kiduc
/
bibiuc.com
1
0
Fork 0
Code Issues 0 Pull Requests 0 Projects 0 Releases 59 Wiki Activity
Browse Source

User role support 

User role support
pull/31/merge
Danang Probo Sayekti 11 years ago
parent
b47cf3e363
commit
c7c23866bb
15 changed files with 235 additions and 79 deletions
Unified View
Diff Options
Show Stats Download Patch File Download Diff File
  1. +3
    -1
      system/admin/admin.php
  2. +12
    -4
      system/admin/views/delete-page.html.php
  3. +12
    -4
      system/admin/views/delete-post.html.php
  4. +1
    -0
      system/admin/views/denied.html.php
  5. +6
    -1
      system/admin/views/edit-page.html.php
  6. +6
    -1
      system/admin/views/edit-post.html.php
  7. +1
    -15
      system/admin/views/layout.html.php
  8. +3
    -2
      system/admin/views/posts-list.html.php
  9. +37
    -0
      system/admin/views/user-posts.html.php
  10. +115
    -19
      system/htmly.php
  11. +35
    -0
      system/includes/functions.php
  12. +1
    -15
      themes/clean/layout.html.php
  13. +1
    -1
      themes/clean/post.html.php
  14. +1
    -15
      themes/default/layout.html.php
  15. +1
    -1
      themes/default/post.html.php

+ 3
- 1
system/admin/admin.php View File

@ -5,7 +5,9 @@ function user($key, $user=null) {
static $_config = array(); static $_config = array();
if (file_exists($value)) { if (file_exists($value)) {
$_config = parse_ini_file($value, true); $_config = parse_ini_file($value, true);
return $_config[$key];
if(!empty($_config[$key])) {
return $_config[$key];
}
} }
} }


+ 12
- 4
system/admin/views/delete-page.html.php View File

@ -1,5 +1,7 @@
<?php <?php
$destination = $_GET['destination'];
if(isset($_GET['destination'])) {
$destination = $_GET['destination'];
}
$url = $p->file; $url = $p->file;
$dir = substr($url, 0, strrpos($url, '/')); $dir = substr($url, 0, strrpos($url, '/'));
@ -8,11 +10,17 @@
$post = site_url() . $oldmd; $post = site_url() . $oldmd;
if($destination == 'post') {
$back = $post;
if(isset($destination)) {
if($destination == 'post') {
$back = $post;
}
else {
$back = site_url() . $destination;
}
} }
else { else {
$back = site_url() . $destination;
$back = site_url();
} }
?> ?>


+ 12
- 4
system/admin/views/delete-post.html.php View File

@ -1,5 +1,7 @@
<?php <?php
$destination = $_GET['destination'];
if(isset($_GET['destination'])) {
$destination = $_GET['destination'];
}
$url = $p->file; $url = $p->file;
$oldurl = explode('_', $url); $oldurl = explode('_', $url);
$oldtag = $oldurl[1]; $oldtag = $oldurl[1];
@ -15,11 +17,17 @@
// The post URL // The post URL
$post = site_url().date('Y/m', $postdate).'/'.$oldmd; $post = site_url().date('Y/m', $postdate).'/'.$oldmd;
if($destination == 'post') {
$back = $post;
if(isset($destination)) {
if($destination == 'post') {
$back = $post;
}
else {
$back = site_url() . $destination;
}
} }
else { else {
$back = site_url() . $destination;
$back = site_url();
} }
?> ?>


+ 1
- 0
system/admin/views/denied.html.php View File

@ -0,0 +1 @@
<h1>You don't have permission to access this page</h1>

+ 6
- 1
system/admin/views/edit-page.html.php View File

@ -17,7 +17,12 @@
$oldcontent = ltrim($arr[0]); $oldcontent = ltrim($arr[0]);
} }
$destination = $_GET['destination'];
if(isset($_GET['destination'])) {
$destination = $_GET['destination'];
}
else {
$destination = 'admin';
}
$dir = substr($url, 0, strrpos($url, '/')); $dir = substr($url, 0, strrpos($url, '/'));
$oldurl = str_replace($dir . '/','',$url); $oldurl = str_replace($dir . '/','',$url);
$oldmd = str_replace('.md','',$oldurl); $oldmd = str_replace('.md','',$oldurl);


