function upcoming_eot() { global $dbtable_prefix; $config['days_before'] = 4; $query_strlen = 20000; $now = gmdate('Ymd'); $query = "SELECT b.`email`,c.`_user` as `user` FROM `{$dbtable_prefix}payments` a,`" . USER_ACCOUNTS_TABLE . "` b,`{$dbtable_prefix}user_profiles` c WHERE a.`fk_user_id`=b.`" . USER_ACCOUNT_ID . "` AND a.`fk_user_id`=c.`fk_user_id` AND a.`paid_until`='{$now}'-INTERVAL " . $config['days_before'] . " DAY AND a.`is_active`=1 AND a.`is_recurring`=0"; if (!($res = @mysql_query($query))) { trigger_error(mysql_error(), E_USER_ERROR); } $alerts = array(); while ($rsrow = mysql_fetch_assoc($res)) { $alerts[$rsrow['email']] = $rsrow; } if (!empty($alerts)) { $skin = get_default_skin_dir(); $tpl = new phemplate(_BASEPATH_ . '/skins_site/' . $skin . '/emails/', 'remove_nonjs'); $tpl->set_file('temp', 'subscr_expire_alert.html'); $tpl->set_var('tplvars', $tplvars); $subject = sprintf($GLOBALS['_lang'][218], _SITENAME_); $subject = sanitize_and_format($subject, TYPE_STRING, $GLOBALS['__field2format'][FIELD_TEXTFIELD]); $insert = "INSERT INTO `{$dbtable_prefix}queue_email` (`to`,`subject`,`message_body`) VALUES "; $iquery = $insert; foreach ($alerts as $email => $v) { $tpl->set_var('output', $v); $message_body = $tpl->process('', 'temp', TPL_LOOP | TPL_OPTLOOP | TPL_OPTIONAL | TPL_FINISH); $message_body = sanitize_and_format($message_body, TYPE_STRING, $GLOBALS['__field2format'][FIELD_TEXTAREA]); if (strlen($iquery) > $query_strlen) { $iquery = substr($iquery, 0, -1); if (!($res = @mysql_query($iquery))) { trigger_error(mysql_error(), E_USER_ERROR); } $iquery = $insert; } $iquery .= "('{$email}','{$subject}','{$message_body}'),"; } if ($iquery != $insert) { $iquery = substr($iquery, 0, -1); if (!($res = @mysql_query($iquery))) { trigger_error(mysql_error(), E_USER_ERROR); } } } return true; }
<?php /****************************************************************************** Etano =============================================================================== File: admin/photo_search.php $Revision$ Software by: DateMill (http://www.datemill.com) Copyright by: DateMill (http://www.datemill.com) Support at: http://www.datemill.com/forum ******************************************************************************* * See the "docs/licenses/etano.txt" file for license. * ******************************************************************************/ require_once '../includes/common.inc.php'; require_once '../includes/admin_functions.inc.php'; allow_dept(DEPT_ADMIN); $tpl = new phemplate('skin/', 'remove_nonjs'); $output = array(); $output['stat'] = vector2options($accepted_pstats); $tpl->set_file('content', 'photo_search.html'); $tpl->set_var('output', $output); $tpl->process('content', 'content', TPL_LOOP); $tplvars['title'] = 'Search'; $tplvars['css'] = 'photo_search.css'; $tplvars['page'] = 'photo_search'; include 'frame.php';
require_once '../includes/admin_functions.inc.php'; require_once '../includes/tables/loc_countries.inc.php'; allow_dept(DEPT_ADMIN); $tpl = new phemplate('skin/', 'remove_nonjs'); $countries = $countries_default['defaults']; if (isset($_SESSION['topass']['input'])) { $countries = $_SESSION['topass']['input']; } elseif (!empty($_GET['country_id'])) { $country_id = (int) $_GET['country_id']; $query = "SELECT `country_id`,`country`,`iso3166`,`prefered_input` FROM `{$dbtable_prefix}loc_countries` WHERE `country_id`={$country_id}"; if (!($res = @mysql_query($query))) { trigger_error(mysql_error(), E_USER_ERROR); } if (mysql_num_rows($res)) { $countries = mysql_fetch_assoc($res); $countries['country'] = sanitize_and_format($countries['country'], TYPE_STRING, $__field2format[TEXT_DB2EDIT]); } } $countries['prefered_input'] = vector2options($country_prefered_input, $countries['prefered_input']); $tpl->set_file('content', 'loc_countries_addedit.html'); $tpl->set_var('countries', $countries); if (isset($_GET['o'])) { $tpl->set_var('o', $_GET['o']); } if (isset($_GET['r'])) { $tpl->set_var('r', $_GET['r']); } $tpl->process('content', 'content'); $tplvars['title'] = 'Location Management: Countries'; $tplvars['page'] = 'loc_countries_addedit'; include 'frame.php';
