de/d8f/externalsite_2admin_2index_8php_source.html

<?php

/* Copyright (C) 2003      Rodolphe Quiedeville <rodolphe@quiedeville.org>

 * Copyright (C) 2003      Eric Seigne          <erics@rycks.com>

 * Copyright (C) 2004-2010 Laurent Destailleur  <eldy@users.sourceforge.net>

 * Copyright (C) 2004      Sebastien Di Cintio  <sdicintio@ressource-toi.org>

 * Copyright (C) 2004      Benoit Mortier       <benoit.mortier@opensides.be>

 * Copyright (C) 2011-2012 Juanjo Menent    <jmenent@2byte.es>

 * Copyright (C) 2024       Frédéric France         <frederic.france@free.fr>

 *

 * This program is free software; you can redistribute it and/or modify

 * it under the terms of the GNU General Public License as published by

 * the Free Software Foundation; either version 3 of the License, or

 * (at your option) any later version.

 *

 * This program is distributed in the hope that it will be useful,

 * but WITHOUT ANY WARRANTY; without even the implied warranty of

 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the

 * GNU General Public License for more details.

 *

 * You should have received a copy of the GNU General Public License

 * along with this program. If not, see <https://www.gnu.org/licenses/>.

 */


if (!defined('NOSCANPOSTFORINJECTION')) {

  define('NOSCANPOSTFORINJECTION', '1'); // Do not check anti CSRF attack test

}


// Load Dolibarr environment

require '../../main.inc.php';

require_once DOL_DOCUMENT_ROOT.'/core/lib/admin.lib.php';


// Load translation files required by the page

$langs->loadLangs(array('admin', 'other', 'externalsite'));


if (!$user->admin) {

  accessforbidden();

}


$action = GETPOST('action', 'aZ09');


/*

 * Actions

 */


// Sauvegardes parameters

if ($action == 'update') {

  $i = 0;


  $db->begin();


  $label  = GETPOST('EXTERNALSITE_LABEL', 'alphanohtml');


  // exturl can be an url or a HTML string

  $exturl = GETPOST('EXTERNALSITE_URL', 'restricthtml');

  $exturl = dol_string_onlythesehtmltags($exturl, 1, 1, 0, 1, array(), 1);

  $exturl = dol_string_onlythesehtmlattributes($exturl);


  $i += dolibarr_set_const($db, 'EXTERNALSITE_LABEL', trim($label), 'chaine', 0, '', $conf->entity);

  $i += dolibarr_set_const($db, 'EXTERNALSITE_URL', trim($exturl), 'chaine', 0, '', $conf->entity);


  if ($i >= 2) {

    $db->commit();

    setEventMessages($langs->trans("SetupSaved"), null, 'mesgs');

  } else {

    $db->rollback();

    setEventMessages($db->lasterror(), null, 'errors');

  }

}


llxHeader('', '', '', '', 0, 0, '', '', '', 'mod-externalsite page-index');


$linkback = '<a href="'.DOL_URL_ROOT.'/admin/modules.php?restore_lastsearch_values=1">'.$langs->trans("BackToModuleList").'</a>';

print load_fiche_titre($langs->trans("ExternalSiteSetup"), $linkback, 'title_setup');

print '<br>';


print '<span class="opacitymedium">'.$langs->trans("Module100Desc")."</span><br>\n";

print '<br>';


print '<form name="externalsiteconfig" action="'.$_SERVER["PHP_SELF"].'" method="POST">';

print '<input type="hidden" name="token" value="'.newToken().'">';

print '<input type="hidden" name="action" value="update">';

print "<table class=\"noborder\" width=\"100%\">";


print "<tr class=\"liste_titre\">";

print "<td width=\"30%\">".$langs->trans("Parameter")."</td>";

print "<td>".$langs->trans("Value")."</td>";

print "<td>".$langs->trans("Examples")."</td>";

print "</tr>";


print '<tr class="oddeven">';

print '<td class="fieldrequired">'.$langs->trans("Label")."</td>";

