$row = $sql->fetch_row(); $CP['login_id'] = $row["account_id"]; $CP['login_name'] = get_username($row["account_id"]); $CP['login_sex'] = $row["sex"]; $CP['login_mail'] = $row["email"]; if (empty($CP['login_id'])) { if ($CONFIG_save_type == 1) { session_unregister(loginname); session_unregister(loginpass); } else { CP_removeCookie("loginname"); CP_removeCookie("loginpass"); } header("index.php?act=login"); } if (checkprivilege($CP['login_id']) == 1) { $sql->execute_query("INSERT INTO {$CONFIG_sql_cpdbname}.privilege (account_id,privilege) VALUES (\"" . $CP['login_id'] . "\",'2')", 'user_profile.php'); } $CP['login_nname'] = $CP['login_name']; $CP['login_logout'] = "<img height=\"1\" width=\"10\"><a href=\"index.php?act=logout\" title=\"Log Out\"><font class=\"m_title\">{$lang['Logout']}</font></a>"; $query = "SELECT display_name,user_time_offset FROM {$CONFIG_sql_cpdbname}.user_profile WHERE user_id = \"" . $CP['login_id'] . "\""; $sql->result = $sql->execute_query($query, 'user_profile.php'); $sql->total_query++; if (!$sql->count_rows()) { $sql->execute_query("INSERT INTO {$CONFIG_sql_cpdbname}.user_profile (user_id,display_name,user_time_offset,user_avatar,user_avatar_width,user_avatar_height,user_joined) VALUES (\"" . $CP['login_id'] . "\",\"" . $CP['login_nname'] . "\",\"" . $CONFIG_time_offset . "\",\"\",0,0,\"" . $CP['time'] . "\")", 'user_profile.php'); $sql->total_query++; } else { $row = $sql->fetch_row(); if (empty($row[display_name])) { $sql->execute_query("UPDATE {$CONFIG_sql_cpdbname}.user_profile SET display_name = \"" . $CP['login_name'] . "\" WHERE user_id=\"" . $CP['login_id'] . "\"", 'user_profile.php', 0); }
function checkprivilege_action($account, $checkaction) { global $CONFIG_sql_cpdbname; $sql = new MySQL(); $userprivilege = checkprivilege($account); $query = "SELECT " . $checkaction . " FROM {$CONFIG_sql_cpdbname}.groups WHERE g_id=\"" . mysql_res($userprivilege) . "\""; $sql->result = $sql->execute_query($query, 'function.php', 0); if ($sql->count_rows() > 0) { $row = $sql->fetch_row(); $usrprivilege = $row[$checkaction]; } else { return 0; } return $usrprivilege; }
$xoopsTpl->assign('private', $entryObject->getVar('private')); $xoopsTpl->assign('profileUri', sprintf('%s/userinfo.php?uid=%d', XOOPS_URL, $entryObject->getVar('user_id'))); $xoopsTpl->assign('current_uid', $currentuid); $xoopsTpl->assign('is_private', $entryObject->getVar('private') == 'Y' ? 1 : 0); $xoopsTpl->assign('private', _BL_PRIVATE); $xoopsTpl->assign('lang_comments', _BL_COMMENTS); $xoopsTpl->assign('comments_num', $entryObject->getVar('comments')); $xoopsTpl->assign('lang_reads', _BL_NUMBER_OF_READS); $xoopsTpl->assign('reads', $entryObject->getVar('reads')); $xoopsTpl->assign('lang_trackbacks', _BL_NUMBER_OF_TRACKBACKS); $xoopsTpl->assign('trackbacks', $entryObject->getVar('trackbacks')); $xoopsTpl->assign('lang_edit', _BL_EDIT); $xoopsTpl->assign('read_users_blog', sprintf('<a href="index.php?user_id=%d">%s</a>', $entryObject->getVar('user_id'), sprintf(_BL_READ_USERS_BLOG, $entryObject->getVar('uname')))); //$priv =& xoops_getmodulehandler('priv'); //$xoopsTpl->assign('provide_edit_link', ($isAdmin || ($currentuid==$entryObject->getVar('user_id') && $priv->hasPrivilege($currentUser)))?1:0); $xoopsTpl->assign('provide_edit_link', $isAdmin || $currentuid == $entryObject->getVar('user_id') && checkprivilege("edit", $xoopsModule->dirname()) ? 