function check_user_data(&$tpl)
{
global $dmn_name;
// Domain name
global $dmn_chp;
// choosed hosting plan;
global $dmn_pt;
global $cfg;
// personal template
$even_txt = "_off_";
if (isset($_POST['dmn_name'])) {
$dmn_name = strtolower($_POST['dmn_name']);
}
$dmn_name = get_punny($dmn_name);
if (isset($_POST['dmn_tpl'])) {
$dmn_chp = $_POST['dmn_tpl'];
}
if (isset($_POST['chtpl'])) {
$dmn_pt = $_POST['chtpl'];
}
if (!vhcs_domain_check($dmn_name)) {
$even_txt = tr('Wrong domain name syntax!');
} else {
if (vhcs_domain_exists($dmn_name, $_SESSION['user_id'])) {
$even_txt = tr('Domain with that name already exists on the system!');
}
}
// we have plans only for admins
if (isset($cfg['HOSTING_PLANS_LEVEL']) && $cfg['HOSTING_PLANS_LEVEL'] === 'admin') {
$dmn_pt = '_no_';
}
if ($even_txt != '_off_') {
// There are wrong input data
set_page_message($even_txt);
return false;
} else {
if ($dmn_pt == '_yes_' || !isset($_POST['dmn_tpl'])) {
// send through the session the data
$_SESSION['dmn_name'] = $dmn_name;
$_SESSION['dmn_tpl'] = $dmn_chp;
$_SESSION['chtpl'] = $dmn_pt;
$_SESSION['step_one'] = "_yes_";
Header("Location: rau2.php");
die;
} else {
// send through the session the data
$_SESSION['dmn_name'] = $dmn_name;
$_SESSION['dmn_tpl'] = $dmn_chp;
$_SESSION['chtpl'] = $dmn_pt;
$_SESSION['step_one'] = "_yes_";
Header("Location: rau3.php");
die;
}
}
}
function addon_domain(&$tpl, $dmn_name)
{
$dmn_name = strtolower($dmn_name);
$dmn_name = get_punny($dmn_name);
if (!vhcs_domain_check($dmn_name)) {
set_page_message(tr('Wrong domain name syntax!'));
return;
} else {
if (vhcs_domain_exists($dmn_name, 0)) {
set_page_message(tr('Domain with that name already exists on the system!'));
return;
}
}
$_SESSION['domainname'] = $dmn_name;
header("Location: address.php");
die;
}
function check_subdomain_data(&$tpl, &$sql, $user_id)
{
$domain_id = get_user_domain_id($sql, $user_id);
if (isset($_POST['uaction']) && $_POST['uaction'] === 'add_subd') {
if ($_POST['subdomain_name'] === '') {
set_page_message(tr('Please specify subdomain name!'));
return;
}
$sub_name = strtolower($_POST['subdomain_name']);
$sub_name = get_punny($sub_name);
if (isset($_POST['subdomain_mnt_pt']) && $_POST['subdomain_mnt_pt'] !== '') {
$sub_mnt_pt = strtolower($_POST['subdomain_mnt_pt']);
$sub_mnt_pt = decode_idna($sub_mnt_pt);
}
if (subdmn_exists($sql, $user_id, $domain_id, $sub_name) > 0) {
set_page_message(tr('Subdomain already exists!'));
} else {
if (chk_subdname($sub_name . "." . $_SESSION['user_logged']) > 0) {
set_page_message(tr('Wrong subdomain syntax!'));
} else {
if (subdmn_mnt_pt_exists($sql, $user_id, $domain_id, $sub_name, $sub_mnt_pt)) {
set_page_message(tr('Subdomain mount point already exists!'));
} else {
if (chk_mountp($sub_mnt_pt) > 0) {
set_page_message(tr('Incorrect mount point syntax'));
} else {
subdomain_schedule($sql, $user_id, $domain_id, $sub_name, $sub_mnt_pt);
set_page_message(tr('Subdomain scheduled for addition!'));
header('Location:manage_domains.php');
exit(0);
}
}
}
}
}
}
function update_order_details(&$tpl, &$sql, $user_id, $order_id)
{
$domain = strtolower($_POST['domain']);
$domain = get_punny($domain);
$customer_id = strip_html($_POST['customer_id']);
$fname = strip_html($_POST['fname']);
$lname = strip_html($_POST['lname']);
$firm = strip_html($_POST['firm']);
$zip = strip_html($_POST['zip']);
$city = strip_html($_POST['city']);
$country = strip_html($_POST['country']);
$street1 = strip_html($_POST['street1']);
$street2 = strip_html($_POST['street2']);
$email = strip_html($_POST['email']);
$phone = strip_html($_POST['phone']);
$fax = strip_html($_POST['fax']);
$query = <<<SQL_QUERY
update
orders
set
domain_name=?,
\t\t\t\tcustomer_id=?,
fname=?,
lname=?,
firm=?,
zip=?,
city=?,
country=?,
email=?,
phone=?,
fax=?,
street1=?,
street2=?
