function __construct() { $this->sName = 'bottom'; $this->sDbTable = 'sys_menu_bottom'; $this->sCacheKey = 'sys_menu_bottom'; $this->aMenuInfo = array(); if (isMember()) { $this->aMenuInfo['memberID'] = getLoggedId(); $this->aMenuInfo['memberNick'] = getNickName($this->aMenuInfo['memberID']); $this->aMenuInfo['memberPass'] = getPassword($this->aMenuInfo['memberID']); $this->aMenuInfo['memberLink'] = getProfileLink($this->aMenuInfo['memberID']); $this->aMenuInfo['visible'] = 'memb'; } else { $this->aMenuInfo['memberID'] = 0; $this->aMenuInfo['memberNick'] = ''; $this->aMenuInfo['memberPass'] = ''; $this->aMenuInfo['memberLink'] = ''; $this->aMenuInfo['visible'] = 'non'; } $this->aItems = array(); $this->oPermalinks = new BxDolPermalinks(); }
* 5 - Frage, ob Zugangsdaten geschickt werden soll * 6 - Frage, ob Mitglied geloescht werden soll * usr_id : Id des Benutzers, der bearbeitet werden soll * *****************************************************************************/ require_once '../../system/common.php'; require_once '../../system/login_valid.php'; // Initialize and check the parameters $getUserId = admFuncVariableIsValid($_GET, 'usr_id', 'numeric', array('requireValue' => true)); $getMode = admFuncVariableIsValid($_GET, 'mode', 'numeric', array('requireValue' => true)); // nur berechtigte User duerfen Funktionen aufrufen if (!$gCurrentUser->editUsers()) { $gMessage->show($gL10n->get('SYS_NO_RIGHTS')); } // nun erst einmal allgemein pruefen, ob der User zur aktuellen Orga gehoert if (isMember($getUserId)) { $this_orga = true; } else { $this_orga = false; } if ($getMode != 1) { // pruefen, ob der User noch in anderen Organisationen aktiv ist $sql = 'SELECT rol_id FROM ' . TBL_ROLES . ', ' . TBL_MEMBERS . ', ' . TBL_CATEGORIES . ' WHERE rol_valid = 1 AND rol_cat_id = cat_id AND cat_org_id <> ' . $gCurrentOrganization->getValue('org_id') . ' AND mem_rol_id = rol_id AND mem_begin <= \'' . DATE_NOW . '\' AND mem_end > \'' . DATE_NOW . '\' AND mem_usr_id = ' . $getUserId;
function _getAuthorPassword() { return !isMember() ? '' : $_COOKIE['memberPassword']; }
function isAllowedApprove($isPerformAction = false) { if ($this->isAdmin()) { return true; } if (isMember() == false) { return false; } $this->_defineActions(); $aCheck = checkAction($this->_iVisitorID, BX_BLOG_POSTS_APPROVING, $isPerformAction); return $aCheck[CHECK_ACTION_RESULT] == CHECK_ACTION_RESULT_ALLOWED; }
function getProfileViewActions($iProfileId, $bDynamic = false) { global $oTemplConfig; $iProfileId = (int) $iProfileId; if (!$iProfileId) { return ''; } $aProfileInfo = getProfileInfo($iProfileId); if (empty($aProfileInfo)) { return ''; } $iViewerId = getLoggedId(); // prepare all needed keys $aConfig = array('url' => BX_DOL_URL_ROOT, 'anonym_mode' => '', 'member_id' => $iViewerId, 'member_pass' => getPassword($iViewerId)); $aMainKeys = array('cpt_edit', 'cpt_send_letter', 'cpt_fave', 'cpt_befriend', 'cpt_remove_friend', 'cpt_get_mail', 'cpt_share', 'cpt_report', 'cpt_block', 'cpt_unblock', 'cpt_activate', 'cpt_ban', 'cpt_delete', 'cpt_delete_spam', 'cpt_feature', 'act_activate', 'act_ban', 'act_feature'); $aMain = array_fill_keys($aMainKeys, ''); if (isMember($iViewerId)) { $aMain['cpt_edit'] = _t('_EditProfile'); $aMain['cpt_send_letter'] = _t('_SendLetter'); $aMain['cpt_fave'] = _t('_Fave'); $aMain['cpt_remove_fave'] = _t('_Remove Fave'); $aMain['cpt_befriend'] = _t('_Befriend'); $aMain['cpt_remove_friend'] = _t('_Remove friend'); $aMain['cpt_get_mail'] = _t('_Get E-mail'); $aMain['cpt_share'] = $this->isAllowedShare($this->_aProfile) ? _t('_Share') : ''; $aMain['cpt_report'] = _t('_Report Spam'); $aMain['cpt_block'] = _t('_Block'); $aMain['cpt_unblock'] = _t('_Unblock'); } if (isAdmin($iViewerId) || isModerator($iViewerId) and $iViewerId != $iProfileId) { $sMsgKeyStart = '_adm_btn_mp_'; // delete $aMain['cpt_delete'] = _t($sMsgKeyStart . 'delete'); // delete spam $aMain['cpt_delete_spam'] = _t($sMsgKeyStart . 'delete_spammer'); // activate / deactivate $sTypeActiv = 'activate'; if ($aProfileInfo['Status'] == 'Active') { $sTypeActiv = 'de' . $sTypeActiv; } $aMain['cpt_activate'] = _t($sMsgKeyStart . $sTypeActiv); $aMain['act_activate'] = $sTypeActiv; // ban / unban $sTypeBan = 'ban'; if (isLoggedBanned($aProfileInfo['ID'])) { $sTypeBan = 'un' . $sTypeBan; } $aMain['cpt_ban'] = _t($sMsgKeyStart . $sTypeBan); $aMain['act_ban'] = $sTypeBan; // feature / unfeature $sTypeFeat = 'featured'; $aMain['cpt_feature'] = _t('_Feature it'); if ((int) $aProfileInfo['Featured']) { $sTypeFeat = 'un' . $sTypeFeat; $aMain['cpt_feature'] = _t('_De-Feature it'); } $aMain['act_feature'] = $sTypeFeat; } //--- Subscription integration ---// $oSubscription = BxDolSubscription::getInstance(); $sAddon = $oSubscription->getData($bDynamic); $aButton = $oSubscription->getButton($iViewerId, 'profile', '', $iProfileId); $aMain['sbs_profile_title'] = $aButton['title']; $aMain['sbs_profile_script'] = $aButton['script']; //--- Subscription integration ---// $aCheckGreet = checkAction(getLoggedId(), ACTION_ID_SEND_VKISS); $aMain['cpt_greet'] = $aCheckGreet[CHECK_ACTION_RESULT] == CHECK_ACTION_RESULT_ALLOWED ? _t('_Greet') : ''; $aMain = array_merge($aProfileInfo, $aConfig, $aMain); return $sAddon . $this->genObjectsActions($aMain, 'Profile'); }
