public static function read_admin($params) { if (!Session::is_admin()) { return []; } return Session::$admin_user; }
public static function read_by_params($params) { if (strlen($params['part_or_key']) == 16) { $quote = self::read_key($params['part_or_key']); $quote['part_or_key2'] = 'key'; if (!Session::is_admin() && array_key_exists('key', $quote)) { $model = ['quote_id' => $quote['id'], 'ip' => $_SERVER['REMOTE_ADDR']]; QuoteView::create($model); } } else { $quote = self::read_part($params['part_or_key']); $quote['part_or_key2'] = $params['part_or_key']; } return $quote; }
public static function read_parts($params, $parts) { //echo '<pre>'; debug_print_backtrace(); echo '</pre>'; exit; $parts = explode(',', $parts); for ($i = 0; $i < count($parts); ++$i) { $parts[$i] = Database::sanitize($parts[$i]); } $parts = implode(',', $parts); $where = Session::is_admin() ? '' : 'AND private = 0'; $res = Database::query("SELECT * FROM part WHERE part IN ({$parts}) {$where};"); $result = Record::post_process($res); for ($i = 0; $i < count($result); ++$i) { $result[$i] = self::post_process_fields($result[$i]); } return $result; }
} ?> }); </script> </head> <body id='body_scroll' style="background-color:#fafafa"> <div id='container'> <table width="95%" class='transparent' align='center'> <?php foreach ($notes as $note) { if (Session::is_admin($conn, $note->get_user()) || $note->get_user() == AV_DEFAULT_ADMIN) { $icon = '/ossim/pixmaps/user-business.png'; } elseif (Session::is_pro() && Acl::is_proadmin($conn, $note->get_user())) { $icon = '/ossim/pixmaps/user-gadmin.png'; } else { $icon = '/ossim/pixmaps/user-green.png'; } ?> <tr> <td class="nobborder" width='25%' height="100px"> <div class='note_info'> <table class="noborder" align="center"> <tr> <td><img align="absmiddle" alt="Entity admin" src="<?php
public static function print_page($content) { $start_time = microtime(true); if (strlen(LINK_PATH) > 0) { $sitePathArray = explode("/", LINK_PATH); for ($i = 0; $i < count($sitePathArray); $i++) { $file = FILE_ROOT . implode("/", array_slice($sitePathArray, 0, $i + 1)) . "/sidebar.php"; if (file_exists($file)) { include $file; MainTemplate::set_sidebar(sidebar()); MainTemplate::set_menu(menu()); } } unset($sitePathArray, $i, $file); } $main_menu = new Menu(); $main_menu->add_many(array("music", "Music Library", "music"), array("playlists", "Playlists", "th-list"), array("audiowalls", "Audiowalls", "th"), array("files", "Files", "folder-open"), array("showplans", "Show Planning", "tasks")); if (Session::is_admin()) { $main_menu->add("admin", "Admin", "cog"); } $site_path_array = explode("/", LINK_PATH); $main_menu->set_active($site_path_array[0]); header("Content-Type: text/html; charset=utf-8"); $return = "<!DOCTYPE html> \n<html> \n\t<head> \n\t\t<title>RaW Digiplay"; if (Output::get_title() != 'Untitled Page') { $return .= " - " . Output::get_title(); } $return .= "</title> \n\t\t<meta name=\"viewport\" content=\"width=device-width, initial-scale=1.0\">\n\t\t<meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\">\n\t\t<script type=\"text/javascript\" src=\"//ajax.googleapis.com/ajax/libs/jquery/2.0.0/jquery.min.js\"></script>\n\t\t<script type=\"text/javascript\" src=\"" . LINK_ABS . "js/bootstrap.min.js\"></script>\n\t\t"; if (isset($_REQUEST["theme"])) { $return .= "<link rel=\"stylesheet\" href=\"//netdna.bootstrapcdn.com/bootswatch/3.0.0/" . $_REQUEST["theme"] . "/bootstrap.min.css\">\n"; } else { $return .= "<link rel=\"stylesheet\" href=\"" . LINK_ABS . "css/bootstrap.min.css\">\n"; } if (count(Output::get_stylesheets()) > 0) { foreach (Output::get_stylesheets() as $src) { $return .= "<link href=\"" . $src . "\" rel=\"stylesheet\" type=\"text/css\">\n"; } } if (count(Output::get_scripts()) > 0) { foreach (Output::get_scripts() as $src) { $return .= "<script src=\"" . $src . "\" type=\"text/javascript\"></script>\n"; } } if (count(Output::get_feeds()) > 0) { foreach (Output::get_feeds() as $feed) { $return .