function login($data)
{
//global $tpl;
$objResponse = new xajaxResponse();
include 'settings/tables.php';
/* Crypt Password with MD5 Method */
$pw_crypted = MD5(mysql_real_escape_string($data['password']));
//encrypt password with MD5
$email = mysql_real_escape_string($data['email']);
/******************************************/
/* Create Object :: EXIST */
$logon = new CheckExist();
/******************************************/
/* Check :: EXIST */
$logon->tableE = $tbl_users;
$logon->conditionE = " UserEmail = '" . $email . "' && UserPass = '******' && activation_code = '' ";
$CheckData = $logon->exist();
/******************************************/
/* Change Status :: Login successful or failed */
if ($CheckData == 1) {
$logon->email = $email;
$logon->pw = $pw_crypted;
$logon->tbl_users = $tbl_users;
//setcookie
if (isset($data['autologon'])) {
$logon->cookie_duration = 1;
} else {
$logon->cookie_duration = 0;
}
$logon->cookieset('ly');
$objResponse->Script("document.getElementById('submit_login').onclick()");
$objResponse->redirect(ROOT_DIR);
//return true;
} else {
$logon->email = '';
$logon->pw = '';
//$logon->cookieset('l');
$objResponse->assign("p_logon_failure", "style.display", 'block');
$objResponse->assign("p_logon_failure", "innerHTML", "Login information could not be verified.<br> Please try it again.");
//TODO move string to language file
//$tpl->display("logon/login.tpl");
//return false;
}
unset($logon);
/******************************************/
return $objResponse;
}
$blog->update();
/******************************************/
/* Delete :: Object UPDATE */
unset($blog);
/******************************************/
/* UPDATE :: RSS Feed */
include 'update_rss_blog.php';
/******************************************/
/* Load :: Updated Main Content */
$GetPage = new SelectEntrys();
$GetPage->cols = 'date';
$GetPage->table = $tbl_blog;
$GetPage->condition = " id = '{$_POST['id']}' ";
$Tdate = $GetPage->row();
unset($GetPage);
$GetPage = new CheckExist();
$GetPage->tableE = $tbl_blog;
$GetPage->conditionE = "date > '{$Tdate}' AND deleted = '0' ";
$newer_entries = $GetPage->exist();
unset($GetPage);
$page = $newer_entries / $set[0]['perpage_blog'];
$page = floor($page);
$page++;
header("Location:" . ROOT_DIR . "blog/" . $_POST['id'] . "/");
/******************************************/
} else {
if (isset($preview)) {
include "modules/blog/output.php";
include 'modules/blog/preview.php';
$tpl->assign('array', $array);
$tpl->display("formular/form_main.tpl");
<?php
if ($_GET['module'] != 'flash') {
$ay_cats_active = explode(",", $user_data['flash_categories_visible']);
$flash_cats = new CheckExist();
$flash_cats->tableE = $tbl_flash_categories;
$n_flash_cats = $flash_cats->exist();
for ($i = 1; $i <= $n_flash_cats; $i++) {
if (in_array($i, $ay_cats_active)) {
$tpl->assign('flash_cat_' . $i, "checked='checked'");
} else {
$tpl->assign('flash_cat_' . $i, "");
}
}
}
if ($user_data['flash_categories_visible'] != "" || $_GET['module'] == 'flash') {
$cats = $user_data['flash_categories_visible'];
$flashes = new SelectEntrys();
$flashes->cols = 'ID, section, category, type, question, likes, dislikes, opt1, opt2, opt3, opt4, opt5, opt6, opt7, opt8, opt9, opt10, opt1_votes, opt2_votes, opt3_votes, opt4_votes, opt5_votes, opt6_votes, opt7_votes, opt8_votes, opt9_votes, opt10_votes';
$flashes->table = $tbl_flashes;
if ($_GET['module'] == 'flash') {
$flashes->condition = "category = {$cid}";
} else {
$flashes->condition = "category IN ({$cats})";
}
$flashes->order = 'CreateDate DESC';
$flashes->limit = $per_page_flashes;
$flashes->multiSelect = '1';
$ay_flashes = $flashes->row();
if ($ay_flashes == "") {
$ay_flashes = array();
<?php
require_once 'dbCon.php';
require_once '../settings/dbCon.php';
include "../settings/tables.php";
include "exist.php";
if ($_GET['s'] == "check_email") {
