public function main($id, $mode) { global $config, $user, $template, $request; $user->add_lang_ext('rinsrans/textbox', 'common'); $this->tpl_name = 'acp_textbox_body'; $this->page_title = $user->lang('ACP_TEXTBOX_TITLE'); add_form_key('acp_textbox'); // Form is submitted if ($request->is_set_post('submit')) { if (!check_form_key('acp_textbox')) { trigger_error($user->lang('FORM_INVALID') . adm_back_link($this->u_action), E_USER_WARNING); } // Set the new settings to config $uid = $bitfield = $options = ''; $textbox_content = $request->variable('textbox_content', '', true); generate_text_for_storage($textbox_content, $uid, $bitfield, $options, true, true, true); $config->set('textbox_content', $textbox_content); $config->set('textbox_bbcode_uid', $uid); $config->set('textbox_bbcode_bitfield', $bitfield); trigger_error($user->lang('ACP_TEXTBOX_SAVED') . adm_back_link($this->u_action)); } $textbox_content = generate_text_for_edit($config['textbox_content'], $config['textbox_bbcode_uid'], 3); // Send the curent settings to template $template->assign_vars(array('U_ACTION' => $this->u_action, 'TEXTBOX_CONTENT' => $textbox_content['text'])); }
/** * Generate text for storing in the database * * @param bool $allow_bbcode * @param bool $allow_urls * @param bool $allow_smilies */ public function generate_text_for_storage($allow_bbcode = false, $allow_urls = false, $allow_smilies = false) { $message = $message_uid = $message_bitfield = $message_options = false; $this->get_message_fields($message, $message_uid, $message_bitfield, $message_options); generate_text_for_storage($message, $message_uid, $message_bitfield, $message_options, $allow_bbcode, $allow_urls, $allow_smilies); $this->set_message_fields($message, $message_uid, $message_bitfield, $message_options); }
public function create_welcome_topic($user_id) { if (!$this->config['welcomerobot_enable']) { return false; } if (!function_exists('get_username_string')) { include $this->root_path . 'includes/functions_content.' . $this->phpEx; } if (!function_exists('submit_post')) { include $this->root_path . 'includes/functions_posting.' . $this->phpEx; } $sql = 'SELECT * FROM ' . USERS_TABLE . "\n\t\t\tWHERE user_id = " . intval($user_id) . ""; $dbresult = $this->db->sql_query($sql); $row = $this->db->sql_fetchrow($dbresult); $this->db->sql_freeresult($dbresult); if (empty($row)) { return false; } $username = get_username_string('full', $row['user_id'], $row['username'], $row['user_colour']); $clean_username = utf8_clean_string($row['username']); $topic_title = str_replace(array('%user', '%robot', '%board'), array($clean_username, $this->config['welcomerobot_username'], $this->config['sitename']), $this->config['welcomerobot_title']); $topic_content = str_replace(array('%user', '%robot', '%board'), array($clean_username, $this->config['welcomerobot_username'], $this->config['sitename']), $this->config['welcomerobot_detail']); $poll = $uid = $bitfield = $options = ''; // will be modified by generate_text_for_storage $allow_bbcode = $allow_urls = $allow_smilies = true; generate_text_for_storage($topic_content, $uid, $bitfield, $options, $allow_bbcode, $allow_urls, $allow_smilies); $data = array('forum_id' => $this->config['welcomerobot_forum'], 'topic_id' => 0, 'icon_id' => false, 'robot_name' => $this->config['welcomerobot_username'], 'enable_bbcode' => true, 'enable_smilies' => true, 'enable_urls' => true, 'enable_sig' => true, 'message' => $topic_content, 'message_md5' => md5($topic_content), 'bbcode_bitfield' => $bitfield, 'bbcode_uid' => $uid, 'post_edit_locked' => 0, 'topic_title' => $topic_title, 'notify_set' => false, 'notify' => false, 'post_time' => 0, 'forum_name' => '', 'enable_indexing' => true, 'force_approved_state' => true); submit_post('post', $topic_title, 'robot_name', POST_NORMAL, $poll, $data); return true; }
static function add_post($id = null, $add_to_forums = []) { global $user, $phpbb_root_path, $phpEx, $phpbb_log, $wpdb; //we save the forums association update_post_meta($id, 'wpphpbbu_forums', $add_to_forums); $post = get_post($id); $current_user = wp_get_current_user(); // Get current user info // If the user cannot create posts on forum then return. // This info is comming from WordPress administration panel if (!current_user_can('post_to_forum') || $post->post_status !== "publish") { return; } if ($post->post_status == "publish") { // Import functions_posting.php require_once $phpbb_root_path . 'includes/functions_posting.php'; $post_content = $post->post_content; // Getting post content $post_title = $post->post_title; // Getting post title $uid = $bitfield = $options = ''; // Set post options generate_text_for_storage($post_content, $uid, $bitfield, $options, true, true, true); // Process post content generate_text_for_storage($post_title, $uid, $bitfield, $options, true, true, true); // Process post title $poll = null; // There is no poll $p = get_post($id); $current_title = $p->post_title; $current_hash = md5($p->post_content); // // Loop through the allowed forums foreach ($add_to_forums as $forum_id) { $edit = get_post_meta($id, 'wpphpbbu_topic_id', true); $topicId = $edit ? (int) $edit : 0; // var_dump($topicId); // die(); $data = array('forum_id' => $forum_id, 'topic_id' => $topicId, 'icon_id' => false, 'enable_bbcode' => true, 'enable_smilies' => true, 'enable_urls' => true, 'enable_sig' => true, 'message' => $post_content, 'message_md5' => md5($post_content), 'bbcode_bitfield' => $bitfield, 'bbcode_uid' => $uid, 'post_edit_locked' => 0, 'topic_title' => $post_title, 'notify_set' => false, 'notify' => false, 'post_time' => time(), 'forum_name' => '', 'enable_indexing' => true, 'force_approved_state' => true); if ($edit) { $data['post_id'] = get_post_meta($id, 'wpphpbbu_post_id', true); $data['post_subject'] = $data['topic_title']; $data['post_edit_user'] = $data['poster_id'] = $user->data['user_id']; } // Submit the data here submit_post($edit ? 'edit' : 'post', $post_title, $user->data['username'], POST_NORMAL, $poll, $data); var_dump($data); $topic_id = $data['topic_id']; update_post_meta($id, 'wpphpbbu_topic_id', $topic_id); $topic_id = $data['post_id']; update_post_meta($id, 'wpphpbbu_post_id', $topic_id); } unset($p); } }
function announcements() { global $config, $db, $user, $auth, $template; global $phpbb_root_path, $phpEx; // Set some vars //$action = request_var('action', ''); $preview = isset($_POST['preview']) ? true : false; $submit = isset($_POST['submit']) ? true : false; $announcement_row = array('announcement_forum_id' => request_var('announcement_forum_id', 0), 'announcement_topic_id' => request_var('announcement_topic_id', 0), 'announcement_post_id' => request_var('announcement_post_id', 0), 'announcement_gopost' => request_var('announcement_gopost', 0), 'announcement_first_last_post' => utf8_normalize_nfc(request_var('announcement_first_last_post', '')), 'announcement_title' => utf8_normalize_nfc(request_var('announcement_title', $user->lang['ANNOUNCEMENT_TITLE'], true)), 'announcement_text' => utf8_normalize_nfc(request_var('announcement_text', $user->lang['ANNOUNCEMENT_TEXT'], true)), 'announcement_draft' => utf8_normalize_nfc(request_var('announcement_draft', $user->lang['ANNOUNCEMENT_DRAFT'], true)), 'announcement_title_guests' => utf8_normalize_nfc(request_var('announcement_title_guests', $user->lang['ANNOUNCEMENT_TITLE_GUESTS'], true)), 'announcement_text_guests' => utf8_normalize_nfc(request_var('announcement_text_guests', $user->lang['ANNOUNCEMENT_TEXT_GUESTS'], true))); if ($submit || $preview) { if (!check_form_key('announcement_centre')) { trigger_error('FORM_INVALID'); } } if ($submit) { $uid_text = $bitfield_text = $options_text = ''; // will be modified by generate_text_for_storage $uid_text_guests = $bitfield_text_guests = $options_text_guests = ''; // will be modified by generate_text_for_storage $uid_draft = $bitfield_draft = $options_draft = ''; // will be modified by generate_text_for_storage $allow_bbcode = $allow_urls = $allow_smilies = true; generate_text_for_storage($announcement_row['announcement_text'], $uid_text, $bitfield_text, $options_text, $allow_bbcode, $allow_urls, $allow_smilies); generate_text_for_storage($announcement_row['announcement_text_guests'], $uid_text_guests, $bitfield_text_guests, $options_text_guests, $allow_bbcode, $allow_urls, $allow_smilies); generate_text_for_storage($announcement_row['announcement_draft'], $uid_draft, $bitfield_draft, $options_draft, $allow_bbcode, $allow_urls, $allow_smilies); $sql_ary = array('announcement_forum_id' => (int) $announcement_row['announcement_forum_id'], 'announcement_topic_id' => (int) $announcement_row['announcement_topic_id'], 'announcement_post_id' => (int) $announcement_row['announcement_post_id'], 'announcement_gopost' => (int) $announcement_row['announcement_gopost'], 'announcement_first_last_post' => (string) $announcement_row['announcement_first_last_post'], 'announcement_title' => (string) $announcement_row['announcement_title'], 'announcement_text' => (string) $announcement_row['announcement_text'], 'announcement_text_bbcode_uid' => (string) $uid_text, 'announcement_text_bbcode_bitfield' => (string) $bitfield_text, 'announcement_text_bbcode_options' => (int) $options_text, 'announcement_draft' => (string) $announcement_row['announcement_draft'], 'announcement_draft_bbcode_uid' => (string) $uid_draft, 'announcement_draft_bbcode_bitfield' => (string) $bitfield_draft, 'announcement_draft_bbcode_options' => (int) $options_draft, 'announcement_title_guests' => (string) $announcement_row['announcement_title_guests'], 'announcement_text_guests' => (string) $announcement_row['announcement_text_guests'], 'announcement_text_guests_bbcode_uid' => (string) $uid_text_guests, 'announcement_text_guests_bbcode_bitfield' => (string) $bitfield_text_guests, 'announcement_text_guests_bbcode_options' => (int) $options_text_guests); $sql = 'UPDATE ' . ANNOUNCEMENTS_CENTRE_TABLE . ' SET ' . $db->sql_build_array('UPDATE', $sql_ary); $db->sql_query($sql); } if ($submit) { add_log('admin', 'LOG_ANNOUNCEMENT_UPDATED'); trigger_error($user->lang['LOG_ANNOUNCEMENT_UPDATED'] . adm_back_link($this->u_action)); } $sql = 'SELECT * FROM ' . ANNOUNCEMENTS_CENTRE_TABLE; $result = $db->sql_query($sql); $announcement = $db->sql_fetchrow($result); $db->sql_freeresult($result); $announcement_preview = ''; if ($preview) { $announcement_preview = preview_announcement($announcement_row['announcement_draft']); } generate_smilies('inline', '', 1); $announcement_draft = ''; $announcement_draft = $announcement['announcement_draft']; $announcement_draft = generate_text_for_display($announcement_draft, $announcement['announcement_draft_bbcode_uid'], $announcement['announcement_draft_bbcode_bitfield'], $announcement['announcement_draft_bbcode_options']); decode_message($announcement['announcement_text'], $announcement['announcement_text_bbcode_uid']); decode_message($announcement['announcement_draft'], $announcement['announcement_draft_bbcode_uid']); decode_message($announcement['announcement_text_guests'], $announcement['announcement_text_guests_bbcode_uid']); $template->assign_vars(array('U_ACTION' => $this->u_action, 'S_ANNOUNCEMENT_CONFIGURATION' => false, 'ANNOUNCEMENT_TITLE' => $announcement['announcement_title'], 'ANNOUNCEMENT_FORUM_ID' => $announcement['announcement_forum_id'], 'ANNOUNCEMENT_TOPIC_ID' => $announcement['announcement_topic_id'], 'ANNOUNCEMENT_POST_ID' => $announcement['announcement_post_id'], 'ANNOUNCEMENT_GOPOST' => $announcement['announcement_gopost'], 'ANNOUNCEMENT_FIRST_LAST_POST' => $announcement['announcement_first_last_post'], 'ANNOUNCEMENT_TEXT' => $announcement['announcement_text'], 'ANNOUNCEMENT_DRAFT' => $announcement_preview ? $announcement_row['announcement_draft'] : $announcement['announcement_draft'], 'ANNOUNCEMENT_DRAFT_PREVIEW' => $announcement_preview ? $announcement_preview : $announcement_draft, 'ANNOUNCEMENT_TITLE_GUESTS' => $announcement['announcement_title_guests'], 'ANNOUNCEMENT_TEXT_GUESTS' => $announcement['announcement_text_guests'], 'ANNOUNCEMENT_VERSION' => $config['acmod_version'])); // Assigning custom bbcodes display_custom_bbcodes(); }
/** * @param int $block_id * @return array */ public function save($block_id) { $content = $this->request->variable('content', '', true); $cblocks = $this->_get_custom_blocks(); $sql_data = array('block_id' => $block_id, 'block_content' => $content, 'bbcode_bitfield' => '', 'bbcode_options' => 7, 'bbcode_uid' => ''); generate_text_for_storage($sql_data['block_content'], $sql_data['bbcode_uid'], $sql_data['bbcode_bitfield'], $sql_data['bbcode_options'], true, true, true); $sql = !isset($cblocks[$block_id]) ? 'INSERT INTO ' . $this->cblocks_table . ' ' . $this->db->sql_build_array('INSERT', $sql_data) : 'UPDATE ' . $this->cblocks_table . ' SET ' . $this->db->sql_build_array('UPDATE', $sql_data) . ' WHERE block_id = ' . (int) $block_id; $this->db->sql_query($sql); $this->cache->destroy('pt_cblocks'); return array('id' => $block_id, 'content' => $this->_get_content($sql_data), 'callback' => 'previewCustomBlock'); }
/** * encode announcement text * * @param unknown_type $text * @return unknown */ function encode_announcement($text) { $uid = $bitfield = $options = ''; // will be modified by generate_text_for_storage $allow_bbcode = $allow_urls = $allow_smilies = true; generate_text_for_storage($text, $uid, $bitfield, $options, $allow_bbcode, $allow_urls, $allow_smilies); $announce['text'] = $text; $announce['uid'] = $uid; $announce['bitfield'] = $bitfield; return $announce; }
/** User PM welcome message */ private function user_welcome($user_to, $user_id, $subject, $text) { $m_flags = 3; // 1 is bbcode, 2 is smiles, 4 is urls (add together to turn on more than one) $uid = $bitfield = ''; $allow_bbcode = $allow_urls = $allow_smilies = true; $text = str_replace('{USERNAME}', $this->user->data['username'], $text); generate_text_for_storage($text, $uid, $bitfield, $m_flags, $allow_bbcode, $allow_urls, $allow_smilies); include_once $this->phpbb_root_path . 'includes/functions_privmsgs.' . $this->php_ext; $pm_data = array('address_list' => array('u' => array($user_to => 'to')), 'from_user_id' => $user_id, 'from_user_ip' => $this->user->ip, 'enable_sig' => false, 'enable_bbcode' => $allow_bbcode, 'enable_smilies' => $allow_smilies, 'enable_urls' => $allow_urls, 'icon_id' => 0, 'bbcode_bitfield' => $bitfield, 'bbcode_uid' => $uid, 'message' => utf8_normalize_nfc($text)); submit_pm('post', utf8_normalize_nfc($subject), $pm_data, false); }
/** * @dataProvider get_text_formatter_tests */ public function test_text_formatter($original, $expected, $allow_bbcode, $allow_urls, $allow_smilies, $allow_img_bbcode, $allow_flash_bbcode, $allow_quote_bbcode, $allow_url_bbcode, $setup = null) { $actual = $original; $uid = ''; $bitfield = ''; $flags = 0; if (isset($setup)) { $setup(); } generate_text_for_storage($actual, $uid, $bitfield, $flags, $allow_bbcode, $allow_urls, $allow_smilies, $allow_img_bbcode, $allow_flash_bbcode, $allow_quote_bbcode, $allow_url_bbcode); $this->assertSame($expected, $actual); }
public function main($id, $mode) { global $user, $request, $template; global $config, $phpbb_root_path, $phpEx, $phpbb_container; $user->add_lang(array('acp/board', 'posting')); $this->tpl_name = 'acp_contact'; $this->page_title = 'ACP_CONTACT_SETTINGS'; $form_name = 'acp_contact'; add_form_key($form_name); $error = ''; if (!function_exists('display_custom_bbcodes')) { include $phpbb_root_path . 'includes/functions_display.' . $phpEx; } if (!class_exists('parse_message')) { include $phpbb_root_path . 'includes/message_parser.' . $phpEx; } /* @var $config_text \phpbb\config\db_text */ $config_text = $phpbb_container->get('config_text'); $contact_admin_data = $config_text->get_array(array('contact_admin_info', 'contact_admin_info_uid', 'contact_admin_info_bitfield', 'contact_admin_info_flags')); $contact_admin_info = $contact_admin_data['contact_admin_info']; $contact_admin_info_uid = $contact_admin_data['contact_admin_info_uid']; $contact_admin_info_bitfield = $contact_admin_data['contact_admin_info_bitfield']; $contact_admin_info_flags = $contact_admin_data['contact_admin_info_flags']; if ($request->is_set_post('submit') || $request->is_set_post('preview')) { if (!check_form_key($form_name)) { $error = $user->lang('FORM_INVALID'); } $contact_admin_info = $request->variable('contact_admin_info', '', true); generate_text_for_storage($contact_admin_info, $contact_admin_info_uid, $contact_admin_info_bitfield, $contact_admin_info_flags, !$request->variable('disable_bbcode', false), !$request->variable('disable_magic_url', false), !$request->variable('disable_smilies', false)); if (empty($error) && $request->is_set_post('submit')) { $config->set('contact_admin_form_enable', $request->variable('contact_admin_form_enable', false)); $config_text->set_array(array('contact_admin_info' => $contact_admin_info, 'contact_admin_info_uid' => $contact_admin_info_uid, 'contact_admin_info_bitfield' => $contact_admin_info_bitfield, 'contact_admin_info_flags' => $contact_admin_info_flags)); trigger_error($user->lang['CONTACT_US_INFO_UPDATED'] . adm_back_link($this->u_action)); } } $contact_admin_info_preview = ''; if ($request->is_set_post('preview')) { $contact_admin_info_preview = generate_text_for_display($contact_admin_info, $contact_admin_info_uid, $contact_admin_info_bitfield, $contact_admin_info_flags); } $contact_admin_edit = generate_text_for_edit($contact_admin_info, $contact_admin_info_uid, $contact_admin_info_flags); /** @var \phpbb\controller\helper $controller_helper */ $controller_helper = $phpbb_container->get('controller.helper'); $template->assign_vars(array('ERRORS' => $error, 'CONTACT_ENABLED' => $config['contact_admin_form_enable'], 'CONTACT_US_INFO' => $contact_admin_edit['text'], 'CONTACT_US_INFO_PREVIEW' => $contact_admin_info_preview, 'S_BBCODE_DISABLE_CHECKED' => !$contact_admin_edit['allow_bbcode'], 'S_SMILIES_DISABLE_CHECKED' => !$contact_admin_edit['allow_smilies'], 'S_MAGIC_URL_DISABLE_CHECKED' => !$contact_admin_edit['allow_urls'], 'BBCODE_STATUS' => $user->lang('BBCODE_IS_ON', '<a href="' . $controller_helper->route('phpbb_help_bbcode_controller') . '">', '</a>'), 'SMILIES_STATUS' => $user->lang['SMILIES_ARE_ON'], 'IMG_STATUS' => $user->lang['IMAGES_ARE_ON'], 'FLASH_STATUS' => $user->lang['FLASH_IS_ON'], 'URL_STATUS' => $user->lang['URL_IS_ON'], 'S_BBCODE_ALLOWED' => true, 'S_SMILIES_ALLOWED' => true, 'S_BBCODE_IMG' => true, 'S_BBCODE_FLASH' => true, 'S_LINKS_ALLOWED' => true)); // Assigning custom bbcodes display_custom_bbcodes(); }
function sendphpbbfp($raidid, $raidname, $raidtime, $raiddate, $raiddesc) { include_once './forum/includes/functions_posting.php'; // note that multibyte support is enabled here $my_subject = 'New Raid Posted'; $my_text = utf8_normalize_nfc('[color=#BF00BF][size=150][b]' . $raidname . '[/b][/size][/color] [b]Date:[/b] ' . $raiddate . ' [b]Time:[/b] ' . $raidtime . ' UTC (GMT) [b][url=http://www.crimson-alliance.com/calendar_signup.php?id=' . $raidid . ']Click here to sign up.[/url][/b] [b]Description:[/b] ' . $raiddesc . ''); // variables to hold the parameters for submit_post $poll = $uid = $bitfield = $options = ''; generate_text_for_storage($my_subject, $uid, $bitfield, $options, false, false, false); generate_text_for_storage($my_text, $uid, $bitfield, $options, true, true, true); $data = array('forum_id' => 24, 'topic_id' => 7, 'icon_id' => false, 'enable_bbcode' => true, 'enable_smilies' => true, 'enable_urls' => true, 'enable_sig' => false, 'message' => $my_text, 'message_md5' => md5($my_text), 'bbcode_bitfield' => $bitfield, 'bbcode_uid' => $uid, 'post_edit_locked' => 0, 'topic_title' => $my_subject, 'notify_set' => false, 'notify' => false, 'post_time' => 0, 'forum_name' => 'Raid Postings', 'enable_indexing' => true, 'force_approved_state' => true); submit_post('reply', $my_subject, '', POST_NORMAL, $poll, $data, $update_message = true); }
/** * Reparse given record * * @param array $record Associative array containing the record's data */ protected function reparse_record(array $record) { $record = $this->add_missing_fields($record); $flags = $record['enable_bbcode'] ? OPTION_FLAG_BBCODE : 0; $flags |= $record['enable_smilies'] ? OPTION_FLAG_SMILIES : 0; $flags |= $record['enable_magic_url'] ? OPTION_FLAG_LINKS : 0; $unparsed = array_merge($record, generate_text_for_edit($record['text'], $record['bbcode_uid'], $flags)); // generate_text_for_edit() and decode_message() actually return the text as HTML. It has to // be decoded to plain text before it can be reparsed $text = html_entity_decode($unparsed['text'], ENT_QUOTES, 'UTF-8'); $bitfield = $flags = null; generate_text_for_storage($text, $unparsed['bbcode_uid'], $bitfield, $flags, $unparsed['enable_bbcode'], $unparsed['enable_magic_url'], $unparsed['enable_smilies'], $unparsed['enable_img_bbcode'], $unparsed['enable_flash_bbcode'], $unparsed['enable_quote_bbcode'], $unparsed['enable_url_bbcode'], 'reparse'); // Save the new text if it has changed and it's not a dry run if ($text !== $record['text'] && $this->save_changes) { $record['text'] = $text; $this->save_record($record); } }
public function advanced_profile_system($event) { $member = $event['member']; $user_id = (int) $member['user_id']; // Get user_id of user we are viewing $username = $member['username']; $user_extra_rank_data = array('title' => null, 'img' => null, 'img_src' => null); $ranks_sql = 'SELECT * FROM ' . RANKS_TABLE . ' WHERE rank_special != 1'; $normal_ranks = $this->db->sql_query($ranks_sql); $spec_sql = 'SELECT rank_special FROM ' . RANKS_TABLE . ' WHERE rank_id = ' . $member['user_rank']; $special = $this->db->sql_query($spec_sql); if ($special !== 1) { if ($member['user_posts'] !== false) { if (!empty($normal_ranks)) { foreach ($normal_ranks as $rank) { if ($member['user_posts'] >= $rank['rank_min']) { $user_extra_rank_data['title'] = $rank['rank_title']; $user_extra_rank_data['img_src'] = !empty($rank['rank_image']) ? $this->phpbb_root_path . $this->config['ranks_path'] . '/' . $rank['rank_image'] : ''; $user_extra_rank_data['img'] = !empty($rank['rank_image']) ? '<img src="' . $user_extra_rank_data['img_src'] . '" alt="' . $rank['rank_title'] . '" title="' . $rank['rank_title'] . '" />' : ''; break; } } } } } $this->template->assign_vars(array('EXTRA_RANK_TITLE' => $user_extra_rank_data['title'], 'EXTRA_RANK_IMG' => $user_extra_rank_data['img'])); /**************** * PROFILE VIEWS * ****************/ // Make sure we have a session Make sure user is not a bot. Do not increase view count if viewing own profile. if (isset($this->user->data['session_page']) && !$this->user->data['is_bot'] && $this->user->data['user_id'] != $user_id) { $incr_profile_views = 'UPDATE ' . USERS_TABLE . ' SET user_profile_views = user_profile_views + 1 WHERE user_id = ' . $user_id; $this->db->sql_query($incr_profile_views); } /**************** * ACTIVITY FEED * ****************/ $activity_feed_ary = array('SELECT' => 'p.*, t.*, u.username, u.user_colour', 'FROM' => array(POSTS_TABLE => 'p'), 'LEFT_JOIN' => array(array('FROM' => array(USERS_TABLE => 'u'), 'ON' => 'u.user_id = p.poster_id'), array('FROM' => array(TOPICS_TABLE => 't'), 'ON' => 'p.topic_id = t.topic_id')), 'WHERE' => $this->db->sql_in_set('t.forum_id', array_keys($this->auth->acl_getf('f_read', true))) . ' AND t.topic_status <> ' . ITEM_MOVED . ' AND t.topic_visibility = 1 AND p.poster_id = ' . $user_id, 'ORDER_BY' => 'p.post_time DESC'); $activity_feed = $this->db->sql_build_query('SELECT', $activity_feed_ary); $activity_feed_result = $this->db->sql_query_limit($activity_feed, 5); // Only get last five posts while ($af_row = $this->db->sql_fetchrow($activity_feed_result)) { $topic_id = $af_row['topic_id']; $post_id = $af_row['post_id']; $post_date = $this->user->format_date($af_row['post_time']); $post_url = append_sid("{$this->phpbb_root_path}viewtopic.{$this->phpEx}", 't=' . $topic_id . '&p=' . $post_id) . '#p' . $post_id; // Parse the posts $af_row['bbcode_options'] = ($af_row['enable_bbcode'] ? OPTION_FLAG_BBCODE : 0) + ($af_row['enable_smilies'] ? OPTION_FLAG_SMILIES : 0) + ($af_row['enable_magic_url'] ? OPTION_FLAG_LINKS : 0); $text = generate_text_for_display($af_row['post_text'], $af_row['bbcode_uid'], $af_row['bbcode_bitfield'], $af_row['bbcode_options']); // Set a max length for the post to display $cutoff = ' …'; $text = strlen($text) > 200 ? mb_substr($text, 0, 200) . $cutoff : $text; // See if user is able to view posts.. $this->template->assign_block_vars('af', array('SUBJECT' => $af_row['post_subject'], 'TEXT' => $text, 'TIME' => $post_date, 'URL' => $post_url)); } $this->db->sql_freeresult($activity_feed_result); // Master gave Dobby a sock, now Dobby is free! /*************** * TOTAL TOPICS * ***************/ $tt = 'SELECT COUNT(topic_poster) AS topic_author_count FROM ' . TOPICS_TABLE . ' WHERE topic_poster = ' . $user_id; $total_topics_result = $this->db->sql_query($tt); $total_topics = (int) $this->db->sql_fetchfield('topic_author_count'); $this->db->sql_freeresult($total_topics_result); // Master gave Dobby a sock, now Dobby is free! /*************** * FRIENDS LIST * ***************/ $sql_friend = array('SELECT' => 'u.user_id, u.username, u.username_clean, u.user_colour, MAX(s.session_time) as online_time, MIN(s.session_viewonline) AS viewonline', 'FROM' => array(USERS_TABLE => 'u', ZEBRA_TABLE => 'z'), 'LEFT_JOIN' => array(array('FROM' => array(SESSIONS_TABLE => 's'), 'ON' => 's.session_user_id = z.zebra_id')), 'WHERE' => 'z.user_id = ' . $user_id . ' AND z.friend = 1 AND u.user_id = z.zebra_id', 'GROUP_BY' => 'z.zebra_id, u.user_id, u.username_clean, u.user_colour, u.username', 'ORDER_BY' => 'u.username_clean ASC'); $sql_friend_list = $this->db->sql_build_query('SELECT_DISTINCT', $sql_friend); $friend_result = $this->db->sql_query($sql_friend_list); while ($friend_row = $this->db->sql_fetchrow($friend_result)) { $img = phpbb_get_user_avatar($friend_row); // Use phpBB's Built in Avatar creator, for all types $has_avatar = false; if ($img == '') { $has_avatar = false; // This friend has no avatar.. } else { $has_avatar = true; // This friend has an avatar $offset = 25; //Start off the img src $end = strpos($img, '"', $offset); // Find end of img src $length = $end - $offset; // Determine src length $friend_avatar = substr($img, $offset, $length); // Grab just the src } $this->template->assign_block_vars('friends', array('USERNAME' => get_username_string('full', $friend_row['user_id'], $friend_row['username'], $friend_row['user_colour']), 'AVATAR' => $friend_avatar, 'HAS_AVATAR' => $has_avatar)); } $this->db->sql_freeresult($friend_result); // Master gave Dobby a sock, now Dobby is free! /******* * WALL * *******/ // INSERTING A WALL POST add_form_key('postwall'); $sendwall = isset($_POST['sendwall']) ? true : false; if ($sendwall) { if (check_form_key('postwall') && $this->auth->acl_get('u_wall_post')) { $msg_text = $this->request->variable('msg_text', '', true); $uid = $bitfield = $options = ''; // will be modified by generate_text_for_storage $allow_bbcode = $allow_urls = $allow_smilies = true; generate_text_for_storage($msg_text, $uid, $bitfield, $options, $allow_bbcode, $allow_urls, $allow_smilies); $msg_time = time(); $wall_ary = array('user_id' => $user_id, 'poster_id' => $this->user->data['user_id'], 'msg' => $msg_text, 'msg_time' => (int) $msg_time, 'bbcode_uid' => $uid, 'bbcode_bitfield' => $bitfield, 'bbcode_options' => $options); $insertwall = 'INSERT INTO ' . $this->wall_table . ' ' . $this->db->sql_build_array('INSERT', $wall_ary); $this->db->sql_query($insertwall); if ($user_id != $this->user->data['user_id']) { $msg_id = (int) $this->db->sql_nextid(); $poster_name = get_username_string('no_profile', $this->user->data['user_id'], $this->user->data['username'], $this->user->data['user_colour']); $notification_msg = $msg_text; strip_bbcode($notification_msg, $uid); $wall_notification_data = array('msg_id' => $msg_id, 'user_id' => $user_id, 'poster_name' => $poster_name, 'notification_msg' => strlen($notification_msg) > 30 ? substr($notification_msg, 0, 30) . '...' : $notification_msg); $phpbb_notifications = $this->container->get('notification_manager'); $phpbb_notifications->add_notifications('posey.aps.notification.type.wall', $wall_notification_data); } } else { trigger_error($this->user->lang['FORM_INVALID']); } } // DISPLAYING WALL POSTS $getwall_ary = array('SELECT' => 'w.*, u.username, u.user_colour, u.user_avatar, u.user_avatar_type, u.user_avatar_width, u.user_avatar_height', 'FROM' => array($this->wall_table => 'w'), 'LEFT_JOIN' => array(array('FROM' => array(USERS_TABLE => 'u'), 'ON' => 'u.user_id = w.poster_id')), 'WHERE' => 'w.user_id = ' . $user_id, 'ORDER_BY' => 'w.msg_id DESC'); $getwall = $this->db->sql_build_query('SELECT_DISTINCT', $getwall_ary); $wallresult = $this->db->sql_query_limit($getwall, 10); // Only get latest 10 wall posts while ($wall = $this->db->sql_fetchrow($wallresult)) { $wall_msg = generate_text_for_display($wall['msg'], $wall['bbcode_uid'], $wall['bbcode_bitfield'], $wall['bbcode_options']); // Parse wall message text $msg_id = $wall['msg_id']; $msg_time = $this->user->format_date($wall['msg_time']); $this->template->assign_block_vars('wall', array('MSG' => $wall_msg, 'ID' => $wall['msg_id'], 'MSG_TIME' => $msg_time, 'POSTER' => get_username_string('full', $wall['poster_id'], $wall['username'], $wall['user_colour']), 'POSTER_AVATAR' => phpbb_get_user_avatar($wall), 'S_HIDDEN_FIELDS' => build_hidden_fields(array('deletewallid' => $wall['msg_id'])))); } $this->db->sql_freeresult($wallresult); // Master gave Dobby a sock, now Dobby is free! // DELETE WALL POST $deletewall = isset($_POST['deletewall']) ? true : false; if ($deletewall) { if (confirm_box(true)) { $deletewallid = request_var('deletewallid', 0); $delete_msg = 'DELETE FROM ' . $this->wall_table . ' WHERE msg_id = ' . $deletewallid; $this->db->sql_query($delete_msg); $msg_deleted_redirect = append_sid("{$this->phpbb_root_path}memberlist.{$this->phpEx}", "mode=viewprofile&u=" . $user_id . "#wall"); $message = $this->user->lang['CONFIRM_WALL_DEL'] . '<br /><br />' . sprintf($this->user->lang['RETURN_WALL'], '<a href="' . $msg_deleted_redirect . '">', $username, '</a>'); meta_refresh(3, $msg_deleted_redirect); trigger_error($message); } else { $s_hidden_fields = build_hidden_fields(array('deletewall' => true, 'deletewallid' => request_var('deletewallid', 0))); confirm_box(false, $this->user->lang['CONFIRM_WALL_DEL_EXPLAIN'], $s_hidden_fields); } } /*********************** * Let's set some links * ***********************/ $post_wall_action = append_sid("{$this->phpbb_root_path}memberlist.{$this->phpEx}", "mode=viewprofile&u=" . $user_id); // Needed for wall form $total_topics_url = append_sid("{$this->phpbb_root_path}search.{$this->phpEx}", 'author_id=' . $user_id . '&sr=topics'); // Link to search URL for user's topics /**************************** * ASSIGN TEMPLATE VARIABLES * ****************************/ $this->template->assign_vars(array('TOTAL_TOPICS' => $total_topics, 'PROFILE_VIEWS' => $member['user_profile_views'], 'NO_WALL_POSTS' => sprintf($this->user->lang['FIRST_POST_WALL'], '<strong>' . $username . '</strong>'), 'USER_NO_POSTS' => sprintf($this->user->lang['USER_NO_POSTS'], '<strong>' . $username . '</strong>'), 'COVERPHOTO' => $member['user_coverphoto'], 'CP_PANEL_ID' => $this->config['cp_panel_id'] ? $this->config['cp_panel_id'] : 1, 'FL_ENABLED' => $this->config['fl_enabled'] ? true : false, 'CP_ENABLED' => $this->config['cp_enabled'] ? true : false, 'AF_ENABLED' => $this->config['af_enabled'] ? true : false, 'U_SEARCH_USER_TOPICS' => $total_topics_url, 'S_POST_WALL' => $post_wall_action, 'S_CAN_POST_WALL' => $this->auth->acl_get('u_wall_post') ? true : false, 'S_CAN_READ_WALL' => $this->auth->acl_get('u_wall_read') ? true : false, 'S_CAN_DEL_WALL' => $this->auth->acl_get('u_wall_del') ? true : false, 'S_MOD_DEL_WALL' => $this->auth->acl_get('m_wall_del') ? true : false)); }
