function admin_server()
{
global $db;
$tpl = new smarty();
$db->query('SELECT `ID`, `verwendung`, `intervall`, `betrag`, `nextbuch` FROM ' . DB_PRE . 'ecp_clankasse_auto');
$auto = array();
while ($row = $db->fetch_assoc()) {
$row['nextbuch'] = date(LONG_DATE, $row['nextbuch']);
$row['betrag'] = number_format($row['betrag'], 2, ',', '.');
$auto[] = $row;
}
$tpl->assign('auto', $auto);
ob_start();
$tpl->display(DESIGN . '/tpl/admin/clankasse_auto_overview.html');
$content = ob_get_contents();
ob_end_clean();
$tpl->assign('overview', $content);
$db->query('SELECT a.*, b.username FROM ' . DB_PRE . 'ecp_clankasse_transaktion as a LEFT JOIN ' . DB_PRE . 'ecp_user as b ON b.ID = vonuser ORDER BY datum DESC');
$buchung = array();
while ($row = $db->fetch_assoc()) {
$row['datum'] = date(LONG_DATE, $row['datum']);
if ($row['vonuser']) {
$row['verwendung'] .= ' ' . FROM . ' ' . $row['username'];
}
$row['geld'] = number_format($row['geld'], 2, ',', '.');
$buchung[] = $row;
}
$tpl->assign('buchung', $buchung);
ob_start();
$tpl->display(DESIGN . '/tpl/admin/clankasse_trans_overview.html');
$content = ob_get_contents();
ob_end_clean();
$tpl->assign('buch_overview', $content);
$db->query('SELECT username, userID, verwendung, monatgeld FROM ' . DB_PRE . 'ecp_clankasse_member LEFT JOIN ' . DB_PRE . 'ecp_user ON userID = ID ORDER BY username ASC');
$user = array();
while ($row = $db->fetch_assoc()) {
$row['geld'] = number_format($row['monatgeld'], 2, ',', '.');
$user[] = $row;
}
$tpl->assign('user', $user);
ob_start();
$tpl->display(DESIGN . '/tpl/admin/clankasse_user_overview.html');
$content = ob_get_contents();
ob_end_clean();
$tpl->assign('user_trans', $content);
$konto = $db->fetch_assoc('SELECT * FROM ' . DB_PRE . 'ecp_clankasse');
$konto['kontostand'] = number_format($konto['kontostand'], 2, ',', '');
foreach ($konto as $key => $value) {
$tpl->assign($key, $value);
}
$tpl->assign('options', get_options(date('m'), date('Y')));
ob_start();
$tpl->display(DESIGN . '/tpl/admin/clankasse.html');
$content = ob_get_contents();
ob_end_clean();
main_content(FINANCES, $content, '', 1);
}
function shoutbox()
{
global $db, $countries;
$tpl = new smarty();
$anzahl = $db->result(DB_PRE . 'ecp_comments', 'COUNT(comID)', 'bereich="shoutbox"');
if ($anzahl) {
$limits = get_sql_limit($anzahl, LIMIT_SHOUTBOX);
$shouts = array();
$db->query('SELECT comID, country, username, userID, author, datum, beitrag FROM ' . DB_PRE . 'ecp_comments LEFT JOIN ' . DB_PRE . 'ecp_user ON userID = ID WHERE bereich="shoutbox" ORDER BY datum DESC LIMIT ' . $limits[1] . ',' . LIMIT_SHOUTBOX);
$anzahl -= $limits[1];
while ($row = $db->fetch_assoc()) {
$row['nr'] = format_nr($anzahl--, 0);
$row['countryname'] = @$countries[$row['country']];
$row['datum'] = date(LONG_DATE, $row['datum']);
$shouts[] = $row;
}
$tpl->assign('shoutbox', $shouts);
if ($limits[0] > 1) {
$tpl->assign('seiten', makepagelink_ajax('?section=shoutbox', 'return load_shout_page({nr});', @$_GET['page'], $limits[0]));
}
ob_start();
$tpl->display(DESIGN . '/tpl/shoutbox/shoutbox.html');
$content = ob_get_contents();
ob_end_clean();
main_content(SHOUTBOX, '<div id="shout_overview">' . $content . '</div>', '', 1);
} else {
table(INFO, NO_ENTRIES);
}
}
function get_links()
{
global $db;
if (!isset($_SESSION['rights']['admin']['links']) and !isset($_SESSION['rights']['superadmin'])) {
echo NO_ADMIN_RIGHTS;
} else {
$tpl = new smarty();
if (@$_GET['ajax']) {
ob_end_clean();
}
$links = array();
$result = $db->query('SELECT `linkID`, `name`, `url`, `bannerurl`, `beschreibung`, `hits` FROM ' . DB_PRE . 'ecp_links ORDER BY name ASC');
while ($row = mysql_fetch_assoc($result)) {
$links[] = $row;
}
$tpl->assign('links', $links);
ob_start();
$tpl->display(DESIGN . '/tpl/admin/links_overview.html');
$content = ob_get_contents();
ob_end_clean();
if (@$_GET['ajax']) {
echo html_ajax_convert($content);
die;
}
main_content(OVERVIEW, '<div id="links_overview">' . $content . '</div>', '', 1);
}
}
function get_teams()
{
global $db;
$tpl = new smarty();
if (@$_GET['ajax']) {
ob_end_clean();
}
$teams = array();
$result = $db->query('SELECT tname, tID, info FROM ' . DB_PRE . 'ecp_teams ORDER BY posi ASC');
while ($row = mysql_fetch_assoc($result)) {
$members = array();
$subresult = $db->query('SELECT `username`, `mID`, `userID`, `name`, `aufgabe`, `aktiv`, country FROM ' . DB_PRE . 'ecp_members LEFT JOIN ' . DB_PRE . 'ecp_user ON (ID = userID) WHERE teamID = ' . $row['tID'] . ' ORDER BY posi ASC');
while ($subrow = mysql_fetch_assoc($subresult)) {