print "<td><input type=\"text\" class=\"flat\" name=\"EXTERNALSITE_LABEL\" value=\"".(GETPOST('EXTERNALSITE_LABEL', 'alpha') ? GETPOST('EXTERNALSITE_LABEL', 'alpha') : ((!getDolGlobalString('EXTERNALSITE_LABEL') || getDolGlobalString('EXTERNALSITE_LABEL') == 'ExternalSite') ? '' : $conf->global->EXTERNALSITE_LABEL))."\" size=\"12\"></td>";

print "<td>".$langs->trans("ExampleMyMenuEntry")."</td>";

print "</tr>";


print '<tr class="oddeven">';

print '<td class="fieldrequired">'.$langs->trans("ExternalSiteURL")."</td>";

print '<td><textarea class="flat minwidth500" name="EXTERNALSITE_URL">';


$exturl = GETPOST('EXTERNALSITE_URL', 'restricthtml');

$exturl = dol_string_onlythesehtmltags($exturl, 1, 1, 0, 1, array(), 1);

$exturl = dol_string_onlythesehtmlattributes($exturl);


print(GETPOSTISSET('EXTERNALSITE_URL') ? $exturl : (!getDolGlobalString('EXTERNALSITE_URL') ? '' : $conf->global->EXTERNALSITE_URL));

print '</textarea></td>';

print "<td>http://localhost/myurl/";

print "<br>https://wikipedia.org/";

print "<br>&lt;iframe&gt;...&lt;/iframe&gt;";

print "</td>";

print "</tr>";


print "</table>";


print $form->buttonsSaveCancel("Save", '');


print "</form>\n";


llxFooter();


$db->close();

dolibarr_set_const
dolibarr_set_const($db, $name, $value, $type='chaine', $visible=0, $note='', $entity=1)
Insert a parameter (key,value) into database (delete old key then insert it again).
Definition admin.lib.php:671

llxHeader
if(!defined('NOREQUIRESOC')) if(!defined( 'NOREQUIRETRAN')) if(!defined('NOTOKENRENEWAL')) if(!defined( 'NOREQUIREMENU')) if(!defined('NOREQUIREHTML')) if(!defined( 'NOREQUIREAJAX')) llxHeader($head='', $title='', $help_url='', $target='', $disablejs=0, $disablehead=0, $arrayofjs='', $arrayofcss='', $morequerystring='', $morecssonbody='', $replacemainareaby='', $disablenofollow=0, $disablenoindex=0)
Empty header.
Definition wrapper.php:71

llxFooter
llxFooter()
Footer empty.
Definition document.php:107

load_fiche_titre
load_fiche_titre($title, $morehtmlright='', $picto='generic', $pictoisfullpath=0, $id='', $morecssontable='', $morehtmlcenter='')
Load a title with picto.
Definition functions.lib.php:6367

setEventMessages
setEventMessages($mesg, $mesgs, $style='mesgs', $messagekey='', $noduplicate=0, $attop=0)
Set event messages in dol_events session object.
Definition functions.lib.php:9981

dol_string_onlythesehtmltags
dol_string_onlythesehtmltags($stringtoclean, $cleanalsosomestyles=1, $removeclassattribute=1, $cleanalsojavascript=0, $allowiframe=0, $allowed_tags=array(), $allowlink=0, $allowscript=0, $allowstyle=0)
Clean a string to keep only desirable HTML tags.
Definition functions.lib.php:8102

dol_string_onlythesehtmlattributes
dol_string_onlythesehtmlattributes($stringtoclean, $allowed_attributes=null)
Clean a string from some undesirable HTML tags.
Definition functions.lib.php:8183

GETPOST
GETPOST($paramname, $check='alphanohtml', $method=0, $filter=null, $options=null, $noreplace=0)
Return value of a param into GET or POST supervariable.
Definition functions.lib.php:792

getDolGlobalString
getDolGlobalString($key, $default='')
Return a Dolibarr global constant string value.
Definition functions.lib.php:217

$conf
global $conf
The following vars must be defined: $type2label $form $conf, $lang, The following vars may also be de...
Definition member.php:79

accessforbidden
accessforbidden($message='', $printheader=1, $printfooter=1, $showonlymessage=0, $params=null)
Show a message to say access is forbidden and stop program.
Definition security.lib.php:1233