if (!($res = @mysql_query($query))) { trigger_error(mysql_error(), E_USER_ERROR); } while ($rsrow = mysql_fetch_assoc($res)) { $rsrow['currency'] = isset($accepted_currencies[$rsrow['currency']]) ? $accepted_currencies[$rsrow['currency']] : ''; $rsrow['subscr_name'] = sanitize_and_format($rsrow['subscr_name'], TYPE_STRING, $__field2format[TEXT_DB2DISPLAY]); if (!empty($rsrow['is_recurent'])) { $rsrow['is_recurent'] = '<img src="skin/images/refresh.gif" title="Recuring" />'; } else { unset($rsrow['is_recurent']); } if (!empty($rsrow['is_visible'])) { $rsrow['is_visible'] = '<img src="skin/images/check.gif" />'; } else { unset($rsrow['is_visible']); } if (empty($rsrow['duration'])) { $rsrow['duration'] = 'Lifetime'; } else { $rsrow['duration'] .= ' days'; } $subscriptions[] = $rsrow; } } $tpl->set_file('content', 'subscriptions.html'); $tpl->set_loop('subscriptions', $subscriptions); $tpl->process('content', 'content', TPL_LOOP | TPL_NOLOOP); $tpl->drop_loop('subscriptions'); $tplvars['title'] = 'Site Subscriptions'; $tplvars['page'] = 'subscriptions'; include 'frame.php';
$loop = array(); if (!empty($totalrows)) { if ($o >= $totalrows) { $o = $totalrows - $r; $o = $o >= 0 ? $o : 0; } $query = "SELECT * FROM {$from} WHERE {$where} ORDER BY `news_id` DESC LIMIT {$o},{$r}"; if (!($res = @mysql_query($query))) { trigger_error(mysql_error(), E_USER_ERROR); } while ($rsrow = mysql_fetch_assoc($res)) { $rsrow['news_title'] = sanitize_and_format($rsrow['news_title'], TYPE_STRING, $__field2format[TEXT_DB2DISPLAY]); $loop[] = $rsrow; } $output['pager2'] = pager($totalrows, $o, $r); } $output['return2me'] = 'site_news.php'; if (!empty($_SERVER['QUERY_STRING'])) { $output['return2me'] .= '?' . $_SERVER['QUERY_STRING']; } $output['return2me'] = rawurlencode($output['return2me']); $tpl->set_file('content', 'site_news.html'); $tpl->set_loop('loop', $loop); $tpl->set_var('output', $output); $tpl->process('content', 'content', TPL_LOOP | TPL_NOLOOP); $tpl->drop_loop('loop'); $tpl->drop_var('output.pager2'); unset($loop); $tplvars['title'] = 'Site news'; $tplvars['page'] = 'site_news'; include 'frame.php';
$p->finish(); } } } else { $error = true; $topass['message']['type'] = MESSAGE_ERROR; $topass['message']['text'] = 'Error reading the package'; } } else { $error = true; $topass['message']['type'] = MESSAGE_ERROR; $topass['message']['text'] = 'File is not a valid Etano package'; } } if (isset($p) && $p->error && !empty($p->manual_actions)) { $tpl->set_file('content', 'package_install.html'); $tpl->set_loop('manual_actions', $p->manual_actions); $output['f'] = $file; $output['finish'] = $install_index; $output['show_finish'] = $show_finish; $tpl->set_var('output', $output); $tpl->process('content', 'content', TPL_LOOP | TPL_OPTIONAL); $tplvars['title'] = 'Package Manager'; $tplvars['page'] = 'package_install'; $tplvars['css'] = 'package_install.css'; include 'frame.php'; } elseif ($ui_request) { $tpl->set_file('content', 'package_ui.html'); $tpl->set_var('output', $p->ui); $tpl->process('content', 'content'); $tplvars['title'] = 'Package Manager';
trigger_error(mysql_error(), E_USER_ERROR); } $i = 0; $access_levels = array(); while ($rsrow = mysql_fetch_assoc($res)) { $rsrow['level_code'] = sanitize_and_format($rsrow['level_code'], TYPE_STRING, $__field2format[TEXT_DB2DISPLAY]); $rsrow['level_diz'] = sanitize_and_format($rsrow['level_diz'], TYPE_STRING, $__field2format[TEXT_DB2DISPLAY]); $access_levels[$i]['row'] = '<td><a href="access_levels_addedit.php?level_id=' . $rsrow['level_id'] . '" title="' . $rsrow['level_diz'] . '">' . $rsrow['level_code'] . "</a></td>\n"; for ($j = 0; isset($memberships[$j]); ++$j) { $access_levels[$i]['row'] .= '<td><input type="checkbox" name="levels[' . $rsrow['level_id'] . '][' . $memberships[$j]['m_value'] . ']" value="1"'; if ((int) $memberships[$j]['m_value'] & (int) $rsrow['level']) { $access_levels[$i]['row'] .= ' checked="checked"'; } if ((int) $memberships[$j]['m_value'] & (int) $rsrow['disabled_level']) { $access_levels[$i]['row'] .= ' disabled="disabled"'; } $access_levels[$i]['row'] .= " /></td>\n"; } ++$i; } $tpl->set_file('content', 'access_levels.html'); $tpl->set_loop('access_levels', $access_levels); $tpl->set_loop('memberships', $memberships); $tpl->process('content', 'content', TPL_LOOP | TPL_NOLOOP); $tpl->drop_loop('access_levels'); $tpl->drop_loop('memberships'); unset($access_levels); unset($memberships); $tplvars['title'] = 'Define access levels'; $tplvars['page'] = 'access_levels'; include 'frame.php';
if (!empty($totalrows)) { if ($o >= $totalrows) { $o = $totalrows - $r; $o = $o >= 0 ? $o : 0; } $config = get_site_option(array('datetime_format'), 'def_user_prefs'); $query = "SELECT `fk_user_id`,`user`,`level_code`,`ip`,UNIX_TIMESTAMP(`time`) as `time` FROM {$from} WHERE {$where} ORDER BY `log_id` DESC LIMIT {$o},{$r}"; if (!($res = @mysql_query($query))) { trigger_error(mysql_error(), E_USER_ERROR); } while ($rsrow = mysql_fetch_assoc($res)) { if (!empty($rsrow['fk_user_id'])) { $rsrow['user'] = '******' . $rsrow['fk_user_id'] . '">' . $rsrow['user'] . '</a>'; } $rsrow['time'] = strftime($config['datetime_format'], $rsrow['time']); $rsrow['ip'] = long2ip($rsrow['ip']); $loop[] = $rsrow; } $output['pager2'] = pager($totalrows, $o, $r); } $tpl->set_file('content', 'site_log.html'); $tpl->set_loop('loop', $loop); $tpl->set_var('output', $output); $tpl->process('content', 'content', TPL_LOOP | TPL_NOLOOP); $tpl->drop_loop('loop'); $tpl->drop_var('output.pager2'); unset($loop); $tplvars['title'] = 'Site Activity Log'; $tplvars['page'] = 'site_log'; $tplvars['css'] = 'site_log.css'; include 'frame.php';
