/** * Init Module * * @return void */ public function initSection() { switch ($_GET['message']) { case "isClosed": $GLOBALS['result_message'] = adminShowMessage($this->lang->words['EWFinancial']['Invoices']['ManageInvoices']['Messages']['IsClosed'], 2); break; case "deleted": $GLOBALS['result_message'] = adminShowMessage($this->lang->words['EWFinancial']['Invoices']['ManageInvoices']['Messages']['Deleted'], 3); break; } $GLOBALS['all_invoices'] = array(); $find_invoices = $this->DB->Query("SELECT Id, Document, Status, StartDate, [Value], CoinQuantity FROM dbo.CTM_Invoices ORDER BY Id DESC, Status ASC"); if ($this->DB->CountRows($find_invoices) > 0) { while ($all_invoices = $this->DB->FetchObject($find_invoices)) { $GLOBALS['all_invoices'][$all_invoices->Id] = array("document" => $all_invoices->Document, "quantity" => number_format($all_invoices->CoinQuantity, 0, false, ".") . " " . COIN_NAME_1, "value" => CTM_Text::MoneyFormat(MONEY_SYMBOL, $all_invoices->Value), "date" => date("d/m/Y - h:i a", $all_invoices->StartDate), "status" => $all_invoices->Status); } } $this->output->setContent("invoices_manageInvoices"); }
/** * Send Mail * * @return boolean */ public function SendMail() { $this->WriteDebug("Start Mailer"); if ($this->loadCheckVars() == false) { $this->FinishCommand(); return false; } if ($this->SendMethod == 1) { if ($this->loadSMTPData() == false) { $this->FinishCommand(); return false; } $this->PHPMailer->IsSMTP(); $this->PHPMailer->Host = $this->SMTPHost; $this->PHPMailer->Port = $this->SMTPPort; $this->PHPMailer->Username = $this->SMTPUser; $this->PHPMailer->Password = $this->SMTPPass; $this->PHPMailer->SMTPKeepAlive = TRUE; } else { $this->PHPMailer->IsMail(); } $this->PHPMailer->SetFrom($this->FromMail[0], CTM_Text::UTF8Text($this->FromMail[1])); $this->WriteDebug("Mailer method: " . ($this->SendMethod == 1 ? "SMTP" : "PHP mail()")); $this->WriteDebug("E-Mail subject: " . (!$this->vars['subject'] ? "NULL" : $this->PHPMailer->Subject)); $this->WriteDebug("E-Mail from: " . ($this->FromMail[1] ? CTM_Text::UTF8Text($this->FromMail[1]) . " <" . $this->FromMail[0] . ">" : $this->FromMail[0])); foreach ($this->data['address'] as $value) { $this->WriteDebug("Send e-mail to: " . ($value[1] ? $value[1] . " <" . $value[0] . ">" : $value[0])); } if (!$this->PHPMailer->Send()) { $this->WriteDebug($this->PHPMailer->ErrorInfo); $this->FinishCommand(); return false; } else { $this->WriteDebug("E-Mail(s) sended with success"); $this->FinishCommand(); return true; } }
/** * Init Module * * @return void */ public function initSection() { $this->DB->Arguments($_GET['id']); $find_invoice_q = $this->DB->Query("SELECT * FROM dbo.CTM_Invoices WHERE Id = %d"); if ($this->DB->CountRows($find_ticket_q) > 0) { $invoice = $this->DB->FetchObject($find_invoice_q); define("EDIT_INVOICE_ACCESS", $this->CheckPermissionItem("edit_ticket")); define("DELETE_INVOICE_ACCESS", $this->CheckPermissionItem("delete_ticket")); switch ($_GET['cmd']) { case "approve": if ($invoice->Status != 0 && $invoice->Status != 1) { exit(adminShowMessage($this->lang->words['EWFinancial']['Invoices']['ViewInvoice']['Messages']['IsClosed'], 2)); } else { $quantity = (int) $_GET['quantity']; if ($quantity < 0) { exit(adminShowMessage($this->lang->words['EWFinancial']['Invoices']['ViewInvoice']['ApproveInvoice']['Messages']['SetNumber'], 2)); } else { $this->DB->Arguments($invoice->Account, 1, $quantity, intval(COIN_USE_CACHE)); $this->DB->Query("EXEC dbo.CTM_PlusAccountCoin '%s', %d, %d, %d"); $this->DB->Arguments($_GET['id']); $this->DB->ForceDataType("Status", "integer"); $this->DB->Update("CTM_Invoices", array("Status" => 2), "Id = %d"); exit("<script>approveThisInvoice('" . $quantity . "', '" . $invoice->Account . "');"); } } break; case "reject": if ($invoice->Status != 0 && $invoice->Status != 1) { exit(adminShowMessage($this->lang->words['EWFinancial']['Invoices']['ViewInvoice']['Messages']['IsClosed'], 2)); } else { $this->DB->Arguments($_GET['id']); $this->DB->ForceDataType("Status", "integer"); $this->DB->Update("CTM_Invoices", array("Status" => 3), "Id = %d"); exit("<script>rejectThisInvoice();"); } break; case "edit": if (EDIT_INVOICE_ACCESS == TRUE) { if ($_POST['Quantity'] == NULL || $_POST['Value'] == NULL || $_POST['Status'] == NULL) { exit(adminShowMessage($this->lang->words['EWFinancial']['Invoices']['ViewInvoice']['EditInvoice']['Messages']['FieldsVoid'], 1)); } elseif (!is_numeric($_POST['Quantity'])) { exit(adminShowMessage($this->lang->words['EWFinancial']['Invoices']['ViewInvoice']['EditInvoice']['Messages']['InvalidQuantity'], 2)); } elseif ($_POST['Status'] != 0 && $_POST['Status'] != 1 && $_POST['Status'] != 2 && $_POST['Status'] != 3 && $_POST['Status'] != 4) { exit(adminShowMessage($this->lang->words['EWFinancial']['Invoices']['ViewInvoice']['EditInvoice']['Messages']['InvalidStatus'], 2)); } else { $update = array("CoinQuantity" => $_POST['Quantity'], "Value" => $_POST['Value'], "Status" => $_POST['Status']); $this->DB->ForceDataType("Quantity", "integer"); $this->DB->ForceDataType("Value", "string"); $this->DB->ForceDataType("Status", "integer"); $this->DB->Arguments($_GET['id']); $this->DB->Update("CTM_Invoices", $update, "Id = %d"); switch ($_POST['Status']) { case 0: $status = "<span style='color: #C00;'>" . $this->lang->words['EWFinancial']['Invoices']['Status']['Pending'] . "</span>"; break; case 1: $status = "<span style='color: blue;'>" . $this->lang->words['EWFinancial']['Invoices']['Status']['InProgress'] . "</span>"; break; case 2: $status = "<span style='color: green;'>" . $this->lang->words['EWFinancial']['Invoices']['Status']['Paid'] . "</span>"; break; case 3: $status = "<span style='color: red;'>" . $this->lang->words['EWFinancial']['Invoices']['Status']['Rejected'] . "</span>"; break; case 4: $status = "<span style='color: #666;'>" . $this->lang->words['EWFinancial']['Invoices']['Status']['Canceled'] . "</span>"; break; } exit("<script>completeEditInvoice('" . $_POST['Quantity'] . "', '" . str_replace("'", "\\'", $_POST['Value']) . "', '" . str_replace("'", "\\'", $status) . "', " . $_POST['Status'] . ");</script>"); } } break; case "reopen": if ($invoice->Status == 0) { exit(adminShowMessage($this->lang->words['EWFinancial']['Invoices']['ViewInvoice']['Messages']['IsOpened'], 2)); } else { $this->DB->Arguments($_GET['id']); $this->DB->ForceDataType("Status", "integer"); $this->DB->Update("CTM_Invoices", array("Status" => 0), "Id = %d"); exit("<script>reopenThisInvoice();"); } break; case "delete": if (DELETE_INVOICE_ACCESS) { $query = "DELETE FROM dbo.CTM_Invoices WHERE Id = %d;\n"; $query .