public function posts_merging($event) { $mode = $event['mode']; $subject = $event['subject']; $username = $event['username']; $topic_type = $event['topic_type']; $poll = $event['poll']; $data = $event['data']; $update_message = $event['update_message']; $update_search_index = $event['update_search_index']; $current_time = time(); $do_not_merge_with_previous = $this->request->variable('posts_merging_option', false); if (!$do_not_merge_with_previous && !$this->helper->post_needs_approval($data) && in_array($mode, array('reply', 'quote')) && $this->merge_interval && !$this->helper->excluded_from_merge($data)) { $merge_post_data = $this->helper->get_last_post_data($data); // Do not merge if there's no last post data, the post is locked or allowed merge period has left if (!$merge_post_data || $merge_post_data['post_edit_locked'] || $current_time - (int) $merge_post_data['topic_last_post_time'] > $this->merge_interval || !$this->user->data['is_registered']) { return; } // Also, don't let user to violate attachments limit by posts merging // In this case, also don't merge posts and return // Exceptions are administrators and forum moderators $num_old_attachments = $this->helper->count_post_attachments((int) $merge_post_data['post_id']); $num_new_attachments = sizeof($data['attachment_data']); $total_attachments_count = $num_old_attachments + $num_new_attachments; if ($total_attachments_count > $this->config['max_attachments'] && !$this->auth->acl_get('a_') && !$this->auth->acl_get('m_', (int) $data['forum_id'])) { return; } $data['post_id'] = (int) $merge_post_data['post_id']; $merge_post_data['post_attachment'] = $total_attachments_count ? 1 : 0; // Decode old message and addon $merge_post_data['post_text'] = $this->helper->prepare_text_for_merge($merge_post_data); $data['message'] = $this->helper->prepare_text_for_merge($data); // Handle inline attachments BBCode in old message if ($num_new_attachments) { $merge_post_data['post_text'] = preg_replace('#\\[attachment=([0-9]+)\\](.*?)\\[\\/attachment\\]#e', "'[attachment='.(\\1 + {$num_new_attachments}).']\\2[/attachment]'", $merge_post_data['post_text']); } // Prepare message separator $this->user->add_lang_ext('rxu/PostsMerging', 'posts_merging'); $interval = $this->helper->get_time_interval($current_time, $merge_post_data['post_time']); $time = array(); $time[] = $interval->h ? $this->user->lang('D_HOURS', $interval->h) : null; $time[] = $interval->i ? $this->user->lang('D_MINUTES', $interval->i) : null; $time[] = $interval->s ? $this->user->lang('D_SECONDS', $interval->s) : null; $separator = $this->user->lang('MERGE_SEPARATOR', implode(' ', $time)); // Merge subject if (!empty($subject) && $subject != $merge_post_data['post_subject'] && $merge_post_data['post_id'] != $merge_post_data['topic_first_post_id']) { $separator .= sprintf($this->user->lang['MERGE_SUBJECT'], $subject); } // Merge posts $merge_post_data['post_text'] = $merge_post_data['post_text'] . $separator . $data['message']; // Make sure the message is safe $this->type_cast_helper->recursive_set_var($merge_post_data['post_text'], '', true); //Prepare post for submit $options = ''; $warn_msg = generate_text_for_storage($merge_post_data['post_text'], $merge_post_data['bbcode_uid'], $merge_post_data['bbcode_bitfield'], $options, $merge_post_data['enable_bbcode'], $merge_post_data['enable_magic_url'], $merge_post_data['enable_smilies']); // If $warn_msg is not empty, the merged message does not conform some restrictions // In this case we simply don't merge and return back to the function submit_post() if (!empty($warn_msg)) { return; } // Update post time and submit post to database $merge_post_data['post_time'] = $data['post_time'] = $current_time; $this->helper->submit_post_to_database($merge_post_data); // Submit attachments $this->helper->submit_attachments($data); // Update read tracking $this->helper->update_read_tracking($data); // If a username was supplied or the poster is a guest, we will use the supplied username. // Doing it this way we can use "...post by guest-username..." in notifications when // "guest-username" is supplied or ommit the username if it is not. $username = $username !== '' || !$this->user->data['is_registered'] ? $username : $this->user->data['username']; // Send Notifications // Despite the post_id is the same and users who've been already notified // won't be notified again about the same post_id, we send notifications // for new users possibly subscribed to it $notification_data = array_merge($data, array('topic_title' => isset($data['topic_title']) ? $data['topic_title'] : $subject, 'post_username' => $username, 'poster_id' => (int) $data['poster_id'], 'post_text' => $data['message'], 'post_time' => $merge_post_data['post_time'], 'post_subject' => $subject)); $this->notification_manager->add_notifications(array('notification.type.quote', 'notification.type.bookmark', 'notification.type.post'), $notification_data); // Update search index $this->helper->update_search_index($merge_post_data); //Generate redirection URL and redirecting $params = $add_anchor = ''; $params .= '&t=' . $data['topic_id']; $params .= '&p=' . $data['post_id']; $add_anchor = '#p' . $data['post_id']; $url = "{$this->phpbb_root_path}viewtopic.{$this->php_ext}"; $url = append_sid($url, 'f=' . $data['forum_id'] . $params) . $add_anchor; /** * Modify the data for post submitting * * @event rxu.postsmerging.posts_merging_end * @var string mode Variable containing posting mode value * @var string subject Variable containing post subject value * @var string username Variable containing post author name * @var int topic_type Variable containing topic type value * @var array poll Array with the poll data for the post * @var array data Array with the data for the post * @var bool update_message Flag indicating if the post will be updated * @var bool update_search_index Flag indicating if the search index will be updated * @var string url The "Return to topic" URL * @since 2.0.0 */ $vars = array('mode', 'subject', 'username', 'topic_type', 'poll', 'data', 'update_message', 'update_search_index', 'url'); extract($this->phpbb_dispatcher->trigger_event('rxu.postsmerging.posts_merging_end', compact($vars))); redirect($url); } }
} if ($points_config['robbery_sendpm'] && $user_info['user_allow_pm'] == 1 && $user_robbery_pm) { // Select the receiver language $user_row['user_lang'] = file_exists($phpbb_root_path . 'language/' . $user_row['user_lang'] . "/mods/points.{$phpEx}") ? $user_row['user_lang'] : $config['default_lang']; // load receivers language include $phpbb_root_path . 'language/' . basename($user_row['user_lang']) . "/mods/points.{$phpEx}"; // Send PM $pm_subject = utf8_normalize_nfc($lang['ROBBERY_PM_BAD_SUBJECT']); if ($robbery_pm_info == 1) { $pm_text = utf8_normalize_nfc(sprintf($lang['ROBBERY_PM_BAD_BODY_1'], $user_namepoints, $attacked_amount, $config['points_name'], sprintf(number_format_points($lose)))); } else { $pm_text = utf8_normalize_nfc(sprintf($lang['ROBBERY_PM_BAD_BODY'], $user_namepoints, $attacked_amount, $config['points_name'])); } $poll = $uid = $bitfield = $options = ''; generate_text_for_storage($pm_subject, $uid, $bitfield, $options, false, false, false); generate_text_for_storage($pm_text, $uid, $bitfield, $options, true, true, true); $pm_data = array('address_list' => array('u' => array($user_id => 'to')), 'from_user_id' => $user->data['user_id'], 'from_username' => $user->lang['ROBBERY_PM_SENDER'], 'icon_id' => 0, 'from_user_ip' => '', 'enable_bbcode' => true, 'enable_smilies' => true, 'enable_urls' => true, 'enable_sig' => true, 'message' => $pm_text, 'bbcode_bitfield' => $bitfield, 'bbcode_uid' => $uid); submit_pm('post', $pm_subject, $pm_data, false); } $message = $user->lang['ROBBERY_BAD'] . '<br /><br />' . $robbery_usage_info . '<br /><br /><a href="' . append_sid("{$phpbb_root_path}points.{$phpEx}", "mode=robbery") . '">« ' . $user->lang['BACK_TO_PREV'] . '</a>'; trigger_error($message); } } $template->assign_vars(array('USER_NAME' => get_username_string('full', $checked_user['user_id'], $points_config['username'], $points_config['user_colour']), 'U_ACTION' => $this->u_action, 'S_HIDDEN_FIELDS' => $hidden_fields)); } // If Robbery PN is enabled, show option to disable for the users if ($points_config['robbery_sendpm']) { if (isset($_POST['robbery_pm'])) { if (!check_form_key('robbery_attack')) { trigger_error('FORM_INVALID'); }
/** * Method to render the page data * * @var bool Bool if the rendering is only for index * @return array Data for page rendering */ public function render_data_for_page($only_for_index = false) { $include_on_index = $only_for_index === true; // Add lang file $this->user->add_lang('posting'); //chat enabled if (!$this->config['mchat_enable']) { trigger_error($this->user->lang['MCHAT_ENABLE'], E_USER_NOTICE); } // avatars if (!function_exists('get_user_avatar')) { include $this->phpbb_root_path . 'includes/functions_display.' . $this->phpEx; } if (($this->config_mchat = $this->cache->get('_mchat_config')) === false) { $this->functions_mchat->mchat_cache(); } $this->config_mchat = $this->cache->get('_mchat_config'); // Access rights $mchat_allow_bbcode = $this->config['allow_bbcode'] && $this->auth->acl_get('u_mchat_bbcode') ? true : false; $mchat_smilies = $this->config['allow_smilies'] && $this->auth->acl_get('u_mchat_smilies') ? true : false; $mchat_urls = $this->config['allow_post_links'] && $this->auth->acl_get('u_mchat_urls') ? true : false; $mchat_ip = $this->auth->acl_get('u_mchat_ip') ? true : false; $mchat_pm = $this->auth->acl_get('u_mchat_pm') ? true : false; $mchat_like = $this->auth->acl_get('u_mchat_like') ? true : false; $mchat_quote = $this->auth->acl_get('u_mchat_quote') ? true : false; $mchat_add_mess = $this->auth->acl_get('u_mchat_use') ? true : false; $mchat_view = $this->auth->acl_get('u_mchat_view') ? true : false; $mchat_no_flood = $this->auth->acl_get('u_mchat_flood_ignore') ? true : false; $mchat_read_archive = $this->auth->acl_get('u_mchat_archive') ? true : false; $mchat_founder = $this->user->data['user_type'] == USER_FOUNDER ? true : false; $mchat_session_time = !empty($this->config_mchat['timeout']) ? $this->config_mchat['timeout'] : (!empty($this->config['load_online_time']) ? $this->config['load_online_time'] * 60 : $this->config['session_length']); $mchat_rules = !empty($this->config_mchat['rules']) || isset($this->user->lang[strtoupper('mchat_rules')]) ? true : false; $mchat_avatars = !empty($this->config_mchat['avatars']) && $this->user->optionget('viewavatars') && $this->user->data['user_mchat_avatars'] ? true : false; // needed variables // Request options. $mchat_mode = $this->request->variable('mode', ''); $mchat_read_mode = $mchat_archive_mode = $mchat_custom_page = $mchat_no_message = false; // set redirect if on index or custom page $on_page = $include_on_index ? 'index' : 'mchat'; // grab fools..uhmmm, foes the user has $foes_array = array(); $sql = 'SELECT * FROM ' . ZEBRA_TABLE . ' WHERE user_id = ' . $this->user->data['user_id'] . ' AND foe = 1'; $result = $this->db->sql_query($sql); while ($row = $this->db->sql_fetchrow($result)) { $foes_array[] = $row['zebra_id']; } $this->db->sql_freeresult($result); // Request mode... switch ($mchat_mode) { // rules popup.. case 'rules': // If the rules are defined in the language file use them, else just use the entry in the database if ($mchat_rules || isset($this->user->lang[strtoupper('mchat_rules')])) { if (isset($this->user->lang[strtoupper('mchat_rules')])) { $this->template->assign_var('MCHAT_RULES', $this->user->lang[strtoupper('mchat_rules')]); } else { $mchat_rules = $this->config_mchat['rules']; $mchat_rules = explode("\n", $mchat_rules); foreach ($mchat_rules as $mchat_rule) { $mchat_rule = utf8_htmlspecialchars($mchat_rule); $this->template->assign_block_vars('rule', array('MCHAT_RULE' => $mchat_rule)); } } // Output the page // Return for: \$this->helper->render(filename, lang_title); return array('filename' => 'mchat_rules.html', 'lang_title' => $this->user->lang['MCHAT_HELP']); } else { // Show no rules trigger_error('MCHAT_NO_RULES', E_USER_NOTICE); } break; // whois function.. // whois function.. case 'whois': // Must have auths if ($mchat_mode == 'whois' && $mchat_ip) { // function already exists.. if (!function_exists('user_ipwhois')) { include $this->phpbb_root_path . 'includes/functions_user.' . $this->phpEx; } $this->user_ip = $this->request->variable('ip', ''); $this->template->assign_var('WHOIS', user_ipwhois($this->user_ip)); // Output the page // Return for: \$this->helper->render(filename, lang_title); return array('filename' => 'viewonline_whois.html', 'lang_title' => $this->user->lang['WHO_IS_ONLINE']); } else { // Show not authorized trigger_error('NO_AUTH_OPERATION', E_USER_NOTICE); } break; // Clean function... // Clean function... case 'clean': // User logged in? if (!$this->user->data['is_registered'] || !$mchat_founder) { if (!$this->user->data['is_registered']) { // Login box... login_box('', $this->user->lang['LOGIN']); } else { if (!$mchat_founder) { // Show not authorized trigger_error('NO_AUTH_OPERATION', E_USER_NOTICE); } } } $mchat_redirect = $this->request->variable('redirect', ''); $mchat_redirect = $mchat_redirect == 'index' ? append_sid("{$this->phpbb_root_path}index.{$this->phpEx}") : $this->helper->route('dmzx_mchat_controller', array('#mChat')); if (confirm_box(true)) { // Run cleaner $sql = 'TRUNCATE TABLE ' . $this->mchat_table; $this->db->sql_query($sql); meta_refresh(3, $mchat_redirect); trigger_error($this->user->lang['MCHAT_CLEANED'] . '<br /><br />' . sprintf($this->user->lang['RETURN_PAGE'], '<a href="' . $mchat_redirect . '">', '</a>')); } else { // Display confirm box confirm_box(false, $this->user->lang['MCHAT_DELALLMESS']); } $this->phpbb_log->add('admin', $this->user->data['user_id'], $this->user->ip, 'LOG_MCHAT_TABLE_PRUNED'); redirect($mchat_redirect); break; // Archive function... // Archive function... case 'archive': if (!$mchat_read_archive || !$mchat_view) { // redirect to correct page $mchat_redirect = append_sid("{$this->phpbb_root_path}index.{$this->phpEx}"); // Redirect to previous page meta_refresh(3, $mchat_redirect); trigger_error($this->user->lang['MCHAT_NOACCESS_ARCHIVE'] . '<br /><br />' . sprintf($this->user->lang['RETURN_PAGE'], '<a href="' . $mchat_redirect . '">', '</a>')); } if ($this->config['mchat_enable'] && $mchat_read_archive && $mchat_view) { // how many chats do we have? $sql = 'SELECT COUNT(message_id) AS messages FROM ' . $this->mchat_table; $result = $this->db->sql_query($sql); $mchat_total_messages = $this->db->sql_fetchfield('messages'); $this->db->sql_freeresult($result); // prune the chats if necessary and amount in ACP not empty if ($this->config_mchat['prune_enable'] && ($mchat_total_messages > $this->config_mchat['prune_num'] && $this->config_mchat['prune_num'] > 0)) { $this->functions_mchat->mchat_prune((int) $this->config_mchat['prune_num']); } // Reguest... $mchat_archive_start = $this->request->variable('start', 0); $sql_where = $this->user->data['user_mchat_topics'] ? '' : 'WHERE m.forum_id = 0'; // Message row $sql = 'SELECT m.*, u.username, u.user_colour, u.user_avatar, u.user_avatar_type, u.user_avatar_width, u.user_avatar_height, u.user_allow_pm FROM ' . $this->mchat_table . ' m LEFT JOIN ' . USERS_TABLE . ' u ON m.user_id = u.user_id ' . $sql_where . ' ORDER BY m.message_id DESC'; $result = $this->db->sql_query_limit($sql, (int) $this->config_mchat['archive_limit'], $mchat_archive_start); $rows = $this->db->sql_fetchrowset($result); $this->db->sql_freeresult($result); foreach ($rows as $row) { // auth check if ($row['forum_id'] != 0 && !$this->auth->acl_get('f_read', $row['forum_id'])) { continue; } // edit, delete and permission auths $mchat_ban = $this->auth->acl_get('a_authusers') && $this->user->data['user_id'] != $row['user_id'] ? true : false; $mchat_edit = $this->auth->acl_get('u_mchat_edit') && ($this->auth->acl_get('m_') || $this->user->data['user_id'] == $row['user_id']) ? true : false; $mchat_del = $this->auth->acl_get('u_mchat_delete') && ($this->auth->acl_get('m_') || $this->user->data['user_id'] == $row['user_id']) ? true : false; $mchat_avatar = $row['user_avatar'] ? get_user_avatar($row['user_avatar'], $row['user_avatar_type'], $row['user_avatar_width'] > $row['user_avatar_height'] ? 40 : 40 / $row['user_avatar_height'] * $row['user_avatar_width'], $row['user_avatar_height'] > $row['user_avatar_width'] ? 40 : 40 / $row['user_avatar_width'] * $row['user_avatar_height']) : ''; $message_edit = $row['message']; decode_message($message_edit, $row['bbcode_uid']); $message_edit = str_replace('"', '"', $message_edit); // Edit Fix ;) if (sizeof($foes_array)) { if (in_array($row['user_id'], $foes_array)) { $row['message'] = sprintf($this->user->lang['MCHAT_FOE'], get_username_string('full', $row['user_id'], $row['username'], $row['user_colour'], $this->user->lang['GUEST'])); } } $row['username'] = mb_ereg_replace("'", "’", $row['username']); $this->template->assign_block_vars('mchatrow', array('MCHAT_ALLOW_BAN' => $mchat_ban, 'MCHAT_ALLOW_EDIT' => $mchat_edit, 'MCHAT_ALLOW_DEL' => $mchat_del, 'MCHAT_USER_AVATAR' => $mchat_avatar, 'U_VIEWPROFILE' => $row['user_id'] != ANONYMOUS ? append_sid("{$this->phpbb_root_path}memberlist.{$this->phpEx}", 'mode=viewprofile&u=' . $row['user_id']) : '', 'U_USER_IDS' => $row['user_id'] != ANONYMOUS && $this->user->data['user_id'] != $row['user_id'] ? append_sid("{$this->phpbb_root_path}ucp.{$this->phpEx}", 'i=pm&mode=compose&u=' . $row['user_id']) : '', 'BOT_USER_ID' => $row['user_id'] != '1', 'U_USER_ID' => $row['user_id'] != ANONYMOUS && $this->config['allow_privmsg'] && $this->auth->acl_get('u_sendpm') && $this->user->data['user_id'] != $row['user_id'] && $row['user_id'] != '1' && ($row['user_allow_pm'] || $this->auth->acl_gets('a_', 'm_') || $this->auth->acl_getf_global('m_')) ? append_sid("{$this->phpbb_root_path}ucp.{$this->phpEx}", 'i=pm&mode=compose&u=' . $row['user_id']) : '', 'MCHAT_MESSAGE_EDIT' => $message_edit, 'MCHAT_MESSAGE_ID' => $row['message_id'], 'MCHAT_USERNAME_FULL' => get_username_string('full', $row['user_id'], $row['username'], $row['user_colour'], $this->user->lang['GUEST']), 'MCHAT_USERNAME' => get_username_string('username', $row['user_id'], $row['username'], $row['user_colour'], $this->user->lang['GUEST']), 'MCHAT_USERNAME_COLOR' => get_username_string('colour', $row['user_id'], $row['username'], $row['user_colour'], $this->user->lang['GUEST']), 'MCHAT_USER_IP' => $row['user_ip'], 'MCHAT_U_WHOIS' => $this->helper->route('dmzx_mchat_controller', array('mode' => 'whois', 'ip' => $row['user_ip'])), 'MCHAT_U_BAN' => append_sid("{$this->phpbb_root_path}adm/index.{$this->phpEx}", 'i=permissions&mode=setting_user_global&user_id[0]=' . $row['user_id'], true, $this->user->session_id), 'MCHAT_MESSAGE' => generate_text_for_display($row['message'], $row['bbcode_uid'], $row['bbcode_bitfield'], $row['bbcode_options']), 'MCHAT_TIME' => $this->user->format_date($row['message_time'], $this->config_mchat['date']), 'MCHAT_CLASS' => $row['message_id'] % 2 ? 1 : 2)); } // Write no message if (empty($rows)) { $mchat_no_message = true; } } // Run query again to get the total message rows... $sql = 'SELECT COUNT(message_id) AS mess_id FROM ' . $this->mchat_table; $result = $this->db->sql_query($sql); $mchat_total_message = $this->db->sql_fetchfield('mess_id'); $this->db->sql_freeresult($result); // Page list function... $pagination_url = $this->helper->route('dmzx_mchat_controller', array('mode' => 'archive')); $start = $this->request->variable('start', 0); $this->pagination->generate_template_pagination($pagination_url, 'pagination', 'start', $mchat_total_message, (int) $this->config_mchat['archive_limit'], $mchat_archive_start); $this->template->assign_vars(array('MCHAT_TOTAL_MESSAGES' => sprintf($this->user->lang['MCHAT_TOTALMESSAGES'], $mchat_total_message))); //add to navlinks $this->template->assign_block_vars('navlinks', array('FORUM_NAME' => $this->user->lang['MCHAT_ARCHIVE_PAGE'], 'U_VIEW_FORUM' => $this->helper->route('dmzx_mchat_controller', array('mode' => 'archive')))); // If archive mode request set true $mchat_archive_mode = true; $old_mode = 'archive'; break; // Read function... // Read function... case 'read': // If mChat disabled or user can't view the chat if (!$this->config['mchat_enable'] || !$mchat_view) { // Forbidden (for jQ AJAX request) throw new \phpbb\exception\http_exception(403, 'MCHAT_ERROR_FORBIDDEN'); } // if we're reading on the custom page, then we are chatting if ($mchat_custom_page) { // insert user into the mChat sessions table $this->functions_mchat->mchat_sessions($mchat_session_time, true); } // Request $mchat_message_last_id = $this->request->variable('message_last_id', 0); $sql_and = $this->user->data['user_mchat_topics'] ? '' : 'AND m.forum_id = 0'; $sql = 'SELECT m.*, u.username, u.user_colour, u.user_avatar, u.user_avatar_type, u.user_avatar_width, u.user_avatar_height, u.user_allow_pm FROM ' . $this->mchat_table . ' m, ' . USERS_TABLE . ' u WHERE m.user_id = u.user_id AND m.message_id > ' . (int) $mchat_message_last_id . ' ' . $sql_and . ' ORDER BY m.message_id DESC'; $result = $this->db->sql_query_limit($sql, (int) $this->config_mchat['message_limit']); $rows = $this->db->sql_fetchrowset($result); $this->db->sql_freeresult($result); // Reverse the array wanting messages appear in reverse if ($this->config['mchat_message_top']) { $rows = array_reverse($rows); } foreach ($rows as $row) { // auth check if ($row['forum_id'] != 0 && !$this->auth->acl_get('f_read', $row['forum_id'])) { continue; } // edit auths if ($this->user->data['user_id'] == ANONYMOUS && $this->user->data['user_id'] == $row['user_id']) { $chat_auths = $this->user->data['session_ip'] == $row['user_ip'] ? true : false; } else { $chat_auths = $this->user->data['user_id'] == $row['user_id'] ? true : false; } // edit, delete and permission auths $mchat_ban = $this->auth->acl_get('a_authusers') && $this->user->data['user_id'] != $row['user_id'] ? true : false; $mchat_edit = $this->auth->acl_get('u_mchat_edit') && ($this->auth->acl_get('m_') || $chat_auths) ? true : false; $mchat_del = $this->auth->acl_get('u_mchat_delete') && ($this->auth->acl_get('m_') || $chat_auths) ? true : false; $mchat_avatar = $row['user_avatar'] ? get_user_avatar($row['user_avatar'], $row['user_avatar_type'], $row['user_avatar_width'] > $row['user_avatar_height'] ? 40 : 40 / $row['user_avatar_height'] * $row['user_avatar_width'], $row['user_avatar_height'] > $row['user_avatar_width'] ? 40 : 40 / $row['user_avatar_width'] * $row['user_avatar_height']) : ''; $message_edit = $row['message']; decode_message($message_edit, $row['bbcode_uid']); $message_edit = str_replace('"', '"', $message_edit); $message_edit = mb_ereg_replace("'", "’", $message_edit); // Edit Fix ;) if (sizeof($foes_array)) { if (in_array($row['user_id'], $foes_array)) { $row['message'] = sprintf($this->user->lang['MCHAT_FOE'], get_username_string('full', $row['user_id'], $row['username'], $row['user_colour'], $this->user->lang['GUEST'])); } } $row['username'] = mb_ereg_replace("'", "’", $row['username']); $this->template->assign_block_vars('mchatrow', array('MCHAT_ALLOW_BAN' => $mchat_ban, 'MCHAT_ALLOW_EDIT' => $mchat_edit, 'MCHAT_ALLOW_DEL' => $mchat_del, 'MCHAT_USER_AVATAR' => $mchat_avatar, 'U_VIEWPROFILE' => $row['user_id'] != ANONYMOUS ? append_sid("{$this->phpbb_root_path}memberlist.{$this->phpEx}", 'mode=viewprofile&u=' . $row['user_id']) : '', 'U_USER_IDS' => $row['user_id'] != ANONYMOUS && $this->user->data['user_id'] != $row['user_id'] ? append_sid("{$this->phpbb_root_path}ucp.{$this->phpEx}", 'i=pm&mode=compose&u=' . $row['user_id']) : '', 'BOT_USER_ID' => $row['user_id'] != '1', 'U_USER_ID' => $row['user_id'] != ANONYMOUS && $this->config['allow_privmsg'] && $this->auth->acl_get('u_sendpm') && $this->user->data['user_id'] != $row['user_id'] && $row['user_id'] != '1' && ($row['user_allow_pm'] || $this->auth->acl_gets('a_', 'm_') || $this->auth->acl_getf_global('m_')) ? append_sid("{$this->phpbb_root_path}ucp.{$this->phpEx}", 'i=pm&mode=compose&u=' . $row['user_id']) : '', 'MCHAT_MESSAGE_EDIT' => $message_edit, 'MCHAT_MESSAGE_ID' => $row['message_id'], 'MCHAT_USERNAME_FULL' => get_username_string('full', $row['user_id'], $row['username'], $row['user_colour'], $this->user->lang['GUEST']), 'MCHAT_USERNAME' => get_username_string('username', $row['user_id'], $row['username'], $row['user_colour'], $this->user->lang['GUEST']), 'MCHAT_USERNAME_COLOR' => get_username_string('colour', $row['user_id'], $row['username'], $row['user_colour'], $this->user->lang['GUEST']), 'MCHAT_USER_IP' => $row['user_ip'], 'MCHAT_U_WHOIS' => $this->helper->route('dmzx_mchat_controller', array('mode' => 'whois', 'ip' => $row['user_ip'])), 'MCHAT_U_BAN' => append_sid("{$this->phpbb_root_path}adm/index.{$this->phpEx}", 'i=permissions&mode=setting_user_global&user_id[0]=' . $row['user_id'], true, $this->user->session_id), 'MCHAT_MESSAGE' => generate_text_for_display($row['message'], $row['bbcode_uid'], $row['bbcode_bitfield'], $row['bbcode_options']), 'MCHAT_TIME' => $this->user->format_date($row['message_time'], $this->config_mchat['date']), 'MCHAT_CLASS' => $row['message_id'] % 2 ? 1 : 2)); } // Write no message if (empty($rows)) { $mchat_no_message = true; } // If read mode request set true $mchat_read_mode = true; break; // Stats function... // Stats function... case 'stats': // If mChat disabled or user can't view the chat if (!$this->config['mchat_enable'] || !$mchat_view || !$this->config_mchat['whois']) { // Forbidden (for jQ AJAX request) throw new \phpbb\exception\http_exception(403, 'MCHAT_ERROR_FORBIDDEN'); } $mchat_stats = $this->functions_mchat->mchat_users($mchat_session_time); if (!empty($mchat_stats['online_userlist'])) { $message = '<div class="mChatStats" id="mChatStats"><a href="#" onclick="mChat.toggle(\'UserList\'); return false;">' . $mchat_stats['mchat_users_count'] . '</a> ' . $mchat_stats['refresh_message'] . '<br /><span id="mChatUserList" style="display: none; float: left;">' . $mchat_stats['online_userlist'] . '</span></div>'; } else { $message = '<div class="mChatStats" id="Div1">' . $this->user->lang['MCHAT_NO_CHATTERS'] . ' (' . $mchat_stats['refresh_message'] . ')</div>'; } if ($this->request->is_ajax()) { // Return for: \Symfony\Component\HttpFoundation\JsonResponse return array('json' => true, 'message' => $message); } else { throw new \phpbb\exception\http_exception(501, 'MCHAT_ERROR_NOT_IMPLEMENTED'); } break; // Add function... // Add function... case 'add': // If mChat disabled if (!$this->config['mchat_enable'] || !$mchat_add_mess || !check_form_key('mchat_posting', -1)) { // Forbidden (for jQ AJAX request) if ($this->request->is_ajax()) { // FOR DEBUG throw new \phpbb\exception\http_exception(403, 'MCHAT_ERROR_FORBIDDEN'); } } // Reguest... $message = utf8_ucfirst(utf8_normalize_nfc($this->request->variable('message', '', true))); // must have something other than bbcode in the message if (empty($mchatregex)) { //let's strip all the bbcode $mchatregex = '#\\[/?[^\\[\\]]+\\]#mi'; } $message_chars = preg_replace($mchatregex, '', $message); $message_chars = utf8_strlen(trim($message_chars)) > 0 ? true : false; if (!$message || !$message_chars) { // Not Implemented (for jQ AJAX request) throw new \phpbb\exception\http_exception(501, 'MCHAT_ERROR_NOT_IMPLEMENTED'); } // Flood control if (!$mchat_no_flood && $this->config_mchat['flood_time']) { $mchat_flood_current_time = time(); $sql = 'SELECT message_time FROM ' . $this->mchat_table . ' WHERE user_id = ' . (int) $this->user->data['user_id'] . ' ORDER BY message_time DESC'; $result = $this->db->sql_query_limit($sql, 1); $row = $this->db->sql_fetchrow($result); $this->db->sql_freeresult($result); if ($row['message_time'] > 0 && $mchat_flood_current_time - $row['message_time'] < (int) $this->config_mchat['flood_time']) { // Locked (for jQ AJAX request) throw new \phpbb\exception\http_exception(400, 'MCHAT_BAD_REQUEST'); } } // insert user into the mChat sessions table $this->functions_mchat->mchat_sessions($mchat_session_time, true); // we override the $this->config['min_post_chars'] entry? if ($this->config_mchat['override_min_post_chars']) { $old_cfg['min_post_chars'] = $this->config['min_post_chars']; $this->config['min_post_chars'] = 0; } //we do the same for the max number of smilies? if ($this->config_mchat['override_smilie_limit']) { $old_cfg['max_post_smilies'] = $this->config['max_post_smilies']; $this->config['max_post_smilies'] = 0; } // Add function part code from http://wiki.phpbb.com/Parsing_text $uid = $bitfield = $options = ''; // will be modified by generate_text_for_storage generate_text_for_storage($message, $uid, $bitfield, $options, $mchat_allow_bbcode, $mchat_urls, $mchat_smilies); // Not allowed bbcodes if (!$mchat_allow_bbcode || $this->config_mchat['bbcode_disallowed']) { if (!$mchat_allow_bbcode) { $bbcode_remove = '#\\[/?[^\\[\\]]+\\]#Usi'; $message = preg_replace($bbcode_remove, '', $message); } else { if ($this->config_mchat['bbcode_disallowed']) { if (empty($bbcode_replace)) { $bbcode_replace = array('#\\[(' . $this->config_mchat['bbcode_disallowed'] . ')[^\\[\\]]+\\]#Usi', '#\\[/(' . $this->config_mchat['bbcode_disallowed'] . ')[^\\[\\]]+\\]#Usi'); } $message = preg_replace($bbcode_replace, '', $message); } } } $sql_ary = array('forum_id' => 0, 'post_id' => 0, 'user_id' => $this->user->data['user_id'], 'user_ip' => $this->user->data['session_ip'], 'message' => str_replace('\'', '’', $message), 'bbcode_bitfield' => $bitfield, 'bbcode_uid' => $uid, 'bbcode_options' => $options, 'message_time' => time()); $sql = 'INSERT INTO ' . $this->mchat_table . ' ' . $this->db->sql_build_array('INSERT', $sql_ary); $this->db->sql_query($sql); // reset the config settings if (isset($old_cfg['min_post_chars'])) { $this->config['min_post_chars'] = $old_cfg['min_post_chars']; unset($old_cfg['min_post_chars']); } if (isset($old_cfg['max_post_smilies'])) { $this->config['max_post_smilies'] = $old_cfg['max_post_smilies']; unset($old_cfg['max_post_smilies']); } // Stop run code! if ($this->request->is_ajax()) { // Return for: \Symfony\Component\HttpFoundation\JsonResponse return array('json' => true, 'success' => true); } else { exit_handler(); } break; // Edit function... // Edit function... case 'edit': $message_id = $this->request->variable('message_id', 0); // If mChat disabled and not edit if (!$this->config['mchat_enable'] || !$message_id) { // Forbidden (for jQ AJAX request) throw new \phpbb\exception\http_exception(403, 'MCHAT_ERROR_FORBIDDEN'); } // check for the correct user $sql = 'SELECT * FROM ' . $this->mchat_table . ' WHERE message_id = ' . (int) $message_id; $result = $this->db->sql_query($sql); $row = $this->db->sql_fetchrow($result); $this->db->sql_freeresult($result); // edit and delete auths $mchat_edit = $this->auth->acl_get('u_mchat_edit') && ($this->auth->acl_get('m_') || $this->user->data['user_id'] == $row['user_id']) ? true : false; $mchat_del = $this->auth->acl_get('u_mchat_delete') && ($this->auth->acl_get('m_') || $this->user->data['user_id'] == $row['user_id']) ? true : false; // If mChat disabled and not edit if (!