#============ Parameters ============ # (none) #============ Permissions ============ auth_ensure_user_authenticated(); current_user_ensure_unprotected(); # extracts the user information for the currently logged in user # and prefixes it with u_ $row = user_get_row(auth_get_current_user_id()); extract($row, EXTR_PREFIX_ALL, 'u'); $t_ldap = LDAP == config_get('login_method'); # In case we're using LDAP to get the email address... this will pull out # that version instead of the one in the DB $u_email = user_get_email($u_id, $u_username); # note if we are being included by a script of a different name, if so, # this is a mandatory password change request $t_force_pw_reset = is_page_name('verify.php'); # Only show the update button if there is something to update. $t_show_update_button = false; html_page_top(lang_get('account_link')); ?> <!-- # Edit Account Form BEGIN --> <br /> <?php if ($t_force_pw_reset) { ?> <center><div style="color:red; width:75%"> <?php echo lang_get('verify_warning'); if (helper_call_custom_function('auth_can_change_password', array())) { echo '<br />' . lang_get('verify_change_password');
function html_footer($p_file) { global $g_timer, $g_queries_array, $g_request_time; # If a user is logged in, update their last visit time. # We do this at the end of the page so that: # 1) we can display the user's last visit time on a page before updating it # 2) we don't invalidate the user cache immediately after fetching it # 3) don't do this on the password verification or update page, as it causes the # verification comparison to fail if (auth_is_user_authenticated() && !(is_page_name('verify.php') || is_page_name('account_update.php'))) { $t_user_id = auth_get_current_user_id(); user_update_last_visit($t_user_id); } echo "\t", '<br />', "\n"; echo "\t", '<hr size="1" />', "\n"; echo '<table border="0" width="100%" cellspacing="0" cellpadding="0"><tr valign="top"><td>'; if (ON == config_get('show_version')) { echo "\t", '<span class="timer"><a href="http://www.mantisbt.org/" title="Free Web Based Bug Tracker">Mantis ', MANTIS_VERSION, '</a>', '[<a href="http://www.mantisbt.org/" title="Free Web Based Bug Tracker" target="_blank">^</a>]</span>', "\n"; } echo "\t", '<address>Copyright © 2000 - 2008 Mantis Group</address>', "\n"; # only display webmaster email is current user is not the anonymous user if (!is_page_name('login_page.php') && !current_user_is_anonymous()) { echo "\t", '<address><a href="mailto:', config_get('webmaster_email'), '">', config_get('webmaster_email'), '</a></address>', "\n"; } # print timings if (ON == config_get('show_timer')) { $g_timer->print_times(); } # print db queries that were run if (helper_show_queries()) { $t_count = count($g_queries_array); echo "\t", $t_count, ' total queries executed.<br />', "\n"; $t_unique_queries = 0; $t_shown_queries = array(); for ($i = 0; $i < $t_count; $i++) { if (!in_array($g_queries_array[$i][0], $t_shown_queries)) { $t_unique_queries++; $g_queries_array[$i][3] = false; array_push($t_shown_queries, $g_queries_array[$i][0]); } else { $g_queries_array[$i][3] = true; } } echo "\t", $t_unique_queries . ' unique queries executed.<br />', "\n"; if (ON == config_get('show_queries_list')) { echo "\t", '<table>', "\n"; $t_total = 0; for ($i = 0; $i < $t_count; $i++) { $t_time = $g_queries_array[$i][1]; $t_caller = $g_queries_array[$i][2]; $t_total += $t_time; $t_style_tag = ''; if (true == $g_queries_array[$i][3]) { $t_style_tag = ' style="color: red;"'; } echo "\t", '<tr valign="top"><td', $t_style_tag, '>', $i + 1, '</td>'; echo '<td', $t_style_tag, '>', $t_time, '</td>'; echo '<td', $t_style_tag, '><span style="color: gray;">', $t_caller, '</span><br />', string_html_specialchars($g_queries_array[$i][0]), '</td></tr>', "\n"; } # @@@ Note sure if we should localize them given that they are debug info. Will add if requested by users. echo "\t", '<tr><td></td><td>', $t_total, '</td><td>SQL Queries Total Time</td></tr>', "\n"; echo "\t", '<tr><td></td><td>', round(microtime_float() - $g_request_time, 4), '</td><td>Page Request Total Time</td></tr>', "\n"; echo "\t", '</table>', "\n"; } } echo '</td><td><div align="right">'; echo '<a href="http://www.mantisbt.org" title="Free Web Based Bug Tracker"><img src="images/mantis_logo_button.gif" width="88" height="35" alt="Powered by Mantis Bugtracker" border="0" /></a>'; echo '</div></td></tr></table>'; }
