/**
* initialize the validator
*
* @param obj $smarty the smarty object
* @param string $reset reset the default form?
*/
function connect(&$smarty, $reset = false) {
if(SmartyValidate::is_valid_smarty_object($smarty)) {
SmartyValidate::_object_instance('Smarty', $smarty);
SmartyValidate::register_form(SMARTY_VALIDATE_DEFAULT_FORM, $reset);
} else {
trigger_error("SmartyValidate: [connect] I need a valid Smarty object.");
return false;
}
}
/**
* initialize the validator
*
* @param obj $smarty the smarty object
* @param string $reset reset the default form?
*/
static function connect(&$smarty, $reset = false) {
if(SmartyValidate::is_valid_smarty_object($smarty)) {
SmartyValidate::_object_instance('Smarty', $smarty);
SmartyValidate::register_form(self::$form, $reset);
} else {
trigger_error("SmartyValidate: [connect] I need a valid Smarty object.");
return false;
}
}
/**********************************
SETUP TEMPLATE, PAGE
*********************************/
Pommo::requireOnce($pommo->_baseDir . 'inc/classes/template.php');
$smarty = new PommoTemplate();
$smarty->prepareForForm();
// ADD CUSTOM VALIDATOR FOR CHARSET
function check_charset($value, $empty, &$params, &$formvars)
{
$validCharsets = array('UTF-8', 'ISO-8859-1', 'ISO-8859-2', 'ISO-8859-7', 'ISO-8859-15', 'cp1251', 'KOI8-R', 'GB2312', 'EUC-JP', 'ISO-2022-JP');
return in_array($value, $validCharsets);
}
SmartyValidate::connect($smarty);
if (!SmartyValidate::is_registered_form('mailings') || empty($_POST)) {
// ___ USER HAS NOT SENT FORM ___
SmartyValidate::register_form('mailings', true);
// register custom criteria
SmartyValidate::register_criteria('isCharSet', 'check_charset', 'mailings');
SmartyValidate::register_validator('list_fromname', 'list_fromname', 'notEmpty', false, false, 'trim', 'mailings');
SmartyValidate::register_validator('list_fromemail', 'list_fromemail', 'isEmail', false, false, false, 'mailings');
SmartyValidate::register_validator('list_frombounce', 'list_frombounce', 'isEmail', false, false, false, 'mailings');
SmartyValidate::register_validator('list_charset', 'list_charset', 'isCharSet', false, false, 'trim', 'mailings');
SmartyValidate::register_validator('public_history', 'public_history:!^(on|off)$!', 'isRegExp', false, false, false, 'mailings');
SmartyValidate::register_validator('demo_mode', 'demo_mode:!^(on|off)$!', 'isRegExp', false, false, false, 'mailings');
SmartyValidate::register_validator('list_fromname', 'list_fromname', 'notEmpty', false, false, 'trim', 'mailings');
SmartyValidate::register_validator('maxRuntime', 'maxRuntime', 'isInt', false, false, 'trim', 'mailings');
$vMsg = array();
$vMsg['maxRuntime'] = Pommo::_T('Enter a number.');
$vMsg['list_fromname'] = Pommo::_T('Cannot be empty.');
$vMsg['list_fromemail'] = $vMsg['list_frombounce'] = Pommo::_T('Invalid email address');
$smarty->assign('vMsg', $vMsg);
INITIALIZATION METHODS
*********************************/
require '../../../bootstrap.php';
$pommo->init();
$logger =& $pommo->_logger;
$dbo =& $pommo->_dbo;
/**********************************
SETUP TEMPLATE, PAGE
*********************************/
Pommo::requireOnce($pommo->_baseDir . 'inc/classes/template.php');
$smarty = new PommoTemplate();
$smarty->prepareForForm();
SmartyValidate::connect($smarty);
if (!SmartyValidate::is_registered_form('users') || empty($_POST)) {
// ___ USER HAS NOT SENT FORM ___
SmartyValidate::register_form('users', true);
// register custom criteria
SmartyValidate::register_validator('admin_username', 'admin_username', 'notEmpty', false, false, 'trim', 'users');
SmartyValidate::register_validator('admin_password2', 'admin_password:admin_password2', 'isEqual', TRUE, false, false, 'users');
SmartyValidate::register_validator('admin_email', 'admin_email', 'isEmail', false, false, false, 'users');
$vMsg = array();
$vMsg['admin_username'] = Pommo::_T('Cannot be empty.');
$vMsg['admin_email'] = Pommo::_T('Invalid email address');
$vMsg['admin_password2'] = Pommo::_T('Passwords must match.');
$smarty->assign('vMsg', $vMsg);
// populate _POST with info from database (fills in form values...)
