Ejemplo n.º 1
0
function search_finduser()
{
    $design = new design('Finduser', '', 0);
    $design->header();
    $tpl = new tpl('search_finduser');
    $tpl->out(0);
    if (isset($_POST['sub']) and !empty($_POST['name'])) {
        $name = str_replace('*', "%", $_POST['name']);
        $name = escape($name, 'string');
        $q = "SELECT `name`,`name` FROM `prefix_user` WHERE `name` LIKE '" . $name . "'";
        $tpl->set('username', dbliste('', $tpl, 'username', $q));
        $tpl->out(1);
    }
    $tpl->out(2);
    $design->footer();
}
Ejemplo n.º 2
0
function check_forum_failure($ar)
{
    if (array_key_exists(0, $ar)) {
        $hmenu = '<a class="smalfont" href="?forum">Forum</a><b> &raquo; </b> Fehler aufgetreten';
        $title = 'Forum : Fehler aufgetreten';
        $design = new design($title, $hmenu);
        $design->header();
        echo '<b>Es ist/sind folgende(r) Fehler aufgetreten</b><br />';
        foreach ($ar as $v) {
            echo $v . '<br />';
        }
        echo '<br /><a href="javascript:history.back(-1)">zur&uuml;ck</a>';
        $design->footer();
        exit;
    }
    return true;
}
Ejemplo n.º 3
0
<?php

#   Copyright by: Manuel
#   Support: www.ilch.de
defined('main') or die('no direct access');
$title = $allgAr['title'] . ' :: Logout';
$hmenu = $extented_forum_menu . 'Logout' . $extented_forum_menu_sufix;
$design = new design($title, $hmenu, 0);
# ausloggen
user_logout();
$design->header();
wd('?' . $allgAr['smodul'], $lang['logoutsuccessful']);
$design->footer();
Ejemplo n.º 4
0
// Text fuer den User wenn der Stutus geandert wurde
$message3 = $lang['awaycalstatuschanged'];
// function
function away_sendpmtoleaders($m, $uid, $a)
{
    $q = "SELECT\r\n    DISTINCT `prefix_user`.`id` as `uid`\r\n  FROM `prefix_user`\r\n    LEFT JOIN `prefix_groupusers` ON `prefix_groupusers`.`uid` = " . $uid . "\r\n    LEFT JOIN `prefix_groups` ON `prefix_groups`.`id` = `prefix_groupusers`.`gid`\r\n  WHERE `recht` <= -7\r\n     OR (`mod1` = `prefix_user`.`id` AND `uid` = " . $uid . ")\r\n     OR (`mod2` = `prefix_user`.`id` AND `uid` = " . $uid . ")\r\n     OR (`mod3` = `prefix_user`.`id` AND `uid` = " . $uid . ")\r\n     OR (`mod4` = `prefix_user`.`id` AND `uid` = " . $uid . ")";
    $erg = db_query($q);
    while ($r = db_fetch_assoc($erg)) {
        sendpm($_SESSION['authid'], $r['uid'], 'Away-Anfrage', $m, -1);
    }
}
$title = $allgAr['title'] . ' :: Awaycalender';
$hmenu = 'Awaycalender';
$design = new design($title, $hmenu);
$header = array('jquery/jquery.validate.js', 'forms/awaycal.js');
$design->header($header);
$tpl = new tpl('awaycal.htm');
if ($_SESSION['authright'] > -3) {
    // Pruefen ob der User ein TrialMember oder mehr ist
    echo $lang['nopermission'];
    $design->footer(1);
}
// status aendern
if ($menu->getA(1) == 'c' and is_numeric($menu->getE(1)) and is_numeric($menu->get(2)) and is_siteadmin('awaycal')) {
    $uid = db_result(db_query("SELECT `uid` FROM `prefix_awaycal` WHERE `id` = " . $menu->getE(1)), 0);
    db_query("UPDATE `prefix_awaycal` SET `pruef` = " . $menu->get(2) . " WHERE `id` = " . $menu->getE(1));
    sendpm($_SESSION['authid'], $uid, 'Away-Anfrage', $message3);
}
if ($menu->getA(1) == 'd' and is_numeric($menu->getE(1)) and is_siteadmin('awaycal')) {
    db_query("DELETE FROM `prefix_awaycal` WHERE `id` = " . $menu->getE(1));
}
Ejemplo n.º 5
0
function user_has_admin_right(&$menu, $sl = true)
{
    if ($_SESSION['authright'] <= -8) {
        // co leader...
