function main_page($current_cache_level, $modified_on)
{
$form = new Form('index.php?module=cloudflare-cache_lvl&action=change', 'post');
$form_container = new FormContainer('Modify Cache Level');
$form_container->output_row('Cache Level', "Cache Level functions based off the setting level. The basic setting will cache most static resources (i.e., css, images, and JavaScript). The simplified setting will ignore the query string when delivering a cached resource. The aggressive setting will cache all static resources, including ones with a query string. ", $form->generate_select_box('cache_level', array('basic' => 'Basic', 'simplified' => 'Simplified', 'aggressive' => 'Aggressive'), $current_cache_level));
$form_container->end();
$buttons[] = $form->generate_submit_button('Submit');
$form->output_submit_wrapper($buttons);
$form->end();
}
function main_page($enabled)
{
$form = new Form('index.php?module=cloudflare-ipv46&action=change', 'post');
$form_container = new FormContainer("IPv6 Support");
$form_container->output_row('IPv6 Support', 'Enable IPv6 support and gateway', $form->generate_yes_no_radio('enable_ipv6', $enabled ? "1" : "0"));
$form_container->end();
$buttons[] = $form->generate_submit_button('Submit');
$form->output_submit_wrapper($buttons);
$form->end();
}
function main_page()
{
$form = new Form("index.php?module=cloudflare-blacklist&action=run", "post");
$form_container = new FormContainer("Blacklist an IP");
$form_container->output_row("IP Address", "The IP address you would like to blacklist<br /><b>Only a single IP is currently supported!</b>", $form->generate_text_box('ip_address'));
$form_container->output_row("Notes", "Any notes you would like to add", $form->generate_text_box('notes'));
$form_container->end();
$buttons[] = $form->generate_submit_button("Submit");
$form->output_submit_wrapper($buttons);
$form->end();
}
function main_page()
{
$form = new Form("index.php?module=cloudflare-challenge&action=add_ip", "post");
$form_container = new FormContainer("Challenge an IP");
$form_container->output_row("IP Address", "The IP address won't be able to access your site until they have completed the captcha successfully or you have removed them from the challenge list.", $form->generate_text_box('ip_address'));
$form_container->output_row("Notes", "Any notes you would like to add", $form->generate_text_box('notes'));
$form_container->end();
$buttons[] = $form->generate_submit_button("Submit");
$form->output_submit_wrapper($buttons);
$form->end();
}
function myalerts_acp_manage_alert_types()
{
global $mybb, $lang, $page, $db, $cache;
$alertTypeManager = MybbStuff_MyAlerts_AlertTypeManager::getInstance();
$alertTypes = $alertTypeManager->getAlertTypes();
if (strtolower($mybb->request_method) == 'post') {
if (!verify_post_check($mybb->get_input('my_post_key'))) {
flash_message($lang->invalid_post_verify_key2, 'error');
admin_redirect("index.php?module=config-myalerts_alert_types");
}
$enabledAlertTypes = $mybb->get_input('alert_types_enabled', MyBB::INPUT_ARRAY);
$canBeUserDisabled = $mybb->get_input('alert_types_can_be_user_disabled', MyBB::INPUT_ARRAY);
$enabledAlertTypes = array_map('intval', array_keys($enabledAlertTypes));
$canBeUserDisabled = array_map('intval', array_keys($canBeUserDisabled));
$updateArray = array();
foreach ($alertTypes as $alertType) {
$type = MybbStuff_MyAlerts_Entity_AlertType::unserialize($alertType);
$type->setEnabled(in_array($type->getId(), $enabledAlertTypes));
$type->setCanBeUserDisabled(in_array($type->getId(), $canBeUserDisabled));
$updateArray[] = $type;
}
$alertTypeManager->updateAlertTypes($updateArray);
flash_message($lang->myalerts_alert_types_updated, 'success');
admin_redirect("index.php?module=config-myalerts_alert_types");
} else {
$page->output_header($lang->myalerts_alert_types);
$form = new Form('index.php?module=config-myalerts_alert_types', 'post');
$table = new Table();
$table->construct_header($lang->myalerts_alert_type_code);
$table->construct_header($lang->myalerts_alert_type_enabled, array('width' => '5%', 'class' => 'align_center'));
$table->construct_header($lang->myalerts_alert_type_can_be_user_disabled, array('width' => '10%', 'class' => 'align_center'));
$noResults = false;
if (!empty($alertTypes)) {
foreach ($alertTypes as $type) {
$alertCode = htmlspecialchars_uni($type['code']);
$table->construct_cell($alertCode);
$table->construct_cell($form->generate_check_box('alert_types_enabled[' . $type['id'] . ']', '', '', array('checked' => $type['enabled'])));
$table->construct_cell($form->generate_check_box('alert_types_can_be_user_disabled[' . $type['id'] . ']', '', '', array('checked' => $type['can_be_user_disabled'])));
$table->construct_row();
}
} else {
$table->construct_cell($lang->myalerts_no_alert_types, array('colspan' => 2));
$table->construct_row();
$noResults = true;
}
$table->output($lang->myalerts_alert_types);
if (!$noResults) {
$buttons[] = $form->generate_submit_button($lang->myalerts_update_alert_types);
$form->output_submit_wrapper($buttons);
}
$form->end();
$page->output_footer();
}
}
function main_page()
{
$form = new Form("index.php?module=cloudflare-whitelist&action=run", "post");
$form_container = new FormContainer("Whitelist an IP");
$form_container->output_row("IP Address", "The IP address you would like to whitelist", $form->generate_text_box('ip_address'));
$form_container->output_row("Notes", "Any notes you would like to add", $form->generate_text_box('notes'));
$form_container->end();
$buttons[] = $form->generate_submit_button("Submit");
$form->output_submit_wrapper($buttons);
$form->end();
}
function main_page()
{
$form = new Form('index.php?module=cloudflare-purge_cache&action=purge', 'post');
$form_container = new FormContainer('Purge Cache');
$form_container->output_row('Purge Entire Cache', 'Remove ALL files from CloudFlare\'s cache. This will include javascript, stylesheets and images. CloudFlare can take up to 3 hours to recache resources again<br /><b>Note: </b>This may have dramatic affects on your origin server load after performing this action.', $form->generate_yes_no_radio('purge_input', 0));
$form_container->output_row('Purge by URL', 'Granularly remove one or more files from CloudFlare\'s cache either by specifying the URL<br /><b>Note: </b><u>One</u> URL per line (max: 30)', $form->generate_text_area('urls'));
$form_container->end();
$buttons[] = $form->generate_submit_button('Submit');
$form->output_submit_wrapper($buttons);
$form->end();
}
function main_page($in_dev_mode, $time_remaining = 0)
{
global $page;
if ($in_dev_mode) {
$page->output_alert("CloudFlare is currently in development mode. This will expire in " . gmdate("H:i:s", $time_remaining));
}
$form = new Form('index.php?module=cloudflare-dev_mode&action=change', 'post');
$form_container = new FormContainer('Change development mode');
$form_container->output_row('Development Mode', "This will bypass CloudFlare's accelerated cache and slow down your site, but is useful if you are making changes to cacheable content (like images, css, or JavaScript) and would like to see those changes right away.", $form->generate_on_off_radio('dev_mode', $in_dev_mode ? 1 : 0));
$form_container->end();
$buttons[] = $form->generate_submit_button('Submit');
$form->output_submit_wrapper($buttons);
$form->end();
}
function main_page($current_setting)
{
global $security_levels;
$form = new Form('index.php?module=cloudflare-security_lvl&action=change_security_level', 'post');
$form_container = new FormContainer('Modify Security Level');
$form_container->output_row('Security Level', 'The Security Level you choose will determine which visitors will be presented with a challenge page<br />
<ul>
<li><b>Essentially Off:</b> Challenges only the most grievous offenders</li>
<li><b>Low:</b> Challenges only the most threatening visitors</li>
<li><b>Medium:</b> Challenges both moderate threat visitors and the most threatening visitors</li>
<li><b>High:</b> Challenges all visitors that have exhibited threatening behavior within the last 14 days</li>
<li><b>I\'m Under Attack!:</b> Should only be used if your website is under a DDoS attack</li>
<ul><li>Visitors will receive an interstitial page while we analyze their traffic and behavior to make sure they are a legitimate human visitor trying to access your website</li></ul>
</li>
</ul>', $form->generate_select_box('sec_level', $security_levels, $current_setting));
$form_container->end();
$buttons[] = $form->generate_submit_button('Submit');
$form->output_submit_wrapper($buttons);
$form->end();
}
$form = new Form("index.php?module=config/mycode&action=edit", "post", "edit");
echo $form->generate_hidden_field('cid', $mycode['cid']);
if ($errors) {
$page->output_inline_error($errors);
} else {
$mybb->input = $mycode;
}
$form_container = new FormContainer($lang->edit_mycode);
$form_container->output_row($lang->title . " <em>*</em>", '', $form->generate_text_box('title', $mybb->input['title'], array('id' => 'title')), 'title');
$form_container->output_row($lang->short_description, '', $form->generate_text_box('description', $mybb->input['description'], array('id' => 'description')), 'description');
$form_container->output_row($lang->regular_expression . " <em>*</em>", $lang->regular_expression_desc . '<br /><strong>' . $lang->example . '</strong> \\[b\\](.*?)\\[/b\\]', $form->generate_text_area('regex', $mybb->input['regex'], array('id' => 'regex')), 'regex');
$form_container->output_row($lang->replacement . " <em>*</em>", $lang->replacement_desc . '<br /><strong>' . $lang->example . '</strong> <strong>$1</strong>', $form->generate_text_area('replacement', $mybb->input['replacement'], array('id' => 'replacement')), 'replacement');
$form_container->output_row($lang->enabled . " <em>*</em>", '', $form->generate_yes_no_radio('active', $mybb->input['active']));
$form_container->output_row($lang->parse_order, $lang->parse_order_desc, $form->generate_text_box('parseorder', $mybb->input['parseorder'], array('id' => 'parseorder')), 'parseorder');
$form_container->end();
$buttons[] = $form->generate_submit_button($lang->save_mycode);
$form->output_submit_wrapper($buttons);
// Sandbox
echo "<br />\n";
$form_container = new FormContainer($lang->sandbox);
$form_container->output_row($lang->sandbox_desc);
$form_container->output_row($lang->test_value, $lang->test_value_desc, $form->generate_text_area('test_value', $mybb->input['test_value'], array('id' => 'test_value')) . "<br />" . $form->generate_submit_button($lang->test, array('id' => 'test', 'name' => 'test')), 'test_value');
$form_container->output_row($lang->result_html, $lang->result_html_desc, $form->generate_text_area('result_html', $sandbox['html'], array('id' => 'result_html', 'disabled' => 1)), 'result_html');
$form_container->output_row($lang->result_actual, $lang->result_actual_desc, "<div id=\"result_actual\">{$sandbox['actual']}</div>");
$form_container->end();
echo '<script type="text/javascript" src="./jscripts/mycode_sandbox.js"></script>';
echo '<script type="text/javascript">
Event.observe(window, "load", function() {
//<![CDATA[
new MyCodeSandbox("./index.php?module=config/mycode&action=xmlhttp_test_mycode", $("test"), $("regex"), $("replacement"), $("test_value"), $("result_html"), $("result_actual"));
$image = "../" . $smilie['image'];
}
$form_container->output_cell("<img src=\"{$image}\" alt=\"\" />", array("class" => "align_center", "width" => 1));
$form_container->output_cell($form->generate_text_box("name[{$smilie['sid']}]", $smilie['name'], array('id' => 'name', 'style' => 'width: 98%')));
$form_container->output_cell($form->generate_text_box("find[{$smilie['sid']}]", $smilie['find'], array('id' => 'find', 'style' => 'width: 95%')));
$form_container->output_cell($form->generate_text_box("disporder[{$smilie['sid']}]", $smilie['disporder'], array('id' => 'disporder', 'style' => 'width: 80%')));
$form_container->output_cell($form->generate_yes_no_radio("showclickable[{$smilie['sid']}]", $smilie['showclickable']), array("class" => "align_center"));
$form_container->output_cell($form->generate_check_box("delete[{$smilie['sid']}]", 1, $mybb->input['delete']), array("class" => "align_center"));
$form_container->construct_row();
}
if ($form_container->num_rows() == 0) {
$form_container->output_cell($lang->no_smilies, array('colspan' => 6));
$form_container->construct_row();
}
$form_container->end();
$buttons[] = $form->generate_submit_button($lang->save_smilies);
$buttons[] = $form->generate_reset_button($lang->reset);
$form->output_submit_wrapper($buttons);
$form->end();
$page->output_footer();
}
if (!$mybb->input['action']) {
$plugins->run_hooks("admin_config_smilies_start");
$page->output_header($lang->manage_smilies);
$sub_tabs['manage_smilies'] = array('title' => $lang->manage_smilies, 'link' => "index.php?module=config-smilies", 'description' => $lang->manage_smilies_desc);
$sub_tabs['add_smilie'] = array('title' => $lang->add_smilie, 'link' => "index.php?module=config-smilies&action=add");
$sub_tabs['add_multiple_smilies'] = array('title' => $lang->add_multiple_smilies, 'link' => "index.php?module=config-smilies&action=add_multiple");
$sub_tabs['mass_edit'] = array('title' => $lang->mass_edit, 'link' => "index.php?module=config-smilies&action=mass_edit");
$page->output_nav_tabs($sub_tabs, 'manage_smilies');
$pagenum = intval($mybb->input['page']);
if ($pagenum) {
$form_container = new FormContainer($lang->announcement_preview);
$form_container->output_row($preview['subject'], "", $preview['message'], 'preview');
$form_container->end();
}
$form_container = new FormContainer($lang->add_an_announcement);
$form_container->output_row($lang->title . " <em>*</em>", "", $form->generate_text_box('title', $mybb->input['title'], array('id' => 'title')), 'title');
$form_container->output_row($lang->start_date . " <em>*</em>", $lang->start_date_desc, "<select name=\"starttime_day\">\n{$startdateday}</select>\n \n<select name=\"starttime_month\">\n{$startdatemonth}</select>\n \n<input type=\"text\" name=\"starttime_year\" value=\"{$startdateyear}\" size=\"4\" maxlength=\"4\" class=\"text_input\" />\n - {$lang->time} " . $form->generate_text_box('starttime_time', $mybb->input['starttime_time'], array('id' => 'starttime_time', 'style' => 'width: 50px;')));
$actions = "<script type=\"text/javascript\">\n\tfunction checkAction(id)\n\t{\n\t\tvar checked = '';\n\n\t\t\$('.'+id+'s_check').each(function(e, val)\n\t\t{\n\t\t\tif(\$(this).prop('checked') == true)\n\t\t\t{\n\t\t\t\tchecked = \$(this).val();\n\t\t\t}\n\t\t});\n\t\t\$('.'+id+'s').each(function(e)\n\t\t{\n\t\t\t\$(this).hide();\n\t\t});\n\t\tif(\$('#'+id+'_'+checked))\n\t\t{\n\t\t\t\$('#'+id+'_'+checked).show();\n\t\t}\n\t}\n</script>\n\t<dl style=\"margin-top: 0; margin-bottom: 0; width: 100%;\">\n\t<dt><label style=\"display: block;\"><input type=\"radio\" name=\"endtime_type\" value=\"1\" {$endtime_checked[1]} class=\"endtimes_check\" onclick=\"checkAction('endtime');\" style=\"vertical-align: middle;\" /> <strong>{$lang->set_time}</strong></label></dt>\n\t\t<dd style=\"margin-top: 4px;\" id=\"endtime_1\" class=\"endtimes\">\n\t\t\t<table cellpadding=\"4\">\n\t\t\t\t<tr>\n\t\t\t\t\t<td><select name=\"endtime_day\">\n{$enddateday}</select>\n \n<select name=\"endtime_month\">\n{$enddatemonth}</select>\n \n<input type=\"text\" name=\"endtime_year\" value=\"{$enddateyear}\" size=\"4\" maxlength=\"4\" />\n - {$lang->time} " . $form->generate_text_box('endtime_time', $mybb->input['endtime_time'], array('id' => 'endtime_time', 'style' => 'width: 50px;')) . "</td>\n\t\t\t\t</tr>\n\t\t\t</table>\n\t\t</dd>\n\t\t<dt><label style=\"display: block;\"><input type=\"radio\" name=\"endtime_type\" value=\"2\" {$endtime_checked[2]} class=\"endtimes_check\" onclick=\"checkAction('endtime');\" style=\"vertical-align: middle;\" /> <strong>{$lang->never}</strong></label></dt>\n\t</dl>\n\t<script type=\"text/javascript\">\n\tcheckAction('endtime');\n\t</script>";
$form_container->output_row($lang->end_date . " <em>*</em>", $lang->end_date_desc, $actions);
$form_container->output_row($lang->message . " <em>*</em>", "", $form->generate_text_area('message', $mybb->input['message'], array('id' => 'message')), 'message');
$form_container->output_row($lang->forums_to_appear_in . " <em>*</em>", $lang->forums_to_appear_in_desc, $form->generate_forum_select('fid', $mybb->input['fid'], array('size' => 5, 'main_option' => $lang->all_forums)));
$form_container->output_row($lang->allow_html . " <em>*</em>", "", $form->generate_yes_no_radio('allowhtml', $mybb->input['allowhtml'], array('style' => 'width: 2em;')));
$form_container->output_row($lang->allow_mycode . " <em>*</em>", "", $form->generate_yes_no_radio('allowmycode', $mybb->input['allowmycode'], array('style' => 'width: 2em;')));
$form_container->output_row($lang->allow_smilies . " <em>*</em>", "", $form->generate_yes_no_radio('allowsmilies', $mybb->input['allowsmilies'], array('style' => 'width: 2em;')));
$form_container->end();
$buttons[] = $form->generate_submit_button($lang->save_announcement);
$buttons[] = $form->generate_submit_button($lang->preview_announcement, array('name' => 'preview'));
$form->output_submit_wrapper($buttons);
$form->end();
$page->output_footer();
}
if ($mybb->input['action'] == "delete") {
$query = $db->simple_select("announcements", "*", "aid='{$mybb->input['aid']}'");
$announcement = $db->fetch_array($query);
// Does the announcement not exist?
