public function getNewNotificationAction() { global $TNB_GLOBALS, $db; $data = $_POST; $token = isset($data['TOKEN']) ? trim($data['TOKEN']) : null; if (!$token) { return ['STATUS_CODE' => STATUS_CODE_BAD_REQUEST, 'DATA' => buckys_api_get_error_result('Api token should not be blank')]; } if (!($userID = BuckysUsersToken::checkTokenValidity($token, "api"))) { return ['STATUS_CODE' => STATUS_CODE_UNAUTHORIZED, 'DATA' => buckys_api_get_error_result('Api token is not valid.')]; } $notifications = BuckysActivity::getAppNotifications($userID, $data['page']); $results = []; foreach ($notifications as $row) { $item = []; $item['postID'] = $row['postID']; $item['userID'] = $row['userID']; $query = $db->prepare("SELECT\n u.firstName, \n u.lastName, \n u.userID, \n u.thumbnail, \n u.current_city, \n u.current_city_visibility,\n f.friendID \n FROM \n " . TABLE_USERS . " AS u\n LEFT JOIN " . TABLE_FRIENDS . " AS f ON f.userID=%d AND f.userFriendID=u.userID AND f.status='1'\n WHERE u.userID=%d", $userID, $item['userID']); $data = $db->getRow($query); $item['userName'] = $data['firstName'] . " " . $data['lastName']; $item['comment_content'] = $row['comment_content']; $item['userThumbnail'] = THENEWBOSTON_SITE_URL . BuckysUser::getProfileIcon($data); $item['type'] = $row['type']; $item['activityType'] = $row['activityType']; $item['post_date'] = buckys_api_format_date($userID, $row['post_date']); $item['isNew'] = $row['isNew']; $results[] = $item; } return ['STATUS_CODE' => STATUS_CODE_OK, 'DATA' => ["STATUS" => "SUCCESS", "RESULT" => $results]]; }
/** * Create New Message * * @param mixed $data */ public function composeMessage($data) { global $db; $receivers = $data['to']; if (!buckys_not_null($receivers)) { buckys_add_message(MSG_SENDER_EMPTY_ERROR, MSG_TYPE_ERROR); return false; } if (trim($data['subject']) == '') { buckys_add_message(MSG_MESSAGE_SUBJECT_EMPTY_ERROR, MSG_TYPE_ERROR); return false; } if (trim($data['body']) == '') { buckys_add_message(MSG_MESSAGE_BODY_EMPTY_ERROR, MSG_TYPE_ERROR); return false; } $createdDate = date("Y-m-d H:i:s"); if (!is_array($receivers)) { $receivers = array($receivers); } //Remove Duplicated Messages $receivers = array_unique($receivers); $nonFriend = array(); $sents = array(); $errors = array(); $isError = false; foreach ($receivers as $receiver) { //Create A message row for Sender $sender = $data['userID']; $receiverInfo = BuckysUser::getUserBasicInfo($receiver); //confirm that current user and receiver is friend /*if(!BuckysFriend::isFriend($receiver, $sender)) { $nonFriend[] = $receiverInfo['firstName'] . " " . $receiverInfo['lastName']; $isError = true; continue; }*/ $insertData = array('userID' => $sender, 'sender' => $sender, 'receiver' => $receiver, 'subject' => $data['subject'], 'body' => $data['body'], 'status' => 'read', 'created_date' => $createdDate); $newId1 = $db->insertFromArray(TABLE_MESSAGES, $insertData); //Create A message row for receiver $sender = $data['userID']; $insertData = array('userID' => $receiver, 'sender' => $sender, 'receiver' => $receiver, 'subject' => $data['subject'], 'body' => $data['body'], 'status' => 'unread', 'created_date' => $createdDate); $newId2 = $db->insertFromArray(TABLE_MESSAGES, $insertData); $sents[] = $receiverInfo['firstName'] . ' ' . $receiverInfo['lastName']; } if (count($sents) > 0) { buckys_add_message(MSG_NEW_MESSAGE_SENT, MSG_TYPE_SUCCESS); } if (count($nonFriend) > 0) { if (count($nonFriend) > 1) { $msg = sprintf(MSG_COMPOSE_MESSAGE_ERROR_TO_NON_FRIENDS, implode(", ", $nonFriend)); } else { $msg = sprintf(MSG_COMPOSE_MESSAGE_ERROR_TO_NON_FRIEND, $nonFriend[0]); } buckys_add_message($msg, MSG_TYPE_ERROR); } return !$isError; }
/** * @param $userID * @param $tokenType * @param null $token * @return null|string */ public static function createNewToken($userID, $tokenType, $token = null) { global $db; $info = BuckysUser::getUserData($userID); if (!$token) { $token = md5(mt_rand(0, 99999) . time() . mt_rand(0, 99999) . $info['email'] . mt_rand(0, 99999)); } $newID = $db->insertFromArray(TABLE_USERS_TOKEN, ['userID' => $userID, 'userToken' => $token, 'tokenDate' => time(), 'tokenType' => $tokenType]); return $token; }
