/** * @deprecated This is not used anywhere in the core * @todo Remove after 2.0 * Displays smilie image buttons used to insert smilie codes to a target textarea in a form * $textarea_id is a unique of the target textarea */ function xoopsSmilies($textarea_id) { icms_core_Debug::setDeprecated('icms_form_elements_Dhtmltextarea.', sprintf(_CORE_REMOVE_IN_VERSION, '2.0')); $smiles =& icms_core_DataFilter::getSmileys(); if (empty($smileys)) { if ($result = icms::$xoopsDB->query("SELECT * FROM " . icms::$xoopsDB->prefix('smiles') . " WHERE display='1'")) { while ($smiles = icms::$xoopsDB->fetchArray($result)) { //hack smilies move for the smilies !! echo "<img src='" . ICMS_UPLOAD_URL . "/" . htmlspecialchars($smiles['smile_url']) . "' border='0' onmouseover='style.cursor=\"hand\"' alt='' onclick='xoopsCodeSmilie(\"" . $textarea_id . "_tarea\", \" " . $smiles['code'] . " \");' />"; //fin du hack } } } else { $count = count($smiles); for ($i = 0; $i < $count; $i++) { if ($smiles[$i]['display'] == 1) { //hack bis echo "<img src='" . ICMS_UPLOAD_URL . "/" . icms_core_DataFilter::htmlSpecialChars($smiles['smile_url']) . "' border='0' alt='' onclick='xoopsCodeSmilie(\"" . $textarea_id . "_tarea\", \" " . $smiles[$i]['code'] . " \");' onmouseover='style.cursor=\"hand\"' />"; //fin du hack } } } //hack for more echo " [<a href='#moresmiley' onmouseover='style.cursor=\"hand\"' alt='' onclick='openWithSelfMain(\"" . ICMS_URL . "/misc.php?action=showpopups&type=smilies&target=" . $textarea_id . "_tarea\",\"smilies\",300,475);'>" . _MORE . "</a>]"; }
/** * Logic and rendering for editing a smilie * * @param int $id */ function SmilesEdit($id) { $db =& icms_db_Factory::instance(); icms_cp_header(); echo '<a href="admin.php?fct=smilies">' . _AM_SMILESCONTROL . '</a> <span style="font-weight:bold;">»»</span> ' . _AM_EDITSMILE . '<br /><br />'; if ($getsmiles = $db->query("SELECT * FROM " . $db->prefix("smiles") . " WHERE id = '" . (int) $id . "'")) { $numsmiles = $db->getRowsNum($getsmiles); if ($numsmiles == 0) { //EMPTY } else { if ($smiles = $db->fetchArray($getsmiles)) { $smiles['smile_code'] = icms_core_DataFilter::htmlSpecialChars($smiles['code']); $smiles['smile_url'] = icms_core_DataFilter::htmlSpecialChars($smiles['smile_url']); $smiles['smile_desc'] = icms_core_DataFilter::htmlSpecialChars($smiles['emotion']); $smiles['smile_display'] = $smiles['display']; $smiles['smile_form'] = _AM_EDITSMILE; $smiles['op'] = 'SmilesSave'; include ICMS_MODULES_PATH . '/system/admin/smilies/smileform.php'; $smile_form->addElement(new icms_form_elements_Hidden('old_smile', $smiles['smile_url'])); $smile_form->display(); } } } else { echo _AM_CNRFTSD; } icms_cp_footer(); }
$ele = new icms_form_elements_Colorpicker($title, $config[$i]->getVar('conf_name'), icms_core_DataFilter::htmlSpecialChars($config[$i]->getConfValueForOutput())); break; case 'hidden' : $ele = new icms_form_elements_Hidden($config[$i]->getVar('conf_name'), icms_core_DataFilter::htmlSpecialChars($config[$i]->getConfValueForOutput())); break; case 'select_pages' : $content_handler = & icms_getModuleHandler('content', 'content'); $ele = new icms_form_elements_Select($title, $config[$i]->getVar('conf_name'), $config[$i]->getConfValueForOutput()); $ele->addOptionArray($content_handler->getContentList()); break; case 'textbox' : default : $ele = new icms_form_elements_Text($title, $config[$i]->getVar('conf_name'), 50, 255, icms_core_DataFilter::htmlSpecialChars($config[$i]->getConfValueForOutput())); break; } $hidden = new icms_form_elements_Hidden('conf_ids[]', $config[$i]->getVar('conf_id')); $form->addElement($ele); $form->addElement($hidden); unset($ele, $hidden); } $form->addElement(new icms_form_elements_Hidden('op', 'save')); $form->addElement(new icms_form_elements_Button('', 'button', _GO, 'submit')); icms_cp_header(); if ($module->getInfo('hasAdmin') == TRUE) { $modlink = '<a href="' . ICMS_MODULES_URL . '/' . $module->getVar('dirname') . '/' . $module->getInfo('adminindex') . '">' . $modname . '</a>'; } else { $modlink = $modname; }
