} elseif (isset($_POST['preview'])) { $data['head']['body'] = $cs_lang['preview']; } if (isset($_POST['preview']) and empty($error)) { $data['if']['preview'] = true; $userid = $cs_com['users_id']; if (!empty($cs_com['users_id'])) { $data['if']['guest_prev'] = FALSE; $data['if']['user_prev'] = TRUE; $select = 'users_nick, users_laston, users_place, users_country, users_active, users_invisible'; $cs_user = cs_sql_select(__FILE__, 'users', $select, "users_id = '" . $userid . "'"); $user = cs_secure($cs_user['users_nick']); $url = 'symbols/countries/' . $cs_user['users_country'] . '.png'; $data['prev']['flag'] = cs_html_img($url, 11, 16); $data['prev']['user'] = cs_user($userid, $cs_user['users_nick'], $cs_user['users_active']); $data['prev']['status'] = cs_userstatus($cs_user['users_laston'], $cs_user['users_invisible']); $data['prev']['laston'] = empty($cs_user['users_invisible']) ? '--' : cs_date('unix', $cs_user['users_laston']); $place = empty($cs_user['users_place']) ? '-' : $cs_user['users_place']; $data['prev']['place'] = cs_secure($place); $who = "users_id = '" . $userid . "'"; $count_com[$userid] = cs_sql_count(__FILE__, 'comments', $who); $data['prev']['posts'] = $count_com[$userid]; } else { $data['if']['guest_prev'] = TRUE; $data['if']['user_prev'] = FALSE; $data['prev']['guestnick'] = cs_secure($guestnick); } $opt = "comments_mod = '" . $cs_com['comments_mod'] . "' AND comments_fid = '" . $com_fid . "'"; $count_com = cs_sql_count(__FILE__, 'comments', $opt); $data['prev']['count_com'] = $count_com + 1; $data['prev']['date'] = cs_date('unix', cs_time(), 1);
$condition = 'users_delete = 0 AND users_active = 1' . $mof; $users_count = cs_sql_count(__FILE__, 'users', $condition); $data['head']['mod'] = $cs_lang['mod_name']; $data['head']['action'] = $cs_lang['list']; $data['head']['total'] = $users_count; $data['head']['pages'] = cs_pages('users', 'list', $users_count, $start, $where, $sort); $sel_female = $where === 'female' ? 'selected' : ''; $data['head']['sel_female'] = $sel_female; $sel_male = $where === 'male' ? 'selected' : ''; $data['head']['sel_male'] = $sel_male; $data['sort']['nick'] = cs_sort('users', 'list', $start, $where, 1, $sort); $data['sort']['place'] = cs_sort('users', 'list', $start, $where, 3, $sort); $data['sort']['laston'] = cs_sort('users', 'list', $start, $where, 5, $sort); $select = 'users_id, users_nick, users_place, users_laston, users_country, users_hidden, users_active, users_invisible'; $cs_users = cs_sql_select(__FILE__, 'users', $select, $condition, $order, $start, $account['users_limit']); $users_loop = count($cs_users); for ($run = 0; $run < $users_loop; $run++) { $cs_users[$run]['country'] = cs_html_img('symbols/countries/' . $cs_users[$run]['users_country'] . '.png'); $cs_users[$run]['users_id'] = cs_secure($cs_users[$run]['users_id']); $cs_users[$run]['nick'] = cs_user($cs_users[$run]['users_id'], $cs_users[$run]['users_nick'], $cs_users[$run]['users_active']); $content = cs_secure($cs_users[$run]['users_place']); $hidden = explode(',', $cs_users[$run]['users_hidden']); if (in_array('users_place', $hidden)) { $content = ($account['access_users'] > 4 or $cs_users[$run]['users_id'] == $account['users_id']) ? cs_html_italic(1) . $content . cs_html_italic(0) : ''; } $cs_users[$run]['place'] = $content; $cs_users[$run]['laston'] = cs_date('unix', $cs_users[$run]['users_laston']); $cs_users[$run]['page'] = cs_userstatus($cs_users[$run]['users_laston'], $cs_users[$run]['users_invisible']); } $data['users'] = $cs_users; echo cs_subtemplate(__FILE__, $data, 'users', 'list');