= "<link rel=\"alternate\" type=\"application/rss+xml\" title=\"" . $feed['title'] . "\" href=\"" . $feed['url'] . "\">\n"; } } if (self::$barebones == false) { $return .= "\n\t\t\t<link rel=\"stylesheet\" href=\"" . LINK_ABS . "css/style.css\">\n\t\t\t<script src=\"" . LINK_ABS . "js/main.js\" type=\"text/javascript\"></script>\n\t\t\t"; } $return .= "\t</head>\n\t<body" . (self::$body_class ? " class=\"" . self::$body_class . "\"" : "") . ">"; if (self::$barebones == false) { $return .= "\n\t\t<div id=\"wrap\">\n\t\t\t<nav class=\"navbar navbar-inverse navbar-fixed-top\" role=\"navigation\">\n\t\t\t\t<div class=\"container\">\n\t\t\t\t<div class=\"navbar-header\">\n\t\t\t\t\t<button type=\"button\" class=\"navbar-toggle\" data-toggle=\"collapse\" data-target=\".navbar-dps-collapse\">\n \t\t\t\t\t\t<span class=\"sr-only\">Toggle navigation</span>\n \t\t\t\t\t\t<span class=\"icon-bar\"></span>\n \t\t\t\t\t\t<span class=\"icon-bar\"></span>\n \t\t\t\t\t\t<span class=\"icon-bar\"></span>\n \t\t\t\t\t</button>\n\t \t\t\t\t<a class=\"navbar-brand hidden-sm\" href=\"" . LINK_ABS . "\">Digiplay</a>\n\t\t\t\t\t<div class=\"navbar-spinner hidden\">\n\t\t\t\t\t\t<svg class=\"spinner\" width=\"25px\" height=\"25px\" viewBox=\"0 0 66 66\" xmlns=\"http://www.w3.org/2000/svg\">\n\t\t\t\t\t\t\t<circle class=\"path\" fill=\"none\" stroke-width=\"8\" stroke-linecap=\"round\" cx=\"33\" cy=\"33\" r=\"29\"></circle>\n\t\t\t\t\t\t</svg>\n\t\t\t\t\t</div>\n\t\t\t\t</div>\n\t\t\t\t<div class=\"navbar-collapse collapse navbar-dps-collapse\">" . $main_menu->output(LINK_ABS, 6, "nav navbar-nav"); if (Session::is_user()) { $return .= "\n\t\t\t\t\t<ul class=\"nav search-pull-right hidden-sm\">\n\t\t\t\t\t\t<li>\n\t\t\t\t\t\t\t<form class=\"navbar-form\" action=\"" . LINK_ABS . "music/search\" method=\"GET\" role=\"search\">\n\t\t\t\t\t\t\t\t<div class=\"form-group\">\n\t \t\t\t\t\t<input type=\"text\" class=\"form-control search-query\" placeholder=\"Search Tracks\" name=\"q\" autocomplete=\"off\">\n\t \t\t\t\t</div>\n\t \t\t\t</form>\n\t \t\t</li>\n\t \t\t<li>\n\t\t \t\t\t<ul id=\"quick-search\" class=\"dropdown-menu pull-right\"></ul>\n\t\t \t\t</li>\n\t\t \t</ul>\n\t\t \t"; } $return .= "\n\t\t\t\t</div>\n\t\t\t\t</div>\n\t\t\t</nav>\n\t\t\t" . (isset(self::$feature_html) ? "<div class=\"jumbotron" . (isset(self::$feature_image) ? " feature-image\" style=\"background-image: url('" . self::$feature_image . "')\"" : "\"") . "><div class=\"container\">" . self::$feature_html . "</div></div>" : "") . "<div class=\"container\">"; if (Output::get_title() != 'Untitled Page') { $return .= "\n\t\t\t\t<div class=\"page-header\">\n\t\t\t\t\t<h2>" . Output::get_title(); if (isset(self::$subtitle)) { $return .= " <small>" . self::$subtitle . "</small>"; } $return .= "</h2>\n\t\t\t\t</div>"; } $return .= "\n\t\t\t\t<div class=\"row\">"; if (isset(self::$sidebar) || isset(self::$menu)) { $return .= "\n\t\t\t\t<div class=\"col-md-3\">"; if (isset(self::$menu)) { $return .= self::$menu; } if (isset(self::$sidebar)) { $return .= "\t\n\t\t\t\t\t<div class=\"panel panel-noborder visible-md visible-lg\">\n\t\t\t\t\t\t<div class=\"panel-body\">" . self::$sidebar . "\n\t\t\t\t\t\t</div>\n\t\t\t\t\t</div>"; } $return .= "\n\t\t\t\t</div>\n\t\t\t\t<div class=\"col-md-9\">"; } else { $return .= "\n\t\t\t\t<div class=\"col-md-12\">"; } } $return .= $content; if (self::$barebones == false) { $return .= "\n\t\t\t\t\t</div>\n\t\t\t\t</div>\n\t\t\t</div>"; if (Session::is_user()) { $return .= Bootstrap::modal("logout-modal", "You'll lose any unsaved changes on this page.", "Log out?", "<a class=\"btn btn-primary\" href=\"" . LINK_ABS . "ajax/logout.php\">Yes, log out</a>"); } $return .= "\n\t\t<div id=\"push\"></div>\n\t</div>\n\t\t<footer class=\"jumbotron\">\n\t\t\t<div class=\"container\">\n\t\t\t\t<div class=\"row\">\n\t\t\t\t\t<div class=\"col-sm-8\">\n\t\t\t\t\t\t<p class=\"text-muted credit\">"; if (Session::is_user()) { $return .