.-.-.-.-.-

<?php
/**
* @package   com_zoo
* @author    YOOtheme http://www.yootheme.com
* @copyright Copyright (C) YOOtheme GmbH
* @license   http://www.gnu.org/licenses/gpl.html GNU/GPL
*/

/*
	Class: SubmissionController
		Site submission controller class
*/
class SubmissionController extends AppController {

/*
       Class constants
    */
	const SESSION_PREFIX   = 'ZOO_';
    const PAGINATION_LIMIT = 20;
	const TIME_BETWEEN_PUBLIC_SUBMISSIONS = 300;
	const EDIT_DATE_FORMAT = '%Y-%m-%d %H:%M:%S';

/*
       Variable: submission
         Current submission.
    */
    public $application;
	public $submission;
    public $type;
    public $item_id;
    public $item;
    public $renderer;
    public $layout;
    public $layout_path;
	public $session_form_key;

/*
		Function: Constructor

Parameters:
			$default - Array

Returns:
			DefaultController
	*/
	public function __construct($default = array()) {
		parent::__construct($default);

// get user
		$this->user = $this->app->user->get();

// get item id
        $this->item_id = $this->app->request->getInt('item_id');

// get pathway
		$this->pathway = $this->app->system->application->getPathway();

// get submission info from Request
        if (!$submission_id = $this->app->request->getInt('submission_id')) {

// else get submission info from menu item
            if ($menu = $this->app->menu->getActive()) {

$this->menu_params   = $this->app->parameter->create($menu->params);
                $submission_id = $this->menu_params->get('submission');
            }
        }

// set submission
        if ($this->submission  = $this->app->table->submission->get((int) $submission_id)) {

// set application
            $this->application = $this->submission->getApplication();

// set template
            $this->template    = $this->application->getTemplate();

// set session form key
			$this->session_form_key = self::SESSION_PREFIX . 'SUBMISSION_FORM_' . $this->submission->id;

}

// load administration language files
		$this->app->system->language->load('', JPATH_ADMINISTRATOR, null, true);
		$this->app->system->language->load('com_zoo', JPATH_ADMINISTRATOR, null, true);

}

public function mysubmissions() {

try {

$this->_checkConfig();

if (!$this->app->user->canAccess($this->user, 1)) {
				throw new SubmissionControllerException('Insufficient User Rights.');
			}

// get request vars
			$order = $this->app->request->getCmd('order', $this->app->system->application->getParams()->get('order', 0));

$limit = SubmissionController::PAGINATION_LIMIT;
            $state_prefix      = $this->option.'_'.$this->application->id.'.submission.'.$this->submission->id;
            $this->filter_type = $this->app->system->application->getUserStateFromRequest($state_prefix.'.filter_type', 'filter_type', '', 'string');
			$search			   = $this->app->string->strtolower($this->app->system->application->getUserStateFromRequest($state_prefix.'.search', 'search', '', 'string'));
            $this->page        = $this->app->request->getInt('page', 1);

$limitstart = (max(array($this->page, 1)) - 1) * $limit;

$this->types = $this->submission->getSubmittableTypes();

// set renderer
            $this->renderer = $this->app->renderer->create('item')->addPath(array($this->app->path->path('component.site:'), $this->template->getPath()));

// type filter
            if (empty($this->filter_type)) {
                $type = $this->types;
            } else {
                $type = $this->filter_type;
            }

$this->items      = $this->app->table->item->getByUser($this->application->id, $this->user->id, $type, $search, $order, $limitstart, $limit);
            $this->pagination = $this->app->pagination->create($this->app->table->item->getItemCountByUser($this->application->id, $this->user->id, $type, $search), $this->page, $limit, 'page', 'app');

// type select
			if (count($this->types) > 1) {
				$options = array($this->app->html->_('select.option', '', '- '.JText::_('Select Type').' -'));
				foreach ($this->types as $id => $type) {
					$options[] = $this->app->html->_('select.option', $id, $type->name);
				}
				$this->lists['select_type'] = $this->app->html->_('select.genericlist', $options, 'filter_type', 'class="inputbox auto-submit"', 'value', 'text', $this->filter_type);
			}

// add search
			$this->lists['search'] = $search;

// Can a new item be added?
			$this->show_add = $this->_checkMaxSubmissions();

// display view
            $this->getView('submission')->addTemplatePath($this->template->getPath())->setLayout('mysubmissions')->display();

} catch (SubmissionControllerException $e) {

// raise warning on exception
            $this->app->error->raiseWarning(0, (string) JText::_($e));

}
    }

public function submission() {

try {

$this->_init();