+ 6
- 1
system/admin/views/edit-post.html.php View File

@ -25,7 +25,12 @@
$oldmd = str_replace('.md','',$oldurl[2]); $oldmd = str_replace('.md','',$oldurl[2]);
$destination = $_GET['destination'];
if(isset($_GET['destination'])) {
$destination = $_GET['destination'];
}
else {
$destination = 'admin';
}
$replaced = substr($oldurl[0], 0,strrpos($oldurl[0], '/')) . '/'; $replaced = substr($oldurl[0], 0,strrpos($oldurl[0], '/')) . '/';
$dt = str_replace($replaced,'',$oldurl[0]); $dt = str_replace($replaced,'',$oldurl[0]);
$t = str_replace('-','',$dt); $t = str_replace('-','',$dt);


+ 1
- 15
system/admin/views/layout.html.php View File

@ -23,21 +23,7 @@
<meta content="<?php echo config('blog.title') ?>" itemprop="name"/> <meta content="<?php echo config('blog.title') ?>" itemprop="name"/>
<meta content="<?php echo config('blog.description')?>" itemprop="description"/> <meta content="<?php echo config('blog.description')?>" itemprop="description"/>
</div> </div>
<?php if(login()) {?>
<style> #outer-wrapper{ padding-top:30px;} @media all and (max-width: 550px) {#outer-wrapper{ padding-top:60px;}}</style>
<div id="toolbar">
<ul>
<li><a href="<?php echo site_url() ?>">Home</a></li>
<li><a href="<?php echo site_url() ?>admin">Admin</a></li>
<li><a href="<?php echo site_url() ?>admin/posts">Posts</a></li>
<li><a href="<?php echo site_url() ?>add/post">Add post</a></li>
<li><a href="<?php echo site_url() ?>add/page">Add page</a></li>
<li><a href="<?php echo site_url() ?>edit/profile">Edit profile</a></li>
<li><a href="<?php echo site_url() ?>admin/import">Import</a></li>
<li><a href="<?php echo site_url() ?>logout">Logout</a></li>
</ul>
</div>
<?php } ?>
<?php if(login()) { toolbar();} ?>
<div id="outer-wrapper"> <div id="outer-wrapper">
<div id="menu-wrapper"> <div id="menu-wrapper">
<div class="container"> <div class="container">


+ 3
- 2
system/admin/views/posts-list.html.php View File

@ -1,7 +1,7 @@
<h2 class="post-index">Your posts</h2>
<h2 class="post-index"><?php echo $heading?></h2>
<?php if(!empty($posts)) {?> <?php if(!empty($posts)) {?>
<table class="post-list"> <table class="post-list">
<tr><th>Title</th><th>Published</th><th>Tag</th><th>Operations</th></tr>
<tr><th>Title</th><th>Published</th><th>Author</th><th>Tag</th><th>Operations</th></tr>
<?php $i = 0; $len = count($posts);?> <?php $i = 0; $len = count($posts);?>
<?php foreach($posts as $p):?> <?php foreach($posts as $p):?>
<?php <?php
@ -19,6 +19,7 @@
<tr> <tr>
<td><a target="_blank" href="<?php echo $p->url ?>"><?php echo $p->title ?></a></td> <td><a target="_blank" href="<?php echo $p->url ?>"><?php echo $p->title ?></a></td>
<td><?php echo date('d F Y', $p->date) ?></td> <td><?php echo date('d F Y', $p->date) ?></td>
<td><a target="_blank" href="<?php echo $p->authorurl ?>"><?php echo $p->author ?></a></td>
<td><?php echo $p->tag ?></td> <td><?php echo $p->tag ?></td>
<td><a href="<?php echo $p->url ?>/edit?destination=admin/posts">Edit</a> <a href="<?php echo $p->url ?>/delete?destination=admin/posts">Delete</a></td> <td><a href="<?php echo $p->url ?>/edit?destination=admin/posts">Edit</a> <a href="<?php echo $p->url ?>/delete?destination=admin/posts">Delete</a></td>
</tr> </tr>


