$user_password = helper::clearText($user_password);
$user_username = helper::escapeText($user_username);
$user_password = helper::escapeText($user_password);
if (helper::getAuthenticityToken() !== $token) {
$error = true;
$error_message = 'Error!';
}
if (!$error) {
$access_data = array();
$admin = new admin($dbo);
$access_data = $admin->signin($user_username, $user_password);
if ($access_data['error'] === false) {
$clientId = 0;
// Desktop version
admin::createAccessToken();
admin::setSession($access_data['accountId'], admin::getAccessToken());
header("Location: /admin/main.php");
} else {
$error = true;
$error_message = 'Incorrect login or password.';
}
}
}
helper::newAuthenticityToken();
$css_files = array("admin.css");
$page_title = APP_TITLE;
include_once $_SERVER['DOCUMENT_ROOT'] . "/common/header.inc.php";
?>
<body style="background-color: transparent; background-image: none">
} else {
?>
<div id="page_topbar">
<div class="topbar">
<div class="content">
<a href="/admin/main.php" class="logo"></a>
<div style="float: right">
<a href="/admin/main.php" class="topbar_item">General</a>
<a href="/admin/users.php" class="topbar_item">Users</a>
<a href="/admin/messages_stream.php" class="topbar_item">Messages Stream</a>
<a href="/admin/gifts.php" class="topbar_item">Gifts</a>
<a href="/admin/reports.php" class="topbar_item">Reports</a>
<a href="/admin/photo_reports.php" class="topbar_item">Photo Reports</a>
<a href="/admin/admob.php" class="topbar_item">AdMob</a>
<a href="/admin/gcm.php" class="topbar_item">GCM</a>
<a href="/admin/support.php" class="topbar_item">Support</a>
<a href="/admin/settings.php" class="topbar_item">Settings</a>
<a href="/admin/logout.php/?access_token=<?php
echo admin::getAccessToken();
?>
&continue=/" class="topbar_item">Logout</a>
</div>
</div>
</div>
</div>
<?php
}
<?php
/*!
* ifsoft.co.uk engine v1.0
*
* http://ifsoft.com.ua, http://ifsoft.co.uk
* qascript@ifsoft.co.uk
*
* Copyright 2012-2016 Demyanchuk Dmitry (https://vk.com/dmitry.demyanchuk)
*/
include_once $_SERVER['DOCUMENT_ROOT'] . "/core/init.inc.php";
if (!admin::isSession()) {
header("Location: /admin/login.php");
}
$stats = new stats($dbo);
$admin = new admin($dbo);
$msgId = 0;
$msgInfo = array();
if (isset($_GET['id'])) {
$msgId = isset($_GET['id']) ? $_GET['id'] : 0;
$accessToken = isset($_GET['access_token']) ? $_GET['access_token'] : 0;
$act = isset($_GET['act']) ? $_GET['act'] : '';
$msgId = helper::clearInt($msgId);
if ($accessToken === admin::getAccessToken() && !APP_DEMO) {
$messages = new messages($dbo);
$messages->remove($msgId);
}
}
function draw($msg, $helper = null)
{
$msg['message'] = helper::processMsgText($msg['message']);
$fromUserPhoto = "/img/profile_default_photo.png";
if (strlen($msg['fromUserPhotoUrl']) != 0) {
$fromUserPhoto = $msg['fromUserPhotoUrl'];
}
?>
<div class="post post_item" data-id="<?php
echo $msg['id'];
?>
">
<a class="profile_cont" href="/admin/profile.php/?id<?php
echo $msg['fromUserId'];
?>
">
<img src="<?php
echo $fromUserPhoto;
?>
">
</a>
<div class="post_content">
<div class="action_remove" onclick="Message.remove('<?php
echo $msg['id'];
?>
', '<?php
echo admin::getAccessToken();
?>
'); return false;"></div>
<div class="post_title">
<a href="/admin/profile.php/?id=<?php
echo $msg['fromUserId'];
?>
">
<span class="post_fullname"><?php
echo $msg['fromUserFullname'];
?>
</span>
<s>@</s><b class="post_username"><?php
echo $msg['fromUserUsername'];
?>
</b>
</a>
</div>
<div class="post_data">
<?php
echo $msg['message'];
?>
</div>
<?php
if (strlen($msg['imgUrl'])) {
?>
<div class="post_img">
<img src="<?php
echo $msg['imgUrl'];
?>
"/>
</div>
<?php
}
?>
<div class="post_footer">
<?php
$time = new language(NULL, "en");
?>
<a class="time" href="javascript:void(0);"><?php
echo $time->timeAgo($msg['createAt']);
?>
</a>
</div>
</div>
</div>
<?php
}
<?php
/*!
* ifsoft.co.uk engine v1.0
*
* http://ifsoft.com.ua, http://ifsoft.co.uk
* qascript@ifsoft.co.uk
*
* Copyright 2012-2016 Demyanchuk Dmitry (https://vk.com/dmitry.demyanchuk)
*/
include_once $_SERVER['DOCUMENT_ROOT'] . "/core/init.inc.php";
if (!admin::isSession()) {
header('Location: /');
}
if (isset($_GET['access_token'])) {
$accessToken = isset($_GET['access_token']) ? $_GET['access_token'] : '';
$continue = isset($_GET['continue']) ? $_GET['continue'] : '/';
if (admin::getAccessToken() === $accessToken) {
admin::unsetSession();
header('Location: ' . $continue);
exit;
}
}
header('Location: /');
function drawResultTable($result)
{
?>
<table class="admin_table">
<tr>
<th class="text-left">Id</th>
<th class="text-left"From account</th>
<th class="text-left">Email</th>
<th class="text-left">Subject</th>
<th class="text-left">Text</th>
<th class="text-left">Date</th>
<th>Action</th>
</tr>
<?php
foreach ($result['tickets'] as $key => $value) {
?>
<tr>
<td class="text-left"><?php
echo $value['id'];
?>
</td>
<td class="text-left"><?php
if ($value['accountId'] != 0) {
echo "<a href=\"/admin/profile.php/?id={$value['accountId']}\">Profile [Id = {$value['accountId']}]</a>";
} else {
echo "-";
}
?>
</td>
<td class="text-left"><?php
echo $value['email'];
?>
</a></td>
<td class="text-left" style="word-break: break-all;"><?php
echo $value['subject'];
?>
</td>
<td class="text-left" style="word-break: break-all;"><?php
echo $value['text'];
?>
</td>
<td class="text-left" style="white-space: nowrap;"><?php
echo date("Y-m-d H:i:s", $value['createAt']);
?>
</td>
<td><a href="/admin/support.php/?ticketId=<?php
echo $value['id'];
?>
&act=delete&access_token=<?php
echo admin::getAccessToken();
?>
">Delete</a></td>
</tr>
<?php
}
?>
</table>
<?php
}