function gen_email_data(&$tpl, &$sql) { if (isset($_POST['uaction']) && $_POST['uaction'] === 'email_setup') { $tpl->assign(array('SUBJECT_VALUE' => $_POST['auto_subject'], 'MESSAGE_VALUE' => $_POST['auto_message'], 'SENDER_EMAIL_VALUE' => $_POST['sender_email'], 'SENDER_NAME_VALUE' => $_POST['sender_name'])); } else { $user_id = $_SESSION['user_id']; $query = <<<SQL_QUERY select fname, lname, email from admin where admin_id = ? SQL_QUERY; $rs = exec_query($sql, $query, array($user_id)); $sender_name = ''; if ($rs->fields('fname') != '' && $rs->fields('lname') != '') { $sender_name = $rs->fields('fname') . " " . $rs->fields('lname'); } $sender_email = $rs->fields['email']; $query = <<<SQL_QUERY select subject, message from email_tpls where owner_id = ? and name = 'add-user-auto-msg' SQL_QUERY; $rs = exec_query($sql, $query, array($user_id)); if ($rs->RowCount() == 0) { insert_email_tpl($sql, $user_id); $rs = exec_query($sql, $query, array($user_id)); } $subject = $rs->fields['subject']; $message = $rs->fields['message']; $tpl->assign(array('SUBJECT_VALUE' => $subject, 'MESSAGE_VALUE' => $message, 'SENDER_EMAIL_VALUE' => $sender_email, 'SENDER_NAME_VALUE' => $sender_name, 'PAGE_MESSAGE' => '')); } }
function add_reseller(&$tpl, &$sql) { global $reseller_ips; if (isset($_POST['uaction']) && $_POST['uaction'] === 'add_reseller') { if (check_user_data()) { $upass = crypt_user_pass($_POST['pass']); $user_id = $_SESSION['user_id']; $username = $_POST['username']; $fname = htmlspecialchars($_POST['fname'], ENT_QUOTES, "UTF-8"); $lname = htmlspecialchars($_POST['lname'], ENT_QUOTES, "UTF-8"); $firm = htmlspecialchars($_POST['firm'], ENT_QUOTES, "UTF-8"); $zip = htmlspecialchars($_POST['zip'], ENT_QUOTES, "UTF-8"); $city = htmlspecialchars($_POST['city'], ENT_QUOTES, "UTF-8"); $country = htmlspecialchars($_POST['country'], ENT_QUOTES, "UTF-8"); $email = htmlspecialchars($_POST['email'], ENT_QUOTES, "UTF-8"); $phone = htmlspecialchars($_POST['phone'], ENT_QUOTES, "UTF-8"); $fax = htmlspecialchars($_POST['fax'], ENT_QUOTES, "UTF-8"); $street1 = htmlspecialchars($_POST['street1'], ENT_QUOTES, "UTF-8"); $street2 = htmlspecialchars($_POST['street2'], ENT_QUOTES, "UTF-8"); $query = <<<SQL_QUERY insert into admin ( admin_name, admin_pass, admin_type, domain_created, created_by, fname, lname, firm, zip, city, country, email, phone, fax, street1, street2 ) values ( ?, ?, 'reseller', unix_timestamp(), ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ? ) SQL_QUERY; $rs = exec_query($sql, $query, array($username, $upass, $user_id, $fname, $lname, $firm, $zip, $city, $country, $email, $phone, $fax, $street1, $street2)); $new_admin_id = $sql->Insert_ID(); insert_email_tpl($sql, $new_admin_id); $user_logged = $_SESSION['user_logged']; write_log("{$user_logged} : add reseller -> {$username}"); $user_def_lang = $_SESSION['user_def_lang']; $user_theme_color = $_SESSION['user_theme_color']; $user_logo = 0; $query = <<<SQL_QUERY insert into user_gui_props ( user_id, lang, layout, logo ) values ( ?, ?, ?, ? ) SQL_QUERY; $rs = exec_query($sql, $query, array($new_admin_id, $user_def_lang, $user_theme_color, $user_logo)); /* * 'reseller_props' table entry; */ $nreseller_max_domain_cnt = $_POST['nreseller_max_domain_cnt']; $nreseller_max_subdomain_cnt = $_POST['nreseller_max_subdomain_cnt']; $nreseller_max_alias_cnt = $_POST['nreseller_max_alias_cnt']; $nreseller_max_mail_cnt = $_POST['nreseller_max_mail_cnt']; $nreseller_max_ftp_cnt = $_POST['nreseller_max_ftp_cnt']; $nreseller_max_sql_db_cnt = $_POST['nreseller_max_sql_db_cnt']; $nreseller_max_sql_user_cnt = $_POST['nreseller_max_sql_user_cnt']; $nreseller_max_traffic = $_POST['nreseller_max_traffic']; $nreseller_max_disk = $_POST['nreseller_max_disk']; $customer_id = $_POST['customer_id']; $query = <<<SQL_QUERY insert into reseller_props ( reseller_id, reseller_ips, max_dmn_cnt, current_dmn_cnt, max_sub_cnt, current_sub_cnt, max_als_cnt, current_als_cnt, max_mail_cnt, current_mail_cnt, max_ftp_cnt, current_ftp_cnt, max_sql_db_cnt, current_sql_db_cnt, max_sql_user_cnt, current_sql_user_cnt, max_traff_amnt, current_traff_amnt, max_disk_amnt, current_disk_amnt, customer_id ) values ( ?, ?, ?, '0', ?, '0', ?, '0', ?, '0', ?, '0', ?, '0', ?, '0', ?, '0', ?, '0', ? ) SQL_QUERY; $rs = exec_query($sql, $query, array($new_admin_id, $reseller_ips, $nreseller_max_domain_cnt, $nreseller_max_subdomain_cnt, $nreseller_max_alias_cnt, $nreseller_max_mail_cnt, $nreseller_max_ftp_cnt, $nreseller_max_sql_db_cnt, $nreseller_max_sql_user_cnt, $nreseller_max_traffic, $nreseller_max_disk, $customer_id)); send_add_user_auto_msg($user_id, $_POST['username'], $_POST['pass'], $_POST['email'], htmlspecialchars($_POST['fname'], ENT_QUOTES, "UTF-8"), htmlspecialchars($_POST['lname'], ENT_QUOTES, "UTF-8"), tr('Reseller')); $_SESSION['reseller_added'] = 1; header("Location: manage_users.php"); die; } else { $tpl->assign(array('EMAIL' => $_POST['email'], 'USERNAME' => $_POST['username'], 'FIRST_NAME' => $_POST['fname'], 'CUSTOMER_ID' => $_POST['customer_id'], 'LAST_NAME' => $_POST['lname'], 'FIRM' => $_POST['firm'], 'ZIP' => $_POST['zip'], 'CITY' => $_POST['city'], 'COUNTRY' => $_POST['country'], 'STREET_1' => $_POST['street1'], 'STREET_2' => $_POST['street2'], 'PHONE' => $_POST['phone'], 'FAX' => $_POST['fax'], 'MAX_DOMAIN_COUNT' => $_POST['nreseller_max_domain_cnt'], 'MAX_SUBDOMAIN_COUNT' => $_POST['nreseller_max_subdomain_cnt'], 'MAX_ALIASES_COUNT' => $_POST['nreseller_max_alias_cnt'], 'MAX_MAIL_USERS_COUNT' => $_POST['nreseller_max_mail_cnt'], 'MAX_FTP_USERS_COUNT' => $_POST['nreseller_max_ftp_cnt'], 'MAX_SQLDB_COUNT' => $_POST['nreseller_max_sql_db_cnt'], 'MAX_SQL_USERS_COUNT' => $_POST['nreseller_max_sql_user_cnt'], 'MAX_TRAFFIC_AMOUNT' => $_POST['nreseller_max_traffic'], 'MAX_DISK_AMOUNT' => $_POST['nreseller_max_disk'])); } } else { $tpl->assign(array('EMAIL' => '', 'USERNAME' => '', 'FIRST_NAME' => '', 'CUSTOMER_ID' => '', 'LAST_NAME' => '', 'FIRM' => '', 'ZIP' => '', 'CITY' => '', 'COUNTRY' => '', 'STREET_1' => '', 'STREET_2' => '', 'PHONE' => '', 'FAX' => '', 'MAX_DOMAIN_COUNT' => '', 'MAX_SUBDOMAIN_COUNT' => '', 'MAX_ALIASES_COUNT' => '', 'MAX_MAIL_USERS_COUNT' => '', 'MAX_FTP_USERS_COUNT' => '', 'MAX_SQLDB_COUNT' => '', 'MAX_SQL_USERS_COUNT' => '', 'MAX_TRAFFIC_AMOUNT' => '', 'MAX_DISK_AMOUNT' => '')); } }