if (!$announcement['aid']) {
flash_message($lang->error_invalid_announcement, 'error');
admin_redirect("index.php?module=forum-announcements");
}
// User clicked no
if ($mybb->input['no']) {
$user = get_user($mybb->input['uid']);
$mybb->input['username'] = $user['username'];
}
$form_container = new FormContainer($lang->ban_a_user);
$form_container->output_row($lang->ban_username, $lang->autocomplete_enabled, $form->generate_text_box('username', $mybb->input['username'], array('id' => 'username')), 'username');
$form_container->output_row($lang->ban_reason, "", $form->generate_text_box('reason', $mybb->input['reason'], array('id' => 'reason')), 'reason');
if (count($banned_groups) > 1) {
$form_container->output_row($lang->ban_group, $lang->add_ban_group_desc, $form->generate_select_box('usergroup', $banned_groups, $mybb->input['usergroup'], array('id' => 'usergroup')), 'usergroup');
}
foreach ($ban_times as $time => $period) {
if ($time != "---") {
$friendly_time = my_date("D, jS M Y @ g:ia", ban_date2timestamp($time));
$period = "{$period} ({$friendly_time})";
}
$length_list[$time] = $period;
}
$form_container->output_row($lang->ban_time, "", $form->generate_select_box('bantime', $length_list, $mybb->input['bantime'], array('id' => 'bantime')), 'bantime');
$form_container->end();
// Autocompletion for usernames
echo '
<script type="text/javascript" src="../jscripts/autocomplete.js?ver=140"></script>
<script type="text/javascript">
<!--
new autoComplete("username", "../xmlhttp.php?action=get_users", {valueSpan: "username"});
// -->
</script>';
$buttons[] = $form->generate_submit_button($lang->ban_user);
$form->output_submit_wrapper($buttons);
$form->end();
$page->output_footer();
}
function akismet_admin()
{
global $mybb, $db, $page, $lang;
if ($page->active_action != "akismet") {
return;
}
$page->add_breadcrumb_item($lang->akismet);
if ($mybb->input['delete_all'] && $mybb->request_method == "post") {
// User clicked no
if ($mybb->input['no']) {
admin_redirect("index.php?module=forum-akismet");
}
if ($mybb->request_method == "post") {
// Delete the template
$db->delete_query("posts", "visible = '-4'");
// Log admin action
log_admin_action();
flash_message($lang->success_deleted_spam, 'success');
admin_redirect("index.php?module=forum-akismet");
} else {
$page->output_confirm_action("index.php?module=forum-akismet&delete_all=1", $lang->confirm_spam_deletion);
}
}
if ($mybb->input['unmark'] && $mybb->request_method == "post") {
$unmark = $mybb->input['akismet'];
if (empty($unmark)) {
flash_message($lang->error_unmark, 'error');
admin_redirect("index.php?module=forum-akismet");
}
$posts_in = '';
$comma = '';
foreach ($unmark as $key => $val) {
$posts_in .= $comma . intval($key);
$comma = ',';
}
$query = $db->simple_select("posts", "pid, tid", "pid IN ({$posts_in}) AND replyto = '0'");
while ($post = $db->fetch_array($query)) {
$threadp[] = $post['tid'];
}
if (!is_array($threadp)) {
$threadp = array();
}
$thread_list = implode(',', $threadp);
$query = $db->query("\r\n\t\t\tSELECT p.tid, f.usepostcounts, p.uid, p.fid, p.dateline, p.replyto, t.lastpost, t.lastposter, t.lastposteruid, t.subject\r\n\t\t\tFROM " . TABLE_PREFIX . "posts p\r\n\t\t\tLEFT JOIN " . TABLE_PREFIX . "threads t ON (t.tid=p.tid)\r\n\t\t\tLEFT JOIN " . TABLE_PREFIX . "forums f ON (f.fid=p.fid)\r\n\t\t\tWHERE p.pid IN ({$posts_in}) AND p.visible = '-4'\r\n\t\t");
while ($post = $db->fetch_array($query)) {
// Fetch the last post for this forum
$query2 = $db->query("\r\n\t\t\t\tSELECT tid, lastpost, lastposter, lastposteruid, subject\r\n\t\t\t\tFROM " . TABLE_PREFIX . "threads\r\n\t\t\t\tWHERE fid='{$post['fid']}' AND visible='1' AND closed NOT LIKE 'moved|%'\r\n\t\t\t\tORDER BY lastpost DESC\r\n\t\t\t\tLIMIT 0, 1\r\n\t\t\t");
$lastpost = $db->fetch_array($query2);
if ($post['lastpost'] > $lastpost['lastpost']) {
$lastpost['lastpost'] = $post['lastpost'];
$lastpost['lastposter'] = $post['lastposter'];
$lastpost['lastposteruid'] = $post['lastposteruid'];
$lastpost['subject'] = $post['subject'];
$lastpost['tid'] = $post['tid'];
}
$update_count = array("lastpost" => intval($lastpost['lastpost']), "lastposter" => $db->escape_string($lastpost['lastposter']), "lastposteruid" => intval($lastpost['lastposteruid']), "lastposttid" => intval($lastpost['tid']), "lastpostsubject" => $db->escape_string($lastpost['subject']));
$db->update_query("forums", $update_count, "fid='{$post['fid']}'");
$query2 = $db->query("\r\n\t\t\t\tSELECT u.uid, u.username, p.username AS postusername, p.dateline\r\n\t\t\t\tFROM " . TABLE_PREFIX . "posts p\r\n\t\t\t\tLEFT JOIN " . TABLE_PREFIX . "users u ON (u.uid=p.uid)\r\n\t\t\t\tWHERE p.tid='{$post['tid']}' AND p.visible='1' OR p.pid = '{$post['pid']}'\r\n\t\t\t\tORDER BY p.dateline DESC\r\n\t\t\t\tLIMIT 1");
$lastpost = $db->fetch_array($query2);
$query2 = $db->query("\r\n\t\t\t\tSELECT u.uid, u.username, p.username AS postusername, p.dateline\r\n\t\t\t\tFROM " . TABLE_PREFIX . "posts p\r\n\t\t\t\tLEFT JOIN " . TABLE_PREFIX . "users u ON (u.uid=p.uid)\r\n\t\t\t\tWHERE p.tid='{$post['tid']}'\r\n\t\t\t\tORDER BY p.dateline ASC\r\n\t\t\t\tLIMIT 0,1\r\n\t\t\t");
$firstpost = $db->fetch_array($query2);
if (!$firstpost['username']) {
$firstpost['username'] = $firstpost['postusername'];
}
if (!$lastpost['username']) {
$lastpost['username'] = $lastpost['postusername'];
}
if (!$lastpost['dateline']) {
$lastpost['username'] = $firstpost['username'];
$lastpost['uid'] = $firstpost['uid'];
$lastpost['dateline'] = $firstpost['dateline'];
}
$lastpost['username'] = $db->escape_string($lastpost['username']);
$firstpost['username'] = $db->escape_string($firstpost['username']);
$query2 = $db->simple_select("users", "akismetstopped", "uid='{$post['uid']}'");
$akismetstopped = $db->fetch_field($query2, "akismetstopped") - 1;
if ($akismetstopped < 0) {
$akismetstopped = 0;
}
$db->update_query("users", array('akismetstopped' => $akismetstopped), "uid='{$post['uid']}'");
$update_array = array('username' => $firstpost['username'], 'uid' => intval($firstpost['uid']), 'lastpost' => intval($lastpost['dateline']), 'lastposter' => $lastpost['username'], 'lastposteruid' => intval($lastpost['uid']));
$db->update_query("threads", $update_array, "tid='{$post['tid']}'");
if ($post['usepostcounts'] != 0) {
$db->write_query("UPDATE " . TABLE_PREFIX . "users SET postnum=postnum+1 WHERE uid = '{$post['uid']}'");
}
$newthreads = $newreplies = 0;
if ($post['replyto'] == 0) {
++$newthreads;
} else {
++$newreplies;
}
update_thread_counters($post['tid'], array('replies' => '+' . $newreplies));
update_forum_counters($post['fid'], array('threads' => '+' . $newthreads, 'posts' => '+1'));
}
$approve = array("visible" => 1);
if ($thread_list) {
$db->update_query("threads", $approve, "tid IN ({$thread_list})");
}
$db->update_query("posts", $approve, "pid IN ({$posts_in})");
// Log admin action
log_admin_action();
flash_message($lang->success_unmarked, 'success');
admin_redirect("index.php?module=forum-akismet");
}
if ($mybb->input['delete'] && $mybb->request_method == "post") {
$deletepost = $mybb->input['akismet'];
if (empty($deletepost)) {
flash_message($lang->error_deletepost, 'error');
admin_redirect("index.php?module=forum-akismet");
}
$posts_in = '';
$comma = '';
foreach ($deletepost as $key => $val) {
$posts_in .= $comma . intval($key);
$comma = ',';
}
$query = $db->simple_select("posts", "pid, tid", "pid IN ({$posts_in}) AND replyto = '0'");
while ($post = $db->fetch_array($query)) {
$threadp[$post['pid']] = $post['tid'];
}
if (!is_array($threadp)) {
$threadp = array();
}
require_once MYBB_ROOT . "inc/functions_upload.php";
foreach ($deletepost as $pid => $val) {
if (array_key_exists($pid, $threadp)) {
$db->delete_query("posts", "pid IN ({$posts_in})");
$db->delete_query("attachments", "pid IN ({$posts_in})");
// Get thread info
$query = $db->simple_select("threads", "poll", "tid='" . $threadp[$pid] . "'");
$poll = $db->fetch_field($query, 'poll');
// Delete threads, redirects, favorites, polls, and poll votes
$db->delete_query("threads", "tid='" . $threadp[$pid] . "'");
$db->delete_query("threads", "closed='moved|" . $threadp[$pid] . "'");
$db->delete_query("threadsubscriptions", "tid='" . $threadp[$pid] . "'");
$db->delete_query("polls", "tid='" . $threadp[$pid] . "'");
$db->delete_query("pollvotes", "pid='{$poll}'");
}
// Remove attachments
remove_attachments($pid);
// Delete the post
$db->delete_query("posts", "pid='{$pid}'");
}
// Log admin action
log_admin_action();
flash_message($lang->success_spam_deleted, 'success');
admin_redirect("index.php?module=forum-akismet");
}
if (!$mybb->input['action']) {
require MYBB_ROOT . "inc/class_parser.php";
$parser = new postParser();
$page->output_header($lang->akismet);
$form = new Form("index.php?module=forum-akismet", "post");
$table = new Table();
$table->construct_header($form->generate_check_box("checkall", 1, '', array('class' => 'checkall')), array('width' => '5%'));
$table->construct_header("Title / Username / Post", array('class' => 'align_center'));
$mybb->input['page'] = intval($mybb->input['page']);
if ($mybb->input['page'] > 0) {
$start = $mybb->input['page'] * 20;
} else {
$start = 0;
}
$query = $db->simple_select("posts", "COUNT(pid) as spam", "visible = '-4'");
$total_rows = $db->fetch_field($query, 'spam');
if ($start > $total_rows) {
$start = $total_rows - 20;
}
if ($start < 0) {
$start = 0;
}
$query = $db->simple_select("posts", "*", "visible = '-4'", array('limit_start' => $start, 'limit' => '20', 'order_by' => 'dateline', 'order_dir' => 'desc'));
while ($post = $db->fetch_array($query)) {
if ($post['uid'] != 0) {
$username = "******"../" . str_replace("{uid}", $post['uid'], PROFILE_URL) . "\" target=\"_blank\">" . format_name($post['username'], $post['usergroup'], $post['displaygroup']) . "</a>";
} else {
$username = $post['username'];
}
$table->construct_cell($form->generate_check_box("akismet[{$post['pid']}]", 1, ''));
$table->construct_cell("<span style=\"float: right;\">{$lang->username} {$username}</span> <span style=\"float: left;\">{$lang->title}: " . htmlspecialchars_uni($post['subject']) . " <strong>(" . my_date($mybb->settings['dateformat'], $post['dateline']) . ", " . my_date($mybb->settings['timeformat'], $post['dateline']) . ")</strong></span>");
$table->construct_row();
$parser_options = array("allow_html" => 0, "allow_mycode" => 0, "allow_smilies" => 0, "allow_imgcode" => 0, "me_username" => $post['username'], "filter_badwords" => 1);
$post['message'] = $parser->parse_message($post['message'], $parser_options);
$table->construct_cell($post['message'], array("colspan" => 2));
$table->construct_row();
}
$num_rows = $table->num_rows();
if ($num_rows == 0) {
$table->construct_cell($lang->no_spam_found, array("class" => "align_center", "colspan" => 2));
$table->construct_row();
}
$table->output($lang->detected_spam_messages);
echo "<br />" . draw_admin_pagination($mybb->input['page'], 20, $total_rows, "index.php?module=forum-akismet&page={page}");
$buttons[] = $form->generate_submit_button($lang->unmark_selected, array('name' => 'unmark'));
$buttons[] = $form->generate_submit_button($lang->deleted_selected, array('name' => 'delete'));
if ($num_rows > 0) {
$buttons[] = $form->generate_submit_button($lang->delete_all, array('name' => 'delete_all', 'onclick' => "return confirm('{$lang->confirm_spam_deletion}');"));
}
$form->output_submit_wrapper($buttons);
$form->end();
$page->output_footer();
}
exit;
}
$form = new Form("index.php?module=config-help_documents&action=edit", "post", "edit");
echo $form->generate_hidden_field("hid", $mybb->input['hid']);
echo $form->generate_hidden_field("usetranslation", $mybb->input['usetranslation']);
$form_container = new FormContainer($lang->edit_document . " ({$lang->id} " . intval($mybb->input['hid']) . ")");
$query = $db->simple_select("helpsections", "sid, name");
while ($section = $db->fetch_array($query)) {
$sections[$section['sid']] = $section['name'];
}
$form_container->output_row($lang->section . " <em>*</em>", "", $form->generate_select_box("sid", $sections, $mybb->input['sid']), 'sid');
$form_container->output_row($lang->title . " <em>*</em>", "", $form->generate_text_box('name', $mybb->input['name'], array('id' => 'name')), 'name');
$form_container->output_row($lang->short_description . " <em>*</em>", "", $form->generate_text_box('description', $mybb->input['description'], array('id' => 'description')), 'description');
$form_container->output_row($lang->document . " <em>*</em>", "", $form->generate_text_area('document', $mybb->input['document'], array('id' => 'document')), 'document');
$form_container->output_row($lang->display_order, "", $form->generate_text_box('disporder', $mybb->input['disporder'], array('id' => 'disporder')), 'disporder');
$form_container->output_row($lang->enabled . " <em>*</em>", "", $form->generate_yes_no_radio('enabled', $mybb->input['enabled']));
$form_container->end();
$buttons[] = $form->generate_submit_button($lang->edit_document);
$form->output_submit_wrapper($buttons);
$form->end();
}
$page->output_footer();
}
// Delete something
if ($mybb->input['action'] == "delete") {
$plugins->run_hooks("admin_config_help_documents_delete");
// User clicked no
if ($mybb->input['no']) {
admin_redirect("index.php?module=config-help_documents");
}
// Do delete something?
