// Some security stuff...
if (ereg(basename(__FILE__), $_SERVER['PHP_SELF'])) {
- $INC = substr(dirname(__FILE__), 0, strpos(dirname(__FILE__), "/inc") + 4) . "/security.php";
+ $INC = substr(dirname(__FILE__), 0, strpos(dirname(__FILE__), "/inc") + 4)."/security.php";
require($INC);
}
// Open a table (you may want to add some header stuff here)
function OPEN_TABLE($PERCENT = "", $CLASS = "", $ALIGN="left", $VALIGN="", $td_only=false) {
global $table_cnt;
+
// Count tables so we can generate CSS classes for every table... :-)
if (empty($CLASS)) {
// Class is empty so count one up and create a class
// Vertical align is given
if (!empty($VALIGN)) $OUT .= " valign=\"".$VALIGN."\"";
- $OUT .= ">
-<TR>
- <TD";
+ $OUT .= ">\n<TR>\n<TD";
if (!empty($ALIGN)) $OUT .=" align=\"".$ALIGN."\"";
$OUT .= " class=\"".$CLASS."\">";
- OUTPUT_HTML($OUT);
+ OUTPUT_HTML($OUT);
}
// Close a table (you may want to add some footer stuff here)
function CLOSE_TABLE($ADD="") {
- OUTPUT_HTML(" </TD>
-</TR>");
+ OUTPUT_HTML(" </TD>\n</TR>");
if (!empty($ADD)) OUTPUT_HTML($ADD);
OUTPUT_HTML("</TABLE>");
}
}
// Compile and run finished rendered HTML code
- while (strpos($OUTPUT, "{!") > 0) {
- $eval = "\$OUTPUT = \"" . COMPILE_CODE(addslashes($OUTPUT)) . "\";";
+ while (strpos($OUTPUT, '{!') > 0) {
+ // Prepare the content and eval() it...
+ $newContent = "";
+ $eval = "\$newContent = \"".COMPILE_CODE(addslashes($OUTPUT))."\";";
@eval($eval);
+
+ if (empty($newContent)) {
+ // Something went wrong!
+ die("Evaluation error:<pre>".htmlentities($eval)."</pre>");
+ }
+ $OUTPUT = $newContent;
}
// Output code here, DO NOT REMOVE! ;-)
}
// Compile and run finished rendered HTML code
- while (strpos($OUTPUT, "{!") > 0) {
- $eval = "\$OUTPUT = \"" . COMPILE_CODE(addslashes($OUTPUT)) . "\";";
- @eval($eval);
+ while (strpos($OUTPUT, '{!') > 0) {
+ $eval = "\$OUTPUT = \"".COMPILE_CODE(addslashes($OUTPUT))."\";";
+ eval($eval);
}
// Output code here, DO NOT REMOVE! ;-)
// Output the raw HTML code
function OUTPUT_RAW ($HTML) {
- if ((mxchange_installed) && (basename($_SERVER['PHP_SELF']) != "install.php")) {
- // Not in install-mode so strip slashes away
- echo stripslashes($HTML);
- } else {
- // Output directly in install-mode
- echo $HTML;
- }
+ // Output stripped HTML code to avoid broken JavaScript code, etc.
+ echo stripslashes($HTML);
- // Flush the output
- flush();
+ // Flush the output if only _OB_CACHING is not "on"
+ if (_OB_CACHING != "on") {
+ // Flush it
+ flush();
+ }
}
// Add a fatal error message to the queue array
-function ADD_FATAL ($message, $extra="")
-{
+function ADD_FATAL ($message, $extra="") {
global $FATAL;
if (empty($extra)) {
// Regular text message to add to $FATAL
// Add more variables which you want to use in your template files
global $DATA, $_CONFIG, $username;
+ // Make all template names lowercase
+ $template = strtolower($template);
+
// Count the template load
if (!isset($_CONFIG['num_templates'])) $_CONFIG['num_templates'] = 0;
$_CONFIG['num_templates']++;
if (empty($GLOBALS['refid'])) $GLOBALS['refid'] = 0;
$REFID = $GLOBALS['refid'];
+ // DEPRECATED!!!
if ($template == "member_support_form") {
// Support request of a member
- $result = SQL_QUERY_ESC("SELECT sex, surname, family FROM "._MYSQL_PREFIX."_user_data WHERE userid=%d LIMIT 1",
+ $result = SQL_QUERY_ESC("SELECT sex, surname, family FROM "._MYSQL_PREFIX."_user_data WHERE userid=%s LIMIT 1",
array($GLOBALS['userid']), __FILE__, __LINE__);
list($sex, $surname, $family) = SQL_FETCHROW($result);
SQL_FREERESULT($result);
$date_time = MAKE_DATETIME(time(), "1");
// Base directory
- $BASE = PATH."templates/".GET_LANGUAGE()."/html/";
+ $BASE = sprintf("%stemplates/%s/html/", PATH, GET_LANGUAGE());
$MODE = "";
// Check for admin/guest/member templates
);
// Probe for it...
- if (file_exists($file2)) $file = $file2;
+ if (FILE_READABLE($file2)) $file = $file2;
// Remove variable from memory
unset($file2);
}
// Does the special template exists?
- if (!file_exists($file)) {
+ if (!FILE_READABLE($file)) {
// Reset to default template
$file = $BASE.$template.".tpl";
- }
+ } // END - if
// Now does the final template exists?
- if (file_exists($file)) {
+ if (FILE_READABLE($file)) {
// The local file does exists so we load it. :)
$tmpl_file = implode("", file($file));
// Replace ' to our own chars to preventing them being quoted
- while (strpos($tmpl_file, "\'") !== false) { $tmpl_file = str_replace("\'", "{QUOT}", $tmpl_file); }
+ while (strpos($tmpl_file, "\'") !== false) { $tmpl_file = str_replace("\'", '{QUOT}', $tmpl_file); }
// Do we have to compile the code?
+ $ret = "";
if ((strpos($tmpl_file, "\$") !== false) || (strpos($tmpl_file, '{--') !== false) || (strpos($tmpl_file, '--}') > 0)) {
// Okay, compile it!
$tmpl_file = "\$ret=\"".COMPILE_CODE(addslashes($tmpl_file))."\";";
// Add surrounding HTML comments to help finding bugs faster
$ret = "<!-- Template ".$template." - Start -->\n".$ret."<!-- Template ".$template." - End -->\n";
- } elseif ((IS_ADMIN()) || ((mxchange_installing) && (!mxchange_installed))) {
+ } elseif ((IS_ADMIN()) || ((isBooleanConstantAndTrue('mxchange_installing')) && (!isBooleanConstantAndTrue('mxchange_installed')))) {
// Only admins shall see this warning or when installation mode is active
$ret = "<br /><SPAN class=\"guest_failed\">".TEMPLATE_404."</SPAN><br />
(".basename($file).")<br />
// Output direct
OUTPUT_HTML($ret);
}
- } elseif (DEBUG_MODE) {
+ } elseif (isBooleanConstantAndTrue('DEBUG_MODE')) {
// Warning, empty output!
return "E:".$template."<br />\n";
}
$SUBJECT = html_entity_decode($SUBJECT);
// Set from header
- if (!eregi("@", $TO)) {
+ if ((!eregi("@", $TO)) && ($TO > 0)) {
// Value detected, load email from database
if (EXT_IS_ACTIVE("msg")) {
ADD_MESSAGE_TO_BOX($TO, $SUBJECT, $MSG, $HTML);
return;
} else {
- $result_email = SQL_QUERY_ESC("SELECT email FROM "._MYSQL_PREFIX."_user_data WHERE userid=%d LIMIT 1", array(bigintval($TO)), __FILE__, __LINE__);
+ $result_email = SQL_QUERY_ESC("SELECT email FROM "._MYSQL_PREFIX."_user_data WHERE userid=%s LIMIT 1", array(bigintval($TO)), __FILE__, __LINE__);
list($TO) = SQL_FETCHROW($result_email);
SQL_FREERESULT($result_email);
}
+ } elseif ($TO == 0) {
+ // Is the webmaster!
+ $TO = WEBMASTER;
}
// Not in PHPMailer-Mode
// Append header
$FROM .= LOAD_EMAIL_TEMPLATE("header");
}
- } elseif (DEBUG_MODE) {
+ } elseif (isBooleanConstantAndTrue('DEBUG_MODE')) {
if (empty($FROM)) {
// Load email header template
$FROM = LOAD_EMAIL_TEMPLATE("header");
}
// Fix HTML parameter (default is no!)
- if (empty($HTML)) $HTML = 'N';
- if (DEBUG_MODE) {
+ if (empty($HTML)) $HTML = "N";
+ if (isBooleanConstantAndTrue('DEBUG_MODE')) {
// In debug mode we want to display the mail instead of sending it away so we can debug this part
echo "<PRE>
".htmlentities(trim($FROM))."
Subject : ".$SUBJECT."
Message : ".$MSG."
</PRE>\n";
- } elseif (($HTML == 'Y') && (EXT_IS_ACTIVE("html_mail", true))) {
+ } elseif (($HTML == "Y") && (EXT_IS_ACTIVE("html_mail", true))) {
// Send mail as HTML away
SEND_HTML_EMAIL($TO, $SUBJECT, $MSG, $FROM);
} elseif (!empty($TO)) {
// Send Mail away
SEND_RAW_EMAIL($TO, COMPILE_CODE($SUBJECT), COMPILE_CODE($MSG), $FROM);
- } elseif ($HTML == 'N') {
+ } elseif ($HTML == "N") {
// Problem found!
