<?php

include("admin-load.php"); // Load config

// Load page

if(isset($_GET['page'])) // Page is set?
{
    if(is_numeric($_GET['page'])) // Numeric?
    {
        if(defined("USER_LEVEL_ADMINISTRATOR") OR defined("USER_LEVEL_EDITOR")) // Allow to make a post?
        {
            $Page = $DB->query_fetchDB("
                SELECT post_title, post_content, post_parent, post_status, post_comment_status
                FROM ot_posts
                WHERE id = '" . $_GET['page'] . "' &&
                      post_type = 'page' &&
                      (post_status != 'privé' OR post_author = " . USER_ID . ")
                ORDER BY id DESC
                LIMIT 1
            ");
        }
        elseif(defined("USER_LEVEL_AUTHOR")) // Or the writer himself?
        {
            $Page = $DB->query_fetchDB("
                SELECT post_title, post_content, post_parent, post_status, post_comment_status
                FROM ot_posts
                WHERE id = '" . $_GET['page'] . "' &&
                      post_author = '" . USER_ID . "' &&
                      post_type = 'page'
                ORDER BY id DESC
                LIMIT 1
            ");
        }

        if($Page) // Page exists?
        {
            if($_SERVER['REQUEST_METHOD'] == "POST") // New post?
            {
                if( ! empty($_POST['post_status']) && ! empty($_POST['post_comment_status']) && isset($_POST['post_parent']) && isset($_POST['post_title']) && isset($_POST['post_content'])) // Required fields are set?
                {
                    // Generating a user-friendly URL

                	$_POST['post_url'] = strip_tags($_POST['post_title']);
                	$_POST['post_url'] = preg_replace('|%([a-fA-F0-9][a-fA-F0-9])|', '---$1---', $_POST['post_url']);
                	$_POST['post_url'] = str_replace('%', '', $_POST['post_url']);
                	$_POST['post_url'] = preg_replace('|---([a-fA-F0-9][a-fA-F0-9])---|', '%$1', $_POST['post_url']);
                	$_POST['post_url'] = strtolower($_POST['post_url']);
                	$_POST['post_url'] = preg_replace('/&.+?;/', '', $_POST['post_url']); // kill entities
                	$_POST['post_url'] = preg_replace('/[^%a-z0-9 _-]/', '', $_POST['post_url']);
                	$_POST['post_url'] = preg_replace('/\s+/', '-', $_POST['post_url']);
                	$_POST['post_url'] = preg_replace('|-+|', '-', $_POST['post_url']);
                	$_POST['post_url'] = trim($_POST['post_url'], '-');

                    // Same post title twice?

                    $Double = $DB->query_num_rowsDB("
                        SELECT id
                        FROM ot_posts
                        WHERE post_url = '" . addslashes($_POST['post_url']) . "'
                    "); // Check in DB

                    if($Double > 0) // Double?
                    {
                        $_POST['post_url'] = $_POST['post_url'] . "-" . ($Double + 1); // Add number at the end
                    }

                    // Check if user is allow to publish

                    if( ! (defined("USER_LEVEL_ADMINISTRATOR") OR  defined("USER_LEVEL_EDITOR")) && ($_POST['post_status'] == "gepubliceerd"))
                    {
                        $_POST['post_status'] = "klad";
                    }

                    // We'll update the post in DB

                    $DB->query_execDB("
                        UPDATE ot_posts
                        SET post_title = '" . addslashes($_POST['post_title']) . "',
                            post_content = '" . addslashes($_POST['post_content']) . "',
                            post_modified = NOW(),
                            post_url = '" . $_POST['post_url'] . "',
                            post_parent = '" . addslashes($_POST['post_parent']) . "',
                            post_status = '" . addslashes($_POST['post_status']) . "',
                            post_comment_status = '" . addslashes($_POST['post_comment_status']) . "'
                        WHERE id = '" . $_GET['page'] . "'
                        ORDER BY id DESC
                        LIMIT 1
                    ");

                    // Everything updated, let's edit !

                    header("Location: page-edit.php?page=" . $_GET['page']);
                }
                else
                {
                    header("Location: err-403.php"); // Error
                }
            }