/** * Return a linked username or full name for a specific $userid * * @param integer $uid uid of the related user * @param boolean $name TRUE to return the fullname, FALSE to use the username; if TRUE and the user does not have fullname, username will be used instead * @param array $users array already containing icms_member_user_Object objects in which case we will save a query * @param boolean $withContact TRUE if we want contact details to be added in the value returned (PM and email links) * @param boolean $isAuthor Set this to TRUE if you want the rel='author' attribute added to the link */ public static function getUserLink($uid, $name = FALSE, $users = array(), $withContact = FALSE, $isAuthor = FALSE) { global $icmsConfig; if (!is_numeric($uid)) { return $uid; } $uid = (int) $uid; if ($uid > 0) { if ($users == array()) { $member_handler = icms::handler("icms_member"); $user = $member_handler->getUser($uid); } else { if (!isset($users[$uid])) { return $icmsConfig["anonymous"]; } $user = $users[$uid]; } if (is_object($user)) { $author = $isAuthor ? " rel='author'" : ""; $fullname = ''; $linkeduser = ''; $username = $user->getVar('uname'); $fullname2 = $user->getVar('name'); if ($name && !empty($fullname2)) { $fullname = $user->getVar('name'); } if (!empty($fullname)) { $linkeduser = $fullname . "["; } $linkeduser .= '<a href="' . ICMS_URL . '/userinfo.php?uid=' . $uid . '"' . $author . '>'; $linkeduser .= icms_core_DataFilter::htmlSpecialChars($username) . "</a>"; if (!empty($fullname)) { $linkeduser .= "]"; } if ($withContact) { $linkeduser .= '<a href="mailto:' . $user->getVar('email') . '">'; $linkeduser .= '<img style="vertical-align: middle;" src="' . ICMS_IMAGES_URL . '/icons/' . $icmsConfig["language"] . '/email.gif' . '" alt="' . _US_SEND_MAIL . '" title="' . _US_SEND_MAIL . '"/></a>'; $js = "javascript:openWithSelfMain('" . ICMS_URL . '/pmlite.php?send2=1&to_userid=' . $uid . "', 'pmlite', 450, 370);"; $linkeduser .= '<a href="' . $js . '"><img style="vertical-align: middle;" src="' . ICMS_IMAGES_URL . '/icons/' . $icmsConfig["language"] . '/pm.gif' . '" alt="' . _US_SEND_PM . '" title="' . _US_SEND_PM . '"/></a>'; } return $linkeduser; } } return $icmsConfig["anonymous"]; }
$com_title = icms_core_DataFilter::htmlSpecialChars(icms_core_DataFilter::stripSlashesGPC($_POST['com_title'])); if ($dohtml != 0) { if (is_object(icms::$user)) { if (!icms::$user->isAdmin($com_modid)) { $sysperm_handler = icms::handler('icms_member_groupperm'); if (!$sysperm_handler->checkRight('system_admin', XOOPS_SYSTEM_COMMENT, icms::$user->getGroups())) { $dohtml = 0; } } } else { $dohtml = 0; } } $p_comment =& icms_core_DataFilter::checkVar($_POST['com_text'], 'html', 'input'); $noname = isset($noname) ? (int) $noname : 0; $com_text = icms_core_DataFilter::htmlSpecialChars(icms_core_DataFilter::stripSlashesGPC($_POST['com_text'])); if ($icmsModule->getVar('dirname') != 'system') { include ICMS_ROOT_PATH . '/header.php'; themecenterposts($com_title, $p_comment); include ICMS_INCLUDE_PATH . '/comment_form.php'; include ICMS_ROOT_PATH . '/footer.php'; } else { icms_cp_header(); themecenterposts($com_title, $p_comment); include ICMS_INCLUDE_PATH . '/comment_form.php'; icms_cp_footer(); } break; case "post": if ($icmsConfig['use_captchaf'] == TRUE) { $icmsCaptcha = icms_form_elements_captcha_Object::instance();
/** * returns a specific variable for the object in a proper format * * We had to put this method in the icms_ipf_Object because the XOBJ_DTYPE_ARRAY does not work properly * at least on PHP 5.1. So we have created a new type XOBJ_DTYPE_SIMPLE_ARRAY to handle 1 level array * as a string separated by | * * @access public * @param string $key key of the object's variable to be returned * @param string $format format to use for the output * @return mixed formatted value of the variable */ public function getVar($key, $format = 's') { global $myts; $ret = $this->vars[$key]['value']; switch ($this->vars[$key]['data_type']) { case XOBJ_DTYPE_TXTBOX: switch (strtolower($format)) { case 's': case 'show': // ML Hack by marcan $ret = icms_core_DataFilter::htmlSpecialChars($ret); if (method_exists($myts, 'formatForML')) { return $ts->formatForML($ret); } else { return $ret; } break 1; // End of ML Hack by marcan // End of ML Hack by marcan case 'clean': $ret = icms_html2text($ret); $ret = icms_purifyText($ret); return $ret; break 1; // End of ML Hack by marcan // End of ML Hack by marcan case 'e': case 'edit': return icms_core_DataFilter::htmlSpecialChars($ret); break 1; case 'p': case 'preview': case 'f': case 'formpreview': return icms_core_DataFilter::htmlSpecialChars(icms_core_DataFilter::stripSlashesGPC($ret)); break 1; case 'n': case 'none': default: break 1; } break; case XOBJ_DTYPE_LTIME: switch (strtolower($format)) { case 's': case 'show': case 'p': case 'preview': case 'f': case 'formpreview': $ret = formatTimestamp($ret, _DATESTRING); return $ret; break 1; case 'n': case 'none': case 'e': case 'edit': break 1; default: break 1; } break; case XOBJ_DTYPE_STIME: switch (strtolower($format)) { case 's': case 'show': case 'p': case 'preview': case 'f': case 'formpreview': $ret = formatTimestamp($ret, _SHORTDATESTRING); return $ret; break 1; case 'n': case 'none': case 'e': case 'edit': break 1; default: break 1; } break; case XOBJ_DTYPE_TIME_ONLY: switch (strtolower($format)) { case 's': case 'show': case 'p': case 'preview': case 'f': case 'formpreview': $ret = formatTimestamp($ret, 'G:i'); return $ret; break 1; case 'n': case 'none': case 'e': case 'edit': break 1; default: break 1; } break; case XOBJ_DTYPE_CURRENCY: $decimal_section_original = strstr($ret, '.'); $decimal_section = $decimal_section_original; if ($decimal_section) { if (strlen($decimal_section) == 1) { $decimal_section = '.00'; } elseif (strlen($decimal_section) == 2) { $decimal_section = $decimal_section . '0'; } $ret = str_replace($decimal_section_original, $decimal_section, $ret); } else { $ret = $ret . '.00'; } break; case XOBJ_DTYPE_TXTAREA: switch (strtolower($format)) { case 's': case 'show': $ts = icms_core_Textsanitizer::getInstance(); $html = !empty($this->vars['dohtml']['value']) ? 1 : 0; $xcode = !isset($this->vars['doxcode']['value']) || $this->vars['doxcode']['value'] == 1 ? 1 : 0; $smiley = !isset($this->vars['dosmiley']['value']) || $this->vars['dosmiley']['value'] == 1 ? 1 : 0; $image = !isset($this->vars['doimage']['value']) || $this->vars['doimage']['value'] == 1 ? 1 : 0; $br = !isset($this->vars['dobr']['value']) || $this->vars['dobr']['value'] == 1 ? 1 : 0; if (defined('XOOPS_EDITOR_IS_HTML')) { $br = false; } if ($html) { return $ts->displayTarea($ret, $html, $smiley, $xcode, $image, $br); } else { return icms_core_DataFilter::checkVar($ret, 'text', 'output'); } break 1; case 'e': case 'edit': return htmlspecialchars($ret, ENT_QUOTES); break 1; case 'p': case 'preview': $ts = icms_core_Textsanitizer::getInstance(); $html = !empty($this->vars['dohtml']['value']) ? 1 : 0; $xcode = !isset($this->vars['doxcode']['value']) || $this->vars['doxcode']['value'] == 1 ? 1 : 0; $smiley = !isset($this->vars['dosmiley']['value']) || $this->vars['dosmiley']['value'] == 1 ? 1 : 0; $image = !isset($this->vars['doimage']['value']) || $this->vars['doimage']['value'] == 1 ? 1 : 0; $br = !isset($this->vars['dobr']['value']) || $this->vars['dobr']['value'] == 1 ? 1 : 0; if ($html) { return $ts->previewTarea($ret, $html, $smiley, $xcode, $image, $br); } else { return icms_core_DataFilter::checkVar($ret, 'text', 'output'); } break 1; case 'f': case 'formpreview': return htmlspecialchars(icms_core_DataFilter::stripSlashesGPC($ret), ENT_QUOTES); break 1; case 'n': case 'none': default: break 1; } break; case XOBJ_DTYPE_SIMPLE_ARRAY: $ret =& explode('|', $ret); break; case XOBJ_DTYPE_ARRAY: $ret =& unserialize($ret); break; case XOBJ_DTYPE_SOURCE: switch (strtolower($format)) { case 's': case 'show': break 1; case 'e': case 'edit': return htmlspecialchars($ret, ENT_QUOTES); break 