From: Roland Haeder Date: Sat, 4 Jun 2016 16:20:03 +0000 (+0200) Subject: Rewrote init-phase stuff: X-Git-Url: https://git.mxchange.org/?a=commitdiff_plain;h=cb11b0028323b24de48bfbab2ed576455e0d9465;p=mailer.git Rewrote init-phase stuff: - now inc/init.php is being loaded as first include file - renamed some libs (old names from my previous project "MyAutoInstaller Community") to have them conform with naming convention (easier loading, too) - moved code to new functions to have it encapsulated - inc/mysql-connect.php is now deprecated - updated TODOs.txt Signed-off-by: Roland Häder --- diff --git a/DOCS/TODOs.txt b/DOCS/TODOs.txt index 3b01431478..1d82b0ed93 100644 --- a/DOCS/TODOs.txt +++ b/DOCS/TODOs.txt @@ -1,4 +1,4 @@ -### WARNING: THIS FILE IS AUTO-GENERATED BY ./contrib/todo-builder.sh (uid=1051406/user=) ### +### WARNING: THIS FILE IS AUTO-GENERATED BY ./contrib/todo-builder.sh (uid=/user=quix0r) ### ### DO NOT EDIT THIS FILE. ### ./api.php:66:// @TODO Do stuff here ./autoreg.php:57:// @TODO Add processing of request here @@ -10,15 +10,18 @@ ./inc/config-functions.php:354: // @TODO Call setConfigEntry() somehow ./inc/daily/daily_beg.php:47:// @TODO This should be converted in a daily beg rallye ./inc/daily/daily_birthday.php:58:// @TODO Move this out to an extension +./inc/database-functions.php:1521: // @TODO Rewrite these lines to a filter +./inc/database-functions.php:1545: // @TODO Rewrite this to a filter +./inc/database-functions.php:1861: // @TODO Rewrite this to a filter +./inc/database-functions.php:2029: // @TODO If the EL sub-system can support more than one parameter, this call_user_func_array() can be avoided +./inc/database-functions.php:2161: // @TODO Used generic 'userid' here +./inc/database-functions.php:2379:// @TODO cacheFiles is not yet supported +./inc/database-functions.php:39:// @TODO Can we cache this? +./inc/database-functions.php:403: // @TODO Try to rewrite this to one or more functions ./inc/email-functions.php:108: * @TODO Rewrite this to an extension 'smtp' ./inc/email-functions.php:204:// @TODO $rawUserId is currently unused ./inc/expression-functions.php:168:// @TODO FILTER_COMPILE_CONFIG does not handle call-back functions so we handle it here again ./inc/expression-functions.php:41: // @TODO is escapeQuotes() enough for strings with single/double quotes? -./inc/extensions-functions.php:2234: // @TODO Is this really neccessary? -./inc/extensions-functions.php:2291:// @TODO This should be rewrittten to allow, more development states, e.g. 'planing','alpha','beta','beta2','stable' -./inc/extensions-functions.php:434: // @TODO This redirect is still needed to register sql_patches! Please try to avoid it -./inc/extensions-functions.php:450:// @TODO Change from ext_id to ext_name (not just even the variable! ;-) ) -./inc/extensions-functions.php:590: // @TODO Extension is loaded, what next? ./inc/extensions/admins/mode-update.php:38:// @TODO Remove double tabs from all lines ./inc/extensions/autopurge/mode-update.php:38:// @TODO Remove double tabs from all lines ./inc/extensions/beg/mode-update.php:38:// @TODO Remove double tabs from all lines @@ -35,6 +38,11 @@ ./inc/extensions/ext-yoomedia.php:120: // @TODO Can this be moved into a database table? ./inc/extensions/ext-yoomedia.php:54:// @TODO Only deprecated when 'ext-network' is ready: setExtensionDeprecated('Y'); ./inc/extensions/forced/mode-setup.php:38:// @TODO Remove double tabs from all lines +./inc/extensions-functions.php:2234: // @TODO Is this really neccessary? +./inc/extensions-functions.php:2291:// @TODO This should be rewrittten to allow, more development states, e.g. 'planing','alpha','beta','beta2','stable' +./inc/extensions-functions.php:434: // @TODO This redirect is still needed to register sql_patches! Please try to avoid it +./inc/extensions-functions.php:450:// @TODO Change from ext_id to ext_name (not just even the variable! ;-) ) +./inc/extensions-functions.php:590: // @TODO Extension is loaded, what next? ./inc/extensions/grade/mode-setup.php:38:// @TODO Remove double tabs from all lines ./inc/extensions/html_mail/mode-update.php:38:// @TODO Remove double tabs from all lines ./inc/extensions/network/mode-setup.php:13: * @TODO ADCocktail: All request parameters, BIDausKAS, WIDausKAS??? * @@ -83,13 +91,14 @@ ./inc/extensions/transfer/mode-update.php:38:// @TODO Remove double tabs from all lines ./inc/extensions/user/mode-update.php:38:// @TODO Remove double tabs from all lines ./inc/extensions/user/mode-update.php:548: // @TODO Make configurable through web interface -./inc/filter-functions.php:115: // @TODO Remove this forced removal after a year or so ./inc/filter/blacklist_filter.php:105: // @TODO Insert log entry ./inc/filter/blacklist_filter.php:116: // @TODO Insert log entry ./inc/filter/blacklist_filter.php:127: // @TODO Insert log entry ./inc/filter/bonus_filter.php:56: // @TODO This query isn't right, it will only update if the user was for a longer time away! ./inc/filter/forced_filter.php:75: // @TODO This part is unfinished +./inc/filter-functions.php:115: // @TODO Remove this forced removal after a year or so ./inc/filter/order_filter.php:132: // @TODO 200 is hard-coded here, swap it out to config + admin_config_order.tpl +./inc/filters.php:1379: // @TODO No banner found, output some default banner ./inc/filter/user_filter.php:279:// @TODO 0% done ./inc/filter/user_filter.php:289:// @TODO 0% done ./inc/filter/wernis_filter.php:137:// @TODO 0% done @@ -97,22 +106,21 @@ ./inc/filter/wernis_filter.php:62:// @TODO 10% done ./inc/filter/wernis_filter.php:80:// @TODO 10% done ./inc/filter/wernis_filter.php:98:// @TODO 10% done -./inc/filters.php:1379: // @TODO No banner found, output some default banner -./inc/functions.php:1242: // @TODO Are these convertions still required? -./inc/functions.php:1263:// @TODO Rewrite this function to use readFromFile() and writeToFile() -./inc/functions.php:1567: // @TODO This should be rewritten not to load the cache file for just checking if it is there for save removal. -./inc/functions.php:1943: // @TODO Find a way to cache this -./inc/functions.php:2047: // @TODO This is still very static, rewrite it somehow -./inc/functions.php:2226: // @TODO Rename column data_type to e.g. mail_status -./inc/functions.php:2576:// @TODO cacheFiles is not yet supported -./inc/functions.php:440:// @TODO $allowSpider is unused +./inc/general-functions.php:1354: // @TODO Are these convertions still required? +./inc/general-functions.php:1375:// @TODO Rewrite this function to use readFromFile() and writeToFile() +./inc/general-functions.php:1679: // @TODO This should be rewritten not to load the cache file for just checking if it is there for save removal. +./inc/general-functions.php:2055: // @TODO Find a way to cache this +./inc/general-functions.php:2159: // @TODO This is still very static, rewrite it somehow +./inc/general-functions.php:2338: // @TODO Rename column data_type to e.g. mail_status +./inc/general-functions.php:2688:// @TODO cacheFiles is not yet supported +./inc/general-functions.php:552:// @TODO $allowSpider is unused ./inc/gen_sql_patches.php:93:// @TODO Rewrite this to a filter -./inc/install-functions.php:102: // @TODO DEACTIVATED: changeDataInLocalConfigurationFile('OUTPUT-MODE', "setConfigEntry('OUTPUT_MODE', '", "');", postRequestElement('omode'), 0); -./inc/install-functions.php:497: // @TODO Comparing with DEFAULT_MAIN_TITLE doesn't work -./inc/language-functions.php:249: // @TODO These are all valid languages, again hard-coded +./inc/install-functions.php:166: // @TODO DEACTIVATED: changeDataInLocalConfigurationFile('OUTPUT-MODE', "setConfigEntry('OUTPUT_MODE', '", "');", postRequestElement('omode'), 0); +./inc/install-functions.php:561: // @TODO Comparing with DEFAULT_MAIN_TITLE doesn't work ./inc/language/de.php:1150: // @TODO Rewrite these two constants ./inc/language/de.php:1166: // @TODO Rewrite these three constants ./inc/language/de.php:46: // @TODO Please sort these language elements +./inc/language-functions.php:249: // @TODO These are all valid languages, again hard-coded ./inc/language/install_de.php:155: // @TODO Move this to e.g. ext-smtp ./inc/language/newsletter_de.php:13: * @TODO This language file is completely out-dated, please do no * ./inc/language/order_de.php:71: // @TODO Find better text @@ -191,12 +199,12 @@ ./inc/modules/admin/what-list_rallye_prices.php:222: // @TODO Rewrite these two constants ./inc/modules/admin/what-list_refs.php:101: // @TODO Try to rewrite some to EL ./inc/modules/admin/what-list_unconfirmed.php:115: // @TODO "Please do not call me directly." Should be rewritten to a nice selection depending on ext-bonus +./inc/modules/admin/what-list_user_cats.php:54: // @TODO No longer needed? define('__CATEGORIES_BASE' , ' not working here ./inc/template-functions.php:1128: // @TODO Deprecate this thing @@ -274,8 +274,8 @@ ./templates/de/html/guest/guest_nickname_login.tpl:21: @TODO Deactivated feature, try to find a solution for this or remove it. ./templates/de/html/guest/guest_stats_member.tpl:21: @TODO We have to fix these counters. ./templates/de/html/member/member_list_unconfirmed_nopoints.tpl:20: -./templates/de/html/surfbar/surfbar_frame_textlinks.tpl:5: ./templates/de/html/surfbar/surfbar_frameset.tpl:4: // @TODO This redirect kills our own frameset +./templates/de/html/surfbar/surfbar_frame_textlinks.tpl:5: ./js/admin-network-query-api.js:67:// @TODO Add support for checkboxes ./js/admin-network-query-api.js:68:// @TODO Make progress window working ./js/ajax-common.js:245: // @TODO Need this be secured? @@ -289,6 +289,7 @@ ### ### DEPRECATION FOLLOWS: ### ### ./contrib/install_svn.php:2:// @DEPRECATED ./inc/modules/admin/admin-inc.php:539:// @DEPRECATED +./inc/mysql-connect.php:2:// @DEPRECATED ./inc/stylesheet.php:2:// @DEPRECATED ./inc/template-functions.php:2452:// Removes comments with @DEPRECATED ./inc/template-functions.php:2460: // Is there a @DEPRECATED? diff --git a/admin.php b/admin.php index 4eb3e7aea2..d9deaec77f 100644 --- a/admin.php +++ b/admin.php @@ -40,8 +40,8 @@ $GLOBALS['__start_time'] = microtime(TRUE); $GLOBALS['__module'] = 'admin'; $GLOBALS['__output_mode'] = -1; -// Load the required file(s) -require('inc/config-global.php'); +// Initialize application +require('inc/init.php'); // Set content type for e.g. search engines setContentType('text/html'); diff --git a/agb.php b/agb.php index dc606c4214..5cadca9b3c 100644 --- a/agb.php +++ b/agb.php @@ -40,8 +40,8 @@ $GLOBALS['__start_time'] = microtime(TRUE); $GLOBALS['__module'] = 'agb'; $GLOBALS['__output_mode'] = -1; -// Load the required file(s) -require('inc/config-global.php'); +// Initialize application +require('inc/init.php'); // Set content type for e.g. search engines setContentType('text/html'); diff --git a/ajax.php b/ajax.php index 7ebbaae429..73b3d8f191 100644 --- a/ajax.php +++ b/ajax.php @@ -48,8 +48,8 @@ $GLOBALS['__module'] = 'ajax'; $GLOBALS['__header_sent'] = 2; $GLOBALS['__footer_sent'] = 2; -// Load config file -require('inc/config-global.php'); +// Initialize application +require('inc/init.php'); // Load special AJAX library loadIncludeOnce('inc/ajax-functions.php'); diff --git a/api.php b/api.php index a27acc7b82..1b60bfc89a 100644 --- a/api.php +++ b/api.php @@ -51,8 +51,8 @@ $GLOBALS['__footer_sent'] = 2; // Temporary set HTTP 404 here. This will be removed once this stuff is ready. setHttpStatus('404 Not Found'); -// Load config file -require('inc/config-global.php'); +// Initialize application +require('inc/init.php'); // Load special API library //loadIncludeOnce('inc/api-functions.php'); diff --git a/autoreg.php b/autoreg.php index ecd2f9c2b9..f843365074 100644 --- a/autoreg.php +++ b/autoreg.php @@ -45,8 +45,8 @@ $GLOBALS['__module'] = 'autoreg'; $GLOBALS['__header_sent'] = 2; $GLOBALS['__footer_sent'] = 2; -// Load the required file(s) -require('inc/config-global.php'); +// Initialize application +require('inc/init.php'); // Set content type setContentType('text/plain'); diff --git a/beg.php b/beg.php index 2d52ee717b..5114836eb1 100644 --- a/beg.php +++ b/beg.php @@ -41,8 +41,8 @@ $GLOBALS['__module'] = 'beg'; $GLOBALS['__output_mode'] = '0'; $errorCode = NULL; -// Load the required file(s) -require('inc/config-global.php'); +// Initialize application +require('inc/init.php'); // Set content type setContentType('text/html'); diff --git a/birthday_confirm.php b/birthday_confirm.php index 0321d7f5b3..30a21421eb 100644 --- a/birthday_confirm.php +++ b/birthday_confirm.php @@ -40,8 +40,8 @@ $GLOBALS['__start_time'] = microtime(TRUE); $GLOBALS['__module'] = 'birthday_confirm'; $GLOBALS['__output_mode'] = '0'; -// Load