//members $select = 'mem.members_admin AS members_admin, mem.members_task AS members_task, mem.members_since AS members_since, '; $select .= 'mem.users_id AS users_id, usr.users_nick AS users_nick, usr.users_country AS users_country, '; $select .= 'usr.users_name AS users_name, usr.users_surname AS users_surname, usr.users_sex AS users_sex, '; $select .= 'usr.users_picture AS users_picture, usr.users_active AS users_active, usr.users_delete AS users_delete, usr.users_hidden AS users_hidden, '; $select .= 'usr.users_laston AS users_laston, usr.users_invisible AS users_invisible'; $from = 'members mem INNER JOIN {pre}_users usr ON mem.users_id = usr.users_id '; $where = "mem.squads_id='" . $squads_id . "'"; $order = 'mem.members_order ASC, usr.users_nick ASC'; $data['members'] = cs_sql_select(__FILE__, $from, $select, $where, $order, 0, 0, 0); $data['squad']['members'] = count($data['members']); for ($run = 0; $run < $data['squad']['members']; $run++) { $data['members'][$run]['countrypath'] = 'symbols/countries/' . $data['members'][$run]['users_country'] . '.png'; $data['members'][$run]['country'] = $cs_country[$data['members'][$run]['users_country']]; $data['members'][$run]['members_since'] = empty($data['members'][$run]['members_since']) ? '-' : cs_date('date', $data['members'][$run]['members_since']); $data['members'][$run]['page'] = cs_userstatus($data['members'][$run]['users_laston'], $data['members'][$run]['users_invisible']); $users_nick = empty($data['members'][$run]['members_admin']) ? cs_secure($data['members'][$run]['users_nick']) : cs_html_big(1) . cs_secure($data['members'][$run]['users_nick']) . cs_html_big(0); $nick = $data['squad']['clans_tagpos'] == 1 ? $data['squad']['clans_tag'] . ' ' . $users_nick : $users_nick . ' ' . $data['squad']['clans_tag']; $data['members'][$run]['users_url'] = cs_user($data['members'][$run]['users_id'], $data['members'][$run]['users_nick'], $data['members'][$run]['users_active'], $data['members'][$run]['users_delete']); } //ranks $data['if']['rank'] = 0; if (!empty($account['access_ranks'])) { $cells = 'ranks_id, ranks_name, ranks_url, ranks_img, ranks_code'; $ranks = cs_sql_select(__FILE__, 'ranks', $cells, "squads_id = '" . $squads_id . "'", 'ranks_name', 0, 5); $ranks_loop = count($ranks); $data['if']['rank'] = empty($ranks_loop) ? FALSE : TRUE; for ($run = 0; $run < $ranks_loop; $run++) { $ranks[$run]['name'] = cs_secure($ranks[$run]['ranks_name']); $ranks[$run]['picture'] = ''; if (!empty($ranks[$run]['ranks_url']) and $ranks[$run]['ranks_img'] != 'http://') {
} elseif (file_exists('uploads/board/files/' . $file)) { $file_file = filesize('uploads/board/files/' . $file); $data['files'][$run]['file'] = cs_filetype($ext) . ' ' . cs_html_link($cs_main['php_self']['dirname'] . 'mods/board/attachment.php?id=' . $file, $file, 1) . ' (' . cs_filesize($file_file) . ' - ' . $cs_thread_files[$run]['boardfiles_downloaded'] . ' ' . $cs_lang['times'] . ' )'; } else { $data['files'][$run]['file'] = $cs_lang['no_att_file']; } } } } //Files Ende $data['thread_desc']['signature'] = getUserSignature($data['thread']['users_signature']); if (!empty($data['thread']['threads_edit'])) { $data['thread_desc']['checkedit'] = checkLastEdit($data['thread']['threads_edit'], $cs_lang); } //board_safemode($data['thread']['users_nick'], $data['thread']['threads_time'], $options); $data['thread_desc']['laston'] = cs_userstatus($data['thread']['users_laston'], $data['thread']['users_invisible'], 1); //echo cs_html_hr('100%'); $data['thread_desc']['users_icons'] = getUserIcons($cs_lang, $data['thread']['users_id'], $data['thread']['users_nick'], $data['thread']['users_hidden'], $data['thread']['users_email'], $data['thread']['users_icq'], $data['thread']['users_jabber'], $data['thread']['users_url'], $data['thread']['users_skype']); $data['thread_desc']['remove'] = ''; $data['thread_desc']['edit'] = ''; $data['thread_desc']['quote'] = ''; $data['thread_desc']['report'] = ''; if (!empty($account['users_id'])) { $img_report = cs_icon('special_paste', 16, $cs_lang['report']); $data['thread_desc']['report'] = cs_link($img_report, $mod, 'report', 'tid=' . $data['thread']['threads_id'], 0, $cs_lang['report']); $img_quote = cs_icon('xchat', 16, $cs_lang['quote']); $data['thread_desc']['quote'] = cs_link($img_quote, 'board', 'com_create', 'id=' . $id . '&quote=t-' . $data['thread']['threads_id'], 0, $cs_lang['quote']); } if ($userid == $account['users_id'] or $account['access_comments'] >= 4 or !empty($thread_mods['boardmods_edit'])) { $img_edit = cs_icon('edit', 16, $cs_lang['edit']); $data['thread_desc']['edit'] = cs_link($img_edit, $mod, 'thread_edit', 'id=' . $data['thread']['threads_id'], 0, $cs_lang['edit']);
