/**
* Add Trade user
*
* @param integer $userID
* @param array $data
*/
public function addUser($userID, $data = array())
{
global $db;
$userIns = new BuckysUser();
if (!is_numeric($userID) || !$userIns->checkUserID($userID, false)) {
return;
}
if ($this->checkDuplication($userID)) {
return;
}
$data['userID'] = $userID;
$newID = $db->insertFromArray(TABLE_TRADE_USERS, $data);
return $newID;
}
/**
* Add Trade user
*
* @param integer $userID
* @param array $data
* @return int|null|string|void
*/
public function addUser($userID, $data = [])
{
global $db;
$userIns = new BuckysUser();
if (!is_numeric($userID) || !$userIns->checkUserID($userID, false)) {
return;
}
if ($this->checkDuplication($userID)) {
return;
}
$user_base_info = buckysuser::getUserBasicInfo($userID);
if (!$user_base_info) {
return;
}
$data['userID'] = $userID;
$data['shippingFullName'] = trim($user_base_info['firstName'] . ' ' . $user_base_info['lastName']);
//When adding address, put your full name to this record
$newID = $db->insertFromArray(TABLE_TRADE_USERS, $data);
return $newID;
}
$resultXML = ['status' => 'success', 'message' => MSG_FRIEND_REQUEST_REMOVED, 'html' => 'Send Friend Request', 'action' => 'delete-friend-request', 'link' => '/myfriends.php?action=request&friendID=' . $friendID . buckys_get_token_param()];
render_result_xml($resultXML);
} else {
buckys_redirect($return, MSG_FRIEND_REQUEST_REMOVED);
}
} else {
if ($isAjax) {
$resultXML = ['status' => 'error', 'message' => $db->getLastError()];
render_result_xml($resultXML);
} else {
buckys_redirect($return, $db->getLastError(), MSG_TYPE_ERROR);
}
}
} else {
if ($_REQUEST['action'] == 'request') {
if (!isset($friendID) || !BuckysUser::checkUserID($friendID)) {
if ($isAjax) {
$resultXML = ['status' => 'error', 'message' => MSG_INVALID_REQUEST];
render_result_xml($resultXML);
} else {
buckys_redirect($return, MSG_INVALID_REQUEST, MSG_TYPE_ERROR);
}
exit;
}
if (BuckysFriend::isFriend($userID, $friendID)) {
if ($isAjax) {
$resultXML = ['status' => 'error', 'message' => MSG_INVALID_REQUEST];
render_result_xml($resultXML);
} else {
buckys_redirect($return, MSG_INVALID_REQUEST, MSG_TYPE_ERROR);
}
<?php
require dirname(__FILE__) . '/includes/bootstrap.php';
//Getting Current User ID
$userID = buckys_is_logged_in();
//Getting User ID from Parameter
$profileID = get_secure_integer($_GET['user']);
$postID = buckys_escape_query_integer(isset($_GET['post']) ? $_GET['post'] : null);
//If the parameter is null, goto homepage
if (!$profileID) {
buckys_redirect('/index.php');
}
//Getting UserData from Id
$userData = BuckysUser::getUserData($profileID);
//Goto Homepage if the userID is not correct
if (!buckys_not_null($userData) || !BuckysUser::checkUserID($profileID, true)) {
buckys_redirect('/index.php');
}
$postType = isset($_GET['type']) ? $_GET['type'] : 'all';
if (!in_array($postType, ['all', 'user', 'friends'])) {
$postType = 'all';
}
//if logged user can see all resources of the current user
$canViewPrivate = $userID == $profileID || BuckysFriend::isFriend($userID, $profileID) || BuckysFriend::isSentFriendRequest($profileID, $userID);