            $PageTitle = " &raquo; Schrijven &raquo; Pagina bewerken"; // Set page title

            include("admin-header.php"); // Load header

            ?>

            <div class="clTabs">
                <a href="post-new.php" title="Nieuw Bericht"><img src="images/newspaper_add.png" alt="Nieuw bericht" />Nieuw bericht</a>
                <a href="page-new.php" title="Nieuwe pagina"><img src="images/page_add.png" alt="Nieuwe pagina" />Nieuwe pagina</a>
                <a href="archive-list.php" title="Archief"><img src="images/folder_table.png" alt="Archief" />Archief</a>
                <?php if(defined("USER_LEVEL_ADMINISTRATOR")) { echo '<a href="categories-list.php" title="Categorieën"><img src="images/book.png" alt="Categorieën" />Categorieën</a>'; } ?>
            </div>

            <div class="clPage">
                <div id="idMessage" class="clMessageSuccess">
                    De pagina werd succesvol opgeslaan.
                </div>
                <?php get_form("post", ""); ?>
                    <h1>Pagina bewerken</h1>
                    <div class="clInfoFloat">
                        <div class="clInfo">
                            <h3>Hoofdpagina:</h3>
                            <div style="max-height: 250px; overflow: auto;">
                                <ul>
                                    <li><?php if($Page['0']['post_parent'] == 0) { get_form_radio("post_parent", 0, "checked"); } else { get_form_radio("post_parent", 0, "unchecked"); } ?> Geen hoofdpagina</li>
                                    <?php

                                    // Function to fetch al pages

                                    function get_subpage($TopPage)
                                    {
                                        global $DB;
                                        global $Page;

                                        $SubPages = $DB->query_fetchDB("
                                            SELECT id, post_title
                                            FROM ot_posts
                                            WHERE post_parent = '" . $TopPage['id'] . "' &&
                                                  post_type = 'page'
                                            ORDER BY post_title ASC
                                        "); // Get subpage

                                        if($SubPages)
                                        {
                                            for($i = 0; $i < count($SubPages); $i++)
                                            {
                                                echo "<ul class=\"clInfoSubList\">";
                                                echo "<li>";

                                                if($SubPages[$i]['id'] == $Page['0']['post_parent'])
                                                {
                                                    get_form_radio("post_parent", $SubPages[$i]['id'], "checked");
                                                }
                                                else
                                                {
                                                    get_form_radio("post_parent", $SubPages[$i]['id'], "unchecked");
                                                }

                                                echo " " .stripslashes($SubPages[$i]['post_title']) . "</li>";

                                                get_subpage($SubPages[$i]);

                                                echo "</ul>";
                                            }

                                            return TRUE;
                                        }
                                        else
                                        {
                                            return FALSE;
                                        }
                                    }

                                    // Fetch pages which have no parent !

                                    $Pages = $DB->query_fetchDB("
                                        SELECT id, post_title
                                        FROM ot_posts
                                        WHERE post_parent = 0 &&
                                              post_type = 'page'
                                        ORDER BY post_title ASC
                                    "); // Fetch pages from DB

                                    if($Pages) // Are there pages?
                                    {
                                        for($i = 0; $i < count($Pages); $i++)
                                        {
                                            echo "<li>";

                                            if($Page['0']['post_parent'] == $Pages[$i]['id'])
                                            {
                                                get_form_radio("post_parent", $Pages[$i]['id'], "checked");
                                                echo " " . $Pages[$i]['post_title'] . "</li>";
                                            }
                                            else
                                            {
                                                get_form_radio("post_parent", $Pages[$i]['id'], "unchecked");
                                                echo " " . $Pages[$i]['post_title'] . "</li>";
                                            }

                                            get_subpage($Pages[$i]);
                                        }
                                    }

                                    ?>
                                </ul>
                            </div>
                        </div>
                        <div class="clInfo">
                            <h3>Pagina status:</h3>
                                <?php

                                if(defined("USER_LEVEL_ADMINISTRATOR") OR defined("USER_LEVEL_EDITOR"))
                                {
                                    if($Page['0']['post_status'] == "gepubliceerd")
                                    {
                                        get_form_radio("post_status", "gepubliceerd", "checked");
                                    }
                                    else
                                    {
                                        get_form_radio("post_status", "gepubliceerd", "unchecked");
                                    }