1 : 0); $xoopsTpl->assign('blog_id', $blog_id); $xoopsTpl->assign('print_link', 'print.php?blog_id=' . $blog_id); $xoopsTpl->assign('lang_printerpage', _BL_PRINTERPAGE); $xoopsTpl->assign('mail_link', 'mailto:?subject=' . sprintf(_BL_INTARTICLE, $xoopsConfig['sitename']) . '&body=' . sprintf(_BL_INTARTFOUND, $xoopsConfig['sitename']) . ': ' . XOOPS_URL . '/modules/' . $xoopsModule->dirname() . '/details.php?blog_id=' . $blog_id); $xoopsTpl->assign('lang_sendstory', _BL_SENDSTORY); $rss_feeder = sprintf('%s/modules/%s/backend_weblog.php', XOOPS_URL, $xoopsModule->dirname()); $rss_feeder .= sprintf('?user_id=%d', $entryObject->getVar('user_id')); $rdf_feeder = sprintf('%s/modules/%s/weblog-rdf.php', XOOPS_URL, $xoopsModule->dirname()); $rdf_feeder .= sprintf('?user_id=%d', $entryObject->getVar('user_id')); $xoopsTpl->assign('lang_rss', sprintf(_BL_RSS_RECENT_FOR, $entryObject->getVar('uname'))); $xoopsTpl->assign('rss_feeder', $rss_feeder); $xoopsTpl->assign('rdf_feeder', $rdf_feeder); $xoopsTpl->assign('rss_show', $xoopsModuleConfig['rssshow']); $xoopsTpl->assign('rdf_desc', $rdf_desc); $xoopsTpl->assign('page_title', $xoopsModule->name());
// Project Lead by: Mysterious // ========================================================================= --> <?php if (!$SERVER['system_safe']) { exit; } $GET_showtopic = (int) $GET_showtopic; if (checkprivilege_action($CP[login_id], g_view_board)) { $query = "SELECT forum_id,topic_name,topic_description,closed_mode,pinned_mode FROM {$CONFIG_sql_cpdbname}.board_topic WHERE topic_id =\"" . mysql_res($GET_showtopic) . "\""; $sql->result2 = $sql->execute_query($query, 'showtopic.php'); $sql->total_query++; $row = $sql->fetch_row($sql->result2); $forum_id = $row[forum_id]; if ($category_id = check_category($forum_id)) { $CP['g_id'] = checkprivilege($CP[login_id]); if (check_forum_perm($forum_id, $CP['g_id'], 'read_perm')) { if (!isset($GET_st)) { $GET_st = 0; } $GET_st = (int) $GET_st; $page = get_page($GET_st, $CONFIG_per_page); $query = "SELECT COUNT(*) FROM {$CONFIG_sql_cpdbname}.board_reply WHERE topic_id =\"" . mysql_res($GET_showtopic) . "\""; $sql->result = $sql->execute_query($query, 'showtopic.php'); $sql->total_query++; $total = $sql->result(); $query = "SELECT reply_id,reply_user_id,reply_emo,reply_date,reply_edit_date,reply_message,reply_ip,reply_edit_name,reply_upload\n\tFROM {$CONFIG_sql_cpdbname}.board_reply\n\tWHERE topic_id =\"" . mysql_res($GET_showtopic) . "\" ORDER by reply_id ASC LIMIT " . mysql_res($GET_st) . "," . mysql_res($CONFIG_per_page) . ""; $sql->result = $sql->execute_query($query, 'showtopic.php'); $sql->total_query++; $topic_name = $row["topic_name"]; $topic_description = $row["topic_description"];