if (!($res = @mysql_query($query))) { trigger_error(mysql_error(), E_USER_ERROR); } $output['m_name'] = mysql_result($res, 0, 0); $output['paid_until'] = $GLOBALS['_lang'][123]; } $my_stats = get_user_stats($_SESSION[_LICENSE_KEY_]['user']['user_id'], array('total_photos', 'pviews', 'num_friends')); $query = "SELECT count(*) FROM `{$dbtable_prefix}user_inbox` WHERE `fk_user_id`='" . $_SESSION[_LICENSE_KEY_]['user']['user_id'] . "' AND `del`=0"; if (!($res = @mysql_query($query))) { trigger_error(mysql_error(), E_USER_ERROR); } $my_stats['total_messages'] = mysql_result($res, 0, 0); $query = "SELECT count(*) FROM `{$dbtable_prefix}user_inbox` WHERE `is_read`=0 AND `fk_user_id`='" . $_SESSION[_LICENSE_KEY_]['user']['user_id'] . "' AND `del`=0"; if (!($res = @mysql_query($query))) { trigger_error(mysql_error(), E_USER_ERROR); } $my_stats['new_messages'] = mysql_result($res, 0, 0); $tpl->set_file('content', 'home.html'); $tpl->set_var('output', $output); $tpl->set_var('my_stats', $my_stats); $tpl->process('content', 'content'); $tplvars['title'] = $GLOBALS['_lang'][124]; $tplvars['page_title'] = $GLOBALS['_lang'][124]; $tplvars['page'] = 'home'; $tplvars['css'] = 'home.css'; if (is_file('home_left.php')) { include 'home_left.php'; } unset($page_last_modified_time); // we want everything fresh on this page. include 'frame.php';
=============================================================================== File: install/step3.php $Revision$ Software by: DateMill (http://www.datemill.com) Copyright by: DateMill (http://www.datemill.com) Support at: http://www.datemill.com/forum ******************************************************************************* * See the "docs/licenses/etano.txt" file for license. * ******************************************************************************/ ini_set('include_path', '.'); ini_set('session.use_cookies', 1); ini_set('session.use_trans_sid', 0); ini_set('date.timezone', 'GMT'); // temporary fix for the php 5.1+ TZ compatibility ini_set('error_reporting', 2047); ini_set('display_errors', 0); define('_LICENSE_KEY_', ''); require_once '../includes/sessions.inc.php'; require_once '../includes/sco_functions.inc.php'; require_once '../includes/classes/phemplate.class.php'; $output = array(); $tpl = new phemplate('skin/', 'remove_nonjs'); $tpl->set_file('content', 'step3.html'); $tplvars = array(); $tplvars['page_title'] = 'Etano Install Process'; $tplvars['css'] = 'step3.css'; $tplvars['page'] = 'step3'; $tpl->set_var('output', $output); $tpl->set_var('tplvars', $tplvars); $tpl->process('content', 'content'); include 'frame.php';
$output['uids'] = sanitize_and_format($_REQUEST['uids'], TYPE_INT, 0, array()); } } if (!empty($output['uids'])) { $output['uids'] = join('|', $output['uids']); } else { $topass['message']['type'] = MESSAGE_ERROR; $topass['message']['text'] = 'No members selected'; if (!empty($output['return'])) { $nextpage = _BASEURL_ . '/admin/' . $output['return']; } else { $nextpage = _BASEURL_ . '/admin/member_search.php'; } redirect2page($nextpage, $topass, '', true); } if (empty($output['return'])) { if ($_SERVER['REQUEST_METHOD'] == 'GET') { $output['return2'] = sanitize_and_format_gpc($_REQUEST, 'return', TYPE_STRING, $__field2format[FIELD_TEXTFIELD], ''); $output['return'] = rawurlencode($output['return2']); } else { $output['return'] = sanitize_and_format_gpc($_REQUEST, 'return', TYPE_STRING, $__field2format[FIELD_TEXTFIELD], ''); $output['return2'] = rawurldecode($output['return']); } } $tpl->set_file('content', 'email_send.html'); $tpl->set_var('output', $output); $tpl->process('content', 'content'); $tplvars['title'] = 'Send an Email'; $tplvars['page'] = 'email_send'; $tplvars['css'] = 'email_send.css'; include 'frame.php';