$dbVals = PommoAPI::configGet(array('admin_username'));
$dbVals['admin_email'] = $pommo->_config['admin_email'];
$smarty->assign($dbVals);
} else {
// ___ USER HAS SENT FORM ___
$data = $db->GetRow("SELECT * FROM `{$tables['link']['name']}` WHERE `ID` = " . $db->qstr($id));
}
case 'N':
default:
if ($action == 'N') {
$data['STATUS'] = 2;
$data['RECPR_REQUIRED'] = REQUIRE_RECIPROCAL;
if (FTR_ENABLE == 1) {
$data['FEATURED'] = isset($_REQUEST['f']) && $_REQUEST['f'] == 1 ? 1 : 0;
}
}
$categs = get_categs_tree($db, 0);
$tpl->assign('categs', $categs);
if (empty($_REQUEST['submit'])) {
SmartyValidate::connect($tpl);
SmartyValidate::register_form('dir_links_edit', true);
SmartyValidate::register_criteria('isValueUnique', 'validate_unique', 'dir_links_edit');
SmartyValidate::register_criteria('isNotEqual', 'validate_not_equal', 'dir_links_edit');
SmartyValidate::register_validator('v_TITLE', 'TITLE', 'notEmpty', false, false, 'trim', 'dir_links_edit');
SmartyValidate::register_validator('v_TITLE_U', "TITLE:link:{$id}:CATEGORY_ID", 'isValueUnique', false, false, null, 'dir_links_edit');
SmartyValidate::register_validator('v_URL', 'URL', 'isURL', false, false, 'trim', 'dir_links_edit');
SmartyValidate::register_validator('v_URL_U', 'URL:link:' . $id . (ALLOW_MULTIPLE ? ':CATEGORY_ID' : ''), 'isValueUnique', false, false, null, 'dir_links_edit');
SmartyValidate::register_validator('v_CATEGORY_ID', 'CATEGORY_ID:0', 'isNotEqual', true, false, null, 'dir_links_edit');
SmartyValidate::register_validator('v_RECPR_URL', 'RECPR_URL', 'isURL', true, false, 'trim', 'dir_links_edit');
SmartyValidate::register_validator('v_OWNER_NAME', 'OWNER_NAME', 'notEmpty', true, false, 'trim', 'dir_links_edit');
SmartyValidate::register_validator('v_OWNER_EMAIL', 'OWNER_EMAIL', 'isEmail', true, false, 'trim', 'dir_links_edit');
SmartyValidate::register_validator('v_EXPIRY_DATE', 'EXPIRY_DATE', 'isDate', true, false, 'trim', 'dir_links_edit');
// Deeplink URL Validation
for ($dl = 1; $dl <= 5; $dl++) {
SmartyValidate::register_validator('v_DEEPLINK_URL' . $dl, 'URL' . $dl, 'isURL', true, false, 'trim', 'dir_links_edit');
}
$price[$link_type_int['free']] = 0;
}
}
if (PAY_NORMAL_ADV > 0) {
$price[$link_type_int['normal_plus']] = PAY_NORMAL_PLUS;
}
if (PAY_RECPR > 0) {
$price[$link_type_int['reciprocal']] = PAY_RECPR;
}
if ($action == 'pay') {
if (empty($_REQUEST['submit'])) {
if (!empty($_SERVER['HTTP_REFERER'])) {
$_SESSION['return'] = $_SERVER['HTTP_REFERER'];
}
SmartyValidate::connect($tpl);
SmartyValidate::register_form('pay_link', true);
SmartyValidate::register_validator('v_quantity', 'quantity', 'isInt', false, false, 'trim', 'pay_link');
} else {
SmartyValidate::connect($tpl);
if (SmartyValidate::is_valid($_REQUEST, 'pay_link')) {
$pay_data = array();
$pay_id = $db->GenID($tables['payment']['name'] . '_SEQ');
$pay_data['ID'] = $pay_id;
$pay_data['LINK_ID'] = $data['ID'];
$pay_data['IPADDRESS'] = get_client_ip();
$pay_data['QUANTITY'] = $_REQUEST['quantity'];
$pay_data['AMOUNT'] = $price[$data['LINK_TYPE']];
$pay_data['TOTAL'] = (int) $pay_data['QUANTITY'] * (double) $pay_data['AMOUNT'];
$pay_data['UM'] = PAY_UM;
$pay_data['PAY_DATE'] = gmdate('Y-m-d H:i:s');
$pay_data['CONFIRMED'] = -1;
# ######################################################################
*/
require_once 'init.php';
$id = isset($_REQUEST['id']) ? trim($_REQUEST['id']) : (isset($_REQUEST['ID']) ? trim($_REQUEST['ID']) : 0);
$id = preg_replace('`(id[_]?)`', '', $id);
$id = preg_match('`^[\\d]+$`', $id) ? intval($id) : 0;
if (empty($_REQUEST['submit'])) {
if (!empty($_SERVER['HTTP_REFERER'])) {
$_SESSION['return'] = $_SERVER['HTTP_REFERER'];
}
if (!empty($id)) {
if ($data = $db->GetRow("SELECT * FROM `{$tables['link']['name']}` WHERE `ID` = " . $db->qstr($id))) {
if (empty($data['RECPR_URL'])) {
$_SESSION['cid'] = $data['CATEGORY_ID'];
SmartyValidate::connect($tpl);
SmartyValidate::register_form('add_reciprocal', true);
SmartyValidate::register_criteria('isRecprDomain', 'validate_recpr_link_dom', 'add_reciprocal');
SmartyValidate::register_criteria('isRecprOnline', 'validate_recpr_link', 'add_reciprocal');
SmartyValidate::register_validator('v_RECPR_URL', 'RECPR_URL', 'isURL', !$recpr_required, false, 'trim', "add_reciprocal");
SmartyValidate::register_validator('v_RECPR_ONLINE', 'RECPR_URL', 'isRecprOnline', !$recpr_required, false, null, "add_reciprocal");
SmartyValidate::register_validator('v_RECPR_DOMAIN', 'RECPR_URL', 'isRecprDomain', !$recpr_required, false, null, 'add_reciprocal');
} else {
$tpl->assign('link_id_error', 'Reciprocal link is already defined for this link.');
}
} else {
$tpl->assign('link_id_error', 'Please ensure that the URL is complete.');
}
} else {
$tpl->assign('link_id_error', 'Please ensure that the URL is complete.');
}
} else {
