function upcoming_eot()
{
global $dbtable_prefix;
$config['days_before'] = 4;
$query_strlen = 20000;
$now = gmdate('Ymd');
$query = "SELECT b.`email`,c.`_user` as `user` FROM `{$dbtable_prefix}payments` a,`" . USER_ACCOUNTS_TABLE . "` b,`{$dbtable_prefix}user_profiles` c WHERE a.`fk_user_id`=b.`" . USER_ACCOUNT_ID . "` AND a.`fk_user_id`=c.`fk_user_id` AND a.`paid_until`='{$now}'-INTERVAL " . $config['days_before'] . " DAY AND a.`is_active`=1 AND a.`is_recurring`=0";
if (!($res = @mysql_query($query))) {
trigger_error(mysql_error(), E_USER_ERROR);
}
$alerts = array();
while ($rsrow = mysql_fetch_assoc($res)) {
$alerts[$rsrow['email']] = $rsrow;
}
if (!empty($alerts)) {
$skin = get_default_skin_dir();
$tpl = new phemplate(_BASEPATH_ . '/skins_site/' . $skin . '/emails/', 'remove_nonjs');
$tpl->set_file('temp', 'subscr_expire_alert.html');
$tpl->set_var('tplvars', $tplvars);
$subject = sprintf($GLOBALS['_lang'][218], _SITENAME_);
$subject = sanitize_and_format($subject, TYPE_STRING, $GLOBALS['__field2format'][FIELD_TEXTFIELD]);
$insert = "INSERT INTO `{$dbtable_prefix}queue_email` (`to`,`subject`,`message_body`) VALUES ";
$iquery = $insert;
foreach ($alerts as $email => $v) {
$tpl->set_var('output', $v);
$message_body = $tpl->process('', 'temp', TPL_LOOP | TPL_OPTLOOP | TPL_OPTIONAL | TPL_FINISH);
$message_body = sanitize_and_format($message_body, TYPE_STRING, $GLOBALS['__field2format'][FIELD_TEXTAREA]);
if (strlen($iquery) > $query_strlen) {
$iquery = substr($iquery, 0, -1);
if (!($res = @mysql_query($iquery))) {
trigger_error(mysql_error(), E_USER_ERROR);
}
$iquery = $insert;
}
$iquery .= "('{$email}','{$subject}','{$message_body}'),";
}
if ($iquery != $insert) {
$iquery = substr($iquery, 0, -1);
if (!($res = @mysql_query($iquery))) {
trigger_error(mysql_error(), E_USER_ERROR);
}
}
}
return true;
}
<?php
/******************************************************************************
Etano
===============================================================================
File: admin/photo_search.php
$Revision$
Software by: DateMill (http://www.datemill.com)
Copyright by: DateMill (http://www.datemill.com)
Support at: http://www.datemill.com/forum
*******************************************************************************
* See the "docs/licenses/etano.txt" file for license. *
******************************************************************************/
require_once '../includes/common.inc.php';
require_once '../includes/admin_functions.inc.php';
allow_dept(DEPT_ADMIN);
$tpl = new phemplate('skin/', 'remove_nonjs');
$output = array();
$output['stat'] = vector2options($accepted_pstats);
$tpl->set_file('content', 'photo_search.html');
$tpl->set_var('output', $output);
$tpl->process('content', 'content', TPL_LOOP);
$tplvars['title'] = 'Search';
$tplvars['css'] = 'photo_search.css';
$tplvars['page'] = 'photo_search';
include 'frame.php';
require_once '../includes/admin_functions.inc.php';
require_once '../includes/tables/loc_countries.inc.php';
allow_dept(DEPT_ADMIN);
$tpl = new phemplate('skin/', 'remove_nonjs');
$countries = $countries_default['defaults'];
if (isset($_SESSION['topass']['input'])) {
$countries = $_SESSION['topass']['input'];
} elseif (!empty($_GET['country_id'])) {
$country_id = (int) $_GET['country_id'];
$query = "SELECT `country_id`,`country`,`iso3166`,`prefered_input` FROM `{$dbtable_prefix}loc_countries` WHERE `country_id`={$country_id}";
if (!($res = @mysql_query($query))) {
trigger_error(mysql_error(), E_USER_ERROR);
}
if (mysql_num_rows($res)) {
$countries = mysql_fetch_assoc($res);
$countries['country'] = sanitize_and_format($countries['country'], TYPE_STRING, $__field2format[TEXT_DB2EDIT]);
}
}
$countries['prefered_input'] = vector2options($country_prefered_input, $countries['prefered_input']);
$tpl->set_file('content', 'loc_countries_addedit.html');
$tpl->set_var('countries', $countries);
if (isset($_GET['o'])) {
$tpl->set_var('o', $_GET['o']);
}
if (isset($_GET['r'])) {
$tpl->set_var('r', $_GET['r']);
}
$tpl->process('content', 'content');
$tplvars['title'] = 'Location Management: Countries';
$tplvars['page'] = 'loc_countries_addedit';
include 'frame.php';
if (!($res = @mysql_query($query))) {
trigger_error(mysql_error(), E_USER_ERROR);
}
while ($rsrow = mysql_fetch_assoc($res)) {
$rsrow['currency'] = isset($accepted_currencies[$rsrow['currency']]) ? $accepted_currencies[$rsrow['currency']] : '';
$rsrow['subscr_name'] = sanitize_and_format($rsrow['subscr_name'], TYPE_STRING, $__field2format[TEXT_DB2DISPLAY]);
if (!empty($rsrow['is_recurent'])) {
$rsrow['is_recurent'] = '<img src="skin/images/refresh.gif" title="Recuring" />';
} else {
unset($rsrow['is_recurent']);
}
if (!empty($rsrow['is_visible'])) {
$rsrow['is_visible'] = '<img src="skin/images/check.gif" />';