the required file(s) -require('inc/config-global.php'); +// Initialize application +require('inc/init.php'); // Set content type setContentType('text/html'); diff --git a/click.php b/click.php index ca290a969b..0ef848cee5 100644 --- a/click.php +++ b/click.php @@ -40,8 +40,8 @@ $GLOBALS['__start_time'] = microtime(TRUE); $GLOBALS['__module'] = 'click'; $GLOBALS['__output_mode'] = -1; -// Load the required file(s) -require('inc/config-global.php'); +// Initialize application +require('inc/init.php'); // Set content type, this is required for search engines setContentType('text/html'); diff --git a/confirm.php b/confirm.php index 7ebd0d1184..7974397447 100644 --- a/confirm.php +++ b/confirm.php @@ -40,8 +40,8 @@ $GLOBALS['__start_time'] = microtime(TRUE); $GLOBALS['__module'] = 'confirm'; $GLOBALS['__output_mode'] = -1; -// Load the required file(s) -require('inc/config-global.php'); +// Initialize application +require('inc/init.php'); // Set content type for e.g. search engines setContentType('text/html'); diff --git a/cron.php b/cron.php index dc8af6902b..b6863e5d69 100644 --- a/cron.php +++ b/cron.php @@ -48,8 +48,8 @@ $GLOBALS['__module'] = 'cron'; $GLOBALS['__header_sent'] = 2; $GLOBALS['__footer_sent'] = 2; -// Load config file -require('inc/config-global.php'); +// Initialize application +require('inc/init.php'); // Load header here loadPageHeader(); diff --git a/css.php b/css.php index 2c2278960d..5178b29a0f 100644 --- a/css.php +++ b/css.php @@ -43,8 +43,8 @@ $GLOBALS['__start_time'] = microtime(TRUE); $GLOBALS['__module'] = 'css'; $GLOBALS['__output_mode'] = 1; -// Load the required file(s) -require('inc/config-global.php'); +// Initialize application +require('inc/init.php'); // Set header setContentType('text/css'); diff --git a/debug.php b/debug.php index 46bdb2bc9d..50c800f0da 100644 --- a/debug.php +++ b/debug.php @@ -40,8 +40,8 @@ $GLOBALS['__start_time'] = microtime(TRUE); $GLOBALS['__module'] = 'debug'; $GLOBALS['__output_mode'] = -1; -// Load the required file(s) -require('inc/config-global.php'); +// Initialize application +require('inc/init.php'); // Redirect only to registration page when this script is installed if ((isExtensionActive('debug')) && (!ifFatalErrorsDetected())) { diff --git a/doubler.php b/doubler.php index 496e30a1d4..c1b3b91a6e 100644 --- a/doubler.php +++ b/doubler.php @@ -40,8 +40,8 @@ $GLOBALS['__start_time'] = microtime(TRUE); $GLOBALS['__module'] = 'doubler'; $GLOBALS['__output_mode'] = '0'; -// Load the required file(s) -require('inc/config-global.php'); +// Initialize application +require('inc/init.php'); // Set content type setContentType('text/html'); diff --git a/img.php b/img.php index bc98c91e98..27722067f1 100644 --- a/img.php +++ b/img.php @@ -40,8 +40,8 @@ $GLOBALS['__start_time'] = microtime(TRUE); $GLOBALS['__module'] = 'img'; $GLOBALS['__output_mode'] = -3; -// Load the required file(s) -require('inc/config-global.php'); +// Initialize application +require('inc/init.php'); // Load header loadPageHeader(); diff --git a/inc/config-global.php b/inc/config-global.php index 78359322d7..94cb2c867a 100644 --- a/inc/config-global.php +++ b/inc/config-global.php @@ -35,58 +35,23 @@ if (!defined('__SECURITY')) { die(); } // END - if -/************************************************************************ - * PLEASE DO NOT EDIT THE COMMENTS! install.php NEEDS THEM! * - ************************************************************************/ - -// Proper function exists? -if (function_exists('date_default_timezone_set')) { - // Set default timezone to Europe/Berlin (because I'm from Germany) - @date_default_timezone_set('Europe/Berlin'); -} // END - if - -// CFG: ERROR-REPORTING -error_reporting(E_ALL | E_DEPRECATED | E_STRICT); - -// Is the function there? (removed in PHP 5.4.0) -if (function_exists('import_request_variables')) { - // CFG: REGISTER-GLOBALS - @import_request_variables(''); -} // END - if - -// Detect path (without 'inc') and fix windozer paths -$path = str_replace(chr(92), '/', substr(dirname(__FILE__), 0, -3)); - -// Some very important function includes -foreach (array('config', 'wrapper', 'template', 'module', 'inc', 'http') as $inc) { - include($path . 'inc/' . $inc . '-functions.php'); -} // END - foreach - -// General functions -include($path . 'inc/functions.php'); +/******************************************************************************** + * Please don't touch anything here. Instead set them again in config-local.php * + ********************************************************************************/ // Auto-detection of URL $URL = detectServerProtocol() . '://' . detectServerName() . str_replace(chr(92), '/', dirname($_SERVER['PHP_SELF'])); while (substr($URL, -1, 1) == '/') { $URL = substr($URL, 0, -1); } -// Initialize the configuration -initConfig(); - -// Init HTTP handling -initHttp(); +// CFG: HOST-URL (without trailing '/' !) +setConfigEntry('URL', $URL); // CFG: FLOAT-MASK setConfigEntry('FLOAT_MASK', '%01.5f'); -// CFG: HOST-URL (without trailing '/' !) -setConfigEntry('URL', $URL); - // CFG: DOMAIN-NAME (without trailing '/' !) setConfigEntry('DOMAIN', detectDomainName()); -// CFG: SERVER-PATH -setConfigEntry('PATH', $path); - // CFG: VERSION setConfigEntry('VERSION', 'v0.2.1'); @@ -118,14 +83,7 @@ setConfigEntry('salt_length', 10); setConfigEntry('minium_admin_pass_length', 4); // Remove maybe conflicting variables -unset($url); -unset($path); - -// Connect to the database... -loadIncludeOnce('inc/mysql-connect.php'); - -// Init stats system -initStatsSystem(); +unset($URL); // [EOF] ?> diff --git a/inc/database-functions.php b/inc/database-functions.php new file mode 100644 index 0000000000..c299781427 --- /dev/null +++ b/inc/database-functions.php @@ -0,0 +1,2557 @@ + $accessLevel, 'type' => $type, 'search' => $search, 'prefix' => $prefix, 'link_add' => $linkAdd, 'content' => '', 'add' => $ADD)); + + // Add pre-content + $prefix = $ret['content']; + + // Add default content + $prefix .= '