$email = trim(stripslashes(mysql_real_escape_string($_GET['email'])));
$email_exist = new CheckExist();
$email_exist->tableE = $tbl_users;
$email_exist->conditionE = "UserEmail = '{$email}' ";
$obj_return = $email_exist->exist();
echo $obj_return;
}
/******************************************/
/* Clear thumbs directory */
$thumbs->directory = $dir_thumbs;
$thumbs->listfolder('clear');
rmdir("gallery/{$folder}/thumbs");
/******************************************/
/* Delete entry */
$gallery->table = $tbl_gallery;
$gallery->condition = " id = '{$_POST['gid']}' ";
$gallery->delete();
/******************************************/
/* Delete :: Object INSERT */
unset($gallery);
/******************************************/
/* Get total rows */
$gallery = new CheckExist();
$gallery->tableE = $tbl_gallery;
$gallery->conditionE = "";
$TotalRows = $gallery->exist();
unset($gallery);
/******************************************/
/* Load :: Updated Main Content */
if (!isset($_GET['page'])) {
$page_current = '1';
} else {
$page_current = $_GET['page'];
}
$max_pages = ceil($TotalRows / $set[0]["perpage_gallery"]);
if ($max_pages > 1 && $page_current <= $max_pages) {
$page_url = 'gallery/page/' . $page_current . '/';
} else {
$single_array[] = $array_blog_comments[$b]['bid'];
$array_comments[$b]['bid'] = $array_blog_comments[$b]['bid'];
$array_comments[$b]['comment_numbers'] = $array_blog_comments[$b]['COUNT(id)'];
$array_comments[$b]['comment_time'] = convert_date_comments($array_blog_comments[$b]['MAXtime']);
$array_comments[$b]['comment_time'] = substr($array_comments[$b]['comment_time'], 0, strlen($array_comments[$b]['comment_time']) - 8);
}
$string_bids = implode(",", $single_array);
$b_title = new SelectEntrys();
$b_title->cols = 'id, title_DE, title_EN, date';
$b_title->table = $tbl_blog;
$b_title->condition = "id IN ({$string_bids})";
$b_title->multiSelect = '1';
$array_b_titles = $b_title->row();
for ($b = 0; $b < count($array_b_titles); $b++) {
$date = $array_b_titles[$b]['date'];
$get_page = new CheckExist();
$get_page->tableE = $tbl_blog;
$get_page->conditionE = " date > '{$date}' ";
$_page = $get_page->exist();
unset($get_page);
$bid = $array_b_titles[$b]['id'];
$final_page = floor($_page / $set[0]['perpage_blog']) + 1;
$array_b[$bid]['title_DE'] = $array_b_titles[$b]['title_DE'];
$array_b[$bid]['title_EN'] = $array_b_titles[$b]['title_EN'];
$array_b[$bid]['link'] = 'blog/' . $final_page . '/' . $bid . '/#c' . $bid;
}
for ($b = 0; $b < count($array_comments); $b++) {
$bid = $array_comments[$b]['bid'];
$array_comments[$b]['title_DE'] = $array_b[$bid]['title_DE'];
$array_comments[$b]['title_EN'] = $array_b[$bid]['title_DE'];
$array_comments[$b]['link'] = $array_b[$bid]['link'];
<?php
/* Crypt Password with MD5 Method */
$pw_crypted = MD5($_POST['UserPass']);
/******************************************/
/* Create Object :: EXIST */
$logon = new CheckExist();
/******************************************/
/* Check :: EXIST */
$logon->tableE = $tbl_users;
$logon->conditionE = " UserEmail = '" . $_POST['UserEmail'] . "' && UserPass = '******' && activation_code = '' ";
$CheckData = $logon->exist();
/******************************************/
/* Change Status :: Login successful or failed */
if ($CheckData == 1) {
$logon->email = $_POST['UserEmail'];
$logon->pw = $pw_crypted;
$logon->tbl_users = $tbl_users;
if (isset($_POST['autologon'])) {
$logon->cookie_duration = 1;
} else {
$logon->cookie_duration = 0;
}
$logon->cookieset('l');
header("Location:" . ROOT_DIR);
} else {
$logon->email = '';
$logon->pw = '';
//$logon->cookieset('l');
$tpl->assign('logon_failure', true);
//$tpl->display("logon/login.tpl");
function update_visiter_stats($tbl_visiter, $tbl_settings, $timestamp, $del_old_visiters, $time_new_visiter)
{
require_once 'lib/select.php';
require_once 'lib/modify.php';
require_once 'lib/exist.php';