# For questions, help, comments, discussion, etc., please join the
# PHP Link Directory Forum http://www.phplinkdirectory.com/forum/
#
# @link http://www.phplinkdirectory.com/
# @copyright 2004-2006 NetCreated, Inc. (http://www.netcreated.com/)
# @projectManager David DuVal <*****@*****.**>
# @package PHPLinkDirectory
# ######################################################################
*/
require_once 'init.php';
if (empty($_REQUEST['submit'])) {
$sql = "SELECT * FROM `{$tables['user']['name']}` WHERE `ID` = " . $db->qstr($_SESSION['user_id']);
$row = $db->GetRow($sql);
$tpl->assign($row);
SmartyValidate::connect($tpl);
SmartyValidate::register_form('conf_profile', true);
SmartyValidate::register_validator('v_LOGIN', 'LOGIN:4:25', 'isLength', false, false, 'trim', 'conf_profile');
SmartyValidate::register_validator('v_NAME', 'NAME:4:25', 'isLength', false, false, 'trim', 'conf_profile');
SmartyValidate::register_validator('v_PASSWORD', 'PASSWORD:4:25', 'isLength', true, false, 'trim', 'conf_profile');
SmartyValidate::register_validator('v_PASSWORDC', 'PASSWORD:PASSWORDC', 'isEqual', true, false, 'trim', 'conf_profile');
SmartyValidate::register_validator('v_EMAIL', 'EMAIL', 'isEmail', false, false, 'trim', 'conf_profile');
} else {
SmartyValidate::connect($tpl);
$data = get_table_data('user');
$error = 0;
if (!isset($data['SUBMIT_NOTIF'])) {
$data['SUBMIT_NOTIF'] = 0;
}
if (!isset($data['PAYMENT_NOTIF'])) {
$data['PAYMENT_NOTIF'] = 0;
}
die();
}
$index=2;
$page_title="Contact us";
require_once("mainfile.php");
global $config;
include("header.php");
$tpl= new Template();
$tpl->modTemplate("contact");
smartyValidate::connect($tpl, empty($_POST));
SmartyValidate::register_form('contact_us');
$tpl->assign("lang",$lang);
$tpl->assign("phone",$config[site_phone]);
if(empty($_POST)) {
$tpl->assign("lang",$lang);
$tpl->display('contact.tpl');
}
else{
// validate after a POST
if(SmartyValidate::is_valid($_POST)) {
// no errors, done with SmartyValidate
$uname=$_POST['uname'];
$message=$_POST['message'];
$subject=$_POST['subject'];
$uemail=$_POST['uemail'];
$nicemessage="$message\n\n\n-----------------------------\nSender :$uname\n Message:$message\n";
function index()
{
session_start();
global $db, $prefix;
include "header.php";
$tpl = new Template();
smartyValidate::connect($tpl, empty($_POST));
SmartyValidate::register_form('fare_search');
//set
$origin = intval($_REQUEST["origin"]);
$destination = intval($_REQUEST["destination"]);
if ($_POST["departure"]) {
$departure = tounixdate($_POST["departure"]);
} else {
$departure = $_GET["departure"];
}
$faretype = intval($_REQUEST["faretype"]);
$class = intval($_REQUEST["class"]);
$airline = intval($_REQUEST["airline"]);
$tpl->assign("origin", $origin);
$tpl->assign("destination", $destination);
$tpl->assign("class", $class);
$tpl->assign("faretype", $faretype);
//fare type
$qtype = $db->query("SELECT * FROM travel_faretype");
while (list($type_id, $type_name) = $db->fetch_row($qtype)) {
$type_opt[$type_id] = $type_name;
}
//Origin
$qorigin = $db->query("SELECT origin_id,origin_name FROM travel_origin ORDER BY origin_name ASC ");
$origin_opt = array();
while (list($origin_id, $origin_name) = $db->fetch_row($qorigin)) {
$origin_opt[$origin_id] = $origin_name;
}
//Destination
$qdestination = $db->query("SELECT destination_id,destination_name FROM travel_destination JOIN\r\n\t{$prefix}_fares ON destination_id=fare_destination\r\n\tORDER BY destination_name ASC");
$destination_opt = array();
while (list($destination_id, $destination_name) = $db->fetch_array($qdestination)) {
$destination_opt[$destination_id] = $destination_name;
}
// Airlines
$qairline = $db->query("SELECT airline_id,airline_name FROM travel_airline");
$airline_opt = array();
while (list($airline_id, $airline_name) = $db->fetch_array($qairline)) {
$airline_opt[$airline_id] = $airline_name;
}
// Class
$qclass = $db->query("SELECT class_id,class_name FROM travel_class");
$class_opt = array();
while (list($class_id, $class_name) = $db->fetch_array($qclass)) {
$class_opt[$class_id] = $class_name;
}
if (!isset($_GET[page]) && empty($_POST)) {
$tpl->assign("origin_opt", $origin_opt);
$tpl->assign("destination_opt", $destination_opt);
$tpl->assign("airline_opt", $airline_opt);
$tpl->assign("class_opt", $class_opt);
$tpl->assign("type_opt", $type_opt);
$tpl->assign("lang", $lang);
$tpl->display("search/search.tpl");
} else {
if (SmartyValidate::is_valid($_POST)) {
// no errors, done with SmartyValidate
$tpl->assign($_POST);
$tpl->assign("origin_opt", $origin_opt);
$tpl->assign("destination_opt", $destination_opt);
$tpl->assign("airline_opt", $airline_opt);
$tpl->assign("class_opt", $class_opt);
$tpl->assign("type_opt", $type_opt);
$tpl->assign("lang", $lang);
$tpl->display("search/search.tpl");
SmartyValidate::disconnect();
$origin = intval($_REQUEST["origin"]);
$destination = intval($_REQUEST["destination"]);
if ($_POST["departure"]) {