public function getListAction() { $request = $_GET; $token = isset($request['TOKEN']) ? trim($request['TOKEN']) : null; $lastDate = isset($request['lastDate']) ? $request['lastDate'] : null; if (!$token) { return ['STATUS_CODE' => STATUS_CODE_BAD_REQUEST, 'DATA' => buckys_api_get_error_result('Api token should not be blank')]; } if (!($userID = BuckysUsersToken::checkTokenValidity($token, "api"))) { return ['STATUS_CODE' => STATUS_CODE_UNAUTHORIZED, 'DATA' => buckys_api_get_error_result('Api token is not valid.')]; } $stream = BuckysPost::getUserPostsStream($userID, $lastDate); //Format Result Data $result = []; foreach ($stream as $post) { if ($post['pageID'] != BuckysPost::INDEPENDENT_POST_PAGE_ID) { $pageIns = new BuckysPage(); $pageData = $pageIns->getPageByID($post['pageID']); } $pagePostFlag = false; if (isset($pageData)) { $pagePostFlag = true; } $item = []; $item['articleId'] = $post['postID']; $item['posterId'] = $post['poster']; $item['articleImage'] = ""; $item['articleVideo'] = ""; $item['articleVideoId'] = ""; if ($pagePostFlag) { $item['posterName'] = $pageData['title']; $item['posterThumbnail'] = buckys_not_null($pageData['logo']) ? THENEWBOSTON_SITE_URL . DIR_WS_PHOTO . "users/" . $pageData['userID'] . "/resized/" . $pageData['logo'] : THENEWBOSTON_SITE_URL . DIR_WS_IMAGE . "newPagePlaceholder.jpg"; } else { $item['posterName'] = $post['posterFullName']; $item['posterThumbnail'] = THENEWBOSTON_SITE_URL . BuckysUser::getProfileIcon($post['poster']); } $item['postedDate'] = buckys_api_format_date($userID, $post['post_date']); $item['purePostedDate'] = $post['post_date']; $item['articleContent'] = $post['content']; if ($post['type'] == 'video') { $item['articleVideo'] = $post['youtube_url']; $item['articleVideoId'] = buckys_get_youtube_video_id($post['youtube_url']); } else { if ($post['type'] == 'image') { $item['articleImage'] = THENEWBOSTON_SITE_URL . DIR_WS_PHOTO . 'users/' . $post['poster'] . '/resized/' . $post['image']; } } $item['articleLikes'] = $post['likes']; $item['articleComments'] = $post['comments']; $item['isLiked'] = !$post['likeID'] ? "no" : "yes"; $result[] = $item; } return ['STATUS_CODE' => STATUS_CODE_OK, 'DATA' => ["STATUS" => "SUCCESS", "RESULT" => $result]]; }
/** * make payment * * @param mixed $buyerID * @param mixed $sellerID * @param mixed $amount */ public function makePayment($buyerID, $sellerID, $amount) { $sellerBitcoinInfo = BuckysUser::getUserBitcoinInfo($sellerID); if ($amount <= 0 || !$sellerBitcoinInfo) { return false; //no payment } $flag = BuckysBitcoin::sendBitcoin($buyerID, $sellerBitcoinInfo['bitcoin_address'], $amount); buckys_get_messages(); // this will flash the messages return $flag; }
/** * Add notification for the users whose 'My post approved' set 1. * * @param Int $ownerID * @param Int $topicID * @param Int $replyID */ public function addNotificationsForPendingPost($ownerID, $topicID, $replyID = null) { global $db, $BUCKYS_GLOBALS; $forumSettings = BuckysUser::getUserForumSettings($ownerID); $activity = new BuckysActivity(); if ($forumSettings['notifyRepliedToMyTopic']) { if ($replyID == null) { $activity->addActivity($ownerID, $topicID, 'forum', BuckysForumNotification::ACTION_TYPE_TOPIC_APPROVED, 0); } else { $activity->addActivity($ownerID, $topicID, 'forum', BuckysForumNotification::ACTION_TYPE_REPLY_APPROVED, $replyID); } } return true; }
public function getFriendListAction() { global $TNB_GLOBALS, $db; $data = $_POST; $keyword = isset($data['keyword']) ? $data['keyword'] : null; $token = isset($data['TOKEN']) ? trim($data['TOKEN']) : null; $sort = "pop"; $page = isset($data['page']) ? $data['page'] : null; if (!$token) { return ['STATUS_CODE' => STATUS_CODE_BAD_REQUEST, 'DATA' => buckys_api_get_error_result('Api token should not be blank')]; } if (!($userID = BuckysUsersToken::checkTokenValidity($token, "api"))) { return ['STATUS_CODE' => STATUS_CODE_UNAUTHORIZED, 'DATA' => buckys_api_get_error_result('Api token is not valid.')]; } //Search Results $searchIns = new BuckysSearch(); $pageIns = new BuckysPage(); $pageFollowerIns = new BuckysPageFollower(); $db_results = $searchIns->search($keyword, BuckysSearch::SEARCH_TYPE_USER_AND_PAGE, $sort, $page); $results = []; foreach ($db_results as $item) { if ($item['type'] == "user") { //Getting Detail Information $query = $db->prepare("SELECT \n u.firstName, \n u.lastName, \n u.userID, \n u.thumbnail, \n u.current_city, \n u.current_city_visibility,\n f.friendID \n FROM \n " . TABLE_USERS . " AS u\n LEFT JOIN " . TABLE_FRIENDS . " AS f ON f.userID=%d AND f.userFriendID=u.userID AND f.status='1'\n WHERE u.userID=%d", $userID, $item['userID']); $data = $db->getRow($query); if ($data['friendID']) { $row = []; $row['id'] = $item['userID']; $row['name'] = $data['firstName'] . " " . $data['lastName']; $row['description'] = $data['current_city_visibility'] ? $data['current_city'] : ""; $row['friendType'] = "user"; $row['thumbnail'] = THENEWBOSTON_SITE_URL . BuckysUser::getProfileIcon($data); $results[] = $row; } } } return ['STATUS_CODE' => STATUS_CODE_OK, 'DATA' => ["STATUS" => "SUCCESS", "RESULT" => $results]]; }