$subrow['aktiv'] ? $subrow['aktiv'] = '<span class="member_aktiv" style="cursor:pointer" onclick="member_switch_status(' . $row['tID'] . ', ' . $subrow['userID'] . ');">' . AKTIV . '</span>' : ($subrow['aktiv'] = '<span style="cursor:pointer" class="member_inaktiv" onclick="member_switch_status(' . $row['tID'] . ', ' . $subrow['userID'] . ');">' . INAKTIV . '</span>');
if ($subrow['name'] != '') {
$subrow['username'] = $subrow['name'];
}
$members[] = $subrow;
}
$row['members'] = $members;
$teams[] = $row;
}
$tpl->assign('teams', $teams);
ob_start();
$tpl->display(DESIGN . '/tpl/admin/teams_overview.html');
$content = ob_get_contents();
ob_end_clean();
if (@$_GET['ajax']) {
echo html_ajax_convert($content);
die;
}
main_content(OVERVIEW, '<div id="teams_overview">' . $content . '</div>', '', 1);
}
function admin_joinus()
{
global $db, $countries;
$tpl = new smarty();
$db->query('SELECT tname, `joinID`, `name`, b.username, b.email, b.icq, b.msn, `age`, b.country, `teamID`, `comment`, `IP`, `datum`, `closed`, `closedby`, a.username as closedby_username FROM ' . DB_PRE . 'ecp_joinus as b LEFT JOIN ' . DB_PRE . 'ecp_teams ON (teamID = tID) LEFT JOIN ' . DB_PRE . 'ecp_user as a ON (ID=closedby) ORDER BY closed ASC, datum ASC');
$joinus = array();
while ($row = $db->fetch_assoc()) {
$row['datum'] = date(SHORT_DATE, $row['datum']);
if ($row['joinID'] == (int) @$_GET['id']) {
$spe = $row;
}
$joinus[] = $row;
}
if (@$spe) {
ob_start();
$tpl1 = new Smarty();
foreach ($spe as $key => $value) {
$tpl1->assign($key, $value);
}
$tpl1->assign('countryname', $countries[$spe['country']]);
$tpl1->assign('id', $row['joinID']);
$tpl1->display(DESIGN . '/tpl/admin/joinus_view.html');
$tpl->assign('details', ob_get_contents());
ob_end_clean();
}
$tpl->assign('joinus', $joinus);
ob_start();
$tpl->display(DESIGN . '/tpl/admin/joinus.html');
$content = ob_get_contents();
ob_end_clean();
main_content(JOINUS, $content, '', 1);
}
function admin_texte()
{
global $db, $countries;
if (isset($_POST['submit'])) {
foreach ($_POST as $key => $value) {
if (strpos($key, '_h_')) {
$lang = substr($key, 0, strpos($key, '_'));
$name = substr($key, strpos($key, '_') + 3);
$sql = sprintf('UPDATE ' . DB_PRE . 'ecp_texte SET content = \'%s\', content2 = \'%s\' WHERE name= \'%s\' AND lang = \'%s\';', strsave($_POST[$lang . '_' . $name]), strsave($value), strsave($name), strsave($lang));
$db->query($sql);
}
}
header('Location: ?section=admin&site=texte');
} else {
$tpl = new smarty();
$lang = get_languages();
$db->query('SELECT * FROM ' . DB_PRE . 'ecp_texte ORDER BY lang ASC');
while ($row = $db->fetch_assoc()) {
foreach ($lang as $key => $value) {
if ($value['lang'] == $row['lang']) {
$lang[$key]['data'][$row['name']] = htmlspecialchars($row['content']);
$lang[$key]['headline'][$row['name']] = htmlspecialchars($row['content2']);
}
}
}
$tpl->assign('lang', $lang);
ob_start();
$tpl->display(DESIGN . '/tpl/admin/texte.html');
$content = ob_get_contents();
ob_end_clean();
main_content(TEXTE, $content, '', 1);
}
}
function get_server()
{
global $db;
if (!isset($_SESSION['rights']['admin']['server']) and !isset($_SESSION['rights']['superadmin'])) {
echo NO_ADMIN_RIGHTS;
} else {
$tpl = new smarty();
if (@$_GET['ajax']) {
ob_end_clean();
}
$server = array();
$result = $db->query('SELECT `serverID`, `gamename`, response, `gametype`, `aktiv`, `displaymenu`, `ip`, `port`, `queryport`, `stat` FROM ' . DB_PRE . 'ecp_server ORDER BY posi ASC');
while ($row = mysql_fetch_assoc($result)) {
$data = unserialize($row['response']);
$row['path'] = 'images/server/maps/' . $row['gametype'] . '/' . $data['s']['game'] . '/' . $data['s']['map'] . '.jpg';
$server[] = $row;
}
$tpl->assign('server', $server);
ob_start();
$tpl->display(DESIGN . '/tpl/admin/server_overview.html');
$content = ob_get_contents();
ob_end_clean();
if (@$_GET['ajax']) {
echo html_ajax_convert($content);
die;
}
main_content(OVERVIEW, '<div id="server_overview">' . $content . '</div>', '', 1);
}
}
function admin_survey()
{
global $db, $groups;
$anzahl = $db->result(DB_PRE . 'ecp_survey', 'COUNT(surveyID)', '1');
if ($anzahl) {
$limits = get_sql_limit($anzahl, LIMIT_SURVEY);
$db->query('SELECT `surveyID`, `start`, `ende`, `frage` FROM `' . DB_PRE . 'ecp_survey` ORDER BY ende DESC LIMIT ' . $limits[1] . ', ' . LIMIT_SURVEY);
$umfrage = array();
while ($row = $db->fetch_assoc()) {
if ($row['start'] > time()) {
$row['status'] = PLANNED;
$row['closed'] = 1;
} elseif ($row['ende'] < time()) {
$row['status'] = CLOSED;
$row['closed'] = 1;
} else {
$row['status'] = RUN;
}
$row['start'] = date(LONG_DATE, $row['start']);
