}
if ($apiType == 'xml') {
header("Content-type: text/xml; charset=UTF-8");
$responsexml = new DOMDocument('1.0', 'utf-8');
$element = $responsexml->createElement('users');
$query2 = $sql->prepare("SELECT COUNT(`id`) AS `amount` FROM `userdata` WHERE `resellerid`=? AND `accounttype`='u'");
$query2->execute(array($resellerID));
$key = $responsexml->createElement('totalAmount', (int) $query2->fetchColumn());
$element->appendChild($key);
$key = $responsexml->createElement('start', isset($data['start']) ? (int) $data['start'] : '');
$element->appendChild($key);
$key = $responsexml->createElement('amount', isset($data['amount']) ? (int) $data['amount'] : '');
$element->appendChild($key);
$key = $responsexml->createElement('like', (isset($data['like']) and wpreg_check($data['like'], 255)) ? $data['like'] : '');
$element->appendChild($key);
$key = $responsexml->createElement('notLike', (isset($data['notLike']) and wpreg_check($data['notLike'], 255)) ? $data['notLike'] : '');
$element->appendChild($key);
while ($row = $query->fetch(PDO::FETCH_ASSOC)) {
$listRootServerXML = $responsexml->createElement('user');
$listServerXML = $responsexml->createElement('id', $row['id']);
$listRootServerXML->appendChild($listServerXML);
$listServerXML = $responsexml->createElement('active', $row['active']);
$listRootServerXML->appendChild($listServerXML);
$listServerXML = $responsexml->createElement('salutation', $row['salutation']);
$listRootServerXML->appendChild($listServerXML);
$listServerXML = $responsexml->createElement('cname', $row['cname']);
$listRootServerXML->appendChild($listServerXML);
$listServerXML = $responsexml->createElement('vname', $row['vname']);
$listRootServerXML->appendChild($listServerXML);
$listServerXML = $responsexml->createElement('name', $row['name']);
$listRootServerXML->appendChild($listServerXML);
function deleteOldToken($w = '', $d = '', $id = '')
{
global $_SESSION;
if ($w != 'sID') {
if ($id != '' and $d != '') {
unset($_SESSION[$w][$d][$id]);
} else {
if ($id == '' and $d != '') {
unset($_SESSION[$w][$d]);
} else {
if ($id != '' and $d == '') {
unset($_SESSION[$w][$id]);
} else {
if ($id == '' and $d == '') {
unset($_SESSION[$w]);
}
}
}
}
}
foreach ($_SESSION as $k => $v) {
if (wpreg_check($k, 4) and $k != 'sID' and (isset($_SESSION[$k]['t']) and $_SESSION[$k]['d'] < strtotime('now') or is_array($_SESSION[$k]) and count($_SESSION[$k]) == 0)) {
unset($_SESSION[$k]);
} else {
if (wpreg_check($k, 4) and is_array($_SESSION[$k]) and count($_SESSION[$k]) > 0) {
foreach ($_SESSION[$k] as $k2 => $v2) {
if (wpreg_check($k2, 4) and (isset($_SESSION[$k][$k2]['t']) and $_SESSION[$k][$k2]['d'] < strtotime('now') or is_array($_SESSION[$k][$k2]) and count($_SESSION[$k][$k2]) == 0)) {
unset($_SESSION[$k][$k2]);
} else {
if (wpreg_check($k2, 4) and is_array($_SESSION[$k][$k2]) and count($_SESSION[$k][$k2]) > 0) {
foreach ($_SESSION[$k][$k2] as $k3 => $v3) {
if (isid($k3, 4) and (isset($_SESSION[$k][$k2][$k3]['t']) and $_SESSION[$k][$k2][$k3]['d'] < strtotime('now') or is_array($_SESSION[$k][$k2][$k3]) and count($_SESSION[$k][$k2][$k3]) == 0)) {
unset($_SESSION[$k][$k2][$k3]);
}
}
}
}
}
}
}
}
}
} else {
header('Location: index.php');
}
die;
}
$query = $sql->prepare("SELECT `registration`,`registrationQuestion`,`registrationBadEmail`,`registrationBadIP` FROM `page_settings` WHERE `resellerid`=0 LIMIT 1");
$query->execute();
while ($row = $query->fetch(PDO::FETCH_ASSOC)) {
$registration = $row['registration'];
$registrationQuestion = $row['registrationQuestion'];
$registrationBadEmail = $row['registrationBadEmail'];
$registrationBadIP = $row['registrationBadIP'];
}
$langObject = getlanguagefile('user', $user_language, 0);
if (isset($registration) and in_array($registration, array('A', 'M', 'D'))) {
$activationToken = (isset($page_name) and isset($page_count) and $page_name == 'activate' and wpreg_check($page_count, 100)) ? $page_count : $ui->pregw('activate', 100, 'get');
if ($activationToken) {
// Check if a user to the activation ID exists
$query = $sql->prepare("SELECT `id` FROM `userdata` WHERE `token`=? LIMIT 1");
$query->execute(array($activationToken));
$userID = $query->fetchColumn();
if (isid($userID, 10)) {
$query = $sql->prepare("UPDATE `userdata` SET `active`='Y',`token`=null,`updateTime`=NOW() WHERE `id`=? LIMIT 1");