$departure = tounixdate($_POST["departure"]);
} else {
$departure = $_GET["departure"];
}
$faretype = intval($_REQUEST["faretype"]);
$class = intval($_REQUEST["class"]);
$airline = intval($_REQUEST["airline"]);
//goto("index.php?m=search&op=search&origin=$origin&destination=$destination&departure=$departure&faretype=$faretype&class=$class&airline=$airline","Processing");
$faretype = intval($_REQUEST["faretype"]);
$class = intval($_REQUEST["class"]);
$airline = intval($_REQUEST["airline"]);
$query = "SELECT * FROM " . $prefix . "_fares," . $prefix . "_fares_origin\r\n\t\t\tWHERE fare_id= fares_fare AND fares_origin ={$origin} \tAND fare_destination='{$destination}'";
if (!empty($faretype)) {
$query .= " AND fare_type={$faretype}";
}
if (!empty($class)) {
$query .= " AND fare_class={$class}";
}
if (!empty($airline)) {
$query .= " AND fare_airline={$airline}";
}
if (!empty($departure)) {
$query .= " AND {$departure} BETWEEN fare_dept_start AND fare_dept_end";
}
$qsearch = $db->query($query);
$num_record = $db->row_count($qsearch);
if ($num_record < 1) {
$tpl->assign("norecord", "norecord");
$tpl->assign("lang", $lang);
$tpl->display("search/search_result.tpl");
include "footer.php";
exit;
}
if (isset($_GET['page'])) {
$page = intval($_GET['page']);
} else {
$page = 1;
}
$currentpage = $page;
$perpage = 10;
$start = ($page - 1) * $perpage;
$pages = ceil($num_record / $perpage);
$starting_no = $start + 1;
if ($num_record - $start < $perpage) {
$end_count = $num_record;
} elseif ($num_record - $start >= $perpage) {
$end_count = $start + $perpage;
}
if ($pages > 1) {
$page_link = makepagelink("index.php?m=search&origin={$origin}&destination={$destination}&departure={$departure}&class={$class}&faretype={$faretype}&airline={$airline}", $page, $pages);
} else {
$page_link = "";
}
$result = $db->query("{$query} AND fare_active=1 ORDER BY fare_adultfare ASC limit {$start},{$perpage}");
while ($row = $db->fetch_array($result)) {
$indexx = $row[fare_id];
$info[$indexx] = $row;
$info[$indexx]["airline"] = getrow("airline_name", "travel_airline", "airline_id", "{$row['fare_airline']}");
}
$originName = getrow("origin_name", "" . $prefix . "_origin", "origin_id", "{$origin}");
$destinationName = getrow("destination_name", "" . $prefix . "_destination", "destination_id", "{$destination}");
$tpl->assign("lang", $lang);
$tpl->assign("fareinfo", $info);
$tpl->assign("found", $num_record);
$tpl->assign("destinationName", $destinationName);
$tpl->assign("originName", $originName);
$tpl->assign("page_link", $page_link);
$tpl->assign("end_count", $end_count);
$tpl->assign("starting_no", $starting_no);
$tpl->assign("currentpage", "{$currentpage}/{$pages}");
$tpl->display("search/search_result.tpl");
} else {
$tpl->assign("origin_opt", $origin_opt);
$tpl->assign("destination_opt", $destination_opt);
$tpl->assign("airline_opt", $airline_opt);
$tpl->assign("class_opt", $class_opt);
$tpl->assign("type_opt", $type_opt);
$tpl->assign("lang", $lang);
$tpl->assign($_POST);
$tpl->display("search/search.tpl");
}
}
include "footer.php";
}
*/
require_once 'init.php';
$_REQUEST['c'] = !empty($_REQUEST['c']) && $_REQUEST['c'] > 0 ? intval($_REQUEST['c']) : 1;
if (empty($_REQUEST['submit'])) {
$sql = "SELECT `ID`, `VALUE` FROM `{$tables['config']['name']}`";
$conf_vals = $db->GetAssoc($sql);
foreach ($conf as $k => $row) {
if ($conf[$k]['CONFIG_GROUP'] != $_REQUEST['c']) {
unset($conf[$k]);
} else {
$conf[$k]['VALUE'] = $conf_vals[$row['ID']];
}
}
$tpl->assign('opt_bool', array(1 => $tpl->translate('Yes'), 0 => $tpl->translate('No')));
SmartyValidate::connect($tpl);
SmartyValidate::register_form('conf_settings', true);
foreach ($conf as $i => $row) {
if ($row['TYPE'] == 'STR') {
SmartyValidate::register_validator('v_' . $row['ID'], $row['ID'], 'notEmpty', !$row['REQUIRED'], false, 'trim', 'conf_settings');
} elseif ($row['TYPE'] == 'PAS') {
SmartyValidate::register_validator('v_' . $row['ID'], $row['ID'], 'notEmpty', !$row['REQUIRED'], false, 'trim', 'conf_settings');
} elseif ($row['TYPE'] == 'LOG') {
SmartyValidate::register_validator('v_' . $row['ID'], $row['ID'], 'notEmpty', !$row['REQUIRED'], false, 'trim', 'conf_settings');
} elseif ($row['TYPE'] == 'URL') {
SmartyValidate::register_validator('v_' . $row['ID'], $row['ID'], 'isURL', !$row['REQUIRED'], false, 'trim', 'conf_settings');
} elseif ($row['TYPE'] == 'EML') {
SmartyValidate::register_validator('v_' . $row['ID'], $row['ID'], 'isEmail', !$row['REQUIRED'], false, 'trim', 'conf_settings');
} elseif ($row['TYPE'] == 'INT') {
SmartyValidate::register_validator('v_' . $row['ID'], $row['ID'], 'isInt', !$row['REQUIRED'], false, 'trim', 'conf_settings');
} elseif ($row['TYPE'] == 'NUM') {
SmartyValidate::register_validator('v_' . $row['ID'], $row['ID'], 'isNumber', !$row['REQUIRED'], false, 'trim', 'conf_settings');
INITIALIZATION METHODS