function actionIndex() { $sMenu = ""; if (isMember()) { $sLink = BX_DOL_URL_ROOT . $this->_oConfig->getBaseUri() . 'post/'; $sCaption = _t('_feedback_lcaption_post'); $sMenu = BxDolPageView::getBlockCaptionMenu(mktime(), array('fdb_post' => array('href' => $sLink, 'title' => $sCaption))); } $sContent = $this->serviceArchiveBlock(); $aParams = array('index' => 2, 'css' => array('view.css', 'cmts.css'), 'title' => array('page' => _t('_feedback_pcaption_all'), 'block' => _t('_feedback_bcaption_view_all')), 'content' => array('page_menu_code' => $sMenu, 'page_main_code' => $sContent)); $this->_oTemplate->getPageCode($aParams); }
<?php include 'header.php'; require_once "util/Conexao.class.php"; require_once "util/funcoes.php"; if (session_status() != PHP_SESSION_ACTIVE) { session_start(); } $codGrupo = $_GET['codGrupo']; $lista = $_GET['lista']; $id = $_GET['id']; if (!isMember($codGrupo)) { ?> <div class="container" id="conteudo"> <p>Você não tem permissão para acessar essa página</p> </div> <?php } else { $conexao = new Conexao(); $colunas2 = array("LIS_GRU_CODIGO"); $data2 = $conexao->select("lista", $colunas2, "WHERE LIS_CODIGO = {$lista}"); if (count($data2) <= 0) { ?> <div class="container" id='conteudo'> <div class="alert alert-danger"><i class="fa fa-times"></i>Grupo ou item inexistente!</div> <a href="/dashboard/" class="btn btn-default">Voltar</a> </div> <?php } else { $colunas = array("itens_lista.*"); $dados = $conexao->select("itens_lista", $colunas, "WHERE ITE_LIS_CODIGO = {$id}")[0];
//"news" - as above, but the forum is listed by original posting date (descending), not last-reply date //"posts" - only users in "mods.txt" / "members.txt" can start threads or reply define('FORUM_LOCK', trim(@file_get_contents('locked.txt'))); //get the list of moderators: //(`file` returns NULL if the file doesn’t exist; casting that to an array creates an array with a blank element, and // `array_filter` removes blank elements, including blank lines in the text file; we could use the `FILE_SKIP_EMPTY_LINES` // flag, but `array_filter` kills two birds with one stone since we don’t have to check if the file exists beforehand.) $MODS = array('GLOBAL' => array_filter((array) @file(FORUM_ROOT . DIRECTORY_SEPARATOR . 'mods.txt', FILE_IGNORE_NEW_LINES)), 'LOCAL' => PATH ? array_filter((array) @file('mods.txt', FILE_IGNORE_NEW_LINES)) : array()); //get the list (if any) of users allowed to access this current forum $MEMBERS = array_filter((array) @file('members.txt', FILE_IGNORE_NEW_LINES)); //is the current user the site admin? (first name in the root 'mods.txt') define('IS_ADMIN', AUTH && isAdmin(NAME)); //is the current user a moderator in this forum? define('IS_MOD', AUTH && isMod(NAME)); //is the current user a member of this forum? define('IS_MEMBER', AUTH && isMember(NAME)); /* theme & translation ====================================================================================================================== */ /* load the theme configuration ---------------------------------------------------------------------------------------------------------------------- */ //shorthand to the server-side location of the particular theme folder (this gets used a lot) define('THEME_ROOT', FORUM_ROOT . DIRECTORY_SEPARATOR . 'themes' . DIRECTORY_SEPARATOR . FORUM_THEME . DIRECTORY_SEPARATOR); //load the theme-specific functions @(include THEME_ROOT . 'theme.php') or (require FORUM_LIB . 'error_theme.php'); //load the user’s theme configuration, if it exists @(include THEME_ROOT . 'theme.config.php'); //include the theme defaults @(include THEME_ROOT . 'theme.config.default.php') or (require FORUM_LIB . 'error_configtheme.php'); /* load translations and select one ---------------------------------------------------------------------------------------------------------------------- */ //include the language translations