SEND_RAW_EMAIL(WEBMASTER, COMPILE_CODE($SUBJECT), COMPILE_CODE($MSG), $FROM);
}
// get new instance
$mail = new PHPMailer();
- $mail->PluginDir = PATH."inc/phpmailer/";
+ $mail->PluginDir = sprintf("%sinc/phpmailer/", PATH);
$mail->IsSMTP();
$mail->SMTPAuth = true;
$mail->Port = 25;
$mail->Username = SMTP_USER;
$mail->Password = SMTP_PASSWORD;
- $mail->From = $from;
+ if (empty($from)) {
+ $mail->From = WEBMASTER;
+ } else {
+ $mail->From = $from;
+ }
$mail->FromName = MAIN_TITLE;
$mail->Subject = $subject;
if ((EXT_IS_ACTIVE("html_mail")) && (strip_tags($msg) != $msg)) {
return $PASS;
}
//
-function MAKE_DATETIME($time, $mode="0")
+function MAKE_DATETIME ($time, $mode="0")
{
if ($time == 0) {
// Never happend
switch (GET_LANGUAGE())
{
case "de": // German date / time format
- switch ($mode)
- {
+ switch ($mode) {
case "0": $ret = date("d.m.Y \u\m H:i \U\h\\r", $time); break;
case "1": $ret = strtolower(date("d.m.Y - H:i", $time)); break;
case "2": $ret = date("d.m.Y|H:i", $time); break;
break;
default: // Default is the US date / time format!
- switch ($mode)
- {
+ switch ($mode) {
case "0": $ret = date("r", $time); break;
case "1": $ret = date("Y-m-d - g:i A", $time); break;
case "2": $ret = date("y-m-d|H:i", $time); break;
}
// Translates the american decimal dot into a german comma
-function TRANSLATE_COMMA($dotted, $cut=true)
-{
+function TRANSLATE_COMMA ($dotted, $cut=true) {
global $_CONFIG;
+
// Default is 3 you can change this in admin area "Misc -> Misc Options"
if (empty($_CONFIG['max_comma'])) $_CONFIG['max_comma'] = "3";
- if (!ereg("\.", $dotted)) $dotted .= ".".str_repeat("0", $_CONFIG['max_comma']);
- if ($cut) {
- // Remove trailing zeros
- $dot = str_replace(".", "x", $dotted);
- while(substr($dot, -1, 1) == "0") {
- $dot = substr($dot, 0, -1);
- }
+ $maxComma = $_CONFIG['max_comma'];
- if (substr($dot, -1, 1) == "x") {
- // Last char is the 'x'
- $dotted = substr($dot, 0, -1);
+ // Cut zeros off?
+ if ($cut) {
+ // Test for commata if in cut-mode
+ $com = explode(".", $dotted);
+ if (count($com) > 1) {
+ // Commata found, so only zeros?
+ if ($com[1] == str_repeat("0", strlen($com[1]))) {
+ // Only zeros, so don't display them
+ $maxComma = 0;
+ } // END - if
} else {
- // Last char is a number
- $dotted = str_replace("x", ".", $dot);
+ // Don't display commatas even if there are none... ;-)
+ $maxComma = 0;
}
- }
+ } // END - if
+
+ // Debug log
+ //DEBUG_LOG(__FUNCTION__.":dotted={$dotted},maxComma={$maxComma}");
// Translate it now
switch (GET_LANGUAGE()) {
case "de":
- $pos = strpos($dotted, ".");
- if ($pos > 0) {
- if ($cut) {
- // Cut x numbers behind comma
- $dotted = str_replace(".", ",", substr($dotted, 0, ($pos + $_CONFIG['max_comma'] + 1)));
- } else {
- // Replace comma with dot
- $dotted = str_replace(".", ",", $dotted);
- }
- } elseif (!$cut) {
- if (empty($pos)) {
- $dotted = "0,".str_repeat("0", $_CONFIG['max_comma']);
- } else {
- $dotted .= ",".str_repeat("0", $_CONFIG['max_comma']);
- }
- }
+ $dotted = number_format($dotted, $maxComma, ",", ".");
break;
default:
- if (!$cut) {
- if ($pos > 0) {
- $dotted = substr($dotted, 0, ($pos + $_CONFIG['max_comma'] + 1));
- } else {
- $dotted .= ".".str_repeat("0", $_CONFIG['max_comma']);
- }
- }
+ $dotted = number_format($dotted, $maxComma, ".", ",");
break;
}
+
+ // Return translated value
return $dotted;
}
//
-function DEREFERER($URL) {
- $URL = URL."/modules.php?module=loader&url=".urlencode(base64_encode(COMPILE_CODE($URL)));
+function DEREFERER ($URL) {
+ $URL = URL."/modules.php?module=loader&url=".urlencode(base64_encode(gzcompress($URL)));
return $URL;
}
//
-function TRANSLATE_SEX($sex) {
+function TRANSLATE_SEX ($sex) {
switch ($sex)
{
case "M": $ret = SEX_M; break;
return $ret;
}
//
-function GET_POOL_TYPE($PT)
-{
+function GET_POOL_TYPE($PT) {
switch ($PT)
{
case "TEMP" : $ret = POOL_TEMP; break;
return $ret;
}
//
-function FRAMETESTER($URL)
-{
- global $_SERVER;
- $URL = URL."/modules.php?module=frametester&url=".urlencode(base64_encode(COMPILE_CODE($URL)));
- return $URL;
+function FRAMETESTER($URL) {
+ // Prepare frametester URL
+ $frametesterUrl = sprintf("%s/modules.php?module=frametester&url=%s",
+ URL,
+ urlencode(base64_encode(gzcompress(COMPILE_CODE($URL))))
+ );
+ return $frametesterUrl;
}
//
-function SELECTION_COUNT($array)
-{
- $ret = "0";
- if (is_array($array))
- {
- foreach ($array as $key=>$sel)
- {
+function SELECTION_COUNT($array) {
+ $ret = 0;
+ if (is_array($array)) {
+ foreach ($array as $key => $sel) {
if (!empty($sel)) $ret++;
}
}
return $ret;
}
//
-function IMG_CODE ($code, $type, $DATA, $uid)
-{
+function IMG_CODE ($code, $type, $DATA, $uid) {
return "<IMG border=\"0\" alt=\"Code\" src=\"".URL."/mailid_top.php?uid=".$uid."&".$type."=".$DATA."&mode=img&code=".$code."\">";
}
//
-function TRANSLATE_STATUS($status)
-{
+function TRANSLATE_STATUS($status) {
switch ($status)
{
case "UNCONFIRMED":
return $ret;
}
//
-function GET_LANGUAGE()
-{
- if (!empty($_GET['mx_lang']))
- {
+function GET_LANGUAGE() {
+ if (!empty($_GET['mx_lang'])) {
// Accept only first 2 chars
$lang = substr($_GET['mx_lang'], 0, 2);
- }
- else
- {
+ } else {
// Do nothing
$lang = "";
}
$ret = DEFAULT_LANG;
// Check GET variable and cookie
- if (!empty($lang))
- {
+ if (!empty($lang)) {
// Check if main language file does exist
- if (file_exists(PATH."inc/language/".$lang.".php"))
- {
+ if (FILE_READABLE(PATH."inc/language/".$lang.".php")) {
// Okay found, so let's update cookies
SET_LANGUAGE($lang);
}
- }
- elseif (!empty($_SESSION['mx_lang']))
- {
+ } elseif (!isSessionVariableSet('mx_lang')) {
// Return stored value from cookie
- $ret = $_SESSION['mx_lang'];
+ $ret = get_session('mx_lang');
+
+ // Fixes a warning before the session has the mx_lang constant
+ if (empty($ret)) $ret = DEFAULT_LANG;
}
return $ret;
}
//
-function SET_LANGUAGE($lang)
-{
+function SET_LANGUAGE($lang) {
global $_CONFIG;
// Accept only first 2 chars!
// Set cookie
set_session("mx_lang", $lang);
-
- // Set array
- $_SESSION['mx_lang'] = $lang;
}
//
-function LOAD_EMAIL_TEMPLATE($template, $content="", $UID="0")
-{
+function LOAD_EMAIL_TEMPLATE($template, $content="", $UID="0") {
global $DATA, $_CONFIG, $REPLACER;
+ // Make sure all template names are lowercase!
+ $template = strtolower($template);
+
// Keept for backward-compatiblity (please replace these variables against our new {--CONST--} syntax!)
$MAIN_TITLE = MAIN_TITLE; $URL = URL; $WEBMASTER = WEBMASTER;
- $surname = ""; $family = ""; $nick = ""; $sex = 'N';
+ $surname = ""; $family = ""; $nick = ""; $sex = "N";
// Prepare IP number and User Agent
$REMOTE_ADDR = getenv('REMOTE_ADDR');
$HTTP_USER_AGENT = getenv('HTTP_USER_AGENT');
$ADMIN = MAIN_TITLE;
- if (!empty($_SESSION['admin_login']))
- {
+ if (isSessionVariableSet('admin_login')) {
// Load Admin data
$result = SQL_QUERY_ESC("SELECT email FROM "._MYSQL_PREFIX."_admins WHERE login='%s' LIMIT 1",
- array(SQL_ESCAPE($_SESSION['admin_login'])), __FILE__, __LINE__);
+ array(get_session('admin_login')), __FILE__, __LINE__);
list($ADMIN) = SQL_FETCHROW($result);
SQL_FREERESULT($result);
}
// Expiration in a nice output format
- if ($_CONFIG['auto_purge'] == 0)
- {
+ if ($_CONFIG['auto_purge'] == 0) {
// Will never expire!