get_theme_select(); } echo "\t\t\t\t\t</TBODY>\n\t\t\t\t</TABLE>\n"; if ($SELECT_MENU) { echo "<BR>\n"; } if (empty($STORED_loginname) && empty($STORED_loginpass)) { echo "\n\t\t\t\t<SCRIPT language=\"JavaScript\" src=\"function/registration.js\"></SCRIPT>\n\t\t\t\t<TABLE width=\"100%\" align=\"center\" border=\"0\" cellspacing=\"5\" cellpadding=\"0\" class=\"tablefill2\">\n\t\t\t\t\t<TBODY>\n\t\t\t\t\t\t<form action=\"index.php?act=login_action\" method=\"post\" enctype=\"multipart/form-data\" name=\"login_form2\" onSubmit=\"return CheckLogin2()\">\n\t\t\t\t\t\t<TR>\n\t\t\t\t\t\t\t<TD width=\"30%\">ID :</TD>\n\t\t\t\t\t\t\t<TD width=\"70%\"><input name=\"LG_USER\" type=\"text\" size=\"13\" maxlength=\"24\" class=\"textinput\"></TD>\n\t\t\t\t\t\t</TR>\n\t\t\t\t\t\t<TR>\n\t\t\t\t\t\t\t<TD>Pass :</TD>\n\t\t\t\t\t\t\t<TD><input name=\"LG_PASS\" type=\"password\" size=\"13\" maxlength=\"24\" class=\"textinput\"></TD>\n\t\t\t\t\t\t</TR>\n\t\t\t\t\t\t<TR align=\"center\">\n\t\t\t\t\t\t\t<TD colspan=\"2\">\n\t\t\t\t\t\t\t\t<input type=\"submit\" name=\"Submit\" value=\"{$lang['login']}\" class=\"textinput3\">\n\t\t\t\t\t\t\t\t<input type=\"reset\" name=\"Reset\" value=\"{$lang['Resetprivilege']}\" class=\"textinput3\">\n\t\t\t\t\t\t\t</TD>\n\t\t\t\t\t\t</TR>\n\t\t\t\t\t\t</form>\n\t\t\t\t\t</TBODY>\n\t\t\t\t</TABLE>\n\t\t\t\t<BR>\n"; } $lostpass_menu = $CONFIG_lost_pass_mode ? "{$IMG['ARROW']}<a href=\"index.php?act=lostpass\" title=\"Lost Password\">{$lang['Mn_lostpass']}</a><BR>" : ""; echo "<a href=javascript:hide_menu(2,\"mquick\") title=\"Open/Close�this menu\"><img src =\"theme/{$STORED['THEME']}/menu/Quick_menu.gif\" border=\"0\"></a><BR>\n\t\t\t\t<TABLE width=\"100%\" align=\"center\" border=\"0\" cellpadding=\"0\" cellspacing=\"0\">\n\t\t\t\t\t<TBODY>\n\t\t\t\t\t\t<TR id=\"2\" style=\"{$quick_style}\">\n\t\t\t\t\t\t\t<TD vAlign=\"top\">\n<BR>\n\t\t\t\t\t\t\t\t{$IMG['ARROW']}<a href=\"index.php?act=idx\" title=\"Home\">{$lang['Mn_home']}</a><BR>\n\t\t\t\t\t\t\t\t{$IMG['ARROW']}<a href=\"index.php?act=register\" title=\"Register\">{$lang['Mn_register']}</a><BR>\n\t\t\t\t\t\t\t\t{$IMG['ARROW']}<a href=\"index.php?act=download\" title=\"Download\">{$lang['Mn_download']}</a><BR>\n\t\t\t\t\t\t\t\t{$IMG['ARROW']}<a href=\"index.php?act=guildstanding\" title=\"Guild War Report\">{$lang['Guild_Standing']}</a><BR>\n\t\t\t\t\t\t\t\t{$IMG['ARROW']}<a href=\"index.php?act=info\" title=\"Server Information\">{$lang['Mn_svinfo']}</a><BR>\n\t\t\t\t\t\t\t\t" . $lostpass_menu . "\n\t\t\t\t\t\t\t\t{$IMG['ARROW']}<a href=\"mailto:{$CONFIG_admin_email}\" title=\"Contact\">{$lang['Mn_contact']}</a><BR>\n\t\t\t\t\t\t\t</TD>\n\t\t\t\t\t\t</TR>\n\t\t\t\t\t<TBODY>\n\t\t\t\t</TABLE>\n"; if (!empty($STORED_loginname) && !empty($STORED_loginpass)) { if ($mmember) { $member_style = "display:none;"; } $CP[privilege_id] = checkprivilege($CP[login_id]); $char_manage_menu = get_members_menu($CONFIG_char_manage_mode, char_manage, $CP[privilege_id]); $player_rank_menu = get_members_menu($CONFIG_player_rank_mode, player_rank, $CP[privilege_id]); $guild_rank_menu = get_members_menu($CONFIG_guild_rank_mode, guild_rank, $CP[privilege_id]); echo "<BR>\n<img src =\"theme/{$STORED['THEME']}/menu/menu_line.gif\"><BR><BR>\n<a href=javascript:hide_menu(3,\"mmember\") title=\"Open/Close�this menu\"><img src =\"theme/{$STORED['THEME']}/menu/Member_menu.gif\" border=\"0\"></a><BR>\n\t\t\t\t<TABLE width=\"100%\" align=\"center\" border=\"0\" cellspacing=\"0\">\n\t\t\t\t\t<TBODY>\n\t\t\t\t\t\t<TR id=\"3\" style=\"{$member_style}\">\n\t\t\t\t\t\t\t<TD