function delete_page($del_id)
{
return;
global $sql, $e107cache, $admin_log, $e_event;
//if(!$sql->db_Select('page', '*', "page_id={$del_id}")) return;
//$row = $sql->db_Fetch();
admin_update($sql->db_Delete("page", "page_id='{$del_id}' "), 'delete', CUSLAN_28, false, false);
$sql->db_Delete('menus', "menu_path='{$del_id}'");
$e107cache->clear_sys('menus_');
$admin_log->log_event('CPAGE_03', 'ID: ' . $del_id, E_LOG_INFORMATIVE, '');
/*$url = e107::getUrl()->sc('page/view', $row, 'allow=page_id,page_title,page_sef');
if ($row['page_theme'] && $sql->db_Select('links', 'link_id', "link_url='".$url."'"))
{
$tmp = $sql->db_Fetch();
$sql->db_Delete('links', "link_id=".$tmp['link_id']);
$e107cache->clear('sitelinks');
}
*/
$data = array('method' => 'delete', 'table' => 'page', 'id' => $del_id, 'plugin' => 'page', 'function' => 'delete_page');
$this->message = $e_event->triggerHook($data);
}
if (($action == 'remove' || $action == 'whremove') && isset($_POST['ban_secure'])) {
$sql->db_Delete('generic', "gen_type='failed_login' AND gen_ip='{$sub_action}'");
admin_update($sql->db_Delete('banlist', "banlist_ip='{$sub_action}'"), 'delete');
if ($action == "remove") {
$action = 'list';
banlist_adminlog('02', $sub_action);
} else {
$action = 'white';
banlist_adminlog('05', $sub_action);
}
$writeBanFile = TRUE;
}
// Update the ban expiry time/date - timed from now (only done on banlist)
if ($action == 'newtime') {
$end_time = $id ? time() + $id * 60 * 60 : 0;
admin_update($sql->db_Update('banlist', 'banlist_banexpires=' . intval($end_time) . " WHERE banlist_ip='" . $sub_action . "'"));
banlist_adminlog('03', $sub_action);
$action = 'list';
$writeBanFile = TRUE;
}
if ($writeBanFile) {
/************************************************
update list of banned IPs
*************************************************/
$ipAdministrator->writeBanListFiles('ip,htaccess');
if (!$ipAdministrator->doesMessageFileExist()) {
$ipAdministrator->writeBanMessageFile();
// Message file must exist - may not on fresh site
banlist_adminlog('08', '');
$emessage->add(BANLAN_33, E_MESSAGE_SUCCESS);
}
/**
* Update user (admin) permissions.
* NOTE: exit if $uid is not an integer or is 0.
*
* @param integer $uid
* @param array $permArray eg. array('A', 'K', '1');
* @return void
*/
function updatePerms($uid, $permArray)
{
global $admin_log;
$sql = e107::getDb();
$tp = e107::getParser();
$modID = intval($uid);
if ($modID == 0) {
exit;
}
$sql->db_Select("user", "*", "user_id=" . $modID);
$row = $sql->db_Fetch();
$a_name = $row['user_name'];
$perm = "";
foreach ($permArray as $value) {
$value = $tp->toDB($value);
if ($value == "0") {
if (!getperms('0')) {
$value = "";
break;
}
$perm = "0";
break;
}
if ($value) {
$perm .= $value . ".";
}
}
admin_update($sql->db_Update("user", "user_perms='{$perm}' WHERE user_id='{$modID}' "), 'update', sprintf(ADMSLAN_2, $tp->toDB($_POST['ad_name'])), false, false);
$logMsg = str_replace(array('--ID--', '--NAME--'), array($modID, $a_name), ADMSLAN_72) . $perm;
$admin_log->log_event('ADMIN_01', $logMsg, E_LOG_INFORMATIVE, '');
}
<?php
include dirname(__FILE__) . '/../modeles/administration/administration.php';
if (admin_secu($_SESSION['id']) == true) {
include dirname(__FILE__) . '/../modeles/administration/admin_faq_edition.php';
if (isset($_POST['accept'])) {
$quest = addslashes($_POST['question']);
$rep = addslashes($_POST['reponse']);
admin_update($_POST['id'], $quest, $rep);
echo "<h2 style='color:red;text-align:center;'>Modifications enregistrées !</h2>";
}
$Modif = admin_Allfaq($_GET['id']);
// INCLURE LA VUE CORRESPONDANTE
include dirname(__FILE__) . '/../vues/administration/admin_faq_edition.php';
} else {
echo 'vous devez être administrateur pour acceder à cette page ';
header("Refresh:2; url=index.php?page=accueil", true, 303);
}
// INCLURE LE MODELE CORRESPONDANT
function submit_mirror()
{
global $tp, $sql, $admin_log;
define("SUBMITTED", TRUE);
if (isset($_POST['mirror_name']) && isset($_POST['mirror_url'])) {
$name = $tp->toDB($_POST['mirror_name']);
$url = $tp->toDB($_POST['mirror_url']);
$location = $tp->toDB($_POST['mirror_location']);
$description = $tp->toDB($_POST['mirror_description']);
$logString = $name . '[!br!]' . $url . '[!br!]' . $location . '[!br!]' . $description;
if (isset($_POST['id'])) {
admin_update($sql->db_Update("download_mirror", "mirror_name='{$name}', mirror_url='{$url}', mirror_image='" . $tp->toDB($_POST['mirror_image']) . "', mirror_location='{$location}', mirror_description='{$description}' WHERE mirror_id=" . intval($_POST['id'])), 'update', DOWLAN_133);