public function getPendingAction() { $request = $_GET; $token = isset($request['TOKEN']) ? trim($request['TOKEN']) : null; if (!$token) { return ['STATUS_CODE' => STATUS_CODE_BAD_REQUEST, 'DATA' => buckys_api_get_error_result('Api token should not be blank')]; } if (!($userID = BuckysUsersToken::checkTokenValidity($token, "api"))) { return ['STATUS_CODE' => STATUS_CODE_UNAUTHORIZED, 'DATA' => buckys_api_get_error_result('Api token is not valid.')]; } $friends = BuckysFriend::getPendingRequests($userID); $results = []; foreach ($friends as $row) { $item = []; $item['id'] = $row['userID']; $item['name'] = $row['fullName']; $item['thumbnail'] = THENEWBOSTON_SITE_URL . BuckysUser::getProfileIcon($row['userID']); $item['description'] = $row['city']; $item['friendType'] = $row['status']; $results[] = $item; } return ['STATUS_CODE' => STATUS_CODE_OK, 'DATA' => ["STATUS" => "SUCCESS", "RESULT" => $results]]; }
function buckys_api_format_date($userID, $date, $format = 'F j, Y') { global $TNB_GLOBALS; $timeOffset = 0; $userInfo = BuckysUser::getUserBasicInfo($userID); $timeOffset = $TNB_GLOBALS['timezone'][$userInfo['timezone']]; $strDate = ""; $now = time(); $today = date("Y-m-d"); $cToday = date("Y-m-d", strtotime($date)); if ($cToday == $today) { $h = floor(($now - strtotime($date)) / 3600); $m = floor(($now - strtotime($date)) % 3600 / 60); $s = floor(($now - strtotime($date)) % 3600 % 60); if ($s > 40) { $m++; } if ($h > 0) { $strDate = $h . " hour" . ($h > 1 ? "s " : " "); } if ($m > 0) { $strDate .= $m . " minute" . ($m > 1 ? "s " : " "); } if ($strDate == "") { if ($s == 0) { $s = 1; } $strDate .= $s . " second" . ($s > 1 ? "s " : " "); } $strDate .= "ago"; } else { $strDate = date($format, strtotime($date) + $timeOffset * 60 * 60); // $strDate = date("F j, Y h:i A", strtotime($date)); } return $strDate; }
/** * Remove page followers when removing page * * @param mixed $pageID */ public function removeAllFollowersByPageID($pageID) { global $db; if (!is_numeric($pageID)) { return; } //Getting Followers $query = $db->prepare("SELECT userID FROM " . TABLE_PAGES . " WHERE pageID=%d", $pageID); $pageCreatorId = $db->getVar($query); //Getting Followers $query = $db->prepare("SELECT count(*) FROM " . TABLE_PAGE_FOLLOWERS . " WHERE pageID=%d", $pageID); $followers = $db->getVar($query); if ($followers > 0) { BuckysUser::updateStats($pageCreatorId, 'pageFollowers', -1 * $followers); } $query = sprintf("DELETE FROM %s WHERE pageID=%d", TABLE_PAGE_FOLLOWERS, $pageID); $db->query($query); return; }
buckys_redirect('/index.php'); } //Getting UserData from Id $userData = BuckysUser::getUserLinks($userID); if (isset($_POST['action'])) { //Check the user id is same with the current logged user id if ($_POST['userID'] != $userID) { echo 'Invalid Request!'; exit; } //Save Address if ($_POST['action'] == 'save_links') { $data = array(); for ($i = 0; $i < count($_POST['title']); $i++) { $data[] = array('title' => $_POST['title'][$i], 'url' => $_POST['url'][$i], 'visibility' => $_POST['visibility'][$i]); } //Update User Phone numbers if (BuckysUser::updateUserLinks($userID, $data)) { echo 'Success'; } else { echo $db->getLastError(); } exit; } } buckys_enqueue_stylesheet('account.css'); buckys_enqueue_stylesheet('info.css'); buckys_enqueue_javascript('info.js'); $BUCKYS_GLOBALS['content'] = 'info_links'; $BUCKYS_GLOBALS['title'] = "Info Links - BuckysRoom"; require DIR_FS_TEMPLATE . $BUCKYS_GLOBALS['template'] . "/" . $BUCKYS_GLOBALS['layout'] . ".php";
echo $subCat['categoryID']; ?> " style="font-weight:bold;"><?php echo $subCat['categoryName']; ?> </a> <br/> <span style="color:#999999;font-size:11px;"><?php echo $categoryDescription; ?> </span> </td> <td> <?php if ($subCat['lastTopicID'] > 0) { echo '<a href="/profile.php?user='******'lastPosterID'] . '"><img src="' . BuckysUser::getProfileIcon($subCat['lastPosterID']) . '" class="poster-icon" /></a>'; echo "<a href='/forum/topic.php?id=" . $subCat['lastTopicID'] . "'>"; if (strlen($subCat['lastPostTitle']) > 200) { echo substr($subCat['lastPostTitle'], 0, 195) . "..."; } else { echo $subCat['lastPostTitle']; } echo "</a><br />"; ?> <a style="font-weight:bold;" href="/profile.php?user=<?php echo $subCat['lastPosterID']; ?> "><?php echo $subCat['lastPosterName']; ?>