$EXPIRATION = MAIL_WILL_NEVER_EXPIRE;
- }
- elseif (function_exists('CREATE_FANCY_TIME'))
- {
+ } elseif (function_exists('CREATE_FANCY_TIME')) {
// Create nice date string
$EXPIRATION = CREATE_FANCY_TIME($_CONFIG['auto_purge']);
- }
- else
- {
+ } else {
// Display days only
$EXPIRATION = round($_CONFIG['auto_purge']/60/60/24)." "._DAYS;
}
+
+ // DEPRECATED switch!
switch ($template)
{
case "bonus-mail": // Load data for the bonus mail
$DATA[10] = $UID;
// Replace variables
- foreach ($REPLACER as $key=>$value)
+ foreach ($REPLACER as $key => $value)
{
if (isset($DATA[$key])) $content = str_replace($value, $DATA[$key], $content);
}
$MAILID = $DATA[11];
// Replace variables
- foreach ($REPLACER as $key=>$value)
+ foreach ($REPLACER as $key => $value)
{
if (isset($DATA[$key])) $content = str_replace($value, $DATA[$key], $content);
}
case "back-admin":
case "back-member":
- $points = TRANSLATE_COMMA($DATA[10]);
+ $points = TRANSLATE_COMMA($DATA[10]);
break;
case "add-points":
- $points = $_POST['points'];
+ if (isset($_POST['points'])) {
+ $points = bigintval($_POST['points']);
+ } else {
+ $points = __POINTS_VALUE;
+ }
break;
case "guest_request_confirm":
}
// Load user's data
- if ($UID > 0)
- {
- if (EXT_IS_ACTIVE("nickname"))
- {
+ if ($UID > 0) {
+ if (EXT_IS_ACTIVE("nickname")) {
// Load nickname
- $result = SQL_QUERY_ESC("SELECT surname, family, sex, email, nickname FROM "._MYSQL_PREFIX."_user_data WHERE userid=%d LIMIT 1",
+ $result = SQL_QUERY_ESC("SELECT surname, family, sex, email, nickname FROM "._MYSQL_PREFIX."_user_data WHERE userid=%s LIMIT 1",
array(bigintval($UID)), __FILE__, __LINE__);
list($surname, $family, $sex, $email, $nick) = SQL_FETCHROW($result);
SQL_FREERESULT($result);
- }
- else
- {
+ } else {
// Load normal data
- $result = SQL_QUERY_ESC("SELECT surname, family, sex, email FROM "._MYSQL_PREFIX."_user_data WHERE userid=%d LIMIT 1",
+ $result = SQL_QUERY_ESC("SELECT surname, family, sex, email FROM "._MYSQL_PREFIX."_user_data WHERE userid=%s LIMIT 1",
array(bigintval($UID)), __FILE__, __LINE__);
list($surname, $family, $sex, $email) = SQL_FETCHROW($result);
SQL_FREERESULT($result);
$nick = "---";
}
- }
- else
- {
+ } else {
// Neutral sex and email address is default
- $sex = 'N';
+ $sex = "N";
$email = WEBMASTER;
}
$DATA['email'] = $email;
// Base directory
- $BASE = PATH."templates/".GET_LANGUAGE()."/emails/";
+ $BASE = sprintf("%stemplates/%s/emails/", PATH, GET_LANGUAGE());
// Check for admin/guest/member templates
- if (strpos($template, "admin_") > -1)
- {
+ if (strpos($template, "admin_") > -1) {
// Admin template found
$file = $BASE."admin/".$template.".tpl";
- }
- elseif (strpos($template, "guest_") > -1)
- {
+ } elseif (strpos($template, "guest_") > -1) {
// Guest template found
$file = $BASE."guest/".$template.".tpl";
- }
- elseif (strpos($template, "member_") > -1)
- {
+ } elseif (strpos($template, "member_") > -1) {
// Member template found
$file = $BASE."member/".$template.".tpl";
- }
- else
- {
+ } else {
// Test for extension
$test = substr($template, 0, strpos($template, "_"));
- if (EXT_IS_ACTIVE($test))
- {
+ if (EXT_IS_ACTIVE($test)) {
// Set extra path to extension's name
$file = $BASE.$test."/".$template.".tpl";
- }
- else
- {
+ } else {
// No special filename
$file = $BASE.$template.".tpl";
}
}
// Does the special template exists?
- if (!@file_exists($file))
- {
+ if (!FILE_READABLE($file)) {
// Reset to default template
$file = $BASE.$template.".tpl";
- }
+ } // END - if
// Now does the final template exists?
- if ((@file_exists($file)) && (is_readable($file)))
- {
+ $newContent = "";
+ if (FILE_READABLE($file)) {
// The local file does exists so we load it. :)
$tmpl_file = @implode("", @file($file));
$tmpl_file = addslashes($tmpl_file);
- // Compile code
- $tmpl_file = COMPILE_CODE($tmpl_file);
-
// Run code
- $tmpl_file = "\$content=\"".$tmpl_file."\";";
+ $tmpl_file = "\$newContent=\"".COMPILE_CODE($tmpl_file)."\";";
eval($tmpl_file);
- // Replace HTML confirm chars
- $content = html_entity_decode($content);
- }
- elseif (!empty($template))
- {
+ // Replace HTML conform chars
+ $newContent = html_entity_decode($newContent);
+ } elseif (!empty($template)) {
// Template file not found!
- $content = TEMPLATE_404.": ".$template."<br />
+ $newContent = TEMPLATE_404.": ".$template."<br />
".TEMPLATE_CONTENT."
-<PRE>".print_r($content, true)."</PRE>
+<PRE>".print_r($newContent, true)."</PRE>
".TEMPLATE_DATA."
<PRE>".print_r($DATA, true)."</PRE>
<br /><br />";
// Debug mode not active? Then remove the HTML tags
- if (!DEBUG_MODE) $content = strip_tags($content);
- }
- else
- {
+ if (!DEBUG_MODE) $newContent = strip_tags($newContent);
+ } else {
// No template name supplied!
- $content = NO_TEMPLATE_SUPPLIED;
+ $newContent = NO_TEMPLATE_SUPPLIED;
}
- return COMPILE_CODE($content);
+
+ // Is there some content?
+ if (empty($newContent)) {
+ // Compiling failed
+ $newContent = "Compiler error for template {$template}!";
+ } // END - if
+
+ // Return compiled content
+ return COMPILE_CODE($newContent);
}
//
-function MAKE_TIME($H, $M, $S, $stamp)
-{
+function MAKE_TIME($H, $M, $S, $stamp) {
// Extract day, month and year from given timestamp
$DAY = date("d", $stamp);
$MONTH = date("m", $stamp);
}
//
function LOAD_URL($URL, $addUrlData=true) {
- global $CSS, $_CONFIG, $link, $db, $footer;
+ global $CSS, $_CONFIG, $footer;
// Check if http(s):// is there
if ((substr($URL, 0, 7) != "http://") && (substr($URL, 0, 8) != "https://")) {
// Compile out URI codes
$URL = COMPILE_CODE($URL);
+ // Get output buffer
+ $OUTPUT = ob_get_contents();
+
+ // Clear it
+ ob_end_clean();
+
// Add some data to URL if cookies are not accepted
if (((!defined('__COOKIES')) || (!__COOKIES)) && ($addUrlData)) $URL = ADD_URL_DATA($URL);
OUTPUT_HTML("<A href=\"".$URL."\">".$URL."</A>");
} elseif (!headers_sent()) {
// Load URL when headers are not sent
+ /*
+ print("<pre>");
+ debug_print_backtrace();
+ die("</pre>URL={$URL}");
+ */
@header ("Location: ".str_replace("&", "&", $URL));
} else {
// Output error message
include(PATH."inc/header.php");
- OUTPUT_HTML(LOAD_URL_ERROR_1.$URL.LOAD_URL_ERROR_2);
+ LOAD_TEMPLATE("redirect_url", false, str_replace("&", "&", $URL));
include(PATH."inc/footer.php");
}
exit();
if ($constants) {
// BEFORE 0.2.1 : Language and data constants
// WITH 0.2.1+ : Only language constants
- $code = str_replace("{--", '".', str_replace("--}", '."', $code));
+ $code = str_replace('{--', '".', str_replace('--}', '."', $code));
// BEFORE 0.2.1 : Not used
// WITH 0.2.1+ : Data constants
- $code = str_replace("{!", '".', str_replace("!}", '."', $code));
+ $code = str_replace('{!', '".', str_replace("!}", '."', $code));
}
// Compile QUOT and other non-HTML codes
}
// But shall I keep simple quotes for later use?
- if ($simple) $code = str_replace("\'", "{QUOT}", $code);
+ if ($simple) $code = str_replace("\'", '{QUOT}', $code);
// Find $content[bla][blub] entries
@preg_match_all('/\$(content|DATA)((\[([a-zA-Z0-9-_]+)\])*)/', $code, $matches);
if ((count($matches) > 0) && (count($matches[0]) > 0)) {
// Replace all matches
$matchesFound = array();
- foreach ($matches[0] as $key=>$match) {
+ foreach ($matches[0] as $key => $match) {
// Avoid replacing matches multiple times
if (!isset($matchesFound[$match])) {
// Not yet replaced!
