/**
* Get what we need to get attachments in a form-field interface.
*
* @param ID_TEXT The name of the field attachments are for
* @return array A pair: the attachments UI (tempcode), the hidden attachment field
*/
function get_attachments($posting_field_name)
{
$image_types = str_replace(',', ', ', get_option('valid_images'));
require_lang('javascript');
require_javascript('javascript_swfupload');
require_css('swfupload');
require_code('files2');
$max_attach_size = get_max_file_size(get_member(), $GLOBALS['SITE_DB']);
$attach_size_field = form_input_hidden('MAX_FILE_SIZE', strval($max_attach_size));
$num_attachments = post_param_integer('num_attachments', has_js() ? 1 : 3);
$attachments = new ocp_tempcode();
for ($i = 1; $i <= $num_attachments; $i++) {
$attachments->attach(do_template('ATTACHMENT', array('_GUID' => 'c3b38ca70cbd1c5f9cf91bcae9ed1134', 'POSTING_FIELD_NAME' => $posting_field_name, 'I' => strval($i))));
}
if (get_forum_type() == 'ocf') {
require_code('ocf_groups');
require_lang('ocf');
$max_attachments = ocf_get_member_best_group_property(get_member(), 'max_attachments_per_post');
} else {
$max_attachments = 100;
}
$attachment_template = do_template('ATTACHMENT', array('_GUID' => 'c3b38ca70cbd1c5f9cf91bcae9ed11dsds', 'POSTING_FIELD_NAME' => $posting_field_name, 'I' => '__num_attachments__'));
$attachments = do_template('ATTACHMENTS', array('_GUID' => '054921e7c09412be479676759accf222', 'POSTING_FIELD_NAME' => $posting_field_name, 'ATTACHMENT_TEMPLATE' => $attachment_template, 'IMAGE_TYPES' => $image_types, 'ATTACHMENTS' => $attachments, 'MAX_ATTACHMENTS' => strval($max_attachments), 'NUM_ATTACHMENTS' => strval($num_attachments)));
return array($attachments, $attach_size_field);
}
/**
* Get the tempcode for the form to add a banner, with the information passed along to it via the parameters already added in.
*
* @param boolean Whether to simplify the banner interface (for the point-store buy process)
* @param ID_TEXT The name of the banner
* @param URLPATH The URL to the banner image
* @param URLPATH The URL to the site the banner leads to
* @param SHORT_TEXT The caption of the banner
* @param LONG_TEXT Any notes associated with the banner
* @param integer The banners "importance modulus"
* @range 1 max
* @param ?integer The number of hits the banner may have (NULL: not applicable for this banner type)
* @range 0 max
* @param SHORT_INTEGER The type of banner (0=permanent, 1=campaign, 2=default)
* @set 0 1 2
* @param ?TIME The banner expiry date (NULL: never expires)
* @param ?ID_TEXT The username of the banners submitter (NULL: current member)
* @param BINARY Whether the banner has been validated
* @param ID_TEXT The banner type (can be anything, where blank means 'normal')
* @param SHORT_TEXT The title text for the banner (only used for text banners, and functions as the 'trigger text' if the banner type is shown inline)
* @return tempcode The input field tempcode
*/
function get_banner_form_fields($simplified = false, $name = '', $image_url = '', $site_url = '', $caption = '', $notes = '', $importancemodulus = 3, $campaignremaining = 50, $the_type = 1, $expiry_date = NULL, $submitter = NULL, $validated = 1, $b_type = '', $title_text = '')
{
require_code('images');
$fields = new ocp_tempcode();
require_code('form_templates');
$fields->attach(form_input_codename(do_lang_tempcode('CODENAME'), do_lang_tempcode('DESCRIPTION_BANNER_NAME'), 'name', $name, true));
$fields->attach(form_input_line(do_lang_tempcode('DESTINATION_URL'), do_lang_tempcode('DESCRIPTION_BANNER_URL'), 'site_url', $site_url, false));
// Blank implies iframe
if (!$simplified) {
$types = nice_get_banner_types($b_type);
if ($types->is_empty()) {
warn_exit(do_lang_tempcode('NO_CATEGORIES'));
}
$fields->attach(form_input_list(do_lang_tempcode('_BANNER_TYPE'), do_lang_tempcode('_DESCRIPTION_BANNER_TYPE'), 'b_type', $types, NULL, false, false));
} else {
$fields->attach(form_input_hidden('b_type', $b_type));
}
if (has_specific_permission(get_member(), 'full_banner_setup')) {
$fields->attach(form_input_username(do_lang_tempcode('OWNER'), do_lang_tempcode('DESCRIPTION_SUBMITTER'), 'submitter', is_null($submitter) ? $GLOBALS['FORUM_DRIVER']->get_username(get_member()) : $submitter, false));
}
if (get_value('disable_staff_notes') !== '1') {
$fields->attach(form_input_text(do_lang_tempcode('NOTES'), do_lang_tempcode('DESCRIPTION_NOTES'), 'notes', $notes, false));
}
if (has_specific_permission(get_member(), 'bypass_validation_midrange_content', 'cms_banners')) {
if ($validated == 0) {
$validated = get_param_integer('validated', 0);
if ($validated == 1) {
attach_message(do_lang_tempcode('WILL_BE_VALIDATED_WHEN_SAVING'));
}
}
if (addon_installed('unvalidated')) {
$fields->attach(form_input_tick(do_lang_tempcode('VALIDATED'), do_lang_tempcode('DESCRIPTION_VALIDATED'), 'validated', $validated == 1));
}
}
$fields->attach(do_template('FORM_SCREEN_FIELD_SPACER', array('TITLE' => do_lang_tempcode('SOURCE_MEDIA'))));
$fields->attach(form_input_upload(do_lang_tempcode('UPLOAD'), do_lang_tempcode('DESCRIPTION_UPLOAD_BANNER'), 'file', false, NULL, NULL, true, str_replace(' ', '', get_option('valid_images') . ',swf')));
$fields->attach(form_input_line(do_lang_tempcode('ALT_FIELD', do_lang_tempcode('IMAGE_URL')), do_lang_tempcode('DESCRIPTION_URL_BANNER'), 'image_url', $image_url, false));
$fields->attach(form_input_line_comcode(do_lang_tempcode('BANNER_TITLE_TEXT'), do_lang_tempcode('DESCRIPTION_BANNER_TITLE_TEXT'), 'title_text', $title_text, false));
$fields->attach(form_input_line_comcode(do_lang_tempcode('DESCRIPTION'), do_lang_tempcode('DESCRIPTION_BANNER_DESCRIPTION'), 'caption', $caption, false));
$fields->attach(do_template('FORM_SCREEN_FIELD_SPACER', array('TITLE' => do_lang_tempcode('DEPLOYMENT_DETERMINATION'))));
if (has_specific_permission(get_member(), 'full_banner_setup')) {
$radios = new ocp_tempcode();
$radios->attach(form_input_radio_entry('the_type', strval(BANNER_PERMANENT), $the_type == BANNER_PERMANENT, do_lang_tempcode('BANNER_PERMANENT')));
$radios->attach(form_input_radio_entry('the_type', strval(BANNER_CAMPAIGN), $the_type == BANNER_CAMPAIGN, do_lang_tempcode('BANNER_CAMPAIGN')));
$radios->attach(form_input_radio_entry('the_type', strval(BANNER_DEFAULT), $the_type == BANNER_DEFAULT, do_lang_tempcode('BANNER_DEFAULT')));
$fields->attach(form_input_radio(do_lang_tempcode('DEPLOYMENT_AGREEMENT'), do_lang_tempcode('DESCRIPTION_BANNER_TYPE'), 'the_type', $radios));
$fields->attach(form_input_integer(do_lang_tempcode('HITS_ALLOCATED'), do_lang_tempcode('DESCRIPTION_HITS_ALLOCATED'), 'campaignremaining', $campaignremaining, false));
$total_importance = $GLOBALS['SITE_DB']->query_value_null_ok_full('SELECT SUM(importance_modulus) FROM ' . get_table_prefix() . 'banners WHERE ' . db_string_not_equal_to('name', $name));
if (is_null($total_importance)) {
$total_importance = 0;
}
$fields->attach(form_input_integer(do_lang_tempcode('IMPORTANCE_MODULUS'), do_lang_tempcode('DESCRIPTION_IMPORTANCE_MODULUS', strval($total_importance), strval($importancemodulus)), 'importancemodulus', $importancemodulus, true));
}
$fields->attach(form_input_date(do_lang_tempcode('EXPIRY_DATE'), do_lang_tempcode('DESCRIPTION_EXPIRY_DATE'), 'expiry_date', true, is_null($expiry_date), true, $expiry_date, 2));
return $fields;
}
/**
* Standard pointstore item configuration function.
*
* @return ?array A tuple: list of [fields to shown, hidden fields], title for add form, add form (NULL: disabled)
*/
function config()
{
$rows = $GLOBALS['SITE_DB']->query_select('pstore_customs', array('*'), NULL, 'ORDER BY id');
$out = array();
foreach ($rows as $i => $row) {
$fields = new ocp_tempcode();
$hidden = new ocp_tempcode();
$fields->attach($this->get_fields('_' . strval($i), get_translated_text($row['c_title']), get_translated_text($row['c_description']), $row['c_enabled'], $row['c_cost'], $row['c_one_per_member']));
$fields->attach(do_template('FORM_SCREEN_FIELD_SPACER', array('TITLE' => do_lang_tempcode('ACTIONS'))));
$fields->attach(form_input_tick(do_lang_tempcode('DELETE'), do_lang_tempcode('DESCRIPTION_DELETE'), 'delete_custom_' . strval($i), false));
$hidden->attach(form_input_hidden('custom_' . strval($i), strval($row['id'])));
$out[] = array($fields, $hidden, do_lang_tempcode('EDIT_CUSTOM_PRODUCT'));
}
return array($out, do_lang_tempcode('ADD_NEW_CUSTOM_PRODUCT'), $this->get_fields());
}
/**
* Standard modular render function for profile tabs edit hooks.