$emailTemplate = str_replace('#receiver#', $receiverName, $emailTemplate); // prepare body of email with note of sender and homepage $email->setSenderInText($postName, $receiverName); // set Text $email->setText($emailTemplate); // finally send the mail $sendResult = $email->sendEmail(); } else { // if $postTo is not an Array, it is send from the hidden field. if (!is_array($postTo)) { $postTo = array($postTo); } // get user data from Database $user = new User($gDb, $gProfileFields, $postTo[0]); // check if it is allowed to send to this user if (!$gCurrentUser->editUsers() && !isMember($user->getValue('usr_id')) || $user->getValue('usr_id') === '') { $gMessage->show($gL10n->get('SYS_USER_ID_NOT_FOUND')); } // check if receiver of message has valid login if ($user->getValue('usr_login_name') === '') { $gMessage->show($gL10n->get('SYS_FIELD_EMPTY', $gL10n->get('SYS_TO'))); } // save page in navigation - to have a check for a navigation back. $gNavigation->addUrl(CURRENT_URL); if ($getMsgId == 0) { $PMId2 = 1; $sql = "INSERT INTO " . TBL_MESSAGES . " (msg_type, msg_subject, msg_usr_id_sender, msg_usr_id_receiver, msg_timestamp, msg_read)\n VALUES ('" . $getMsgType . "', '" . $postSubjectSQL . "', '" . $gCurrentUser->getValue('usr_id') . "', '" . $postTo[0] . "', CURRENT_TIMESTAMP, '1')"; $gDb->query($sql); $getMsgId = $gDb->lastInsertId(); } else { $PMId2 = $message->countMessageParts() + 1;
function getMenuInfo() { global $p_arr; $aSiteUrl = parse_url(BX_DOL_URL_ROOT); $this->sRequestUriFile = htmlspecialchars_adv(substr($_SERVER['REQUEST_URI'], strlen($aSiteUrl['path']))); $this->sSelfFile = htmlspecialchars_adv(substr(bx_html_attribute($_SERVER['PHP_SELF']), strlen($aSiteUrl['path']))); if (isMember()) { $this->aMenuInfo['memberID'] = (int) $_COOKIE['memberID']; $this->aMenuInfo['memberNick'] = getNickName($this->aMenuInfo['memberID']); $this->aMenuInfo['memberLink'] = getProfileLink($this->aMenuInfo['memberID']); $this->aMenuInfo['visible'] = 'memb'; } else { $this->aMenuInfo['memberID'] = 0; $this->aMenuInfo['memberNick'] = ''; $this->aMenuInfo['memberLink'] = ''; $this->aMenuInfo['visible'] = 'non'; } // if profile ID is not defined yet by script (using setCurrentProfileID) if (empty($this->aMenuInfo['profileID'])) { //get viewed profile ID (cherez jopu) $selfFile = basename($_SERVER['PHP_SELF']); if (isset($p_arr) and isset($p_arr['ID'])) { $iProfileID = (int) $p_arr['ID']; } elseif ($selfFile == 'browseMedia.php') { $iProfileID = (int) $_GET['userID']; } elseif ($selfFile == 'viewFriends.php') { $iProfileID = (int) $_GET['iUser']; } elseif (isset($_REQUEST['iUser'])) { $iProfileID = (int) $_REQUEST['iUser']; } elseif (isset($_REQUEST['userID'])) { $iProfileID = (int) $_REQUEST['userID']; } elseif (isset($_REQUEST['profileID'])) { $iProfileID = (int) $_REQUEST['profileID']; } elseif (isset($_REQUEST['ownerID'])) { $iProfileID = (int) $_REQUEST['ownerID']; } else { $iProfileID = 0; } $this->setCurrentProfileID($iProfileID); } // detect current menu $this->aMenuInfo['currentCustom'] = -1; $this->aMenuInfo['currentTop'] = 0; $this->aMenuInfo['currentTopLink'] = 0; $aPossibleItems = array(); foreach ($this->aTopMenu as $iItemID => $aItem) { if ($aItem['Type'] == 'top' and $this->aMenuInfo['currentTop'] and $this->aMenuInfo['currentTop'] != $iItemID) { break; } else { $this->aMenuInfo['currentTopLink'] = $aItem['Link']; $aItemUris = explode('|', $aItem['Link']); foreach ($aItemUris as $sItemUri) { if (empty($this->aMenuInfo['memberID'])) { unset($this->aMenuInfo['memberID']); unset($this->aMenuInfo['memberNick']); unset($this->aMenuInfo['memberLink']); } if (empty($this->aMenuInfo['profileID'])) { unset($this->aMenuInfo['profileID']); unset($this->aMenuInfo['profileNick']); unset($this->aMenuInfo['profileLink']); } foreach ($this->aMenuInfo as $k => $v) { $sItemUri = str_replace('{' . $k . '}', $v, $sItemUri); } $sItemUriPermalink = $this->oPermalinks->permalink($sItemUri); if (0 == strcasecmp($sItemUri, $this->sRequestUriFile) || 0 == strcasecmp($sItemUriPermalink, $this->sRequestUriFile) || 0 == strncasecmp(rawurldecode($this->sRequestUriFile), $sItemUri, strlen($sItemUri)) || 0 == strncasecmp($this->sRequestUriFile, $sItemUriPermalink, strlen($sItemUriPermalink))) { if (isset($aPossibleItems[$sItemUriPermalink]) && $aPossibleItems[$sItemUriPermalink]['Type'] == "custom" && $aItem['Type'] == "top") { continue; } $aItem['ID'] = $iItemID; $aPossibleItems[$sItemUriPermalink] = $aItem; } } } } $aPossibleItemsKeys = array_keys($aPossibleItems); if (!empty($aPossibleItemsKeys)) { $sMaxUri = $aPossibleItemsKeys[0]; for ($i = 1; $i < count($aPossibleItemsKeys); $i++) { if (strlen($aPossibleItemsKeys[$i]) > strlen($sMaxUri)) { $sMaxUri = $aPossibleItemsKeys[$i]; } } } if (count($aPossibleItems) > 0) { $aItem = $aPossibleItems[$sMaxUri]; if ($aItem['Type'] == 'custom') { $this->aMenuInfo['currentCustom'] = $aItem['ID']; $this->aMenuInfo['currentTop'] = (int) $aItem['Parent']; $this->aMenuInfo['currentTopName'] = (int) $aItem['Parent']; } else { //top or system if ($this->aMenuInfo['currentTop'] and $this->aMenuInfo['currentTop'] != $aItem['ID']) { } else { $this->aMenuInfo['currentTop'] = $aItem['ID']; } } } // if( $this->aMenuInfo['currentCustom'] ) // break; if (!$this->aMenuInfo['currentTop']) { $this->aMenuInfo['currentCustom'] = -1; $this->aMenuInfo['currentTop'] = -1; $this->aMenuInfo['currentTopLink'] = -1; } }