<?php foreach ($tradeList as $tradeData) { $myPrefix = ''; $theirPrefix = ''; if ($tradeData['sellerID'] == $view['myID']) { //I'm seller for this tradeData $myPrefix = 'seller'; $theirPrefix = 'buyer'; } else { //I'm buyer for this tradeData $myPrefix = 'buyer'; $theirPrefix = 'seller'; } $userIns = new BuckysUser(); $tradeData['theirBasicInfo'] = $userIns->getUserBasicInfo($tradeData[$theirPrefix . 'ID']); $myTrackingNumber = $tradeData[$myPrefix . 'TrackingNo']; $theirTrackingNumber = $tradeData[$theirPrefix . 'TrackingNo']; // $myItemImage = fn_buckys_get_item_first_image_thumb($tradeData[$myPrefix . 'ItemImages']); // $theirItemImage = fn_buckys_get_item_first_image_thumb($tradeData[$theirPrefix . 'ItemImages']); $myItemImage = fn_buckys_get_item_first_image_normal($tradeData[$myPrefix . 'ItemImages']); $theirItemImage = fn_buckys_get_item_first_image_normal($tradeData[$theirPrefix . 'ItemImages']); $sendMessageLink = '/messages_compose.php?to=' . $tradeData[$theirPrefix . 'ID']; $dateCreated = date('n/j/y', strtotime($tradeData['tradeCreatedDate'])); $myItemLink = '/trade/view.php?id=' . $tradeData[$myPrefix . 'ItemID']; $theirItemLink = '/trade/view.php?id=' . $tradeData[$theirPrefix . 'ItemID']; $totalRating = 'No'; $positiveRating = ''; if (isset($tradeData[$theirPrefix . 'TotalRating']) && $tradeData[$theirPrefix . 'TotalRating'] > 0) { $totalRating = $tradeData[$theirPrefix . 'TotalRating'];
<?php if (!isset($TNB_GLOBALS)) { die("Invalid Request!"); } $feedbackList = $view['feedback']; $userIns = new BuckysUser(); if (!$view['myRatingInfo']) { $view['myRatingInfo'] = []; } ?> <section id="main_section"> <?php buckys_get_panel('trade_top_search'); ?> <section id="feedback-left-panel"> <?php $myInfo = $userIns->getUserBasicInfo($view['myID']); $myData = BuckysUser::getUserData($view['myID']); $totalRating = 'No'; $positiveRating = ''; if ($view['myRatingInfo']['totalRating'] != '' && $view['myRatingInfo']['totalRating'] > 0) { $totalRating = $view['myRatingInfo']['totalRating']; if (is_numeric($view['myRatingInfo']['positiveRating'])) { $positiveRating = number_format($view['myRatingInfo']['positiveRating'] / $totalRating * 100, 2, '.', '') . '% Positive'; } } ?>
?> Posts on <?php echo $userData['firstName']; ?> 's Profile <?php } ?> </h3> <a href="/profile.php?user=<?php echo $userID; ?> "><img src="<?php echo BuckysUser::getProfileIcon($userID); ?> " class="postIcons"/></a> <div class="new-post-row"> <form method="post" id="newpostform" action="/manage_post.php"> <div id="new-post-nav"> <a href="#" class="post-text selected">Text</a> <span>|</span> <a href="#" class="post-image">Photo</a> <span>|</span> <a href="#" class="post-video">Video</a> </div> <textarea name="content" class="newPost" placeholder="Create a new post..."></textarea> <div id="new-video-url"> <label style="font-weight:bold;font-size:11px;" for="video-url">YouTube URL:</label> <input type="text" name="youtube_url" id="youtube_url" class="input" value=""/></div> <div class='privacy-row'>
/** * @param $userID * @param $commentID * @return bool */ public static function deleteComment($userID, $commentID) { global $db; $query = $db->prepare("SELECT c.commentID, c.postID FROM " . TABLE_COMMENTS . " AS c LEFT JOIN " . TABLE_POSTS . " AS p ON p.postID=c.postID WHERE c.commentID=%s AND (c.commenter=%s OR p.poster=%s)", $commentID, $userID, $userID); $row = $db->getRow($query); if (!$row) { return false; } else { $cID = $row['commentID']; $postID = $row['postID']; $db->query('DELETE FROM ' . TABLE_COMMENTS . " WHERE commentID=" . $cID); //Remove Activity $db->query('DELETE FROM ' . TABLE_MAIN_ACTIVITIES . " WHERE actionID=" . $cID); //Remove From Report $db->query('DELETE FROM ' . TABLE_REPORTS . " WHERE objectType='comment' AND objectID=" . $cID); //Update comments on the posts table $query = $db->prepare('UPDATE ' . TABLE_POSTS . ' SET `comments`=`comments` - 1 WHERE postID=%d', $postID); $db->query($query); $postData = BuckysPost::getPostById($postID); //Update User Stats BuckysUser::updateStats($postData['poster'], 'comments', -1); return true; } }