{--YOU_ARE_HERE--} Home'; + } elseif ($return === FALSE) { + // Count depth + $GLOBALS['nav_depth']++; + } + + // Add arrow + $prefix .= ' -> '; + + // We need to remove .php and the end + if (substr($search, -4, 4) == '.php') { + // Remove the .php + $search = substr($search, 0, -4); + } // END - if + + // Is ext-sql_patches installed? + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'isExtensionInstalledAndNewer()=' . intval(isExtensionInstalledAndNewer('sql_patches', '0.2.3')) . ',youre_here=' . getYoureHere() . ',isAdmin()=' . intval(isAdmin()) . ',modCheck=' . $modCheck); + if (((isExtensionInstalledAndNewer('sql_patches', '0.2.3')) && (isYoureHereEnabled())) || ((isAdmin()) && ($modCheck == 'admin'))) { + // Output HTML code + $OUT = $prefix . '' . getTitleFromMenu($accessLevel, $search, $type, $ADD) . ''; + + // Can we close the you-are-here navigation? + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'type=' . $type . ',getWhat()=' . getWhat() . ',accessLevel=' . $accessLevel . ',isWhatSet()=' . intval(isWhatSet())); + if (($type == 'what') || (($type == 'action') && ((!isWhatSet()) || (($accessLevel == 'admin') && (getWhat() == 'welcome'))))) { + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'type=' . $type); + // Add closing div and br-tag + $GLOBALS['nav_depth'] = '0'; + + // Run the post-filter chain + $ret = runFilterChain('post_youhere_line', array('access_level' => $accessLevel, 'type' => $type, 'search' => $search, 'prefix' => $prefix, 'link_add' => $linkAdd, 'content' => $OUT, 'add' => $ADD)); + + // Get content from filter back + $OUT = $ret['content']; + + // Close div-tag, so not the filters have to do it + $OUT .= '
'; + } // END - if + } // END - if + + // Return or output HTML code? + if ($return === TRUE) { + // Return HTML code + return $OUT; + } else { + // Output HTML code here + outputHtml($OUT); + } +} + +// Adds a menu (mode = guest/member/admin/sponsor) to output +function addMenu ($mode, $action, $what) { + // Init some variables + $main_cnt = '0'; + + // is the menu action valid? + if (!isMenuActionValid($mode, $action, $what, TRUE)) { + return getCode('MENU_NOT_VALID'); + } // END - if + + // Non-admin shall not see all menus + $ADD = " AND `visible`='Y' AND `locked`='N'"; + if (isAdmin()) { + // Is admin, so make all visible + $ADD = ''; + } // END - if + + // Load SQL data and add the menu to the output stream... + $result_main = sqlQueryEscaped("SELECT + `title`, + `what`, + `action`, + `visible`, + `locked` +FROM + `{?_MYSQL_PREFIX?}_%s_menu` +WHERE + (`what`='' OR `what` IS NULL) + ".$ADD." +ORDER BY + `sort` ASC", + array($mode), __FUNCTION__, __LINE__); + + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'main_cnt=' . $main_cnt . ',getWhat()=' . getWhat()); + if (!ifSqlHasZeroNumRows($result_main)) { + // There are menus available, so we simply display them... :) + $GLOBALS['rows'] = ''; + while ($content = sqlFetchArray($result_main)) { + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'main_cnt=' . $main_cnt . ',action=' . $content['action'] . ',getWhat()=' . getWhat()); + // Disable the block-mode + enableBlockMode(FALSE); + + // Load menu header template + $GLOBALS['rows'] .= loadTemplate($mode . '_menu_title', TRUE, $content); + + // Sub menu + $result_sub = sqlQueryEscaped("SELECT + `title` AS `sub_title`, + `what` AS `sub_what`, + `visible` AS `sub_visible`, + `locked` AS `sub_locked` +FROM + `{?_MYSQL_PREFIX?}_%s_menu` +WHERE + `action`='%s' AND + `what` != '' AND + `what` IS NOT NULL + " . $ADD . " +ORDER BY + `sort` ASC", + array( + $mode, + $content['action'] + ), __FUNCTION__, __LINE__); + + // Are there some entries? + if (!ifSqlHasZeroNumRows($result_sub)) { + // Init counter + $count = '0'; + + // Load all sub menus + while ($content2 = sqlFetchArray($result_sub)) { + // Merge both arrays in one + $content = merge_array($content, $content2); + + // Init content + $OUT = ''; + + // Full file name for checking menu + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'sub_what=' . $content['sub_what']); + $inc = sprintf('inc/modules/%s/what-%s.php', $mode, $content['sub_what']); + if (isIncludeReadable($inc)) { + // Mark currently selected menu - open + if ((!empty($what)) && (($what == $content['sub_what']))) { + $OUT = ''; + } // END - if + + // Is ext-sql_patches up-to-date, and display_home_in_index is Y? + if ((getModule() == 'index') && (isExtensionInstalledAndNewer('sql_patches', '0.8.3')) && (isDisplayHomeInIndexEnabled()) && ($content['sub_what'] == getIndexHome())) { + // Use index.php as link + $OUT .= ''; + } else { + // Regular navigation link + $OUT .= ''; + } + } else { + // Not found - open + $OUT .= ''; + } + + // Menu title + $OUT .= '{?menu_blur_spacer?}' . $content['sub_title']; + + if (isIncludeReadable($inc)) { + $OUT .= ''; + + // Mark currently selected menu - close + if ((!empty($what)) && (($what == $content['sub_what']))) { + $OUT .= ''; + } // END - if + } else { + // Not found - close + $OUT .= ''; + } + + // Cunt it up + $count++; + + // Rewrite array + $content = array( + 'menu' => $OUT, + 'what' => $content['sub_what'], + 'visible' => $content['sub_visible'], + 'locked' => $content['locked'], + ); + + // Add regular menu row or bottom row? + if ($count < sqlNumRows($result_sub)) { + $GLOBALS['rows'] .= loadTemplate($mode . '_menu_row', TRUE, $content); + } else { + $GLOBALS['rows'] .= loadTemplate($mode . '_menu_bottom', TRUE, $content); + } + } // END - while + } else { + // This is a menu block... ;-) + enableBlockMode(); + + // Load menu block + $INC = sprintf('inc/modules/%s/action-%s.php', $mode, $content['action']); + if (isFileReadable($INC)) { + // Load include file + if ((!isExtensionActive($content['action'])) || ($content['action'] == 'online')) $GLOBALS['rows'] .= loadTemplate('menu_what_begin', TRUE, $mode); + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'main_cnt=' . $main_cnt . ',action=' . $content['action'] . ',getWhat()=' . getWhat()); + loadInclude($INC); + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'main_cnt=' . $main_cnt . ',action=' . $content['action'] . ',getWhat()=' . getWhat()); + if ((!isExtensionActive($content['action'])) || ($content['action'] == 'online')) $GLOBALS['rows'] .= loadTemplate('menu_what_end', TRUE, $mode); + } + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'main_cnt=' . $main_cnt . ',action=' . $content['action'] . ',getWhat()=' . getWhat()); + } + + // Free result + sqlFreeResult($result_sub); + + // Count one up + $main_cnt++; + + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'main_cnt=' . $main_cnt . ',getWhat()=' . getWhat()); + if (sqlNumRows($result_main) > $main_cnt) { + // Add separator + $GLOBALS['rows'] .