$code = str_replace($match, "\".".$match.".\"", $code);
$matchesFound[$match] = 1;
- }
+ } // END - if
// Take all string elements
if (("".bigintval($matches[4][$key])."" != $matches[4][$key]) && (!isset($matchesFound[$key."_".$matches[4][$key]]))) {
// Replace it in the code
- $code = str_replace("[".$matches[4][$key]."]", "['".$matches[4][$key]."']", $code);
+ $newMatch = str_replace("[".$matches[4][$key]."]", "['".$matches[4][$key]."']", $match);
+ $code = str_replace($match, $newMatch, $code);
$matchesFound[$key."_".$matches[4][$key]] = 1;
- }
+ } // END - if
}
}
$dummy = $array;
while ($primary_key < count($a_sort))
{
- foreach ($dummy[$a_sort[$primary_key]] as $key=>$value)
+ foreach ($dummy[$a_sort[$primary_key]] as $key => $value)
{
- foreach ($dummy[$a_sort[$primary_key]] as $key2=>$value2)
+ foreach ($dummy[$a_sort[$primary_key]] as $key2 => $value2)
{
$match = false;
if (!$nums)
if ($match)
{
// We have found two different values, so let's sort whole array
- foreach ($dummy as $sort_key=>$sort_val)
+ foreach ($dummy as $sort_key => $sort_val)
{
$t = $dummy[$sort_key][$key];
$dummy[$sort_key][$key] = $dummy[$sort_key][$key2];
case "day": // Day
for ($idx = 1; $idx < 32; $idx++)
{
- $OUT .= " <OPTION value=\"".$idx."\"";
+ $OUT .= "<OPTION value=\"".$idx."\"";
if ($DEFAULT == $idx) $OUT .= " selected=\"selected\"";
$OUT .= ">".$idx."</OPTION>\n";
}
break;
case "month": // Month
- foreach ($MONTH_DESCR as $month=>$descr)
+ foreach ($MONTH_DESCR as $month => $descr)
{
- $OUT .= " <OPTION value=\"".$month."\"";
+ $OUT .= "<OPTION value=\"".$month."\"";
if ($DEFAULT == $month) $OUT .= " selected=\"selected\"";
$OUT .= ">".$descr."</OPTION>\n";
}
{
for ($idx = $YEAR; $idx < ($YEAR + 11); $idx++)
{
- $OUT .= " <OPTION value=\"".$idx."\"";
+ $OUT .= "<OPTION value=\"".$idx."\"";
if ($DEFAULT == $idx) $OUT .= " selected=\"selected\"";
$OUT .= ">".$idx."</OPTION>\n";
}
// Current year minus 1
for ($idx = 2003; $idx <= ($YEAR + 1); $idx++)
{
- $OUT .= " <OPTION value=\"".$idx."\">".$idx."</OPTION>\n";
+ $OUT .= "<OPTION value=\"".$idx."\">".$idx."</OPTION>\n";
}
}
else
{
// Get current year and subtract 16 (for erotic content)
- $OUT .= " <OPTION value=\"1929\"><1930</OPTION>\n";
+ $OUT .= "<OPTION value=\"1929\"><1930</OPTION>\n";
$YEAR = date('Y', time()) - 16;
for ($idx = 1930; $idx <= $YEAR; $idx++)
{
- $OUT .= " <OPTION value=\"".$idx."\"";
+ $OUT .= "<OPTION value=\"".$idx."\"";
if ($DEFAULT == $idx) $OUT .= " selected=\"selected\"";
$OUT .= ">".$idx."</OPTION>\n";
}
case "sec":
case "min":
- for ($idx = 0; $idx < 60; $idx+=5)
- {
+ for ($idx = 0; $idx < 60; $idx+=5) {
if (strlen($idx) == 1) $idx = "0".$idx;
- $OUT .= " <OPTION value=\"".$idx."\"";
+ $OUT .= "<OPTION value=\"".$idx."\"";
if ($DEFAULT == $idx) $OUT .= " selected=\"selected\"";
$OUT .= ">".$idx."</OPTION>\n";
}
break;
case "hour":
- for ($idx = 0; $idx < 24; $idx++)
- {
+ for ($idx = 0; $idx < 24; $idx++) {
if (strlen($idx) == 1) $idx = "0".$idx;
- $OUT .= " <OPTION value=\"".$idx."\"";
+ $OUT .= "<OPTION value=\"".$idx."\"";
if ($DEFAULT == $idx) $OUT .= " selected=\"selected\"";
$OUT .= ">".$idx."</OPTION>\n";
}
break;
case "yn":
- $OUT .= " <OPTION value=\"Y\"";
- if ($DEFAULT == 'Y') $OUT .= " selected=\"selected\"";
- $OUT .= ">".YES."</OPTION>
- <OPTION value=\"N\"";
- if ($DEFAULT == 'N') $OUT .= " selected=\"selected\"";
+ $OUT .= "<OPTION value=\"Y\"";
+ if ($DEFAULT == "Y") $OUT .= " selected=\"selected\"";
+ $OUT .= ">".YES."</OPTION>\n<OPTION value=\"N\"";
+ if ($DEFAULT == "N") $OUT .= " selected=\"selected\"";
$OUT .= ">".NO."</OPTION>\n";
break;
}
// Deprecated : $length
// Optional : $DATA
//
-function GEN_RANDOM_CODE($length, $code, $uid, $DATA="")
-{
+function GEN_RANDOM_CODE($length, $code, $uid, $DATA="") {
global $_CONFIG;
+ // Fix missing _MAX constant
+ if (!defined('_MAX')) define('_MAX', 15235);
+
// Build server string
$server = $_SERVER['PHP_SELF'].":".getenv('HTTP_USER_AGENT').":".getenv('SERVER_SOFTWARE').":".getenv('REMOTE_ADDR').":".":".filemtime(PATH."inc/databases.php");
// Build key string
- $keys = SITE_KEY.":".DATE_KEY.":".$_CONFIG['secret_key'].":".$_CONFIG['file_hash'].":".date("d-m-Y (l-F-T)", $_CONFIG['patch_ctime']).":".$_CONFIG['master_salt'];
+ $keys = SITE_KEY.":".DATE_KEY;
+ if (isset($_CONFIG['secret_key'])) $keys .= ":".$_CONFIG['secret_key'];
+ if (isset($_CONFIG['file_hash'])) $keys .= ":".$_CONFIG['file_hash'];
+ $keys .= ":".date("d-m-Y (l-F-T)", $_CONFIG['patch_ctime']);
+ if (isset($_CONFIG['master_salt'])) $keys .= ":".$_CONFIG['master_salt'];
// Build string from misc data
$data = $code.":".$uid.":".$DATA;
// Add more additional data
- if (isset($_SESSION['u_hash'])) $data .= ":".$_SESSION['u_hash'];
- if (isset($GLOBALS['userid'])) $data .= ":".$GLOBALS['userid'];
- if (isset($_SESSION['lifetime'])) $data .= ":".$_SESSION['lifetime'];
- if (isset($_SESSION['mxchange_theme'])) $data .= ":".$_SESSION['mxchange_theme'];
- if (isset($_SESSION['mx_lang'])) $data .= ":".$_SESSION['mx_lang'];
- if (isset($GLOBALS['refid'])) $data .= ":".$GLOBALS['refid'];
+ if (isSessionVariableSet('u_hash')) $data .= ":".get_session('u_hash');
+ if (isset($GLOBALS['userid'])) $data .= ":".$GLOBALS['userid'];
+ if (isSessionVariableSet('lifetime')) $data .= ":".get_session('lifetime');
+ if (isSessionVariableSet('mxchange_theme')) $data .= ":".get_session('mxchange_theme');
+ if (isSessionVariableSet('mx_lang')) $data .= ":".GET_LANGUAGE();
+ if (isset($GLOBALS['refid'])) $data .= ":".$GLOBALS['refid'];
// Calculate number for generating the code
$a = $code + _ADD - 1;
- // Generate hash with master salt from modula of number with the prime number and other data
- $saltedHash = generateHash(($a % _PRIME).":".$server.":".$keys.":".$data.":".date("d-m-Y (l-F-T)", time()).":".$a, $_CONFIG['master_salt']);
+ if (isset($_CONFIG['master_hash'])) {
+ // Generate hash with master salt from modula of number with the prime number and other data
+ $saltedHash = generateHash(($a % _PRIME).":".$server.":".$keys.":".$data.":".date("d-m-Y (l-F-T)", time()).":".$a, $_CONFIG['master_salt']);
- // Create number from hash
- $rcode = hexdec(substr($saltedHash, strlen($_CONFIG['master_salt']), 9)) / abs(_MAX - $a + sqrt(_ADD)) / pi();
+ // Create number from hash
+ $rcode = hexdec(substr($saltedHash, strlen($_CONFIG['master_salt']), 9)) / abs(_MAX - $a + sqrt(_ADD)) / pi();
+ } else {
+ // Generate hash with "hash of site key" from modula of number with the prime number and other data
+ $saltedHash = generateHash(($a % _PRIME).":".$server.":".$keys.":".$data.":".date("d-m-Y (l-F-T)", time()).":".$a, substr(sha1(SITE_KEY), 0, 8));
+
+ // Create number from hash
+ $rcode = hexdec(substr($saltedHash, 8, 9)) / abs(_MAX - $a + sqrt(_ADD)) / pi();
+ }
// At least 10 numbers shall be secure enought!