*********************************/
require '../../../bootstrap.php';
$pommo->init();
$logger =& $pommo->_logger;
$dbo =& $pommo->_dbo;
/**********************************
SETUP TEMPLATE, PAGE
*********************************/
Pommo::requireOnce($pommo->_baseDir . 'inc/classes/template.php');
$smarty = new PommoTemplate();
$smarty->prepareForForm();
SmartyValidate::connect($smarty);
if (!SmartyValidate::is_registered_form('general') || empty($_POST)) {
// ___ USER HAS NOT SENT FORM ___
SmartyValidate::register_form('general', true);
SmartyValidate::register_validator('list_name', 'list_name', 'notEmpty', false, false, 'trim', 'general');
SmartyValidate::register_validator('site_name', 'site_name', 'notEmpty', false, false, 'trim', 'general');
SmartyValidate::register_validator('site_url', 'site_url', 'isURL', false, false, 'trim', 'general');
SmartyValidate::register_validator('site_success', 'site_success', 'isURL', TRUE, false, false, 'general');
SmartyValidate::register_validator('site_confirm', 'site_confirm', 'isURL', TRUE, false, false, 'general');
SmartyValidate::register_validator('list_confirm', 'list_confirm:!^(on|off)$!', 'isRegExp', false, false, false, 'general');
SmartyValidate::register_validator('list_exchanger', 'list_exchanger:!^(sendmail|mail|smtp)$!', 'isRegExp', false, false, false, 'general');
// no validation for exchanger
$vMsg = array();
$vMsg['site_url'] = $vMsg['site_success'] = $vMsg['site_confirm'] = Pommo::_T('Must be a valid URL');
$vMsg['list_name'] = $vMsg['site_name'] = Pommo::_T('Cannot be empty.');
$smarty->assign('vMsg', $vMsg);
// populate _POST with info from database (fills in form values...)
$dbVals = PommoAPI::configGet(array('site_success', 'site_confirm', 'list_exchanger', 'list_confirm'));
$dbVals['site_url'] = $pommo->_config['site_url'];
<?php
session_start();
//File Name:lostpass.php
//Description: Registration page
if (!eregi("index.php", $_SERVER['PHP_SELF'])) {
die("You can't access this file directly...");
}
require_once "mainfile.php";
$index = 1;
include "header.php";
$tpl = new Template();
$tpl->modTemplate("member");
smartyValidate::connect($tpl, empty($_POST));
SmartyValidate::register_form('frm_lostpass');
if (empty($_POST)) {
$tpl->display("lostpass.tpl");
} else {
if (SmartyValidate::is_valid($_POST)) {
// no errors, done with SmartyValidate
$uemail = addslashes($_POST["uemail"]);
$result = $db->query("Select user_id,user_fname,user_lname FROM " . $prefix . "_user WHERE user_email='{$uemail}'");
list($uid, $fname, $lname) = $db->fetch_row($result);
$found = $db->row_count($result);
$upass = md5(addslashes($_POST["upass"]));
$code = random();
$user = $db->fetch_array($result);
if ($found < 1) {
$tpl->assign("no_user_found", "1");
$tpl->assign("uemail", $uemail);
$tpl->display("lostpass.tpl");
$tpl->assign('recpr_required', $recpr_required);
//Determine category
$CategoryID = !empty($_REQUEST['c']) && preg_match('`^[\\d]+$`', $_REQUEST['c']) ? intval($_REQUEST['c']) : (!empty($_SERVER['HTTP_REFERER']) ? get_category($_SERVER['HTTP_REFERER']) : 0);
$CategoryID = $CategoryID > 0 ? $CategoryID : 0;
//Make sure the category ID is valid
if (empty($_REQUEST['submit'])) {
if (!empty($_SERVER['HTTP_REFERER'])) {
$_SESSION['return'] = $_SERVER['HTTP_REFERER'];
}
$data = array();
$data['CATEGORY_ID'] = $CategoryID;
$data['RECPR_REQUIRED'] = $recpr_required;
SmartyValidate::disconnect();
SmartyValidate::connect($tpl);
SmartyValidate::set_form('submit_link');
SmartyValidate::register_form('submit_link', true);
SmartyValidate::register_criteria('ValidateWithPlugins', 'SmartyValidateByPlugin', 'submit_link');
SmartyValidate::register_criteria('isValueUnique', 'validate_unique', 'submit_link');
SmartyValidate::register_criteria('isUrlUnique', 'validateUrlUnique', 'submit_link');
SmartyValidate::register_criteria('isNotEqual', 'validate_not_equal', 'submit_link');
SmartyValidate::register_criteria('isURLOnline', 'validate_url_online', 'submit_link');
SmartyValidate::register_criteria('isRecprDomain', 'validate_recpr_link_dom', 'submit_link');
SmartyValidate::register_criteria('isRecprOnline', 'validate_recpr_link', 'submit_link');
SmartyValidate::register_criteria('isCaptchaValid', 'validate_captcha', 'submit_link');
SmartyValidate::register_validator('v_TITLE', 'TITLE', 'notEmpty', false, false, 'trim', 'submit_link');
SmartyValidate::register_validator('v_TITLE_U', 'TITLE:link::CATEGORY_ID' . $EditUnique, 'isValueUnique', false, false, null, 'submit_link');
SmartyValidate::register_validator('v_URL', 'URL', 'isURL', false, false, 'trim', 'submit_link');
SmartyValidate::register_validator('v_URL_ONLINE', 'URL', 'isURLOnline', false, false, null, 'submit_link');
SmartyValidate::register_validator('v_URL_U', 'URL:link' . (ALLOW_MULTIPLE ? '::CATEGORY_ID' : ':'), 'isUrlUnique', false, false, null, 'submit_link');