$row['ende'] = date(LONG_DATE, $row['ende']);
$umfrage[] = $row;
}
}
$tpl = new smarty();
$db->query('SELECT groupID, name FROM ' . DB_PRE . 'ecp_groups ORDER by name ASC');
$rights = '<option value="all" selected="selected">' . ALL . '</option>';
while ($row = $db->fetch_assoc()) {
if (isset($groups[$row['name']])) {
$row['name'] = $groups[$row['name']];
}
$rights .= '<option value="' . $row['groupID'] . '">' . $row['name'] . '</option>';
}
$tpl->assign('rights', $rights);
$tpl->assign('anzahl', $anzahl);
$tpl->assign('umfrage', @$umfrage);
$tpl->assign('pages', @$limits[0]);
ob_start();
$tpl->display(DESIGN . '/tpl/admin/survey.html');
$tpl->display(DESIGN . '/tpl/admin/survey_overview.html');
$content = ob_get_contents();
ob_end_clean();
main_content(SURVEY, $content, '', 1);
}
function main_content($headline, $content, $footer = '', $mode = 0)
{
$tpl = new smarty();
if ($mode == 1) {
$tpl->assign('headline', $headline);
} else {
$tpl->assign('headline', $headline);
}
$tpl->assign('content', $content);
$tpl->assign('footer', $footer);
$tpl->assign('mode', $mode);
$tpl->display(DESIGN . '/tpl/content.html');
}
function main_content($headline, $content, $footer = '', $mode = 0)
{
$tpl = new smarty();
if ($mode == 1) {
$tpl->assign('headline', 'templates/' . DESIGN . '/picture.php?text=' . base64_encode('» ' . $headline));
} else {
$tpl->assign('headline', $headline);
}
$tpl->assign('content', $content);
$tpl->assign('footer', $footer);
$tpl->assign('mode', $mode);
$tpl->display(DESIGN . '/tpl/content.html');
}
function get_matchtypes()
{
global $db;
$db->query('SELECT matchtypeID, matchtypename, fightus FROM ' . DB_PRE . 'ecp_wars_matchtype ORDER BY matchtypename');
$match = array();
while ($row = $db->fetch_assoc()) {
$match[] = $row;
}
$tpl = new smarty();
$tpl->assign('matchtype', $match);
ob_start();
$tpl->display(DESIGN . '/tpl/admin/matchtype_overview.html');
$content = ob_get_contents();
ob_end_clean();
return $content;
}
function admin_settings()
{
global $db, $countries;
if (isset($_POST['submit'])) {
unset($_POST['submit']);
$_POST['SITE_URL'] = strrpos($_POST['SITE_URL'], '/') !== strlen($_POST['SITE_URL']) - 1 ? check_url($_POST['SITE_URL'] . '/') : check_url($_POST['SITE_URL']);
$sql = 'UPDATE ' . DB_PRE . 'ecp_settings SET ';
foreach ($_POST as $key => $value) {
$sql .= $key . ' = "' . strsave($value) . '", ';
}
$sql = substr($sql, 0, strlen($sql) - 2);
if ($db->query($sql)) {
header('Location: ?section=admin&site=settings');
}
} else {
$dir = scan_dir('templates', true);
$designs = '';
foreach ($dir as $value) {
if (is_dir('templates/' . $value)) {
$designs .= '<option ' . ($value == DESIGN ? 'selected="selected"' : '') . ' value="' . $value . '">' . $value . '</option>';
}
}
$tpl = new smarty();
$tpl->assign('designs', $designs);
$tpl->assign('langs', get_languages());
$dir = scan_dir('module', true);
$start = '';
foreach ($dir as $value) {
if (is_dir('module/' . $value)) {
$start .= '<option ' . ('modul|' . $value == STARTSEITE ? 'selected="selected"' : '') . ' value="modul|' . $value . '">' . $value . '</option>';
}
}
$start .= '<option value="">-----' . OWN_SITES . '----</option>';
$db->query('SELECT headline, cmsID FROM ' . DB_PRE . 'ecp_cms ORDER BY headline ASC');
while ($row = $db->fetch_assoc()) {
$title = json_decode($row['headline'], true);
isset($title[LANGUAGE]) ? $title = $title[LANGUAGE] : ($title = $title[DEFAULT_LANG]);
$start .= '<option ' . ('cms|' . $row['cmsID'] == STARTSEITE ? 'selected="selected"' : '') . ' value="cms|' . $row['cmsID'] . '">' . $title . '</option>';
}
$tpl->assign('startseite', $start);
ob_start();
$tpl->display(DESIGN . '/tpl/admin/settings.html');
$content = ob_get_contents();
ob_end_clean();
main_content(SETTINGS, $content, '', 1);
}
}
function admin_fightus()
{
global $db;
$tpl = new smarty();
$db->query('SELECT tname, gamename, icon, matchtypename, a.homepage, `fightusID`, a.clanname, `wardatum`, `bearbeitet`, `vonID`, username FROM ' . DB_PRE . 'ecp_fightus as a LEFT JOIN ' . DB_PRE . 'ecp_teams ON (teamID = tID) LEFT JOIN ' . DB_PRE . 'ecp_wars_games ON (gID=gameID) LEFT JOIN ' . DB_PRE . 'ecp_wars_matchtype ON (mID= matchtypeID) LEFT JOIN ' . DB_PRE . 'ecp_user ON (ID=vonID) ORDER BY bearbeitet ASC, wardatum ASC');
$fightus = array();
while ($row = $db->fetch_assoc()) {
$row['wardatum'] = date(SHORT_DATE, $row['wardatum']);
$fightus[] = $row;
}
$tpl->assign('fightus', $fightus);
ob_start();
$tpl->display(DESIGN . '/tpl/admin/fightus.html');
$content = ob_get_contents();
ob_end_clean();
