dataRecord. Any unrecognised method calls, for example, Title() * and Content(), will be passed along to the data record, * * Subclasses of ContentController are generally instantiated by ModelAsController; this will create * a controller based on the URLSegment action variable, by looking in the SiteTree table. * * @todo Can this be used for anything other than SiteTree controllers? * * @package sapphire * @subpackage control */ class ContentController extends Controller { protected $dataRecord; static $url_handlers = array( 'widget/$ID/$Action' => 'handleWidget' ); /** * The ContentController will take the URLSegment parameter from the URL and use that to look * up a SiteTree record. */ public function __construct($dataRecord = null) { if(!$dataRecord) { $dataRecord = new Page(); if($this->hasMethod("Title")) $dataRecord->Title = $this->Title(); $dataRecord->URLSegment = get_class($this); $dataRecord->ID = -1; } $this->dataRecord = $dataRecord; $this->failover = $this->dataRecord; parent::__construct(); } /** * Return the link to this controller, but force the expanded link to be returned so that form methods and * similar will function properly. * * @return string */ public function Link($action = null) { return $this->data()->Link(($action ? $action : true)); } //----------------------------------------------------------------------------------// // These flexible data methods remove the need for custom code to do simple stuff /* * Return the children of the given page. * $parentRef can be a page number or a URLSegment */ public function ChildrenOf($parentRef) { $SQL_parentRef = Convert::raw2sql($parentRef); $parent = DataObject::get_one('SiteTree', "\"URLSegment\" = '$SQL_parentRef'"); if(!$parent && is_numeric($parentRef)) $parent = DataObject::get_by_id('SiteTree', $SQL_parentRef); if($parent) return $parent->Children(); } public function Page($url) { $SQL_url = Convert::raw2sql($url); return DataObject::get_one('SiteTree', "\"URLSegment\" = '$SQL_url'"); } public function init() { parent::init(); // If we've accessed the homepage as /home/, then we should redirect to /. if($this->dataRecord && $this->dataRecord instanceof SiteTree && RootURLController::should_be_on_root($this->dataRecord) && !$this->urlParams['Action'] && !$_POST && !$_FILES && !Director::redirected_to() ) { $getVars = $_GET; unset($getVars['url']); if($getVars) $url = "?" . http_build_query($getVars); else $url = ""; Director::redirect($url, 301); return; } if($this->dataRecord) $this->dataRecord->extend('contentcontrollerInit', $this); else singleton('SiteTree')->extend('contentcontrollerInit', $this); if(Director::redirected_to()) return; // Check page permissions if($this->dataRecord && $this->URLSegment != 'Security' && !$this->dataRecord->can('View')) { return Security::permissionFailure($this); } // Draft/Archive security check - only CMS users should be able to look at stage/archived content if($this->URLSegment != 'Security' && !Session::get('unsecuredDraftSite') && (Versioned::current_archived_date() || (Versioned::current_stage() && Versioned::current_stage() != 'Live'))) { if(!Permission::check('CMS_ACCESS_CMSMain')) { $link = $this->Link(); $message = _t("ContentController.DRAFT_SITE_ACCESS_RESTRICTION", 'You must log in with your CMS password in order to view the draft or archived content. Click here to go back to the published site.'); return Security::permissionFailure($this, sprintf($message, "$link?stage=Live")); } } } /** * Handles widgets attached to a page through one or more {@link WidgetArea} elements. * Iterated through each $has_one relation with a {@link WidgetArea} * and looks for connected widgets by their database identifier. * Assumes URLs in the following format: /widget/. * * @return RequestHandler */ function handleWidget() { $SQL_id = $this->request->param('ID'); if(!$SQL_id) return false; // find WidgetArea relations $widgetAreaRelations = array(); $hasOnes = $this->dataRecord->has_one(); if(!$hasOnes) return false; foreach($hasOnes as $hasOneName => $hasOneClass) { if($hasOneClass == 'WidgetArea' || ClassInfo::is_subclass_of($hasOneClass, 'WidgetArea')) { $widgetAreaRelations[] = $hasOneName; } } // find widget $widget = null; foreach($widgetAreaRelations as $widgetAreaRelation) { if($widget) break; $widget = $this->dataRecord->$widgetAreaRelation()->Widgets( sprintf('"Widget"."ID" = %d', $SQL_id) )->First(); } if(!$widget) user_error('No widget found', E_USER_ERROR); // find controller $controllerClass = ''; foreach(array_reverse(ClassInfo::ancestry($widget->class)) as $widgetClass) { $controllerClass = "{$widgetClass}_Controller"; if(class_exists($controllerClass)) break; } if(!