if ($mybb->request_method == "post") {
// Delete section
$file_id = preg_replace("#\\." . get_extension($task_file) . "\$#i", "\$1", $task_file);
$task_list[$file_id] = $task_file;
}
}
$form_container->output_row($lang->task . " <em>*</em>", $lang->task_desc, $form->generate_select_box("file", $task_list, $task_data['file'], array('id' => 'file')), 'file');
$form_container->output_row($lang->time_minutes, $lang->time_minutes_desc, $form->generate_text_box('minute', $task_data['minute'], array('id' => 'minute')), 'minute');
$form_container->output_row($lang->time_hours, $lang->time_hours_desc, $form->generate_text_box('hour', $task_data['hour'], array('id' => 'hour')), 'hour');
$form_container->output_row($lang->time_days_of_month, $lang->time_days_of_month_desc, $form->generate_text_box('day', $task_data['day'], array('id' => 'day')), 'day');
$options = array("*" => $lang->every_weekday, "0" => $lang->sunday, "1" => $lang->monday, "2" => $lang->tuesday, "3" => $lang->wednesday, "4" => $lang->thursday, "5" => $lang->friday, "6" => $lang->saturday);
$form_container->output_row($lang->time_weekdays, $lang->time_weekdays_desc, $form->generate_select_box('weekday[]', $options, $task_data['weekday'], array('id' => 'weekday', 'multiple' => true)), 'weekday');
$options = array("*" => $lang->every_month, "1" => $lang->january, "2" => $lang->february, "3" => $lang->march, "4" => $lang->april, "5" => $lang->may, "6" => $lang->june, "7" => $lang->july, "8" => $lang->august, "9" => $lang->september, "10" => $lang->october, "11" => $lang->november, "12" => $lang->december);
$form_container->output_row($lang->time_months, $lang->time_months_desc, $form->generate_select_box('month[]', $options, $task_data['month'], array('id' => 'month', 'multiple' => true)), 'month');
$form_container->output_row($lang->enable_logging . " <em>*</em>", "", $form->generate_yes_no_radio("logging", $task_data['logging'], true));
$form_container->output_row($lang->enabled . " <em>*</em>", "", $form->generate_yes_no_radio("enabled", $task_data['enabled'], true));
$form_container->end();
$buttons[] = $form->generate_submit_button($lang->save_task);
$form->output_submit_wrapper($buttons);
$form->end();
$page->output_footer();
}
if ($mybb->input['action'] == "delete") {
$plugins->run_hooks("admin_tools_tasks_delete");
$query = $db->simple_select("tasks", "*", "tid='" . intval($mybb->input['tid']) . "'");
$task = $db->fetch_array($query);
// Does the task not exist?
if (!$task['tid']) {
flash_message($lang->error_invalid_task, 'error');
admin_redirect("index.php?module=tools/tasks");
}
// User clicked no
if ($mybb->input['no']) {
$form_container->output_row($lang->delete_thread . " <em>*</em>", '', $form->generate_yes_no_radio('deletethread', $mybb->input['deletethread']));
$query = $db->simple_select('threadprefixes', 'pid, prefix');
if ($db->num_rows($query) > 0) {
$thread_prefixes = array('-1' => $lang->no_change, '0' => $lang->no_prefix);
while ($prefix = $db->fetch_array($query)) {
$thread_prefixes[$prefix['pid']] = $prefix['prefix'];
}
$form_container->output_row($lang->apply_thread_prefix . " <em>*</em>", '', $form->generate_select_box('threadprefix', $thread_prefixes, $mybb->input['threadprefix'], array('id' => 'threadprefix')), 'threadprefix');
}
$form_container->output_row($lang->new_subject . " <em>*</em>", $lang->new_subject_desc, $form->generate_text_box('newsubject', $mybb->input['newsubject']));
$form_container->end();
$form_container = new FormContainer($lang->add_new_reply);
$form_container->output_row($lang->add_new_reply, $lang->add_new_reply_desc, $form->generate_text_area('newreply', $mybb->input['newreply'], array('id' => 'newreply')), 'newreply');
$form_container->output_row($lang->reply_subject, $lang->reply_subject_desc, $form->generate_text_box('newreplysubject', $mybb->input['newreplysubject'], array('id' => 'newreplysubject')), 'newreplysubject');
$form_container->end();
$buttons[] = $form->generate_submit_button($lang->save_post_tool);
$form->output_submit_wrapper($buttons);
$form->end();
$page->output_footer();
}
if (!$mybb->input['action']) {
$plugins->run_hooks("admin_config_mod_tools_start");
$page->output_header($lang->mod_tools . " - " . $lang->thread_tools);
$sub_tabs['thread_tools'] = array('title' => $lang->thread_tools, 'link' => "index.php?module=config-mod_tools", 'description' => $lang->thread_tools_desc);
$sub_tabs['add_thread_tool'] = array('title' => $lang->add_new_thread_tool, 'link' => "index.php?module=config-mod_tools&action=add_thread_tool");
$sub_tabs['post_tools'] = array('title' => $lang->post_tools, 'link' => "index.php?module=config-mod_tools&action=post_tools");
$sub_tabs['add_post_tool'] = array('title' => $lang->add_new_post_tool, 'link' => "index.php?module=config-mod_tools&action=add_post_tool");
$page->output_nav_tabs($sub_tabs, 'thread_tools');
$table = new Table();
$table->construct_header($lang->title);
$table->construct_header($lang->controls, array('class' => "align_center", 'colspan' => 2));
$plugins->run_hooks("admin_rpgsuite_groupfields_begin");
$page->add_breadcrumb_item('Create Pack');
$page->output_header('Pack Creation');
// Generate list of IC Groups for editing
$form = new Form("", "post");
$form_container = new FormContainer();
$form_container->output_row('Pack Name', '', '<input type="text" class="text_input" name="title">');
$form_container->output_row('Pack Description', 'The pack\'s joining rules.', '<textarea name="description" rows="5" cols="45"></textarea>');
$form_container->output_row('Pack Location (Region)', 'Region where the pack\'s claim lies.', '<select id="region" name="region">' . $rpgsuite->generate_regionoptions() . '</select>');
$form_container->output_row('Pack Location (Territory)', 'Prefix representing the Pack\'s claim.', '<span id="prefix">' . $rpgsuite->generate_prefixselect() . '</span>');
$form_container->output_row('Pack Namestyle', '', '<input type="text" class="text_input" name="namestyle" value="{username}">');
$form_container->output_row('Pack Image', 'Group image', '<input type="text" class="text_input" name="image" value="">');
$form_container->output_row('Pack Members', '', '<textarea name="members" id="members" rows="2" cols="38" tabindex="1" style="width: 450px;"></textarea>');
$form_container->output_row('Pack Managers', '', '<textarea name="managers" id="managers" rows="2" cols="38" tabindex="1" style="width: 450px;"></textarea>');
$form_container->end();
$buttons[] = $form->generate_submit_button("Create Pack");
$form->output_submit_wrapper($buttons);
// Autocompletion for usernames
echo '
<link rel="stylesheet" href="../jscripts/select2/select2.css">
<script type="text/javascript" src="../jscripts/select2/select2.min.js?ver=1804"></script>
<script type="text/javascript">
<!--
$("#members").select2({
placeholder: "' . $lang->search_for_a_user . '",
minimumInputLength: 3,
maximumSelectionSize: 12,
multiple: true,
ajax: { // instead of writing the function to execute the request we use Select2\'s convenient helper
url: "../xmlhttp.php?action=get_users",
dataType: \'json\',
echo $form->generate_hidden_field('type', "templates");
$form_container = new FormContainer($lang->search_replace);
$form_container->output_row($lang->search_for, "", $form->generate_text_area('find', $mybb->input['find'], array('id' => 'find', 'class' => 'codepress mybb', 'style' => 'width: 100%; height: 200px;')));
$form_container->output_row($lang->replace_with, "", $form->generate_text_area('replace', $mybb->input['replace'], array('id' => 'replace', 'class' => 'codepress mybb', 'style' => 'width: 100%; height: 200px;')));
$form_container->end();
$buttons[] = $form->generate_submit_button($lang->find_and_replace);
$form->output_submit_wrapper($buttons);
$form->end();
echo "<br />";
$form = new Form("index.php?module=style/templates&action=search_replace", "post", "do_title");
echo $form->generate_hidden_field('type', "titles");
$form_container = new FormContainer($lang->search_template_names);
$form_container->output_row($lang->search_for, "", $form->generate_text_box('title', $mybb->input['title'], array('id' => 'title')), 'title');
$form_container->end();
$buttons = array();
$buttons[] = $form->generate_submit_button($lang->find_templates);
$buttons[] = $form->generate_reset_button($lang->reset);
$form->output_submit_wrapper($buttons);
$form->end();
if ($admin_options['codepress'] != 0) {
echo "<script type=\"text/javascript\">\n\tEvent.observe('do_template', 'submit', function()\n\t{\n\t\tif(\$('find_cp')) {\n\t\t\tvar area = \$('find_cp');\n\t\t\tarea.id = 'find';\n\t\t\tarea.value = find.getCode();\n\t\t\tarea.disabled = false;\n\t\t}\n\t\t\n\t\tif(\$('replace_cp')) {\n\t\t\tvar area = \$('replace_cp');\n\t\t\tarea.id = 'replace';\n\t\t\tarea.value = replace.getCode();\n\t\t\tarea.disabled = false;\n\t\t}\n\t});\n</script>";
}
$page->output_footer();
}
if ($mybb->input['action'] == "find_updated") {
$plugins->run_hooks("admin_style_templates_find_updated");
// Finds templates that are old and have been updated by MyBB
$compare_version = $mybb->version_code;
$query = $db->query("\n\t\tSELECT COUNT(*) AS updated_count\n\t\tFROM " . TABLE_PREFIX . "templates t \n\t\tLEFT JOIN " . TABLE_PREFIX . "templates m ON (m.title=t.title AND m.sid=-2 AND m.version > t.version)\n\t\tWHERE t.sid > 0 AND m.template != t.template\n\t");
$count = $db->fetch_array($query);
if ($count['updated_count'] < 1) {
$popup->add_item($lang->edit_group, "index.php?module=user-groups&action=edit&gid={$usergroup['gid']}");
$popup->add_item($lang->list_users, "index.php?module=user-users&action=search&results=1&conditions[usergroup]={$usergroup['gid']}");
if ($joinrequests[$usergroup['gid']] > 0 && $usergroup['type'] == 4) {
$popup->add_item($lang->join_requests, "index.php?module=user-groups&action=join_requests&gid={$usergroup['gid']}");
}
$popup->add_item($lang->group_leaders, "index.php?module=user-groups&action=leaders&gid={$usergroup['gid']}");
if ($usergroup['type'] > 1) {
$popup->add_item($lang->delete_group, "index.php?module=user-groups&action=delete&gid={$usergroup['gid']}&my_post_key={$mybb->post_code}", "return AdminCP.deleteConfirmation(this, '{$lang->confirm_group_deletion}')");
}
$form_container->output_cell($popup->fetch(), array("class" => "align_center"));
$form_container->construct_row();
}
if ($form_container->num_rows() == 0) {
$form_container->output_cell($lang->no_groups, array('colspan' => 4));
$form_container->construct_row();
}
$form_container->end();
$buttons = array();
$buttons[] = $form->generate_submit_button($lang->update_groups_order);
$form->output_submit_wrapper($buttons);
$form->end();
echo <<<LEGEND
\t<br />
\t<fieldset>
<legend>{$lang->legend}</legend>
<img src="styles/default/images/icons/custom.png" alt="{$lang->custom_user_group}" style="vertical-align: middle;" /> {$lang->custom_user_group}<br />
<img src="styles/default/images/icons/default.png" alt="{$lang->default_user_group}" style="vertical-align: middle;" /> {$lang->default_user_group}
</fieldset>
LEGEND;
$page->output_footer();
}
// generate_INPUTTYPE(name, vlaue, array(html modifiers))
$form_container->output_row($lang->downloads_dlmngr_title, $lang->downloads_dlmngr_title_desc, $form->generate_text_box('title', $dlitem['title'], array('id' => 'title')), 'title');
$form_container->output_row($lang->downloads_dlmngr_desc_short, $lang->downloads_dlmngr_desc_short_desc, $form->generate_text_box('desc_short', $dlitem['desc_short'], array('id' => 'desc_short')), 'desc_short');
$form_container->output_row($lang->downloads_dlmngr_description, $lang->downloads_dlmngr_description_desc, $form->generate_text_area('description', $dlitem['description'], array('id' => 'description', 'style' => 'width: 100%;')), 'description');
$form_container->output_row($lang->downloads_dlmngr_fid, $lang->downloads_dlmngr_fid_desc, $form->generate_forum_select('fid', $dlitem['fid'], array('id' => 'fid', 'main_option' => $lang->none)), 'fid');
$query = $db->simple_select("downloads_catlist", "*", "1=1");
while ($cat = $db->fetch_array($query)) {
$categories[$cat['catid']] = $cat['title'];
}
$form_container->output_row($lang->downloads_dlmngr_cat, $lang->downloads_dlmngr_cat_desc, $form->generate_select_box('cat', $categories, $dlitem['cat'], array('id' => 'cat')), 'cat');
$form_container->output_row($lang->downloads_dlmngr_grpflag, $lang->downloads_dlmngr_grpflag_desc, $form->generate_check_box('grpflag', '1', $lang->downloads_dlmngr_grpflag_desc_option, array('checked' => $dlitem['grpflag'])), 'grpflag');
$query = $db->simple_select("usergroups", "gid, title", "gid != '1'", array('order_by' => 'title'));
