X-Git-Url: https://git.mxchange.org/?a=blobdiff_plain;f=inc%2Ffilters.php;h=83019226a20f89bd1b43270e53398637cfb2e0a8;hb=6bd47661d7ec406cd276f0835364b1e3f933d6c8;hp=4bdb699670d53af0b484ed6de81bc42c4f41fc6c;hpb=2df9f7a53f8b1dd5164f87824a324ccb3b6634cb;p=mailer.git diff --git a/inc/filters.php b/inc/filters.php index 4bdb699670..83019226a2 100644 --- a/inc/filters.php +++ b/inc/filters.php @@ -58,11 +58,11 @@ function FILTER_FLUSH_FILTERS () { if ((!isInstallationPhase()) && ((!isExtensionInstalled('sql_patches')) || (isExtensionInstalledAndOlder('sql_patches', '0.5.9')))) { // Log only in debug mode if (isDebugModeEnabled()) { - logDebugMessage(__FUNCTION__, __LINE__, 'Cannot flush filters, sql_patches might be missing. isExtensionInstalled()=' . intval(isExtensionInstalled('sql_patches')) . ',isExtensionInstalledAndOlder()=' . intval(isExtensionInstalledAndOlder('sql_patches', '0.5.9'))); + logDebugMessage(__FUNCTION__, __LINE__, 'Cannot flush filters, ext-sql_patches might be missing. isExtensionInstalled()=' . intval(isExtensionInstalled('sql_patches')) . ',isExtensionInstalledAndOlder()=' . intval(isExtensionInstalledAndOlder('sql_patches', '0.5.9'))); } // END - if // Abort silently here - return false; + return FALSE; } // END - if // Nothing is added/remove by default @@ -147,7 +147,7 @@ function FILTER_CALL_HANDLER_LOGIN_FAILTURES ($filterData) { return $content; } -// Filter for redirecting to logout if sql_patches has been installed +// Filter for redirecting to logout if ext-sql_patches has been installed function FILTER_REDIRECT_TO_LOGOUT_SQL_PATCHES () { // Remove this filter unregisterFilter(__FUNCTION__, __LINE__, 'shutdown', __FUNCTION__); @@ -193,7 +193,7 @@ function FILTER_SOLVE_TASK ($filterData) { adminSolveTask($filterData['task_id']); } else { // Not detectable! - reportBug(__FUNCTION__, __LINE__, sprintf("Cannot resolve task. data[%s]=
%s
", gettype($filterData), print_r($filterData, true))); + reportBug(__FUNCTION__, __LINE__, sprintf("Cannot resolve task. data[%s]=
%s
", gettype($filterData), print_r($filterData, TRUE))); } // Return the data @@ -248,11 +248,11 @@ function FILTER_RUN_SQLS ($filterData) { $count = 0; // Debug message - //* DEBUG: */ die('getSqls()=
'.print_r(getSqls(), true).'
ext_update_depends=
'.print_r($GLOBALS['ext_update_depends'], true).'
'); + //* DEBUG: */ die('getSqls()=
'.print_r(getSqls(), TRUE).'
ext_update_depends=
'.print_r($GLOBALS['ext_update_depends'], TRUE).'