$len = $_CONFIG['code_length'];
if ($len == 0) $len = 10;
// Cut off requested counts of number
- $return = substr(str_replace('.', '', $rcode), 0, $len);
+ $return = substr(str_replace('.', "", $rcode), 0, $len);
// Done building code
return $return;
}
// Does only allow numbers
-function bigintval($num)
-{
- $ret = (int) preg_replace("/[^0123456789]/", "", $num);
+function bigintval($num, $castValue = true) {
+ // Filter all numbers out
+ $ret = preg_replace("/[^0123456789]/", "", $num);
+
+ // Return result
return $ret;
}
// Insert the code in $img_code into jpeg or PNG image
-function GENERATE_IMAGE($img_code, $header=true)
-{
+function GENERATE_IMAGE($img_code, $header=true) {
global $_CONFIG;
- if ((strlen($img_code) > 6) || (empty($img_code)) || ($_CONFIG['code_length'] == 0))
- {
+
+ if ((strlen($img_code) > 6) || (empty($img_code)) || ($_CONFIG['code_length'] == 0)) {
// Stop execution of function here because of over-sized code length
return;
- }
- elseif (!$header)
- {
+ } elseif (!$header) {
// Return in an HTML code code
return "<IMG src=\"".URL."/img.php?code=".$img_code."\">\n";
}
- switch ($_CONFIG['img_type'])
- {
- case "jpg":
- // Loads JPEG image
- $img = PATH."/theme/".GET_CURR_THEME()."/images/code_bg.jpg";
- if ((file_exists($img)) && (is_readable($img)))
+ // Load image
+ $img = sprintf("%s/theme/%s/images/code_bg.%s", PATH, GET_CURR_THEME(), $_CONFIG['img_type']);
+ if (FILE_READABLE($img)) {
+ // Switch image type
+ switch ($_CONFIG['img_type'])
{
+ case "jpg":
// Okay, load image and hide all errors
$image = @imagecreatefromjpeg($img);
- }
- else
- {
- // Exit function here
- return;
- }
- break;
+ break;
- case "png":
- // Loads PNG image
- $img = PATH."/theme/".GET_CURR_THEME()."/images/code_bg.png";
- if ((file_exists($img)) && (is_readable($img)))
- {
+ case "png":
// Okay, load image and hide all errors
$image = @imagecreatefrompng($img);
+ break;
}
- else
- {
- // Exit function here
- return;
- }
- break;
+ } else {
+ // Exit function here
+ return;
}
// Generate text color (red/green/blue; 0 = dark, 255 = bright)
header ("Content-Type: image/".$_CONFIG['img_type']);
// Output image with matching image factory
- switch ($_CONFIG['img_type'])
- {
+ switch ($_CONFIG['img_type']) {
case "jpg": imagejpeg($image); break;
case "png": imagepng($image); break;
}
// Remove image from memory
imagedestroy($image);
}
-function CREATE_TIME_SELECTIONS($timestamp, $prefix="", $display="", $align="center", $return_array=false)
-{
+// Create selection box or array of splitted timestamp
+function CREATE_TIME_SELECTIONS($timestamp, $prefix="", $display="", $align="center", $return_array=false) {
// Calculate 15-seconds timestamp (15-seconds-steps shall be fine ;) )
$timestamp = round($timestamp / 15) * 15;
+
// Do we have a leap year?
$SWITCH = 0;
$TEST = date('Y', time()) / 4;
$M1 = date("m", time());
$M2 = date("m", (time() + $timestamp));
+
// If so and if current time is before 02/29 and estimated time is after 02/29 then add 86400 seconds (one day)
if ((floor($TEST) == $TEST) && ($M1 == "02") && ($M2 > "02")) $SWITCH = ONE_DAY;
+
// First of all years...
$Y = abs(floor($timestamp / (31536000 + $SWITCH)));
// Next months...
$m = abs(floor($timestamp / 60 - $Y * (365 + $SWITCH / ONE_DAY) * 24 * 60 - ($M / 12 * (365 + $SWITCH / ONE_DAY) * 24 * 60) - $W * 7 * 24 * 60 - $D * 24 * 60 - $h * 60));
// And at last seconds...
$s = abs(floor($timestamp - $Y * (365 + $SWITCH / ONE_DAY) * 24 * 3600 - ($M / 12 * (365 + $SWITCH / ONE_DAY) * 24 * 3600) - $W * 7 * 24 * 3600 - $D * 24 * 3600 - $h * 3600 - $m * 60));
+
//
// Now we convert them in seconds...
//
- if ($return_array)
- {
+ if ($return_array) {
// Just put all data in an array for later use
$OUT = array(
'YEARS' => $Y,
'MINUTES' => $m,
'SECONDS' => $s
);
- }
- else
- {
+ } else {
// Generate table
$OUT = "<DIV align=\"".$align."\">\n";
$OUT .= "<TABLE border=\"0\" cellspacing=\"0\" cellpadding=\"0\" class=\"admin_table dashed\">\n";
$OUT .= "<TR>\n";
- if (ereg('Y', $display) || (empty($display)))
- {
+
+ if (ereg('Y', $display) || (empty($display))) {
$OUT .= " <TD align=\"center\" class=\"admin_title bottom\"><STRONG class=\"tiny\">"._YEARS."</STRONG></TD>\n";
}
- if (ereg("M", $display) || (empty($display)))
- {
+
+ if (ereg("M", $display) || (empty($display))) {
$OUT .= " <TD align=\"center\" class=\"admin_title bottom\"><STRONG class=\"tiny\">"._MONTHS."</STRONG></TD>\n";
}
- if (ereg("W", $display) || (empty($display)))
- {
+
+ if (ereg("W", $display) || (empty($display))) {
$OUT .= " <TD align=\"center\" class=\"admin_title bottom\"><STRONG class=\"tiny\">"._WEEKS."</STRONG></TD>\n";
}
- if (ereg("D", $display) || (empty($display)))
- {
+
+ if (ereg("D", $display) || (empty($display))) {
$OUT .= " <TD align=\"center\" class=\"admin_title bottom\"><STRONG class=\"tiny\">"._DAYS."</STRONG></TD>\n";
}
- if (ereg("h", $display) || (empty($display)))
- {
+
+ if (ereg("h", $display) || (empty($display))) {
$OUT .= " <TD align=\"center\" class=\"admin_title bottom\"><STRONG class=\"tiny\">"._HOURS."</STRONG></TD>\n";
}
- if (ereg("m", $display) || (empty($display)))
- {
+
+ if (ereg("m", $display) || (empty($display))) {
$OUT .= " <TD align=\"center\" class=\"admin_title bottom\"><STRONG class=\"tiny\">"._MINUTES."</STRONG></TD>\n";
}
- if (ereg("s", $display) || (empty($display)))
- {
- $OUT .= " <TD align=\"center\" class=\"admin_title bottom\"><STRONG class=\"tiny\">".SECS."</STRONG></TD>\n";
+
+ if (ereg("s", $display) || (empty($display))) {
+ $OUT .= " <TD align=\"center\" class=\"admin_title bottom\"><STRONG class=\"tiny\">"._SECONDS."</STRONG></TD>\n";
}
+
$OUT .= "</TR>\n";
$OUT .= "<TR>\n";
- if (ereg('Y', $display) || (empty($display)))
- {
+
+ if (ereg('Y', $display) || (empty($display))) {
// Generate year selection
$OUT .= " <TD align=\"center\"><SELECT class=\"mini_select\" name=\"".$prefix."_ye\" size=\"1\">\n";
- for ($idx = 0; $idx <= 10; $idx++)
- {
+ for ($idx = 0; $idx <= 10; $idx++) {
$OUT .= " <OPTION class=\"mini_select\" value=\"".$idx."\"";
if ($idx == $Y) $OUT .= " selected default";
$OUT .= ">".$idx."</OPTION>\n";
}
$OUT .= " </SELECT></TD>\n";
- }
- else
- {
+ } else {
$OUT .= "<INPUT type=\"hidden\" name=\"".$prefix."_ye\" value=\"0\">\n";
}
- if (ereg("M", $display) || (empty($display)))
- {
+
+ if (ereg("M", $display) || (empty($display))) {
// Generate month selection
$OUT .= " <TD align=\"center\"><SELECT class=\"mini_select\" name=\"".$prefix."_mo\" size=\"1\">\n";
for ($idx = 0; $idx <= 11; $idx++)
$OUT .= ">".$idx."</OPTION>\n";
}
$OUT .= " </SELECT></TD>\n";
- }
- else
- {
+ } else {
$OUT .= "<INPUT type=\"hidden\" name=\"".$prefix."_mo\" value=\"0\">\n";
}
- if (ereg("W", $display) || (empty($display)))
- {
+
+ if (ereg("W", $display) || (empty($display))) {
// Generate week selection
$OUT .= " <TD align=\"center\"><SELECT class=\"mini_select\" name=\"".$prefix."_we\" size=\"1\">\n";
- for ($idx = 0; $idx <= 4; $idx++)
- {
+ for ($idx = 0; $idx <= 4; $idx++) {
$OUT .= " <OPTION class=\"mini_select\" value=\"".$idx."\"";
if ($idx == $W) $OUT .= " selected default";
$OUT .= ">".$idx."</OPTION>\n";
}
$OUT .= " </SELECT></TD>\n";
- }
- else
- {
+ } else {
$OUT .= "<INPUT type=\"hidden\" name=\"".$prefix."_we\" value=\"0\">\n";
}
- if (ereg("D", $display) || (empty($display)))
- {
+