$controllerClass) user_error( sprintf('No controller available for %s', $widget->class), E_USER_ERROR ); return new $controllerClass($widget); } /** * @uses ErrorPage::response_for() * @return HTTPResponse */ public function httpError($code, $message = null) { return ($resp = ErrorPage::response_for($code, $this->request)) ? $resp : parent::httpError($code, $message); } /** * Get the project name * * @return string */ function project() { global $project; return $project; } /** * Returns the associated database record */ public function data() { return $this->dataRecord; } /*--------------------------------------------------------------------------------*/ /** * Returns a fixed navigation menu of the given level. * @return DataObjectSet */ public function getMenu($level = 1) { if($level == 1) { $result = DataObject::get("SiteTree", "\"ShowInMenus\" = 1 AND \"ParentID\" = 0"); } else { $parent = $this->data(); $stack = array($parent); if($parent) { while($parent = $parent->Parent) { array_unshift($stack, $parent); } } if(isset($stack[$level-2])) $result = $stack[$level-2]->Children(); } $visible = array(); // Remove all entries the can not be viewed by the current user // We might need to create a show in menu permission if(isset($result)) { foreach($result as $page) { if($page->can('view')) { $visible[] = $page; } } } return new DataObjectSet($visible); } public function Menu($level) { return $this->getMenu($level); } /** * Returns the default log-in form. * * @todo Check if here should be returned just the default log-in form or * all available log-in forms (also OpenID...) */ public function LoginForm() { return MemberAuthenticator::get_login_form($this); } public function SilverStripeNavigator() { $member = Member::currentUser(); if(Director::isDev() || Permission::check('CMS_ACCESS_CMSMain')) { Requirements::css(SAPPHIRE_DIR . '/css/SilverStripeNavigator.css'); Requirements::javascript(THIRDPARTY_DIR . '/behaviour.js'); // Requirements::javascript(THIRDPARTY_DIR . '/prototype.js'); Requirements::customScript(<<dataRecord){ $thisPage = $this->dataRecord->Link(); $cmsLink = 'admin/show/' . $this->dataRecord->ID; $cmsLink = "". _t('ContentController.CMS', 'CMS') .""; } else { /** * HGS: If this variable is missing a notice is raised. Subclasses of ContentController * are required to implement RelativeLink anyway, so this should work even if the * dataRecord isn't set. */ $thisPage = $this->Link(); $cmsLink = ''; } $archiveLink = ""; if($date = Versioned::current_archived_date()) { $dateObj = Object::create('Datetime', $date, null); // $dateObj->setVal($date); $archiveLink = "". _t('ContentController.ARCHIVEDSITE', 'Archived Site') .""; $liveLink = "". _t('ContentController.PUBLISHEDSITE', 'Published Site') .""; $stageLink = "". _t('ContentController.DRAFTSITE', 'Draft Site') .""; $message = "
". _t('ContentController.ARCHIVEDSITEFROM', 'Archived site from') ."
" . $dateObj->Nice() . "
"; } else if(Versioned::current_stage() == 'Stage') { $stageLink = "". _t('ContentController.DRAFTSITE', 'Draft Site') .""; $liveLink = "". _t('ContentController.PUBLISHEDSITE', 'Published Site') .""; $message = "
". _t('ContentController.DRAFTSITE', 'Draft Site') ."
"; } else { $liveLink = "". _t('ContentController.PUBLISHEDSITE', 'Published Site') .""; $stageLink = "". _t('ContentController.DRAFTSITE', 'Draft Site') .""; $message = "
". _t('ContentController.PUBLISHEDSITE', 'Published Site') ."
"; } if($member) { $firstname = Convert::raw2xml($member->FirstName); $surname = Convert::raw2xml($member->Surame); $logInMessage = _t('ContentController.LOGGEDINAS', 'Logged in as') ." {$firstname} {$surname} - ". _t('ContentController.LOGOUT', 'Log out'). ""; } else { $logInMessage = _t('ContentController.NOTLOGGEDIN', 'Not logged in') ." - ". _t('ContentController.LOGIN', 'Login') .""; } $viewPageIn = _t('ContentController.VIEWPAGEIN', 'View Page in:'); /** * HGS: cmsLink is now only set if there is a dataRecord. You can't view the page in the * CMS if there is no dataRecord */ return <<
$logInMessage
$viewPageIn
$cmsLink $stageLink
$liveLink $archiveLink
$message HTML; // On live sites we should still see the archived message } else { if($date = Versioned::current_archived_date()) { Requirements::css(SAPPHIRE_DIR . '/css/SilverStripeNavigator.css'); $dateObj = Object::create('Datetime', $date, null); // $dateObj->setVal($date); return "
". _t('ContentController.ARCHIVEDSITEFROM') ."
" . $dateObj->Nice() . "
"; } } } /** * Returns a page comment system */ function PageComments() { $hasComments = DB::query("SELECT COUNT(*) FROM \"PageComment\" WHERE \"PageComment\".\"ParentID\" = '". Convert::raw2sql($this->ID) . "'")->value(); if(($this->data() && $this->data()->ProvideComments) || ($hasComments > 0 && PageCommentInterface::$show_comments_when_disabled)) { return new PageCommentInterface($this, 'PageComments', $this->data()); } else { if(isset($_REQUEST['executeForm']) && $_REQUEST['executeForm'] == 'PageComments.PostCommentForm') { echo "Comments have been disabled for this page"; die(); } } } /** * Returns the xml:lang and lang attributes */ function LangAttributes() { $lang = Translatable::get_current_locale(); return "xml:lang=\"$lang\" lang=\"$lang\""; } /** * This action is called by the installation system */ function successfullyinstalled() { // The manifest should be built by now, so it's safe to publish the 404 page $fourohfour = Versioned::get_one_by_stage('ErrorPage', 'Stage', 'ErrorCode = 404'); if($fourohfour) { $fourohfour->Status = "Published"; $fourohfour->write(); $fourohfour->publish("Stage", "Live"); } if(isset($_SESSION['StatsID']) && $_SESSION['StatsID']) { $url = 'http://ss2stat.silverstripe.com/Installation/installed?ID=' . $_SESSION['StatsID']; @file_get_contents($url); } $title = new Varchar("Title"); $content = new HTMLText("Content"); $username = Session::get('username'); $password = Session::get('password'); $title->setValue("Installation Successful"); global $project; $tutorialOnly = ($project == 'tutorial') ? "

