aboutsummaryrefslogtreecommitdiffstats
path: root/plugins/LocalFilesEditor/template
diff options
context:
space:
mode:
authorplegall <plg@piwigo.org>2013-02-12 10:19:57 +0000
committerplegall <plg@piwigo.org>2013-02-12 10:19:57 +0000
commit8a7952a1712ee79386291e3e92e5b5cc91227812 (patch)
tree3bc662ec84d73d3439748797b6137b82a1b16976 /plugins/LocalFilesEditor/template
parent270d0330a183b6d8fe6e38f7d7e279b63d64aa20 (diff)
merge r20712 from branch 2.4 to trunk
bug 2844: increase security on LocalFiles Editor, filter on files to edit. git-svn-id: http://piwigo.org/svn/trunk@20714 68402e56-0260-453c-a942-63ccdbb3a9ee
Diffstat (limited to 'plugins/LocalFilesEditor/template')
-rw-r--r--plugins/LocalFilesEditor/template/admin.tpl31
1 files changed, 20 insertions, 11 deletions
diff --git a/plugins/LocalFilesEditor/template/admin.tpl b/plugins/LocalFilesEditor/template/admin.tpl
index 00be8a017..23a5d1975 100644
--- a/plugins/LocalFilesEditor/template/admin.tpl
+++ b/plugins/LocalFilesEditor/template/admin.tpl
@@ -30,7 +30,18 @@ if (document.getElementById("text") != null)
<div id="LocalFilesEditor">
-<input type="hidden" value="{$zone_edit.EDITED_FILE}" name="edited_file"/>
+{if isset($theme)}
+<input type="hidden" value="{$theme}" name="theme">
+{/if}
+
+{if isset($language)}
+<input type="hidden" value="{$language}" name="language">
+{/if}
+
+{if isset($template)}
+<input type="hidden" value="{$template}" name="template">
+{/if}
+
{if isset ($create_tpl)}
<table>
@@ -52,20 +63,18 @@ if (document.getElementById("text") != null)
{/if}
{if isset ($css_lang_tpl)}
-<select name="file_to_edit">
-{foreach from=$css_lang_tpl.OPTIONS item=theme key=value}
- <option value="{$value}" {if $value == $css_lang_tpl.SELECTED}selected="selected"{/if} {if is_numeric($value)}disabled="disabled"{/if}>{$theme}</option>
-{/foreach}
+<select name="{$css_lang_tpl.SELECT_NAME}">
+{html_options options=$css_lang_tpl.OPTIONS selected=$css_lang_tpl.SELECTED}
</select>
-
<input class="submit" type="submit" value="{'locfiledit_edit'|@translate}" name="edit" />
<br><br>
- {if isset ($css_lang_tpl.NEW_FILE_URL)}
- <span class="{$css_lang_tpl.NEW_FILE_CLASS}">
- <a href="{$css_lang_tpl.NEW_FILE_URL}">{'locfiledit_new_tpl'|@translate}</a>
- </span>
- {/if}
+{/if}
+
+{if isset ($css_lang_tpl.NEW_FILE_URL)}
+<span class="{$css_lang_tpl.NEW_FILE_CLASS}">
+<a href="{$css_lang_tpl.NEW_FILE_URL}">{'locfiledit_new_tpl'|@translate}</a>
+</span>
{/if}
{if isset ($zone_edit)}