= loadTemplate('menu_separator', TRUE, $mode); + + // Prepare filter data array + $filterData = array( + 'output' => '', + 'exclusive' => FALSE, + 'action' => $action, + 'mode' => $mode, + ); + + // Run filter chain + $filterData = runFilterChain($mode . '_menu_advert', $filterData); + + // Add content output + $GLOBALS['rows'] .= $filterData['output']; + } // END - if + } // END - while + + // Free memory + sqlFreeResult($result_main); + + // Prepare filter data array + $filterData = array( + 'output' => '', + 'exclusive' => FALSE, + 'action' => $action, + 'mode' => $mode, + ); + + // Run filter chain + $filterData = runFilterChain($mode . '_menu_advert_end', $filterData); + + // Add content output + $GLOBALS['rows'] .= $filterData['output']; + + // Prepare data + $content = array( + 'rows' => $GLOBALS['rows'], + 'menu_mode' => $mode + ); + + // Load main template + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'main_cnt=' . $main_cnt . ',getWhat()=' . getWhat()); + loadTemplate('menu_table', FALSE, $content); + } // END - if +} + +// Checks whether the current user is a member +function isMember () { + // By default no member + $ret = FALSE; + + // Fix missing 'last_online' array, damn stupid code :((( + // @TODO Try to rewrite this to one or more functions + if ((!isset($GLOBALS['last_online'])) || (!is_array($GLOBALS['last_online']))) { + $GLOBALS['last_online'] = array(); + } // END - if + + // Is the cache entry there? + if (isset($GLOBALS[__FUNCTION__])) { + // Then return it + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'CACHED! (' . intval($GLOBALS[__FUNCTION__]) . ')'); + return $GLOBALS[__FUNCTION__]; + } elseif ((!isSessionVariableSet('userid')) || (!isSessionVariableSet('u_hash'))) { + // Destroy any existing user session data + destroyMemberSession(); + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'No member set in cookie/session.'); + + // Abort further processing + return FALSE; + } + + // Get userid secured from session + setMemberId(getSession('userid')); + + // ... and set it as currently handled user id + setCurrentUserId(getMemberId()); + + // Init user data array + initUserData(); + + // Fix "deleted" cookies + fixDeletedCookies(array('userid', 'u_hash')); + + // Are cookies set and can the member data be loaded? + if ((isMemberIdSet()) && (isSessionVariableSet('u_hash')) && (fetchUserData(getMemberId()) === TRUE)) { + // Validate password by created the difference of it and the secret key + $valPass = encodeHashForCookie(getUserData('password')); + + // So did we now have valid data and an unlocked user? + if ((getUserData('status') == 'CONFIRMED') && ($valPass == getSession('u_hash'))) { + // Transfer last module and online time + $GLOBALS['last_online']['module'] = getUserData(getUserLastWhatName()); + $GLOBALS['last_online']['online'] = getUserData('last_online'); + + // Account is confirmed and all cookie data is valid so he is definely logged in! :-) + $ret = TRUE; + } // END - if + } // END - if + + // Is $ret still false? + if ($ret === FALSE) { + // Yes, so destroy the session + destroyMemberSession(); + } // END - if + + // Cache status + $GLOBALS[__FUNCTION__] = $ret; + + // Return status + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'ret=' . intval($ret)); + return $ret; +} + +// Fetch user data for given user id +function fetchUserData ($value, $column = 'userid') { + // Extension ext-user must be there at any case + if (!isExtensionActive('user')) { + // Absent ext-user is really not good + return FALSE; + } elseif (is_null($value)) { + // This shall never happen, so please report it + reportBug(__FUNCTION__, __LINE__, 'value=NULL,column=' . $column . ' - value can never be NULL'); + } + + // If we should look for userid secure&set it here + if (substr($column, -2, 2) == 'id') { + // Secure userid + $value = bigintval($value); + + // Don't look for invalid userids... + if (!isValidId($value)) { + // Invalid, so abort here + reportBug(__FUNCTION__, __LINE__, 'User id ' . $value . ' is invalid.'); + } // END - if + + // Unset cached values if found and different + if ((isCurrentUserIdSet()) && (getCurrentUserId() != $value)) { + // Unset it + unsetCurrentUserId(); + } elseif (isValidUserData()) { + // Use cache, so it is fine + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'value=' . $value . ' is valid, using cache #1'); + return TRUE; + } // END - if + } elseif (isValidUserData()) { + // Using cache is fine + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'value=' . $value . ' is valid, using cache #2'); + return TRUE; + } + + // By default none was found + $found = FALSE; + + // Extra SQL statements + $ADD = runFilterChain('convert_user_data_columns', ' '); + + // Query for the user + $result = sqlQueryEscaped("SELECT *" . $ADD . " FROM `{?_MYSQL_PREFIX?}_user_data` WHERE `%s`='%s' LIMIT 1", + array( + $column, + $value + ), __FUNCTION__, __LINE__); + + // Is there a record? + if (sqlNumRows($result) == 1) { + // Load data from cookies + $data = sqlFetchArray($result); + + // Set the userid for later use + setCurrentUserId($data['userid']); + + // And cache the data for this userid + $GLOBALS['user_data'][getCurrentUserId()] = $data; + + // Rewrite 'last_failure' if found and ext-user has version >= 0.3.7 + if ((isExtensionInstalledAndNewer('user', '0.3.7')) && (isset($GLOBALS['user_data'][getCurrentUserId()]['last_failure']))) { + // Backup the raw one and zero it + $GLOBALS['user_data'][getCurrentUserId()]['last_failure_raw'] = $GLOBALS['user_data'][getCurrentUserId()]['last_failure']; + $GLOBALS['user_data'][getCurrentUserId()]['last_failure'] = NULL; + + // Is it not zero? + if (!is_null($GLOBALS['user_data'][getCurrentUserId()]['last_failure_raw'])) { + // Seperate data/time + $array = explode(' ', $GLOBALS['user_data'][getCurrentUserId()]['last_failure_raw']); + + // Seperate data and time again + $array['date'] = explode('-', $array[0]); + $array['time'] = explode(':', $array[1]); + + // Now pass it to mktime() + $GLOBALS['user_data'][getCurrentUserId()]['last_failure'] = mktime( + $array['time'][0], + $array['time'][1], + $array['time'][2], + $array['date'][1], + $array['date'][2], + $array['date'][0] + ); + } // END - if + } // END - if + + // Found, but valid? + $found = isValidUserData(); + } // END - if + + // Free memory + sqlFreeResult($result); + + // Return result + return $found; +} + +/* + * Checks whether the current session bears a valid admin id and password hash. + * + * This patched function will reduce many SELECT queries for the current admin + * login. + */ +function isAdmin () { + //* DIE: */ reportBug(__FUNCTION__, __LINE__, 'CALLED!'); + //* NOISY-DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'CALLED!'); + + // Is there cache? + if (isset($GLOBALS[__FUNCTION__])) { + // Return it + //* NOISY-DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'isAdmin()=' . intval($GLOBALS[__FUNCTION__]) . ' - CACHED!'); + return $GLOBALS[__FUNCTION__]; + } // END - if + + if ((isInstaller()) || (!isAdminRegistered())) { + // No admin in installation phase! + $GLOBALS[__FUNCTION__] = FALSE; + //* NOISY-DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'isAdmin()=' . intval($GLOBALS[__FUNCTION__]) . ' - INSTALLER!'); + return FALSE; + } // END - if + + // Init variables + $ret = FALSE; + $adminId = '0'; + $passwordFromCookie = ''; + + // If admin login is not given take current from cookies... + //* NOISY-DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'isSessionVariableSet(admin_id)=' . intval(isSessionVariableSet('admin_id')) . ',isSessionVariableSet(admin_md5)=' . intval(isSessionVariableSet('admin_md5'))); + if ((isSessionVariableSet('admin_id')) && (isSessionVariableSet('admin_md5'))) { + // Debug message + //* NOISY-DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'Getting admin data from session ...'); + + // Get admin login and password from session/cookies + $adminId = getCurrentAdminId(); + $passwordFromCookie = getAdminMd5(); + } // END - if + //* NOISY-DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'adminId=' . $adminId . ',passwordFromCookie=' . $passwordFromCookie); + + // Abort if admin id is zero + if (($adminId == '0') || (empty($passwordFromCookie))) { + // A very noisy debug message ... + //* NOISY-DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'Current adminId is zero. isSessionVariableSet(admin_id)=' . intval(isSessionVariableSet('admin_id')) . ',isSessionVariableSet(admin_md5)=' . intval(isSessionVariableSet('admin_md5'))); + + // Abort here now + $GLOBALS[__FUNCTION__] = FALSE; + return FALSE; + } // END - if + + // Init it with failed + $GLOBALS[__FUNCTION__] = FALSE; + + // Search in array for entry + if (isset($GLOBALS['admin_hash'])) { + // Use cached string + //* NOISY-DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'Using admin_hash=' . $GLOBALS['admin_hash'] . ' from cache'); + } elseif ((!empty($adminId)) && (!empty($passwordFromCookie)) && (isAdminHashSet($adminId) === TRUE)) { + // Get admin hash and hash it + $GLOBALS['admin_hash'] = encodeHashForCookie(getAdminHash($adminId)); + //* NOISY-DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'valPass=' . $GLOBALS['admin_hash']); + + // Count cache hits + incrementStatsEntry('cache_hits'); + } elseif ((!empty($adminId)) && ((!isExtensionActive('cache')) || (isAdminHashSet($adminId) === FALSE))) { + // Get admin hash and hash it + $GLOBALS['admin_hash'] = encodeHashForCookie(getAdminHash($adminId)); + //* NOISY-DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'valPass=' . $GLOBALS['admin_hash']); + } + + // Check if password is valid + //* NOISY-DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, '(' . $GLOBALS['admin_hash'] . '==' . $passwordFromCookie . ')='.intval($GLOBALS['admin_hash'] == $passwordFromCookie)); + $GLOBALS[__FUNCTION__] = ((!empty($GLOBALS['admin_hash'])) && ($GLOBALS['admin_hash'] == $passwordFromCookie)); + + // Return result of comparision + //* NOISY-DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'isAdmin()=' . intval($GLOBALS[__FUNCTION__])); + return $GLOBALS[__FUNCTION__]; +} + +// Generates a list of "max receiveable emails per day" +function addMaxReceiveList ($mode, $default = '') { + $OUT = ''; + $result = FALSE; + + switch ($mode) { + case 'guest': + // Guests (in the registration form) are not allowed to select 0 mails per day. + $result = sqlQuery('SELECT `value`, `comment` FROM `{?_MYSQL_PREFIX?}_max_receive` WHERE `value` > 0 ORDER BY `value` ASC', + __FUNCTION__, __LINE__); + break; + + case 'admin': + case 'member': + // Members are allowed to set to zero mails per day (we will change this soon!) + $result = sqlQuery('SELECT `value`, `comment` FROM `{?_MYSQL_PREFIX?}_max_receive` ORDER BY `value` ASC', + __FUNCTION__, __LINE__); + break; + + default: // Invalid! + logDebugMessage(__FUNCTION__, __LINE__, sprintf('Invalid mode %s detected.', $mode)); + break; + } + + // Some entries are found? + if (!ifSqlHasZeroNumRows($result)) { + $OUT = ''; + while ($content = sqlFetchArray($result)) { + $OUT .= ' '; + } + + // Free memory + sqlFreeResult($result); + } + + // Return - hopefully - the requested data + return $ret; +} + +// Deletes a user account with given reason +function deleteUserAccount ($userid, $reason) { + // Init points + $data['points'] = '0'; + + // Search for the points and user data + $result = sqlQueryEscaped("SELECT + (SUM(`p`.`points`) - `d`.`used_points`) AS `points` +FROM + `{?_MYSQL_PREFIX?}_user_points` AS `p` +LEFT JOIN + `{?_MYSQL_PREFIX?}_user_data` AS `d` +ON + `p`.`userid`=`d`.`userid` +WHERE + `p`.`userid`=%s +LIMIT 1", + array(bigintval($userid)), __FUNCTION__, __LINE__); + + // Is there an entry? + if (sqlNumRows($result) == 1) { + // Save his points to add them to the jackpot + $data = sqlFetchArray($result); + + // Delete points entries as well + // @TODO Rewrite these lines to a filter + sqlQueryEscaped("DELETE LOW_PRIORITY FROM `{?_MYSQL_PREFIX?}_user_points` WHERE `userid`=%s", + array(bigintval($userid)), __FUNCTION__, __LINE__); + + // Update mediadata as well + if (isExtensionInstalledAndNewer('mediadata', '0.0.4')) { + // Update database + updateMediadataEntry(array('total_points'), 'sub', $data['points']); + } // END - if + + // Now, when we have all his points adds them do the jackpot! + if (isExtensionActive('jackpot')) { + addPointsToJackpot($data['points']); + } // END - if + } // END - if + + // Free the result + sqlFreeResult($result); + + // Delete category selections as well... + sqlQueryEscaped("DELETE LOW_PRIORITY FROM `{?_MYSQL_PREFIX?