$delimiter = $timestamp - $del_old_visiters * 60;
// delete entries older than 2 weeks 60*60*24*14
$visiter = new ModifyEntry();
$visiter->table = $tbl_visiter;
$visiter->condition = " UNIX_TIMESTAMP(date) < {$delimiter} ";
$visiter->delete();
unset($visiter);
$delimiter = $timestamp - $time_new_visiter * 60;
$visiter = new CheckExist();
$visiter->tableE = $tbl_visiter;
$visiter->conditionE = " IP = '" . $_SERVER['REMOTE_ADDR'] . "' AND UNIX_TIMESTAMP(date) >= {$delimiter} ";
$visiter_exist = $visiter->exist();
unset($visiter);
if ($visiter_exist == 0) {
//$country = file_get_contents('http://api.hostip.info/country.php?ip='.$_SERVER['REMOTE_ADDR']);
$date = date("Y-m-d H:i:s", $timestamp);
$visiter = new ModifyEntry();
$visiter->table = $tbl_visiter;
$visiter->cols = 'IP, date, browser, country, referer';
$visiter->values = " '" . $_SERVER['REMOTE_ADDR'] . "', '{$date}', '" . $_SERVER['HTTP_USER_AGENT'] . "', 'unknown', '" . $_SERVER['HTTP_REFERER'] . "' ";
$visiter->insert();
$visiter->table = $tbl_settings;
$visiter->changes = " visiters_total = visiters_total+1 ";
$visiter->condition = " id = '1' ";
$visiter->update();
unset($visiter);
}
return false;
}
<?php
/* Crypt Password with MD5 Method */
$pw_crypted = MD5($_POST[password]);
/******************************************/
/* Create Object :: EXIST */
require_once './lib/exist.php';
$hits = new CheckExist();
/******************************************/
/* Check :: EXIST */
$hits->tableE = $tbl_users;
$hits->conditionE = " UserName = '******'username']}' && UserPass = '******' ";
$CheckData = $hits->exist();
/******************************************/
/* Change Status :: Login successful or failed */
if ($CheckData == 1) {
$hits->user = $_POST[username];
$hits->pw = $pw_crypted;
$hits->tbl_users = $tbl_users;
$hits->cookieset();
header("Location:" . ROOT_DIR . "admin/");
} else {
$hits->user = '';
$hits->pw = '';
$hits->cookieset();
$tpl->assign('failure', true);
$tpl->display("logon/login.tpl");
}
unset($hits);
/******************************************/
if (empty($_POST[name])) {
$_POST[name] = $name_guest;
}
$_POST["comment"] = strip_tags($_POST["comment"]);
$blog->table = $tbl_blog_comments;
$blog->cols = 'bid, name, comment, lang, ip';
$blog->values = " '{$_POST['bid']}', '{$_POST['name']}', '{$_POST['comment']}', '{$lang_active}', '{$_SERVER['REMOTE_ADDR']}' ";
$blog->insert();
/******************************************/
/* Prevent Spam :: Save IP and set cookie */
if ($set[0]["time_ban"] > 0) {
$blog->table = $tbl_blog_spamban;
$blog->cols = 'ip, bid';
$blog->values = " '{$_SERVER['REMOTE_ADDR']}', '{$_POST['bid']}' ";
$blog->insert();
$spam = new CheckExist();
$c_name = "ip_" . $_POST[bid];
$c_content = $_SERVER['REMOTE_ADDR'];
$c_time = time() + 60 * $set[0]["time_ban"];
$spam->cookieIP($c_name, $c_content, $c_time, '/');
unset($spam);
}
/******************************************/
/* Load :: Updated Main Content */
header("Location:" . ROOT_DIR . $page_url);
/******************************************/
}
} else {
/* Delete :: Old blocked IPs */
$blog = new ModifyEntry();
$blog->table = $tbl_blog_spamban;
<?php
/* Create Object :: EXIST */
$logon = new CheckExist();
/******************************************/
/* Logout :: Delete Cookie */
$logon->email = '';
$logon->pw = '';
$logon->cookieset('l');
//$tpl->display("logon/login.tpl");
//$memcache->delete('user_data_'.$user_data['ID']);
unset($logon);
session_destroy();
header("Location:" . ROOT_DIR);
/******************************************/
/*
if (!isset($bd_scale_dates[0])) {
$bd_check = new CheckExist();
$bd_check->tableE = $tbl_users;
$validity_check->conditionE = "UserToken = '".$_GET['t']."' && activation_code = '".$_GET['c']."' ";
$validity = $validity_check->exist();
}
*/
//require_once('././lib/functions/convert_date.php');
//Load Data that is displayed on landing page (diary, etc.)