SmartyValidate::register_validator('v_CATEGORY_ID', 'CATEGORY_ID:0', 'isNotEqual', false, false, null, 'submit_link');
SmartyValidate::register_validator('v_RECPR_URL', 'RECPR_URL', 'isURL', $recpr_required ? false : true, false, 'trim', 'submit_link');
break;
case 'E':
if (empty($_REQUEST['submit'])) {
$data = $db->GetRow("SELECT * FROM `{$tables['category']['name']}` WHERE `ID` = " . $db->qstr($id));
}
case 'N':
default:
$categs = get_categs_tree(0);
$tpl->assign('categs', $categs);
if (empty($_REQUEST['submit'])) {
if ($action == 'N') {
$data = array();
$data['STATUS'] = 2;
}
SmartyValidate::connect($tpl);
SmartyValidate::register_form('dir_categs_edit', true);
if ($_REQUEST['s'] != '1') {
SmartyValidate::register_criteria('isValueUnique', 'validate_unique', 'dir_categs_edit');
SmartyValidate::register_validator('v_TITLE', 'TITLE', 'notEmpty', false, false, 'trim', 'dir_categs_edit');
SmartyValidate::register_validator('v_TITLE_U', 'TITLE:category:' . $id . ':PARENT_ID', 'isValueUnique', false, false, null, 'dir_categs_edit');
if (ENABLE_REWRITE) {
SmartyValidate::register_validator('v_TITLE_URL', 'TITLE_URL:!^[\\w_-]+$!', 'isRegExp', false, false, 'trim', 'dir_categs_edit');
SmartyValidate::register_validator('v_TITLE_URL_U', 'TITLE_URL:category:' . $id . ':PARENT_ID', 'isValueUnique', false, false, null, 'dir_categs_edit');
}
} else {
SmartyValidate::register_criteria('isNotEqual', 'validate_not_equal', 'dir_categs_edit');
SmartyValidate::register_criteria('isNotEqualVariable', 'validate_not_equal_var', 'dir_categs_edit');
SmartyValidate::register_criteria('isSymbolicUnique', 'validate_symbolic_unique', 'dir_categs_edit');
SmartyValidate::register_criteria('isParentValid', 'validate_symbolic_parent', 'dir_categs_edit');
SmartyValidate::register_validator('v_SYMBOLIC_ID', 'SYMBOLIC_ID:0', 'isNotEqual', true, false, null, 'dir_categs_edit');
SmartyValidate::register_validator('v_SYMBOLIC_ID_E', 'SYMBOLIC_ID:PARENT_ID', 'isNotEqualVariable', true, false, null, 'dir_categs_edit');
} else {
$tpl->assign('sql_error', $db->ErrorMsg());
}
break;
case 'E':
if (empty($_REQUEST['submit'])) {
$data = $db->GetRow("SELECT * FROM `{$tables['user']['name']}` WHERE `ID` = " . $db->qstr($id));
}
case 'N':
default:
if (empty($_REQUEST['submit'])) {
if ($action == 'N') {
$data = array();
}
SmartyValidate::connect($tpl);
SmartyValidate::register_form('conf_users_edit', true);
SmartyValidate::register_criteria('isValueUnique', 'validate_unique', 'conf_users_edit');
SmartyValidate::register_validator('v_LOGIN', 'LOGIN:4:25', 'isLength', false, false, 'trim', 'conf_users_edit');
SmartyValidate::register_validator('v_LOGIN_U', 'LOGIN:user:'******'isValueUnique', false, false, false, 'conf_users_edit');
SmartyValidate::register_validator('v_NAME', 'NAME:4:25', 'isLength', false, false, 'trim', 'conf_users_edit');
SmartyValidate::register_validator('v_PASSWORD', 'PASSWORD:4:25', 'isLength', true, false, 'trim', 'conf_users_edit');
SmartyValidate::register_validator('v_PASSWORDC', 'PASSWORD:PASSWORDC', 'isEqual', true, false, 'trim', 'conf_users_edit');
SmartyValidate::register_validator('v_EMAIL', 'EMAIL', 'isEmail', false, false, 'trim', 'conf_users_edit');
SmartyValidate::register_validator('v_EMAIL_U', 'EMAIL:user:'******'isValueUnique', false, false, 'trim', 'conf_users_edit');
} else {
SmartyValidate::connect($tpl);
$data = get_table_data('user');
if (!isset($data['SUBMIT_NOTIF'])) {
$data['SUBMIT_NOTIF'] = 0;
}
if (!isset($data['PAYMENT_NOTIF'])) {
break;
case 'C':
$tpl->assign('CATEGORY_ID', $id);
break;
case 'D':
if ($db->Execute("DELETE FROM `{$tables['user_permission']['name']}` WHERE `ID` = " . $db->qstr($id))) {
$tpl->assign('posted', 'Permission removed.');
break;
} else {
$tpl->assign('sql_error', $db->ErrorMsg());
}
case 'N':
default:
if (empty($_REQUEST['submit'])) {
SmartyValidate::connect($tpl);
SmartyValidate::register_form('conf_user_permissions', true);
SmartyValidate::register_criteria('isValueUnique', 'validate_unique', 'conf_user_permissions');
SmartyValidate::register_criteria('isNotEqual', 'validate_not_equal', 'conf_user_permissions');
SmartyValidate::register_criteria('isNotSubCat', 'validate_not_sub_category', 'conf_user_permissions');
SmartyValidate::register_validator('v_CATEGORY_ID', 'CATEGORY_ID:0', 'isNotEqual', true, false, null, 'conf_user_permissions');
SmartyValidate::register_validator('v_CATEGORY_ID_U', "CATEGORY_ID:user_permission:0:USER_ID", 'isValueUnique', false, false, null, 'conf_user_permissions');
SmartyValidate::register_validator('v_CATEGORY_ID_S', "CATEGORY_ID", 'isNotSubCat', false, false, null, 'conf_user_permissions');
} else {
SmartyValidate::connect($tpl);
$data = get_table_data('user_permission');
$data['USER_ID'] = $u;
if (SmartyValidate::is_valid($data, 'conf_user_permissions')) {
// Check if category is parent to existing categories.
