function auth($type, $forum_id, $userdata, $f_access = '') { global $db, $lang; switch ($type) { case AUTH_ALL: $a_sql = 'a.auth_view, a.auth_read, a.auth_post, a.auth_reply, a.auth_edit, a.auth_delete, a.auth_sticky, a.auth_announce, a.auth_vote, a.auth_pollcreate, a.auth_ban, a.auth_greencard, a.auth_bluecard'; $auth_fields = array('auth_view', 'auth_read', 'auth_post', 'auth_reply', 'auth_edit', 'auth_delete', 'auth_sticky', 'auth_announce', 'auth_vote', 'auth_pollcreate', 'auth_ban', 'auth_greencard', 'auth_bluecard'); break; case AUTH_VIEW: $a_sql = 'a.auth_view'; $auth_fields = array('auth_view'); break; case AUTH_READ: $a_sql = 'a.auth_read'; $auth_fields = array('auth_read'); break; case AUTH_POST: $a_sql = 'a.auth_post'; $auth_fields = array('auth_post'); break; case AUTH_REPLY: $a_sql = 'a.auth_reply'; $auth_fields = array('auth_reply'); break; case AUTH_EDIT: $a_sql = 'a.auth_edit'; $auth_fields = array('auth_edit'); break; case AUTH_DELETE: $a_sql = 'a.auth_delete'; $auth_fields = array('auth_delete'); break; case AUTH_ANNOUNCE: $a_sql = 'a.auth_announce'; $auth_fields = array('auth_announce'); break; case AUTH_STICKY: $a_sql = 'a.auth_sticky'; $auth_fields = array('auth_sticky'); break; case AUTH_POLLCREATE: $a_sql = 'a.auth_pollcreate'; $auth_fields = array('auth_pollcreate'); break; case AUTH_VOTE: $a_sql = 'a.auth_vote'; $auth_fields = array('auth_vote'); break; case AUTH_ATTACH: break; case AUTH_BAN: $a_sql = 'a.auth_ban'; $auth_fields = array('auth_ban'); break; case AUTH_GREENCARD: $a_sql = 'a.auth_greencard'; $auth_fields = array('auth_greencard'); break; case AUTH_BLUECARD: $a_sql = 'a.auth_bluecard'; $auth_fields = array('auth_bluecard'); break; default: break; } if (!defined('NO_ATTACH_MOD')) { attach_setup_basic_auth($type, $auth_fields, $a_sql); } // // If f_access has been passed, or auth is needed to return an array of forums // then we need to pull the auth information on the given forum (or all forums) // if (empty($f_access)) { $forum_match_sql = $forum_id != AUTH_LIST_ALL ? "WHERE a.forum_id = {$forum_id}" : ''; $sql = "SELECT a.forum_id, {$a_sql}\r\n\t\t\tFROM " . FORUMS_TABLE . " a\r\n\t\t\t{$forum_match_sql}"; if (!($result = $db->sql_query($sql, false, 'auth_'))) { message_die(GENERAL_ERROR, 'Failed obtaining forum access control lists', '', __LINE__, __FILE__, $sql); } $sql_fetchrow = $forum_id != AUTH_LIST_ALL ? 'sql_fetchrow' : 'sql_fetchrowset'; if (!($f_access = $db->{$sql_fetchrow}($result))) { $db->sql_freeresult($result); return array(); } $db->sql_freeresult($result); } // // If the user isn't logged on then all we need do is check if the forum // has the type set to ALL, if yes they are good to go, if not then they // are denied access // $u_access = array(); if ($userdata['session_logged_in']) { $forum_match_sql = $forum_id != AUTH_LIST_ALL ? "AND a.forum_id = {$forum_id}" : ''; $sql = "SELECT a.forum_id, {$a_sql}, a.auth_mod \r\n\t\t\tFROM " . AUTH_ACCESS_TABLE . " a, " . USER_GROUP_TABLE . " ug \r\n\t\t\tWHERE ug.user_id = " . $userdata['user_id'] . " \r\n\t\t\t\tAND ug.user_pending = 0 \r\n\t\t\t\tAND a.group_id = ug.group_id\r\n\t\t\t\t{$forum_match_sql}"; if (!