function GenStoredMemIPs()
{
$sCntSQL = "SELECT COUNT(*) FROM `sys_ip_members_visits`";
////////////////////////////
$iTotalNum = db_value($sCntSQL);
if (!$iTotalNum) {
return MsgBox(_t('_Empty'));
}
$iPerPage = (int) $_GET['per_page'];
if (!$iPerPage) {
$iPerPage = 10;
}
$iCurPage = (int) $_GET['page'];
if ($iCurPage < 1) {
$iCurPage = 1;
}
$sLimitFrom = ($iCurPage - 1) * $iPerPage;
$sqlLimit = "LIMIT {$sLimitFrom}, {$iPerPage}";
////////////////////////////
$sSQL = "SELECT *, UNIX_TIMESTAMP(`DateTime`) AS `DateTimeTS` FROM `sys_ip_members_visits` ORDER BY `DateTime` DESC {$sqlLimit}";
$rIPList = db_res($sSQL);
$aTmplVarsItems = array();
while ($aIPList = mysql_fetch_assoc($rIPList)) {
$iID = (int) $aIPList['ID'];
$sFrom = long2ip($aIPList['From']);
$sLastDT = getLocaleDate($aIPList['DateTimeTS'], BX_DOL_LOCALE_DATE);
$sMember = $aIPList['MemberID'] ? '<a href="' . getProfileLink($aIPList['MemberID']) . '">' . getNickname($aIPList['MemberID']) . '</a>' : '';
$aTmplVarsItems[] = array('from' => $sFrom, 'bx_if:show_profile_link' => array('condition' => !empty($aIPList['MemberID']), 'content' => array('href' => getProfileLink($aIPList['MemberID']), 'caption' => getNickname($aIPList['MemberID']))), 'date' => $sLastDT);
}
$oPaginate = new BxDolPaginate(array('page_url' => $GLOBALS['site']['url_admin'] . 'ip_blacklist.php?mode=list&page={page}&per_page={per_page}', 'count' => $iTotalNum, 'per_page' => $iPerPage, 'page' => $iCurPage));
return $GLOBALS['oAdmTemplate']->parseHtmlByName('ip_blacklist_list_ips.html', array('bx_repeat:items' => $aTmplVarsItems, 'paginate' => $oPaginate->getPaginate()));
}
function uploadImage($sUser, $sPwd, $sAlbum, $binImageData, $iDataLength, $sTitle, $sTags, $sDesc)
{
if (!($iId = BxDolXMLRPCUtil::checkLogin($sUser, $sPwd))) {
return new xmlrpcresp(new xmlrpcval(array('error' => new xmlrpcval(1, "int")), "struct"));
}
if (!BxDolXMLRPCMedia::_isMembershipEnabledFor($iIdProfileViewer, 'BX_PHOTOS_ADD', true)) {
return new xmlrpcval("fail access");
}
// write tmp file
$sTmpFilename = BX_DIRECTORY_PATH_ROOT . "tmp/" . time() . '_' . $iId;
$f = fopen($sTmpFilename, "wb");
if (!$f) {
return new xmlrpcval("fail fopen");
}
if (!fwrite($f, $binImageData, (int) $iDataLength)) {
fclose($f);
return new xmlrpcval("fail write");
}
fclose($f);
// upload
$aFileInfo = array();
$aFileInfo['medTitle'] = process_db_input($sTitle, BX_TAGS_STRIP, BX_SLASHES_NO_ACTION);
$aFileInfo['medDesc'] = process_db_input($sDesc, BX_TAGS_VALIDATE, BX_SLASHES_NO_ACTION);
$aFileInfo['medTags'] = process_db_input($sTags, BX_TAGS_STRIP, BX_SLASHES_NO_ACTION);
$aFileInfo['Categories'] = array(process_db_input($sAlbum, BX_TAGS_STRIP, BX_SLASHES_NO_ACTION));
$aFileInfo['album'] = process_db_input($sAlbum, BX_TAGS_STRIP, BX_SLASHES_NO_ACTION);
$isUpdateThumb = (int) db_value("SELECT `Avatar` FROM `Profiles` WHERE `ID` = '{$iId}' LIMIT 1") ? false : true;
if (BxDolService::call('photos', 'perform_photo_upload', array($sTmpFilename, $aFileInfo, $isUpdateThumb), 'Uploader')) {
return new xmlrpcval("ok");
} else {
return new xmlrpcval("fail upload");
}
}
function getMemberAdsCnt($iMemberID, $sStatus = '', $bTimeCheck = FALSE)
{
$sStatus = $sStatus ? " AND`Status`='" . process_db_input($sStatus, BX_TAGS_STRIP) . "'" : "";
if ($bTimeCheck) {
$this->_oConfig->bAdminMode = FALSE;
}
$sTimeRestriction = $this->_oConfig->bAdminMode == true ? '' : "AND UNIX_TIMESTAMP() - `{$this->_oConfig->sSQLPostsTable}`.`LifeTime`*24*60*60 < `{$this->_oConfig->sSQLPostsTable}`.`DateTime`";
$sMemberAdsSQL = "\n SELECT COUNT(*) FROM `{$this->_oConfig->sSQLPostsTable}` WHERE `IDProfile` = '{$iMemberID}'\n {$sStatus}\n {$sTimeRestriction}\n ";
return (int) db_value($sMemberAdsSQL);
}
function checkEmail($s)
{
if (!preg_match("/(([A-Za-z]{3,9}:(?:\\/\\/)?)(?:[\\-;:&=\\+\$,\\w]+@)?[A-Za-z0-9\\.\\-]+|(?:www\\.|[\\-;:&=\\+\$,\\w]+@)[A-Za-z0-9\\.\\-]+)((?:\\/[\\+~%\\/\\.\\w\\-_]*)?\\??(?:[\\-\\+=&;%@\\.\\w_]*)#?(?:[\\.\\!\\/\\\\w]*))?/", $s)) {
return false;
}
$iID = (int) db_value("SELECT `ID` FROM `Profiles` WHERE `Email` = '{$s}'");
if (!$iID) {
return _t('_MEMBER_NOT_RECOGNIZED', $site['title']);
}
return true;
}
function checkEmail($s)
{
if (!preg_match('/^[a-z0-9_\\-]+(\\.[_a-z0-9\\-]+)*@([_a-z0-9\\-]+\\.)+([a-z]{2}|aero|arpa|asia|biz|cat|com|coop|edu|gov|info|int|jobs|mil|mobi|museum|name|net|org|pro|tel|travel)$/i', $s)) {
return false;
}
$iID = (int) db_value("SELECT `ID` FROM `Profiles` WHERE `Email` = '{$s}'");
if (!$iID) {
return _t('_MEMBER_NOT_RECOGNIZED', $site['title']);
}
return true;
}
/**
* Update existing or create new template ;
*
* @param $sTemplateName (string) - name of template ;
* @param $sTemplateSubj (string) - subject of template ;
* @param $sTemplateBody (string) - text of template ;
* @param $iLangID (integer) - needed language's ID;
* @return HTML presentation data ;
*/
function setTemplate($sTemplateName, $sTemplateSubj, $sTemplateBody, $iLangID)
{
if (!db_value("SELECT `ID` FROM `sys_email_templates` WHERE `Name` = '" . process_db_input($sTemplateName) . "' AND `LangID` = '{$iLangID}'")) {
$sQuery = "\n INSERT INTO\n `sys_email_templates` (`Name`, `Subject`, `Body`, `LangID`)\n VALUES\n (\n '" . process_db_input($sTemplateName) . "',\n '" . process_db_input($sTemplateSubj) . "',\n '" . process_db_input($sTemplateBody) . "',\n '" . (int) $iLangID . "'\n )\n ";
$sMessage = 'Template was created';
} else {
$sQuery = "\n UPDATE\n `sys_email_templates`\n SET\n `Subject` = '" . process_db_input($sTemplateSubj) . "',\n `Body` = '" . process_db_input($sTemplateBody) . "'\n WHERE\n `Name` = '" . process_db_input($sTemplateName) . "'\n AND\n `LangID` = '" . (int) $iLangID . "'\n LIMIT 1\n ";