function getBlockCode_LoginSection($iBlockID, $sParams = '') { $sDolUrl = BX_DOL_URL_ROOT; $sAdminUrl = BX_DOL_URL_ADMIN; $sAdminPanelC = _t('_Admin Panel'); $sLogoutC = _t('_Log Out'); $sControlPanelC = _t('_Control Panel'); $sHelloMemberC = _t('_Hello member', getNickName($this->iMemberID)); $ret = ''; if (isAdmin()) { $ret .= <<<EOF <div class="logged_section_block"> <span><a href="{$sAdminUrl}index.php" class="logout">{$sAdminPanelC}</a></span> <span> | | </span> <span><a href="{$sDolUrl}logout.php?action=admin_logout" class="logout">{$sLogoutC}</a></span> </div> EOF; } elseif (isMember()) { $sMemberIcon = get_member_icon($memberID, 'left'); $ret .= <<<EOF <div class="logged_member_block"> {$sMemberIcon} <div class="hello_member bx-def-margin-sec-left"> {$sHelloMemberC}<br /> <a href="{$sDolUrl}member.php" class="logout">{$sControlPanelC}</a> <a href="{$sDolUrl}logout.php?action=member_logout" class="logout">{$sLogoutC}</a> </div> </div> EOF; } else { return getMemberLoginFormCode('login_box_form', $sParams); } return '<div class="dbContent bx-def-bc-margin">' . $ret . '</div>'; }
$aProfileInfo['window_height'] = $oTemplConfig->popUpWindowHeight; $aProfileInfo['anonym_mode'] = $oTemplConfig->bAnonymousMode; $aProfileInfo['member_pass'] = $aMemberInfo['Password']; $aProfileInfo['member_id'] = $iMemberId; $bDisplayType = getParam('enable_new_dhtml_popups') == 'on' ? 0 : 1; $aProfileInfo['display_type'] = $bDisplayType; $aProfileInfo['url'] = BX_DOL_URL_ROOT; $aProfileInfo['status_message'] = process_line_output($aProfileInfo['UserStatusMessage']); //--- Subscription integration ---// $oSubscription = new BxDolSubscription(); $aButton = $oSubscription->getButton($iMemberId, 'profile', '', $iProfId); $aProfileInfo['sbs_profile_title'] = $aButton['title']; $aProfileInfo['sbs_profile_script'] = $aButton['script']; //--- Subscription integration ---// //--- Check for member/non-member ---// if (isMember()) { $aProfileInfo['cpt_edit'] = _t('_EditProfile'); $aProfileInfo['cpt_send_letter'] = _t('_SendLetter'); $aProfileInfo['cpt_fave'] = _t('_Fave'); $aProfileInfo['cpt_befriend'] = _t('_Befriend'); $aProfileInfo['cpt_remove_friend'] = _t('_Remove friend'); $aProfileInfo['cpt_greet'] = _t('_Greet'); $aProfileInfo['cpt_get_mail'] = _t('_Get E-mail'); $aProfileInfo['cpt_share'] = _t('_Share'); $aProfileInfo['cpt_report'] = _t('_Report Spam'); $aProfileInfo['cpt_block'] = _t('_Block'); $aProfileInfo['cpt_unblock'] = _t('_Unblock'); } else { $aProfileInfo['cpt_edit'] = ''; $aProfileInfo['cpt_send_letter'] = ''; $aProfileInfo['cpt_fave'] = '';
function getViewerType() { $iViewerType = BX_TD_VIEWER_TYPE_VISITOR; if (isAdmin()) { $iViewerType = BX_TD_VIEWER_TYPE_ADMIN; } else { if (isMember()) { $iViewerType = BX_TD_VIEWER_TYPE_MEMBER; } } return $iViewerType; }
mysqli_query($link, $addnewuserquery); $_SESSION['id'] = mysqli_insert_id($link); $array = getaddress($_POST['registeraddress']); insertWaitingList($link, $_SESSION['id'], getBlockId($link, $array[1], $array[2])); //echo getBlockId($link,$array[1],$array[2]); header("Location:NotMemberYet.php"); } } } if ($_POST['submit'] == "Log in") { date_default_timezone_set("America/New_York"); $lastaccesstime = date("Y-m-d H:i:s"); $loginquery = "SELECT * FROM User WHERE Email='" . $_POST['loginemail'] . "' AND Password='******'loginpassword'] . "'"; $loginresult = mysqli_query($link, $loginquery); $rows = mysqli_fetch_array($loginresult); if ($rows) { $_SESSION['id'] = $rows['UserId']; $_SESSION['blockid'] = $rows['BlockId']; $updatelastaccesstime = "UPDATE User SET LastAccessTime='" . $lastaccesstime . "'WHERE UserId='" . $_SESSION['id'] . "' "; mysqli_query($link, $updatelastaccesstime); if (isMember($link, $_SESSION['id'])) { header('Location:message.php'); } else { header('Location:NotMemberYet.php'); } //Redirect to logged in page } else { $error = "We could not find a user with that email and password!"; } } }