vAlign=\"top\">\n<BR>\n\t\t\t\t\t\t\t\t{$IMG['ARROW']}<a href=\"index.php?act=login\" title=\"My Profile\">{$lang['login_profile']}</a><BR>\n\t\t\t\t\t\t\t\t{$char_manage_menu}\n\t\t\t\t\t\t\t\t{$player_rank_menu}\n\t\t\t\t\t\t\t\t{$guild_rank_menu}\n\t\t\t\t\t\t\t</TD>\n\t\t\t\t\t\t</TR>\n\t\t\t\t\t<TBODY>\n\t\t\t\t</TABLE>\n"; } if ($mstatus) { $svstatus_style = "display:none;"; } echo "<BR>\n<img src =\"theme/{$STORED['THEME']}/menu/menu_line.gif\"><BR><BR>\n<a href=javascript:hide_menu(5,\"mstatus\") title=\"Open/Close�this menu\"><img src =\"theme/{$STORED['THEME']}/menu/Server_status.gif\" border=\"0\"></a><BR>\n\t\t\t\t<TABLE width=\"100%\" align=\"center\" border=\"0\" cellspacing=\"0\">\n\t\t\t\t\t<TBODY>\n\t\t\t\t\t\t<TR id=\"5\" style=\"{$svstatus_style}\">\n\t\t\t\t\t\t\t<TD vAlign=\"top\">\n<BR>\n\t\t\t\t\t\t\t\t{$IMG['ARROW']}Login Server : {$accsrv}<BR>\n\t\t\t\t\t\t\t\t{$IMG['ARROW']}Char Server : {$charsrv}<BR>\n\t\t\t\t\t\t\t\t{$IMG['ARROW']}Map Server : {$mapsrv}<BR><BR>\n\t\t\t\t\t\t\t\t{$IMG['ARROW']}{$lang['Users_Online']} : <B>{$user_online}</B><BR>\n\t\t\t\t\t\t\t\t{$IMG['ARROW']}{$lang['User']} : <B>{$total_online}</B><BR>\n"; if ($CONFIG_show_all_id) { echo "\t\t\t\t\t\t\t\t{$IMG['ARROW']}{$lang['All_ID']} : <B>{$totalid}</B><BR>\n\t\t\t\t\t\t\t\t{$IMG['ARROW']}{$lang['All_CHAR']} : <B>{$totalchar}</B><BR>\n"; } echo "\t\t\t\t\t\t\t</TD>\n\t\t\t\t\t\t</TR>\n\t\t\t\t\t<TBODY>\n\t\t\t\t</TABLE>\n<BR>\n<img src =\"theme/{$STORED['THEME']}/menu/menu_line.gif\"><BR><BR>\n<img src =\"theme/{$STORED['THEME']}/menu/Exchange_Link_menu.gif\"><BR>\n\t\t\t\t<TABLE width=\"100%\" align=\"center\" border=\"0\" cellspacing=\"0\">\n\t\t\t\t\t<TBODY>\n\t\t\t\t\t\t<TR>\n\t\t\t\t\t\t\t<TD vAlign=\"top\">\n\n<BR>\n"; include_once "pages/exchange_link.php"; echo "\t\t\t\t\t\t\t</TD>\n\t\t\t\t\t\t</TR>\n\t\t\t\t\t<TBODY>\n\t\t\t\t</TABLE>\n\t\t\t\t\t\t</TD>\n\t\t\t\t\t</TR>\n\t\t\t\t</TABLE>\n\t\t\t</TD>\n\t\t\t<TD width=\"19\" background=\"theme/{$STORED['THEME']}/templates/left_box_float_03.gif\"></TD>\n\t\t</TR>\n\t\t<TR height=\"20\">\n\t\t\t<TD><img src=\"theme/{$STORED['THEME']}/templates/left_box_footer_01.gif\"></TD><TD width=\"100%\" background=\"theme/{$STORED['THEME']}/templates/left_box_footer_02.gif\"></TD><TD><img src=\"theme/{$STORED['THEME']}/templates/left_box_footer_03.gif\"></TD>\n\t\t</TR>\n\t</TBODY>\n</TABLE>\n</TD></TR></TABLE>\n\t</TD>\n";
} echo '<form method="post" action="' . $action . '">' . $input_hidden_back . '<input type="submit" name="preview" value="' . _CANCEL . '">'; } echo '</div>'; } if (is_object($xoopsUser)) { $currentUser = $xoopsUser; } else { $currentUser =& new XoopsUser(); $currentUser->setVar('uid', 0); } $isAdmin = $currentUser->isAdmin($xoopsModule->mid()); $currentuid = $currentUser->getVar('uid'); // Check to ensure this user can post. Anonymous reject. Admin always OK. include_once sprintf('%s/modules/%s/include/privilege.inc.php', XOOPS_ROOT_PATH, $xoopsModule->dirname()); if (!$isAdmin && (!