while ($usergroup = $db->fetch_array($query)) {
$options[$usergroup['gid']] = $usergroup['title'];
$display_group_options[$usergroup['gid']] = $usergroup['title'];
}
$form_container->output_row($lang->downloads_dlmngr_grpflag, $lang->downloads_dlmngr_grpflag_desc, $form->generate_select_box('grplist[]', $options, $dlitem['grplist'], array('multiple' => true, 'size' => 5)), 'grplist');
$form_container->output_row($lang->downloads_dlmngr_preview, $lang->downloads_dlmngr_preview_desc, $form->generate_text_box('preview', $dlitem['preview'], array('id' => 'preview')), 'preview');
$form_container->output_row($lang->downloads_dlmngr_filename, $lang->downloads_dlmngr_filename_desc, $form->generate_text_box('filename', $dlitem['filename'], array('id' => 'filename')), 'filename');
// end the container
$form_container->end();
// add the save button
$buttons[] = $form->generate_submit_button($lang->downloads_dlmngr_save);
// display and end
$form->output_submit_wrapper($buttons);
$form->end();
// end the page
$page->output_footer();
}
}
}
function newpoints_shop_admin()
{
global $db, $lang, $mybb, $page, $run_module, $action_file, $mybbadmin, $plugins;
newpoints_lang_load('newpoints_shop');
if ($run_module == 'newpoints' && $action_file == 'newpoints_shop') {
if ($mybb->request_method == "post") {
switch ($mybb->input['action']) {
case 'do_addcat':
if ($mybb->input['name'] == '') {
newpoints_shop_messageredirect($lang->newpoints_shop_missing_field, 1);
}
$name = $db->escape_string($mybb->input['name']);
$description = $db->escape_string($mybb->input['description']);
// get visible to user groups options
if (is_array($mybb->input['usergroups'])) {
foreach ($mybb->input['usergroups'] as $gid) {
if ($gid == $mybb->input['usergroups']) {
unset($mybb->input['usergroups'][$gid]);
}
}
$usergroups = implode(",", $mybb->input['usergroups']);
} else {
$usergroups = '';
}
$usergroups = $db->escape_string($usergroups);
$visible = intval($mybb->input['visible']);
$icon = $db->escape_string($mybb->input['icon']);
$disporder = intval($mybb->input['disporder']);
$expanded = intval($mybb->input['expanded']);
$insert_query = array('name' => $name, 'description' => $description, 'usergroups' => $usergroups, 'visible' => $visible, 'disporder' => $disporder, 'icon' => $icon, 'expanded' => $expanded);
$db->insert_query('newpoints_shop_categories', $insert_query);
newpoints_shop_messageredirect($lang->newpoints_shop_cat_added);
break;
case 'do_editcat':
$cid = intval($mybb->input['cid']);
if ($cid <= 0 || !($cat = $db->fetch_array($db->simple_select('newpoints_shop_categories', '*', "cid = {$cid}")))) {
newpoints_shop_messageredirect($lang->newpoints_shop_invalid_cat, 1);
}
if ($mybb->input['name'] == '') {
newpoints_shop_messageredirect($lang->newpoints_shop_missing_field, 1);
}
$name = $db->escape_string($mybb->input['name']);
$description = $db->escape_string($mybb->input['description']);
// get visible to user groups options
if (is_array($mybb->input['usergroups'])) {
foreach ($mybb->input['usergroups'] as $gid) {
if ($gid == $mybb->input['usergroups']) {
unset($mybb->input['usergroups'][$gid]);
}
}
$usergroups = implode(",", $mybb->input['usergroups']);
} else {
$usergroups = '';
}
$usergroups = $db->escape_string($usergroups);
$visible = intval($mybb->input['visible']);
$icon = $db->escape_string($mybb->input['icon']);
$disporder = intval($mybb->input['disporder']);
$expanded = intval($mybb->input['expanded']);
$update_query = array('name' => $name, 'description' => $description, 'usergroups' => $usergroups, 'visible' => $visible, 'disporder' => $disporder, 'icon' => $icon, 'expanded' => $expanded);
$db->update_query('newpoints_shop_categories', $update_query, 'cid=\'' . $cid . '\'');
newpoints_shop_messageredirect($lang->newpoints_shop_cat_edited);
break;
case 'do_additem':
if ($mybb->input['name'] == '' || $mybb->input['cid'] == '') {
newpoints_shop_messageredirect($lang->newpoints_shop_missing_field, 1);
}
$name = $db->escape_string($mybb->input['name']);
$description = $db->escape_string($mybb->input['description']);
$icon = $db->escape_string($mybb->input['icon']);
$pm = $db->escape_string($mybb->input['pm']);
$price = floatval($mybb->input['price']);
$infinite = intval($mybb->input['infinite']);
if ($infinite == 1) {
$stock = 0;
} else {
$stock = intval($mybb->input['stock']);
}
$limit = intval($mybb->input['limit']);
$visible = intval($mybb->input['visible']);
$disporder = intval($mybb->input['disporder']);
$sendable = intval($mybb->input['sendable']);
$sellable = intval($mybb->input['sellable']);
$cid = intval($mybb->input['cid']);
if ($cid <= 0 || !($cat = $db->fetch_array($db->simple_select('newpoints_shop_categories', '*', "cid = {$cid}")))) {
newpoints_shop_messageredirect($lang->newpoints_shop_invalid_cat, 1);
}
$insert_array = array('name' => $name, 'description' => $description, 'icon' => $icon, 'visible' => $visible, 'disporder' => $disporder, 'price' => $price, 'infinite' => $infinite, 'stock' => $stock, 'limit' => $limit, 'sendable' => $sendable, 'sellable' => $sellable, 'cid' => $cid, 'pm' => $pm);
$plugins->run_hooks("newpoints_shop_commit", $insert_array);
$db->insert_query('newpoints_shop_items', $insert_array);
$db->write_query('UPDATE ' . TABLE_PREFIX . 'newpoints_shop_categories SET items = items+1 WHERE cid=\'' . $cid . '\'');
newpoints_shop_messageredirect($lang->newpoints_shop_item_added, 0, "items&cid=" . $cid);
break;
case 'do_edititem':
$iid = intval($mybb->input['iid']);
if ($iid <= 0 || !($item = $db->fetch_array($db->simple_select('newpoints_shop_items', '*', "iid = {$iid}")))) {
newpoints_shop_messageredirect($lang->newpoints_shop_invalid_item, 1, 'items');
}
if ($mybb->input['name'] == '' || $mybb->input['cid'] == '') {
newpoints_shop_messageredirect($lang->newpoints_shop_missing_field, 1);
}
$name = $db->escape_string($mybb->input['name']);
$description = $db->escape_string($mybb->input['description']);
$icon = $db->escape_string($mybb->input['icon']);
$price = floatval($mybb->input['price']);
$pm = $db->escape_string($mybb->input['pm']);
$infinite = intval($mybb->input['infinite']);
if ($infinite == 1) {
$stock = 0;
} else {
$stock = intval($mybb->input['stock']);
}
$limit = intval($mybb->input['limit']);
$visible = intval($mybb->input['visible']);
$disporder = intval($mybb->input['disporder']);
$sendable = intval($mybb->input['sendable']);
$sellable = intval($mybb->input['sellable']);
$cid = intval($mybb->input['cid']);
if ($cid <= 0 || !($cat = $db->fetch_array($db->simple_select('newpoints_shop_categories', '*', "cid = {$cid}")))) {
newpoints_shop_messageredirect($lang->newpoints_shop_invalid_cat, 1);
}
$update_array = array('name' => $name, 'description' => $description, 'icon' => $icon, 'visible' => $visible, 'disporder' => $disporder, 'price' => $price, 'infinite' => $infinite, 'stock' => $stock, 'limit' => $limit, 'sendable' => $sendable, 'sellable' => $sellable, 'cid' => $cid, 'pm' => $pm);
$plugins->run_hooks("newpoints_shop_commit", $update_array);
$db->update_query('newpoints_shop_items', $update_array, 'iid=\'' . $iid . '\'');
if ($cid != $item['cid']) {
$db->write_query('UPDATE ' . TABLE_PREFIX . 'newpoints_shop_categories SET items = items-1 WHERE cid=\'' . $item['cid'] . '\'');
$db->write_query('UPDATE ' . TABLE_PREFIX . 'newpoints_shop_categories SET items = items+1 WHERE cid=\'' . $cid . '\'');
}
newpoints_shop_messageredirect($lang->newpoints_shop_item_edited, 0, "items&cid=" . $cid);
break;
}
}
if ($mybb->input['action'] == 'do_deletecat') {
$page->add_breadcrumb_item($lang->newpoints_shop, 'index.php?module=newpoints-shop');
$page->output_header($lang->newpoints_shop);
$cid = intval($mybb->input['cid']);
if ($mybb->input['no']) {
admin_redirect("index.php?module=newpoints-shop");
}
if ($mybb->request_method == "post") {
if ($cid <= 0 || !($cat = $db->fetch_array($db->simple_select('newpoints_shop_categories', 'cid', "cid = {$cid}")))) {
newpoints_shop_messageredirect($lang->newpoints_shop_invalid_cat, 1);
}
$db->delete_query('newpoints_shop_categories', "cid = {$cid}");
// unassign items from this category
$db->update_query('newpoints_shop_items', array('cid' => 0), "cid = {$cid}");
newpoints_shop_messageredirect($lang->newpoints_shop_cat_deleted);
} else {
$mybb->input['cid'] = intval($mybb->input['cid']);
$form = new Form("index.php?module=newpoints-shop&action=do_deletecat&cid={$mybb->input['cid']}&my_post_key={$mybb->post_code}", 'post');
echo "<div class=\"confirm_action\">\n";
echo "<p>{$lang->newpoints_shop_confirm_deletecat}</p>\n";
echo "<br />\n";
echo "<p class=\"buttons\">\n";
echo $form->generate_submit_button($lang->yes, array('class' => 'button_yes'));
echo $form->generate_submit_button($lang->no, array("name" => "no", 'class' => 'button_no'));
echo "</p>\n";
echo "</div>\n";
$form->end();
}
} elseif ($mybb->input['action'] == 'do_deleteitem') {
$page->add_breadcrumb_item($lang->newpoints_shop, 'index.php?module=newpoints-shop');
$page->output_header($lang->newpoints_shop);
$iid = intval($mybb->input['iid']);
if ($mybb->input['no']) {
admin_redirect("index.php?module=newpoints-shop", 0, "items&cid=" . $cid);
}
if ($mybb->request_method == "post") {
if ($iid <= 0 || !($item = $db->fetch_array($db->simple_select('newpoints_shop_items', 'cid', "iid = {$iid}")))) {
newpoints_shop_messageredirect($lang->newpoints_shop_invalid_item, 1, "items&cid=" . $cid);
}
$db->delete_query('newpoints_shop_items', "iid = {$iid}");
// remove one from the items count
$db->write_query('UPDATE ' . TABLE_PREFIX . 'newpoints_shop_categories SET items = items-1 WHERE cid=\'' . $item['cid'] . '\'');
newpoints_shop_messageredirect($lang->newpoints_shop_item_deleted, 0, "items&cid=" . $cid);
} else {
$mybb->input['iid'] = intval($mybb->input['iid']);
$form = new Form("index.php?module=newpoints-shop&action=do_deleteitem&iid={$mybb->input['iid']}&my_post_key={$mybb->post_code}", 'post');
echo "<div class=\"confirm_action\">\n";
echo "<p>{$lang->newpoints_shop_confirm_deleteitem}</p>\n";
echo "<br />\n";
echo "<p class=\"buttons\">\n";
echo $form->generate_submit_button($lang->yes, array('class' => 'button_yes'));
echo $form->generate_submit_button($lang->no, array("name" => "no", 'class' => 'button_no'));
echo "</p>\n";
echo "</div>\n";
$form->end();
}
} elseif ($mybb->input['action'] == 'remove') {
$page->add_breadcrumb_item($lang->newpoints_shop, 'index.php?module=newpoints-shop');
$page->output_header($lang->newpoints_shop);
$iid = intval($mybb->input['iid']);
$mybb->input['uid'] = intval($mybb->input['uid']);
if ($mybb->input['no']) {
admin_redirect("index.php?module=newpoints-shop", 0, "items&cid=" . $cid);
}
if ($mybb->request_method == "post") {
if ($iid <= 0 || !($item = $db->fetch_array($db->simple_select('newpoints_shop_items', '*', "iid = {$iid}")))) {
newpoints_shop_messageredirect($lang->newpoints_shop_invalid_item, 1, "items&cid=" . $cid);
}
$uid = (int) $mybb->input['uid'];
if ($uid <= 0) {
newpoints_shop_messageredirect($lang->newpoints_shop_invalid_user, 1);
}
$user = get_user($uid);
// we're viewing someone else's inventory
if (empty($user)) {
newpoints_shop_messageredirect($lang->newpoints_shop_invalid_user, 1);
}
$inventory = @unserialize($user['newpoints_items']);
if (!$inventory) {
newpoints_shop_messageredirect($lang->newpoints_shop_inventory_empty, 1);
}
// make sure we own the item
$key = array_search($item['iid'], $inventory);
if ($key === false) {
newpoints_shop_messageredirect($lang->newpoints_shop_selected_item_not_owned, 1);
}
// remove item from our inventory
unset($inventory[$key]);
sort($inventory);
$db->update_query('users', array('newpoints_items' => serialize($inventory)), 'uid=\'' . $uid . '\'');
// update stock
if ($item['infinite'] != 1) {
$db->update_query('newpoints_shop_items', array('stock' => $item['stock'] + 1), 'iid=\'' . $item['iid'] . '\'');
}
newpoints_addpoints($uid, floatval($item['price']) * $mybb->settings['newpoints_shop_percent']);
newpoints_shop_messageredirect($lang->newpoints_shop_item_removed, 0, "inventory&uid=" . $uid);
} else {
$form = new Form("index.php?module=newpoints-shop&action=remove&iid={$mybb->input['iid']}&uid={$mybb->input['uid']}&my_post_key={$mybb->post_code}", 'post');
echo "<div class=\"confirm_action\">\n";
echo "<p>{$lang->newpoints_shop_confirm_removeitem}</p>\n";
echo "<br />\n";
echo "<p class=\"buttons\">\n";
echo $form->generate_submit_button($lang->yes, array('class' => 'button_yes'));
echo $form->generate_submit_button($lang->no, array("name" => "no", 'class' => 'button_no'));
echo "</p>\n";
echo "</div>\n";
$form->end();
}
}
if (!$mybb->input['action'] || $mybb->input['action'] == 'categories' || $mybb->input['action'] == 'inventory' || $mybb->input['action'] == 'addcat' || $mybb->input['action'] == 'editcat') {