function group_print_summary($requestID) { global $db, $main_smarty, $the_template; if (!is_numeric($requestID)) { die; } $index = 0; $group = $db->get_row("SELECT group_id,group_creator, group_status, group_members, group_date, group_name, group_safename, group_description, group_privacy, group_avatar FROM " . table_groups . " WHERE group_id = {$requestID}"); if ($group) { $group_id = $group->group_id; $group_name = $group->group_name; $group_safename = $group->group_safename; $group_description = $group->group_description; $group_creator = $group->group_creator; $group_status = $group->group_status; $group_members = $group->group_members; $group_date = $group->group_date; $group_privacy = $group->group_privacy; $group_avatar = $group->group_avatar; //$group_date = date('M j, Y', $group->group_date); $date = $db->get_var(" SELECT DATE_FORMAT(group_date, '%b, %e %Y') from " . table_groups . " WHERE group_id = {$group->group_id}"); //echo $date; $group_date = $date; //smarty variables $main_smarty->assign('group_id', $group_id); $main_smarty->assign('group_name', $group_name); $main_smarty->assign('group_safename', $group_safename); $main_smarty->assign('group_description', $group_description); $main_smarty->assign('group_creator', $group_creator); $main_smarty->assign('group_status', $group_status); $main_smarty->assign('group_privacy', $group_privacy); $main_smarty->assign('group_avatar', $group_avatar); $main_smarty->assign('group_date', $group_date); //get group avatar path if ($group_avatar == "uploaded") { $imgsrc = my_base_url . my_pligg_base . "/avatars/groups_uploaded/" . $group_id . "_" . group_avatar_size_width . ".jpg"; } else { $imgsrc = my_base_url . my_pligg_base . "/templates/" . $the_template . "/images/group_large.gif"; } $main_smarty->assign('imgsrc', $imgsrc); //get group creator and his url $g_name = get_group_username($group_creator); $main_smarty->assign('group_submitter', $g_name); //$main_smarty->assign('submitter_profile_url', getmyurl('user', $g_name)); $submitter_profile_url = getmyurl('user', $g_name); $main_smarty->assign('group_avatar_url', getmyurl('group_avatar', $group_id)); //check group admin global $current_user; if ($current_user->user_id == $group_creator) { $main_smarty->assign('is_group_admin', 1); } //language $lang_Created_By = $main_smarty->get_config_vars("PLIGG_Visual_Group_Created_By"); $lang_Created_On = $main_smarty->get_config_vars("PLIGG_Visual_Group_Created_On"); $lang_Member = $main_smarty->get_config_vars("PLIGG_Visual_Group_Member"); //check member //include_once(mnminclude.'group.php'); $main_smarty->assign('is_group_member', isMember($group_id)); //joinig unjoining member link $main_smarty->assign('join_group_url', getmyurl("join_group", $group_id)); $main_smarty->assign('unjoin_group_url', getmyurl("unjoin_group", $group_id)); //check logged or not $main_smarty->assign('user_logged_in', $current_user->user_login); //sidebar $main_smarty = do_sidebar($main_smarty); //$main_smarty->assign('form_action', $_SERVER["PHP_SELF"]); $group_story_url = getmyurl("group_story_title", $group_safename); $group_edit_url = getmyurl("editgroup", $group_id); $group_delete_url = getmyurl("deletegroup", $group_id); $group_output .= '<div class ="group_container"> <div class ="group_left"> <span> <img src="' . $imgsrc . '" alt="group_avatar" /> </span> </div> <div class ="group_right"> <div class="toptitle"><a href="' . $group_story_url . '">' . $group_name . '</a></div> <span class ="ls_created_by">' . $lang_Created_By . ' </span> <a href="' . $submitter_profile_url . '">' . $g_name . '</a> ' . $lang_Created_On . ' ' . $group_date . '<br/> ' . $group_description . '<br/> ' . $lang_Member . ' : ' . $group_members . ($group_status == 'disable' ? "<br><button onclick='document.location=\"?approve={$group_id}\"'>Approve</button>" : "") . ' </div> </div>'; $index++; } return $group_output; }
public function checkMembers($iOwnerId, $iViewerId) { return isMember(); }
function bx_logout($bNotify = true) { if ($bNotify && isMember()) { require_once BX_DIRECTORY_PATH_CLASSES . 'BxDolAlerts.php'; $oZ = new BxDolAlerts('profile', 'logout', (int) $_COOKIE['memberID']); $oZ->alert(); } $aUrl = parse_url($GLOBALS['site']['url']); $sPath = isset($aUrl['path']) && !empty($aUrl['path']) ? $aUrl['path'] : '/'; setcookie('memberID', '', time() - 96 * 3600, $sPath); setcookie('memberPassword', '', time() - 96 * 3600, $sPath); unset($_COOKIE['memberID']); unset($_COOKIE['memberPassword']); bx_import('BxDolSession'); BxDolSession::getInstance()->destroy(); if (ini_get('session.use_cookies')) { $aParams = session_get_cookie_params(); setcookie(session_name(), '', time() - 96 * 3600, $aParams['path'], $aParams['domain'], $aParams['secure'], $aParams['httponly']); } if (version_compare(PHP_VERSION, '5.4.0') >= 0 && PHP_SESSION_ACTIVE == session_status()) { session_destroy(); } }