$mchat_edit) { // Forbidden (for jQ AJAX request) throw new \phpbb\exception\http_exception(403, 'MCHAT_ERROR_FORBIDDEN'); } // Reguest... $message = $this->request->variable('message', '', true); // must have something other than bbcode in the message if (empty($mchatregex)) { //let's strip all the bbcode $mchatregex = '#\\[/?[^\\[\\]]+\\]#mi'; } $message_chars = preg_replace($mchatregex, '', $message); $message_chars = utf8_strlen(trim($message_chars)) > 0 ? true : false; if (!$message || !$message_chars) { // Not Implemented (for jQ AJAX request) throw new \phpbb\exception\http_exception(501, 'MCHAT_ERROR_NOT_IMPLEMENTED'); } // Message limit $message = $this->config_mchat['max_message_lngth'] != 0 && utf8_strlen($message) >= $this->config_mchat['max_message_lngth'] + 3 ? utf8_substr($message, 0, $this->config_mchat['max_message_lngth']) . '...' : $message; // we override the $this->config['min_post_chars'] entry? if ($this->config_mchat['override_min_post_chars']) { $old_cfg['min_post_chars'] = $this->config['min_post_chars']; $this->config['min_post_chars'] = 0; } //we do the same for the max number of smilies? if ($this->config_mchat['override_smilie_limit']) { $old_cfg['max_post_smilies'] = $this->config['max_post_smilies']; $this->config['max_post_smilies'] = 0; } // Edit function part code from http://wiki.phpbb.com/Parsing_text $uid = $bitfield = $options = ''; // will be modified by generate_text_for_storage generate_text_for_storage($message, $uid, $bitfield, $options, $mchat_allow_bbcode, $mchat_urls, $mchat_smilies); // Not allowed bbcodes if (!$mchat_allow_bbcode || $this->config_mchat['bbcode_disallowed']) { if (!$mchat_allow_bbcode) { $bbcode_remove = '#\\[/?[^\\[\\]]+\\]#Usi'; $message = preg_replace($bbcode_remove, '', $message); } else { if ($this->config_mchat['bbcode_disallowed']) { if (empty($bbcode_replace)) { $bbcode_replace = array('#\\[(' . $this->config_mchat['bbcode_disallowed'] . ')[^\\[\\]]+\\]#Usi', '#\\[/(' . $this->config_mchat['bbcode_disallowed'] . ')[^\\[\\]]+\\]#Usi'); } $message = preg_replace($bbcode_replace, '', $message); } } } $sql_ary = array('message' => str_replace('\'', '’', $message), 'bbcode_bitfield' => $bitfield, 'bbcode_uid' => $uid, 'bbcode_options' => $options); $sql = 'UPDATE ' . $this->mchat_table . ' SET ' . $this->db->sql_build_array('UPDATE', $sql_ary) . ' WHERE message_id = ' . (int) $message_id; $this->db->sql_query($sql); // Message edited...now read it $sql = 'SELECT m.*, u.username, u.user_colour, u.user_avatar, u.user_avatar_type, u.user_avatar_width, u.user_avatar_height, u.user_allow_pm FROM ' . $this->mchat_table . ' m, ' . USERS_TABLE . ' u WHERE m.user_id = u.user_id AND m.message_id = ' . (int) $message_id . ' ORDER BY m.message_id DESC'; $result = $this->db->sql_query($sql); $row = $this->db->sql_fetchrow($result); $this->db->sql_freeresult($result); $message_edit = $row['message']; decode_message($message_edit, $row['bbcode_uid']); $message_edit = str_replace('"', '"', $message_edit); // Edit Fix ;) $message_edit = mb_ereg_replace("'", "’", $message_edit); // Edit Fix ;) $mchat_ban = $this->auth->acl_get('a_authusers') && $this->user->data['user_id'] != $row['user_id'] ? true : false; $mchat_avatar = $row['user_avatar'] ? get_user_avatar($row['user_avatar'], $row['user_avatar_type'], $row['user_avatar_width'] > $row['user_avatar_height'] ? 40 : 40 / $row['user_avatar_height'] * $row['user_avatar_width'], $row['user_avatar_height'] > $row['user_avatar_width'] ? 40 : 40 / $row['user_avatar_width'] * $row['user_avatar_height']) : ''; $this->template->assign_block_vars('mchatrow', array('MCHAT_ALLOW_BAN' => $mchat_ban, 'MCHAT_ALLOW_EDIT' => $mchat_edit, 'MCHAT_ALLOW_DEL' => $mchat_del, 'MCHAT_MESSAGE_EDIT' => $message_edit, 'MCHAT_USER_AVATAR' => $mchat_avatar, 'U_VIEWPROFILE' => $row['user_id'] != ANONYMOUS ? append_sid("{$this->phpbb_root_path}memberlist.{$this->phpEx}", 'mode=viewprofile&u=' . $row['user_id']) : '', 'U_USER_IDS' => $row['user_id'] != ANONYMOUS && $this->user->data['user_id'] != $row['user_id'] ? append_sid("{$this->phpbb_root_path}ucp.{$this->phpEx}", 'i=pm&mode=compose&u=' . $row['user_id']) : '', 'BOT_USER_ID' => $row['user_id'] != '1', 'U_USER_ID' => $row['user_id'] != ANONYMOUS && $this->config['allow_privmsg'] && $this->auth->acl_get('u_sendpm') && $this->user->data['user_id'] != $row['user_id'] && $row['user_id'] != '1' && ($row['user_allow_pm'] || $this->auth->acl_gets('a_', 'm_') || $this->auth->acl_getf_global('m_')) ? append_sid("{$this->phpbb_root_path}ucp.{$this->phpEx}", 'i=pm&mode=compose&u=' . $row['user_id']) : '', 'MCHAT_MESSAGE_ID' => $row['message_id'], 'MCHAT_USERNAME_FULL' => get_username_string('full', $row['user_id'], $row['username'], $row['user_colour'], $this->user->lang['GUEST']), 'MCHAT_USERNAME' => get_username_string('username', $row['user_id'], $row['username'], $row['user_colour'], $this->user->lang['GUEST']), 'MCHAT_USERNAME_COLOR' => get_username_string('colour', $row['user_id'], $row['username'], $row['user_colour'], $this->user->lang['GUEST']), 'MCHAT_USER_IP' => $row['user_ip'], 'MCHAT_U_WHOIS' => $this->helper->route('dmzx_mchat_controller', array('mode' => 'whois', 'ip' => $row['user_ip'])), 'MCHAT_U_BAN' => append_sid("{$this->phpbb_root_path}adm/index.{$this->phpEx}", 'i=permissions&mode=setting_user_global&user_id[0]=' . $row['user_id'], true, $this->user->session_id), 'MCHAT_MESSAGE' => censor_text(generate_text_for_display($row['message'], $row['bbcode_uid'], $row['bbcode_bitfield'], $row['bbcode_options'])), 'MCHAT_TIME' => $this->user->format_date($row['message_time'], $this->config_mchat['date']), 'MCHAT_CLASS' => $row['message_id'] % 2 ? 1 : 2)); // reset the config settings if (isset($old_cfg['min_post_chars'])) { $this->config['min_post_chars'] = $old_cfg['min_post_chars']; unset($old_cfg['min_post_chars']); } if (isset($old_cfg['max_post_smilies'])) { $this->config['max_post_smilies'] = $old_cfg['max_post_smilies']; unset($old_cfg['max_post_smilies']); } //adds a log // $message_author = get_username_string('no_profile', $row['user_id'], $row['username'], $row['user_colour'], $this->user->lang['GUEST']); // add_log('admin', 'LOG_EDITED_MCHAT', $message_author); $this->phpbb_log->add('admin', $this->user->data['user_id'], $this->user->ip, 'LOG_EDITED_MCHAT', false, array($row['username'])); // insert user into the mChat sessions table $this->functions_mchat->mchat_sessions($mchat_session_time, true); // If read mode request set true $mchat_read_mode = true; break; // Delete function... // Delete function... case 'delete': $message_id = $this->request->variable('message_id', 0); // If mChat disabled if (!$this->config['mchat_enable'] || !$message_id) { // Forbidden (for jQ AJAX request) throw new \phpbb\exception\http_exception(403, 'MCHAT_ERROR_FORBIDDEN'); } // check for the correct user $sql = 'SELECT m.*, u.username, u.user_colour FROM ' . $this->mchat_table . ' m LEFT JOIN ' . USERS_TABLE . ' u ON m.user_id = u.user_id WHERE m.message_id = ' . (int) $message_id; $result = $this->db->sql_query($sql); $row = $this->db->sql_fetchrow($result); $this->db->sql_freeresult($result); // edit and delete auths $mchat_edit = $this->auth->acl_get('u_mchat_edit') && ($this->auth->acl_get('m_') || $this->user->data['user_id'] == $row['user_id']) ? true : false; $mchat_del = $this->auth->acl_get('u_mchat_delete') && ($this->auth->acl_get('m_') || $this->user->data['user_id'] == $row['user_id']) ? true : false; // If mChat disabled if (!$mchat_del) { // Forbidden (for jQ AJAX request) throw new \phpbb\exception\http_exception(403, 'MCHAT_ERROR_FORBIDDEN'); } // Run delete! $sql = 'DELETE FROM ' . $this->mchat_table . ' WHERE message_id = ' . (int) $message_id; $this->db->sql_query($sql); //adds a log $this->phpbb_log->add('admin', $this->user->data['user_id'], $this->user->ip, 'LOG_DELETED_MCHAT', false, array($row['username'])); // insert user into the mChat sessions table $this->functions_mchat->mchat_sessions($mchat_session_time, true); // Stop running code if ($this->request->is_ajax()) { // Return for: \Symfony\Component\HttpFoundation\JsonResponse return array('json' => true, 'success' => true); } else { exit_handler(); } break; // Default function... // Default function... default: // If not include in index.php set mchat.php page true if (!$include_on_index) { // Yes its custom page... $mchat_custom_page = true; // If custom page false mchat.php page redirect to index... if (!$this->config_mchat['custom_page'] && $mchat_custom_page) { $mchat_redirect = append_sid("{$this->phpbb_root_path}index.{$this->phpEx}"); // Redirect to previous page meta_refresh(3, $mchat_redirect); trigger_error($this->user->lang['MCHAT_NO_CUSTOM_PAGE'] . '<br /><br />' . sprintf($this->user->lang['RETURN_PAGE'], '<a href="' . $mchat_redirect . '">', '</a>')); } // user has permissions to view the custom chat? if (!$mchat_view && $mchat_custom_page) { trigger_error('NOT_AUTHORISED', E_USER_NOTICE); } // if whois true if ($this->config_mchat['whois']) { // Grab group details for legend display for who is online on the custom page. $order_legend = $this->config['legend_sort_groupname'] ? 'group_name' : 'group_legend'; if ($this->auth->acl_gets('a_group', 'a_groupadd', 'a_groupdel')) { $sql = 'SELECT group_id, group_name, group_colour, group_type FROM ' . GROUPS_TABLE . ' WHERE group_legend <> 0 ORDER BY ' . $order_legend . ' ASC'; } else { $sql = 'SELECT g.group_id, g.group_name, g.group_colour, g.group_type FROM ' . GROUPS_TABLE . ' g LEFT JOIN ' . USER_GROUP_TABLE . ' ug ON (g.group_id = ug.group_id AND ug.user_id = ' . $this->user->data['user_id'] . ' AND ug.user_pending = 0) WHERE g.group_legend <> 0 AND (g.group_type <> ' . GROUP_HIDDEN . ' OR ug.user_id = ' . (int) $this->user->data['user_id'] . ') ORDER BY g.' . $order_legend . ' ASC'; } $result = $this->db->sql_query($sql); $legend = array(); while ($row = $this->db->sql_fetchrow($result)) { $colour_text = $row['group_colour'] ? ' style="color:#' . $row['group_colour'] . '"' : ''; $group_name = $row['group_type'] == GROUP_SPECIAL ? $this->user->lang['G_' . $row['group_name']] : $row['group_name']; if ($row['group_name'] == 'BOTS' || $this->user->data['user_id'] != ANONYMOUS && !$this->auth->acl_get('u_viewprofile')) { $legend[] = '<span' . $colour_text . '>' . $group_name . '</span>'; } else { $legend[] = '<a' . $colour_text . ' href="' . append_sid("{$this->phpbb_root_path}memberlist.{$this->phpEx}", 'mode=group&g=' . $row['group_id']) . '">' . $group_name . '</a>'; } } $this->db->sql_freeresult($result); $legend = implode(', ', $legend); // Assign index specific vars $this->template->assign_vars(array('LEGEND' => $legend)); } $this->template->assign_block_vars('navlinks', array('FORUM_NAME' => $this->user->lang['MCHAT_TITLE'], 'U_VIEW_FORUM' => $this->helper->route('dmzx_mchat_controller'))); } // Run code... if ($mchat_view) { $message_number = $mchat_custom_page ? $this->config_mchat['message_limit'] : $this->config_mchat['message_num']; $sql_where = $this->user->data['user_mchat_topics'] ? '' : 'WHERE m.forum_id = 0'; // Message row $sql = 'SELECT m.*, u.username, u.user_colour, u.user_avatar, u.user_avatar_type, u.user_avatar_width, u.user_avatar_height, u.user_allow_pm FROM ' . $this->mchat_table . ' m LEFT JOIN ' . USERS_TABLE . ' u ON m.user_id = u.user_id ' . $sql_where . ' ORDER BY message_id DESC'; $result = $this->db->sql_query_limit($sql, $message_number); $rows = $this->db->sql_fetchrowset($result); $this->db->sql_freeresult($result); if ($this->config['mchat_message_top']) { $rows = array_reverse($rows, true); } foreach ($rows as $row) { // auth check if ($row['forum_id'] != 0 && !$this->auth->acl_get('f_read', $row['forum_id'])) { continue; } // edit, delete and permission auths $mchat_ban = $this->auth->acl_get('a_authusers') && $this->user->data['user_id'] != $row['user_id'] ? true : false; // edit auths if ($this->user->data['user_id'] == ANONYMOUS && $this->user->data['user_id'] == $row['user_id']) { $chat_auths = $this->user->data['session_ip'] == $row['user_ip'] ? true : false; } else { $chat_auths = $this->user->data['user_id'] == $row['user_id'] ? true : false; } $mchat_edit = $this->auth->acl_get('u_mchat_edit') && ($this->auth->acl_get('m_') || $chat_auths) ? true : false; $mchat_del = $this->auth->acl_get('u_mchat_delete') && ($this->auth->acl_get('m_') || $chat_auths) ? true : false; $mchat_avatar = $row['user_avatar'] ? get_user_avatar($row['user_avatar'], $row['user_avatar_type'], $row['user_avatar_width'] > $row['user_avatar_height'] ? 40 : 40 / $row['user_avatar_height'] * $row['user_avatar_width'], $row['user_avatar_height'] > $row['user_avatar_width'] ? 40 : 40 / $row['user_avatar_width'] * $row['user_avatar_height']) : ''; $message_edit = $row['message']; decode_message($message_edit, $row['bbcode_uid']); $message_edit = str_replace('"', '"', $message_edit); // Edit Fix ;) $message_edit = mb_ereg_replace("'", "’", $message_edit); if (sizeof($foes_array)) { if (in_array($row['user_id'], $foes_array)) { $row['message'] = sprintf($this->user->lang['MCHAT_FOE'], get_username_string('full', $row['user_id'], $row['username'], $row['user_colour'], $this->user->lang['GUEST'])); } } $row['username'] = mb_ereg_replace("'", "’", $row['username']); $message = str_replace('\'', '’', $row['message']); $this->template->assign_block_vars('mchatrow', array('MCHAT_ALLOW_BAN' => $mchat_ban, 'MCHAT_ALLOW_EDIT' => $mchat_edit, 'MCHAT_ALLOW_DEL' => $mchat_del, 'MCHAT_USER_AVATAR' => $mchat_avatar, 'U_VIEWPROFILE' => $row['user_id'] != ANONYMOUS ? append_sid("{$this->phpbb_root_path}memberlist.{$this->phpEx}", 'mode=viewprofile&u=' . $row['user_id']) : '', 'U_USER_IDS' => $row['user_id'] != ANONYMOUS && $this->user->data['user_id'] != $row['user_id'] ? append_sid("{$this->phpbb_root_path}ucp.{$this->phpEx}", 'i=pm&mode=compose&u=' . $row['user_id']) : '', 'BOT_USER_ID' => $row['user_id'] != '1', 'U_USER_ID' => $row['user_id'] != ANONYMOUS && $this->config['allow_privmsg'] && $this->auth->acl_get('u_sendpm') && $this->user->data['user_id'] != $row['user_id'] && $row['user_id'] != '1' && ($row['user_allow_pm'] || $this->auth->acl_gets('a_', 'm_') || $this->auth->acl_getf_global('m_')) ? append_sid("{$this->phpbb_root_path}ucp.{$this->phpEx}", 'i=pm&mode=compose&u=' . $row['user_id']) : '', 'MCHAT_MESSAGE_EDIT' => $message_edit, 'MCHAT_MESSAGE_ID' => $row['message_id'], 'MCHAT_USERNAME_FULL' => get_username_string('full', $row['user_id'], $row['username'], $row['user_colour'], $this->user->lang['GUEST']), 'MCHAT_USERNAME' => get_username_string('username', $row['user_id'], $row['username'], $row['user_colour'], $this->user->lang['GUEST']), 'MCHAT_USERNAME_COLOR' => get_username_string('colour', $row['user_id'], $row['username'], $row['user_colour'], $this->user->lang['GUEST']), 'MCHAT_USER_IP' => $row['user_ip'], 'MCHAT_U_WHOIS' => $this->helper->route('dmzx_mchat_controller', array('mode' => 'whois', 'ip' => $row['user_ip'])), 'MCHAT_U_BAN' => append_sid("{$this->phpbb_root_path}adm/index.{$this->phpEx}", 'i=permissions&mode=setting_user_global&user_id[0]=' . $row['user_id'], true, $this->user->session_id), 'MCHAT_MESSAGE' => generate_text_for_display($message, $row['bbcode_uid'], $row['bbcode_bitfield'], $row['bbcode_options']), 'MCHAT_TIME' => $this->user->format_date($row['message_time'], $this->config_mchat['date']), 'MCHAT_CLASS' => $row['message_id'] % 2 ? 1 : 2)); } // Write no message if (empty($rows)) { $mchat_no_message = true; } // display custom bbcodes if ($mchat_allow_bbcode && $this->config['allow_bbcode']) { $this->functions_mchat->display_mchat_bbcodes(); } // Smile row if ($mchat_smilies) { if (!function_exists('generate_smilies')) { include $this->phpbb_root_path . 'includes/functions_posting.' . $this->phpEx; } generate_smilies('inline', 0); } // If the static message is defined in the language file use it, else just use the entry in the database if (isset($this->user->lang[strtoupper('static_message')]) || !empty($this->config_mchat['static_message'])) { $this->config_mchat['static_message'] = $this->config_mchat['static_message']; if (isset($this->user->lang[strtoupper('static_message')])) { $this->config_mchat['static_message'] = $this->user->lang[strtoupper('static_message')]; } } // If the static message is defined in the language file use it, else just use the entry in the database if (isset($this->user->lang[strtoupper('mchat_rules')]) || !empty($this->config_mchat['rules'])) { if (isset($this->user->lang[strtoupper('mchat_rules')])) { $this->config_mchat['rules'] = $this->user->lang[strtoupper('mchat_rules')]; } } // a list of users using the chat if ($mchat_custom_page) { $mchat_users = $this->functions_mchat->mchat_users($mchat_session_time, true); } else { $mchat_users = $this->functions_mchat->mchat_users($mchat_session_time); } $this->template->assign_vars(array('MCHAT_USERS_COUNT' => $mchat_users['mchat_users_count'], 'MCHAT_USERS_LIST' => $mchat_users['online_userlist'])); } break; } // show index stats if (!empty($this->config['mchat_stats_index']) && !empty($this->user->data['user_mchat_stats_index'])) { // stats display $mchat_session_time = !empty($this->config_mchat['timeout']) ? $this->config_mchat['timeout'] : $this->config['session_length']; $mchat_stats = $this->functions_mchat->mchat_users($mchat_session_time); $this->template->assign_vars(array('MCHAT_INDEX_STATS' => true, 'MCHAT_INDEX_USERS_COUNT' => $mchat_stats['mchat_users_count'], 'MCHAT_INDEX_USERS_LIST' => !empty($mchat_stats['online_userlist']) ? $mchat_stats['online_userlist'] : '', 'L_MCHAT_ONLINE_EXPLAIN' => $mchat_stats['refresh_message'])); } $copyright = base64_decode('PGEgaHJlZj0iaHR0cDovL3JtY2dpcnI4My5vcmciPlJNY0dpcnI4MzwvYT4gJmNvcHk7IDxhIGhyZWY9Imh0dHA6Ly93d3cuZG16eC13ZWIubmV0IiB0aXRsZT0id3d3LmRtengtd2ViLm5ldCI+ZG16eDwvYT4='); add_form_key('mchat_posting'); // Template function... $this->template->assign_vars(array('MCHAT_FILE_NAME' => $this->helper->route('dmzx_mchat_controller'), 'MCHAT_REFRESH_JS' => 1000 * $this->config_mchat['refresh'], 'MCHAT_ADD_MESSAGE' => $mchat_add_mess, 'MCHAT_READ_MODE' => $mchat_read_mode, 'MCHAT_ARCHIVE_MODE' => $mchat_archive_mode, 'MCHAT_INPUT_TYPE' => $this->user->data['user_mchat_input_area'], 'MCHAT_RULES' => $mchat_rules, 'MCHAT_ALLOW_SMILES' => $mchat_smilies, 'MCHAT_ALLOW_IP' => $mchat_ip, 'MCHAT_ALLOW_PM' => $mchat_pm, 'MCHAT_ALLOW_LIKE' => $mchat_like, 'MCHAT_ALLOW_QUOTE' => $mchat_quote, 'MCHAT_NOMESSAGE_MODE' => $mchat_no_message, 'MCHAT_ALLOW_BBCODES' => $mchat_allow_bbcode && $this->config['allow_bbcode'] ? true : false, 'MCHAT_MESSAGE_TOP' => $this->config['mchat_message_top'] ? true : false, 'MCHAT_ENABLE' => $this->config['mchat_enable'], 'MCHAT_ARCHIVE_URL' => $this->helper->route('dmzx_mchat_controller', array('mode' => 'archive')), 'MCHAT_CUSTOM_PAGE' => $mchat_custom_page, 'MCHAT_INDEX_HEIGHT' => $this->config_mchat['index_height'], 'MCHAT_CUSTOM_HEIGHT' => $this->config_mchat['custom_height'], 'MCHAT_READ_ARCHIVE_BUTTON' => $mchat_read_archive, 'MCHAT_FOUNDER' => $mchat_founder, 'MCHAT_CLEAN_URL' => $this->helper->route('dmzx_mchat_controller', array('mode' => 'clean', 'redirect' => $on_page)), 'MCHAT_STATIC_MESS' => !empty($this->config_mchat['static_message']) ? htmlspecialchars_decode($this->config_mchat['static_message']) : '', 'L_MCHAT_COPYRIGHT' => $copyright, 'MCHAT_WHOIS' => $this->config_mchat['whois'], 'MCHAT_MESSAGE_LNGTH' => $this->config_mchat['max_message_lngth'], 'L_MCHAT_MESSAGE_LNGTH_EXPLAIN' => intval($this->config_mchat['max_message_lngth']) ? sprintf($this->user->lang['MCHAT_MESSAGE_LNGTH_EXPLAIN'], intval($this->config_mchat['max_message_lngth'])) : '', 'MCHAT_MESS_LONG' => sprintf($this->user->lang['MCHAT_MESS_LONG'], $this->config_mchat['max_message_lngth']), 'MCHAT_USER_TIMEOUT' => $this->config_mchat['timeout'] ? 1000 * $this->config_mchat['timeout'] : false, 'MCHAT_WHOIS_REFRESH' => 1000 * $this->config_mchat['whois_refresh'], 'MCHAT_PAUSE_ON_INPUT' => $this->config_mchat['pause_on_input'] ? true : false, 'L_MCHAT_ONLINE_EXPLAIN' => $this->functions_mchat->mchat_session_time($mchat_session_time), 'MCHAT_REFRESH_YES' => sprintf($this->user->lang['MCHAT_REFRESH_YES'], $this->config_mchat['refresh']), 'L_MCHAT_WHOIS_REFRESH_EXPLAIN' => sprintf($this->user->lang['WHO_IS_REFRESH_EXPLAIN'], $this->config_mchat['whois_refresh']), 'S_MCHAT_AVATARS' => $mchat_avatars, 'S_MCHAT_LOCATION' => $this->config_mchat['location'], 'S_MCHAT_SOUND_YES' => $this->user->data['user_mchat_sound'], 'S_MCHAT_INDEX_STATS' => $this->user->data['user_mchat_stats_index'], 'U_MORE_SMILIES' => append_sid("{$this->phpbb_root_path}posting.{$this->phpEx}", 'mode=smilies'), 'U_MCHAT_RULES' => $this->helper->route('dmzx_mchat_controller', array('mode' => 'rules')), 'S_MCHAT_ON_INDEX' => $this->config['mchat_on_index'] && !empty($this->user->data['user_mchat_index']) ? true : false)); // Return for: \$this->helper->render(filename, lang_title); return array('filename' => 'mchat_body.html', 'lang_title' => $this->user->lang['MCHAT_TITLE']); }
function main($id, $mode) { global $db, $user, $auth, $template; global $config, $phpbb_root_path, $phpbb_admin_path, $phpEx; //More Complicated Parts of Script switch ($mode) { case 'index': case 'view': $this->page_title = 'View Website Settings'; $this->tpl_name = 'acp_rcms_settings'; $sql = "SELECT * FROM " . SITE_SETTINGS; $result = $db->sql_query($sql); $site_settings = array(); while ($row = $db->sql_fetchrow($result)) { $site_settings[$row['setting_name']]['value'] = $row['setting_value']; $site_settings[$row['setting_name']]['type'] = $row['setting_type']; } $site_settings['welcome_text']['value'] = generate_text_for_display($site_settings['welcome_text']['value'], $site_settings['welcome_bbcode_uid']['value'], $site_settings['welcome_bbcode_bitfield']['value'], $site_settings['site_bbcode_options']['value']); $db->sql_freeresult($result); $keys = array_keys($site_settings); foreach ($keys as $key) { $template->assign_vars(array(strtoupper($key) => $site_settings[$key]['type'] == 'BOOL' ? $site_settings[$key]['value'] ? true : false : $site_settings[$key]['value'])); } $db->sql_freeresult($result); break; case 'edit': $this->page_title = 'Edit Website Settings'; $this->tpl_name = 'acp_rcms_settings_edit'; $sql = "SELECT * FROM " . SITE_SETTINGS; $result = $db->sql_query($sql); $site_settings = array(); $vars = array(); while ($row = $db->sql_fetchrow($result)) { $site_settings[$row['setting_name']] = array('setting_value' => $row['setting_value'], 'setting_type' => $row['setting_type']); $vars[strtoupper($row['setting_name'])] = $row['setting_value']; } $db->sql_freeresult($result); $forum_list = make_forum_select(false, false, true, true, true, false, true); // Build forum options $s_forum_options = '<select name="news_forum">'; foreach ($forum_list as $f_id => $f_row) { $f_row['selected'] = $site_settings['news_forum']['setting_value'] == $f_id ? true : false; $s_forum_options .= '<option value="' . $f_id . '"' . ($f_row['selected'] ? ' selected="selected"' : '') . ($f_row['disabled'] ? ' disabled="disabled" class="disabled-option"' : '') . '>' . $f_row['padding'] . $f_row['forum_name'] . '</option>'; } $s_forum_options .= '</select>'; decode_message($site_settings['welcome_text']['setting_value'], $site_settings['welcome_bbcode_uid']['setting_value']); $vars['WELCOME_TEXT'] = $site_settings['welcome_text']['setting_value']; $vars += array("FORM_ACTION" => $this->u_action, "U_BACK" => append_sid("{$phpbb_admin_path}index.{$phpEx}", 'i=rayth_cms'), "NEWS_FORUM_SELECT" => $s_forum_options); $template->assign_vars($vars); $db->sql_freeresult($result); $update = isset($_POST['save_settings']) ? true : false; if ($update) { $welcome_text = request_var('welcome_text', 'Some Text Here'); $news_forum = request_var('news_forum', 2); $news_post_count = request_var('news_post_count', 0); $welcome_text = utf8_normalize_nfc($welcome_text); $uid = $bitfield = $options = ''; // will be modified by generate_text_for_storage $allow_bbcode = $allow_urls = $allow_smilies = true; $display_sidebar = request_var('display_sidebar', 0); $sidebar_recent_reply_count = request_var('sidebar_recent_reply_count', 0); generate_text_for_storage($welcome_text, $uid, $bitfield, $options, $allow_bbcode, $allow_urls, $allow_smilies); $db->sql_query("UPDATE " . SITE_SETTINGS . " SET setting_value='{$uid}' WHERE setting_name='welcome_bbcode_uid';"); $db->sql_query("UPDATE " . SITE_SETTINGS . " SET setting_value='{$bitfield}' WHERE setting_name='welcome_bbcode_bitfield';"); $db->sql_query("UPDATE " . SITE_SETTINGS . " SET setting_value=\"{$welcome_text}\" WHERE setting_name='welcome_text';"); $site_settings['welcome_text']['setting_value'] = $welcome_text; $db->sql_query("UPDATE " . SITE_SETTINGS . " SET setting_value=\"{$news_forum}\" WHERE setting_name='news_forum';"); $site_settings['news_forum']['setting_value'] = $news_forum; $db->sql_query("UPDATE " . SITE_SETTINGS . " SET setting_value=\"{$news_post_count}\" WHERE setting_name='news_post_count';"); $site_settings['news_post_count']['setting_value'] = $news_post_count; $db->sql_query("UPDATE " . SITE_SETTINGS . " SET setting_value=\"{$display_sidebar}\" WHERE setting_name='display_sidebar';"); $site_settings['display_sidebar']['setting_value'] = $display_sidebar; $db->sql_query("UPDATE " . SITE_SETTINGS . " SET setting_value=\"{$sidebar_recent_reply_count}\" WHERE setting_name='sidebar_recent_reply_count';"); $site_settings['sidebar_recent_reply_count']['setting_value'] = $sidebar_recent_reply_count; $message = "Site Settings have been Updated."; $message .= '<br /><br />'; trigger_error($message . adm_back_link(append_sid("{$phpbb_admin_path}index.{$phpEx}", 'i=rayth_cms'))); } break; case 'pages': $this->page_title = 'Manage Pages'; $this->tpl_name = 'acp_rcms_page_list'; $sql = "SELECT * FROM " . SITE_PAGES . " WHERE parent=0 ORDER BY page_name ASC"; $result = $db->sql_query($sql); while ($row = $db->sql_fetchrow($result)) { $sql = "SELECT * FROM " . SITE_PAGES . " WHERE parent={$row['page_id']}"; $sub_page_result = $db->sql_query($sql); $sql = "SELECT COUNT(*) as total_subs FROM " . SITE_PAGES . " WHERE parent={$row['page_id']}"; $sub_page_count_row = $db->sql_fetchrow($db->sql_query($sql)); $subpage_count = $sub_page_count_row['total_subs']; if ($subpage_count > 0) { $subpages = "<table cellspacing=\"1\">"; $subpages .= "<col class=\"col1\"/><col class=\"col2\"/><col class=\"col1\"/><col class=\"col2\"/><col class=\"col1\"/>"; $subpages .= "<th>Page Name</th><th>Identifier</th><th>Last Updated</th><th>Edit</th><th>Delete</th>"; while ($sub_row = $db->sql_fetchrow($sub_page_result)) { $subpages .= "<tr>"; $subpages .= "<td>{$sub_row['page_name']}</td>"; $subpages .= "<td style=\"text-align: center;\">{$sub_row['page_identifier']}</td>"; $subpages .= "<td style=\"text-align: center;\">" . date($user->data['user_dateformat'], $sub_row['last_updated']) . "</td>"; $subpages .= "<td style=\"text-align: center;\"><a href=\"" . append_sid("{$phpbb_admin_path}index.{$phpEx}", "i=rayth_cms&mode=pagemanage&act=edit&id={$sub_row['page_id']}") . "\">Edit</a></td>"; $subpages .= "<td style=\"text-align: center;\"><a href=\"" . append_sid("{$phpbb_admin_path}index.{$phpEx}", "i=rayth_cms&mode=pagemanage&act=del&id={$sub_row['page_id']}") . "\">Delete</a></td>"; $subpages .= "</tr>"; } $subpages .= "</table>"; } else { $subpages = null; } $db->sql_freeresult($sub_page_result); $navbar = $row['in_navbar'] ? true : false; $template->assign_block_vars('page', array('NAME' => $row['page_name'], 'IDENTIFIER' => $row['page_identifier'], 'LAST_UPDATE' => date($user->data['user_dateformat'], $row['last_updated']), 'NAVBAR' => $navbar, 'SUBPAGES' => $subpages, 'EDIT_URL' => append_sid("{$phpbb_admin_path}index.{$phpEx}", "i=rayth_cms&mode=pagemanage&act=edit&id={$row['page_id']}"), 'DEL_URL' => append_sid("{$phpbb_admin_path}index.{$phpEx}", "i=rayth_cms&mode=pagemanage&act=del&id={$row['page_id']}"))); } $db->sql_freeresult($result); break; case 'pagemanage': $this->page_title = 'Managing Page'; $this->tpl_name = 'acp_rcms_page_manage'; $page_id = request_var('id', 0); $act = request_var('act', 'add'); $confirm = false; if (!confirm_box(true)) { switch ($act) { case 'del': $confirm = true; $confirm_lang = "Are you sure you want to delete this page and all sub-pages?"; } if ($confirm) { confirm_box(false, $confirm_lang, build_hidden_fields(array('id' => $page_id, 'mode' => $mode, 'act' => $act))); } } else { switch ($act) { case 'del': $sql = "DELETE FROM " . SITE_PAGES . " WHERE page_id={$page_id};"; $db->sql_query($sql); $sql = "DELETE FROM " . SITE_PAGES . " WHERE parent={$page_id};"; $db->sql_query($sql); $message = "Page, and sub-pages deleted successfully."; trigger_error($message . adm_back_link(append_sid("{$phpbb_admin_path}index.{$phpEx}", 'i=rayth_cms&mode=pages'))); } } if ($act == 'add' || $act == 'edit' && $page_id > 0) { if (isset($_POST[$act . '_save_btn'])) { $array = array(); $array['page_text'] = request_var('page_text', 'None specified'); $array['page_name'] = request_var('page_name', ''); $array['desc_parse_bbcode'] = request_var('desc_parse_bbcode', false); $array['desc_parse_urls'] = request_var('desc_parse_urls', false); $array['desc_parse_smilies'] = request_var('desc_parse_smilies', false); $array['page_identifier'] = request_var('page_identifier', ''); $array['in_navbar'] = request_var('in_navbar', 0); $array['parent'] = request_var('parent', 0); $bitfield = $uid = $options = ''; $allow_bbcode = $array['desc_parse_bbcode'] ? true : false; $allow_urls = $array['desc_parse_urls'] ? true : false; $allow_smilies = $array['desc_parse_smilies'] ? true : false; $array['page_text'] = utf8_normalize_nfc($array['page_text']); generate_text_for_storage($array['page_text'], $uid, $bitfield, $options, $allow_bbcode, $allow_urls, $allow_smilies); $array['bbcode_bitfield'] = $bitfield; $array['bbcode_uid'] = $uid; $array['last_updated'] = time(); $array['page_name'] = utf8_normalize_nfc(htmlentities($array['page_name'])); //$array['page_identifier'] = $array['page_identifier']; $allow_bbcode = $array['desc_parse_bbcode'] ? 1 : 0; $allow_urls = $array['desc_parse_urls'] ? 1 : 0; $allow_smilies = $array['desc_parse_smilies'] ? 1 : 0; if ($act == 'add') { $sql = "INSERT INTO " . SITE_PAGES . " (page_name,parent,page_identifier,page_text,in_navbar,bbcode_bitfield,bbcode_uid,last_updated,enable_bbcode,enable_smilies,enable_magic_url) " . "VALUES (\"{$array['page_name']}\",{$array['parent']},'{$array['page_identifier']}',\"{$array['page_text']}\",{$array['in_navbar']},'{$bitfield}','{$uid}'," . time() . ",{$allow_bbcode},{$allow_smilies},{$allow_urls});"; } if ($act == 'edit') { $sql = "UPDATE " . SITE_PAGES . " SET page_identifier='{$array['page_identifier']}'," . " page_name=\"{$array['page_name']}\", parent={$array['parent']}, page_text=\"{$array['page_text']}\", in_navbar={$array['in_navbar']}," . " enable_bbcode={$allow_bbcode}, enable_smilies={$allow_smilies}, enable_magic_url={$allow_urls}," . " bbcode_bitfield='{$bitfield}', bbcode_uid='{$uid}', last_updated=" . time() . " WHERE page_id={$page_id};"; } $db->sql_query($sql); $message = "Page Saved Successfully."; trigger_error($message . adm_back_link(append_sid("{$phpbb_admin_path}index.{$phpEx}", 'i=rayth_cms&mode=pages'))); } else { if ($act == 'edit') { $sql = "SELECT * FROM " . SITE_PAGES . " WHERE page_id={$page_id};"; $result = $db->sql_query($sql); $row = $db->sql_fetchrow($result); if (!$row['page_id']) { $message = "The page you have selected does not exist."; trigger_error($message . adm_back_link(append_sid("{$phpbb_admin_path}index.{$phpEx}", 'i=rayth_cms&mode=pages'))); } decode_message($row['page_text'], $row['bbcode_uid']); $parent_select = $this->generate_parent_select($row['parent']); $template->assign_vars(array('TITLE' => 'Editing Page :: ' . $row['page_name'], 'DESC_LANG' => 'Edit the information below', 'NAME' => $row['page_name'], 'IDENTIFIER' => $row['page_identifier'], 'NAVBAR' => $row['in_navbar'], 'ALLOW_BBCODE' => $row['enable_bbcode'], 'PARSE_URLS' => $row['enable_magic_url'], 'ALLOW_SMILIES' => $row['enable_smilies'], 'TEXT' => $row['page_text'], 'PARENT_SELECT' => $parent_select, 'SAVE_BTN_NAME' => $act . '_save_btn', 'FORM_ACTION' => append_sid("{$phpbb_admin_path}index.{$phpEx}", 'i=rayth_cms&mode=pagemanage&act=' . $act . '&id=' . $page_id))); $db->sql_freeresult($result); } if ($act == 'add') { $parent_select = $this->generate_parent_select(); $template->assign_vars(array('TITLE' => 'Adding Page', 'DESC_LANG' => 'Fill in the information below', 'NAME' => '', 'IDENTIFIER' => '', 'NAVBAR' => false, 'TEXT' => '', 'PARENT_SELECT' => $parent_select, 'SAVE_BTN_NAME' => "{$act}_save_btn", 'FORM_ACTION' => append_sid("{$phpbb_admin_path}index.{$phpEx}", 'i=rayth_cms&mode=pagemanage&act=' . $act))); } } } else { $message = "You failed to select a page to edit."; trigger_error($message . adm_back_link(append_sid("{$phpbb_admin_path}index.{$phpEx}", 'i=rayth_cms&mode=pages'))); } break; } }