}_user_cats` WHERE `userid`=%s", + array(bigintval($userid)), __FUNCTION__, __LINE__); + + // Remove from rallye if found + // @TODO Rewrite this to a filter + if (isExtensionActive('rallye')) { + sqlQueryEscaped("DELETE LOW_PRIORITY FROM `{?_MYSQL_PREFIX?}_rallye_users` WHERE `userid`=%s", + array(bigintval($userid)), __FUNCTION__, __LINE__); + } // END - if + + // Add reason and translate points + $data['text'] = $reason; + + // Now a mail to the user and that's all... + $message = loadEmailTemplate('member_user_deleted', $data, $userid); + sendEmail($userid, '{--ADMIN_DELETE_ACCOUNT--}', $message); + + // Ok, delete the account! + sqlQueryEscaped("DELETE LOW_PRIORITY FROM `{?_MYSQL_PREFIX?}_user_data` WHERE `userid`=%s LIMIT 1", array(bigintval($userid)), __FUNCTION__, __LINE__); +} + +// Gets the matching what name from module +function getWhatFromModule ($modCheck) { + // Is the request element set? + if (isGetRequestElementSet('what')) { + // Then return this! + return getRequestElement('what'); + } // END - if + + // Default is empty + $what = ''; + + // Check on given module + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'modCheck=' . $modCheck); + switch ($modCheck) { + case 'index': // Guest area + // Is ext-sql_patches installed and newer than 0.0.5? + if (isExtensionInstalledAndNewer('sql_patches', '0.0.5')) { + // Use it from config + $what = getIndexHome(); + } else { + // Use default 'welcome' + $what = 'welcome'; + } + break; + + default: // Default for all other menus (getIndexHome() is for index module only) + $what = 'welcome'; + break; + } // END - switch + + // Return what value + return $what; +} + +// Returns HTML code with an option list of all categories +function generateCategoryOptionsList ($mode, $userid = NULL) { + // Prepare WHERE statement + $whereStatement = " WHERE `visible`='Y'"; + if (isAdmin()) $whereStatement = ''; + + // Initialize array... + $categories = array( + 'id' => array(), + 'name' => array(), + 'userids' => array() + ); + + // Get categories + $result = sqlQuery('SELECT + `id`, + `cat` +FROM + `{?_MYSQL_PREFIX?}_cats` +' . $whereStatement . ' +ORDER BY + `sort` ASC', + __FUNCTION__, __LINE__); + + // Are there entries? + if (!ifSqlHasZeroNumRows($result)) { + // ... and begin loading stuff + while ($content = sqlFetchArray($result)) { + // Transfer some data + $categories['id'][] = $content['id']; + array_push($categories['name'], $content['cat']); + + // Check which users are in this category + $result_userids = sqlQueryEscaped("SELECT `userid` FROM `{?_MYSQL_PREFIX?}_user_cats` WHERE `cat_id`=%s AND `userid` != %s ORDER BY `userid` ASC", + array( + bigintval($content['id']), + convertNullToZero($userid) + ), __FUNCTION__, __LINE__); + + // Init count + $userid_cnt = '0'; + + // Start adding all + while ($data = sqlFetchArray($result_userids)) { + // Add user count + $userid_cnt += countSumTotalData($data['userid'], 'user_data', 'userid', 'userid', TRUE, runFilterChain('user_exclusion_sql', " AND `status`='CONFIRMED' AND `receive_mails` > 0")); + } // END - while + + // Free memory + sqlFreeResult($result_userids); + + // Add counter + array_push($categories['userids'], $userid_cnt); + } // END - while + + // Free memory + sqlFreeResult($result); + + // Generate options + $OUT = ''; + foreach ($categories['id'] as $key => $value) { + $OUT .= ' '; + } // END - foreach + } else { + // No cateogries are defined yet + $OUT = ''; + } + + // Return HTML code + return $OUT; +} + +// Add bonus mail to queue +function addBonusMailToQueue ($subject, $text, $receiverList, $points, $seconds, $url, $categoryId, $mode='normal', $receiver=0) { + // Is admin or bonus extension there? + if (!isAdmin()) { + // Abort here + return FALSE; + } elseif (!isExtensionActive('bonus')) { + // Abort here + return FALSE; + } + + // Calculcate target sent + $target = countSelection(explode(';', $receiverList)); + + // Receiver is zero? + if ($receiver == '0') { + // Then auto-fix it + $receiver = $target; + } // END - if + + // HTML extension active? + if (isExtensionActive('html_mail')) { + // Add HTML mail + sqlQueryEscaped("INSERT INTO `{?_MYSQL_PREFIX?}_bonus` ( + `subject`, + `text`, + `receivers`, + `points`, + `time`, + `data_type`, + `timestamp`, + `url`, + `cat_id`, + `target_send`, + `mails_sent`, + `html_msg` +) VALUES ( + '%s', + '%s', + '%s', + %s, + %s, + 'NEW', + UNIX_TIMESTAMP(), + '%s', + %s, + %s, + %s, + '%s' +)", + array( + $subject, + $text, + $receiverList, + $points, + bigintval($seconds), + $url, + bigintval($categoryId), + $target, + bigintval($receiver), + convertBooleanToYesNo($mode == 'html') + ), __FUNCTION__, __LINE__); + } else { + // Add regular mail + sqlQueryEscaped("INSERT INTO `{?_MYSQL_PREFIX?}_bonus` ( + `subject`, + `text`, + `receivers`, + `points`, + `time`, + `data_type`, + `timestamp`, + `url`, + `cat_id`, + `target_send`, + `mails_sent` +) VALUES ( + '%s', + '%s', + '%s', + %s, + %s, + 'NEW', + UNIX_TIMESTAMP(), + '%s', + %s, + %s, + %s +)", + array( + $subject, + $text, + $receiverList, + $points, + bigintval($seconds), + $url, + bigintval($categoryId), + $target, + bigintval($receiver), + ), __FUNCTION__, __LINE__); + } +} + +// Generate a receiver list for given category and maximum receivers +function generateReceiverList ($categoryId, $receiver, $mode = '') { + // Init variables + $extraColumns = ''; + $receiverList = ''; + $result = FALSE; + + // Secure data + $categoryId = bigintval($categoryId); + $receiver = bigintval($receiver); + + // Is the receiver zero and mode set? + if (($receiver == '0') && (!empty($mode))) { + // Auto-fix receiver maximum + $receiver = getTotalReceivers($mode); + } // END - if + + // Exclude (maybe exclude) testers + $addWhere = runFilterChain('user_exclusion_sql', ' '); + + // Category given? + if (isValidId($categoryId)) { + // Select category + $extraColumns = "LEFT JOIN `{?_MYSQL_PREFIX?}_user_cats` AS `c` ON `d`.`userid`=`c`.`userid`"; + $addWhere = sprintf(' AND `c`.`cat_id`=%s', $categoryId); + } // END - if + + // Exclude users in holiday? + if (isExtensionInstalledAndNewer('holiday', '0.1.3')) { + // Add something for the holiday extension + $addWhere .= " AND `d`.`holiday_active`='N'"; + } // END - if + + // Run query + $result = sqlQueryEscaped("SELECT + `d`.`userid` +FROM + `{?_MYSQL_PREFIX?