*
* @param MEMBER The ID of the member who is being viewed
* @param MEMBER The ID of the member who is doing the viewing
* @param boolean Whether to leave the tab contents NULL, if tis hook supports it, so that AJAX can load it later
* @return ?array A tuple: The tab title, the tab body text (may be blank), the tab fields, extra Javascript (may be blank) the suggested tab order, hidden fields (optional) (NULL: if $leave_to_ajax_if_possible was set)
*/
function render_tab($member_id_of, $member_id_viewing, $leave_to_ajax_if_possible = false)
{
$order = 10;
// NB: Actualiser is handled in settings.php
if ($leave_to_ajax_if_possible) {
return NULL;
}
// UI
$title = do_lang_tempcode('PROFILE');
$custom_fields = ocf_get_custom_fields_member($member_id_of);
require_code('ocf_members_action2');
list($fields, $hidden) = ocf_get_member_fields_profile(false, $member_id_of, NULL, $custom_fields);
$redirect = get_param('redirect', NULL);
if (!is_null($redirect)) {
$hidden->attach(form_input_hidden('redirect', $redirect));
}
$javascript = '';
$text = '';
return array($title, $fields, $text, $javascript, $order, $hidden);
}
/**
* Standard modular render function for profile tabs edit hooks.
*
* @param MEMBER The ID of the member who is being viewed
* @param MEMBER The ID of the member who is doing the viewing
* @param boolean Whether to leave the tab contents NULL, if tis hook supports it, so that AJAX can load it later
* @return ?array A tuple: The tab title, the tab body text (may be blank), the tab fields, extra Javascript (may be blank) the suggested tab order, hidden fields (optional) (NULL: if $leave_to_ajax_if_possible was set)
*/
function render_tab($member_id_of, $member_id_viewing, $leave_to_ajax_if_possible = false)
{
$title = do_lang_tempcode('PHOTO');
$order = 30;
// Actualiser
if (post_param_integer('submitting_photo_tab', 0) == 1) {
require_code('ocf_members_action');
require_code('ocf_members_action2');
ocf_member_choose_photo('photo_url', 'photo_file', $member_id_of);
attach_message(do_lang_tempcode('SUCCESS_SAVE'), 'inform');
}
if ($leave_to_ajax_if_possible) {
return NULL;
}
$photo_url = $GLOBALS['FORUM_DRIVER']->get_member_row_field($member_id_of, 'm_photo_url');
$thumb_url = $GLOBALS['FORUM_DRIVER']->get_member_row_field($member_id_of, 'm_photo_thumb_url');
// UI fields
$fields = new ocp_tempcode();
require_code('form_templates');
$fields->attach(form_input_upload(do_lang_tempcode('UPLOAD'), do_lang_tempcode('DESCRIPTION_UPLOAD'), 'photo_file', false, NULL, NULL, true, str_replace(' ', '', get_option('valid_images'))));
$fields->attach(form_input_line(do_lang_tempcode('ALT_FIELD', do_lang_tempcode('URL')), do_lang_tempcode('DESCRIPTION_ALTERNATE_URL'), 'photo_url', $photo_url, false));
if (get_option('is_on_gd') == '0' || !function_exists('imagetypes')) {
$thumb_width = get_option('thumb_width');
$fields->attach(form_input_upload(do_lang_tempcode('THUMBNAIL'), do_lang_tempcode('DESCRIPTION_THUMBNAIL', escape_html($thumb_width)), 'photo_file2', false, NULL, NULL, true, str_replace(' ', '', get_option('valid_images'))));
$fields->attach(form_input_line(do_lang_tempcode('ALT_FIELD', do_lang_tempcode('URL')), do_lang_tempcode('DESCRIPTION_ALTERNATE_URL'), 'photo_thumb_url', $thumb_url, false));
}
$hidden = new ocp_tempcode();
handle_max_file_size($hidden, 'image');
$hidden->attach(form_input_hidden('submitting_photo_tab', '1'));
$text = new ocp_tempcode();
require_code('images');
$max = floatval(get_max_image_size()) / floatval(1024 * 1024);
if ($max < 3.0) {
require_code('files2');
$config_url = get_upload_limit_config_url();
$text->attach(paragraph(do_lang_tempcode(is_null($config_url) ? 'MAXIMUM_UPLOAD' : 'MAXIMUM_UPLOAD_STAFF', escape_html($max > 10.0 ? integer_format(intval($max)) : float_format($max)), is_null($config_url) ? '' : escape_html($config_url))));
}
$text = do_template('OCF_EDIT_PHOTO_TAB', array('TEXT' => $text, 'MEMBER_ID' => strval($member_id_of), 'USERNAME' => $GLOBALS['FORUM_DRIVER']->get_username($member_id_of), 'PHOTO' => $GLOBALS['FORUM_DRIVER']->get_member_photo_url($member_id_of)));
$javascript = '';
return array($title, $fields, $text, $javascript, $order, $hidden);
}
/**
* Get the tempcode for a confirmation page.
*
* @param tempcode The title for the confirmation page (out of get_page_title)
* @param tempcode The preview that's being confirmed for actualisation
* @param ID_TEXT The URL type to confirm through to
* @param mixed The URL type if we click back OR a full URL (if long, or if tempcode)
* @param ?array A map of supplementary post data to get passed through upon confirmation (NULL: none)
* @param ?tempcode Form fields to pass through as post data on confirmation (NULL: none)
* @return tempcode The confirmation page
*/
function form_confirm_screen($title, $preview, $url_type, $back_url_type, $sup_post = NULL, $fields = NULL)
{
if (is_null($sup_post)) {
$sup_post = array();
}
if (is_string($back_url_type) && strlen($back_url_type) < 10) {
$back_url = build_url(array('page' => '_SELF', 'type' => $back_url_type), '_SELF', NULL, true);
} else {
$back_url = $back_url_type;
}
$url = build_url(array('page' => '_SELF', 'type' => $url_type), '_SELF', NULL, true);
if (is_null($fields)) {
$fields = new ocp_tempcode();
}
$fields->attach(build_keep_post_fields(array_keys($sup_post)));
// Everything EXCEPT what might have been passed in sup_post
foreach ($sup_post as $key => $val) {
$fields->attach(form_input_hidden($key, is_string($val) ? $val : strval($val)));
}
return do_template('FORM_CONFIRM_SCREEN', array('_GUID' => 'a99b861d24ab876a40cc010af2b26bc8', 'URL' => $url, 'BACK_URL' => $back_url, 'PREVIEW' => $preview, 'FIELDS' => $fields, 'TITLE' => $title));
}
/**
* Recurser helper function for _build_keep_post_fields.
*
* @param ID_TEXT Key name to put value under
* @param mixed Value (string or array)
* @return string The builtup hidden form fields
*/
function _fixed_post_parser($key, $value)
{
$out = '';
if (!is_string($key)) {
$key = strval($key);
}
if (is_array($value)) {
foreach ($value as $k => $v) {
if (is_string($k)) {
$out .= _fixed_post_parser($key . '[' . $k . ']', $v);
} else {
$out .= _fixed_post_parser($key . '[' . strval($k) . ']', $v);
}
}
} else {
if (get_magic_quotes_gpc()) {
$value = stripslashes($value);
}
$out .= static_evaluate_tempcode(form_input_hidden($key, is_string($value) ? $value : strval($value)));
}
return $out;
}
if (sizeof($folder_subscriptions['folder_array']) > 0) {
echo " <tr>\n";
echo " <td align=\"left\"> </td>\n";
echo " </tr>\n";
echo " <tr>\n";
echo " <td align=\"center\" colspan=\"3\">", form_submit("save", gettext("Reset Selected")), "</td>\n";
echo " </tr>\n";
}
echo " </table>\n";
echo "</form>\n";
echo "<br />\n";
echo "<form accept-charset=\"utf-8\" method=\"post\" action=\"folder_subscriptions.php\" target=\"_self\">\n";
echo " ", form_csrf_token_field(), "\n";
echo " ", form_input_hidden('webtag', htmlentities_array($webtag)), "\n";
echo " ", form_input_hidden("page", htmlentities_array($page)), "\n";
echo " ", form_input_hidden("view", htmlentities_array($view)), "\n";
echo " <table cellpadding=\"0\" cellspacing=\"0\" width=\"700\">\n";
echo " <tr>\n";
echo " <td align=\"left\" class=\"posthead\">\n";
echo " <table class=\"box\" width=\"100%\">\n";
echo " <tr>\n";
echo " <td align=\"left\" class=\"posthead\">\n";
echo " <table class=\"posthead\" width=\"100%\">\n";
echo " <tr>\n";
echo " <td class=\"subhead\" align=\"left\">", gettext("Search"), "</td>\n";
echo " </tr>\n";
echo " </table>\n";
echo " <table class=\"posthead\" width=\"100%\">\n";
echo " <tr>\n";
echo " <td align=\"center\">\n";
echo " <table class=\"posthead\" width=\"95%\">\n";
/**
* Standard stage of pointstore item purchase.
*
* @return tempcode The UI
*/
function __text()
{
if (get_option('is_on_flagrant_buy') == '0') {
return new ocp_tempcode();
}
$title = get_page_title('TITLE_NEWTEXT');
//So we don't need to call this big long ugly name...
$days = post_param_integer('days');
$message = post_param('message');
$member_id = get_member();
$pointsleft = available_points($member_id);
//First we need to know the price of the number of days we ordered. After that, compare that price
//with our users current number of points.
$dayprice = intval(get_option('text'));
$total = $dayprice * $days;
if (!($days >= 1)) {
return warn_screen($title, do_lang_tempcode('FLAGRANT_POSITIVE_DAYS'));
}
if ($pointsleft < $total && !has_specific_permission(get_member(), 'give_points_self')) {
return warn_screen($title, do_lang_tempcode('FLAGRANT_LACK_POINTS', integer_format($days), integer_format($total), array(integer_format($pointsleft))));
}
// the order screen...
