python-coding-404
diff --git a/‎conf/_application.php‎
Lines changed: 1 addition & 1 deletion b/‎conf/_application.php‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎htsrv/anon_async.php‎
Lines changed: 23 additions & 0 deletions b/‎htsrv/anon_async.php‎
Lines changed: 23 additions & 0 deletions
diff --git a/‎htsrv/profile_update.php‎
Lines changed: 40 additions & 7 deletions b/‎htsrv/profile_update.php‎
Lines changed: 40 additions & 7 deletions
diff --git a/‎inc/_blog_main.inc.php‎
Lines changed: 3 additions & 1 deletion b/‎inc/_blog_main.inc.php‎
Lines changed: 3 additions & 1 deletion
diff --git a/‎inc/_core/_param.funcs.php‎
Lines changed: 8 additions & 8 deletions b/‎inc/_core/_param.funcs.php‎
Lines changed: 8 additions & 8 deletions
diff --git a/‎inc/_core/_template.funcs.php‎
Lines changed: 135 additions & 1 deletion b/‎inc/_core/_template.funcs.php‎
Lines changed: 135 additions & 1 deletion
diff --git a/‎inc/_core/model/_pagecache.class.php‎
Lines changed: 3 additions & 3 deletions b/‎inc/_core/model/_pagecache.class.php‎
Lines changed: 3 additions & 3 deletions
@@ -21,7 +21,7 @@
  * Release date (ISO)
  * @global string
  */
-$app_date = '2017-12-27';
+$app_date = '2017-12-29';
 
 /**
  * Long version string for checking differences
 
@@ -63,6 +63,29 @@
 $params = param( 'params', 'array', array() );
 switch( $action )
 {
+	case 'get_item_form':
+		// Display item form:
+
+		// Use the glyph or font-awesome icons if requested by skin
+		param( 'b2evo_icons_type', 'string', '' );
+
+		$cat_ID = param( 'cat', 'integer' );
+		$BlogCache = & get_BlogCache();
+		$Collection = $Blog = & $BlogCache->get_by_ID( $blog_ID );
+
+		locale_activate( $Blog->get( 'locale' ) );
+
+		$blog_skin_ID = $Blog->get_skin_ID();
+		if( ! empty( $blog_skin_ID ) )
+		{	// Initialize collection skin folder to check if it has a specific new item form:
+			$SkinCache = & get_SkinCache();
+			$Skin = & $SkinCache->get_by_ID( $blog_skin_ID );
+			$ads_current_skin_path = $skins_path.$Skin->folder.'/';
+		}
+
+		require skin_template_path( '_item_new_form.inc.php' );
+		break;
+
 	case 'get_comment_form':
 		// Display comment form:
 
 
@@ -293,20 +293,53 @@
 	switch( $action )
 	{
 		case 'update':
-			if( isset( $current_User->previous_pass_driver ) &&
+			if( $user_tab == 'register_finish' )
+			{	// After submitting quick data we should redirect user to page like after registration:
+				$after_registration = $Settings->get( 'after_registration' );
+				if( $after_registration == 'return_to_original' )
+				{	// Return to original page ( where user was before the registration process ):
+					if( empty( $redirect_to ) )
+					{	// redirect_to param was not set
+						if( ! empty( $Blog ) )
+						{
+							$redirect_to = $Blog->gen_blogurl();
+						}
+						else
+						{
+							$redirect_to = $baseurl;
+						}
+					}
+				}
+				elseif( $after_registration == 'specific_slug' )
+				{	// Return to the specific slug which is set in the registration settings form:
+					$SlugCache = get_SlugCache();
+					if( ( $Slug = & $SlugCache->get_by_name( $Settings->get( 'after_registration_slug' ), false, false ) ) &&
+							( $slug_Item = & $Slug->get_object() ) &&
+							( $slug_Item instanceof Item ) )
+					{	// Use permanent URL of the slug Item:
+						$redirect_to = $slug_Item->get_permanent_url( '', '', '&' );
+					}
+				}
+				else
+				{	// Return to the specific URL which is set in the registration settings form:
+					$redirect_to = $after_registration;
+				}
+			}
+			elseif( isset( $current_User->previous_pass_driver ) &&
 			    $current_User->previous_pass_driver == 'nopass' &&
 			    $current_User->previous_pass_driver != $current_User->get( 'pass_driver' ) )
 			{	// Redirect to page as we use after email validation if current user set password first time, e-g after email capture/quick registration:
 				$redirect_to = redirect_after_account_activation();
 			}
-			elseif( $current_User->has_avatar() )
-			{ // Redirect to display user page
-				$redirect_to = $Blog->get( 'userurl', array( 'glue' => '&' ) );
-			}
-			else
-			{ // Redirect to upload avatar
+			elseif( ! $current_User->has_avatar() )
+			{	// Redirect to upload avatar if it is not uploaded yet:
 				$redirect_to = get_user_avatar_url();
 			}
+
+			if( empty( $redirect_to ) )
+			{	// Redirect to display user page for cases when redirect param cannot be defined above by some reason:
+				$redirect_to = $Blog->get( 'userurl', array( 'glue' => '&' ) );
+			}
 			break;
 		case 'upload_avatar':
 			// Redirect to display user profile form
 