$posts = BuckysPost::getPostsByUserID($profileID, $userID, BuckysPost::INDEPENDENT_POST_PAGE_ID, $canViewPrivate, $postID, null, $postType);
/*if( !buckys_not_null($posts) )
{
//Goto Index Page
buckys_redirect('/index.php', MSG_INVALID_REQUEST, MSG_TYPE_ERROR);
}*/
//Mark the notifications to read
} else {
buckys_redirect('/myfriends.php?type=requested', $db->getLastError(), MSG_TYPE_ERROR);
}
} else {
if ($_REQUEST['action'] == 'delete') {
if (BuckysFriend::delete($userID, $_REQUEST['friendID'])) {
buckys_redirect($return, MSG_FRIEND_REQUEST_REMOVED);
} else {
buckys_redirect($return, $db->getLastError(), MSG_TYPE_ERROR);
}
} else {
if ($_REQUEST['action'] == 'request') {
if (!isset($_REQUEST['friendID']) || !isset($_REQUEST['friendIDHash']) || !buckys_check_id_encrypted($_REQUEST['friendID'], $_REQUEST['friendIDHash'])) {
buckys_redirect($return, MSG_INVALID_REQUEST, MSG_TYPE_ERROR);
}
if (!BuckysUser::checkUserID($_REQUEST['friendID'])) {
buckys_redirect($return, MSG_INVALID_REQUEST, MSG_TYPE_ERROR);
}
if (BuckysFriend::isFriend($userID, $_REQUEST['friendID'])) {
buckys_redirect($return, MSG_INVALID_REQUEST, MSG_TYPE_ERROR);
}
if (BuckysFriend::isSentFriendRequest($userID, $_REQUEST['friendID'])) {
buckys_redirect($return, MSG_FRIEND_REQUEST_ALREADY_SENT, MSG_TYPE_ERROR);
}
if (BuckysFriend::isSentFriendRequest($_REQUEST['friendID'], $userID)) {
buckys_redirect($return, MSG_FRIEND_REQUEST_ALREADY_SENT, MSG_TYPE_ERROR);
}
if (BuckysFriend::sendFriendRequest($userID, $_REQUEST['friendID'])) {
buckys_redirect($return, MSG_FRIEND_REQUEST_SENT);
} else {
buckys_redirect($return, $db->getLastError(), MSG_TYPE_ERROR);
/**
* Remove the user from buddylist
*
* @param Int $userID = Blocker ID
* @param Int $blockedID
* @return String or Array
*/
public function removeUserFromBuddylist($userID, $buddyID)
{
global $db;
$query = $db->prepare("SELECT messengerBuddylistID FROM " . TABLE_MESSENGER_BUDDYLIST . " WHERE userID=%d AND buddyID=%d", $userID, $buddyID);
$mbID = $db->getVar($query);
if (!buckys_not_null($mbID)) {
return MSG_INVALID_REQUEST;
}
//Check buddyID
if (!BuckysUser::checkUserID($buddyID)) {
return MSG_INVALID_REQUEST;
}
//Remove User from the buddylist
if (!$db->query($db->prepare("DELETE FROM " . TABLE_MESSENGER_BUDDYLIST . " WHERE userID=%d AND buddyID=%d", $userID, $buddyID))) {
return $db->getLastError();
} else {
//Update Buddylist status
$db->query($db->prepare("UPDATE " . TABLE_MESSENGER_BUDDYLIST . " SET `status`=0 WHERE userID=%d AND buddyID=%d", $buddyID, $userID));
//Remove From the Conversation List
BuckysPrivateMessenger::closeConversationBox($buddyID);
return true;
}
}
public function declineFriendRequestAction()
{
global $db;
$data = $_POST;
$token = isset($data['TOKEN']) ? trim($data['TOKEN']) : null;
$friendID = isset($data['friendID']) ? $data['friendID'] : null;
if (!$token) {
return ['STATUS_CODE' => STATUS_CODE_BAD_REQUEST, 'DATA' => buckys_api_get_error_result('Api token should not be blank')];
}
if (!($userID = BuckysUsersToken::checkTokenValidity($token, "api"))) {
return ['STATUS_CODE' => STATUS_CODE_UNAUTHORIZED, 'DATA' => buckys_api_get_error_result('Api token is not valid.')];
