$form['contact'] = xoops_getLinkedUnameFromId($form['priuid']);
}
} elseif ($form['cgroup']) {
$form['contact'] = '[' . $groups[$form['cgroup']] . ']';
} else {
$form['contact'] = _MD_CONTACT_NOTYET;
}
$forms[] = $form;
}
$xoopsTpl->assign('forms', $forms);
include XOOPS_ROOT_PATH . "/footer.php";
exit;
}
// check access permition
$form = $xoopsDB->fetchArray($res);
if (!cc_check_perm($form)) {
redirect_header('index.php', 3, _NOPERM);
exit;
}
include XOOPS_ROOT_PATH . "/header.php";
$xoopsOption['template_main'] = "ccenter_reception.html";
$id = $form['formid'];
$items = get_form_attribute($form['defs']);
$breadcrumbs->set(htmlspecialchars($form['title']), "reception.php?formid={$id}");
$breadcrumbs->assign();
$start = isset($_GET['start']) ? intval($_GET['start']) : 0;
if ($form['custom']) {
$reg = array('/\\[desc\\](.*)\\[\\/desc\\]/sU', '/<form[^>]*>(.*)<\\/form[^>]*>/sU', '/{CHECK_SCRIPT}/');
$rep = array('\\1', '', '');
$form['action'] = '';
$form['description'] = preg_replace($reg, $rep, custom_template($form, $items));
include "functions.php";
if (!function_exists('mime_content_type')) {
function mime_content_type($f)
{
return trim(exec('file -bi ' . escapeshellarg($f)));
}
}
$msgid = isset($_GET['id']) ? intval($_GET['id']) : 0;
$file = basename($_GET['file']);
if ($msgid) {
$res = $xoopsDB->query("SELECT msgid,uid,touid,onepass FROM " . CCMES . " WHERE msgid={$msgid}");
if (!$res || $xoopsDB->getRowsNum($res) == 0) {
die("No File");
}
$data = $xoopsDB->fetchArray($res);
if (!cc_check_perm($data)) {
redirect_header(XOOPS_URL . '/user.php', 3, _NOPERM);
exit;
}
}
$path = XOOPS_UPLOAD_PATH . cc_attach_path($msgid, $file);
$type = cc_mime_content_type($path);
$stat = stat($path);
if (!$stat) {
die('No File');
}
//header("Last-Modified: ".formatTimestamp($stat['mtime'], "r"));
header("Content-Type: {$type}");
//header("Content-Length: ".$stat['size']);
if ($stat && $_SERVER["REQUEST_METHOD"] == "GET") {
header('Content-Disposition: inline;filename="' . $file . '"');
function cc_get_message($msgid)
{
global $xoopsDB;
$res = $xoopsDB->query("SELECT m.*, title, cgroup FROM " . CCMES . " m," . FORMS . " WHERE msgid=" . (int) $msgid . " AND status<>" . $xoopsDB->quoteString(_STATUS_DEL) . " AND fidref=formid");
$data = $xoopsDB->fetchArray($res);
if (!cc_check_perm($data)) {
redirect_header(XOOPS_URL . '/user.php', 3, _NOPERM);
exit;
}
return $data;
}