@@ -492,7 +492,7 @@
 if( empty( $Item ) &&
 		(
 			! is_null( $catsel ) || // Filter by many categories
-			( $disp != 'edit' && ! is_null( $cat ) ) || // Filter by one category
+			( $disp != 'edit' && $disp != 'anonpost' && ! is_null( $cat ) ) || // Filter by one category
 			! is_null( $tag ) || // Filter by tag
 			! empty( $m ) // Filter by date like '201410' (urls from ?disp=arcdir)
 	) )
@@ -825,6 +825,7 @@
 					'access_denied'         => 'access_denied.main.php',
 					'access_requires_login' => 'access_requires_login.main.php',
 					'activateinfo'          => 'activateinfo.main.php',
+					'anonpost'              => 'anonpost.main.php',
 					'arcdir'                => 'arcdir.main.php',
 					'catdir'                => 'catdir.main.php',
 					'closeaccount'          => 'closeaccount.main.php',
@@ -853,6 +854,7 @@
 					'subs'                  => 'subs.main.php',
 					'visits'                => 'visits.main.php',
 					'register'              => 'register.main.php',
+					'register_finish'       => 'register_finish.main.php',
 					'search'                => 'search.main.php',
 					'single'                => 'single.main.php',
 					'sitemap'               => 'sitemap.main.php',
 
@@ -2368,20 +2368,20 @@ function check_html_sanity( $content, $context = 'posting', $User = NULL, $encod
 	{
 		case 'posting':
 		case 'xmlrpc_posting':
-			$Group = $User->get_Group();
+			$Group = $User ? $User->get_Group() : false;
 			if( $context == 'posting' )
 			{
-				$xhtmlvalidation  = ($Group->perm_xhtmlvalidation == 'always');
+				$xhtmlvalidation  = ( $Group && $Group->perm_xhtmlvalidation == 'always' );
 			}
 			else
 			{
-				$xhtmlvalidation  = ($Group->perm_xhtmlvalidation_xmlrpc == 'always');
+				$xhtmlvalidation  = ( $Group && $Group->perm_xhtmlvalidation_xmlrpc == 'always' );
 			}
-			$allow_css_tweaks = $Group->perm_xhtml_css_tweaks;
-			$allow_javascript = $Group->perm_xhtml_javascript;
-			$allow_iframes    = $Group->perm_xhtml_iframes;
-			$allow_objects    = $Group->perm_xhtml_objects;
-			$bypass_antispam  = $Group->perm_bypass_antispam;
+			$allow_css_tweaks = $Group && $Group->perm_xhtml_css_tweaks;
+			$allow_javascript = $Group && $Group->perm_xhtml_javascript;
+			$allow_iframes    = $Group && $Group->perm_xhtml_iframes;
+			$allow_objects    = $Group && $Group->perm_xhtml_objects;
+			$bypass_antispam  = $Group && $Group->perm_bypass_antispam;
 			break;
 
 		case 'commenting':
 
@@ -421,6 +421,7 @@ function get_request_title( $params = array() )
 			'format'              => 'htmlbody',
 			// Title for each disp:
 			// fp> TODO: Make a global array of $disp => Clear text disp
+			'anonpost_text'       => '#',// # - 'New [Post]' ('Post' is item type name)
 			'arcdir_text'         => T_('Archive Directory'),
 			'catdir_text'         => T_('Category Directory'),
 			'mediaidx_text'       => T_('Photo Index'),
@@ -432,7 +433,8 @@ function get_request_title( $params = array() )
 			'contacts_text'       => T_('Contacts'),
 			'login_text'          => /* TRANS: trailing space = verb */ T_('Login '),
 			'register_text'       => T_('Register'),
-			'req_activate_email'    => T_('Account activation'),
+			'register_finish_text'=> T_('Finish Registration'),
+			'req_activate_email'  => T_('Account activation'),
 			'account_activation'  => T_('Account activation'),
 			'lostpassword_text'   => T_('Lost your password?'),
 			'profile_text'        => T_('User Profile'),
@@ -554,6 +556,11 @@ function get_request_title( $params = array() )
 			$r[] = $params['subs_text'];
 			break;
 