$action = do_lang_tempcode('CONFIRM_FLAGRANT', integer_format($days));
$keep = form_input_hidden('message', $message);
$keep->attach(form_input_hidden('days', strval($days)));
$proceed_url = build_url(array('page' => '_SELF', 'type' => '___text', 'id' => 'flagrant'), '_SELF');
return do_template('POINTSTORE_CONFIRM_SCREEN', array('_GUID' => 'e2b139122d95af6a1930e84b41609145', 'TITLE' => $title, 'KEEP' => $keep, 'ACTION' => $action, 'COST' => integer_format($total), 'POINTS_AFTER' => integer_format($pointsleft - $total), 'PROCEED_URL' => $proceed_url, 'MESSAGE' => comcode_to_tempcode($message), 'CANCEL_URL' => build_url(array('page' => '_SELF'), '_SELF')));
}
echo " </td>\n";
echo " </tr>\n";
echo " </table>\n";
echo " </div>\n";
echo " </td>\n";
echo " </tr>\n";
echo " <tr>\n";
echo " <td align=\"left\"> </td>\n";
echo " </tr>\n";
echo " <tr>\n";
echo " <td align=\"left\">\n";
echo " ", form_submit("post", gettext("Post")), " ", form_submit("preview_poll", gettext("Preview")), " ", form_submit("preview_form", gettext("Preview Voting Form"));
echo " <a href=\"discussion.php?webtag={$webtag}\" class=\"button\" target=\"_self\"><span>", gettext("Cancel"), "</span></a>";
if (forum_get_setting('attachments_enabled', 'Y')) {
echo " <a href=\"attachments.php?webtag={$webtag}&aid={$aid}\" class=\"button popup 660x500\" id=\"attachments\"><span>", gettext("Attachments"), "</span></a>\n";
echo " ", form_input_hidden("aid", htmlentities_array($aid)), "\n";
}
echo " </td>\n";
echo " </tr>\n";
echo " </table>\n";
echo " </td>\n";
echo " </tr>\n";
echo " </table>\n";
echo " </td>\n";
echo " </tr>\n";
echo " <tr>\n";
echo " <td align=\"left\"> </td>\n";
echo " </tr>\n";
echo " </table>\n";
echo " </td>\n";
echo " </tr>\n";
echo " </tr>\n";
echo " <tr>\n";
echo " <td align=\"center\">", form_submit("add", gettext("Add Selected Users")), "</td>\n";
echo " </tr>\n";
}
echo " </table>\n";
echo "</form>\n";
echo "<br />\n";
}
echo "<form accept-charset=\"utf-8\" method=\"post\" action=\"admin_user_groups_edit_users.php\" target=\"_self\">\n";
echo " ", form_csrf_token_field(), "\n";
echo " ", form_input_hidden('webtag', htmlentities_array($webtag)), "\n";
echo " ", form_input_hidden('gid', htmlentities_array($gid)), "\n";
echo " ", form_input_hidden("main_page", htmlentities_array($main_page)), "\n";
echo " ", form_input_hidden("search_page", htmlentities_array($search_page)), "\n";
echo " ", form_input_hidden("ret", htmlentities_array($ret)), "\n";
echo " <table cellpadding=\"0\" cellspacing=\"0\" width=\"800\">\n";
echo " <tr>\n";
echo " <td align=\"left\" class=\"posthead\">\n";
echo " <table class=\"box\" width=\"100%\">\n";
echo " <tr>\n";
echo " <td align=\"left\" class=\"posthead\">\n";
echo " <table class=\"posthead\" width=\"100%\">\n";
echo " <tr>\n";
echo " <td class=\"subhead\" align=\"left\">", gettext("Search"), "</td>\n";
echo " </tr>\n";
echo " <tr>\n";
echo " <td align=\"center\">\n";
echo " <table class=\"posthead\" width=\"95%\">\n";
echo " <tr>\n";
echo " <td class=\"posthead\" align=\"left\">\n";
echo " </tr>\n";
} else {
echo " <tr>\n";
echo " <td align=\"left\" colspan=\"6\"> </td>\n";
echo " </tr>\n";
}
echo " </table>\n";
echo " </td>\n";
echo " </tr>\n";
echo " </table>\n";
echo " </td>\n";
echo " </tr>\n";
echo " </table>\n";
echo " <br />\n";
echo " <form accept-charset=\"utf-8\" action=\"admin_post_stats.php\" method=\"post\" target=\"_self\">\n";
echo " ", form_input_hidden("webtag", htmlentities_array($webtag)), "\n";
echo " <table cellpadding=\"0\" cellspacing=\"0\" width=\"700\">\n";
echo " <tr>\n";
echo " <td align=\"left\">\n";
echo " <table class=\"box\" width=\"100%\">\n";
echo " <tr>\n";
echo " <td align=\"left\" class=\"posthead\">\n";
echo " <table class=\"posthead\" width=\"100%\">\n";
echo " <tr>\n";
echo " <td align=\"left\" class=\"subhead\">", gettext("Options"), "</td>\n";
echo " </tr>\n";
echo " <tr>\n";
echo " <td align=\"center\">\n";
echo " <table class=\"posthead\" width=\"95%\">\n";
echo " <tr>\n";
echo " <td align=\"left\" width=\"100\">", gettext("Posted from"), ":</td>\n";
function forum_check_password($forum_fid)
{
if (!is_numeric($forum_fid)) {
return false;
}
$webtag = get_webtag();
if (!($forum_passhash = forum_get_password($forum_fid))) {
return true;
}
$forum_passhash_check = session::get_value("{$webtag}_PASSWORD");
if (isset($_POST['forum_password']) && strlen($_POST['forum_password']) > 0) {
$forum_passhash_check = md5($_POST['forum_password']);
}
if ($forum_passhash == $forum_passhash_check) {
session::set_value("{$webtag}_PASSWORD", $forum_passhash_check);
return true;
}
html_draw_top(sprintf("title=%s", gettext("Password Protected Forum")));
echo "<h1>", gettext("Password Protected Forum"), "</h1>\n";
if (session::get_value("{$webtag}_PASSWORD")) {
html_display_error_msg(gettext("The username or password you supplied is not valid."), '550', 'center');
}
if ($password_protected_message = forum_get_setting('password_protected_message')) {
echo fix_html($password_protected_message);
} else {
html_display_warning_msg(gettext("This forum is password protected. To gain access enter the password below."), '400', 'center');
}
echo "<br />\n";
echo "<div align=\"center\">\n";
echo " <form accept-charset=\"utf-8\" method=\"post\" action=\"", get_request_uri(), "\" target=\"_self\" autocomplete=\"off\">\n";
if (isset($_POST) && is_array($_POST) && sizeof($_POST) > 0) {
echo form_input_hidden_array($_POST);
}
echo " ", form_input_hidden('webtag', htmlentities_array($webtag)), "\n";
echo " <table cellpadding=\"0\" cellspacing=\"0\" width=\"400\">\n";
echo " <tr>\n";
echo " <td align=\"left\">\n";
echo " <table class=\"box\" width=\"400\">\n";
echo " <tr>\n";
echo " <td class=\"posthead\" align=\"center\">\n";
echo " <table class=\"posthead\" width=\"100%\">\n";
echo " <tr>\n";
echo " <td align=\"left\" class=\"subhead\" colspan=\"2\">", gettext("Enter Password"), "</td>\n";
echo " </tr>\n";
echo " </table>\n";
echo " <table class=\"posthead\" width=\"90%\">\n";
echo " <tr>\n";
echo " <td align=\"left\">", gettext("Password"), ":</td>\n";
echo " <td align=\"left\">", form_input_password('forum_password', '', 40, false, ''), "</td>\n";
echo " </tr>\n";
echo " <tr>\n";
echo " <td align=\"left\" colspan=\"2\"> </td>\n";
echo " </tr>\n";
echo " </table>\n";
echo " </td>\n";
echo " </tr>\n";
echo " </table>\n";
echo " </td>\n";
echo " </tr>\n";
echo " <tr>\n";
echo " <td align=\"left\"> </td>\n";
echo " </tr>\n";
echo " <tr>\n";
echo " <td align=\"center\">", form_submit("logon", gettext("Logon")), " ", form_submit("cancel", gettext("Cancel")), "</td>\n";
echo " </tr>\n";
echo " </table>\n";
if (session::check_perm(USER_PERM_ADMIN_TOOLS, 0) || session::check_perm(USER_PERM_FORUM_TOOLS, 0)) {
html_display_warning_msg(gettext("If you want to change some settings on your forum click the Admin link in the navigation bar above."), '400', 'center');
}
echo " </form>\n";
echo "</div>\n";
html_draw_bottom();
exit;
}
foreach ($folder_mods_array as $folder_mod) {
echo " <li><a href=\"user_profile.php?webtag={$webtag}&uid={$folder_mod['UID']}\" target=\"_blank\" class=\"popup 650x500\">";
echo word_filter_add_ob_tags(format_user_name($folder_mod['LOGON'], $folder_mod['NICKNAME']), true), "</a></li>\n";
}
} else {
echo " <li>", gettext("No moderators found"), "</li>\n";
}
echo " </ul>\n";
echo " </td>\n";
echo " </tr>\n";
echo " </table>\n";
echo " </td>\n";
echo " </tr>\n";
echo " <tr>\n";
echo " <td align=\"left\"> </td>\n";
echo " </tr>\n";
echo " </table>\n";
echo " </td>\n";
echo " </tr>\n";
echo " </table>\n";
echo " </td>\n";
echo " </tr>\n";
echo " </table>\n";
echo " <br />\n";
echo " <form accept-charset=\"utf-8\" method=\"post\" action=\"mods_list.php\" target=\"_self\">\n";
echo " ", form_input_hidden('webtag', htmlentities_array($webtag)), "\n";
echo " ", form_input_hidden('fid', htmlentities_array($fid)), "\n";
echo " " . form_button('close_popup', gettext("Close")) . "\n";
echo " </form>\n";
echo "</div>\n";
html_draw_bottom();
echo " </tr>\n";
echo " </table>\n";
echo " </td>\n";
echo " </tr>\n";
echo " </table>\n";
echo " </td>\n";
echo " </tr>\n";
echo " </table>\n";
}
echo " <br />\n";
echo "</form>\n";
echo "<form accept-charset=\"utf-8\" action=\"admin_users.php\" method=\"get\">\n";
echo " ", form_input_hidden("webtag", htmlentities_array($webtag)), "\n";
echo " ", form_input_hidden("sort_by", htmlentities_array($sort_by)), "\n";
echo " ", form_input_hidden("sort_dir", htmlentities_array($sort_dir)), "\n";
echo " ", form_input_hidden("filter", htmlentities_array($filter)), "\n";
echo " <table cellpadding=\"0\" cellspacing=\"0\" width=\"86%\">\n";
echo " <tr>\n";
echo " <td align=\"left\">\n";
echo " <table class=\"box\" width=\"100%\">\n";
echo " <tr>\n";
echo " <td align=\"left\" class=\"posthead\">\n";
echo " <table width=\"100%\">\n";
echo " <tr>\n";
echo " <td class=\"subhead\" align=\"left\">", gettext("Search for a user not in list"), "</td>\n";
echo " </tr>\n";
echo " <tr>\n";
echo " <td align=\"center\">\n";
echo " <table class=\"posthead\" width=\"95%\">\n";
echo " <tr>\n";
echo " <td class=\"posthead\" align=\"left\">", gettext("Username"), ": ", form_input_text('user_search', htmlentities_array($user_search), 25, 64), " ", form_submit('search', gettext("Search")), " ", form_submit('reset', gettext("Clear")), "</td>\n";
/**
* Actualiser to delete an invoice.