} else {
unset($rsrow['is_visible']);
}
if (empty($rsrow['duration'])) {
$rsrow['duration'] = 'Lifetime';
} else {
$rsrow['duration'] .= ' days';
}
$subscriptions[] = $rsrow;
}
}
$tpl->set_file('content', 'subscriptions.html');
$tpl->set_loop('subscriptions', $subscriptions);
$tpl->process('content', 'content', TPL_LOOP | TPL_NOLOOP);
$tpl->drop_loop('subscriptions');
$tplvars['title'] = 'Site Subscriptions';
$tplvars['page'] = 'subscriptions';
include 'frame.php';
$loop = array();
if (!empty($totalrows)) {
if ($o >= $totalrows) {
$o = $totalrows - $r;
$o = $o >= 0 ? $o : 0;
}
$query = "SELECT * FROM {$from} WHERE {$where} ORDER BY `news_id` DESC LIMIT {$o},{$r}";
if (!($res = @mysql_query($query))) {
trigger_error(mysql_error(), E_USER_ERROR);
}
while ($rsrow = mysql_fetch_assoc($res)) {
$rsrow['news_title'] = sanitize_and_format($rsrow['news_title'], TYPE_STRING, $__field2format[TEXT_DB2DISPLAY]);
$loop[] = $rsrow;
}
$output['pager2'] = pager($totalrows, $o, $r);
}
$output['return2me'] = 'site_news.php';
if (!empty($_SERVER['QUERY_STRING'])) {
$output['return2me'] .= '?' . $_SERVER['QUERY_STRING'];
}
$output['return2me'] = rawurlencode($output['return2me']);
$tpl->set_file('content', 'site_news.html');
$tpl->set_loop('loop', $loop);
$tpl->set_var('output', $output);
$tpl->process('content', 'content', TPL_LOOP | TPL_NOLOOP);
$tpl->drop_loop('loop');
$tpl->drop_var('output.pager2');
unset($loop);
$tplvars['title'] = 'Site news';
$tplvars['page'] = 'site_news';
include 'frame.php';
$p->finish();
}
}
} else {
$error = true;
$topass['message']['type'] = MESSAGE_ERROR;
$topass['message']['text'] = 'Error reading the package';
}
} else {
$error = true;
$topass['message']['type'] = MESSAGE_ERROR;
$topass['message']['text'] = 'File is not a valid Etano package';
}
}
if (isset($p) && $p->error && !empty($p->manual_actions)) {
$tpl->set_file('content', 'package_install.html');
$tpl->set_loop('manual_actions', $p->manual_actions);
$output['f'] = $file;
$output['finish'] = $install_index;
$output['show_finish'] = $show_finish;
$tpl->set_var('output', $output);
$tpl->process('content', 'content', TPL_LOOP | TPL_OPTIONAL);
$tplvars['title'] = 'Package Manager';
$tplvars['page'] = 'package_install';
$tplvars['css'] = 'package_install.css';
include 'frame.php';
} elseif ($ui_request) {
$tpl->set_file('content', 'package_ui.html');
$tpl->set_var('output', $p->ui);
$tpl->process('content', 'content');
$tplvars['title'] = 'Package Manager';
trigger_error(mysql_error(), E_USER_ERROR);
}
$i = 0;
$access_levels = array();
while ($rsrow = mysql_fetch_assoc($res)) {
$rsrow['level_code'] = sanitize_and_format($rsrow['level_code'], TYPE_STRING, $__field2format[TEXT_DB2DISPLAY]);
$rsrow['level_diz'] = sanitize_and_format($rsrow['level_diz'], TYPE_STRING, $__field2format[TEXT_DB2DISPLAY]);
$access_levels[$i]['row'] = '<td><a href="access_levels_addedit.php?level_id=' . $rsrow['level_id'] . '" title="' . $rsrow['level_diz'] . '">' . $rsrow['level_code'] . "</a></td>\n";
for ($j = 0; isset($memberships[$j]); ++$j) {
$access_levels[$i]['row'] .= '<td><input type="checkbox" name="levels[' . $rsrow['level_id'] . '][' . $memberships[$j]['m_value'] . ']" value="1"';
if ((int) $memberships[$j]['m_value'] & (int) $rsrow['level']) {
$access_levels[$i]['row'] .= ' checked="checked"';
}
if ((int) $memberships[$j]['m_value'] & (int) $rsrow['disabled_level']) {
$access_levels[$i]['row'] .= ' disabled="disabled"';
}
$access_levels[$i]['row'] .= " /></td>\n";
}
++$i;
}
$tpl->set_file('content', 'access_levels.html');
$tpl->set_loop('access_levels', $access_levels);
$tpl->set_loop('memberships', $memberships);
$tpl->process('content', 'content', TPL_LOOP | TPL_NOLOOP);
$tpl->drop_loop('access_levels');
$tpl->drop_loop('memberships');
unset($access_levels);
unset($memberships);
$tplvars['title'] = 'Define access levels';
$tplvars['page'] = 'access_levels';
include 'frame.php';
if (!empty($totalrows)) {
if ($o >= $totalrows) {
$o = $totalrows - $r;
$o = $o >= 0 ? $o : 0;
}
$config = get_site_option(array('datetime_format'), 'def_user_prefs');
$query = "SELECT `fk_user_id`,`user`,`level_code`,`ip`,UNIX_TIMESTAMP(`time`) as `time` FROM {$from} WHERE {$where} ORDER BY `log_id` DESC LIMIT {$o},{$r}";
if (!($res = @mysql_query($query))) {
trigger_error(mysql_error(), E_USER_ERROR);
}
while ($rsrow = mysql_fetch_assoc($res)) {
if (!empty($rsrow['fk_user_id'])) {
$rsrow['user'] = '******' . $rsrow['fk_user_id'] . '">' . $rsrow['user'] . '</a>';
}
$rsrow['time'] = strftime($config['datetime_format'], $rsrow['time']);
$rsrow['ip'] = long2ip($rsrow['ip']);
$loop[] = $rsrow;
}
$output['pager2'] = pager($totalrows, $o, $r);
}
$tpl->set_file('content', 'site_log.html');
$tpl->set_loop('loop', $loop);
$tpl->set_var('output', $output);