+		case 'register_finish':
+			// We are requesting the register finish form:
+			$r[] = $params['register_finish_text'];
+			break;
+
 		case 'visits':
 			// We are requesting the profile visits screen:
 			$user_ID = param( 'user_ID', 'integer', 0 );
@@ -684,6 +691,17 @@ function get_request_title( $params = array() )
 			$r[] = $params['closeaccount_text'];
 			break;
 
+		case 'anonpost':
+			if( $params['anonpost_text'] == '#' )
+			{	// Initialize default auto title:
+				$r[] = sprintf( T_('New [%s]'), $Blog->get_default_item_type_name() );
+			}
+			else
+			{	// Use custom title from param:
+				$r[] = $params['anonpost_text'];
+			}
+			break;
+
 		case 'edit':
 			global $edited_Item;
 			$type_name = $edited_Item->get_ItemType()->get_name();
@@ -3157,6 +3175,122 @@ function passinfo(el)
 }
 
 
+/*
+ * Display javascript code to edit password
+ *
+ * @param array Params
+ */
+function display_password_js_edit()
+{
+	global $Settings;
+
+	echo '<script type="text/javascript">
+jQuery( "#current_user_pass" ).keyup( function()
+{
+	var error_obj = jQuery( this ).parent().find( "span.field_error" );
+	if( error_obj.length )
+	{
+		if( jQuery( this ).val() == "" )
+		{
+			error_obj.show();
+		}
+		else
+		{
+			error_obj.hide();
+		}
+	}
+
+	user_pass_clear_style( "#current_user_pass" );
+} );
+
+jQuery( "#edited_user_pass1, #edited_user_pass2" ).keyup( function()
+{
+	var minpass_obj = jQuery( this ).parent().find( ".pass_check_min" );
+	if( minpass_obj.length )
+	{ // Hide/Show a message about min pass length
+		if( jQuery.trim( jQuery( this ).val() ).length >= '.intval( $Settings->get('user_minpwdlen') ).' )
+		{
+			minpass_obj.hide();
+		}
+		else
+		{
+			minpass_obj.show();
+		}
+	}
+
+	var diff_obj = jQuery( ".pass_check_diff" );
+	if( diff_obj.length && jQuery( "#edited_user_pass1" ).val() == jQuery( " #edited_user_pass2" ).val() )
+	{ // Hide message about different passwords
+		diff_obj.hide();
+	}
+
+	// Hide message about that new password must be entered
+	var new_obj = jQuery( this ).parent().find( ".pass_check_new" );
+	if( new_obj.length )
+	{
+		if( jQuery( this ).val() == "" )
+		{
+			new_obj.show();
+		}
+		else
+		{
+			new_obj.hide();
+		}
+	}
+
+	// Hide message about that new password must be entered twice
+	var twice_obj = jQuery( this ).parent().find( ".pass_check_twice" );
+	if( twice_obj.length )
+	{
+		if( jQuery( this ).val() == "" )
+		{
+			twice_obj.show();
+		}
+		else
+		{
+			twice_obj.hide();
+		}
+	}
+
+	var warning_obj = jQuery( this ).parent().find( ".pass_check_warning" );
+	if( jQuery.trim( jQuery( this ).val() ) != jQuery( this ).val() )
+	{ // Password contains the leading and trailing spaces
+		if( ! warning_obj.length )
+		{
+			jQuery( this ).parent().append( "<span class=\"pass_check_warning notes field_error\">.'.TS_('The leading and trailing spaces will be trimmed.').'</span>" );
+		}
+	}
+	else if( warning_obj.length )
+	{ // No spaces, Remove warning
+		warning_obj.remove();
+	}
+
+	user_pass_clear_style( "#edited_user_pass1, #edited_user_pass2" );
+} );
+
+/**
+ * Hide/Show error style of input depending on visibility of the error messages
+ *
+ * @param string jQuery selector
+ */
+function user_pass_clear_style( obj_selector )
+{
+	jQuery( obj_selector ).each( function()
+	{
+		if( jQuery( this ).parent().find( "span.field_error span:visible" ).length )
+		{
+			jQuery( this ).addClass( "field_error" );
+		}
+		else
+		{
+			jQuery( this ).removeClass( "field_error" );
+		}
+	} );
+}
+</script>';
+}
+
+
 /*
  * Display javascript login validator
  *
 