src="' . THEME_PATH . '/icons/profile.png" alt="' . $gL10n->get('SYS_SHOW_PROFILE') . '" />' . $row['first_name'] . ' ' . $row['last_name'] . '</a><br />'; if (strlen($row['address']) > 0) { echo $row['address'] . '<br />'; } if (strlen($row['zip_code']) > 0 || strlen($row['city']) > 0) { echo $row['zip_code'] . ' ' . $row['city'] . '<br />'; } if (strlen($row['email']) > 0) { if ($gPreferences['enable_mail_module'] == 1) { echo '<a href="' . $g_root_path . '/adm_program/modules/messages/messages_write.php?usr_id=' . $row['usr_id'] . '">' . $row['email'] . '</a><br />'; } else { echo '<a href="mailto:' . $row['email'] . '">' . $row['email'] . '</a><br />'; } } echo '</p>'; if (!isMember($row['usr_id'])) { // gefundene User ist noch KEIN Mitglied dieser Organisation $link = $g_root_path . '/adm_program/modules/profile/roles.php?usr_id=' . $row['usr_id']; // KEINE Logindaten vorhanden echo '<p>' . $gL10n->get('MEM_NO_MEMBERSHIP', $gCurrentOrganization->getValue('org_shortname')) . '</p> <button class="btn btn-default btn-primary" onclick="window.location.href=\'' . $link . '\'"><img src="' . THEME_PATH . '/icons/new_registrations.png" alt="' . $gL10n->get('MEM_ASSIGN_ROLES') . '" />' . $gL10n->get('MEM_ASSIGN_ROLES') . '</button>'; } ++$i; } echo '</div> </div> <div class="panel panel-default"> <div class="panel-heading">' . $gL10n->get('SYS_CREATE_NEW_USER') . '</div> <div class="panel-body">
function showBlockFriendRequest($sCaption, $bNoDB = false) { if (!isMember()) { return ""; } $aViewer = getProfileInfo(); $mixedCheck = $GLOBALS['MySQL']->getOne("SELECT `Check` FROM `sys_friend_list` WHERE `ID`='" . $this->_iProfileID . "' AND `Profile`='" . $aViewer['ID'] . "' LIMIT 1"); if ($mixedCheck === false || (int) $mixedCheck != 0) { return ""; } $sContent = _t('_pending_friend_request_answer', BX_DOL_URL_ROOT . "communicator.php?person_switcher=to&communicator_mode=friends_requests"); $sContent = MsgBox($sContent); return array($sContent, array(), array(), false); }
public function appsettings($params) { $iVisitorID = isMember() && $_COOKIE['memberID'] > 0 ? (int) $_COOKIE['memberID'] : 0; //TODO //$iVisitorID = (int)$params[3]; $app_id = intval($params[4]); if (!$app_id) { return; } $apps = $this->model('applications'); $people = $this->model('people'); $person = $people->get_person($iVisitorID, true); $app = $apps->get_person_application($iVisitorID, $app_id, 1); $applications = $apps->get_person_applications($iVisitorID); if (count($_POST)) { $settings = unserialize($app['settings']); if (is_object($settings)) { foreach ($_POST as $key => $value) { // only store if the gadget indeed knows this setting, otherwise it could be abuse.. if (isset($settings->{$key})) { $apps->set_application_pref($iVisitorID, $app_id, $key, $value); } } } header("Location: " . BX_DOL_URL_ROOT . 'profile.php?ID=' . $iVisitorID); print 'Saved'; exit; } $this->template('applications/application_settings.php', array('applications' => $applications, 'application' => $app, 'person' => $person)); }
src="' . THEME_PATH . '/icons/profile.png" alt="' . $gL10n->get('SYS_SHOW_PROFILE') . '" />' . $row->first_name . ' ' . $row->last_name . '</a><br />'); if ($row->address !== '') { $page->addHtml($row->address . '<br />'); } if ($row->zip_code !== '' || $row->city !== '') { $page->addHtml($row->zip_code . ' ' . $row->city . '<br />'); } if ($row->email !== '') { if ($gPreferences['enable_mail_module'] == 1) { $page->addHtml('<a href="' . $g_root_path . '/adm_program/modules/messages/messages_write.php?usr_id=' . $row->usr_id . '">' . $row->email . '</a><br />'); } else { $page->addHtml('<a href="mailto:' . $row->email . '">' . $row->email . '</a><br />'); } } $page->addHtml('</p>'); if (isMember($row->usr_id)) { // gefundene User ist bereits Mitglied dieser Organisation if ($row->usr_login_name !== '') { // Logindaten sind bereits vorhanden -> Logindaten neu zuschicken $page->addHtml('<p>' . $gL10n->get('NWU_USER_VALID_LOGIN')); if ($gPreferences['enable_system_mails'] == 1) { $page->addHtml('<br />' . $gL10n->get('NWU_REMINDER_SEND_LOGIN') . '</p> <button class="btn btn-default btn-primary" onclick="window.location.href=\'' . $g_root_path . '/adm_program/modules/registration/registration_function.php?new_user_id=' . $getNewUserId . '&user_id=' . $row->usr_id . '&mode=6\'"><img src="' . THEME_PATH . '/icons/key.png" alt="' . $gL10n->get('NWU_SEND_LOGIN') . '" />' . $gL10n->get('NWU_SEND_LOGIN') . '</button>'); } } else { // Logindaten sind NICHT vorhanden -> diese nun zuordnen $page->addHtml('<p>' . $gL10n->get('NWU_USER_NO_VALID_LOGIN') . '</p> <button class="btn btn-default btn-primary" onclick="window.location.href=\'' . $g_root_path . '/adm_program/modules/registration/registration_function.php?new_user_id=' . $getNewUserId . '&user_id=' . $row->usr_id . '&mode=1\'"><img