$sMessage = 'Template was updated';
}
db_res($sQuery);
return $this->genTemplatesForm($sTemplateName, $iLangID, $sMessage);
}
/**
* Update existing or create new template ;
*
* @param $sTemplateName (string) - name of template ;
* @param $sTemplateSubj (string) - subject of template ;
* @param $sTemplateBody (string) - text of template ;
* @param $iLangID (integer) - needed language's ID;
* @return HTML presentation data ;
*/
function setTemplate($sTemplateName, $sTemplateSubj, $sTemplateBody, $iLangID)
{
if (!db_value("SELECT `ID` FROM `sys_email_templates` WHERE `Name` = '" . process_db_input($sTemplateName) . "' AND `LangID` = '{$iLangID}'")) {
$sQuery = " \r\n\t\t\t\tINSERT INTO \r\n\t\t\t\t\t`sys_email_templates` (`Name`, `Subject`, `Body`, `LangID`) \r\n\t\t\t\tVALUES\r\n\t\t\t\t\t(\r\n\t\t\t\t\t\t'" . process_db_input($sTemplateName) . "', \r\n\t\t\t\t\t\t'" . process_db_input($sTemplateSubj) . "',\r\n\t\t\t\t\t\t'" . process_db_input($sTemplateBody) . "',\r\n\t\t\t\t\t\t'" . (int) $iLangID . "'\r\n\t\t\t\t\t)\r\n\t\t\t";
$sMessage = 'Template was created';
} else {
$sQuery = " \r\n\t\t\t\tUPDATE \r\n\t\t\t\t\t`sys_email_templates` \r\n\t\t\t\tSET \r\n\t\t\t\t\t`Subject` = '" . process_db_input($sTemplateSubj) . "',\r\n\t\t\t\t\t`Body` = '" . process_db_input($sTemplateBody) . "'\r\n\t\t\t\tWHERE \r\n\t\t\t\t\t`Name` = '" . process_db_input($sTemplateName) . "'\r\n\t\t\t\t\t\tAND\r\n\t\t\t\t\t`LangID` = '" . (int) $iLangID . "'\r\n\t\t\t\tLIMIT 1 \r\n\t\t\t";
$sMessage = 'Template was updated';
}
db_res($sQuery);
return $this->genTemplatesForm($sTemplateName, $iLangID, $sMessage);
}
function GenStoredMemIPs()
{
$sFromC = _t('_From');
$sMemberC = _t('_Member');
$sDatatimeC = _t('_Date');
$sCaptionC = _t('_adm_ipbl_Stored_members_caption');
$sRes = '<br /><h2>' . $sCaptionC . '</h2>';
$sTableRes .= <<<EOF
<table style="width:99%;" border="1" cellpadding="2" cellspacing="1" style="border-collapse: collapse">
\t<tr>
\t\t<td>{$sFromC}</td>
<td>{$sMemberC}</td>
\t\t<td>{$sDatatimeC}</td>
\t</tr>
EOF;
$sCntSQL = "SELECT COUNT(*) FROM `sys_ip_members_visits`";
////////////////////////////
$iTotalNum = db_value($sCntSQL);
if (!$iTotalNum) {
return $sRes . MsgBox(_t('_Empty'));
}
$iPerPage = (int) $_GET['per_page'];
if (!$iPerPage) {
$iPerPage = 10;
}
$iCurPage = (int) $_GET['page'];
if ($iCurPage < 1) {
$iCurPage = 1;
}
$sLimitFrom = ($iCurPage - 1) * $iPerPage;
$sqlLimit = "LIMIT {$sLimitFrom}, {$iPerPage}";
////////////////////////////
$sSQL = "SELECT * FROM `sys_ip_members_visits` ORDER BY `DateTime` ASC {$sqlLimit}";
$rIPList = db_res($sSQL);
while ($aIPList = mysql_fetch_assoc($rIPList)) {
$iID = (int) $aIPList['ID'];
$sFrom = long2ip($aIPList['From']);
$sLastDT = $aIPList['DateTime'];
$sMember = $aIPList['MemberID'] ? '<a href="' . getProfileLink($aIPList['MemberID']) . '">' . getNickname($aIPList['MemberID']) . '</a>' : '';
$sTableRes .= "<tr><td>{$sFrom}</td><td>{$sMember}</td><td>{$sLastDT}</td></tr>";
}
$sTableRes .= <<<EOF
</table>
<div class="clear_both"></div>
<br />
EOF;
$sRequest = $GLOBALS['site']['url_admin'] . 'ip_blacklist.php?page={page}&per_page={per_page}';
$oPaginate = new BxDolPaginate(array('page_url' => $sRequest, 'count' => $iTotalNum, 'per_page' => $iPerPage, 'page' => $iCurPage, 'per_page_changer' => true, 'page_reloader' => true, 'on_change_page' => null, 'on_change_per_page' => null));
return $sRes . $sTableRes . $oPaginate->getPaginate();
}
function GenStoredMemIPs()
{
$sRes = '';
$sFromC = _t('_From');
$sMemberC = _t('_Member');
$sDatatimeC = _t('_Date');
$sTableRes .= <<<EOF
<table style="width:99%; border-collapse:collapse;" cellpadding="4" style="border-collapse: collapse">
<tr>
<td class="bx-def-border">{$sFromC}</td>
<td class="bx-def-border">{$sMemberC}</td>
<td class="bx-def-border">{$sDatatimeC}</td>
</tr>
EOF;
$sCntSQL = "SELECT COUNT(*) FROM `sys_ip_members_visits`";
////////////////////////////
$iTotalNum = db_value($sCntSQL);
if (!$iTotalNum) {
return $sRes . MsgBox(_t('_Empty'));
}
$iPerPage = (int) $_GET['per_page'];
if (!$iPerPage) {
$iPerPage = 10;
}
$iCurPage = (int) $_GET['page'];
if ($iCurPage < 1) {
$iCurPage = 1;
}
$sLimitFrom = ($iCurPage - 1) * $iPerPage;
$sqlLimit = "LIMIT {$sLimitFrom}, {$iPerPage}";
////////////////////////////
$sSQL = "SELECT *, UNIX_TIMESTAMP(`DateTime`) AS `DateTimeTS` FROM `sys_ip_members_visits` ORDER BY `DateTime` DESC {$sqlLimit}";
$rIPList = db_res($sSQL);
while ($aIPList = mysql_fetch_assoc($rIPList)) {
$iID = (int) $aIPList['ID'];
$sFrom = long2ip($aIPList['From']);
$sLastDT = getLocaleDate($aIPList['DateTimeTS'], BX_DOL_LOCALE_DATE);
$sMember = $aIPList['MemberID'] ? '<a href="' . getProfileLink($aIPList['MemberID']) . '">' . getNickname($aIPList['MemberID']) . '</a>' : '';
$sTableRes .= "<tr><td class='bx-def-border'>{$sFrom}</td><td class='bx-def-border'>{$sMember}</td><td class='bx-def-border'>{$sLastDT}</td></tr>";
}
$sTableRes .= <<<EOF
</table>
<div class="clear_both"></div>
EOF;
$sRequest = $GLOBALS['site']['url_admin'] . 'ip_blacklist.php?mode=list&page={page}&per_page={per_page}';
$oPaginate = new BxDolPaginate(array('page_url' => $sRequest, 'count' => $iTotalNum, 'per_page' => $iPerPage, 'page' => $iCurPage, 'per_page_changer' => true, 'page_reloader' => true, 'on_change_page' => null, 'on_change_per_page' => null));
$sContent = $GLOBALS['oAdmTemplate']->parseHtmlByName('design_box_content.html', array('content' => $sRes . $sTableRes));