= "DELETE FROM dbo.CTM_Payments WHERE InvoiceID = %d;"; $this->DB->Arguments($_GET['id'], $_GET['id']); $this->DB->Query($query); if (!empty($ticket->Annex)) { if (file_exists("../" . $this->settings['WEBDATA']['UPLOADS']['DIRECTORY']['PAYMENT_ANNEX'] . $ticket->Annex)) { unlink("../" . $this->settings['WEBDATA']['UPLOADS']['DIRECTORY']['PAYMENT_ANNEX'] . $ticket->Annex); } } exit("<script>location.href='" . $this->acp_vars['acp_url'] . "?app=effectweb&module=financial§ion=invoices&message=deleted';</script>"); } break; } $GLOBALS['view_invoice'] = array("id" => $_GET['id'], "method_key" => $invoice->PaymentMethod, "document" => $invoice->Document, "start_date" => date("d/m/Y - h:i a", $invoice->StartDate), "quantity" => number_format($invoice->CoinQuantity, 0, false, "."), "value" => CTM_Text::MoneyFormat(MONEY_SYMBOL, $invoice->Value), "account" => $invoice->Account, "status" => $invoice->Status, "canceled" => $invoice->Status == 4); if ($invoice->Status > 0 && $invoice->PaymentMethod != "none") { if (!($payment_data = unserialize($invoice->PaymentData))) { $payment_data = array(); } switch ($invoice->PaymentMethod) { case "bank": $method_name = $this->lang->words['EWFinancial']['Invoices']['Methods']['Bank']; $this->DB->Arguments($invoice->Id); $this->DB->Query("SELECT * FROM dbo.CTM_Payments WHERE InvoiceId = %d", $find_payment); if ($this->DB->CountRows($find_payment) > 0) { $payment = $this->DB->FetchObject($find_payment); switch ($payment->Status) { case 0: $status = "<span style='color: blue;'>" . $this->lang->words['EWFinancial']['Invoices']['PaymentStatus']['Opened'] . "</span>"; break; case 1: $status = "<span style='color: green;'>" . $this->lang->words['EWFinancial']['Invoices']['PaymentStatus']['Confirmed'] . "</span>"; break; case 2: $status = "<span style='color: red;'>" . $this->lang->words['EWFinancial']['Invoices']['PaymentStatus']['Rejected'] . "</span>"; break; } if (!($_payment_data = unserialize($payment->ConfirmData))) { $_payment_data = array(); } $GLOBALS['view_invoice']['bank_payment'] = array("method" => htmlEncode($this->settings['PAYMENTMETHOD']['FORM'][$payment->Method][0]), "confirm_date" => date("d/m/Y - h:i a", $payment->ConfirmDate), "status" => $status, "quantity" => number_format($payment->Quantity, 0, false, ".") . " " . COIN_NAME_1, "date" => $payment->Date, "hour" => $payment->Hour, "value" => $payment->Value, "local" => utf8_decode($payment->Local), "message" => htmlDecode($payment->Message), "payment_data" => $_payment_data); if (strlen($payment->Annex) > 1) { $GLOBALS['view_invoice']['bank_payment']['annex'] = array("link" => $this->settings['WEBDATA']['UPLOADS']['DIRECTORY']['PAYMENT_ANNEX'] . $payment->Annex, "name" => $payment->Annex); } } break; } $GLOBALS['view_invoice']['payment_method'] = array("method" => $method_name, "data" => $payment_data, "key" => $invoice->PaymentMethod); } if ($noOpenCache == false) { $this->output->setContent("invoices_viewInvoice"); } } }
/** * Ajax Check Fields * * @return void */ private function loadAjaxCheckFields() { if ($_GET['do'] == "ajaxCheck") { switch ($_GET['command']) { case "login": if (empty($_GET['username'])) { setAjaxField($this->lang->words['Register']['Register']['AjaxCheck']['Void'], array("Login", "LoginResult"), 0); } elseif (strlen(urldecode($_GET['username'])) < 4) { setAjaxField($this->lang->words['Register']['Register']['AjaxCheck']['MinLogin'], array("Login", "LoginResult"), 1); } elseif (strlen(urldecode($_GET['username'])) > 10) { setAjaxField($this->lang->words['Register']['Register']['AjaxCheck']['MaxLogin'], array("Login", "LoginResult"), 1); } else { $this->DB->Arguments(urldecode($_GET['username'])); $this->DB->Query("SELECT 1 FROM " . MUACC_CORE . ".dbo.MEMB_INFO WHERE LOWER(memb___id) = '%s'"); if ($this->DB->CountRows() > 0) { setAjaxField($this->lang->words['Register']['Register']['AjaxCheck']['LoginExists'], array("Login", "LoginResult"), 1); } else { setAjaxField($this->lang->words['Register']['Register']['AjaxCheck']['LoginValid'], array("Login", "LoginResult"), 2); } } break; case "mail": if (empty($_GET['email'])) { setAjaxField($this->lang->words['Register']['Register']['AjaxCheck']['Void'], array("Mail", "MailResult"), 0); } elseif (!CTM_Text::checkMail(urldecode($_GET['email']))) { setAjaxField($this->lang->words['Register']['Register']['AjaxCheck']['MailInvalid'], array("Mail", "MailResult"), 1); } else { $this->DB->Arguments(urldecode($_GET['email'])); $this->DB->Query("SELECT 1 FROM " . MUACC_CORE . ".dbo.MEMB_INFO WHERE LOWER(mail_addr) = '%s'"); if ($this->DB->CountRows() > 0) { setAjaxField($this->lang->words['Register']['Register']['AjaxCheck']['MailExists'], array("Mail", "MailResult"), 1); } else { setAjaxField($this->lang->words['Register']['Register']['AjaxCheck']['MailValid'], array("Mail", "MailResult"), 2); } } break; } exit; } }
/** * Option: Change Mail * Change the e-mail from account * * @return void */ public function ChangeMail() { switch ($_GET['do']) { case "send_code": $currentId = $this->DB->GetCurrentId("CTM_ChangeMail") + 1; $dechex = create_function("\$integer", "return str_pad(dechex(\$integer >= 255 ? 255 : \$integer), 2, 0, STR_PAD_LEFT);"); $confirmCode = $dechex($currentId); $confirmCode .= ":" . $dechex(0xbb - strlen($this->userData['memb___id']) + mt_rand(0, 50)); $confirmCode .= ":" . $dechex(strlen($this->userData['mail_addr']) + mt_rand(0, 50)); $confirmCode .= ":" . $dechex(mt_rand(0, 70)); $confirmCode .= ":" . $dechex(mt_rand(71, 170)); $confirmCode .= ":" . $dechex(0xbb / intval(date("d")) + intval(date("H")) + intval(date("m")) + intval(date("s")) + mt_rand(0, 50)); $confirmCode .= ":" . $dechex(0xbb / intval(date("m")) + intval(date("H")) + intval(date("m")) + intval(date("s")) + mt_rand(0, 50)); $confirmCode .= ":" . $dechex(intval(date("Y")) / 0xbb + intval(date("H")) + intval(date("m")) + intval(date("s")) + mt_rand(0, 50)); $confirmCode = strtoupper($confirmCode); $link = gerateFullLink("?