/** * (13) Print the page footer information * @param string $p_file * @return null */ function html_footer($p_file = null) { global $g_queries_array, $g_request_time; # If a user is logged in, update their last visit time. # We do this at the end of the page so that: # 1) we can display the user's last visit time on a page before updating it # 2) we don't invalidate the user cache immediately after fetching it # 3) don't do this on the password verification or update page, as it causes the # verification comparison to fail if (auth_is_user_authenticated() && !current_user_is_anonymous() && !(is_page_name('verify.php') || is_page_name('account_update.php'))) { $t_user_id = auth_get_current_user_id(); user_update_last_visit($t_user_id); } echo "<div id=\"footer\">\n"; echo "\t<hr />\n"; # We don't have a button anymore, so for now we will only show the resized # version of the logo when not on login page. if (!is_page_name('login_page')) { echo "\t<div id=\"powered-by-mantisbt-logo\">\n"; $t_mantisbt_logo_url = helper_mantis_url('images/mantis_logo.png'); echo "\t\t<a href=\"http://www.mantisbt.org\" " . "title=\"Mantis Bug Tracker: a free and open source web based bug tracking system.\">" . "<img src=\"{$t_mantisbt_logo_url}\" width=\"102\" height=\"35\" " . "alt=\"Powered by Mantis Bug Tracker: a free and open source web based bug tracking system.\" />" . "</a>\n"; echo "\t</div>\n"; } # Show optional user-specificed custom copyright statement $t_copyright_statement = config_get('copyright_statement'); if ($t_copyright_statement) { echo "\t<address id=\"user-copyright\">{$t_copyright_statement}</address>\n"; } # Show MantisBT version and copyright statement $t_version_suffix = ''; $t_copyright_years = ''; if (config_get('show_version')) { $t_version_suffix = htmlentities(' ' . MANTIS_VERSION . config_get_global('version_suffix')); $t_copyright_years = ' 2000 - 2012'; } echo "\t<address id=\"mantisbt-copyright\">Powered by <a href=\"http://www.mantisbt.org\" title=\"Mantis Bug Tracker: a free and open source web based bug tracking system.\">Mantis Bug Tracker</a> (MantisBT){$t_version_suffix}. Copyright ©{$t_copyright_years} MantisBT contributors. Licensed under the terms of the <a href=\"http://www.gnu.org/licenses/old-licenses/gpl-2.0.html\" title=\"GNU General Public License (GPL) version 2\">GNU General Public License (GPL) version 2</a> or a later version.</address>\n"; # Show contact information $t_webmaster_contact_information = sprintf(lang_get('webmaster_contact_information'), string_html_specialchars(config_get('webmaster_email'))); echo "\t<address id=\"webmaster-contact-information\">{$t_webmaster_contact_information}</address>\n"; event_signal('EVENT_LAYOUT_PAGE_FOOTER'); # Print horizontal rule if any debugging stats follow if (config_get('show_timer') || config_get('show_memory_usage') || config_get('show_queries_count')) { echo "\t<hr />\n"; } # Print the page execution time if (config_get('show_timer')) { $t_page_execution_time = sprintf(lang_get('page_execution_time'), number_format(microtime(true) - $g_request_time, 4)); echo "\t<p id=\"page-execution-time\">{$t_page_execution_time}</p>\n"; } # Print the page memory usage if (config_get('show_memory_usage')) { $t_page_memory_usage = sprintf(lang_get('memory_usage_in_kb'), number_format(memory_get_peak_usage() / 1024)); echo "\t<p id=\"page-memory-usage\">{$t_page_memory_usage}</p>\n"; } # Determine number of unique queries executed if (config_get('show_queries_count')) { $t_total_queries_count = count($g_queries_array); $t_unique_queries_count = 0; $t_total_query_execution_time = 0; $t_unique_queries = array(); for ($i = 0; $i < $t_total_queries_count; $i++) { if (!in_array($g_queries_array[$i][0], $t_unique_queries)) { $t_unique_queries_count++; $g_queries_array[$i][3] = false; array_push($t_unique_queries, $g_queries_array[$i][0]); } else { $g_queries_array[$i][3] = true; } $t_total_query_execution_time += $g_queries_array[$i][1]; } $t_total_queries_executed = sprintf(lang_get('total_queries_executed'), $t_total_queries_count); echo "\t<p id=\"total-queries-count\">{$t_total_queries_executed}</p>\n"; if (config_get_global('db_log_queries')) { $t_unique_queries_executed = sprintf(lang_get('unique_queries_executed'), $t_unique_queries_count); echo "\t<p id=\"unique-queries-count\">{$t_unique_queries_executed}</p>\n"; } $t_total_query_time = sprintf(lang_get('total_query_execution_time'), $t_total_query_execution_time); echo "\t<p id=\"total-query-execution-time\">{$t_total_query_time}</p>\n"; } # Print table of log events log_print_to_page(); echo "</div>\n"; }
/** * A function that determines whether the logo should be centered or left aligned based on the page. * @return bool true: centered, false: otherwise. * @access public */ function should_center_logo() { return is_page_name('login_page') || is_page_name('signup_page') || is_page_name('signup') || is_page_name('lost_pwd_page'); }
} current_user_ensure_unprotected(); html_page_top(lang_get('account_link')); # extracts the user information for the currently logged in user # and prefixes it with u_ $t_row = user_get_row(auth_get_current_user_id()); extract($t_row, EXTR_PREFIX_ALL, 'u'); $t_ldap = LDAP == config_get('login_method'); # In case we're using LDAP to get the email address... this will pull out # that version instead of the one in the DB $u_email = user_get_email($u_id); # If the password is the default password, then prompt user to change it. $t_reset_password = $u_username == 'administrator' && auth_does_password_match($u_id, 'root'); # note if we are being included by a script of a different name, if so, # this is a mandatory password change request $t_verify = is_page_name('verify.php'); $t_force_pw_reset = false; if ($t_verify || $t_reset_password) { $t_can_change_password = helper_call_custom_function('auth_can_change_password', array()); echo '<div id="reset-passwd-msg" class="important-msg">'; echo '<ul>'; if ($t_verify) { echo '<li>' . lang_get('verify_warning') . '</li>'; if ($t_can_change_password) { echo '<li>' . lang_get('verify_change_password') . '</li>'; $t_force_pw_reset = true; } } else { if ($t_reset_password && $t_can_change_password) { echo '<li>' . lang_get('warning_default_administrator_account_present') . '</li>'; $t_force_pw_reset = true;
/** * (13) Print the page footer information * @param string $p_file * @return null */ function html_footer($p_file = null) { global $g_queries_array, $g_request_time; # If a user is logged in, update their last visit time. # We do this at the end of the page so that: # 1) we can display the user's last visit time on a page before updating it # 2) we don't invalidate the user cache immediately after fetching it # 3) don't do this on the password verification or update page, as it causes the # verification comparison to fail if (auth_is_user_authenticated() && !current_user_is_anonymous() && !(is_page_name('verify.php') || is_page_name('account_update.php'))) { $t_user_id = auth_get_current_user_id(); user_update_last_visit($t_user_id); } echo "\t", '<br />', "\n"; echo "\t", '<hr size="1" />', "\n"; echo '<table border="0" width="100%" cellspacing="0" cellpadding="0"><tr valign="top"><td>'; if (ON == config_get('show_version')) { $t_version_suffix = config_get_global('version_suffix'); $t_mantis_version = MANTIS_VERSION . ($t_version_suffix ? " {$t_version_suffix}" : ''); $t_mantis_href = '<a href="http://www.mantisbt.org/" title="Free Web-Based Bug Tracker"'; echo "\t", '<span class="timer">', "{$t_mantis_href}>MantisBT {$t_mantis_version}</a> ", "[{$t_mantis_href} ", 'target="_blank">^</a>]', "</span>\n"; } echo "\t<address>Copyright © 2000 - ", date('Y'), " MantisBT Team</address>\n"; # only display webmaster email is current user is not the anonymous user if (!is_page_name('login_page.php') && auth_is_user_authenticated() && !current_user_is_anonymous()) { echo "\t", '<address><a href="mailto:', config_get('webmaster_email'), '">', config_get('webmaster_email'), '</a></address>', "\n"; } event_signal('EVENT_LAYOUT_PAGE_FOOTER'); # print timings if (ON == config_get('show_timer')) { echo '<span class="italic">Time: ' . number_format(microtime(true) - $g_request_time, 4) . ' seconds.