main_content(FIGHTUS, $content, '', 1);
}
function admin_downloads()
{
global $db;
$tpl = new smarty();
$tpl->assign('lang', get_languages());
$tpl->assign('rights', get_form_rights(@$_POST['rights']));
$tpl->assign('kate', download_get_cate(@$_POST['subID']));
$db->query('SELECT name, dID FROM ' . DB_PRE . 'ecp_downloads ORDER BY name ASC');
$dl = '<option value="0">' . CHOOSE . '</option>';
while ($row = $db->fetch_assoc()) {
$dl .= '<option value="' . $row['dID'] . '">' . $row['name'] . '</option>';
}
$tpl->assign('dls', $dl);
//foreach($_POST AS $key=>$value) $tpl->assign($key, $value);
ob_start();
$tpl->display(DESIGN . '/tpl/admin/downloads.html');
$content = ob_get_contents();
ob_end_clean();
main_content(DOWNLOADS, $content, '', 1);
}
function clankasse()
{
global $db;
$tpl = new smarty();
$konto = $db->fetch_assoc('SELECT * FROM ' . DB_PRE . 'ecp_clankasse');
$konto['kontostand'] = number_format($konto['kontostand'], 2, ',', '');
foreach ($konto as $key => $value) {
$tpl->assign($key, $value);
}
ob_start();
$anzahl = $db->result(DB_PRE . 'ecp_clankasse_transaktion', 'COUNT(ID)', '1');
$limits = get_sql_limit($anzahl, LIMIT_CLANKASSE_TRANS);
$db->query('SELECT a.*, b.username, c.username as buchusername FROM ' . DB_PRE . 'ecp_clankasse_transaktion as a LEFT JOIN ' . DB_PRE . 'ecp_user as b ON b.ID = vonuser LEFT JOIN ' . DB_PRE . 'ecp_user as c ON c.ID = userID ORDER BY datum DESC LIMIT ' . $limits[1] . ',' . LIMIT_CLANKASSE_TRANS);
$buchung = array();
while ($row = $db->fetch_assoc()) {
$row['datum'] = date(LONG_DATE, $row['datum']);
if ($row['vonuser']) {
$row['verwendung'] .= ' ' . FROM . ' ' . $row['username'];
}
$row['geld'] = number_format($row['geld'], 2, ',', '.');
$buchung[] = $row;
}
if ($limits[0] > 1) {
$tpl->assign('seiten', makepagelink_ajax('?section=clankasse', 'return load_clankasse_page({nr});', @$_GET['page'], $limits[0]));
}
$tpl->assign('buchung', $buchung);
$tpl->display(DESIGN . '/tpl/clankasse/kontodaten.html');
$content = ob_get_contents();
ob_end_clean();
main_content(FINANCES, $content, '', 1);
if (date('m') > 3) {
clankasse_buchungen(date('m') - 2, date('Y'));
} elseif (date('m') == 2) {
clankasse_buchungen(12, date('Y') - 1);
} elseif (date('m') == 1) {
clankasse_buchungen(11, date('Y') - 1);
} else {
clankasse_buchungen(1, date('Y'));
}
}
function admin_smilies_add()
{
global $db;
if (!isset($_SESSION['rights']['admin']['smilies']['add']) and !isset($_SESSION['rights']['superadmin'])) {
echo NO_ADMIN_RIGHTS;
} else {
if (@$_FILES['smilie']['tmp_name'] == '') {
table(ERROR, NOT_NEED_ALL_INPUTS);
$tpl = new smarty();
ob_start();
$tpl->display(DESIGN . '/tpl/admin/smilies.html');
$content = ob_get_contents();
ob_end_clean();
main_content(SMILIES, $content, '', 1);
get_smilies();
} elseif ($_FILES['smilie']['type'] != 'image/jpg' and $_FILES['smilie']['type'] != 'image/gif' and $_FILES['smilie']['type'] != 'image/png' and $_FILES['smilie']['type'] != 'image/jpeg') {
table(ERROR, WRONG_FILE_TYPE);
$tpl = new smarty();
ob_start();
$tpl->display(DESIGN . '/tpl/admin/smilies.html');
$content = ob_get_contents();
ob_end_clean();
main_content(SMILIES, $content, '', 1);
get_smilies();
} else {
ajax_convert_array($_POST);
ajax_convert_array($_FILES);
if (move_uploaded_file($_FILES['smilie']['tmp_name'], 'images/smilies/' . str_replace(' ', '_', $_FILES['smilie']['name']))) {
umask(0);
chmod('images/smilies/' . str_replace(' ', '_', $_FILES['smilie']['name']), CHMOD);
$sql = sprintf('INSERT INTO ' . DB_PRE . 'ecp_smilies (`bedeutung`, `filename`)
VALUES (\'%s\', \'%s\')', strsave($_POST['bedeutung']), strsave(str_replace(' ', '_', $_FILES['smilie']['name'])));
if ($db->query($sql)) {
header1('?section=admin&site=smilies');
}
}
}
}
}
function awards_view($id)
{
global $db;
$row = $db->fetch_assoc('SELECT `awardID`, `eventname`, `eventdatum`, `url`, `platz`, `teamID`, `gID`, `preis`, spieler, bericht, tname, icon, gamename FROM `' . DB_PRE . 'ecp_awards` LEFT JOIN ' . DB_PRE . 'ecp_teams ON tID = teamID LEFT JOIN ' . DB_PRE . 'ecp_wars_games ON gameID = gID WHERE awardID = ' . $id);
if (@$row['eventname']) {
$tpl = new smarty();
$row['eventdatum'] = date('d.m.Y', $row['eventdatum']);
$report = json_decode($row['bericht'], true);
$spieler = explode(',', $row['spieler']);
$row['preis'] = htmlentities($row['preis'], ENT_QUOTES, "UTF-8");
$row['eventname'] = htmlentities($row['eventname'], ENT_QUOTES, "UTF-8");
foreach ($spieler as $value) {
if ((int) $value) {
@($ids .= ' OR ID = ' . $value);
}
}