$tpl->process('content', 'content', TPL_LOOP | TPL_NOLOOP);
$tpl->drop_loop('loop');
$tpl->drop_var('output.pager2');
unset($loop);
$tplvars['title'] = 'Site Activity Log';
$tplvars['page'] = 'site_log';
$tplvars['css'] = 'site_log.css';
include 'frame.php';
if (!($res = @mysql_query($query))) {
trigger_error(mysql_error(), E_USER_ERROR);
}
$output['m_name'] = mysql_result($res, 0, 0);
$output['paid_until'] = $GLOBALS['_lang'][123];
}
$my_stats = get_user_stats($_SESSION[_LICENSE_KEY_]['user']['user_id'], array('total_photos', 'pviews', 'num_friends'));
$query = "SELECT count(*) FROM `{$dbtable_prefix}user_inbox` WHERE `fk_user_id`='" . $_SESSION[_LICENSE_KEY_]['user']['user_id'] . "' AND `del`=0";
if (!($res = @mysql_query($query))) {
trigger_error(mysql_error(), E_USER_ERROR);
}
$my_stats['total_messages'] = mysql_result($res, 0, 0);
$query = "SELECT count(*) FROM `{$dbtable_prefix}user_inbox` WHERE `is_read`=0 AND `fk_user_id`='" . $_SESSION[_LICENSE_KEY_]['user']['user_id'] . "' AND `del`=0";
if (!($res = @mysql_query($query))) {
trigger_error(mysql_error(), E_USER_ERROR);
}
$my_stats['new_messages'] = mysql_result($res, 0, 0);
$tpl->set_file('content', 'home.html');
$tpl->set_var('output', $output);
$tpl->set_var('my_stats', $my_stats);
$tpl->process('content', 'content');
$tplvars['title'] = $GLOBALS['_lang'][124];
$tplvars['page_title'] = $GLOBALS['_lang'][124];
$tplvars['page'] = 'home';
$tplvars['css'] = 'home.css';
if (is_file('home_left.php')) {
include 'home_left.php';
}
unset($page_last_modified_time);
// we want everything fresh on this page.
include 'frame.php';
===============================================================================
File: install/step3.php
$Revision$
Software by: DateMill (http://www.datemill.com)
Copyright by: DateMill (http://www.datemill.com)
Support at: http://www.datemill.com/forum
*******************************************************************************
* See the "docs/licenses/etano.txt" file for license. *
******************************************************************************/
ini_set('include_path', '.');
ini_set('session.use_cookies', 1);
ini_set('session.use_trans_sid', 0);
ini_set('date.timezone', 'GMT');
// temporary fix for the php 5.1+ TZ compatibility
ini_set('error_reporting', 2047);
ini_set('display_errors', 0);
define('_LICENSE_KEY_', '');
require_once '../includes/sessions.inc.php';
require_once '../includes/sco_functions.inc.php';
require_once '../includes/classes/phemplate.class.php';
$output = array();
$tpl = new phemplate('skin/', 'remove_nonjs');
$tpl->set_file('content', 'step3.html');
$tplvars = array();
$tplvars['page_title'] = 'Etano Install Process';
$tplvars['css'] = 'step3.css';
$tplvars['page'] = 'step3';
$tpl->set_var('output', $output);
$tpl->set_var('tplvars', $tplvars);
$tpl->process('content', 'content');
include 'frame.php';
$output['uids'] = sanitize_and_format($_REQUEST['uids'], TYPE_INT, 0, array());
}
}
if (!empty($output['uids'])) {
$output['uids'] = join('|', $output['uids']);
} else {
$topass['message']['type'] = MESSAGE_ERROR;
$topass['message']['text'] = 'No members selected';
if (!empty($output['return'])) {
$nextpage = _BASEURL_ . '/admin/' . $output['return'];
} else {
$nextpage = _BASEURL_ . '/admin/member_search.php';
}
redirect2page($nextpage, $topass, '', true);
}
if (empty($output['return'])) {
if ($_SERVER['REQUEST_METHOD'] == 'GET') {
$output['return2'] = sanitize_and_format_gpc($_REQUEST, 'return', TYPE_STRING, $__field2format[FIELD_TEXTFIELD], '');
$output['return'] = rawurlencode($output['return2']);
} else {
$output['return'] = sanitize_and_format_gpc($_REQUEST, 'return', TYPE_STRING, $__field2format[FIELD_TEXTFIELD], '');
$output['return2'] = rawurldecode($output['return']);
}
}
$tpl->set_file('content', 'email_send.html');
$tpl->set_var('output', $output);
$tpl->process('content', 'content');
$tplvars['title'] = 'Send an Email';
$tplvars['page'] = 'email_send';
$tplvars['css'] = 'email_send.css';
include 'frame.php';
redirect2page('info.php', $topass);
}
} else {
$topass['message']['type'] = MESSAGE_ERROR;
$topass['message']['text'] = $GLOBALS['_lang'][6];
redirect2page('info.php', $topass);
}
$output['lang_256'] = sanitize_and_format($GLOBALS['_lang'][256], TYPE_STRING, $__field2format[TEXT_DB2DISPLAY]);
$output['return2me'] = 'photo_view.php';
if (!empty($_SERVER['QUERY_STRING'])) {
$output['return2me'] .= '?' . $_SERVER['QUERY_STRING'];
}
$output['return2me'] = rawurlencode($output['return2me']);
$output['return2'] = sanitize_and_format_gpc($_GET, 'return', TYPE_STRING, $__field2format[FIELD_TEXTFIELD], '');
$output['return'] = rawurlencode($output['return2']);
$tpl->set_file('content', 'photo_view.html');
$tpl->set_var('output', $output);
$tpl->set_loop('loop_comments', $loop_comments);