redirect2page('info.php', $topass); } } else { $topass['message']['type'] = MESSAGE_ERROR; $topass['message']['text'] = $GLOBALS['_lang'][6]; redirect2page('info.php', $topass); } $output['lang_256'] = sanitize_and_format($GLOBALS['_lang'][256], TYPE_STRING, $__field2format[TEXT_DB2DISPLAY]); $output['return2me'] = 'photo_view.php'; if (!empty($_SERVER['QUERY_STRING'])) { $output['return2me'] .= '?' . $_SERVER['QUERY_STRING']; } $output['return2me'] = rawurlencode($output['return2me']); $output['return2'] = sanitize_and_format_gpc($_GET, 'return', TYPE_STRING, $__field2format[FIELD_TEXTFIELD], ''); $output['return'] = rawurlencode($output['return2']); $tpl->set_file('content', 'photo_view.html'); $tpl->set_var('output', $output); $tpl->set_loop('loop_comments', $loop_comments); $tpl->set_var('tplvars', $tplvars); $tpl->process('content', 'content', TPL_LOOP | TPL_OPTLOOP | TPL_OPTIONAL); $tpl->drop_loop('loop_comments'); unset($loop_comments); $tplvars['title'] = sprintf($GLOBALS['_lang'][143], $output['user']); $tplvars['page_title'] = sprintf($GLOBALS['_lang'][143], '<a href="' . $tplvars['relative_url'] . 'photo_search.php?st=user&uid=' . $output['fk_user_id'] . '">' . $output['user'] . '</a>'); $tplvars['page'] = 'photo_view'; $tplvars['css'] = 'photo_view.css'; if (is_file('photo_view_left.php')) { include 'photo_view_left.php'; } include 'frame.php'; if (!empty($photo_id) && isset($output['fk_user_id']) && (!empty($_SESSION[_LICENSE_KEY_]['user']['user_id']) && $output['fk_user_id'] != $_SESSION[_LICENSE_KEY_]['user']['user_id'] || empty($_SESSION[_LICENSE_KEY_]['user']['user_id']))) {
$totalrows = mysql_result($res, 0, 0); $countries = array(); if (!empty($totalrows)) { if ($o >= $totalrows) { $o = $totalrows - $r; $o = $o >= 0 ? $o : 0; } $query = "SELECT * FROM {$from} WHERE {$where} ORDER BY `country` ASC LIMIT {$o},{$r}"; if (!($res = @mysql_query($query))) { trigger_error(mysql_error(), E_USER_ERROR); } $i = 0; while ($rsrow = mysql_fetch_assoc($res)) { $rsrow['country'] = sanitize_and_format($rsrow['country'], TYPE_STRING, $__field2format[TEXT_DB2DISPLAY]); $rsrow['prefered_input'] = $country_prefered_input[$rsrow['prefered_input']]; $rsrow['myclass'] = $i % 2 ? 'odd_item' : 'even_item'; $countries[] = $rsrow; ++$i; } $tpl->set_var('pager1', pager($totalrows, $o, $r)); $tpl->set_var('pager2', pager($totalrows, $o, $r)); } $tpl->set_file('content', 'loc_countries.html'); $tpl->set_loop('countries', $countries); $tpl->set_var('o', $o); $tpl->set_var('r', $r); $tpl->process('content', 'content', TPL_LOOP | TPL_NOLOOP); $tpl->drop_loop('countries'); $tplvars['title'] = 'Location Management: Countries'; $tplvars['page'] = 'loc_countries'; include 'frame.php';
//define('CACHE_LIMITER','private'); require 'includes/common.inc.php'; require _BASEPATH_ . '/includes/user_functions.inc.php'; check_login_member('search_advanced'); $tpl = new phemplate(_BASEPATH_ . '/skins_site/' . get_my_skin() . '/', 'remove_nonjs'); $search_fields = array(); foreach ($_pcats as $pcat_id => $pcat) { if ((int) $pcat['access_level'] & (int) $_SESSION[_LICENSE_KEY_]['user']['membership']) { for ($i = 0; isset($pcat['fields'][$i]); ++$i) { if (isset($_pfields[$pcat['fields'][$i]]->config['searchable'])) { $search_fields[] = $pcat['fields'][$i]; } } } } sort($search_fields, SORT_NUMERIC); $search_loop = create_search_form($search_fields); $tpl->set_file('content', 'search_more.html'); $tpl->set_loop('search', $search_loop); $tpl->process('content', 'content', TPL_LOOP); $tpl->drop_loop('search'); unset($search_loop); $tplvars['title'] = $GLOBALS['_lang'][247]; $tplvars['page_title'] = $GLOBALS['_lang'][247]; $tplvars['page'] = 'search_more'; $tplvars['css'] = 'search_more.css'; if (is_file('search_more_left.php')) { include 'search_more_left.php'; } $no_timeout = true; include 'frame.php';
require_once '../includes/common.inc.php'; require_once '../includes/admin_functions.inc.php'; allow_dept(DEPT_ADMIN | DEPT_MODERATOR); $output['uid'] = sanitize_and_format_gpc($_GET, 'uid', TYPE_INT, 0, 0); $output['return'] = sanitize_and_format_gpc($_GET, 'return', TYPE_STRING, $__field2format[FIELD_TEXTFIELD], ''); $tpl = new phemplate('skin/', 'remove_nonjs'); if (isset($_GET['top'])) { $content_file = 'user_login_top.html'; $tpl->set_var('user', $_SESSION[_LICENSE_KEY_]['user']); } else { $content_file = 'user_login.html'; if (strpos($output['return'], '?') === false) { $qs_sep = '?'; } else { $qs_sep = '&'; } $output['return'] .= $qs_sep . 'clean_user_session=1'; $output['return'] = rawurlencode($output['return']); $query = "SELECT a.`" . USER_ACCOUNT_ID . "` as `user_id`,b.`_user` as `user`,a.`status`,a.`membership`,UNIX_TIMESTAMP(a.`last_activity`) as `last_activity`,a.`email`,b.`status` as `pstat` FROM `" . USER_ACCOUNTS_TABLE . "` a LEFT JOIN `{$dbtable_prefix}user_profiles` b ON a.`" . USER_ACCOUNT_ID . "`=b.`fk_user_id` WHERE a.`" . USER_ACCOUNT_ID . "`=" . $output['uid']; if (!($res = @mysql_query($query))) { trigger_error(mysql_error(), E_USER_ERROR); } if (mysql_num_rows($res)) { $user = mysql_fetch_assoc($res); $user['prefs'] = get_user_settings($user['user_id'], 'def_user_prefs', array('date_format', 'datetime_format', 'time_offset', 'rate_my_photos', 'profile_comments')); $_SESSION[_LICENSE_KEY_]['user'] = $user; } } $tpl->set_file('content', $content_file); $tpl->set_var('output', $output); echo $tpl->process('', 'content');
