X-Git-Url: https://git.mxchange.org/?a=blobdiff_plain;f=inc%2Ffilters.php;h=0c6b4980219f94f7cae42e6c628141f3aa84b50d;hb=1dfd89652afd8c4542e791a5d90315019365e962;hp=f5b846c5b9db2151f49171df4aa8d2b20b975707;hpb=56391f52928b7bafd0bf749437ff36a9823b52da;p=mailer.git
diff --git a/inc/filters.php b/inc/filters.php
index f5b846c5b9..0c6b498021 100644
--- a/inc/filters.php
+++ b/inc/filters.php
@@ -58,11 +58,11 @@ function FILTER_FLUSH_FILTERS () {
if ((!isInstallationPhase()) && ((!isExtensionInstalled('sql_patches')) || (isExtensionInstalledAndOlder('sql_patches', '0.5.9')))) {
// Log only in debug mode
if (isDebugModeEnabled()) {
- logDebugMessage(__FUNCTION__, __LINE__, 'Cannot flush filters, sql_patches might be missing. isExtensionInstalled()=' . intval(isExtensionInstalled('sql_patches')) . ',isExtensionInstalledAndOlder()=' . intval(isExtensionInstalledAndOlder('sql_patches', '0.5.9')));
+ logDebugMessage(__FUNCTION__, __LINE__, 'Cannot flush filters, ext-sql_patches might be missing. isExtensionInstalled()=' . intval(isExtensionInstalled('sql_patches')) . ',isExtensionInstalledAndOlder()=' . intval(isExtensionInstalledAndOlder('sql_patches', '0.5.9')));
} // END - if
// Abort silently here
- return false;
+ return FALSE;
} // END - if
// Nothing is added/remove by default
@@ -70,7 +70,7 @@ function FILTER_FLUSH_FILTERS () {
$removed = '0';
// Prepare SQL queries
- $insertSQL = 'INSERT INTO `{?_MYSQL_PREFIX?}_filters` (`filter_name`,`filter_function`,`filter_active`) VALUES';
+ $insertSQL = 'INSERT INTO `{?_MYSQL_PREFIX?}_filters` (`filter_name`, `filter_function`, `filter_active`) VALUES';
$removeSQL = 'DELETE LOW_PRIORITY FROM `{?_MYSQL_PREFIX?}_filters` WHERE';
// Write all filters to database
@@ -80,10 +80,16 @@ function FILTER_FLUSH_FILTERS () {
// Is this filter loaded?
//* DEBUG: */ debugOutput('FOUND:'.$filterName.'/'.$filterFunction.'='.$active);
if (((!isset($GLOBALS['cache_array']['filter']['loaded'][$filterName][$filterFunction])) && ($active != 'R')) || ($active == 'A')) {
- // Add this filter (all filters are active by default)
- //* DEBUG: */ debugOutput('ADD:'.$filterName.'/'.$filterFunction);
- $insertSQL .= sprintf("('%s','%s','Y'),", $filterName, $filterFunction);
- $inserted++;
+ // Is this filter already in database?
+ if (countSumTotalData($filterFunction, 'filters', 'filter_name', 'filter_function', TRUE, sprintf(" AND `filter_name`='%s'", SQL_ESCAPE($filterName))) == 0) {
+ // Add this filter (all filters are active by default)
+ //* DEBUG: */ debugOutput('ADD:'.$filterName.'/'.$filterFunction);
+ $insertSQL .= sprintf("('%s','%s','Y'),", $filterName, $filterFunction);
+ $inserted++;
+ } elseif (isDebugModeEnabled()) {
+ // Log already registered filters
+ logDebugMessage(__FUNCTION__, __LINE__, 'Already registered: filterName=' . $filterName . ',filterFunction=' . $filterFunction . ',active=' . $active);
+ }
} elseif ($active == 'R') {
// Remove this filter
//* DEBUG: */ debugOutput('REMOVE:'.$filterName.'/'.$filterFunction);
@@ -147,7 +153,7 @@ function FILTER_CALL_HANDLER_LOGIN_FAILTURES ($filterData) {
return $content;
}
-// Filter for redirecting to logout if sql_patches has been installed
+// Filter for redirecting to logout if ext-sql_patches has been installed
function FILTER_REDIRECT_TO_LOGOUT_SQL_PATCHES () {
// Remove this filter
unregisterFilter(__FUNCTION__, __LINE__, 'shutdown', __FUNCTION__);
@@ -193,7 +199,7 @@ function FILTER_SOLVE_TASK ($filterData) {
adminSolveTask($filterData['task_id']);
} else {
// Not detectable!