= "Logged in as " . Session::get_username() . ". <a href=\"#logout-modal\" data-toggle=\"modal\">Logout</a>. "; } else { $return .= "Not logged in. "; } $return .= "Copyright © 2011-" . date("y") . " Radio Warwick\n\t\t\t\t\t\t</p>\n\t\t\t\t\t</div>\n\t\t\t\t\t<div class=\"col-sm-4\">\n\t\t\t\t\t\t<a href=\"" . LINK_ABS . "\"><img src=\"" . LINK_ABS . "img/footer_logo.png\" alt=\"RaW 1251AM\" class=\"pull-right\"/></a>\n\t\t\t\t\t</div>\n\t\t\t\t</div>\n\t\t\t</div>\n\t\t</footer>"; } $return .= "\n\t<!-- Page generated in " . (microtime(true) - START_TIME) . " seconds. " . DigiplayDB::get_querycount() . " database queries ran in " . DigiplayDB::get_querytime() . " seconds. -->\n\t</body> \n</html>"; return $return; }
} else { unset($validate['pass1']); unset($validate['pass2']); } $last_pass_change = POST('last_pass_change'); $first_login = POST('first_login'); $is_admin = 0; $template_id = POST('template_id'); $exp_user = ''; if ($am_i_admin) { if (isset($_POST['is_admin']) && $_POST['is_admin'] != '') { $is_admin = POST('is_admin'); } else { if ($login == AV_DEFAULT_ADMIN) { $is_admin = 0; } elseif (Session::is_admin($conn, $login)) { $is_admin = 1; } } } $sel_assets = POST('assets'); $sel_assets = is_array($sel_assets) && !empty($sel_assets) ? $sel_assets : array(); $sel_sensors = POST('sensors'); $sel_sensors = is_array($sel_sensors) && !empty($sel_sensors) ? $sel_sensors : array(); if ($pro) { $entities = POST('entities'); $entities = is_array($entities) && !empty($entities) ? $entities : array(); if ($is_my_profile) { unset($validate["entities[]"]); } } else {
break; } } } if (myGet('pwd') != myGet('pwd2')) { $view = 'error'; $pagetitle = 'Erreur'; $msg = "Les mots de passe ne correspondent pas"; break; } $data = array("mail" => myGet("mail"), "password" => hash('sha256', myGet('pwd') . Conf::getSeed()), "birth" => myGet("birth")); ModelUsers::insert($data); // Initialisation des variables pour la vue $m = myGet('mail'); $tab_util = ModelUsers::selectAll(); if (Session::is_admin()) { $view = "home"; $pagetitle = "Accueil"; break; } else { $ConnectPassword = myGet('pwd'); $submit = "Connexion"; $act = "connected"; $label = "Se Connecter"; $view = "connect"; $pagetitle = "Connection"; break; } // Chargement de la vue // Chargement de la vue case "updated":
$li .= Session::am_i_admin() || $am_i_pro_admin || $login == $me ? ", key:'{$u_key}', isLazy:true" : ""; $buffer .= ($j > 0 ? "," : "") . "{ {$li} }"; $j++; } $buffer .= "]"; if ($buffer == "[]") { $buffer = "[{title:'" . _("No Users found") . "', noLink:true}]"; } echo $buffer; } else { if (preg_match("/ou/", $key)) { $users = array(); $users_aux = Acl::get_orph_users($conn); foreach ($users_aux as $user) { if ($user['login'] != ACL_DEFAULT_OSSIM_ADMIN) { $icon = !Session::is_admin($conn, $user['login']) ? "../../pixmaps/user-green.png" : "../../pixmaps/user-gadmin.png"; $users[$user['login']] = $icon; } } if (!Session::am_i_admin()) { $me = Session::get_session_user(); if (!empty($users[$me])) { $users = null; $users[$me] = "../../pixmaps/user-green.png"; } else { $users = array(); } } $buffer = "["; $j = 0; foreach ($users as $k => $v) {
<td id='subscribe_section' nowrap='nowrap' colspan='4'> <select name="login"> <?php $current_user = Session::get_session_user(); $number_users = count($users); if (Session::am_i_admin()) { $filtered_users = $users; } else { foreach ($users as $u) { $login = $u->get_login(); if ($login == $current_user) { $filtered_users[] = $u; } else { if (!Session::is_admin($conn, $login)) { if ($pro && !Acl::am_i_proadmin() && !Acl::is_proadmin($conn, $login) > 0) { $filtered_users[] = $u; } elseif ($pro && Acl::am_i_proadmin()) { $filtered_users[] = $u; } } } } } if ($number_users == 0) { ?> <option value="">- <?php echo _("No users found"); ?> -</option>