// on edit: can access and is owner if frontend edit is disabled for the item
            if ($this->item->id && (!$this->item->canAccess($this->user) || (!$this->submission->isItemEditSubmission() && $this->item->created_by != $this->user->id))) {
                throw new AppControllerException('You are not allowed to edit this item.');
            }

// If it's a new item and the user has reached the max number of submissions, trigger error
			if (!$this->item->id && !$this->_checkMaxSubmissions()) {
				return $this->app->error->raiseNotice(0, 'You have reached your maximum number of submissions');
			}

// bind data from sessions post data
			$this->errors = 0;
			if ($post = unserialize($this->app->system->application->getUserState($this->session_form_key))) {

// remove post data from session
				$this->app->system->application->setUserState($this->session_form_key, null);

// bind data
				$this->errors = $this->_bind($post);

}

$this->cancelUrl = false;
            if ($this->redirectTo) {

// build cancel url
				$this->cancelUrl = $this->_getRedirectLink();

// build pathway
				$this->pathway->addItem($this->item->id ? JText::_('Edit Submission') : JText::_('Add Submission'));
            }

// build captcha
			$this->captcha = false;
            if ($plugin = $this->submission->getParams()->get('captcha', false) and (!$this->submission->getParams()->get('captcha_guest_only', 0) || !$this->app->user->get()->id)) {
                $this->captcha  = JCaptcha::getInstance($plugin);
            }

// display view
            $this->getView('submission')->addTemplatePath($this->template->getPath())->setLayout('submission')->display();

} catch (SubmissionControllerException $e) {

// raise warning on exception
            $this->app->error->raiseWarning(0, (string) JText::_($e));

}

public function save() {

// check for request forgeries
        $this->app->session->checkToken() or jexit('Invalid Token');

// init vars
        $post	  = $this->app->request->get('post:', 'array');
		$msg	  = '';

try {

$this->_init();

// set name on new item
			if (!$edit = (bool) $this->item->id) {
				$this->item->name = JText::_('Submitted Item');
			}

// on edit: can access and is owner if frontend edit is disabled for the item
            if ($edit && (!$this->item->canAccess($this->user) || (!$this->submission->isItemEditSubmission() && $this->item->created_by != $this->user->id))) {
                throw new AppControllerException('You are not allowed to make changes to this item.');
            }

// If it's a new item and the user has reached the max number of submissions, trigger error
			if (!$this->item->id && !$this->_checkMaxSubmissions()) {
				throw new AppControllerException('You have reached your maximum number of submissions');
			}

// get element data from post
            if (isset($post['elements'])) {

// filter element data
                if (!$this->submission->isInTrustedMode() && !$this->app->user->isJoomlaAdmin($this->user)) {
                    $this->app->request->setVar('elements', $this->app->submission->filterData($post['elements']));
                    $post = $this->app->request->get('post:', 'array');
                }

// merge elements into post
                $post = array_merge($post, $post['elements']);
            }

// merge userfiles element data with post data
			foreach ($_FILES as $key => $userfile) {
				if (strpos($key, 'elements_') === 0) {
					$post[str_replace('elements_', '', $key)]['userfile'] = $userfile;
				}
			}

$item_name = $this->item->name;

$error = $this->_bind($post);

// Check captcha
			if ($plugin = $this->submission->getParams()->get('captcha', false) and (!$this->submission->getParams()->get('captcha_guest_only', 0) or !$this->app->user->get()->id)) {

$captcha = JCaptcha::getInstance($plugin);

if (!$captcha->checkAnswer(@$post['captcha'])) {
            		$error = $captcha->getError();
					if (!($error instanceof Exception)) {
						$error = new JException($error);
					}
					// raise warning on exception
					$this->app->error->raiseWarning(0, JText::_('ZOO_CHECK_CAPTCHA') . ' - ' . JText::_($error));
            	}
			}

// save item if it is valid
            if (!$error) {

// set alias
				if (!$edit || $item_name != $this->item->name) {
					$this->item->alias = $this->app->alias->item->getUniqueAlias($this->item->id, $this->app->string->sluggify($this->item->name));
				}

// unpublish item in none trusted state
				if (!$this->submission->isInTrustedMode() && !in_array('_itemstate', array_keys($this->elements_config))) {
					$this->item->state = 0;
				}

// set modified
                $this->item->modified	 = $this->app->date->create()->toSQL();
                $this->item->modified_by = $this->user->get('id');