+ 37
- 0
system/admin/views/user-posts.html.php View File

@ -0,0 +1,37 @@
<h2 class="post-index"><?php echo $heading?></h2>
<?php if(!empty($posts)) {?>
<table class="post-list">
<tr><th>Title</th><th>Published</th><th>Tag</th><th>Operations</th></tr>
<?php $i = 0; $len = count($posts);?>
<?php foreach($posts as $p):?>
<?php
if ($i == 0) {
$class = 'first';
}
elseif ($i == $len - 1) {
$class = 'last';
}
else {
$class = '';
}
$i++;
?>
<tr>
<td><a target="_blank" href="<?php echo $p->url ?>"><?php echo $p->title ?></a></td>
<td><?php echo date('d F Y', $p->date) ?></td>
<td><?php echo $p->tag ?></td>
<td><a href="<?php echo $p->url ?>/edit?destination=admin/mine">Edit</a> <a href="<?php echo $p->url ?>/delete?destination=admin/mine">Delete</a></td>
</tr>
<?php endforeach;?>
</table>
<?php if (!empty($pagination['prev']) || !empty($pagination['next'])):?>
<div class="pager">
<?php if (!empty($pagination['prev'])):?>
<span><a href="?page=<?php echo $page-1?>" class="pagination-arrow newer" rel="prev">Newer</a></span>
<?php endif;?>
<?php if (!empty($pagination['next'])):?>
<span><a href="?page=<?php echo $page+1?>" class="pagination-arrow older" rel="next">Older</a></span>
<?php endif;?>
</div>
<?php endif;?>
<?php } else { echo 'No posts found!'; }?>