*
* @return tempcode The result.
*/
function delete()
{
$title = get_page_title('DELETE_INVOICE');
breadcrumb_set_parents(array(array('_SEARCH:admin_ecommerce:ecom_usage', do_lang_tempcode('ECOMMERCE')), array('_SELF:_SELF:misc', do_lang_tempcode('INVOICES')), array('_SELF:_SELF:undelivered', do_lang_tempcode('UNDELIVERED_INVOICES'))));
if (post_param_integer('confirmed', 0) != 1) {
$url = get_self_url();
$text = do_lang_tempcode('DELETE_INVOICE');
breadcrumb_set_self(do_lang_tempcode('CONFIRM'));
$hidden = build_keep_post_fields();
$hidden->attach(form_input_hidden('confirmed', '1'));
$hidden->attach(form_input_hidden('from', get_param('from', 'misc')));
return do_template('CONFIRM_SCREEN', array('_GUID' => '45707062c00588c33726b256e8f9ba40', 'TITLE' => $title, 'FIELDS' => $hidden, 'PREVIEW' => $text, 'URL' => $url));
}
breadcrumb_set_self(do_lang_tempcode('DONE'));
$GLOBALS['SITE_DB']->query_delete('invoices', array('id' => get_param_integer('id')), '', 1);
$url = build_url(array('page' => '_SELF', 'type' => post_param('from', 'misc')), '_SELF');
return redirect_screen($title, $url, do_lang_tempcode('SUCCESS'));
}
/**
* Fifth installation step.
*
* @return tempcode Progress report / UI
*/
function step_5()
{
if (count($_POST) == 0) {
exit(do_lang('INST_POST_ERROR'));
}
if (function_exists('set_time_limit')) {
@set_time_limit(180);
}
$url = 'install.php?step=6';
$use_msn = post_param_integer('use_msn', 0);
if ($use_msn == 0) {
$use_msn = post_param_integer('use_multi_db', 0);
}
if ($use_msn == 0) {
$_POST['db_forums'] = $_POST['db_site'];
$_POST['db_forums_host'] = $_POST['db_site_host'];
$_POST['db_forums_user'] = $_POST['db_site_user'];
$_POST['db_forums_password'] = $_POST['db_site_password'];
$_POST['ocf_table_prefix'] = array_key_exists('table_prefix', $_POST) ? $_POST['table_prefix'] : 'ocp_';
}
// Check cookie settings. IF THIS CODE IS CHANGED ALSO CHANGE COPY&PASTED CODE IN CONFIG_EDITOR.PHP
$cookie_path = post_param('cookie_path');
$cookie_domain = trim(post_param('cookie_domain'));
$base_url = post_param('base_url');
if (substr($base_url, -1) == '/') {
$base_url = substr($base_url, 0, strlen($base_url) - 1);
}
$url_parts = parse_url($base_url);
if (!array_key_exists('host', $url_parts)) {
$url_parts['host'] = 'localhost';
}
if (!array_key_exists('path', $url_parts)) {
$url_parts['path'] = '';
}
if (substr($url_parts['path'], -1) != '/') {
$url_parts['path'] .= '/';
}
if (substr($cookie_path, -1) == '/') {
$cookie_path = substr($cookie_path, 0, strlen($cookie_path) - 1);
}
if ($cookie_path != '' && substr($url_parts['path'], 0, strlen($cookie_path) + 1) != $cookie_path . '/') {
warn_exit(do_lang_tempcode('COOKIE_PATH_MUST_MATCH', escape_html($url_parts['path'])));
}
if ($cookie_domain != '') {
if (strpos($url_parts['host'], '.') === false) {
warn_exit(do_lang_tempcode('COOKIE_DOMAIN_CANT_USE'));
}
if (substr($cookie_domain, 0, 1) != '.') {
warn_exit(do_lang_tempcode('COOKIE_DOMAIN_MUST_START_DOT'));
} elseif (substr($url_parts['host'], 1 - strlen($cookie_domain)) != substr($cookie_domain, 1)) {
warn_exit(do_lang_tempcode('COOKIE_DOMAIN_MUST_MATCH', escape_html($url_parts['host'])));
}
}
$table_prefix = post_param('table_prefix');
if ($table_prefix == '') {
warn_exit(do_lang_tempcode('NO_BLANK_TABLE_PREFIX'));
}
// Give warning if database contains data
global $SITE_INFO;
foreach ($_POST as $key => $val) {
if ($key == 'ftp_password' || $key == 'ftp_password_confirm' || $key == 'admin_password_confirm' || $key == 'ocf_admin_password' || $key == 'ocf_admin_password_confirm') {
continue;
}
if (get_magic_quotes_gpc()) {
$val = stripslashes($val);
}
if ($key == 'admin_password') {
$val = '!' . md5($val . 'ocp');
}
$SITE_INFO[$key] = trim($val);
}
require_code('database');
if (post_param_integer('confirm', 0) == 0) {
$tmp = new database_driver(trim(post_param('db_site')), trim(post_param('db_site_host')), trim(post_param('db_site_user')), trim(post_param('db_site_password')), $table_prefix);
$test = $tmp->query_value_null_ok('config', 'the_type', array('the_name' => 'is_on_gd'), '', true);
unset($tmp);
if (!is_null($test)) {
global $LANG;
$sections = build_keep_post_fields(array('forum_type', 'db_type', 'board_path', 'default_lang'));
$sections->attach(form_input_hidden('confirm', '1'));
return do_template('INSTALLER_STEP_4', array('_GUID' => 'aaf0386966dd4b75c8027a6b1f7454c6', 'MESSAGE' => do_lang_tempcode('WARNING_DB_OVERWRITE'), 'LANG' => $LANG, 'DB_TYPE' => post_param('db_type'), 'FORUM_TYPE' => post_param('forum_type'), 'BOARD_PATH' => post_param('board_path'), 'SECTIONS' => $sections));
}
}
if ($_POST['db_forums'] != $_POST['db_site'] && get_forum_type() == 'ocf') {
$tmp = new database_driver(trim(post_param('db_forums')), trim(post_param('db_forums_host')), trim(post_param('db_forums_user')), trim(post_param('db_forums_password')), $table_prefix);
if (is_null($tmp->query_value_null_ok('db_meta', 'COUNT(*)', NULL, '', true))) {
warn_exit(do_lang_tempcode('MSN_FORUM_DB_NOT_OCF_ALREADY'));
}
}
global $FILE_ARRAY;
$still_ftp = false;
$log = new ocp_tempcode();
if (@is_array($FILE_ARRAY)) {
$ftp_status = step_5_ftp();
$log->attach($ftp_status[0]);
if ($ftp_status[1] != -1) {
$url = 'install.php?step=5&start_from=' . strval($ftp_status[1]);
$still_ftp = true;
}
}
if (!$still_ftp) {
require_code('zones');
require_code('comcode');
require_code('themes');
$log->attach(step_5_checks());
$log->attach(step_5_write_config());
$log->attach(step_5_uninstall());
$log->attach(step_5_core());
include_ocf();
$log->attach(step_5_core_2());
}
return do_template('INSTALLER_STEP_LOG', array('_GUID' => '83ed0405bc32fdf2cc499662bfa51bc9', 'PREVIOUS_STEP' => '4', 'URL' => $url, 'LOG' => $log, 'HIDDEN' => build_keep_post_fields()));
}
} else {
if (isset($_GET['deleted'])) {
html_display_success_msg(gettext("Successfully removed selected feeds"), '70%', 'center');
} else {
if (sizeof($rss_feeds['rss_feed_array']) < 1) {
html_display_warning_msg(gettext("No existing RSS Feeds found. To add a feed click the 'Add New' button below"), '70%', 'center');
}
}
}
}
}
echo "<br />\n";
echo "<div align=\"center\">\n";
echo "<form accept-charset=\"utf-8\" name=\"rss\" action=\"admin_rss_feeds.php\" method=\"post\">\n";
echo " ", form_input_hidden('webtag', htmlentities_array($webtag)), "\n";
echo " ", form_input_hidden('page', htmlentities_array($page)), "\n";
echo " <table cellpadding=\"0\" cellspacing=\"0\" width=\"70%\">\n";
echo " <tr>\n";
echo " <td align=\"left\">\n";
echo " <table class=\"box\" width=\"100%\">\n";
echo " <tr>\n";
echo " <td align=\"left\" class=\"posthead\">\n";
echo " <table class=\"posthead\" width=\"100%\">\n";
echo " <tr>\n";
echo " <td class=\"subhead\" align=\"center\" width=\"20\"> </td>\n";
echo " <td class=\"subhead\" align=\"left\">", gettext("Name"), "</td>\n";
echo " <td class=\"subhead\" align=\"left\">", gettext("Feed Location"), "</td>\n";
echo " <td class=\"subhead\" align=\"left\" width=\"20%\">", gettext("Update Frequency"), " </td>\n";
echo " </tr>\n";
if (sizeof($rss_feeds['rss_feed_array']) > 0) {
foreach ($rss_feeds['rss_feed_array'] as $rss_feed) {
/**
* Get tempcode for adding/editing form.
*
* @param SHORT_TEXT The name of the custom profile field
* @param LONG_TEXT The description of the field
* @param LONG_TEXT The default value of the field
* @param BINARY Whether the field is publicly viewable
* @param BINARY Whether the field may be viewed by the owner
* @param BINARY Whether the owner may set the value of the field
* @param BINARY Whether the field is encrypted
* @param ID_TEXT The type of the field
* @set short_text long_text short_trans long_trans integer upload picture url list tick
* @param BINARY Whether the field is required to be filled in
* @param BINARY Whether the field is to be shown on the join form
* @param BINARY Whether the field is shown in posts
* @param BINARY Whether the field is shown in post previews
* @param ?integer The order the field is given relative to the order of the other custom profile fields (NULL: last)
* @param LONG_TEXT The usergroups that this field is confined to (comma-separated list).