$diary_show_random = true;
include "././lib/functions/fetch_diary.php";
$tpl->assign('ay_diary', $ay_diary);
$diary_entry_tdy = new CheckExist();
$diary_entry_tdy->tableE = $tbl_diary;
$diary_entry_tdy->conditionE = " userID = '" . $user_data['ID'] . "' AND DATE_FORMAT(date,'%Y-%m-%d') = CURDATE()";
$dy_entry_tdy = $diary_entry_tdy->exist();
if ($dy_entry_tdy == 1) {
$tpl->assign('entry_today', 1);
} else {
$tpl->assign('entry_today', 0);
}
//define selected state for filter options
$c_month = date("m", $timestamp);
$c_year = date("Y", $timestamp);
$tpl->assign('c_month', $c_month);
$tpl->assign('c_year', $c_year);
$goals_show_landing = true;
include "././lib/functions/fetch_goals.php";
function save($site, $FormValues)
{
global $memcache;
global $tpl;
global $duration;
global $_COOKIE;
include 'settings/tables.php';
$objResponse = new xajaxResponse();
if (!isset($_COOKIE["l"])) {
$objResponse->redirect(ROOT_DIR);
return $objResponse;
}
$l["token"] = substr($_COOKIE["l"], 3, -35);
$mem_key1 = "user_data_" . $l["token"];
$user_data = $memcache->get($mem_key1);
$mem_key2 = "trigger_f_" . $l["token"];
$trigger_f = $memcache->get($mem_key2);
include 'modules/logon/get_userdata.php';
$mem_key3 = "ay_flashes_voted_" . $l["token"];
$mem_key4 = "ay_flashes_rated_" . $l["token"];
$ay_flashes_voted = $memcache->get($mem_key3);
$ay_flashes_rated = $memcache->get($mem_key4);
$ay_flash_cats = $memcache->get('ay_flash_cats');
include 'modules/flash/flashfeed_add.php';
$mysqldate = date('Y-m-d H:i:s', time());
if ($site == 'sections_public') {
if (isset($FormValues['sections_public'])) {
$sections_public = implode(',', $FormValues['sections_public']);
} else {
$sections_public = '';
}
$upd_data = new ModifyEntry();
$upd_data->table = $tbl_users;
$upd_data->condition = " ID = '" . $user_data['ID'] . "' ";
$upd_data->changes = " sections_public = '{$sections_public}' ";
$upd_data->update();
unset($upd_data);
$user_data['sections_public'] = $sections_public;
$mem_key1 = "user_data_" . $l["token"];
$memcache->replace($mem_key1, $user_data, false);
if (isset($FormValues['sections_public'])) {
for ($i = 1; $i <= 5; $i++) {
if (in_array($i, $FormValues['sections_public'])) {
$tpl->assign('f_sharing_' . $i, "checked='checked'");
} else {
$tpl->assign('f_sharing_' . $i, "");
}
}
} else {
for ($i = 1; $i <= 5; $i++) {
$tpl->assign('f_sharing_' . $i, "");
}
}
} else {
if ($site == 'flash_cat') {
if (isset($FormValues['flash_cats'])) {
$flash_cats = implode(',', $FormValues['flash_cats']);
} else {
$flash_cats = '';
}
$upd_data = new ModifyEntry();
$upd_data->table = $tbl_users;
$upd_data->condition = " ID = '" . $user_data['ID'] . "' ";
$upd_data->changes = " flash_categories_visible = '{$flash_cats}' ";
$upd_data->update();
unset($upd_data);
$user_data['flash_categories_visible'] = $flash_cats;
$mem_key1 = "user_data_" . $l["token"];
$memcache->replace($mem_key1, $user_data, false);
$flash_cats_n = new CheckExist();
$flash_cats_n->tableE = $tbl_flash_categories;
$n_flash_cats = $flash_cats_n->exist();
if (isset($FormValues['flash_cats'])) {
for ($i = 1; $i <= $n_flash_cats; $i++) {
if (in_array($i, $FormValues['flash_cats'])) {
$tpl->assign('flash_cat_' . $i, "checked='checked'");
} else {
$tpl->assign('flash_cat_' . $i, "");
}
}
} else {
for ($i = 1; $i <= $n_flash_cats; $i++) {
$tpl->assign('flash_cat_' . $i, "");
}
}
/*redundant*/
if ($flash_cats != "") {
$flashes = new SelectEntrys();
$flashes->cols = 'ID, section, category, type, question, likes, dislikes, opt1, opt2, opt3, opt4, opt5, opt6, opt7, opt8, opt9, opt10, opt1_votes, opt2_votes, opt3_votes, opt4_votes, opt5_votes, opt6_votes, opt7_votes, opt8_votes, opt9_votes, opt10_votes';
$flashes->table = $tbl_flashes;
$flashes->condition = 'category IN (' . $flash_cats . ')';
$flashes->order = 'CreateDate DESC';
$flashes->limit = 10;
$flashes->multiSelect = '1';
