[MOD] Hidden / Password protected categories v1.1 (2009-06-30)

----------------- [ Index ] -----------------

Introduction
How to use
Demo
List of changed/new files
Installation
Tweaks
Version history

----------------- [ Introduction ] -----------------

With this mod you'll be able hide categories and/or set a password.

Hidden categories will not be visible anywhere on the site and can be accessed only by a direct link to it. By default once such category opened, it will become visible for the visitor, meaning it will not be hidden anymore for that particular visitor. This behavior can be changed.

If a category password protected, only it's name will be visible to the visitors (assuming visitor has "view category" permissions). Once visitor open it or open an image from such category, a prompt to enter the password will be showed instead. When the submitted password accepted, the category become fully accessible to the visitor, based on it's permissions. The submitted passwords are stored in the database for each member or in sessions for guests.

All subcategories inherit "hidden" and "password" settings from it's parent category.

If you have a request or suggestion, make sure you visit Tweaks section, it might be already there Wink

----------------- [ How to use ] -----------------

Once this mod is installed, you should see two new options when edit or create new category.

----------------- [ Demo ] -----------------

You can see how it works here. You can click on "reset cat password" link on left to reset entered password and visited hidden categories.

----------------- [ Changed files ] -----------------

global.php
details.php
categories.php
includes/auth.php
includes/page_header.php
includes/sessions.php
admin/categories.php
lang/<your language>/main.php

----------------- [ New files ] -----------------

install_catpashid.php
includes/catpass.php
templates/<your template>/catpass.html

----------------- [ Installation ] -----------------

Step 1
Download attached package. Extract files and upload them to your 4images folder, preserving this tree structure:
install_catpashid.php
includes/catpass.php
templates/<your template>/catpass.html

Step 2
Execute install_catpashid.php by typing in your browser's address bar:
http://yourdomain/4images/install_catpashid.php

Step 3
Open global.php
Find:

PHP Code: [Select] [Expand] [Hide line numbers]

1	`$sql = "SELECT cat_id, cat_name, cat_description, cat_parent_id, cat_hits, cat_order, auth_viewcat, auth_viewimage, auth_download, auth_upload, auth_directupload, auth_vote, auth_sendpostcard, auth_readcomment, auth_postcomment`

Replace it with:

PHP Code: [Select] [Expand] [Hide line numbers]

1	`$sql = "SELECT cat_id, cat_name, cat_description, cat_parent_id, cat_hits, cat_order, auth_viewcat, auth_viewimage, auth_download, auth_upload, auth_directupload, auth_vote, auth_sendpostcard, auth_readcomment, auth_postcomment, cat_password, cat_hide`

(or simply add , cat_password, cat_hide at the end of that line)

Step 4
Open details.php
Find:

PHP Code: [Select] [Expand] [Hide line numbers]

1	`$cat_id = (isset($image_row['cat_id'])) ? $image_row['cat_id'] : 0;`

Insert _BELOW:

PHP Code: [Select] [Expand] [Hide line numbers]

1	`cat_unhide($cat_id);`

Step 4.1
Find:

PHP Code: [Select] [Expand] [Hide line numbers]

1
2
3 if (!check_permission("auth_viewcat", $cat_id) || !check_permission("auth_viewimage", $cat_id) || !$image_row) { redirect($url); }

Insert _BELOW:

PHP Code: [Select] [Expand] [Hide line numbers]

1 2	`$txt_clickstream = get_category_path($cat_id,1).$config['category_separator'].format_text($image_row['image_name'], 2).$config['category_separator']; include(ROOT_PATH."includes/catpass.php");`

Step 5
Open categories.php
Find:

PHP Code: [Select] [Expand] [Hide line numbers]

1	`$user_access = get_permission();`

Insert _BELOW:

PHP Code: [Select] [Expand] [Hide line numbers]

1	`cat_unhide($cat_id);`

Step 5.1
Find:

PHP Code: [Select] [Expand] [Hide line numbers]

1
2
3 if (!$cat_id || !isset($cat_cache[$cat_id]) || !check_permission("auth_viewcat", $cat_id)) { redirect("index.php"); }

Insert _BELOW:

PHP Code: [Select] [Expand] [Hide line numbers]

1	`include(ROOT_PATH."includes/catpass.php");`

Step 6
Open includes/auth.php
Find:

PHP Code: [Select] [Expand] [Hide line numbers]

1	`function check_permission($type, $cat_id = 0) {`

Replace it with:

PHP Code: [Select] [Expand] [Hide line numbers]

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85 function cat_unhide($cat_id, $save = 1) { global $cat_cache, $site_sess, $user_info, $site_db, $cat_parent_cache; if (!isset($cat_cache[$cat_id])) return; if (isset($cat_cache[$cat_id]['auth_viewcat_backup'])) $cat_cache[$cat_id]['auth_viewcat'] = $cat_cache[$cat_id]['auth_viewcat_backup']; $cat_subcat_ids = get_auth_subcat_ids($cat_id, $cat_id, $cat_parent_cache); if (isset($cat_subcat_ids[$cat_id])) { foreach ($cat_subcat_ids[$cat_id] as $key2 => $val2) { if ($cat_cache[$val2]['auth_viewcat'] < $cat_cache[$cat_id]['auth_viewcat'] && (!$cat_cache[$val2]['cat_hide'] || ($cat_cache[$val2]['cat_hide'] && isset($user_info['cat_hide'][$val2])))) { $cat_cache[$val2]['auth_viewcat'] = $cat_cache[$cat_id]['auth_viewcat']; } } } if ($cat_cache[$cat_id]['cat_hide']) { if (isset($user_info['cat_hide'][$cat_id])) return; $user_info['cat_hide'][$cat_id] = ""; if (!$save) return; if ($user_info['cat_hide_db']) { $sql = "UPDATE ".USERS_TABLE." SET cat_hide = '".implode("|", array_keys($user_info['cat_hide']))."' WHERE ".get_user_table_field("", "user_id")." = ".$user_info['user_id']; $site_db->query($sql); } else { $site_sess->set_session_var("cathide", implode("|", array_keys($user_info['cat_hide']))); } } else { if ($cat_cache[$cat_id]['cat_parent_id'] != 0) { //uncomment next line if you want unhide parent category when opened child category. // cat_unhide($cat_cache[$cat_id]['cat_parent_id'], $save); } } } function cat_pass_check($cat_id) { global $user_info, $site_sess, $cat_cache; if ($user_info['user_level'] == ADMIN) return true; if (isset($cat_cache[$cat_id]['cat_password_id'])) $cat_id = $cat_cache[$cat_id]['cat_password_id']; if (!isset($cat_cache[$cat_id]['cat_password']) || !$cat_cache[$cat_id]['cat_password']) return true; return (isset($user_info['cat_password'][$cat_id]) && $cat_cache[$cat_id]['cat_password'] == $user_info['cat_password'][$cat_id]) ? true : false; } function check_permission($type, $cat_id = 0) { global $user_info, $cat_cache; if (!_check_permission($type, $cat_id) && $cat_cache[$cat_id][$type] != 999) { return false; } if ($type != "auth_viewcat") { return true; } if ($user_info['user_level'] != ADMIN && $cat_cache[$cat_id][$type] == 999) { return false; } return true; } function _check_permission($type, $cat_id = 0) {

Step 6.1
Find:

PHP Code: [Select] [Expand] [Hide line numbers]

1	`if ($val['auth_viewcat'] != AUTH_ALL) {`

Replace it with:

PHP Code: [Select] [Expand] [Hide line numbers]

1
2
3
4
5
6 if ($val['cat_hide'] && !isset($user_info['cat_hide'][$key])) { $cat_cache[$key]['auth_viewcat_backup'] = $val['auth_viewcat']; $cat_cache[$key]['auth_viewcat'] = $val['auth_viewcat'] = 999; } if ($val['auth_viewcat'] != AUTH_ALL || $val['cat_password']) {

Step 6.2
Find:

PHP Code: [Select] [Expand] [Hide line numbers]

1	`foreach ($cat_subcat_ids[$key] as $key2 => $val2) {`

Insert _BELOW:

PHP Code: [Select] [Expand] [Hide line numbers]

1
2
3
4
5
6
7
8
9
10
11
12
13
14 if (!$cat_cache[$val2]['cat_password'] && $cat_cache[$key]['cat_password']) //all subcategories also should obbey cat password from parent { $cat_cache[$val2]['cat_password'] = $cat_cache[$key]['cat_password']; $cat_cache[$val2]['cat_password_id'] = (isset($cat_cache[$key]['cat_password_id'])) ? $cat_cache[$key]['cat_password_id'] : $key; } if ($val['auth_viewcat'] == 999) { if ($cat_cache[$val2]['cat_hide'] && isset($user_info['cat_hide'][$val2]) && $cat_cache[$val2]['auth_viewcat'] < $cat_cache[$key]['auth_viewcat']) { $cat_cache[$val2]['auth_viewcat'] = $cat_cache[$key]['auth_viewcat_backup']; continue; } $cat_cache[$val2]['auth_viewcat_backup'] = $cat_cache[$key]['auth_viewcat_backup']; }