public function posting_modify_submit_post_after($event) { // only trigger if mode is post $mchat_forums_allowed = array(); if ($event['mode'] == 'post' || $event['mode'] == 'reply' || $event['mode'] == 'quote' || $event['mode'] == 'edit' && (isset($this->config['mchat_enable']) && $this->config['mchat_enable']) && (isset($this->config['mchat_new_posts']) && $this->config['mchat_new_posts'])) { if ($event['mode'] == 'post' && (isset($this->config['mchat_new_posts_topic']) && $this->config['mchat_new_posts_topic'])) { $mchat_new_data = $this->user->lang['MCHAT_NEW_TOPIC']; } else { if ($event['mode'] == 'quote' && (isset($this->config['mchat_new_posts_quote']) && $this->config['mchat_new_posts_quote'])) { $mchat_new_data = $this->user->lang['MCHAT_NEW_QUOTE']; } else { if ($event['mode'] == 'edit' && (isset($this->config['mchat_new_posts_edit']) && $this->config['mchat_new_posts_edit'])) { $mchat_new_data = $this->user->lang['MCHAT_NEW_EDIT']; } else { if ($event['mode'] == 'reply' && (isset($this->config['mchat_new_posts_reply']) && $this->config['mchat_new_posts_reply'])) { $mchat_new_data = $this->user->lang['MCHAT_NEW_REPLY']; } else { return; } } } } // Data... $message = utf8_normalize_nfc($mchat_new_data . ': [url=' . generate_board_url() . '/viewtopic.' . $this->phpEx . '?p=' . $event['data']['post_id'] . '#p' . $event['data']['post_id'] . ']' . $event['post_data']['post_subject'] . '[/url] ' . $this->user->lang['MCHAT_IN'] . ' [url=' . generate_board_url() . '/viewforum.' . $this->phpEx . '?f=' . $event['forum_id'] . ']' . $event['post_data']['forum_name'] . ' [/url] ' . $this->user->lang['MCHAT_IN_SECTION']); $uid = $bitfield = $options = ''; // will be modified by generate_text_for_storage generate_text_for_storage($message, $uid, $bitfield, $options, true, false, false); $sql_ary = array('forum_id' => $event['forum_id'], 'post_id' => $event['post_id'], 'user_id' => $this->user->data['user_id'], 'user_ip' => $this->user->data['session_ip'], 'message' => $message, 'bbcode_bitfield' => $bitfield, 'bbcode_uid' => $uid, 'bbcode_options' => $options, 'message_time' => time()); $sql = 'INSERT INTO ' . $this->mchat_table . ' ' . $this->db->sql_build_array('INSERT', $sql_ary); $this->db->sql_query($sql); } }
/** * Run EPV test on new submissions and submit results to queue topic. * * @param \titania_contribution $contrib * @param \titania_revision $revision * @param attachment $attachment * @param string $download_package * @param package $package * @param template $template * @return array Returns array containing any errors found. */ public function epv_test(\titania_contribution $contrib, \titania_revision $revision, attachment $attachment, $download_package, package $package, template $template) { try { $this->repack($package, $contrib, $revision); } catch (\Exception $e) { return array('error' => array($this->user->lang($e->getMessage()))); } $prevalidator = $this->get_prevalidator(); $results = $prevalidator->run_epv($package->get_temp_path()); $uid = $bitfield = $flags = false; generate_text_for_storage($results, $uid, $bitfield, $flags, true, true, true); // Add the prevalidator results to the queue $queue = $revision->get_queue(); $queue->mpv_results = $results; $queue->mpv_results_bitfield = $bitfield; $queue->mpv_results_uid = $uid; $queue->submit(); $results = generate_text_for_display($results, $uid, $bitfield, $flags); $template->assign_var('PV_RESULTS', $results); return array(); }
function main($id, $mode) { global $user, $config, $db, $table_prefix; global $template, $phpbb_root_path, $phpEx; global $request, $phpbb_container; $this->user = $user; $this->db = $db; $this->helper = $phpbb_container->get('controller.helper'); if (!defined('RATING_TABLE')) { define('RATING_TABLE', $table_prefix . 'rating'); } if (!defined('RATING_CAT_TABLE')) { define('RATING_CAT_TABLE', $table_prefix . 'rating_cat'); } if (!defined('RATING_ICON_TABLE')) { define('RATING_ICON_TABLE', $table_prefix . 'rating_icon'); } $submit = $request->is_set_post('submit') ? true : false; $action = $request->variable('action', ''); $error = array(); $s_hidden_fields = array(); switch ($mode) { case 'main': switch ($action) { case 'add': if (!$config['top_rating_type'] || $config['top_rating_type'] == 1) { trigger_error($this->user->lang['TOP_ADD_NOT']); } $top_name = utf8_normalize_nfc($request->variable('top_name', '', true)); $top_desc = utf8_normalize_nfc($request->variable('top_desc', '', true)); $top_url = utf8_normalize_nfc($request->variable('top_url', '', true)); $cat_id = $request->variable('cat_id', 0); $cats = $this->rating_category($cat_id); if ($submit) { $parseurl = parse_url(trim($top_url)); $host = $parseurl['host']; $scheme = $parseurl['scheme']; $reparse = explode('.', $host); $zona = $reparse[count($reparse) - 1]; if (!preg_match('/^http(s)?:\\/\\//i', $top_url) || !str_replace(array('.' . $zona, $zona), '', $host)) { $error[] = $this->user->lang['TOP_URL_ERROR']; } else { $top_url = $scheme . '://' . $host; } $char = mb_strlen($top_name); if ($char < $this->min_name || $char > $this->max_name) { $error[] = $char > $this->max_name ? $this->user->lang['TOP_NAME_ERROR2'] : $this->user->lang['TOP_NAME_ERROR']; } if (mb_strlen($top_desc) < $this->min_desc) { $error[] = $this->user->lang['TOP_DESC_ERROR']; } if (!isset($cats[$cat_id]['cat_id'])) { trigger_error('ZALUPA!!!'); } $sql = 'SELECT COUNT(top_id) AS num_top FROM ' . RATING_TABLE . ' WHERE top_url = "' . $top_url . '"'; $result = $this->db->sql_query($sql); if ($this->db->sql_fetchfield('num_top')) { $error[] = $this->user->lang['TOP_URL_VALID']; } $this->db->sql_freeresult($result); if (!sizeof($error)) { $top_desc .= PHP_EOL . '[url=' . $top_url . ']' . str_replace('http://', '', $top_url) . '[/url]'; require_once $phpbb_root_path . 'includes/functions_posting.' . $phpEx; // variables to hold the parameters for submit_post $poll = $uid = $bitfield = $options = ''; generate_text_for_storage($top_name, $uid, $bitfield, $options, false, false, false); generate_text_for_storage($top_desc, $uid, $bitfield, $options, true, true, true); $data = array('forum_id' => $config['top_rating_forum'], 'topic_id' => '', 'icon_id' => false, 'enable_bbcode' => true, 'enable_smilies' => true, 'enable_urls' => true, 'enable_sig' => true, 'from_user_id' => $this->user->data['user_id'], 'from_username' => $this->user->data['username'], 'from_user_ip' => $this->user->data['user_ip'], 'message' => $top_desc, 'message_md5' => md5($top_desc), 'bbcode_bitfield' => $bitfield, 'bbcode_uid' => $uid, 'post_edit_locked' => 1, 'topic_title' => $top_name, 'notify_set' => false, 'notify' => false, 'post_time' => 0, 'forum_name' => '', 'enable_indexing' => true); submit_post('post', $top_name, '', POST_NORMAL, $poll, $data); $sql = 'INSERT INTO ' . RATING_TABLE . ' ' . $this->db->sql_build_array('INSERT', array('cat_id' => $cats[$cat_id]['cat_id'], 'topic_id' => $data['topic_id'], 'user_id' => $this->user->data['user_id'], 'top_url' => $top_url, 'top_type' => 1, 'top_time_add' => time())); $this->db->sql_query($sql); $top_id = $this->db->sql_nextid(); $sql = 'UPDATE ' . RATING_CAT_TABLE . ' SET cat_top_site = cat_top_site + 1, cat_top_new = cat_top_new + 1 WHERE cat_id = ' . $cats[$cat_id]['cat_id']; $this->db->sql_query($sql); $meta_info = append_sid("{$phpbb_root_path}ucp.{$phpEx}", "i={$id}&mode=manage&top_id={$top_id}&action=editcount"); meta_refresh(3, $meta_info); trigger_error(sprintf($this->user->lang['TOP_ADD_GOOD'], $meta_info)); } } $options = ''; foreach ($cats as $key => $value) { $options .= '<option value="' . $value['cat_id'] . '"' . ($value['cat_id'] == $cat_id ? ' selected="selected"' : '') . '>' . $value['cat_title'] . '</option>'; } $s_hidden_fields['action'] = 'add'; $template->assign_vars(array('L_TOP_DESC_EXPLAIN' => sprintf($this->user->lang['TOP_DESC_EXPLAIN'], $this->min_desc), 'L_TOP_NAME_EXPLAIN' => sprintf($this->user->lang['TOP_NAME_EXPLAIN'], $this->min_name, $this->max_name), 'TOP_NAME' => $top_name, 'TOP_URL' => $top_url, 'TOP_DESC' => $top_desc, 'TOP_CATS' => $options)); $this->tpl_name = 'ucp_rating_add'; $this->page_title = $this->user->lang['UCP_RATING_ADD']; break; default: $sql_array = array('SELECT' => 'r.*', 'FROM' => array(RATING_TABLE => 'r')); $sql_array['SELECT'] .= ', t.topic_title, p.post_text'; $sql_array['LEFT_JOIN'][] = array('FROM' => array(TOPICS_TABLE => 't'), 'ON' => 'r.topic_id = t.topic_id'); $sql_array['LEFT_JOIN'][] = array('FROM' => array(POSTS_TABLE => 'p'), 'ON' => 't.topic_first_post_id = p.post_id'); $sql_array['WHERE'] = "r.user_id = " . $this->user->data['user_id']; $sql = $this->db->sql_build_query('SELECT', $sql_array); $result = $this->db->sql_query($sql); while ($row = $this->db->sql_fetchrow($result)) { $top_name = str_replace(array('http://', 'https://'), '', $row['top_url']); if (!empty($row['topic_title'])) { $top_name = $row['topic_title'] . ' (' . $top_name . ')'; } // Limit chars $top_desc = $row['post_text']; if (mb_strlen($top_desc) >= $config['top_desc_lenght']) { $view_topic_url = append_sid("{$phpbb_root_path}viewtopic.{$phpEx}", 't=' . $row['topic_id']); $top_desc = mb_substr($top_desc, 0, $config['top_desc_lenght']) . '<a href="' . $view_topic_url . '">[...]</a>'; } $template->assign_block_vars('toprow', array('TOP_NAME' => $top_name, 'TOP_DESC' => $top_desc, 'TOP_URL' => $row['top_url'], 'TOP_HOSTS' => $row['top_hosts'], 'TOP_HITS' => $row['top_hits'], 'TOP_IN' => $row['top_in'], 'TOP_OUT' => $row['top_out'], 'TOP_STATS' => $this->helper->route('bb3top_rating_stats', array('top_id' => $row['top_id'])))); } $this->db->sql_freeresult($result); $template->assign_vars(array('U_ADD_PLATFORM' => append_sid($this->u_action . '&action=add'), 'S_ADD_PLATFORM' => $config['top_rating_type'] == 1 ? false : true)); if (!$config['top_rating_type'] || $config['top_rating_type'] == 1) { $error[] = $this->user->lang['TOP_ADD_NOT']; } $this->tpl_name = 'ucp_rating'; $this->page_title = $this->user->lang['UCP_RATING_MAIN']; break; } if ($config['top_rating_anounce']) { $this->view_announce(); } break; case 'manage': $top_id = $request->variable('top_id', 0); switch ($action) { case 'delete': if (!$top_id) { meta_refresh(3, $this->u_action); $message = $this->user->lang['PLATFORM_ERROR'] . '<br /><br />'; $message .= sprintf($this->user->lang['RETURN_UCP'], '<a href="' . $this->u_action . '">', '</a>'); trigger_error($message); } $toprow = $this->rating_top($top_id); if (confirm_box(true)) { $sql = 'DELETE FROM `' . RATING_TABLE . '` WHERE `top_id` = ' . $toprow['top_id']; $this->db->sql_query($sql); $cats = $this->rating_category($toprow['cat_id']); if (!empty($cats[$toprow['cat_id']]['cat_top_site'])) { $sql_upd = array('cat_top_site' => $cats[$toprow['cat_id']]['cat_top_site'] - 1); if (!empty($cats[$toprow['cat_id']]['cat_top_new']) && $toprow['top_type'] == 1) { $sql_upd['cat_top_new'] = $cats[$toprow['cat_id']]['cat_top_new'] - 1; } $sql = 'UPDATE ' . RATING_CAT_TABLE . ' SET ' . $this->db->sql_build_array('UPDATE', $sql_upd) . ' WHERE cat_id = ' . $toprow['cat_id']; $this->db->sql_query($sql); } meta_refresh(3, $this->u_action); $message = $this->user->lang['TOP_DEL_GOOD'] . '<br /><br />'; $message .= sprintf($this->user->lang['RETURN_UCP'], '<a href="' . $this->u_action . '">', '</a>'); trigger_error($message); } else { confirm_box(false, $this->user->lang['CONFIRM_OPERATION'], build_hidden_fields(array('i' => $id, 'mode' => $mode, 'action' => 'delete', 'top_id' => $toprow['top_id']))); } redirect($this->u_action); break; case 'editcount': if (!$top_id) { meta_refresh(3, $this->u_action); $message = $this->user->lang['PLATFORM_ERROR'] . '<br /><br />'; $message .= sprintf($this->user->lang['RETURN_UCP'], '<a href="' . $this->u_action . '">', '</a>'); trigger_error($message); } $toprow = $this->rating_top($top_id); $file_img = array(); $sql = 'SELECT * FROM ' . RATING_ICON_TABLE . ' WHERE (cat_id = 0 OR cat_id = ' . (int) $toprow['cat_id'] . ')'; $result = $this->db->sql_query($sql); $counts = array(); while ($row = $this->db->sql_fetchrow($result)) { $counts[$row['file']] = $row; } $this->db->sql_freeresult($result); $arcount = array(); foreach ($this->user->lang['TOP_COUNT_TYPE'] as $type => $name) { if (!empty($this->user->lang['TOP_COUNTS_' . strtoupper($type)])) { $name = $this->user->lang['TOP_COUNTS_' . strtoupper($type)]; } $template->assign_block_vars('counts', array('COUNT_NAME' => $name, 'COUNT_TYPE' => $type)); foreach ($counts as $row) { if ($row['type'] == $type) { $file = $row['file']; $icon_big = explode(";", $toprow['top_icon_big']); $icon_small = explode(";", $toprow['top_icon_small']); $checked = $icon_big[0] == $file || $icon_small[0] == $file ? ' checked="checked"' : ''; $template->assign_block_vars('counts.rows', array('COUNT_IMG' => $phpbb_root_path . 'images/counts/' . $file, 'COUNT_VALUE' => $file, 'COUNT_CHEKED' => $checked, 'COUNT_ID' => str_replace(array('.gif', '.png', '.jpg'), '', $file))); $file_img[$file] = $file; } } } if ($submit) { $small = $request->variable('small', '', true); $big = $request->variable('big', '', true); if (!empty($file_img[$small]) && !empty($file_img[$big])) { $small_type = ''; $big_type = ''; if (!empty($counts[$small]['position'])) { $small_type .= ';' . $counts[$small]['position']; } if (!empty($counts[$big]['position'])) { $big_type .= ';' . $counts[$big]['position']; } if (!empty($counts[$small]['color'])) { $small_type .= !$small_type ? ';all;#' . $counts[$small]['color'] : ';#' . $counts[$small]['color']; } if (!empty($counts[$big]['color'])) { $big_type .= !$big_type ? ';h;#' . $counts[$big]['color'] : ';#' . $counts[$big]['color']; } $sql = 'UPDATE ' . RATING_TABLE . ' SET ' . $this->db->sql_build_array('UPDATE', array('top_icon_big' => (string) $big . $big_type, 'top_icon_small' => (string) $small . $small_type)) . ' WHERE top_id = "' . (int) $toprow['top_id'] . '"'; $this->db->sql_query($sql); $meta_info = append_sid("{$phpbb_root_path}ucp.{$phpEx}", "i={$id}&mode=manage&top_id={$top_id}&action=code"); meta_refresh(3, $meta_info); trigger_error(sprintf($this->user->lang['TOP_COUNT_GOOD'], $meta_info)); } else { $error[] = $this->user->lang['TOP_COUNT_ERROR']; } } $s_hidden_fields = array_merge($s_hidden_fields, array('action' => 'editcount', 'top_id' => $top_id)); $this->tpl_name = 'ucp_rating_count'; $this->page_title = $this->user->lang['UCP_RATING_MAIN']; break; case 'code': if (!$top_id) { meta_refresh(3, $this->u_action); $message = $this->user->lang['PLATFORM_ERROR'] . '<br /><br />'; $message .= sprintf($this->user->lang['RETURN_UCP'], '<a href="' . $this->u_action . '">', '</a>'); trigger_error($message); } $toprow = $this->rating_top($top_id); $template->assign_vars(array('S_COUNT_CODE' => true, 'U_EDIT_COUNT' => append_sid($this->u_action . '&top_id=' . $toprow['top_id'] . '&action=editcount'))); foreach ($this->user->lang['TOP_COUNT_TYPE'] as $type => $name) { if (isset($toprow['top_icon_' . $type])) { $top_icon = explode(";", $toprow['top_icon_' . $type]); $image_url = $phpbb_root_path . 'images/counts/' . $top_icon[0]; $width = $height = 0; if (file_exists($image_url)) { $image_info = @getimagesize($image_url); $width = $image_info[0]; $height = $image_info[1]; } $c_params = array('action' => $type, 'top_id' => $toprow['top_id']); $u_params = array('top_id' => $toprow['top_id']); $template->assign_block_vars('counts', array('COUNT_TYPE' => $name, 'COUNT_IMG' => $this->helper->route('bb3top_rating_counter', $c_params, false, '', true), 'COUNT_URL' => $this->helper->route('bb3top_rating_in', $u_params, false, '', true), 'COUNT_WIDTH' => $width, 'COUNT_HEIGHT' => $height, 'IMAGE_URL' => $image_url)); } } $this->tpl_name = 'ucp_rating_count'; $this->page_title = $this->user->lang['UCP_RATING_MAIN']; break; case 'open': case 'closed': if (!$top_id) { meta_refresh(3, $this->u_action); $message = $this->user->lang['PLATFORM_ERROR'] . '<br /><br />'; $message .= sprintf($this->user->lang['RETURN_UCP'], '<a href="' . $this->u_action . '">', '</a>'); trigger_error($message); } $toprow = $this->rating_top($top_id); if ($toprow['top_type'] == 1) { trigger_error($this->user->lang['FORM_INVALID']); } $sql = 'UPDATE ' . RATING_TABLE . ' SET top_type = ' . ($action == 'open' ? 0 : 2) . ' WHERE top_id = "' . (int) $toprow['top_id'] . '"'; $this->db->sql_query($sql); $meta_info = append_sid("{$phpbb_root_path}ucp.{$phpEx}", "i={$id}&mode=manage"); meta_refresh(3, $meta_info); $message = $action == 'open' ? $this->user->lang['ENABLED'] : $this->user->lang['DISABLED']; $message = sprintf($this->user->lang['TOP_STATS_GOOD'], $message, $this->u_action); trigger_error($message); break; default: $sql_array = array('SELECT' => 'r.top_id, r.top_url, r.top_icon_big, r.top_icon_small, r.top_type', 'FROM' => array(RATING_TABLE => 'r')); $sql_array['SELECT'] .= ', t.topic_title, t.topic_id'; $sql_array['LEFT_JOIN'][] = array('FROM' => array(TOPICS_TABLE => 't'), 'ON' => 'r.topic_id = t.topic_id'); $sql_array['WHERE'] = "r.user_id = " . $this->user->data['user_id']; $sql = $this->db->sql_build_query('SELECT', $sql_array); $result = $this->db->sql_query($sql); while ($row = $this->db->sql_fetchrow($result)) { $top_url = $row['top_url']; $top_name = str_replace(array('http://', 'https://'), '', $row['top_url']); if (!empty($row['topic_title'])) { $top_name = $row['topic_title'] . ' (' . $top_name . ')'; $top_url = append_sid("{$phpbb_root_path}viewtopic.{$phpEx}", 't=' . $row['topic_id']); } $template->assign_block_vars('toprow', array('TOP_NAME' => $top_name, 'TOP_URL' => $top_url, 'U_EDIT_COUNT' => append_sid($this->u_action . '&top_id=' . $row['top_id'] . '&action=editcount'), 'U_DEL_PLATFORM' => append_sid($this->u_action . '&top_id=' . $row['top_id'] . '&action=delete'), 'U_COUNT_CODE' => append_sid($this->u_action . '&top_id=' . $row['top_id'] . '&action=code'), 'U_CLOSED_STATS' => $this->u_action . '&top_id=' . $row['top_id'] . '&action=closed', 'U_OPEN_STATS' => $this->u_action . '&top_id=' . $row['top_id'] . '&action=open', 'S_COUNT_CODE' => $row['top_icon_big'] || $row['top_icon_small'] ? true : false, 'S_TOP_TYPE' => $row['top_type'])); } $this->db->sql_freeresult($result); if (!$config['top_rating_type'] || $config['top_rating_type'] == 1) { $error[] = $this->user->lang['TOP_ADD_NOT']; } $this->tpl_name = 'ucp_rating_manage'; $this->page_title = $this->user->lang['UCP_RATING_MAIN']; break; } break; default: trigger_error('NO_MODE'); break; } $s_hidden_fields = build_hidden_fields($s_hidden_fields); $template->assign_vars(array('ERROR' => sizeof($error) ? implode('<br />', $error) : '', 'S_HIDDEN_FIELDS' => $s_hidden_fields, 'S_UCP_ACTION' => $this->u_action)); }
/** * Perform actions on a user's profile from the acp_users file */ function blog_acp_profile($user_id, $submit) { global $db, $phpbb_root_path, $phpEx, $template, $user; $user->add_lang(array('mods/blog/common', 'mods/blog/ucp')); include "{$phpbb_root_path}blog/includes/functions.{$phpEx}"; include "{$phpbb_root_path}blog/includes/constants.{$phpEx}"; include $phpbb_root_path . 'blog/plugins/plugins.' . $phpEx; new blog_plugins(); if ($submit) { $blog_description = utf8_normalize_nfc(request_var('blog_description', '', true)); $blog_description_uid = $blog_description_bitfield = $blog_description_options = ''; generate_text_for_storage($blog_description, $blog_description_uid, $blog_description_bitfield, $blog_description_options, true, true, true); $blog_data = array('title' => utf8_normalize_nfc(request_var('blog_title', '', true)), 'description' => $blog_description, 'description_bbcode_bitfield' => $blog_description_bitfield, 'description_bbcode_uid' => $blog_description_uid, 'blog_style' => request_var('blog_style', ''), 'blog_css' => request_var('blog_css', '')); update_user_blog_settings($user_id, $blog_data); } else { global $user_settings; get_user_settings($user_id); $available_styles = array(array('name' => $user->lang['NONE'], 'value' => 0, 'demo' => $phpbb_root_path . 'images/spacer.gif')); $sql = 'SELECT * FROM ' . STYLES_TABLE . ' s, ' . STYLES_TEMPLATE_TABLE . ' st WHERE style_active = 1 AND s.template_id = st.template_id'; $result = $db->sql_query($sql); while ($row = $db->sql_fetchrow($result)) { $demo = $phpbb_root_path . 'images/spacer.gif'; if (@file_exists($phpbb_root_path . 'styles/' . $row['template_path'] . '/template/blog/demo.png')) { $demo = $phpbb_root_path . 'styles/' . $row['template_path'] . '/template/blog/demo.png'; } else { if (@file_exists($phpbb_root_path . 'styles/' . $row['template_path'] . '/template/blog/demo.gif')) { $demo = $phpbb_root_path . 'styles/' . $row['template_path'] . '/template/blog/demo.gif'; } else { if (@file_exists($phpbb_root_path . 'styles/' . $row['template_path'] . '/template/blog/demo.jpg')) { $demo = $phpbb_root_path . 'styles/' . $row['template_path'] . '/template/blog/demo.jpg'; } } } $available_styles[] = array('name' => $row['style_name'], 'value' => $row['style_id'], 'demo' => $demo); } $db->sql_freeresult($result); $dh = @opendir($phpbb_root_path . 'blog/styles/'); if ($dh) { while (($file = readdir($dh)) !== false) { if (file_exists($phpbb_root_path . 'blog/styles/' . $file . '/style.' . $phpEx)) { // Inside of the style.php file, add to the $available_styles array include $phpbb_root_path . 'blog/styles/' . $file . '/style.' . $phpEx; } } closedir($dh); } foreach ($available_styles as $row) { if (isset($user_settings[$user_id]) && $user_settings[$user_id]['blog_style'] == $row['value'] && isset($row['demo']) && $row['demo']) { $default_demo = $row['demo']; } $template->assign_block_vars('blog_styles', array('VALUE' => $row['value'], 'SELECTED' => isset($user_settings[$user_id]) && $user_settings[$user_id]['blog_style'] == $row['value'] ? true : false, 'NAME' => $row['name'], 'BLOG_CSS' => isset($row['blog_css']) && $row['blog_css'] ? true : false, 'DEMO' => isset($row['demo']) && $row['demo'] ? $row['demo'] : '')); } if (isset($user_settings[$user_id])) { decode_message($user_settings[$user_id]['description'], $user_settings[$user_id]['description_bbcode_uid']); $template->assign_vars(array('BLOG_TITLE' => $user_settings[$user_id]['title'], 'BLOG_DESCRIPTION' => $user_settings[$user_id]['description'], 'DEFAULT_DEMO' => isset($default_demo) ? $default_demo : $phpbb_root_path . 'images/spacer.gif', 'BLOG_CSS' => $user_settings[$user_id]['blog_css'])); } blog_plugins::plugin_do_arg('function_blog_acp_profile', compact('blog_data', 'user_id')); } }
function add_rep_meeting($users = false, $id, $meet_organizator, $meeting_coorg) { global $db, $config, $user, $phpbb_root_path, $phpEx; $user->add_lang('mods/reputation_mod'); if (!is_array($users)) { //$users = array($users); } if (!$id) { return false; } $total_uchast = count($users); $now = time(); $add_point = $config['rp_meeting_bonus']; $add_point_auth = $config['rp_meeting_auth_bonus']; $add_point_coorg = 2; // сделать в config-e $uid = $bitfield = $options = ''; // will be modified by generate_text_for_storage $allow_bbcode = $allow_urls = $allow_smilies = false; generate_text_for_storage($text, $uid, $bitfield, $options, $allow_bbcode, $allow_urls, $allow_smilies); $rep_meet = $id == 0 ? 0 : 1; for ($i = 0; $i < $total_uchast; $i++) { if ($users[$i]['user_id'] == $meet_organizator) { $sql = 'UPDATE ' . USERS_TABLE . ' SET user_reputation = user_reputation + ' . $add_point_auth . ' WHERE user_id = ' . $users[$i]['user_id']; $db->sql_query($sql); $text = $user->lang['ZA_ORGANIZ_POKAT']; $sql_ary = array('rep_from' => 2, 'rep_to' => $users[$i]['user_id'], 'rep_post_id' => $id, 'rep_point' => $add_point_auth, 'rep_time' => $now, 'bbcode_bitfield' => $bitfield, 'bbcode_uid' => $uid, 'enable_bbcode' => $allow_bbcode, 'enable_urls' => $allow_urls, 'enable_smilies' => $allow_smilies, 'rep_comment' => $text, 'rep_meet' => $rep_meet); $db->sql_query('INSERT INTO ' . REPUTATIONS_TABLE . ' ' . $db->sql_build_array('INSERT', $sql_ary)); } else { if ($users[$i]['user_id'] == $meeting_coorg) { $sql = 'UPDATE ' . USERS_TABLE . ' SET user_reputation = user_reputation + ' . $add_point_coorg . ' WHERE user_id = ' . $users[$i]['user_id']; $db->sql_query($sql); $text = $user->lang['ZA_COORG_POKAT']; $sql_ary = array('rep_from' => $user->data['user_id'], 'rep_to' => $users[$i]['user_id'], 'rep_post_id' => $id, 'rep_point' => $add_point_coorg, 'rep_time' => $now, 'bbcode_bitfield' => $bitfield, 'bbcode_uid' => $uid, 'enable_bbcode' => $allow_bbcode, 'enable_urls' => $allow_urls, 'enable_smilies' => $allow_smilies, 'rep_comment' => $text, 'rep_meet' => $rep_meet); $db->sql_query('INSERT INTO ' . REPUTATIONS_TABLE . ' ' . $db->sql_build_array('INSERT', $sql_ary)); } else { $sql = 'UPDATE ' . USERS_TABLE . ' SET user_reputation = user_reputation + ' . $add_point . ' WHERE user_id = ' . $users[$i]['user_id']; $db->sql_query($sql); $text = $user->lang['ZA_UCHAST_POKAT']; $sql_ary = array('rep_from' => $user->data['user_id'], 'rep_to' => $users[$i]['user_id'], 'rep_post_id' => $id, 'rep_point' => $add_point, 'rep_time' => $now, 'bbcode_bitfield' => $bitfield, 'bbcode_uid' => $uid, 'enable_bbcode' => $allow_bbcode, 'enable_urls' => $allow_urls, 'enable_smilies' => $allow_smilies, 'rep_comment' => $text, 'rep_meet' => $rep_meet); $db->sql_query('INSERT INTO ' . REPUTATIONS_TABLE . ' ' . $db->sql_build_array('INSERT', $sql_ary)); } } } //$url_redirect = append_sid("{$phpbb_root_path}pokat.$phpEx", 'mode=detail&id=' . $id); //$redirect = $url_redirect; //meta_refresh(3, $redirect); //trigger_error($user->lang['RP_MEET_ADD'] .'<br />' . sprintf($user->lang['RP_MEET_ADD_S'], $add_point, $add_point_auth) . '<br /><br />' . sprintf($user->lang['RETURN_PAGE_M'], '<a href="' . $url_redirect . '">', '</a>')); }
// Handle it ourselves, beacuse this way we can prevent the forum system from sending forum(!) notifications (instead of site ones) - note the the notify_status default value of 1 if (isset($_POST['subscribe_report'])) { $sql = 'INSERT INTO ' . TOPICS_WATCH_TABLE . " (user_id, topic_id, notify_status)\n\t\t\t\tVALUES ({$user->data['user_id']}, {$data['topic_id']}, 1)"; $db->sql_query($sql); } $db->sql_transaction('commit'); // Give success messages $redirect_url = append_sid("{$phpbb_root_path}bugs.{$phpEx}", "mode=report&project={$project_name}&report_id={$report_data['report_id']}"); meta_refresh(3, $redirect_url); $message = sprintf($user->lang[$mode == 'add' ? 'REPORT_ADDED' : 'REPORT_UPDATED'], '<a href="' . $redirect_url . '">', '</a>'); trigger_error($message); } elseif (isset($_POST['preview']) && !empty($report_data['report_desc'])) { $uid = $bitfield = $options = ''; // will be modified by generate_text_for_storage $report_desc_parse = $report_data['report_desc']; generate_text_for_storage($report_desc_parse, $report_data['bbcode_uid'], $report_data['bbcode_bitfield'], $report_data['bbcode_options'], $report_data['enable_bbcode'], $report_data['enable_magic_url'], $report_data['enable_smilies']); $template->assign_vars(array('PREVIEW_TEXT' => generate_text_for_display($report_desc_parse, $report_data['bbcode_uid'], $report_data['bbcode_bitfield'], $report_data['bbcode_options']), 'S_PREVIEW' => true)); } /** * Display the form */ add_form_key('add_report'); // Get components $sql = 'SELECT c.component_id, c.component_title FROM ' . BUGS_COMPONENTS_TABLE . ' c WHERE c.project_id = ' . $project_id . ' ORDER BY c.component_title ASC'; $result = $db->sql_query($sql, 7200); $s_component_options = ''; while ($row = $db->sql_fetchrow($result)) { $s_component_options .= '<option value="' . $row['component_id'] . '"' . ($row['component_id'] == $report_data['report_component'] ? ' selected="selected"' : '') . '>' . $row['component_title'] . '</option>'; } $db->sql_freeresult($result); // Get versions