/** * Delete Reply * * @param Int $replyID * @return bool */ public static function deleteReply($replyID) { global $db; $query = $db->prepare("SELECT * FROM " . TABLE_FORUM_REPLIES . " WHERE replyID=%d", $replyID); $reply = $db->getRow($query); if ($reply) { if ($reply['status'] == 'publish') { //Getting Topic $query = $db->prepare("SELECT * FROM " . TABLE_FORUM_TOPICS . " WHERE topicID=%d", $reply['topicID']); $topic = $db->getRow($query); //Update Replies Count For Topic $query = "UPDATE " . TABLE_FORUM_TOPICS . " SET `replies`=`replies` - 1 WHERE topicID=" . $reply['topicID']; $db->query($query); //Update Replies Count For Category $query = "UPDATE " . TABLE_FORUM_CATEGORIES . " SET `replies`=`replies` - 1 WHERE categoryID=" . $topic['categoryID']; $db->query($query); $db->query("UPDATE " . TABLE_USERS . " SET `posts_count`=`posts_count` - 1 WHERE userID=" . $reply['creatorID']); $db->query("UPDATE " . TABLE_USERS . " SET `posts_rating`=`posts_rating`" . ($reply['votes'] > 0 ? '-' : '+') . abs($reply['votes']) . " WHERE userID=" . $reply['creatorID']); //Update Stats BuckysUser::updateStats($topic['creatorID'], 'replies', -1); BuckysUser::updateStats($reply['creatorID'], 'voteUps', -1 * $reply['votes']); } //Remove Reply Votes $query = "DELETE FROM " . TABLE_FORUM_VOTES . " WHERE objectID=" . $reply['replyID']; $db->query($query); //Delete Frome Reports Table $query = "DELETE FROM " . TABLE_REPORTS . " WHERE objectType='reply' AND objectID=" . $reply['replyID']; $db->query($query); //Remove Reply $query = "DELETE FROM " . TABLE_FORUM_REPLIES . " WHERE replyID=" . $reply['replyID']; $db->query($query); BuckysForumTopic::updateTopicLastReplyID($reply['topicID']); BuckysForumCategory::updateCategoryLastTopicID($topic['categoryID']); return true; } return false; }
<?php require dirname(__FILE__) . '/includes/bootstrap.php'; //Getting Current User ID if (!($userID = buckys_is_logged_in())) { buckys_redirect('/index.php', MSG_NOT_LOGGED_IN_USER, MSG_TYPE_ERROR); } $albumID = isset($_REQUEST['albumID']) ? $_REQUEST['albumID'] : ''; if (!$albumID || !BuckysAlbum::checkAlbumOwner($albumID, $userID)) { buckys_redirect("/photo_albums.php", MSG_INVALID_REQUEST, MSG_TYPE_ERROR); } //Getting UserData from Id $userData = BuckysUser::getUserData($profileID); //Getting Album $album = BuckysAlbum::getAlbum($albumID); //Getting Photos $myphotos = BuckysPost::getPhotosByUserID($userID, $userID, BuckysPost::INDEPENDENT_POST_PAGE_ID, true); $albumPhotos = BuckysAlbum::getPhotos($albumID); //Getting Album Photos if (isset($_POST['action'])) { //Create New Album if ($_POST['action'] == 'save-album') { //If the album title is empty, throw error //If the album title is empty, throw error if (trim($_POST['album_name']) == '') { buckys_redirect('/photo_album_edit.php?albumID=' . $_POST['albumID'], MSG_ALBUM_TITLE_EMPTY, MSG_TYPE_ERROR); } BuckysAlbum::updateAlbum($_POST['albumID'], trim($_POST['album_name']), $_POST['visibility'], $_POST['photos']); buckys_redirect("/photo_album_edit.php?albumID=" . $_POST['albumID'], MSG_ALBUM_UPDATED); } else { if ($_POST['action'] == 'remove-from-album' || $_POST['action'] == 'add-to-album') {
if ($isAjax) { $resultXML = ['status' => 'error', 'message' => $db->getLastError()]; render_result_xml($resultXML); } else { buckys_redirect($return, $db->getLastError(), MSG_TYPE_ERROR); } } } } } } } exit; } //Getting UserData from Id $userData = BuckysUser::getUserData($userID); $page = isset($_GET['page']) ? $_GET['page'] : 1; if ($type == 'all') { $totalCount = BuckysFriend::getNumberOfFriends($userID); } else { if ($type == 'pending') { $totalCount = BuckysFriend::getNumberOfPendingRequests($userID); } else { if ($type == 'requested') { $totalCount = BuckysFriend::getNumberOfReceivedRequests($userID); } } } //Init Pagination Class $pagination = new Pagination($totalCount, BuckysFriend::$COUNT_PER_PAGE, $page); $page = $pagination->getCurrentPage();