1; case 'p': case 'preview': return icms_core_DataFilter::stripSlashesGPC($ret); break 1; case 'f': case 'formpreview': return htmlspecialchars(icms_core_DataFilter::stripSlashesGPC($ret), ENT_QUOTES); break 1; case 'n': case 'none': default: break 1; } break; default: if ($this->vars[$key]['options'] != '' && $ret != '') { switch (strtolower($format)) { case 's': case 'show': $selected = explode('|', $ret); $options = explode('|', $this->vars[$key]['options']); $i = 1; $ret = array(); foreach ($options as $op) { if (in_array($i, $selected)) { $ret[] = $op; } $i++; } return implode(', ', $ret); case 'e': case 'edit': $ret = explode('|', $ret); break 1; default: break 1; } } break; } return $ret; }
if (count($mids) > 0 && count($allowed_mids) > 0) { foreach ($mids as $mid) { if (in_array($mid, $allowed_mids)) { $results = $modules[$mid]->search('', '', 5, 0, $thisUser->getVar('uid')); $count = count($results); if (is_array($results) && $count > 0) { for ($i = 0; $i < $count; $i++) { if (isset($results[$i]['image']) && $results[$i]['image'] != '') { $results[$i]['image'] = ICMS_URL . '/modules/' . $modules[$mid]->getVar('dirname') . '/' . $results[$i]['image']; } else { $results[$i]['image'] = ICMS_URL . '/images/icons/posticon2.gif'; } if (!preg_match("/^http[s]*:\\/\\//i", $results[$i]['link'])) { $results[$i]['link'] = ICMS_URL . "/modules/" . $modules[$mid]->getVar('dirname') . "/" . $results[$i]['link']; } $results[$i]['title'] = icms_core_DataFilter::htmlSpecialChars($results[$i]['title']); $results[$i]['time'] = $results[$i]['time'] ? formatTimestamp($results[$i]['time']) : ''; } if ($count == 5) { $showall_link = '<a href="' . ICMS_URL . '/search.php?action=showallbyuser&mid=' . $mid . '&uid=' . $thisUser->getVar('uid') . '">' . _MD_PROFILE_SHOWALL . '</a>'; } else { $showall_link = ''; } $icmsTpl->append('modules', array('name' => $modules[$mid]->getVar('name'), 'results' => $results, 'showall_link' => $showall_link)); } unset($modules[$mid]); } } } } if (icms::$module->config['index_real_name'] == 'real' && trim($thisUser->getVar('name'))) {
/** * @deprecated Use htmlSpecialChars, instead * @todo Remove this in version 1.4 - no other occurrences in the core * @param $text */ function makeTareaData4InsideQuotes($text) { icms_core_Debug::setDeprecated('icms_core_DataFilter::htmlSpecialChars', sprintf(_CORE_REMOVE_IN_VERSION, '1.4')); return icms_core_DataFilter::htmlSpecialChars($text); }
/** * Shows information about the user * * @param array $options The block options * @return array $block the block array */ function b_system_info_show($options) { global $icmsConfig; $block = array(); if (!empty($options[3])) { $block['showgroups'] = TRUE; $result = icms::$xoopsDB->query("SELECT u.uid, u.uname, u.email, u.user_viewemail, u.user_avatar, g.name AS groupname FROM " . icms::$xoopsDB->prefix("groups_users_link") . " l LEFT JOIN " . icms::$xoopsDB->prefix("users") . " u ON l.uid=u.uid LEFT JOIN " . icms::$xoopsDB->prefix("groups") . " g ON l.groupid=g.groupid WHERE g.group_type='Admin' ORDER BY l.groupid, u.uid"); if (icms::$xoopsDB->getRowsNum($result) > 0) { $prev_caption = ""; $i = 0; while ($userinfo = icms::$xoopsDB->fetchArray($result)) { if ($prev_caption != $userinfo['groupname']) { $prev_caption = $userinfo['groupname']; $block['groups'][$i]['name'] = icms_core_DataFilter::htmlSpecialChars($userinfo['groupname']); } if (isset(icms::$user) && is_object(icms::$user)) { $block['groups'][$i]['users'][] = array('id' => $userinfo['uid'], 'name' => icms_core_DataFilter::htmlSpecialChars($userinfo['uname']), 'msglink' => "<a href=\"javascript:openWithSelfMain('" . ICMS_URL . "/pmlite.php?send2=1&to_userid=" . $userinfo['uid'] . "','pmlite',800,680);\"><img src=\"" . ICMS_URL . "/images/icons/" . $GLOBALS["icmsConfig"]["language"] . "/pm_small.gif\" width=\"27px\" height=\"17px\" alt=\"\" /></a>", 'avatar' => ICMS_UPLOAD_URL . '/' . $userinfo['user_avatar']); } else { if ($userinfo['user_viewemail']) { $block['groups'][$i]['users'][] = array('id' => $userinfo['uid'], 