(C) Giovanni Capuano 2011
*/
require_once 'core/class.Ocarina.php';
$ocarina = new Ocarina();
$config = $ocarina->getConfig();
$oldPassword = isset($_POST['oldPassword']) && $_POST['oldPassword'] !== '' ? $ocarina->purge($_POST['oldPassword']) : '';
$password = isset($_POST['password']) && $_POST['password'] !== '' ? $ocarina->purge($_POST['password']) : '';
$confPassword = isset($_POST['confPassword']) && $_POST['confPassword'] !== '' ? $ocarina->purge($_POST['confPassword']) : '';
$submit = isset($_POST['submit']) ? true : false;
$ocarina->skin = $ocarina->isLogged() ? $ocarina->username[0]->skin : $ocarina->config[0]->skin;
$ocarina->addValue('titolo', $ocarina->getLanguage('title', 5) . $ocarina->getLanguage('title', 2) . $ocarina->config[0]->nomesito);
$ocarina->addValue('description', $ocarina->getLanguage('description', 3));
if ($ocarina->isLogged()) {
if ($oldPassword !== '' && $password !== '' && $confPassword !== '') {
if (md5($ocarina->salt . $oldPassword) == $ocarina->username[0]->password && $password == $confPassword && strlen($password) > 4) {
if ($ocarina->editUser('password', md5($ocarina->salt . $password), $ocarina->username[0]->nickname)) {
if ($ocarina->config[0]->log == 1) {
$ocarina->log($ocarina->username[0]->nickname, 'Password modificated.');
}
$ocarina->addValue('result', $ocarina->getLanguage('editpassword', 0) . header('Refresh: 2; URL=' . $ocarina->config[0]->url_index . '/logout.php?redirect=login.php'));
} else {
if ($ocarina->config[0]->log == 1) {
$ocarina->log($ocarina->username[0]->nickname, 'Password modification failed');
}
$ocarina->addValue('result', $ocarina->getLanguage('editpassword', 1));
}
} else {
if ($ocarina->config[0]->log == 1) {
$ocarina->log($ocarina->username[0]->nickname, 'Password modification failed');
}
$ocarina->addValue('result', $ocarina->getLanguage('editpassword', 2));
$ocarina->skin = $ocarina->isLogged() ? $ocarina->username[0]->skin : $ocarina->config[0]->skin;
$ocarina->addValue('titolo', $ocarina->getLanguage('title', 8) . $ocarina->getLanguage('title', 2) . $ocarina->config[0]->nomesito);
$ocarina->addValue('description', $ocarina->getLanguage('description', 8));
if ($ocarina->isLogged()) {
$ocarina->addValue('result', $ocarina->getLanguage('registration', 0));
} elseif ($codiceRegistrazione !== '') {
if ($ocarina->config[0]->validazioneaccount == 0) {
$ocarina->addValue('result', $ocarina->getLanguage('registration', 1));
} else {
if (!($ocarina->username = $ocarina->searchUserByField('codiceregistrazione', $codiceRegistrazione))) {
if ($ocarina->config[0]->log == 1) {
$ocarina->log('~', 'Invalid validation code.');
}
$ocarina->addValue('result', $ocarina->getLanguage('registration', 2));
} elseif ($ocarina->username[0]->codiceregistrazione == $codiceRegistrazione) {
if ($ocarina->editUser('codiceregistrazione', '', $ocarina->username[0]->nickname)) {
if ($ocarina->config[0]->log == 1) {
$ocarina->log('~', 'Validation account complete.');
}
$ocarina->addValue('result', $ocarina->getLanguage('registration', 3) . header('Refresh: 2; URL=' . $ocarina->config[0]->url_index . '/login.php'));
} else {
if ($ocarina->config[0]->{$ocarina}->addValue('result', $ocarina->getLanguage('registration', 11)) == 1) {
$ocarina->log('~', 'Validation account failed.');
}
$ocarina->addValue('result', $ocarina->getLanguage('registration', 4));
}
} else {
$ocarina->addValue('result', $ocarina->getLanguage('registration', 2));
if ($ocarina->config[0]->log == 1) {
$ocarina->log('~', 'Invalid validation code.');
}
/**
/admin/modificagrado.php
(C) Giovanni Capuano 2011
*/
require_once '../core/class.Ocarina.php';
$ocarina = new Ocarina();
$nickname = isset($_POST['nickname']) && $_POST['nickname'] !== '' ? $ocarina->purgeByXSS($_POST['nickname']) : '';
$grado = isset($_POST['grado']) && $_POST['grado'] !== '' && is_numeric($_POST['grado']) ? (int) $_POST['grado'] : '';
$submit = isset($_POST['submit']) ? true : false;
$ocarina->skin = 'admin';
$ocarina->addValue('titolo', $ocarina->getLanguage('title', 21) . $ocarina->getLanguage('title', 2) . $ocarina->getLanguage('title', 10) . $ocarina->getLanguage('title', 2) . $ocarina->config[0]->nomesito);