$tpl->set_var('tplvars', $tplvars);
$tpl->process('content', 'content', TPL_LOOP | TPL_OPTLOOP | TPL_OPTIONAL);
$tpl->drop_loop('loop_comments');
unset($loop_comments);
$tplvars['title'] = sprintf($GLOBALS['_lang'][143], $output['user']);
$tplvars['page_title'] = sprintf($GLOBALS['_lang'][143], '<a href="' . $tplvars['relative_url'] . 'photo_search.php?st=user&uid=' . $output['fk_user_id'] . '">' . $output['user'] . '</a>');
$tplvars['page'] = 'photo_view';
$tplvars['css'] = 'photo_view.css';
if (is_file('photo_view_left.php')) {
include 'photo_view_left.php';
}
include 'frame.php';
if (!empty($photo_id) && isset($output['fk_user_id']) && (!empty($_SESSION[_LICENSE_KEY_]['user']['user_id']) && $output['fk_user_id'] != $_SESSION[_LICENSE_KEY_]['user']['user_id'] || empty($_SESSION[_LICENSE_KEY_]['user']['user_id']))) {
$totalrows = mysql_result($res, 0, 0);
$countries = array();
if (!empty($totalrows)) {
if ($o >= $totalrows) {
$o = $totalrows - $r;
$o = $o >= 0 ? $o : 0;
}
$query = "SELECT * FROM {$from} WHERE {$where} ORDER BY `country` ASC LIMIT {$o},{$r}";
if (!($res = @mysql_query($query))) {
trigger_error(mysql_error(), E_USER_ERROR);
}
$i = 0;
while ($rsrow = mysql_fetch_assoc($res)) {
$rsrow['country'] = sanitize_and_format($rsrow['country'], TYPE_STRING, $__field2format[TEXT_DB2DISPLAY]);
$rsrow['prefered_input'] = $country_prefered_input[$rsrow['prefered_input']];
$rsrow['myclass'] = $i % 2 ? 'odd_item' : 'even_item';
$countries[] = $rsrow;
++$i;
}
$tpl->set_var('pager1', pager($totalrows, $o, $r));
$tpl->set_var('pager2', pager($totalrows, $o, $r));
}
$tpl->set_file('content', 'loc_countries.html');
$tpl->set_loop('countries', $countries);
$tpl->set_var('o', $o);
$tpl->set_var('r', $r);
$tpl->process('content', 'content', TPL_LOOP | TPL_NOLOOP);
$tpl->drop_loop('countries');
$tplvars['title'] = 'Location Management: Countries';
$tplvars['page'] = 'loc_countries';
include 'frame.php';
//define('CACHE_LIMITER','private');
require 'includes/common.inc.php';
require _BASEPATH_ . '/includes/user_functions.inc.php';
check_login_member('search_advanced');
$tpl = new phemplate(_BASEPATH_ . '/skins_site/' . get_my_skin() . '/', 'remove_nonjs');
$search_fields = array();
foreach ($_pcats as $pcat_id => $pcat) {
if ((int) $pcat['access_level'] & (int) $_SESSION[_LICENSE_KEY_]['user']['membership']) {
for ($i = 0; isset($pcat['fields'][$i]); ++$i) {
if (isset($_pfields[$pcat['fields'][$i]]->config['searchable'])) {
$search_fields[] = $pcat['fields'][$i];
}
}
}
}
sort($search_fields, SORT_NUMERIC);
$search_loop = create_search_form($search_fields);
$tpl->set_file('content', 'search_more.html');
$tpl->set_loop('search', $search_loop);
$tpl->process('content', 'content', TPL_LOOP);
$tpl->drop_loop('search');
unset($search_loop);
$tplvars['title'] = $GLOBALS['_lang'][247];
$tplvars['page_title'] = $GLOBALS['_lang'][247];
$tplvars['page'] = 'search_more';
$tplvars['css'] = 'search_more.css';
if (is_file('search_more_left.php')) {
include 'search_more_left.php';
}
$no_timeout = true;
include 'frame.php';
require_once '../includes/common.inc.php';
require_once '../includes/admin_functions.inc.php';
allow_dept(DEPT_ADMIN | DEPT_MODERATOR);
$output['uid'] = sanitize_and_format_gpc($_GET, 'uid', TYPE_INT, 0, 0);
$output['return'] = sanitize_and_format_gpc($_GET, 'return', TYPE_STRING, $__field2format[FIELD_TEXTFIELD], '');
$tpl = new phemplate('skin/', 'remove_nonjs');
if (isset($_GET['top'])) {
$content_file = 'user_login_top.html';
$tpl->set_var('user', $_SESSION[_LICENSE_KEY_]['user']);
} else {
$content_file = 'user_login.html';
if (strpos($output['return'], '?') === false) {
$qs_sep = '?';
} else {
$qs_sep = '&';
}
$output['return'] .= $qs_sep . 'clean_user_session=1';
$output['return'] = rawurlencode($output['return']);
$query = "SELECT a.`" . USER_ACCOUNT_ID . "` as `user_id`,b.`_user` as `user`,a.`status`,a.`membership`,UNIX_TIMESTAMP(a.`last_activity`) as `last_activity`,a.`email`,b.`status` as `pstat` FROM `" . USER_ACCOUNTS_TABLE . "` a LEFT JOIN `{$dbtable_prefix}user_profiles` b ON a.`" . USER_ACCOUNT_ID . "`=b.`fk_user_id` WHERE a.`" . USER_ACCOUNT_ID . "`=" . $output['uid'];
if (!($res = @mysql_query($query))) {
trigger_error(mysql_error(), E_USER_ERROR);
}
if (mysql_num_rows($res)) {
$user = mysql_fetch_assoc($res);
$user['prefs'] = get_user_settings($user['user_id'], 'def_user_prefs', array('date_format', 'datetime_format', 'time_offset', 'rate_my_photos', 'profile_comments'));
$_SESSION[_LICENSE_KEY_]['user'] = $user;
}
}
$tpl->set_file('content', $content_file);
$tpl->set_var('output', $output);
echo $tpl->process('', 'content');
$rsrow['paid_until'] = !empty($rsrow['paid_until']) ? strftime($config['date_format'], $rsrow['paid_until'] + $config['time_offset']) : 'Forever';
