= '4.1.0') { if ( isset($_GET[$varName]) || isset($_POST[$varName]) || isset($_COOKIE[$varName]) || isset($_ENV[$varName]) || isset($_SESSION[$varName]) || isset($_FILES[$varName]) ){ die('Sorry. An error occurred.'); } } else { if ( isset($HTTP_GET_VARS[$varName]) || isset($HTTP_POST_VARS[$varName]) || isset($HTTP_COOKIE_VARS[$varName]) || isset($HTTP_ENV_VARS[$varName]) || isset($HTTP_SESSION_VARS[$varName]) || isset($HTTP_POST_FILES[$varName]) ){ die('Sorry. An error occurred.'); } } } if (!isset($DIR_LIBS)) { die('Sorry.'); } include($DIR_LIBS . 'ADMIN.php'); class PluginAdmin { var $strFullName; // NP_SomeThing var $plugin; // ref. to plugin object var $bValid; // evaluates to true when object is considered valid var $admin; // ref to an admin object function PluginAdmin($pluginName) { global $manager; $this->strFullName = 'NP_' . $pluginName; // check if plugin exists and is installed if (!$manager->pluginInstalled($this->strFullName)) doError('Invalid plugin'); $this->plugin =& $manager->getPlugin($this->strFullName); $this->bValid = $this->plugin; if (!$this->bValid) doError('Invalid plugin'); $this->admin = new ADMIN(); $this->admin->action = 'plugin_' . $pluginName; } function start($extraHead = '') { global $CONF; $strBaseHref = ''; $extraHead .= $strBaseHref; $this->admin->pagehead($extraHead); } function end() { $this->_AddTicketByJS(); $this->admin->pagefoot(); } /** * Add ticket when not used in plugin's admin page * to avoid CSRF. */ function _AddTicketByJS(){ global $CONF,$ticketforplugin; if (!($ticket=$ticketforplugin['ticket'])) { //echo "\n\n"; return; } ?>