function upgrade15_usernameupdate() { global $db, $output, $mybb; $output->print_header("Performing Queries"); echo "<p>Performing username updates..</p>"; flush(); require_once MYBB_ROOT . "inc/datahandler.php"; require_once MYBB_ROOT . "inc/datahandlers/user.php"; $not_renameable = array(); // Because commas can cause some problems with private message sending in usernames we have to remove them $query = $db->simple_select("users", "uid, username", "username LIKE '%,%'"); while ($user = $db->fetch_array($query)) { $userhandler = new UserDataHandler('update'); $updated_user = array("uid" => $user['uid'], "username" => str_replace(',', '', $user['username'])); $userhandler->set_data($updated_user); if (!$userhandler->validate_user()) { $not_renameable[] = htmlspecialchars_uni($user['username']); } else { $userhandler->update_user(); } } if (!empty($not_renameable)) { echo "<span style=\"color: red;\">NOTICE:</span> The following users could not be renamed automatically. Please rename these users in the Admin CP manually after the upgrade process has finished completing:<br />\n\t\t<ul>\n\t\t<li>"; echo implode('</li>\\n<li>', $not_renameable); echo "</li>\n\t\t</ul>"; } $contents .= "Click next to continue with the upgrade process.</p>"; $output->print_contents($contents); $output->print_footer("15_done"); }
function upgrade15_usernameupdate() { global $db, $output, $mybb, $plugins; $output->print_header("Performing Queries"); echo "<p>Performing username updates..</p>"; flush(); require_once MYBB_ROOT . "inc/datahandler.php"; require_once MYBB_ROOT . "inc/datahandlers/user.php"; // Load plugin system for datahandler require_once MYBB_ROOT . "inc/class_plugins.php"; $plugins = new pluginSystem(); $not_renameable = array(); // Because commas can cause some problems with private message sending in usernames we have to remove them $query = $db->simple_select("users", "uid, username", "username LIKE '%,%'"); while ($user = $db->fetch_array($query)) { $prefix = ''; $userhandler = new UserDataHandler('update'); do { $username = str_replace(',', '', $user['username']) . '_' . $prefix; $updated_user = array("uid" => $user['uid'], "username" => $username); $userhandler->set_data($updated_user); ++$prefix; } while (!$userhandler->verify_username() || $userhandler->verify_username_exists()); if (!$userhandler->validate_user()) { $not_renameable[] = htmlspecialchars_uni($user['username']); } else { $db->update_query("users", array('username' => $db->escape_string($username)), "uid='{$user['uid']}'"); $db->update_query("posts", array('username' => $db->escape_string($username)), "uid='{$user['uid']}'"); $db->update_query("threads", array('username' => $db->escape_string($username)), "uid='{$user['uid']}'"); $db->update_query("threads", array('lastposter' => $db->escape_string($username)), "lastposteruid='{$user['uid']}'"); $db->update_query("forums", array('lastposter' => $db->escape_string($username)), "lastposteruid='{$user['uid']}'"); update_stats(array("numusers" => "+0")); } } if (!empty($not_renameable)) { echo "<span style=\"color: red;\">NOTICE:</span> The following users could not be renamed automatically. Please rename these users in the Admin CP manually after the upgrade process has finished completing:<br />\n\t\t<ul>\n\t\t<li>"; echo implode('</li>\\n<li>', $not_renameable); echo "</li>\n\t\t</ul>"; } $contents .= "Click next to continue with the upgrade process.</p>"; $output->print_contents($contents); $output->print_footer("15_done"); }