$currentuid || !checkprivilege("edit", $xoopsModule->dirname()))) { redirect_header(sprintf('%s/modules/%s/index.php', XOOPS_URL, $xoopsModule->dirname()), 5, _BL_ANON_CANNOT_POST_SORRY); exit; } // change specify date to created time. $offset = get_class($xoopsUser) == "xoopsuser" ? $xoopsUser->timezone() - $xoopsConfig['server_TZ'] : 0; if (isset($_POST['created_date']['date']) && is_array($_POST['created_date'])) { $_POST['created'] = strtotime($_POST['created_date']['date']) + $_POST['created_date']['time'] - $offset * 3600; } // Save the post if (!empty($_POST['post'])) { if (!$xoopsGTicket->check()) { redirect_header(XOOPS_URL . '/', 3, $xoopsGTicket->getErrors()); } $entry =& getEntry($_POST); if (strlen($entry->getVar('contents', 'n')) < $xoopsModuleConfig['minentrysize']) {
* but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program; if not, write to the Free Software * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA */ require 'header.php'; require_once XOOPS_ROOT_PATH . '/class/template.php'; include_once sprintf('%s/modules/%s/class/class.weblog.php', XOOPS_ROOT_PATH, $xoopsModule->dirname()); include_once sprintf('%s/modules/%s/include/encode_set.inc.php', XOOPS_ROOT_PATH, $xoopsModule->dirname()); // privilege check include_once sprintf('%s/modules/%s/include/privilege.inc.php', XOOPS_ROOT_PATH, $xoopsModule->dirname()); $isAdmin = isset($xoopsUser) && is_object($xoopsUser) ? $xoopsUser->isAdmin($xoopsModule->mid()) : false; if (!$isAdmin && !checkprivilege("read_index", $xoopsModule->dirname())) { exit; } // Include our module's language file if (file_exists(XOOPS_ROOT_PATH . '/modules/' . $xoopsModule->dirname() . '/language/' . $xoopsConfig['language'] . '/main.php')) { require_once XOOPS_ROOT_PATH . '/modules/' . $xoopsModule->dirname() . '/language/' . $xoopsConfig['language'] . '/main.php'; require_once XOOPS_ROOT_PATH . '/modules/' . $xoopsModule->dirname() . '/language/' . $xoopsConfig['language'] . '/modinfo.php'; } else { require_once XOOPS_ROOT_PATH . '/modules/' . $xoopsModule->dirname() . '/language/english/main.php'; require_once XOOPS_ROOT_PATH . '/modules/' . $xoopsModule->dirname() . '/language/english/modinfo.php'; } // obtain GET/POST parameters $user_id = !empty($_GET['user_id']) ? intval($_GET['user_id']) : 0; // obtain class instances $myts =& MyTextSanitizer::getInstance(); $weblog =& Weblog::getInstance();
<?php session_start(); require 'database/connect.php'; require 'function/users.php'; require 'function/generals.php'; $error = array(); if (isset($_SESSION['id']) == true) { $userid = $_SESSION['id']; $privilege = checkprivilege($userid); } $today = date("Y/m/d"); date_default_timezone_set('Asia/Kuala_Lumpur'); ?> <!DOCTYPE html> <html lang="en"> <head> <meta charset="utf-8"> <meta name="viewport" content="width=device-width, initial-scale=1.0"> <meta name="description" content=""> <meta name="author" content="Hans, Gabriel, Zy"> <title>XBase HR Management</title> <link href="css/bootstrap.css" rel="stylesheet"> <link rel="stylesheet" href="font-awesome/css/font-awesome.min.css"> <script src="js/jquery-1.10.2.js"></script> <script src="js/bootstrap.js"></script> </head>
* Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA */ require 'header.php'; require_once XOOPS_ROOT_PATH . '/class/template.php'; include_once sprintf('%s/modules/%s/class/class.weblog.php', XOOPS_ROOT_PATH, $xoopsModule->dirname()); // Include our module's language file if (file_exists(XOOPS_ROOT_PATH . '/modules/' . $xoopsModule->dirname() . '/language/' . $xoopsConfig['language'] . '/main.php')) { require_once XOOPS_ROOT_PATH . '/modules/' . $xoopsModule->dirname() . '/language/' . $xoopsConfig['language'] . '/main.php'; require_once XOOPS_ROOT_PATH . '/modules/' . $xoopsModule->dirname() . '/language/' . $xoopsConfig['language'] . '/modinfo.php'; } else { require_once XOOPS_ROOT_PATH . '/modules/' . $xoopsModule->dirname() . '/language/english/main.php'; require_once XOOPS_ROOT_PATH . '/modules/' . $xoopsModule->dirname() . '/language/english/modinfo.php'; } // privilege check include_once sprintf('%s/modules/%s/include/privilege.inc.php', XOOPS_ROOT_PATH, $xoopsModule->dirname()); if (!checkprivilege("read_detail", $xoopsModule->dirname())) { redirect_header(sprintf('%s/index.php', XOOPS_URL), 5, _BL_CANNOT_READ_SORRY); exit; } // obtain GET/POST parameters $blog_id = isset($HTTP_GET_VARS['blog_id']) ? intval($HTTP_GET_VARS['blog_id']) : 0; if (empty($blog_id)) { redirect_header("index.php"); } // obtain class instances $myts =& MyTextSanitizer::getInstance(); $weblog =& Weblog::getInstance(); // Determine the user we are retrieving the blog entries for $currentuid = !empty($xoopsUser) ? $xoopsUser->getVar('uid', 'E') : 0; header('Content-Type:text/html; charset=' . _CHARSET); $tpl = new XoopsTpl();
// compatible with weBLog // // http://xoopsdevelopment.tohokuaiki.jp // // ------------------------------------------------------------------------- // include_once "../../mainfile.php"; $mydirname = basename(dirname(__FILE__)); include_once XOOPS_ROOT_PATH . "/modules/" . $mydirname . "/include/myalbum_imagemanager/include/read_configs.php"; // include_once XOOPS_ROOT_PATH."/modules/".$mydirname."/include/myalbum_imagemanager/include/get_perms.php"; include_once XOOPS_ROOT_PATH . "/modules/" . $mydirname . "/include/myalbum_imagemanager/include/functions.php"; include_once XOOPS_ROOT_PATH . "/modules/" . $mydirname . "/include/myalbum_imagemanager/include/draw_functions.php"; include_once XOOPS_ROOT_PATH . "/modules/" . $mydirname . "/include/gtickets.php"; include_once XOOPS_ROOT_PATH . '/class/xoopstree.php'; include_once XOOPS_ROOT_PATH . '/modules/' . $mydirname . '/include/myalbum_imagemanager/class/myuploader.php'; include_once XOOPS_ROOT_PATH . '/modules/' . $mydirname . '/include/myalbum_imagemanager/class/myalbum.textsanitizer.php'; // check post privilege include_once sprintf('%s/modules/%s/include/privilege.inc.php', XOOPS_ROOT_PATH, $xoopsModule->dirname()); if (!is_object($xoopsUser) || !$xoopsUser->isAdmin($xoopsModule->mid()) && !checkprivilege("edit", $xoopsModule->dirname())) { redirect_header($mod_url . "/weblog-imagemanager_close.php", 5, _BL_ALBM_MUSTREGFIRST); exit; } else { $post_privilege = true; } $myts =& MyAlbumTextSanitizer::getInstance(); $cattree = new XoopsTree($table_cat, "cat_id", "cat_pid"); // GET variables $caller = empty($_GET['caller']) ? '' : $_GET['caller']; // POST variables $preview_name = empty($_POST['preview_name']) ? '' : $_POST['preview_name']; /* // check INSERTABLE if( ! ( $global_perms & GPERM_INSERTABLE ) ) { redirect_header( XOOPS_URL."/user.php" , 2 , _BL_ALBM_MUSTREGFIRST ) ;