- reportBug(__FUNCTION__, __LINE__, sprintf("Cannot resolve task. data[%s]=%s ", gettype($filterData), print_r($filterData, true)));
+ reportBug(__FUNCTION__, __LINE__, sprintf("Cannot resolve task. data[%s]=%s ", gettype($filterData), print_r($filterData, TRUE)));
}
// Return the data
@@ -248,11 +254,11 @@ function FILTER_RUN_SQLS ($filterData) {
$count = 0;
// Debug message
- //* DEBUG: */ die('getSqls()='.print_r(getSqls(), true).' ext_update_depends='.print_r($GLOBALS['ext_update_depends'], true).' ');
+ //* DEBUG: */ die('getSqls()='.print_r(getSqls(), TRUE).' ext_update_depends='.print_r($GLOBALS['ext_update_depends'], TRUE).' ');
//* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, '- Entered!');
// Is the array there?
- if ((isSqlsValid()) && ((!isset($filterData['dry_run'])) || ($filterData['dry_run'] == false))) {
+ if ((isSqlsValid()) && ((!isset($filterData['dry_run'])) || ($filterData['dry_run'] == FALSE))) {
// Run SQL commands
//* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, '- Found ' . countSqls() . ' queries to run.');
foreach (getSqls() as $mode => $sqls) {
@@ -266,13 +272,13 @@ function FILTER_RUN_SQLS ($filterData) {
// Is 'enable_codes' not set? Then set it to true
if (!isset($filterData['enable_codes'])) {
- $filterData['enable_codes'] = true;
+ $filterData['enable_codes'] = TRUE;
} // END - if
// Is there still a query left?
if (!empty($sql)) {
- // Is there an "ALTER TABLE" command?
- if (substr(strtolower($sql), 0, 11) == 'alter table') {
+ // Is there an "ALTER TABLE" command? Exclude installation phase here as it would cause this query to fail
+ if ((substr(strtolower($sql), 0, 11) == 'alter table') && (!isset($filterData['ext_installing']))) {
// Analyse the alteration command
//* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'Alterting table: ' . $sql . ',enable_codes=' . intval($filterData['enable_codes']));
SQL_ALTER_TABLE($sql, __FUNCTION__, __LINE__, $filterData['enable_codes']);
@@ -295,9 +301,6 @@ function FILTER_RUN_SQLS ($filterData) {
// Debug message
//* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, '- Left!');
- // Clear any SQL queries
- //initSqls();
-
// Return counter
return $count;
}
@@ -311,7 +314,7 @@ function FILTER_UPDATE_LOGIN_DATA () {
// Recheck if logged in
if ((!isMember()) || ((isAdmin()) && (!isDebugModeEnabled()))) {
- return false;
+ return FALSE;
} // END - if
// Secure user id
@@ -355,6 +358,9 @@ function FILTER_INIT_RANDOMIZER () {
// Take a prime number which is long (if you know a longer one please try it out!)
setConfigEntry('_PRIME', 591623);
+ // Initialize array with all allowed chars
+ $GLOBALS['_abc'] = explode(',', 'a,b,c,d,e,f,g,h,i,j,k,l,m,n,o,p,q,r,s,t,u,v,w,x,y,z,A,B,C,D,E,F,G,H,I,J,K,L,M,N,O,P,Q,R,S,T,U,V,W,X,Y,Z,1,2,3,4,6,7,8,9,-,+,_,/,.');
+
// Only execute this filter if installed
if ((!isInstalled()) || (!isExtensionInstalledAndNewer('other', '0.2.5'))) {
// Set missing entry
@@ -430,7 +436,7 @@ function FILTER_DETERMINE_USERNAME () {
}
// Filter for compiling config entries
-function FILTER_COMPILE_CONFIG ($code, $compiled = false) {
+function FILTER_COMPILE_CONFIG ($code, $compiled = FALSE) {
// Save the uncompiled code
$uncompiled = $code;
@@ -472,7 +478,7 @@ function FILTER_COMPILE_CONFIG ($code, $compiled = false) {
} // END - if
// Should we compile it?
