function IsValidLogin(&$aAuthInfo) { // DCL authentication if (!$this->_oDB->conn) { Refresh('index.php?cd=3'); } if ($this->_oDB->Query($this->_sql) != -1) { if ($this->_oDB->next_record()) { $aAuthInfo = array('id' => $this->_oDB->f(0), 'contact_id' => $this->_oDB->f(1), 'short' => $this->_oDB->f(2), 'email' => $this->_oDB->f(3)); return true; } } return false; }
$g_oSession->Connect(); if (!$g_oSession->conn) { Refresh(DCL_WWW_ROOT . 'index.php?cd=3'); } if ($g_oSession->Load($dcl_session_id) == false) { Refresh(DCL_WWW_ROOT . 'index.php?cd=2'); } if ($g_oSession->IsValidSession()) { if (isset($GLOBALS['dcl_info']) && isset($GLOBALS['dcl_info']['DCL_SEC_AUDIT_ENABLED']) && $GLOBALS['dcl_info']['DCL_SEC_AUDIT_ENABLED'] == 'Y') { $oSecAuditDB = CreateObject('dcl.dbSecAudit'); $oSecAuditDB->Add('logout'); } $g_oSession->Delete($g_oSession->dcl_session_id); $g_oSession->Clear(); } } if (isset($_REQUEST['cd']) && ($_REQUEST['cd'] == '1' || $_REQUEST['cd'] == '2' || $_REQUEST['cd'] == '3' || $_REQUEST['cd'] == '4')) { Refresh(DCL_WWW_ROOT . 'index.php?cd=' . $_REQUEST['cd']); } else { Refresh(DCL_WWW_ROOT . 'index.php?cd=4'); } function Refresh($toHere = 'index.php', $session_id = '', $domain = 'default') { $oSmarty =& CreateSmarty(); if (isset($_REQUEST['refer_to']) && $_REQUEST['refer_to'] != '') { $toHere .= sprintf('%srefer_to=%s', strpos($toHere, '?') > 0 ? '&' : '?', urlencode(urldecode($_REQUEST['refer_to']))); } $oSmarty->assign('URL', $toHere); SmartyDisplay($oSmarty, 'logout.tpl'); exit; }
function UserSocialeUpdate($idUser) { $user = UserGetInfo($idUser); //Form echo ' <form action="" method="post"> <div id="myModal_social_edit" class="modal hide fade" tabindex="-1" role="dialog" aria-labelledby="myModal_social_edit_Label" aria-hidden="true"> <div class="modal-header"> <button type="button" class="close" data-dismiss="modal" aria-hidden="true">×</button> <h3 id="myModal_social_edit_Label">URL Socieaux</h3> </div> <div class="modal-body"> <center> <table width="80%"> <tr> <td>URL Facebook</td> <td><input name="fbAccount" type="url" value="' . $user->fbAccount . '" class="input-large" /></td> </tr> <tr> <td>URL LinkedinAccount</td> <td><input name="linkedinAccount" type="url" value="' . $user->linkedinAccount . '" class="input-large" /></td> </tr> <tr> <td>URL Gitub</td> <td><input name="githubAccount" type="url" value="' . $user->githubAccount . '" class="input-large" /></td> </tr> </table> </center> <br> <h6><strong>Exp.</strong> http://www.facebook.com/<br> <strong>INFO :</strong> Laissé vide si vous voulez pas affichié vos lien socieaux!</h6> </div> <div class="modal-footer"> <button class="btn" data-dismiss="modal" aria-hidden="true">Annuler</button> <input type="submit" class="btn btn-primary" value="Mettre à jour ?"/> </div> </div> </form> '; //Function if (isset($_POST['fbAccount']) && isset($_POST['linkedinAccount']) && isset($_POST['githubAccount'])) { global $URL; $fbAccount = addslashes($_POST['fbAccount']); $linkedinAccount = addslashes($_POST['linkedinAccount']); $githubAccount = addslashes($_POST['githubAccount']); $QuerySocialInsert = "UPDATE `users` SET `fbAccount`='{$fbAccount}', `githubAccount`='{$githubAccount}', `linkedinAccount`='{$linkedinAccount}' WHERE `idUser`='{$idUser}';"; QueryExcute('', $QuerySocialInsert); $idUserSession = $_SESSION['user_id']; if ($idUserSession == $idUser) { NotifAllWrite($idUser, '', '<a href="' . $URL . 'ili-users/user_profil?id=' . $idUser . '">' . $user->FamilyName . ' ' . $user->FirstName . ' à modifier ces liens socieaux'); } else { $UserUpdated = UserGetInfo($idUser); $UserUpdater = UserGetInfo($idUserSession); NotifAllWrite($idUser, '', '<a href="' . $URL . 'ili-users/user_profil?id=' . $idUser . '">' . $UserUpdater->FamilyName . ' ' . $UserUpdater->FirstName . ' à modifier liens socieaux de ' . $UserUpdated->FamilyName . ' ' . $UserUpdated->FirstName); } LogWrite("Modification des liens socieaux de l\\'utilisateur : " . $user->idUser); Refresh(); } }
