if (!empty($setmodules)) {
$filename = basename(__FILE__);
$module['1610_Users']['130_Userlist'] = $filename;
return;
}
if (!defined('IP_ROOT_PATH')) {
define('IP_ROOT_PATH', './../');
}
if (!defined('PHP_EXT')) {
define('PHP_EXT', substr(strrchr(__FILE__, '.'), 1));
}
require 'pagestart.' . PHP_EXT;
include IP_ROOT_PATH . 'includes/functions_users_delete.' . PHP_EXT;
$mode = request_var('mode', '');
$confirm = check_http_var_exists('confirm', false);
if (check_http_var_exists('cancel', false)) {
$cancel = true;
$mode = '';
} else {
$cancel = false;
}
$start = request_var('start', 0);
$start = $start < 0 ? 0 : $start;
$show = request_var('show', $config['topics_per_page']);
$show = $show < 1 ? $config['topics_per_page'] : $show;
$sort_method = request_var('sort', 'user_regdate');
$sort_order = request_var('order', 'ASC');
$sort_order = check_var_value($sort_order, array('DESC', 'ASC'));
// alphanumeric stuff
$alphanum = request_var('alphanum', '');
if (!empty($alphanum)) {
$is_auth['auth_post'] = 0;
}
else
{
$is_auth['auth_delete'] = 1;
$is_auth['auth_post'] = 1;
}
}
if(!$is_auth['auth_read'])
{
message_die(GENERAL_MESSAGE, $lang['Not_Authorized']);
}
// End auth check
$refresh = (check_http_var_exists('auto_refresh', false) || check_http_var_exists('refresh', false)) ? 1 : 0;
$submit = (isset($_POST['shout']) && isset($_POST['message'])) ? 1 : 0;
$mode = request_var('mode', '');
// Set toggles for various options
if (!$config['allow_html'])
{
$html_on = 0;
}
else
{
$html_on = ($submit || $refresh || $preview) ? ((!empty($_POST['disable_html'])) ? 0 : 1) : (($user->data['user_id'] == ANONYMOUS) ? $config['allow_html'] : $user->data['user_allowhtml']);
}
if (!$config['allow_bbcode'])
{
$bbcode_on = 0;
// in album.php file in the main folder.
// ------------------------------------------------------------------------
// ------------------------------------------------------------------------
// Get the name of this user
// ------------------------------------------------------------------------
$username = album_get_user_name($album_user_id);
if (empty($username)) {
if (!defined('STATUS_404')) {
define('STATUS_404', true);
}
message_die(GENERAL_MESSAGE, 'NO_USER');
}
// ------------------------------------
// Build the thumbnail page
// ------------------------------------
if (check_http_var_exists('type', false)) {
$album_view_type = request_var('type', '');
}
$start = request_var('start', 0);
$start = $start < 0 ? 0 : $start;
$pics_per_page = $album_config['rows_per_page'] * $album_config['cols_per_page'];
$limit_sql = $start == 0 ? $pics_per_page : $start . ',' . $pics_per_page;
// set some initial values...
// $allowed_cat is set in album.php !!!
$list_sql = '';
$count_sql = '';
//$album_view_type = ALBUM_LISTTYPE_PICTURES;
switch (strtolower($album_view_type)) {
case ALBUM_LISTTYPE_RATINGS:
$album_view_type = ALBUM_LISTTYPE_RATINGS;
// default sorting if not specified directly
$result = $db->sql_query($sql);
$resultset = $db->sql_fetchrowset($result);
$smile_pak = '';
for ($i = 0; $i < sizeof($resultset); $i++) {
$smile_pak .= $resultset[$i]['smile_url'] . $delimiter;
$smile_pak .= $resultset[$i]['emoticon'] . $delimiter;
$smile_pak .= $resultset[$i]['code'] . "\n";
}
header("Content-Type: text/x-delimtext; name=\"smiles.pak\"");
header("Content-disposition: attachment; filename=smiles.pak");
echo $smile_pak;
exit;
}
$message = sprintf($lang['export_smiles'], '<a href="' . append_sid('admin_smilies.' . PHP_EXT . '?export_pack=send', true) . '">', '</a>') . '<br /><br />' . sprintf($lang['Click_return_smileadmin'], '<a href="' . append_sid('admin_smilies.' . PHP_EXT) . '">', '</a>') . '<br /><br />' . sprintf($lang['Click_return_admin_index'], '<a href="' . append_sid('index.' . PHP_EXT . '?pane=right') . '">', '</a>');
message_die(GENERAL_MESSAGE, $message);
} elseif (check_http_var_exists('add', false)) {
// Admin has selected to add a smiley.