if ($ocarina->isLogged() && $ocarina->username[0]->grado == 1) {
if (!$submit) {
$ocarina->addValue('utenti', $ocarina->getUser());
} else {
if ($ocarina->editUser('grado', $grado, $nickname)) {
if ($ocarina->config[0]->log == 1) {
$ocarina->log($ocarina->username[0]->nickname, $nickname . ' now is in the grade ' . $grado . '.');
}
$ocarina->addValue('result', $ocarina->getLanguage('editgrade', 0));
} else {
if ($ocarina->config[0]->log == 1) {
$ocarina->log($ocarina->username[0]->nickname, $nickname->username[0]->nickname . ' has failed to change the grade of ' . $nickname . ' in ' . $grado . '.');
}
$ocarina->addValue('result', str_replace('{$nickname}', $nickname, $ocarina->getLanguage('editgrade', 1), $ocarina->getLanguage('editgrade', 0)));
}
}
} else {
$ocarina->addValue('result', $ocarina->getLanguage('error', 4));
}
$ocarina->addValue('submit', $submit);
if (!$submit) {
$ocarina->addValue('captcha', $captcha->getCaptcha());
$ocarina->addValue('result', $ocarina->getLanguage('recoverpassword', 8));
} elseif (!$ocarina->isLogged()) {
if ($email == '' && $recupero && $codiceRecupero !== '') {
if (!($ocarinaname = $ocarina->searchUserByField('codicerecupero', $codiceRecupero))) {
$ocarina->addValue('result', $ocarina->getLanguage('recoverpassword', 0));
if ($ocarina->config[0]->log == 1) {
$ocarina->log('~', 'Invalid recover code.');
}
$ocarina->addValue('recupera', '');
} elseif ($ocarinaname[0]->codicerecupero == $codiceRecupero) {
$codice = $ocarina->getCode();
$password = substr($codice, strlen($codice) - 24);
// 32-24=8
if ($ocarina->editUser('codicerecupero', '', $ocarinaname[0]->nickname) && $ocarina->editUser('password', md5($password), $ocarinaname[0]->nickname)) {
if ($ocarina->config[0]->log == 1) {
$ocarina->log($ocarinaname[0]->nickname, 'Password recovered.');
}
$ocarina->addValue('result', str_replace('{$password}', $password, $ocarina->getLanguage('recoverpassword', 1)));
$ocarina->addValue('recupera', '');
} else {
$ocarina->addValue('result', $ocarina->getLanguage('recoverpassword', 2));
$ocarina->addValue('recupera', '');
}
} else {
$ocarina->addValue('result', $ocarina->getLanguage('recoverpassword', 3));
}
} elseif ($email !== '' && !$recupero) {
$captcha->checkCaptcha();
if ($captcha->getError() !== false) {
$ocarina->addValue('description', $ocarina->getLanguage('description', 4));
if ($ocarina->isLogged()) {
if (!$submit) {
$ocarina->addValue('email', $ocarina->username[0]->email);
$ocarina->addValue('bio', $ocarina->username[0]->bio);
$ocarina->addValue('avatar', $ocarina->username[0]->avatar);
$ocarina->addValue('listaskin', $ocarina->getSkinList());
$ocarina->addValue('skinattuale', $ocarina->skin);
} else {
if ($ocarina->isEmail($email) && $email !== '' && $skin !== '' && $password !== '') {
if ($ocarina->isEmailUsed($ocarina->username[0]->nickname, $email) || !$ocarina->checkPassword($ocarina->username[0]->password, $password)) {
if ($ocarina->config[0]->log == 1) {
$ocarina->log($ocarina->username[0]->nickname, 'Profile modification failed.');
}
$ocarina->addValue('result', $ocarina->getLanguage('editprofile', 0));
} elseif ($ocarina->editUser('email', $email, $ocarina->username[0]->nickname) && $ocarina->editUser('bio', $bio, $ocarina->username[0]->nickname) && $ocarina->editUser('skin', $skin, $ocarina->username[0]->nickname) && $ocarina->editUser('avatar', $avatar, $ocarina->username[0]->nickname)) {
if ($ocarina->config[0]->log == 1) {
$ocarina->log($ocarina->username[0]->nickname, 'Profile modificated.');
}
$ocarina->addValue('result', $ocarina->getLanguage('editprofile', 1) . header('Refresh: 2; URL=' . $ocarina->config[0]->url_index . '/profile/' . $ocarina->username[0]->nickname . '.html'));
} else {
if ($ocarina->config[0]->log == 1) {
$ocarina->log($ocarina->username[0]->nickname, 'Profile modification failed.');
}
$ocarina->addValue('result', $ocarina->getLanguage('editprofile', 2));
}
} else {
$ocarina->addValue('result', $ocarina->getLanguage('editprofile', 3));
}
}
} else {