$ay_flashes = $flashes->row();
if ($ay_flashes == "") {
$ay_flashes = array();
}
} else {
$ay_flashes = array();
}
/***/
$tpl->assign('ay_flashes', $ay_flashes);
$tpl->assign('section', "category");
$tpl->assign('ay_flash_categories', $memcache->get('ay_flash_cats'));
$mem_key3 = "ay_flashes_voted_" . $l["token"];
$mem_key4 = "ay_flashes_rated_" . $l["token"];
$tpl->assign('ay_flashes_voted', $memcache->get($mem_key3));
$tpl->assign('ay_flashes_rated', $memcache->get($mem_key4));
$html = $tpl->fetch("modules/flash/flash_cats.tpl");
$html2 = $tpl->fetch("modules/flash/flashfeed.tpl");
$objResponse->assign("flash_cats", "innerHTML", $html);
$objResponse->assign("flashfeed", "innerHTML", $html2);
} else {
if ($site == 'flash') {
$id = $FormValues['flashID'];
$type = $FormValues['flash_type'];
$flash_opt_str = 'flash_opt_' . $id;
$flash_res = new ModifyEntry();
$str = '';
foreach ($FormValues['opt'] as $opt) {
if ($str == '') {
$str = "opt" . $opt . "_votes=opt" . $opt . "_votes+1";
} else {
$str = $str . ", opt" . $opt . "_votes=opt" . $opt . "_votes+1";
}
$flash_res->table = $tbl_flash_results;
$flash_res->cols = 'userID, flashID, opt, time';
$flash_res->values = " '" . $user_data['ID'] . "', '{$id}', '{$opt}', '{$mysqldate}'";
$flash_res->insert();
}
unset($flash_res);
$upd_data = new ModifyEntry();
$upd_data->table = $tbl_flashes;
$upd_data->condition = " ID = '{$id}' ";
$upd_data->changes = " {$str}, total_votes = total_votes +1 ";
$upd_data->update();
unset($upd_data);
$flash_result = new SelectEntrys();
$flash_result->cols = 'opt1, opt2, opt3, opt4, opt5, opt6, opt7, opt8, opt9, opt10, opt1_votes, opt2_votes, opt3_votes, opt4_votes, opt5_votes, opt6_votes, opt7_votes, opt8_votes, opt9_votes, opt10_votes';
$flash_result->table = $tbl_flashes;
$flash_result->condition = " ID = '{$id}' ";
$flash_result->multiSelect = 1;
$ay_flash_result = $flash_result->row();
unset($flash_result);
foreach ($ay_flash_result as $key => $value) {
$arr = $value;
}
$ay_flashes_voted[] = $id;
sort($ay_flashes_voted);
$mem_key3 = "ay_flashes_voted_" . $l["token"];
$memcache->replace($mem_key3, $ay_flashes_voted, false);
$tpl->assign("section", "category");
$tpl->assign("i", $arr);
$html = $tpl->fetch("modules/flash/flash_result.tpl");
$objResponse->assign($flash_opt_str, "innerHTML", $html);
} else {
if ($site == 'friends') {
//$str_restricted = explode(",", $user_data['fb_friends_restricted']);
$FormValues = intval(substr($FormValues, 3));
//settype($FormValues, "string");
foreach ($user_data['fb_friends'] as $key => $value) {
if ($value["friendID"] == "{$FormValues}") {
if ($value["restricted"] == 1) {
$restri = 0;
}
if ($value["restricted"] == 0) {
$restri = 1;
}
$user_data['fb_friends'][$key]["restricted"] = $restri;
}
}
$upd_data = new ModifyEntry();
$upd_data->table = $tbl_friends;
$upd_data->condition = " userID = '" . $user_data['ID'] . "' AND friendID = '{$FormValues}' ";
$upd_data->changes = " restricted = '{$restri}' ";
$upd_data->update();
$mem_key1 = "user_data_" . $l["token"];
$memcache->replace($mem_key1, $user_data, false);
} else {
if ($site == 'favorite') {
$already_fav = new CheckExist();
$already_fav->tableE = $tbl_favorites;
$already_fav->conditionE = " userID = '" . $user_data['ID'] . "' AND flashID = '{$FormValues}' ";
$already_fav = $already_fav->exist();
if ($already_fav == 0) {
$ins_data = new ModifyEntry();
$ins_data->table = $tbl_favorites;
$ins_data->cols = 'userID, flashID';
$ins_data->values = " '" . $user_data['ID'] . "', '{$FormValues}' ";
$ins_data->insert();
unset($ins_data);
}
$p_favorited_id = 'p_favorited_' . $FormValues;
$objResponse->assign($p_favorited_id, "innerHTML", "Favorite saved successfully");
}
}
}
}
}
return $objResponse;
}
if (isset($submitC)) {
$toggleS_style = '';
$toggleS_img = 'collapse';
$toggleS_title = $toggle_collapseC;
}
$counter++;
if (isset($save_pages)) {
$tpl->assign("array_p", $save_pages);