$rsrow['paid_until'] = !empty($rsrow['paid_until']) ? strftime($config['date_format'], $rsrow['paid_until'] + $config['time_offset']) : 'Forever'; } else { $rsrow['paid_from'] = strftime($config['date_format'], $rsrow['date'] + $config['time_offset']); $rsrow['m_value_to'] = 'Product'; unset($rsrow['paid_until']); } if (empty($rsrow['is_suspect'])) { $output['total'] += (double) $rsrow['amount_paid'] - (double) $rsrow['refunded']; } if ($rsrow['refunded'] != 0) { $rsrow['refunded'] = '(<span class="alert">-$' . $rsrow['refunded'] . '</span>)'; } else { unset($rsrow['refunded']); } if (!empty($rsrow['is_suspect'])) { $rsrow['suspect_reason'] = sanitize_and_format($rsrow['suspect_reason'], TYPE_STRING, $__field2format[TEXT_DB2DISPLAY]); } else { unset($rsrow['is_suspect']); } $loop[] = $rsrow; } //$loop=sanitize_and_format($loop,TYPE_STRING,$__field2format[TEXT_DB2DISPLAY]); $output['total'] = number_format($output['total'], 2); $tpl->set_file('content', 'payment_history.html'); $tpl->set_var('output', $output); $tpl->set_loop('loop', $loop); $tpl->process('content', 'content', TPL_LOOP | TPL_OPTLOOP); $tplvars['title'] = 'Payment History'; $tplvars['page'] = 'payment_history'; $tplvars['css'] = 'payment_history.css'; include 'frame.php';
/****************************************************************************** Etano =============================================================================== File: index.php $Revision$ Software by: DateMill (http://www.datemill.com) Copyright by: DateMill (http://www.datemill.com) Support at: http://www.datemill.com/forum ******************************************************************************* * See the "docs/licenses/etano.txt" file for license. * ******************************************************************************/ //define('CACHE_LIMITER','private'); require 'includes/common.inc.php'; require _BASEPATH_ . '/includes/user_functions.inc.php'; check_login_member('all'); $tpl = new phemplate(_BASEPATH_ . '/skins_site/' . get_my_skin() . '/', 'remove_nonjs'); $tpl->set_file('content', 'index.html'); sort($basic_search_fields, SORT_NUMERIC); $search_loop = create_search_form($basic_search_fields); $tplvars['title'] = $tplvars['sitename']; $tpl->set_loop('search', $search_loop); $tpl->set_var('tplvars', $tplvars); $tpl->process('content', 'content', TPL_OPTIONAL | TPL_LOOP); if (!empty($GLOBALS['page_last_modified_time'])) { // header('Expires: '. gmdate('D,d M Y H:i:s',time()+1209600).' GMT',true); // +14 days // header('Expires: -1',true); header('Cache-Control: private, max-age=0', true); header('Last-Modified: ' . date('D,d M Y H:i:s', $GLOBALS['page_last_modified_time']) . ' GMT', true); } echo $tpl->process('content', 'content', TPL_FINISH | TPL_INCLUDE);
if (isset($_SESSION['topass']['input'])) { $output = $_SESSION['topass']['input']; // our 'return' here was decoded in the processor $output['return2'] = $output['return']; $output['return'] = rawurlencode($output['return']); } elseif (!empty($_GET['bid'])) { $blog_id = (int) $_GET['bid']; $query = "SELECT `blog_id`,`blog_name`,`blog_diz` FROM `{$dbtable_prefix}user_blogs` WHERE `blog_id`={$blog_id} AND `fk_user_id`='" . $_SESSION[_LICENSE_KEY_]['user']['user_id'] . "'"; if (!($res = @mysql_query($query))) { trigger_error(mysql_error(), E_USER_ERROR); } if (mysql_num_rows($res)) { $output = mysql_fetch_assoc($res); $output = sanitize_and_format($output, TYPE_STRING, $__field2format[TEXT_DB2EDIT]); } } if (empty($output['return'])) { $output['return2'] = sanitize_and_format_gpc($_GET, 'return', TYPE_STRING, $__field2format[FIELD_TEXTFIELD], ''); $output['return'] = rawurlencode($output['return2']); } $tpl->set_file('content', 'blog_addedit.html'); $tpl->set_var('output', $output); $tpl->process('content', 'content'); $tplvars['title'] = $GLOBALS['_lang'][220]; $tplvars['page_title'] = $GLOBALS['_lang'][220]; $tplvars['page'] = 'blog_addedit'; $tplvars['css'] = 'blog_addedit.css'; if (is_file('blog_addedit_left.php')) { include 'blog_addedit_left.php'; } include 'frame.php';