($result = $db->sql_query($sql, false, true))) { message_die(GENERAL_ERROR, 'Failed obtaining forum access control lists', '', __LINE__, __FILE__, $sql); } if ($row = $db->sql_fetchrow($result)) { do { if ($forum_id != AUTH_LIST_ALL) { $u_access[] = $row; } else { $u_access[$row['forum_id']][] = $row; } } while ($row = $db->sql_fetchrow($result)); } $db->sql_freeresult($result); } $is_admin = $userdata['user_level'] == ADMIN && $userdata['session_logged_in'] ? TRUE : 0; $auth_user = array(); for ($i = 0; $i < count($auth_fields); $i++) { $key = $auth_fields[$i]; // // If the user is logged on and the forum type is either ALL or REG then the user has access // // If the type if ACL, MOD or ADMIN then we need to see if the user has specific permissions // to do whatever it is they want to do ... to do this we pull relevant information for the // user (and any groups they belong to) // // Now we compare the users access level against the forums. We assume here that a moderator // and admin automatically have access to an ACL forum, similarly we assume admins meet an // auth requirement of MOD // if ($forum_id != AUTH_LIST_ALL) { $value = $f_access[$key]; switch ($value) { case AUTH_ALL: $auth_user[$key] = TRUE; $auth_user[$key . '_type'] = $lang['Auth_Anonymous_Users']; break; case AUTH_REG: $auth_user[$key] = $userdata['session_logged_in'] ? TRUE : 0; $auth_user[$key . '_type'] = $lang['Auth_Registered_Users']; break; case AUTH_ACL: $auth_user[$key] = $userdata['session_logged_in'] ? auth_check_user(AUTH_ACL, $key, $u_access, $is_admin) : 0; $auth_user[$key . '_type'] = $lang['Auth_Users_granted_access']; break; case AUTH_MOD: $auth_user[$key] = $userdata['session_logged_in'] ? auth_check_user(AUTH_MOD, 'auth_mod', $u_access, $is_admin) : 0; $auth_user[$key . '_type'] = $lang['Auth_Moderators']; break; case AUTH_ADMIN: $auth_user[$key] = $is_admin; $auth_user[$key . '_type'] = $lang['Auth_Administrators']; break; default: $auth_user[$key] = 0; break; } } else { for ($k = 0; $k < count($f_access); $k++) { $value = $f_access[$k][$key]; $f_forum_id = $f_access[$k]['forum_id']; $u_access[$f_forum_id] = isset($u_access[$f_forum_id]) ? $u_access[$f_forum_id] : array(); switch ($value) { case AUTH_ALL: $auth_user[$f_forum_id][$key] = TRUE; $auth_user[$f_forum_id][$key . '_type'] = $lang['Auth_Anonymous_Users']; break; case AUTH_REG: $auth_user[$f_forum_id][$key] = $userdata['session_logged_in'] ? TRUE : 0; $auth_user[$f_forum_id][$key . '_type'] = $lang['Auth_Registered_Users']; break; case AUTH_ACL: $auth_user[$f_forum_id][$key] = $userdata['session_logged_in'] ? auth_check_user(AUTH_ACL, $key, $u_access[$f_forum_id], $is_admin) : 0; $auth_user[$f_forum_id][$key . '_type'] = $lang['Auth_Users_granted_access']; break; case AUTH_MOD: $auth_user[$f_forum_id][$key] = $userdata['session_logged_in'] ? auth_check_user(AUTH_MOD, 'auth_mod', $u_access[$f_forum_id], $is_admin) : 0; $auth_user[$f_forum_id][$key . '_type'] = $lang['Auth_Moderators']; break; case AUTH_ADMIN: $auth_user[$f_forum_id][$key] = $is_admin; $auth_user[$f_forum_id][$key . '_type'] = $lang['Auth_Administrators']; break; default: $auth_user[$f_forum_id][$key] = 0; break; } } } } // // Is user a moderator? // if ($forum_id != AUTH_LIST_ALL) { $auth_user['auth_mod'] = $userdata['session_logged_in'] ? auth_check_user(AUTH_MOD, 'auth_mod', $u_access, $is_admin) : 0; } else { for ($k = 0; $k < count($f_access); $k++) { $f_forum_id = $f_access[$k]['forum_id']; $u_access[$f_forum_id] = isset($u_access[$f_forum_id]) ? $u_access[$f_forum_id] : array(); $auth_user[$f_forum_id]['auth_mod'] = $userdata['session_logged_in'] ? auth_check_user(AUTH_MOD, 'auth_mod', $u_access[$f_forum_id], $is_admin) : 0; } } return $auth_user; }
function auth($type, $forum_id, $userdata, $f_access = '') { global $lang; switch ($type) { case AUTH_ALL: $a_sql = 'a.auth_view, a.auth_read, a.auth_post, a.auth_reply, a.auth_edit, a.auth_delete, a.auth_sticky, a.auth_announce, a.auth_vote, a.auth_pollcreate'; $auth_fields = array('auth_view', 'auth_read', 'auth_post', 'auth_reply', 'auth_edit', 'auth_delete', 'auth_sticky', 'auth_announce', 'auth_vote', 'auth_pollcreate'); break; case AUTH_VIEW: $a_sql = 'a.auth_view'; $auth_fields = array('auth_view'); break; case AUTH_READ: $a_sql = 'a.auth_read'; $auth_fields = array('auth_read'); break; case AUTH_POST: $a_sql = 'a.auth_post'; $auth_fields = array('auth_post'); break; case AUTH_REPLY: $a_sql = 'a.auth_reply'; $auth_fields = array('auth_reply'); break; case AUTH_EDIT: $a_sql = 'a.auth_edit'; $auth_fields = array('auth_edit'); break; case AUTH_DELETE: $a_sql = 'a.auth_delete'; $auth_fields = array('auth_delete'); break; case AUTH_ANNOUNCE: $a_sql = 'a.auth_announce'; $auth_fields = array('auth_announce'); break; case AUTH_STICKY: $a_sql = 'a.auth_sticky'; $auth_fields = array('auth_sticky'); break; case AUTH_POLLCREATE: $a_sql = 'a.auth_pollcreate'; $auth_fields = array('auth_pollcreate'); break; case AUTH_VOTE: $a_sql = 'a.auth_vote'; $auth_fields = array('auth_vote'); break; case AUTH_ATTACH: break; default: break; } attach_setup_basic_auth($type, $auth_fields, $a_sql); // // If f_access has been passed, or auth is needed to return an array of forums // then we need to pull the auth information on the given forum (or all forums) // if (empty($f_access)) { $forum_match_sql = $forum_id != AUTH_LIST_ALL ? "WHERE a.forum_id = {$forum_id}" : ''; $sql = "SELECT a.forum_id, {$a_sql}\n\t\t\tFROM " . FORUMS_TABLE . " a\n\t\t\t{$forum_match_sql}"; if (!($result = DB()->sql_query($sql))) { message_die(GENERAL_ERROR, 'Failed obtaining forum access control lists', '', __LINE__, __FILE__, $sql); } $sql_fetchrow = $forum_id != AUTH_LIST_ALL ? 'sql_fetchrow' : 'sql_fetchrowset'; if (!($f_access = DB()->{$sql_fetchrow}($result))) { DB()->sql_freeresult($result); return array(); } DB()->sql_freeresult($result); } // // If the user isn't logged on then all we need do is check if the forum // has the type set to ALL, if yes they are good to go, if not then they // are denied access // $u_access = array(); if ($userdata['session_logged_in']) { $forum_match_sql = $forum_id != AUTH_LIST_ALL ? "AND a.forum_id = {$forum_id}" : ''; $sql = "SELECT a.forum_id, {$a_sql}, a.auth_mod\n\t\t\tFROM " . AUTH_ACCESS_TABLE . " a, " . USER_GROUP_TABLE . " ug\n\t\t\tWHERE ug.user_id = " . $userdata['user_id'] . "\n\t\t\t\tAND ug.user_pending = 0\n\t\t\t\tAND a.group_id = ug.group_id\n\t\t\t\t{$forum_match_sql}"; if (!