+ if (ereg("D", $display) || (empty($display))) {
// Generate day selection
$OUT .= " <TD align=\"center\"><SELECT class=\"mini_select\" name=\"".$prefix."_da\" size=\"1\">\n";
- for ($idx = 0; $idx <= 31; $idx++)
- {
+ for ($idx = 0; $idx <= 31; $idx++) {
$OUT .= " <OPTION class=\"mini_select\" value=\"".$idx."\"";
if ($idx == $D) $OUT .= " selected default";
$OUT .= ">".$idx."</OPTION>\n";
}
$OUT .= " </SELECT></TD>\n";
- }
- else
- {
+ } else {
$OUT .= "<INPUT type=\"hidden\" name=\"".$prefix."_da\" value=\"0\">\n";
}
- if (ereg("h", $display) || (empty($display)))
- {
+
+ if (ereg("h", $display) || (empty($display))) {
// Generate hour selection
$OUT .= " <TD align=\"center\"><SELECT class=\"mini_select\" name=\"".$prefix."_ho\" size=\"1\">\n";
- for ($idx = 0; $idx <= 23; $idx++)
- {
+ for ($idx = 0; $idx <= 23; $idx++) {
$OUT .= " <OPTION class=\"mini_select\" value=\"".$idx."\"";
if ($idx == $h) $OUT .= " selected default";
$OUT .= ">".$idx."</OPTION>\n";
}
$OUT .= " </SELECT></TD>\n";
- }
- else
- {
+ } else {
$OUT .= "<INPUT type=\"hidden\" name=\"".$prefix."_ho\" value=\"0\">\n";
}
- if (ereg("m", $display) || (empty($display)))
- {
+
+ if (ereg("m", $display) || (empty($display))) {
// Generate minute selection
$OUT .= " <TD align=\"center\"><SELECT class=\"mini_select\" name=\"".$prefix."_mi\" size=\"1\">\n";
- for ($idx = 0; $idx <= 59; $idx++)
- {
+ for ($idx = 0; $idx <= 59; $idx++) {
$OUT .= " <OPTION class=\"mini_select\" value=\"".$idx."\"";
if ($idx == $m) $OUT .= " selected default";
$OUT .= ">".$idx."</OPTION>\n";
}
$OUT .= " </SELECT></TD>\n";
- }
- else
- {
+ } else {
$OUT .= "<INPUT type=\"hidden\" name=\"".$prefix."_mi\" value=\"0\">\n";
}
- if (ereg("s", $display) || (empty($display)))
- {
+
+ if (ereg("s", $display) || (empty($display))) {
// Generate second selection
$OUT .= " <TD align=\"center\"><SELECT class=\"mini_select\" name=\"".$prefix."_se\" size=\"1\">\n";
- for ($idx = 0; $idx <= 45; $idx+=15)
- {
+ for ($idx = 0; $idx <= 45; $idx += 15) {
$OUT .= " <OPTION class=\"mini_select\" value=\"".$idx."\"";
if ($idx == $s) $OUT .= " selected default";
$OUT .= ">".$idx."</OPTION>\n";
}
$OUT .= " </SELECT></TD>\n";
- }
- else
- {
+ } else {
$OUT .= "<INPUT type=\"hidden\" name=\"".$prefix."_se\" value=\"0\">\n";
}
$OUT .= "</TR>\n";
}
//
function CREATE_TIMESTAMP_FROM_SELECTIONS($prefix, $POST) {
- $ret = "0";
+ $ret = 0;
+
// Do we have a leap year?
$SWITCH = 0;
$TEST = date('Y', time()) / 4;
return $ret;
}
// Sends out mail to all administrators
-function SEND_ADMIN_EMAILS_PRO($subj, $template, $content="", $UID="0") {
+// IMPORTANT: Please use SEND_ADMIN_NOTIFCATION() for now!
+function SEND_ADMIN_EMAILS_PRO($subj, $template, $content, $UID) {
// Trim template name
$template = trim($template);
// Get data array with years/months/weeks/days/...
$data = CREATE_TIME_SELECTIONS($stamp, "", "", "", true);
$ret = "";
- foreach($data as $k=>$v) {
+ foreach($data as $k => $v) {
if ($v > 0) {
// Value is greater than 0 "eval" data to return string
$eval = "\$ret .= \", \".\$v.\" \"._".strtoupper($k).";";
}
}
-//
-function MXCHANGE_OPEN($script) {
- // Compile the script name
- $script = COMPILE_CODE($script);
-
+// Extract host from script name
+function EXTRACT_HOST (&$script) {
// Use default SERVER_URL by default... ;) So?
$url = SERVER_URL;
+
+ // Is this URL valid?
if (substr($script, 0, 7) == "http://") {
// Use the hostname from script URL as new hostname
$url = substr($script, 7);
$extract = explode("/", $url);
$url = $extract[0];
// Done extracting the URL :)
- }
+ } // END - if
// Extract host name
$host = str_replace("http://", "", $url);
if (ereg("/", $host)) $host = substr($host, 0, strpos($host, "/"));
// Generate relative URL
- $script = substr($script, (strlen($url) + 7));
+ //* DEBUG */ print("SCRIPT=".$script."<br />\n");
+ if (substr(strtolower($script), 0, 7) == "http://") {
+ // But only if http:// is in front!
+ $script = substr($script, (strlen($url) + 7));
+ } elseif (substr(strtolower($script), 0, 8) == "https://") {
+ // Does this work?!
+ $script = substr($script, (strlen($url) + 8));
+ }
+
+ //* DEBUG */ print("SCRIPT=".$script."<br />\n");
if (substr($script, 0, 1) == "/") $script = substr($script, 1);
- // Open connection
- $fp = @fsockopen($host, 80, $errno, $errdesc, 30);
- if (!$fp)
- {
- // Failed!
+ // Return host name
+ return $host;
+}
+
+// Send a GET request
+function GET_URL ($script) {
+ // Compile the script name
+ $script = COMPILE_CODE($script);
+
+ // Extract host name from script
+ $host = EXTRACT_HOST($script);
+
+ // Generate GET request header
+ $request = "GET /" . trim($script) . " HTTP/1.1\r\n";
+ $request .= "Host: " . $host . "\r\n";
+ $request .= "Referer: " . URL . "/admin.php\r\n";
+ $request .= "User-Agent: " . TITLE . "/" . FULL_VERSION . "\r\n";
+ $request .= "Content-Type: text/plain\r\n";
+ $request .= "Cache-Control: no-cache\r\n";
+ $request .= "Connection: Close\r\n\r\n";
+
+ // Send the raw request
+ $response = SEND_RAW_REQUEST($host, $request);
+
+ // Return the result to the caller function
+ return $response;
+}
+
+// Send a POST request
+function POST_URL ($script, $postData) {
+ // Is postData an array?
+ if (!is_array($postData)) {
+ // Abort here
return array("", "", "");
- }
+ } // END - if
+
+ // Compile the script name
+ $script = COMPILE_CODE($script);
+
+ // Extract host name from script
+ $host = EXTRACT_HOST($script);
+
+ // Construct request
+ $data = http_build_query($postData, '', '&');
+
+ // Generate POST request header
+ $request = "POST /" . trim($script) . " HTTP/1.1\r\n";
+ $request .= "Host: " . $host . "\r\n";
+ $request .= "Referer: " . URL . "/admin.php\r\n";
+ $request .= "User-Agent: " . TITLE . "/" . FULL_VERSION . "\r\n";
+ $request .= "Content-type: application/x-www-form-urlencoded\r\n";
+ $request .= "Content-length: " . strlen($data) . "\r\n";
+ $request .= "Cache-Control: no-cache\r\n";
+ $request .= "Connection: Close\r\n\r\n";
+ $request .= $data;
+
+ // Send the raw request
+ $response = SEND_RAW_REQUEST($host, $request);
+
+ // Return the result to the caller function
+ return $response;
+}
- // Generate request header
- $request = "GET /".trim($script)." HTTP/1.0\r\n";
- $request .= "Host: ".$host."\r\n";
- $request .= "Referer: ".URL."/admin.php\r\n";
- $request .= "User-Agent: ".TITLE."/".FULL_VERSION."\r\n\r\n";
+// Sends a raw request to another host
+function SEND_RAW_REQUEST ($host, $request) {
+ global $_CONFIG;
// Initialize array
- $response = array();
+ $response = array("", "", "");
+
+ // Default is not to use proxy
+ $useProxy = false;
+
+ // Are proxy settins set?
+ if ((!empty($_CONFIG['proxy_host'])) && ($_CONFIG['proxy_port'] > 0)) {
+ // Then use it
+ $useProxy = true;
+ } // END - if
+
+ // Open connection
+ //* DEBUG */ die("SCRIPT=".$script."<br />\n");
+ if ($useProxy) {
+ $fp = @fsockopen(COMPILE_CODE($_CONFIG['proxy_host']), $_CONFIG['proxy_port'], $errno, $errdesc, 30);
+ } else {
+ $fp = @fsockopen($host, 80, $errno, $errdesc, 30);
+ }
+
+ // Is there a link?
+ if (!is_resource($fp)) {
+ // Failed!
+ return $response;
+ } // END - if
+
+ // Do we use proxy?
+ if ($useProxy) {
+ // Generate CONNECT request header
+ $proxyTunnel = "CONNECT ".$host.":80 HTTP/1.1\r\n";
+ $proxyTunnel .= "Host: ".$host."\r\n";
+
+ // Use login data to proxy? (username at least!)