$lastpage = end($save_pages);
$tpl->assign("pagesT", $lastpage['page']);
$tpl->assign("title_pagenavi", $blog_navi);
}
$tpl->assign("page", $page);
/* Spam Ban still active? */
$c_name = "ip_" . $id;
$spamban_D = new CheckExist();
$spamban_D->tableE = $tbl_blog_spamban;
$spamban_D->conditionE = "bid = '{$id}' AND ip = '{$_SERVER['REMOTE_ADDR']}' ";
$spamban = $spamban_D->exist();
if (isset($_COOKIE[$c_name])) {
$spamban = 1;
}
/**************************/
}
// end :: module != 'admin'
if (!isset($preview)) {
//date format: 0000-00-00 00:00:00
$c_year = substr($b_timestamp, 0, 4);
$c_month = substr($b_timestamp, 5, 2);
$c_day = substr($b_timestamp, 8, 2);
$c_hour = substr($b_timestamp, 11, 2);
/******************************************/
/* Administrator Login Status */
if ($_COOKIE["userdata"]) {
/* Call Method :: Explode the Cookie */
$str = explode("|", $_COOKIE["userdata"]);
/******************************************/
/* Maybe user is locked? */
$status = new SelectEntrys();
$status->userid = $str[1];
$status->cols = 'status';
$Mystatus = $status->getUserData();
unset($status);
/******************************************/
if ($Mystatus == 1) {
/* Admin or Superadmin status? */
$admin = new SelectEntrys();
$admin->userid = $str[1];
$admin->cols = 'admin';
$Myadmin = $admin->getUserData();
unset($admin);
/******************************************/
/* Compare Cookie data with database */
require_once './lib/exist.php';
$logon = new CheckExist();
$logon->tableE = $tbl_users;
$logon->conditionE = " UserID = '{$str['1']}' && UserPass = '******'2']}' ";
$logon_true = $logon->exist();
/******************************************/
}
}
/******************************************/
} else {
if ($Myadmin != "1") {
$links_c->condition = "visibility = '1' ";
}
}
}
$links_c->multiSelect = '1';
$array_c = $links_c->row();
unset($links_c);
$tpl->assign('array_c_names', $array_c_names);
$tpl->assign('array_c', $array_c);
$tpl->assign("form_nopreview", "1");
/**************************/
/* Check if links are available in the selected category */
if ($_GET['cid'] > 0) {
$links = new CheckExist();
$links->tableE = $tbl_links;
if ($Myadmin == "1") {
$links->conditionE = " cid = '{$_GET['cid']}' ";
} else {
$links->conditionE = " cid = '{$_GET['cid']}' AND visibility = '1' ";
}
$links_total = $links->exist();
unset($links);
}
/**************************/
/* Load :: Link section */
$links = new SelectEntrys();
$links->cols = ' id, cid, link, description, description_EN, position, visibility ';
$links->table = $tbl_links;
$links->order = "cid, position";
<?php
/* Create Object :: EXIST */
$hits = new CheckExist();
/******************************************/
/* Logout :: Delete Cookie */
$hits->user = '';
$hits->pw = '';
$hits->cookieset();
$tpl->display("logon/login.tpl");
header("Location:" . ROOT_DIR . "admin/");
unset($hits);
/******************************************/
$cats = $f_cats->row();
//same for sections_public if needed
foreach ($cats as $key => $value) {
$arr[] = $value['ID'];
}
$str_cats = implode(",", $arr);
$upd_data = new ModifyEntry();
$upd_data->table = $tbl_users;
$upd_data->condition = " UserToken = '" . $_POST['t'] . "' ";
$upd_data->changes = " nationality = '" . $_POST['nationality'] . "', residence = '" . $_POST['residence'] . "', gender = '" . $_POST['gender'] . "', birthday = '{$birthday}', flash_categories_visible = '{$str_cats}', activation_code = '' ";
$upd_data->update();
unset($upd_data);
header("Location:" . ROOT_DIR . "register/activation.html?t=" . $_POST['t'] . "&e=success");
} else {
if (isset($_GET['c']) && isset($_GET['t'])) {
$validity_check = new CheckExist();
$validity_check->tableE = $tbl_users;
$validity_check->conditionE = "UserToken = '" . $_GET['t'] . "' && activation_code = '" . $_GET['c'] . "' ";
$validity = $validity_check->exist();
$tpl->assign('validity', $validity);