+ 115
- 19
system/htmly.php View File

@ -155,6 +155,9 @@ get('/:year/:month/:name', function($year, $month, $name){
// Edit blog post // Edit blog post
get('/:year/:month/:name/edit', function($year, $month, $name){ get('/:year/:month/:name/edit', function($year, $month, $name){
$user = $_SESSION['user'];
$role = user('role', $user);
if(login()) { if(login()) {
config('views.root', 'system/admin/views'); config('views.root', 'system/admin/views');
@ -166,14 +169,26 @@ get('/:year/:month/:name/edit', function($year, $month, $name){
$current = $post['current']; $current = $post['current'];
render('edit-post',array(
'title' => $current->title .' - ' . config('blog.title'),
'p' => $current,
'canonical' => $current->url,
'description' => $description = get_description($current->body),
'bodyclass' => 'editpost',
'breadcrumb' => '<span typeof="v:Breadcrumb"><a property="v:title" rel="v:url" href="' . config('site.url') . '">' .config('breadcrumb.home'). '</a></span> &#187; '. $current->tagb . ' &#187; ' . $current->title
));
if($user === $current->author || $role === 'admin') {
render('edit-post',array(
'title' => $current->title .' - ' . config('blog.title'),
'p' => $current,
'canonical' => $current->url,
'description' => $description = get_description($current->body),
'bodyclass' => 'editpost',
'breadcrumb' => '<span typeof="v:Breadcrumb"><a property="v:title" rel="v:url" href="' . config('site.url') . '">' .config('breadcrumb.home'). '</a></span> &#187; '. $current->tagb . ' &#187; ' . $current->title
));
}
else {
render('denied',array(
'title' => $current->title .' - ' . config('blog.title'),
'p' => $current,
'canonical' => $current->url,
'description' => $description = get_description($current->body),
'bodyclass' => 'denied',
'breadcrumb' => '<span typeof="v:Breadcrumb"><a property="v:title" rel="v:url" href="' . config('site.url') . '">' .config('breadcrumb.home'). '</a></span> &#187; '. $current->tagb . ' &#187; ' . $current->title
));
}
} }
else { else {
$login = site_url() . 'login'; $login = site_url() . 'login';
@ -232,6 +247,10 @@ post('/:year/:month/:name/edit', function() {
// Delete blog post // Delete blog post
get('/:year/:month/:name/delete', function($year, $month, $name){ get('/:year/:month/:name/delete', function($year, $month, $name){
$user = $_SESSION['user'];
$role = user('role', $user);
if(login()) { if(login()) {
config('views.root', 'system/admin/views'); config('views.root', 'system/admin/views');
@ -243,14 +262,26 @@ get('/:year/:month/:name/delete', function($year, $month, $name){
$current = $post['current']; $current = $post['current'];
render('delete-post',array(
'title' => $current->title .' - ' . config('blog.title'),
'p' => $current,
'canonical' => $current->url,
'description' => $description = get_description($current->body),
'bodyclass' => 'deletepost',
'breadcrumb' => '<span typeof="v:Breadcrumb"><a property="v:title" rel="v:url" href="' . config('site.url') . '">' .config('breadcrumb.home'). '</a></span> &#187; '. $current->tagb . ' &#187; ' . $current->title
));
if($user === $current->author || $role === 'admin') {
render('delete-post',array(
'title' => $current->title .' - ' . config('blog.title'),
'p' => $current,
'canonical' => $current->url,
'description' => $description = get_description($current->body),
'bodyclass' => 'deletepost',
'breadcrumb' => '<span typeof="v:Breadcrumb"><a property="v:title" rel="v:url" href="' . config('site.url') . '">' .config('breadcrumb.home'). '</a></span> &#187; '. $current->tagb . ' &#187; ' . $current->title
));
}
else {
render('denied',array(
'title' => $current->title .' - ' . config('blog.title'),
'p' => $current,
'canonical' => $current->url,
'description' => $description = get_description($current->body),
'bodyclass' => 'deletepost',
'breadcrumb' => '<span typeof="v:Breadcrumb"><a property="v:title" rel="v:url" href="' . config('site.url') . '">' .config('breadcrumb.home'). '</a></span> &#187; '. $current->tagb . ' &#187; ' . $current->title
));
}
} }
else { else {
$login = site_url() . 'login'; $login = site_url() . 'login';
@ -370,8 +401,71 @@ post('/edit/profile', function() {
}); });
get('/admin/posts', function () {
$user = $_SESSION['user'];
$role = user('role', $user);
if(login()) {
config('views.root', 'system/admin/views');
if($role === 'admin') {
config('views.root', 'system/admin/views');
$page = from($_GET, 'page');
$page = $page ? (int)$page : 1;
$perpage = 20;
$posts = get_posts(null, $page, $perpage);
$total = '';
if(empty($posts) || $page < 1){
// a non-existing page
render('no-posts',array(
'title' => config('blog.title'),
'canonical' => site_url(),
'description' => config('blog.description'),
'bodyclass' => 'noposts',
));
die;
}
$tl = config('blog.tagline');
if($tl){ $tagline = ' - ' . $tl;} else {$tagline = '';}
render('posts-list',array(
'title' => config('blog.title') . $tagline,
'heading' => 'All blog posts',
'page' => $page,
'posts' => $posts,
'canonical' => config('site.url'),
'description' => config('blog.description'),
'bodyclass' => 'all-posts',
'breadcrumb' => '',
'pagination' => has_pagination($total, $perpage, $page)
));
}
else {
render('denied',array(
'title' => config('blog.title'),
'canonical' => config('site.url'),
'description' => config('blog.description'),
'bodyclass' => 'denied',
'breadcrumb' => '',
));
}
}
else {
$login = site_url() . 'login';
header("location: $login");
}
});
// The author page // The author page
get('/admin/posts', function(){
get('/admin/mine', function(){
if(login()) { if(login()) {
@ -397,9 +491,10 @@ get('/admin/posts', function(){
} }
if(empty($posts) || $page < 1){ if(empty($posts) || $page < 1){
render('posts-list',array(
render('user-posts',array(
'title' => 'All posts by: '. $bio->title .' - ' . config('blog.title'), 'title' => 'All posts by: '. $bio->title .' - ' . config('blog.title'),
'page' => $page, 'page' => $page,
'heading' => 'My posts',
'posts' => null, 'posts' => null,
'bio' => $bio->body, 'bio' => $bio->body,
'name' => $bio->title, 'name' => $bio->title,
@ -412,8 +507,9 @@ get('/admin/posts', function(){
die; die;
} }
render('posts-list',array(
render('user-posts',array(
'title' => 'All posts by: '. $bio->title .' - ' . config('blog.title'), 'title' => 'All posts by: '. $bio->title .' - ' . config('blog.title'),
'heading' => 'My posts',
'page' => $page, 'page' => $page,
'posts' => $posts, 'posts' => $posts,
'bio' => $bio->body, 'bio' => $bio->body,


