function registration($login, $pass, $email, $name, $flag_email_approve) { $login = mysql_escape_string(killMagic($login)); $pass = mysql_escape_string(killMagic($pass)); $email = mysql_escape_string(killMagic($email)); $name = mysql_escape_string(killMagic($name)); $stor = new Storage(); $stor = $stor->storType(TE_STORTYPE); $hamster = $stor->make('hamster'); $hamster->setProperty('login', $login); $data = $hamster->getList(); $hamster = $stor->make('hamster'); $hamster->setProperty('email', $email); $e_data = $hamster->getList(); if ($name == "") { $name = $login; } if (count($data) > 0) { $regmes = my_lang('regist_t1'); } elseif (count($e_data) > 0) { $regmes = my_lang('regist_t2'); } else { // подтвердить email if ($flag_email_approve !== true) { $eapp = 0; } else { $eapp = 1; sub_add($email); // lib.php } $user = array('status' => 'user', 'login' => $login, 'name' => $name, 'email' => $email, 'password' => $pass, 'approve' => $eapp); $hamster->setProps($user); $hamster->add(); $_SESSION['login'] = $login; $_SESSION['pass'] = $pass; $_SESSION['name'] = $name; $hamster->setProperty('login', $login); $hamster->get(); $data = array(); $data = $hamster->getProps(); $_SESSION['author_id'] = $data['id']; $_SESSION['status'] = $data['status']; $_SESSION['tz'] = $data['tz']; if ($flag_email_approve !== true) { include_once 'lib/mail_lib.php'; send_email_req($data); } $regmes = true; } return $regmes; }
function rewrite_file($file) { $file = TE_DIR . '/themes/' . THEME . '/' . $file; if (is_file($file)) { $f = fopen($file, "w"); $w = fwrite($f, killMagic($_REQUEST['text'])); if (!$w) { $r = 'Не возможно записать файл.'; } else { fclose($f); $r = 'Файл "' . $file . '" перезаписан.'; } } else { $r = 'Ошибка открытия файла.'; } return $r; }
function rewrite_cfg_site($site_name = '', $site_url = '', $engine_url = '', $site_desc = '', $artcls_per_page = '', $site_rss = '', $date_format = '', $tz = '') { if ($site_name == '') { $site_name = $_REQUEST['site_name']; } if ($site_url == '') { $site_url = $_REQUEST['site_url']; } if ($engine_url == '') { $engine_url = $_REQUEST['engine_url']; } if ($site_desc == '') { $site_desc = $_REQUEST['site_desc']; } if ($artcls_per_page == '') { $artcls_per_page = $_REQUEST['artcls_per_page']; } if ($site_rss == '') { $site_rss = $_REQUEST['site_rss']; } if ($date_format == '') { $date_format = $_REQUEST['date_format']; } if ($tz == '') { $tz = $_REQUEST['tz']; } $prs = compact('site_name', 'site_url', 'engine_url', 'site_desc', 'artcls_per_page', 'site_rss', 'date_format', 'tz'); foreach ($prs as $p) { $p = killMagic($p); } $stor = new Storage(); $stor = $stor->storType(TE_STORTYPE); $s = $stor->make('config'); $s->setProps($prs); $upd = $s->upd($prs); if ($upd) { return 'Настройки сохранены'; } }
} elseif (filter_var($_REQUEST['email'], FILTER_VALIDATE_EMAIL) == false) { $c_mes = my_lang('subscribtion_t2'); $is_email = false; } elseif ($stl < 8 or $stl > 45) { $c_mes = my_lang('subscribtion_t3'); $is_email = false; } else { $stor = new Storage(); $stor = $stor->storType(TE_STORTYPE); $sub = $stor->make('sub'); $sub->setProperty('email', mysql_escape_string(killMagic($_REQUEST['email']))); $sub_data = $sub->getList(); if (!empty($sub_data)) { $c_mes = my_lang('subscribtion_t4'); } else { $sub->setProperty('email', mysql_escape_string(killMagic($_REQUEST['email']))); if ($sub->add()) { $c_mes = my_lang('subscribtion_t5'); //получаем id $sub->get(); $data = $sub->getProps(); //отправляем извещение по почте include TE_DIR . "/lib/mail_lib.php"; $text = my_lang('subscribtion_t6'); //получатель $to = $_REQUEST['email']; //код, по которому можно будет отписаться - уникальный id подписчика $code = $data['id']; //отправляем onemail($to, $text, $code); } else {