$admin_log->log_event('DOWNL_13', 'ID: ' . intval($_POST['id']) . '[!br!]' . $logString, E_LOG_INFORMATIVE, '');
} else {
admin_update($sql->db_Insert("download_mirror", "0, '{$name}', '{$url}', '" . $tp->toDB($_POST['mirror_image']) . "', '{$location}', '{$description}', 0"), 'insert', DOWLAN_134);
$admin_log->log_event('DOWNL_12', $logString, E_LOG_INFORMATIVE, '');
}
}
}
function saveConf()
{
global $sql, $tp;
$packID = $_POST['packID'];
unset($_POST['sub_conf'], $_POST['packID']);
$encoded_emotes = $tp->toDB($_POST);
// $tmp = addslashes(serialize($encoded_emotes));
$tmp = e107::getArrayStorage()->WriteArray($encoded_emotes);
if ($sql->db_Select("core", "*", "e107_name='emote_" . $packID . "'")) {
admin_update($sql->db_Update("core", "`e107_value`='{$tmp}' WHERE `e107_name`='emote_" . $packID . "' "), 'update', EMOLAN_16, false, false);
} else {
admin_update($sql->db_Insert("core", "'emote_" . $packID . "', '{$tmp}' "), 'insert', EMOLAN_16, false, false);
}
}
}
}
if (isset($_POST['del_admin']) && count($_POST['del_admin'])) {
$delid = array_keys($_POST['del_admin']);
$aID = intval($delid[0]);
$sql->db_Select("user", "*", "user_id= " . $aID);
$row = $sql->db_Fetch();
if ($row['user_id'] == 1) {
// Can't delete main admin
$text = $row['user_name'] . " " . ADMSLAN_6 . "\n\t\t<br /><br />\n\t\t<a href='" . e_ADMIN_ABS . "administrator.php'>" . ADMSLAN_4 . "</a>";
$emessage->add($text, E_MESSAGE_ERROR);
$ns->tablerender(LAN_ERROR, $emessage->render());
require_once "footer.php";
exit;
}
admin_update($sql->db_Update("user", "user_admin=0, user_perms='' WHERE user_id= " . $aID), 'update', ADMSLAN_61, LAN_DELETED_FAILED, false);
$logMsg = str_replace(array('--ID--', '--NAME--'), array($aID, $row['user_name']), ADMSLAN_73);
$admin_log->log_event('ADMIN_02', $logMsg, E_LOG_INFORMATIVE, '');
}
if (isset($_POST['edit_admin']) || $action == "edit") {
$prm->edit_administrator($row);
} else {
show_admins();
}
function show_admins()
{
$sql = e107::getDb();
$frm = e107::getForm();
$ns = e107::getRender();
$mes = e107::getMessage();
$tp = e107::getParser();
}
$plist = implode("|", $pagelist);
$pageparms = $postcampaign . "^" . $_POST['banner_listtype'] . "-" . $plist;
$pageparms = preg_replace("#\\|\$#", "", $pageparms);
$pageparms = trim($_POST['banner_pages']) == '' ? '' : $pageparms;
$cam = $pageparms;
$logString = $postcampaign . '[!br!]';
} else {
$cam = $e107->tp->toDB($_POST['banner_campaign'] ? $_POST['banner_campaign'] : $_POST['banner_campaign_sel']);
}
$logString .= $cam . '[!br!]' . $cli . '[!br!]' . $banImage . '[!br!]' . $banURL;
if ($_POST['createbanner']) {
admin_update($sql->db_Insert("banner", "0, '" . $cli . "', '" . $cLogin . "', '" . $cPassword . "', '" . $banImage . "', '" . $banURL . "', '" . intval($_POST['impressions_purchased']) . "', '{$start_date}', '{$end_date}', '" . intval($_POST['banner_class']) . "', 0, 0, '', '" . $cam . "'"), 'insert', BNRLAN_63, false, false);
banners_adminlog('02', $logString);
} else {
admin_update($sql->db_Update("banner", "banner_clientname='" . $cli . "', banner_clientlogin='******', banner_clientpassword='******', banner_image='" . $banImage . "', banner_clickurl='" . $banURL . "', banner_impurchased='" . intval($_POST['impressions_purchased']) . "', banner_startdate='{$start_date}', banner_enddate='{$end_date}', banner_active='" . intval($_POST['banner_class']) . "', banner_campaign='" . $cam . "' WHERE banner_id=" . intval($_POST['eid'])), 'update', BNRLAN_64, false, false);
banners_adminlog('03', $logString);
}
unset($_POST['client_name'], $_POST['client_login'], $_POST['client_password'], $_POST['banner_image'], $_POST['click_url'], $_POST['impressions_purchased'], $start_date, $end_date, $_POST['banner_enabled'], $_POST['startday'], $_POST['startmonth'], $_POST['startyear'], $_POST['endday'], $_POST['endmonth'], $_POST['endyear'], $_POST['banner_class'], $_POST['banner_pages'], $_POST['banner_listtype']);
}
/* DELETE ACTIONS */
if (isset($_POST['delete_cancel'])) {
$emessage->addSession(BNRLAN_6);
//redirect to main
session_write_close();
header('Location:' . e_SELF);
exit;
}
if ($action == "delete" && $sub_action && varsettrue($_POST['delete_confirm'])) {
if ($sql->db_Delete("banner", "banner_id=" . intval($sub_action))) {
$emessage->addSession(sprintf(BNRLAN_1, $sub_action), E_MESSAGE_SUCCESS);
