/** * This function is beign used to load info that's needed for the settings page. * check if the person who wants to view this page is a mod/admin or the user to whom te settings belong himself, if this is not the case, he will be redirected to an error page. * it will return a lot of information of that user, that's being used for loading the template. * @author Daan Janssens, mentored by Matthew Lagoe */ function settings() { if (WebUsers::isLoggedIn()) { //in case id-GET param set it's value as target_id, if no id-param is given, ue the session id. if (isset($_GET['id'])) { if ($_GET['id'] != $_SESSION['id'] && !Ticket_User::isMod(unserialize($_SESSION['ticket_user']))) { //ERROR: No access! $_SESSION['error_code'] = "403"; header("Cache-Control: max-age=1"); header("Location: index.php?page=error"); throw new SystemExit(); } else { $webUser = new Webusers($_GET['id']); $result = $webUser->getInfo(); if (Ticket_User::isMod(unserialize($_SESSION['ticket_user'])) && $_GET['id'] != $_SESSION['id']) { $result['changesOther'] = "TRUE"; } $result['target_id'] = $_GET['id']; $result['current_mail'] = $webUser->getEmail(); $result['target_username'] = $webUser->getUsername(); } } else { $webUser = new Webusers($_SESSION['id']); $result = $webUser->getInfo(); $result['target_id'] = $_SESSION['id']; $result['current_mail'] = $webUser->getEmail(); $result['target_username'] = $webUser->getUsername(); } //Sanitize Data $result['current_mail'] = filter_var($result['current_mail'], FILTER_SANITIZE_EMAIL); $result['target_username'] = filter_var($result['target_username'], FILTER_SANITIZE_STRING); $result['FirstName'] = filter_var($result['FirstName'], FILTER_SANITIZE_STRING); $result['LastName'] = filter_var($result['LastName'], FILTER_SANITIZE_STRING); $result['Country'] = filter_var($result['Country'], FILTER_SANITIZE_STRING); $result['Gender'] = filter_var($result['Gender'], FILTER_SANITIZE_NUMBER_INT); $result['ReceiveMail'] = filter_var($result['ReceiveMail'], FILTER_SANITIZE_NUMBER_INT); $result['country_array'] = getCountryArray(); global $INGAME_WEBPATH; $result['ingame_webpath'] = $INGAME_WEBPATH; $dbl = new DBLayer("lib"); $statement = $dbl->executeWithoutParams("SELECT * FROM settings"); $rows = $statement->fetchAll(); foreach ($rows as &$value) { $result[$value['Setting']] = $value['Value']; } return $result; } else { //ERROR: not logged in! header("Location: index.php"); header("Cache-Control: max-age=1"); throw new SystemExit(); } }
function settings() { if (WebUsers::isLoggedIn()) { //in case id-GET param set it's value as target_id, if no id-param is given, ue the session id. if (isset($_GET['id'])) { if ($_GET['id'] != $_SESSION['id'] && !Ticket_User::isMod(unserialize($_SESSION['ticket_user']))) { //ERROR: No access! $_SESSION['error_code'] = "403"; header("Location: index.php?page=error"); exit; } else { $webUser = new Webusers($_GET['id']); //$result = $webUser->getInfo(); if (Ticket_User::isMod(unserialize($_SESSION['ticket_user'])) && $_GET['id'] != $_SESSION['id']) { $result['changesOther'] = "TRUE"; } $result['target_id'] = $_GET['id']; $result['current_mail'] = $webUser->getEmail(); $result['target_username'] = $webUser->getUsername(); } } else { $webUser = new Webusers($_SESSION['id']); //$result = $webUser->getInfo(); $result['target_id'] = $_SESSION['id']; $result['current_mail'] = $webUser->getEmail(); $result['target_username'] = $webUser->getUsername(); } //Sanitize Data $result['current_mail'] = filter_var($result['current_mail'], FILTER_SANITIZE_EMAIL); $result['target_username'] = filter_var($result['target_username'], FILTER_SANITIZE_STRING); //$result['FirstName'] = filter_var($result['FirstName'], FILTER_SANITIZE_STRING); //$result['LastName'] = filter_var($result['LastName'], FILTER_SANITIZE_STRING); //$result['Country'] = filter_var($result['Country'], FILTER_SANITIZE_STRING); //$result['Gender'] = filter_var($result['Gender'], FILTER_SANITIZE_NUMBER_INT); //$result['ReceiveMail'] = filter_var($result['ReceiveMail'], FILTER_SANITIZE_NUMBER_INT); //$result['country_array'] = getCountryArray(); global $INGAME_WEBPATH; $result['ingame_webpath'] = $INGAME_WEBPATH; return $result; } else { //ERROR: not logged in! header("Location: index.php"); exit; } }