/userpanel/changeMail"); $this->DB->Insert("CTM_ChangeMail", array("Account" => $this->userData['info']['memb___id'], "ConfirmCode" => $confirmCode, "Expiration" => strtotime("+ 24 hours"))); $this->email->arguments = array("NAME" => htmlEncode($this->userData['info']['memb_name']), "CONFIRM_CODE" => $confirmCode, "SYSTEM_LINK" => $link); $this->email->LoadTemplate("ChangeMemberMail"); $this->email->GetMailContent($mail); $this->mailer->AddAddress($this->userData['info']['mail_addr'], $this->userData['info']['memb_name']); $this->mailer->SetSubject($mail['subject']); $this->mailer->SetBody($mail['content']); if ($this->mailer->SendMail() == true) { $this->WriteLog(array("option" => "Change Mail", "data" => array("Process: Send Confirm Code", "Result: Success"))); return setResult(showMessage($this->lang->words['UserPanel']['ChangeMail']['Messages']['SendCode']['Success'], 3)); } else { $this->WriteLog(array("option" => "Change Mail", "data" => array("Process: Send Confirm Code", "Result: Error"))); $this->lang->setArguments("UserPanel,ChangeMail,Messages,Error_SendMail", CoreVariables::ErrorsCode()->SendMailError); return setResult(showMessage($this->lang->words['UserPanel']['ChangeMail']['Messages']['SendCode']['Error_SendMail'], 2)); } break; case "process": if (empty($_POST['NewMail']) || empty($_POST['ConfirmCode'])) { return setResult(showMessage($this->lang->words['UserPanel']['ChangeMail']['Messages']['Process']['Void'], 1)); } if (!CTM_Text::CheckMail($_POST['NewMail'])) { return setResult(showMessage($this->lang->words['UserPanel']['ChangeMail']['Messages']['Process']['MailInvalid'], 2)); } $this->DB->Arguments($_POST['ConfirmCode'], USER_ACCOUNT); $findConfirmCodeQ = $this->DB->Select("Expiration", "CTM_ChangeMail", "ConfirmCode = '%s' AND Account = '%s'"); if ($this->DB->CountRows($findConfirmCodeQ) < 1) { return setResult(showMessage($this->lang->words['UserPanel']['ChangeMail']['Messages']['Process']['CodeInvalid'], 2)); } $findConfirmCode = $this->DB->FetchRow($findConfirmCodeQ); if (time() >= $findConfirmCode[0]) { return setResult(showMessage($this->lang->words['UserPanel']['ChangeMail']['Messages']['Process']['CodeExpired'], 2)); } $this->MuLib('Member')->UpdateAccount(USER_ACCOUNT, array("info" => array("mail_addr" => $_POST['NewMail']))); $this->DB->Arguments(USER_ACCOUNT, $_POST['ConfirmCode']); $this->DB->Delete("CTM_ChangeMail", "Account = '%s' AND ConfirmCode = '%s'"); $this->WriteLog(array("option" => "Change Mail", "data" => array("Process: Change Mail", "New Mail: " . $_POST['NewMail']))); return setResult(showMessage($this->lang->words['UserPanel']['ChangeMail']['Messages']['Process']['Success'], 3)); break; default: if (loadIsAjax() == true && LOADING_PAGE_AJAX == false) { exit; } break; } }
/** * Option: Invoices * Invoices of payments * * @return void */ public function Invoices() { switch ($_GET['section'] ? $_GET['section'] : $this->URLData[2]) { case "list": $this->DB->Arguments(USER_ACCOUNT); $this->DB->Query("SELECT Id, Document, Status, StartDate, [Value], CoinQuantity FROM dbo.CTM_Invoices WHERE Account = '%s' ORDER BY Id DESC", $all_invoices_q); $invoices_opened = array(); $invoices_finalized = array(); $invoices_canceled = array(); if ($this->DB->CountRows($all_invoices_q) > 0) { while ($all_invoices = $this->DB->FetchObject($all_invoices_q)) { switch ($all_invoices->Status) { case 0: $var_name = "invoices_opened"; $status = "<span style='color: #C00;'>" . $this->lang->words['UserPanel']['Invoices']['Status']['Pending'] . "</span>"; break; case 1: $var_name = "invoices_opened"; $status = "<span style='color: blue;'>" . $this->lang->words['UserPanel']['Invoices']['Status']['InProgress'] . "</span>"; break; case 2: $var_name = "invoices_finalized"; $status = "<span style='color: green;'>" . $this->lang->words['UserPanel']['Invoices']['Status']['Paid'] . "</span>"; break; case 3: $var_name = "invoices_finalized"; $status = "<span style='color: red;'>" . $this->lang->words['UserPanel']['Invoices']['Status']['Rejected'] . "</span>"; break; case 4: $var_name = "invoices_canceled"; $status = "<span style='color: #CCC;'>" . $this->lang->words['UserPanel']['Invoices']['Status']['Canceled'] . "</span>"; break; } ${$var_name}[$all_invoices->Id] = array("document" => $all_invoices->Document, "quantity" => number_format($all_invoices->CoinQuantity, 0, false, ".") . " " . COIN_NAME_1, "value" => CTM_Text::MoneyFormat(MONEY_SYMBOL, $all_invoices->Value), "date" => date("d/m/Y - h:i a", $all_invoices->StartDate), "status" => $status); } } $GLOBALS['userpanel']['invoices']['auto_load_invoice'] = $_GET['showinvoice'] ? $_GET['showinvoice'] : $this->URLData[3]; $GLOBALS['userpanel']['invoices']['list_invoices'] = array("opened" => $invoices_opened, "finalized" => $invoices_finalized, "canceled" => $invoices_canceled); unset($invoices_opened); unset($invoices_finalized); unset($invoices_canceled); return $this->LoadPage("option_invoices_list", true); break; case "show": $invoice_id = intval($_GET['id'] ? $_GET['id'] : $this->URLData[3]); $section = $_GET['do'] ? $_GET['do'] : $this->URLData[4]; $this->DB->Arguments($invoice_id, USER_ACCOUNT); $this->DB->Query("SELECT * FROM dbo.CTM_Invoices WHERE Id = %d AND Account = '%s'", $get_invoice); if ($this->DB->CountRows($get_invoice) < 1) { return exit(showMessage(sprintf($this->lang->words['UserPanel']['Invoices']['ErrorMessage'], CoreVariables::ErrorsCode()->PaymentNotFound), 2)); } $invoice = $this->DB->FetchObject($get_invoice); if ($section) { switch ($section) { case "payment": $this->DB->Arguments($invoice_id, USER_ACCOUNT); $this->DB->Query("SELECT * FROM dbo.CTM_Payments WHERE InvoiceId = %d AND Account = '%s'", $get_payment); if ($this->DB->CountRows($get_payment) < 1) { if ($invoice->Status != 0 && $invoice->Status != 3) { exit(showMessage($this->lang->words['UserPanel']['Invoices']['ShowInvoice']['Messages']['InvoiceInProgress'], 0)); } $method = strlen($_GET['method']) > 0 ? $_GET['method'] : $this->URLData[5]; if (strlen($method) < 1 || !array_key_exists($method, $this->settings['PAYMENTMETHOD']['FORM'])) { $GLOBALS['userpanel']['payments']['confirm_payment']['invoice_id'] = $invoice_id; if ($_GET['write'] == true) { exit(showMessage($this->lang->words['UserPanel']['Payments']['ConfirmPayment']['Messages']['SelectMethod'], 2)); } return $this->LoadPage("option_payments_confirm", true); } else { $error = $this->LoadClass("Error", "class_sources"); $method = intval($method); if ($_GET['write'] == true) { if (empty($_POST['Date'])) { $error->addError($this->lang->words['UserPanel']['Payments']['ConfirmPayment']['Messages']['DateVoid'], 0); } if (empty($_POST['Hour'])) { $error->addError($this->lang->words['UserPanel']['Payments']['ConfirmPayment']['Messages']['HourVoid'], 0); } if (empty($_POST['Value'])) { $error->addError($this->lang->words['UserPanel']['Payments']['ConfirmPayment']['Messages']['ValueVoid'], 0); } if (empty($_POST['Local'])) { $error->addError($this->lang->words['UserPanel']['Payments']['ConfirmPayment']['Messages']['LocalVoid'], 0); } foreach ($this->settings['PAYMENTMETHOD']['FORM'][$method][1] as $key => $value) { if (empty($_POST[$key])) { $error->addError(htmlEncode($value), 0); } } if ($error->count[0] > 0) { $_error = "<strong>" . $this->lang->words['UserPanel']['Payments']['ConfirmPayment']['Messages']['VoidMessage'] . "<strong><br />"; exit(showMessage($_error . "<br />" . $error->showError(0), 1)); } else { if ($_POST['u_sendFile'] == 1) { if ($_POST['u_ready'] == 1) { $name = str_pad($this->DB->GetCurrentId("CTM_Payments") + 1, 10, 0, STR_PAD_LEFT); $size = $this->settings['WEBDATA']['UPLOADS']['FILESIZE']['PAYMENT_ANNEX']; $dir = CTM_ROOT_PATH . $this->settings['WEBDATA']['UPLOADS']['DIRECTORY']['PAYMENT_ANNEX']; Uploadify::set("Filedata", $size, array("gif", "jpg", "jpeg", "png"), $name, $dir, $session); exit("<script>startUpload('{$name}', '{$session}');</script>"); } else { $data = unserialize(base64_decode($_POST['u_fileUploaded'])); $annex = $data['parsed_file_name']; if (!$data) { exit(showMessage($this->lang->words['UserPanel']['Payments']['ConfirmPayment']['Messages']['AnnexError'], 2)); } elseif ($data['error_no'] == 2) { $this->lang->setArguments("UserPanel,Payments,ConfirmPayment,Messages,ErrorFormat", "<b>JPEG</b>, <b>GIF</b>, <b>PNG</b>"); exit(showMessage($this->lang->words['UserPanel']['Payments']['ConfirmPayment']['Messages']['ErrorFormat'], 2)); } elseif ($data['error_no'] == 3) { $this->lang->setArguments("UserPanel,Payments,ConfirmPayment,Messages,ErrorSize", "<b>" . $data['max_file_size'] . "</b>"); exit(showMessage($this->lang->words['UserPanel']['Payments']['ConfirmPayment']['Messages']['ErrorSize'], 2)); } elseif ($data['error_no'] != 0) { exit(showMessage($this->lang->words['UserPanel']['Payments']['ConfirmPayment']['Messages']['AnnexError'], 2)); } } } $payment_data = array(); foreach ($this->settings['PAYMENTMETHOD']['FORM'][$method][1] as $key => $value) { $payment_data[$key] = utf8_encode($_POST[$key]); } $columns_insert = array("Account" => USER_ACCOUNT, "InvoiceId" => $invoice_id, "Status" => 0, "ConfirmDate" => time(), "Method" => $method, "Date" => $_POST['Date'], "Hour" => $_POST['Hour'], "Value" => $_POST['Value'], "Local" => utf8_encode($_POST['Local']), "ConfirmData" => serialize($payment_data), "Message" => htmlEncode(nl2br(strip_tags($_POST['Message']))), "Annex" => $annex); $this->DB->ForceDataType("InvoiceId", "integer"); $this->DB->ForceDataType("Status", "integer"); $this->DB->ForceDataType("ConfirmDate", "integer"); $this->DB->ForceDataType("Method", "integer"); $this->DB->ForceDataType("Message", empty($_POST['Message']) ? "null" : "string"); $this->DB->ForceDataType("Annex", empty($annex) ? "null" : "string"); $this->DB->Insert("CTM_Payments", $columns_insert); $this->DB->Arguments($invoice_id); $this->DB->ForceDataType("Status", "integer"); $this->DB->Update("CTM_Invoices", array("Status" => 1, "PaymentMethod" => "bank"), "Id = %d"); return exit(showMessage($this->lang->words['UserPanel']['Payments']['ConfirmPayment']['Messages']['Success'], 3)); } } $inputs = array(); foreach ($this->settings['PAYMENTMETHOD']['FORM'][$method][1] as $key => $value) { $inputs[$key] = htmlEncode($value); } $GLOBALS['userpanel']['payments']['confirm_payment'] = array("invoice_id" => $invoice_id, "method_name" => htmlEncode($this->settings['PAYMENTMETHOD']['FORM'][$method][0]), "method_id" => $method, "method_fields" => $inputs); return $this->LoadPage("option_payments_confirm_form", true); } } else { $payment = $this->DB->FetchObject($get_payment); switch ($payment->Status) { case 0: $status = "<span style='color: blue;'>" . $this->lang->words['UserPanel']['Payments']['Status']['Opened'] . "</span>"; break; case 1: $status = "<span style='color: green;'>" . $this->lang->words['UserPanel']['Payments']['Status']['Confirmed'] . "</span>"; break; case 2: $status = "<span style='color: red;'>" . $this->lang->words['UserPanel']['Payments']['Status']['Rejected'] . "</span>"; break; } if (!($payment_data = unserialize($payment->ConfirmData))) { $payment_data = array(); } $GLOBALS['userpanel']['payments']['show_payment'] = array("id" => $payment_id, "method" => htmlEncode($this->settings['PAYMENTMETHOD']['FORM'][$payment->Method][0]), "confirm_date" => date("d/m/Y - h:i a", $payment->ConfirmDate), "status" => $status, "quantity" => number_format($payment->Quantity, 0, false, ".") . " " . COIN_NAME_1, "date" => $payment->Date, "hour" => $payment->Hour, "value" => $payment->Value, "local" => utf8_decode($payment->Local), "message" => htmlDecode($payment->Message), "payment_data" => $payment_data); if (strlen($payment->Annex) > 1) { $GLOBALS['userpanel']['payments']['show_payment']['annex'] = array("link" => $this->settings['WEBDATA']['UPLOADS']['DIRECTORY']['PAYMENT_ANNEX'] . $payment->Annex, "name" => $payment->Annex); } return $this->LoadPage("option_payments_show", true); } break; } } switch ($invoice->Status) { case 0: $status = "<span style='color: #C00;'>" . $this->lang->words['UserPanel']['Invoices']['Status']['Pending'] . "</span>"; break; case 1: $status = "<span style='color: blue;'>" . $this->lang->words['UserPanel']['Invoices']['Status']['InProgress'] . "</span>"; break; case 2: $status = "<span style='color: green;'>" . $this->lang->words['UserPanel']['Invoices']['Status']['Paid'] . "</span>"; break; case 3: $status = "<span style='color: red;'>" . $this->lang->words['UserPanel']['Invoices']['Status']['Rejected'] . "</span>"; break; case 4: $status = "<span style='color: #CCC;'>" . $this->lang->words['UserPanel']['Invoices']['Status']['Canceled'] . "</span>"; break; } $GLOBALS['userpanel']['invoices']['show_invoice'] = array("id" => $invoice_id, "document" => $invoice->Document, "start_date" => date("d/m/Y - h:i a", $invoice->StartDate), "quantity" => number_format($invoice->CoinQuantity, 0, false, "."), "value" => CTM_Text::MoneyFormat(MONEY_SYMBOL, $invoice->Value), "status" => $status, "canceled" => $invoice->Status == 4); if ($invoice->Status > 0 && $invoice->PaymentMethod != "none") { if (!