$db->query('SELECT username, ID FROM ' . DB_PRE . 'ecp_user WHERE ID = 0' . @$ids);
while ($sub = $db->fetch_assoc()) {
@($players .= ', <a href="?section=user&id=' . $sub['ID'] . '" >' . $sub['username'] . '</a>');
}
$tpl->assign('players', substr(@$players, 2));
if (isset($report[LANGUAGE])) {
$row['bericht'] = $report[LANGUAGE];
} else {
$row['bericht'] = @$report['de'];
}
foreach ($row as $key => $value) {
$tpl->assign($key, $value);
}
ob_start();
$tpl->display(DESIGN . '/tpl/awards/view.html');
$content = ob_get_contents();
ob_end_clean();
main_content(AWARDS, $content, '', 1);
} else {
table(ERROR, NO_ENTRIES_ID);
}
}
function get_events()
{
global $db;
$events = array();
$db->query('SELECT calID, eventname, datum FROM ' . DB_PRE . 'ecp_calendar ORDER BY datum DESC');
while ($row = $db->fetch_assoc()) {
$row['datum'] = date(LONG_DATE, $row['datum']);
$events[] = $row;
}
$tpl = new smarty();
$tpl->assign('events', $events);
ob_start();
$tpl->display(DESIGN . '/tpl/admin/calendar_overview.html');
$content = ob_get_contents();
ob_end_clean();
if (isset($_GET['ajax'])) {
ob_end_clean();
echo html_ajax_convert($content);
die;
} else {
return $content;
}
}
function admin_ranks_add()
{
global $db;
if (!isset($_SESSION['rights']['admin']['ranks']['add']) and !isset($_SESSION['rights']['superadmin'])) {
echo NO_ADMIN_RIGHTS;
} else {
if (@$_FILES['rank']['tmp_name'] == '' or $_POST['rankname'] == '') {
table(ERROR, NOT_NEED_ALL_INPUTS);
$tpl = new smarty();
ob_start();
$tpl->display(DESIGN . '/tpl/admin/ranks.html');
$content = ob_get_contents();
ob_end_clean();
main_content(RANGS, $content, '', 1);
get_ranks();
} elseif ($_FILES['rank']['type'] != 'image/jpg' and $_FILES['rank']['type'] != 'image/gif' and $_FILES['rank']['type'] != 'image/png' and $_FILES['rank']['type'] != 'image/jpeg') {
table(ERROR, WRONG_FILE_TYPE);
$tpl = new smarty();
ob_start();
$tpl->display(DESIGN . '/tpl/admin/ranks.html');
$content = ob_get_contents();
ob_end_clean();
main_content(RANGS, $content, '', 1);
get_ranks();
} else {
if (move_uploaded_file($_FILES['rank']['tmp_name'], 'images/ranks/' . str_replace(' ', '_', $_FILES['rank']['name']))) {
umask(0);
chmod('images/ranks/' . str_replace(' ', '_', $_FILES['rank']['name']), CHMOD);
$sql = sprintf('INSERT INTO ' . DB_PRE . 'ecp_ranks (`rankname`, `iconname`, abposts, fest, money)
VALUES (\'%s\', \'%s\', %d, %d, %f)', strsave($_POST['rankname']), strsave(str_replace(' ', '_', $_FILES['rank']['name'])), (int) @$_POST['abposts'], (int) @$_POST['fest'], (double) str_replace(',', '.', @$_POST['money']));
if ($db->query($sql)) {
header1('?section=admin&site=ranks');
}
}
}
}
}
$parameter = 'action=photo&doing=view_photo&photo_id=7&';
$pagebar = pagebar(get_self(), $parameter, $page_current, $page_size, $count);
$smarty = new smarty();
smarty_header();
$smarty->assign('pagebar', $pagebar);
$smarty->assign('photo', $rows);
$smarty->display('admin_photo_list.html');
}
if ($doing == 'manage_photo') {
check_browser();
check_user();
$format = "SELECT * FROM `{$db_prefix}photo`";
$query = $db->query($format);
$page_size = 10;
$page_current = isset($_GET['page']) && is_numeric($_GET['page']) ? intval($_GET['page']) : 1;
$count = $db->getCount($format);
$res = $db->getAll($format . " LIMIT " . ($page_current - 1) * $page_size . "," . $page_size);
$rows = array();
if ($count > 1) {
foreach ($res as $value) {
$rows[] = $value;
}
}
$parameter = 'action=photo&doing=manage_photo&';
$pagebar = pagebar(get_self(), $parameter, $page_current, $page_size, $count);
$smarty = new smarty();
smarty_header();
$smarty->assign('pagebar', $pagebar);
$smarty->assign('photo', $rows);
$smarty->display('admin_manage_photo.html');
}
foreach ($rows as $v) {
$page[$v['page_id']]['page_id'] = $v['page_id'];
$page[$v['page_id']]['page_name'] = $v['page_name'];
$page[$v['page_id']]['page_adds'] = $v['page_adds'];
$page[$v['page_id']]['page_sort'] = $v['page_sort'];
$format = "SELECT `page_name` FROM `{$db_prefix}page` WHERE `page_fid`='%d'";
$format = sprintf($format, $rows['page_fid']);
$query = $db->query($format);
$page_f_name = $query->fetch_assoc();
$page_f_name['page_f_name'] = $page_f_name['page_name'];
$page[$v['page_id']]['page_f_name'] = $page_f_name;
}
$smarty = new smarty();
smarty_header();
$smarty->assign('page', $rows);
$smarty->display('admin_edit_page.html');
}
if (isset($_POST['edit_btn'])) {
$page_class = empty($_POST['page_fid']) ? '' : intval($_POST['page_fid']);
$page_name = empty($_POST['page_name']) ? '' : trim(addslashes($_POST['page_name']));
$page_adds = empty($_POST['page_adds']) ? '' : trim(addslashes($_POST['page_adds']));
