function makeHashFilename($filename) { global $user; $return = getHashcode($user . time() . $filename); $pos = strpos($filename, "."); if ($pos > 0) { $return = substr($filename, 0, $pos + 1) . $return . substr($filename, $pos); } else { $return = $filename . $return; } return $return; }
/* var_dump($GLOBALS); echo "formChangeZugang: $formChangeZugang<br>"; echo "formUserName: $formUserName<br>"; echo "formUserGruppe: $formUserGruppe<br>"; echo "formUserPass: $formUserPass<br>"; echo "formUserAddress: $formUserAddress<br>"; */ $sql->query("UPDATE user SET " . ($formUserPass ? "tmppass="******", " : "") . " name=" . convstr($formUserName) . ", verfallsdatum=" . convstr(getDateTimeForm("formUserValidTill")) . ", adresse=" . convstr($formUserAddress) . ", tmpdel=" . ($formUserDelete ? "1" : "0") . " WHERE zugang=" . convstr($formChangeZugang)); $sql->query("UPDATE gruppe SET gruppe=" . convstr($formUserGruppe) . " WHERE zugang=" . convstr($formChangeZugang)); } /** * Handle newuser */ if ($actionUserNew && $formUserZugang) { if (checkZugangsname($formUserZugang)) { $sql->query("INSERT INTO user (zugang, passwort, tmppass, eigentuemer, verfallsdatum) VALUES (" . convstr($formUserZugang) . ", " . convstr(substr(getHashcode(time() . $formUserZugang), 0, 24)) . ", " . convstr($formUserZugang) . ", " . convstr($user) . ", now() + INTERVAL 2 DAY)"); $formUserGruppe = $formUserGruppe; if (!$formUserGruppe || !$isVerwalter) { $formUserGruppe = 'leser'; } $sql->query("INSERT INTO gruppe (zugang, gruppe) VALUES (" . convstr($formUserZugang) . ", " . convstr($formUserGruppe) . ")"); // automatisch aufklappen $formChangeZugang = $formUserZugang; } // else var_dump(checkZugangsname($userZugang)); } function transformRequestValueInName($value) { $return = ""; $len = strlen($value); for ($i = 0; $i < $len; $i++) {