* @param BINARY Whether the field is locked
* @return array A pair: the tempcode for the visible fields, and the tempcode for the hidden fields
*/
function get_form_fields($name = '', $description = '', $default = '', $public_view = 1, $owner_view = 1, $owner_set = 1, $encrypted = 0, $type = 'long_text', $required = 0, $show_on_join_form = 0, $show_in_posts = 0, $show_in_post_previews = 0, $order = NULL, $only_group = '', $locked = 0)
{
$fields = new ocp_tempcode();
$hidden = new ocp_tempcode();
require_code('form_templates');
require_code('encryption');
require_lang('fields');
if ($locked == 0) {
$fields->attach(form_input_line(do_lang_tempcode('NAME'), do_lang_tempcode('DESCRIPTION_NAME'), 'name', $name, true));
} else {
$hidden->attach(form_input_hidden('name', $name));
}
$fields->attach(form_input_line_comcode(do_lang_tempcode('DESCRIPTION'), do_lang_tempcode('DESCRIPTION_DESCRIPTION'), 'description', $description, false));
$fields->attach(form_input_line(do_lang_tempcode('DEFAULT_VALUE'), do_lang_tempcode('DESCRIPTION_DEFAULT_VALUE_CPF'), 'default', $default, false, NULL, 10000));
$fields->attach(form_input_tick(do_lang_tempcode('OWNER_VIEW'), do_lang_tempcode('DESCRIPTION_OWNER_VIEW'), 'owner_view', $owner_view == 1));
$fields->attach(form_input_tick(do_lang_tempcode('OWNER_SET'), do_lang_tempcode('DESCRIPTION_OWNER_SET'), 'owner_set', $owner_set == 1));
$fields->attach(form_input_tick(do_lang_tempcode('PUBLIC_VIEW'), do_lang_tempcode('DESCRIPTION_PUBLIC_VIEW'), 'public_view', $public_view == 1));
if (is_encryption_enabled() && $name == '') {
$fields->attach(form_input_tick(do_lang_tempcode('ENCRYPTED'), do_lang_tempcode('DESCRIPTION_ENCRYPTED'), 'encrypted', $encrypted == 1));
}
require_code('fields');
$type_list = nice_get_field_type($type, $name != '');
$fields->attach(form_input_list(do_lang_tempcode('TYPE'), do_lang_tempcode('DESCRIPTION_FIELD_TYPE'), 'type', $type_list));
$fields->attach(form_input_tick(do_lang_tempcode('REQUIRED'), do_lang_tempcode('DESCRIPTION_REQUIRED'), 'required', $required == 1));
$fields->attach(form_input_tick(do_lang_tempcode('SHOW_ON_JOIN_FORM'), do_lang_tempcode('DESCRIPTION_SHOW_ON_JOIN_FORM'), 'show_on_join_form', $show_on_join_form == 1));
$orderlist = new ocp_tempcode();
$num_cpfs = $GLOBALS['FORUM_DB']->query_value('f_custom_fields', 'COUNT(*)');
if ($name == '') {
$num_cpfs++;
}
$selected_one = false;
for ($i = 0; $i < (is_null($order) ? $num_cpfs : max($num_cpfs, $order)); $i++) {
$selected = $i === $order || $name == '' && $i == $num_cpfs - 1;
if ($selected) {
$selected_one = true;
}
$orderlist->attach(form_input_list_entry(strval($i), $selected, integer_format($i + 1)));
}
if (!$selected_one) {
$orderlist->attach(form_input_list_entry(strval($order), true, integer_format($order + 1)));
}
$fields->attach(form_input_list(do_lang_tempcode('ORDER'), do_lang_tempcode('DESCRIPTION_FIELD_ORDER'), 'order', $orderlist));
$fields->attach(form_input_tick(do_lang_tempcode('SHOW_IN_POSTS'), do_lang_tempcode('DESCRIPTION_SHOW_IN_POSTS'), 'show_in_posts', $show_in_posts == 1));
$fields->attach(form_input_tick(do_lang_tempcode('SHOW_IN_POST_PREVIEWS'), do_lang_tempcode('DESCRIPTION_SHOW_IN_POST_PREVIEWS'), 'show_in_post_previews', $show_in_post_previews == 1));
$rows = $GLOBALS['FORUM_DB']->query_select('f_groups', array('id', 'g_name', 'g_is_super_admin'), array('g_is_private_club' => 0));
if ($locked == 0) {
$groups = new ocp_tempcode();
//$groups=form_input_list_entry('-1',false,do_lang_tempcode('_ALL'));
foreach ($rows as $group) {
if ($group['id'] != db_get_first_id()) {
$groups->attach(form_input_list_entry(strval($group['id']), count(array_intersect(array($group['id']), explode(',', $only_group))) != 0, get_translated_text($group['g_name'], $GLOBALS['FORUM_DB'])));
}
}
$fields->attach(form_input_multi_list(do_lang_tempcode('GROUP'), do_lang_tempcode('DESCRIPTION_FIELD_ONLY_GROUP'), 'only_group', $groups));
} else {
$hidden->attach(form_input_hidden('only_group', ''));
}
return array($fields, $hidden);
}
echo " </tr>\n";
echo " <tr>\n";
echo " <td align=\"center\">\n";
echo " <table class=\"box\" width=\"95%\">\n";
echo " <tr>\n";
echo " <td align=\"left\" class=\"posthead\">\n";
echo " <table class=\"posthead\" width=\"100%\">\n";
echo " <tr>\n";
echo " <td align=\"left\" class=\"subhead\" width=\"100\">", gettext("Folders"), "</td>\n";
echo " <td align=\"left\" class=\"subhead\">", gettext("Permissions"), "</td>\n";
echo " </tr>\n";
echo " <tr>\n";
echo " <td align=\"left\" colspan=\"2\">\n";
echo " <div class=\"admin_folder_perms\">\n";
foreach ($folder_array as $fid => $folder) {
echo " ", form_input_hidden("t_update_perms_array[]", htmlentities_array($folder['FID'])), "\n";
echo " <table class=\"posthead\" width=\"100%\">\n";
echo " <tr>\n";
echo " <td align=\"left\" rowspan=\"5\" width=\"100\" valign=\"top\"><a href=\"admin_folder_edit.php?webtag={$webtag}&fid={$folder['FID']}\" target=\"_self\">", word_filter_add_ob_tags($folder['TITLE'], true), "</a></td>\n";
echo " <td align=\"left\" style=\"white-space: nowrap\">", form_checkbox("t_post_read[{$folder['FID']}]", USER_PERM_POST_READ, gettext("Read Posts"), $folder['STATUS'] & USER_PERM_POST_READ), "</td>\n";
echo " <td align=\"left\" style=\"white-space: nowrap\">", form_checkbox("t_post_create[{$folder['FID']}]", USER_PERM_POST_CREATE, gettext("Reply to threads"), $folder['STATUS'] & USER_PERM_POST_CREATE), "</td>\n";
echo " </tr>\n";
echo " <tr>\n";
echo " <td align=\"left\" style=\"white-space: nowrap\">", form_checkbox("t_thread_create[{$folder['FID']}]", USER_PERM_THREAD_CREATE, gettext("Create new threads"), $folder['STATUS'] & USER_PERM_THREAD_CREATE), "</td>\n";
echo " <td align=\"left\" style=\"white-space: nowrap\">", form_checkbox("t_post_edit[{$folder['FID']}]", USER_PERM_POST_EDIT, gettext("Edit posts"), $folder['STATUS'] & USER_PERM_POST_EDIT), "</td>\n";
echo " </tr>\n";
echo " <tr>\n";
echo " <td align=\"left\" style=\"white-space: nowrap\">", form_checkbox("t_post_delete[{$folder['FID']}]", USER_PERM_POST_DELETE, gettext("Delete posts"), $folder['STATUS'] & USER_PERM_POST_DELETE), "</td>\n";
echo " <td align=\"left\" style=\"white-space: nowrap\">", form_checkbox("t_post_attach[{$folder['FID']}]", USER_PERM_POST_ATTACHMENTS, gettext("Upload attachments"), $folder['STATUS'] & USER_PERM_POST_ATTACHMENTS), "</td>\n";
echo " </tr>\n";
echo " <tr>\n";
echo " <td align=\"left\"> </td>\n";
echo " </tr>\n";
echo " <tr>\n";
echo " <td align=\"center\">", form_submit("add", gettext("Add Selected Users")), "</td>\n";
echo " </tr>\n";
}
echo " </table>\n";
echo "</form>\n";
echo "<br />\n";
}
echo "<form accept-charset=\"utf-8\" method=\"post\" action=\"admin_forum_access.php\" target=\"_self\">\n";
echo " ", form_input_hidden('webtag', htmlentities_array($webtag)), "\n";
echo " ", form_input_hidden('ret', htmlentities_array($ret)), "\n";
echo " ", form_input_hidden("user_search", htmlentities_array($user_search)), "\n";
echo " ", form_input_hidden("main_page", htmlentities_array($main_page)), "\n";
echo " ", form_input_hidden("search_page", htmlentities_array($search_page)), "\n";
echo " <table cellpadding=\"0\" cellspacing=\"0\" width=\"500\">\n";
echo " <tr>\n";
echo " <td align=\"left\">\n";
echo " <table class=\"box\" width=\"100%\">\n";
echo " <tr>\n";
echo " <td align=\"left\" class=\"posthead\">\n";
echo " <table class=\"posthead\" width=\"100%\">\n";
echo " <tr>\n";
echo " <td class=\"subhead\" align=\"left\">", gettext("Search For User"), "</td>\n";
echo " </tr>\n";
echo " <tr>\n";
echo " <td align=\"center\">\n";
echo " <table class=\"posthead\" width=\"95%\">\n";
echo " <tr>\n";
echo " <td align=\"left\">", gettext("Search"), ": ", form_input_text('user_search', htmlentities_array($user_search), 32, 15), " ", form_submit('search', gettext("Search")), " ", form_submit('clear', gettext("Clear")), "</td>\n";
/**
* The actualiser to resign from a usergroup.