require_once '../../system/common.php'; require_once '../../system/login_valid.php'; header('Content-type: text/html; charset=utf-8'); // Initialize and check the parameters $getUserId = admFuncVariableIsValid($_GET, 'usr_id', 'int', array('requireValue' => true)); $getMode = admFuncVariableIsValid($_GET, 'mode', 'string', array('defaultValue' => 'html', 'validValues' => array('html', 'change'))); // in ajax mode only return simple text on error if ($getMode === 'change') { $gMessage->showHtmlTextOnly(true); } else { $gMessage->showInModaleWindow(); } $user = new User($gDb, $gProfileFields, $getUserId); // only the own password could be individual set. // Webmaster could only send a generated password or set a password if no password was set before if (!isMember($getUserId) || !$gCurrentUser->isWebmaster() && $gCurrentUser->getValue('usr_id') != $getUserId || $gCurrentUser->isWebmaster() && $user->getValue('usr_password') !== '' && $user->getValue('EMAIL') === '' && $gPreferences['enable_system_mails'] == 1) { $gMessage->show($gL10n->get('SYS_NO_RIGHTS')); } if ($getMode === 'change') { if ($gCurrentUser->isWebmaster() && $gCurrentUser->getValue('usr_id') != $getUserId) { $oldPassword = ''; } else { $oldPassword = $_POST['old_password']; } $newPassword = $_POST['new_password']; $newPasswordConfirm = $_POST['new_password_confirm']; /***********************************************************************/ /* Handle form input */ /***********************************************************************/ if (($oldPassword !== '' || $gCurrentUser->isWebmaster()) && $newPassword !== '' && $newPasswordConfirm !== '') { if (strlen($newPassword) >= 8) {
function group_print_summary($requestID) { global $db, $main_smarty, $the_template; if (!is_numeric($requestID)) { die; } $index = 0; $group = $db->get_row("SELECT group_id,group_creator, group_status, group_members, group_date, group_name, group_safename, group_description, group_privacy, group_avatar FROM " . table_groups . " WHERE group_id = {$requestID}"); if ($group) { $group_id = $group->group_id; $group_name = $group->group_name; $group_safename = $group->group_safename; $group_description = $group->group_description; $group_creator = $group->group_creator; $group_status = $group->group_status; $group_members = $group->group_members; $group_date = $group->group_date; $group_privacy = $group->group_privacy; $group_avatar = $group->group_avatar; //$group_date = date('M j, Y', $group->group_date); $date = $db->get_var(" SELECT DATE_FORMAT(group_date, '%b, %e %Y') from " . table_groups . " WHERE group_id = {$group->group_id}"); //echo $date; $group_date = $date; //smarty variables $main_smarty->assign('group_id', $group_id); $main_smarty->assign('group_name', $group_name); $main_smarty->assign('group_safename', $group_safename); $main_smarty->assign('group_description', $group_description); $main_smarty->assign('group_creator', $group_creator); $main_smarty->assign('group_status', $group_status); $main_smarty->assign('group_members', $group_members); $main_smarty->assign('group_privacy', $group_privacy); $main_smarty->assign('group_avatar', $group_avatar); $main_smarty->assign('group_date', $group_date); //get group avatar path if ($group_avatar == "uploaded" && file_exists(mnmpath . "avatars/groups_uploaded/" . $group_id . "_" . group_avatar_size_width . ".jpg")) { $imgsrc = my_base_url . my_pligg_base . "/avatars/groups_uploaded/" . $group_id . "_" . group_avatar_size_width . ".jpg"; } else { $imgsrc = my_base_url . my_pligg_base . "/templates/" . $the_template . "/img/group_large.gif"; } $main_smarty->assign('imgsrc', $imgsrc); //get group creator and his url $g_name = get_group_username($group_creator); $main_smarty->assign('group_submitter', $g_name); $submitter_profile_url = getmyurl('user', $g_name); $main_smarty->assign('submitter_profile_url', $submitter_profile_url); $main_smarty->assign('group_avatar_url', getmyurl('group_avatar', $group_id)); //check group admin global $current_user; if ($current_user->user_id == $group_creator) { $main_smarty->assign('is_group_admin', 1); } //language $lang_Created_By = $main_smarty->get_config_vars("PLIGG_Visual_Group_Created_By"); $lang_Created_On = $main_smarty->get_config_vars("PLIGG_Visual_Group_Created_On"); $lang_Member = $main_smarty->get_config_vars("PLIGG_Visual_Group_Member"); //check member //include_once(mnminclude.'group.php'); $main_smarty->assign('is_group_member', isMember($group_id)); // Joining and unjoining member links // Set the url to an empty string if the user has already joined the maximum // allowable number of groups if (reached_max_joinable_groups($db, $current_user)) { $join_url = ''; } else { $join_url = getmyurl("join_group", $group_id); } $main_smarty->assign('join_group_url', $join_url); $main_smarty->assign('unjoin_group_url', getmyurl("unjoin_group", $group_id)); //check logged or not $main_smarty->assign('user_logged_in', $current_user->user_login); //sidebar $main_smarty = do_sidebar($main_smarty); //$main_smarty->assign('form_action', $_SERVER["PHP_SELF"]); $group_story_url = getmyurl("group_story_title", $group_safename); $main_smarty->assign('group_story_url', $group_story_url); $group_edit_url = getmyurl("editgroup", $group_id); $group_delete_url = getmyurl("deletegroup", $group_id); $group_output .= $main_smarty->fetch(The_Template . '/group_summary.tpl'); $index++; } return $group_output; }