This website is a simplistic version of a SilverStripe 2 site. To extend this, please take a look at our new tutorials.

" : ''; $content->setValue(<<Congratulations, SilverStripe has been successfully installed.

$tutorialOnly

You can start editing your site's content by opening the CMS.
    Email: $username
    Password: $password

For security reasons you should now delete the install files, unless you are planning to reinstall later. The web server also now only needs write access to the "assets" folder, you can remove write access from all other folders.

Click here to delete the install files.

HTML ); return array( "Title" => $title, "Content" => $content, ); } function deleteinstallfiles() { $title = new Varchar("Title"); $content = new HTMLText("Content"); $tempcontent = ''; $username = Session::get('username'); $password = Session::get('password'); $installfiles = array( 'index.php', 'install.php', 'rewritetest.php', 'config-form.css', 'config-form.html', 'index.html' ); foreach($installfiles as $installfile) { if(file_exists('../' . $installfile)) { @unlink('../' . $installfile); } if(file_exists('../' . $installfile)) { $unsuccessful[] = $installfile; } } if(isset($unsuccessful)) { $title->setValue("Unable to delete installation files"); $tempcontent = "

Unable to delete installation files. Please delete the files below manually:

    "; foreach($unsuccessful as $unsuccessfulFile) { $tempcontent .= "
  • $unsuccessfulFile
  • "; } $tempcontent .= "
"; } else { $title->setValue("Deleted installation files"); $tempcontent = <<Installation files have been successfully deleted.

HTML ; } $tempcontent .= <<You can start editing your site's content by opening the CMS.
    Email: $username
    Password: $password

HTML ; $content->setValue($tempcontent); return array( "Title" => $title, "Content" => $content, ); } } ?>