/** * Add or edit a group. If we're editing a group we only update user * parameters such as rank, etc. if they are changed */ function group_create(&$group_id, $type, $name, $desc, $group_attributes, $allow_desc_bbcode = false, $allow_desc_urls = false, $allow_desc_smilies = false) { global $phpbb_root_path, $config, $db, $user, $file_upload, $phpbb_container; $error = array(); // Attributes which also affect the users table $user_attribute_ary = array('group_colour', 'group_rank', 'group_avatar', 'group_avatar_type', 'group_avatar_width', 'group_avatar_height'); // Check data. Limit group name length. if (!utf8_strlen($name) || utf8_strlen($name) > 60) { $error[] = !utf8_strlen($name) ? $user->lang['GROUP_ERR_USERNAME'] : $user->lang['GROUP_ERR_USER_LONG']; } $err = group_validate_groupname($group_id, $name); if (!empty($err)) { $error[] = $user->lang[$err]; } if (!in_array($type, array(GROUP_OPEN, GROUP_CLOSED, GROUP_HIDDEN, GROUP_SPECIAL, GROUP_FREE))) { $error[] = $user->lang['GROUP_ERR_TYPE']; } $group_teampage = !empty($group_attributes['group_teampage']); unset($group_attributes['group_teampage']); if (!sizeof($error)) { $current_legend = \phpbb\groupposition\legend::GROUP_DISABLED; $current_teampage = \phpbb\groupposition\teampage::GROUP_DISABLED; $legend = $phpbb_container->get('groupposition.legend'); $teampage = $phpbb_container->get('groupposition.teampage'); if ($group_id) { try { $current_legend = $legend->get_group_value($group_id); $current_teampage = $teampage->get_group_value($group_id); } catch (\phpbb\groupposition\exception $exception) { trigger_error($user->lang($exception->getMessage())); } } if (!empty($group_attributes['group_legend'])) { if ($group_id && $current_legend == \phpbb\groupposition\legend::GROUP_DISABLED || !$group_id) { // Old group currently not in the legend or new group, add at the end. $group_attributes['group_legend'] = 1 + $legend->get_group_count(); } else { // Group stayes in the legend $group_attributes['group_legend'] = $current_legend; } } else { if ($group_id && $current_legend != \phpbb\groupposition\legend::GROUP_DISABLED) { // Group is removed from the legend try { $legend->delete_group($group_id, true); } catch (\phpbb\groupposition\exception $exception) { trigger_error($user->lang($exception->getMessage())); } $group_attributes['group_legend'] = \phpbb\groupposition\legend::GROUP_DISABLED; } else { $group_attributes['group_legend'] = \phpbb\groupposition\legend::GROUP_DISABLED; } } // Unset the objects, we don't need them anymore. unset($legend); $user_ary = array(); $sql_ary = array('group_name' => (string) $name, 'group_desc' => (string) $desc, 'group_desc_uid' => '', 'group_desc_bitfield' => '', 'group_type' => (int) $type); // Parse description if ($desc) { generate_text_for_storage($sql_ary['group_desc'], $sql_ary['group_desc_uid'], $sql_ary['group_desc_bitfield'], $sql_ary['group_desc_options'], $allow_desc_bbcode, $allow_desc_urls, $allow_desc_smilies); } if (sizeof($group_attributes)) { // Merge them with $sql_ary to properly update the group $sql_ary = array_merge($sql_ary, $group_attributes); } // Setting the log message before we set the group id (if group gets added) $log = $group_id ? 'LOG_GROUP_UPDATED' : 'LOG_GROUP_CREATED'; $query = ''; if ($group_id) { $sql = 'SELECT user_id FROM ' . USERS_TABLE . ' WHERE group_id = ' . $group_id; $result = $db->sql_query($sql); while ($row = $db->sql_fetchrow($result)) { $user_ary[] = $row['user_id']; } $db->sql_freeresult($result); if (isset($sql_ary['group_avatar'])) { remove_default_avatar($group_id, $user_ary); } if (isset($sql_ary['group_rank'])) { remove_default_rank($group_id, $user_ary); } $sql = 'UPDATE ' . GROUPS_TABLE . ' SET ' . $db->sql_build_array('UPDATE', $sql_ary) . "\n\t\t\t\tWHERE group_id = {$group_id}"; $db->sql_query($sql); // Since we may update the name too, we need to do this on other tables too... $sql = 'UPDATE ' . MODERATOR_CACHE_TABLE . "\n\t\t\t\tSET group_name = '" . $db->sql_escape($sql_ary['group_name']) . "'\n\t\t\t\tWHERE group_id = {$group_id}"; $db->sql_query($sql); // One special case is the group skip auth setting. If this was changed we need to purge permissions for this group if (isset($group_attributes['group_skip_auth'])) { // Get users within this group... $sql = 'SELECT user_id FROM ' . USER_GROUP_TABLE . ' WHERE group_id = ' . $group_id . ' AND user_pending = 0'; $result = $db->sql_query($sql); $user_id_ary = array(); while ($row = $db->sql_fetchrow($result)) { $user_id_ary[] = $row['user_id']; } $db->sql_freeresult($result); if (!empty($user_id_ary)) { global $auth; // Clear permissions cache of relevant users $auth->acl_clear_prefetch($user_id_ary); } } } else { $sql = 'INSERT INTO ' . GROUPS_TABLE . ' ' . $db->sql_build_array('INSERT', $sql_ary); $db->sql_query($sql); } // Remove the group from the teampage, only if unselected and we are editing a group, // which is currently displayed. if (!$group_teampage && $group_id && $current_teampage != \phpbb\groupposition\teampage::GROUP_DISABLED) { try { $teampage->delete_group($group_id); } catch (\phpbb\groupposition\exception $exception) { trigger_error($user->lang($exception->getMessage())); } } if (!$group_id) { $group_id = $db->sql_nextid(); if (isset($sql_ary['group_avatar_type']) && $sql_ary['group_avatar_type'] == 'avatar.driver.upload') { group_correct_avatar($group_id, $sql_ary['group_avatar']); } } try { if ($group_teampage && $current_teampage == \phpbb\groupposition\teampage::GROUP_DISABLED) { $teampage->add_group($group_id); } if ($group_teampage) { if ($current_teampage == \phpbb\groupposition\teampage::GROUP_DISABLED) { $teampage->add_group($group_id); } } else { if ($group_id && $current_teampage != \phpbb\groupposition\teampage::GROUP_DISABLED) { $teampage->delete_group($group_id); } } } catch (\phpbb\groupposition\exception $exception) { trigger_error($user->lang($exception->getMessage())); } unset($teampage); // Set user attributes $sql_ary = array(); if (sizeof($group_attributes)) { // Go through the user attributes array, check if a group attribute matches it and then set it. ;) foreach ($user_attribute_ary as $attribute) { if (!isset($group_attributes[$attribute])) { continue; } // If we are about to set an avatar, we will not overwrite user avatars if no group avatar is set... if (strpos($attribute, 'group_avatar') === 0 && !$group_attributes[$attribute]) { continue; } $sql_ary[$attribute] = $group_attributes[$attribute]; } } if (sizeof($sql_ary) && sizeof($user_ary)) { group_set_user_default($group_id, $user_ary, $sql_ary); } $name = $type == GROUP_SPECIAL ? $user->lang['G_' . $name] : $name; add_log('admin', $log, $name); group_update_listings($group_id); } return sizeof($error) ? $error : false; }
/** * Add or edit a group. If we're editing a group we only update user * parameters such as rank, etc. if they are changed */ function group_create(&$group_id, $type, $name, $desc, $group_attributes, $allow_desc_bbcode = false, $allow_desc_urls = false, $allow_desc_smilies = false) { global $phpbb_root_path, $config, $db, $user, $file_upload; $error = array(); $attribute_ary = array('group_colour' => 'string', 'group_rank' => 'int', 'group_avatar' => 'string', 'group_avatar_type' => 'int', 'group_avatar_width' => 'int', 'group_avatar_height' => 'int', 'group_receive_pm' => 'int', 'group_legend' => 'int', 'group_message_limit' => 'int', 'group_max_recipients' => 'int', 'group_founder_manage' => 'int'); // Those are group-only attributes $group_only_ary = array('group_receive_pm', 'group_legend', 'group_message_limit', 'group_max_recipients', 'group_founder_manage'); // Check data. Limit group name length. if (!utf8_strlen($name) || utf8_strlen($name) > 60) { $error[] = !utf8_strlen($name) ? $user->lang['GROUP_ERR_USERNAME'] : $user->lang['GROUP_ERR_USER_LONG']; } $err = group_validate_groupname($group_id, $name); if (!empty($err)) { $error[] = $user->lang[$err]; } if (!in_array($type, array(GROUP_OPEN, GROUP_CLOSED, GROUP_HIDDEN, GROUP_SPECIAL, GROUP_FREE))) { $error[] = $user->lang['GROUP_ERR_TYPE']; } if (!sizeof($error)) { $user_ary = array(); $sql_ary = array('group_name' => (string) $name, 'group_desc' => (string) $desc, 'group_desc_uid' => '', 'group_desc_bitfield' => '', 'group_type' => (int) $type); // Parse description if ($desc) { generate_text_for_storage($sql_ary['group_desc'], $sql_ary['group_desc_uid'], $sql_ary['group_desc_bitfield'], $sql_ary['group_desc_options'], $allow_desc_bbcode, $allow_desc_urls, $allow_desc_smilies); } if (sizeof($group_attributes)) { foreach ($attribute_ary as $attribute => $_type) { if (isset($group_attributes[$attribute])) { settype($group_attributes[$attribute], $_type); $sql_ary[$attribute] = $group_attributes[$attribute]; } } } // Setting the log message before we set the group id (if group gets added) $log = $group_id ? 'LOG_GROUP_UPDATED' : 'LOG_GROUP_CREATED'; $query = ''; if ($group_id) { $sql = 'SELECT user_id FROM ' . USERS_TABLE . ' WHERE group_id = ' . $group_id; $result = $db->sql_query($sql); while ($row = $db->sql_fetchrow($result)) { $user_ary[] = $row['user_id']; } $db->sql_freeresult($result); if (isset($sql_ary['group_avatar']) && !$sql_ary['group_avatar']) { remove_default_avatar($group_id, $user_ary); } if (isset($sql_ary['group_rank']) && !$sql_ary['group_rank']) { remove_default_rank($group_id, $user_ary); } $sql = 'UPDATE ' . GROUPS_TABLE . ' SET ' . $db->sql_build_array('UPDATE', $sql_ary) . "\n\t\t\t\tWHERE group_id = {$group_id}"; $db->sql_query($sql); // Since we may update the name too, we need to do this on other tables too... $sql = 'UPDATE ' . MODERATOR_CACHE_TABLE . "\n\t\t\t\tSET group_name = '" . $db->sql_escape($sql_ary['group_name']) . "'\n\t\t\t\tWHERE group_id = {$group_id}"; $db->sql_query($sql); } else { $sql = 'INSERT INTO ' . GROUPS_TABLE . ' ' . $db->sql_build_array('INSERT', $sql_ary); $db->sql_query($sql); } if (!$group_id) { $group_id = $db->sql_nextid(); if (isset($sql_ary['group_avatar_type']) && $sql_ary['group_avatar_type'] == AVATAR_UPLOAD) { group_correct_avatar($group_id, $sql_ary['group_avatar']); } } // Set user attributes $sql_ary = array(); if (sizeof($group_attributes)) { foreach ($attribute_ary as $attribute => $_type) { if (isset($group_attributes[$attribute]) && !in_array($attribute, $group_only_ary)) { // If we are about to set an avatar, we will not overwrite user avatars if no group avatar is set... if (strpos($attribute, 'group_avatar') === 0 && !$group_attributes[$attribute]) { continue; } $sql_ary[$attribute] = $group_attributes[$attribute]; } } } if (sizeof($sql_ary) && sizeof($user_ary)) { group_set_user_default($group_id, $user_ary, $sql_ary); } $name = $type == GROUP_SPECIAL ? $user->lang['G_' . $name] : $name; add_log('admin', $log, $name); group_update_listings($group_id); } return sizeof($error) ? $error : false; }
/** * The function actually creating the forums */ private function _create_forums($forum_type, $cnt, $acp_forums, $parent_id = 0) { global $user, $auth; $forum_name = $forum_type == FORUM_CAT ? sprintf($user->lang['TEST_CAT_NAME'], $cnt) : sprintf($user->lang['TEST_FORUM_NAME'], $cnt); $forum_desc = $forum_type == FORUM_CAT ? sprintf($user->lang['TEST_FORUM_NAME'], $cnt) : ''; // Setting up the data to be used $forum_data = array('parent_id' => $parent_id, 'forum_type' => $forum_type, 'forum_status' => ITEM_UNLOCKED, 'forum_parents' => '', 'forum_options' => 0, 'forum_name' => utf8_normalize_nfc($forum_name), 'forum_link' => '', 'forum_link_track' => false, 'forum_desc' => utf8_normalize_nfc($forum_desc), 'forum_desc_uid' => '', 'forum_desc_options' => 7, 'forum_desc_bitfield' => '', 'forum_rules' => '', 'forum_rules_uid' => '', 'forum_rules_options' => 7, 'forum_rules_bitfield' => '', 'forum_rules_link' => '', 'forum_image' => '', 'forum_style' => 0, 'forum_password' => '', 'forum_password_confirm' => '', 'display_subforum_list' => true, 'display_on_index' => true, 'forum_topics_per_page' => 0, 'enable_indexing' => true, 'enable_icons' => false, 'enable_prune' => false, 'enable_post_review' => true, 'enable_quick_reply' => false, 'prune_days' => 7, 'prune_viewed' => 7, 'prune_freq' => 1, 'prune_old_polls' => false, 'prune_announce' => false, 'prune_sticky' => false, 'forum_password_unset' => false, 'show_active' => 1); // The description should not need this, but who knows what people will come up with. generate_text_for_storage($forum_data['forum_desc'], $forum_data['forum_desc_uid'], $forum_data['forum_desc_bitfield'], $forum_data['forum_desc_options'], false, false, false); // Create that thing. $errors = $acp_forums->update_forum_data($forum_data); if (sizeof($errors)) { trigger_error(implode('<br />', $errors)); } // Copy the permissions from our default forums copy_forum_permissions($this->def_forum_id, $forum_data['forum_id']); $auth->acl_clear_prefetch(); if ($forum_type == FORUM_POST) { // A normal forum. There is no link type forums installed with phpBB. $this->forum_arr[$forum_data['forum_id']] = array('forum_id' => $forum_data['forum_id'], 'parent_id' => $forum_data['parent_id'], 'forum_topics_real' => 0, 'forum_last_post_id' => 0, 'forum_last_poster_id' => 0, 'forum_last_post_subject' => '', 'forum_last_post_time' => 0, 'forum_last_poster_name' => ''); if (defined('PHPBB_31')) { $this->forum_arr[$forum_data['forum_id']]['forum_posts_approved'] = 0; $this->forum_arr[$forum_data['forum_id']]['forum_topics_approved'] = 0; } else { $this->forum_arr[$forum_data['forum_id']]['forum_posts'] = 0; $this->forum_arr[$forum_data['forum_id']]['forum_topics'] = 0; } } return $forum_data['forum_id']; }
/** * main Settings function * * @param int $id * @param String $mode */ function main($id, $mode) { global $db, $user, $template, $cache, $config, $phpbb_admin_path, $phpEx; $link = '<br /><a href="' . append_sid("{$phpbb_admin_path}index.{$phpEx}", "i=dkp&mode=mainpage") . '"><h3>' . $user->lang['RETURN_DKPINDEX'] . '</h3></a>'; switch ($mode) { /** * MAINPAGE */ case 'mainpage': $sql = 'SELECT count(*) as member_count FROM ' . MEMBER_LIST_TABLE . " WHERE member_status='0'"; $result = $db->sql_query($sql); $total_members_inactive = (int) $db->sql_fetchfield('member_count'); $sql = 'SELECT count(*) as member_count FROM ' . MEMBER_LIST_TABLE . " WHERE member_status='1'"; $result = $db->sql_query($sql); $total_members_active = (int) $db->sql_fetchfield('member_count'); $total_members = $total_members_active . ' / ' . $total_members_inactive; $sql = 'SELECT count(*) as dkp_count FROM ' . MEMBER_DKP_TABLE; $result = $db->sql_query($sql); $total_dkpcount = (int) $db->sql_fetchfield('dkp_count'); $sql = 'SELECT count(*) as pool_count FROM ' . DKPSYS_TABLE; $result = $db->sql_query($sql); $total_poolcount = (int) $db->sql_fetchfield('pool_count'); $sql = 'SELECT count(*) as adjustment_count FROM ' . ADJUSTMENTS_TABLE; $result = $db->sql_query($sql); $total_adjustmentcount = (int) $db->sql_fetchfield('adjustment_count'); $sql = 'SELECT count(*) as event_count FROM ' . EVENTS_TABLE; $result = $db->sql_query($sql); $total_eventcount = (int) $db->sql_fetchfield('event_count'); $sql = 'SELECT count(*) as guild_count FROM ' . GUILD_TABLE; $result = $db->sql_query($sql); $total_guildcount = (int) $db->sql_fetchfield('guild_count'); $total_raids = 0; $sql = 'SELECT count(*) as raid_count FROM ' . RAIDS_TABLE; $result = $db->sql_query($sql); $total_raids = (int) $db->sql_fetchfield('raid_count'); $days = (time() - $config['bbdkp_eqdkp_start']) / 86400; $raids_per_day = sprintf("%.2f", $total_raids / $days); $sql = 'SELECT count(*) as item_count FROM ' . RAID_ITEMS_TABLE; if ($raids_per_day > $total_raids) { $raids_per_day = $total_raids; } $total_items = (int) $db->sql_fetchfield('item_count'); $db->sql_freeresult($result); $items_per_day = sprintf("%.2f", $total_items / $days); if ($items_per_day > $total_items) { $items_per_day = $total_items; } if ($config['bbdkp_eqdkp_start'] != 0) { $bbdkp_started = date($config['bbdkp_date_format'], $config['bbdkp_eqdkp_start']); } else { $bbdkp_started = ''; } // read verbose log $logs = \bbdkp\admin\log::Instance(); $listlogs = $logs->read_log('', false, true, '', ''); if (isset($listlogs)) { foreach ($listlogs as $key => $log) { $template->assign_block_vars('actions_row', array('U_VIEW_LOG' => append_sid("{$phpbb_admin_path}index.{$phpEx}", 'i=dkp&mode=dkp_logs&' . URI_LOG . '=' . $log['log_id']), 'LOGDATE' => $log['datestamp'], 'ACTION' => $log['log_line'])); } } $latest_version_info = false; if (($latest_version_info = parent::get_productversion('bbdkp', request_var('versioncheck_force', false))) === false) { $template->assign_var('S_VERSIONCHECK_FAIL', true); } else { if (phpbb_version_compare($latest_version_info, $config['bbdkp_version'], '<=')) { $template->assign_vars(array('S_VERSION_UP_TO_DATE' => true)); } else { // you have an old version $template->assign_vars(array('BBDKP_NOT_UP_TO_DATE_TITLE' => sprintf($user->lang['NOT_UP_TO_DATE_TITLE'], 'bbDKP'), 'BBDKP_LATESTVERSION' => $latest_version_info[0], 'BBDKPVERSION' => $user->lang['BBDKP_YOURVERSION'] . $config['bbdkp_version'], 'UPDATEINSTR' => $user->lang['BBDKP_LATESTVERSION'] . $latest_version_info[0] . ', <a href="' . $user->lang['WEBURL'] . '">' . $user->lang['DOWNLOAD'] . '</a>')); } } //LOOP PLUGINS TABLE $plugin_versioninfo = (array) parent::get_plugin_info(request_var('versioncheck_force', false)); foreach ($plugin_versioninfo as $pname => $pdetails) { $a = phpbb_version_compare(trim($pdetails['latest']), $pdetails['version'], '<='); $template->assign_block_vars('plugin_row', array('PLUGINNAME' => ucwords($pdetails['name']), 'VERSION' => $pdetails['version'], 'ISUPTODATE' => phpbb_version_compare(trim($pdetails['latest']), $pdetails['version'], '<='), 'LATESTVERSION' => $pdetails['latest'], 'UPDATEINSTR' => '<a href="' . BBDKP_PLUGINURL . '">' . $user->lang['DOWNLOAD_LATEST_PLUGINS'] . $pdetails['latest'] . '</a>', 'INSTALLDATE' => $pdetails['installdate'])); } $template->assign_vars(array('GLYPH' => "{$phpbb_admin_path}/images/glyphs/view.gif", 'NUMBER_OF_MEMBERS' => $total_members, 'NUMBER_OF_RAIDS' => $total_raids, 'NUMBER_OF_ITEMS' => $total_items, 'NUMBER_OF_MEMBERDKP' => $total_dkpcount, 'NUMBER_OF_DKPSYS' => $total_poolcount, 'NUMBER_OF_GUILDS' => $total_guildcount, 'NUMBER_OF_EVENTS' => $total_eventcount, 'NUMBER_OF_ADJUSTMENTS' => $total_adjustmentcount, 'RAIDS_PER_DAY' => $raids_per_day, 'ITEMS_PER_DAY' => $items_per_day, 'BBDKP_STARTED' => $bbdkp_started, 'BBDKP_VERSION' => $config['bbdkp_version'], 'U_VERSIONCHECK_FORCE' => append_sid("{$phpbb_admin_path}index.{$phpEx}", "i=dkp&mode=mainpage&versioncheck_force=1"), 'GAMES_INSTALLED' => count($this->games) > 0 ? implode(", ", $this->games) : $user->lang['NA'])); $this->page_title = 'ACP_DKP_MAINPAGE'; $this->tpl_name = 'dkp/acp_mainpage'; break; /** * * DKP CONFIG */ /** * * DKP CONFIG */ case 'dkp_config': $action = request_var('action', ''); switch ($action) { case 'addconfig': if (!check_form_key('acp_dkp')) { trigger_error($user->lang['FV_FORMVALIDATION'], E_USER_WARNING); } $day = request_var('bbdkp_start_dd', 0); $month = request_var('bbdkp_start_mm', 0); $year = request_var('bbdkp_start_yy', 0); $bbdkp_start = mktime(0, 0, 0, $month, $day, $year); $settings = array('bbdkp_default_realm' => utf8_normalize_nfc(request_var('realm', '', true)), 'bbdkp_default_region' => utf8_normalize_nfc(request_var('region', '', true)), 'bbdkp_dkp_name' => utf8_normalize_nfc(request_var('dkp_name', '', true)), 'bbdkp_eqdkp_start' => $bbdkp_start, 'bbdkp_user_nlimit' => request_var('bbdkp_user_nlimit', 0), 'bbdkp_date_format' => request_var('date_format', ''), 'bbdkp_date_format' => request_var('date_format', ''), 'bbdkp_lang' => request_var('language', 'en'), 'bbdkp_maxchars' => request_var('maxchars', 2), 'bbdkp_minrosterlvl' => request_var('bbdkp_minrosterlvl', 0), 'bbdkp_roster_layout' => request_var('rosterlayout', 0), 'bbdkp_show_achiev' => request_var('showachievement', 0), 'bbdkp_hide_inactive' => isset($_POST['hide_inactive']) ? request_var('hide_inactive', '') : '0', 'bbdkp_inactive_period' => request_var('inactive_period', 0), 'bbdkp_list_p1' => request_var('list_p1', 0), 'bbdkp_list_p2' => request_var('list_p2', 0), 'bbdkp_list_p3' => request_var('list_p3', 0), 'bbdkp_user_llimit' => request_var('bbdkp_user_llimit', 0), 'bbdkp_user_elimit' => request_var('bbdkp_user_elimit', 0), 'bbdkp_event_viewall' => isset($_POST['event_viewall']) ? request_var('event_viewall', '') : '0', 'bbdkp_user_elimit' => request_var('bbdkp_user_elimit', 0), 'bbdkp_user_alimit' => request_var('bbdkp_user_alimit', 0), 'bbdkp_active_point_adj' => request_var('bbdkp_active_point_adj', 0.0), 'bbdkp_inactive_point_adj' => request_var('bbdkp_inactive_point_adj', 0.0), 'bbdkp_starting_dkp' => request_var('starting_dkp', 0.0), 'bbdkp_user_ilimit' => request_var('bbdkp_user_ilimit', 0), 'bbdkp_user_rlimit' => request_var('bbdkp_user_rlimit', 0)); set_config('bbdkp_default_realm', $settings['bbdkp_default_realm'], true); set_config('bbdkp_default_region', $settings['bbdkp_default_region'], true); set_config('bbdkp_dkp_name', $settings['bbdkp_dkp_name'], true); set_config('bbdkp_eqdkp_start', $settings['bbdkp_eqdkp_start'], true); set_config('bbdkp_user_nlimit', $settings['bbdkp_user_nlimit'], true); set_config('bbdkp_date_format', $settings['bbdkp_date_format'], true); set_config('bbdkp_lang', $settings['bbdkp_lang'], true); set_config('bbdkp_maxchars', $settings['bbdkp_maxchars'], true); //roster set_config('bbdkp_minrosterlvl', $settings['bbdkp_minrosterlvl'], true); set_config('bbdkp_roster_layout', $settings['bbdkp_roster_layout'], true); set_config('bbdkp_show_achiev', $settings['bbdkp_show_achiev'], true); //standings set_config('bbdkp_hide_inactive', $settings['bbdkp_hide_inactive'], true); set_config('bbdkp_inactive_period', $settings['bbdkp_inactive_period'], true); set_config('bbdkp_list_p1', $settings['bbdkp_list_p1'], true); set_config('bbdkp_list_p2', $settings['bbdkp_list_p2'], true); set_config('bbdkp_list_p3', $settings['bbdkp_list_p3'], true); set_config('bbdkp_user_llimit', $settings['bbdkp_user_llimit'], true); //events set_config('bbdkp_user_elimit', $settings['bbdkp_user_elimit'], true); set_config('bbdkp_event_viewall', $settings['bbdkp_event_viewall'], true); //adjustments set_config('bbdkp_user_alimit', $settings['bbdkp_user_alimit'], true); set_config('bbdkp_active_point_adj', $settings['bbdkp_active_point_adj'], true); set_config('bbdkp_inactive_point_adj', $settings['bbdkp_inactive_point_adj'], true); set_config('bbdkp_starting_dkp', $settings['bbdkp_starting_dkp'], true); //items set_config('bbdkp_user_ilimit', $settings['bbdkp_user_ilimit'], true); //raids set_config('bbdkp_user_rlimit', $settings['bbdkp_user_rlimit'], true); // reg id set_config('bbdkp_regid', 1, true); $cache->destroy('config'); // // Logging // $log_action = array('header' => 'L_ACTION_SETTINGS_CHANGED', 'L_SETTINGS' => json_encode($settings)); $this->log_insert(array('log_type' => 'L_ACTION_SETTINGS_CHANGED', 'log_action' => $log_action)); trigger_error($user->lang['ACTION_SETTINGS_CHANGED'] . $link, E_USER_NOTICE); break; case 'register': $regdata = array('domainname' => request_var('domainname', ''), 'phpbbversion' => request_var('phpbbversion', ''), 'bbdkpversion' => request_var('bbdkpversion', '')); $this->post_register_request($regdata); } $s_lang_options = ''; foreach ($this->languagecodes as $lang => $langname) { $selected = $config['bbdkp_lang'] == $lang ? ' selected="selected"' : ''; $s_lang_options .= '<option value="' . $lang . '" ' . $selected . '> ' . $langname . '</option>'; } $template->assign_block_vars('hide_row', array('VALUE' => "YES", 'SELECTED' => $config['bbdkp_hide_inactive'] == 1 ? ' selected="selected"' : '', 'OPTION' => "YES")); $template->assign_block_vars('hide_row', array('VALUE' => "NO", 'SELECTED' => $config['bbdkp_hide_inactive'] == 0 ? ' selected="selected"' : '', 'OPTION' => "NO")); // Default Region foreach ($this->regions as $regionid => $regionvalue) { $template->assign_block_vars('region_row', array('VALUE' => $regionid, 'SELECTED' => $regionid == $config['bbdkp_default_region'] ? ' selected="selected"' : '', 'OPTION' => $regionvalue)); } //roster layout $rosterlayoutlist = array(0 => $user->lang['ARM_STAND'], 1 => $user->lang['ARM_CLASS']); foreach ($rosterlayoutlist as $lid => $lname) { $template->assign_block_vars('rosterlayout_row', array('VALUE' => $lid, 'SELECTED' => $lid == $config['bbdkp_roster_layout'] ? ' selected="selected"' : '', 'OPTION' => $lname)); } $template->assign_vars(array('S_LANG_OPTIONS' => $s_lang_options, 'REALM' => $config['bbdkp_default_realm'], 'EQDKP_START_DD' => date('d', $config['bbdkp_eqdkp_start']), 'EQDKP_START_MM' => date('m', $config['bbdkp_eqdkp_start']), 'EQDKP_START_YY' => date('Y', $config['bbdkp_eqdkp_start']), 'DATE_FORMAT' => $config['bbdkp_date_format'], 'DKP_NAME' => $config['bbdkp_dkp_name'], 'DEFAULT_GAME' => count($this->games) > 0 ? implode(", ", $this->games) : $user->lang['NA'], 'HIDE_INACTIVE_YES_CHECKED' => $config['bbdkp_hide_inactive'] == '1' ? ' checked="checked"' : '', 'HIDE_INACTIVE_NO_CHECKED' => $config['bbdkp_hide_inactive'] == '0' ? ' checked="checked"' : '', 'USER_ELIMIT' => $config['bbdkp_user_elimit'], 'EVENT_VIEWALL_YES_CHECKED' => $config['bbdkp_event_viewall'] == '1' ? ' checked="checked"' : '', 'EVENT_VIEWALL_NO_CHECKED' => $config['bbdkp_event_viewall'] == '0' ? ' checked="checked"' : '', 'USER_NLIMIT' => $config['bbdkp_user_nlimit'], 'INACTIVE_PERIOD' => $config['bbdkp_inactive_period'], 'LIST_P1' => $config['bbdkp_list_p1'], 'LIST_P2' => $config['bbdkp_list_p2'], 'LIST_P3' => $config['bbdkp_list_p3'], 'F_SHOWACHIEV' => $config['bbdkp_show_achiev'], 'USER_ALIMIT' => $config['bbdkp_user_alimit'], 'STARTING_DKP' => $config['bbdkp_starting_dkp'], 'INACTIVE_POINT' => $config['bbdkp_inactive_point_adj'], 'ACTIVE_POINT' => $config['bbdkp_active_point_adj'], 'USER_ILIMIT' => $config['bbdkp_user_ilimit'], 'USER_RLIMIT' => $config['bbdkp_user_rlimit'], 'MAXCHARS' => $config['bbdkp_maxchars'], 'USER_LLIMIT' => $config['bbdkp_user_llimit'], 'MINLEVEL' => $config['bbdkp_minrosterlvl'], 'U_REGISTER' => append_sid("{$phpbb_admin_path}index.{$phpEx}", "i=dkp&mode=dkp_config&action=register"), 'U_ADDCONFIG' => append_sid("{$phpbb_admin_path}index.{$phpEx}", "i=dkp&mode=dkp_config&action=addconfig"), 'DOMAINNAME' => $_SERVER['HTTP_HOST'], 'PHPBBVER' => $config['version'], 'BBDKPVER' => $config['bbdkp_version'], 'REGID' => isset($config['bbdkp_regid']) ? $config['bbdkp_regid'] : '', 'S_BBDKPREGISTERED' => isset($config['bbdkp_regid']) ? $config['bbdkp_regid'] : '')); add_form_key('acp_dkp'); $this->page_title = 'ACP_DKP_CONFIG'; $this->tpl_name = 'dkp/acp_' . $mode; break; /** * PORTAL CONFIG */ /** * PORTAL CONFIG */ case 'dkp_indexpageconfig': $submit = isset($_POST['update']) ? true : false; if ($submit) { if (!check_form_key('acp_dkp_portal')) { trigger_error($user->lang['FV_FORMVALIDATION'], E_USER_WARNING); } if (isset($config['bbdkp_gameworld_version'])) { set_config('bbdkp_portal_bossprogress', request_var('show_bosspblock', 0), true); } set_config('bbdkp_news_forumid', request_var('news_id', 0), true); set_config('bbdkp_n_news', request_var('n_news', 0), true); set_config('bbdkp_n_items', request_var('n_items', 0), true); set_config('bbdkp_recruitment', request_var('bbdkp_recruitment', 0), true); set_config('bbdkp_portal_loot', request_var('show_lootblock', 0), true); set_config('bbdkp_portal_recruitment', request_var('show_recrblock', 0), true); set_config('bbdkp_portal_links', request_var('show_linkblock', 0), true); set_config('bbdkp_portal_menu', request_var('show_menublock', 0), true); set_config('bbdkp_portal_welcomemsg', request_var('show_welcomeblock', 0), true); set_config('bbdkp_portal_recent', request_var('show_recenttopics', 0), true); set_config('bbdkp_portal_rtlen', request_var('n_rclength', 0), true); set_config('bbdkp_portal_rtno', request_var('n_rcno', 0), true); set_config('bbdkp_portal_newmembers', request_var('show_newmembers', 0), true); set_config('bbdkp_portal_maxnewmembers', request_var('num_newmembers', 0), true); set_config('bbdkp_portal_whoisonline', request_var('show_onlineblock', 0), true); set_config('bbdkp_portal_onlineblockposition', request_var('onlineblockposition', 0), true); $cache->destroy('config'); $welcometext = utf8_normalize_nfc(request_var('welcome_message', '', true)); $uid = $bitfield = $options = ''; // will be modified by generate_text_for_storage $allow_bbcode = $allow_urls = $allow_smilies = true; generate_text_for_storage($welcometext, $uid, $bitfield, $options, $allow_bbcode, $allow_urls, $allow_smilies); $sql = 'UPDATE ' . WELCOME_MSG_TABLE . " SET\n\t\t\t\t\t\t\twelcome_msg = '" . (string) $db->sql_escape($welcometext) . "' ,\n\t\t\t\t\t\t\twelcome_timestamp = " . (int) time() . " ,\n\t\t\t\t\t\t\tbbcode_bitfield = \t'" . (string) $bitfield . "' ,\n\t\t\t\t\t\t\tbbcode_uid = \t\t'" . (string) $uid . "'\n\t\t\t\t\t\t\tWHERE welcome_id = 1"; $db->sql_query($sql); trigger_error($user->lang['ADMIN_PORTAL_SETTINGS_SAVED'] . $link, E_USER_NOTICE); } // get welcome msg $sql = 'SELECT welcome_msg, bbcode_bitfield, bbcode_uid FROM ' . WELCOME_MSG_TABLE; $db->sql_query($sql); $result = $db->sql_query($sql); while ($row = $db->sql_fetchrow($result)) { $welcometext = $row['welcome_msg']; $bitfield = $row['bbcode_bitfield']; $uid = $row['bbcode_uid']; } $textarr = generate_text_for_edit($welcometext, $uid, $bitfield, 7); // number of news and items to show on front page $n_news = $config['bbdkp_n_news']; $n_items = $config['bbdkp_n_items']; add_form_key('acp_dkp_portal'); if (isset($config['bbdkp_gameworld_version'])) { $template->assign_vars(array('S_BP_SHOW' => true, 'SHOW_BOSS_YES_CHECKED' => $config['bbdkp_portal_bossprogress'] == '1' ? ' checked="checked"' : '', 'SHOW_BOSS_NO_CHECKED' => $config['bbdkp_portal_bossprogress'] == '0' ? ' checked="checked"' : '')); } else { $template->assign_var('S_BP_SHOW', false); } $template->assign_vars(array('WELCOME_MESSAGE' => $textarr['text'], 'N_NEWS' => $n_news, 'FORUM_NEWS_OPTIONS' => make_forum_select($config['bbdkp_news_forumid'], false, false, true), 'SHOW_WELCOME_YES_CHECKED' => $config['bbdkp_portal_welcomemsg'] == '1' ? 'checked="checked"' : '', 'SHOW_WELCOME_NO_CHECKED' => $config['bbdkp_portal_welcomemsg'] == '0' ? 'checked="checked"' : '', 'SHOW_ONLINE_YES_CHECKED' => $config['bbdkp_portal_whoisonline'] == '1' ? 'checked="checked"' : '', 'SHOW_ONLINE_NO_CHECKED' => $config['bbdkp_portal_whoisonline'] == '0' ? 'checked="checked"' : '', 'SHOW_ONLINE_BOTTOM_CHECKED' => $config['bbdkp_portal_onlineblockposition'] == '1' ? 'checked="checked"' : '', 'SHOW_ONLINE_SIDE_CHECKED' => $config['bbdkp_portal_onlineblockposition'] == '0' ? 'checked="checked"' : '', 'SHOW_REC_YES_CHECKED' => $config['bbdkp_portal_recruitment'] == '1' ? ' checked="checked"' : '', 'SHOW_REC_NO_CHECKED' => $config['bbdkp_portal_recruitment'] == '0' ? ' checked="checked"' : '', 'SHOW_LOOT_YES_CHECKED' => $config['bbdkp_portal_loot'] == '1' ? ' checked="checked"' : '', 'SHOW_LOOT_NO_CHECKED' => $config['bbdkp_portal_loot'] == '0' ? ' checked="checked"' : '', 'N_ITEMS' => $n_items, 'N_RTNO' => $config['bbdkp_portal_rtno'], 'N_RTLENGTH' => $config['bbdkp_portal_rtlen'], 'SHOW_RT_YES_CHECKED' => $config['bbdkp_portal_recent'] == '1' ? ' checked="checked"' : '', 'SHOW_RT_NO_CHECKED' => $config['bbdkp_portal_recent'] == '0' ? ' checked="checked"' : '', 'SHOW_LINK_YES_CHECKED' => $config['bbdkp_portal_links'] == '1' ? ' checked="checked"' : '', 'SHOW_LINK_NO_CHECKED' => $config['bbdkp_portal_links'] == '0' ? ' checked="checked"' : '', 'SHOW_MENU_YES_CHECKED' => $config['bbdkp_portal_menu'] == '1' ? ' checked="checked"' : '', 'SHOW_MENU_NO_CHECKED' => $config['bbdkp_portal_menu'] == '0' ? ' checked="checked"' : '', 'SHOW_NEWM_YES_CHECKED' => $config['bbdkp_portal_newmembers'] == '1' ? ' checked="checked"' : '', 'SHOW_NEWM_NO_CHECKED' => $config['bbdkp_portal_newmembers'] == '0' ? ' checked="checked"' : '', 'N_NUMNEWM' => $config['bbdkp_portal_maxnewmembers'])); $this->page_title = $user->lang['ACP_INDEXPAGE']; $this->tpl_name = 'dkp/acp_' . $mode; break; /** * DKP LOGS * **/ /** * DKP LOGS * **/ case 'dkp_logs': $this->page_title = 'ACP_DKP_LOGS'; $this->tpl_name = 'dkp/acp_' . $mode; $logs = \bbdkp\admin\log::Instance(); $log_id = isset($_GET[URI_LOG]) ? request_var(URI_LOG, 0) : false; $search = isset($_GET['search']) ? true : false; if ($log_id) { $action = 'view'; } else { $action = 'list'; } switch ($action) { case 'list': $deletemark = isset($_POST['delmarked']) ? true : false; $marked = request_var('mark', array(0)); $search_term = request_var('search', ''); $start = request_var('start', 0); if ($deletemark) { global $db, $user, $phpEx; //if marked array isnt empty if (sizeof($marked) && is_array($marked)) { if (confirm_box(true)) { $marked = request_var('mark', array(0)); $logs = \bbdkp\admin\log::Instance(); $log_action = array('header' => 'L_ACTION_LOG_DELETED', 'L_ADDED_BY' => $user->data['username'], 'L_LOG_ID' => implode(",", $logs->delete_log($marked))); $this->log_insert(array('log_type' => $log_action['header'], 'log_action' => $log_action)); //redirect to listing $meta_info = append_sid("{$phpbb_admin_path}index.{$phpEx}", "i=dkp&mode=dkp_logs"); meta_refresh(3, $meta_info); $message = '<a href="' . append_sid("{$phpbb_admin_path}index.{$phpEx}", "i=dkp&mode=dkp_logs") . '">' . $user->lang['RETURN_LOG'] . '</a><br />' . sprintf($user->lang['ADMIN_LOG_DELETE_SUCCESS'], implode($marked)); trigger_error($message, E_USER_WARNING); } else { // display confirmation confirm_box(false, $user->lang['CONFIRM_DELETE_BBDKPLOG'], build_hidden_fields(array('delmarked' => true, 'mark' => $marked))); } // they hit no $message = '<a href="' . append_sid("{$phpbb_admin_path}index.{$phpEx}", "i=dkp&mode=dkp_logs") . '">' . $user->lang['RETURN_LOG'] . '</a><br />' . sprintf($user->lang['ADMIN_LOG_DELETE_FAIL'], implode($marked)); trigger_error($message, E_USER_WARNING); } } $sort_order = array(0 => array('log_id desc', 'log_id'), 1 => array('log_date desc', 'log_date'), 2 => array('log_type', 'log_type desc'), 3 => array('username', 'username dsec'), 4 => array('log_ipaddress', 'log_ipaddress desc'), 5 => array('log_result', 'log_result desc')); $current_order = $this->switch_order($sort_order); $verbose = true; $listlogs = $logs->read_log($current_order['sql'], $search, $verbose, $search_term, $start); foreach ($listlogs as $key => $log) { $template->assign_block_vars('logs_row', array('ID' => $log['log_id'], 'DATE' => $log['datestamp'], 'TYPE' => $log['log_type'], 'U_VIEW_LOG' => append_sid("{$phpbb_admin_path}index.{$phpEx}", "i=dkp&mode=dkp_logs&" . URI_LOG . '=' . $log['log_id'] . '&search=' . $search_term . '&start=' . $start . '&'), 'VERBOSE' => $verbose, 'USER' => $log['username'], 'ACTION' => $log['log_line'], 'IP' => $log['log_ipaddress'], 'RESULT' => $log['log_result'], 'C_RESULT' => $log['cssresult'], 'ENCODED_TYPE' => urlencode($log['log_type']), 'ENCODED_USER' => urlencode($log['username']), 'ENCODED_IP' => urlencode($log['log_ipaddress']))); } $logcount = $logs->getTotalLogs(); $template->assign_vars(array('S_LIST' => true, 'L_TITLE' => $user->lang['ACP_DKP_LOGS'], 'L_EXPLAIN' => $user->lang['ACP_DKP_LOGS_EXPLAIN'], 'O_DATE' => $current_order['uri'][0], 'O_TYPE' => $current_order['uri'][1], 'O_USER' => $current_order['uri'][2], 'O_IP' => $current_order['uri'][3], 'O_RESULT' => $current_order['uri'][4], 'U_LOGS' => append_sid("{$phpbb_admin_path}index.{$phpEx}", "i=dkp&mode=dkp_logs&") . '&search=' . $search_term . '&start=' . $start . '&', 'U_LOGS_SEARCH' => append_sid("{$phpbb_admin_path}index.{$phpEx}", "i=dkp&mode=dkp_logs"), 'CURRENT_ORDER' => $current_order['uri']['current'], 'START' => $start, 'VIEWLOGS_FOOTCOUNT' => sprintf($user->lang['VIEWLOGS_FOOTCOUNT'], $logcount, USER_LLIMIT), 'VIEWLOGS_PAGINATION' => generate_pagination(append_sid("{$phpbb_admin_path}index.{$phpEx}", "i=dkp&mode=dkp_logs&") . '&search=' . $search_term . '&o=' . $current_order['uri']['current'], $logcount, USER_LLIMIT, $start))); break; case 'view': $viewlog = $logs->get_logentry($log_id); $log_actionxml = $viewlog['log_action']; $search_term = request_var('search', ''); $start = request_var('start', 0); $log_action = (array) simplexml_load_string($log_actionxml); // loop the action elements and fill template foreach ($log_action as $key => $value) { switch (strtolower($key)) { case 'usercolour': case 'id': break; case 'header': if (in_array($log_action['header'], $logs::$valid_action_types)) { $log_actionstr = $logs->getLogMessage($log_action['header'], false); } break; default: $template->assign_block_vars('logaction_row', array('KEY' => isset($user->lang[$key]) ? $user->lang[$key] . ': ' : $key, 'VALUE' => $value)); } } // fill constant template elements $template->assign_vars(array('S_LIST' => false, 'L_TITLE' => $user->lang['ACP_DKP_LOGS'], 'L_EXPLAIN' => $user->lang['ACP_DKP_LOGS_EXPLAIN'], 'LOG_DATE' => !empty($viewlog['log_date']) ? $user->format_date($viewlog['log_date']) : ' ', 'LOG_USERNAME' => $viewlog['colouruser'], 'LOG_IP_ADDRESS' => $viewlog['log_ipaddress'], 'LOG_SESSION_ID' => $viewlog['log_sid'], 'LOG_RESULT' => $viewlog['log_result'], 'LOG_ACTION' => $log_actionstr)); break; } $template->assign_vars(array('U_BACK' => append_sid("{$phpbb_admin_path}index.{$phpEx}", "i=dkp&mode=dkp_logs&") . '&search=' . $search_term . '&start=' . $start . '&')); break; } }