where
id=?
\t\t\tand
\t\t\t\tuser_id=?
SQL_QUERY;
exec_query($sql, $query, array($domain, $customer_id, $fname, $lname, $firm, $zip, $city, $country, $email, $phone, $fax, $street1, $street2, $order_id, $user_id));
}
function add_domain_alias(&$sql, &$err_al)
{
global $cr_user_id, $alias_name, $domain_ip, $forward, $mount_point;
$cr_user_id = $domain_id = get_user_domain_id($sql, $_SESSION['user_id']);
$alias_name = strtolower($_POST['ndomain_name']);
$mount_point = strtolower($_POST['ndomain_mpoint']);
$forward = $_POST['forward'];
$query = <<<SQL_QUERY
select
domain_ip_id
from
domain
where
domain_id = ?
SQL_QUERY;
$rs = exec_query($sql, $query, array($cr_user_id));
$domain_ip = $rs->fields['domain_ip_id'];
$alias_name = get_punny($alias_name);
//$mount_point = "/".$mount_point;
// Fisrt check is the data correct
if (chk_dname($alias_name) > 0) {
$err_al = tr("Incorrect domain name syntax");
} else {
if (vhcs_domain_exists($alias_name, 0)) {
$err_al = tr('Domain with that name already exists on the system!');
} else {
if (chk_mountp($mount_point) > 0) {
$err_al = tr("Incorrect mount point syntax");
} else {
if ($forward != 'no') {
if (chk_url($forward) > 0) {
$err_al = tr("Incorrect forward syntax");
}
} else {
$query = "select domain_id from domain_aliasses where alias_name=?";
$res = exec_query($sql, $query, array($alias_name));
$query = "select domain_id from domain where domain_name=?";
$res2 = exec_query($sql, $query, array($alias_name));
if ($res->RowCount() > 0 or $res2->RowCount() > 0) {
// we already have domain with this name
$err_al = tr("Domain with this name already exist");
}
// all seems ok - add it
$query = "select count(alias_id) as cnt from domain_aliasses where domain_id=? and alias_mount=?";
$mres = exec_query($sql, $query, array($cr_user_id, $mount_point));
$mdata = $mres->FetchRow();
$query = "select count(subdomain_id) as cnt from subdomain where domain_id=? and subdomain_mount=?";
$subdomres = exec_query($sql, $query, array($cr_user_id, $mount_point));
$subdomdata = $subdomres->FetchRow();
if ($mdata['cnt'] > 0 || $subdomdata['cnt'] > 0) {
// whe have alias with same mount point !!! ERROR
$err_al = tr("There are alias with same mount point");
}
}
}
}
}
if ('_off_' !== $err_al) {
return;
}
// Begin add new alias domain
$alias_name = htmlspecialchars($alias_name, ENT_QUOTES, "UTF-8");
check_for_lock_file();
global $cfg;
$status = $cfg['ITEM_ADD_STATUS'];
$query = "insert into domain_aliasses(domain_id, alias_name, alias_mount, alias_status, alias_ip_id, url_forward) values (?, ?, ?, ?, ?, ?)";
exec_query($sql, $query, array($cr_user_id, $alias_name, $mount_point, $status, $domain_ip, $forward));
send_request();
$admin_login = $_SESSION['user_logged'];
write_log("{$admin_login}: add domain alias -> {$alias_name}");