$page_sort = empty($_POST['page_sort']) ? '' : intval($_POST['page_sort']);
$page_id = empty($_POST['page_id']) ? '' : intval($_POST['page_id']);
$format = "UPDATE `{$db_prefix}page` SET `page_fid` ='%d', `page_name`= '%s', `page_adds`= '%s', `page_sort`='%d' WHERE `page_id`='%d'";
$format = sprintf($format, $page_class, $page_name, $page_adds, $page_sort, $page_id);
if ($db->query($format)) {
message(array('text' => $language['page_edit_success'], 'link' => '?action=page&doing=page_manage'));
}
}
} else {
}
<?php
if (!file_exists('./includes/admin_config.php')) {
header('Location:install.php');
}
include 'front.php';
$smarty = new smarty();
smarty_front();
get_nav();
get_adds();
get_news();
get_hot_news();
get_new_message();
$smarty->display('index.html');
header('Location: ' . $link);
} else {
table(ERROR, NO_ENTRIES_ID);
}
} else {
$tpl = new smarty();
$anzahl = $db->result(DB_PRE . 'ecp_links', 'COUNT(linkID)', '1');
if ($anzahl) {
$limits = get_sql_limit($anzahl, LIMIT_LINKS);
$links = array();
$db->query('SELECT * FROM ' . DB_PRE . 'ecp_links ORDER BY name ASC LIMIT ' . $limits[1] . ',' . LIMIT_LINKS);
while ($row = $db->fetch_assoc()) {
$row['hits'] = format_nr($row['hits'], 0);
$links[] = $row;
}
$tpl->assign('links', $links);
if ($limits[0] > 1) {
$tpl->assign('seiten', makepagelink_ajax('?section=links', 'return load_links({nr});', @$_GET['page'], $limits[0]));
}
ob_start();
$tpl->display(DESIGN . '/tpl/links/links.html');
$content = ob_get_contents();
ob_end_clean();
main_content(LINKS, '<div id="weblinks">' . $content . '</div>', '', 1);
} else {
table(INFO, NO_ENTRIES);
}
}
} else {
echo table(ACCESS_DENIED, NO_ACCESS_RIGHTS);
}
$system_info['CMS_NAME'] = 'hxfsc内容管理系统';
$system_info['CMS_BANB'] = 'BATA1.0';
$system_info['cmsSvn'] = 'http://code.google.com/p/hxfsc-web/downloads/list';
if (!function_exists("imagecreate")) {
if (function_exists('gd_info')) {
$ver_info = gd_info();
$gd_version = $ver_info['GD Version'] . "(支持)";
} else {
$gd_version = '不支持';
}
}
$system_info['GD'] = $gd_version;
$smarty = new smarty();
smarty_header();
$smarty->assign('tem', $system_info);
$smarty->display('admin_default.html');
}
//系统设置 基本设置
if ($doing == 'website_setting') {
check_browser();
check_user();
unset($_POST['saveconfig']);
$i = 0;
foreach ($_POST as $key => $values) {
$format = "UPDATE `{$db_prefix}styem` SET `styem_values`='%s' WHERE `styem_key`='%s'";
$format = sprintf($format, $values, $key);
$query = $db->query($format);
$res = $db->affected_rows;
$i += $res;
}
if ($i > 0) {
<?php
if (defined('VERSION')) {
if (@$_SESSION['rights']['public']['clanwars']['view_next'] or @$_SESSION['rights']['superadmin']) {
$anzahl = $db->result(DB_PRE . 'ecp_wars', 'COUNT(warID)', 'status=0');
$tpls = new smarty();
if ($anzahl) {
$db->query('SELECT `warID` , ' . DB_PRE . 'ecp_wars.`tID` , `gID` , `datum` , `xonx` , `oID` , `oppname`, `oppshort`, `homepage`, `country`, tname, gamename, icon, tname, matchtypename
FROM `' . DB_PRE . 'ecp_wars`
LEFT JOIN `' . DB_PRE . 'ecp_wars_games` ON ( gameID = gID )
LEFT JOIN `' . DB_PRE . 'ecp_wars_matchtype` ON ( matchtypeID = mID )
LEFT JOIN `' . DB_PRE . 'ecp_teams` ON ( ' . DB_PRE . 'ecp_teams.tID = ' . DB_PRE . 'ecp_wars.tID )
LEFT JOIN `' . DB_PRE . 'ecp_wars_opp` ON ( oppID = oID )
WHERE status = 0
GROUP BY warID
ORDER BY datum ASC LIMIT ' . LIMIT_NEXT_WARS);
while ($row1 = $db->fetch_assoc()) {
$row1['countryname'] = @$countries[$row1['country']];
$row1['datum'] = date(SHORT_DATE, $row1['datum']);
$next[] = $row1;
}
$tpls->assign('next', $next);
}
$tpls->display(DESIGN . '/tpl/clanwars/next_mini.html');
} else {
echo NO_ACCESS_RIGHTS;
}
} else {
echo 'Kein direktes Aufrufen der Datei!';
}
$tpl->assign('tage', floor($tage));
$tpl->assign('visits', format_nr($row['visits']));
$tpl->assign('hits', format_nr($row['hits']));
$tpl->assign('messages', format_nr(mysql_result($db->query('SHOW TABLE STATUS LIKE "%ecp_messages"'), 0, 'Auto_increment') - 1));
$tpl->assign('awards', $db->result(DB_PRE . 'ecp_awards', 'COUNT(awardID)', '1'));
$tpl->assign('news', format_nr($db->result(DB_PRE . 'ecp_news', 'COUNT(newsID)', '1')));
$tpl->assign('surveys', format_nr($db->result(DB_PRE . 'ecp_survey', 'COUNT(surveyID)', '1')));
$tpl->assign('clanwars', format_nr($db->result(DB_PRE . 'ecp_wars', 'COUNT(warID)', '1')));
$tpl->assign('comments', format_nr($db->result(DB_PRE . 'ecp_comments', 'COUNT(comID)', 'bereich != "guestbook"')));
$tpl->assign('members', format_nr($db->result(DB_PRE . 'ecp_user', 'COUNT(ID)', '1')));
