Magento Admin表单重定向到仪表板上?post?

时间:2012-09-26 14:34:38

标签: forms magento post admin

Magento 1.7.0.2: 我试图获取一个表单(在后端)将文件(图片)上传到Post自身(如果不完整),或者adminhtml控制器如果完成。我的JavaScript验证运行良好,但是当我的表单被POST时,我被重定向到仪表板。我已经包含了一个表单密钥,我的网址是使用特殊密钥创建的,但我仍然无法通过POST。任何人都可以帮助我吗?

phtml模板文件:

<script type="text/javascript">
function postSelf(){
    form=document.getElementById('imgSel');
    form.action='<?php Mage::helper("adminhtml")->getUrl("*/*/")?>';
    form.submit();
}    
function validateForm(){

    var name=document.forms["imgSel"]["iName"].value;
    var file=document.forms["imgSel"]["file_upload"].value;
    if (!name){
        alert("You must have an Image Name!");
        postSelf();
    }
    else if (!file){
        alert("You must have a File to upload");
        postSelf();
    }
    else{
        form=document.getElementById('imgSel');
        form.submit();
    } 
}  
    </script>

    <?php Mage::log(Mage::helper("adminhtml")->getUrl("*/*/"), null, ‘layout.log’ );?>

<h3 class="icon-head head-adminhtml-imagegrid">Add an Image:</h3>

<form name="imgSel" id="imgSel" action="<?php Mage::helper("adminhtml")->getUrl("*/*/insert")?>" 
      enctype="multipart/form-data" method="POST">
<!--Form key-->
    <input type="hidden" name="form_key" value="<? echo Mage::getSingleton('core/session')->getFormKey(); ?>" />
    <?php Mage::log(Mage::getSingleton('core/session')->getFormKey(), null, ‘layout.log’ );?>

    <label for="iName">Image Name:</label>
    <input type="text" name="iName">

    <label for="style">Associated Style Name:</label>
    <select name="style">
    <?php
    echo '<option value="-1">None</option>';
    $styles = Mage::getModel('cartonplugin/cartonstyle')->getCollection();
    foreach($styles as $style){
        echo '<option value="'.$style->getId().'"';
        echo '>'.$style->getData('style_name').'</option> ';
    }
    echo '</select><br />';
    ?>
    <input type="hidden" name="MAX_FILE_SIZE" value="40" />
    Upload Image: <input type="file" name="file_upload" />
    <br>
    <!--<input type="submit" value="submit">-->
    <button onClick="validateForm()" class="UploadButton" >Upload</button>
</form>

控制器:只有insertAction()函数适用于此表单。其余的是gridview的东西,用于处理任何已经上传的图像。

<?php
class Nationwide_Newcart_Adminhtml_IndexController extends Mage_Adminhtml_Controller_Action
{
    protected function _initAction()
    {
        $this->loadLayout()->_setActiveMenu('igrid/set_time7')
                ->_addBreadcrumb('image Manager','image Manager');
       return $this;
     }

    public function indexAction()
    {
        $this->loadLayout();
        $this->renderLayout();

        //var_dump(Mage::getSingleton('core/layout')->getUpdate()->getHandles());
     }

      public function newAction()
    {
        $this->_forward('edit');
    }

    public function editAction()
    {
        $stId = $this->getRequest()->getParam('id');
        $model = Mage::getModel('newcart/imagemodel')->load($stId);
        if ($model->getId() || $stId == 0)
           {
             Mage::register('image_data', $model);
             $this->loadLayout();
             $this->_setActiveMenu('igrid/set_time7');
             $this->_addBreadcrumb('image Manager', 'image Manager');
             $this->_addBreadcrumb('Image Description', 'Image Description');
             $this->getLayout()->getBlock('head')
                  ->setCanLoadExtJs(true);
             $this->_addContent($this->getLayout()
                  ->createBlock('newcart/adminhtml_imagegrid_edit'))
                  ->_addLeft($this->getLayout()
                  ->createBlock('newcart/adminhtml_imagegrid_edit_tabs')
              );
             $this->renderLayout();
           }
           else
           {
                 Mage::getSingleton('adminhtml/session')
                       ->addError('That Image does not exist');
                 $this->_redirect('*/*/');
            }
       }