/** * Load Private Messenger * */ function loadMessenger() { global $db, $userID; //Getting Friends from the Buddy List $messengerSettings = BuckysUser::getUserBasicInfo($userID); $uIDs = array(); //Return HTML ob_start(); ?> <div id="private_messenger_main_wrap"> <div class="box_nav_row"> <a href="#" class="close_box_link"> </a> <!-- <a href="#" class="minimize_box_link"> </a>--> </div> <h2>Private Messenger</h2> <div class="chat_user_list" id="private_messenger_buddies_list"> <?php echo BuckysPrivateMessenger::getUserListHTML($userID, $uIDs); ?> </div> <div class="below_chat_user_list <?php if ($messengerSettings['messenger_privacy'] == 'all') { ?> add-user-to-buddylist-hidden<?php } ?> " id="add-user-to-buddylist"> <form name="adduserform" id="adduserform"> <h2>Add Friends</h2> <span id="add-user-to-buddylist-inputholder"> <input type="text" class="input below_chat_user_list_input" id="add-user-to-buddylist-input" /> <input type="submit" value="Add" class="redButton" /> </span> <!-- <div id="selected-users-list"></div>--> <div class="clear"></div> <?php echo render_loading_wrapper(); ?> </form> </div> <div class="below_chat_user_list" id="messenger_btn_box"> <span><input type="button" id="settings_messenger_btn" class="redButton" value="Settings"></span> </div> </div> <?php BuckysPrivateMessenger::updateConversationList($userID, $uIDs); $convList = isset($_SESSION['converation_list']) ? $_SESSION['converation_list'] : array(); ?> <div id="private_messenger_conversation_wrap" <?php if (!buckys_not_null($convList)) { ?> style="display: none;"<?php } ?> > <div class="box_nav_row"> <a href="#" class="close_box_link"> </a> <a href="#" class="minimize_box_link"> </a> <div href="#" class="options_link" id="private-messenger-options-link"> Options <ul> <li><a href="#" id="pm-box-clear-history-link">Clear history</a></li> <li><a href="#" id="pm-box-block-user-link">Block User</a></li> </ul> </div> </div> <div id="private_messenger_conversation_lft"> <div id="private_messenger_opened_chats"> <?php foreach ($convList as $i => $uID) { $tUInfo = BuckysUser::getUserBasicInfo($uID); ?> <a href="#" data-id="<?php echo $uID; ?> " <?php if ($i == 0) { ?> class="actived"<?php } ?> data-encrypted="<?php echo buckys_encrypt_id($uID); ?> "><?php echo $tUInfo['firstName'] . " " . $tUInfo['lastName']; ?> <span title="close" class="close-conversation">X</span></a><?php } ?> </div> </div> <div id="private_messenger_conversation_rgt"> <?php foreach ($convList as $i => $uID) { $tUInfo = BuckysUser::getUserBasicInfo($uID); ?> <div class="private_messenger_conversation_contr" <?php if ($i > 0) { ?> style="display: none;"<?php } ?> id="private_messenger_conversation_contr<?php echo $uID; ?> "> <?php echo BuckysPrivateMessenger::getMessagesHTML($userID, $uID, 'all'); ?> </div> <?php } ?> <div id="private_messenger_send_message_contr"> <form name="newmessageform" id="newmessageform" action="" method="post"> <input class="under_private_message_conversation_area_input" id="new_private_message" class="input" type="text" /> </form> </div> </div> <div class="clear"></div> </div> <?php $html = ob_get_contents(); ob_end_clean(); return $html; }
public function deleteAccountAction() { $data = $_POST; $token = isset($data['TOKEN']) ? trim($data['TOKEN']) : null; if (!$token) { return ['STATUS_CODE' => STATUS_CODE_BAD_REQUEST, 'DATA' => buckys_api_get_error_result('Api token should not be blank')]; } if (!($userID = BuckysUsersToken::checkTokenValidity($token, "api"))) { return ['STATUS_CODE' => STATUS_CODE_UNAUTHORIZED, 'DATA' => buckys_api_get_error_result('Api token is not valid.')]; } $current = BuckysUser::getUserData($userID); if (!buckys_validate_password($data['password'], $current['password'])) { return ['STATUS_CODE' => STATUS_CODE_OK, 'DATA' => buckys_api_get_error_result('Current password is incorrect.')]; } else { if (BuckysUser::deleteUserAccount($userID)) { return ['STATUS_CODE' => STATUS_CODE_OK, 'DATA' => ['STATUS' => 'SUCCESS']]; } else { return ['STATUS_CODE' => STATUS_CODE_UNAUTHORIZED, 'DATA' => buckys_api_get_error_result('There was an error to saving your information.')]; } } exit; }
<?php $moderators = BuckysForumModerator::getForumModerators($category['categoryID']); ?> <h4>Moderators</h4> <table class="moderators"> <tr> <td style="width: 35px;"> <a href="/profile.php?user=<?php echo !$category['creatorID'] ? TNB_USER_ID : $category['creatorID']; ?> "> <img src="<?php echo BuckysUser::getProfileIcon(!$category['creatorID'] ? TNB_USER_ID : $category['creatorID']); ?> " class="poster-icon"/> </a> </td> <td> <a href="/profile.php?user=<?php echo !$category['creatorID'] ? TNB_USER_ID : $category['creatorID']; ?> "> <b><?php echo buckys_get_user_name(!$category['creatorID'] ? TNB_USER_ID : $category['creatorID']); ?> </b> </a><br/> <span>Administrator</span> </td>