function cs_comments_edit($mod, $action, $com_id, $mod_name, $more = 'id') { $cs_lang = cs_translate('comments'); global $account; settype($com_id, 'integer'); $data['if']['guest'] = FALSE; $guestnick = ''; $cells = 'users_id, comments_text, comments_time, comments_fid, comments_edit, comments_guestnick'; $cs_comments = cs_sql_select(__FILE__, 'comments', $cells, "comments_id = " . (int) $com_id); $com_fid = $cs_comments['comments_fid']; if ($account['access_comments'] >= 4 or $account['users_id'] == $cs_comments['users_id']) { $data['head']['mod'] = $mod_name; $data['if']['preview'] = false; if (isset($_POST['submit']) or isset($_POST['preview'])) { $cs_comments['comments_text'] = $_POST['comments_text']; $error = ''; if (empty($cs_comments['users_id'])) { $guestnick = $_POST['comments_guestnick']; if (empty($guestnick) and empty($cs_comments['users_id'])) { $error .= $cs_lang['no_guestnick'] . cs_html_br(1); } else { $op_users = cs_sql_option(__FILE__, 'users'); $nick2 = str_replace(' ', '', $guestnick); $nickchars = strlen($nick2); if ($nickchars < $op_users['min_letters']) { $error .= sprintf($cs_lang['short_guestnick'], $op_users['min_letters']) . cs_html_br(1); } $search_nick = cs_sql_count(__FILE__, 'users', "users_nick = '" . cs_sql_escape($guestnick) . "'"); if (!empty($search_nick)) { $error .= $cs_lang['nick_exists'] . cs_html_br(1); } } } if (empty($cs_comments['comments_text'])) { $error .= $cs_lang['no_text'] . cs_html_br(1); } } if (!isset($_POST['submit']) and !isset($_POST['preview'])) { $data['head']['body'] = $cs_lang['body_com_edit']; } elseif (!empty($error)) { $data['head']['body'] = $error; } elseif (isset($_POST['preview'])) { $data['head']['body'] = $cs_lang['preview']; } if (isset($_POST['preview']) and empty($error)) { $data['if']['preview'] = true; $userid = $account['users_id']; $select = 'users_nick, users_laston, users_place, users_country, users_active, users_invisible, users_delete'; $cs_user = cs_sql_select(__FILE__, 'users', $select, "users_id = " . (int) $userid); if (empty($cs_comments['users_id'])) { $data['if']['guest_prev'] = TRUE; $data['if']['user_prev'] = FALSE; $data['prev']['guestnick'] = cs_secure($guestnick); } else { $data['if']['guest_prev'] = FALSE; $data['if']['user_prev'] = TRUE; $user = cs_secure($cs_user['users_nick']); $url = 'symbols/countries/' . $cs_user['users_country'] . '.png'; $data['prev']['flag'] = cs_html_img($url, 11, 16); $data['prev']['user'] = cs_user($userid, $cs_user['users_nick'], $cs_user['users_active'], $cs_user['users_delete']); $data['prev']['status'] = cs_userstatus($cs_user['users_laston'], $cs_user['users_invisible']); $data['prev']['laston'] = empty($cs_user['users_invisible']) ? '--' : cs_date('unix', $cs_user['users_laston']); $place = empty($cs_user['users_place']) ? '-' : $cs_user['users_place']; $data['prev']['place'] = cs_secure($place); $who = "users_id = '" . $userid . "'"; $count_com[$userid] = cs_sql_count(__FILE__, 'comments', $who); $data['prev']['posts'] = $count_com[$userid]; } $opt = "comments_mod = '" . cs_sql_escape($mod) . "' AND comments_fid = " . (int) $com_fid; $count_com = cs_sql_count(__FILE__, 'comments', $opt); $data['prev']['count_com'] = $count_com + 1; $data['prev']['date'] = cs_date('unix', cs_time(), 1); $data['prev']['text'] = cs_secure($cs_comments['comments_text'], 1, 1); } if (!empty($error) or isset($_POST['preview']) or !isset($_POST['submit'])) { $data['com']['form_name'] = $mod . '_com_edit'; $data['com']['form_url'] = cs_url($mod, 'com_edit'); $data['com']['smileys'] = cs_abcode_smileys('comments_text'); $data['com']['abcode'] = cs_abcode_features('comments_text'); if ($account['access_comments'] >= 4 and empty($cs_comments['users_id'])) { $data['if']['guest'] = TRUE; $data['com']['guestnick'] = $cs_comments['comments_guestnick']; } $data['com']['text'] = $cs_comments['comments_text']; $data['com']['id'] = $com_id; echo cs_subtemplate(__FILE__, $data, 'comments', 'com_edit'); } else { $opt = "comments_mod = '" . cs_sql_escape($mod) . "' AND comments_fid = " . (int) $com_fid; $opt .