function updPageFormHlr($title = false, $sef = false, $content = false, $meta_key_words = false, $meta_description = false) { $prs = compact("title", "sef", "content", "meta_key_words", "meta_description"); foreach ($prs as $k => $p) { if ($p === false) { $prs[$k] = $_REQUEST['my_' . $k]; } } if ($prs['sef'] == '') { $prs['sef'] = $prs['title']; } $prs['sef'] = get_sef_title($prs['sef']); $prs['sef'] = strtolower(mysql_escape_string($prs['sef'])); $prs['id'] = intval($_REQUEST['s']); //Обработчики foreach ($prs as $k => $p) { $prs[$k] = mysql_escape_string(killMagic($p)); } return $prs; }
$args = array(); $args = array('suptext' => mysql_escape_string(killMagic($_REQUEST['new_notice_tmpl']))); $loot->setProps($args); $r_upd = $loot->upd($args); if ($r_upd) { $mes = my_lang('adm_sub_t3'); } else { $mes = my_lang('error'); } } // редактор шаблона обр. связи if ($_REQUEST['actmf'] == "re_connect_tmpl") { $loot = $stor->make('loot'); $loot->setProperty('suptitle', 'connect_tmpl'); $args = array(); $args = array('suptext' => mysql_escape_string(killMagic($_REQUEST['new_connect_tmpl']))); $loot->setProps($args); $r_upd = $loot->upd($args); if ($r_upd) { $mes = my_lang('adm_sub_t3'); } else { $mes = my_lang('error'); } } } if ($mes) { $mes = ' :: ' . $mes; } print ' <p class="mes">Рассылка <span style="color: 000;"> ' . @$mes . '</span></p>';
function profile($pass, $email, $name, $tz, $resp = '') { $pstl = strlen($pass); $pro_data = get_profile(intval($_SESSION['author_id'])); $stor = new Storage(); $stor = $stor->storType(TE_STORTYPE); $user = $stor->make('hamster'); $user->setProperty('email', $email); $res = $user->get(); if ($res !== false) { $e_data = $user->getProps(); } else { $e_data = false; } $name_user = $stor->make('hamster'); $name_user->setProperty('name', $name); $res = $name_user->get(); if ($res !== false) { $n_data = $name_user->getProps(); } else { $n_data = false; } if ($name == "") { $name = $_SESSION['login']; } // чужой email if ($e_data !== false && $e_data['email'] == $email && $e_data['id'] != $_SESSION['author_id']) { $regmes = my_lang('profile_t1'); } elseif ($n_data !== false && $n_data['id'] != $_SESSION['author_id']) { $regmes = my_lang('profile_t8'); } elseif ($pass !== '' && ($pstl < 3 or $pstl > 45)) { $regmes = my_lang('profile_t2'); } elseif (filter_var($email, FILTER_VALIDATE_EMAIL) == false) { $regmes = my_lang('feedback_t1'); } elseif (intval($tz) < -12 || intval($tz) > 12) { exit; } else { $name = mysql_escape_string(killMagic($name)); $pass = mysql_escape_string(killMagic($pass)); $email = mysql_escape_string(killMagic($email)); $tz = intval($tz); if (!isset($_REQUEST['new_resp'])) { $resp = $pro_data['respect']; } else { $resp = htmlspecialchars(killMagic($resp)); } if ($pro_data['email'] !== $email) { include_once 'lib/mail_lib.php'; loot_add($email); $reg = Registry::instance(); $hamster = $reg->get('hamster_info'); $hamster['email'] = $email; send_email_req($hamster); $regmes .= my_lang('profile_t5') . '<br/>'; } $props = array('name' => $name, 'tz' => $tz, 'id' => $_SESSION['author_id'], 'respect' => $resp); if ($pass !== '') { $props['password'] = sha1($pass); } $user = $stor->make('hamster'); $user->setProperty('id', $_SESSION['author_id']); $sql_upd = $user->upd($props); if ($sql_upd == true) { $regmes .= my_lang('profile_t3'); } else { $regmes .= my_lang('error'); } $pro_data = get_profile(intval($_SESSION['author_id'])); $_SESSION['pass'] = $pro_data['password']; $_SESSION['name'] = $pro_data['name']; $_SESSION['tz'] = $pro_data['tz']; } return $regmes; }