- if ($compiled === true) {
+ if ($compiled === TRUE) {
// Run the code
$eval = "\$GLOBALS['compiled_config'][\$uncompiled] = \"" . $GLOBALS['compiled_config'][$uncompiled] . '";';
//* DEBUG: */ debugOutput(__FUNCTION__.'['.__LINE__.']:' . encodeEntities($eval) . ' ');
@@ -488,7 +494,7 @@ function FILTER_COMPILE_EXPRESSION_CODE ($filterData) {
// Compile {%cmd,callback,extraFunction=some_value%} to get expression code snippets
// See switch() command below for supported commands
preg_match_all('/\{%(([a-zA-Z0-9-_,]+)(=([^\}]+)){0,1})*%\}/', $filterData, $matches);
- //* DEBUG: */ debugOutput(__FUNCTION__.'['.__LINE__.']:'.print_r($matches, true).' ');
+ //* DEBUG: */ debugOutput(__FUNCTION__.'['.__LINE__.']:'.print_r($matches, TRUE).' ');
// Default is from outputHtml()
$outputMode = getScriptOutputMode();
@@ -554,7 +560,7 @@ function FILTER_COMPILE_EXPRESSION_CODE ($filterData) {
$filterData = call_user_func($etiFunction, $data);
} else {
// Unsupported command detected
- logDebugMessage(__FUNCTION__, __LINE__, 'eti=' . $eti . ', callback=' . $callback . ', extra=' . $extraFunction . ' - unsupported');
+ logDebugMessage(__FUNCTION__, __LINE__, 'eti=' . $eti . ',etiFunction=' . $etiFunction . ',callback=' . $callback . ',extraFunction=' . $extraFunction . ',extraFunction2=' . $extraFunction2 . ' - UNSUPPORTED');
}
} // END - foreach
} // END - if
@@ -705,6 +711,12 @@ function FILTER_DETERMINE_WHAT_ACTION () {
if ((!isCssOutputMode()) && (!isRawOutputMode())) {
// Fix module
if (!isModuleSet()) {
+ // Is the module registered?
+ if (!isModuleRegistered(getRequestElement('module'))) {
+ // Is not a valid module
+ redirectToUrl('modules.php?module=index');
+ } // END - if
+
// Is the request element set?
if (isGetRequestElementSet('module')) {
// Set module from request
@@ -832,7 +844,7 @@ function FILTER_LOAD_RUNTIME_INCLUDES () {
// Filter for checking admin ACL
function FILTER_CHECK_ADMIN_ACL () {
// Extension not installed so it's always allowed to access everywhere!
- $ret = true;
+ $ret = TRUE;
// Ok, Cookie-Update done
if ((isExtensionInstalledAndNewer('admins', '0.3.0')) && (isExtensionActive('admins'))) {
@@ -854,7 +866,10 @@ function FILTER_CHECK_ADMIN_ACL () {
// Init random number/cache buster
function FILTER_INIT_RANDOM_NUMBER () {
// Is the extension ext-sql_patches installed and at least 0.3.6?
- if ((isExtensionInstalledAndNewer('sql_patches', '0.3.6')) && (isExtensionInstalledAndNewer('other', '0.2.5'))) {
+ if (isSessionVariableSet('random_number')) {
+ // Then set it
+ setConfigEntry('RAND_NUMBER', getSession('random_number'));
+ } elseif ((isExtensionInstalledAndNewer('sql_patches', '0.3.6')) && (isExtensionInstalledAndNewer('other', '0.2.5'))) {
// Generate random number
setConfigEntry('RAND_NUMBER', generateRandomCode(10, mt_rand(10000, 99999), getMemberId(), ''));
} else {
@@ -862,12 +877,21 @@ function FILTER_INIT_RANDOM_NUMBER () {
setConfigEntry('RAND_NUMBER', mt_rand(1000000, 9999999));
}
+ // Set it in session for faster script execusion
+ setSession('random_number', getConfig('RAND_NUMBER'));
+
// Copy it to CACHE_BUSTER
setConfigEntry('CACHE_BUSTER', getConfig('RAND_NUMBER'));
}
// Update module counter
function FILTER_COUNT_MODULE () {
+ // Is installation phase?