$template->set_filenames(array('body' => ADM_TPL . 'smile_edit_body.tpl'));
$filename_list = '';
for ($i = 0; $i < sizeof($smiley_images); $i++) {
$filename_list .= '<option value="' . $smiley_images[$i] . '">' . $smiley_images[$i] . '</option>';
}
$s_hidden_fields = '<input type="hidden" name="mode" value="savenew" />';
$template->assign_vars(array('L_SMILEY_TITLE' => $lang['smiley_title'], 'L_SMILEY_CONFIG' => $lang['smiley_config'], 'L_SMILEY_EXPLAIN' => $lang['smile_desc'], 'L_SMILEY_CODE' => $lang['smiley_code'], 'L_SMILEY_URL' => $lang['smiley_url'], 'L_SMILEY_EMOTION' => $lang['smiley_emot'], 'L_SUBMIT' => $lang['Submit'], 'L_RESET' => $lang['Reset'], 'SMILEY_IMG' => IP_ROOT_PATH . $config['smilies_path'] . '/' . $smiley_images[0], 'S_SMILEY_ACTION' => append_sid('admin_smilies.' . PHP_EXT), 'S_HIDDEN_FIELDS' => $s_hidden_fields, 'S_FILENAME_OPTIONS' => $filename_list, 'S_SMILEY_BASEDIR' => IP_ROOT_PATH . $config['smilies_path']));
$template->pparse('body');
} elseif ($mode != '') {
// Get the submitted data being careful to ensure the the data we receive and process is only the data we are looking for.
$smiley_id = request_var('id', 0);
$smile_code = request_post_var('smile_code', '', true);
$smile_code = htmlspecialchars_decode($smile_code, ENT_COMPAT);
$smile_url = request_post_var('smile_url', '', true);
function update_block_config($blockfile)
{
global $db;
$block_vars_default = array();
$block_count_variables = 0;
if (!empty($blockfile)) {
$block_vars_default = $this->get_block_vars_default($blockfile);
$block_count_variables = sizeof($block_vars_default);
$block_vars_default_names = array();
for ($i = 0; $i < $block_count_variables; $i++) {
$block_vars_default_names[$block_vars_default[$i]['config_name']] = $i;
}
}
if (!empty($block_vars_default)) {
// Let's empty the previously created config vars...