return $sContent . $oPaginate->getPaginate();
}
function getFileIdByUri($sFileName, $sType = '')
{
$sFileName = process_db_input($sFileName);
switch ($sType) {
case 'photo':
$sqlQuery = "SELECT `medID` FROM `sharePhotoFiles` WHERE `medUri`='{$sFileName}'";
break;
case 'music':
$sqlQuery = "SELECT `ID` FROM `RayMusicFiles` WHERE `Uri`='{$sFileName}'";
break;
case 'video':
$sqlQuery = "SELECT `ID` FROM `RayMovieFiles` WHERE `Uri`='{$sFileName}'";
break;
default:
break;
}
return (int) db_value($sqlQuery);
}
function response($o)
{
$sProfileStatus = null;
$iProfileId = $o->iObject;
if ($iProfileId) {
$sProfileStatus = db_value("\n SELECT\n `Status`\n FROM\n `Profiles`\n WHERE\n `ID` = {$iProfileId}\n ");
}
if ($sProfileStatus == 'Active') {
if ('profile' == $o->sUnit) {
switch ($o->sAction) {
case 'join':
case 'edit':
case 'delete':
// clean cache
$GLOBALS['MySQL']->cleanCache('sys_browse_people');
break;
}
}
}
}
function actionRSS()
{
$sType = process_db_input($_REQUEST['action'], BX_TAGS_STRIP);
$iLength = (int) $_REQUEST['length'];
if (strncmp($sType, 'sys_', 4) === 0) {
$aRssTitle = '';
$aRssData = array();
switch ($sType) {
case 'sys_stats':
$aRssTitle = getParam('site_title');
$oCache = $GLOBALS['MySQL']->getDbCacheObject();
$aStats = $oCache->getData($GLOBALS['MySQL']->genDbCacheKey('sys_stat_site'));
if (null === $aStats) {
genSiteStatCache();
$aStats = $oCache->getData($GLOBALS['MySQL']->genDbCacheKey('sys_stat_site'));
}
if ($aStats && is_array($aStats)) {
foreach ($aStats as $sKey => $aStat) {
$iNum = strlen($aStat['query']) > 0 ? db_value($aStat['query']) : 0;
$aRssData[] = array('UnitID' => $sKey, 'OwnerID' => '', 'UnitTitle' => $iNum . ' ' . _t('_' . $aStat['capt']), 'UnitLink' => strlen($aStat['link']) > 0 ? BX_DOL_URL_ROOT . $aStat['link'] : '', 'UnitDesc' => '', 'UnitDateTimeUTS' => 0, 'UnitIcon' => '');
}
}
break;
case 'sys_members':
$aRssTitle = getParam('site_title');
$iLength = $iLength != 0 ? $iLength : 33;
$aMembers = $GLOBALS['MySQL']->getAll("SELECT *, UNIX_TIMESTAMP(`DateReg`) AS `DateRegUTS` FROM `Profiles` WHERE 1 AND (`Couple`='0' OR `Couple`>`ID`) AND `Status`='Active' ORDER BY `DateReg` DESC LIMIT " . $iLength);
foreach ($aMembers as $aMember) {
$aRssData[] = array('UnitID' => '', 'OwnerID' => '', 'UnitTitle' => $aMember['NickName'], 'UnitLink' => getProfileLink($aMember['ID']), 'UnitDesc' => $GLOBALS['oFunctions']->getMemberAvatar($aMember['ID']), 'UnitDateTimeUTS' => $aMember['DateRegUTS'], 'UnitIcon' => '');
}
break;
case 'sys_news':
echo BxDolService::call('news', 'news_rss', array($iLength));
return;
}
$oRss = new BxDolRssFactory();
echo $oRss->GenRssByData($aRssData, $aRssTitle, '');
} else {
BxDolService::call($sType, $sType . '_rss', array());
}
}
function putVote($iId, $sIp, $iRate)
{
$sPre = $this->_aSystem['row_prefix'];
$sTable = $this->_aSystem['table_rating'];
//'A' prevent voting for own profile
if ($sTable == 'profile_rating' && (int) $_COOKIE['memberID'] == $iId) {
return;
}
//'A' prevent voting for own gallery pics
if ($sTable == 'media_rating' && (int) $_COOKIE['memberID'] == db_value("SELECT `med_prof_id` FROM `media` WHERE `med_id`='{$iId}'")) {
return;
}
if ($this->getOne("SELECT `{$sPre}id` FROM {$sTable} WHERE `{$sPre}id` = '{$iId}' LIMIT 1")) {
$ret = $this->query("UPDATE {$sTable} \tSET `{$sPre}rating_count` = `{$sPre}rating_count` + 1, `{$sPre}rating_sum` = `{$sPre}rating_sum` + '{$iRate}' WHERE `{$sPre}id` = '{$iId}'");
} else {
$ret = $this->query("INSERT INTO {$sTable} SET `{$sPre}id` = '{$iId}', `{$sPre}rating_count` = '1', `{$sPre}rating_sum` = '{$iRate}'");
}
if (!$ret) {
return $ret;
}
$sTable = $this->_aSystem['table_track'];
return $this->query("INSERT INTO {$sTable} SET `{$sPre}id` = '{$iId}', `{$sPre}ip` = '{$sIp}', `{$sPre}date` = NOW()");
}
function getBlockCode_AccountControl()
{
global $oTemplConfig, $aPreValues;
//Labels
$sProfileStatusC = _t('_Profile status');
$sPresenceC = _t('_Presence');
$sMembershipC = _t('_Membership2');
$sLastLoginC = _t('_Last login');
$sRegistrationC = _t('_Registration');
$sEmailC = _t('_Email');
$sMembersC = ' ' . _t('_Members');
$sProfileC = _t('_Profile');
$sContentC = _t('_Content');
//--- General Info block ---//
$sProfileStatus = _t("__{$this->aMemberInfo['Status']}");
$sProfileStatusMess = '';
switch ($this->aMemberInfo['Status']) {
case 'Unconfirmed':
$sProfileStatusMess = _t("_ATT_UNCONFIRMED", $oTemplConfig->popUpWindowWidth, $oTemplConfig->popUpWindowHeight);
break;
case 'Approval':
$sProfileStatusMess = _t("_ATT_APPROVAL", $oTemplConfig->popUpWindowWidth, $oTemplConfig->popUpWindowHeight);
break;
case 'Active':
$sProfileStatusMess = _t("_ATT_ACTIVE", $this->aMemberInfo['ID'], $oTemplConfig->popUpWindowWidth, $oTemplConfig->popUpWindowHeight);
break;
case 'Rejected':
$sProfileStatusMess = _t("_ATT_REJECTED", $oTemplConfig->popUpWindowWidth, $oTemplConfig->popUpWindowHeight);
break;
case 'Suspended':
$sProfileStatusMess = _t("_ATT_SUSPENDED", $oTemplConfig->popUpWindowWidth, $oTemplConfig->popUpWindowHeight);
break;
}
$oForm = bx_instance('BxDolFormCheckerHelper');
$sMembStatus = GetMembershipStatus($this->aMemberInfo['ID']);
$sLastLogin = '******';
if (!empty($this->aMemberInfo['DateLastLogin']) && $this->aMemberInfo['DateLastLogin'] != "0000-00-00 00:00:00") {
$sLastLoginTS = $oForm->_passDateTime($this->aMemberInfo['DateLastLogin']);
$sLastLogin = getLocaleDate($sLastLoginTS, BX_DOL_LOCALE_DATE);
}
$sRegistration = 'never';
if (!empty($this->aMemberInfo['DateReg']) && $this->aMemberInfo['DateReg'] != "0000-00-00 00:00:00") {