if ($validity == 1) {
/* Prepare country list for registration */
$countries = new SelectEntrys();
$countries->cols = 'ID, ' . $lang_active;
$countries->table = $tbl_countries;
$countries->order = $lang_active;
$countries->multiSelect = '1';
$ay_countries = $countries->row();
unset($countries);
$ay_born = array();
$year_born_i = '1950';
function registerUser($data, $action)
{
global $db;
global $debug_mode;
$objResponse = new xajaxResponse();
include 'settings/tables.php';
$reg_failure = "";
$email = trim(stripslashes(mysqli_real_escape_string($db, $data['email'])));
$firstname = trim(stripslashes(mysqli_real_escape_string($db, $data['firstname'])));
if ($action == 'register') {
$password = trim(stripslashes(mysqli_real_escape_string($db, md5($data['password']))));
$password2 = trim(stripslashes(mysqli_real_escape_string($db, md5($data['password2']))));
$beta_code = trim(stripslashes(mysqli_real_escape_string($db, md5($data['betacode']))));
//generate activation code
$act_code = md5(uniqid(rand()));
$token = time() . uniqid();
//check if email is already registered
$checkemail = new CheckExist();
$checkemail->tableE = $tbl_users;
$checkemail->conditionE = " UserEmail = '" . $email . "' ";
$CheckData = $checkemail->exist();
//error handling and validation
if (!preg_match('/^([a-zA-Z0-9])+([\\.a-zA-Z0-9_-])*@([a-zA-Z0-9_-])+(\\.[a-zA-Z0-9_-]+)+/', $email)) {
$reg_failure = "Email not valid.";
} elseif (strlen($email) < 5) {
$reg_failure = "Email not valid.";
} elseif ($CheckData > 0) {
$reg_failure = "Email already taken.";
} elseif ($password != $password2) {
$reg_failure = "Passwords do not match. Please correct your information and try it again.";
} elseif (strlen($data['password']) < 5 || strlen($data['password2']) < 5) {
$reg_failure = "Password is too short. Please correct your information and try it again.";
} elseif (strlen($firstname) < 3) {
$reg_failure = "Firstname is too short. Please correct your information and try it again.";
} elseif ($beta_code != 'X2DH38u3z') {
$reg_failure = "Beta Access Code not valid. Please correct your information and try it again.";
}
//registration validation successful
if ($reg_failure == "") {
//create new user in database
$user_register = new ModifyEntry();
$user_register->table = $tbl_users;
$user_register->cols = 'UserToken, UserEmail, UserPass, firstname, activation_code, language';
$user_register->values = " '{$token}', '{$email}', '{$password}', '{$firstname}', '{$act_code}', 'EN' ";
$user_register->insert();
if ($user_register->errno() == 0) {
//send email confirmation with activation link to user
$Header = "MIME-Version: 1.0\n";
$Header .= "Content-type: text/plain; charset=utf-8\n";
$Header .= "From: noreply@happify.com";
//$from = "From: admin@wiwistud.de";
//activation.html?c=bebf08f7af79422ced07be79c2f2f5c0&t=13140575844e52ed70736d2
$act_link = ROOT_DIR . "logon/activation.html?c=" . $act_code . "&t=" . $token;
$subject = "Activation link happify.com";
$message = "Activation link: " . $act_link;
if ($debug_mode != "OFF") {
require "../phpmailer/class.phpmailer.php";
$mail = new PHPMailer();
$mail->IsSMTP();
// send via SMTP
//IsSMTP(); // send via SMTP
$mail->SMTPSecure = "ssl";
// sets the prefix to the servier
$mail->Host = "smtp.gmail.com";
// sets GMAIL as the SMTP server
$mail->Port = 465;
$mail->SMTPDebug = 0;
$mail->SMTPAuth = true;
// turn on SMTP authentication
$mail->Username = "******";
// SMTP username
$mail->Password = "******";
// SMTP password
$webmaster_email = "*****@*****.**";
//Reply to this email ID
//$email="*****@*****.**"; // Recipients email ID
//$name=$firstname; // Recipient's name
//$mail->From = $webmaster_email;
//$mail->FromName = "Happify";
$mail->SetFrom($webmaster_email, "Happify");
$mail->AddAddress($email, $firstname);
//$mail->AddReplyTo($webmaster_email,"Webmaster");
//$mail->WordWrap = 50; // set word wrap