($result = DB()->sql_query($sql))) { message_die(GENERAL_ERROR, 'Failed obtaining forum access control lists', '', __LINE__, __FILE__, $sql); } if ($row = DB()->sql_fetchrow($result)) { do { if ($forum_id != AUTH_LIST_ALL) { $u_access[] = $row; } else { $u_access[$row['forum_id']][] = $row; } } while ($row = DB()->sql_fetchrow($result)); } DB()->sql_freeresult($result); } $is_admin = $userdata['user_level'] == ADMIN && $userdata['session_logged_in'] ? TRUE : 0; $auth_user = array(); for ($i = 0; $i < count($auth_fields); $i++) { $key = $auth_fields[$i]; if ($forum_id != AUTH_LIST_ALL) { $value = $f_access[$key]; switch ($value) { case AUTH_ALL: $auth_user[$key] = TRUE; $auth_user[$key . '_type'] = $lang['Auth_Anonymous_Users']; break; case AUTH_REG: $auth_user[$key] = $userdata['session_logged_in'] ? TRUE : 0; $auth_user[$key . '_type'] = $lang['Auth_Registered_Users']; break; case AUTH_ACL: $auth_user[$key] = $userdata['session_logged_in'] ? @auth_check_user(AUTH_ACL, $key, $u_access, $is_admin) : 0; $auth_user[$key . '_type'] = $lang['Auth_Users_granted_access']; break; case AUTH_MOD: $auth_user[$key] = $userdata['session_logged_in'] ? @auth_check_user(AUTH_MOD, 'auth_mod', $u_access, $is_admin) : 0; $auth_user[$key . '_type'] = $lang['Auth_Moderators']; break; case AUTH_ADMIN: $auth_user[$key] = $is_admin; $auth_user[$key . '_type'] = $lang['Auth_Administrators']; break; default: $auth_user[$key] = 0; break; } } else { for ($k = 0; $k < count($f_access); $k++) { $value = $f_access[$k][$key]; $f_forum_id = $f_access[$k]['forum_id']; switch ($value) { case AUTH_ALL: $auth_user[$f_forum_id][$key] = TRUE; $auth_user[$f_forum_id][$key . '_type'] = $lang['Auth_Anonymous_Users']; break; case AUTH_REG: $auth_user[$f_forum_id][$key] = $userdata['session_logged_in'] ? TRUE : 0; $auth_user[$f_forum_id][$key . '_type'] = $lang['Auth_Registered_Users']; break; case AUTH_ACL: $auth_user[$f_forum_id][$key] = $userdata['session_logged_in'] ? @auth_check_user(AUTH_ACL, $key, $u_access[$f_forum_id], $is_admin) : 0; $auth_user[$f_forum_id][$key . '_type'] = $lang['Auth_Users_granted_access']; break; case AUTH_MOD: $auth_user[$f_forum_id][$key] = $userdata['session_logged_in'] ? @auth_check_user(AUTH_MOD, 'auth_mod', $u_access[$f_forum_id], $is_admin) : 0; $auth_user[$f_forum_id][$key . '_type'] = $lang['Auth_Moderators']; break; case AUTH_ADMIN: $auth_user[$f_forum_id][$key] = $is_admin; $auth_user[$f_forum_id][$key . '_type'] = $lang['Auth_Administrators']; break; default: $auth_user[$f_forum_id][$key] = 0; break; } } } } // // Is user a moderator? // if ($forum_id != AUTH_LIST_ALL) { $auth_user['auth_mod'] = $userdata['session_logged_in'] ? @auth_check_user(AUTH_MOD, 'auth_mod', $u_access, $is_admin) : 0; } else { for ($k = 0; $k < count($f_access); $k++) { $f_forum_id = $f_access[$k]['forum_id']; $auth_user[$f_forum_id]['auth_mod'] = $userdata['session_logged_in'] ? @auth_check_user(AUTH_MOD, 'auth_mod', $u_access[$f_forum_id], $is_admin) : 0; } } return $auth_user; }