+ if (isInstallationPhase()) {
+ // Then don't count any modules
+ return;
+ } // END - if
+
//* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'getModule()=' . getModule() . ' - ENTERED!');
// Do count all other modules but not accesses on CSS file css.php!
SQL_QUERY_ESC("UPDATE `{?_MYSQL_PREFIX?}_mod_reg` SET `clicks`=`clicks`+1 WHERE `module`='%s' LIMIT 1",
@@ -880,7 +904,7 @@ function FILTER_HANDLE_FATAL_ERRORS () {
// Is there errors to handle and right output mode?
if ((!ifFatalErrorsDetected()) || (!isHtmlOutputMode())) {
// Abort executing here
- return false;
+ return FALSE;
} // END - if
// Set content type
@@ -904,11 +928,11 @@ function FILTER_HANDLE_FATAL_ERRORS () {
);
// Load row template
- $OUT .= loadTemplate('install_fatal_row', true, $content);
+ $OUT .= loadTemplate('install_fatal_row', TRUE, $content);
}
// Load main template
- $content = loadTemplate('install_fatal_table', true, $OUT);
+ $content = loadTemplate('install_fatal_table', TRUE, $OUT);
} elseif (isInstalled()) {
// Display all runtime fatal errors
$OUT = '';
@@ -920,11 +944,11 @@ function FILTER_HANDLE_FATAL_ERRORS () {
);
// Load row template
- $OUT .= loadTemplate('runtime_fatal_row', true, $content);
+ $OUT .= loadTemplate('runtime_fatal_row', TRUE, $content);
}
// Load main template
- $content = loadTemplate('runtime_fatal_table', true, $OUT);
+ $content = loadTemplate('runtime_fatal_table', TRUE, $OUT);
}
// Message to regular users (non-admin)
@@ -945,7 +969,7 @@ function FILTER_HANDLE_FATAL_ERRORS () {
loadIncludeOnce('inc/header.php');
// Load main template
- loadTemplate('fatal_errors', false, $content);
+ loadTemplate('fatal_errors', FALSE, $content);
// Delete all to prevent double-display
initFatalMessages();
@@ -964,10 +988,10 @@ function FILTER_DISPLAY_COPYRIGHT () {
// Backlink enabled?
if (((isConfigEntrySet('ENABLE_BACKLINK')) && (getConfig('ENABLE_BACKLINK') == 'Y')) || (isInstalling())) {
// Copyright with backlink, thanks! :-)
- $GLOBALS['__page_footer'] .= loadTemplate('copyright_backlink', true);
+ $GLOBALS['__page_footer'] .= loadTemplate('copyright_backlink', TRUE);
} else {
// No backlink in Copyright note
- $GLOBALS['__page_footer'] .= loadTemplate('copyright', true);
+ $GLOBALS['__page_footer'] .= loadTemplate('copyright', TRUE);
}
} // END - if
}
@@ -993,10 +1017,12 @@ function FILTER_FLUSH_TEMPLATE_CACHE () {
// Is there cached eval() data?
if ((isset($GLOBALS['template_eval'])) && (count($GLOBALS['template_eval']) > 0)) {
// Now flush all
- foreach ($GLOBALS['template_eval'] as $template => $eval) {
- // Flush the cache (if not yet found)
- flushTemplateCache($template, $eval);
- } // END - if
+ foreach ($GLOBALS['template_eval'] as $prefix => $templateArray) {
+ foreach ($templateArray as $template => $eval) {
+ // Flush the cache (if not yet found)
+ flushTemplateCache($prefix, $template, $eval);
+ } // END - foreach
+ } // END - foreach
} // END - if
}
@@ -1062,15 +1088,15 @@ function FILTER_DO_LOGIN_ADMIN ($filterData) {
// Filter for loading page header, this should be ran first!