</span><br />'; echo sprintf(lang_get('memory_usage_in_kb'), number_format(memory_get_peak_usage() / 1024)), '<br />'; } # print db queries that were run if (helper_show_queries()) { $t_count = count($g_queries_array); echo "\t"; echo sprintf(lang_get('total_queries_executed'), $t_count); echo "<br />\n"; if (ON == config_get('show_queries_list')) { $t_unique_queries = 0; $t_shown_queries = array(); for ($i = 0; $i < $t_count; $i++) { if (!in_array($g_queries_array[$i][0], $t_shown_queries)) { $t_unique_queries++; $g_queries_array[$i][3] = false; array_push($t_shown_queries, $g_queries_array[$i][0]); } else { $g_queries_array[$i][3] = true; } } echo "\t"; echo sprintf(lang_get('unique_queries_executed'), $t_unique_queries); echo "\t", '<table>', "\n"; $t_total = 0; for ($i = 0; $i < $t_count; $i++) { $t_time = $g_queries_array[$i][1]; $t_caller = $g_queries_array[$i][2]; $t_total += $t_time; $t_style_tag = ''; if (true == $g_queries_array[$i][3]) { $t_style_tag = ' style="color: red;"'; } echo "\t", '<tr valign="top"><td', $t_style_tag, '>', $i + 1, '</td>'; echo '<td', $t_style_tag, '>', $t_time, '</td>'; echo '<td', $t_style_tag, '><span style="color: gray;">', $t_caller, '</span><br />', string_html_specialchars($g_queries_array[$i][0]), '</td></tr>', "\n"; } # @@@ Note sure if we should localize them given that they are debug info. Will add if requested by users. echo "\t", '<tr><td></td><td>', $t_total, '</td><td>SQL Queries Total Time</td></tr>', "\n"; echo "\t", '<tr><td></td><td>', round(microtime(true) - $g_request_time, 4), '</td><td>Page Request Total Time</td></tr>', "\n"; echo "\t", '</table>', "\n"; } } echo '</td><td>', "\n\t"; # We don't have a button anymore, so for now we will only show the resized version of the logo when not on login page. if (!is_page_name('login_page')) { echo '<div align="right">'; echo '<a href="http://www.mantisbt.org" title="Free Web Based Bug Tracker"><img src="' . helper_mantis_url('images/mantis_logo.png') . '" width="145" height="50" alt="Powered by Mantis Bugtracker" border="0" /></a>'; echo '</div>', "\n"; } echo '</td></tr></table>', "\n"; }
/** * (13) Print the page footer information * @return void */ function html_footer() { global $g_queries_array, $g_request_time; # If a user is logged in, update their last visit time. # We do this at the end of the page so that: # 1) we can display the user's last visit time on a page before updating it # 2) we don't invalidate the user cache immediately after fetching it # 3) don't do this on the password verification or update page, as it causes the # verification comparison to fail if (auth_is_user_authenticated() && !current_user_is_anonymous() && !(is_page_name('verify.php') || is_page_name('account_update.php'))) { $t_user_id = auth_get_current_user_id(); user_update_last_visit($t_user_id); } echo '<div id="footer">' . "\n"; echo '<hr />' . "\n"; # We don't have a button anymore, so for now we will only show the resized # version of the logo when not on login page. if (!is_page_name('login_page')) { echo "\t" . '<div id="powered-by-mantisbt-logo">' . "\n"; $t_mantisbt_logo_url = helper_mantis_url('images/mantis_logo.png'); echo "\t\t" . '<a href="http://www.mantisbt.org" title="Mantis Bug Tracker: a free and open source web based bug tracking system."> <img src="' . $t_mantisbt_logo_url . '" width="102" height="35" alt="Powered by Mantis Bug Tracker: a free and open source web based bug tracking system." /> </a>' . "\n"; echo "\t" . '</div>' . "\n"; } # Show MantisBT version and copyright statement $t_version_suffix = ''; $t_copyright_years = ' 2000 - ' . date('Y'); if (config_get('show_version') == ON) { $t_version_suffix = ' ' . htmlentities(MANTIS_VERSION . config_get_global('version_suffix')); } echo '<address id="mantisbt-copyright">' . "\n"; echo '<address id="version">Powered by <a href="http://www.mantisbt.org" title="bug tracking software">MantisBT ' . $t_version_suffix . "</a></address>\n"; echo 'Copyright ©' . $t_copyright_years . ' MantisBT Team'; # Show optional user-specified custom copyright statement $t_copyright_statement = config_get('copyright_statement'); if ($t_copyright_statement) { echo "\t" . '<address id="user-copyright">' . $t_copyright_statement . '</address>' . "\n"; } echo '</address>' . "\n"; # Show contact information if (!is_page_name('login_page')) { $t_webmaster_email = config_get('webmaster_email'); if (!is_blank($t_webmaster_email)) { $t_webmaster_contact_information = sprintf(lang_get('webmaster_contact_information'), string_html_specialchars($t_webmaster_email)); echo "\t" . '<address id="webmaster-contact-information">' . $t_webmaster_contact_information . '</address>' . "\n"; } } event_signal('EVENT_LAYOUT_PAGE_FOOTER'); # Print horizontal rule if any debugging statistics follow if (config_get('show_timer') || config_get('show_memory_usage') || config_get('show_queries_count')) { echo "\t" . '<hr />' . "\n"; } # Print the page execution time if (config_get('show_timer')) { $t_page_execution_time = sprintf(lang_get('page_execution_time'), number_format(microtime(true) - $g_request_time, 4)); echo "\t" . '<p id="page-execution-time">' . $t_page_execution_time . '</p>' . "\n"; } # Print the page memory usage if (config_get('show_memory_usage')) { $t_page_memory_usage = sprintf(lang_get('memory_usage_in_kb'), number_format(memory_get_peak_usage() / 1024)); echo "\t" . '<p id="page-memory-usage">' . $t_page_memory_usage . '</p>' . "\n"; } # Determine number of unique queries executed if (config_get('show_queries_count')) { $t_total_queries_count = count($g_queries_array); $t_unique_queries_count = 0; $t_total_query_execution_time = 0; $t_unique_queries = array(); for ($i = 0; $i < $t_total_queries_count; $i++) { if (!in_array($g_queries_array[$i][0], $t_unique_queries)) { $t_unique_queries_count++; $g_queries_array[$i][3] = false; array_push($t_unique_queries, $g_queries_array[$i][0]); } else { $g_queries_array[$i][3] = true; } $t_total_query_execution_time += $g_queries_array[$i][1]; } $t_total_queries_executed = sprintf(lang_get('total_queries_executed'), $t_total_queries_count); echo "\t" . '<p id="total-queries-count">' . $t_total_queries_executed . '</p>' . "\n"; if (config_get_global('db_log_queries')) { $t_unique_queries_executed = sprintf(lang_get('unique_queries_executed'), $t_unique_queries_count); echo "\t" . '<p id="unique-queries-count">' . $t_unique_queries_executed . '</p>' . "\n"; } $t_total_query_time = sprintf(lang_get('total_query_execution_time'), $t_total_query_execution_time); echo "\t" . '<p id="total-query-execution-time">' . $t_total_query_time . '</p>' . "\n"; } # Print table of log events log_print_to_page(); echo '</div>' . "\n"; }
<?php if (is_page_name('login_page')) { $t_align = 'center'; } else { $t_align = 'right'; /*BFE_DK_von left auf right geändert*/ } echo '<div align="', $t_align, '">'; if (is_page_name('login_page')) { echo '<a href="http://www.bfe.tv" title="BFE Homepage"><img border="0" alt="BFE Homepage" src="images/bfe_logo.jpg" /></a>'; } else { echo '<a href="/" title="BFE ITS Homepage"><img border="0" alt="BFE ITS Homepage" src="images/bfe_logo.jpg" /></a>'; } /* if ( is_page_name( 'login_page' ) ) { echo '<br />'; echo '<div class="menu" style="background-color:red;"><p><b>Achtung, dieses System ist nicht im produktiven Einsatz!</b></p>'; echo '<p><b>Wenn Sie durch "raten" hier gelandet sind, sind Sie hier falsch!</b></p>'; echo '<p><b>Sie möchten wahrscheinlich nach: </b><a href="https://issuetracking.bfe.tv">https://issuetracking.bfe.tv</a></p></div>'; }*/ echo '</div>';
/** * Change xmpp login. */ function change_xmpp_login($p_event) { $xmpp_login_table = plugin_table('xmpp_login', 'JabberNotifierSystem'); $logon_user_id = auth_get_current_user_id(); $query_can_change = "SELECT chng_login FROM {$xmpp_login_table} WHERE user_id = {$logon_user_id};"; $res_can_change = db_query($query_can_change); while ($row = db_fetch_array($res_can_change)) { $change = $row['chng_login']; } if (ON == plugin_config_get('change_xmpp_login') && $change == 0) { if (is_page_name('account_page.php')) { print_change_xmpp_login(); } } }