function upgrade15_usernameupdate() { global $db, $output, $mybb, $plugins; $output->print_header("Wykonywanie zapytań"); echo "<p>Trwa wykonywanie wymaganych zapytań do bazy danych...</p>"; flush(); require_once MYBB_ROOT . "inc/datahandler.php"; require_once MYBB_ROOT . "inc/datahandlers/user.php"; // Load plugin system for datahandler require_once MYBB_ROOT . "inc/class_plugins.php"; $plugins = new pluginSystem(); $not_renameable = array(); // Because commas can cause some problems with private message sending in usernames we have to remove them $query = $db->simple_select("users", "uid, username", "username LIKE '%,%'"); while ($user = $db->fetch_array($query)) { $prefix = ''; $userhandler = new UserDataHandler('update'); do { $username = str_replace(',', '', $user['username']) . '_' . $prefix; $updated_user = array("uid" => $user['uid'], "username" => $username); $userhandler->set_data($updated_user); ++$prefix; } while (!$userhandler->verify_username() || $userhandler->verify_username_exists()); if (!$userhandler->validate_user()) { $not_renameable[] = htmlspecialchars_uni($user['username']); } else { $db->update_query("users", array('username' => $db->escape_string($username)), "uid='{$user['uid']}'"); $db->update_query("posts", array('username' => $db->escape_string($username)), "uid='{$user['uid']}'"); $db->update_query("threads", array('username' => $db->escape_string($username)), "uid='{$user['uid']}'"); $db->update_query("threads", array('lastposter' => $db->escape_string($username)), "lastposteruid='{$user['uid']}'"); $db->update_query("forums", array('lastposter' => $db->escape_string($username)), "lastposteruid='{$user['uid']}'"); update_stats(array("numusers" => "+0")); } } if (!empty($not_renameable)) { echo "<span style=\"color: red;\">OSTRZEŻENIE:</span> Poniższe loginy nie mogły zostać zmienione automatycznie. Zmień je ręcznie po zakończeniu procesu aktualizacji.<br />\n\t\t<ul>\n\t\t<li>"; echo implode('</li>\\n<li>', $not_renameable); echo "</li>\n\t\t</ul>"; } $contents .= "Naciśnij przycisk Dalej, aby kontynuować proces aktualizacji.</p>"; $output->print_contents($contents); $output->print_footer("15_done"); }
$updated_user['coppa_user'] = 0; } } if ($mybb->input['new_password']) { $updated_user['password'] = $mybb->input['new_password']; $updated_user['password2'] = $mybb->input['confirm_new_password']; } $updated_user['options'] = array("allownotices" => $mybb->input['allownotices'], "hideemail" => $mybb->input['hideemail'], "subscriptionmethod" => $mybb->input['subscriptionmethod'], "invisible" => $mybb->input['invisible'], "dstcorrection" => $mybb->input['dstcorrection'], "threadmode" => $mybb->input['threadmode'], "showsigs" => $mybb->input['showsigs'], "showavatars" => $mybb->input['showavatars'], "showquickreply" => $mybb->input['showquickreply'], "receivepms" => $mybb->input['receivepms'], "receivefrombuddy" => $mybb->input['receivefrombuddy'], "pmnotice" => $mybb->input['pmnotice'], "daysprune" => $mybb->input['daysprune'], "showcodebuttons" => intval($mybb->input['showcodebuttons']), "pmnotify" => $mybb->input['pmnotify'], "showredirect" => $mybb->input['showredirect']); if ($mybb->settings['usertppoptions']) { $updated_user['options']['tpp'] = intval($mybb->input['tpp']); } if ($mybb->settings['userpppoptions']) { $updated_user['options']['ppp'] = intval($mybb->input['ppp']); } // Set the data of the user in the datahandler. $userhandler->set_data($updated_user); $errors = ''; // Validate the user and get any errors that might have occurred. if (!$userhandler->validate_user()) { $errors = $userhandler->get_friendly_errors(); } else { // Are we removing an avatar from this user? if ($mybb->input['remove_avatar']) { $extra_user_updates = array("avatar" => "", "avatardimensions" => "", "avatartype" => ""); remove_avatars($user['uid']); } // Are we uploading a new avatar? if ($_FILES['avatar_upload']['name']) { $avatar = upload_avatar($_FILES['avatar_upload'], $user['uid']); if ($avatar['error']) { $errors = array($avatar['error']);