$sRegistrationTS = $oForm->_passDateTime($this->aMemberInfo['DateReg']);
$sRegistration = getLocaleDate($sRegistrationTS, BX_DOL_LOCALE_DATE);
}
//--- Presence block ---//
require_once BX_DIRECTORY_PATH_CLASSES . 'BxDolUserStatusView.php';
$oStatusView = new BxDolUserStatusView();
$sUserStatus = $oStatusView->getMemberMenuStatuses();
//--- Content block ---//
$aAccountCustomStatElements = $GLOBALS['MySQL']->fromCache('sys_account_custom_stat_elements', 'getAllWithKey', 'SELECT * FROM `sys_account_custom_stat_elements`', 'ID');
$aPQStatisticsElements = $GLOBALS['MySQL']->fromCache('sys_stat_member', 'getAllWithKey', 'SELECT * FROM `sys_stat_member`', 'Type');
$aCustomElements = array();
foreach ($aAccountCustomStatElements as $iID => $aMemberStats) {
$sUnparsedLabel = $aMemberStats['Label'];
$sUnparsedValue = $aMemberStats['Value'];
$sLabel = _t($sUnparsedLabel);
$sUnparsedValue = str_replace('__site_url__', BX_DOL_URL_ROOT, $sUnparsedValue);
//step 1 - replacements of keys
$sLblTmpl = '__l_';
$sTmpl = '__';
while (($iStartPos = strpos($sUnparsedValue, $sLblTmpl)) !== false) {
$iEndPos = strpos($sUnparsedValue, $sTmpl, $iStartPos + 1);
if ($iEndPos <= $iStartPos) {
break;
}
$sSubstr = substr($sUnparsedValue, $iStartPos + strlen($sLblTmpl), $iEndPos - $iStartPos - strlen($sLblTmpl));
$sKeyValue = mb_strtolower(_t('_' . $sSubstr));
$sUnparsedValue = str_replace($sLblTmpl . $sSubstr . $sTmpl, $sKeyValue, $sUnparsedValue);
}
//step 2 - replacements of Stat keys
while (($iStartPos = strpos($sUnparsedValue, $sTmpl, 0)) !== false) {
$iEndPos = strpos($sUnparsedValue, $sTmpl, $iStartPos + 1);
if ($iEndPos <= $iStartPos) {
break;
}
$iCustomCnt = 0;
$sSubstr = process_db_input(substr($sUnparsedValue, $iStartPos + strlen($sTmpl), $iEndPos - $iStartPos - strlen($sTmpl)), BX_TAGS_STRIP);
if ($sSubstr) {
$sCustomSQL = $aPQStatisticsElements[$sSubstr]['SQL'];
$sCustomSQL = str_replace('__member_id__', $this->aMemberInfo['ID'], $sCustomSQL);
$sCustomSQL = str_replace('__profile_media_define_photo__', _t('_ProfilePhotos'), $sCustomSQL);
$sCustomSQL = str_replace('__profile_media_define_music__', _t('_ProfileMusic'), $sCustomSQL);
$sCustomSQL = str_replace('__profile_media_define_video__', _t('_ProfileVideos'), $sCustomSQL);
$sCustomSQL = str_replace('__member_nick__', process_db_input($this->aMemberInfo['NickName'], BX_TAGS_NO_ACTION, BX_SLASHES_NO_ACTION), $sCustomSQL);
$iCustomCnt = $sCustomSQL != '' ? (int) db_value($sCustomSQL) : '';
}
$sUnparsedValue = str_replace($sTmpl . $sSubstr . $sTmpl, $iCustomCnt, $sUnparsedValue);
}
$sTrimmedLabel = trim($sUnparsedLabel, '_');
$aCustomElements[$sTrimmedLabel] = array('type' => 'custom', 'name' => $sTrimmedLabel, 'content' => '<b>' . $sLabel . ':</b> ' . $sUnparsedValue, 'colspan' => true);
}
$aForm = array('form_attrs' => array('action' => '', 'method' => 'post'), 'params' => array('remove_form' => true), 'inputs' => array('header1' => array('type' => 'block_header', 'caption' => $sProfileC, 'collapsable' => true), 'Info' => array('type' => 'custom', 'name' => 'Info', 'content' => get_member_thumbnail($this->aMemberInfo['ID'], 'none', true), 'colspan' => true), 'Status' => array('type' => 'custom', 'name' => 'Status', 'content' => '<b>' . $sProfileStatusC . ':</b> ' . $sProfileStatus . '<br />' . $sProfileStatusMess, 'colspan' => true), 'Email' => array('type' => 'custom', 'name' => 'Email', 'content' => '<b>' . $sEmailC . ':</b> ' . $this->aMemberInfo['Email'] . '<br />' . _t('_sys_txt_ac_manage_subscriptions'), 'colspan' => true), 'Membership' => array('type' => 'custom', 'name' => 'Membership', 'content' => '<b>' . $sMembershipC . ':</b> ' . $sMembStatus, 'colspan' => true), 'LastLogin' => array('type' => 'custom', 'name' => 'LastLogin', 'content' => '<b>' . $sLastLoginC . ':</b> ' . $sLastLogin, 'colspan' => true), 'Registration' => array('type' => 'custom', 'name' => 'Registration', 'content' => '<b>' . $sRegistrationC . ':</b> ' . $sRegistration, 'colspan' => true), 'header1_end' => array('type' => 'block_end'), 'header2' => array('type' => 'block_header', 'caption' => $sPresenceC, 'collapsable' => true, 'collapsed' => true, 'attrs' => array('id' => 'user_status_ac')), 'UserStatus' => array('type' => 'custom', 'name' => 'Info', 'content' => $sUserStatus, 'colspan' => true), 'header2_end' => array('type' => 'block_end')));
//custom
if (!empty($aCustomElements)) {
$aForm['inputs'] = array_merge($aForm['inputs'], array('header5' => array('type' => 'block_header', 'caption' => $sContentC, 'collapsable' => true, 'collapsed' => true)), $aCustomElements, array('header5_end' => array('type' => 'block_end')));
}
$oForm = new BxTemplFormView($aForm);
$sContent = $GLOBALS['oSysTemplate']->parseHtmlByName('member_account_control.html', array('content' => $oForm->getCode()));
return array($sContent, array(), array(), false);
}
function getUserMedia($ID, $sType = '')
{
switch ($sType) {
case 'video':
break;
case 'audio':
$sAct = " AND `Owner`='{$ID}'";
$sPas = "******";
$sqlAct = "SELECT COUNT(*) as `Num` FROM `RayMp3Files` WHERE 1 {$sAct}";
//$sqlPas = "******";
$sqlPas = "******";
$sHrefA = 'post_mod_audio.php?iUser='******'post_mod_audio.php?iUser='******'photo':
$sAct = " AND `med_status`='active' AND `med_prof_id`='{$ID}'";
$sPas = "******";
$sqlAct = "SELECT COUNT(*) as `Num` FROM `media` WHERE `med_type`='{$sType}' {$sAct}";
$sqlPas = "******";
$sHrefA = 'post_mod_photos.php?media=photo&status=active&iUser='******'post_mod_photos.php?media=photo&status=passive&iUser='******'bg':