// enforce time limit on submissions
				if (!$edit && !$this->submission->isInTrustedMode()) {
					$timestamp = time();
					if ($timestamp < $this->app->system->session->get('ZOO_LAST_SUBMISSION_TIMESTAMP') + SubmissionController::TIME_BETWEEN_PUBLIC_SUBMISSIONS) {
						$this->app->system->application->setUserState($this->session_form_key, serialize($post));
						throw new SubmissionControllerException('You are submitting too fast, please try again in a few moments.');
					}
					$this->app->system->session->set('ZOO_LAST_SUBMISSION_TIMESTAMP', $timestamp);
				}

// deprecated as of version 2.5.7 call to doUpload, use before save event instead
				foreach ($this->elements_config as $element) {
					if (($element = $this->item->getElement($element['element'])) && $element instanceof iSubmissionUpload) {
						$element->doUpload();
					}
				}

// Add primary category if no primary category is set (i.e: no itemcategory element present)
				$primary_category = $this->item->getPrimaryCategory();
				if (!$edit && empty($primary_category) && $category = $this->submission->getForm($this->type->id)->get('category')) {
					$this->item->getParams()->set('config.primary_category', $category);
				}

// trigger before save event
				$this->app->event->dispatcher->notify($this->app->event->create($this->submission, 'submission:beforesave', array('item' => $this->item, 'new' => !$edit)));

// save item
                $this->app->table->item->save($this->item);

// save to default category
				if (!$edit && ($category = $this->submission->getForm($this->type->id)->get('category'))) {
					$this->app->category->saveCategoryItemRelations($this->item, array($category));
				}

// set redirect message
				$msg = JText::_($edit ? 'Submission saved' : ($this->submission->isInTrustedMode() ? 'Thanks for your submission.' : 'Thanks for your submission. It will be reviewed before being posted on the site.'));

// trigger saved event
				$this->app->event->dispatcher->notify($this->app->event->create($this->submission, 'submission:saved', array('item' => $this->item, 'new' => !$edit)));

} else {

// add post data to session if form is not valid
				$this->app->system->application->setUserState($this->session_form_key, serialize($post));

}

} catch (SubmissionControllerException $e) {

$error = true;

// raise warning on exception
            $this->app->error->raiseWarning(0, (string) JText::_($e));

} catch (AppException $e) {

$error = true;

// raise warning on exception
            $this->app->error->raiseWarning(0, JText::_('There was an error saving your submission, please try again later.'));

// add exception details, for super administrators only
            if ($this->user->superadmin) {
                $this->app->error->raiseWarning(0, (string) $e);
            }

}

// If an error is found, redirect to the edit form itself
		$link = $error ? $this->app->route->submission($this->submission, $this->type->id, null, $this->item_id, $this->redirectTo) : $this->_getRedirectLink();

$this->setRedirect(JRoute::_($link, false), $msg);
    }

public function remove() {

// init vars
        $msg = null;

try {

$this->_checkConfig();

if (!$this->submission->isInTrustedMode()) {
                throw new AppControllerException('The submission is not in Trusted Mode.');
            }

// get item table and delete item
			$table = $this->app->table->item;

$item = $table->get($this->item_id);

// is current user the item owner and does the user have sufficient user rights
            if ($item->id && (!$item->canAccess($this->user) || $item->created_by != $this->user->id)) {
                throw new AppControllerException('You are not allowed to make changes to this item.');
            }

$table->delete($item);

// set redirect message
			$msg = JText::_('Submission Deleted');

// trigger deleted event
			$this->app->event->dispatcher->notify($this->app->event->create($item, 'submission:deleted'));

} catch (AppException $e) {

// raise warning on exception
            $this->app->error->raiseWarning(0, JText::_('There was an error deleting your submission, please try again later.'));

// add exception details, for super administrators only
            if ($this->user->superadmin) {
                $this->app->error->raiseWarning(0, (string) JText::_($e));
            }

}

$this->setRedirect(JRoute::_($this->app->route->mysubmissions($this->submission), false), $msg);

}

public function loadtags() {

// get request vars
		$tag = $this->app->request->getString('tag', '');

echo $this->app->tag->loadTags($this->application->id, $tag);
	}

protected function _checkConfig() {

if (!$this->application || !$this->submission) {
            throw new SubmissionControllerException('Submissions are not configured correctly.');
        }

if (!$this->submission->getState()) {
            throw new SubmissionControllerException('Submissions are disabled.');
        }

if (!$this->submission->canAccess($this->user)) {
            throw new SubmissionControllerException('Insufficient User Rights.');
        }
    }

protected function _checkMaxSubmissions() {

$max_submissions = $this->submission->getParams()->get('max_submissions', '0');

// Infinite: all ok
		if ($max_submissions == '0') {
			return true;
		}

$current_submissions = $this->app->table->item->getItemCountByUser($this->application->id, $this->user->id);

return $current_submissions < $max_submissions;