'); //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, '- Entered!'); // Is the array there? - if ((isSqlsValid()) && ((!isset($filterData['dry_run'])) || ($filterData['dry_run'] == false))) { + if ((isSqlsValid()) && ((!isset($filterData['dry_run'])) || ($filterData['dry_run'] == FALSE))) { // Run SQL commands //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, '- Found ' . countSqls() . ' queries to run.'); foreach (getSqls() as $mode => $sqls) { @@ -266,7 +266,7 @@ function FILTER_RUN_SQLS ($filterData) { // Is 'enable_codes' not set? Then set it to true if (!isset($filterData['enable_codes'])) { - $filterData['enable_codes'] = true; + $filterData['enable_codes'] = TRUE; } // END - if // Is there still a query left? @@ -311,7 +311,7 @@ function FILTER_UPDATE_LOGIN_DATA () { // Recheck if logged in if ((!isMember()) || ((isAdmin()) && (!isDebugModeEnabled()))) { - return false; + return FALSE; } // END - if // Secure user id @@ -367,6 +367,9 @@ function FILTER_INIT_RANDOMIZER () { // Simply init the randomizer with seed and _ADD value mt_srand(generateSeed() + getConfig('_ADD')); + + // Initialize array with all allowed chars + $GLOBALS['_abc'] = explode(',', 'a,b,c,d,e,f,g,h,i,j,k,l,m,n,o,p,q,r,s,t,u,v,w,x,y,z,A,B,C,D,E,F,G,H,I,J,K,L,M,N,O,P,Q,R,S,T,U,V,W,X,Y,Z,1,2,3,4,6,7,8,9,-,+,_,/,.'); } // Filter for removing updates @@ -430,7 +433,7 @@ function FILTER_DETERMINE_USERNAME () { } // Filter for compiling config entries -function FILTER_COMPILE_CONFIG ($code, $compiled = false) { +function FILTER_COMPILE_CONFIG ($code, $compiled = FALSE) { // Save the uncompiled code $uncompiled = $code; @@ -472,7 +475,7 @@ function FILTER_COMPILE_CONFIG ($code, $compiled = false) { } // END - if // Should we compile it? - if ($compiled === true) { + if ($compiled === TRUE) { // Run the code $eval = "\$GLOBALS['compiled_config'][\$uncompiled] = \"" . $GLOBALS['compiled_config'][$uncompiled] . '";'; //* DEBUG: */ debugOutput(__FUNCTION__.'['.__LINE__.']:
' . encodeEntities($eval) . '
'); @@ -488,7 +491,7 @@ function FILTER_COMPILE_EXPRESSION_CODE ($filterData) { // Compile {%cmd,callback,extraFunction=some_value%} to get expression code snippets // See switch() command below for supported commands preg_match_all('/\{%(([a-zA-Z0-9-_,]+)(=([^\}]+)){0,1})*%\}/', $filterData, $matches); - //* DEBUG: */ debugOutput(__FUNCTION__.'['.__LINE__.']:
'.print_r($matches, true).'
'); + //* DEBUG: */ debugOutput(__FUNCTION__.'['.__LINE__.']:
'.print_r($matches, TRUE).'
'); // Default is from outputHtml() $outputMode = getScriptOutputMode(); @@ -705,6 +708,12 @@ function FILTER_DETERMINE_WHAT_ACTION () { if ((!isCssOutputMode()) && (!isRawOutputMode())) { // Fix module if (!isModuleSet()) { + // Is the module registered? + if (!isModuleRegistered(getRequestElement('module'))) { + // Is not a valid module + redirectToUrl('modules.php?module=index'); + } // END - if + // Is the request element set? if (isGetRequestElementSet('module')) { // Set module from request @@ -832,7 +841,7 @@ function FILTER_LOAD_RUNTIME_INCLUDES () { // Filter for checking admin ACL function FILTER_CHECK_ADMIN_ACL () { // Extension not installed so it's always allowed to access everywhere! - $ret = true; + $ret = TRUE; // Ok, Cookie-Update done if ((isExtensionInstalledAndNewer('admins', '0.3.0')) && (isExtensionActive('admins'))) { @@ -854,7 +863,10 @@ function FILTER_CHECK_ADMIN_ACL () { // Init random number/cache buster function FILTER_INIT_RANDOM_NUMBER () { // Is the extension ext-sql_patches installed and at least 0.3.6? - if ((isExtensionInstalledAndNewer('sql_patches', '0.3.6')) && (isExtensionInstalledAndNewer('other', '0.2.5'))) { + if (isSessionVariableSet('random_number')) { + // Then set it + setConfigEntry('RAND_NUMBER', getSession('random_number')); + } elseif ((isExtensionInstalledAndNewer('sql_patches', '0.3.6')) && (isExtensionInstalledAndNewer('other', '0.2.5'))) { // Generate