//$mail->AddAttachment("/var/tmp/file.tar.gz"); // attachment
//$mail->AddAttachment("/tmp/image.jpg", "new.jpg"); // attachment
//$mail->IsHTML(true); // send as HTML
$mail->Subject = $subject;
$mail->Body = $message;
//HTML Body
$mail->AltBody = $message;
//Text Body
$mail->Send();
} else {
mail($email, $subject, $message, $Header);
}
$objResponse->assign("form_reg", "style.display", 'none');
$objResponse->assign("reg_success", "style.display", 'block');
unset($user_register);
} else {
$objResponse->assign("p_reg_failure", "style.display", 'block');
$objResponse->assign("p_reg_failure", "innerHTML", "Registration not successful. Please try again.");
// TODO move string to language file
}
} else {
$objResponse->assign("p_reg_failure", "style.display", 'block');
$objResponse->assign("p_reg_failure", "innerHTML", $reg_failure);
}
} else {
if ($action == 'notify') {
//check if email is already registered
$checkemail = new CheckExist();
$checkemail->tableE = $tbl_notify;
$checkemail->conditionE = " UserEmail = '" . $email . "' ";
$CheckData = $checkemail->exist();
//TODO why does it not work on server
if (!preg_match('/^([a-zA-Z0-9])+([\\.a-zA-Z0-9_-])*@([a-zA-Z0-9_-])+(\\.[a-zA-Z0-9_-]+)+/', $email)) {
$reg_failure = "Email not valid.";
}
// TODO move string to language file
if ($CheckData > 0) {
$reg_failure = "Email already registered.";
}
// TODO move string to language file
//registration validation successful
if ($reg_failure == "") {
//$firstname = $data['firstname'];
//create new user in database
$user_register = new ModifyEntry();
$user_register->table = $tbl_notify;
$user_register->cols = 'UserEmail';
$user_register->values = " '" . $email . "' ";
$user_register->insert();
if ($user_register->errno() == 0) {
//send email confirmation with activation link to user
$Header = "MIME-Version: 1.0\n";
$Header .= "Content-type: text/plain; charset=utf-8\n";
$Header .= "From: noreply@myhappifier.info";
$subject = "myhappifier.info Launch";
$message = "Hi! \r\n\n \nThank you for your registration. We will inform you as soon as Happify launches!\r\n\r\n\n \n \nUntil then: stay happy!";
if ($debug_mode != "OFF") {
require "../phpmailer/class.phpmailer.php";
$mail = new PHPMailer();
$mail->IsSMTP();
// send via SMTP
//IsSMTP(); // send via SMTP
$mail->SMTPSecure = "ssl";
// sets the prefix to the server
$mail->Host = "smtp.gmail.com";
// sets GMAIL as the SMTP server
$mail->Port = 465;
$mail->SMTPDebug = 0;
$mail->SMTPAuth = true;
// turn on SMTP authentication
$mail->Username = "******";
// SMTP username
$mail->Password = "******";
// SMTP password
$webmaster_email = "*****@*****.**";
//Reply to this email ID
//$email="*****@*****.**"; // Recipients email ID
//$name=$firstname; // Recipient's name
//$mail->From = $webmaster_email;
//$mail->FromName = "Happify";
$mail->SetFrom($webmaster_email, "Happify");
$mail->AddAddress($email, $firstname);
//$mail->AddReplyTo($webmaster_email,"Webmaster");
//$mail->WordWrap = 50; // set word wrap
//$mail->AddAttachment("/var/tmp/file.tar.gz"); // attachment
//$mail->AddAttachment("/tmp/image.jpg", "new.jpg"); // attachment
//$mail->IsHTML(true); // send as HTML
$mail->Subject = $subject;
$mail->Body = $message;
//HTML Body
$mail->AltBody = $message;
//Text Body
$mail->Send();
//mail does not work
} else {
mail($email, $subject, $message, $Header);
}
$objResponse->assign("form_reg", "style.display", 'none');
$objResponse->assign("reg_success", "style.display", 'block');
unset($user_register);
} else {
$objResponse->assign("p_reg_failure", "style.display", 'block');
$objResponse->assign("p_reg_failure", "innerHTML", "Registration not successful. Please try again.");
// TODO move string to language file
}
} else {
$objResponse->assign("p_reg_failure", "style.display", 'block');
$objResponse->assign("p_reg_failure", "innerHTML", $reg_failure);
}
}
}
return $objResponse;
}