as_error('NO_EDIT_PERM'); } } $message = utf8_normalize_nfc(request_var('chat_message', '', true)); if (empty($message)) { as_error($user->lang['MESSAGE_EMPTY']); } else { if (strpos($message, '[quote') !== false || strpos($message, '[code') !== false || strpos($message, '[list') !== false) { as_error($user->lang['NO_QUOTE']); } else { $uid = $bitfield = $options = ''; // will be modified by generate_text_for_storage $allow_bbcode = $auth->acl_get('u_as_bbcode') ? true : false; $allow_urls = true; $allow_smilies = $auth->acl_get('u_as_smilies') ? true : false; generate_text_for_storage($message, $uid, $bitfield, $options, $allow_bbcode, $allow_urls, $allow_smilies); $sql_ary = array('shout_text' => $message, 'shout_bbcode_uid' => $uid, 'shout_bbcode_bitfield' => $bitfield, 'shout_bbcode_flags' => $options); if ($mode == 'edit') { $sql = 'UPDATE ' . SHOUTBOX_TABLE . ' SET ' . $db->sql_build_array('UPDATE', $sql_ary) . ' WHERE shout_id = ' . $shout_id; } else { $sql_ary += array('shout_time' => time(), 'shout_user_id' => (int) $user->data['user_id'], 'shout_ip' => $user->ip); $sql = 'INSERT INTO ' . SHOUTBOX_TABLE . ' ' . $db->sql_build_array('INSERT', $sql_ary); } if (!$db->sql_query($sql)) { as_sql_error($sql, __LINE__, __FILE__); } echo '<msg>' . $user->lang['POSTED'] . '</msg></xml>'; exit; } }
function main($id, $mode) { global $config, $db, $user, $auth, $template; global $phpbb_root_path, $phpbb_admin_path, $phpEx; global $phpbb_dispatcher, $request; global $phpbb_container, $phpbb_log; $user->add_lang(array('posting', 'ucp', 'acp/users')); $this->tpl_name = 'acp_users'; $error = array(); $username = $request->variable('username', '', true); $user_id = $request->variable('u', 0); $action = $request->variable('action', ''); // Get referer to redirect user to the appropriate page after delete action $redirect = $request->variable('redirect', ''); $redirect_tag = "redirect={$redirect}"; $redirect_url = append_sid("{$phpbb_admin_path}index.{$phpEx}", "i={$redirect}"); $submit = isset($_POST['update']) && !isset($_POST['cancel']) ? true : false; $form_name = 'acp_users'; add_form_key($form_name); // Whois (special case) if ($action == 'whois') { if (!function_exists('user_get_id_name')) { include $phpbb_root_path . 'includes/functions_user.' . $phpEx; } $this->page_title = 'WHOIS'; $this->tpl_name = 'simple_body'; $user_ip = phpbb_ip_normalise($request->variable('user_ip', '')); $domain = gethostbyaddr($user_ip); $ipwhois = user_ipwhois($user_ip); $template->assign_vars(array('MESSAGE_TITLE' => sprintf($user->lang['IP_WHOIS_FOR'], $domain), 'MESSAGE_TEXT' => nl2br($ipwhois))); return; } // Show user selection mask if (!$username && !$user_id) { $this->page_title = 'SELECT_USER'; $template->assign_vars(array('U_ACTION' => $this->u_action, 'ANONYMOUS_USER_ID' => ANONYMOUS, 'S_SELECT_USER' => true, 'U_FIND_USERNAME' => append_sid("{$phpbb_root_path}memberlist.{$phpEx}", 'mode=searchuser&form=select_user&field=username&select_single=true'))); return; } if (!$user_id) { $sql = 'SELECT user_id FROM ' . USERS_TABLE . "\n\t\t\t\tWHERE username_clean = '" . $db->sql_escape(utf8_clean_string($username)) . "'"; $result = $db->sql_query($sql); $user_id = (int) $db->sql_fetchfield('user_id'); $db->sql_freeresult($result); if (!$user_id) { trigger_error($user->lang['NO_USER'] . adm_back_link($this->u_action), E_USER_WARNING); } } // Generate content for all modes $sql = 'SELECT u.*, s.* FROM ' . USERS_TABLE . ' u LEFT JOIN ' . SESSIONS_TABLE . ' s ON (s.session_user_id = u.user_id) WHERE u.user_id = ' . $user_id . ' ORDER BY s.session_time DESC'; $result = $db->sql_query_limit($sql, 1); $user_row = $db->sql_fetchrow($result); $db->sql_freeresult($result); if (!$user_row) { trigger_error($user->lang['NO_USER'] . adm_back_link($this->u_action), E_USER_WARNING); } // Generate overall "header" for user admin $s_form_options = ''; // Build modes dropdown list $sql = 'SELECT module_mode, module_auth FROM ' . MODULES_TABLE . "\n\t\t\tWHERE module_basename = 'acp_users'\n\t\t\t\tAND module_enabled = 1\n\t\t\t\tAND module_class = 'acp'\n\t\t\tORDER BY left_id, module_mode"; $result = $db->sql_query($sql); $dropdown_modes = array(); while ($row = $db->sql_fetchrow($result)) { if (!$this->p_master->module_auth_self($row['module_auth'])) { continue; } $dropdown_modes[$row['module_mode']] = true; } $db->sql_freeresult($result); foreach ($dropdown_modes as $module_mode => $null) { $selected = $mode == $module_mode ? ' selected="selected"' : ''; $s_form_options .= '<option value="' . $module_mode . '"' . $selected . '>' . $user->lang['ACP_USER_' . strtoupper($module_mode)] . '</option>'; } $template->assign_vars(array('U_BACK' => empty($redirect) ? $this->u_action : $redirect_url, 'U_MODE_SELECT' => append_sid("{$phpbb_admin_path}index.{$phpEx}", "i={$id}&u={$user_id}"), 'U_ACTION' => $this->u_action . '&u=' . $user_id . (empty($redirect) ? '' : '&' . $redirect_tag), 'S_FORM_OPTIONS' => $s_form_options, 'MANAGED_USERNAME' => $user_row['username'])); // Prevent normal users/admins change/view founders if they are not a founder by themselves if ($user->data['user_type'] != USER_FOUNDER && $user_row['user_type'] == USER_FOUNDER) { trigger_error($user->lang['NOT_MANAGE_FOUNDER'] . adm_back_link($this->u_action), E_USER_WARNING); } $this->page_title = $user_row['username'] . ' :: ' . $user->lang('ACP_USER_' . strtoupper($mode)); switch ($mode) { case 'overview': if (!function_exists('user_get_id_name')) { include $phpbb_root_path . 'includes/functions_user.' . $phpEx; } $user->add_lang('acp/ban'); $delete = $request->variable('delete', 0); $delete_type = $request->variable('delete_type', ''); $ip = $request->variable('ip', 'ip'); /** * Run code at beginning of ACP users overview * * @event core.acp_users_overview_before * @var array user_row Current user data * @var string mode Active module * @var string action Module that should be run * @var bool submit Do we display the form only * or did the user press submit * @var array error Array holding error messages * @since 3.1.3-RC1 */ $vars = array('user_row', 'mode', 'action', 'submit', 'error'); extract($phpbb_dispatcher->trigger_event('core.acp_users_overview_before', compact($vars))); if ($submit) { if ($delete) { if (!$auth->acl_get('a_userdel')) { send_status_line(403, 'Forbidden'); trigger_error($user->lang['NO_AUTH_OPERATION'] . adm_back_link($this->u_action . '&u=' . $user_id), E_USER_WARNING); } // Check if the user wants to remove himself or the guest user account if ($user_id == ANONYMOUS) { trigger_error($user->lang['CANNOT_REMOVE_ANONYMOUS'] . adm_back_link($this->u_action . '&u=' . $user_id), E_USER_WARNING); } // Founders can not be deleted. if ($user_row['user_type'] == USER_FOUNDER) { trigger_error($user->lang['CANNOT_REMOVE_FOUNDER'] . adm_back_link($this->u_action . '&u=' . $user_id), E_USER_WARNING); } if ($user_id == $user->data['user_id']) { trigger_error($user->lang['CANNOT_REMOVE_YOURSELF'] . adm_back_link($this->u_action . '&u=' . $user_id), E_USER_WARNING); } if ($delete_type) { if (confirm_box(true)) { user_delete($delete_type, $user_id, $user_row['username']); $phpbb_log->add('admin', $user->data['user_id'], $user->ip, 'LOG_USER_DELETED', false, array($user_row['username'])); trigger_error($user->lang['USER_DELETED'] . adm_back_link(empty($redirect) ? $this->u_action : $redirect_url)); } else { $delete_confirm_hidden_fields = array('u' => $user_id, 'i' => $id, 'mode' => $mode, 'action' => $action, 'update' => true, 'delete' => 1, 'delete_type' => $delete_type); // Checks if the redirection page is specified if (!empty($redirect)) { $delete_confirm_hidden_fields['redirect'] = $redirect; } confirm_box(false, $user->lang['CONFIRM_OPERATION'], build_hidden_fields($delete_confirm_hidden_fields)); } } else { trigger_error($user->lang['NO_MODE'] . adm_back_link($this->u_action . '&u=' . $user_id), E_USER_WARNING); } } // Handle quicktool actions switch ($action) { case 'banuser': case 'banemail': case 'banip': if ($user_id == $user->data['user_id']) { trigger_error($user->lang['CANNOT_BAN_YOURSELF'] . adm_back_link($this->u_action . '&u=' . $user_id), E_USER_WARNING); } if ($user_id == ANONYMOUS) { trigger_error($user->lang['CANNOT_BAN_ANONYMOUS'] . adm_back_link($this->u_action . '&u=' . $user_id), E_USER_WARNING); } if ($user_row['user_type'] == USER_FOUNDER) { trigger_error($user->lang['CANNOT_BAN_FOUNDER'] . adm_back_link($this->u_action . '&u=' . $user_id), E_USER_WARNING); } if (!check_form_key($form_name)) { trigger_error($user->lang['FORM_INVALID'] . adm_back_link($this->u_action . '&u=' . $user_id), E_USER_WARNING); } $ban = array(); switch ($action) { case 'banuser': $ban[] = $user_row['username']; $reason = 'USER_ADMIN_BAN_NAME_REASON'; break; case 'banemail': $ban[] = $user_row['user_email']; $reason = 'USER_ADMIN_BAN_EMAIL_REASON'; break; case 'banip': $ban[] = $user_row['user_ip']; $sql = 'SELECT DISTINCT poster_ip FROM ' . POSTS_TABLE . "\n\t\t\t\t\t\t\t\t\t\tWHERE poster_id = {$user_id}"; $result = $db->sql_query($sql); while ($row = $db->sql_fetchrow($result)) { $ban[] = $row['poster_ip']; } $db->sql_freeresult($result); $reason = 'USER_ADMIN_BAN_IP_REASON'; break; } $ban_reason = $request->variable('ban_reason', $user->lang[$reason], true); $ban_give_reason = $request->variable('ban_give_reason', '', true); // Log not used at the moment, we simply utilize the ban function. $result = user_ban(substr($action, 3), $ban, 0, 0, 0, $ban_reason, $ban_give_reason); trigger_error(($result === false ? $user->lang['BAN_ALREADY_ENTERED'] : $user->lang['BAN_SUCCESSFUL']) . adm_back_link($this->u_action . '&u=' . $user_id)); break; case 'reactivate': if ($user_id == $user->data['user_id']) { trigger_error($user->lang['CANNOT_FORCE_REACT_YOURSELF'] . adm_back_link($this->u_action . '&u=' . $user_id), E_USER_WARNING); } if (!check_form_key($form_name)) { trigger_error($user->lang['FORM_INVALID'] . adm_back_link($this->u_action . '&u=' . $user_id), E_USER_WARNING); } if ($user_row['user_type'] == USER_FOUNDER) { trigger_error($user->lang['CANNOT_FORCE_REACT_FOUNDER'] . adm_back_link($this->u_action . '&u=' . $user_id), E_USER_WARNING); } if ($user_row['user_type'] == USER_IGNORE) { trigger_error($user->lang['CANNOT_FORCE_REACT_BOT'] . adm_back_link($this->u_action . '&u=' . $user_id), E_USER_WARNING); } if ($config['email_enable']) { if (!class_exists('messenger')) { include $phpbb_root_path . 'includes/functions_messenger.' . $phpEx; } $server_url = generate_board_url(); $user_actkey = gen_rand_string(mt_rand(6, 10)); $email_template = $user_row['user_type'] == USER_NORMAL ? 'user_reactivate_account' : 'user_resend_inactive'; if ($user_row['user_type'] == USER_NORMAL) { user_active_flip('deactivate', $user_id, INACTIVE_REMIND); $sql = 'UPDATE ' . USERS_TABLE . "\n\t\t\t\t\t\t\t\t\t\tSET user_actkey = '" . $db->sql_escape($user_actkey) . "'\n\t\t\t\t\t\t\t\t\t\tWHERE user_id = {$user_id}"; $db->sql_query($sql); } else { // Grabbing the last confirm key - we only send a reminder $sql = 'SELECT user_actkey FROM ' . USERS_TABLE . ' WHERE user_id = ' . $user_id; $result = $db->sql_query($sql); $user_actkey = (string) $db->sql_fetchfield('user_actkey'); $db->sql_freeresult($result); } $messenger = new messenger(false); $messenger->template($email_template, $user_row['user_lang']); $messenger->set_addresses($user_row); $messenger->anti_abuse_headers($config, $user); $messenger->assign_vars(array('WELCOME_MSG' => htmlspecialchars_decode(sprintf($user->lang['WELCOME_SUBJECT'], $config['sitename'])), 'USERNAME' => htmlspecialchars_decode($user_row['username']), 'U_ACTIVATE' => "{$server_url}/ucp.{$phpEx}?mode=activate&u={$user_row['user_id']}&k={$user_actkey}")); $messenger->send(NOTIFY_EMAIL); $phpbb_log->add('admin', $user->data['user_id'], $user->ip, 'LOG_USER_REACTIVATE', false, array($user_row['username'])); $phpbb_log->add('user', $user->data['user_id'], $user->ip, 'LOG_USER_REACTIVATE_USER', false, array('reportee_id' => $user_id)); trigger_error($user->lang['FORCE_REACTIVATION_SUCCESS'] . adm_back_link($this->u_action . '&u=' . $user_id)); } break; case 'active': if ($user_id == $user->data['user_id']) { // It is only deactivation since the user is already activated (else he would not have reached this page) trigger_error($user->lang['CANNOT_DEACTIVATE_YOURSELF'] . adm_back_link($this->u_action . '&u=' . $user_id), E_USER_WARNING); } if (!check_form_key($form_name)) { trigger_error($user->lang['FORM_INVALID'] . adm_back_link($this->u_action . '&u=' . $user_id), E_USER_WARNING); } if ($user_row['user_type'] == USER_FOUNDER) { trigger_error($user->lang['CANNOT_DEACTIVATE_FOUNDER'] . adm_back_link($this->u_action . '&u=' . $user_id), E_USER_WARNING); } if ($user_row['user_type'] == USER_IGNORE) { trigger_error($user->lang['CANNOT_DEACTIVATE_BOT'] . adm_back_link($this->u_action . '&u=' . $user_id), E_USER_WARNING); } user_active_flip('flip', $user_id); if ($user_row['user_type'] == USER_INACTIVE) { if ($config['require_activation'] == USER_ACTIVATION_ADMIN) { /* @var $phpbb_notifications \phpbb\notification\manager */ $phpbb_notifications = $phpbb_container->get('notification_manager'); $phpbb_notifications->delete_notifications('notification.type.admin_activate_user', $user_row['user_id']); if (!class_exists('messenger')) { include $phpbb_root_path . 'includes/functions_messenger.' . $phpEx; } $messenger = new messenger(false); $messenger->template('admin_welcome_activated', $user_row['user_lang']); $messenger->set_addresses($user_row); $messenger->anti_abuse_headers($config, $user); $messenger->assign_vars(array('USERNAME' => htmlspecialchars_decode($user_row['username']))); $messenger->send(NOTIFY_EMAIL); } } $message = $user_row['user_type'] == USER_INACTIVE ? 'USER_ADMIN_ACTIVATED' : 'USER_ADMIN_DEACTIVED'; $log = $user_row['user_type'] == USER_INACTIVE ? 'LOG_USER_ACTIVE' : 'LOG_USER_INACTIVE'; $phpbb_log->add('admin', $user->data['user_id'], $user->ip, $log, false, array($user_row['username'])); $phpbb_log->add('user', $user->data['user_id'], $user->ip, $log . '_USER', false, array('reportee_id' => $user_id)); trigger_error($user->lang[$message] . adm_back_link($this->u_action . '&u=' . $user_id)); break; case 'delsig': if (!check_form_key($form_name)) { trigger_error($user->lang['FORM_INVALID'] . adm_back_link($this->u_action . '&u=' . $user_id), E_USER_WARNING); } $sql_ary = array('user_sig' => '', 'user_sig_bbcode_uid' => '', 'user_sig_bbcode_bitfield' => ''); $sql = 'UPDATE ' . USERS_TABLE . ' SET ' . $db->sql_build_array('UPDATE', $sql_ary) . "\n\t\t\t\t\t\t\t\tWHERE user_id = {$user_id}"; $db->sql_query($sql); $phpbb_log->add('admin', $user->data['user_id'], $user->ip, 'LOG_USER_DEL_SIG', false, array($user_row['username'])); $phpbb_log->add('user', $user->data['user_id'], $user->ip, 'LOG_USER_DEL_SIG_USER', false, array('reportee_id' => $user_id)); trigger_error($user->lang['USER_ADMIN_SIG_REMOVED'] . adm_back_link($this->u_action . '&u=' . $user_id)); break; case 'delavatar': if (!check_form_key($form_name)) { trigger_error($user->lang['FORM_INVALID'] . adm_back_link($this->u_action . '&u=' . $user_id), E_USER_WARNING); } // Delete old avatar if present /* @var $phpbb_avatar_manager \phpbb\avatar\manager */ $phpbb_avatar_manager = $phpbb_container->get('avatar.manager'); $phpbb_avatar_manager->handle_avatar_delete($db, $user, $phpbb_avatar_manager->clean_row($user_row, 'user'), USERS_TABLE, 'user_'); $phpbb_log->add('admin', $user->data['user_id'], $user->ip, 'LOG_USER_DEL_AVATAR', false, array($user_row['username'])); $phpbb_log->add('user', $user->data['user_id'], $user->ip, 'LOG_USER_DEL_AVATAR_USER', false, array('reportee_id' => $user_id)); trigger_error($user->lang['USER_ADMIN_AVATAR_REMOVED'] . adm_back_link($this->u_action . '&u=' . $user_id)); break; case 'delposts': if (confirm_box(true)) { // Delete posts, attachments, etc. delete_posts('poster_id', $user_id); $phpbb_log->add('admin', $user->data['user_id'], $user->ip, 'LOG_USER_DEL_POSTS', false, array($user_row['username'])); trigger_error($user->lang['USER_POSTS_DELETED'] . adm_back_link($this->u_action . '&u=' . $user_id)); } else { confirm_box(false, $user->lang['CONFIRM_OPERATION'], build_hidden_fields(array('u' => $user_id, 'i' => $id, 'mode' => $mode, 'action' => $action, 'update' => true))); } break; case 'delattach': if (confirm_box(true)) { /** @var \phpbb\attachment\manager $attachment_manager */ $attachment_manager = $phpbb_container->get('attachment.manager'); $attachment_manager->delete('user', $user_id); unset($attachment_manager); $phpbb_log->add('admin', $user->data['user_id'], $user->ip, 'LOG_USER_DEL_ATTACH', false, array($user_row['username'])); trigger_error($user->lang['USER_ATTACHMENTS_REMOVED'] . adm_back_link($this->u_action . '&u=' . $user_id)); } else { confirm_box(false, $user->lang['CONFIRM_OPERATION'], build_hidden_fields(array('u' => $user_id, 'i' => $id, 'mode' => $mode, 'action' => $action, 'update' => true))); } break; case 'deloutbox': if (confirm_box(true)) { $msg_ids = array(); $lang = 'EMPTY'; $sql = 'SELECT msg_id FROM ' . PRIVMSGS_TO_TABLE . "\n\t\t\t\t\t\t\t\t\tWHERE author_id = {$user_id}\n\t\t\t\t\t\t\t\t\t\tAND folder_id = " . PRIVMSGS_OUTBOX; $result = $db->sql_query($sql); if ($row = $db->sql_fetchrow($result)) { if (!function_exists('delete_pm')) { include $phpbb_root_path . 'includes/functions_privmsgs.' . $phpEx; } do { $msg_ids[] = (int) $row['msg_id']; } while ($row = $db->sql_fetchrow($result)); $db->sql_freeresult($result); delete_pm($user_id, $msg_ids, PRIVMSGS_OUTBOX); $phpbb_log->add('admin', $user->data['user_id'], $user->ip, 'LOG_USER_DEL_OUTBOX', false, array($user_row['username'])); $lang = 'EMPTIED'; } $db->sql_freeresult($result); trigger_error($user->lang['USER_OUTBOX_' . $lang] . adm_back_link($this->u_action . '&u=' . $user_id)); } else { confirm_box(false, $user->lang['CONFIRM_OPERATION'], build_hidden_fields(array('u' => $user_id, 'i' => $id, 'mode' => $mode, 'action' => $action, 'update' => true))); } break; case 'moveposts': if (!check_form_key($form_name)) { trigger_error($user->lang['FORM_INVALID'] . adm_back_link($this->u_action . '&u=' . $user_id), E_USER_WARNING); } $user->add_lang('acp/forums'); $new_forum_id = $request->variable('new_f', 0); if (!$new_forum_id) { $this->page_title = 'USER_ADMIN_MOVE_POSTS'; $template->assign_vars(array('S_SELECT_FORUM' => true, 'U_ACTION' => $this->u_action . "&action={$action}&u={$user_id}", 'U_BACK' => $this->u_action . "&u={$user_id}", 'S_FORUM_OPTIONS' => make_forum_select(false, false, false, true))); return; } // Is the new forum postable to? $sql = 'SELECT forum_name, forum_type FROM ' . FORUMS_TABLE . "\n\t\t\t\t\t\t\t\tWHERE forum_id = {$new_forum_id}"; $result = $db->sql_query($sql); $forum_info = $db->sql_fetchrow($result); $db->sql_freeresult($result); if (!$forum_info) { trigger_error($user->lang['NO_FORUM'] . adm_back_link($this->u_action . '&u=' . $user_id), E_USER_WARNING); } if ($forum_info['forum_type'] != FORUM_POST) { trigger_error($user->lang['MOVE_POSTS_NO_POSTABLE_FORUM'] . adm_back_link($this->u_action . '&u=' . $user_id), E_USER_WARNING); } // Two stage? // Move topics comprising only posts from this user $topic_id_ary = $move_topic_ary = $move_post_ary = $new_topic_id_ary = array(); $forum_id_ary = array($new_forum_id); $sql = 'SELECT topic_id, post_visibility, COUNT(post_id) AS total_posts FROM ' . POSTS_TABLE . "\n\t\t\t\t\t\t\t\tWHERE poster_id = {$user_id}\n\t\t\t\t\t\t\t\t\tAND forum_id <> {$new_forum_id}\n\t\t\t\t\t\t\t\tGROUP BY topic_id, post_visibility"; $result = $db->sql_query($sql); while ($row = $db->sql_fetchrow($result)) { $topic_id_ary[$row['topic_id']][$row['post_visibility']] = $row['total_posts']; } $db->sql_freeresult($result); if (sizeof($topic_id_ary)) { $sql = 'SELECT topic_id, forum_id, topic_title, topic_posts_approved, topic_posts_unapproved, topic_posts_softdeleted, topic_attachment FROM ' . TOPICS_TABLE . ' WHERE ' . $db->sql_in_set('topic_id', array_keys($topic_id_ary)); $result = $db->sql_query($sql); while ($row = $db->sql_fetchrow($result)) { if ($topic_id_ary[$row['topic_id']][ITEM_APPROVED] == $row['topic_posts_approved'] && $topic_id_ary[$row['topic_id']][ITEM_UNAPPROVED] == $row['topic_posts_unapproved'] && $topic_id_ary[$row['topic_id']][ITEM_REAPPROVE] == $row['topic_posts_unapproved'] && $topic_id_ary[$row['topic_id']][ITEM_DELETED] == $row['topic_posts_softdeleted']) { $move_topic_ary[] = $row['topic_id']; } else { $move_post_ary[$row['topic_id']]['title'] = $row['topic_title']; $move_post_ary[$row['topic_id']]['attach'] = $row['topic_attachment'] ? 1 : 0; } $forum_id_ary[] = $row['forum_id']; } $db->sql_freeresult($result); } // Entire topic comprises posts by this user, move these topics if (sizeof($move_topic_ary)) { move_topics($move_topic_ary, $new_forum_id, false); } if (sizeof($move_post_ary)) { // Create new topic // Update post_ids, report_ids, attachment_ids foreach ($move_post_ary as $topic_id => $post_ary) { // Create new topic $sql = 'INSERT INTO ' . TOPICS_TABLE . ' ' . $db->sql_build_array('INSERT', array('topic_poster' => $user_id, 'topic_time' => time(), 'forum_id' => $new_forum_id, 'icon_id' => 0, 'topic_visibility' => ITEM_APPROVED, 'topic_title' => $post_ary['title'], 'topic_first_poster_name' => $user_row['username'], 'topic_type' => POST_NORMAL, 'topic_time_limit' => 0, 'topic_attachment' => $post_ary['attach'])); $db->sql_query($sql); $new_topic_id = $db->sql_nextid(); // Move posts $sql = 'UPDATE ' . POSTS_TABLE . "\n\t\t\t\t\t\t\t\t\t\tSET forum_id = {$new_forum_id}, topic_id = {$new_topic_id}\n\t\t\t\t\t\t\t\t\t\tWHERE topic_id = {$topic_id}\n\t\t\t\t\t\t\t\t\t\t\tAND poster_id = {$user_id}"; $db->sql_query($sql); if ($post_ary['attach']) { $sql = 'UPDATE ' . ATTACHMENTS_TABLE . "\n\t\t\t\t\t\t\t\t\t\t\tSET topic_id = {$new_topic_id}\n\t\t\t\t\t\t\t\t\t\t\tWHERE topic_id = {$topic_id}\n\t\t\t\t\t\t\t\t\t\t\t\tAND poster_id = {$user_id}"; $db->sql_query($sql); } $new_topic_id_ary[] = $new_topic_id; } } $forum_id_ary = array_unique($forum_id_ary); $topic_id_ary = array_unique(array_merge(array_keys($topic_id_ary), $new_topic_id_ary)); if (sizeof($topic_id_ary)) { sync('topic_reported', 'topic_id', $topic_id_ary); sync('topic', 'topic_id', $topic_id_ary); } if (sizeof($forum_id_ary)) { sync('forum', 'forum_id', $forum_id_ary, false, true); } $phpbb_log->add('admin', $user->data['user_id'], $user->ip, 'LOG_USER_MOVE_POSTS', false, array($user_row['username'], $forum_info['forum_name'])); $phpbb_log->add('user', $user->data['user_id'], $user->ip, 'LOG_USER_MOVE_POSTS_USER', false, array('reportee_id' => $user_id, $forum_info['forum_name'])); trigger_error($user->lang['USER_POSTS_MOVED'] . adm_back_link($this->u_action . '&u=' . $user_id)); break; case 'leave_nr': if (confirm_box(true)) { remove_newly_registered($user_id, $user_row); $phpbb_log->add('admin', $user->data['user_id'], $user->ip, 'LOG_USER_REMOVED_NR', false, array($user_row['username'])); trigger_error($user->lang['USER_LIFTED_NR'] . adm_back_link($this->u_action . '&u=' . $user_id)); } else { confirm_box(false, $user->lang['CONFIRM_OPERATION'], build_hidden_fields(array('u' => $user_id, 'i' => $id, 'mode' => $mode, 'action' => $action, 'update' => true))); } break; default: /** * Run custom quicktool code * * @event core.acp_users_overview_run_quicktool * @var array user_row Current user data * @var string action Quick tool that should be run * @since 3.1.0-a1 */ $vars = array('action', 'user_row'); extract($phpbb_dispatcher->trigger_event('core.acp_users_overview_run_quicktool', compact($vars))); break; } // Handle registration info updates $data = array('username' => $request->variable('user', $user_row['username'], true), 'user_founder' => $request->variable('user_founder', $user_row['user_type'] == USER_FOUNDER ? 1 : 0), 'email' => strtolower($request->variable('user_email', $user_row['user_email'])), 'new_password' => $request->variable('new_password', '', true), 'password_confirm' => $request->variable('password_confirm', '', true)); // Validation data - we do not check the password complexity setting here $check_ary = array('new_password' => array(array('string', true, $config['min_pass_chars'], $config['max_pass_chars']), array('password')), 'password_confirm' => array('string', true, $config['min_pass_chars'], $config['max_pass_chars'])); // Check username if altered if ($data['username'] != $user_row['username']) { $check_ary += array('username' => array(array('string', false, $config['min_name_chars'], $config['max_name_chars']), array('username', $user_row['username']))); } // Check email if altered if ($data['email'] != $user_row['user_email']) { $check_ary += array('email' => array(array('string', false, 6, 60), array('user_email', $user_row['user_email']))); } $error = validate_data($data, $check_ary); if ($data['new_password'] && $data['password_confirm'] != $data['new_password']) { $error[] = 'NEW_PASSWORD_ERROR'; } if (!check_form_key($form_name)) { $error[] = 'FORM_INVALID'; } // Instantiate passwords manager /* @var $passwords_manager \phpbb\passwords\manager */ $passwords_manager = $phpbb_container->get('passwords.manager'); // Which updates do we need to do? $update_username = $user_row['username'] != $data['username'] ? $data['username'] : false; $update_password = $data['new_password'] && !$passwords_manager->check($data['new_password'], $user_row['user_password']); $update_email = $data['email'] != $user_row['user_email'] ? $data['email'] : false; if (!sizeof($error)) { $sql_ary = array(); if ($user_row['user_type'] != USER_FOUNDER || $user->data['user_type'] == USER_FOUNDER) { // Only allow founders updating the founder status... if ($user->data['user_type'] == USER_FOUNDER) { // Setting a normal member to be a founder if ($data['user_founder'] && $user_row['user_type'] != USER_FOUNDER) { // Make sure the user is not setting an Inactive or ignored user to be a founder if ($user_row['user_type'] == USER_IGNORE) { trigger_error($user->lang['CANNOT_SET_FOUNDER_IGNORED'] . adm_back_link($this->u_action . '&u=' . $user_id), E_USER_WARNING); } if ($user_row['user_type'] == USER_INACTIVE) { trigger_error($user->lang['CANNOT_SET_FOUNDER_INACTIVE'] . adm_back_link($this->u_action . '&u=' . $user_id), E_USER_WARNING); } $sql_ary['user_type'] = USER_FOUNDER; } else { if (!$data['user_founder'] && $user_row['user_type'] == USER_FOUNDER) { // Check if at least one founder is present $sql = 'SELECT user_id FROM ' . USERS_TABLE . ' WHERE user_type = ' . USER_FOUNDER . ' AND user_id <> ' . $user_id; $result = $db->sql_query_limit($sql, 1); $row = $db->sql_fetchrow($result); $db->sql_freeresult($result); if ($row) { $sql_ary['user_type'] = USER_NORMAL; } else { trigger_error($user->lang['AT_LEAST_ONE_FOUNDER'] . adm_back_link($this->u_action . '&u=' . $user_id), E_USER_WARNING); } } } } } /** * Modify user data before we update it * * @event core.acp_users_overview_modify_data * @var array user_row Current user data * @var array data Submitted user data * @var array sql_ary User data we udpate * @since 3.1.0-a1 */ $vars = array('user_row', 'data', 'sql_ary'); extract($phpbb_dispatcher->trigger_event('core.acp_users_overview_modify_data', compact($vars))); if ($update_username !== false) { $sql_ary['username'] = $update_username; $sql_ary['username_clean'] = utf8_clean_string($update_username); $phpbb_log->add('user', $user->data['user_id'], $user->ip, 'LOG_USER_UPDATE_NAME', false, array('reportee_id' => $user_id, $user_row['username'], $update_username)); } if ($update_email !