$row = $db->fetch_assoc('SELECT username, ID, registerdate FROM ' . DB_PRE . 'ecp_user ORDER BY registerdate DESC LIMIT 1');
$tpl->assign('lastmember', '<a href="?section=user&id=' . $row['ID'] . '">' . $row['username'] . '</a> (' . date('d.m.Y', $row['registerdate']) . ')');
$row = $db->fetch_assoc('SELECT SUM(traffic) as traffic, COUNT(*) as anzahl FROM ' . DB_PRE . 'ecp_downloads');
$tpl->assign('downloads', format_nr($row['anzahl']));
$tpl->assign('traffic', goodsize($row['traffic']));
$tpl->assign('money', format_nr($db->result(DB_PRE . 'ecp_user_stats', 'SUM(money)', '1')));
$tpl->assign('members', format_nr($db->result(DB_PRE . 'ecp_user', 'COUNT(ID)', '1')));
$row = $db->fetch_assoc('SELECT SUM(images) as images, COUNT(*) as gallery FROM ' . DB_PRE . 'ecp_gallery');
$tpl->assign('images', format_nr($row['images']));
$tpl->assign('galleries', format_nr($row['gallery']));
$row = $db->fetch_assoc('SELECT SUM(threads) as threads, SUM(posts) AS posts FROM ' . DB_PRE . 'ecp_forum_boards');
$tpl->assign('threads', format_nr($row['threads']));
$tpl->assign('posts', format_nr($row['posts']));
ob_start();
$tpl->display(DESIGN . '/tpl/stats/overview.html');
$content = ob_get_contents();
ob_end_clean();
main_content(STATS, $content, '', 1);
} else {
table(ACCESS_DENIED, NO_ACCESS_RIGHTS);
}
function account_stats()
{
global $db, $countries;
$tpl = new smarty();
$user = $db->fetch_assoc('SELECT `registerdate`, rankname, `clicks`, `logins`, `comments`, a.money, iconname, `msg_s`, `msg_r`, `profilhits`, `scheine`, `2er`, `3er`, `4er`, COUNT(b.scheinID) as scheine FROM ' . DB_PRE . 'ecp_user LEFT JOIN ' . DB_PRE . 'ecp_user_stats as a ON (a.userID = ID) LEFT JOIN ' . DB_PRE . 'ecp_ranks ON (rID = rankID) LEFT JOIN ' . DB_PRE . 'ecp_lotto_scheine as b ON (b.userID = ID) WHERE ID = ' . $_SESSION['userID'] . ' GROUP BY ID');
$db->query('SELECT SUM(gewinn) as gewinn, art FROM ' . DB_PRE . 'ecp_lotto_gewinner WHERE userID = ' . $_SESSION['userID'] . ' GROUP BY art');
$user['wonmoney'] = 0;
$user['2ermoney'] = 0;
$user['3ermoney'] = 0;
$user['4ermoney'] = 0;
while ($row = $db->fetch_assoc()) {
$user['wonmoney'] += $row['gewinn'];
$user[$row['art'] . 'ermoney'] = $row['gewinn'];
}
$user['runden'] = $db->result(DB_PRE . 'ecp_lotto_scheine', 'COUNT(DISTINCT(rundenID)) as runden', 'userID = ' . $_SESSION['userID']);
$user['gesamtrunden'] = mysql_result($db->query('SHOW TABLE STATUS LIKE "' . DB_PRE . 'ecp_lotto_runden"'), 0, 'Auto_increment') - 1;
$user['tage'] = ceil((time() - $user['registerdate']) / 86400);
$user['teilqoute'] = format_nr($user['runden'] / ($user['gesamtrunden'] == 0 ? 1 : $user['gesamtrunden']) * 100, 2);
$user['scheinrunde'] = format_nr($user['scheine'] / ($user['runden'] == 0 ? 1 : $user['runden']), 2);
$user['winscheine'] = format_nr($user['2er'] + $user['3er'] + $user['4er']);
$user['winqoute'] = format_nr($user['winscheine'] / ($user['scheine'] == 0 ? 1 : $user['scheine']) * 100, 2);
$user['registerdate'] = date(LONG_DATE, $user['registerdate']);
$user['2erpro'] = format_nr($user['2er'] / ($user['winscheine'] == 0 ? 1 : $user['winscheine']) * 100, 2);
$user['3erpro'] = format_nr($user['3er'] / ($user['winscheine'] == 0 ? 1 : $user['winscheine']) * 100, 2);
$user['4erpro'] = format_nr($user['4er'] / ($user['winscheine'] == 0 ? 1 : $user['winscheine']) * 100, 2);
$user['2ermpro'] = format_nr($user['2ermoney'] / ($user['wonmoney'] == 0 ? 1 : $user['wonmoney']) * 100, 2);
$user['3ermpro'] = format_nr($user['3ermoney'] / ($user['wonmoney'] == 0 ? 1 : $user['wonmoney']) * 100, 2);
$user['4ermpro'] = format_nr($user['4ermoney'] / ($user['wonmoney'] == 0 ? 1 : $user['wonmoney']) * 100, 2);
foreach ($user as $key => $value) {
if ($key == 'clicks' or $key == 'comments' or $key == 'gesamtrunden' or $key == 'runden' or $key == 'msg_s' or $key == 'msg_r' or $key == 'profilhits' or $key == 'scheine' or $key == '2er' or $key == '3er' or $key == '4er') {
$value = format_nr($value);
}
if ($key == 'money' or $key == 'wonmoney' or $key == '2ermoney' or $key == '3ermoney' or $key == '4ermoney') {
$value = format_nr($value, 2);
}
$tpl->assign($key, $value);
}
$db->query('SELECT `awardID`, `eventname`, `eventdatum`, `url`, `platz`, `teamID`, `gID`, `preis`, tname, icon, gamename, COUNT(comID) as comments FROM `' . DB_PRE . 'ecp_awards` LEFT JOIN ' . DB_PRE . 'ecp_teams ON tID = teamID LEFT JOIN ' . DB_PRE . 'ecp_wars_games ON gameID = gID LEFT JOIN ' . DB_PRE . 'ecp_comments ON (bereich = "awards" AND subID = awardID) WHERE spieler LIKE "%,' . $_SESSION['userID'] . ',%" GROUP BY awardID ORDER BY eventdatum DESC');
