} if ($apiType == 'xml') { header("Content-type: text/xml; charset=UTF-8"); $responsexml = new DOMDocument('1.0', 'utf-8'); $element = $responsexml->createElement('users'); $query2 = $sql->prepare("SELECT COUNT(`id`) AS `amount` FROM `userdata` WHERE `resellerid`=? AND `accounttype`='u'"); $query2->execute(array($resellerID)); $key = $responsexml->createElement('totalAmount', (int) $query2->fetchColumn()); $element->appendChild($key); $key = $responsexml->createElement('start', isset($data['start']) ? (int) $data['start'] : ''); $element->appendChild($key); $key = $responsexml->createElement('amount', isset($data['amount']) ? (int) $data['amount'] : ''); $element->appendChild($key); $key = $responsexml->createElement('like', (isset($data['like']) and wpreg_check($data['like'], 255)) ? $data['like'] : ''); $element->appendChild($key); $key = $responsexml->createElement('notLike', (isset($data['notLike']) and wpreg_check($data['notLike'], 255)) ? $data['notLike'] : ''); $element->appendChild($key); while ($row = $query->fetch(PDO::FETCH_ASSOC)) { $listRootServerXML = $responsexml->createElement('user'); $listServerXML = $responsexml->createElement('id', $row['id']); $listRootServerXML->appendChild($listServerXML); $listServerXML = $responsexml->createElement('active', $row['active']); $listRootServerXML->appendChild($listServerXML); $listServerXML = $responsexml->createElement('salutation', $row['salutation']); $listRootServerXML->appendChild($listServerXML); $listServerXML = $responsexml->createElement('cname', $row['cname']); $listRootServerXML->appendChild($listServerXML); $listServerXML = $responsexml->createElement('vname', $row['vname']); $listRootServerXML->appendChild($listServerXML); $listServerXML = $responsexml->createElement('name', $row['name']); $listRootServerXML->appendChild($listServerXML);
function deleteOldToken($w = '', $d = '', $id = '') { global $_SESSION; if ($w != 'sID') { if ($id != '' and $d != '') { unset($_SESSION[$w][$d][$id]); } else { if ($id == '' and $d != '') { unset($_SESSION[$w][$d]); } else { if ($id != '' and $d == '') { unset($_SESSION[$w][$id]); } else { if ($id == '' and $d == '') { unset($_SESSION[$w]); } } } } } foreach ($_SESSION as $k => $v) { if (wpreg_check($k, 4) and $k != 'sID' and (isset($_SESSION[$k]['t']) and $_SESSION[$k]['d'] < strtotime('now') or is_array($_SESSION[$k]) and count($_SESSION[$k]) == 0)) { unset($_SESSION[$k]); } else { if (wpreg_check($k, 4) and is_array($_SESSION[$k]) and count($_SESSION[$k]) > 0) { foreach ($_SESSION[$k] as $k2 => $v2) { if (wpreg_check($k2, 4) and (isset($_SESSION[$k][$k2]['t']) and $_SESSION[$k][$k2]['d'] < strtotime('now') or is_array($_SESSION[$k][$k2]) and count($_SESSION[$k][$k2]) == 0)) { unset($_SESSION[$k][$k2]); } else { if (wpreg_check($k2, 4) and is_array($_SESSION[$k][$k2]) and count($_SESSION[$k][$k2]) > 0) { foreach ($_SESSION[$k][$k2] as $k3 => $v3) { if (isid($k3, 4) and (isset($_SESSION[$k][$k2][$k3]['t']) and $_SESSION[$k][$k2][$k3]['d'] < strtotime('now') or is_array($_SESSION[$k][$k2][$k3]) and count($_SESSION[$k][$k2][$k3]) == 0)) { unset($_SESSION[$k][$k2][$k3]); } } } } } } } } }
} else { header('Location: index.php'); } die; } $query = $sql->prepare("SELECT `registration`,`registrationQuestion`,`registrationBadEmail`,`registrationBadIP` FROM `page_settings` WHERE `resellerid`=0 LIMIT 1"); $query->execute(); while ($row = $query->fetch(PDO::FETCH_ASSOC)) { $registration = $row['registration']; $registrationQuestion = $row['registrationQuestion']; $registrationBadEmail = $row['registrationBadEmail']; $registrationBadIP = $row['registrationBadIP']; } $langObject = getlanguagefile('user', $user_language, 0); if (isset($registration) and in_array($registration, array('A', 'M', 'D'))) { $activationToken = (isset($page_name) and isset($page_count) and $page_name == 'activate' and wpreg_check($page_count, 100)) ? $page_count : $ui->pregw('activate', 100, 'get'); if ($activationToken) { // Check if a user to the activation ID exists $query = $sql->prepare("SELECT `id` FROM `userdata` WHERE `token`=? LIMIT 1"); $query->execute(array($activationToken)); $userID = $query->fetchColumn(); if (isid($userID, 10)) { $query = $sql->prepare("UPDATE `userdata` SET `active`='Y',`token`=null,`updateTime`=NOW() WHERE `id`=? LIMIT 1"); $query->execute(array($userID)); $_SESSION['userid'] = $userID; $_SESSION['resellerid'] = 0; $template_file = $page_sprache->registerActivated; $langObjectTemp = getlanguagefile('redirect', $user_language, 0); $text = $langObjectTemp->refresh; $langObjectTemp = null; if (isset($page_data->canurl)) {