+ 35
- 0
system/includes/functions.php View File

@ -769,6 +769,20 @@ function get_thumbnail($text) {
} }
// Return edit tab on post
function tab($p) {
$user = $_SESSION['user'];
$role = user('role', $user);
if(isset($p->author)) {
if ($user === $p->author || $role === 'admin') {
echo '<div class="tab"><a href="' . $p->url . '">View</a><a href="' . $p->url .'/edit?destination=post">Edit</a></div>';
}
}
else {
echo '<div class="tab"><a href="' . $p->url . '">View</a><a href="' . $p->url .'/edit?destination=post">Edit</a></div>';
}
}
// Use base64 encode image to speed up page load time. // Use base64 encode image to speed up page load time.
function base64_encode_image($filename=string,$filetype=string) { function base64_encode_image($filename=string,$filetype=string) {
if ($filename) { if ($filename) {
@ -1263,4 +1277,25 @@ function generate_opml(){
// Turn an array of posts into a JSON // Turn an array of posts into a JSON
function generate_json($posts){ function generate_json($posts){
return json_encode($posts); return json_encode($posts);
}
// Return toolbar
function toolbar() {
$user = $_SESSION['user'];
$role = user('role', $user);
echo <<<EOF
<style> #outer-wrapper{ padding-top:30px;} @media all and (max-width: 550px) {#outer-wrapper{ padding-top:60px;}}</style>
EOF;
echo '<div id="toolbar"><ul>';
echo '<li><a href="'.site_url().'admin">Admin</a></li>';
if ($role === 'admin') {echo '<li><a href="'.site_url().'admin/posts">Posts</a></li>';}
echo '<li><a href="'.site_url().'admin/mine">Mine</a></li>';
echo '<li><a href="'.site_url().'add/post">Add post</a></li>';
echo '<li><a href="'.site_url().'add/page">Add page</a></li>';
echo '<li><a href="'.site_url().'edit/profile">Edit profile</a></li>';
echo '<li><a href="'.site_url().'admin/import">Import</a></li>';
echo '<li><a href="'.site_url().'logout">Logout</a></li>';
echo '</ul></div>';
} }

+ 1
- 15
themes/clean/layout.html.php View File

@ -23,21 +23,7 @@
<meta content="<?php echo config('blog.title') ?>" itemprop="name"/> <meta content="<?php echo config('blog.title') ?>" itemprop="name"/>
<meta content="<?php echo config('blog.description')?>" itemprop="description"/> <meta content="<?php echo config('blog.description')?>" itemprop="description"/>
</div> </div>
<?php if(login()) {?>
<style> aside{ padding-top:40px;} @media all and (max-width: 550px) {aside{ padding-top:70px;}}</style>
<div id="toolbar">
<ul>
<li><a href="<?php echo site_url() ?>">Home</a></li>
<li><a href="<?php echo site_url() ?>admin">Admin</a></li>
<li><a href="<?php echo site_url() ?>admin/posts">Posts</a></li>
<li><a href="<?php echo site_url() ?>add/post">Add post</a></li>
<li><a href="<?php echo site_url() ?>add/page">Add page</a></li>
<li><a href="<?php echo site_url() ?>edit/profile">Edit profile</a></li>
<li><a href="<?php echo site_url() ?>admin/import">Import</a></li>
<li><a href="<?php echo site_url() ?>logout">Logout</a></li>
</ul>
</div>
<?php } ?>
<?php if(login()) { toolbar();} ?>
<aside> <aside>
<h1 class="blog-title"><a href="<?php echo site_url() ?>"><?php echo config('blog.title') ?></a></h1> <h1 class="blog-title"><a href="<?php echo site_url() ?>"><?php echo config('blog.title') ?></a></h1>
<div class="blog-tagline"><p><?php echo config('blog.tagline')?></p></div> <div class="blog-tagline"><p><?php echo config('blog.tagline')?></p></div>