*
* @return tempcode The UI
*/
function resign()
{
$title = get_page_title('RESIGN_FROM_GROUP');
$id = post_param_integer('id', NULL);
if (is_null($id)) {
$id = get_param_integer('id');
$post_url = build_url(array('page' => '_SELF', 'type' => get_param('type')), '_SELF', NULL, true);
$hidden = form_input_hidden('id', strval($id));
return do_template('YESNO_SCREEN', array('_GUID' => 'd9524899fbc243247a9d253cf93c8aa2', 'TITLE' => $title, 'TEXT' => do_lang_tempcode('Q_SURE'), 'URL' => $post_url, 'HIDDEN' => $hidden));
}
ocf_member_leave_group($id, get_member());
$url = build_url(array('page' => '_SELF', 'type' => 'view', 'id' => $id), '_SELF');
return redirect_screen($title, $url, do_lang_tempcode('SUCCESS'));
}
/**
* Standard modular render function for profile tabs edit hooks.
*
* @param MEMBER The ID of the member who is being viewed
* @param MEMBER The ID of the member who is doing the viewing
* @param boolean Whether to leave the tab contents NULL, if tis hook supports it, so that AJAX can load it later
* @return ?array A tuple: The tab title, the tab body text (may be blank), the tab fields, extra Javascript (may be blank) the suggested tab order, hidden fields (optional) (NULL: if $leave_to_ajax_if_possible was set)
*/
function render_tab($member_id_of, $member_id_viewing, $leave_to_ajax_if_possible = false)
{
$title = do_lang_tempcode('AVATAR');
$order = 20;
// Actualiser
if (post_param_integer('submitting_avatar_tab', 0) == 1) {
require_code('uploads');
if (has_specific_permission($member_id_viewing, 'own_avatars')) {
if (!(is_swf_upload(true) && array_key_exists('avatar_file', $_FILES) || array_key_exists('avatar_file', $_FILES) && is_uploaded_file($_FILES['avatar_file']['tmp_name']))) {
$urls = array();
$stock = post_param('avatar_alt_url', '');
if ($stock == '') {
$stock = post_param('avatar_stock', NULL);
if (!is_null($stock)) {
$urls[0] = $stock == '' ? '' : find_theme_image($stock, false, true);
} else {
$urls[0] = '';
}
// None
} else {
if (url_is_local($stock) && !$GLOBALS['FORUM_DRIVER']->is_super_admin($member_id_viewing)) {
$old = $GLOBALS['FORUM_DB']->query_value('f_members', 'm_avatar_url', array('id' => $member_id_of));
if ($old != $stock) {
access_denied('ASSOCIATE_EXISTING_FILE');
}
}
$urls[0] = $stock;
// URL
}
} else {
// We have chosen an upload. Note that we will not be looking at alt_url at this point, even though it is specified below for canonical reasons
$urls = get_url('avatar_alt_url', 'avatar_file', file_exists(get_custom_file_base() . '/uploads/avatars') ? 'uploads/avatars' : 'uploads/ocf_avatars', 0, OCP_UPLOAD_IMAGE, false, '', '', false, true);
if ((get_base_url() != get_forum_base_url() || array_key_exists('on_msn', $GLOBALS['SITE_INFO']) && $GLOBALS['SITE_INFO']['on_msn'] == '1') && $urls[0] != '' && url_is_local($urls[0])) {
$urls[0] = get_custom_base_url() . '/' . $urls[0];
}
}
$avatar_url = $urls[0];
} else {
$stock = post_param('avatar_stock');
$avatar_url = $stock == '' ? '' : find_theme_image($stock, false, true);
}
require_code('ocf_members_action');
require_code('ocf_members_action2');
ocf_member_choose_avatar($avatar_url, $member_id_of);
attach_message(do_lang_tempcode('SUCCESS_SAVE'), 'inform');
}
if ($leave_to_ajax_if_possible) {
return NULL;
}
// UI fields
$avatar_url = $GLOBALS['FORUM_DRIVER']->get_member_row_field($member_id_of, 'm_avatar_url');
require_javascript('javascript_multi');
$fields = new ocp_tempcode();
require_code('form_templates');
require_code('themes2');
$ids = get_all_image_ids_type('ocf_default_avatars', true);
$found_it = false;
foreach ($ids as $id) {
$pos = strpos($avatar_url, '/' . $id);
$selected = $pos !== false;
if ($selected) {
$found_it = true;
}
}
$hidden = new ocp_tempcode();
if (has_specific_permission($member_id_viewing, 'own_avatars')) {
$javascript = 'standardAlternateFields(\'avatar_file\',\'avatar_alt_url\',\'avatar_stock*\',true);';
$fields->attach(form_input_upload(do_lang_tempcode('UPLOAD'), do_lang_tempcode('DESCRIPTION_UPLOAD'), 'avatar_file', false, NULL, NULL, true, str_replace(' ', '', get_option('valid_images'))));
handle_max_file_size($hidden, 'image');
$fields->attach(form_input_line(do_lang_tempcode('ALT_FIELD', do_lang_tempcode('URL')), do_lang_tempcode('DESCRIPTION_ALTERNATE_URL'), 'avatar_alt_url', $found_it ? '' : $avatar_url, false));
$fields->attach(form_input_picture_choose_specific(do_lang_tempcode('ALT_FIELD', do_lang_tempcode('STOCK')), do_lang_tempcode('DESCRIPTION_ALTERNATE_STOCK'), 'avatar_stock', $ids, $avatar_url, NULL, NULL, true));
} else {
$javascript = '';
$fields->attach(form_input_picture_choose_specific(do_lang_tempcode('STOCK'), '', 'avatar_stock', $ids, $avatar_url, NULL, NULL, true));
}
if ($avatar_url != '') {
if (url_is_local($avatar_url)) {
$avatar_url = get_complex_base_url($avatar_url) . '/' . $avatar_url;
}
$avatar = do_template('OCF_TOPIC_POST_AVATAR', array('_GUID' => '50a5902f3ab7e384d9cf99577b222cc8', 'AVATAR' => $avatar_url));
} else {
$avatar = do_lang_tempcode('NONE_EM');
}
$width = ocf_get_member_best_group_property($member_id_of, 'max_avatar_width');
$height = ocf_get_member_best_group_property($member_id_of, 'max_avatar_height');
$text = do_template('OCF_EDIT_AVATAR_TAB', array('_GUID' => 'dbdac6ca3bc752b54d2a24a4c6e69c7c', 'MEMBER_ID' => strval($member_id_of), 'USERNAME' => $GLOBALS['FORUM_DRIVER']->get_username($member_id_of), 'AVATAR' => $avatar, 'WIDTH' => integer_format($width), 'HEIGHT' => integer_format($height)));
$hidden = new ocp_tempcode();
$hidden->attach(form_input_hidden('submitting_avatar_tab', '1'));
return array($title, $fields, $text, $javascript, $order, $hidden);
}
/**
* Standard modular render function for profile tabs edit hooks.
*
* @param MEMBER The ID of the member who is being viewed
* @param MEMBER The ID of the member who is doing the viewing
* @param boolean Whether to leave the tab contents NULL, if tis hook supports it, so that AJAX can load it later
* @return ?array A tuple: The tab title, the tab body text (may be blank), the tab fields, extra Javascript (may be blank) the suggested tab order, hidden fields (optional) (NULL: if $leave_to_ajax_if_possible was set)
*/
function render_tab($member_id_of, $member_id_viewing, $leave_to_ajax_if_possible = false)
{
$order = 0;
// Actualiser
if (post_param('submitting_settings_tab', NULL) !== NULL) {
require_code('ocf_members_action2');
$is_ldap = ocf_is_ldap_member($member_id_of);
$is_httpauth = ocf_is_httpauth_member($member_id_of);
$is_remote = $GLOBALS['FORUM_DRIVER']->get_member_row_field($member_id_of, 'm_password_compat_scheme') == 'remote';
if ($is_ldap || $is_httpauth || $is_remote || $member_id_of != $member_id_viewing && !has_specific_permission($member_id_viewing, 'assume_any_member')) {
$password = NULL;
} else {
$password = post_param('edit_password');
if ($password == '') {
$password = NULL;
} else {
$password_confirm = trim(post_param('password_confirm'));
if ($password != $password_confirm) {
warn_exit(make_string_tempcode(escape_html(do_lang('PASSWORD_MISMATCH'))));
}
}
}
$custom_fields = ocf_get_all_custom_fields_match($GLOBALS['FORUM_DRIVER']->get_members_groups($member_id_of), $member_id_of != $member_id_viewing && !has_specific_permission($member_id_viewing, 'view_any_profile_field') ? 1 : NULL, $member_id_of != $member_id_viewing ? NULL : 1, $member_id_of != $member_id_viewing ? NULL : 1);
$actual_custom_fields = ocf_read_in_custom_fields($custom_fields, $member_id_of);
$pt_allow = array_key_exists('pt_allow', $_POST) ? implode(',', $_POST['pt_allow']) : '';
$tmp_groups = $GLOBALS['OCF_DRIVER']->get_usergroup_list(true, true);
$all_pt_allow = '';
foreach (array_keys($tmp_groups) as $key) {
if ($key != db_get_first_id()) {
if ($all_pt_allow != '') {
$all_pt_allow .= ',';
}
$all_pt_allow .= strval($key);
}
}
if ($pt_allow == $all_pt_allow) {
$pt_allow = '*';
}
$pt_rules_text = post_param('pt_rules_text', NULL);
if (has_specific_permission($member_id_viewing, 'member_maintenance')) {
$validated = post_param_integer('validated', 0);
$primary_group = $is_ldap || !has_specific_permission($member_id_viewing, 'assume_any_member') ? NULL : post_param_integer('primary_group', NULL);
$is_perm_banned = post_param_integer('is_perm_banned', 0);
$old_is_perm_banned = $GLOBALS['FORUM_DRIVER']->get_member_row_field($member_id_of, 'm_is_perm_banned');
if ($old_is_perm_banned != $is_perm_banned) {
if ($is_perm_banned == 1) {
ocf_ban_member($member_id_of);
} else {
ocf_unban_member($member_id_of);
}
}
$highlighted_name = post_param_integer('highlighted_name', 0);
if (has_specific_permission($member_id_viewing, 'probate_members')) {
$on_probation_until = get_input_date('on_probation_until');