}

protected function _init() {

//init vars
        $type_id          = $this->app->request->getCmd('type_id');
        $hash             = $this->app->request->getCmd('submission_hash');
        $this->redirectTo = urldecode($this->app->request->getString('redirect', ''));

// check config
        $this->_checkConfig();

// get submission info from request
        if ($type_id) {

if ($hash != $this->app->submission->getSubmissionHash($this->submission->id, $type_id, $this->item_id)) {
                throw new SubmissionControllerException('Hashes did not match.');
            }

// else get submission info from active menu
        } elseif ($this->menu_params) {
            $type_id = $this->menu_params->get('type');

// remove item_id (menu item may not have an item_id)
            $this->item_id = null;
        }

// set type
        $this->type  = $this->submission->getType($type_id);

// check type
        if (!$this->type) {
            throw new SubmissionControllerException('Submissions are not configured correctly.');
        }

// set hash
        $this->hash = $hash ? $hash : $this->app->submission->getSubmissionHash($this->submission->id, $this->type->id, $this->item_id);

// set layout
        $this->layout = $this->submission->getForm($this->type->id)->get('layout', '');

// check layout
        if (empty($this->layout)) {
            throw new SubmissionControllerException('Submission is not configured correctly.');
        }

// set renderer
		$this->renderer = $this->app->renderer->create('submission')->addPath(array($this->app->path->path('component.site:'), $this->template->getPath()));

// set layout path
        $this->layout_path = 'item.';
        if ($this->renderer->pathExists('item/'.$this->type->id)) {
                $this->layout_path .= $this->type->id.'.';
        }
        $this->layout_path .= $this->layout;

// get positions
        $positions = $this->renderer->getConfig('item')->get($this->application->getGroup().'.'.$this->type->id.'.'.$this->layout, array());

// get elements from positions
        $this->elements_config = array();
        foreach ($positions as $position) {
            foreach ($position as $element) {
				$this->elements_config[$element['element']] = $element;
            }
        }

// get item
		if (!$this->item_id || !($this->item = $this->app->table->item->get($this->item_id))) {

$now = $this->app->date->create()->toSQL();

$this->item = $this->app->object->create('Item');
            $this->item->application_id   = $this->application->id;
            $this->item->type			  = $this->type->id;
			$this->item->publish_up		  = $now;
			$this->item->publish_down	  = $this->app->database->getNullDate();
			$this->item->access			  = $this->app->joomla->getDefaultAccess();
			$this->item->created		  = $now;
			$this->item->created_by		  = $this->user->get('id');
			$this->item->created_by_alias = '';
			$this->item->state			  = 0;
			$this->item->searchable		  = true;
			$this->item->getParams()
				->set('config.enable_comments', true)
				->set('config.primary_category', 0);
        }

}

protected function _bind($post = array()) {
		$errors = 0;
		foreach ($this->elements_config as $element_data) {

try {

if (($element = $this->item->getElement($element_data['element']))) {

// get params
					$params = $this->app->data->create(array_merge(array('trusted_mode' => $this->submission->isInTrustedMode()), $element_data));

$element->bindData($element->validateSubmission($this->app->data->create(@$post[$element->identifier]), $params));
				}

} catch (AppValidatorException $e) {

if (isset($element)) {
					$element->error = $e;
					$element->bindData(@$post[$element->identifier]);
				}

$errors++;
			}

}
		return $errors;
	}

protected function _getRedirectLink() {

// Check redirect link
		switch ($this->redirectTo) {
			case null:

// Check menu item for redirect
				if ($menu = $this->app->menu->getActive()) {
					if ($menu_item_id = $this->app->parameter->create($menu->params)->get('redirect', false)) {
						return JRoute::_('index.php?Itemid=' . $menu_item_id, false);
					}
				}
				return $this->app->route->submission($this->submission, $this->type->id, null, $this->item_id, $this->redirectTo);

case 'mysubmissions':
				// redirect to list of submissions
				return $this->app->route->mysubmissions($this->submission);
			case 'itemedit':
				// Redirect to the item
				if ($this->item->getState() == 1) {
					return $this->app->route->item($this->item);
				} else {
					return $this->app->route->submission($this->submission, $this->type->id, null, $this->item_id);
				}
			default:
				// Custom redirect
				return base64_decode($this->redirectTo);
		}
	}

}

/*
	Class: SubmissionControllerException
*/
class SubmissionControllerException extends AppException {}

/var/www/iplanru/data/./mod-tmp/../www/./i-plan.ru/components/./com_zoo/controllers/submission.php