} else {
$rsrow['paid_from'] = strftime($config['date_format'], $rsrow['date'] + $config['time_offset']);
$rsrow['m_value_to'] = 'Product';
unset($rsrow['paid_until']);
}
if (empty($rsrow['is_suspect'])) {
$output['total'] += (double) $rsrow['amount_paid'] - (double) $rsrow['refunded'];
}
if ($rsrow['refunded'] != 0) {
$rsrow['refunded'] = '(<span class="alert">-$' . $rsrow['refunded'] . '</span>)';
} else {
unset($rsrow['refunded']);
}
if (!empty($rsrow['is_suspect'])) {
$rsrow['suspect_reason'] = sanitize_and_format($rsrow['suspect_reason'], TYPE_STRING, $__field2format[TEXT_DB2DISPLAY]);
} else {
unset($rsrow['is_suspect']);
}
$loop[] = $rsrow;
}
//$loop=sanitize_and_format($loop,TYPE_STRING,$__field2format[TEXT_DB2DISPLAY]);
$output['total'] = number_format($output['total'], 2);
$tpl->set_file('content', 'payment_history.html');
$tpl->set_var('output', $output);
$tpl->set_loop('loop', $loop);
$tpl->process('content', 'content', TPL_LOOP | TPL_OPTLOOP);
$tplvars['title'] = 'Payment History';
$tplvars['page'] = 'payment_history';
$tplvars['css'] = 'payment_history.css';
include 'frame.php';
/******************************************************************************
Etano
===============================================================================
File: index.php
$Revision$
Software by: DateMill (http://www.datemill.com)
Copyright by: DateMill (http://www.datemill.com)
Support at: http://www.datemill.com/forum
*******************************************************************************
* See the "docs/licenses/etano.txt" file for license. *
******************************************************************************/
//define('CACHE_LIMITER','private');
require 'includes/common.inc.php';
require _BASEPATH_ . '/includes/user_functions.inc.php';
check_login_member('all');
$tpl = new phemplate(_BASEPATH_ . '/skins_site/' . get_my_skin() . '/', 'remove_nonjs');
$tpl->set_file('content', 'index.html');
sort($basic_search_fields, SORT_NUMERIC);
$search_loop = create_search_form($basic_search_fields);
$tplvars['title'] = $tplvars['sitename'];
$tpl->set_loop('search', $search_loop);
$tpl->set_var('tplvars', $tplvars);
$tpl->process('content', 'content', TPL_OPTIONAL | TPL_LOOP);
if (!empty($GLOBALS['page_last_modified_time'])) {
// header('Expires: '. gmdate('D,d M Y H:i:s',time()+1209600).' GMT',true); // +14 days
// header('Expires: -1',true);
header('Cache-Control: private, max-age=0', true);
header('Last-Modified: ' . date('D,d M Y H:i:s', $GLOBALS['page_last_modified_time']) . ' GMT', true);
}
echo $tpl->process('content', 'content', TPL_FINISH | TPL_INCLUDE);
if (isset($_SESSION['topass']['input'])) {
$output = $_SESSION['topass']['input'];
// our 'return' here was decoded in the processor
$output['return2'] = $output['return'];
$output['return'] = rawurlencode($output['return']);
} elseif (!empty($_GET['bid'])) {
$blog_id = (int) $_GET['bid'];
$query = "SELECT `blog_id`,`blog_name`,`blog_diz` FROM `{$dbtable_prefix}user_blogs` WHERE `blog_id`={$blog_id} AND `fk_user_id`='" . $_SESSION[_LICENSE_KEY_]['user']['user_id'] . "'";
if (!($res = @mysql_query($query))) {
trigger_error(mysql_error(), E_USER_ERROR);
}
if (mysql_num_rows($res)) {
$output = mysql_fetch_assoc($res);
$output = sanitize_and_format($output, TYPE_STRING, $__field2format[TEXT_DB2EDIT]);
}
}
if (empty($output['return'])) {
$output['return2'] = sanitize_and_format_gpc($_GET, 'return', TYPE_STRING, $__field2format[FIELD_TEXTFIELD], '');
$output['return'] = rawurlencode($output['return2']);
}
$tpl->set_file('content', 'blog_addedit.html');
$tpl->set_var('output', $output);
$tpl->process('content', 'content');
$tplvars['title'] = $GLOBALS['_lang'][220];
$tplvars['page_title'] = $GLOBALS['_lang'][220];
$tplvars['page'] = 'blog_addedit';
$tplvars['css'] = 'blog_addedit.css';
if (is_file('blog_addedit_left.php')) {
include 'blog_addedit_left.php';
}
include 'frame.php';
if (empty($rsrow['del'])) {
unset($rsrow['del']);
}
$loop[] = $rsrow;
}
$_GET = array('search' => $output['search_md5'], 'sortby' => $sortby);
$output['pager2'] = pager($totalrows, $o, $r);
$output['totalrows'] = $totalrows;
}
if (empty($loop)) {
$topass['message']['type'] = MESSAGE_INFO;
$topass['message']['text'] = 'No members found meeting your search criteria.';
redirect2page('admin/member_search.php', $topass);
}
$output['return2me'] = 'member_results.php';
if (!empty($output['search_md5'])) {
$output['return2me'] .= '?search=' . $output['search_md5'] . "&sortby={$sortby}&o={$o}&r={$r}";
} elseif (!empty($_SERVER['QUERY_STRING'])) {
$output['return2me'] .= '?' . $_SERVER['QUERY_STRING'];
}
$output['return2me'] = rawurlencode($output['return2me']);
$tpl->set_file('content', 'member_results.html');
$tpl->set_loop('loop', $loop);