if (empty($rsrow['del'])) { unset($rsrow['del']); } $loop[] = $rsrow; } $_GET = array('search' => $output['search_md5'], 'sortby' => $sortby); $output['pager2'] = pager($totalrows, $o, $r); $output['totalrows'] = $totalrows; } if (empty($loop)) { $topass['message']['type'] = MESSAGE_INFO; $topass['message']['text'] = 'No members found meeting your search criteria.'; redirect2page('admin/member_search.php', $topass); } $output['return2me'] = 'member_results.php'; if (!empty($output['search_md5'])) { $output['return2me'] .= '?search=' . $output['search_md5'] . "&sortby={$sortby}&o={$o}&r={$r}"; } elseif (!empty($_SERVER['QUERY_STRING'])) { $output['return2me'] .= '?' . $_SERVER['QUERY_STRING']; } $output['return2me'] = rawurlencode($output['return2me']); $tpl->set_file('content', 'member_results.html'); $tpl->set_loop('loop', $loop); $tpl->set_var('output', $output); $tpl->process('content', 'content', TPL_LOOP | TPL_NOLOOP | TPL_OPTLOOP | TPL_OPTIONAL); $tpl->drop_loop('loop'); unset($loop); $tplvars['title'] = 'Search Results'; $tplvars['css'] = 'member_results.css'; $tplvars['page'] = 'member_results'; include 'frame.php';
/****************************************************************************** Etano =============================================================================== File: admin/newsletter.php $Revision$ Software by: DateMill (http://www.datemill.com) Copyright by: DateMill (http://www.datemill.com) Support at: http://www.datemill.com/forum ******************************************************************************* * See the "docs/licenses/etano.txt" file for license. * ******************************************************************************/ require_once '../includes/common.inc.php'; require_once '../includes/admin_functions.inc.php'; allow_dept(DEPT_ADMIN); $tpl = new phemplate('skin/', 'remove_nonjs'); $output = array(); if (isset($_SESSION['topass']['input'])) { $output = $_SESSION['topass']['input']; $output['return2'] = $output['return']; $output['return'] = rawurlencode($output['return']); } else { $output['return'] = sanitize_and_format_gpc($_REQUEST, 'return', TYPE_STRING, $__field2format[FIELD_TEXTFIELD], ''); $output['return2'] = rawurldecode($output['return']); } $tpl->set_file('content', 'newsletter.html'); $tpl->set_var('output', $output); $tpl->process('content', 'content'); $tplvars['title'] = 'Send Newsletter'; $tplvars['page'] = 'newsletter'; $tplvars['css'] = 'newsletter.css'; include 'frame.php';
$config = get_site_option(array('datetime_format'), 'def_user_prefs'); $query = "SELECT a.`ban_id`,a.`ban_type`,a.`what`,b.`lang_value` as `reason`,UNIX_TIMESTAMP(a.`since`) as `since` FROM {$from} WHERE {$where} LIMIT {$o},{$r}"; if (!($res = @mysql_query($query))) { trigger_error(mysql_error(), E_USER_ERROR); } while ($rsrow = mysql_fetch_assoc($res)) { if ($rsrow['ban_type'] == _PUNISH_BANIP_) { $rsrow['what'] = long2ip($rsrow['what']); } $rsrow['ban_type'] = $accepted_punishments[$rsrow['ban_type']]; $rsrow['reason'] = sanitize_and_format($rsrow['reason'], TYPE_STRING, $__field2format[TEXT_DB2DISPLAY]); $rsrow['since'] = strftime($config['datetime_format'], $rsrow['since']); $loop[] = $rsrow; } $output['pager2'] = pager($totalrows, $o, $r); } $output['return2me'] = 'site_bans.php'; if (!empty($_SERVER['QUERY_STRING'])) { $output['return2me'] .= '?' . $_SERVER['QUERY_STRING']; } $output['return2me'] = rawurlencode($output['return2me']); $tpl->set_file('content', 'site_bans.html'); $tpl->set_loop('loop', $loop); $tpl->set_var('output', $output); $tpl->process('content', 'content', TPL_LOOP | TPL_NOLOOP); $tpl->drop_loop('loop'); $tpl->drop_var('output.pager2'); unset($loop); $tplvars['title'] = 'Banned Members Management'; $tplvars['page'] = 'site_bans'; include 'frame.php';
$loop = array(); if (!empty($totalrows)) { if ($o >= $totalrows) { $o = $totalrows - $r; $o = $o >= 0 ? $o : 0; } $query = "SELECT `flirt_id`,`flirt_text`,`flirt_type` FROM {$from} WHERE {$where} LIMIT {$o},{$r}"; if (!($res = @mysql_query($query))) { trigger_error(mysql_error(), E_USER_ERROR); } while ($rsrow = mysql_fetch_assoc($res)) { $rsrow['flirt_text'] = bbcode2html($rsrow['flirt_text']); $loop[] = $rsrow; } $output['pager2'] = pager($totalrows, $o, $r); } $output['return2me'] = 'flirts.php'; if (!empty($_SERVER['QUERY_STRING'])) { $output['return2me'] .= '?' . $_SERVER['QUERY_STRING']; } $output['return2me'] = rawurlencode($output['return2me']); $tpl->set_file('content', 'flirts.html'); $tpl->set_loop('loop', $loop); $tpl->set_var('output', $output); $tpl->process('content', 'content', TPL_LOOP | TPL_NOLOOP); $tpl->drop_loop('loop'); $tpl->drop_var('output.pager2'); unset($loop); $tplvars['title'] = 'Flirt Management'; $tplvars['page'] = 'flirts'; include 'frame.php';