+ if (!empty($_CONFIG['proxy_username'])) {
+ // Add it as well
+ $encodedAuth = base64_encode(COMPILE_CODE($_CONFIG['proxy_username']).":".COMPILE_CODE($_CONFIG['proxy_password']));
+ $proxyTunnel .= "Proxy-Authorization: Basic ".$encodedAuth."\r\n";
+ } // END - if
+
+ // Add last new-line
+ $proxyTunnel .= "\r\n";
+ //* DEBUG: */ print("<strong>proxyTunnel=</strong><pre>".$proxyTunnel."</pre>");
+
+ // Write request
+ fputs($fp, $proxyTunnel);
+
+ // Got response?
+ if (feof($fp)) {
+ // No response received
+ return $response;
+ } // END - if
+
+ // Read the first line
+ $resp = trim(fgets($fp, 10240));
+ $respArray = explode(" ", $resp);
+ if ((strtolower($respArray[0]) !== "http/1.0") || ($respArray[1] != "200")) {
+ // Invalid response!
+ return $response;
+ } // END - if
+ } // END - if
// Write request
fputs($fp, $request);
// Read response
while(!feof($fp)) {
- $response[] = fgets($fp, 1024);
- }
+ $response[] = trim(fgets($fp, 1024));
+ } // END - while
// Close socket
fclose($fp);
+ // Skip first empty lines
+ $resp = $response;
+ foreach ($resp as $idx => $line) {
+ // Trim space away
+ $line = trim($line);
+
+ // Is this line empty?
+ if (empty($line)) {
+ // Then remove it
+ array_shift($response);
+ } else {
+ // Abort on first non-empty line
+ break;
+ }
+ } // END - foreach
+
+ //* DEBUG: */ print("<strong>Response:</strong><pre>".print_r($response, true)."</pre>");
+
+ // Proxy agent found?
+ if ((substr(strtolower($response[0]), 0, 11) == "proxy-agent") && ($useProxy)) {
+ // Proxy header detected, so remove two lines
+ array_shift($response);
+ array_shift($response);
+ } // END - if
+
// Was the request successfull?
- if ((!ereg("200 OK", $response[0])) && (empty($response[0]))) {
+ if ((!eregi("200 OK", $response[0])) || (empty($response[0]))) {
// Not found / access forbidden
$response = array("", "", "");
- }
+ } // END - if
// Return response
return $response;
}
// Finish navigation link
- $eval = substr($eval, 0, -7) . "]\";";
+ $eval = substr($eval, 0, -7)."]\";";
eval($eval);
// Return string
if ((EXT_IS_ACTIVE("admins")) && ($table == "admins")) {
// Create email link for contacting admin in guest area
$EMAIL = ADMINS_CREATE_EMAIL_LINK($email);
- } elseif ((GET_EXT_VERSION("user") >= "0.3.3") && ($table == "user_data")) {
+ } elseif ((EXT_IS_ACTIVE("user", true)) && (GET_EXT_VERSION("user") >= "0.3.3") && ($table == "user_data")) {
// Create email link for contacting a member within admin area (or later in other areas, too?)
$EMAIL = USER_CREATE_EMAIL_LINK($email);
} elseif ((EXT_IS_ACTIVE("sponsor")) && ($table == "sponsor_data")) {
return $EMAIL;
}
// Generate a hash for extra-security for all passwords
-function generateHash($plainText, $salt = "") {
+function generateHash ($plainText, $salt = "") {
global $_CONFIG, $_SERVER;
- // Is the required extension "sql_patches" there?
- if ((GET_EXT_VERSION("sql_patches") < "0.3.6") || (GET_EXT_VERSION("sql_patches") == "")) {
+ // Is the required extension "sql_patches" there and a salt is not given?
+ if (((GET_EXT_VERSION("sql_patches") < "0.3.6") || (GET_EXT_VERSION("sql_patches") == "")) && (empty($salt))) {
// Extension sql_patches is missing/outdated so we return the plain text
return $plainText;
- }
+ } // END - if
+
+ // Do we miss an arry element here?
+ if (!isset($_CONFIG['file_hash'])) {
+ // Stop here
+ print(__FUNCTION__.":<pre>");
+ debug_print_backtrace();
+ die("</pre>");
+ } // END - if
// When the salt is empty build a new one, else use the first x configured characters as the salt
if ($salt == "") {
// Generate the password salt string
$salt = substr($sha1, 0, $_CONFIG['salt_length']);
//* DEBUG: */ echo $salt." (".strlen($salt).")<br />";
- }
- else
- {
+ } else {
+ // Use given salt
$salt = substr($salt, 0, $_CONFIG['salt_length']);
+ //* DEBUG: */ echo "GIVEN={$salt}<br />\n";
}
// Return hash
- return $salt . sha1($salt . $plainText);
+ return $salt.sha1($salt.$plainText);
}
//
function scrambleString($str) {
// Add it to final output string
$scrambled .= $char;
- }
+ } // END - for
// Return scrambled string
//* DEBUG: */ echo "***Scrambled=".$scrambled."***<br />";
return $scrambled;
}
//
-function descrambleString($str)
-{
+function descrambleString($str) {
global $_CONFIG;
// Scramble only 40 chars long strings
if (strlen($str) != 40) return $str;
// Begin descrambling
$orig = str_repeat(" ", 40);
//* DEBUG: */ echo "+++Scrambled=".$str."+++<br />";
- for ($idx = 0; $idx < 40; $idx++)
- {
+ for ($idx = 0; $idx < 40; $idx++) {
$char = substr($str, $idx, 1);
$orig = substr_replace($orig, $char, $scrambleNums[$idx], 1);
- }
+ } // END - for
// Return scrambled string
//* DEBUG: */ echo "+++Original=".$orig."+++<br />";
// Check for it by creating more numbers
while (array_key_exists($rand, $scrambleNumbers)) {
$rand = mt_rand(0, ($len -1));
- }
+ } // END - while
// Add number
$scrambleNumbers[$rand] = $rand;
- }
+ } // END - for
// So let's create the string for storing it in database
$scrambleString = implode(":", $scrambleNumbers);
}
// Append data like session ID referral ID to the given URL which would
// normally be stored in cookies
-function ADD_URL_DATA($URL)
-{
+function ADD_URL_DATA($URL) {
global $_CONFIG;
$ADD = "";
if ((!empty($_GET['refid'])) && (strpos($URL, "refid=") == 0)) {
// Cookie found in URL
$ADD .= $BIND."refid=".bigintval($_GET['refid']);
- } elseif ((GET_EXT_VERSION("sql_patches") != "") && ($_CONFIG['def_refid'] > 0)) {
+ } elseif ((GET_EXT_VERSION("sql_patches") != '') && ($_CONFIG['def_refid'] > 0)) {
// Not found! So let's set default here
$ADD .= $BIND."refid=".$_CONFIG['def_refid'];
}
// Add current session
$ADD .= $BIND."PHPSESSID=".session_id();
}
- }
+ } // END - if
// Add all together and return it
return $URL.$ADD;
}
-//
+// Generate an PGP-like encrypted hash of given hash for e.g. cookies
function generatePassString($passHash) {
global $_CONFIG;
- $ret = "*FAILED*";
+
+ // Return vanilla password hash
+ $ret = $passHash;
// Is a secret key and master salt already initialized?
if ((!empty($_CONFIG['secret_key'])) && (!empty($_CONFIG['master_salt']))) {
//* DEBUG: */ echo "*".$start."=".$mod."*<br>";
$start += 4;
$newHash .= $mod;
- }
- //* DEBUG: */ die($passHash."<br>".$newHash." (".strlen($newHash).")");
+ } // END - for
+
+ //* DEBUG: */ print($passHash."<br>".$newHash." (".strlen($newHash).")");
$ret = generateHash($newHash, $_CONFIG['master_salt']);
+ //* DEBUG: */ print($ret."<br />\n");
+ } else {
+ // Hash it simple
+ //* DEBUG: */ echo "--".$passHash."--<br />\n";
+ $ret = md5($passHash);
+ //* DEBUG: */ echo "++".$ret."++<br />\n";
}
// Return result
return $ret;
}
+
// Fix "deleted" cookies
function FIX_DELETED_COOKIES ($cookies) {
// Is this an array with entries?
// Then check all cookies if they are marked as deleted!
foreach ($cookies as $cookieName) {
// Is the cookie set to "deleted"?
- if ((isset($_SESSION[$cookieName])) && ($_SESSION[$cookieName] == "deleted")) {
- unset($_SESSION[$cookieName]);
+ if (get_session($cookieName) == "deleted") {
+ set_session($cookieName, "");
}
- }
- }
+ } // END - foreach
+ } // END - if
}
+
// Output error messages in a fasioned way and die...
function mxchange_die ($msg) {
global $footer;
);
// Load the template
- LOAD_TEMPLATE("footer_stats", false, $content);
+ LOAD_TEMPLATE("show_timings", false, $content);
}
// Unset/set session variables
function set_session ($var, $value) {
global $CSS;
+
// Abort in CSS mode here
if ($CSS == 1) return true;
$var = trim(SQL_ESCAPE($var)); $value = trim($value);
// Is the session variable set?