== false) { $sql_ary += array('user_email' => $update_email, 'user_email_hash' => phpbb_email_hash($update_email)); $phpbb_log->add('user', $user->data['user_id'], $user->ip, 'LOG_USER_UPDATE_EMAIL', false, array('reportee_id' => $user_id, $user_row['username'], $user_row['user_email'], $update_email)); } if ($update_password) { $sql_ary += array('user_password' => $passwords_manager->hash($data['new_password']), 'user_passchg' => time()); $user->reset_login_keys($user_id); $phpbb_log->add('user', $user->data['user_id'], $user->ip, 'LOG_USER_NEW_PASSWORD', false, array('reportee_id' => $user_id, $user_row['username'])); } if (sizeof($sql_ary)) { $sql = 'UPDATE ' . USERS_TABLE . ' SET ' . $db->sql_build_array('UPDATE', $sql_ary) . ' WHERE user_id = ' . $user_id; $db->sql_query($sql); } if ($update_username) { user_update_name($user_row['username'], $update_username); } // Let the users permissions being updated $auth->acl_clear_prefetch($user_id); $phpbb_log->add('admin', $user->data['user_id'], $user->ip, 'LOG_USER_USER_UPDATE', false, array($data['username'])); trigger_error($user->lang['USER_OVERVIEW_UPDATED'] . adm_back_link($this->u_action . '&u=' . $user_id)); } // Replace "error" strings with their real, localised form $error = array_map(array($user, 'lang'), $error); } if ($user_id == $user->data['user_id']) { $quick_tool_ary = array('delsig' => 'DEL_SIG', 'delavatar' => 'DEL_AVATAR', 'moveposts' => 'MOVE_POSTS', 'delposts' => 'DEL_POSTS', 'delattach' => 'DEL_ATTACH', 'deloutbox' => 'DEL_OUTBOX'); if ($user_row['user_new']) { $quick_tool_ary['leave_nr'] = 'LEAVE_NR'; } } else { $quick_tool_ary = array(); if ($user_row['user_type'] != USER_FOUNDER) { $quick_tool_ary += array('banuser' => 'BAN_USER', 'banemail' => 'BAN_EMAIL', 'banip' => 'BAN_IP'); } if ($user_row['user_type'] != USER_FOUNDER && $user_row['user_type'] != USER_IGNORE) { $quick_tool_ary += array('active' => $user_row['user_type'] == USER_INACTIVE ? 'ACTIVATE' : 'DEACTIVATE'); } $quick_tool_ary += array('delsig' => 'DEL_SIG', 'delavatar' => 'DEL_AVATAR', 'moveposts' => 'MOVE_POSTS', 'delposts' => 'DEL_POSTS', 'delattach' => 'DEL_ATTACH', 'deloutbox' => 'DEL_OUTBOX'); if ($config['email_enable'] && ($user_row['user_type'] == USER_NORMAL || $user_row['user_type'] == USER_INACTIVE)) { $quick_tool_ary['reactivate'] = 'FORCE'; } if ($user_row['user_new']) { $quick_tool_ary['leave_nr'] = 'LEAVE_NR'; } } if ($config['load_onlinetrack']) { $sql = 'SELECT MAX(session_time) AS session_time, MIN(session_viewonline) AS session_viewonline FROM ' . SESSIONS_TABLE . "\n\t\t\t\t\t\tWHERE session_user_id = {$user_id}"; $result = $db->sql_query($sql); $row = $db->sql_fetchrow($result); $db->sql_freeresult($result); $user_row['session_time'] = isset($row['session_time']) ? $row['session_time'] : 0; $user_row['session_viewonline'] = isset($row['session_viewonline']) ? $row['session_viewonline'] : 0; unset($row); } /** * Add additional quick tool options and overwrite user data * * @event core.acp_users_display_overview * @var array user_row Array with user data * @var array quick_tool_ary Ouick tool options * @since 3.1.0-a1 */ $vars = array('user_row', 'quick_tool_ary'); extract($phpbb_dispatcher->trigger_event('core.acp_users_display_overview', compact($vars))); $s_action_options = '<option class="sep" value="">' . $user->lang['SELECT_OPTION'] . '</option>'; foreach ($quick_tool_ary as $value => $lang) { $s_action_options .= '<option value="' . $value . '">' . $user->lang['USER_ADMIN_' . $lang] . '</option>'; } $last_active = !empty($user_row['session_time']) ? $user_row['session_time'] : $user_row['user_lastvisit']; $inactive_reason = ''; if ($user_row['user_type'] == USER_INACTIVE) { $inactive_reason = $user->lang['INACTIVE_REASON_UNKNOWN']; switch ($user_row['user_inactive_reason']) { case INACTIVE_REGISTER: $inactive_reason = $user->lang['INACTIVE_REASON_REGISTER']; break; case INACTIVE_PROFILE: $inactive_reason = $user->lang['INACTIVE_REASON_PROFILE']; break; case INACTIVE_MANUAL: $inactive_reason = $user->lang['INACTIVE_REASON_MANUAL']; break; case INACTIVE_REMIND: $inactive_reason = $user->lang['INACTIVE_REASON_REMIND']; break; } } // Posts in Queue $sql = 'SELECT COUNT(post_id) as posts_in_queue FROM ' . POSTS_TABLE . ' WHERE poster_id = ' . $user_id . ' AND ' . $db->sql_in_set('post_visibility', array(ITEM_UNAPPROVED, ITEM_REAPPROVE)); $result = $db->sql_query($sql); $user_row['posts_in_queue'] = (int) $db->sql_fetchfield('posts_in_queue'); $db->sql_freeresult($result); $sql = 'SELECT post_id FROM ' . POSTS_TABLE . ' WHERE poster_id = ' . $user_id; $result = $db->sql_query_limit($sql, 1); $user_row['user_has_posts'] = (bool) $db->sql_fetchfield('post_id'); $db->sql_freeresult($result); $template->assign_vars(array('L_NAME_CHARS_EXPLAIN' => $user->lang($config['allow_name_chars'] . '_EXPLAIN', $user->lang('CHARACTERS', (int) $config['min_name_chars']), $user->lang('CHARACTERS', (int) $config['max_name_chars'])), 'L_CHANGE_PASSWORD_EXPLAIN' => $user->lang($config['pass_complex'] . '_EXPLAIN', $user->lang('CHARACTERS', (int) $config['min_pass_chars']), $user->lang('CHARACTERS', (int) $config['max_pass_chars'])), 'L_POSTS_IN_QUEUE' => $user->lang('NUM_POSTS_IN_QUEUE', $user_row['posts_in_queue']), 'S_FOUNDER' => $user->data['user_type'] == USER_FOUNDER ? true : false, 'S_OVERVIEW' => true, 'S_USER_IP' => $user_row['user_ip'] ? true : false, 'S_USER_FOUNDER' => $user_row['user_type'] == USER_FOUNDER ? true : false, 'S_ACTION_OPTIONS' => $s_action_options, 'S_OWN_ACCOUNT' => $user_id == $user->data['user_id'] ? true : false, 'S_USER_INACTIVE' => $user_row['user_type'] == USER_INACTIVE ? true : false, 'U_SHOW_IP' => $this->u_action . "&u={$user_id}&ip=" . ($ip == 'ip' ? 'hostname' : 'ip'), 'U_WHOIS' => $this->u_action . "&action=whois&user_ip={$user_row['user_ip']}", 'U_MCP_QUEUE' => $auth->acl_getf_global('m_approve') ? append_sid("{$phpbb_root_path}mcp.{$phpEx}", 'i=queue', true, $user->session_id) : '', 'U_SEARCH_USER' => $config['load_search'] && $auth->acl_get('u_search') ? append_sid("{$phpbb_root_path}search.{$phpEx}", "author_id={$user_row['user_id']}&sr=posts") : '', 'U_SWITCH_PERMISSIONS' => $auth->acl_get('a_switchperm') && $user->data['user_id'] != $user_row['user_id'] ? append_sid("{$phpbb_root_path}ucp.{$phpEx}", "mode=switch_perm&u={$user_row['user_id']}&hash=" . generate_link_hash('switchperm')) : '', 'POSTS_IN_QUEUE' => $user_row['posts_in_queue'], 'USER' => $user_row['username'], 'USER_REGISTERED' => $user->format_date($user_row['user_regdate']), 'REGISTERED_IP' => $ip == 'hostname' ? gethostbyaddr($user_row['user_ip']) : $user_row['user_ip'], 'USER_LASTACTIVE' => $last_active ? $user->format_date($last_active) : ' - ', 'USER_EMAIL' => $user_row['user_email'], 'USER_WARNINGS' => $user_row['user_warnings'], 'USER_POSTS' => $user_row['user_posts'], 'USER_HAS_POSTS' => $user_row['user_has_posts'], 'USER_INACTIVE_REASON' => $inactive_reason)); break; case 'feedback': $user->add_lang('mcp'); // Set up general vars $start = $request->variable('start', 0); $deletemark = isset($_POST['delmarked']) ? true : false; $deleteall = isset($_POST['delall']) ? true : false; $marked = $request->variable('mark', array(0)); $message = $request->variable('message', '', true); /* @var $pagination \phpbb\pagination */ $pagination = $phpbb_container->get('pagination'); // Sort keys $sort_days = $request->variable('st', 0); $sort_key = $request->variable('sk', 't'); $sort_dir = $request->variable('sd', 'd'); // Delete entries if requested and able if (($deletemark || $deleteall) && $auth->acl_get('a_clearlogs')) { if (!check_form_key($form_name)) { trigger_error($user->lang['FORM_INVALID'] . adm_back_link($this->u_action . '&u=' . $user_id), E_USER_WARNING); } $where_sql = ''; if ($deletemark && $marked) { $sql_in = array(); foreach ($marked as $mark) { $sql_in[] = $mark; } $where_sql = ' AND ' . $db->sql_in_set('log_id', $sql_in); unset($sql_in); } if ($where_sql || $deleteall) { $sql = 'DELETE FROM ' . LOG_TABLE . ' WHERE log_type = ' . LOG_USERS . "\n\t\t\t\t\t\t\tAND reportee_id = {$user_id}\n\t\t\t\t\t\t\t{$where_sql}"; $db->sql_query($sql); $phpbb_log->add('admin', $user->data['user_id'], $user->ip, 'LOG_CLEAR_USER', false, array($user_row['username'])); } } if ($submit && $message) { if (!check_form_key($form_name)) { trigger_error($user->lang['FORM_INVALID'] . adm_back_link($this->u_action . '&u=' . $user_id), E_USER_WARNING); } $phpbb_log->add('admin', $user->data['user_id'], $user->ip, 'LOG_USER_FEEDBACK', false, array($user_row['username'])); $phpbb_log->add('mod', $user->data['user_id'], $user->ip, 'LOG_USER_FEEDBACK', false, array('forum_id' => 0, 'topic_id' => 0, $user_row['username'])); $phpbb_log->add('user', $user->data['user_id'], $user->ip, 'LOG_USER_GENERAL', false, array('reportee_id' => $user_id, $message)); trigger_error($user->lang['USER_FEEDBACK_ADDED'] . adm_back_link($this->u_action . '&u=' . $user_id)); } // Sorting $limit_days = array(0 => $user->lang['ALL_ENTRIES'], 1 => $user->lang['1_DAY'], 7 => $user->lang['7_DAYS'], 14 => $user->lang['2_WEEKS'], 30 => $user->lang['1_MONTH'], 90 => $user->lang['3_MONTHS'], 180 => $user->lang['6_MONTHS'], 365 => $user->lang['1_YEAR']); $sort_by_text = array('u' => $user->lang['SORT_USERNAME'], 't' => $user->lang['SORT_DATE'], 'i' => $user->lang['SORT_IP'], 'o' => $user->lang['SORT_ACTION']); $sort_by_sql = array('u' => 'u.username_clean', 't' => 'l.log_time', 'i' => 'l.log_ip', 'o' => 'l.log_operation'); $s_limit_days = $s_sort_key = $s_sort_dir = $u_sort_param = ''; gen_sort_selects($limit_days, $sort_by_text, $sort_days, $sort_key, $sort_dir, $s_limit_days, $s_sort_key, $s_sort_dir, $u_sort_param); // Define where and sort sql for use in displaying logs $sql_where = $sort_days ? time() - $sort_days * 86400 : 0; $sql_sort = $sort_by_sql[$sort_key] . ' ' . ($sort_dir == 'd' ? 'DESC' : 'ASC'); // Grab log data $log_data = array(); $log_count = 0; $start = view_log('user', $log_data, $log_count, $config['topics_per_page'], $start, 0, 0, $user_id, $sql_where, $sql_sort); $base_url = $this->u_action . "&u={$user_id}&{$u_sort_param}"; $pagination->generate_template_pagination($base_url, 'pagination', 'start', $log_count, $config['topics_per_page'], $start); $template->assign_vars(array('S_FEEDBACK' => true, 'S_LIMIT_DAYS' => $s_limit_days, 'S_SORT_KEY' => $s_sort_key, 'S_SORT_DIR' => $s_sort_dir, 'S_CLEARLOGS' => $auth->acl_get('a_clearlogs'))); foreach ($log_data as $row) { $template->assign_block_vars('log', array('USERNAME' => $row['username_full'], 'IP' => $row['ip'], 'DATE' => $user->format_date($row['time']), 'ACTION' => nl2br($row['action']), 'ID' => $row['id'])); } break; case 'warnings': $user->add_lang('mcp'); // Set up general vars $deletemark = isset($_POST['delmarked']) ? true : false; $deleteall = isset($_POST['delall']) ? true : false; $confirm = isset($_POST['confirm']) ? true : false; $marked = $request->variable('mark', array(0)); // Delete entries if requested and able if ($deletemark || $deleteall || $confirm) { if (confirm_box(true)) { $where_sql = ''; $deletemark = $request->variable('delmarked', 0); $deleteall = $request->variable('delall', 0); if ($deletemark && $marked) { $where_sql = ' AND ' . $db->sql_in_set('warning_id', array_values($marked)); } if ($where_sql || $deleteall) { $sql = 'DELETE FROM ' . WARNINGS_TABLE . "\n\t\t\t\t\t\t\t\tWHERE user_id = {$user_id}\n\t\t\t\t\t\t\t\t\t{$where_sql}"; $db->sql_query($sql); if ($deleteall) { $log_warnings = $deleted_warnings = 0; } else { $num_warnings = (int) $db->sql_affectedrows(); $deleted_warnings = ' user_warnings - ' . $num_warnings; $log_warnings = $num_warnings > 2 ? 2 : $num_warnings; } $sql = 'UPDATE ' . USERS_TABLE . "\n\t\t\t\t\t\t\t\tSET user_warnings = {$deleted_warnings}\n\t\t\t\t\t\t\t\tWHERE user_id = {$user_id}"; $db->sql_query($sql); if ($log_warnings) { $phpbb_log->add('admin', $user->data['user_id'], $user->ip, 'LOG_WARNINGS_DELETED', false, array($user_row['username'], $num_warnings)); } else { $phpbb_log->add('admin', $user->data['user_id'], $user->ip, 'LOG_WARNINGS_DELETED_ALL', false, array($user_row['username'])); } } } else { $s_hidden_fields = array('i' => $id, 'mode' => $mode, 'u' => $user_id, 'mark' => $marked); if (isset($_POST['delmarked'])) { $s_hidden_fields['delmarked'] = 1; } if (isset($_POST['delall'])) { $s_hidden_fields['delall'] = 1; } if (isset($_POST['delall']) || isset($_POST['delmarked']) && sizeof($marked)) { confirm_box(false, $user->lang['CONFIRM_OPERATION'], build_hidden_fields($s_hidden_fields)); } } } $sql = 'SELECT w.warning_id, w.warning_time, w.post_id, l.log_operation, l.log_data, l.user_id AS mod_user_id, m.username AS mod_username, m.user_colour AS mod_user_colour FROM ' . WARNINGS_TABLE . ' w LEFT JOIN ' . LOG_TABLE . ' l ON (w.log_id = l.log_id) LEFT JOIN ' . USERS_TABLE . ' m ON (l.user_id = m.user_id) WHERE w.user_id = ' . $user_id . ' ORDER BY w.warning_time DESC'; $result = $db->sql_query($sql); while ($row = $db->sql_fetchrow($result)) { if (!$row['log_operation']) { // We do not have a log-entry anymore, so there is no data available $row['action'] = $user->lang['USER_WARNING_LOG_DELETED']; } else { $row['action'] = isset($user->lang[$row['log_operation']]) ? $user->lang[$row['log_operation']] : '{' . ucfirst(str_replace('_', ' ', $row['log_operation'])) . '}'; if (!empty($row['log_data'])) { $log_data_ary = @unserialize($row['log_data']); $log_data_ary = $log_data_ary === false ? array() : $log_data_ary; if (isset($user->lang[$row['log_operation']])) { // Check if there are more occurrences of % than arguments, if there are we fill out the arguments array // It doesn't matter if we add more arguments than placeholders if (substr_count($row['action'], '%') - sizeof($log_data_ary) > 0) { $log_data_ary = array_merge($log_data_ary, array_fill(0, substr_count($row['action'], '%') - sizeof($log_data_ary), '')); } $row['action'] = vsprintf($row['action'], $log_data_ary); $row['action'] = bbcode_nl2br(censor_text($row['action'])); } else { if (!empty($log_data_ary)) { $row['action'] .= '<br />' . implode('', $log_data_ary); } } } } $template->assign_block_vars('warn', array('ID' => $row['warning_id'], 'USERNAME' => $row['log_operation'] ? get_username_string('full', $row['mod_user_id'], $row['mod_username'], $row['mod_user_colour']) : '-', 'ACTION' => make_clickable($row['action']), 'DATE' => $user->format_date($row['warning_time']))); } $db->sql_freeresult($result); $template->assign_vars(array('S_WARNINGS' => true)); break; case 'profile': if (!function_exists('user_get_id_name')) { include $phpbb_root_path . 'includes/functions_user.' . $phpEx; } /* @var $cp \phpbb\profilefields\manager */ $cp = $phpbb_container->get('profilefields.manager'); $cp_data = $cp_error = array(); $sql = 'SELECT lang_id FROM ' . LANG_TABLE . "\n\t\t\t\t\tWHERE lang_iso = '" . $db->sql_escape($user->data['user_lang']) . "'"; $result = $db->sql_query($sql); $row = $db->sql_fetchrow($result); $db->sql_freeresult($result); $user_row['iso_lang_id'] = $row['lang_id']; $data = array('jabber' => $request->variable('jabber', $user_row['user_jabber'], true), 'bday_day' => 0, 'bday_month' => 0, 'bday_year' => 0); if ($user_row['user_birthday']) { list($data['bday_day'], $data['bday_month'], $data['bday_year']) = explode('-', $user_row['user_birthday']); } $data['bday_day'] = $request->variable('bday_day', $data['bday_day']); $data['bday_month'] = $request->variable('bday_month', $data['bday_month']); $data['bday_year'] = $request->variable('bday_year', $data['bday_year']); $data['user_birthday'] = sprintf('%2d-%2d-%4d', $data['bday_day'], $data['bday_month'], $data['bday_year']); /** * Modify user data on editing profile in ACP * * @event core.acp_users_modify_profile * @var array data Array with user profile data * @var bool submit Flag indicating if submit button has been pressed * @var int user_id The user id * @var array user_row Array with the full user data * @since 3.1.4-RC1 */ $vars = array('data', 'submit', 'user_id', 'user_row'); extract($phpbb_dispatcher->trigger_event('core.acp_users_modify_profile', compact($vars))); if ($submit) { $error = validate_data($data, array('jabber' => array(array('string', true, 5, 255), array('jabber')), 'bday_day' => array('num', true, 1, 31), 'bday_month' => array('num', true, 1, 12), 'bday_year' => array('num', true, 1901, gmdate('Y', time())), 'user_birthday' => array('date', true))); // validate custom profile fields $cp->submit_cp_field('profile', $user_row['iso_lang_id'], $cp_data, $cp_error); if (sizeof($cp_error)) { $error = array_merge($error, $cp_error); } if (!check_form_key($form_name)) { $error[] = 'FORM_INVALID'; } /** * Validate profile data in ACP before submitting to the database * * @event core.acp_users_profile_validate * @var bool submit Flag indicating if submit button has been pressed * @var array data Array with user profile data * @var array error Array with the form errors * @since 3.1.4-RC1 */ $vars = array('submit', 'data', 'error'); extract($phpbb_dispatcher->trigger_event('core.acp_users_profile_validate', compact($vars))); if (!sizeof($error)) { $sql_ary = array('user_jabber' => $data['jabber'], 'user_birthday' => $data['user_birthday']); /** * Modify profile data in ACP before submitting to the database * * @event core.acp_users_profile_modify_sql_ary * @var array cp_data Array with the user custom profile fields data * @var array data Array with user profile data * @var int user_id The user id * @var array user_row Array with the full user data * @var array sql_ary Array with sql data * @since 3.1.4-RC1 */ $vars = array('cp_data', 'data', 'user_id', 'user_row', 'sql_ary'); extract($phpbb_dispatcher->trigger_event('core.acp_users_profile_modify_sql_ary', compact($vars))); $sql = 'UPDATE ' . USERS_TABLE . ' SET ' . $db->sql_build_array('UPDATE', $sql_ary) . "\n\t\t\t\t\t\t\tWHERE user_id = {$user_id}"; $db->sql_query($sql); // Update Custom Fields $cp->update_profile_field_data($user_id, $cp_data); trigger_error($user->lang['USER_PROFILE_UPDATED'] . adm_back_link($this->u_action . '&u=' . $user_id)); } // Replace "error" strings with their real, localised form $error = array_map(array($user, 'lang'), $error); } $s_birthday_day_options = '<option value="0"' . (!$data['bday_day'] ? ' selected="selected"' : '') . '>--</option>'; for ($i = 1; $i < 32; $i++) { $selected = $i == $data['bday_day'] ? ' selected="selected"' : ''; $s_birthday_day_options .= "<option value=\"{$i}\"{$selected}>{$i}</option>"; } $s_birthday_month_options = '<option value="0"' . (!$data['bday_month'] ? ' selected="selected"' : '') . '>--</option>'; for ($i = 1; $i < 13; $i++) { $selected = $i == $data['bday_month'] ? ' selected="selected"' : ''; $s_birthday_month_options .= "<option value=\"{$i}\"{$selected}>{$i}</option>"; } $now = getdate(); $s_birthday_year_options = '<option value="0"' . (!$data['bday_year'] ? ' selected="selected"' : '') . '>--</option>'; for ($i = $now['year'] - 100; $i <= $now['year']; $i++) { $selected = $i == $data['bday_year'] ? ' selected="selected"' : ''; $s_birthday_year_options .= "<option value=\"{$i}\"{$selected}>{$i}</option>"; } unset($now); $template->assign_vars(array('JABBER' => $data['jabber'], 'S_BIRTHDAY_DAY_OPTIONS' => $s_birthday_day_options, 'S_BIRTHDAY_MONTH_OPTIONS' => $s_birthday_month_options, 'S_BIRTHDAY_YEAR_OPTIONS' => $s_birthday_year_options, 'S_PROFILE' => true)); // Get additional profile fields and assign them to the template block var 'profile_fields' $user->get_profile_fields($user_id); $cp->generate_profile_fields('profile', $user_row['iso_lang_id']); break; case 'prefs': if (!function_exists('user_get_id_name')) { include $phpbb_root_path . 'includes/functions_user.' . $phpEx; } $data = array('dateformat' => $request->variable('dateformat', $user_row['user_dateformat'], true), 'lang' => basename($request->variable('lang', $user_row['user_lang'])), 'tz' => $request->variable('tz', $user_row['user_timezone']), 'style' => $request->variable('style', $user_row['user_style']), 'viewemail' => $request->variable('viewemail', $user_row['user_allow_viewemail']), 'massemail' => $request->variable('massemail', $user_row['user_allow_massemail']), 'hideonline' => $request->variable('hideonline', !$user_row['user_allow_viewonline']), 'notifymethod' => $request->variable('notifymethod', $user_row['user_notify_type']), 'notifypm' => $request->variable('notifypm', $user_row['user_notify_pm']), 'allowpm' => $request->variable('allowpm', $user_row['user_allow_pm']), 'topic_sk' => $request->variable('topic_sk', $user_row['user_topic_sortby_type'] ? $user_row['user_topic_sortby_type'] : 't'), 'topic_sd' => $request->variable('topic_sd', $user_row['user_topic_sortby_dir'] ? $user_row['user_topic_sortby_dir'] : 'd'), 'topic_st' => $request->variable('topic_st', $user_row['user_topic_show_days'] ? $user_row['user_topic_show_days'] : 0), 'post_sk' => $request->variable('post_sk', $user_row['user_post_sortby_type'] ? $user_row['user_post_sortby_type'] : 't'), 'post_sd' => $request->variable('post_sd', $user_row['user_post_sortby_dir'] ? $user_row['user_post_sortby_dir'] : 'a'), 'post_st' => $request->variable('post_st', $user_row['user_post_show_days'] ? $user_row['user_post_show_days'] : 0), 'view_images' => $request->variable('view_images', $this->optionget($user_row, 'viewimg')), 'view_flash' => $request->variable('view_flash', $this->optionget($user_row, 'viewflash')), 'view_smilies' => $request->variable('view_smilies', $this->optionget($user_row, 'viewsmilies')), 'view_sigs' => $request->variable('view_sigs', $this->optionget($user_row, 'viewsigs')), 'view_avatars' => $request->variable('view_avatars', $this->optionget($user_row, 'viewavatars')), 'view_wordcensor' => $request->variable('view_wordcensor', $this->optionget($user_row, 'viewcensors')), 'bbcode' => $request->variable('bbcode', $this->optionget($user_row, 'bbcode')), 'smilies' => $request->variable('smilies', $this->optionget($user_row, 'smilies')), 'sig' => $request->variable('sig', $this->optionget($user_row, 'attachsig')), 'notify' => $request->variable('notify', $user_row['user_notify'])); /** * Modify users preferences data * * @event core.acp_users_prefs_modify_data * @var array data Array with users preferences data * @var array user_row Array with user data * @since 3.1.0-b3 */ $vars = array('data', 'user_row'); extract($phpbb_dispatcher->trigger_event('core.acp_users_prefs_modify_data', compact($vars))); if ($submit) { $error = validate_data($data, array('dateformat' => array('string', false, 1, 64), 'lang' => array('match', false, '#^[a-z_\\-]{2,}$#i'), 'tz' => array('timezone'), 'topic_sk' => array('string', false, 1, 1), 'topic_sd' => array('string', false, 1, 1), 'post_sk' => array('string', false, 1, 1), 'post_sd' => array('string', false, 1, 1))); if (!check_form_key($form_name)) { $error[] = 'FORM_INVALID'; } if (!sizeof($error)) { $this->optionset($user_row, 'viewimg', $data['view_images']); $this->optionset($user_row, 'viewflash', $data['view_flash']); $this->optionset($user_row, 'viewsmilies', $data['view_smilies']); $this->optionset($user_row, 'viewsigs', $data['view_sigs']); $this->optionset($user_row, 'viewavatars', $data['view_avatars']); $this->optionset($user_row, 'viewcensors', $data['view_wordcensor']); $this->optionset($user_row, 'bbcode', $data['bbcode']); $this->optionset($user_row, 'smilies', $data['smilies']); $this->optionset($user_row, 'attachsig', $data['sig']); $sql_ary = array('user_options' => $user_row['user_options'], 'user_allow_pm' => $data['allowpm'], 'user_allow_viewemail' => $data['viewemail'], 'user_allow_massemail' => $data['massemail'], 'user_allow_viewonline' => !$data['hideonline'], 'user_notify_type' => $data['notifymethod'], 'user_notify_pm' => $data['notifypm'], 'user_dateformat' => $data['dateformat'], 'user_lang' => $data['lang'], 'user_timezone' => $data['tz'], 'user_style' => $data['style'], 'user_topic_sortby_type' => $data['topic_sk'], 'user_post_sortby_type' => $data['post_sk'], 'user_topic_sortby_dir' => $data['topic_sd'], 'user_post_sortby_dir' => $data['post_sd'], 'user_topic_show_days' => $data['topic_st'], 'user_post_show_days' => $data['post_st'], 'user_notify' => $data['notify']); /** * Modify SQL query before users preferences are updated * * @event core.acp_users_prefs_modify_sql * @var array data Array with users preferences data * @var array user_row Array with user data * @var array sql_ary SQL array with users preferences data to update * @var array error Array with errors data * @since 3.1.0-b3 */ $vars = array('data', 'user_row', 'sql_ary', 'error'); extract($phpbb_dispatcher->trigger_event('core.acp_users_prefs_modify_sql', compact($vars))); if (!sizeof($error)) { $sql = 'UPDATE ' . USERS_TABLE . ' SET ' . $db->sql_build_array('UPDATE', $sql_ary) . "\n\t\t\t\t\t\t\t\tWHERE user_id = {$user_id}"; $db->sql_query($sql); // Check if user has an active session if ($user_row['session_id']) { // We'll update the session if user_allow_viewonline has changed and the user is a bot // Or if it's a regular user and the admin set it to hide the session if ($user_row['user_allow_viewonline'] != $sql_ary['user_allow_viewonline'] && $user_row['user_type'] == USER_IGNORE || $user_row['user_allow_viewonline'] && !$sql_ary['user_allow_viewonline']) { // We also need to check if the user has the permission to cloak. $user_auth = new \phpbb\auth\auth(); $user_auth->acl($user_row); $session_sql_ary = array('session_viewonline' => $user_auth->acl_get('u_hideonline') ? $sql_ary['user_allow_viewonline'] : true); $sql = 'UPDATE ' . SESSIONS_TABLE . ' SET ' . $db->sql_build_array('UPDATE', $session_sql_ary) . "\n\t\t\t\t\t\t\t\t\t\tWHERE session_user_id = {$user_id}"; $db->sql_query($sql); unset($user_auth); } } trigger_error($user->lang['USER_PREFS_UPDATED'] . adm_back_link($this->u_action . '&u=' . $user_id)); } } // Replace "error" strings with their real, localised form $error = array_map(array($user, 'lang'), $error); } $dateformat_options = ''; foreach ($user->lang['dateformats'] as $format => $null) { $dateformat_options .= '<option value="' . $format . '"' . ($format == $data['dateformat'] ? ' selected="selected"' : '') . '>'; $dateformat_options .= $user->format_date(time(), $format, false) . (strpos($format, '|') !== false ? $user->lang['VARIANT_DATE_SEPARATOR'] . $user->format_date(time(), $format, true) : ''); $dateformat_options .= '</option>'; } $s_custom = false; $dateformat_options .= '<option value="custom"'; if (!isset($user->lang['dateformats'][$data['dateformat']])) { $dateformat_options .= ' selected="selected"'; $s_custom = true; } $dateformat_options .= '>' . $user->lang['CUSTOM_DATEFORMAT'] . '</option>'; $sort_dir_text = array('a' => $user->lang['ASCENDING'], 'd' => $user->lang['DESCENDING']); // Topic ordering options $limit_topic_days = array(0 => $user->lang['ALL_TOPICS'], 1 => $user->lang['1_DAY'], 7 => $user->lang['7_DAYS'], 14 => $user->lang['2_WEEKS'], 30 => $user->lang['1_MONTH'], 90 => $user->lang['3_MONTHS'], 180 => $user->lang['6_MONTHS'], 365 => $user->lang['1_YEAR']); $sort_by_topic_text = array('a' => $user->lang['AUTHOR'], 't' => $user->lang['POST_TIME'], 'r' => $user->lang['REPLIES'], 's' => $user->lang['SUBJECT'], 'v' => $user->lang['VIEWS']); // Post ordering options $limit_post_days = array(0 => $user->lang['ALL_POSTS'], 1 => $user->lang['1_DAY'], 7 => $user->lang['7_DAYS'], 14 => $user->lang['2_WEEKS'], 30 => $user->lang['1_MONTH'], 90 => $user->lang['3_MONTHS'], 180 => $user->lang['6_MONTHS'], 365 => $user->lang['1_YEAR']); $sort_by_post_text = array('a' => $user->lang['AUTHOR'], 't' => $user->lang['POST_TIME'], 's' => $user->lang['SUBJECT']); $_options = array('topic', 'post'); foreach ($_options as $sort_option) { ${'s_limit_' . $sort_option . '_days'} = '<select name="' . $sort_option . '_st">'; foreach (${'limit_' . $sort_option . '_days'} as $day => $text) { $selected = $data[$sort_option . '_st'] == $day ? ' selected="selected"' : ''; ${'s_limit_' . $sort_option . '_days'} .= '<option value="' . $day . '"' . $selected . '>' . $text . '</option>'; } ${'s_limit_' . $sort_option . '_days'} .= '</select>'; ${'s_sort_' . $sort_option . '_key'} = '<select name="' . $sort_option . '_sk">'; foreach (${'sort_by_' . $sort_option . '_text'} as $key => $text) { $selected = $data[$sort_option . '_sk'] == $key ? ' selected="selected"' : ''; ${'s_sort_' . $sort_option . '_key'} .= '<option value="' . $key . '"' . $selected . '>' . $text . '</option>'; } ${'s_sort_' . $sort_option . '_key'} .= '</select>'; ${'s_sort_' . $sort_option . '_dir'} = '<select name="' . $sort_option . '_sd">'; foreach ($sort_dir_text as $key => $value) { $selected = $data[$sort_option . '_sd'] == $key ? ' selected="selected"' : ''; ${'s_sort_' . $sort_option . '_dir'} .= '<option value="' . $key . '"' . $selected . '>' . $value . '</option>'; } ${'s_sort_' . $sort_option . '_dir'} .= '</select>'; } phpbb_timezone_select($template, $user, $data['tz'], true); $user_prefs_data = array('S_PREFS' => true, 'S_JABBER_DISABLED' => $config['jab_enable'] && $user_row['user_jabber'] && @extension_loaded('xml') ? false : true, 'VIEW_EMAIL' => $data['viewemail'], 'MASS_EMAIL' => $data['massemail'], 'ALLOW_PM' => $data['allowpm'], 'HIDE_ONLINE' => $data['hideonline'], 'NOTIFY_EMAIL' => $data['notifymethod'] == NOTIFY_EMAIL ? true : false, 'NOTIFY_IM' => $data['notifymethod'] == NOTIFY_IM ? true : false, 'NOTIFY_BOTH' => $data['notifymethod'] == NOTIFY_BOTH ? true : false, 'NOTIFY_PM' => $data['notifypm'], 'BBCODE' => $data['bbcode'], 'SMILIES' => $data['smilies'], 'ATTACH_SIG' => $data['sig'], 'NOTIFY' => $data['notify'], 'VIEW_IMAGES' => $data['view_images'], 'VIEW_FLASH' => $data['view_flash'], 'VIEW_SMILIES' => $data['view_smilies'], 'VIEW_SIGS' => $data['view_sigs'], 'VIEW_AVATARS' => $data['view_avatars'], 'VIEW_WORDCENSOR' => $data['view_wordcensor'], 'S_TOPIC_SORT_DAYS' => $s_limit_topic_days, 'S_TOPIC_SORT_KEY' => $s_sort_topic_key, 'S_TOPIC_SORT_DIR' => $s_sort_topic_dir, 'S_POST_SORT_DAYS' => $s_limit_post_days, 'S_POST_SORT_KEY' => $s_sort_post_key, 'S_POST_SORT_DIR' => $s_sort_post_dir, 'DATE_FORMAT' => $data['dateformat'], 'S_DATEFORMAT_OPTIONS' => $dateformat_options, 'S_CUSTOM_DATEFORMAT' => $s_custom, 'DEFAULT_DATEFORMAT' => $config['default_dateformat'], 'A_DEFAULT_DATEFORMAT' => addslashes($config['default_dateformat']), 'S_LANG_OPTIONS' => language_select($data['lang']), 'S_STYLE_OPTIONS' => style_select($data['style'])); /** * Modify users preferences data before assigning it to the template * * @event core.acp_users_prefs_modify_template_data * @var array data Array with users preferences data * @var array user_row Array with user data * @var array user_prefs_data Array with users preferences data to be assigned to the template * @since 3.1.0-b3 */ $vars = array('data', 'user_row', 'user_prefs_data'); extract($phpbb_dispatcher->trigger_event('core.acp_users_prefs_modify_template_data', compact($vars))); $template->assign_vars($user_prefs_data); break; case 'avatar': $avatars_enabled = false; /** @var \phpbb\avatar\manager $phpbb_avatar_manager */ $phpbb_avatar_manager = $phpbb_container->get('avatar.manager'); if ($config['allow_avatar']) { $avatar_drivers = $phpbb_avatar_manager->get_enabled_drivers(); // This is normalised data, without the user_ prefix $avatar_data = \phpbb\avatar\manager::clean_row($user_row, 'user'); if ($submit) { if (check_form_key($form_name)) { $driver_name = $phpbb_avatar_manager->clean_driver_name($request->variable('avatar_driver', '')); if (in_array($driver_name, $avatar_drivers) && !