<?php require dirname(__FILE__) . '/includes/bootstrap.php'; //Getting Current User ID $userID = buckys_is_logged_in(); //Getting User ID from Parameter $profileID = get_secure_integer($_GET['user']); $postID = buckys_escape_query_integer(isset($_GET['post']) ? $_GET['post'] : null); //If the parameter is null, goto homepage if (!$profileID) { buckys_redirect('/index.php'); } //Getting UserData from Id $userData = BuckysUser::getUserData($profileID); //Goto Homepage if the userID is not correct if (!buckys_not_null($userData) || !BuckysUser::checkUserID($profileID, true)) { buckys_redirect('/index.php'); } $postType = isset($_GET['type']) ? $_GET['type'] : 'all'; if (!in_array($postType, ['all', 'user', 'friends'])) { $postType = 'all'; } //if logged user can see all resources of the current user $canViewPrivate = $userID == $profileID || BuckysFriend::isFriend($userID, $profileID) || BuckysFriend::isSentFriendRequest($profileID, $userID); $posts = BuckysPost::getPostsByUserID($profileID, $userID, BuckysPost::INDEPENDENT_POST_PAGE_ID, $canViewPrivate, $postID, null, $postType); /*if( !buckys_not_null($posts) ) { //Goto Index Page buckys_redirect('/index.php', MSG_INVALID_REQUEST, MSG_TYPE_ERROR); }*/ //Mark the notifications to read
if ($photo['poster'] != $userID) { buckys_redirect('/photo_manage.php', MSG_INVALID_REQUEST, MSG_TYPE_ERROR); } //Update Photo Caption and Privacy BuckysPost::updatePhoto($userID, $_POST); //Change user profile image if ($_POST['photo_visibility'] == 2) { if (!$photo['is_profile']) { BuckysPost::createProfileImage($photo, $_POST); } //Update profile image with old one BuckysUser::updateUserFields($userID, array('thumbnail' => $photo['image'])); } else { if ($userData['thumbnail'] == $photo['image']) { //If it was a profile image and now it is not, remove it from the profile image BuckysUser::updateUserFields($userID, array('thumbnail' => '')); } } //Save Album if (isset($_POST['album']) && $_POST['album'] != '' && isset($albums[$_POST['album']])) { BuckysAlbum::addPhotoToAlbum($_POST['album'], $photo['postID']); } buckys_redirect('/photo_edit.php?photoID=' . $photo['postID'], MSG_PHOTO_UPDATED, MSG_TYPE_SUCCESS); exit; } } $set_profile = isset($_GET['set_profile']) ? $_GET['set_profile'] : null; buckys_enqueue_stylesheet('account.css'); buckys_enqueue_stylesheet('posting.css'); buckys_enqueue_stylesheet('jquery.Jcrop.css'); buckys_enqueue_javascript('jquery.Jcrop.js');
<div class="offer-received"> <?php if (isset($offerReceived) && count($offerReceived) > 0) { ?> <div class="top-header-cont"> <div class="n1">My Item</div> <div class="n2">Their Item</div> <div class="n3">Actions</div> <div class="clear"></div> </div> <?php foreach ($offerReceived as $offerData) { $userIns = new BuckysUser(); $offerData['basicInfo'] = $userIns->getUserBasicInfo($offerData['offeredUserID']); // $myItemImage = fn_buckys_get_item_first_image_thumb($offerData['targetImages']); // $offeredItemImage = fn_buckys_get_item_first_image_thumb($offerData['offeredImages']); $myItemImage = fn_buckys_get_item_first_image_normal($offerData['targetImages']); $offeredItemImage = fn_buckys_get_item_first_image_normal($offerData['offeredImages']); $sendMessageLink = '/messages_compose.php?to=' . $offerData['offeredUserID']; $theirID = $offerData['offeredUserID']; $dateOffered = date('n/j/y H:i', strtotime($offerData['offerCreatedDate'])); $strTimeLeft = ''; if (strtotime($offerData['targetExpiryDate']) > strtotime($offerData['offeredExpiryDate'])) { $strTimeLeft = fn_buckys_get_item_time_left($offerData['offeredExpiryDate']); } else { $strTimeLeft = fn_buckys_get_item_time_left($offerData['targetExpiryDate']); } $targetItemLink = '/trade/view.php?id=' . $offerData['targetItemID'];
buckys_redirect('/index.php'); } //Getting UserData from Id $userData = BuckysUser::getUserEmploymentHistory($userID); if (isset($_POST['action'])) { //Check the user id is same with the current logged user id if ($_POST['userID'] != $userID) { echo 'Invalid Request!'; exit; } //Save Address if ($_POST['action'] == 'save_employment') { $data = []; for ($i = 0; $i < count($_POST['employer']); $i++) { $data[] = ['employer' => $_POST['employer'][$i], 'start' => $_POST['from'][$i], 'end' => $_POST['to'][$i], 'visibility' => $_POST['visibility'][$i]]; } //Update User Phone numbers if (BuckysUser::updateUserEmploymentHistory($userID, $data)) { echo 'Success'; } else { echo $db->getLastError(); } exit; } } buckys_enqueue_stylesheet('account.css'); buckys_enqueue_stylesheet('info.css'); buckys_enqueue_javascript('info.js'); $TNB_GLOBALS['content'] = 'info_employment'; $TNB_GLOBALS['title'] = "Employment History - " . TNB_SITE_NAME; require DIR_FS_TEMPLATE . $TNB_GLOBALS['template'] . "/" . $TNB_GLOBALS['layout'] . ".php";