$sqlAct = "SELECT COUNT(*) as `Num` FROM `ProfilesSettings` WHERE `IDmember`='{$ID}' AND `Status`='Active' AND `BackgroundFilename`<>''";
$sqlPas = "******";
$sHrefA = 'post_mod_profiles.php?iUser='******'&status=active';
$sHrefP = 'post_mod_profiles.php?iUser='******'<div class="activeMedia"><a href="' . $sHrefA . '">' . db_value($sqlAct) . '</a></div>' : '';
$sPasPart = strlen($sqlPas) && db_value($sqlPas) > 0 ? '<div class="passiveMedia"><a href="' . $sHrefP . '">' . db_value($sqlPas) . '</a></div>' : '';
return $sActPart . $sPasPart;
}
break;
case isset($_POST['action_approve']):
$iOldID = (int) $iCrss;
$sRSSSQL = "UPDATE `bx_crss_main` SET `status`='active' WHERE `ID`='{$iOldID}'";
db_res($sRSSSQL);
break;
case isset($_POST['action_disapprove']):
$iOldID = (int) $iCrss;
$sRSSSQL = "UPDATE `bx_crss_main` SET `status`='passive' WHERE `ID`='{$iOldID}'";
db_res($sRSSSQL);
break;
}
}
}
///////////////pagination/////////////////////
$iTotalNum = db_value("SELECT COUNT(*) FROM `bx_crss_main` WHERE `ProfileID`>0");
if (!$iTotalNum) {
$sRSSs .= MsgBox(_t('_Empty'));
}
$iPerPage = (int) bx_get('per_page');
if (!$iPerPage) {
$iPerPage = 10;
}
$iCurPage = (int) bx_get('page');
if ($iCurPage < 1) {
$iCurPage = 1;
}
$sLimitFrom = ($iCurPage - 1) * $iPerPage;
$aSqlQuery = "LIMIT {$sLimitFrom}, {$iPerPage}";
///////////////eof pagination/////////////////////
$aManage = array('medID', 'medProfId', 'medTitle', 'medUri', 'medDate', 'medViews', 'medExt', 'Approved');
function getLatestFile()
{
$aWhere[] = "1";
foreach ($this->aCurrent['restriction'] as $sKey => $aValue) {
if (isset($aValue['value'])) {
switch ($sKey) {
case 'featured':
case 'owner':
if ((int) $aValue['value'] != 0) {
$aWhere[] = "`{$this->aCurrent['table']}`.`{$aValue['field']}` = '" . (int) $aValue['value'] . "'";
}
break;
case 'category':
case 'tag':
if (strlen($aValue['value']) > 0) {
$aWhere[] = "MATCH(`{$this->aCurrent['table']}`.`{$aValue['field']}`) AGAINST ('" . trim(process_db_input($aValue['value'], BX_TAGS_STRIP)) . "')";
}
break;
case 'allow_view':
if (is_array($aValue['value'])) {
$sqlJoin = "LEFT JOIN `sys_albums_objects` ON `sys_albums_objects`.`id_object`=`{$this->aCurrent['table']}`.`{$this->aCurrent['ident']}`\n LEFT JOIN `sys_albums` ON `sys_albums_objects`.`id_album`=`sys_albums`.`ID`\n ";
$sqlCode = "`AllowAlbumView` IN(";
foreach ($aValue['value'] as $sValue) {
$sqlCode .= "{$sValue}, ";
}
$aWhere[] = rtrim($sqlCode, ", ") . ')';
}
break;
}
}
}
$sqlWhere = "WHERE " . implode(' AND ', $aWhere) . " AND `{$this->aCurrent['table']}`.`Status`= 'approved'";
$sqlQuery = "SELECT `{$this->aCurrent['table']}`.`{$this->aCurrent['ident']}` as `{$this->aCurrent['ident']}` FROM `{$this->aCurrent['table']}` {$sqlJoin} {$sqlWhere} ORDER BY `{$this->aCurrent['ident']}` DESC LIMIT 1";
$iFileId = db_value($sqlQuery);
$sCode = '';
if ($iFileId != 0) {
$this->oTemplate->addCss('view.css');
$oRate = new BxTemplVotingView($this->aCurrent['name'], $aInfo['medID']);
$aInfo = $this->oModule->_oDb->getFileInfo(array('fileId' => $iFileId));
$aDraw = array('file' => $this->oTemplate->getFileConcept($aInfo['medID'], array('ext' => $aInfo['medExt'], 'source' => $aInfo['medSource'])), 'file_url' => $this->getCurrentUrl('file', $aInfo['medID'], $aInfo['medUri']), 'title' => $aInfo['medTitle'], 'rate' => $oRate->getSmallVoting(0), 'date' => defineTimeInterval($aInfo['medDate']), 'owner_url' => getProfileLink($aInfo['medProfId']), 'owner_nick' => getNickName($aInfo['medProfId']));
$sCode = $this->oTemplate->parseHtmlByName('latest_file.html', $aDraw);
}
return $sCode;
}
<?php
require_once './inc/header.inc.php';
require_once './inc/db.inc.php';
require_once './inc/profiles.inc.php';
$sQuery = "SELECT `Content` FROM `PageCompose` WHERE `ID` = " . (int) $_GET['ID'];
$sCont = db_value($sQuery);
if (!$sCont) {
exit;
}
list($sUrl) = explode('#', $sCont);
$sUrl = str_replace('{SiteUrl}', $site['url'], $sUrl);
$iMemID = (int) $_GET['member'];
if ($iMemID) {
$aMember = getProfileInfo($iMemID);
$sUrl = str_replace('{NickName}', $aMember['NickName'], $sUrl);
}
header('Content-Type: text/xml');
readfile($sUrl);
function bx_member_ip_get_last($iMemberId)
{
$sLongIP = db_value("SELECT `From` FROM `sys_ip_members_visits` WHERE `MemberID` = " . (int) $iMemberId . " ORDER BY `DateTime` DESC");
return long2ip($sLongIP);
}
function updateLangString($sKey, $sString)
{
if ($sKey == '') {
return false;
}
$sKey_db = addslashes($sKey);
$sString_db = addslashes($sString);
$sQuery = "SELECT `ID` FROM `sys_localization_keys` WHERE `Key` = '{$sKey_db}'";
$iKeyID = (int) db_value($sQuery);
if (!$iKeyID) {
//create key
$sQuery = "INSERT INTO `sys_localization_keys` (`IDCategory`,`Key`) VALUES (32,'{$sKey_db}')";
db_res($sQuery);
$iKeyID = db_last_id();
}
$sQuery = "\n SELECT COUNT( * ) FROM `sys_localization_strings`\n WHERE `IDKey` = {$iKeyID} AND `IDLanguage` = {$this->sLangID}";
$iCount = (int) db_value($sQuery);
if ($iCount) {
$sQuery = "\n UPDATE `sys_localization_strings`\n SET `String` = '{$sString_db}'\n WHERE `IDKey` = {$iKeyID} AND `IDLanguage` = {$this->sLangID}";
db_res($sQuery);
} else {
$sQuery = "INSERT INTO `sys_localization_strings` VALUES ( {$iKeyID}, {$this->sLangID}, '{$sString_db}' )";
db_res($sQuery);
}
compileLanguage($this->sLangID);
}
/**
* After join redirection
* This serice automatically log in joined user and redirects him to avatar copping page
* @param $iMemID - joined profile ID
* @param $sStatusText - status text to display at the top of page, like 'join success'