        return true;
    } else {
        $uri_to_check1 = $menu->get(0);
        $uri_to_check2 = $menu->get(1);
        if (count($_SESSION['authmod']) < 1 or !loggedin()) {
            if ($sl === true) {
                if (!loggedin()) {
                    $design = new design('', '', 0);
                    $menu->set_url(0, 'user');
                    load_modul_lang();
                    $tpl = new tpl('user/login.htm');
                    $design->addheader($tpl->get(0));
                    $design->header();
                    $tpl->set_out('WDLINK', 'admin.php', 1);
                    $design->footer();
                } else {
                    echo '<strong>Keine Berechtigung!</strong> <a href="index.php">Startseite</a>';
                }
            }
            return false;
        } elseif (isset($_SESSION['authmod'][$uri_to_check1]) and $_SESSION['authmod'][$uri_to_check1] == true or isset($_SESSION['authmod'][$uri_to_check1 . '-' . $uri_to_check2]) and $_SESSION['authmod'][$uri_to_check1 . '-' . $uri_to_check2] == true) {
            return true;
        } elseif (count($_SESSION['authmod']) > 0 and loggedin()) {
            if ($sl === true) {
                foreach ($_SESSION['authmod'] as $k => $v) {
                    $x = $k;
                    break;
                }
                $x = explode('-', $x);
                $menu->set_url(0, $x[0]);
                if (isset($x[1])) {
                    $menu->set_url(1, $x[1]);
                }
            }
            return true;
        }
    }
    return false;
}
Ejemplo n.º 6
0
    $tpl = new tpl('forum/newtopic');
    $name = '';
    if (!loggedin()) {
        $name = '<tr><td class="Cmite"0><b>' . $lang['name'] . '</b></td>';
        $name .= '<td class="Cnorm"><input type="text" value="' . unescape($xnn) . '" maxlength="15" name="Gname"></td></tr>';
    }
    if (isset($_POST['priview'])) {
        $tpl->set_out('txt', bbcode(unescape($txt)), 0);
    }
    $ar = array('name' => $name, 'txt' => escape_for_fields(unescape($txt)), 'topic' => escape_for_fields(unescape($topic)), 'fid' => $fid, 'SMILIES' => getsmilies(), 'antispam' => get_antispam('newtopic', 1));
    $tpl->set_ar_out($ar, 1);
} else {
    // save toipc
    $_SESSION['klicktime'] = $dppk_time;
    $design = new design($title, $hmenu, 0);
    $design->header($load);
    if (loggedin()) {
        $uid = $_SESSION['authid'];
        $erst = escape($_SESSION['authname'], 'string');
        db_query("UPDATE `prefix_user` SET `posts` = `posts`+1 WHERE `id` = " . $uid);
    } else {
        $erst = $xnn;
        $uid = 0;
    }
    db_query("INSERT INTO `prefix_topics` (`fid`, `name`, `erst`, `stat`) VALUES ( " . $fid . ", '" . $topic . "', '" . $erst . "', 1 )");
    $tid = db_last_id();
    // topic alert
    if (!empty($_POST['topic_alert']) and $_POST['topic_alert'] == 'yes' and loggedin()) {
        if (0 == db_result(db_query("SELECT COUNT(*) FROM `prefix_topic_alerts` WHERE `uid` = " . $_SESSION['authid'] . " AND `tid` = " . $tid), 0)) {
            db_query("INSERT INTO `prefix_topic_alerts` (`tid`,`uid`) VALUES (" . $tid . ", " . $_SESSION['authid'] . ")");
        }
Ejemplo n.º 7
0
    public function get_url($w = '')
    {
        global $allgAr;
        if ($w != '') {
            $this->type = $w;
        }
        // startwert und pfad zum pruefen raustuefteln.
        if ($this->type == 'contents') {
            $pfad = 'include/contents';
            $smod = $allgAr['smodul'];
        } elseif ($this->type == 'box') {
            $file = 'include/boxes/' . $this->get(0) . '.php';
            return (file_exists($file) and $this->check_rights()) ? $file : false;
        } else {
            $pfad = 'include/admin';
            $smod = 'admin';
        }
        // wennes also leer is wird das startmodul genommen
        if (empty($this->menu_ar[0])) {
            $this->set_url(0, $smod);
        }
        // diverse sachen geprueft zum zurueck geben,
        // is halt so dings wegen selfpages usw...