$tpl->set_var('output', $output);
$tpl->process('content', 'content', TPL_LOOP | TPL_NOLOOP | TPL_OPTLOOP | TPL_OPTIONAL);
$tpl->drop_loop('loop');
unset($loop);
$tplvars['title'] = 'Search Results';
$tplvars['css'] = 'member_results.css';
$tplvars['page'] = 'member_results';
include 'frame.php';
/******************************************************************************
Etano
===============================================================================
File: admin/newsletter.php
$Revision$
Software by: DateMill (http://www.datemill.com)
Copyright by: DateMill (http://www.datemill.com)
Support at: http://www.datemill.com/forum
*******************************************************************************
* See the "docs/licenses/etano.txt" file for license. *
******************************************************************************/
require_once '../includes/common.inc.php';
require_once '../includes/admin_functions.inc.php';
allow_dept(DEPT_ADMIN);
$tpl = new phemplate('skin/', 'remove_nonjs');
$output = array();
if (isset($_SESSION['topass']['input'])) {
$output = $_SESSION['topass']['input'];
$output['return2'] = $output['return'];
$output['return'] = rawurlencode($output['return']);
} else {
$output['return'] = sanitize_and_format_gpc($_REQUEST, 'return', TYPE_STRING, $__field2format[FIELD_TEXTFIELD], '');
$output['return2'] = rawurldecode($output['return']);
}
$tpl->set_file('content', 'newsletter.html');
$tpl->set_var('output', $output);
$tpl->process('content', 'content');
$tplvars['title'] = 'Send Newsletter';
$tplvars['page'] = 'newsletter';
$tplvars['css'] = 'newsletter.css';
include 'frame.php';
$config = get_site_option(array('datetime_format'), 'def_user_prefs');
$query = "SELECT a.`ban_id`,a.`ban_type`,a.`what`,b.`lang_value` as `reason`,UNIX_TIMESTAMP(a.`since`) as `since` FROM {$from} WHERE {$where} LIMIT {$o},{$r}";
if (!($res = @mysql_query($query))) {
trigger_error(mysql_error(), E_USER_ERROR);
}
while ($rsrow = mysql_fetch_assoc($res)) {
if ($rsrow['ban_type'] == _PUNISH_BANIP_) {
$rsrow['what'] = long2ip($rsrow['what']);
}
$rsrow['ban_type'] = $accepted_punishments[$rsrow['ban_type']];
$rsrow['reason'] = sanitize_and_format($rsrow['reason'], TYPE_STRING, $__field2format[TEXT_DB2DISPLAY]);
$rsrow['since'] = strftime($config['datetime_format'], $rsrow['since']);
$loop[] = $rsrow;
}
$output['pager2'] = pager($totalrows, $o, $r);
}
$output['return2me'] = 'site_bans.php';
if (!empty($_SERVER['QUERY_STRING'])) {
$output['return2me'] .= '?' . $_SERVER['QUERY_STRING'];
}
$output['return2me'] = rawurlencode($output['return2me']);
$tpl->set_file('content', 'site_bans.html');
$tpl->set_loop('loop', $loop);
$tpl->set_var('output', $output);
$tpl->process('content', 'content', TPL_LOOP | TPL_NOLOOP);
$tpl->drop_loop('loop');
$tpl->drop_var('output.pager2');
unset($loop);
$tplvars['title'] = 'Banned Members Management';
$tplvars['page'] = 'site_bans';
include 'frame.php';
$loop = array();
if (!empty($totalrows)) {
if ($o >= $totalrows) {
$o = $totalrows - $r;
$o = $o >= 0 ? $o : 0;
}
$query = "SELECT `flirt_id`,`flirt_text`,`flirt_type` FROM {$from} WHERE {$where} LIMIT {$o},{$r}";
if (!($res = @mysql_query($query))) {
trigger_error(mysql_error(), E_USER_ERROR);
}
while ($rsrow = mysql_fetch_assoc($res)) {
$rsrow['flirt_text'] = bbcode2html($rsrow['flirt_text']);
$loop[] = $rsrow;
}
$output['pager2'] = pager($totalrows, $o, $r);
}
$output['return2me'] = 'flirts.php';
if (!empty($_SERVER['QUERY_STRING'])) {
$output['return2me'] .= '?' . $_SERVER['QUERY_STRING'];
}
$output['return2me'] = rawurlencode($output['return2me']);
$tpl->set_file('content', 'flirts.html');
$tpl->set_loop('loop', $loop);
$tpl->set_var('output', $output);
$tpl->process('content', 'content', TPL_LOOP | TPL_NOLOOP);
$tpl->drop_loop('loop');
$tpl->drop_var('output.pager2');
unset($loop);
$tplvars['title'] = 'Flirt Management';
$tplvars['page'] = 'flirts';
include 'frame.php';
}
$output['ips'] = join(', ', $output['ips']);
}
$output['pic_width'] = get_site_option('pic_width', 'core_photo');
if (empty($output['search_md5'])) {
unset($output['search_md5']);
}
if (isset($_GET['o'])) {
$output['o'] = $_GET['o'];
}
if (isset($_GET['r'])) {
$output['r'] = $_GET['r'];
}
$output['return2me'] = 'profile.php';
if (!empty($_SERVER['QUERY_STRING'])) {
$output['return2me'] .= '?' . $_SERVER['QUERY_STRING'];
}
$output['return2me'] = rawurlencode($output['return2me']);
if (isset($_GET['return'])) {
$output['return2'] = sanitize_and_format($_GET['return'], TYPE_STRING, $__field2format[FIELD_TEXTFIELD]);
}
$tpl->set_file('content', 'profile.html');
$tpl->set_loop('categs', $categs);
$tpl->set_var('output', $output);
$tpl->set_var('account', $account);
$tpl->process('content', 'content', TPL_MULTILOOP | TPL_OPTIONAL);