Step 6.3
Find:

PHP Code: [Select] [Expand] [Hide line numbers]

1	`if (!check_permission($type, $key)) {`

Replace it with:

PHP Code: [Select] [Expand] [Hide line numbers]

1	`if (!check_permission($type, $key) \|\| !cat_pass_check($key)) {`

Step 7
Open includes/page_header.php
Find:

PHP Code: [Select] [Expand] [Hide line numbers]

1	`if (check_permission("auth_viewcat", $key)) {`

Replace it with:

PHP Code: [Select] [Expand] [Hide line numbers]

1	`if (check_permission("auth_viewcat", $key) && cat_pass_check($key)) {`

Step 8
Open includes/sessions.php
Find:

PHP Code: [Select] [Expand] [Hide line numbers]

1	`$user_info = $site_sess->return_user_info();`

Insert _BELOW:

PHP Code: [Select] [Expand] [Hide line numbers]

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38 $user_info['cat_password_db'] = true; //set to false to use only sessions to store passwords $user_info['cat_hide_db'] = true; //set to false to use only sessions to store visited hidden categories if ($user_info['user_level'] == GUEST || !isset($user_info['cat_password']) || ($user_info['user_level'] != GUEST && !$user_info['cat_password_db'])) { $cat_pass = trim($site_sess->get_session_var("catpass")); $user_info['cat_password_db'] = false; } else { $cat_pass = $user_info['cat_password']; $user_info['cat_password_db'] = true; } $user_info['cat_password'] = array(); $cat_pass = explode("|", $cat_pass); foreach($cat_pass as $key) { $val = explode(",", $key); if (count($val) > 1 && $val[0] = (int)$val[0]) $user_info['cat_password'][$val[0]] = $val[1]; } if ($user_info['user_level'] == GUEST || !isset($user_info['cat_hide']) || ($user_info['user_level'] != GUEST && !$user_info['cat_hide_db'])) { $cat_hide = trim($site_sess->get_session_var("cathide")); $user_info['cat_hide_db'] = false; } else { $cat_hide = $user_info['cat_hide']; $user_info['cat_hide_db'] = true; } $user_info['cat_hide'] = array(); $cat_hide = explode("|", $cat_hide); foreach($cat_hide as $key) { if ($key = (int)$key) $user_info['cat_hide'][$key] = ""; }

Step 9
Open admin/categories.php
Find two (2) times:

PHP Code: [Select] [Expand] [Hide line numbers]

1	`$auth_postcomment = $HTTP_POST_VARS['auth_postcomment'];`

Insert _BELOW each:

PHP Code: [Select] [Expand] [Hide line numbers]

1 2	`$cat_password = un_htmlspecialchars(trim($HTTP_POST_VARS['cat_password'])); $cat_hide = intval($HTTP_POST_VARS['cat_hide']);`

Step 9.1
Find:

PHP Code: [Select] [Expand] [Hide line numbers]

1
2
3
4 $sql = "INSERT INTO ".CATEGORIES_TABLE." (cat_name, cat_description, cat_parent_id, cat_order, auth_viewcat, auth_viewimage, auth_download, auth_upload, auth_directupload, auth_vote, auth_sendpostcard, auth_readcomment, auth_postcomment) VALUES ('$cat_name', '$cat_description', $cat_parent_id, $cat_order, $auth_viewcat, $auth_viewimage, $auth_download, $auth_upload, $auth_directupload, $auth_vote, $auth_sendpostcard, $auth_readcomment, $auth_postcomment)";

Replace it with:

PHP Code: [Select] [Expand] [Hide line numbers]

1
2
3
4 $sql = "INSERT INTO ".CATEGORIES_TABLE." (cat_name, cat_description, cat_parent_id, cat_order, auth_viewcat, auth_viewimage, auth_download, auth_upload, auth_directupload, auth_vote, auth_sendpostcard, auth_readcomment, auth_postcomment, cat_password, cat_hide) VALUES ('$cat_name', '$cat_description', $cat_parent_id, $cat_order, $auth_viewcat, $auth_viewimage, $auth_download, $auth_upload, $auth_directupload, $auth_vote, $auth_sendpostcard, $auth_readcomment, $auth_postcomment, '$cat_password', $cat_hide)";