= " AND comments_id <= '" . $com_id . "'"; $count_com = cs_sql_count(__FILE__, 'comments', $opt); $start = floor($count_com / $account['users_limit']) * $account['users_limit']; if (!empty($cs_comments['comments_edit'])) { $edits = explode('/', $cs_comments['comments_edit']); $edits_count = $edits[3] + 1; } else { $edits_count = 1; } $com_edits = $account['users_id'] . '/' . $account['users_nick'] . '/' . cs_time() . '/' . $edits_count; $com_cells = array('comments_text', 'comments_edit', 'comments_guestnick'); $com_save = array($cs_comments['comments_text'], $com_edits, $guestnick); cs_sql_update(__FILE__, 'comments', $com_cells, $com_save, $com_id); $more_action = $more . '=' . $com_fid . '&start=' . $start . '#com' . $count_com; cs_redirect($cs_lang['changes_done'], $mod, $action, $more_action); } } else { cs_redirect('', 'errors', '403'); } }
$select = 'mem.members_task AS members_task, mem.members_since AS members_since, mem.members_admin AS members_admin, mem.users_id AS users_id, usr.users_nick AS users_nick, usr.users_delete AS users_delete, usr.users_country AS users_country, usr.users_laston AS users_laston, usr.users_name AS users_name, usr.users_surname AS users_surname, usr.users_active AS users_active, usr.users_invisible AS users_invisible'; $from = 'members mem INNER JOIN {pre}_users usr ON mem.users_id = usr.users_id '; $where = "mem.squads_id='" . $cs_squads[$sq_run]['squads_id'] . "'"; $order = 'mem.members_order ASC, usr.users_nick ASC'; $cs_members = cs_sql_select(__FILE__, $from, $select, $where, $order, 0, 0); $members_loop = count($cs_members); $data['squads'][$sq_run]['membercount'] = $members_loop . ' ' . $cs_lang['members']; $data['squads'][$sq_run]['gameicon'] = empty($cs_squads[$sq_run]['games_id']) ? '' : cs_html_img('uploads/games/' . $cs_squads[$sq_run]['games_id'] . '.gif'); if (empty($cs_squads[$sq_run]['squads_text'])) { $data['squads'][$sq_run]['if']['text'] = false; } else { $data['squads'][$sq_run]['if']['text'] = 1; $data['squads'][$sq_run]['squads_text'] = cs_secure($cs_squads[$sq_run]['squads_text'], 1, 1); } $data['squads'][$sq_run]['name'] = cs_secure($cs_squads[$sq_run]['squads_name']); $data['squads'][$sq_run]['squads_picture'] = cs_html_img('uploads/squads/' . $cs_squads[$sq_run]['squads_picture']); $data['squads'][$sq_run]['members'] = !empty($cs_members) ? $cs_members : array(); for ($run = 0; $run < $members_loop; $run++) { $url = 'symbols/countries/' . $cs_members[$run]['users_country'] . '.png'; $data['squads'][$sq_run]['members'][$run]['country'] = cs_html_img($url, 11, 16); $data['squads'][$sq_run]['members'][$run]['nick'] = $cs_squads[$sq_run]['clans_tagpos'] == 1 ? $cs_squads[$sq_run]['clans_tag'] . ' ' : ''; $data['squads'][$sq_run]['members'][$run]['nick'] .= cs_user($cs_members[$run]['users_id'], $cs_members[$run]['users_nick'], $cs_members[$run]['users_active'], $cs_members[$run]['users_delete']); $data['squads'][$sq_run]['members'][$run]['nick'] .= $cs_squads[$sq_run]['clans_tagpos'] == 2 ? ' ' . $cs_squads[$sq_run]['clans_tag'] : ''; $data['squads'][$sq_run]['members'][$run]['task'] = cs_secure($cs_members[$run]['members_task']); $data['squads'][$sq_run]['members'][$run]['since'] = empty($cs_members[$run]['members_since']) ? '-' : cs_date('date', $cs_members[$run]['members_since']); $data['squads'][$sq_run]['members'][$run]['status'] = cs_userstatus($cs_members[$run]['users_laston'], $cs_members[$run]['users_invisible']); $data['squads'][$sq_run]['members'][$run]['users_name'] = empty($data['squads'][$sq_run]['members'][$run]['users_name']) ? '' : $data['squads'][$sq_run]['members'][$run]['users_name']; $data['squads'][$sq_run]['members'][$run]['users_surname'] = empty($data['squads'][$sq_run]['members'][$run]['users_surname']) ? '' : $data['squads'][$sq_run]['members'][$run]['users_surname']; } } echo cs_subtemplate(__FILE__, $data, 'members', 'list');