function FILTER_LOAD_PAGE_HEADER () {
// Output page header code
- $GLOBALS['__page_header'] = loadTemplate('page_header', true);
+ $GLOBALS['__page_header'] = loadTemplate('page_header', TRUE);
// Include meta data in 'guest' module
- if ((isModuleSet()) && (getModule() == 'index')) {
+ if (isModuleSet()) {
// Load meta data template
- $GLOBALS['__page_header'] .= loadTemplate('metadata', true);
+ $GLOBALS['__page_header'] .= loadTemplate(getMenuModeFromModule() . '_metadata', TRUE);
// Add meta description to header
- if ((isInstalled()) && (isAdminRegistered()) && (SQL_IS_LINK_UP())) {
+ if ((isInstalled()) && (isAdminRegistered()) && (SQL_IS_LINK_UP()) && (getModule() == 'index')) {
// Add meta description not in admin and login module and when the script is installed
generateMetaDescriptionCode();
} // END - if
@@ -1086,7 +1112,7 @@ function FILTER_FINISH_PAGE_HEADER () {
$GLOBALS['__page_header'] .= '';
}
-// Cleans up the DNS cache if sql_patches is at least 0.7.0
+// Cleans up the DNS cache if ext-sql_patches is at least 0.7.0
function FILTER_CLEANUP_DNS_CACHE () {
// Is the latest version installed?
if (isExtensionInstalledAndNewer('sql_patches', '0.7.0')) {
@@ -1116,7 +1142,7 @@ function FILTER_SET_CURRENT_DATE () {
// Filter for marking extension as installed
function FILTER_EXTENSION_MARK_INSTALLED ($filterData) {
// Mark it as installed
- $GLOBALS['ext_is_installed'][$filterData['ext_name']] = true;
+ $GLOBALS['ext_is_installed'][$filterData['ext_name']] = TRUE;
}
// Filter for generating mails links for 'pool' mails
@@ -1124,7 +1150,7 @@ function FILTER_GENERATE_POOL_MAIL_LINKS ($filterData) {
// Is type 'mid'?
if ($filterData['type'] == 'mid') {
// Load template
- $filterData['__output'] .= loadTemplate('admin_links_' . strtolower($filterData['mail_status']) . '_pool_mail', true, $filterData);
+ $filterData['__output'] .= loadTemplate('admin_links_' . strtolower($filterData['mail_status']) . '_pool_mail', TRUE, $filterData);
} // END - if
// Return data
@@ -1136,7 +1162,7 @@ function FILTER_ACTIVATE_EXCHANGE () {
// Is the extension 'user' there?
if ((!isExtensionActive('user')) || (getActivateXchange() == '0')) {
// Silently abort here
- return false;
+ return FALSE;
} // END - if
// Check total amount of users
@@ -1174,7 +1200,7 @@ function FILTER_HANDLE_HOME_IN_INDEX_SETTING ($filterData) {
// Filter to add history entry
function FILTER_ADD_HISTORY_ENTRY ($filterData) {
// Add the entry
- SQL_QUERY_ESC("INSERT INTO `{?_MYSQL_PREFIX?}_history` (`history_subject`,`history_userid`,`history_value`) VALUES ('%s',%s,'%s')",
+ SQL_QUERY_ESC("INSERT INTO `{?_MYSQL_PREFIX?}_history` (`history_subject`, `history_userid`, `history_value`) VALUES ('%s',%s,'%s')",
$filterData,
__FUNCTION__, __LINE__);
@@ -1234,26 +1260,133 @@ function FILTER_INIT_SESSION ($filterData) {
}
// Filter for sending "build mail" to admin
-function FILTER_SEND_ADMIN_BUILD_MAIL ($filterData) {
- // Is the module 'admin'?
- if (getModule() == 'admin') {
- // Okay, then call the proper function
- call_user_func_array('sendAdminBuildMails', $filterData);
+function FILTER_SEND_BUILD_MAIL ($filterData) {
+ // Was one line updated?