random number setConfigEntry('RAND_NUMBER', generateRandomCode(10, mt_rand(10000, 99999), getMemberId(), '')); } else { @@ -862,12 +874,21 @@ function FILTER_INIT_RANDOM_NUMBER () { setConfigEntry('RAND_NUMBER', mt_rand(1000000, 9999999)); } + // Set it in session for faster script execusion + setSession('random_number', getConfig('RAND_NUMBER')); + // Copy it to CACHE_BUSTER setConfigEntry('CACHE_BUSTER', getConfig('RAND_NUMBER')); } // Update module counter function FILTER_COUNT_MODULE () { + // Is installation phase? + if (isInstallationPhase()) { + // Then don't count any modules + return; + } // END - if + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'getModule()=' . getModule() . ' - ENTERED!'); // Do count all other modules but not accesses on CSS file css.php! SQL_QUERY_ESC("UPDATE `{?_MYSQL_PREFIX?}_mod_reg` SET `clicks`=`clicks`+1 WHERE `module`='%s' LIMIT 1", @@ -880,7 +901,7 @@ function FILTER_HANDLE_FATAL_ERRORS () { // Is there errors to handle and right output mode? if ((!ifFatalErrorsDetected()) || (!isHtmlOutputMode())) { // Abort executing here - return false; + return FALSE; } // END - if // Set content type @@ -904,11 +925,11 @@ function FILTER_HANDLE_FATAL_ERRORS () { ); // Load row template - $OUT .= loadTemplate('install_fatal_row', true, $content); + $OUT .= loadTemplate('install_fatal_row', TRUE, $content); } // Load main template - $content = loadTemplate('install_fatal_table', true, $OUT); + $content = loadTemplate('install_fatal_table', TRUE, $OUT); } elseif (isInstalled()) { // Display all runtime fatal errors $OUT = ''; @@ -920,11 +941,11 @@ function FILTER_HANDLE_FATAL_ERRORS () { ); // Load row template - $OUT .= loadTemplate('runtime_fatal_row', true, $content); + $OUT .= loadTemplate('runtime_fatal_row', TRUE, $content); } // Load main template - $content = loadTemplate('runtime_fatal_table', true, $OUT); + $content = loadTemplate('runtime_fatal_table', TRUE, $OUT); } // Message to regular users (non-admin) @@ -945,7 +966,7 @@ function FILTER_HANDLE_FATAL_ERRORS () { loadIncludeOnce('inc/header.php'); // Load main template - loadTemplate('fatal_errors', false, $content); + loadTemplate('fatal_errors', FALSE, $content); // Delete all to prevent double-display initFatalMessages(); @@ -964,10 +985,10 @@ function FILTER_DISPLAY_COPYRIGHT () { // Backlink enabled? if (((isConfigEntrySet('ENABLE_BACKLINK')) && (getConfig('ENABLE_BACKLINK') == 'Y')) || (isInstalling())) { // Copyright with backlink, thanks! :-) - $GLOBALS['__page_footer'] .= loadTemplate('copyright_backlink', true); + $GLOBALS['__page_footer'] .= loadTemplate('copyright_backlink', TRUE); } else { // No backlink in Copyright note - $GLOBALS['__page_footer'] .= loadTemplate('copyright', true); + $GLOBALS['__page_footer'] .= loadTemplate('copyright', TRUE); } } // END - if } @@ -1064,12 +1085,12 @@ function FILTER_DO_LOGIN_ADMIN ($filterData) { // Filter for loading page header, this should be ran first! function FILTER_LOAD_PAGE_HEADER () { // Output page header code - $GLOBALS['__page_header'] = loadTemplate('page_header', true); + $GLOBALS['__page_header'] = loadTemplate('page_header', TRUE); // Include meta data in 'guest' module if ((isModuleSet()) && (getModule() == 'index')) { // Load meta data template - $GLOBALS['__page_header'] .= loadTemplate('metadata', true); + $GLOBALS['__page_header'] .= loadTemplate('metadata', TRUE); // Add meta description to header if ((isInstalled()) && (isAdminRegistered()) && (SQL_IS_LINK_UP())) { @@ -1088,7 +1109,7 @@ function FILTER_FINISH_PAGE_HEADER () { $GLOBALS['__page_header'] .