Step 9.2
Find:

PHP Code: [Select] [Expand] [Hide line numbers]

1	`show_table_separator($permission_headline, 2);`

Insert ^ABOVE:

PHP Code: [Select] [Expand] [Hide line numbers]

1 2	`show_radio_row($lang['cat_hide'], "cat_hide", 0); show_input_row($lang['cat_password'], "cat_password", "", $textinput_size);`

Step 9.3
Find:

Code: [Select] [Expand] [Hide line numbers]

1 SET cat_name = '$cat_name', cat_description = '$cat_description', cat_parent_id = $cat_parent_id, cat_order = $cat_order, cat_hits = $cat_hits, auth_viewcat = $auth_viewcat, auth_viewimage = $auth_viewimage, auth_download = $auth_download, auth_upload = $auth_upload, auth_directupload = $auth_directupload, auth_vote = $auth_vote, auth_sendpostcard = $auth_sendpostcard, auth_readcomment = $auth_readcomment, auth_postcomment = $auth_postcomment

Replace it with:

Code: [Select] [Expand] [Hide line numbers]

Step 9.4
Find:

PHP Code: [Select] [Expand] [Hide line numbers]

1	`$sql = "SELECT cat_name, cat_description, cat_parent_id, cat_hits, cat_order, auth_viewcat, auth_viewimage, auth_download, auth_upload, auth_directupload, auth_vote, auth_sendpostcard, auth_readcomment, auth_postcomment`

Replace it with:

PHP Code: [Select] [Expand] [Hide line numbers]

1	`$sql = "SELECT cat_name, cat_description, cat_parent_id, cat_hits, cat_order, auth_viewcat, auth_viewimage, auth_download, auth_upload, auth_directupload, auth_vote, auth_sendpostcard, auth_readcomment, auth_postcomment, cat_password, cat_hide`

Step 9.5
Find:

PHP Code: [Select] [Expand] [Hide line numbers]

1	`show_input_row($lang['field_hits'], "cat_hits", $cat_row['cat_hits'], 5);`

Insert _BELOW:

PHP Code: [Select] [Expand] [Hide line numbers]

1 2	`show_radio_row($lang['cat_hide'], "cat_hide", $cat_row['cat_hide']); show_input_row($lang['cat_password'], "cat_password", $cat_row['cat_password'], $textinput_size);`

Step 9.6
Find:

PHP Code: [Select] [Expand] [Hide line numbers]

1	`show_text_link($lang['add_subcategory'], "categories.php?action=addcat&cat_parent_id=".$cats['cat_id']);`

Insert _below:

PHP Code: [Select] [Expand] [Hide line numbers]

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15 if ($cats['cat_hide'] || $cats['cat_password']) { echo " <b>("; if ($cats['cat_hide']) { echo $lang['cat_hidden']; } if ($cats['cat_password']) { echo (($cats['cat_hide']) ? ", " : "").$lang['cat_password2']; } echo ")</b>"; }

Step 9.7
Find two times:

PHP Code: [Select] [Expand] [Hide line numbers]

1	`$sql = "SELECT cat_id, cat_name, cat_description, cat_parent_id, cat_hits, cat_order, auth_viewcat, auth_viewimage, auth_download, auth_upload, auth_directupload, auth_vote, auth_sendpostcard, auth_readcomment, auth_postcomment`

Replace both with:

PHP Code: [Select] [Expand] [Hide line numbers]

1	`$sql = "SELECT cat_id, cat_name, cat_description, cat_parent_id, cat_hits, cat_order, auth_viewcat, auth_viewimage, auth_download, auth_upload, auth_directupload, auth_vote, auth_sendpostcard, auth_readcomment, auth_postcomment, cat_hide, cat_password`

Step 10
Open lang/<your language>/main.php
At the end, ^ABOVE closing ?> insert:

PHP Code: [Select] [Expand] [Hide line numbers]

1
2
3
4
5
6 $lang['cat_hide'] = "Hidden"; $lang['cat_password'] = "Category password"; $lang['cat_password_msg'] = "This category is password protected.<br />Please enter the password"; $lang['cat_password_error'] = "You have entered incorrect password"; $lang['cat_hidden'] = "hidden"; $lang['cat_password2'] = "password";

Tweaks and version history in the next reply.