$sql = "SELECT * FROM " . $this->tables['block_config_table'] . " WHERE bid = '" . $this->bs_id . "'";
$result = $db->sql_query($sql);
while ($row = $db->sql_fetchrow($result)) {
$delete_var = in_array($row['config_name'], $block_vars_default_names) ? false : true;
if (!empty($delete_var)) {
$this->delete_block_config_single($row['config_name']);
}
}
$db->sql_freeresult($result);
for ($i = 0; $i < $block_count_variables; $i++) {
$config_value_tmp = request_post_var($block_vars_default[$i]['config_name'], '', true);
$config_value_tmp = htmlspecialchars_decode($config_value_tmp, ENT_COMPAT);
if (check_http_var_exists($block_vars_default[$i]['config_name'], true)) {
$block_vars_default[$i]['config_value'] = $config_value_tmp;
}
$block_var_exists = $this->block_var_exists($block_vars_default[$i]['config_name']);
if (empty($block_var_exists)) {
$sql = "INSERT INTO " . $this->tables['block_variable_table'] . " (bid, label, sub_label, config_name, field_options, field_values, type, block)\n\t\t\t\t\t\tVALUES ('" . $this->bs_id . "', '" . $db->sql_escape($block_vars_default[$i]['label']) . "', '" . $db->sql_escape($block_vars_default[$i]['sub_label']) . "', '" . $db->sql_escape($block_vars_default[$i]['config_name']) . "', '" . $db->sql_escape($block_vars_default[$i]['field_options']) . "', '" . $block_vars_default[$i]['field_values'] . "', '" . $block_vars_default[$i]['type'] . "', '" . $db->sql_escape($block_vars_default[$i]['block']) . "')";
$result = $db->sql_query($sql);
$sql = "INSERT INTO " . $this->tables['block_config_table'] . " (bid, config_name, config_value)\n\t\t\t\t\t\tVALUES ('" . $this->bs_id . "', '" . $db->sql_escape($block_vars_default[$i]['config_name']) . "', '" . $db->sql_escape($block_vars_default[$i]['config_value']) . "')";
$result = $db->sql_query($sql);
} else {
$sql = "UPDATE " . $this->tables['block_config_table'] . " SET config_value = '" . $db->sql_escape($block_vars_default[$i]['config_value']) . "'\n\t\t\t\t\t\t\t\t\tWHERE config_name = '" . $db->sql_escape($block_vars_default[$i]['config_name']) . "'\n\t\t\t\t\t\t\t\t\t\tAND bid = " . $this->bs_id;
$result = $db->sql_query($sql);
}
}
} else {
$this->delete_block_config_all();
}
return true;
}
$message = $lang['Empty_Cache_Success'] . '<br /><br />';
$confirmation = true;
}
if (check_http_var_exists('confirm_clear_cache_posts', false)) {
$sql = "UPDATE " . POSTS_TABLE . " SET post_text_compiled = ''";
$db->sql_return_on_error(true);
$result = $db->sql_query($sql);
$db->sql_return_on_error(false);
if (!$result) {
$message .= '<br /><br />' . $lang['MG_SW_Empty_Precompiled_Posts_Fail'] . '<br /><br />';
message_die(GENERAL_MESSAGE, $message);
}
$message = $lang['MG_SW_Empty_Precompiled_Posts_Success'] . '<br /><br />';
$confirmation = true;
}
if (check_http_var_exists('confirm_clear_cache_thumbs', false)) {
$files_deleted = empty_images_cache_folders(CACHE_FILES_PER_STEP);
$redirect_url = append_sid('admin_board_clearcache.' . PHP_EXT . '?confirm_clear_cache_thumbs=' . str_replace('sid=', '', $SID));
if ($files_deleted === CACHE_FILES_PER_STEP) {
//meta_refresh(3, $redirect_url);
$meta_tag = '</body><head><meta http-equiv="refresh" content="3;url=' . $redirect_url . '"></head><body>';
$message .= $lang['MG_SW_Empty_Precompiled_Posts_InProgress'] . '<br /><br />' . $lang['MG_SW_Empty_Precompiled_Posts_InProgress_Redirect'] . '<br /><br />' . sprintf($lang['MG_SW_Empty_Precompiled_Posts_InProgress_Redirect_Click'], '<a href="' . $redirect_url . '">', '</a>');
message_die(GENERAL_MESSAGE, $meta_tag . $message);
}
$message = $lang['Empty_Cache_Success'] . '<br /><br />';
$confirmation = true;
}
if ($confirmation) {
$redirect_url = append_sid('admin_board_clearcache.' . PHP_EXT);
//meta_refresh(3, $redirect_url);
//$meta_tag = '</body><head><meta http-equiv="refresh" content="3;url=' . $redirect_url . '"></head><body>';
$cms_page['page_id'] = 'search';
$cms_page['page_nav'] = (!empty($cms_config_layouts[$cms_page['page_id']]['page_nav']) ? true : false);
$cms_page['global_blocks'] = (!empty($cms_config_layouts[$cms_page['page_id']]['global_blocks']) ? true : false);
$cms_auth_level = (isset($cms_config_layouts[$cms_page['page_id']]['view']) ? $cms_config_layouts[$cms_page['page_id']]['view'] : AUTH_ALL);
check_page_auth($cms_page['page_id'], $cms_auth_level);
$mode = request_var('mode', '');
$only_bluecards = (!empty($_POST['only_bluecards']) ? 1 : 0);
$search_keywords = request_var('search_keywords', '', true);
$is_newposts = false;
$search_author = request_var('search_author', '', true);
if (!empty($search_author))
{
$search_author = phpbb_clean_username($search_author);
$search_topic_starter = check_http_var_exists('search_topic_starter', true);
}
else
{
$search_author = '';
$search_topic_starter = false;
}
if (isset($search_mode) && ($search_mode == 'bookmarks'))
{
// TO DO: force to false, and decide if we would like to overwrite it with Profile Global Blocks settings...