($payment_data = unserialize($invoice->PaymentData))) { $payment_data = array(); } switch ($invoice->PaymentMethod) { case "bank": $method_name = $this->lang->words['UserPanel']['Invoices']['Methods']['Bank']; break; } $GLOBALS['userpanel']['invoices']['show_invoice']['payment_method'] = array("method" => $method_name, "data" => $payment_data, "key" => $invoice->PaymentMethod); } $this->lang->setArguments("UserPanel,Invoices,ShowInvoice,Title", $invoice_id); return $this->LoadPage("option_invoices_show", true); break; case "open": if ($this->settings['USERPANEL']['FINANCIAL']['INVOICES']['LIMIT_OPENED'] > 0) { $this->DB->Arguments(USER_ACCOUNT); $this->DB->Query("SELECT 1 FROM dbo.CTM_Invoices WHERE Account = '%s' AND Status < 2", $count_invoices); if ($this->DB->CountRows($count_invoices) >= $this->settings['USERPANEL']['FINANCIAL']['INVOICES']['LIMIT_OPENED']) { $limit = $this->settings['USERPANEL']['FINANCIAL']['INVOICES']['LIMIT_OPENED']; exit(showMessage(sprintf($this->lang->words['UserPanel']['Invoices']['OpenInvoice']['Messages']['LimitReached'], $limit), 2)); } } if ($_GET['write'] == true) { if (empty($_POST['Quantity'])) { exit(showMessage($this->lang->words['UserPanel']['Invoices']['OpenInvoice']['Messages']['QuantityVoid'], 1)); } if (!is_numeric($_POST['Quantity'])) { exit(showMessage($this->lang->words['UserPanel']['Invoices']['OpenInvoice']['Messages']['QuantitySyntax'], 2)); } $_POST['Quantity'] = ltrim($_POST['Quantity'], 0); $money_value = COIN_PRICE * $_POST['Quantity']; if (strstr($money_value, ".")) { list($note, $coin) = explode(".", $money_value); if (strlen($coin) > 2) { $coin = substr($coin, 0, 2); } while ($coin % 5 != 0 && $coin > 0) { if ($coin < 5 && $coin > 0) { $coin = 5; } else { $coin++; } } if (strlen($coin) == 1) { $coin = "0" . $coin; } $final_money = $note . "." . $coin; } else { $final_money = $money_value . ".00"; } if ($_GET['confirm'] == true) { $insert_columns = array("Account" => USER_ACCOUNT, "StartDate" => time(), "EndDate" => 0, "Value" => $final_money, "CoinQuantity" => $_POST['Quantity'], "Status" => 0); $this->DB->Insert("CTM_Invoices", $insert_columns); $last_id = $this->DB->GetLastedId(); $this->DB->Update("CTM_Invoices", array("Document" => INVOICE_PREFIX . $last_id), "Id = " . $last_id); exit("<script>runOpenInvoice({$last_id});</script>"); } else { exit("<script>showConfirmMessage('" . CTM_Text::MoneyFormat(MONEY_SYMBOL, $final_money) . "');</script>"); } } $GLOBALS['default_value'] = str_replace(MONEY_SYMBOL . " ", NULL, CTM_Text::MoneyFormat(MONEY_SYMBOL, COIN_PRICE)); return $this->LoadPage("option_invoices_open", true); break; default: if ($_GET['showinvoice']) { $GLOBALS['userpanel']['invoices']['auto_load_invoice'] = $_GET['showinvoice']; } elseif (strstr($this->URLData[2], "showinvoice-")) { $GLOBALS['userpanel']['invoices']['auto_load_invoice'] = str_replace("showinvoice-", NULL, $this->URLData[2]); } break; } }
/** * Get Server Name * Get the real server name * * @param string GameServer * @return string */ public function GetServerName($GameServer) { $GameServer = !is_numeric($GameServer) ? $this->GetServerID($GameServer) : $GameServer; if (!array_key_exists($GameServer, $this->settings['SERVERLIST']['ROOM_LIST'])) { return $GameServer; } else { return CTM_Text::UTF8Text($this->settings['SERVERLIST']['ROOM_LIST'][$GameServer][1]); } }
/** * Send Global Message * Send a global message by the JoinServer * * @param string Message * @return void */ public function SendGlobalMessage($message) { if ($this->settings['JoinServer'] != "WZ") { return false; } if (!$this->started) { if (!$this->init()) { return false; } } if (strlen($message) > 34) { $message = substr($message, 0, 34); } $packet = $this->packetsGlobMsg['WZ'] . "0024000000"; $packet .= str_pad($this->loadConvertASCIIToHexa(CTM_Text::UTF8Text($message)), 68, 0, STR_PAD_RIGHT); $packet = $this->loadConvertHexaToASCII($packet . str_repeat("00", 26)); $this->socket->WritePack($packet); $this->socket->CloseSocket(); $this->started = false; return true; }
/** * Private: Manage Account * Manage a account from database * * @return void */ private function loadManageAccount() { if ($this->loadCheckAccount($_GET['username'], "login")) { $user_data = $this->MuLib('Member')->Load($_GET['username'] = urldecode($_GET['username'])); switch ($_GET['do']) { case "ban": if ($this->CheckPermissionItem("accounts_manageAccount_ban") == true) { if ($_GET['write'] == true) { if (empty($_POST['banReason']) || empty($_POST['banExpiration'])) { $GLOBALS['result_command'] = $this->lang->words['Members']['Accounts']['ManageAccount']['BanAccount']['Messages']['FieldsVoid']; $GLOBALS['result_command'] = adminShowMessage($GLOBALS['result_command'], 1); } else { $date = explode("/", $_POST['banExpiration']); if (count($date) != 3 || (strlen($date[0]) != 2 || strlen($date[1]) != 2 || strlen($date[2]) != 4)) { $GLOBALS['result_command'] = $this->lang->words['Members']['Accounts']['ManageAccount']['BanAccount']['Messages']['DateInvalid']; $GLOBALS['result_command'] = adminShowMessage($GLOBALS['result_command'], 2); } elseif ($user_data['info']['bloc_code'] == 1 && $user_data['info']['MemberStatus'] == 0) { $GLOBALS['result_command'] = $this->lang->words['Members']['Accounts']['ManageAccount']['BanAccount']['Messages']['AccountBanned']; $GLOBALS['result_command'] = adminShowMessage($GLOBALS['result_command'], 2); } else { $insert_columns = array("Responsible" => USER_ACCOUNT, "Account" => $_GET['username'], "Expiration" => $expiration = mktime(23, 59, 59, $date[0], $date[1], $date[2]), "Reason" => htmlEncode($_POST['banReason'])); $this->DB->Arguments($_GET['username']); $this->DB->Delete("CTM_AccountsBanneds", "Account = '%s'"); $this->DB->Arguments($_GET['username']); $this->DB->Update(MUACC_CORE . "@MEMB_INFO", array("bloc_code" => 1), "memb___id = '%s'"); $this->DB->Insert("CTM_AccountsBanneds", $insert_columns); $GLOBALS['result_command'] = $this->lang->words['Members']['Accounts']['ManageAccount']['BanAccount']['Messages']['Success']; $GLOBALS['result_command'] = adminShowMessage(sprintf($GLOBALS['result_command'], date("d/m/Y", $expiration)), 3); } } if (loadIsAjax() == true) { exit($GLOBALS['result_command']); } } $this->output->setContent("accounts_banAccount"); } break; case "unban": if ($this->CheckPermissionItem("accounts_manageAccount_unban") == true) { if ($_GET['write'] == true) { if ($user_data['info']['bloc_code'] == 0) { $GLOBALS['result_command'] = $this->lang->words['Members']['Accounts']['ManageAccount']['UnbanAccount']['Messages']['NoBanned']; $GLOBALS['result_command'] = adminShowMessage($GLOBALS['result_command'], 2); } else { $this->DB->Arguments($_GET['username']); $this->DB->Delete("CTM_AccountsBanneds", "Account = '%s'"); $this->DB->Arguments($_GET['username']); $this->DB->Update(MUACC_CORE . "@MEMB_INFO", array("bloc_code" => 0), "memb___id = '%s'"); if (loadIsAjax() == false) { $_GET['write'] = FALSE; $GLOBALS['result_command'] = $this->lang->words['Members']['Accounts']['ManageAccount']['UnbanAccount']['Messages']['Success']; $GLOBALS['result_command'] = adminShowMessage($GLOBALS['result_command'], 3); if ($_GET['go'] == "banneds") { $this->loadBannedAccounts(); $this->output->setContent("accounts_bannedAccounts"); } else { $this->loadSearchAccounts(); $this->output->setContent("accounts_search"); } return NULL; } } if (loadIsAjax() == true) { exit($GLOBALS['result_command']); } } if ($user_data['info']['bloc_code'] == 1 && $user_data['info']['MemberStatus'] == 0) { $this->DB->Arguments($_GET['username']); $accountBlockInfoQ = $this->DB->Select("Responsible,Expiration,Reason", "CTM_AccountsBanneds", "Account = '%s'"); if ($this->DB->CountRows($accountBlockInfoQ) > 0) { $accountBlockInfo = $this->DB->FetchObject($accountBlockInfoQ); $GLOBALS['block_info']['responsible'] = $accountBlockInfo->Responsible; $GLOBALS['block_info']['expiration'] = date("d/m/Y - H:i", $accountBlockInfo->Expiration); $GLOBALS['block_info']['reason'] = $accountBlockInfo->Reason; } else { $GLOBALS['block_info']['responsible'] = $this->lang->words['Words']['None']; $GLOBALS['block_info']['expiration'] = $this->lang->words['Words']['Never']; $GLOBALS['block_info']['reason'] = $this->lang->words['Words']['None']; } } $this->output->setContent("accounts_unbanAccount"); } break; case "manageVIP": if ($this->CheckPermissionItem("accounts_manageAccount_manageVIP") == true) { if ($_GET['command'] == "write") { if ($_POST['VIPType'] != 1 && $_POST['VIPType'] != 2 && $_POST['VIPType'] != 3 && $_POST['VIPType'] != 4 && $_POST['VIPType'] != 5) { $GLOBALS['result_command'] = $this->lang->words['Members']['Accounts']['ManageAccount']['ManageVIP']['Messages']['VIPInvalid']; $GLOBALS['result_command'] = adminShowMessage($GLOBALS['result_command'], 3); } else { if (empty($_POST['VIPDays']) || $_POST['VIPDays'] < 0) { $_POST['VIPDays'] = 0; } $timeVIP = $user_data['vip'][VIP_TIME] + $_POST['VIPDays']; $beginVIP = strlen($user_data['vip'][VIP_BEGIN]) == 10 ? $user_data['vip'][VIP_BEGIN] : time(); $commandVIP = "Added"; if ($user_data['vip'][VIP_COLUMN] > 0) { if (strlen($user_data['vip'][VIP_TIME]) == 10) { $timeVIP = strtotime("+ " . $_POST['VIPDays'] . " days", $user_data['vip'][VIP_TIME]); } if ($_POST['VIPDays'] == 0) { $commandVIP = "Transformed"; } else { $commandVIP = "Added"; } } $this->DB->Arguments($_POST['VIPType'], $beginVIP, $timeVIP, $_GET['username']); $this->DB->Query("UPDATE " . VIP_CORE . ".dbo." . VIP_TABLE . " SET " . VIP_COLUMN . " = %d, " . VIP_BEGIN . " = %d, " . VIP_TIME . " = %d WHERE " . VIP_LOGIN . " = '%s'"); $_timeVIP = $timeVIP; $timeVIP = strlen($timeVIP) == 10 ? $timeVIP : strtotime("+ " . $timeVIP . " days"); $result_1 = $this->lang->words['Members']['Accounts']['ManageAccount']['ManageVIP']['Messages']['Success'][$commandVIP]; $result_1 = sprintf($result_1, $this->functions->AccountLevel($_POST['VIPType']), $_GET['username']); $result_2 = $this->lang->words['Members']['Accounts']['ManageAccount']['ManageVIP']['Messages']['Success']['Expiration']; $result_2 = sprintf($result_2, date("d/m/Y", $timeVIP), $_POST['VIPDays']); $GLOBALS['result_command'] = "<strong>" . $result_1 . "</strong><br />\n" . $result_2; $GLOBALS['result_command'] = adminShowMessage($GLOBALS['result_command'], 3); if (loadIsAjax() == false) { $user_data['vip'] = array(VIP_COLUMN => $_POST['VIPType'], VIP_BEGIN => $beginVIP, VIP_TIME => $_timeVIP); } } if (loadIsAjax() == true) { exit($GLOBALS['result_command']); } } elseif ($_GET['command'] == "remove") { self::DB()->Arguments($_GET['username']); self::DB()->Query("UPDATE " . VIP_CORE . ".dbo." . VIP_TABLE . " SET " . VIP_COLUMN . " = 0, " . VIP_BEGIN . " = 0, " . VIP_TIME . " = 0 WHERE " . VIP_LOGIN . " = '%s'"); $GLOBALS['result_command'] = $this->lang->words['Members']['Accounts']['ManageAccount']['ManageVIP']['Messages']['Success']['Removed']; $GLOBALS['result_command'] = adminShowMessage($GLOBALS['result_command'], 3); if (loadIsAjax() == true) { exit($GLOBALS['result_command']); } else { $user_data['vip'] = array(VIP_COLUMN => 0, VIP_BEGIN => 0, VIP_TIME => 0); } } /*$GLOBALS['vip_info'] = array ( "type" => $this->functions->AccountLevel($user_data['vip'][VIP_COLUMN]), "begin" => $this->functions->MakeVIPTime($user_data['vip'][VIP_BEGIN]), "end" => $this->functions->MakeVIPTime($user_data['vip'][VIP_TIME]) );*/ $this->output->setContent("accounts_manageVIP"); } break; case "manageCoin": if ($this->CheckPermissionItem("accounts_manageAccount_manageCoin") == true) { if ($_GET['command'] == "insert" || $_GET['command'] == "remove") { $_POST['Coin'] = intval($_POST['Coin']); $_POST['Quantity'] = intval($_POST['Quantity']); if (empty($_POST['Quantity'])) { $_POST['Quantity'] = 0; } if ($_POST['Coin'] != 1 && $_POST['Coin'] != 2 && $_POST['Coin'] != 3) { $GLOBALS['result_command'] = $this->lang->words['Members']['Accounts']['ManageAccount']['ManageCoin']['Messages']['CoinInvalid']; $GLOBALS['result_command'] = adminShowMessage($GLOBALS['result_command'], 2); } else { if ($_GET['command'] == "insert") { $coin_command = "Insert"; $coin_signal = "+"; } elseif ($_GET['command'] == "remove") { $coin_command = "Remove"; $coin_signal = "-"; } $coin_column = $_POST['Coin']; $coin_name = constant("COIN_NAME_" . $_POST['Coin']); if ($user_data['coin'][$coin_column] < $_POST['Quantity'] && $_GET['command'] == "remove") { $GLOBALS['result_command'] = $this->lang->words['Members']['Accounts']['ManageAccount']['ManageCoin']['Messages']['NoCoin']; $GLOBALS['result_command'] = adminShowMessage(sprintf($GLOBALS['result_command'], $coin_name), 2); } else { $this->DB->Arguments($_GET['username'], $coin_column, $_POST['Quantity'], intval(COIN_USE_CACHE)); $this->DB->Query("EXEC dbo.CTM_PlusAccountCoin '%s', %d, %d, %d"); $GLOBALS['result_command'] = $this->lang->words['Members']['Accounts']['ManageAccount']['ManageCoin']['Messages']['Success'][$coin_command]; $GLOBALS['result_command'] = adminShowMessage(sprintf($GLOBALS['result_command'], $_POST['Quantity'], $coin_name), 3); } } if (loadIsAjax() == true) { exit($GLOBALS['result_command']); } } $this->output->setContent("accounts_manageCoin"); } break; case "disconnect": if ($user_data['stat']['ConnectStat'] < 1) { $message = $this->lang->words['Members']['Accounts']['ManageAccount']['DisconnectAccount']['Messages']['UserOffline']; $type = 2; } elseif ($this->MuLib('JoinServer')->ForceLogout($_GET['username'])) { $message = $this->lang->words['Members']['Accounts']['ManageAccount']['DisconnectAccount']['Messages']['Success']; $type = 3; } else { $message = sprintf($this->lang->words['Members']['Accounts']['ManageAccount']['DisconnectAccount']['Messages']['Error'], 11); $type = 2; } $this->loadSearchAccounts(true, adminShowMessage($message, $type)); $this->output->setContent("accounts_search"); break; default: if ($this->CheckPermissionItem("accounts_manageAccount_edit") == true) { if ($_GET['write'] == "name" && loadIsAjax() == true) { if (empty($_POST['NewName'])) { exit(adminShowMessage($this->lang->words['Members']['Accounts']['ManageAccount']['EditAccount']['ChangeName']['Messages']['NameVoid'], 1)); } elseif (strlen($_POST['NewName']) > 10) { exit(adminShowMessage($this->lang->words['Members']['Accounts']['ManageAccount']['EditAccount']['ChangeName']['Messages']['MaxLength'], 2)); } else { $this->DB->Arguments($_GET['username']); $this->DB->Update(MUACC_CORE . "@MEMB_INFO", array("memb_name" => utf8_encode($_POST['NewName'])), "memb___id = '%s'"); exit("<script>editAccount_writeSuccess('name', '" . str_replace("'", "\\'", $_POST['NewName']) . "');</script>"); } } elseif ($_GET['write'] == "email" && loadIsAjax() == true) { if (empty($_POST['NewMail'])) { exit(adminShowMessage($this->lang->words['Members']['Accounts']['ManageAccount']['EditAccount']['ChangeMail']['Messages']['MailVoid'], 1)); } elseif (!CTM_Text::CheckMail($_POST['NewMail'])) { exit(adminShowMessage($this->lang->words['Members']['Accounts']['ManageAccount']['EditAccount']['ChangeMail']['Messages']['InvalidMail'], 2)); } else { $this->DB->Arguments($_GET['username']); $this->DB->Update(MUACC_CORE . "@MEMB_INFO", array("mail_addr" => $_POST['NewMail']), "memb___id = '%s'"); exit("<script>editAccount_writeSuccess('email', '" . str_replace("'", "\\'", $_POST['NewMail']) . "');</script>"); } } elseif ($_GET['write'] == "password" && loadIsAjax() == true) { if (empty($_POST['NewPassword'])) { exit(adminShowMessage($this->lang->words['Members']['Accounts']['ManageAccount']['EditAccount']['ChangePassword']['Messages']['PasswordVoid'], 1)); } elseif (empty($_POST['ConfirmNewPassword'])) { exit(adminShowMessage($this->lang->words['Members']['Accounts']['ManageAccount']['EditAccount']['ChangePassword']['Messages']['ConfirmPasswordVoid'], 1)); } elseif (eregi("[^a-zA-Z0-9_!=?&-]", $_POST['NewPassword'])) { exit(adminShowMessage($this->lang->words['Members']['Accounts']['ManageAccount']['EditAccount']['ChangePassword']['Messages']['CaractersInvalid'], 2)); } elseif ($_POST['NewPassword'] != $_POST['ConfirmNewPassword']) { exit(adminShowMessage($this->lang->words['Members']['Accounts']['ManageAccount']['EditAccount']['ChangePassword']['Messages']['PasswordError'], 2)); } else { $this->MuLib('Member')->ChangePassword($_GET['username'], $_POST['NewPassword']); exit("<script>editAccount_writeSuccess('password');</script>"); } } elseif ($_GET['write'] == "pid" && loadIsAjax() == true) { if (empty($_POST['NewPID'])) { exit(adminShowMessage($this->lang->words['Members']['Accounts']['ManageAccount']['EditAccount']['ChangePID']['Messages']['PIDVoid'], 1)); } elseif (strlen($_POST['NewPID']) != 7) { exit(adminShowMessage($this->lang->words['Members']['Accounts']['ManageAccount']['EditAccount']['ChangePID']['Messages']['ErrorLength'], 2)); } elseif (!is_numeric($_POST['NewPID'])) { exit(adminShowMessage($this->lang->words['Members']['Accounts']['ManageAccount']['EditAccount']['ChangePID']['Messages']['ErrorCaracters'], 2)); } else { $this->DB->Arguments($_GET['username']); $this->DB->Update(MUACC_CORE . "@MEMB_INFO", array("sno__numb" => str_pad($_POST['NewPID'], 13, 1, STR_PAD_LEFT)), "memb___id = '%s'"); exit("<script>editAccount_writeSuccess('pid', '" . str_replace("'", "\\'", $_POST['NewPID']) . "');</script>"); } } elseif ($_GET['write'] == "save") { if (is_null($_POST['MemberStatus']) || is_null($_POST['AccountLevel']) || empty($_POST['SecureQuestion']) || empty($_POST['SecureAnswer'])) { $GLOBALS['result_command'] = $this->lang->words['Members']['Accounts']['ManageAccount']['EditAccount']['Save']['Messages']['FieldsVoid']; $GLOBALS['result_command'] = adminShowMessage($GLOBALS['result_command'], 1); } elseif (empty($_POST['BirthDay']) || empty($_POST['BirthMonth']) || empty($_POST['BirthYear'])) { $GLOBALS['result_command'] = $this->lang->words['Members']['Accounts']['ManageAccount']['EditAccount']['Save']['Messages']['FieldsVoid']; $GLOBALS['result_command'] = adminShowMessage($GLOBALS['result_command'], 1); } elseif (is_null($_POST['CoinBalance_1']) || is_null($_POST['CoinBalance_2']) && COIN_NUMBER >= 2 || is_null($_POST['CoinBalance_3']) && COIN_NUMBER == 3) { $GLOBALS['result_command'] = $this->lang->words['Members']['Accounts']['ManageAccount']['EditAccount']['Save']['Messages']['FieldsVoid']; $GLOBALS['result_command'] = adminShowMessage($GLOBALS['result_command'], 1); } elseif ($_POST['AccountLevel'] < 0 || $_POST['AccountLevel'] > VIP_NUMBER) { $GLOBALS['result_command'] = $this->lang->words['Members']['Accounts']['ManageAccount']['EditAccount']['Save']['Messages']['ErrorAccountLevel']; $GLOBALS['result_command'] = adminShowMessage($GLOBALS['result_command'], 2); } elseif ($_POST['MemberStatus'] != 0 && $_POST['MemberStatus'] != 1) { $GLOBALS['result_command'] = $this->lang->words['Members']['Accounts']['ManageAccount']['EditAccount']['Save']['Messages']['ErrorStatus']; $GLOBALS['result_command'] = adminShowMessage($GLOBALS['result_command'], 2); } else { $_POST['BirthDay'] = eregi_replace("[^0-9]", NULL, $_POST['BirthDay']); $_POST['BirthMonth'] = eregi_replace("[^0-9]", NULL, $_POST['BirthMonth']); $_POST['BirthYear'] = eregi_replace("[^0-9]", NULL, $_POST['BirthYear']); $save_data = array("info" => array("fpas_ques" => utf8_encode($_POST['SecureQuestion']), "fpas_answ" => utf8_encode($_POST['SecureAnswer']), "MemberBirth" => $_POST['BirthDay'] . "/" . $_POST['BirthMonth'] . "/" . $_POST['BirthYear'], "MemberStatus" => intval($_POST['MemberStatus'])), "vip" => array(VIP_COLUMN => intval($_POST['AccountLevel'])), "coin" => array(COIN_COLUMN_1 => intval($_POST['CoinBalance_1']))); if (COIN_NUMBER >= 2) { $save_data['coin'][COIN_COLUMN_2] = intval($_POST['CoinBalance_2']); if (COIN_NUMBER == 3) { $save_data['coin'][COIN_COLUMN_3] = intval($_POST['CoinBalance_3']); } } $this->MuLib('Member')->UpdateAccount($_GET['username'], $save_data); $GLOBALS['result_command'] = $this->lang->words['Members']['Accounts']['ManageAccount']['EditAccount']['Save']['Messages']['Success']; $GLOBALS['result_command'] = adminShowMessage($GLOBALS['result_command'], 3); $user_data = $this->MuLib('Member')->Load($_GET['username'] = urldecode($_GET['username'])); } } elseif ($_GET['write'] == "delete") { if (USER_ACCOUNT == $_GET['username']) { $GLOBALS['result_command'] = $this->lang->words['Members']['Accounts']['ManageAccount']['EditAccount']['DeleteAccount']['NoDelSelf']; $GLOBALS['result_command'] = adminShowMessage($GLOBALS['result_command'], 2); } elseif (in_array($_GET['username'], $this->settings['ADMINCONTROLPANEL']['SADMIN_ACCOUNTS'])) { $GLOBALS['result_command'] = $this->lang->words['Members']['Accounts']['ManageAccount']['EditAccount']['DeleteAccount']['NoDelUser']; $GLOBALS['result_command'] = adminShowMessage($GLOBALS['result_command'], 2); } else { $this->MuLib('Member')->DeleteAccount($_GET['username']); $this->loadSearchAccounts(true, adminShowMessage($this->lang->words['Members']['Accounts']['ManageAccount']['EditAccount']['DeleteAccount']['Success'], 3)); $this->output->setContent("accounts_search"); return NULL; } } elseif ($_GET['command'] == "disconnect") { if ($user_data['stat']['ConnectStat'] < 1) { $GLOBALS['result_command'] = $this->lang->words['Members']['Accounts']['ManageAccount']['DisconnectAccount']['Messages']['UserOffline']; $GLOBALS['result_command'] = adminShowMessage($GLOBALS['result_command'], 2); } elseif ($this->MuLib('JoinServer')->ForceLogout($_GET['username'])) { $GLOBALS['result_command'] = $this->lang->words['Members']['Accounts']['ManageAccount']['DisconnectAccount']['Messages']['Success']; $GLOBALS['result_command'] = adminShowMessage($GLOBALS['result_command'], 3); } else { $GLOBALS['result_command'] = sprintf($this->lang->words['Members']['Accounts']['ManageAccount']['DisconnectAccount']['Messages']['Error'], 11); $GLOBALS['result_command'] = adminShowMessage($GLOBALS['result_command'], 2); $GLOBALS['result_command'] .= "\r\n<script>\$('#userStatus').html(\"<span style='color: red;'>Offline</span>\");</script>"; } } $GLOBALS['account_info'] = array("info" => array("register_date" => $user_data['info']['RegisterDate'], "sex" => utf8_decode($user_data['info']['MemberSex'])), "data" => array("name" => utf8_decode($user_data['info']['memb_name']), "mail" => $user_data['info']['mail_addr'], "pid" => substr($user_data['info']['sno__numb'], 6), "status" => $user_data['info']['MemberStatus'], "account_level" => $user_data['vip'][VIP_COLUMN], "coin_1" => $user_data['coin'][COIN_COLUMN_1], "coin_2" => $user_data['coin'][COIN_COLUMN_2], "coin_3" => $user_data['coin'][COIN_COLUMN_3], "secure_question" => utf8_decode($user_data['info']['fpas_ques']), "secure_answer" => utf8_decode($user_data['info']['fpas_answ']), "birth" => explode("/", $user_data['info']['MemberBirth'])), "stat" => array("server" => $this->functions->GetServerName($user_data['stat']['ServerName']), "ip" => $user_data['stat']['IP'], "date" => date("d/m/Y - h:i a", strtotime($user_data['stat']['ConnectTM'])), "status" => $user_data['stat']['ConnectStat'] > 0)); $this->output->setContent("accounts_editAccount"); } break; } } }
/** * Board Notices Data * Get notice from Board System * * @param array Settings * @return array Result */ private function loadBoardNoticesData($data) { $this->DB->settings['mysql']['hostname'] = $this->config['MySQL']['HOST']; $this->DB->settings['mysql']['hostport'] = $this->config['MySQL']['PORT']; $this->DB->settings['mysql']['username'] = $this->config['MySQL']['USER']; $this->DB->settings['mysql']['password'] = $this->config['MySQL']['PASS']; $this->DB->settings['mysql']['database'] = $this->config['MySQL']['DATA']; $this->DB->settings['mysql']['log_folder'] = "MySQL"; $this->DB->settings['mysql']['debug'] = in_array("mysql", explode(",", CTM_SQL_DEBUG_MODE)); $this->DB->settings['mysql']['hideErrors'] = TRUE; if ($this->DB->Connect("mysql")) { $query = "SELECT * FROM " . $this->config['PREFIX'] . $data['TABLE'] . " WHERE "; for ($i = 1; $i <= sizeof($this->config['FORUM_ID']); $i++) { $this->DB->MySQL()->Arguments($this->config['FORUM_ID'][$i - 1]); if ($i < count($this->config['FORUM_ID'])) { $query .= $data['FORUM_COLUMN'] . " = %d OR "; } else { $query .= $data['FORUM_COLUMN'] . " = %d "; } } $query .= "ORDER BY " . $data['ID_COLUMN'] . " DESC LIMIT " . $this->config['LIMIT']; $this->DB->MySQL()->Arguments($this->config['LIMIT']); if ($topics = $this->DB->MySQL()->Query($query)) { if ($this->DB->MySQL()->CountRows($topics) > 0) { $notices = array(); while ($notice = $this->DB->MySQL()->FetchObject($topics)) { if (isset($data['POST']) && is_array($data['POST'])) { $this->DB->MySQL()->Arguments($data['POST']['TITLE'], $data['POST']['DATE'], $this->config['PREFIX'] . $data['POST']['TABLE']); $this->DB->MySQL()->Arguments($data['POST']['TOPIC_ID'], $notice->{$data['ID_COLUMN']}, $data['POST']['ID']); $query = $this->DB->MySQL()->Query("SELECT %s,%s FROM %s WHERE %s = %d ORDER BY %s ASC"); $fetch = $this->DB->MySQL()->FetchObject($query); $title = $fetch->{$data['POST']['TITLE']}; $date = $fetch->{$data['POST']['DATE']}; } else { $title = $notice->{$data['TITLE']}; $date = $notice->{$data['DATE']}; } $link = $this->config['LINK']; $link .= substr($this->config['LINK'], strlen($this->config['LINK']) - 1, 1) != "/" ? "/" : NULL; $link .= $data['LINK'] . "=" . $notice->{$data['ID_COLUMN']}; $notices[] = array("title" => $this->config['UTF8_DECODE'] == true ? CTM_Text::UTF8Text($title) : $title, "postDate" => date("d/m/Y - h:i a", $date), "topicLink" => $link); } $this->DB->Clear(true, true); return $notices; } else { $this->DB->Clear(true, true); return 255; } } $this->DB->Clear(true, true); $this->DB->MySQL()->Close(); } return false; }