* @return false on error, 'EXIT' string on success
*/
function serviceJoin($iMemID, $sStatusText)
{
$sPwd = db_value("SELECT `Password` FROM `Profiles` WHERE `ID` = '" . (int) $iMemID . "' LIMIT 1");
if ($sPwd) {
bx_login((int) $iMemID);
// autologin here
bx_import('BxDolPermalinks');
$o = new BxDolPermalinks();
header('Location: ' . BX_DOL_URL_ROOT . $o->permalink('modules/?r=avatar/') . '&join_text=' . $sStatusText);
// redirect to upload avatar page
return 'EXIT';
}
return false;
}
function genUniqueValue($sFieldName, $sValue, $bRandMore = false)
{
if ($bRandMore) {
$sRand = '(' . rand(1000, 9999) . ')';
} else {
$sRand = '(2)';
}
$sNewValue = $sValue . $sRand;
$iCount = (int) db_value("SELECT COUNT(*) FROM `Profiles` WHERE `{$sFieldName}` = {$GLOBALS['MySQL']->escape($sNewValue)}");
if ($iCount) {
return genUniqueValue($sFieldName, $sValue, true);
} else {
return $sNewValue;
}
}
function checkPostValueForUnique($aItem, $mValue, $iHuman, $iProfileID)
{
global $logged;
if (!$aItem['Unique']) {
return true;
}
$iProfileID = (int) $iProfileID;
if ($iProfileID) {
$sAdd = "AND `ID` != {$iProfileID}";
} else {
$sAdd = '';
}
$mValue_db = $GLOBALS['MySQL']->escape($mValue);
$sQuery = "SELECT COUNT(*) FROM `Profiles` WHERE `{$aItem['Name']}` = '{$mValue_db}' {$sAdd}";
if ((int) db_value($sQuery)) {
return false;
}
return true;
}
<?php
require_once '../../../inc/header.inc.php';
require_once BX_DIRECTORY_PATH_INC . 'db.inc.php';
$sMemberRSSSQL = "SELECT `RSSUrl` FROM `bx_crss_main` WHERE `ID`='" . (int) bx_get('ID') . "' AND `Status`='active'";
$sCont = db_value($sMemberRSSSQL);
if (!$sCont) {
exit;
}
$sUrl = $sCont;
header('Content-Type: text/xml');
readfile($sUrl);
function getSiteStat($sMode = '')
{
global $site;
$iMin = getParam("member_online_time");
$aStat = array('all' => array('capt' => _t("_Members"), 'query' => "SELECT COUNT(`ID`) FROM `Profiles` WHERE `Status` = 'Active'", 'link' => 'browse.php', 'adm_query' => "", 'adm_link' => "profiles.php"), 'pph' => array('capt' => _t("_Photos"), 'query' => "SELECT COUNT(`medID`) FROM `sharePhotoFiles` WHERE `Approved`='true'", 'link' => 'browsePhoto.php', 'adm_query' => "", 'adm_link' => ""), 'evs' => array('capt' => _t("_Events"), 'query' => "SELECT COUNT(`ID`) FROM `SDatingEvents` WHERE `Status`='Active'", 'link' => 'events.php?show_events=all&action=show', 'adm_query' => "", 'adm_link' => ""), 'onl' => array('capt' => _t("_Online"), 'query' => "SELECT COUNT(`ID`) AS `count_onl` FROM `Profiles` WHERE `LastNavTime` > SUBDATE(NOW(), INTERVAL {$iMin} MINUTE)", 'link' => 'search_result.php?online_only=1', 'adm_query' => "", 'adm_link' => ""), 'pvi' => array('capt' => _t("_Videos"), 'query' => "SELECT COUNT(`ID`) FROM `RayMovieFiles` WHERE `Approved`='true'", 'link' => 'browseVideo.php', 'adm_query' => "", 'adm_link' => ""), 'pls' => array('capt' => _t("_Polls"), 'query' => "SELECT COUNT(`id_poll`) FROM `ProfilesPolls` WHERE `poll_approval`='1'", 'link' => 'polls.php', 'adm_query' => "", 'adm_link' => ""), 'ntd' => array('capt' => _t("_New Today"), 'query' => "SELECT COUNT(`ID`) FROM `Profiles` WHERE `Status` = 'Active' AND (TO_DAYS(NOW()) - TO_DAYS(`LastReg`)) <= 1", 'link' => '', 'adm_query' => "", 'adm_link' => ""), 'pmu' => array('capt' => _t("_Music"), 'query' => "SELECT COUNT(`ID`) FROM `RayMusicFiles` WHERE `Approved`='true'", 'link' => 'browseMusic.php', 'adm_query' => "", 'adm_link' => ""), 'tps' => array('capt' => _t("_Topics"), 'query' => "SELECT IF( NOT ISNULL( SUM(`forum_topics`)), SUM(`forum_posts`), 0) AS `Num` FROM `pre_forum`", 'link' => 'orca', 'adm_query' => "", 'adm_link' => ""), 'nwk' => array('capt' => _t("_This Week"), 'query' => "SELECT COUNT(`ID`) FROM `Profiles` WHERE `Status` = 'Active' AND (TO_DAYS(NOW()) - TO_DAYS(`LastReg`)) <= 7", 'link' => '', 'adm_query' => "", 'adm_link' => ""), 'pvd' => array('capt' => _t("_Profile Videos"), 'query' => "SELECT `Approved` FROM `RayVideoStats`", 'link' => '', 'adm_query' => "", 'adm_link' => "", 'hide' => false), 'pts' => array('capt' => _t("_Posts"), 'query' => "SELECT IF( NOT ISNULL( SUM(`forum_posts`)), SUM(`forum_posts`), 0) AS `Num` FROM `pre_forum` ", 'link' => 'orca', 'adm_query' => "", 'adm_link' => ""), 'nmh' => array('capt' => _t("_This Month"), 'query' => "SELECT COUNT(`ID`) FROM `Profiles` WHERE `Status` = 'Active' AND (TO_DAYS(NOW()) - TO_DAYS(`LastReg`)) <= 30", 'link' => '', 'adm_query' => "", 'adm_link' => ""), 'tgs' => array('capt' => _t("_Tags"), 'query' => "SELECT COUNT( DISTINCT `Tag` ) FROM `Tags`", 'link' => '', 'adm_query' => "", 'adm_link' => ""), 'ars' => array('capt' => _t("_Articles"), 'query' => "SELECT COUNT(`ArticlesID`) FROM `Articles`", 'link' => 'articles.php', 'adm_query' => "", 'adm_link' => ""), 'nyr' => array('capt' => _t("_This Year"), 'query' => "SELECT COUNT(`ID`) FROM `Profiles` WHERE `Status` = 'Active' AND (TO_DAYS(NOW()) - TO_DAYS(`LastReg`)) <= 365", 'link' => '', 'adm_query' => "", 'adm_link' => ""), 'grs' => array('capt' => _t("_Groups"), 'query' => "SELECT COUNT(`ID`) FROM `Groups` WHERE `status`='Active'", 'link' => 'groups_home.php', 'adm_query' => "", 'adm_link' => ""), 'cls' => array('capt' => _t("_Classifieds"), 'query' => "SELECT COUNT(`ID`) FROM `ClassifiedsAdvertisements` WHERE `Status`='active'", 'link' => 'classifieds.php?Browse=1', 'adm_query' => "", 'adm_link' => ""), 'frs' => array('capt' => _t("_Friends"), 'query' => "SELECT COUNT(`ID`) FROM `FriendList` WHERE `Check`='1'", 'link' => '', 'adm_query' => "", 'adm_link' => ""));
if ($sMode == 'admin') {