@@ -229,9 +229,9 @@ function check()
 			return false;
 		}
 
-		if( $disp == 'login' || $disp == 'access_requires_login' || $disp == 'register' || $disp == 'lostpassword' )
-		{	// We do NOT want caching for in-skin login, register and lostpassord pages
-			$Debuglog->add( 'Never cache the in-skin login and register pages!', 'pagecache' );
+		if( $disp == 'login' || $disp == 'access_requires_login' || $disp == 'register' || $disp == 'lostpassword' || $disp == 'anonpost' )
+		{	// We do NOT want caching for in-skin login, register, lostpassord pages and new item anonymous form:
+			$Debuglog->add( 'Never cache the in-skin login, register and anonymous new item pages!', 'pagecache' );
 			return false;
 		}
Original file line number	Diff line number	Diff line change
`@@ -2368,20 +2368,20 @@ function check_html_sanity( $content, $context = 'posting', $User = NULL, $encod`
`2368`	`2368`	`{`
`2369`	`2369`	`case 'posting':`
`2370`	`2370`	`case 'xmlrpc_posting':`
`2371`		`- $Group = $User->get_Group();`
	`2371`	`+ $Group = $User ? $User->get_Group() : false;`
`2372`	`2372`	`if( $context == 'posting' )`
`2373`	`2373`	`{`
`2374`		`- $xhtmlvalidation = ($Group->perm_xhtmlvalidation == 'always');`
	`2374`	`+ $xhtmlvalidation = ( $Group && $Group->perm_xhtmlvalidation == 'always' );`
`2375`	`2375`	`}`
`2376`	`2376`	`else`
`2377`	`2377`	`{`
`2378`		`- $xhtmlvalidation = ($Group->perm_xhtmlvalidation_xmlrpc == 'always');`
	`2378`	`+ $xhtmlvalidation = ( $Group && $Group->perm_xhtmlvalidation_xmlrpc == 'always' );`
`2379`	`2379`	`}`
`2380`		`- $allow_css_tweaks = $Group->perm_xhtml_css_tweaks;`
`2381`		`- $allow_javascript = $Group->perm_xhtml_javascript;`
`2382`		`- $allow_iframes = $Group->perm_xhtml_iframes;`
`2383`		`- $allow_objects = $Group->perm_xhtml_objects;`
`2384`		`- $bypass_antispam = $Group->perm_bypass_antispam;`
	`2380`	`+ $allow_css_tweaks = $Group && $Group->perm_xhtml_css_tweaks;`
	`2381`	`+ $allow_javascript = $Group && $Group->perm_xhtml_javascript;`
	`2382`	`+ $allow_iframes = $Group && $Group->perm_xhtml_iframes;`
	`2383`	`+ $allow_objects = $Group && $Group->perm_xhtml_objects;`
	`2384`	`+ $bypass_antispam = $Group && $Group->perm_bypass_antispam;`
`2385`	`2385`	`break;`
`2386`	`2386`
`2387`	`2387`	`case 'commenting':`
Original file line number	Diff line number	Diff line change
`@@ -229,9 +229,9 @@ function check()`
`229`	`229`	`return false;`
`230`	`230`	`}`
`231`	`231`
`232`		`- if( $disp == 'login' \|\| $disp == 'access_requires_login' \|\| $disp == 'register' \|\| $disp == 'lostpassword' )`
`233`		`- { // We do NOT want caching for in-skin login, register and lostpassord pages`
`234`		`- $Debuglog->add( 'Never cache the in-skin login and register pages!', 'pagecache' );`
	`232`	`+ if( $disp == 'login' \|\| $disp == 'access_requires_login' \|\| $disp == 'register' \|\| $disp == 'lostpassword' \|\| $disp == 'anonpost' )`
	`233`	`+ { // We do NOT want caching for in-skin login, register, lostpassord pages and new item anonymous form:`
	`234`	`+ $Debuglog->add( 'Never cache the in-skin login, register and anonymous new item pages!', 'pagecache' );`
`235`	`235`	`return false;`
`236`	`236`	`}`
`237`	`237`