protected function _getAuthorId() { return isMember() ? bx_get_logged_profile_id() : 0; }
function isAllowedEdit(&$aFile, $isPerformAction = false) { if ($this->isAdmin($this->_iProfileId)) { return true; } if ($aFile['medProfId'] == $this->_iProfileId) { return true; } else { if (!isMember($this->_iProfileId)) { return false; } $this->_defineActions(); $aCheck = checkAction($this->_iProfileId, $this->_defineActionName('edit'), $isPerformAction); return $aCheck[CHECK_ACTION_RESULT] == CHECK_ACTION_RESULT_ALLOWED; } }
$_SESSION['photo_album'] = $photo_album; } // pruefen, ob Album zur aktuellen Organisation gehoert if ($getPhotoId > 0 && $photo_album->getValue('pho_org_id') != $gCurrentOrganization->getValue('org_id')) { $gMessage->show($gL10n->get('SYS_INVALID_PAGE_VIEW')); } if ($gValidLogin && strlen($gCurrentUser->getValue('EMAIL')) === 0) { // der eingeloggte Benutzer hat in seinem Profil keine gueltige Mailadresse hinterlegt, // die als Absender genutzt werden kann... $gMessage->show($gL10n->get('SYS_CURRENT_USER_NO_EMAIL', '<a href="' . $g_root_path . '/adm_program/modules/profile/profile.php">', '</a>')); } if ($getUserId > 0) { // usr_id wurde uebergeben, dann Kontaktdaten des Users aus der DB fischen $user = new User($gDb, $gProfileFields, $getUserId); // darf auf die User-Id zugegriffen werden if (!$gCurrentUser->editUsers() && !isMember($user->getValue('usr_id')) || strlen($user->getValue('usr_id')) === 0) { $gMessage->show($gL10n->get('SYS_USER_ID_NOT_FOUND')); } // besitzt der User eine gueltige E-Mail-Adresse if (!strValidCharacters($user->getValue('EMAIL'), 'email')) { $gMessage->show($gL10n->get('SYS_USER_NO_EMAIL', $user->getValue('FIRST_NAME') . ' ' . $user->getValue('LAST_NAME'))); } } if (isset($_SESSION['ecard_request'])) { // if user is returned to this form after he submit it, // then try to restore all values that he has entered before $template = $_SESSION['ecard_request']['ecard_template']; $recipients = $_SESSION['ecard_request']['ecard_recipients']; $message = $_SESSION['ecard_request']['ecard_message']; } else { $template = $gPreferences['ecard_template'];
protected function _getAuthorPassword() { return isMember() ? $_COOKIE['memberPassword'] : ""; }
function _logBegin($s) { $sDate = date($this->_sLogDateFormat); return "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX\n" . $sDate . " " . $s . "\n" . "User ID: " . getLoggedId() . "\n" . "User role: " . (isAdmin() ? 'admin' : (isMember() ? 'member' : 'guest')) . "\n"; }
} if (is_numeric($requestID)) { $id = $requestID; $link = new Link(); $link->id = $requestID; if ($link->read() == false || sizeof($thecat) > 0 && (array_diff($thecat, $link->additional_cats, array($link->category)) || sizeof($thecat) != sizeof($link->additional_cats) + 1) || ($link->status == 'spam' || $link->status == 'discard') && !checklevel('admin') && !checklevel('moderator')) { // check for redirects include mnminclude . 'redirector.php'; $x = new redirector($_SERVER['REQUEST_URI']); header("Location: {$my_pligg_base}/error_404.php"); die; } // Hide private group stories if ($link->link_group_id) { $privacy = $db->get_var("SELECT group_privacy FROM " . table_groups . " WHERE group_id = {$link->link_group_id}"); if ($privacy == 'private' && !isMember($link->link_group_id)) { die('Access denied'); } } if (isset($_POST['process']) && sanitize($_POST['process'], 3) != '') { if (sanitize($_POST['process'], 3) == 'newcomment') { check_referrer(); $vars = array('user_id' => $link->author, 'link_id' => $link->id); check_actions('comment_subscription', $vars); insert_comment(); } } require_once mnminclude . 'check_behind_proxy.php'; // Set globals $globals['link_id'] = $link->id; $globals['category_id'] = $link->category;
/** * Logout user by removing cookies */ function bx_logout($bNotify = true) { if ($bNotify && isMember()) { bx_alert('account', 'logout', (int) $_COOKIE['memberID']); } $aUrl = parse_url(BX_DOL_URL_ROOT); $sPath = isset($aUrl['path']) && !empty($aUrl['path']) ? $aUrl['path'] : '/'; setcookie('memberID', '', time() - 96 * 3600, $sPath); setcookie('memberPassword', '', time() - 96 * 3600, $sPath); unset($_COOKIE['memberID']); unset($_COOKIE['memberPassword']); bx_import('BxDolSession'); BxDolSession::getInstance()->destroy(); }