// Set up user handler. require_once MYBB_ROOT . "inc/datahandlers/user.php"; $userhandler = new UserDataHandler("insert"); $coppauser = 0; if (isset($mybb->cookies['coppauser'])) { $coppauser = (int) $mybb->cookies['coppauser']; } // Set the data for the new user. $user = array("username" => $mybb->get_input('username'), "password" => $mybb->get_input('password'), "password2" => $mybb->get_input('password2'), "email" => $mybb->get_input('email'), "email2" => $mybb->get_input('email2'), "usergroup" => $usergroup, "referrer" => $mybb->get_input('referrername'), "timezone" => $mybb->get_input('timezoneoffset'), "language" => $mybb->get_input('language'), "profile_fields" => $mybb->get_input('profile_fields', MyBB::INPUT_ARRAY), "regip" => $session->packedip, "coppa_user" => $coppauser, "regcheck1" => $mybb->get_input('regcheck1'), "regcheck2" => $mybb->get_input('regcheck2'), "registration" => true); // Do we have a saved COPPA DOB? if (isset($mybb->cookies['coppadob'])) { list($dob_day, $dob_month, $dob_year) = explode("-", $mybb->cookies['coppadob']); $user['birthday'] = array("day" => $dob_day, "month" => $dob_month, "year" => $dob_year); } $user['options'] = array("allownotices" => $mybb->get_input('allownotices', MyBB::INPUT_INT), "hideemail" => $mybb->get_input('hideemail', MyBB::INPUT_INT), "subscriptionmethod" => $mybb->get_input('subscriptionmethod', MyBB::INPUT_INT), "receivepms" => $mybb->get_input('receivepms', MyBB::INPUT_INT), "pmnotice" => $mybb->get_input('pmnotice', MyBB::INPUT_INT), "pmnotify" => $mybb->get_input('pmnotify', MyBB::INPUT_INT), "invisible" => $mybb->get_input('invisible', MyBB::INPUT_INT), "dstcorrection" => $mybb->get_input('dstcorrection')); $userhandler->set_data($user); $errors = ""; if (!$userhandler->validate_user()) { $errors = $userhandler->get_friendly_errors(); } if ($mybb->settings['enablestopforumspam_on_register']) { require_once MYBB_ROOT . '/inc/class_stopforumspamchecker.php'; $stop_forum_spam_checker = new StopForumSpamChecker($plugins, $mybb->settings['stopforumspam_min_weighting_before_spam'], $mybb->settings['stopforumspam_check_usernames'], $mybb->settings['stopforumspam_check_emails'], $mybb->settings['stopforumspam_check_ips'], $mybb->settings['stopforumspam_log_blocks']); try { if ($stop_forum_spam_checker->is_user_a_spammer($user['username'], $user['email'], get_ip())) { error($lang->sprintf($lang->error_stop_forum_spam_spammer, $stop_forum_spam_checker->getErrorText(array('stopforumspam_check_usernames', 'stopforumspam_check_emails', 'stopforumspam_check_ips')))); } } catch (Exception $e) { if ($mybb->settings['stopforumspam_block_on_error']) { error($lang->error_stop_forum_spam_fetching); }
/** * Verifies the author of a post and fetches the username if necessary. * * @return boolean True if the author information is valid, false if invalid. */ function verify_author() { global $mybb; $post =& $this->data; // Don't have a user ID at all - not good (note, a user id of 0 will still work). if (!isset($post['uid'])) { $this->set_error("invalid_user_id"); return false; } else { if ($post['uid'] > 0 && empty($post['username'])) { $user = get_user($post['uid']); $post['username'] = $user['username']; } else { if ($post['uid'] == 0 && $post['username'] != $lang->guest) { // Set up user handler require_once MYBB_ROOT . "inc/datahandlers/user.php"; $userhandler = new UserDataHandler(); $data_array = array('username' => $post['username']); $userhandler->set_data($data_array); if (!$userhandler->verify_username()) { // invalid username $this->errors = array_merge($this->errors, $userhandler->get_errors()); return false; } if ($userhandler->verify_username_exists()) { // username is in use $this->errors = array_merge($this->errors, $userhandler->get_errors()); return false; } } } } // After all of this, if we still don't have a username, force the username as "Guest" (Note, this is not translatable as it is always a fallback) if (!$post['username']) { $post['username'] = "******"; } return true; }