<?php require dirname(__FILE__) . '/includes/bootstrap.php'; if (!($userID = buckys_is_logged_in())) { buckys_redirect('/index.php', MSG_NOT_LOGGED_IN_USER, MSG_TYPE_ERROR); } $view = []; //Save Shipping info $tradeUserIns = new BuckysTradeUser(); if (isset($_POST['action']) && $_POST['action'] == 'saveNotifyInfo') { $result = BuckysUser::saveUserNotificationSettings($userID, $_POST); if ($result === true) { buckys_redirect('/notify.php', MSG_NOTIFICATION_SETTINGS_SAVED); } else { buckys_redirect('/notify.php', $result, MSG_TYPE_ERROR); } } //Get offer_received info $view['trade_user_info'] = $tradeUserIns->getUserByID($userID); $userNotifyInfo = BuckysUser::getUserNotificationSettings($userID); if (empty($view['trade_user_info'])) { buckys_redirect('/index.php', MSG_INVALID_REQUEST, MSG_TYPE_ERROR); } buckys_enqueue_stylesheet('account.css'); buckys_enqueue_stylesheet('info.css'); $TNB_GLOBALS['content'] = 'notify'; $TNB_GLOBALS['title'] = 'Notification Settings - ' . TNB_SITE_NAME; require DIR_FS_TEMPLATE . $TNB_GLOBALS['template'] . "/" . $TNB_GLOBALS['layout'] . ".php";
<?php require dirname(__FILE__) . '/includes/bootstrap.php'; if (!($userID = buckys_is_logged_in())) { buckys_redirect('/index.php', MSG_NOT_LOGGED_IN_USER, MSG_TYPE_ERROR); } $view = array(); //Save Shipping info $tradeUserIns = new BuckysTradeUser(); if (isset($_POST['action']) && $_POST['action'] == 'saveNotifyInfo') { $result = BuckysUser::saveUserNotificationSettings($userID, $_POST); if ($result === true) { buckys_redirect('/notify.php', MSG_NOTIFICATION_SETTINGS_SAVED); } else { buckys_redirect('/notify.php', $result, MSG_TYPE_ERROR); } } //Get offer_received info $view['trade_user_info'] = $tradeUserIns->getUserByID($userID); $forumNotifyInfo = BuckysUser::getUserForumSettings($userID); if (empty($view['trade_user_info'])) { buckys_redirect('/index.php', MSG_INVALID_REQUEST, MSG_TYPE_ERROR); } buckys_enqueue_stylesheet('account.css'); buckys_enqueue_stylesheet('info.css'); $BUCKYS_GLOBALS['content'] = 'notify'; $BUCKYS_GLOBALS['title'] = 'Notification Settings - BuckysRoom'; require DIR_FS_TEMPLATE . $BUCKYS_GLOBALS['template'] . "/" . $BUCKYS_GLOBALS['layout'] . ".php";
} $bitcoinClass = new BuckysBitcoin(); //Create Wallet if it is not created $bitcoinInfo = BuckysUser::getUserBitcoinInfo($userID); if (!$bitcoinInfo) { $bitcoinInfo = $bitcoinClass->createWallet($TNB_GLOBALS['user']['userID'], $TNB_GLOBALS['user']['email']); } if (isset($_POST['action']) && $_POST['action'] == 'send-bitcoins') { //Check Token if (!buckys_check_form_token()) { buckys_redirect("/wallet.php", MSG_INVALID_REQUEST, MSG_TYPE_ERROR); } $toAddress = $_POST['receiver']; $amount = doubleval($_POST['amount']); $password = $_POST['password']; $user = BuckysUser::getUserData($TNB_GLOBALS['user']['userID']); $is_error = false; if (!$password || !buckys_validate_password($password, $user['password'])) { buckys_redirect("/wallet.php", MSG_CURRENT_PASSWORD_NOT_CORRECT, MSG_TYPE_ERROR); } if (!$toAddress) { buckys_redirect("/wallet.php", MSG_ENTER_BITCOINS_ADDRESS_OF_RECIPIENT, MSG_TYPE_ERROR); } if (!$amount || $amount <= 0) { buckys_redirect("/wallet.php", MSG_INVALID_BITCOIN_AMOUNT, MSG_TYPE_ERROR); } if (!$is_error) { $bitcoinClass->sendBitcoin($userID, $toAddress, $amount); } buckys_redirect("/wallet.php"); }
<?php require dirname(__FILE__) . '/includes/bootstrap.php'; //If the user is not logged in, redirect to the index page if (!($userID = buckys_is_logged_in())) { buckys_redirect('/index.php'); } if (isset($_GET['to'])) { $receiver = BuckysUser::getUserData($_GET['to']); } if (isset($_GET['reply'])) { $replyTo = BuckysMessage::getMessage($_GET['reply']); } if (isset($_POST['action'])) { //Check the user id is same with the current logged user id if ($_POST['userID'] != $userID) { echo 'Invalid Request!'; exit; } //Save Address if ($_POST['action'] == 'compose_message') { //Show Results header('Content-type: application/xml'); if (!BuckysMessage::composeMessage($_POST)) { render_result_xml(['status' => 'error', 'message' => buckys_get_messages()]); } else { render_result_xml(['status' => 'success', 'message' => buckys_get_messages()]); } exit; } }