//$cms_page['global_blocks'] = (!empty($cms_config_layouts['profile']['global_blocks']) ? true : false);
$cms_page['global_blocks'] = false;
}
$search_terms = request_var('search_terms', '');
// Load default header
if (!defined('IP_ROOT_PATH')) {
define('IP_ROOT_PATH', './../');
}
if (!defined('PHP_EXT')) {
define('PHP_EXT', substr(strrchr(__FILE__, '.'), 1));
}
include_once IP_ROOT_PATH . 'includes/functions_groups.' . PHP_EXT;
require 'pagestart.' . PHP_EXT;
$group_id = request_var(POST_GROUPS_URL, 0);
$mode = request_var('mode', '');
attachment_quota_settings('group', $_POST['group_update'], $mode);
if (check_http_var_exists('edit', false) || isset($_POST['new'])) {
// Ok they are editing a group or creating a new group
$template->set_filenames(array('body' => ADM_TPL . 'group_edit_body.tpl'));
if (check_http_var_exists('edit', false)) {
// They're editing. Grab the vars.
$sql = "SELECT *\n\t\t\tFROM " . GROUPS_TABLE . "\n\t\t\tWHERE group_single_user <> " . TRUE . "\n\t\t\tAND group_id = {$group_id}";
$result = $db->sql_query($sql);
if (!($group_info = $db->sql_fetchrow($result))) {
message_die(GENERAL_MESSAGE, $lang['Group_not_exist']);
}
$mode = 'editgroup';
$template->assign_block_vars('group_edit', array());
} elseif (isset($_POST['new'])) {
$group_info = array('group_name' => '', 'group_description' => '', 'group_moderator' => '', 'group_rank' => '0', 'group_color' => '', 'group_legend' => '1', 'group_count' => '99999999', 'group_count_max' => '99999999', 'group_count_enable' => '0', 'group_type' => GROUP_OPEN);
$group_open = ' checked="checked"';
$mode = 'newgroup';
}
// Ok, now we know everything about them, let's show the page.