/** * Updates userdata * * @param array $userdata Data of the User (uid is required as index) * @param boolean Return errors as MyBB array or nicely formated? * @return boolean|array */ function updateUser($userdata = array(), $inline_error = true) { // Userdata Array needs to contain the UserID if (!isset($userdata['uid'])) { $this->_errorAndDie('A UserID (Array-Key: <i>uid</i>) is required to update a user'); } require_once MYBB_ROOT . 'inc/functions_user.php'; require_once MYBB_ROOT . 'inc/datahandlers/user.php'; $userhandler = new UserDataHandler('update'); $userhandler->set_data($userdata); if (!$userhandler->validate_user()) { $errors = $userhandler->get_friendly_errors(); return $inline_error === true ? inline_error($errors) : $errors; } $userhandler->update_user(); return true; }
/** * Registers an user with Facebook data */ public function register($user) { if (!$user) { return false; } global $mybb, $session, $plugins, $lang; require_once MYBB_ROOT . "inc/datahandlers/user.php"; $userhandler = new UserDataHandler("insert"); $plength = 8; if ($mybb->settings['minpasswordlength']) { $plength = (int) $mybb->settings['minpasswordlength']; } $password = random_str($plength); $new_user = array("username" => $user['name'], "password" => $password, "password2" => $password, "email" => $user['email'], "email2" => $user['email'], "usergroup" => (int) $mybb->settings['myfbconnect_usergroup'], "regip" => $session->ipaddress, "longregip" => my_ip2long($session->ipaddress), "options" => array("hideemail" => 1)); /* Registration might fail for custom profile fields required at registration... workaround = IN_ADMINCP defined. Placed straight before the registration process to avoid conflicts with third party plugins messying around with templates (I'm looking at you, PHPTPL) */ define("IN_ADMINCP", 1); $userhandler->set_data($new_user); if ($userhandler->validate_user()) { $user_info = $userhandler->insert_user(); $plugins->run_hooks("member_do_register_end"); // Deliver a welcome PM if ($mybb->settings['myfbconnect_passwordpm']) { require_once MYBB_ROOT . "inc/datahandlers/pm.php"; $pmhandler = new PMDataHandler(); $pmhandler->admin_override = true; // Make sure admins haven't done something bad $fromid = (int) $mybb->settings['myfbconnect_passwordpm_fromid']; if (!$mybb->settings['myfbconnect_passwordpm_fromid'] or !user_exists($mybb->settings['myfbconnect_passwordpm_fromid'])) { $fromid = 0; } $message = $mybb->settings['myfbconnect_passwordpm_message']; $subject = $mybb->settings['myfbconnect_passwordpm_subject']; $thingsToReplace = array("{user}" => $user_info['username'], "{password}" => $password); // Replace what needs to be replaced foreach ($thingsToReplace as $find => $replace) { $message = str_replace($find, $replace, $message); } $pm = array("subject" => $subject, "message" => $message, "fromid" => $fromid, "toid" => array($user_info['uid'])); // Some defaults :) $pm['options'] = array("signature" => 1); $pmhandler->set_data($pm); // Now let the PM handler do all the hard work if ($pmhandler->validate_pm()) { $pmhandler->insert_pm(); } else { error($lang->sprintf($lang->myfbconnect_error_report, $pmhandler->get_friendly_errors())); } } // Post a message on the user's wall if ($mybb->settings['myfbconnect_postonwall']) { $this->post_on_wall($mybb->settings['myfbconnect_postonwall_message']); } // Finally return our new user data return $user_info; } else { return array('error' => $userhandler->get_friendly_errors()); } return true; }