$current__on_probation_until = $GLOBALS['FORUM_DRIVER']->get_member_row_field($member_id_of, 'm_on_probation_until');
if ((is_null($on_probation_until) || $on_probation_until <= time()) && $current__on_probation_until > time()) {
log_it('STOP_PROBATION', strval($member_id_of), $GLOBALS['FORUM_DRIVER']->get_username($member_id_of));
} elseif (!is_null($on_probation_until) && $on_probation_until > time() && $current__on_probation_until <= time()) {
log_it('START_PROBATION', strval($member_id_of), $GLOBALS['FORUM_DRIVER']->get_username($member_id_of));
} elseif (!is_null($on_probation_until) && $current__on_probation_until > $on_probation_until && $on_probation_until > time() && $current__on_probation_until > time()) {
log_it('REDUCE_PROBATION', strval($member_id_of), $GLOBALS['FORUM_DRIVER']->get_username($member_id_of));
} elseif (!is_null($on_probation_until) && $current__on_probation_until < $on_probation_until && $on_probation_until > time() && $current__on_probation_until > time()) {
log_it('EXTEND_PROBATION', strval($member_id_of), $GLOBALS['FORUM_DRIVER']->get_username($member_id_of));
}
} else {
$on_probation_until = NULL;
}
} else {
$validated = NULL;
$primary_group = NULL;
$highlighted_name = NULL;
$on_probation_until = NULL;
}
if (has_actual_page_access($member_id_viewing, 'admin_ocf_join') || has_specific_permission($member_id_of, 'rename_self')) {
$username = $is_ldap || $is_remote ? NULL : post_param('edit_username', NULL);
} else {
$username = NULL;
}
$email = post_param('email_address', NULL);
if (!is_null($email)) {
$email = trim($email);
}
$theme = post_param('theme', NULL);
if ($is_remote) {
$preview_posts = NULL;
$zone_wide = NULL;
$auto_monitor_contrib_content = NULL;
$views_signatures = NULL;
$timezone = NULL;
} else {
$preview_posts = post_param_integer('preview_posts', 0);
$zone_wide = post_param_integer('zone_wide', 0);
$auto_monitor_contrib_content = NULL;
//post_param_integer('auto_monitor_contrib_content',0); Moved to notifications tab
$views_signatures = post_param_integer('views_signatures', 0);
$timezone = post_param('timezone', get_site_timezone());
}
ocf_edit_member($member_id_of, $email, $preview_posts, post_param_integer('dob_day', -1), post_param_integer('dob_month', -1), post_param_integer('dob_year', -1), $timezone, $primary_group, $actual_custom_fields, $theme, post_param_integer('reveal_age', 0), $views_signatures, $auto_monitor_contrib_content, post_param('language', NULL), post_param_integer('allow_emails', 0), post_param_integer('allow_emails_from_staff', 0), $validated, $username, $password, $zone_wide, $highlighted_name, $pt_allow, $pt_rules_text, $on_probation_until);
if (!array_key_exists('secondary_groups', $_POST)) {
$_POST['secondary_groups'] = array();
}
require_code('ocf_groups_action2');
$members_groups = $GLOBALS['OCF_DRIVER']->get_members_groups($member_id_of);
$group_count = $GLOBALS['FORUM_DB']->query_value('f_groups', 'COUNT(*)');
$groups = list_to_map('id', $GLOBALS['FORUM_DB']->query_select('f_groups', array('*'), $group_count > 200 ? array('g_is_private_club' => 0) : NULL));
foreach ($_POST['secondary_groups'] as $group_id) {
$group = $groups[intval($group_id)];
if ($group['g_hidden'] == 1 && !in_array($group['id'], $members_groups) && !has_specific_permission($member_id_viewing, 'see_hidden_groups')) {
continue;
}
if (!in_array($group['id'], $members_groups) && (has_specific_permission($member_id_viewing, 'assume_any_member') || $group['g_open_membership'] == 1)) {
ocf_add_member_to_group($member_id_of, $group['id']);
}
}
foreach ($members_groups as $group_id) {
if (!in_array(strval($group_id), $_POST['secondary_groups'])) {
ocf_member_leave_group($group_id, $member_id_of);
}
}
$GLOBALS['FORUM_DB']->query('DELETE FROM ' . $GLOBALS['FORUM_DB']->get_table_prefix() . 'f_member_known_login_ips WHERE i_member_id=' . strval($member_id_of) . ' AND ' . db_string_not_equal_to('i_val_code', ''));
// So any re-confirms can happen
if (addon_installed('awards')) {
require_code('awards');
handle_award_setting('member', strval($member_id_of));
}
attach_message(do_lang_tempcode('SUCCESS_SAVE'), 'inform');
}
if ($leave_to_ajax_if_possible) {
return NULL;
}
// UI
$title = do_lang_tempcode('SETTINGS');
$myrow = $GLOBALS['FORUM_DRIVER']->get_member_row($member_id_of);
if (is_null($myrow)) {
warn_exit(do_lang_tempcode('USER_NO_EXIST'));
}
require_code('ocf_members_action2');
list($fields, $hidden) = ocf_get_member_fields_settings(false, $member_id_of, NULL, $myrow['m_email_address'], $myrow['m_preview_posts'], $myrow['m_dob_day'], $myrow['m_dob_month'], $myrow['m_dob_year'], get_users_timezone($member_id_of), $myrow['m_theme'], $myrow['m_reveal_age'], $myrow['m_views_signatures'], $myrow['m_auto_monitor_contrib_content'], $myrow['m_language'], $myrow['m_allow_emails'], $myrow['m_allow_emails_from_staff'], $myrow['m_validated'], $myrow['m_primary_group'], $myrow['m_username'], $myrow['m_is_perm_banned'], '', $myrow['m_zone_wide'], $myrow['m_highlighted_name'], $myrow['m_pt_allow'], get_translated_text($myrow['m_pt_rules_text'], $GLOBALS['FORUM_DB']), $myrow['m_on_probation_until']);
// Awards?
if (addon_installed('awards')) {
require_code('awards');
$fields->attach(get_award_fields('member', strval($member_id_of)));
}
$redirect = get_param('redirect', NULL);
if (!is_null($redirect)) {
$hidden->attach(form_input_hidden('redirect', $redirect));
}
$hidden->attach(form_input_hidden('submitting_settings_tab', '1'));
$javascript = "\n\t\t\tvar form=document.getElementById('email_address').form;\n\t\t\tform.prior_profile_edit_submit=form.onsubmit;\n\t\t\tform.onsubmit=function()\n\t\t\t\t{\n\t\t\t\t\tif (typeof form.elements['edit_password']!='undefined')\n\t\t\t\t\t{\n\t\t\t\t\t\tif ((form.elements['password_confirm']) && (form.elements['password_confirm'].value!=form.elements['edit_password'].value))\n\t\t\t\t\t\t{\n\t\t\t\t\t\t\twindow.fauxmodal_alert('" . php_addslashes(do_lang('PASSWORD_MISMATCH')) . "');\n\t\t\t\t\t\t\treturn false;\n\t\t\t\t\t\t}\n\t\t\t\t\t}\n\t\t\t\t\tif (typeof form.prior_profile_edit_submit!='undefined' && form.prior_profile_edit_submit) return form.prior_profile_edit_submit();\n\t\t\t\t\treturn true;\n\t\t\t\t};\n\t\t";
$text = '';
return array($title, $fields, $text, $javascript, $order, $hidden);
}
echo " </tr>\n";
echo " <tr>\n";
echo " <td align=\"left\" style=\"white-space: nowrap\">", form_checkbox("allow_email", "Y", gettext("Allow other users to send me emails via my profile"), isset($user_prefs['ALLOW_EMAIL']) && $user_prefs['ALLOW_EMAIL'] == "Y" ? true : false), "</td>\n";
echo " <td align=\"right\" style=\"white-space: nowrap\"> </td>\n";
echo " </tr>\n";
echo " <tr>\n";
echo " <td align=\"left\" style=\"white-space: nowrap\">", form_checkbox("use_email_addr", "Y", gettext("Use my email address when sending other users emails via their profiles"), isset($user_prefs['USE_EMAIL_ADDR']) && $user_prefs['USE_EMAIL_ADDR'] == "Y" ? true : false), "</td>\n";
echo " <td align=\"right\" style=\"white-space: nowrap\"> </td>\n";
echo " </tr>\n";
echo " <tr>\n";
echo " <td align=\"left\" style=\"white-space: nowrap\">", form_checkbox("allow_pm", "Y", gettext("Allow other users to send me personal messages"), isset($user_prefs['ALLOW_PM']) && $user_prefs['ALLOW_PM'] == "Y" ? true : false), "</td>\n";
echo " <td align=\"right\" style=\"white-space: nowrap\"> </td>\n";
echo " </tr>\n";
echo " <tr>\n";
echo " <td align=\"left\" style=\"white-space: nowrap\">", form_checkbox("email_notify", "Y", gettext("Notify by email of posts to me"), isset($user_prefs['EMAIL_NOTIFY']) && $user_prefs['EMAIL_NOTIFY'] == "Y" ? true : false), "</td>\n";
echo " <td align=\"right\" style=\"white-space: nowrap\">", $show_set_all ? form_checkbox("email_notify_global", "Y", null, isset($user_prefs['EMAIL_NOTIFY_GLOBAL']) ? $user_prefs['EMAIL_NOTIFY_GLOBAL'] : false, sprintf('title="%s"', gettext("Set for all forums?"))) : form_input_hidden("email_notify_global", 'Y'), " </td>\n";
echo " </tr>\n";
echo " <tr>\n";
echo " <td align=\"left\" style=\"white-space: nowrap\">", form_checkbox("pm_notify_email", "Y", gettext("Notify by email of new PM messages to me"), isset($user_prefs['PM_NOTIFY_EMAIL']) && $user_prefs['PM_NOTIFY_EMAIL'] == "Y" ? true : false), "</td>\n";
echo " <td align=\"left\"> </td>\n";
echo " </tr>\n";
echo " <tr>\n";
echo " <td align=\"left\"> </td>\n";
echo " <td align=\"left\"> </td>\n";
echo " </tr>\n";
echo " </table>\n";
echo " </td>\n";
echo " </tr>\n";
echo " </table>\n";
echo " <br />\n";
echo " <table class=\"box\" width=\"100%\">\n";
/**
* UI to add note to an order
*
* @return tempcode The interface.