set_page_message(tr('Alias scheduled for addition!'));
header("Location: manage_domains.php");
die;
}
function add_domain_alias(&$sql, &$err_al)
{
global $cr_user_id, $alias_name, $domain_ip, $forward, $mount_point, $tpl;
$cr_user_id = $_SESSION['dmn_id'];
$alias_name = strtolower($_POST['ndomain_name']);
$domain_ip = $_SESSION['dmn_ip'];
$mount_point = strtolower($_POST['ndomain_mpoint']);
$forward = $_POST['forward'];
$alias_name = get_punny($alias_name);
// Fisrt check is the data correct
if (chk_dname($alias_name) > 0) {
$err_al = tr("Incorrect domain name syntax");
} else {
if (vhcs_domain_exists($alias_name, $_SESSION['user_id'])) {
$err_al = tr('Domain with that name already exists on the system!');
} else {
if (chk_mountp($mount_point) > 0) {
$err_al = tr("Incorrect mount point syntax");
} else {
if ($forward != 'no') {
if (chk_url($forward) > 0) {
$err_al = tr("Incorrect forward syntax");
}
} else {
$res = exec_query($sql, "select domain_id from domain_aliasses where alias_name=?", array($alias_name));
$res2 = exec_query($sql, "select domain_id from domain where domain_name =?", array($alias_name));
if ($res->RowCount() > 0 or $res2->RowCount() > 0) {
// we already have domain with this name
$err_al = tr("Domain with this name already exist");
}
// all seems ok - add it
$mres = exec_query($sql, "select count(alias_id) as cnt from domain_aliasses where domain_id=? and alias_mount=?", array($cr_user_id, $mount_point));
$mdata = $mres->FetchRow();
$subdomres = exec_query($sql, "select count(subdomain_id) as cnt from subdomain where domain_id=? and subdomain_mount=?", array($cr_user_id, $mount_point));
$subdomdata = $subdomres->FetchRow();
if ($mdata['cnt'] > 0 || $subdomdata['cnt'] > 0) {
// whe have alias with same mount point !!! ERROR
$err_al = tr("There are alias with same mount point");
}
}
}
}
}
if ('_off_' !== $err_al) {
set_page_message($err_al);
return;
}
// Begin add new alias domain
check_for_lock_file();
global $cfg;
$status = $cfg['ITEM_ADD_STATUS'];
exec_query($sql, "insert into domain_aliasses(domain_id, alias_name, alias_mount, alias_status, alias_ip_id, url_forward) values (?, ?, ?, ?, ?, ?)", array($cr_user_id, $alias_name, $mount_point, $status, $domain_ip, $forward));
send_request();
$admin_login = $_SESSION['user_logged'];
write_log("{$admin_login}: add domain alias -> {$alias_name}");
set_page_message(tr('Domain alias added!'));
}
function gen_editalias_page(&$tpl, $edit_id)
{
global $sql;
$reseller_id = $_SESSION['user_id'];
$query = <<<SQL_QUERY
\tselect
t1.domain_id, t1.alias_id, t2.domain_id, t2.domain_created_id
\tfrom
domain_aliasses as t1,
domain as t2
\twhere
\t\t\tt1.alias_id = ?
\t\tand
\t\t\tt1.domain_id = t2.domain_id
\t\tand
\t\t\tt2.domain_created_id = ?