- if (("".$value."" == "") && (isset($_SESSION[$var]))) {
+ if (("".$value."" == "") && (isSessionVariableSet($var))) {
// Remove the session
- //* DEBUG: */ echo "UNSET:".$var."=".$_SESSION[$var]."<br />\n";
+ //* DEBUG: */ echo "UNSET:".$var."=".get_session($var)."<br />\n";
unset($_SESSION[$var]);
return session_unregister($var);
- } elseif (("".$value."" != "") && (!isset($_SESSION[$var]))) {
+ } elseif (("".$value."" != '') && (!isSessionVariableSet($var))) {
// Set session
//* DEBUG: */ echo "SET:".$var."=".$value."<br />\n";
$_SESSION[$var] = $value;
return session_register($var);
+ } elseif (!empty($value)) {
+ // Update session
+ $_SESSION[$var] = $value;
+ } else {
+ // Something bad happens!
+ return false; // Hope this doesn't make so much trouble???
}
// Return always true if the session variable is already set.
return true;
}
+// Check wether a boolean constant is set
+// Taken from user comments in PHP documentation for function constant()
+function isBooleanConstantAndTrue($constname) { // : Boolean
+ $res = false;
+ if (defined($constname)) $res = (constant($constname) === true);
+ return($res);
+}
+
+// Check wether a session variable is set
+function isSessionVariableSet($var) {
+ return (isset($_SESSION[$var]));
+}
+// Returns wether the value of the session variable or NULL if not set
+function get_session($var) {
+ // Default is not found! ;-)
+ $value = null;
+
+ // Is the variable there?
+ if (isSessionVariableSet($var)) {
+ // Then get it secured!
+ $value = SQL_ESCAPE($_SESSION[$var]);
+ } // END - if
+
+ // Return the value
+ return $value;
+}
+// Send notification to admin
+function SEND_ADMIN_NOTIFICATION($subject, $templateName, $content="", $uid="0") {
+ if (GET_EXT_VERSION("admins") >= "0.4.1") {
+ // Send new way
+ SEND_ADMIN_EMAILS_PRO($subject, $templateName, $content, $uid);
+ } else {
+ // Send outdated way
+ $msg = LOAD_EMAIL_TEMPLATE($templateName, $content, $uid);
+ SEND_ADMIN_EMAILS($subject, $msg);
+ }
+}
+// Destroy user session
+function destroy_user_session () {
+ // Remove all user data from session
+ return ((set_session("userid", "")) && (set_session("u_hash", "")) && (set_session("lifetime", "")));
+}
+// Merges an array together but only if both are arrays
+function merge_array ($array1, $array2) {
+ // Are both an array?
+ if ((is_array($array1)) && (is_array($array2))) {
+ // Merge all together
+ return array_merge($array1, $array2);
+ } elseif (is_array($array1)) {
+ // Return left array
+ return $array1;
+ }
+
+ // Something wired happened here...
+ print(__FUNCTION__.":<pre>");
+ debug_print_backtrace();
+ die("</pre>");
+}
+// Debug message logger
+function DEBUG_LOG ($message) {
+ // Is debug mode enabled?
+ if (isBooleanConstantAndTrue('DEBUG_MODE')) {
+ // Log this message away
+ $fp = fopen(PATH."inc/cache/debug.log", 'a') or mxchange_die("Cannot write logfile debug.log!");
+ fwrite($fp, date("d.m.Y|H:i:s", time())."|{$message}\n");
+ fclose($fp);
+ } // END - if
+}
+// Reads a directory with PHP files in and gets only files back
+function GET_DIR_AS_ARRAY ($baseDir, $prefix) {
+ $INCs = array();
+
+ // Open directory
+ $dirPointer = opendir($baseDir) or mxchange_die("Cannot read ".basename($baseDir)." path!");
+
+ // Read all entries
+ while ($baseFile = readdir($dirPointer)) {
+ // Load file only if extension is active
+ // Make full path
+ $file = $baseDir.$baseFile;
+
+ // Is this a valid reset file?
+ if ((is_file($file)) && (is_readable($file)) && (substr($baseFile, 0, strlen($prefix)) == $prefix) && (substr($baseFile, -4, 4) == ".php")) {
+ // Remove both for extension name
+ $extName = substr($baseFile, strlen($prefix), -4);
+
+ // Try to find it
+ $extId = GET_EXT_ID($extName);
+
+ // Is the extension valid and active?
+ if (($extId > 0) && (EXT_IS_ACTIVE($extName))) {
+ // Then add this file
+ $INCs[] = $file;
+ }
+ } // END - if
+ } // END - while
+
+ // Close directory
+ closedir($dirPointer);
+
+ // Return array with include files
+ return $INCs;
+}
+// Load more reset scripts
+function RESET_ADD_INCLUDES () {
+ global $_CONFIG;
+
+ // Is the reset set or old sql_patches?
+ if ((!isBooleanConstantAndTrue('__DAILY_RESET')) || (GET_EXT_VERSION("sql_patches") < "0.4.5")) {
+ // Then abort here
+ return;
+ } // END - if
+
+ // Get more daily reset scripts
+ $INC_POOL = GET_DIR_AS_ARRAY(PATH."inc/reset/", "reset_");
+
+ // Create current week mark
+ $currWeek = date("W", time());
+
+ // Has it changed?
+ if ($_CONFIG['last_week'] != $currWeek) {
+ // Include weekly reset scripts
+ $INC_POOL = array_merge($INC_POOL, GET_DIR_AS_ARRAY(PATH."inc/weekly/", "weekly_"));
+
+ // Update config
+ UPDATE_CONFIG("last_week", $currWeek);
+ } // END - if
+
+ // Create current month mark
+ $currMonth = date("m", time());
+
+ // Has it changed?
+ if ($_CONFIG['last_month'] != $currMonth) {
+ // Include monthly reset scripts
+ $INC_POOL = array_merge($INC_POOL, GET_DIR_AS_ARRAY(PATH."inc/monthly/", "monthly_"));
+
+ // Update config
+ UPDATE_CONFIG("last_month", $currMonth);
+ } // END - if
+
+ // Return array
+ return $INC_POOL;
+}
+// Handle extra values
+function HANDLE_EXTRA_VALUES ($filterFunction, $value, $extraValue) {
+ // Default is the value itself
+ $ret = $value;
+
+ // Do we have a special filter function?
+ if (!empty($filterFunction)) {
+ // Does the filter function exist?
+ if (function_exists($filterFunction)) {
+ // Do we have extra parameters here?
+ if (!empty($extraValue)) {
+ // Put both parameters in one new array by default
+ $args = array($value, $extraValue);
+
+ // If we have an array simply use it and pre-extend it with our value
+ if (is_array($extraValue)) {
+ // Make the new args array
+ $args = array_merge(array($value), $extraValue);
+ } // END - if
+
+ // Call the multi-parameter call-back
+ $ret = call_user_func_array($filterFunction, $args);
+ } else {
+ // One parameter call
+ $ret = call_user_func($filterFunction, $value);
+ }
+ } // END - if
+ } // END - if
+
+ // Return the value
+ return $ret;
+}
+// Check if given FQFN is a readable file
+function FILE_READABLE($fqfn) {
+ // Check all...
+ return ((file_exists($fqfn)) && (is_file($fqfn)) && (is_readable($fqfn)));
+}
+// Converts timestamp selections into a timestamp
+function CONVERT_SELECTIONS_TO_TIMESTAMP(&$POST, &$DATA, &$id, &$skip) {
+ // Init test variable
+ $TEST2 = "";
+
+ // Get last three chars
+ $TEST = substr($id, -3);
+
+ // Improved way of checking! :-)
+ if (in_array($TEST, array("_ye", "_mo", "_we", "_da", "_ho", "_mi", "_se"))) {
+ // Found a multi-selection for timings?
+ $TEST = substr($id, 0, -3);
+ if ((isset($POST[$TEST."_ye"])) && (isset($POST[$TEST."_mo"])) && (isset($POST[$TEST."_we"])) && (isset($POST[$TEST."_da"])) && (isset($POST[$TEST."_ho"])) && (isset($POST[$TEST."_mi"])) && (isset($POST[$TEST."_se"])) && ($TEST != $TEST2)) {
+ // Generate timestamp
+ $POST[$TEST] = CREATE_TIMESTAMP_FROM_SELECTIONS($TEST, $POST);
+ $DATA[] = "$TEST='".$POST[$TEST]."'";
+
+ // Remove data from array
+ foreach (array("ye", "mo", "we", "da", "ho", "mi", "se") as $rem) {
+ unset($POST[$TEST."_".$rem]);
+ } // END - foreach
+
+ // Skip adding
+ unset($id); $skip = true; $TEST2 = $TEST;
+ } // END - if
+ } else {
+ // Process this entry
+ $skip = false; $TEST2 = "";
+ }
+}
+// Reverts the german decimal comma into Computer decimal dot
+function REVERT_COMMA ($str) {
+ $float = (float)str_replace(",", ".", $str);
+ return $float;
+}
//
-//////////////////////////////////////////////
-// //
-// AUTOMATICALLY RE-GNERATED FUNCTIONS ONLY //
-// //
-//////////////////////////////////////////////
+//////////////////////////////////////////////////
+// //
+// AUTOMATICALLY RE-GENERATED MISSING FUNCTIONS //
+// //
+//////////////////////////////////////////////////
//
-if (!function_exists('html_entity_decode'))
-{
+if (!function_exists('html_entity_decode')) {
// Taken from documentation on www.php.net
- function html_entity_decode($string)
- {
+ function html_entity_decode($string) {
$trans_tbl = get_html_translation_table(HTML_ENTITIES);
$trans_tbl = array_flip($trans_tbl);
return strtr($string, $trans_tbl);
}
-}
+} // END - if
+
//
?>