'name' => icms_core_DataFilter::htmlSpecialChars($userinfo['uname']), 'msglink' => '<a href="mailto:' . $userinfo['email'] . '"><img src="' . ICMS_URL . '/images/icons/' . $GLOBALS["icmsConfig"]["language"] . '/em_small.gif" width="16px" height="14px" alt="" /></a>', 'avatar' => ICMS_UPLOAD_URL . '/' . $userinfo['user_avatar']); } else { $block['groups'][$i]['users'][] = array('id' => $userinfo['uid'], 'name' => icms_core_DataFilter::htmlSpecialChars($userinfo['uname']), 'msglink' => ' ', 'avatar' => ICMS_UPLOAD_URL . '/' . $userinfo['user_avatar']); } } $i++; } } } else { $block['showgroups'] = FALSE; } $block['logourl'] = ICMS_URL . '/images/' . $options[2]; $block['recommendlink'] = "<a href=\"javascript:openWithSelfMain('" . ICMS_URL . "/misc.php?action=showpopups&type=friend&op=sendform&t=" . time() . "','friend'," . $options[0] . "," . $options[1] . ")\">" . _MB_SYSTEM_RECO . "</a>"; return $block; }
} echo "</td><td colspan='12'>" . icms::$security->getTokenHTML() . "<input type='submit' value='" . _SUBMIT . "' /></td></tr></table></form>\n"; $totalpages = ceil($total / $limit); if ($totalpages > 1) { $hiddenform = "<form name='findnext' action='admin.php' method='post'>"; $skip_vars = array('selgroups'); foreach ($_POST as $k => $v) { if ($k == 'selgroups') { foreach ($selgroups as $_group) { $hiddenform .= "<input type='hidden' name='selgroups[]' value='" . $_group . "' />\n"; } } elseif ($k == 'XOOPS_TOKEN_REQUEST') { // regenerate token value $hiddenform .= icms::$security->getTokenHTML() . "\n"; } else { $hiddenform .= "<input type='hidden' name='" . icms_core_DataFilter::htmlSpecialChars($k) . "' value='" . icms_core_DataFilter::htmlSpecialChars(icms_core_DataFilter::stripSlashesGPC($v)) . "' />\n"; } } if (!isset($limit)) { $hiddenform .= "<input type='hidden' name='limit' value='" . $limit . "' />\n"; } if (!isset($start)) { $hiddenform .= "<input type='hidden' name='start' value='" . $start . "' />\n"; } $prev = $start - $limit; if ($start - $limit >= 0) { $hiddenform .= "<a href='#0' onclick='javascript:document.findnext.start.value=" . $prev . ";document.findnext.submit();'>" . _AM_PREVIOUS . "</a> \n"; } $counter = 1; $currentpage = ($start+$limit) / $limit; while ($counter <= $totalpages) {
$url = formatURL($url); echo _US_WEBSITE . ': ' . icms_core_DataFilter::htmlSpecialChars($url) . '<br />'; } $f_timezone = ($timezone_offset < 0) ? 'GMT ' . $timezone_offset : 'GMT +' . $timezone_offset; echo _US_TIMEZONE . ": $f_timezone<br />"; echo "<form action='register.php' method='post'><input type='hidden' name='login_name' value='" . icms_core_DataFilter::htmlSpecialChars($login_name) . "' /><input type='hidden' name='uname' value='" . icms_core_DataFilter::htmlSpecialChars($uname) . "' /><input type='hidden' name='email' value='" . icms_core_DataFilter::htmlSpecialChars($email) . "' /><input type='hidden' name='user_viewemail' value='" . (int) $user_viewemail . "' /><input type='hidden' name='timezone_offset' value='" . $timezone_offset . "' /><input type='hidden' name='url' value='" . icms_core_DataFilter::htmlSpecialChars($url) . "' /><input type='hidden' name='pass' value='" . icms_core_DataFilter::htmlSpecialChars($pass) . "' /><input type='hidden' name='vpass' value='" . icms_core_DataFilter::htmlSpecialChars($vpass) . "' /><input type='hidden' name='user_mailok' value='" . (int) $user_mailok . "' /><input type='hidden' name='actkey' value='" . icms_core_DataFilter::htmlSpecialChars($actkey) . "' /><input type='hidden' name='agree_disc' value='" . (int) $agree_disc . "' /><br /><br /><input type='hidden' name='op' value='finish' />" . icms::$security->getTokenHTML() . "<input type='submit' value='". _US_FINISH ."' /></form>"; } else { echo "<div id='registerstop' style='color:#ff0000;'>$stop</div>"; include 'include/registerform.php'; $reg_form->display(); } $xoopsTpl->assign('icms_pagetitle', _US_USERREG); include 'footer.php'; break; case 'finish': include 'header.php'; $stop = $thisuser->userCheck($login_name, $uname, $email, $pass, $vpass);