$page->add_breadcrumb_item($lang->newpoints_shop, 'index.php?module=newpoints-shop');
$page->output_header($lang->newpoints_shop);
$sub_tabs['newpoints_shop_categories'] = array('title' => $lang->newpoints_shop_categories, 'link' => 'index.php?module=newpoints-shop', 'description' => $lang->newpoints_shop_categories_desc);
if (!$mybb->input['action'] || $mybb->input['action'] == 'categories' || $mybb->input['action'] == 'addcat' || $mybb->input['action'] == 'editcat') {
$sub_tabs['newpoints_shop_categories_add'] = array('title' => $lang->newpoints_shop_addcat, 'link' => 'index.php?module=newpoints-shop&action=addcat', 'description' => $lang->newpoints_shop_addcat_desc);
$sub_tabs['newpoints_shop_categories_edit'] = array('title' => $lang->newpoints_shop_editcat, 'link' => 'index.php?module=newpoints-shop&action=editcat', 'description' => $lang->newpoints_shop_editcat_desc);
$sub_tabs['newpoints_shop_categories_delete'] = array('title' => $lang->newpoints_shop_deletecat, 'link' => 'index.php?module=newpoints-shop&action=do_deletecat', 'description' => $lang->newpoints_shop_deletecat_desc);
}
}
if ($mybb->input['action'] == 'inventory') {
$sub_tabs['newpoints_shop_inventory'] = array('title' => $lang->newpoints_shop_inventory, 'link' => 'index.php?module=newpoints-shop&action=inventory&uid=' . intval($mybb->input['uid']), 'description' => $lang->newpoints_shop_inventory_desc);
}
if ($mybb->input['action'] == 'items' || $mybb->input['action'] == 'additem' || $mybb->input['action'] == 'edititem') {
$page->add_breadcrumb_item($lang->newpoints_shop, 'index.php?module=newpoints-shop');
$page->output_header($lang->newpoints_shop);
$sub_tabs['newpoints_shop_categories'] = array('title' => $lang->newpoints_shop_categories, 'link' => 'index.php?module=newpoints-shop', 'description' => $lang->newpoints_shop_categories_desc);
$sub_tabs['newpoints_shop_items'] = array('title' => $lang->newpoints_shop_items, 'link' => 'index.php?module=newpoints-shop&action=items&cid=' . intval($mybb->input['cid']), 'description' => $lang->newpoints_shop_items_desc);
if ($mybb->input['action'] == 'items' || $mybb->input['action'] == 'additem' || $mybb->input['action'] == 'edititem') {
$sub_tabs['newpoints_shop_items_add'] = array('title' => $lang->newpoints_shop_additem, 'link' => 'index.php?module=newpoints-shop&action=additem&cid=' . intval($mybb->input['cid']), 'description' => $lang->newpoints_shop_additem_desc);
$sub_tabs['newpoints_shop_items_edit'] = array('title' => $lang->newpoints_shop_edititem, 'link' => 'index.php?module=newpoints-shop&action=edititem', 'description' => $lang->newpoints_shop_edititem_desc);
$sub_tabs['newpoints_shop_items_delete'] = array('title' => $lang->newpoints_shop_deleteitem, 'link' => 'index.php?module=newpoints-shop&action=do_deleteitem', 'description' => $lang->newpoints_shop_deleteitem_desc);
}
}
if (!$mybb->input['action'] || $mybb->input['action'] == 'categories') {
$page->output_nav_tabs($sub_tabs, 'newpoints_shop_categories');
// table
$table = new Table();
$table->construct_header($lang->newpoints_shop_cat_name, array('width' => '30%'));
$table->construct_header($lang->newpoints_shop_cat_description, array('width' => '35%'));
$table->construct_header($lang->newpoints_shop_cat_items, array('width' => '10%', 'class' => 'align_center'));
$table->construct_header($lang->newpoints_shop_cat_disporder, array('width' => '10%', 'class' => 'align_center'));
$table->construct_header($lang->newpoints_shop_cat_action, array('width' => '25%', 'class' => 'align_center'));
$query = $db->simple_select('newpoints_shop_categories', '*', '', array('order_by' => 'disporder', 'order_dir' => 'ASC'));
while ($cat = $db->fetch_array($query)) {
$table->construct_cell("<a href=\"index.php?module=newpoints-shop&action=items&cid={$cat['cid']}\">" . htmlspecialchars_uni($cat['name']) . "</a>");
$table->construct_cell(htmlspecialchars_uni($cat['description']));
$table->construct_cell(intval($cat['items']), array('class' => 'align_center'));
$table->construct_cell(intval($cat['disporder']), array('class' => 'align_center'));
// actions column
$table->construct_cell("<a href=\"index.php?module=newpoints-shop&action=editcat&cid=" . intval($cat['cid']) . "\">" . $lang->newpoints_shop_edit . "</a> - <a href=\"index.php?module=newpoints-shop&action=do_deletecat&cid=" . intval($cat['cid']) . "\">" . $lang->newpoints_shop_delete . "</a>", array('class' => 'align_center'));
$table->construct_row();
}
if ($table->num_rows() == 0) {
$table->construct_cell($lang->newpoints_shop_no_cats, array('colspan' => 5));
$table->construct_row();
}
$table->output($lang->newpoints_shop_categories);
} elseif ($mybb->input['action'] == 'addcat') {
$page->output_nav_tabs($sub_tabs, 'newpoints_shop_categories_add');
$query = $db->simple_select("usergroups", "gid, title", "gid != '1'", array('order_by' => 'title'));
while ($usergroup = $db->fetch_array($query)) {
$options[$usergroup['gid']] = $usergroup['title'];
}
$form = new Form("index.php?module=newpoints-shop&action=do_addcat", "post", "newpoints_shop");
$form_container = new FormContainer($lang->newpoints_shop_addcat);
$form_container->output_row($lang->newpoints_shop_addedit_cat_name . "<em>*</em>", $lang->newpoints_shop_addedit_cat_name_desc, $form->generate_text_box('name', '', array('id' => 'name')), 'name');
$form_container->output_row($lang->newpoints_shop_addedit_cat_description, $lang->newpoints_shop_addedit_cat_description_desc, $form->generate_text_box('description', '', array('id' => 'description')), 'description');
$form_container->output_row($lang->newpoints_shop_addedit_cat_visible, $lang->newpoints_shop_addedit_cat_visible_desc, $form->generate_yes_no_radio('visible', 1), 'visible');
$form_container->output_row($lang->newpoints_shop_addedit_cat_icon, $lang->newpoints_shop_addedit_cat_icon_desc, $form->generate_text_box('icon', '', array('id' => 'icon')), 'icon');
$form_container->output_row($lang->newpoints_shop_addedit_cat_usergroups, $lang->newpoints_shop_addedit_cat_usergroups_desc, $form->generate_select_box('usergroups[]', $options, '', array('id' => 'usergroups', 'multiple' => true, 'size' => 5)), 'groups');
$form_container->output_row($lang->newpoints_shop_addedit_cat_disporder, $lang->newpoints_shop_addedit_cat_disporder_desc, $form->generate_text_box('disporder', '0', array('id' => 'disporder')), 'disporder');
$form_container->output_row($lang->newpoints_shop_addedit_cat_expanded, $lang->newpoints_shop_addedit_cat_expanded_desc, $form->generate_yes_no_radio('expanded', 1), 'expanded');
$form_container->end();
$buttons = "";
$buttons[] = $form->generate_submit_button($lang->newpoints_shop_submit);
$buttons[] = $form->generate_reset_button($lang->newpoints_shop_reset);
$form->output_submit_wrapper($buttons);
$form->end();
} elseif ($mybb->input['action'] == 'editcat') {
$page->output_nav_tabs($sub_tabs, 'newpoints_shop_categories_edit');
$cid = intval($mybb->input['cid']);
if ($cid <= 0 || !($cat = $db->fetch_array($db->simple_select('newpoints_shop_categories', '*', "cid = {$cid}")))) {
newpoints_shop_messageredirect($lang->newpoints_shop_invalid_cat, 1);
}
$query = $db->simple_select("usergroups", "gid, title", "gid != '1'", array('order_by' => 'title'));
while ($usergroup = $db->fetch_array($query)) {
$options[$usergroup['gid']] = $usergroup['title'];
}
$form = new Form("index.php?module=newpoints-shop&action=do_editcat", "post", "newpoints_shop");
echo $form->generate_hidden_field('cid', $cat['cid']);
$form_container = new FormContainer($lang->newpoints_shop_addcat);
$form_container->output_row($lang->newpoints_shop_addedit_cat_name . "<em>*</em>", $lang->newpoints_shop_addedit_cat_name_desc, $form->generate_text_box('name', htmlspecialchars_uni($cat['name']), array('id' => 'name')), 'name');
$form_container->output_row($lang->newpoints_shop_addedit_cat_description, $lang->newpoints_shop_addedit_cat_description_desc, $form->generate_text_box('description', htmlspecialchars_uni($cat['description']), array('id' => 'description')), 'description');
$form_container->output_row($lang->newpoints_shop_addedit_cat_visible, $lang->newpoints_shop_addedit_cat_visible_desc, $form->generate_yes_no_radio('visible', intval($cat['visible'])), 'visible');
$form_container->output_row($lang->newpoints_shop_addedit_cat_icon, $lang->newpoints_shop_addedit_cat_icon_desc, $form->generate_text_box('icon', htmlspecialchars_uni($cat['icon']), array('id' => 'icon')), 'icon');
$form_container->output_row($lang->newpoints_shop_addedit_cat_usergroups, $lang->newpoints_shop_addedit_cat_usergroups_desc, $form->generate_select_box('usergroups[]', $options, explode(',', $cat['usergroups']), array('id' => 'usergroups', 'multiple' => true, 'size' => 5)), 'groups');
$form_container->output_row($lang->newpoints_shop_addedit_cat_disporder, $lang->newpoints_shop_addedit_cat_disporder_desc, $form->generate_text_box('disporder', intval($cat['disporder']), array('id' => 'disporder')), 'disporder');
$form_container->output_row($lang->newpoints_shop_addedit_cat_expanded, $lang->newpoints_shop_addedit_cat_expanded_desc, $form->generate_yes_no_radio('expanded', intval($cat['expanded'])), 'expanded');
$form_container->end();
$buttons = "";
$buttons[] = $form->generate_submit_button($lang->newpoints_shop_submit);
$buttons[] = $form->generate_reset_button($lang->newpoints_shop_reset);
$form->output_submit_wrapper($buttons);
$form->end();
} else {
if ($mybb->input['action'] == 'items') {
$page->output_nav_tabs($sub_tabs, 'newpoints_shop_items');
$cid = intval($mybb->input['cid']);
if ($cid <= 0 || !($cat = $db->fetch_array($db->simple_select('newpoints_shop_categories', '*', "cid = {$cid}")))) {
newpoints_shop_messageredirect($lang->newpoints_shop_invalid_cat, 1);
}
// table
$table = new Table();
$table->construct_header($lang->newpoints_shop_item_icon, array('width' => '10%', 'class' => 'align_center'));
$table->construct_header($lang->newpoints_shop_item_name, array('width' => '30%'));
$table->construct_header($lang->newpoints_shop_item_price, array('width' => '15%', 'class' => 'align_center'));
$table->construct_header($lang->newpoints_shop_item_disporder, array('width' => '15%', 'class' => 'align_center'));
$table->construct_header($lang->newpoints_shop_item_action, array('width' => '20%', 'class' => 'align_center'));
$query = $db->simple_select('newpoints_shop_items', '*', 'cid=\'' . $cid . '\'', array('order_by' => 'disporder', 'order_dir' => 'ASC'));
while ($item = $db->fetch_array($query)) {
if ($item['infinite'] == 1) {
$item['stock'] = $lang->newpoints_shop_infinite;
}
if ($item['visible'] == 0) {
$visible_info = ' (<span style="color: #FF0000;">hidden</span>)';
} else {
$visible_info = '';
}
$table->construct_cell(htmlspecialchars_uni($item['icon']) ? '<img src="' . $mybb->settings['bburl'] . '/' . $item['icon'] . '">' : '<img src="' . $mybb->settings['bburl'] . '/images/newpoints/default.png">', array('class' => 'align_center'));
$table->construct_cell(htmlspecialchars_uni($item['name']) . " (" . (intval($item['infinite']) ? $lang->newpoints_shop_infinite : intval($item['stock'])) . ")" . $visible_info . "<br /><small>" . htmlspecialchars_uni($item['description']) . "</small>");
$table->construct_cell(newpoints_format_points($item['price']), array('class' => 'align_center'));
$table->construct_cell(intval($item['disporder']), array('class' => 'align_center'));
// actions column
$table->construct_cell("<a href=\"index.php?module=newpoints-shop&action=edititem&iid=" . intval($item['iid']) . "\">" . $lang->newpoints_shop_edit . "</a> - <a href=\"index.php?module=newpoints-shop&action=do_deleteitem&iid=" . intval($item['iid']) . "\">" . $lang->newpoints_shop_delete . "</a>", array('class' => 'align_center'));
$table->construct_row();
}
if ($table->num_rows() == 0) {
$table->construct_cell($lang->newpoints_shop_no_items, array('colspan' => 6));
$table->construct_row();
}
$table->output($lang->newpoints_shop_items);
} elseif ($mybb->input['action'] == 'additem') {
$page->output_nav_tabs($sub_tabs, 'newpoints_shop_items_add');
$cid = intval($mybb->input['cid']);
if ($cid > 0) {
if ($cid <= 0 || !($cat = $db->fetch_array($db->simple_select('newpoints_shop_categories', '*', "cid = {$cid}")))) {
newpoints_shop_messageredirect($lang->newpoints_shop_invalid_cat, 1);
}
} else {
$cid = 0;
}
$categories[0] = $lang->newpoints_shop_select_cat;
$query = $db->simple_select('newpoints_shop_categories', '*');
while ($cat = $db->fetch_array($query)) {
$categories[$cat['cid']] = $cat['name'];
}
$form = new Form("index.php?module=newpoints-shop&action=do_additem", "post", "newpoints_shop");