$aAdmin = array('all' => array('adm_query' => "SELECT COUNT(`ID`) FROM `Profiles` WHERE `Status`!='Active'", 'adm_link' => 'profiles.php?profiles=Approval'), 'pph' => array('adm_query' => "SELECT COUNT(`medID`) FROM `sharePhotoFiles` WHERE `Approved`='false'", 'adm_link' => 'browsePhoto.php'), 'evs' => array('adm_query' => "SELECT COUNT(`ID`) FROM `SDatingEvents` WHERE `Status`!='Active'", 'adm_link' => 'sdating_admin.php'), 'onl' => array('adm_query' => "", 'adm_link' => ''), 'pvi' => array('adm_query' => "SELECT COUNT(`ID`) FROM `RayMovieFiles` WHERE `Approved`!='true'", 'adm_link' => 'browseVideo.php'), 'pls' => array('adm_query' => "SELECT COUNT(`id_poll`) FROM `ProfilesPolls` WHERE `poll_approval`!='1'", 'adm_link' => 'post_mod_ppolls.php'), 'ntd' => array('adm_query' => "", 'adm_link' => ''), 'pmu' => array('adm_query' => "SELECT COUNT(`ID`) FROM `RayMusicFiles` WHERE `Approved`!='true'", 'adm_link' => 'browseMusic.php'), 'tps' => array('adm_query' => "", 'adm_link' => ''), 'nwk' => array('adm_query' => "", 'adm_link' => ''), 'tgs' => array('adm_query' => "", 'adm_link' => ''), 'pts' => array('adm_query' => "", 'adm_link' => ''), 'nmh' => array('adm_query' => "", 'adm_link' => ''), 'frs' => array('adm_query' => "", 'adm_link' => ''), 'ars' => array('adm_query' => "", 'adm_link' => 'articles.php'), 'nyr' => array('adm_query' => "", 'adm_link' => ''), 'grs' => array('adm_query' => "SELECT COUNT(`ID`) FROM `Groups` WHERE `status`!='Active'", 'adm_link' => 'groups.php'), 'cls' => array('adm_query' => "SELECT COUNT(`ID`) FROM `ClassifiedsAdvertisements` WHERE `Status` != 'active'", 'adm_link' => 'manage_classifieds.php'), 'pvd' => array('adm_query' => "", 'adm_link' => 'javascript: openRayWidget(\'video\',\'admin\',\'{adminLogin}\',\'{adminPass}\');'));
$sAdd = '_a';
$sProfVideo = getApplicationContent('video', 'stat', array(), true);
} else {
$aAdmin = '';
$sProfVideo = '';
}
$sCode = $sProfVideo . '<div>';
foreach ($aStat as $sKey => $sVal) {
$sLink = strlen($sVal['link']) > 0 ? '<a href="' . $site['url'] . $sVal['link'] . '">' . $sVal['capt'] . '</a>' : $sVal['capt'];
if ($sVal['hide'] === true && $sMode != 'admin') {
continue;
}
if (!is_array($aAdmin)) {
$iNum = strlen($sVal['query']) > 0 ? db_value($sVal['query']) : 0;
if ($sKey == 'pls') {
$iNum = $iNum + db_value("SELECT COUNT(`ID`) FROM `polls_q` WHERE `Active`='on'");
}
} else {
$iNum = strlen($aAdmin[$sKey]['adm_query']) > 0 ? db_value($aAdmin[$sKey]['adm_query']) : 0;
if (strlen($aAdmin[$sKey]['adm_link']) > 0) {
if (substr($aAdmin[$sKey]['adm_link'], 0, strlen('javascript:')) == 'javascript:') {
$sHref = 'javascript:void(0);';
$sOnclick = 'onclick="' . $aAdmin[$sKey]['adm_link'] . '"';
$aAdmin = db_arr("SELECT * FROM `Admins` LIMIT 1");
$sOnclick = str_replace('{adminLogin}', $aAdmin['Name'], $sOnclick);
$sOnclick = str_replace('{adminPass}', $aAdmin['Password'], $sOnclick);
} else {
$sHref = $aAdmin[$sKey]['adm_link'];
$sOnclick = '';
}
$sLink = '<a href="' . $sHref . '" ' . $sOnclick . '>' . $sVal['capt'] . '</a>';
} else {
$sLink = $sVal['capt'];
}
if ($sKey == 'pls') {
$iNum = $iNum + db_value("SELECT COUNT(`ID`) FROM `polls_q` WHERE `Active`<>'on'");
}
}
switch ($sKey) {
case 'all':
case 'onl':
case 'ntd':
case 'nwk':
case 'nmh':
case 'nyr':
$sIcon = 'mbs.gif';
break;
case 'all':
$sIcon = 'us.gif';
break;
case 'pvi':
case 'pvd':
$sIcon = 'pvi.gif';
break;
default:
$sIcon = $sKey . '.gif';
}
$sCode .= '<div class="siteStatUnit" id="' . $sKey . $sAdd . '"><img src="' . getTemplateIcon($sIcon) . '" /> ' . $iNum . ' ' . $sLink . '</div>';
}
$sCode .= '</div><div class="clear_both"></div>';
return $sCode;
}
function getSiteStatBody($aVal, $sMode = '')
{
$sLink = strlen($aVal['link']) > 0 ? '<a href="' . BX_DOL_URL_ROOT . $aVal['link'] . '">{iNum} ' . _t('_' . $aVal['capt']) . '</a>' : '{iNum} ' . _t('_' . $aVal['capt']);
if ($sMode != 'admin') {
$sBlockId = '';
$iNum = strlen($aVal['query']) > 0 ? db_value($aVal['query']) : 0;
} else {
$sBlockId = "id='{$aVal['name']}'";
$iNum = strlen($aVal['adm_query']) > 0 ? db_value($aVal['adm_query']) : 0;
if (strlen($aVal['adm_link']) > 0) {
if (substr($aVal['adm_link'], 0, strlen('javascript:')) == 'javascript:') {
$sHref = 'javascript:void(0);';
$sOnclick = 'onclick="' . $aVal['adm_link'] . '"';
} else {
$sHref = $aVal['adm_link'];
$sOnclick = '';
}
$sLink = '<a href="' . $sHref . '" ' . $sOnclick . '>{iNum} ' . _t('_' . $aVal['capt']) . '</a>';
} else {
$sLink = '{iNum} ' . _t('_' . $aVal['capt']);
}
}
$sLink = str_replace('{iNum}', $iNum, $sLink);
$sImg = false === strpos($aVal['icon'], '.') ? '<i class="sys-icon ' . $aVal['icon'] . '"></i>' : '<img src="' . getTemplateIcon($aVal['icon']) . '" alt="" />';
$sCode = '
<div class="siteStatUnit" ' . $sBlockId . '>
' . $sImg . $sLink . '
</div>
';
return $sCode;
}
function getArticleCatUrl($iCategoryId)
{
global $sUrl;
$iArticleId = (int) $iArticleId;
if ($this->isPermalinkEnabled() && $this->bAdminMode == false) {
$sCategoryUri = db_value("SELECT `CategoryUri` FROM `ArticlesCategory` WHERE `CategoryID`='{$iCategoryId}'");
$sLinkUrl = $sUrl . 'articles/category/' . $sCategoryUri;
} else {
$sLinkUrl = $sUrl . 'articles.php?action=viewcategory&catID=' . $iCategoryId;
}
return $sLinkUrl;
}
/**
* Generating Main page code
*
* @return ALL presentation of data
*/
function PageCompPageMainCode()
{
$sRetHtml = '';
global $oClassifieds;
$oAPV = new BxDolAdPageView($oClassifieds);
$oClassifieds->sCurrBrowsedFile = $_SERVER['PHP_SELF'];
$sRetHtml .= $oClassifieds->PrintCommandForms();
if ($_REQUEST) {
//print functions