$slots = (int) $xml->slots; $lendtime = (int) $xml->lendtime; } else { $password = $ui->w('password', 50, 'post'); $slots = $ui->id('slots', 3, 'post'); $lendtime = $ui->id('time', 4, 'post'); } if (!isid($slots, 3) or $slots > $vomaxplayer or $slots < $vominplayer) { $fail = 1; $error .= 'Slots</br>'; } if (!isid($lendtime, 4) or $lendtime > $vomaxtime or $lendtime < $vomintime) { $fail = 1; $error .= 'Time' . "{$lendtime} > {$vomaxtime} or {$lendtime} < {$vomintime}" . '</br>'; } if (!wpreg_check($password, 50)) { $error .= 'Password</br>'; $fail = 1; } if ($fail == 0 and $freevoice > 0) { $timeleft = $lendtime; $query = $sql->prepare("SELECT `bitversion`,`type`,`queryport`,AES_DECRYPT(`querypassword`,:aeskey) AS `decryptedquerypassword`,`rootid`,`addedby`,`publickey`,`ssh2ip`,AES_DECRYPT(`ssh2port`,:aeskey) AS `decryptedssh2port`,AES_DECRYPT(`ssh2user`,:aeskey) AS `decryptedssh2user`,AES_DECRYPT(`ssh2password`,:aeskey) AS `decryptedssh2password`,`serverdir`,`keyname`,`notified`,`defaultname`,`defaultwelcome`,`defaulthostbanner_url`,`defaulthostbanner_gfx_url`,`defaulthostbutton_tooltip`,`defaulthostbutton_url`,`defaulthostbutton_gfx_url`,`usedns` FROM `voice_masterserver` WHERE `active`='Y' AND `id`=:id AND `resellerid`=:reseller_id LIMIT 1"); $query->execute(array(':aeskey' => $aeskey, ':id' => $bestmaster, ':reseller_id' => $reseller_id)); while ($row = $query->fetch(PDO::FETCH_ASSOC)) { $addedby = $row['addedby']; $queryport = $row['queryport']; $querypassword = $row['decryptedquerypassword']; $usedns = $row['usedns']; $name = $row['defaultname']; $welcome = $row['defaultwelcome']; $banner_url = $row['defaulthostbanner_url'];
$externalServerID = isExternalID($data['server_external_id']); $success['false'][] = !dataExist('identify_user_by', $data) ? 'Can not identify user or bad email' : 'Slot amount needs to be specified'; } } } else { if (!isset($success['false']) and array_value_exists('action', 'mod', $data)) { $identifyUserBy = $data['identify_user_by']; $localUserID = isid($data['user_localid'], 21); $externalUserID = isExternalID($data['user_externalid']); $username = $data['username']; $identifyServerBy = $data['identify_server_by']; $localServerID = isid($data['server_local_id'], 21); $externalServerID = isExternalID($data['server_external_id']); $shorten = $data['shorten']; $from = array('server_local_id' => 'id', 'server_external_id' => 'externalID'); $initialpassword = (isset($data['initialpassword']) and wpreg_check($data['initialpassword'], 50)) ? $data['initialpassword'] : ''; if (is_array($data['shorten']) or is_object($data['shorten'])) { $shorten = $data['shorten']; } else { if (isset($data['shorten'])) { $shorten = array($data['shorten']); } } if (dataExist('identify_server_by', $data)) { $query = $sql->prepare("SELECT r.`install_paths`,r.`quota_active`,r.`externalID`,r.`hyperthreading`,r.`cores` AS `coresAvailable`,g.*,u.`cname` FROM `gsswitch` g INNER JOIN `rserverdata` r ON g.`rootID`=r.`id` INNER JOIN `userdata` u ON u.`id`=g.`userid` WHERE g.`" . $from[$data['identify_server_by']] . "`=? AND g.`resellerid`=? LIMIT 1"); $query->execute(array($data[$data['identify_server_by']], $resellerID)); while ($row = $query->fetch(PDO::FETCH_ASSOC)) { $localID = $row['id']; $userID = $row['userid']; $ftpUser = $row['cname'] . '-' . $row['id']; $hostID = $row['rootID'];
$fail = 1; echo "test" . $ui->post['reseller']; } if (!isip($ui->post['ip'], "all")) { $fail = 1; $template_file .= "IP <br />"; } if (!isid($ui->post['port'], "5")) { $fail = 1; $template_file .= "Port <br />"; } if (!uname_check($ui->post['user'], "20")) { $fail = 1; $template_file .= "User <br />"; } if (!wpreg_check($ui->post['publickey'], 1)) { $fail = 1; $template_file .= "Key <br />"; } if (!active_check($ui->post['active'])) { $fail = 1; $template_file .= "Active <br />"; } if (!active_check($ui->post['esxi'])) { $fail = 1; $template_file .= "ESXi <br />"; } if (!active_check($ui->post['thin'])) { $fail = 1; } if ($fail != 1) {