SQL_QUERY;
$rs = exec_query($sql, $query, array($edit_id, $reseller_id));
if ($rs->RecordCount() == 0) {
set_page_message(tr('User does not exist or you do not have permission to access this interface!'));
header('Location: domain_alias.php');
die;
}
//Get data from sql
$res = exec_query($sql, "select * from domain_aliasses where alias_id=?", array($edit_id));
if ($res->RecordCount() <= 0) {
$_SESSION['aledit'] = '_no_';
header('Location: domain_alias.php');
die;
}
$data = $res->FetchRow();
// Get ip -data
$ipres = exec_query($sql, "select * from server_ips where ip_id=?", array($data['alias_ip_id']));
$ipdat = $ipres->FetchRow();
$ip_data = $ipdat['ip_number'] . ' (' . $ipdat['ip_alias'] . ')';
if (isset($_POST['uaction']) && $_POST['uaction'] == 'modify') {
$url_forward = get_punny($_POST['forward']);
} else {
$url_forward = $data['url_forward'];
}
// Fill in the fileds
$tpl->assign(array('ALIAS_NAME' => $data['alias_name'], 'DOMAIN_IP' => $ip_data, 'FORWARD' => $url_forward, 'ID' => $edit_id));
}
function check_user_data(&$tpl, $alias_id)
{
global $sql;
$forward_url = get_punny($_POST['forward']);
$ed_error = '_off_';
$admin_login = '';
if ($forward_url != 'no') {
if (chk_url($forward_url) > 0) {
$ed_error = tr("Incorrect forward syntax");
}
}
if ('_off_' === $ed_error) {
exec_query($sql, "update domain_aliasses set url_forward=?, alias_status='" . STATUS_TOCHANGE . "' where alias_id=?", array($forward_url, $alias_id));
send_request();
$admin_login = $_SESSION['user_logged'];
write_log("{$admin_login}: change domain alias forward");
unset($_SESSION['edit_ID']);
return true;
} else {
$tpl->assign('MESSAGE', $ed_error);
$tpl->parse('PAGE_MESSAGE', 'page_message');
return false;
}
}
// | Copyright (c) 2001-2005 be moleSoftware |
// | http://vhcs.net | http://www.molesoftware.com |
// | |
// | This program is free software; you can redistribute it and/or |
// | modify it under the terms of the MPL General Public License |
// | as published by the Free Software Foundation; either version 1.1 |
// | of the License, or (at your option) any later version. |
// | |
// | You should have received a copy of the MPL Mozilla Public License |
// | along with this program; if not, write to the Open Source Initiative (OSI) |
// | http://opensource.org | osi@opensource.org |
// | |
// -------------------------------------------------------------------------------
include 'include/vhcs-lib.php';
if (isset($_POST['uname']) && isset($_POST['upass'])) {
$uname = get_punny($_POST['uname']);
if (register_user($uname, $_POST['upass'])) {
if ($_SESSION['user_type'] == 'admin') {
header("Location: admin/index.php");
} else {
if ($_SESSION['user_type'] == 'reseller') {
header("Location: reseller/index.php");
} else {
if ($_SESSION['user_type'] == 'user') {
header("Location: client/index.php");
}
}
}
} else {
header('Location: index.php');
}
function schedule_mail_account(&$sql, $dmn_id, $dmn_name)
{
global $cfg;
$domain_id = $dmn_id;
// standard whithoz encoding
//$mail_acc = $_POST['username'];
// lets encode the mail
$mail_acc_tmp = strtolower($_POST['username']);
$mail_acc = get_punny($mail_acc_tmp);
//encoded
$status = $cfg['ITEM_ADD_STATUS'];
$mail_auto_respond = '_no_';
if ($_POST['mail_type'] === 'normal') {
if ($_POST['dmn_type'] === 'dmn') {
$mail_pass = $_POST['pass'];
$mail_forward = '_no_';
$mail_type = 'normal_mail';
$sub_id = '0';
} else {
if ($_POST['dmn_type'] === 'sub') {
$mail_pass = $_POST['pass'];
$mail_forward = '_no_';
$mail_type = 'subdom_mail';
$sub_id = $_POST['sub_id'];
} else {
if ($_POST['dmn_type'] === 'als') {
$mail_pass = $_POST['pass'];
$mail_forward = '_no_';
$mail_type = 'alias_mail';
$sub_id = $_POST['als_id'];
}
}
}
$check_acc_query = <<<SQL_QUERY
select
count(mail_id) as cnt
from
mail_users
where
mail_acc = ?