$aProducts = array('-1'); } $g_oSession->Register('org_products', join(',', $aProducts)); } } $g_oSession->Edit(); if ($GLOBALS['dcl_info']['DCL_SEC_AUDIT_ENABLED'] == 'Y') { $oSecAuditDB = CreateObject('dcl.dbSecAudit'); $oSecAuditDB->Add('login'); } $menuAction = 'menuAction=htmlMyDCL.show'; if ($g_oSec->IsPublicUser()) { $menuAction = 'menuAction=htmlPublicMyDCL.show'; } if (isset($_POST['refer_to']) && $_POST['refer_to'] != '') { $menuAction = urldecode($_POST['refer_to']); } $tpl = $oPreferences->Value('DCL_PREF_TEMPLATE_SET'); if ($tpl == '') { $tpl = $dcl_info['DCL_DEF_TEMPLATE_SET']; } if (file_exists('templates/' . $tpl . '/frameset.php')) { Refresh('templates/' . $tpl . '/frameset.php?' . $menuAction, $g_oSession->dcl_session_id, $_POST['DOMAIN']); } else { Refresh('main.php?' . $menuAction, $g_oSession->dcl_session_id, $_POST['DOMAIN']); } } else { Refresh('logout.php?cd=1'); } } }
function MessageRead($idMessage, $idDiscussion, $info_message) { //Form if ($info_message->ClosedBy == '') { echo ' <div class="row-fluid"> <div class="span12"> <div class="widget"> <div class="widget-title"> <h4><i class="icon-reorder"></i> Editeur de message </h4> <span class="tools"><a href="javascript:;" class="icon-chevron-down"></a></span> </div> <div class="widget-body form"> <form action="" method="post" class="form-vertical"> <div class="control-group"> <div class="controls"> <textarea class="span12 ckeditor" name="ContaintDiscussion" rows="6"></textarea> <br> <center> <input type="hidden" name="ToUserDiscussion" value="'; MessageGetReceever($idMessage, $idDiscussion); echo '"/> <input type="reset" value=" Annuler" class="btn btn-info"/> <input type="submit" value=" Rependre" class="btn btn-success"/> </form> <br><br>'; if ($_SESSION['user_idRank'] >= 3 || $info_message->FromUser == $_SESSION['user_id']) { echo ' <form action="" method="post"> <input type="hidden" name="Seen" value="' . $idMessage . '"> <input type="submit" value=" Verrouiller" class="btn btn-warning"/> </form> '; } echo ' </center> </div> </div> </div> </div> </div> </div> '; } //Function if (isset($_POST['ContaintDiscussion']) && isset($_POST['ToUserDiscussion'])) { global $Timestamp; $ContaintDiscussion = addslashes($_POST['ContaintDiscussion']); $FormUserDiscussion = $_SESSION['user_id']; $ToUserDiscussion = $_POST['ToUserDiscussion']; $QueryInsertDiscution = "INSERT INTO `discussion` VALUES (NULL, '{$idMessage}', '{$FormUserDiscussion}', '{$ToUserDiscussion}', '{$ContaintDiscussion}', '{$Timestamp}', '0');"; QueryExcute('', $QueryInsertDiscution); Refresh(); } }
<?php include "../ili-functions/functions.php"; function UserDrop($id) { QueryExcute('', "DELETE FROM usersprivilege WHERE idUser='******'"); QueryExcute('', "DELETE FROM users WHERE idUser='******'"); } Authorization('2'); AuthorizedPrivileges('USERS', 'D'); $id = $_GET['id']; if (!$IfUserHasActivity) { UserDrop($id); NotifAllWrite($id, '', 'L`utilisateur avec CIN :' . $id . ' a été supprimer'); LogWrite("Suppression de l`utilisateur avec CIN=" . $id); Refresh('index'); } else { Redirect('index?message=39'); }