
-                       } else $width="500"; //$width="100%";
-               
-                       $formContent = $tceforms->getSoloField($this->P["table"],$rec,$this->P["field"]);
-                       $formContent = '<table border=0 cellpadding=0 cellspacing=0 width="'.$width.'" height="98%">
-                               <tr><td>'.$panel.'</td><td align="right">'.$sCut.'</td><td></td></tr>
-                               <tr height="98%"><td width="'.$width.'" colspan=2>'.$formContent.'</td><td></td></tr>
-                       </table>';
-               
-                       $formContent.= '<input type="hidden" name="redirect" value="'.htmlspecialchars($R_URI).'">
-                                               <input type="hidden" name="_serialNumber" value="'.md5(microtime()).'">';
-                       
-               //      debug(array($formContent));
-                       
-                       $this->content.=$tceforms->printNeededJSFunctions_top().$formContent.$tceforms->printNeededJSFunctions();
+
+                               // Get the form field and wrap it in the table with the buttons:
+                       $formContent = $tceforms->getSoloField($this->P['table'],$rec,$this->P['field']);
+                       $formContent = '
+
+
+                       <!--
+                               RTE wizard:
+                       -->
+                               <table border="0" cellpadding="0" cellspacing="0" width="'.$width.'" id="typo3-rtewizard">
+                                       <tr>
+                                               <td width="'.$width.'" colspan="2" id="c-formContent">'.$formContent.'</td>
+                                               <td></td>
+                                       </tr>
+                               </table>';
+
+                               // Adding hidden fields:
+                       $formContent.= '<input type="hidden" name="redirect" value="'.htmlspecialchars($this->R_URI).'" />
+                                               <input type="hidden" name="_serialNumber" value="'.md5(microtime()).'" />';
+
+
+                               // Finally, add the whole setup:
+                       $this->content.=
+                               $tceforms->printNeededJSFunctions_top().
+                               $formContent.
+                               $tceforms->printNeededJSFunctions();
                } else {
-                       $this->content.=$this->doc->startPage("");
-                       $this->content.=$this->doc->section($LANG->getLL("forms_title"),$GLOBALS["TBE_TEMPLATE"]->rfw($LANG->getLL("table_noData")),0,1);
+                               // ERROR:
+                       $this->content.=$this->doc->section($LANG->getLL('forms_title'),'<span class="typo3-red">'.$LANG->getLL('table_noData',1).'</span>',0,1);
                }
+
+               // Setting up the buttons and markers for docheader
+               $docHeaderButtons = $this->getButtons();
+               $markers['CONTENT'] = $this->content;
+
+               // Build the <body> for the module
+               $this->content = $this->doc->startPage('');
+               $this->content.= $this->doc->moduleBody($this->pageinfo, $docHeaderButtons, $markers);
+               $this->content.= $this->doc->endPage();
+               $this->content = $this->doc->insertStylesAndJS($this->content);
+
        }
 
        /**
-        * [Describe function...]
-        * 
-        * @return      [type]          ...
+        * Outputting the accumulated content to screen
+        *
+        * @return      void
         */
        function printContent() {
-               $this->content.=$this->doc->endPage();
+               $this->content.= $this->doc->endPage();
+               $this->content = $this->doc->insertStylesAndJS($this->content);
                echo $this->content;
        }
-}
 
-// Include extension?
-if (defined('TYPO3_MODE') && $TYPO3_CONF_VARS[TYPO3_MODE]['XCLASS']['typo3/wizard_rte.php'])   {
-       include_once($TYPO3_CONF_VARS[TYPO3_MODE]['XCLASS']['typo3/wizard_rte.php']);
-}
+       /**
+        * Create the panel of buttons for submitting the form or otherwise perform operations.
+        *
+        * @return array all available buttons as an assoc. array
+        */
+       protected function getButtons() {
+               $buttons = array(
+                       'close' => '',
+                       'save' => '',
+                       'save_view' => '',
+                       'save_close' => '',
+                       'shortcut' => '',
+                       'undo' => '',
+               );
+
+               if ($this->P['table'] && $this->P['field'] && $this->P['uid'] && $this->checkEditAccess($this->P['table'],$this->P['uid'])) {
+                       $closeUrl = $this->P['returnUrl'];
+
+                       // Getting settings for the undo button:
+                       $undoButton = 0;
+                       $undoRes = $GLOBALS['TYPO3_DB']->exec_SELECTquery('tstamp', 'sys_history', 'tablename=' . $GLOBALS['TYPO3_DB']->fullQuoteStr($this->P['table'], 'sys_history') . ' AND recuid=' . intval($this->P['uid']), '', 'tstamp DESC', '1');
+                       if ($undoButtonR = $GLOBALS['TYPO3_DB']->sql_fetch_assoc($undoRes))     {
+                               $undoButton = 1;
+                       }
+
+                       // Close
+                       $buttons['close'] = '<a href="#" onclick="' . htmlspecialchars('jumpToUrl(unescape(\'' . rawurlencode($closeUrl) . '\')); return false;') . '">' .
+                                       '<img' . t3lib_iconWorks::skinImg($this->doc->backPath, 'gfx/closedok.gif') . ' class="c-inputButton" title="' . $GLOBALS['LANG']->sL('LLL:EXT:lang/locallang_core.php:rm.closeDoc', 1) . '" alt="" />' .
+                                       '</a>';
+
+                       // Save
+                       $buttons['save'] = '<a href="#" onclick="TBE_EDITOR.checkAndDoSubmit(1); return false;">' .
+                               '<img' . t3lib_iconWorks::skinImg($this->doc->backPath, 'gfx/savedok.gif') . ' class="c-inputButton" title="' . $GLOBALS['LANG']->sL('LLL:EXT:lang/locallang_core.php:rm.saveDoc', 1) . '" alt="" />' .
+                               '</a>';
+
+                       // Save & View
+                       if (t3lib_extMgm::isLoaded('cms')) {
+                               $buttons['save_view'] = '<a href="#" onclick="' . htmlspecialchars('document.editform.redirect.value+=\'&popView=1\'; TBE_EDITOR.checkAndDoSubmit(1); return false;') . '">' .
+                                       '<img' . t3lib_iconWorks::skinImg($this->doc->backPath, 'gfx/savedokshow.gif') . ' class="c-inputButton" title="' . $GLOBALS['LANG']->sL('LLL:EXT:lang/locallang_core.php:rm.saveDocShow', 1) . '" alt="" />' .
+                                       '</a>';
+                       }
 