$form_container = new FormContainer($lang->newpoints_shop_additem);
$form_container->output_row($lang->newpoints_shop_addedit_item_name . "<em>*</em>", $lang->newpoints_shop_addedit_item_name_desc, $form->generate_text_box('name', '', array('id' => 'name')), 'name');
$form_container->output_row($lang->newpoints_shop_addedit_item_description, $lang->newpoints_shop_addedit_item_description_desc, $form->generate_text_box('description', '', array('id' => 'description')), 'description');
$form_container->output_row($lang->newpoints_shop_addedit_item_price, $lang->newpoints_shop_addedit_item_price_desc, $form->generate_text_box('price', '0', array('id' => 'price')), 'price');
$form_container->output_row($lang->newpoints_shop_addedit_item_icon, $lang->newpoints_shop_addedit_item_icon_desc, $form->generate_text_box('icon', '', array('id' => 'icon')), 'icon');
$form_container->output_row($lang->newpoints_shop_addedit_item_disporder, $lang->newpoints_shop_addedit_item_disporder_desc, $form->generate_text_box('disporder', '0', array('id' => 'disporder')), 'disporder');
$form_container->output_row($lang->newpoints_shop_addedit_item_stock, $lang->newpoints_shop_addedit_item_stock_desc, $form->generate_text_box('stock', '0', array('id' => 'stock')), 'stock');
$form_container->output_row($lang->newpoints_shop_addedit_item_infinite, $lang->newpoints_shop_addedit_item_infinite_desc, $form->generate_yes_no_radio('infinite', 1), 'infinite');
$form_container->output_row($lang->newpoints_shop_addedit_item_limit, $lang->newpoints_shop_addedit_item_limit_desc, $form->generate_text_box('limit', '0', array('id' => 'limit')), 'limit');
$form_container->output_row($lang->newpoints_shop_addedit_item_visible, $lang->newpoints_shop_addedit_item_visible_desc, $form->generate_yes_no_radio('visible', 1), 'visible');
$form_container->output_row($lang->newpoints_shop_addedit_item_sendable, $lang->newpoints_shop_addedit_item_sendable_desc, $form->generate_yes_no_radio('sendable', 1), 'sendable');
$form_container->output_row($lang->newpoints_shop_addedit_item_sellable, $lang->newpoints_shop_addedit_item_sellable_desc, $form->generate_yes_no_radio('sellable', 1), 'sellable');
$form_container->output_row($lang->newpoints_shop_addedit_item_pm, $lang->newpoints_shop_addedit_item_pm_desc, $form->generate_text_area('pm', '', array('id' => 'pm_text')), 'pm');
$form_container->output_row($lang->newpoints_shop_addedit_item_category . "<em>*</em>", $lang->newpoints_shop_addedit_item_category_desc, $form->generate_select_box('cid', $categories, $cid, array('id' => 'cid')), 'cid');
$args = array($form_container, $form, array());
$plugins->run_hooks("newpoints_shop_row", $args);
$form_container->end();
$buttons = "";
$buttons[] = $form->generate_submit_button($lang->newpoints_shop_submit);
$buttons[] = $form->generate_reset_button($lang->newpoints_shop_reset);
$form->output_submit_wrapper($buttons);
$form->end();
} elseif ($mybb->input['action'] == 'edititem') {
$page->output_nav_tabs($sub_tabs, 'newpoints_shop_items_edit');
$iid = intval($mybb->input['iid']);
if ($iid <= 0 || !($item = $db->fetch_array($db->simple_select('newpoints_shop_items', '*', "iid = {$iid}")))) {
newpoints_shop_messageredirect($lang->newpoints_shop_invalid_item, 1, 'items');
}
$categories[0] = $lang->newpoints_shop_select_cat;
$query = $db->simple_select('newpoints_shop_categories', '*');
while ($cat = $db->fetch_array($query)) {
$categories[$cat['cid']] = $cat['name'];
}
$form = new Form("index.php?module=newpoints-shop&action=do_edititem", "post", "newpoints_shop");
echo $form->generate_hidden_field('iid', $iid);
$form_container = new FormContainer($lang->newpoints_shop_additem);
$form_container->output_row($lang->newpoints_shop_addedit_item_name . "<em>*</em>", $lang->newpoints_shop_addedit_item_name_desc, $form->generate_text_box('name', htmlspecialchars_uni($item['name']), array('id' => 'name')), 'name');
$form_container->output_row($lang->newpoints_shop_addedit_item_description, $lang->newpoints_shop_addedit_item_description_desc, $form->generate_text_box('description', htmlspecialchars_uni($item['description']), array('id' => 'description')), 'description');
$form_container->output_row($lang->newpoints_shop_addedit_item_price, $lang->newpoints_shop_addedit_item_price_desc, $form->generate_text_box('price', floatval($item['price']), array('id' => 'price')), 'price');
$form_container->output_row($lang->newpoints_shop_addedit_item_icon, $lang->newpoints_shop_addedit_item_icon_desc, $form->generate_text_box('icon', htmlspecialchars_uni($item['icon']), array('id' => 'icon')), 'icon');
$form_container->output_row($lang->newpoints_shop_addedit_item_disporder, $lang->newpoints_shop_addedit_item_disporder_desc, $form->generate_text_box('disporder', intval($item['disporder']), array('id' => 'disporder')), 'disporder');
$form_container->output_row($lang->newpoints_shop_addedit_item_stock, $lang->newpoints_shop_addedit_item_stock_desc, $form->generate_text_box('stock', intval($item['stock']), array('id' => 'stock')), 'stock');
$form_container->output_row($lang->newpoints_shop_addedit_item_infinite, $lang->newpoints_shop_addedit_item_infinite_desc, $form->generate_yes_no_radio('infinite', intval($item['infinite'])), 'infinite');
$form_container->output_row($lang->newpoints_shop_addedit_item_limit, $lang->newpoints_shop_addedit_item_limit_desc, $form->generate_text_box('limit', intval($item['limit']), array('id' => 'limit')), 'limit');
$form_container->output_row($lang->newpoints_shop_addedit_item_visible, $lang->newpoints_shop_addedit_item_visible_desc, $form->generate_yes_no_radio('visible', intval($item['visible'])), 'visible');
$form_container->output_row($lang->newpoints_shop_addedit_item_sendable, $lang->newpoints_shop_addedit_item_sendable_desc, $form->generate_yes_no_radio('sendable', intval($item['sendable'])), 'sendable');
$form_container->output_row($lang->newpoints_shop_addedit_item_sellable, $lang->newpoints_shop_addedit_item_sellable_desc, $form->generate_yes_no_radio('sellable', intval($item['sellable'])), 'sellable');
$form_container->output_row($lang->newpoints_shop_addedit_item_pm, $lang->newpoints_shop_addedit_item_pm_desc, $form->generate_text_area('pm', htmlspecialchars_uni($item['pm']), array('id' => 'pm_text')), 'pm');
$form_container->output_row($lang->newpoints_shop_addedit_item_category . "<em>*</em>", $lang->newpoints_shop_addedit_item_category_desc, $form->generate_select_box('cid', $categories, intval($item['cid']), array('id' => 'cid')), 'cid');
$args = array($form_container, $form, $item);
$plugins->run_hooks("newpoints_shop_row", $args);
$form_container->end();
$buttons = "";
$buttons[] = $form->generate_submit_button($lang->newpoints_shop_submit);
$buttons[] = $form->generate_reset_button($lang->newpoints_shop_reset);
$form->output_submit_wrapper($buttons);
$form->end();
} else {
if ($mybb->input['action'] == 'inventory') {
$page->output_nav_tabs($sub_tabs, 'newpoints_shop_inventory');
$uid = (int) $mybb->input['uid'];
if ($uid <= 0) {
newpoints_shop_messageredirect($lang->newpoints_shop_invalid_user, 1);
}
$user = get_user($uid);
// we're viewing someone else's inventory
if (empty($user)) {
newpoints_shop_messageredirect($lang->newpoints_shop_invalid_user, 1);
}
$inventory = @unserialize($user['newpoints_items']);
if (!$inventory) {
$inventory = array(0);
}
// Item id is 0 because it doesn't exist, this when we use it in the query we won't show anything
// table
$table = new Table();
$table->construct_header($lang->newpoints_shop_item_icon, array('width' => '10%', 'class' => 'align_center'));
$table->construct_header($lang->newpoints_shop_item_name, array('width' => '30%'));
$table->construct_header($lang->newpoints_shop_item_price, array('width' => '15%', 'class' => 'align_center'));
$table->construct_header($lang->newpoints_shop_item_disporder, array('width' => '15%', 'class' => 'align_center'));
$table->construct_header($lang->newpoints_shop_item_action, array('width' => '20%', 'class' => 'align_center'));
$query = $db->simple_select('newpoints_shop_items', '*', 'iid IN (' . implode(',', array_unique($inventory)) . ')', array('order_by' => 'disporder', 'order_dir' => 'ASC'));
while ($item = $db->fetch_array($query)) {
if ($item['infinite'] == 1) {
$item['stock'] = $lang->newpoints_shop_infinite;
}
if ($item['visible'] == 0) {
$visible_info = ' (<span style="color: #FF0000;">hidden</span>)';
} else {
$visible_info = '';
}
$table->construct_cell(htmlspecialchars_uni($item['icon']) ? '<img src="' . $mybb->settings['bburl'] . '/' . $item['icon'] . '">' : '<img src="' . $mybb->settings['bburl'] . '/images/newpoints/default.png">', array('class' => 'align_center'));
$table->construct_cell(htmlspecialchars_uni($item['name']) . " (" . count(array_keys($inventory, $item['iid'])) . ")" . $visible_info . "<br /><small>" . htmlspecialchars_uni($item['description']) . "</small>");
$table->construct_cell(newpoints_format_points($item['price']), array('class' => 'align_center'));
$table->construct_cell(intval($item['disporder']), array('class' => 'align_center'));
// actions column
$table->construct_cell("<a href=\"index.php?module=newpoints-shop&action=remove&iid=" . intval($item['iid']) . "&uid=" . (int) $user['uid'] . "\">" . $lang->newpoints_shop_remove . "</a>", array('class' => 'align_center'));
$table->construct_row();
}
if ($table->num_rows() == 0) {
$table->construct_cell($lang->newpoints_shop_no_items, array('colspan' => 5));
$table->construct_row();
}
$table->output($lang->newpoints_shop_inventory_of . " " . htmlspecialchars_uni($user['username']));
}
}
}
$page->output_footer();
exit;
}
}
// Usergroups
$display_group_options[0] = $lang->use_primary_user_group;
$options = array();
$query = $db->simple_select("usergroups", "gid, title", "gid != '1'", array('order_by' => 'title'));
while ($usergroup = $db->fetch_array($query)) {
$options[$usergroup['gid']] = htmlspecialchars_uni($usergroup['title']);
$display_group_options[$usergroup['gid']] = htmlspecialchars_uni($usergroup['title']);
}
if (!is_array($mybb->input['additionalgroups'])) {
$mybb->input['additionalgroups'] = explode(',', $mybb->input['additionalgroups']);
}
$form_container->output_row($lang->primary_user_group, "", $form->generate_select_box('usergroup', $options, $mybb->input['usergroup'], array('id' => 'usergroup')), 'usergroup');
$form_container->output_row($lang->additional_user_groups, $lang->additional_user_groups_desc, $form->generate_select_box('additionalgroups[]', $options, $mybb->input['additionalgroups'], array('id' => 'additionalgroups', 'multiple' => true, 'size' => 5)), 'additionalgroups');
$form_container->output_row($lang->display_user_group, "", $form->generate_select_box('displaygroup', $display_group_options, $mybb->input['displaygroup'], array('id' => 'displaygroup')), 'displaygroup');
$form_container->end();
$buttons[] = $form->generate_submit_button($lang->alter_usergroups);
$form->output_submit_wrapper($buttons);
$form->end();
$page->output_footer();
break;
}
}
}
if (!$mybb->input['action']) {
$plugins->run_hooks("admin_user_users_start");
$page->output_header($lang->browse_users);
echo "<script type=\"text/javascript\" src=\"jscripts/users.js\"></script>";
$page->output_nav_tabs($sub_tabs, 'browse_users');
if (isset($mybb->input['search_id']) && $admin_session['data']['user_views'][$mybb->input['search_id']]) {
$admin_view = $admin_session['data']['user_views'][$mybb->input['search_id']];
unset($admin_view['extra_sql']);
function restfulapi_admin_load()
{
global $mybb, $db, $page, $lang, $cache;
if ($page->active_action == RESTFULAPI_URL) {
$page->add_breadcrumb_item($lang->restfulapi_title);
$page->output_header($lang->restfulapi_title);
$result = $db->simple_select("apisettings");
$action = "config";
if (isset($mybb->input["action"]) && in_array($mybb->input["action"], array("manage-keys", "add-key"))) {
$action = $mybb->input["action"];
}
$navs = array("config" => array("link" => "index.php?module=config-" . RESTFULAPI_URL, "title" => $lang->restfulapi_config, "description" => $lang->restfulapi_config_description), "manage-keys" => array("link" => "index.php?module=config-" . RESTFULAPI_URL . "&action=manage-keys", "title" => $lang->restfulapi_manage_api_keys, "description" => $lang->restfulapi_manage_api_keys_description), "add-key" => array("link" => "index.php?module=config-" . RESTFULAPI_URL . "&action=add-key", "title" => $lang->restfulapi_add_api_key, "description" => $lang->restfulapi_add_api_key_description));
$page->output_nav_tabs($navs, $action);
switch ($action) {
case "manage-keys":