function sign_in_func() { global $db, $lang, $theme, $plugins, $mybb, $session, $settings, $cache, $time, $mybbgroups, $mobiquo_config, $user, $register; // Load global language phrases $lang->load("member"); $parser = new postParser(); $token = trim($_POST['token']); $code = trim($_POST['code']); $username = $mybb->input['username']; $password = $mybb->input['password']; $post_email = $mybb->input['email']; $status = ''; if (!empty($token) && !empty($code)) { $result = tt_register_verify($token, $code); if ($result->result && !empty($result->email)) { $email = $result->email; if (!empty($post_email) && $post_email != $email) { $status = 3; } else { if ($user = tt_get_user_by_email($email)) { if (!empty($username) && strtolower($username) != strtolower($user['username'])) { $status = 3; } else { $register = 0; return tt_login_success(); } } else { if (!empty($username) && !empty($email)) { $profile = $result->profile; if ($mybb->settings['disableregs'] == 1) { error($lang->registrations_disabled); } // Set up user handler. require_once MYBB_ROOT . "inc/datahandlers/user.php"; $userhandler = new UserDataHandler("insert"); $birthday_arr = explode('-', $profile->birthday); $bday = array("day" => $birthday_arr[2], "month" => $birthday_arr[1], "year" => $birthday_arr[0]); $user_field = array('fid3' => ucfirst($profile->gender), 'fid1' => $profile->location, 'fid2' => $profile->description); if ($mybb->settings['regtype'] == "admin") { $usergroup = 5; } else { $usergroup = isset($mybb->settings['tapatalk_register_group']) ? $mybb->settings['tapatalk_register_group'] : 2; } // Set the data for the new user. $user = array("username" => $mybb->input['username'], "password" => $mybb->input['password'], "password2" => $mybb->input['password'], "email" => $email, "email2" => $email, "usergroup" => $usergroup, "referrer" => '', "timezone" => $mybb->settings['timezoneoffset'], "language" => '', "regip" => $session->ipaddress, "longregip" => my_ip2long($session->ipaddress), "coppa_user" => 0, "birthday" => $bday, "website" => $profile->link, "user_fields" => $user_field, "signature" => $profile->signature, "option" => array(), "regdate" => TIME_NOW, "lastvisit" => TIME_NOW); if (!empty($profile->avatar_url)) { $updated_avatar = tt_update_avatar_url($profile->avatar_url); } $userhandler->set_data($user); $userhandler->verify_birthday(); $userhandler->verify_options(); if ($userhandler->verify_username_exists()) { $status = 1; } else { if (!$userhandler->verify_password() || !$userhandler->verify_username()) { $errors = $userhandler->get_friendly_errors(); error($errors[0]); } else { $userhandler->set_validated(true); $user = $userhandler->insert_user(); if (!empty($updated_avatar)) { $db->update_query("users", $updated_avatar, "uid='" . $user['uid'] . "'"); } $register = 1; return tt_login_success(); } } } else { $status = 2; } } } } else { if (!$result->result) { if (!empty($result->result_text)) { error($result->result_text); } else { error("Tapatalk ID verify faile!"); } } } if (!empty($status)) { $response = new xmlrpcval(array('result' => new xmlrpcval(0, 'boolean'), 'result_text' => new xmlrpcval('', 'base64'), 'status' => new xmlrpcval($status, 'string')), 'struct'); return new xmlrpcresp($response); } } else { error("Invlaid params!"); } }
/** * * Redirect Output - steam_output_to_misc * - - - - - - - - - - - - - - - * @desc This function is holds the actions issued by the Steam Login plugin. * @since 1.0 * @version 1.6 * */ function steam_output_to_misc() { global $mybb, $db, $session; // The standard action to redirect the user to Steam community. if ($mybb->input['action'] == 'steam_login') { steam_redirect(); } // close if($mybb->input['action'] == 'steam_login') if ($mybb->input['action'] == 'steam_return') { $get_key = $db->fetch_array($db->simple_select("settings", "name, value", "name = 'steamlogin_api_key'")); $check_update_username = $db->fetch_array($db->simple_select("settings", "name, value", "name = 'steamlogin_update_username'")); $check_update_avatar = $db->fetch_array($db->simple_select("settings", "name, value", "name = 'steamlogin_update_avatar'")); $check_avatar_size = $db->fetch_array($db->simple_select("settings", "name, value", "name = 'steamlogin_avatar_size'")); $check_required_field = $db->fetch_array($db->simple_select("settings", "name, value", "name = 'steamlogin_required_field'")); if ($get_key['value'] == null) { die("<strong>Not Configured</strong> The Steam Login plugin hasn't been configured correctly. Please ensure an API key is set in the Configuration settings."); } else { require_once MYBB_ROOT . 