$tpl->drop_loop('categs');
$tplvars['title'] = sprintf('%1$s Member Profile', $output['_user']);
$tplvars['css'] = 'profile.css';
$tplvars['page'] = 'profile';
include 'frame.php';
<?php
/******************************************************************************
Etano
===============================================================================
File: admin/index.php
$Revision$
Software by: DateMill (http://www.datemill.com)
Copyright by: DateMill (http://www.datemill.com)
Support at: http://www.datemill.com/forum
*******************************************************************************
* See the "docs/licenses/etano.txt" file for license. *
******************************************************************************/
require_once '../includes/common.inc.php';
if (!isset($_SESSION[_LICENSE_KEY_]['admin']['admin_id'])) {
if (!empty($_SESSION['topass'])) {
$topass = $_SESSION['topass'];
$_SESSION['topass'] = array();
}
$message = isset($topass['message']) ? $topass['message'] : '';
$tpl = new phemplate('skin/', 'remove_nonjs');
$tpl->set_file('frame', 'index.html');
$tpl->set_var('title', 'Admin panel login');
$tpl->set_var('baseurl', _BASEURL_);
$tpl->set_var('message', $message);
$tpl->set_var('tplvars', $tplvars);
echo $tpl->process('', 'frame', TPL_FINISH);
} else {
redirect2page('admin/cpanel.php');
}
<?php
/******************************************************************************
Etano
===============================================================================
File: admin/blog_search.php
$Revision$
Software by: DateMill (http://www.datemill.com)
Copyright by: DateMill (http://www.datemill.com)
Support at: http://www.datemill.com/forum
*******************************************************************************
* See the "docs/licenses/etano.txt" file for license. *
******************************************************************************/
require_once '../includes/common.inc.php';
require_once '../includes/admin_functions.inc.php';
allow_dept(DEPT_ADMIN);
$tpl = new phemplate('skin/', 'remove_nonjs');
$output = array();
$output['stat'] = vector2options($accepted_pstats);
$tpl->set_file('content', 'blog_search.html');
$tpl->set_var('output', $output);
$tpl->process('content', 'content', TPL_LOOP);
$tplvars['title'] = 'Search';
$tplvars['css'] = 'blog_search.css';
$tplvars['page'] = 'blog_search';
include 'frame.php';
}
$output['num_photos'] = mysql_result($res, 0, 0);
$query = "SELECT count(*) FROM `{$dbtable_prefix}user_blogs`";
if (!($res = @mysql_query($query))) {
trigger_error(mysql_error(), E_USER_ERROR);
}
$output['num_blogs'] = mysql_result($res, 0, 0);
$query = "SELECT count(*) FROM `{$dbtable_prefix}blog_posts`";
if (!($res = @mysql_query($query))) {
trigger_error(mysql_error(), E_USER_ERROR);
}
$output['num_blog_posts'] = mysql_result($res, 0, 0);
$query = "SELECT count(*) as `stat_total`,`level_code` FROM `{$dbtable_prefix}site_log` WHERE `level_code`<>'all' AND `level_code`<>'auth' GROUP BY `level_code` ORDER BY `stat_total` DESC LIMIT 3";
if (!($res = @mysql_query($query))) {
trigger_error(mysql_error(), E_USER_ERROR);
}
$output['popular_actions'] = '';
$i = 1;
while ($rsrow = mysql_fetch_assoc($res)) {
$output['popular_actions'] .= $i . ': ' . $rsrow['level_code'] . ' (' . $rsrow['stat_total'] . '), ';
++$i;
}
if (!empty($output['popular_actions'])) {
$output['popular_actions'] = substr($output['popular_actions'], 0, -2);
}
$tpl->set_file('content', 'stats.html');
$tpl->set_var('output', $output);
$tpl->process('content', 'content', TPL_OPTIONAL);
$tplvars['title'] = 'Your admin control panel';
$tplvars['page'] = 'stats';
include 'frame.php';
if (!($res = @mysql_query($query))) {
trigger_error(mysql_error(), E_USER_ERROR);
}
if (mysql_num_rows($res)) {
while (count($user_photos) < 3 && ($rsrow = mysql_fetch_assoc($res))) {
if (is_file(_PHOTOPATH_ . '/t1/' . $rsrow['photo'])) {
$user_photos[] = $rsrow;
}
}
$user_photos[0]['class'] = 'first';
$output['num_photos'] = mysql_num_rows($res);
}
// get the profile
require_once _BASEPATH_ . '/includes/classes/user_cache.class.php';
$user_cache = new user_cache();
$tpl->set_file('no_access', 'static/pcat_no_access.html');
$j = 0;
foreach ($_pcats as $pcat_id => $pcat) {
if ((int) $pcat['access_level'] & (int) $_SESSION[_LICENSE_KEY_]['user']['membership']) {
$temp = $user_cache->get_categ($output['uid'], $pcat_id);
if (!empty($temp)) {
$categs[$j]['content'] = $temp;
// if you prefer a custom layout use {profile.categ_1},{profile.categ_2},etc in <skin>/profile.html,
// uncomment the line below, remove $tpl->set_loop,
// $output['categ_'.$pcat_id]=$temp;
++$j;
}
} else {
// not allowed to view this member info
// maybe we should say something here like "upgrade your membership to view this info"...