if (isset($mybb->input["do"]) && in_array($mybb->input["do"], array("regenerate", "edit", "delete"))) {
$do = $mybb->input["do"];
if ($do == "edit" && isset($mybb->input["key_id"]) && is_string($mybb->input["key_id"])) {
$key_id = (int) $db->escape_string($mybb->input["key_id"]);
$result = $db->simple_select("apikeys", "*", "id='{$key_id}'");
if ($result->num_rows != 1) {
flash_message($lang->restfulapi_key_not_found, "error");
admin_redirect("index.php?module=config-restfulapi&action=manage-keys");
exit;
}
if ($mybb->request_method == "post" && isset($mybb->input["apicustomer"]) && is_string($mybb->input["apicustomer"]) && isset($mybb->input["apicomment"]) && is_string($mybb->input["apicomment"]) && isset($mybb->input["maxreq"]) && is_numeric($mybb->input["maxreq"]) && isset($mybb->input["maxreqrate"]) && in_array($mybb->input["maxreqrate"], array("m", "w", "d", "h"))) {
$update = array("apicustomer" => $db->escape_string(htmlspecialchars_uni($mybb->input["apicustomer"])), "apicomment" => $db->escape_string(htmlspecialchars_uni($mybb->input["apicomment"])), "maxreq" => (int) $mybb->input["maxreq"], "maxreqrate" => $db->escape_string(htmlspecialchars_uni($mybb->input["maxreqrate"])));
$db->update_query("apikeys", $update, "id='{$key_id}'");
$db->delete_query("apipermissions", "apikey='{$key_id}'");
if (isset($mybb->input["apinames"]) && is_array($mybb->input["apinames"])) {
$insert_allowed = array();
foreach ($mybb->input["apinames"] as $apiname) {
$insert_allowed[] = array("apikey" => $key_id, "apiname" => $db->escape_string($apiname));
}
$db->insert_query_multiple("apipermissions", $insert_allowed);
}
restfulapi_cache_rebuild();
flash_message($lang->restfulapi_key_edited_successfully, "success");
admin_redirect("index.php?module=config-restfulapi&action=manage-keys");
} else {
$keyset = $result->fetch_array();
$form = new Form("index.php?module=config-" . RESTFULAPI_URL . "&action=manage-keys&do=edit&key_id={$key_id}", "post", "edit");
$form_container = new FormContainer($lang->restfulapi_edit_api_key);
$form_container->output_row($lang->restfulapi_customer_name . " <em>*</em>", $lang->restfulapi_customer_name_description, $form->generate_text_box('apicustomer', htmlspecialchars_uni($keyset["apicustomer"]), array('id' => 'apicustomer')), 'apicustomer');
$rate_types = array("h" => $lang->restfulapi_per_hour, "d" => $lang->restfulapi_per_day, "w" => $lang->restfulapi_per_week, "m" => $lang->restfulapi_per_month);
$form_container->output_row($lang->restfulapi_max_requests . " <em>*</em>", $lang->restfulapi_max_requests_description, $form->generate_text_box('maxreq', htmlspecialchars_uni($keyset["maxreq"]), array('id' => 'maxreq')) . " " . $form->generate_select_box('maxreqrate', $rate_types, htmlspecialchars_uni($keyset["maxreqrate"]), array('id' => 'maxreqrate')), 'maxreq');
$form_container->output_row($lang->restfulapi_comment, $lang->restfulapi_comment_description, $form->generate_text_area('apicomment', htmlspecialchars_uni($keyset["apicomment"]), array('id' => 'apicomment')), 'apicomment');
$apis = glob(RESTFULAPI_PATH . "api/*api.class.php");
$presentable_apis = array();
foreach ($apis as $key => $value) {
$value = htmlspecialchars_uni(str_replace(array(RESTFULAPI_PATH . "api/", "api.class.php"), "", $value));
$presentable_apis[$value] = $value;
}
$selected = array();
// reminder, $key_id has already been escaped!
$result = $db->simple_select("apipermissions", "*", "apikey='{$key_id}'");
while ($apipermission = $db->fetch_array($result)) {
$selected[] = $apipermission["apiname"];
}
$form_container->output_row($lang->restfulapi_select_allowed_apis, $lang->restfulapi_select_allowed_apis_description, $form->generate_select_box('apinames[]', $presentable_apis, $selected, array('id' => 'apinames', 'multiple' => true, 'size' => 10)), 'apinames');
$form_container->end();
$buttons[] = $form->generate_submit_button($lang->restfulapi_edit_api_key);
$form->output_submit_wrapper($buttons);
$form->end();
}
} elseif ($do == "delete" && isset($mybb->input["key_id"]) && isset($mybb->input["my_post_key"]) && verify_post_check($mybb->input["my_post_key"])) {
$key_id = $db->escape_string($mybb->input["key_id"]);
if ($db->simple_select("apikeys", "*", "id='{$key_id}'")->num_rows == 1) {
$db->delete_query("apipermissions", "apikey='{$key_id}'");
$db->delete_query("apikeys", "id='{$key_id}'");
restfulapi_cache_rebuild();
flash_message($lang->restfulapi_key_deleted_successfully, "success");
} else {
flash_message($lang->restfulapi_key_not_found, "error");
}
admin_redirect("index.php?module=config-restfulapi&action=manage-keys");
} elseif ($do == "regenerate" && isset($mybb->input["key_id"]) && isset($mybb->input["my_post_key"]) && verify_post_check($mybb->input["my_post_key"])) {
$key_id = $db->escape_string($mybb->input["key_id"]);
if ($db->simple_select("apikeys", "*", "id='{$key_id}'")->num_rows == 1) {
$apikey = restfulapi_generate_key();
/* can't figure out a better way to generate a random yet never-generated-before API key than this one */
while ($db->simple_select("apikeys", "*", "apikey='{$apikey}'")->num_rows != 0) {
$apikey = restfulapi_generate_key();
}
$update = array("apikey" => $db->escape_string(htmlspecialchars_uni($apikey)));
$db->update_query("apikeys", $update, "id='{$key_id}'");
restfulapi_cache_rebuild();
flash_message($lang->restfulapi_key_regenerated_successfully, "success");
} else {
flash_message($lang->restfulapi_key_not_found, "error");
}
admin_redirect("index.php?module=config-restfulapi&action=manage-keys");
}
} else {
$restfulapi_cache = $cache->read("restfulapi");
$apikeysets = $restfulapi_cache["keys"];
$table = new Table();
$table->construct_header($lang->restfulapi_customer, array("width" => "15%"));
$table->construct_header($lang->restfulapi_api_key, array("class" => "align_center", "width" => "29%"));
$table->construct_header($lang->restfulapi_comment, array("class" => "align_center", "width" => "30%"));
$table->construct_header($lang->restfulapi_usage, array("class" => "align_center", "width" => "5%"));
$table->construct_header($lang->restfulapi_controls, array("class" => "align_center", "width" => "21%", "colspan" => 3));
if (count($apikeysets) == 0) {
$table->construct_cell($lang->sprintf($lang->restfulapi_no_api_key, '<a href="index.php?module=config-restfulapi&action=add-key">', '</a>'), array("class" => "first", "colspan" => 5));
$table->construct_row();
} else {
// TODO : pagination maybe ?
foreach ($apikeysets as $key => $keyset) {
$table->construct_cell("<b>" . htmlspecialchars_uni($keyset['apicustomer']) . "</b>");
$table->construct_cell(htmlspecialchars_uni($keyset['apikey']));
$table->construct_cell(htmlspecialchars_uni($keyset['apicomment']));
$table->construct_cell(htmlspecialchars_uni($keyset['access']), array("class" => "align_center"));
$table->construct_cell("<a href=\"index.php?module=config-restfulapi&action=manage-keys&do=regenerate&key_id={$keyset['id']}&my_post_key={$mybb->post_code}\" onclick=\"return AdminCP.deleteConfirmation(this, '{$lang->restfulapi_regenerate_api_key_confirmation}')\">{$lang->restfulapi_regenerate_api_key}</a>", array("class" => "align_center", "width" => "9%"));
$table->construct_cell("<a href=\"index.php?module=config-restfulapi&action=manage-keys&do=edit&key_id={$keyset['id']}\">{$lang->restfulapi_edit}</a>", array("class" => "align_center", "width" => "6%"));
$table->construct_cell("<a href=\"index.php?module=config-restfulapi&action=manage-keys&do=delete&key_id={$keyset['id']}&my_post_key={$mybb->post_code}\" onclick=\"return AdminCP.deleteConfirmation(this, '{$lang->restfulapi_delete_confirm}')\">{$lang->restfulapi_delete}</a>", array("class" => "align_center", "width" => "6%"));
$table->construct_row();
}
}
$table->output($lang->restfulapi_manage_api_keys);
}
break;
case "add-key":
if ($mybb->request_method == "post" && isset($mybb->input["apicustomer"]) && is_string($mybb->input["apicustomer"]) && isset($mybb->input["apicomment"]) && is_string($mybb->input["apicomment"]) && isset($mybb->input["maxreq"]) && is_numeric($mybb->input["maxreq"]) && isset($mybb->input["maxreqrate"]) && in_array($mybb->input["maxreqrate"], array("m", "w", "d", "h"))) {
$apikey = restfulapi_generate_key();
/* can't figure out a better way to generate a random yet never-generated-before API key than this one */
while ($db->simple_select("apikeys", "*", "apikey='{$db->escape_string($apikey)}'")->num_rows != 0) {
$apikey = restfulapi_generate_key();
}
$insert = array("apicustomer" => $db->escape_string(htmlspecialchars_uni($mybb->input["apicustomer"])), "apicomment" => $db->escape_string(htmlspecialchars_uni($mybb->input["apicomment"])), "access" => 0, "maxreq" => (int) $mybb->input["maxreq"], "maxreqrate" => $db->escape_string(htmlspecialchars_uni($mybb->input["maxreqrate"])), "apikey" => $db->escape_string(htmlspecialchars_uni($apikey)));
$apikeyid = $db->insert_query("apikeys", $insert);
if (isset($mybb->input["apinames"]) && is_array($mybb->input["apinames"])) {
$insert_allowed = array();
foreach ($mybb->input["apinames"] as $apiname) {
$insert_allowed[] = array("apikey" => $db->escape_string($apikeyid), "apiname" => $db->escape_string($apiname));
}
$db->insert_query_multiple("apipermissions", $insert_allowed);
}
restfulapi_cache_rebuild();
flash_message($lang->sprintf($lang->restfulapi_generated_successfully, $apikey, $mybb->input["apicustomer"]), 'success');
admin_redirect("index.php?module=config-restfulapi&action=manage-keys");
} else {
$form = new Form("index.php?module=config-" . RESTFULAPI_URL . "&action=add-key", "post", "add");
$form_container = new FormContainer($lang->restfulapi_add_api_key);
$form_container->output_row($lang->restfulapi_customer_name . " <em>*</em>", $lang->restfulapi_customer_name_description, $form->generate_text_box('apicustomer', '', array('id' => 'apicustomer')), 'apicustomer');
$rate_types = array("h" => $lang->restfulapi_per_hour, "d" => $lang->restfulapi_per_day, "w" => $lang->restfulapi_per_week, "m" => $lang->restfulapi_per_month);
$form_container->output_row($lang->restfulapi_max_requests . " <em>*</em>", $lang->restfulapi_max_requests_description, $form->generate_text_box('maxreq', '0', array('id' => 'maxreq')) . " " . $form->generate_select_box('maxreqrate', $rate_types, "m", array('id' => 'maxreqrate')), 'maxreq');
$form_container->output_row($lang->restfulapi_comment, $lang->restfulapi_comment_description, $form->generate_text_area('apicomment', '', array('id' => 'apicomment')), 'apicomment');
$apis = glob(RESTFULAPI_PATH . "api/*api.class.php");
$presentable_apis = array();
foreach ($apis as $key => $value) {
$value = htmlspecialchars_uni(str_replace(array(RESTFULAPI_PATH . "api/", "api.class.php"), "", $value));
$presentable_apis[$value] = $value;
}
$form_container->output_row($lang->restfulapi_select_allowed_apis . " <em>*</em>", $lang->restfulapi_select_allowed_apis_description, $form->generate_select_box('apinames[]', $presentable_apis, array_keys($presentable_apis), array('id' => 'apinames', 'multiple' => true, 'size' => 10)), 'apinames');
$form_container->end();
$buttons[] = $form->generate_submit_button($lang->restfulapi_generate_api_key);
$form->output_submit_wrapper($buttons);
$form->end();
}
break;
default:
$apilist = $cache->read("restfulapilist");
// routine to install newly detected APIs, and activate them if needed
restfulapi_apilist_activate();
if ($mybb->request_method == "post") {
// we delete all the previously-deactivated options
$db->delete_query("apisettings", "apiaction='deactivate'");
$inserts = array();
foreach ($mybb->input as $key => $input) {
if (substr($key, 0, 7) == "option_" && $input == "1") {
// replace first occurrence of 'option_' with '' in case the option name is 'option_', so that 'option_option_' won't be all replaced into an empty string
// yeah I know, probably would never happen but we never know
$option = preg_replace('/option\\_/', '', $key, 1);
restfulapi_api_activate($option);
} elseif (substr($key, 0, 7) == "option_" && $input == "0") {
$option = preg_replace('/option\\_/', '', $key, 1);
restfulapi_api_deactivate($option);
}
}
flash_message($lang->restfulapi_saved_config, "success");
admin_redirect("index.php?module=config-restfulapi");
} else {
$result = $db->simple_select("apisettings", "*", "apiaction='deactivate'");
$deactivatedapis = array();
while ($apiarray = $db->fetch_array($result)) {
$deactivatedapis[] = $apiarray["apivalue"];
}
if (count($apilist) == 0) {
echo '<div class="notice">' . $lang->sprintf($lang->restfulapi_no_api, '<a href="index.php?module=config-restfulapi&action=add-key">', '</a>') . '</div>';
} else {
$form = new Form("index.php?module=config-" . RESTFULAPI_URL, "post", "config");