+ if (($filterData['affected'] > 0) || (isDebugBuildMailsEnabled())) {
+ // Then call the proper function
+ call_user_func_array('sendGenericBuildMails', $filterData);
} // END - if
// Return data
return $filterData;
}
-// Filter for sending "build mail" to member
-function FILTER_SEND_MEMBER_BUILD_MAIL ($filterData) {
- // Is the module 'login'?
- if (getModule() == 'login') {
- // Okay, then call the proper function
- call_user_func_array('sendMemberBuildMails', $filterData);
+// Handles click on referral banner
+function FILTER_HANDLE_REFERRER_BANNER_CLICK ($filterData) {
+ // Check required parameters
+ if ((isGetRequestElementSet('user')) && (isGetRequestElementSet('banner'))) {
+ // Update clicks counter...
+ SQL_QUERY_ESC("UPDATE `{?_MYSQL_PREFIX?}_refbanner` SET `clicks`=`clicks`+1 WHERE `id`=%s LIMIT 1",
+ array(bigintval(getRequestElement('banner'))), __FUNCTION__, __LINE__);
+
+ // A line has been updated?
+ if ((!SQL_HASZEROAFFECTED()) && (isGetRequestElementSet('user'))) {
+ // Redirect to the user's referral link
+ redirectToUrl('ref.php?refid=' . bigintval(getRequestElement('user')));
+ } // END - if
} // END - if
- // Return data
+ // Return filter data
+ return $filterData;
+}
+
+// Filter for handling viewing of a referral banner
+function FILTER_HANDLE_REFERRER_BANNER_VIEW ($filterData) {
+ // Are all required parameters set
+ if ((isGetRequestElementSet('user')) && (isGetRequestElementSet('banner'))) {
+ // For later things... ;-)
+ $result = SQL_QUERY_ESC("SELECT `url` FROM `{?_MYSQL_PREFIX?}_refbanner` WHERE `id`=%s LIMIT 1",
+ array(bigintval(getRequestElement('banner'))), __FUNCTION__, __LINE__);
+
+ // Is there the banner?
+ if (SQL_NUMROWS($result) == 1) {
+ // Load the URL
+ $data = SQL_FETCHARRAY($result);
+
+ // Update counter
+ SQL_QUERY_ESC("UPDATE `{?_MYSQL_PREFIX?}_refbanner` SET `counter`=`counter`+1 WHERE `id`=%s LIMIT 1",
+ array(bigintval(getRequestElement('banner'))), __FUNCTION__, __LINE__);
+
+ // Set header and ...
+ setContentType('image/' . substr($data['url'], -3, 3));
+
+ // Redirect
+ redirectToUrl($data['url'], FALSE);
+ } // END - if
+
+ // @TODO No banner found, output some default banner
+ logDebugMessage(__FUNCTION__, __LINE__, 'Banner ' . bigintval(getRequestElement('banner')) . ' not found.');
+
+ // Free memory
+ SQL_FREERESULT($result);
+ } // END - if
+
+ // Do nothing for now
+ redirectToUrl('modules.php?module=index');
+}
+
+// Filter for redirecting on wrong server name (e.g. bad.your-server.tld will be redirected to your-server.tld)
+function FILTER_REDIRECT_WRONG_SERVER_NAME ($filterData) {
+ // Get URL
+ $url = getUrl();
+
+ // Is the configured URL same as SERVER_NAME?
+ if (extractHostnameFromUrl($url) != detectServerName()) {
+ // Log all attempts
+ logWrongServerNameRedirect();
+
+ // Then redirect to configured URL
+ redirectToRequestUri();
+ } // END - if
+
+ // Return filter data
+ return $filterData;
+}
+
+// Filter for adding hidden session id
+function FILTER_ADD_INPUT_HIDDEN_SESSION_ID ($filterData) {
+ // Is a spider detected?
+ if ((!isSpider()) && (!isSessionValid()) && ($filterData['__form_method'] == 'get')) {
+ // No, then add the hidden field
+ $filterData['__replacer'] .= '