'inc/class_steam.php'; require_once MYBB_ROOT . 'inc/class_lightopenid.php'; require_once MYBB_ROOT . 'inc/functions.php'; require_once MYBB_ROOT . 'inc/class_session.php'; $steam = new steam(); $steam_open_id = new LightOpenID(); $steam_open_id->validate(); $return_explode = explode('/', $steam_open_id->identity); $steamid = end($return_explode); $steam_info = $steam->get_user_info($steamid); // Check the status. if ($steam_info['status'] == 'success') { $steamid = $steam_info['steamid']; $personaname = $steam_info['personaname']; $profileurl = $steam_info['profileurl']; $avatar = $steam_info['avatars']['medium']; // Check the avatar size set in the database. if ($check_avatar_size['value'] == '0') { $avatar = $steam_info['avatars']['small']; } if ($check_avatar_size['value'] == '2') { $avatar = $steam_info['avatars']['large']; } $personaname = strip_tags($personaname); //This is so people can not use tags that display. $personaname = $db->escape_string($personaname); // Perform a check to see if the user already exists in the database. $user_check = $db->num_rows($db->simple_select("users", "*", "loginname = '{$steamid}'")); if ($user_check == 0) { $password = random_str(8); $email = $steamid . '@steamcommunity.com'; $default_usergroup = 2; // On a standard MyBB installation this is the group: Registered require_once MYBB_ROOT . "inc/datahandlers/user.php"; $userhandler = new UserDataHandler("insert"); $new_user_data = array("username" => $personaname, "password" => $password, "password2" => $password, "email" => $email, "email2" => $email, "avatar" => $avatar, "usergroup" => $default_usergroup, "displaygroup" => $default_usergroup, "website" => $profileurl, "regip" => $session->ipaddress, "longregip" => my_ip2long($session->ipaddress), "loginname" => $steamid); if ($check_required_field['value'] != "" and is_numeric($check_required_field['value'])) { // Check the field exists. $field_exists = $db->num_rows($db->simple_select("profilefields", "*", "fid = '" . $check_required_field['value'] . "'")); if ($field_exists > 0) { $new_user_data['profile_fields']['fid' . $check_required_field['value']] = $steamid; } } $userhandler->set_data($new_user_data); if ($userhandler->validate_user()) { $user_info = $userhandler->insert_user(); } // close if ($userhandler->validate_user()) } else { // close if($user_check == 0) $update = array(); // Init our update array. // Do our checks for both username and avatar. if ($check_update_username['value'] == 1) { $update['username'] = $personaname; } if ($check_update_avatar['value'] == 1) { $update['avatar'] = $avatar; } // Run our update query if the array isn't empty. if (!empty($update)) { $db->update_query('users', $update, "loginname = '{$steamid}'"); } } // close else $user = $db->fetch_array($db->simple_select("users", "*", "loginname = '{$steamid}'")); // Login the user. my_setcookie("mybbuser", $user['uid'] . "_" . $user['loginkey'], true, true); my_setcookie("sid", $session->sid, -1, true); redirect("index.php", 'Your account has been authenticated and you have been logged in.<br/> Powered By <a href="http://www.steampowered.com" target="_blank">Steam</a>', 'Login via Steam'); } // close if($steam_info['status'] == 'success') } // close else } // close if($mybb->input['action'] == 'steam_login') }