*/ defined('ICMS_ROOT_PATH') || die("ImpressCMS root path not defined"); include_once ICMS_INCLUDE_PATH . '/comment_constants.php'; if ('system' != $icmsModule->getVar('dirname') && XOOPS_COMMENT_APPROVENONE == $icmsModuleConfig['com_rule'] || !is_object(icms::$user) && !$icmsModuleConfig['com_anonpost'] || !is_object($icmsModule)) { redirect_header(ICMS_URL . '/user.php', 1, _NOPERM); } icms_loadLanguageFile('core', 'comment'); $com_itemid = isset($_GET['com_itemid']) ? (int) $_GET['com_itemid'] : 0; if ($com_itemid > 0) { include ICMS_ROOT_PATH . '/header.php'; if (isset($com_replytitle)) { if (isset($com_replytext)) { //themecenterposts($com_replytitle, $com_replytext); echo '<table cellpadding="4" cellspacing="1" width="98%" class="outer"><tr><td class="head">' . $com_replytitle . '</td></tr><tr><td><br />' . $com_replytext . '<br /></td></tr></table>'; } $com_title = icms_core_DataFilter::htmlSpecialChars($com_replytitle); if (!preg_match("/^(Re|" . _CM_RE . "):/i", $com_title)) { $com_title = _CM_RE . ": " . icms_core_DataFilter::icms_substr($com_title, 0, 56); } } else { $com_title = ''; } $com_mode = isset($_GET['com_mode']) ? htmlspecialchars(trim($_GET['com_mode']), ENT_QUOTES) : ''; if ($com_mode == '') { if (is_object(icms::$user)) { $com_mode = icms::$user->getVar('umode'); } else { $com_mode = $icmsConfig['com_mode']; } } if (!isset($_GET['com_order'])) {
/** * Edits a client's information * @param int $cid client id */ function BannerClientEdit($cid) { global $icmsConfig, $icmsModule; icms_cp_header(); $result = icms::$xoopsDB->query("SELECT name, contact, email, login, passwd, extrainfo FROM " . icms::$xoopsDB->prefix("bannerclient") . " WHERE cid='". (int) $cid . "'"); list($name, $contact, $email, $login, $passwd, $extrainfo) = icms::$xoopsDB->fetchRow($result); $name = icms_core_DataFilter::htmlSpecialChars($name); $contact = icms_core_DataFilter::htmlSpecialChars($contact); $email = icms_core_DataFilter::htmlSpecialChars($email); $login = icms_core_DataFilter::htmlSpecialChars($login); $passwd = icms_core_DataFilter::htmlSpecialChars($passwd); $extrainfo = icms_core_DataFilter::htmlSpecialChars($extrainfo); echo "<table width='100%' border='0' cellspacing='1' class='outer'><tr><td class=\"odd\">"; echo "<h4>" . _AM_EDITADVCLI . "</h4><form action='admin.php' method='post'>" . _AM_CLINAMET . "<input type='text' name='name' value='$name' size='30' maxlength='60' /><br />" . _AM_CONTNAMET . "<input type='text' name='contact' value='$contact' size='30' maxlength='60' /><br />" . _AM_CONTMAILT . "<input type='text' name='email' size='30' maxlength='60' value='$email' /><br />" . _AM_CLILOGINT . "<input type='text' name='login' size='12' maxlength='10' value='$login' /><br />" . _AM_CLIPASST . "<input type='text' name='passwd' size='12' maxlength='10' value='$passwd' /><br />" . _AM_EXTINFO . "<br /><textarea name='extrainfo' cols='60' rows='10' />$extrainfo</textarea><br />" . "<input type='hidden' name='cid' value='$cid' />" . "<input type='hidden' name='op' value='BannerClientChange' />" . icms::$security->getTokenHTML() . "<input type='hidden' name='fct' value='banners' /><input type='submit' value='" . _AM_CHGCLI . "' />"; echo "</td></tr></table>"; icms_cp_footer(); }
} if ($icmsConfigUser['reg_dispdsclmr'] != 0 && $icmsConfigUser['reg_disclaimer'] != '') { if (empty($agree_disc)) { $stop .= _US_UNEEDAGREE . '<br />'; } } $stop .= $thisuser->userCheck($login_name, $uname, $email, $pass, $vpass); if (empty($stop)) { echo _US_LOGINNAME . ": " . icms_core_DataFilter::htmlSpecialChars($login_name) . "<br />" . _US_NICKNAME . ": " . icms_core_DataFilter::htmlSpecialChars($uname) . "<br />" . _US_EMAIL . ": " . icms_core_DataFilter::htmlSpecialChars($email) . "<br />"; if ($url != '') { $url = formatURL($url); echo _US_WEBSITE . ': ' . icms_core_DataFilter::htmlSpecialChars($url) . '<br />'; } $f_timezone = $timezone_offset < 0 ? 