$awards = array();
while ($row = $db->fetch_assoc()) {
$row['eventdatum'] = date('d.m.Y', $row['eventdatum']);
$awards[] = $row;
}
$tpl->assign('awards', $awards);
$tpl->assign('award', count($awards));
$db->query('SELECT `warID`, ' . DB_PRE . 'ecp_wars.datum, `result`, `resultscore`, `tname`, `oppname`, `country`, ' . DB_PRE . 'ecp_wars_opp.homepage, `icon`, `gamename`, `matchtypename`, COUNT(comID) as comments
FROM ' . DB_PRE . 'ecp_wars
LEFT JOIN ' . DB_PRE . 'ecp_teams ON ' . DB_PRE . 'ecp_teams.tID = ' . DB_PRE . 'ecp_wars.tID
LEFT JOIN ' . DB_PRE . 'ecp_wars_games ON gID = gameID
LEFT JOIN ' . DB_PRE . 'ecp_wars_opp ON oID = oppID
LEFT JOIN ' . DB_PRE . 'ecp_wars_matchtype ON mID = matchtypeID
LEFT JOIN ' . DB_PRE . 'ecp_comments ON (subID = warID AND bereich = "clanwars")
WHERE status = 1 AND ownplayers LIKE "%,' . $_SESSION['userID'] . ',%"
GROUP BY warID
ORDER BY datum DESC');
$clanwars = array();
while ($row = $db->fetch_assoc()) {
$row['datum'] = date('d.m.y', $row['datum']);
$row['countryname'] = $countries[$row['country']];
$clanwars[] = $row;
}
$tpl->assign('clanwars', $clanwars);
$tpl->assign('clanwar', count($clanwars));
ob_start();
$tpl->display(DESIGN . '/tpl/user/user_stats.html');
$content = ob_get_contents();
ob_end_clean();
main_content(STATS, $content, '', 1);
}
function make_cal_event($data, $datei)
{
$tpl = new smarty();
$tpl->assign('data', $data);
ob_start();
$tpl->display(DESIGN . '/tpl/calendar/calendar_' . $datei . '_mini.html');
$content = ob_get_contents();
ob_end_clean();
return $content;
}
function news_once($id)
{
global $db;
$anzahl = $db->result(DB_PRE . 'ecp_news', 'COUNT(newsID)', '(lang = "" OR lang LIKE ",%' . LANGUAGE . '%,") AND ' . DB_PRE . 'ecp_news.datum < ' . time() . ' AND (access = "" OR ' . $_SESSION['access_search'] . ') AND newsID = ' . $id);
if (!isset($_SESSION['news'][(int) $_GET['id']])) {
if ($db->query('UPDATE ' . DB_PRE . 'ecp_news SET hits = hits + 1 WHERE newsID = ' . (int) $_GET['id'])) {
$_SESSION['news'][(int) $_GET['id']] = true;
}
}
$sql = 'SELECT `newsID`, `' . DB_PRE . 'ecp_news`.`userID`, `topicID`, `' . DB_PRE . 'ecp_news`.`datum`, `headline`, `bodytext`, `extendtext`, `links`, `hits`,
`username`, `topicname`, `topicbild`, `beschreibung`
FROM ' . DB_PRE . 'ecp_news
LEFT JOIN ' . DB_PRE . 'ecp_user ON (' . DB_PRE . 'ecp_news.userID = ID)
LEFT JOIN ' . DB_PRE . 'ecp_topics ON (topicID = tID)
WHERE (lang = "" OR lang LIKE ",%' . LANGUAGE . '%,") AND ' . DB_PRE . 'ecp_news.datum < ' . time() . ' AND (access = "" OR ' . $_SESSION['access_search'] . ') AND newsID = ' . $id . ' GROUP BY newsID';
if ($anzahl) {
$db->query($sql);
while ($row = $db->fetch_assoc()) {
$tpl = new smarty();
$tpl->assign('comment', 1);
$row['bodytext'] = bb_code($row['bodytext']);
$row['extendtext'] = bb_code($row['extendtext']);
$row['datum'] = date(LONG_DATE, $row['datum']);
$row['links'] = news_links($row['links']);
foreach ($row as $key => $value) {
$tpl->assign($key, $value);
}
$tpl->assign('pic', file_exists('templates/' . DESIGN . '/images/topics/' . $row['topicbild']) ? 'templates/' . DESIGN . '/images/topics/' . $row['topicbild'] : 'images/topics/' . $row['topicbild']);
ob_start();
$tpl->display(DESIGN . '/tpl/news/news.html');
$content = ob_get_contents();
ob_end_clean();
main_content('<a href="?section=news&action=topic&id=' . $row['topicID'] . '">' . $row['topicname'] . '</a>: ' . $row['headline'], $content, '', 0);
}
} else {
table(INFO, NO_ENTRIES_ID);
}
}
function prepare_wsdl_data($savefile = false)
{
$smarty = new smarty();
$smarty->compile_dir = find_best_location_in_include_path("templates_c");
$smarty->assign('WS_SERVICE_NAMESPACE', SW_SOAP_NAMESPACE);
$smarty->assign('WS_SERVICE_CODE', SW_SOAP_SERVICECODE);
$smarty->assign('WS_SERVICE_NAME', SW_SOAP_SERVICENAME);
$smarty->assign('WS_SERVICE_URL', SW_SOAP_SERVICEURL);
$smarty->debugging = true;
$cols = array();
$cols[] = array("name" => "ReportName", "type" => "char", "length" => 0);
foreach ($this->query->columns as $col) {
$cols[] = array("name" => $col->query_name, "type" => $col->column_type, "length" => $col->column_length);
}
$smarty->assign("COLUMN_ITEMS", $cols);
$crits = array();
foreach ($this->query->lookup_queries as $lq) {
$crits[] = array("name" => $lq->query_name);
}
$smarty->assign("CRITERIA_ITEMS", $crits);
header('Content-Type: text/xml');
if ($savefile) {
$data = $smarty->fetch('wsdl.tpl', null, null, false);
$this->write_report_file($savefile, $data);
} else {
$smarty->display('wsdl.tpl');
}
}