+                       // Save & Close
+                       $buttons['save_close'] = '<input type="image" class="c-inputButton" onclick="' . htmlspecialchars('document.editform.redirect.value=\'' . $closeUrl . '\'; TBE_EDITOR.checkAndDoSubmit(1); return false;') . '" name="_saveandclosedok"' . t3lib_iconWorks::skinImg($this->doc->backPath, 'gfx/saveandclosedok.gif', '') . ' title="' . $GLOBALS['LANG']->sL('LLL:EXT:lang/locallang_core.php:rm.saveCloseDoc', 1) . '" />';
 
+                       // Undo/Revert:
+                       if ($undoButton)        {
+                               $buttons['undo'] = '<a href="#" onclick="' . htmlspecialchars('window.location.href=\'show_rechis.php?element=' . rawurlencode($this->P['table'] . ':' . $this->P['uid']) . '&revert=' . rawurlencode('field:' . $this->P['field']) . '&sumUp=-1&returnUrl=' . rawurlencode($this->R_URI) . '\'; return false;') . '">' .
+                                       '<img' . t3lib_iconWorks::skinImg($this->doc->backPath, 'gfx/undo.gif') . ' class="c-inputButton" title="' . htmlspecialchars(sprintf($GLOBALS['LANG']->getLL('rte_undoLastChange'), t3lib_BEfunc::calcAge($GLOBALS['EXEC_TIME'] - $undoButtonR['tstamp'], $GLOBALS['LANG']->sL('LLL:EXT:lang/locallang_core.php:labels.minutesHoursDaysYears')))) . '" alt="" />' .
+                                       '</a>';
+                       }
 
+                       // Shortcut
+                       if ($GLOBALS['BE_USER']->mayMakeShortcut()) {
+                               $buttons['shortcut'] = $this->doc->makeShortcutIcon('P', '', $this->MCONF['name'], 1);
+                       }
+               }
 
+               return $buttons;
+       }
 
+       /**
+        * Checks access for element
+        *
+        * @param       string          Table name
+        * @param       integer         Record uid
+        * @return      void
+        */
+       function checkEditAccess($table,$uid)   {
+               global $BE_USER;
+
+               $calcPRec = t3lib_BEfunc::getRecord($table,$uid);
+               t3lib_BEfunc::fixVersioningPid($table,$calcPRec);
+               if (is_array($calcPRec))        {
+                       if ($table=='pages')    {       // If pages:
+                               $CALC_PERMS = $BE_USER->calcPerms($calcPRec);
+                               $hasAccess = $CALC_PERMS&2 ? TRUE : FALSE;
+                       } else {
+                               $CALC_PERMS = $BE_USER->calcPerms(t3lib_BEfunc::getRecord('pages',$calcPRec['pid']));   // Fetching pid-record first.
+                               $hasAccess = $CALC_PERMS&16 ? TRUE : FALSE;
+                       }
 
+                               // Check internals regarding access:
+                       if ($hasAccess) {
+                               $hasAccess = $BE_USER->recordEditAccessInternals($table, $calcPRec);
+                       }
+               } else $hasAccess = FALSE;
 
+               return $hasAccess;
+       }
+}
 
 
+if (defined('TYPO3_MODE') && $TYPO3_CONF_VARS[TYPO3_MODE]['XCLASS']['typo3/wizard_rte.php'])   {
+       include_once($TYPO3_CONF_VARS[TYPO3_MODE]['XCLASS']['typo3/wizard_rte.php']);
+}
 
 
 
@@ -227,4 +338,5 @@ $SOBE = t3lib_div::makeInstance('SC_wizard_rte');
 $SOBE->init();
 $SOBE->main();
 $SOBE->printContent();
+
 ?>
\ No newline at end of file