*/
function add_note()
{
require_code('form_templates');
$id = get_param_integer('id');
$redirect_url = get_param('redirect', NULL);
$last_action = get_param('last_act', NULL);
breadcrumb_set_parents(array(array('_SEARCH:admin_ecommerce:ecom_usage', do_lang_tempcode('ECOMMERCE')), array('_SELF:_SELF:misc', do_lang_tempcode('ORDERS')), array('_SELF:_SELF:show_orders', do_lang_tempcode('ORDER_LIST'))));
$update_url = build_url(array('page' => '_SELF', 'type' => '_add_note', 'redirect' => $redirect_url), '_SELF');
$fields = new ocp_tempcode();
$note = $GLOBALS['SITE_DB']->query_value('shopping_order', 'notes', array('id' => $id));
if (!is_null($last_action)) {
$note .= do_lang('ADD_NOTE_UPPEND_TEXT', get_timezoned_date(time(), true, false, true, true), do_lang('ORDER_STATUS_' . $last_action));
}
$fields->attach(form_input_text(do_lang_tempcode('NOTE'), do_lang_tempcode('NOTE_DESCRIPTION'), 'note', $note, true));
$fields->attach(form_input_hidden('order_id', strval($id)));
$title = get_page_title('ADD_NOTE_TITLE', true, array(strval($id)));
if ($last_action == 'dispatched') {
//Display dispatch mail preview
$res = $GLOBALS['SITE_DB']->query_select('shopping_order', array('*'), array('id' => $id), '', 1);
$order_det = $res[0];
$member_name = $GLOBALS['FORUM_DRIVER']->get_username($order_det['c_member']);
$message = do_lang('ORDER_DISPATCHED_MAIL_MESSAGE', comcode_escape(get_site_name()), comcode_escape($member_name), array(strval($id)), get_lang($order_det['c_member']));
$fields->attach(form_input_text(do_lang_tempcode('DISPATCH_MAIL_PREVIEW'), do_lang_tempcode('DISPATCH_MAIL_PREVIEW_DESCRIPTION'), 'dispatch_mail_content', $message, true));
}
return do_template('FORM_SCREEN', array('TITLE' => $title, 'TEXT' => do_lang_tempcode('NOTE_DESCRIPTION'), 'HIDDEN' => '', 'FIELDS' => $fields, 'URL' => $update_url, 'SUBMIT_NAME' => do_lang_tempcode('ADD_NOTE')));
}
echo " <td align=\"left\"> </td>\n";
echo " </tr>\n";
echo " <tr>\n";
echo " <td align=\"center\">", form_submit('addcomment', gettext("Add Comment")), "</td>\n";
echo " </tr>\n";
echo " </table>\n";
echo " <br />\n";
echo "</form>\n";
}
if ($user_perm_links_moderate || $link['UID'] == $_SESSION['UID']) {
echo "<form accept-charset=\"utf-8\" name=\"link_moderation\" action=\"links_detail.php\" method=\"post\">\n";
echo " ", form_csrf_token_field(), "\n";
echo " ", form_input_hidden('webtag', htmlentities_array($webtag)), "\n";
echo " ", form_input_hidden("type", "moderation") . "\n";
echo " ", form_input_hidden("lid", htmlentities_array($lid)) . "\n";
echo " ", form_input_hidden("parent_fid", htmlentities_array($parent_fid)), "\n";
echo " <table cellpadding=\"0\" cellspacing=\"0\" width=\"600\">\n";
echo " <tr>\n";
echo " <td align=\"left\">\n";
echo " <table class=\"box\" width=\"100%\">\n";
echo " <tr>\n";
echo " <td align=\"left\" class=\"posthead\">\n";
echo " <table class=\"posthead\" width=\"100%\">\n";
echo " <tr>\n";
echo " <td align=\"left\" class=\"subhead\" colspan=\"2\">", gettext("Moderation Tools"), "</td>";
echo " </tr>\n";
echo " <tr>\n";
echo " <td align=\"center\">\n";
echo " <table class=\"posthead\" width=\"95%\">\n";
echo " <tr>\n";
echo " <td align=\"left\" style=\"white-space: nowrap\">", gettext("Move to"), ":</td>\n";
}
if (isset($error_msg_array) && sizeof($error_msg_array) > 0) {
html_display_error_array($error_msg_array, '600', $admin_edit ? 'center' : 'left');
} else {
if (isset($_GET['profile_updated'])) {
html_display_success_msg(gettext("Profile updated."), '600', $admin_edit ? 'center' : 'left');
}
}
if ($admin_edit === true) {
echo "<div align=\"center\">\n";
}
echo "<br />\n";
echo "<form accept-charset=\"utf-8\" name=\"f_profile\" action=\"edit_profile.php\" method=\"post\" target=\"_self\">\n";
echo " ", form_input_hidden('webtag', htmlentities_array($webtag)), "\n";
if ($admin_edit === true) {
echo " ", form_input_hidden('profileuid', htmlentities_array($uid)), "\n";
}
echo " <table cellpadding=\"0\" cellspacing=\"0\" width=\"600\">\n";
echo " <tr>\n";
echo " <td align=\"left\">\n";
echo " <table cellpadding=\"0\" cellspacing=\"0\" width=\"100%\">\n";
echo " <tr>\n";
echo " <td align=\"left\">\n";
echo " <table class=\"box\" width=\"100%\">\n";
echo " <tr>\n";
echo " <td align=\"left\" class=\"posthead\">\n";
echo " <table class=\"posthead\" width=\"100%\">\n";
$last_psid = false;
foreach ($profile_items_array as $profile_item) {
if (!isset($profile_item['ENTRY'])) {
$profile_item['ENTRY'] = '';
echo " <tr>\n";
echo " <td align=\"left\">\n";
echo form_submit("post", gettext("Post"), "tabindex=\"2\""), "\n";
echo form_submit("preview", gettext("Preview"), "tabindex=\"3\""), "\n";
if (isset($_POST['t_tid']) && is_numeric($_POST['t_tid']) && isset($_POST['t_rpid']) && is_numeric($_POST['t_rpid'])) {
echo "<a href=\"discussion.php?webtag={$webtag}&msg={$_POST['t_tid']}.{$_POST['t_rpid']}\" class=\"button\" target=\"_self\"><span>", gettext("Cancel"), "</span></a>\n";
} else {
if (isset($_GET['replyto']) && validate_msg($_GET['replyto'])) {
echo "<a href=\"discussion.php?webtag={$webtag}&msg={$_GET['replyto']}\" class=\"button\" target=\"_self\"><span>", gettext("Cancel"), "</span></a>\n";
} else {
echo "<a href=\"discussion.php?webtag={$webtag}\" class=\"button\" target=\"_self\"><span>", gettext("Cancel"), "</span></a>\n";
}
}
if (forum_get_setting('attachments_enabled', 'Y') && (session::check_perm(USER_PERM_POST_ATTACHMENTS | USER_PERM_POST_READ, $t_fid) || $new_thread)) {
echo "<a href=\"attachments.php?aid={$aid}\" class=\"button popup 660x500\" id=\"attachments\"><span>", gettext("Attachments"), "</span></a>\n";
echo form_input_hidden("aid", htmlentities_array($aid));
}
if ($allow_sig == true) {
echo " </td>\n";
echo " </tr>\n";
echo " <tr>\n";
echo " <td align=\"left\"> </td>\n";
echo " </tr>\n";
echo " <tr>\n";
echo " <td align=\"left\">\n";
echo " <table class=\"messagefoot\" width=\"553\" cellspacing=\"0\">\n";
echo " <tr>\n";
echo " <td align=\"left\" class=\"subhead\">", gettext("Signature"), "</td>\n";
if (($page_prefs & POST_SIGNATURE_DISPLAY) > 0) {
echo " <td class=\"subhead\" align=\"right\">", form_submit_image('hide.png', 'sig_toggle', 'hide', '', 'button_image toggle_button'), " </td>\n";
} else {
function thread_list_draw_top($mode, $folder = false)
{
$webtag = get_webtag();
forum_check_webtag_available($webtag);
echo "<table width=\"100%\" border=\"0\" cellpadding=\"0\" cellspacing=\"0\">\n";
echo " <tr>\n";
echo " <td align=\"left\" class=\"postbody\">", html_style_image('post', gettext("New Discussion")), " <a href=\"post.php?webtag={$webtag}\" target=\"", html_get_frame_name('main'), "\">", gettext("New Discussion"), "</a></td>\n";
echo " </tr>\n";
if (forum_get_setting('allow_polls', 'Y')) {
echo " <tr>\n";
echo " <td align=\"left\" class=\"postbody\">", html_style_image('poll', gettext("Create Poll")), " <a href=\"create_poll.php?webtag={$webtag}\" target=\"", html_get_frame_name('main'), "\">", gettext("Create Poll"), "</a></td>\n";
echo " </tr>\n";
}
echo " <tr>\n";
echo " <td align=\"left\" class=\"postbody\">", html_style_image('search', gettext("Search")), " <a href=\"search.php?webtag={$webtag}\" target=\"", html_get_frame_name('right'), "\">", gettext("Search"), "</a></td>\n";
echo " </tr>\n";
echo " <tr>\n";
echo " <td align=\"left\" class=\"postbody\">", html_style_image('pm_unread', gettext("Inbox")), " <a href=\"pm.php?webtag={$webtag}\" target=\"", html_get_frame_name('main'), "\">", gettext("Inbox"), "</a> <span class=\"pmnewcount\" id=\"pm_message_count\"></span></td>\n";
echo " </tr>\n";
echo "</table>\n";
echo "<br />\n";
$available_views = thread_list_available_views();
echo "<form accept-charset=\"utf-8\" name=\"f_mode\" method=\"get\" action=\"thread_list.php\">\n";
echo " ", form_input_hidden("webtag", htmlentities_array($webtag)), "\n";
echo " <table width=\"100%\" border=\"0\" cellpadding=\"0\" cellspacing=\"0\">\n";
echo " <tr>\n";
echo " <td align=\"left\" class=\"postbody\">\n";
echo " ", form_dropdown_array("mode", $available_views, htmlentities_array($mode)), " ", form_submit("go", gettext("Go!")), "\n";
if (is_numeric($folder) && in_array($folder, folder_get_available_array())) {
echo " ", form_input_hidden("folder", htmlentities_array($folder)), "\n";
}
echo " </td>\n";
echo " </tr>\n";
echo " </table>\n";
echo "</form>\n";
}