function add_user(&$tpl, &$sql) { if (isset($_POST['uaction']) && $_POST['uaction'] === 'add_user') { if (check_user_data()) { $upass = crypt_user_pass($_POST['pass']); $user_id = $_SESSION['user_id']; $username = $_POST['username']; $fname = htmlspecialchars($_POST['fname'], ENT_QUOTES, "UTF-8"); $lname = htmlspecialchars($_POST['lname'], ENT_QUOTES, "UTF-8"); $firm = htmlspecialchars($_POST['firm'], ENT_QUOTES, "UTF-8"); $zip = htmlspecialchars($_POST['zip'], ENT_QUOTES, "UTF-8"); $city = htmlspecialchars($_POST['city'], ENT_QUOTES, "UTF-8"); $country = htmlspecialchars($_POST['country'], ENT_QUOTES, "UTF-8"); $email = htmlspecialchars($_POST['email'], ENT_QUOTES, "UTF-8"); $phone = htmlspecialchars($_POST['phone'], ENT_QUOTES, "UTF-8"); $fax = htmlspecialchars($_POST['fax'], ENT_QUOTES, "UTF-8"); $street1 = htmlspecialchars($_POST['street1'], ENT_QUOTES, "UTF-8"); $street2 = htmlspecialchars($_POST['street2'], ENT_QUOTES, "UTF-8"); $query = <<<SQL_QUERY insert into admin ( admin_name, admin_pass, admin_type, domain_created, created_by, fname, lname, firm, zip, city, country, email, phone, fax, street1, street2 ) values ( ?, ?, 'admin', unix_timestamp(), ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ? ) SQL_QUERY; $rs = exec_query($sql, $query, array($username, $upass, $user_id, $fname, $lname, $firm, $zip, $city, $country, $email, $phone, $fax, $street1, $street2)); $new_admin_id = $sql->Insert_ID(); $user_logged = $_SESSION['user_logged']; write_log("{$user_logged} : add admin -> {$username}"); insert_email_tpl($sql, $new_admin_id); $user_def_lang = $_SESSION['user_def_lang']; $user_theme_color = $_SESSION['user_theme_color']; $user_logo = 0; $query = <<<SQL_QUERY insert into user_gui_props ( user_id, lang, layout, logo ) values ( ?,?,?,? ) SQL_QUERY; $rs = exec_query($sql, $query, array($new_admin_id, $user_def_lang, $user_theme_color, $user_logo)); send_add_user_auto_msg($user_id, $_POST['username'], $_POST['pass'], $_POST['email'], $_POST['fname'], $_POST['lname'], tr('Administrator')); $_SESSION['user_added'] = 1; header("Location: manage_users.php"); die; } else { $tpl->assign(array('EMAIL' => $_POST['email'], 'USERNAME' => $_POST['username'], 'FIRST_NAME' => $_POST['fname'], 'LAST_NAME' => $_POST['lname'], 'FIRM' => $_POST['firm'], 'ZIP' => $_POST['zip'], 'CITY' => $_POST['city'], 'COUNTRY' => $_POST['country'], 'STREET_1' => $_POST['street1'], 'STREET_2' => $_POST['street2'], 'PHONE' => $_POST['phone'], 'FAX' => $_POST['fax'])); } } else { $tpl->assign(array('EMAIL' => '', 'USERNAME' => '', 'FIRST_NAME' => '', 'LAST_NAME' => '', 'FIRM' => '', 'ZIP' => '', 'CITY' => '', 'COUNTRY' => '', 'STREET_1' => '', 'STREET_2' => '', 'PHONE' => '', 'FAX' => '')); } // else }