} $output['ips'] = join(', ', $output['ips']); } $output['pic_width'] = get_site_option('pic_width', 'core_photo'); if (empty($output['search_md5'])) { unset($output['search_md5']); } if (isset($_GET['o'])) { $output['o'] = $_GET['o']; } if (isset($_GET['r'])) { $output['r'] = $_GET['r']; } $output['return2me'] = 'profile.php'; if (!empty($_SERVER['QUERY_STRING'])) { $output['return2me'] .= '?' . $_SERVER['QUERY_STRING']; } $output['return2me'] = rawurlencode($output['return2me']); if (isset($_GET['return'])) { $output['return2'] = sanitize_and_format($_GET['return'], TYPE_STRING, $__field2format[FIELD_TEXTFIELD]); } $tpl->set_file('content', 'profile.html'); $tpl->set_loop('categs', $categs); $tpl->set_var('output', $output); $tpl->set_var('account', $account); $tpl->process('content', 'content', TPL_MULTILOOP | TPL_OPTIONAL); $tpl->drop_loop('categs'); $tplvars['title'] = sprintf('%1$s Member Profile', $output['_user']); $tplvars['css'] = 'profile.css'; $tplvars['page'] = 'profile'; include 'frame.php';
<?php /****************************************************************************** Etano =============================================================================== File: admin/index.php $Revision$ Software by: DateMill (http://www.datemill.com) Copyright by: DateMill (http://www.datemill.com) Support at: http://www.datemill.com/forum ******************************************************************************* * See the "docs/licenses/etano.txt" file for license. * ******************************************************************************/ require_once '../includes/common.inc.php'; if (!isset($_SESSION[_LICENSE_KEY_]['admin']['admin_id'])) { if (!empty($_SESSION['topass'])) { $topass = $_SESSION['topass']; $_SESSION['topass'] = array(); } $message = isset($topass['message']) ? $topass['message'] : ''; $tpl = new phemplate('skin/', 'remove_nonjs'); $tpl->set_file('frame', 'index.html'); $tpl->set_var('title', 'Admin panel login'); $tpl->set_var('baseurl', _BASEURL_); $tpl->set_var('message', $message); $tpl->set_var('tplvars', $tplvars); echo $tpl->process('', 'frame', TPL_FINISH); } else { redirect2page('admin/cpanel.php'); }
<?php /****************************************************************************** Etano =============================================================================== File: admin/blog_search.php $Revision$ Software by: DateMill (http://www.datemill.com) Copyright by: DateMill (http://www.datemill.com) Support at: http://www.datemill.com/forum ******************************************************************************* * See the "docs/licenses/etano.txt" file for license. * ******************************************************************************/ require_once '../includes/common.inc.php'; require_once '../includes/admin_functions.inc.php'; allow_dept(DEPT_ADMIN); $tpl = new phemplate('skin/', 'remove_nonjs'); $output = array(); $output['stat'] = vector2options($accepted_pstats); $tpl->set_file('content', 'blog_search.html'); $tpl->set_var('output', $output); $tpl->process('content', 'content', TPL_LOOP); $tplvars['title'] = 'Search'; $tplvars['css'] = 'blog_search.css'; $tplvars['page'] = 'blog_search'; include 'frame.php';
} $output['num_photos'] = mysql_result($res, 0, 0); $query = "SELECT count(*) FROM `{$dbtable_prefix}user_blogs`"; if (!($res = @mysql_query($query))) { trigger_error(mysql_error(), E_USER_ERROR); } $output['num_blogs'] = mysql_result($res, 0, 0); $query = "SELECT count(*) FROM `{$dbtable_prefix}blog_posts`"; if (!($res = @mysql_query($query))) { trigger_error(mysql_error(), E_USER_ERROR); } $output['num_blog_posts'] = mysql_result($res, 0, 0); $query = "SELECT count(*) as `stat_total`,`level_code` FROM `{$dbtable_prefix}site_log` WHERE `level_code`<>'all' AND `level_code`<>'auth' GROUP BY `level_code` ORDER BY `stat_total` DESC LIMIT 3"; if (!($res = @mysql_query($query))) { trigger_error(mysql_error(), E_USER_ERROR); } $output['popular_actions'] = ''; $i = 1; while ($rsrow = mysql_fetch_assoc($res)) { $output['popular_actions'] .= $i . ': ' . $rsrow['level_code'] . ' (' . $rsrow['stat_total'] . '), '; ++$i; } if (!empty($output['popular_actions'])) { $output['popular_actions'] = substr($output['popular_actions'], 0, -2); } $tpl->set_file('content', 'stats.html'); $tpl->set_var('output', $output); $tpl->process('content', 'content', TPL_OPTIONAL); $tplvars['title'] = 'Your admin control panel'; $tplvars['page'] = 'stats'; include 'frame.php';