= ''; } -// Cleans up the DNS cache if sql_patches is at least 0.7.0 +// Cleans up the DNS cache if ext-sql_patches is at least 0.7.0 function FILTER_CLEANUP_DNS_CACHE () { // Is the latest version installed? if (isExtensionInstalledAndNewer('sql_patches', '0.7.0')) { @@ -1118,7 +1139,7 @@ function FILTER_SET_CURRENT_DATE () { // Filter for marking extension as installed function FILTER_EXTENSION_MARK_INSTALLED ($filterData) { // Mark it as installed - $GLOBALS['ext_is_installed'][$filterData['ext_name']] = true; + $GLOBALS['ext_is_installed'][$filterData['ext_name']] = TRUE; } // Filter for generating mails links for 'pool' mails @@ -1126,7 +1147,7 @@ function FILTER_GENERATE_POOL_MAIL_LINKS ($filterData) { // Is type 'mid'? if ($filterData['type'] == 'mid') { // Load template - $filterData['__output'] .= loadTemplate('admin_links_' . strtolower($filterData['mail_status']) . '_pool_mail', true, $filterData); + $filterData['__output'] .= loadTemplate('admin_links_' . strtolower($filterData['mail_status']) . '_pool_mail', TRUE, $filterData); } // END - if // Return data @@ -1138,7 +1159,7 @@ function FILTER_ACTIVATE_EXCHANGE () { // Is the extension 'user' there? if ((!isExtensionActive('user')) || (getActivateXchange() == '0')) { // Silently abort here - return false; + return FALSE; } // END - if // Check total amount of users @@ -1238,14 +1259,86 @@ function FILTER_INIT_SESSION ($filterData) { // Filter for sending "build mail" to admin function FILTER_SEND_BUILD_MAIL ($filterData) { // Was one line updated? - //if ($filterData['affected'] == 1) { + if ($filterData['affected'] > 0) { // Then call the proper function call_user_func_array('sendGenericBuildMails', $filterData); - //} // END - if + } // END - if // Return data return $filterData; } +// Handles click on referral banner +function FILTER_HANDLE_REFERRER_BANNER_CLICK ($filterData) { + // Check required parameters + if ((isGetRequestElementSet('user')) && (isGetRequestElementSet('banner'))) { + // Update clicks counter... + SQL_QUERY_ESC("UPDATE `{?_MYSQL_PREFIX?}_refbanner` SET `clicks`=`clicks`+1 WHERE `id`=%s LIMIT 1", + array(bigintval(getRequestElement('banner'))), __FUNCTION__, __LINE__); + + // A line has been updated? + if ((!SQL_HASZEROAFFECTED()) && (isGetRequestElementSet('user'))) { + // Redirect to the user's referral link + redirectToUrl('ref.php?refid=' . bigintval(getRequestElement('user'))); + } // END - if + } // END - if + + // Return filter data + return $filterData; +} + +// Filter for handling viewing of a referral banner +function FILTER_HANDLE_REFERRER_BANNER_VIEW ($filterData) { + // Are all required parameters set + if ((isGetRequestElementSet('user')) && (isGetRequestElementSet('banner'))) { + // For later things... ;-) + $result = SQL_QUERY_ESC("SELECT `url` FROM `{?_MYSQL_PREFIX?}_refbanner` WHERE `id`=%s LIMIT 1", + array(bigintval(getRequestElement('banner'))), __FUNCTION__, __LINE__); + + // Is there the banner? + if (SQL_NUMROWS($result) == 1) { + // Load the URL + $data = SQL_FETCHARRAY($result); + + // Update counter + SQL_QUERY_ESC("UPDATE `{?_MYSQL_PREFIX?}_refbanner` SET `counter`=`counter`+1 WHERE `id`=%s LIMIT 1", + array(bigintval(getRequestElement('banner'))), __FUNCTION__, __LINE__); + + // Set header and ... + setContentType('image/' . substr($data['url'], -3, 3)); + + // Redirect + redirectToUrl($data['url'], FALSE); + } else { + // @TODO No banner found, output some default banner + logDebugMessage(__FUNCTION__, __LINE__, 'Banner ' . bigintval(getRequestElement('banner')) . ' not dound.'); + } + + // Free memory + SQL_FREERESULT($result); + } else { + // Do nothing for now + redirectToUrl('modules.php?module=index'); + } +} + +// Filter for redirecting on wrong server name (e.g. bad.your-server.tld will be redirected to your-server.tld) +function FILTER_REDIRECT_WRONG_SERVER_NAME ($filterData) { + // Get URL + $url = getUrl(); + + // Is the configured URL same as SERVER_NAME? + if (extractHostnameFromUrl($url) != detectServerName()) { + // Log all attempts + logWrongServerNameRedirect(); + + // Then redirect to configured URL + redirectToRequestUri(); + } // END - if + + // Return filter data + return $filterData; +} + // [EOF] ?>