if ($group_info['group_moderator'] != '') {
$sort_key_sql = $sort_key_sql_array[$sort_key];
$sort_dir = strtolower(request_var('sd', $default_sort_dir));
$sort_dir = check_var_value($sort_dir, $sort_dir_array);
$sort_dir_sql = $sort_dir_sql_array[$sort_dir];
// Backward compatibility
if (check_http_var_exists('postorder', true))
{
$sort_dir_array_old = array('asc', 'desc');
$sort_dir = strtolower(request_var('postorder', $sort_dir_array_old[0]));
$sort_dir = check_var_value($sort_dir, $sort_dir_array_old);
$sort_dir = ($sort_dir == 'asc') ? 'a' : 'd';
$sort_dir_sql = $sort_dir_sql_array[$sort_dir];
}
if (check_http_var_exists('postdays', true))
{
$sort_days = request_var('postdays', $default_sort_days);
$sort_days = check_var_value($sort_days, $sort_days_array);
}
$vt_sort_append_array = array();
if ($sort_days != $sort_days_array[0])
{
$vt_sort_append_array['st'] = $sort_days;
}
if ($sort_key != $sort_key_array[0])
{
$vt_sort_append_array['sk'] = $sort_key;
}
if ($sort_dir != $sort_dir_array[0])
$date = $date - $years * 31536000;
$weeks = floor($date / 604800);
$date = $date - $weeks * 604800;
$days = floor($date / 86400);
$date = $date - $days * 86400;
$hours = floor($date / 3600);
$result = ($years ? $years . ' ' . ($years == '1' ? $lang['Account_year'] : $lang['Account_years']) . ', ' : '') . ($years || $weeks ? $weeks . ' ' . ($weeks == '1' ? $lang['Account_week'] : $lang['Account_weeks']) . ', ' : '') . ($years || $weeks || $days ? $days . ' ' . ($days == '1' ? $lang['Account_day'] : $lang['Account_days']) . ', ' : '') . ($years || $weeks || $days || $hours ? $hours . ' ' . ($hours == '1' ? $lang['Account_hour'] : $lang['Account_hours']) : '');
return $result;
}
}
$submit_wait = isset($_POST['submit_wait']) ? true : false;
$confirm = isset($_POST['confirm']) ? true : false;
$delete = isset($_POST['delete']) ? true : false;
$activate = isset($_POST['activate']) ? true : false;
$mark_list = !empty($_POST['mark']) ? $_POST['mark'] : 0;
if (check_http_var_exists('letter', false)) {
$by_letter = request_var('letter', 'all');
}
$action = request_var('action', 'inactive');
$action = check_var_value($action, array('inactive', 'active'));
$mode = request_var('mode', '');
$start = request_var('start', 0);
$start = $start < 0 ? 0 : $start;
$user_id = request_var(POST_USERS_URL, 0);
$user_id = $user_id < 2 ? ANONYMOUS : $user_id;
if (($delete && $confirm || $activate) && $mark_list) {
if (sizeof($mark_list)) {
$email_id = '';
for ($i = 0; $i < sizeof($mark_list); $i++) {
$email_id .= ($email_id != '' ? ', ' : '') . intval($mark_list[$i]);
}
for ($i = 0; $i < sizeof($topics_row); $i++) {
$sql = "SELECT *\n\t\t\t\tFROM " . TOPICS_TABLE . "\n\t\t\t\tWHERE topic_id = " . $topics_row[$i]['topic_id'];
$result = $db->sql_query($sql);
$row = $db->sql_fetchrow($result);
$db->sql_freeresult($result);
//If a blank title was returned, we know the topic doesn't exist anymore
if (!isset($row['topic_title'])) {
$sql = "DELETE\n\t\t\t\t\tFROM " . RATINGS_TABLE . "\n\t\t\t\t\tWHERE topic_id = " . $topics_row[$i]['topic_id'];
$result = $db->sql_query($sql);
$admin_message .= '<br />' . $lang['Purged'] . ': ' . $lang['Topic'] . ' # ' . $topics_row[$i]['topic_id'];
}
}
$admin_message .= '<br />' . $lang['Purge'] . ': ' . $lang['Complete'];
}
//Clear all the data if option selected
if (check_http_var_exists('ratings_clear', false)) {
$clear_confirm = request_var('ratings_clear_confirm', '');
if (!empty($clear_confirm)) {
if (strtoupper($clear_confirm) == 'YES') {
$sql = "DELETE\n\t\t\t\tFROM " . RATINGS_TABLE;
$result = $db->sql_query($sql);
$sql = "UPDATE " . TOPICS_TABLE . " SET topic_rating = '0'";
$result = $db->sql_query($sql);
$admin_message .= '<br />' . $lang['Clear'] . ': ' . $lang['Complete'];
}
}
}
for ($x = 0; $x < sizeof($forum_row); $x++) {
$current_auth = $forum_row[$x]['auth_rate'];
if (isset($_POST['forum_update_id_' . $forum_row[$x]['forum_id']]) || isset($_GET['forum_update_id_' . $forum_row[$x]['forum_id']])) {
$id_value = request_var('forum_update_id_' . $forum_row[$x]['forum_id'], 0);