if (!($res = @mysql_query($query))) { trigger_error(mysql_error(), E_USER_ERROR); } if (mysql_num_rows($res)) { while (count($user_photos) < 3 && ($rsrow = mysql_fetch_assoc($res))) { if (is_file(_PHOTOPATH_ . '/t1/' . $rsrow['photo'])) { $user_photos[] = $rsrow; } } $user_photos[0]['class'] = 'first'; $output['num_photos'] = mysql_num_rows($res); } // get the profile require_once _BASEPATH_ . '/includes/classes/user_cache.class.php'; $user_cache = new user_cache(); $tpl->set_file('no_access', 'static/pcat_no_access.html'); $j = 0; foreach ($_pcats as $pcat_id => $pcat) { if ((int) $pcat['access_level'] & (int) $_SESSION[_LICENSE_KEY_]['user']['membership']) { $temp = $user_cache->get_categ($output['uid'], $pcat_id); if (!empty($temp)) { $categs[$j]['content'] = $temp; // if you prefer a custom layout use {profile.categ_1},{profile.categ_2},etc in <skin>/profile.html, // uncomment the line below, remove $tpl->set_loop, // $output['categ_'.$pcat_id]=$temp; ++$j; } } else { // not allowed to view this member info // maybe we should say something here like "upgrade your membership to view this info"... $tpl->set_var('temp', $pcat);
<?php /****************************************************************************** Etano =============================================================================== File: login.php $Revision$ Software by: DateMill (http://www.datemill.com) Copyright by: DateMill (http://www.datemill.com) Support at: http://www.datemill.com/forum ******************************************************************************* * See the "docs/licenses/etano.txt" file for license. * ******************************************************************************/ require 'includes/common.inc.php'; require _BASEPATH_ . '/includes/user_functions.inc.php'; require _BASEPATH_ . '/skins_site/' . get_my_skin() . '/lang/login.inc.php'; $tpl = new phemplate(_BASEPATH_ . '/skins_site/' . get_my_skin() . '/', 'remove_nonjs'); $tpl->set_file('content', 'login.html'); $tpl->process('content', 'content'); $tplvars['title'] = $GLOBALS['_lang'][236]; $tplvars['page_title'] = $GLOBALS['_lang'][237]; $tplvars['page'] = 'login'; $tplvars['css'] = 'login.css'; $no_timeout = true; include 'frame.php';
Etano =============================================================================== File: admin/site_skins_addedit.php $Revision$ Software by: DateMill (http://www.datemill.com) Copyright by: DateMill (http://www.datemill.com) Support at: http://www.datemill.com/forum ******************************************************************************* * See the "docs/licenses/etano.txt" file for license. * ******************************************************************************/ require_once '../includes/common.inc.php'; require_once '../includes/admin_functions.inc.php'; require_once '../includes/tables/site_skins.inc.php'; allow_dept(DEPT_ADMIN); $tpl = new phemplate('skin/', 'remove_nonjs'); $site_skins = $site_skins_default['defaults']; if (isset($_SESSION['topass']['input'])) { $site_skins = $_SESSION['topass']['input']; } elseif (!empty($_GET['module_code'])) { $module_code = sanitize_and_format($_GET['module_code'], TYPE_STRING, $__field2format[FIELD_TEXTFIELD]); $site_skins = get_site_option(array(), $module_code); $site_skins = sanitize_and_format($site_skins, TYPE_STRING, $__field2format[TEXT_DB2EDIT]); $site_skins['fk_module_code'] = $module_code; } $site_skins['fk_locale_id'] = dbtable2options("`{$dbtable_prefix}locales`", '`locale_id`', '`locale_name`', '`locale_name`', $site_skins['fk_locale_id']); $tpl->set_file('content', 'site_skins_addedit.html'); $tpl->set_var('site_skins', $site_skins); $tpl->process('content', 'content'); $tplvars['title'] = 'Site Skins'; $tplvars['page'] = 'site_skins_addedit'; include 'frame.php';
=============================================================================== File: admin/error_log_view.php $Revision$ Software by: DateMill (http://www.datemill.com) Copyright by: DateMill (http://www.datemill.com) Support at: http://www.datemill.com/forum ******************************************************************************* * See the "docs/licenses/etano.txt" file for license. * ******************************************************************************/ require_once '../includes/common.inc.php'; require_once '../includes/admin_functions.inc.php'; allow_dept(DEPT_ADMIN); $tpl = new phemplate('skin/', 'remove_nonjs'); if (!empty($_GET['log_id'])) { $log_id = (int) $_GET['log_id']; $query = "SELECT `error` FROM `{$dbtable_prefix}error_log` WHERE `log_id`={$log_id}"; if (!($res = @mysql_query($query))) { trigger_error(mysql_error(), E_USER_ERROR); } if (mysql_num_rows($res)) { $output = mysql_fetch_assoc($res); } } if (empty($output['return'])) { $output['return2'] = sanitize_and_format_gpc($_GET, 'return', TYPE_STRING, $__field2format[FIELD_TEXTFIELD], ''); $output['return'] = rawurlencode($output['return2']); } $tpl->set_file('content', 'error_log_view.html'); $tpl->set_var('output', $output); $tpl->set_var('tplvars', $tplvars); print $tpl->process('content', 'content', TPL_FINISH);