function get_avatar($id, $size)
{
connect_db();
$view = "SELECT avatar_url FROM userinfo WHERE user_id='{$id}'";
$list = mysql_query($view);
$row = mysql_fetch_array($list);
if ($row) {
if ($row[0]) {
return resizeavatar($row[0], $size);
}
}
$me = sina_get_credentials();
$avatar = $me['profile_image_url'];
$view = "UPDATE userinfo SET avatar_url='" . $avatar . "' WHERE user_id='{$id}'";
$list = mysql_query($view);
return resizeavatar($avatar, $size);
}
function oauth_sina_callback()
{
include_once 'sinaoauth.inc.php';
$o = new WeiboOAuth(SINA_AKEY, SINA_SKEY, $_SESSION['sinakeys']['oauth_token'], $_SESSION['sinakeys']['oauth_token_secret']);
$last_key = $o->getAccessToken($_REQUEST['oauth_verifier']);
$GLOBALS['user']['sinakey'] = $last_key;
connect_db();
$me = sina_get_credentials() or die("Cound not get data from Sina API");
if (!$me['id']) {
die("Cound not get data from Sina API");
}
$view = "SELECT * FROM accountbindings WHERE site_id='1' AND user_site_id='" . $me['id'] . "'";
$list = mysql_query($view);
$row = mysql_fetch_array($list);
if (!$row) {
include_once "uuid.inc.php";
$v4uuid = str_replace("-", "", UUID::v4());
$add = "INSERT INTO userinfo(nickname, email, microblogs, user_id, role_id, avatar_url) VALUES ('" . $me['name'] . "', '', '1', '{$v4uuid}', '-1', '" . $me['profile_image_url'] . "')";
$added = mysql_query($add) or die("Could not add entry 1");
$add = "INSERT INTO accountbindings(user_id, user_site_id, site_id, secret1, secret2) VALUES ('{$v4uuid}', '" . $me['id'] . "', 1, '" . $GLOBALS['user']['sinakey']['oauth_token'] . "', '" . $GLOBALS['user']['sinakey']['oauth_token_secret'] . "')";
$added = mysql_query($add) or die("Could not add entry 2");
$id = $v4uuid;
$role = -1;
$nick = $me['name'];
} else {
$id = $row['user_id'];
$updatekey = "UPDATE accountbindings SET secret1='" . $GLOBALS['user']['sinakey']['oauth_token'] . "',secret2='" . $GLOBALS['user']['sinakey']['oauth_token_secret'] . "' WHERE user_id='{$id}'";
$result = mysql_query($updatekey);
$view = "SELECT * FROM userinfo WHERE user_id='{$id}'";
$list = mysql_query($view);
$row = mysql_fetch_array($list);
$role = $row['role_id'];
$nick = $row['nickname'];
}
$GLOBALS['user']['nickname'] = $nick;
$GLOBALS['user']['id'] = $id;
$GLOBALS['user']['role'] = $role;
$view = "INSERT INTO log_userlogin(user_id, ipaddress, login_time, useragent, cookies) VALUES('{$id}', '" . $_SERVER["REMOTE_ADDR"] . "', '" . date('Y-m-d H:i:s') . "', '" . $_SERVER["HTTP_USER_AGENT"] . "', '" . $_SERVER["HTTP_COOKIE"] . "')";
$list = mysql_query($view);
save_cookie();
header("Location: " . BASE_URL);
}