$form_container = new FormContainer($lang->restfulapi_config);
$table = new Table();
foreach ($apilist as $api => $info_array) {
require_once RESTFULAPI_PATH . "api/" . $api . "api.class.php";
$api = htmlspecialchars_uni($api);
$apiclass = $api . "api";
$api_instance = new $apiclass();
$info_array = $api_instance->info();
$name = isset($info_array["name"]) && is_string($info_array["name"]) ? htmlspecialchars_uni($info_array["name"]) . " : " . $api : $api;
$description = isset($info_array["description"]) && is_string($info_array["description"]) ? htmlspecialchars_uni($info_array["description"]) : $lang->restfulapi_config_on_off_description;
$setting_code = $form->generate_on_off_radio("option_" . $api, in_array($api, $deactivatedapis) ? 0 : 1, true, array('id' => $api . '_yes'), array('id' => $api . '_no'));
$form_container->output_row($name, $description, $setting_code, '', array(), array('id' => 'row_' . $api));
}
$form_container->end();
$buttons[] = $form->generate_submit_button($lang->restfulapi_save_config);
$form->output_submit_wrapper($buttons);
$form->end();
}
}
break;
}
$page->output_footer();
}
}
$module_options[''] = $lang->all_modules;
$module_options['0'] = '----------';
$query = $db->query("\n\t\tSELECT DISTINCT l.module\n\t\tFROM " . TABLE_PREFIX . "adminlog l\n\t\tORDER BY l.module ASC\n\t");
while ($module = $db->fetch_array($query)) {
$module_options[$module['module']] = str_replace(' ', ' -> ', ucwords(str_replace('/', ' ', $module['module'])));
}
$sort_by = array('dateline' => $lang->date, 'username' => $lang->username);
$order_array = array('asc' => $lang->asc, 'desc' => $lang->desc);
$form = new Form("index.php?module=tools-adminlog", "post");
$form_container = new FormContainer($lang->filter_administrator_logs);
$form_container->output_row($lang->module, "", $form->generate_select_box('filter_module', $module_options, $mybb->input['filter_module'], array('id' => 'filter_module')), 'filter_module');
$form_container->output_row($lang->administrator, "", $form->generate_select_box('uid', $user_options, $mybb->input['uid'], array('id' => 'uid')), 'uid');
$form_container->output_row($lang->sort_by, "", $form->generate_select_box('sortby', $sort_by, $mybb->input['sortby'], array('id' => 'sortby')) . " {$lang->in} " . $form->generate_select_box('order', $order_array, $order, array('id' => 'order')) . " {$lang->order}", 'order');
$form_container->output_row($lang->results_per_page, "", $form->generate_text_box('perpage', $perpage, array('id' => 'perpage')), 'perpage');
$form_container->end();
$buttons[] = $form->generate_submit_button($lang->filter_administrator_logs);
$form->output_submit_wrapper($buttons);
$form->end();
$page->output_footer();
}
/**
* Returns language-friendly string describing $logitem
* @param array The log item (one row from mybb_adminlogs)
* @return string The description
*/
function get_admin_log_action($logitem)
{
global $lang, $plugins, $mybb;
$logitem['module'] = str_replace('/', '-', $logitem['module']);
list($module, $action) = explode('-', $logitem['module']);
$lang_string = 'admin_log_' . $module . '_' . $action . '_' . $logitem['action'];
if (!empty($request['success'])) {
flash_message("Updated the firewall rule with IP {$mybb->get_input('ip_address')}", "success");
admin_redirect("index.php?module=cloudflare-manage_firewall");
} else {
flash_message($request['errors'], "error");
admin_redirect("index.php?module=cloudflare-manage_firewall");
}
}
$form = new Form('index.php?module=cloudflare-manage_firewall&action=modify_rule_by_ip', 'post');
$form_container = new FormContainer("Modify Firewall Rule");
$form_container->output_row("IP Address", "The IP address you would like to whitelist", $form->generate_text_box('ip_address', $mybb->get_input('ip')));
$form_container->output_row('Mode', '', $form->generate_select_box("mode", array("whitelist" => "Whitelist", "block" => "Blacklist", "challenge" => "Challenge"), $mybb->get_input('current_mode')));
$form_container->output_row("Notes", "Any notes you would like to add", $form->generate_text_box('notes', $mybb->get_input('current_notes')));
echo $form->generate_hidden_field('update_rule', 'update');
$form_container->end();
$buttons[] = $form->generate_submit_button("Submit");
$form->output_submit_wrapper($buttons);
$form->end();
} elseif ($mybb->input['action'] == 'delete_rule_by_id') {
if (!verify_post_check($mybb->input['my_post_key'])) {
flash_message($lang->invalid_post_verify_key2, 'error');
admin_redirect("index.php?module=cloudflare-manage_firewall");
}
$request = $cloudflare->delete_firewall_rule($mybb->get_input('rule_id'));
if (!empty($request->success)) {
flash_message("Deleted the firewall rule with IP {$mybb->get_input('ip_address')}", "success");
admin_redirect("index.php?module=cloudflare-manage_firewall");
} else {
flash_message($request->errors[0]->message, "error");
admin_redirect("index.php?module=cloudflare-manage_firewall");
}
$table->construct_cell("{$title} ({$points})");
$table->construct_cell($issued_date, array("class" => "align_center"));
$table->construct_cell($expire_date . $revoked_text, array("class" => "align_center"));
$table->construct_cell($mod_username_link);
$table->construct_cell("<a href=\"index.php?module=tools-warninglog&action=view&wid={$row['wid']}\">{$lang->view}</a>", array("class" => "align_center"));
$table->construct_row();
}
if ($table->num_rows() == 0) {
$table->construct_cell($lang->no_warning_logs, array("colspan" => "6"));
$table->construct_row();
}
$table->output($lang->warning_logs);
// Do we need to construct the pagination?
if ($total_warnings > $per_page) {
echo draw_admin_pagination($view_page, $per_page, $total_warnings, $url) . "<br />";
}
$sort_by = array('expires' => $lang->expiry_date, 'dateline' => $lang->issued_date, 'username' => $lang->warned_user, 'issuedby' => $lang->issued_by);
$order_array = array('asc' => $lang->asc, 'desc' => $lang->desc);
$form = new Form("index.php?module=tools-warninglog", "post");
$form_container = new FormContainer($lang->filter_warning_logs);
$form_container->output_row($lang->filter_warned_user, "", $form->generate_text_box('filter[username]', $mybb->input['filter']['username'], array('id' => 'filter_username')), 'filter_username');
$form_container->output_row($lang->filter_issued_by, "", $form->generate_text_box('filter[mod_username]', $mybb->input['filter']['mod_username'], array('id' => 'filter_mod_username')), 'filter_mod_username');
$form_container->output_row($lang->filter_reason, "", $form->generate_text_box('filter[reason]', $mybb->input['filter']['reason'], array('id' => 'filter_reason')), 'filter_reason');
$form_container->output_row($lang->sort_by, "", $form->generate_select_box('filter[sortby]', $sort_by, $mybb->input['filter']['sortby'], array('id' => 'filter_sortby')) . " {$lang->in} " . $form->generate_select_box('filter[order]', $order_array, $order, array('id' => 'filter_order')) . " {$lang->order}", 'filter_order');
$form_container->output_row($lang->results_per_page, "", $form->generate_text_box('filter[per_page]', $per_page, array('id' => 'filter_per_page')), 'filter_per_page');
$form_container->end();
$buttons[] = $form->generate_submit_button($lang->filter_warning_logs);
$form->output_submit_wrapper($buttons);
$form->end();
$page->output_footer();
}
$table->construct_cell("<a href=\"index.php?module=config/banning&action=delete&fid={$filter['fid']}&my_post_key={$mybb->post_code}\" onclick=\"return AdminCP.deleteConfirmation(this, '{$lang->confirm_ban_deletion}');\"><img src=\"styles/{$page->style}/images/icons/delete.gif\" title=\"{$lang->delete}\" alt=\"{$lang->delete}\" /></a>", array("class" => "align_center"));
$table->construct_row();
}
if ($table->num_rows() == 0) {
$table->construct_cell($lang->no_bans, array("colspan" => 4));
$table->construct_row();
}
$table->output($title);
$form = new Form("index.php?module=config/banning&action=add", "post", "add");
if ($errors) {
$page->output_inline_error($errors);
}
if ($mybb->input['type'] == "usernames") {
$form_container = new FormContainer($lang->add_disallowed_username);
$form_container->output_row($lang->username . " <em>*</em>", $lang->username_desc, $form->generate_text_box('filter', $mybb->input['filter'], array('id' => 'filter')), 'filter');
$buttons[] = $form->generate_submit_button($lang->disallow_username);
} else {
if ($mybb->input['type'] == "emails") {
$form_container = new FormContainer($lang->add_disallowed_email_address);
$form_container->output_row($lang->email_address . " <em>*</em>", $lang->email_address_desc, $form->generate_text_box('filter', $mybb->input['filter'], array('id' => 'filter')), 'filter');
$buttons[] = $form->generate_submit_button($lang->disallow_email_address);
} else {
$form_container = new FormContainer($lang->ban_ip_address);
$form_container->output_row($lang->ip_address . " <em>*</em>", $lang->ip_address_desc, $form->generate_text_box('filter', $mybb->input['filter'], array('id' => 'filter')), 'filter');
$buttons[] = $form->generate_submit_button($lang->ban_ip_address);
}
}
$form_container->end();
echo $form->generate_hidden_field("type", $type);
$form->output_submit_wrapper($buttons);
$form->end();
if ($mybb->input['no']) {
admin_redirect("index.php?module=newpoints-maintenance");
}
if ($mybb->request_method == "post") {
if (!isset($mybb->input['my_post_key']) || $mybb->post_code != $mybb->input['my_post_key']) {
$mybb->request_method = "get";
flash_message($lang->newpoints_error, 'error');
admin_redirect("index.php?module=newpoints-maintenance");
}
newpoints_undo_template_edits();
newpoints_do_template_edits();
log_admin_action($lang->newpoints_reconstruct_done);
flash_message($lang->newpoints_reconstructed, 'success');
admin_redirect('index.php?module=newpoints-maintenance');
} else {
$mybb->input['per_page'] = intval($mybb->input['per_page']);
$form = new Form("index.php?module=newpoints-maintenance&action=reconstruct&my_post_key={$mybb->post_code}", 'post');
echo "<div class=\"confirm_action\">\n";
echo "<p>{$lang->newpoints_reconstructconfirm}</p>\n";
echo "<br />\n";
echo "<p class=\"buttons\">\n";
echo $form->generate_submit_button($lang->yes, array('class' => 'button_yes'));
echo $form->generate_submit_button($lang->no, array("name" => "no", 'class' => 'button_no'));
echo "</p>\n";
echo "</div>\n";
$form->end();
}
$plugins->run_hooks("newpoints_admin_maintenance_reconstruct_start");
}
$plugins->run_hooks("newpoints_admin_maintenance_terminate");
$page->output_footer();
// Do we need to construct the pagination?
if ($rescount > $perpage) {
echo draw_admin_pagination($pagecnt, $perpage, $rescount, "index.php?module=tools/modlog&perpage={$perpage}&uid={$mybb->input['uid']}&fid={$mybb->input['fid']}&sortby={$mybb->input['sortby']}&order={$order}") . "<br />";
}
// Fetch filter options
$sortbysel[$mybb->input['sortby']] = "selected=\"selected\"";
$ordersel[$mybb->input['order']] = "selected=\"selected\"";
$user_options[''] = $lang->all_moderators;
$user_options['0'] = '----------';
$query = $db->query("\n\t\tSELECT DISTINCT l.uid, u.username\n\t\tFROM " . TABLE_PREFIX . "moderatorlog l\n\t\tLEFT JOIN " . TABLE_PREFIX . "users u ON (l.uid=u.uid)\n\t\tORDER BY u.username ASC\n\t");
while ($user = $db->fetch_array($query)) {
$selected = '';
if ($mybb->input['uid'] == $user['uid']) {
$selected = "selected=\"selected\"";
}
$user_options[$user['uid']] = $user['username'];
}
$sort_by = array('dateline' => $lang->date, 'username' => $lang->username, 'forum' => $lang->forum_name, 'thread' => $lang->thread_subject);
$order_array = array('asc' => $lang->asc, 'desc' => $lang->desc);
$form = new Form("index.php?module=tools/modlog", "post");
$form_container = new FormContainer($lang->filter_moderator_logs);
$form_container->output_row($lang->forum, "", $form->generate_forum_select('fid', $mybb->input['fid'], array('id' => 'fid', 'main_option' => $lang->all_forums)), 'fid');
$form_container->output_row($lang->forum_moderator, "", $form->generate_select_box('uid', $user_options, $mybb->input['uid'], array('id' => 'uid')), 'uid');
$form_container->output_row($lang->sort_by, "", $form->generate_select_box('sortby', $sort_by, $mybb->input['sortby'], array('id' => 'sortby')) . " {$lang->in} " . $form->generate_select_box('order', $order_array, $order, array('id' => 'order')) . " {$lang->order}", 'order');
$form_container->output_row($lang->results_per_page, "", $form->generate_text_box('perpage', $perpage, array('id' => 'perpage')), 'perpage');
$form_container->end();
$buttons[] = $form->generate_submit_button($lang->filter_moderator_logs);
$form->output_submit_wrapper($buttons);
$form->end();
$page->output_footer();
}