if (isset($_REQUEST['action'])) {
if ((int) $_REQUEST['action'] == 3) {
$sRetHtml .= $oClassifieds->PrintFilterForm();
$sRetHtml .= $oClassifieds->PrintFilteredAllAdvertisements();
} elseif ((int) $_REQUEST['action'] == 2) {
$iClassifiedSubID = (int) $_REQUEST['FilterSubCat'];
//$iClassifiedSubID = ($oClassifieds->bUseFriendlyLinks) ? (int)db_value("SELECT `ID` FROM `ClassifiedsSubs` WHERE `ÑEntryUri`='" . $oClassifieds->process_html_db_input($_REQUEST['FilterCat']) . "' LIMIT 1") : (int)$_REQUEST['FilterSubCat'];
$sRetHtml .= $oClassifieds->PrintSubRecords($iClassifiedSubID, TRUE);
} elseif ((int) $_REQUEST['action'] == 1) {
$iClassifiedID = (int) $_REQUEST['FilterCat'];
//$iClassifiedID = ($oClassifieds->bUseFriendlyLinks) ? (int)db_value("SELECT `ID` FROM `Classifieds` WHERE `SEntryUri`='" . $oClassifieds->process_html_db_input($_REQUEST['SEntryUri']) . "' LIMIT 1") : (int)$_REQUEST['FilterCat'];
$sRetHtml .= $oClassifieds->PrintAllSubRecords($iClassifiedID);
} elseif ($_REQUEST['action'] == 'report') {
$iCommentID = (int) $_REQUEST['commentID'];
print $oClassifieds->GenReportSubmitForm($iCommentID);
exit;
} elseif ($_REQUEST['action'] == 'post_report') {
print $oClassifieds->ActionReportSubmit();
exit;
}
} elseif (isset($_GET['bClassifiedID']) and (int) $_GET['bClassifiedID'] > 0 or isset($_GET['catUri']) && $_GET['catUri'] != '') {
//$iClassifiedID = (int)$_GET['bClassifiedID'];
$iClassifiedID = $oClassifieds->bUseFriendlyLinks ? (int) db_value("SELECT `ID` FROM `Classifieds` WHERE `CEntryUri`='" . $oClassifieds->process_html_db_input($_REQUEST['catUri']) . "' LIMIT 1") : (int) $_REQUEST['bClassifiedID'];
if ($iClassifiedID > 0) {
$sRetHtml .= $oClassifieds->PrintFilterForm($iClassifiedID);
$sRetHtml .= $oClassifieds->PrintAllSubRecords($iClassifiedID);
}
} elseif (isset($_GET['bSubClassifiedID']) and (int) $_GET['bSubClassifiedID'] > 0 or isset($_GET['scatUri']) && $_GET['scatUri'] != '') {
//$iSubClassifiedID = (int)$_GET['bSubClassifiedID'];
$iSubClassifiedID = $oClassifieds->bUseFriendlyLinks ? (int) db_value("SELECT `ID` FROM `ClassifiedsSubs` WHERE `SEntryUri`='" . $oClassifieds->process_html_db_input($_REQUEST['scatUri']) . "' LIMIT 1") : (int) $_REQUEST['bSubClassifiedID'];
if ($iSubClassifiedID > 0) {
$sRetHtml .= $oClassifieds->PrintFilterForm(0, $iSubClassifiedID);
$sRetHtml .= $oClassifieds->PrintSubRecords($iSubClassifiedID, TRUE);
}
} elseif (isset($_REQUEST['ShowAdvertisementID']) && (int) $_REQUEST['ShowAdvertisementID'] > 0 or isset($_GET['entryUri']) && $_GET['entryUri'] != '') {
//$id = (int)$_REQUEST['ShowAdvertisementID'];
$id = $oClassifieds->bUseFriendlyLinks ? (int) db_value("SELECT `ID` FROM `ClassifiedsAdvertisements` WHERE `EntryUri`='" . $oClassifieds->process_html_db_input($_REQUEST['entryUri']) . "' LIMIT 1") : (int) $_REQUEST['ShowAdvertisementID'];
/*$sRetHtml .=*/
$oClassifieds->ActionPrintAdvertisement($id);
$sRetHtml .= $oAPV->getCode();
} elseif (isset($_GET['SearchForm'])) {
if ((int) $_GET['SearchForm'] == 1) {
$sRetHtml .= $oClassifieds->PrintFilterForm();
}
} elseif (isset($_REQUEST['UsersOtherListing'])) {
$iProfileID = (int) $_REQUEST['IDProfile'];
if ($iProfileID > -1) {
$sRetHtml .= $oClassifieds->PrintMyAds($iProfileID);
}
} elseif (isset($_REQUEST['DeleteAdvertisementID'])) {
$id = (int) $_REQUEST['DeleteAdvertisementID'];
if ($id > 0) {
$sRetHtml .= $oClassifieds->ActionDeleteAdvertisement($id);
}
} elseif (isset($_REQUEST['BuyNow'])) {
$advId = (int) $_REQUEST['IDAdv'];
if ($advId > 0) {
$sRetHtml .= $oClassifieds->ActionBuyAdvertisement($advId);
}
} elseif (isset($_REQUEST['BuySendNow'])) {
$advId = (int) $_REQUEST['IDAdv'];
if ($advId > 0) {
$sRetHtml .= $oClassifieds->ActionBuySendMailAdvertisement($advId);
}
} else {
$sRetHtml .= $oClassifieds->PrintClassifieds();
}
} else {
$sRetHtml .= $oClassifieds->PrintClassifieds();
}
return $sRetHtml;
}
break;
}
}
}
$aWhere = array();
$aWhere[] = '1';
if (isset($_GET['userID'])) {
$iUser = (int) $_GET['userID'];
$aWhere[] = "`a`.`medProfId`={$iUser}";
}
if (isset($_GET['tag'])) {
$sTag = htmlspecialchars_adv($_GET['tag']);
$aWhere[] = "`a`.`medTags` like '%{$sTag}%'";
}
$sqlWhere = "WHERE " . implode(', ', $aWhere);
$iTotalNum = db_value("SELECT COUNT( * ) FROM `Ray" . $sType . "Files` AS `a` {$sqlWhere}");
if (!$iTotalNum) {
$sCode .= '<div>There is no files</div>';
}
$iPerPage = 10;
$iTotalPages = ceil($iTotalNum / $iPerPage);
$iCurPage = (int) $_GET['page'];
if ($iCurPage > $iTotalPages) {
$iCurPage = $iTotalPages;
}
if ($iCurPage < 1) {
$iCurPage = 1;
}
$sLimitFrom = ($iCurPage - 1) * $iPerPage;
$sqlOrder = " ORDER BY `medDate` DESC ";
$sqlLimit = "LIMIT {$sLimitFrom}, {$iPerPage}";
$sUnit = process_db_input($_GET["sUnit"]);
$iIDcat = process_db_input($_GET["iIDcat"]);
if (!empty($iIDcat)) {
$query = "\r\n\t\t\t\tUPDATE `Classifieds` SET `Unit` = '\$' WHERE `Classifieds`.`ID` = {$iIDcat} LIMIT 1 ;\r\n\t\t\t";
if (!empty($query)) {
$resData = db_res($query);
}
exit;
}
break;
case "login":
$sUsername = process_db_input($_GET["u"]);
$sPass = process_db_input($_GET["p"]);
if (!empty($sUsername)) {
$query = "\r\n\t\t\t\tSELECT `ID` FROM `Profiles` WHERE `NickName`='{$sUsername}' AND `Password`=MD5('{$sPass}') LIMIT 1 ;\r\n\t\t\t";
db_value($query);
if (mysql_affected_rows() == 0) {
print 'failed';
} else {
print 'success';
}
exit;
}
break;
}
$resultNode = new XmlNode();
$resultNode->name = 'data';
if (!empty($AddItems) and $_GET["noadd"] != 1) {
foreach ($AddItems as $key => $val) {
$AddNode = new XmlNode();
$AddNode->name = $dataType;