'GMT ' . $timezone_offset : 'GMT +' . $timezone_offset; echo _US_TIMEZONE . ": {$f_timezone}<br />"; echo "<form action='register.php' method='post'><input type='hidden' name='login_name' value='" . icms_core_DataFilter::htmlSpecialChars($login_name) . "' /><input type='hidden' name='uname' value='" . icms_core_DataFilter::htmlSpecialChars($uname) . "' /><input type='hidden' name='email' value='" . icms_core_DataFilter::htmlSpecialChars($email) . "' /><input type='hidden' name='user_viewemail' value='" . (int) $user_viewemail . "' /><input type='hidden' name='timezone_offset' value='" . $timezone_offset . "' /><input type='hidden' name='url' value='" . icms_core_DataFilter::htmlSpecialChars($url) . "' /><input type='hidden' name='pass' value='" . icms_core_DataFilter::htmlSpecialChars($pass) . "' /><input type='hidden' name='vpass' value='" . icms_core_DataFilter::htmlSpecialChars($vpass) . "' /><input type='hidden' name='user_mailok' value='" . (int) $user_mailok . "' /><input type='hidden' name='actkey' value='" . icms_core_DataFilter::htmlSpecialChars($actkey) . "' /><input type='hidden' name='salt' value='" . icms_core_DataFilter::htmlSpecialChars($salt) . "' /><input type='hidden' name='enc_type' value='" . (int) $enc_type . "' /><input type='hidden' name='agree_disc' value='" . (int) $agree_disc . "' /><br /><br /><input type='hidden' name='op' value='finish' />" . icms::$security->getTokenHTML() . "<input type='submit' value='" . _US_FINISH . "' /></form>"; } else { echo "<span style='color:#ff0000;'>{$stop}</span>"; include 'include/registerform.php'; $reg_form->display(); } $xoopsTpl->assign('icms_pagetitle', _US_USERREG); include 'footer.php'; break; case 'finish': include 'header.php'; $stop = $thisuser->userCheck($login_name, $uname, $email, $pass, $vpass); if (!icms::$security->check()) { $stop .= implode('<br />', icms::$security->getErrors()) . "<br />"; } if ($icmsConfigUser['use_captcha'] == 1) {
if ($icmsConfigUser['pass_level'] > 20) { icms_PasswordMeter(); } $reg_form->addElement(new icms_form_elements_Password(_US_PASSWORD, "pass", 10, 255, icms_core_DataFilter::htmlSpecialChars($pass), false, $icmsConfigUser['pass_level'] ? 'password_adv' : ''), true); $reg_form->addElement(new icms_form_elements_Password(_US_VERIFYPASS, "vpass", 10, 255, icms_core_DataFilter::htmlSpecialChars($vpass)), true); $reg_form->addElement(new icms_form_elements_Text(_US_WEBSITE, "url", 25, 255, icms_core_DataFilter::htmlSpecialChars($url))); $tzselected = $timezone_offset != "" ? $timezone_offset : $icmsConfig['default_TZ']; $reg_form->addElement(new icms_form_elements_select_Timezone(_US_TIMEZONE, "timezone_offset", $tzselected)); //$reg_form->addElement($avatar_tray); $reg_form->addElement(new icms_form_elements_Radioyn(_US_MAILOK, 'user_mailok', $user_mailok)); if ($icmsConfigUser['reg_dispdsclmr'] != 0 && $icmsConfigUser['reg_disclaimer'] != '') { $disc_tray = new icms_form_elements_Tray(_US_DISCLAIMER, '<br />'); $disclaimer_html = '<div id="disclaimer">' . nl2br($icmsConfigUser['reg_disclaimer']) . '</div>'; $disc_text = new icms_form_elements_Label('', $disclaimer_html, 'disclaimer'); $disc_tray->addElement($disc_text); $agree_chk = new icms_form_elements_Checkbox('', 'agree_disc', $agree_disc); $agree_chk->addOption(1, _US_IAGREE); $eltname = $agree_chk->getName(); $eltmsg = str_replace('"', '\\"', stripslashes(sprintf(_FORM_ENTER, _US_IAGREE))); $agree_chk->customValidationCode[] = "if (myform.{$eltname}.checked == false) { window.alert(\"{$eltmsg}\"); myform.{$eltname}.focus(); return false; }"; $disc_tray->addElement($agree_chk, true); $reg_form->addElement($disc_tray); } $reg_form->addElement(new icms_form_elements_Hidden("actkey", icms_core_DataFilter::htmlSpecialChars($actkey))); if ($icmsConfigUser['use_captcha'] == true) { $reg_form->addElement(new icms_form_elements_Captcha(_SECURITYIMAGE_GETCODE, "scode"), true); $reg_form->addElement(new icms_form_elements_Hidden("op", "finish")); } else { $reg_form->addElement(new icms_form_elements_Hidden("op", "newuser")); } $reg_form->addElement(new icms_form_elements_Button("", "submit", _US_SUBMIT, "submit"));