$child_categories = find_child_categories();
if ($child_categories > 0) {
$tpl->assign('CHILD_CATEGORIES', $child_categories);
// ADD CUSTOM VALIDATOR FOR CHARSET
function check_notifyMails($value, $empty, &$params, &$formvars)
{
$mails = PommoHelper::trimArray(explode(',', $value));
$ret = true;
foreach ($mails as $mail) {
if (!empty($mail) && !PommoHelper::isEmail($mail)) {
$ret = false;
}
}
return $ret;
}
SmartyValidate::connect($smarty);
if (!SmartyValidate::is_registered_form('messages') || empty($_POST)) {
// ___ USER HAS NOT SENT FORM ___
SmartyValidate::register_form('messages', true);
// register custom criteria
SmartyValidate::register_criteria('isMails', 'check_notifyMails', 'messages');
SmartyValidate::register_validator('subscribe_sub', 'subscribe_sub', 'notEmpty', false, false, 'trim', 'messages');
SmartyValidate::register_validator('subscribe_msg', 'subscribe_msg', 'notEmpty', false, false, 'trim', 'messages');
SmartyValidate::register_validator('subscribe_web', 'subscribe_web', 'notEmpty', false, false, 'trim', 'messages');
SmartyValidate::register_validator('unsubscribe_sub', 'unsubscribe_sub', 'notEmpty', false, false, 'trim', 'messages');
SmartyValidate::register_validator('unsubscribe_msg', 'unsubscribe_msg', 'notEmpty', false, false, 'trim', 'messages');
SmartyValidate::register_validator('unsubscribe_web', 'unsubscribe_web', 'notEmpty', false, false, 'trim', 'messages');
SmartyValidate::register_validator('confirm_sub', 'confirm_sub', 'notEmpty', false, false, 'trim', 'messages');
SmartyValidate::register_validator('confirm_msg', 'confirm_msg:!\\[\\[URL\\]\\]!i', 'isRegExp', false, false, 'trim', 'messages');
SmartyValidate::register_validator('activate_sub', 'activate_sub', 'notEmpty', false, false, 'trim', 'messages');
SmartyValidate::register_validator('activate_msg', 'activate_msg:!\\[\\[URL\\]\\]!i', 'isRegExp', false, false, 'trim', 'messages');
SmartyValidate::register_validator('update_sub', 'update_sub', 'notEmpty', false, false, 'trim', 'messages');
SmartyValidate::register_validator('update_msg', 'update_msg:!\\[\\[URL\\]\\]!i', 'isRegExp', false, false, 'trim', 'messages');
SmartyValidate::register_validator('notify_email', 'notify_email', 'isMails', false, false, false, 'messages');
$tpl->assign('btn_back', 1);
$tpl->assign('title', _L('Administrative User'));
if (empty($_POST['submit'])) {
$db = ADONewConnection(DB_DRIVER);
if ($db->Connect(DB_HOST, DB_USER, DB_PASSWORD, DB_NAME)) {
$sql = "SELECT `LOGIN`, `NAME`, `EMAIL` FROM `{$tables['user']['name']}` WHERE `ADMIN` = '1'";
$admin_update = $db->GetRow($sql);
if (empty($_SESSION['values']) || !is_array($_SESSION['values'])) {
$_SESSION['values'] = array();
}
$_SESSION['values']['admin_user'] = !empty($admin_update['LOGIN']) ? $admin_update['LOGIN'] : '';
$_SESSION['values']['admin_name'] = !empty($admin_update['NAME']) ? $admin_update['NAME'] : '';
$_SESSION['values']['admin_email'] = !empty($admin_update['EMAIL']) ? $admin_update['EMAIL'] : '';
}
SmartyValidate::connect($tpl, true);
SmartyValidate::register_form('install', true);
SmartyValidate::register_validator('v_admin_user', 'admin_user:!^\\w{4,25}$!', 'isRegExp', false, false, 'trim', 'install');
SmartyValidate::register_validator('v_admin_name', 'admin_name', 'notEmpty', false, false, 'trim', 'install');
SmartyValidate::register_validator('v_admin_password', 'admin_password:6:25', 'isLength', false, false, 'trim', 'install');
SmartyValidate::register_validator('v_admin_passwordc', 'admin_password:admin_passwordc', 'isEqual', true, false, 'trim', 'install');
SmartyValidate::register_validator('v_admin_email', 'admin_email', 'isEmail', false, false, 'trim', 'install');
} else {
if ($_POST['submit'] == 'next') {
SmartyValidate::connect($tpl);
if (SmartyValidate::is_valid($_POST, 'install')) {
$admin_details = array();
$admin_details['admin_user'] = $_POST['admin_user'];
$admin_details['admin_name'] = $_POST['admin_name'];
$admin_details['admin_password'] = $_POST['admin_password'];
$admin_details['admin_email'] = $_POST['admin_email'];
if (create_admin($admin_details)) {
$tpl->clear_all_cache();
//Clear all compiled template files