and
domain_id = ?
and
mail_type = ?
and
sub_id = ?
SQL_QUERY;
$rs = exec_query($sql, $check_acc_query, array($mail_acc, $domain_id, $mail_type, $sub_id));
} else {
if ($_POST['mail_type'] === 'forward') {
if ($_POST['dmn_type'] === 'dmn') {
$mail_pass = '******';
$mail_forward = $_POST['forward_list'];
$faray = preg_split("/[\n]+/", $mail_forward);
foreach ($faray as $value) {
$value = trim($value);
if (chk_email($value) > 0 && $value !== '') {
/* ERR .. strange :) not email in this line - warrning */
set_page_message(tr("Mail forward list error!"));
return;
} else {
if ($value === '') {
set_page_message(tr("Mail forward list error!"));
return;
}
}
}
$mail_type = 'normal_forward';
$sub_id = '0';
} else {
if ($_POST['dmn_type'] === 'sub') {
$mail_pass = '******';
$mail_forward = $_POST['forward_list'];
$faray = preg_split("/[\n]+/", $mail_forward);
foreach ($faray as $value) {
$value = trim($value);
if (chk_email($value) > 0 && $value !== '') {
/* ERR .. strange :) not email in this line - warrning */
set_page_message(tr("Mail forward list error!"));
return;
}
}
$mail_type = 'subdom_forward';
$sub_id = $_POST['sub_id'];
} else {
if ($_POST['dmn_type'] === 'als') {
$mail_pass = '******';
$mail_forward = $_POST['forward_list'];
$faray = preg_split("/[\n]+/", $mail_forward);
foreach ($faray as $value) {
$value = trim($value);
if (chk_email($value) > 0 && $value !== '') {
/* ERR .. strange :) not email in this line - warrning */
set_page_message(tr("Mail forward list error!"));
return;
}
}
$mail_type = 'alias_forward';
$sub_id = $_POST['als_id'];
}
}
}
$check_acc_query = <<<SQL_QUERY
select
count(mail_id) as cnt
from
mail_users
where
mail_acc = ?
and
domain_id = ?
and
sub_id = ?
SQL_QUERY;
$rs = exec_query($sql, $check_acc_query, array($mail_acc, $domain_id, $sub_id));
}
}
if ($rs->fields['cnt'] > 0) {
set_page_message(tr('Mail account already exists!'));
return;
}
if (chk_username($mail_acc)) {
set_page_message(tr("Incorrect username range or syntax!"));
return;
}
check_for_lock_file();
$query = <<<SQL_QUERY
insert into mail_users
(mail_acc,
mail_pass,
mail_forward,
domain_id,
mail_type,
sub_id,
status,
mail_auto_respond)
values
(?, ?, ?, ?, ?, ?, ?, ?)
SQL_QUERY;
$rs = exec_query($sql, $query, array($mail_acc, $mail_pass, $mail_forward, $domain_id, $mail_type, $sub_id, $status, $mail_auto_respond));
write_log($_SESSION['user_logged'] . " : add new mail account -> " . $mail_acc . "@" . $dmn_name);
set_page_message(tr('Mail account scheduled for addition!'));
send_request();
header("Location: email_accounts.php");
exit(0);
}