        if (!file_exists($pfad . '/' . $this->get(0) . '.php') and file_exists($pfad . '/selfbp/selfp/' . $this->get(0) . '.php')) {
            $this->set_url(1, $this->get(0));
            $this->set_url(0, 'self');
        } elseif (!file_exists($pfad . '/' . $this->get(0) . '.php')) {
            if (substr($smod, 0, 5) == 'self-') {
                $this->set_url(1, substr($smod, 5));
                $this->set_url(0, 'self');
            } elseif (file_exists($pfad . '/selfbp/selfp/' . $smod . '.php')) {
                $this->set_url(1, $smod);
                $this->set_url(0, 'self');
            } else {
                $this->set_url(0, $smod);
            }
        }
        // pruefen ob der client die noetigen rechte hat
        // das modul zu sehen.. bzw. den menupunkt zu sehen
        $exit = !$this->check_rights();
        // das usermodul kann aus eigener sicherheit nicht
        // gesperrt werden, sonst koennen sich member
        // usw. nicht mehr einloggen, bzw. es kann
        // sich sonst keiner registrieren. deshalb is das
        // user modul immer frei geschaltet
        $alwaysallowed = array('regist', 'login', '1', '2', 'confirm', 'remind', '13', '3', 'logout');
        if ($exit === true and $this->get(0) == 'user' and in_array($this->get(1), $alwaysallowed)) {
            $exit = false;
            debug('o');
        }
        if ($exit) {
            $title = $allgAr['title'] . ' :: Keine Berechtigung';
            $hmenu = 'Keine Berechtigung';
            $design = new design($title, $hmenu);
            if (loggedin()) {
                $design->header();
                if (is_coadmin()) {
                    echo 'Entweder diese Seite ist nicht in der Navigation verlinkt und die Option
<strong>Zugriff auf nicht im Menü verlinkte Module für alle?</strong> steht auf <strong>nein</strong> oder aber du hast kein Recht sie zu betrachten, deswegen kommt diese Meldung.<br />
Also entweder die Seite <strong>' . $this->get(0) . '</strong> in der <a href="admin.php?menu">Navigation</a> verlinken, oder die Option umstellen, ersteres wird empfohlen.';
                } else {
                    echo 'Du hast leider nicht die n&ouml;tigen Rechte, um diese Seite zu betrachten.';
                }
            } else {
                $tpl = new tpl('user/login');
                $design->addheader($tpl->get(0));
                $design->header();
                $tpl->set_out('WDLINK', 'index.php', 1);
            }
            $design->footer();
            exit;
        }
        return $this->get(0) . '.php';
    }
Ejemplo n.º 8
0
 function get_url($w = 'contents')
 {
     global $allgAr;
     # startwert und pfad zum pruefen raustuefteln.
     if ($w == 'contents') {
         $pfad = 'include/contents';
         $smod = $allgAr['smodul'];
     } else {
         $pfad = 'include/admin';
         $smod = 'admin';
     }
     # wennes also leer is wird das startmodul genommen
     if (empty($this->menu_ar[0])) {
         $this->set_url(0, $smod);
     }
     # diverse sachen geprueft zum zurueck geben,
     # is halt so dings wegen selfpages usw...
     if (!file_exists($pfad . '/' . $this->get(0) . '.php') and file_exists($pfad . '/selfbp/selfp/' . $this->get(0) . '.php')) {
         $this->set_url(1, $this->get(0));
         $this->set_url(0, 'self');
     } elseif (!file_exists($pfad . '/' . $this->get(0) . '.php')) {
         if (substr($smod, 0, 5) == 'self-') {
             $this->set_url(1, substr($smod, 5));
             $this->set_url(0, 'self');
         } elseif (file_exists($pfad . '/selfbp/selfp/' . $smod . '.php')) {
             $this->set_url(1, $smod);
             $this->set_url(0, 'self');
         } else {
             $this->set_url(0, $smod);
         }
     }
     # pruefen ob der client die noetigen rechte hat
     # das modul zu sehen.. bzw. den menupunkt zu sehen
     $exit = false;
     if ($w == 'contents') {
         $where = "(path = '" . $this->get(0) . "' OR path = '" . $this->get(0) . "-" . $this->get(1) . "')";
         if ($this->get(0) == 'self') {
             $where = "(path = '" . $this->get(0) . "-" . $this->get(1) . "' OR path = '" . $this->get(1) . "')";
         }
         $r = @db_result(@db_query("SELECT recht FROM prefix_menu WHERE " . $where . " ORDER BY LENGTH(path) DESC"), 0);
         if ($r != '' and !has_right($r) or $r == '' and $allgAr['allg_menupoint_access'] == 0) {
             $exit = true;
         }
     }
     # das usermodul kann aus eigener sicherheit nicht
     # gesperrt werden, sonst koennen sich member
     # usw. nicht mehr einloggen, bzw. es kann
     # sich sonst keiner registrieren. deshalb is das
     # user modul immer frei geschaltet
     $alwaysallowed = array('regist', 'login', '1', '2', 'confirm', 'remind', '13', '3', 'logout');
     if ($exit === true and $this->get(0) == 'user' and in_array($this->get(1), $alwaysallowed)) {
         $exit = false;
         debug('o');
     }
     if ($exit) {
         $title = $allgAr['title'] . ' :: Keine Berechtigung';
         $hmenu = 'Keine Berechtigung';
         $design = new design($title, $hmenu);
         $design->header();
         if (loggedin()) {
             echo 'Du hast leider nicht die n&ouml;tigen Rechte... :-S';
         } else {
             $tpl = new tpl('user/login');
             $tpl->set_out('WDLINK', 'index.php', 0);
         }
         $design->footer();
         exit;
     }
     return $this->get(0) . '.php';
 }