                                    echo " Gepubliceerd<br />";
                                }
                                else
                                {
                                    if($Page['0']['post_status'] == "goedkeuring")
                                    {
                                        get_form_radio("post_status", "goedkeuring", "checked");
                                    }
                                    else
                                    {
                                        get_form_radio("post_status", "goedkeuring", "unchecked");
                                    }
                                    echo " Goedkeuring<br />";
                                }

                                if($Page['0']['post_status'] == "klad")
                                {
                                    get_form_radio("post_status", "klad", "checked");
                                }
                                else
                                {
                                    get_form_radio("post_status", "klad", "unchecked");
                                }

                                echo " Klad<br />";

                                if($Page['0']['post_status'] == "privé")
                                {
                                    get_form_radio("post_status", "privé", "checked");
                                }
                                else
                                {
                                    get_form_radio("post_status", "privé", "unchecked");
                                }

                                echo " Privé<br />";

                                if($Page['0']['post_status'] == "toekomst")
                                {
                                    get_form_radio("post_status", "toekomst", "checked");
                                }
                                else
                                {
                                    get_form_radio("post_status", "toekomst", "unchecked");
                                }

                                echo " Toekomst";

                                ?>
                        </div>
                        <div class="clInfo">
                            <h3>Reactiemogelijkheden:</h3>
                            <?php

                            if(CONF_COMMENT == 1)
                            {
                                if($Page['0']['post_comment_status'] == "open")
                                {
                                    get_form_radio("post_comment_status", "open", "checked");
                                }
                                else
                                {
                                    get_form_radio("post_comment_status", "open", "unchecked");
                                }

                                echo " Open<br />";

                                if($Page['0']['post_comment_status'] == "gesloten")
                                {
                                    get_form_radio("post_comment_status", "gesloten", "checked");
                                }
                                else
                                {
                                    get_form_radio("post_comment_status", "gesloten", "unchecked");
                                }

                                echo " Gesloten<br />";

                                if($Page['0']['post_comment_status'] == "leden")
                                {
                                    get_form_radio("post_comment_status", "leden", "checked");
                                }
                                else
                                {
                                    get_form_radio("post_comment_status", "leden", "unchecked");
                                }

                                echo " Geregistreerde leden";
                            }
                            elseif(CONF_COMMENT == 0)
                            {
                                get_form_radio("post_comment_status", "open", "unchecked");
                                echo " Open<br />";
                                get_form_radio("post_comment_status", "gesloten", "checked");
                                echo " Gesloten<br />";
                                get_form_radio("post_comment_status", "leden", "unchecked");
                                echo " Geregistreerde leden";
                            }

                            ?>
                        </div>
                    </div>
                    <span class="clPageFormInformation">Titel:</span>
                    <br />
                    <?php get_form_text("post_title", stripslashes($Page['0']['post_title']), 64, ""); ?>
                    <br /><br />
                    <span class="clPageFormInformation">Inhoud:</span>
                    <br />
                    <?php get_form_textarea("post_content", stripslashes($Page['0']['post_content']), "15", "60"); ?>
                    <br />
                    <?php get_form_input("post_submit", "Pagina opslaan"); ?>
                </form>
                <br />
                <div class="clSearch" style="clear: both;">
                    <h2>Bestand toevoegen</h2>
                    Met onderstaande knop "Bestanden toevoegen" kan u bestanden toevoegen aan uw weblog. De duur van het uploaden is afhankelijk van de grootte van het bestand (max. 2MB) en uw verbindingssnelheid.<br />
                    Na het uploadproces zal u automatisch de URL naar het bestand krijgen.
                    <br /><br />
                    <form>
                        <button id="post_file" name="post_file" type="button" style="padding: 5px;" onclick="swfu.selectFiles(); this.blur();"><img src="images/page_add.png" style="padding-right: 10px; vertical-align: bottom;">Bestanden toevoegen</button>
                    </form>
                    <br />
             		<div id="idUploadBox">
                    </div>
                </div>
            </div>

            <?php

            include("admin-footer.php"); // Load footer

        }
        else
        {
            header("Location: err-403.php"); // Not allowed
        }
    }
    else
    {
        header("Location: err-404.php"); // Doesn't exist
    }
}
else
{
    header("Location: err-404.php"); // Doesn't exist
}

?>