+ 1
- 1
themes/clean/post.html.php View File

@ -1,5 +1,5 @@
<?php if (!empty($breadcrumb)):?><div class="breadcrumb" xmlns:v="http://rdf.data-vocabulary.org/#"><?php echo $breadcrumb ?></div><?php endif;?> <?php if (!empty($breadcrumb)):?><div class="breadcrumb" xmlns:v="http://rdf.data-vocabulary.org/#"><?php echo $breadcrumb ?></div><?php endif;?>
<?php if(login()): ?><div class="tab"><a href="<?php echo $p->url ?>">View</a><a href="<?php echo $p->url ?>/edit?destination=post">Edit</a></div><?php endif;?>
<?php if(login()) { echo tab($p);} ?>
<div class="post" itemprop="blogPost" itemscope="itemscope" itemtype="http://schema.org/BlogPosting"> <div class="post" itemprop="blogPost" itemscope="itemscope" itemtype="http://schema.org/BlogPosting">
<div class="main"> <div class="main">
<?php if ($type == 'blogpost'):?> <?php if ($type == 'blogpost'):?>


+ 1
- 15
themes/default/layout.html.php View File

@ -23,21 +23,7 @@
<meta content="<?php echo config('blog.title') ?>" itemprop="name"/> <meta content="<?php echo config('blog.title') ?>" itemprop="name"/>
<meta content="<?php echo config('blog.description')?>" itemprop="description"/> <meta content="<?php echo config('blog.description')?>" itemprop="description"/>
</div> </div>
<?php if(login()) {?>
<style> #outer-wrapper{ padding-top:30px;} @media all and (max-width: 550px) {#outer-wrapper{ padding-top:60px;}}</style>
<div id="toolbar">
<ul>
<li><a href="<?php echo site_url() ?>">Home</a></li>
<li><a href="<?php echo site_url() ?>admin">Admin</a></li>
<li><a href="<?php echo site_url() ?>admin/posts">Posts</a></li>
<li><a href="<?php echo site_url() ?>add/post">Add post</a></li>
<li><a href="<?php echo site_url() ?>add/page">Add page</a></li>
<li><a href="<?php echo site_url() ?>edit/profile">Edit profile</a></li>
<li><a href="<?php echo site_url() ?>admin/import">Import</a></li>
<li><a href="<?php echo site_url() ?>logout">Logout</a></li>
</ul>
</div>
<?php } ?>
<?php if(login()) { toolbar();} ?>
<div id="outer-wrapper"> <div id="outer-wrapper">
<div id="menu-wrapper"> <div id="menu-wrapper">
<div class="container"> <div class="container">


+ 1
- 1
themes/default/post.html.php View File

@ -1,5 +1,5 @@
<?php if (!empty($breadcrumb)):?><div class="breadcrumb" xmlns:v="http://rdf.data-vocabulary.org/#"><?php echo $breadcrumb ?></div><?php endif;?> <?php if (!empty($breadcrumb)):?><div class="breadcrumb" xmlns:v="http://rdf.data-vocabulary.org/#"><?php echo $breadcrumb ?></div><?php endif;?>
<?php if(login()): ?><div class="tab"><a href="<?php echo $p->url ?>">View</a><a href="<?php echo $p->url ?>/edit?destination=post">Edit</a></div><?php endif;?>
<?php if(login()) { echo tab($p);} ?>
<div class="post" itemprop="blogPost" itemscope="itemscope" itemtype="http://schema.org/BlogPosting"> <div class="post" itemprop="blogPost" itemscope="itemscope" itemtype="http://schema.org/BlogPosting">
<div class="main"> <div class="main">
<?php if ($type == 'blogpost'):?> <?php if ($type == 'blogpost'):?>


Write Preview
Loading…
Cancel
Save