include '../../notlogin.php'; die; } ?> <div class="modal" style="top:30%; height: 30%; color:#565656"> <div class="modal-content" style="background:#D9D9D9; margin-left: 40%;margin-right: 40%;height: 100%;"> <div class='modal-close'> <a href="javascript:closeModal('who_pass')"><img class='modal-close-icon' src="addon/img/close-icon.png"></a> </div> <p class="who_pass_pre" ><b class="who_pass_pre" style="padding-left:10px;padding-right:10px">รายชื่อผู้ที่ทำผ่าน</b></p> <div class="who_pass_pre" style="background:#FFFFFF;border-bottom-left-radius: 10px;border-bottom-right-radius: 10px;height:85%;overflow:auto;padding-left:10px;padding-right:10px"> <?php $task = Database::getById("task", $_GET["task_id"]); if ($task['see'] == 1 or isAdmin()) { if ($config['mode'] == 'blind_contest' or $config['mode'] == 'contest') { exit; } $result = Database::getAllThat("pass", "`task_id` = " . $_GET["task_id"]); echo "<table class='who_pass_pre' style='list-style-type: circle; width:100%'>"; while ($pass = mysql_fetch_array($result)) { $user = Database::getUser($pass["user_id"]); if ($user["level"] == 1) { echo "<tr><td style='style:5%'><td style='width:95%' class='who_pass_pre'>" . $user["display"] . "</td></tr>"; } } echo "</div>"; } ?> </div> </div> </div>
<?php if (isset($_POST['data'])) { $data = $_POST['data']; require_once '../helpers/database.php'; $database = new Database(); $user = $database->getUser($data['email'], $data['password']); if (!empty($user)) { session_start(); $_SESSION['logged_user'] = $user; $redirectURL = "../index.php"; header('Location: ' . $redirectURL); } } else { include 'index.php'; }
if ($_REQUEST["action"] == "edit_task") { $sql = "SELECT * FROM `task` WHERE `task_id` = " . $_REQUEST["task_id"]; $result = mysql_query($sql) or die(mysql_error()); $task = mysql_fetch_array($result) or die(mysql_error()); if ($_POST["see"] == 1 and $task["see"] == 0) { $_POST["see_date"] = time(); } Database::UpdateById("task", $_REQUEST["task_id"], $_POST); // echo "<meta http-equiv='refresh' content='0; ../admin/#task'/>"; } else { if ($_REQUEST["action"] == "add_user") { Database::putInTo("user", $_POST); echo "<meta http-equiv='refresh' content='0; ../admin/#user'/>"; } else { if ($_REQUEST["action"] == "rem_user") { $user_info = Database::getUser($_POST['user_id']); $result = Database::getAllThat("result", "`user_id` = '" . $_POST['user_id'] . "'"); while ($rm_file = mysql_fetch_array($result)) { $file_name = $rm_file['task_id'] . "-" . $user_info["user"]; if (file_exists('../judge/upload/' . $file_name . ".c")) { unlink('../judge/upload/' . $file_name . ".c"); } if (file_exists('../judge/upload/' . $file_name . ".cpp")) { unlink('../judge/upload/' . $file_name . ".cpp"); } } $list_db = array("pass", "activity", "best", "chat", "latest", "like", "pass", "result", "user"); foreach ($list_db as $key => $value) { Database::deleteAllThat($value, "`user_id` = '" . $_POST['user_id'] . "'"); } } else {
<?php //goto install? if (!file_exists('config.php')) { header('location:install/index.php'); exit; } define('QBB', true); //load config require 'config.php'; //load language require 'lang/lang_' . $language . '.php'; setlocale(LC_TIME, $lang['locale']); //load classes require 'includes/class.Database.php'; require 'includes/class.Viewer.php'; require 'includes/class.Session.php'; //instantiate classes $db = new Database($dsn, $db_user, $db_pass); $view = new Viewer($db, $lang, $style); $sess = new Session(); //title,subtitle $view->setTitle($title); $view->setSubtitle($subtitle); //if user is logged in but was banned if ($sess->logged) { $user = $db->getUser($sess->userid); if ($user->usertype == 'banned' || $user->usertype == 'deleted') { $sess->Logout(); } }
$uid = NULL; $sid = NULL; $reason_text = ""; if ($login != null && $password != null && $password2 != null) { $login = trim(strtolower($login)); $login2 = urlencode(htmlentities(htmlspecialchars($login), ENT_QUOTES)); $password = urlencode(htmlentities(htmlspecialchars($password), ENT_QUOTES)); if (strlen($login) < 5 || strlen($login) > 15) { $reason_text = "Identyfikator musi mieć od 5 do 15 znaków"; } elseif (strcmp($login, $login2) != 0) { $reason_text = "Identyfikator może zawierać tylko litery i cyfry"; } elseif (strcmp($password, $password2) != 0) { $reason_text = "Pola haseł nie zgadzają się"; } else { $db = new Database(); $rowUser = $db->getUser($login, NULL); if ($rowUser != NULL) { $reason_text = "Użytkownik o podanym identyfikatorze już istnieje"; } else { $rowUser = $db->addUser($login, $password); $uid = $rowUser['id']; $isAllowed = TRUE; $sid = getCode(); if ($db->updateUserSid($uid, $sid) == FALSE) { $reason_text = "Undefined error"; $isAllowed = FALSE; } trigger_error("login:"******" password(" . $rowUser['password'] . "):" . $password . "uid:" . $uid . " sid" . $sid, E_USER_NOTICE); } $db->destroy(); }
trigger_error("uid:" . $uid . ", id:" . $id, E_USER_NOTICE); $rowUser = NULL; $product = NULL; $browser = NULL; $koszt = 0; if (isset($_SERVER['HTTP_USER_AGENT'])) { $browser = $_SERVER['HTTP_USER_AGENT']; } if ($uid == null && $kod != null) { // ustawiamy user o kodzie 1 $uid = 1; } $product = null; if ($uid != null) { $db = new Database(); $rowUser = $db->getUser(NULL, $uid); if ($rowUser == NULL) { $reason = "BAD_USER"; } else { $product = $db->getProduct($id); if ($product == NULL) { $reason = "BAD_PRODUCT"; } else { $isAllowed = TRUE; // czy produkt był zamawiany przez klienta? $rowOrder = $db->getOrder($uid, $id); if ($uid == 1 || $rowOrder == NULL) { $koszt = $product['product']['coins']; } } }
include_once '../scripts/Database.php'; $uid = null; $sid = null; $kod = null; $isAllowed = false; $rowUser = null; //trigger_error("_GET['uid']: $_GET['uid'] _GET['sid']: $_GET['sid']", E_USER_NOTICE); if (isset($_GET['uid']) && isset($_GET['sid'])) { $uid = $_GET['uid']; $sid = $_GET['sid']; trigger_error("uid: {$uid} sid: {$sid}", E_USER_NOTICE); if (isset($_SERVER['HTTP_USER_AGENT'])) { $browser = $_SERVER['HTTP_USER_AGENT']; } $db = new Database(); $rowUser = $db->getUser(null, $uid); if ($rowUser != null) { if (strcmp($sid, $rowUser['sid']) == 0 && strcmp($browser, $rowUser['browser']) == 0 and MOBIKAR_SESSION_MAXTIME > $rowUser['delta']) { $isAllowed = true; $kod = null; } } $db->destroy(); } elseif (!isset($_GET['kod'])) { $kod = "0"; $isAllowed = true; } if (!$isAllowed && isset($_GET['kod'])) { $kod = $_GET['kod']; $isAllowed = true; }