    public function saveAction()
    {
         if ($this->getRequest()->getPost())
         {
           try {
                $postData = $this->getRequest()->getPost();
                $model = Mage::getModel('');
                //Mage::log($this->getRequest()->getParam('id'), null, ‘layout.log’ );
                if( $this->getRequest()->getParam('id') <= 0 )
                    $model->setCreatedTime(
                        Mage::getSingleton('core/date')
                                ->gmtDate()
                    );
                $model
                    //->addData($postData) //DO NOT! Includes a form key!
                    ->setUpdateTime(
                            Mage::getSingleton('core/date')
                            ->gmtDate())
                    ->setId($this->getRequest()->getParam('id'));
                $model->setData('image_name', $postData['image_name']);
                $model->setData('style_name', $postData['style_name']);
                $model->save();

                Mage::getSingleton('adminhtml/session')
                            ->addSuccess('successfully saved');
                Mage::getSingleton('adminhtml/session')
                                ->settestData(false);
                $this->_redirect('*/*/');
                return;
          } catch (Exception $e){
                Mage::getSingleton('adminhtml/session')
                                  ->addError($e->getMessage());
                Mage::getSingleton('adminhtml/session')
                 ->settestData($this->getRequest()
                                    ->getPost()
                );
                $this->_redirect('*/*/edit',
                            array('id' => $this->getRequest()
                                                ->getParam('id')));
                return;
                }
              }
              $this->_redirect('*/*/');
            }

    public function deleteAction()
    {
        if($this->getRequest()->getParam('id') > 0)
        {
            try
            {
                $model = Mage::getModel('newcart/imagemodel');
                $model->setId($this->getRequest()
                                    ->getParam('id'))
                            ->delete();
                Mage::getSingleton('adminhtml/session')
                            ->addSuccess('successfully deleted');
                $this->_redirect('*/*/');
                }
                catch (Exception $e)
                {
                        Mage::getSingleton('adminhtml/session')
                            ->addError($e->getMessage());
                        $this->_redirect('*/*/edit', array('id' => $this->getRequest()->getParam('id')));
                }
         }
            $this->_redirect('*/*/');
    }

    public function insertAction(){
        $postData = $this->getRequest()->getPost();
        Mage::log($postData, null, ‘layout.log’ );

        //post checking
        if(empty($postData)){

        }

        $this->_redirect('*/*/');
    }
}

3 个答案:

答案 0 :(得分:23)

您需要检查的内容很少:

  1. 您遗失了echo

    action="<?php Mage::helper("adminhtml")->getUrl("*/*/insert")?>"
    

    应该是

    action="<?php echo Mage::helper("adminhtml")->getUrl("*/*/insert")?>"
    
  2. 确保您只使用普通的PHP代码(<?php ?>)。短标签已被证明是一种不好的做法,所以改变

    <input type="hidden" name="form_key" value="<? echo Mage::getSingleton('core/session')->getFormKey(); ?>" />
    

    <input type="hidden" name="form_key" value="<?php echo Mage::getSingleton('core/session')->getFormKey(); ?>" />
    
  3. 除此之外,请确保使用浏览器中的浏览源功能在HTML中正确填充所有数据。

答案 1 :(得分:2)

尝试将此字符串添加到表单中。

var result = parametervalue.Calculate(valueA, valueB);

这会为请求创建一个隐藏参数,其中包含Magento使用的form_key。此form_key用于确保提交的表单源自您的magento-instance(作为安全措施)。如果不提供此form_key,您的表单将无效。

答案 2 :(得分:0)

Eric,你的.phtml看起来很好...... 现在你需要看看你的表单的动作网址是否指向正确的位置,并像你这样控制你的控制器:

class controller_name extends Mage_Core_Controller_Front_Action{ // must extends this one for frontend controllers and Mage_Adminhtml_Controller_Action to backend controller.
public function insertAction(){
    $_POST['elementName']; //to this to get post information. 
    $this->getRequest()->getPost('elementName'); //or this way.
}
}