$tpl->set_var('temp', $pcat);
<?php
/******************************************************************************
Etano
===============================================================================
File: login.php
$Revision$
Software by: DateMill (http://www.datemill.com)
Copyright by: DateMill (http://www.datemill.com)
Support at: http://www.datemill.com/forum
*******************************************************************************
* See the "docs/licenses/etano.txt" file for license. *
******************************************************************************/
require 'includes/common.inc.php';
require _BASEPATH_ . '/includes/user_functions.inc.php';
require _BASEPATH_ . '/skins_site/' . get_my_skin() . '/lang/login.inc.php';
$tpl = new phemplate(_BASEPATH_ . '/skins_site/' . get_my_skin() . '/', 'remove_nonjs');
$tpl->set_file('content', 'login.html');
$tpl->process('content', 'content');
$tplvars['title'] = $GLOBALS['_lang'][236];
$tplvars['page_title'] = $GLOBALS['_lang'][237];
$tplvars['page'] = 'login';
$tplvars['css'] = 'login.css';
$no_timeout = true;
include 'frame.php';
Etano
===============================================================================
File: admin/site_skins_addedit.php
$Revision$
Software by: DateMill (http://www.datemill.com)
Copyright by: DateMill (http://www.datemill.com)
Support at: http://www.datemill.com/forum
*******************************************************************************
* See the "docs/licenses/etano.txt" file for license. *
******************************************************************************/
require_once '../includes/common.inc.php';
require_once '../includes/admin_functions.inc.php';
require_once '../includes/tables/site_skins.inc.php';
allow_dept(DEPT_ADMIN);
$tpl = new phemplate('skin/', 'remove_nonjs');
$site_skins = $site_skins_default['defaults'];
if (isset($_SESSION['topass']['input'])) {
$site_skins = $_SESSION['topass']['input'];
} elseif (!empty($_GET['module_code'])) {
$module_code = sanitize_and_format($_GET['module_code'], TYPE_STRING, $__field2format[FIELD_TEXTFIELD]);
$site_skins = get_site_option(array(), $module_code);
$site_skins = sanitize_and_format($site_skins, TYPE_STRING, $__field2format[TEXT_DB2EDIT]);
$site_skins['fk_module_code'] = $module_code;
}
$site_skins['fk_locale_id'] = dbtable2options("`{$dbtable_prefix}locales`", '`locale_id`', '`locale_name`', '`locale_name`', $site_skins['fk_locale_id']);
$tpl->set_file('content', 'site_skins_addedit.html');
$tpl->set_var('site_skins', $site_skins);
$tpl->process('content', 'content');
$tplvars['title'] = 'Site Skins';
$tplvars['page'] = 'site_skins_addedit';
include 'frame.php';
===============================================================================
File: admin/error_log_view.php
$Revision$
Software by: DateMill (http://www.datemill.com)
Copyright by: DateMill (http://www.datemill.com)
Support at: http://www.datemill.com/forum
*******************************************************************************
* See the "docs/licenses/etano.txt" file for license. *
******************************************************************************/
require_once '../includes/common.inc.php';
require_once '../includes/admin_functions.inc.php';
allow_dept(DEPT_ADMIN);
$tpl = new phemplate('skin/', 'remove_nonjs');
if (!empty($_GET['log_id'])) {
$log_id = (int) $_GET['log_id'];
$query = "SELECT `error` FROM `{$dbtable_prefix}error_log` WHERE `log_id`={$log_id}";
if (!($res = @mysql_query($query))) {
trigger_error(mysql_error(), E_USER_ERROR);
}
if (mysql_num_rows($res)) {
$output = mysql_fetch_assoc($res);
}
}
if (empty($output['return'])) {
$output['return2'] = sanitize_and_format_gpc($_GET, 'return', TYPE_STRING, $__field2format[FIELD_TEXTFIELD], '');
$output['return'] = rawurlencode($output['return2']);
}
$tpl->set_file('content', 'error_log_view.html');
$tpl->set_var('output', $output);
$tpl->set_var('tplvars', $tplvars);
print $tpl->process('content', 'content', TPL_FINISH);