$tpl->clear_compiled_tpl();
// Disable any caching by the browser
@header('Expires: Mon, 14 Oct 2002 05:00:00 GMT');
// Date in the past
@header('Last-Modified: ' . gmdate("D, d M Y H:i:s") . ' GMT');
// Always modified
@header('Cache-Control: no-store, no-cache, must-revalidate');
// HTTP 1.1
@header('Cache-Control: post-check=0, pre-check=0', false);
@header('Pragma: no-cache');
// HTTP 1.0
if (empty($_POST['user'])) {
SmartyValidate::connect($tpl);
SmartyValidate::register_form('login', true);
SmartyValidate::register_validator('v_user', 'user', 'notEmpty', false, false, 'trim', 'login');
SmartyValidate::register_validator('v_pass', 'pass', 'notEmpty', false, false, 'trim', 'login');
} else {
SmartyValidate::connect($tpl);
if (SmartyValidate::is_valid($_POST, 'login')) {
if (login($_POST['user'], $_POST['pass'])) {
SmartyValidate::disconnect();
if (!preg_match('`(admin|install)/(.*)\\.php(|\\?.*)$`', $_SESSION['return'])) {
unset($_SESSION['return']);
}
if ($_SESSION['return']) {
@header("Location: " . $_SESSION['return']);
unset($_SESSION['return']);
} else {
@header("Location: index.php");
<?php
session_start();
//File Name:register.php
//Desc: Registration page
if (!eregi("index.php", $_SERVER['PHP_SELF'])) {
die("You can't access this file directly...");
}
require_once "mainfile.php";
$index = 1;
include "header.php";
$tpl = new Template();
$tpl->modTemplate("member");
smartyValidate::connect($tpl, empty($_POST));
SmartyValidate::register_form('frm_registration');
if (empty($_POST)) {
$tpl->display("register.tpl");
} else {
if (SmartyValidate::is_valid($_POST)) {
// no errors, done with SmartyValidate
$randval = random();
$time = time();
$pass = md5($_POST[password]);
$title = addslashes($_POST["title"]);
$fname = addslashes($_POST["fname"]);
$lname = addslashes($_POST["lname"]);
$email = addslashes($_POST["email"]);
$password = md5(addslashes($_POST["password"]));
$phone = addslashes($_POST["phone"]);
$fax = addslashes($_POST["fax"]);
$mobile = addslashes($_POST["mobile"]);
*********************************/
require '../bootstrap.php';
Pommo::init();
$logger =& Pommo::$_logger;
$dbo =& Pommo::$_dbo;
/**********************************
SETUP TEMPLATE, PAGE
*********************************/
require_once Pommo::$_baseDir . 'classes/Pommo_Template.php';
$smarty = new Pommo_Template();
$smarty->prepareForForm();
$exchanger = current(Pommo_Api::configGet(array('list_exchanger')));
SmartyValidate::connect($smarty);
if (!SmartyValidate::is_registered_form('exchanger') || empty($_POST)) {
// ___ USER HAS NOT SENT FORM ___
SmartyValidate::register_form('exchanger', true);
SmartyValidate::register_validator('email', 'email', 'isEmail', false, false, false, 'exchanger');
$vMsg = array();
$vMsg['email'] = Pommo::_T('Invalid email address');
$smarty->assign('vMsg', $vMsg);
$dbvals = array('exchanger' => $exchanger, 'email' => Pommo::$_config['admin_email']);
$smarty->assign($dbvals);
} else {
// ___ USER HAS SENT FORM ___
/**********************************
JSON OUTPUT INITIALIZATION
*********************************/
require_once Pommo::$_baseDir . 'classes/Pommo_Json.php';
$json = new Pommo_Json();
if (SmartyValidate::is_valid($_POST, 'exchanger')) {
// __ FORM IS VALID
<?php
session_start();
if (!eregi("index.php", $_SERVER["PHP_SELF"])) {
header("location:index.php");
die;
}
$index = 2;
require_once "mainfile.php";
global $db;
$page_title = "{$lang['booking_request']}";
include "header.php";
$smarty =& new Template();
$smarty->modTemplate("package");
SmartyValidate::connect($smarty);
SmartyValidate::register_form('friend_package');
$link = $_REQUEST["link"];
$id = intval($_REQUEST["id"]);
$smarty->assign("id", $id);
$url = "index.php?m=package&file=packagedetails&id={$id}";
$result = $db->query("SELECT * FROM " . $prefix . "_package WHERE package_active=1 AND package_id={$id}");
$package = $db->fetch_array($result);
$smarty->assign("package", $package);
if (empty($_POST)) {
$smarty->display('mail.tpl');
} else {
// validate after a POST
if (SmartyValidate::is_valid($_POST)) {
// no errors, done with SmartyValidate
$uemail = $_POST["uemail"];
$name = $_POST["uname"];