<?php /** * Handles all functions for the invitation form within ImpressCMS * * @copyright http://www.impresscms.org/ The ImpressCMS Project * @license LICENSE.txt * @package core * @since 1.1 * @author modified by UnderDog <*****@*****.**> * @version $Id: inviteform.php 11079 2011-03-17 12:43:06Z m0nty_ $ */ if (!defined("ICMS_ROOT_PATH")) { die("ImpressCMS root path not defined"); } $invite_form = new icms_form_Theme(_US_USERINVITE, "userinvite", "invite.php", "post", true); $invite_form->addElement(new icms_form_elements_Text(_US_EMAIL, "email", 25, 60, icms_core_DataFilter::htmlSpecialChars($email)), true); $invite_form->addElement(new icms_form_elements_Captcha(_SECURITYIMAGE_GETCODE, "scode"), true); $invite_form->addElement(new icms_form_elements_Hidden("op", "finish")); $invite_form->addElement(new icms_form_elements_Button("", "submit", _US_SUBMIT, "submit"));
/** * Get {@link icms_form_Simple} for finishing registration * * @param object $user {@link icms_member_user_Object} object to finish registering * @param string $vpass Password verification field * @param mixed $action URL to submit to or false for $_SERVER['REQUEST_URI'] * * @return object */ function getFinishForm(&$user, $vpass, $action = false) { if ($action === false) { $action = $_SERVER['REQUEST_URI']; } $form = new icms_form_Simple("", "userinfo", $action, "post"); $profile = $user->getProfile(); $array = array_merge(array_keys($user->getVars()), array_keys($profile->getVars())); foreach ($array as $field) { $value = $user->getVar($field, 'e'); if (is_array($value)) { foreach ($value as $thisvalue) { $form->addElement(new icms_form_elements_Hidden($field . "[]", $thisvalue)); } } else { $form->addElement(new icms_form_elements_Hidden($field, $value)); } } $form->setExtra("", true); $form->addElement(new icms_form_elements_Hidden('vpass', icms_core_DataFilter::htmlSpecialChars($vpass))); $form->addElement(new icms_form_elements_Hidden('op', 'finish')); $form->addElement(new icms_form_elements_Button('', 'submit', _MD_PROFILE_FINISH, 'submit')); return $form; }
/** * Updated by Catzwolf 11 Jan 2004 * find the username for a given ID * * @param int $userid ID of the user to find * @param int $usereal switch for usename or realname * @return string name of the user. name for "anonymous" if not found. */ public static function getUnameFromId($userid, $usereal = 0) { $userid = (int) $userid; $usereal = (int) $usereal; if ($userid > 0) { $member_handler = icms::handler('icms_member'); $user =& $member_handler->getUser($userid); if (is_object($user)) { if ($usereal) { $name = $user->getVar('name'); if ($name != '') { return icms_core_DataFilter::htmlSpecialChars($name); } else { return icms_core_DataFilter::htmlSpecialChars($user->getVar('uname')); } } else { return icms_core_DataFilter::htmlSpecialChars($user->getVar('uname')); } } } return $GLOBALS['icmsConfig']['anonymous']; }
/** * Generates nicely formatted linked path from the root id to a given id * @param integer $sel_id * @param string $title * @param string $funcURL * @param string $path * @param string $separator Allows custom designation of separator in linked path * $return string $path **/ public function getNicePathFromId($sel_id, $title, $funcURL, $path = '', $separator = _BRDCRMB_SEP) { $path = !empty($path) ? $separator . $path : $path; $sel_id = (int) $sel_id; $sql = 'SELECT ' . $this->pid . ', ' . $title . ' FROM ' . $this->table . ' WHERE ' . $this->id . '="' . $sel_id . '"'; $result = $this->db->query($sql); if ($this->db->getRowsNum($result) == 0) { return $path; } list($parentid, $name) = $this->db->fetchRow($result); $name = icms_core_DataFilter::htmlSpecialChars($name); $path = '<a href="' . $funcURL . '&' . $this->id . '=' . $sel_id . '">' . $name . '</a>' . $path . ""; if ($parentid == 0) { return $path; } $path = $this->getNicePathFromId($parentid, $title, $funcURL, $path, $separator); return $path; }