$request->is_set_post('avatar_delete')) { $driver = $phpbb_avatar_manager->get_driver($driver_name); $result = $driver->process_form($request, $template, $user, $avatar_data, $error); if ($result && empty($error)) { // Success! Lets save the result in the database $result = array('user_avatar_type' => $driver_name, 'user_avatar' => $result['avatar'], 'user_avatar_width' => $result['avatar_width'], 'user_avatar_height' => $result['avatar_height']); $sql = 'UPDATE ' . USERS_TABLE . ' SET ' . $db->sql_build_array('UPDATE', $result) . ' WHERE user_id = ' . (int) $user_id; $db->sql_query($sql); trigger_error($user->lang['USER_AVATAR_UPDATED'] . adm_back_link($this->u_action . '&u=' . $user_id)); } } } else { trigger_error($user->lang['FORM_INVALID'] . adm_back_link($this->u_action . '&u=' . $user_id), E_USER_WARNING); } } // Handle deletion of avatars if ($request->is_set_post('avatar_delete')) { if (!confirm_box(true)) { confirm_box(false, $user->lang('CONFIRM_AVATAR_DELETE'), build_hidden_fields(array('avatar_delete' => true))); } else { $phpbb_avatar_manager->handle_avatar_delete($db, $user, $avatar_data, USERS_TABLE, 'user_'); trigger_error($user->lang['USER_AVATAR_UPDATED'] . adm_back_link($this->u_action . '&u=' . $user_id)); } } $selected_driver = $phpbb_avatar_manager->clean_driver_name($request->variable('avatar_driver', $user_row['user_avatar_type'])); // Assign min and max values before generating avatar driver html $template->assign_vars(array('AVATAR_MIN_WIDTH' => $config['avatar_min_width'], 'AVATAR_MAX_WIDTH' => $config['avatar_max_width'], 'AVATAR_MIN_HEIGHT' => $config['avatar_min_height'], 'AVATAR_MAX_HEIGHT' => $config['avatar_max_height'])); foreach ($avatar_drivers as $current_driver) { $driver = $phpbb_avatar_manager->get_driver($current_driver); $avatars_enabled = true; $template->set_filenames(array('avatar' => $driver->get_acp_template_name())); if ($driver->prepare_form($request, $template, $user, $avatar_data, $error)) { $driver_name = $phpbb_avatar_manager->prepare_driver_name($current_driver); $driver_upper = strtoupper($driver_name); $template->assign_block_vars('avatar_drivers', array('L_TITLE' => $user->lang($driver_upper . '_TITLE'), 'L_EXPLAIN' => $user->lang($driver_upper . '_EXPLAIN'), 'DRIVER' => $driver_name, 'SELECTED' => $current_driver == $selected_driver, 'OUTPUT' => $template->assign_display('avatar'))); } } } // Avatar manager is not initialized if avatars are disabled if (isset($phpbb_avatar_manager)) { // Replace "error" strings with their real, localised form $error = $phpbb_avatar_manager->localize_errors($user, $error); } $avatar = phpbb_get_user_avatar($user_row, 'USER_AVATAR', true); $template->assign_vars(array('S_AVATAR' => true, 'ERROR' => !empty($error) ? implode('<br />', $error) : '', 'AVATAR' => empty($avatar) ? '<img src="' . $phpbb_admin_path . 'images/no_avatar.gif" alt="" />' : $avatar, 'S_FORM_ENCTYPE' => ' enctype="multipart/form-data"', 'L_AVATAR_EXPLAIN' => sprintf($user->lang['AVATAR_EXPLAIN'], $config['avatar_max_width'], $config['avatar_max_height'], $config['avatar_filesize'] / 1024), 'S_AVATARS_ENABLED' => $config['allow_avatar'] && $avatars_enabled)); break; case 'rank': if ($submit) { if (!check_form_key($form_name)) { trigger_error($user->lang['FORM_INVALID'] . adm_back_link($this->u_action . '&u=' . $user_id), E_USER_WARNING); } $rank_id = $request->variable('user_rank', 0); $sql = 'UPDATE ' . USERS_TABLE . "\n\t\t\t\t\t\tSET user_rank = {$rank_id}\n\t\t\t\t\t\tWHERE user_id = {$user_id}"; $db->sql_query($sql); trigger_error($user->lang['USER_RANK_UPDATED'] . adm_back_link($this->u_action . '&u=' . $user_id)); } $sql = 'SELECT * FROM ' . RANKS_TABLE . ' WHERE rank_special = 1 ORDER BY rank_title'; $result = $db->sql_query($sql); $s_rank_options = '<option value="0"' . (!$user_row['user_rank'] ? ' selected="selected"' : '') . '>' . $user->lang['NO_SPECIAL_RANK'] . '</option>'; while ($row = $db->sql_fetchrow($result)) { $selected = $user_row['user_rank'] && $row['rank_id'] == $user_row['user_rank'] ? ' selected="selected"' : ''; $s_rank_options .= '<option value="' . $row['rank_id'] . '"' . $selected . '>' . $row['rank_title'] . '</option>'; } $db->sql_freeresult($result); $template->assign_vars(array('S_RANK' => true, 'S_RANK_OPTIONS' => $s_rank_options)); break; case 'sig': if (!function_exists('display_custom_bbcodes')) { include $phpbb_root_path . 'includes/functions_display.' . $phpEx; } $enable_bbcode = $config['allow_sig_bbcode'] ? $this->optionget($user_row, 'sig_bbcode') : false; $enable_smilies = $config['allow_sig_smilies'] ? $this->optionget($user_row, 'sig_smilies') : false; $enable_urls = $config['allow_sig_links'] ? $this->optionget($user_row, 'sig_links') : false; $decoded_message = generate_text_for_edit($user_row['user_sig'], $user_row['user_sig_bbcode_uid'], $user_row['user_sig_bbcode_bitfield']); $signature = $request->variable('signature', $decoded_message['text'], true); $signature_preview = ''; if ($submit || $request->is_set_post('preview')) { $enable_bbcode = $config['allow_sig_bbcode'] ? !$request->variable('disable_bbcode', false) : false; $enable_smilies = $config['allow_sig_smilies'] ? !$request->variable('disable_smilies', false) : false; $enable_urls = $config['allow_sig_links'] ? !$request->variable('disable_magic_url', false) : false; if (!check_form_key($form_name)) { $error[] = 'FORM_INVALID'; } } $bbcode_uid = $bbcode_bitfield = $bbcode_flags = ''; $warn_msg = generate_text_for_storage($signature, $bbcode_uid, $bbcode_bitfield, $bbcode_flags, $enable_bbcode, $enable_urls, $enable_smilies, $config['allow_sig_img'], $config['allow_sig_flash'], true, $config['allow_sig_links'], 'sig'); if (sizeof($warn_msg)) { $error += $warn_msg; } if (!$submit) { // Parse it for displaying $signature_preview = generate_text_for_display($signature, $bbcode_uid, $bbcode_bitfield, $bbcode_flags); } else { if (!sizeof($error)) { $this->optionset($user_row, 'sig_bbcode', $enable_bbcode); $this->optionset($user_row, 'sig_smilies', $enable_smilies); $this->optionset($user_row, 'sig_links', $enable_urls); $sql_ary = array('user_sig' => $signature, 'user_options' => $user_row['user_options'], 'user_sig_bbcode_uid' => $bbcode_uid, 'user_sig_bbcode_bitfield' => $bbcode_bitfield); $sql = 'UPDATE ' . USERS_TABLE . ' SET ' . $db->sql_build_array('UPDATE', $sql_ary) . ' WHERE user_id = ' . $user_id; $db->sql_query($sql); trigger_error($user->lang['USER_SIG_UPDATED'] . adm_back_link($this->u_action . '&u=' . $user_id)); } } // Replace "error" strings with their real, localised form $error = array_map(array($user, 'lang'), $error); if ($request->is_set_post('preview')) { $decoded_message = generate_text_for_edit($signature, $bbcode_uid, $bbcode_bitfield); } /** @var \phpbb\controller\helper $controller_helper */ $controller_helper = $phpbb_container->get('controller.helper'); $template->assign_vars(array('S_SIGNATURE' => true, 'SIGNATURE' => $decoded_message['text'], 'SIGNATURE_PREVIEW' => $signature_preview, 'S_BBCODE_CHECKED' => !$enable_bbcode ? ' checked="checked"' : '', 'S_SMILIES_CHECKED' => !$enable_smilies ? ' checked="checked"' : '', 'S_MAGIC_URL_CHECKED' => !$enable_urls ? ' checked="checked"' : '', 'BBCODE_STATUS' => $user->lang($config['allow_sig_bbcode'] ? 'BBCODE_IS_ON' : 'BBCODE_IS_OFF', '<a href="' . $controller_helper->route('phpbb_help_bbcode_controller') . '">', '</a>'), 'SMILIES_STATUS' => $config['allow_sig_smilies'] ? $user->lang['SMILIES_ARE_ON'] : $user->lang['SMILIES_ARE_OFF'], 'IMG_STATUS' => $config['allow_sig_img'] ? $user->lang['IMAGES_ARE_ON'] : $user->lang['IMAGES_ARE_OFF'], 'FLASH_STATUS' => $config['allow_sig_flash'] ? $user->lang['FLASH_IS_ON'] : $user->lang['FLASH_IS_OFF'], 'URL_STATUS' => $config['allow_sig_links'] ? $user->lang['URL_IS_ON'] : $user->lang['URL_IS_OFF'], 'L_SIGNATURE_EXPLAIN' => $user->lang('SIGNATURE_EXPLAIN', (int) $config['max_sig_chars']), 'S_BBCODE_ALLOWED' => $config['allow_sig_bbcode'], 'S_SMILIES_ALLOWED' => $config['allow_sig_smilies'], 'S_BBCODE_IMG' => $config['allow_sig_img'] ? true : false, 'S_BBCODE_FLASH' => $config['allow_sig_flash'] ? true : false, 'S_LINKS_ALLOWED' => $config['allow_sig_links'] ? true : false)); // Assigning custom bbcodes display_custom_bbcodes(); break; case 'attach': /* @var $pagination \phpbb\pagination */ $pagination = $phpbb_container->get('pagination'); $start = $request->variable('start', 0); $deletemark = isset($_POST['delmarked']) ? true : false; $marked = $request->variable('mark', array(0)); // Sort keys $sort_key = $request->variable('sk', 'a'); $sort_dir = $request->variable('sd', 'd'); if ($deletemark && sizeof($marked)) { $sql = 'SELECT attach_id FROM ' . ATTACHMENTS_TABLE . ' WHERE poster_id = ' . $user_id . ' AND is_orphan = 0 AND ' . $db->sql_in_set('attach_id', $marked); $result = $db->sql_query($sql); $marked = array(); while ($row = $db->sql_fetchrow($result)) { $marked[] = $row['attach_id']; } $db->sql_freeresult($result); } if ($deletemark && sizeof($marked)) { if (confirm_box(true)) { $sql = 'SELECT real_filename FROM ' . ATTACHMENTS_TABLE . ' WHERE ' . $db->sql_in_set('attach_id', $marked); $result = $db->sql_query($sql); $log_attachments = array(); while ($row = $db->sql_fetchrow($result)) { $log_attachments[] = $row['real_filename']; } $db->sql_freeresult($result); /** @var \phpbb\attachment\manager $attachment_manager */ $attachment_manager = $phpbb_container->get('attachment.manager'); $attachment_manager->delete('attach', $marked); unset($attachment_manager); $message = sizeof($log_attachments) == 1 ? $user->lang['ATTACHMENT_DELETED'] : $user->lang['ATTACHMENTS_DELETED']; $phpbb_log->add('admin', $user->data['user_id'], $user->ip, 'LOG_ATTACHMENTS_DELETED', false, array(implode($user->lang['COMMA_SEPARATOR'], $log_attachments))); trigger_error($message . adm_back_link($this->u_action . '&u=' . $user_id)); } else { confirm_box(false, $user->lang['CONFIRM_OPERATION'], build_hidden_fields(array('u' => $user_id, 'i' => $id, 'mode' => $mode, 'action' => $action, 'delmarked' => true, 'mark' => $marked))); } } $sk_text = array('a' => $user->lang['SORT_FILENAME'], 'c' => $user->lang['SORT_EXTENSION'], 'd' => $user->lang['SORT_SIZE'], 'e' => $user->lang['SORT_DOWNLOADS'], 'f' => $user->lang['SORT_POST_TIME'], 'g' => $user->lang['SORT_TOPIC_TITLE']); $sk_sql = array('a' => 'a.real_filename', 'c' => 'a.extension', 'd' => 'a.filesize', 'e' => 'a.download_count', 'f' => 'a.filetime', 'g' => 't.topic_title'); $sd_text = array('a' => $user->lang['ASCENDING'], 'd' => $user->lang['DESCENDING']); $s_sort_key = ''; foreach ($sk_text as $key => $value) { $selected = $sort_key == $key ? ' selected="selected"' : ''; $s_sort_key .= '<option value="' . $key . '"' . $selected . '>' . $value . '</option>'; } $s_sort_dir = ''; foreach ($sd_text as $key => $value) { $selected = $sort_dir == $key ? ' selected="selected"' : ''; $s_sort_dir .= '<option value="' . $key . '"' . $selected . '>' . $value . '</option>'; } if (!isset($sk_sql[$sort_key])) { $sort_key = 'a'; } $order_by = $sk_sql[$sort_key] . ' ' . ($sort_dir == 'a' ? 'ASC' : 'DESC'); $sql = 'SELECT COUNT(attach_id) as num_attachments FROM ' . ATTACHMENTS_TABLE . "\n\t\t\t\t\tWHERE poster_id = {$user_id}\n\t\t\t\t\t\tAND is_orphan = 0"; $result = $db->sql_query_limit($sql, 1); $num_attachments = (int) $db->sql_fetchfield('num_attachments'); $db->sql_freeresult($result); $sql = 'SELECT a.*, t.topic_title, p.message_subject as message_title FROM ' . ATTACHMENTS_TABLE . ' a LEFT JOIN ' . TOPICS_TABLE . ' t ON (a.topic_id = t.topic_id AND a.in_message = 0) LEFT JOIN ' . PRIVMSGS_TABLE . ' p ON (a.post_msg_id = p.msg_id AND a.in_message = 1) WHERE a.poster_id = ' . $user_id . "\n\t\t\t\t\t\tAND a.is_orphan = 0\n\t\t\t\t\tORDER BY {$order_by}"; $result = $db->sql_query_limit($sql, $config['topics_per_page'], $start); while ($row = $db->sql_fetchrow($result)) { if ($row['in_message']) { $view_topic = append_sid("{$phpbb_root_path}ucp.{$phpEx}", "i=pm&p={$row['post_msg_id']}"); } else { $view_topic = append_sid("{$phpbb_root_path}viewtopic.{$phpEx}", "t={$row['topic_id']}&p={$row['post_msg_id']}") . '#p' . $row['post_msg_id']; } $template->assign_block_vars('attach', array('REAL_FILENAME' => $row['real_filename'], 'COMMENT' => nl2br($row['attach_comment']), 'EXTENSION' => $row['extension'], 'SIZE' => get_formatted_filesize($row['filesize']), 'DOWNLOAD_COUNT' => $row['download_count'], 'POST_TIME' => $user->format_date($row['filetime']), 'TOPIC_TITLE' => $row['in_message'] ? $row['message_title'] : $row['topic_title'], 'ATTACH_ID' => $row['attach_id'], 'POST_ID' => $row['post_msg_id'], 'TOPIC_ID' => $row['topic_id'], 'S_IN_MESSAGE' => $row['in_message'], 'U_DOWNLOAD' => append_sid("{$phpbb_root_path}download/file.{$phpEx}", 'mode=view&id=' . $row['attach_id']), 'U_VIEW_TOPIC' => $view_topic)); } $db->sql_freeresult($result); $base_url = $this->u_action . "&u={$user_id}&sk={$sort_key}&sd={$sort_dir}"; $pagination->generate_template_pagination($base_url, 'pagination', 'start', $num_attachments, $config['topics_per_page'], $start); $template->assign_vars(array('S_ATTACHMENTS' => true, 'S_SORT_KEY' => $s_sort_key, 'S_SORT_DIR' => $s_sort_dir)); break; case 'groups': if (!function_exists('group_user_attributes')) { include $phpbb_root_path . 'includes/functions_user.' . $phpEx; } $user->add_lang(array('groups', 'acp/groups')); $group_id = $request->variable('g', 0); if ($group_id) { // Check the founder only entry for this group to make sure everything is well $sql = 'SELECT group_founder_manage FROM ' . GROUPS_TABLE . ' WHERE group_id = ' . $group_id; $result = $db->sql_query($sql); $founder_manage = (int) $db->sql_fetchfield('group_founder_manage'); $db->sql_freeresult($result); if ($user->data['user_type'] != USER_FOUNDER && $founder_manage) { trigger_error($user->lang['NOT_ALLOWED_MANAGE_GROUP'] . adm_back_link($this->u_action . '&u=' . $user_id), E_USER_WARNING); } } switch ($action) { case 'demote': case 'promote': case 'default': if (!$group_id) { trigger_error($user->lang['NO_GROUP'] . adm_back_link($this->u_action . '&u=' . $user_id), E_USER_WARNING); } group_user_attributes($action, $group_id, $user_id); if ($action == 'default') { $user_row['group_id'] = $group_id; } break; case 'delete': if (confirm_box(true)) { if (!$group_id) { trigger_error($user->lang['NO_GROUP'] . adm_back_link($this->u_action . '&u=' . $user_id), E_USER_WARNING); } if ($error = group_user_del($group_id, $user_id)) { trigger_error($user->lang[$error] . adm_back_link($this->u_action . '&u=' . $user_id), E_USER_WARNING); } $error = array(); // The delete action was successful - therefore update the user row... $sql = 'SELECT u.*, s.* FROM ' . USERS_TABLE . ' u LEFT JOIN ' . SESSIONS_TABLE . ' s ON (s.session_user_id = u.user_id) WHERE u.user_id = ' . $user_id . ' ORDER BY s.session_time DESC'; $result = $db->sql_query_limit($sql, 1); $user_row = $db->sql_fetchrow($result); $db->sql_freeresult($result); } else { confirm_box(false, $user->lang['CONFIRM_OPERATION'], build_hidden_fields(array('u' => $user_id, 'i' => $id, 'mode' => $mode, 'action' => $action, 'g' => $group_id))); } break; case 'approve': if (confirm_box(true)) { if (!$group_id) { trigger_error($user->lang['NO_GROUP'] . adm_back_link($this->u_action . '&u=' . $user_id), E_USER_WARNING); } group_user_attributes($action, $group_id, $user_id); } else { confirm_box(false, $user->lang['CONFIRM_OPERATION'], build_hidden_fields(array('u' => $user_id, 'i' => $id, 'mode' => $mode, 'action' => $action, 'g' => $group_id))); } break; } // Add user to group? if ($submit) { if (!check_form_key($form_name)) { trigger_error($user->lang['FORM_INVALID'] . adm_back_link($this->u_action . '&u=' . $user_id), E_USER_WARNING); } if (!$group_id) { trigger_error($user->lang['NO_GROUP'] . adm_back_link($this->u_action . '&u=' . $user_id), E_USER_WARNING); } // Add user/s to group if ($error = group_user_add($group_id, $user_id)) { trigger_error($user->lang[$error] . adm_back_link($this->u_action . '&u=' . $user_id), E_USER_WARNING); } $error = array(); } /** @var \phpbb\group\helper $group_helper */ $group_helper = $phpbb_container->get('group_helper'); $sql = 'SELECT ug.*, g.* FROM ' . GROUPS_TABLE . ' g, ' . USER_GROUP_TABLE . " ug\n\t\t\t\t\tWHERE ug.user_id = {$user_id}\n\t\t\t\t\t\tAND g.group_id = ug.group_id\n\t\t\t\t\tORDER BY g.group_type DESC, ug.user_pending ASC, g.group_name"; $result = $db->sql_query($sql); $i = 0; $group_data = $id_ary = array(); while ($row = $db->sql_fetchrow($result)) { $type = $row['group_type'] == GROUP_SPECIAL ? 'special' : ($row['user_pending'] ? 'pending' : 'normal'); $group_data[$type][$i]['group_id'] = $row['group_id']; $group_data[$type][$i]['group_name'] = $row['group_name']; $group_data[$type][$i]['group_leader'] = $row['group_leader'] ? 1 : 0; $id_ary[] = $row['group_id']; $i++; } $db->sql_freeresult($result); // Select box for other groups $sql = 'SELECT group_id, group_name, group_type, group_founder_manage FROM ' . GROUPS_TABLE . ' ' . (sizeof($id_ary) ? 'WHERE ' . $db->sql_in_set('group_id', $id_ary, true) : '') . ' ORDER BY group_type DESC, group_name ASC'; $result = $db->sql_query($sql); $s_group_options = ''; while ($row = $db->sql_fetchrow($result)) { if (!$config['coppa_enable'] && $row['group_name'] == 'REGISTERED_COPPA') { continue; } // Do not display those groups not allowed to be managed if ($user->data['user_type'] != USER_FOUNDER && $row['group_founder_manage']) { continue; } $s_group_options .= '<option' . ($row['group_type'] == GROUP_SPECIAL ? ' class="sep"' : '') . ' value="' . $row['group_id'] . '">' . $group_helper->get_name($row['group_name']) . '</option>'; } $db->sql_freeresult($result); $current_type = ''; foreach ($group_data as $group_type => $data_ary) { if ($current_type != $group_type) { $template->assign_block_vars('group', array('S_NEW_GROUP_TYPE' => true, 'GROUP_TYPE' => $user->lang['USER_GROUP_' . strtoupper($group_type)])); } foreach ($data_ary as $data) { $template->assign_block_vars('group', array('U_EDIT_GROUP' => append_sid("{$phpbb_admin_path}index.{$phpEx}", "i=groups&mode=manage&action=edit&u={$user_id}&g={$data['group_id']}&back_link=acp_users_groups"), 'U_DEFAULT' => $this->u_action . "&action=default&u={$user_id}&g=" . $data['group_id'], 'U_DEMOTE_PROMOTE' => $this->u_action . '&action=' . ($data['group_leader'] ? 'demote' : 'promote') . "&u={$user_id}&g=" . $data['group_id'], 'U_DELETE' => $this->u_action . "&action=delete&u={$user_id}&g=" . $data['group_id'], 'U_APPROVE' => $group_type == 'pending' ? $this->u_action . "&action=approve&u={$user_id}&g=" . $data['group_id'] : '', 'GROUP_NAME' => $group_type == 'special' ? $user->lang['G_' . $data['group_name']] : $data['group_name'], 'L_DEMOTE_PROMOTE' => $data['group_leader'] ? $user->lang['GROUP_DEMOTE'] : $user->lang['GROUP_PROMOTE'], 'S_IS_MEMBER' => $group_type != 'pending' ? true : false, 'S_NO_DEFAULT' => $user_row['group_id'] != $data['group_id'] ? true : false, 'S_SPECIAL_GROUP' => $group_type == 'special' ? true : false)); } } $template->assign_vars(array('S_GROUPS' => true, 'S_GROUP_OPTIONS' => $s_group_options)); break; case 'perm': if (!class_exists('auth_admin')) { include $phpbb_root_path . 'includes/acp/auth.' . $phpEx; } $auth_admin = new auth_admin(); $user->add_lang('acp/permissions'); add_permission_language(); $forum_id = $request->variable('f', 0); // Global Permissions if (!$forum_id) { // Select auth options $sql = 'SELECT auth_option, is_local, is_global FROM ' . ACL_OPTIONS_TABLE . ' WHERE auth_option ' . $db->sql_like_expression($db->get_any_char() . '_') . ' AND is_global = 1 ORDER BY auth_option'; $result = $db->sql_query($sql); $hold_ary = array(); while ($row = $db->sql_fetchrow($result)) { $hold_ary = $auth_admin->get_mask('view', $user_id, false, false, $row['auth_option'], 'global', ACL_NEVER); $auth_admin->display_mask('view', $row['auth_option'], $hold_ary, 'user', false, false); } $db->sql_freeresult($result); unset($hold_ary); } else { $sql = 'SELECT auth_option, is_local, is_global FROM ' . ACL_OPTIONS_TABLE . "\n\t\t\t\t\t\tWHERE auth_option " . $db->sql_like_expression($db->get_any_char() . '_') . "\n\t\t\t\t\t\t\tAND is_local = 1\n\t\t\t\t\t\tORDER BY is_global DESC, auth_option"; $result = $db->sql_query($sql); while ($row = $db->sql_fetchrow($result)) { $hold_ary = $auth_admin->get_mask('view', $user_id, false, $forum_id, $row['auth_option'], 'local', ACL_NEVER); $auth_admin->display_mask('view', $row['auth_option'], $hold_ary, 'user', true, false); } $db->sql_freeresult($result); } $s_forum_options = '<option value="0"' . (!$forum_id ? ' selected="selected"' : '') . '>' . $user->lang['VIEW_GLOBAL_PERMS'] . '</option>'; $s_forum_options .= make_forum_select($forum_id, false, true, false, false, false); $template->assign_vars(array('S_PERMISSIONS' => true, 'S_GLOBAL' => !$forum_id ? true : false, 'S_FORUM_OPTIONS' => $s_forum_options, 'U_ACTION' => $this->u_action . '&u=' . $user_id, 'U_USER_PERMISSIONS' => append_sid("{$phpbb_admin_path}index.{$phpEx}", 'i=permissions&mode=setting_user_global&user_id[]=' . $user_id), 'U_USER_FORUM_PERMISSIONS' => append_sid("{$phpbb_admin_path}index.{$phpEx}", 'i=permissions&mode=setting_user_local&user_id[]=' . $user_id))); break; } // Assign general variables $template->assign_vars(array('S_ERROR' => sizeof($error) ? true : false, 'ERROR_MSG' => sizeof($error) ? implode('<br />', $error) : '')); }
public function main($id, $mode) { global $config, $db, $user, $template, $table_prefix, $request, $phpbb_root_path, $phpEx; $this->user = $user; $this->phpbb_root_path = $phpbb_root_path; $this->php_ext = $phpEx; $user->add_lang_ext('tas2580/paypal', 'common'); $sql = 'SELECT * FROM ' . $table_prefix . 'paypal_config'; $result = $db->sql_query($sql); $paypal_config = $db->sql_fetchrow($result); switch ($mode) { case 'settings': $this->tpl_name = 'acp_paypal_body'; $this->page_title = $user->lang('ACP_PAYPAL_TITLE'); add_form_key('acp_paypal'); // delete amount if ($request->is_set('delete')) { $id = $request->variable('delete', 0); if (confirm_box(true)) { $sql = 'DELETE FROM ' . $table_prefix . 'paypal_amount WHERE amount_id = ' . (int) $id; $result = $db->sql_query($sql); trigger_error($user->lang['AMOUNT_DELETED'] . adm_back_link($this->u_action)); } else { confirm_box(false, $user->lang['CONFIRM_OPERATION'], build_hidden_fields(array('action' => 'delete', 'id' => $id))); } } $error = array(); // Form is submitted if ($request->is_set_post('submit')) { if (!check_form_key('acp_paypal')) { trigger_error($user->lang('FORM_INVALID') . adm_back_link($this->u_action), E_USER_WARNING); } $data['paypal_email'] = $request->variable('paypal_email', '', true); $data['paypal_sandbox'] = $request->variable('paypal_sandbox', 0); $data['paypal_currency'] = $request->variable('paypal_currency', ''); $data['paypal_title'] = $request->variable('paypal_title', '', true); $data['paypal_text'] = $request->variable('paypal_text', '', true); // Validate user input $validate_array = array('paypal_email' => array('email'), 'paypal_title' => array('string', true, 0, 255)); if (!function_exists('validate_data')) { include $this->phpbb_root_path . 'includes/functions_user.' . $this->php_ext; } $error = validate_data($data, $validate_array); if (!sizeof($error)) { $bbcode_options = 7; generate_text_for_storage($data['paypal_text'], $bbcode_uid, $bbcode_bitfield, $bbcode_options, true, true, true); $sql_data = array('paypal_email' => $data['paypal_email'], 'paypal_title' => $data['paypal_title'], 'paypal_currency' => $data['paypal_currency'], 'paypal_text' => $data['paypal_text'], 'bbcode_uid' => $bbcode_uid, 'bbcode_bitfield' => $bbcode_bitfield, 'paypal_sandbox' => $data['paypal_sandbox']); $sql = 'UPDATE ' . $table_prefix . 'paypal_config SET ' . $db->sql_build_array('UPDATE', $sql_data); $db->sql_query($sql); trigger_error($user->lang('ACP_SAVED') . adm_back_link($this->u_action)); } else { $template->assign_vars(array('ERROR' => implode('<br />', $error), 'U_ACTION' => $this->u_action, 'PAYPAL_EMAIL' => $data['paypal_email'], 'PAYPAL_TITLE' => $data['paypal_title'], 'PAYPAL_SANDBOX' => $data['paypal_sandbox'], 'PAYPAL_TEXT' => $data['paypal_text'], 'CURRENCY_CODE' => $this->currency_code_select($data['paypal_currency']))); } } // Form is submitted if ($request->is_set_post('submit_amount')) { $add_amount = $request->variable('add_amount', 0); $sql_data = array('amount_value' => $add_amount); $sql = 'INSERT INTO ' . $table_prefix . 'paypal_amount ' . $db->sql_build_array('INSERT', $sql_data); $db->sql_query($sql); trigger_error($user->lang('ACP_SAVED') . adm_back_link($this->u_action)); } $sql = 'SELECT * FROM ' . $table_prefix . 'paypal_amount ORDER BY amount_value'; $result = $db->sql_query($sql); while ($row = $db->sql_fetchrow($result)) { $template->assign_block_vars('amounts', array('AMOUNT' => number_format($row['amount_value'] / 100, 2), 'U_DELETE' => $this->u_action . '&delete=' . $row['amount_id'])); } if (!sizeof($error)) { $paypal_text = generate_text_for_edit($paypal_config['paypal_text'], $paypal_config['bbcode_uid'], $paypal_config['bbcode_bitfield']); $template->assign_vars(array('U_ACTION' => $this->u_action, 'PAYPAL_EMAIL' => $paypal_config['paypal_email'], 'PAYPAL_TITLE' => $paypal_config['paypal_title'], 'PAYPAL_SANDBOX' => $paypal_config['paypal_sandbox'], 'PAYPAL_TEXT' => $paypal_text['text'], 'CURRENCY_CODE' => $this->currency_code_select($paypal_config['paypal_currency']))); } break; case 'items': $this->tpl_name = 'acp_paypal_items_body'; $this->page_title = $user->lang('ACP_PAYPAL_ITEMS'); $item_id = $request->variable('item_id', 0); $action = $request->variable('action', ''); switch ($action) { case 'add': add_form_key('acp_paypal'); $template->assign_vars(array('ITEM_FORM_NAME' => $this->user->lang('ACP_ADD_ITEM'), 'U_ACTION' => $this->u_action . '&action=add', 'S_FORM' => true, 'ITEM_NAME' => $request->variable('item_name', '', true))); break; case 'edit': add_form_key('acp_paypal'); $sql = 'SELECT * FROM ' . $table_prefix . 'paypal_items WHERE item_id = ' . (int) $item_id; $result = $db->sql_query($sql); $data = $db->sql_fetchrow($result); $item_text = generate_text_for_edit($data['item_text'], $data['bbcode_uid'], $data['bbcode_bitfield']); $template->assign_vars(array('ITEM_FORM_NAME' => $this->user->lang('ACP_EDIT_ITEM'), 'U_ACTION' => $this->u_action . '&action=edit&item_id=' . $data['item_id'], 'S_FORM' => true, 'ITEM_NAME' => $data['item_name'], 'ITEM_TEXT' => $item_text['text'])); break; case 'delete': if (confirm_box(true)) { $sql = 'DELETE FROM ' . $table_prefix . 'paypal_items WHERE item_id = ' . (int) $item_id; $result = $db->sql_query($sql); trigger_error($user->lang['ITEM_DELETED'] . adm_back_link($this->u_action)); } else { confirm_box(false, $user->lang['CONFIRM_OPERATION'], build_hidden_fields(array('action' => 'delete', 'i' => $id, 'item_id' => $item_id))); } break; } switch ($action) { case 'add': case 'edit': // Form is submitted if ($request->is_set_post('submit')) { if (!check_form_key('acp_paypal')) { trigger_error($user->lang('FORM_INVALID') . adm_back_link($this->u_action), E_USER_WARNING); } $data['item_name'] = $request->variable('item_name', '', true); $data['item_text'] = $request->variable('item_text', '', true); // Validate user input $validate_array = array('item_name' => array('string', false, 1, 255), 'item_text' => array('string', false, 1, 99999)); if (!function_exists('validate_data')) { include $this->phpbb_root_path . 'includes/functions_user.' . $this->php_ext; } $error = validate_data($data, $validate_array); if (!sizeof($error)) { $bbcode_options = 7; generate_text_for_storage($data['item_text'], $bbcode_uid, $bbcode_bitfield, $bbcode_options, true, true, true); $sql_data = array('item_name' => $data['item_name'], 'item_text' => $data['item_text'], 'bbcode_uid' => $bbcode_uid, 'bbcode_bitfield' => $bbcode_bitfield); if ($action == 'add') { $sql = 'INSERT INTO ' . $table_prefix . 'paypal_items ' . $db->sql_build_array('INSERT', $sql_data); $db->sql_query($sql); trigger_error($user->lang('ACP_ITEM_ADD_SUCCESS') . adm_back_link($this->u_action)); } else { if ($action == 'edit') { $sql = 'UPDATE ' . $table_prefix . 'paypal_items SET ' . $db->sql_build_array('UPDATE', $sql_data) . ' WHERE item_id = ' . (int) $item_id; $db->sql_query($sql); trigger_error($user->lang('ACP_ITEM_EDIT_SUCCESS') . adm_back_link($this->u_action)); } } } else { $template->assign_vars(array('ERROR' => implode('<br />', $error), 'ITEM_NAME' => $data['item_name'], 'ITEM_TEXT' => $data['item_text'])); } } break; default: $ammount = array(); $sql = 'SELECT item_id, donation_amount FROM ' . $table_prefix . 'paypal_donations ORDER BY item_name'; $result = $db->sql_query($sql); while ($row = $db->sql_fetchrow($result)) { if (isset($ammount[$row['item_id']])) { $ammount[$row['item_id']] += $row['donation_amount']; } else { $ammount[$row['item_id']] = $row['donation_amount']; } } $sql = 'SELECT item_name, item_id FROM ' . $table_prefix . 'paypal_items ORDER BY item_name'; $result = $db->sql_query($sql); while ($row = $db->sql_fetchrow($result)) { $template->assign_block_vars('items', array('ITEM' => $row['item_name'], 'AMMOUNT' => (isset($ammount[$row['item_id']]) ? number_format($ammount[$row['item_id']], 2) : '0.00') . ' ' . $paypal_config['paypal_currency'], 'U_EDIT' => $this->u_action . '&action=edit&item_id=' . $row['item_id'], 'U_DELETE' => $this->u_action . '&action=delete&item_id=' . $row['item_id'])); } $template->assign_vars(array('U_ACTION' => $this->u_action . '&action=add')); break; } break; case 'donations': $this->tpl_name = 'acp_paypal_donations_body'; $this->page_title = $user->lang('ACP_PAYPAL_DONATIONS'); $action = $request->variable('action', ''); if ($action == 'delete') { $donation_id = $request->variable('donation_id', 0); if (confirm_box(true)) { $sql = 'DELETE FROM ' . $table_prefix . 'paypal_donations WHERE donation_id = ' . (int) $donation_id; $result = $db->sql_query($sql); trigger_error($user->lang['DONATION_DELETED'] . adm_back_link($this->u_action)); } else { confirm_box(false, $user->lang['CONFIRM_OPERATION'], build_hidden_fields(array('action' => 'delete', 'i' => $id, 'donation_id' => $donation_id))); } } $sql_array = array('SELECT' => 'd.*, u.user_id, u.username, u.user_colour, i.item_name', 'FROM' => array($table_prefix . 'paypal_donations' => 'd'), 'LEFT_JOIN' => array(array('FROM' => array(USERS_TABLE => 'u'), 'ON' => 'u.user_id = d.user_id'), array('FROM' => array($table_prefix . 'paypal_items' => 'i'), 'ON' => 'i.item_id = d.item_id')), 'ORDER_BY' => 'd.donation_time DESC'); $sql = $db->sql_build_query('SELECT', $sql_array); $result = $db->sql_query($sql); while ($row = $db->sql_fetchrow($result)) { $template->assign_block_vars('donations', array('USER' => get_username_string('full', $row['user_id'], $row['username'], $row['user_colour']), 'ITEM' => $row['item_name'], 'TIME' => $this->user->format_date($row['donation_time']), 'AMOUNT' => number_format($row['donation_amount'], 2) . ' ' . $paypal_config['paypal_currency'], 'U_DELETE' => $this->u_action . '&action=delete&donation_id=' . $row['donation_id'])); } $template->assign_vars(array('S_CURL' => function_exists('curl_init'))); break; } }