$query->execute(array($userID));
$_SESSION['userid'] = $userID;
$_SESSION['resellerid'] = 0;
$template_file = $page_sprache->registerActivated;
$langObjectTemp = getlanguagefile('redirect', $user_language, 0);
$text = $langObjectTemp->refresh;
$langObjectTemp = null;
if (isset($page_data->canurl)) {
$slots = (int) $xml->slots;
$lendtime = (int) $xml->lendtime;
} else {
$password = $ui->w('password', 50, 'post');
$slots = $ui->id('slots', 3, 'post');
$lendtime = $ui->id('time', 4, 'post');
}
if (!isid($slots, 3) or $slots > $vomaxplayer or $slots < $vominplayer) {
$fail = 1;
$error .= 'Slots</br>';
}
if (!isid($lendtime, 4) or $lendtime > $vomaxtime or $lendtime < $vomintime) {
$fail = 1;
$error .= 'Time' . "{$lendtime} > {$vomaxtime} or {$lendtime} < {$vomintime}" . '</br>';
}
if (!wpreg_check($password, 50)) {
$error .= 'Password</br>';
$fail = 1;
}
if ($fail == 0 and $freevoice > 0) {
$timeleft = $lendtime;
$query = $sql->prepare("SELECT `bitversion`,`type`,`queryport`,AES_DECRYPT(`querypassword`,:aeskey) AS `decryptedquerypassword`,`rootid`,`addedby`,`publickey`,`ssh2ip`,AES_DECRYPT(`ssh2port`,:aeskey) AS `decryptedssh2port`,AES_DECRYPT(`ssh2user`,:aeskey) AS `decryptedssh2user`,AES_DECRYPT(`ssh2password`,:aeskey) AS `decryptedssh2password`,`serverdir`,`keyname`,`notified`,`defaultname`,`defaultwelcome`,`defaulthostbanner_url`,`defaulthostbanner_gfx_url`,`defaulthostbutton_tooltip`,`defaulthostbutton_url`,`defaulthostbutton_gfx_url`,`usedns` FROM `voice_masterserver` WHERE `active`='Y' AND `id`=:id AND `resellerid`=:reseller_id LIMIT 1");
$query->execute(array(':aeskey' => $aeskey, ':id' => $bestmaster, ':reseller_id' => $reseller_id));
while ($row = $query->fetch(PDO::FETCH_ASSOC)) {
$addedby = $row['addedby'];
$queryport = $row['queryport'];
$querypassword = $row['decryptedquerypassword'];
$usedns = $row['usedns'];
$name = $row['defaultname'];
$welcome = $row['defaultwelcome'];
$banner_url = $row['defaulthostbanner_url'];
$externalServerID = isExternalID($data['server_external_id']);
$success['false'][] = !dataExist('identify_user_by', $data) ? 'Can not identify user or bad email' : 'Slot amount needs to be specified';
}
}
} else {
if (!isset($success['false']) and array_value_exists('action', 'mod', $data)) {
$identifyUserBy = $data['identify_user_by'];
$localUserID = isid($data['user_localid'], 21);
$externalUserID = isExternalID($data['user_externalid']);
$username = $data['username'];
$identifyServerBy = $data['identify_server_by'];
$localServerID = isid($data['server_local_id'], 21);
$externalServerID = isExternalID($data['server_external_id']);
$shorten = $data['shorten'];
$from = array('server_local_id' => 'id', 'server_external_id' => 'externalID');
$initialpassword = (isset($data['initialpassword']) and wpreg_check($data['initialpassword'], 50)) ? $data['initialpassword'] : '';
if (is_array($data['shorten']) or is_object($data['shorten'])) {
$shorten = $data['shorten'];
} else {
if (isset($data['shorten'])) {
$shorten = array($data['shorten']);
}
}
if (dataExist('identify_server_by', $data)) {
$query = $sql->prepare("SELECT r.`install_paths`,r.`quota_active`,r.`externalID`,r.`hyperthreading`,r.`cores` AS `coresAvailable`,g.*,u.`cname` FROM `gsswitch` g INNER JOIN `rserverdata` r ON g.`rootID`=r.`id` INNER JOIN `userdata` u ON u.`id`=g.`userid` WHERE g.`" . $from[$data['identify_server_by']] . "`=? AND g.`resellerid`=? LIMIT 1");
$query->execute(array($data[$data['identify_server_by']], $resellerID));
while ($row = $query->fetch(PDO::FETCH_ASSOC)) {
$localID = $row['id'];
$userID = $row['userid'];
$ftpUser = $row['cname'] . '-' . $row['id'];
$hostID = $row['rootID'];
$fail = 1;
echo "test" . $ui->post['reseller'];
}
if (!isip($ui->post['ip'], "all")) {
$fail = 1;
$template_file .= "IP <br />";
}
if (!isid($ui->post['port'], "5")) {
$fail = 1;
$template_file .= "Port <br />";
}
if (!uname_check($ui->post['user'], "20")) {
$fail = 1;
$template_file .= "User <br />";
}
if (!wpreg_check($ui->post['publickey'], 1)) {
$fail = 1;
$template_file .= "Key <br />";
}
if (!active_check($ui->post['active'])) {
$fail = 1;
$template_file .= "Active <br />";
}
if (!active_check($ui->post['esxi'])) {
$fail = 1;
$template_file .= "ESXi <br />";
}
if (!active_check($ui->post['thin'])) {
$fail = 1;
}
if ($fail != 1) {