}
if (!isset($friendID) || !BuckysUser::checkUserID($friendID)) {
return ['STATUS_CODE' => STATUS_CODE_OK, 'DATA' => buckys_api_get_error_result(MSG_INVALID_REQUEST)];
}
if (BuckysFriend::decline($userID, $friendID)) {
return ['STATUS_CODE' => STATUS_CODE_OK, 'DATA' => ['STATUS' => "SUCCESS", "MESSAGE" => MSG_FRIEND_REQUEST_DECLINED]];
} else {
return ['STATUS_CODE' => STATUS_CODE_UNAUTHORIZED, 'DATA' => buckys_api_get_error_result($db->getLastError())];
}
}
require dirname(__FILE__) . '/includes/bootstrap.php';
//Getting Current User ID
if (!buckys_check_user_acl(USER_ACL_ADMINISTRATOR)) {
buckys_redirect('/index.php', MSG_PERMISSION_DENIED, MSG_TYPE_ERROR);
}
if (isset($_REQUEST['action'])) {
if ($_REQUEST['action'] == 'unban') {
BuckysBanUser::unbanUsers($_REQUEST['bannedID']);
buckys_redirect('/banned_users.php', MSG_UNBAN_USERS);
} else {
if ($_REQUEST['action'] == 'delete') {
BuckysBanUser::deleteUsers($_REQUEST['bannedID']);
buckys_redirect('/banned_users.php', MSG_DELETE_USERS);
} else {
if ($_REQUEST['action'] == 'deletebyid') {
if (!isset($_REQUEST['userID']) || !BuckysUser::checkUserID($_REQUEST['userID'], false)) {
buckys_redirect('/index.php', MSG_INVALID_REQUEST, MSG_TYPE_ERROR);
}
BuckysUser::deleteUserAccount($_REQUEST['userID']);
buckys_redirect('/index.php', MSG_DELETE_USERS);
}
}
}
exit;
}
$page = isset($_GET['page']) ? $_GET['page'] : 1;
$totalCount = BuckysBanUser::getBannedUsersCount();
//Init Pagination Class
$pagination = new Pagination($totalCount, BuckysBanUser::$COUNT_PER_PAGE, $page);
$page = $pagination->getCurrentPage();
$users = BuckysBanUser::getBannedUsers($page, BuckysBanUser::$COUNT_PER_PAGE);
}
//Ban User
BuckysBanUser::banUser($_GET['userID']);
buckys_redirect('/index.php', MSG_BAN_USER);
exit;
}
//Getting User ID from Parameter
$profileID = buckys_escape_query_integer(isset($_GET['user']) ? $_GET['user'] : null);
//If the parameter is null, goto homepage
if (!$profileID) {
buckys_redirect('/index.php');
}
//Getting UserData from Id
$userData = BuckysUser::getUserData($profileID);
//Goto Homepage if the userID is not correct
if (!buckys_not_null($userData) || !BuckysUser::checkUserID($profileID, true) && !buckys_check_user_acl(USER_ACL_ADMINISTRATOR)) {
buckys_redirect('/index.php');
}
$postType = isset($_GET['type']) ? $_GET['type'] : 'all';
if (!in_array($postType, ['all', 'user', 'friends'])) {
$postType = 'all';
}
//if logged user can see all resources of the current user
$canViewPrivate = $userID == $profileID || BuckysFriend::isFriend($userID, $profileID) || BuckysFriend::isSentFriendRequest($profileID, $userID);
$friends = BuckysFriend::getAllFriends($profileID, 1, 18, true);
$totalFriendsCount = BuckysFriend::getNumberOfFriends($profileID);
$posts = BuckysPost::getPostsByUserID($profileID, $userID, BuckysPost::INDEPENDENT_POST_PAGE_ID, $canViewPrivate, isset($_GET['post']) ? $_GET['post'] : null, null, $postType);
buckys_enqueue_stylesheet('account.css');
buckys_enqueue_stylesheet('profile.css');
buckys_enqueue_stylesheet('posting.css');
buckys_enqueue_stylesheet('publisher.css');