}_user_data` AS `d` + " . $extraColumns . " +WHERE + `d`.`status`='CONFIRMED' + " . $addWhere . " +ORDER BY + `d`.`{?order_select?}` {?order_mode?} +LIMIT %s", + array( + $receiver + ), __FUNCTION__, __LINE__); + + // Entries found? + if ((sqlNumRows($result) >= $receiver) && ($receiver > 0)) { + // Load all entries + while ($content = sqlFetchArray($result)) { + // Add receiver when not empty + if (!empty($content['userid'])) { + $receiverList .= $content['userid'] . ';'; + } // END - if + } // END - while + + // Free memory + sqlFreeResult($result); + + // Remove trailing semicolon + $receiverList = substr($receiverList, 0, -1); + } // END - if + + // Return list + return $receiverList; +} + +// Recuce the amount of received emails for the receipients for given email +function reduceRecipientReceivedMails ($column, $id, $count) { + // Search for mail in database + $result = sqlQueryEscaped("SELECT * FROM `{?_MYSQL_PREFIX?}_user_links` WHERE `%s`=%s ORDER BY `userid` ASC LIMIT %s", + array( + $column, + bigintval($id), + $count + ), __FUNCTION__, __LINE__ + ); + + // Are there entries? + if (!ifSqlHasZeroNumRows($result)) { + // Now load all userids for one big query! + $userids = array(); + while ($data = sqlFetchArray($result)) { + // By default reduce and found no emails + $num = 0; + + // We must now look if he has already confirmed this mail, so might sound double, but it may resolve problems + // @TODO Rewrite this to a filter + if ((isset($data['stats_id'])) && (isValidId($data['stats_id']))) { + // User email + $num = countSumTotalData($data['userid'], 'user_stats_data', 'id', 'userid', TRUE, sprintf(" AND `stats_type`='mailid' AND `stats_data`=%s", bigintval($data['stats_id']))); + } elseif ((isset($data['bonus_id'])) && (isValidId($data['bonus_id']))) { + // Bonus mail + $num = countSumTotalData($data['userid'], 'user_stats_data', 'id', 'userid', TRUE, sprintf(" AND `stats_type`='bonusid' AND `stats_data`=%s", bigintval($data['bonus_id']))); + } + + // Reduce this users total received emails? + if ($num === 0) { + $userids[$data['userid']] = $data['userid']; + } // END - if + } // END - while + + if (isFilledArray($userids)) { + // Now update all user accounts + sqlQueryEscaped("UPDATE `{?_MYSQL_PREFIX?}_user_data` SET `emails_received`=`emails_received`-1 WHERE `userid` IN (%s) LIMIT %s", + array( + implode(',', $userids), + count($userids) + ), __FUNCTION__, __LINE__); + } else { + // Nothing deleted + displayMessage('{%message,ADMIN_MAIL_NOTHING_DELETED=' . $id . '%}'); + } + } // END - if + + // Free result + sqlFreeResult($result); +} + +// Creates a new task +function createNewTask ($subject, $notes, $taskType, $userid = NULL, $adminId = NULL, $strip = TRUE) { + // Insert the task data into the database + sqlQueryEscaped("INSERT INTO `{?_MYSQL_PREFIX?}_task_system` (`assigned_admin`, `userid`, `status`, `task_type`, `subject`, `text`, `task_created`) VALUES (%s, %s, 'NEW', '%s', '%s', '%s', UNIX_TIMESTAMP())", + array( + convertZeroToNull($adminId), + convertZeroToNull($userid), + $taskType, + $subject, + $notes + ), __FUNCTION__, __LINE__, TRUE, $strip); + + // Return insert id which is the task id + return getSqlInsertId(); +} + +// Updates last module / online time +function updateLastActivity ($userid) { + // Is 'what' set? + if (isWhatSet()) { + // Run the update query + sqlQueryEscaped("UPDATE + `{?_MYSQL_PREFIX?}_user_data` +SET + `{%%pipe,getUserLastWhatName%%}`='{%%pipe,getWhat%%}', + `last_online`=UNIX_TIMESTAMP(), + `REMOTE_ADDR`='{%%pipe,detectRemoteAddr%%}' +WHERE + `userid`=%s +LIMIT 1", + array( + bigintval($userid) + ), __FUNCTION__, __LINE__); + } else { + // No what set, needs to be ignored (last_module is last_what) + sqlQueryEscaped("UPDATE + `{?_MYSQL_PREFIX?}_user_data` +SET + `{%%pipe,getUserLastWhatName%%}`=NULL, + `last_online`=UNIX_TIMESTAMP(), + `REMOTE_ADDR`='{%%pipe,detectRemoteAddr%%}' +WHERE + `userid`=%s +LIMIT 1", + array( + bigintval($userid) + ), __FUNCTION__, __LINE__); + } +} + +// List all given joined rows (callback function from XML) +function doGenericJoinedListEntries ($tableTemplate, $rowTemplate, $noEntryMessageId, $tableName, $tableJoinType, $tableJoinName, $joinOnLeftTable, $joinOnCondition, $joinOnRightTable, $columns, $whereColumns, $orderByColumns, $callbackColumns, $extraParameters = array(), $conditions = array(), $content = array()) { + // Verify that tableName and columns are not empty + if ((!is_array($tableName)) || (count($tableName) != 1)) { + // No tableName specified + reportBug(__FUNCTION__, __LINE__, 'tableName is not given. Please fix your XML,tableName[]=' . gettype($tableName) . '!=array,tableTemplate=' . $tableTemplate . ',rowTemplate=' . $rowTemplate); + } elseif (!isFilledArray($columns)) { + // No columns specified + reportBug(__FUNCTION__, __LINE__, 'columns is not given. Please fix your XML,tableTemplate=' . $tableTemplate . ',rowTemplate=' . $rowTemplate . ',tableName[0]=' . $tableName[0]); + } + + // This is the minimum query, so at least columns and tableName must have entries + $sql = 'SELECT '; + + // Get the sql part back from given array + $sql .= getSqlPartFromXmlArray($columns); + + // Add "FROM" + $sql .= getSqlXmlFromTable($tableName); + + // Add "JOIN" + $sql .= getSqlXmlJoinedTable($tableJoinType, $tableJoinName, $joinOnLeftTable, $joinOnCondition, $joinOnRightTable); + + // Add "WHERE" + $sql .= getSqlXmlWhereConditions($whereColumns, $conditions); + + // Add "ORDER BY" + $sql .= getSqlXmlOrderBy($orderByColumns); + + // Now handle all over to the inner function which will execute the listing + doListEntries($sql, $tableTemplate, $noEntryMessageId, $rowTemplate, $callbackColumns, $extraParameters, $content); +} + +// List all given rows (callback function from XML) +function doGenericListEntries ($tableTemplate, $rowTemplate, $noEntryMessageId, $tableName, $columns, $whereColumns, $orderByColumns, $callbackColumns, $extraParameters = array(), $conditions = array(), $content = array()) { + // Verify that tableName and columns are not empty + if ((!is_array($tableName)) || (count($tableName) != 1)) { + // No tableName specified + reportBug(__FUNCTION__, __LINE__, 'tableName is not given. Please fix your XML,tableName[]=' . gettype($tableName) . '!=array,tableTemplate=' . $tableTemplate . ',rowTemplate=' . $rowTemplate); + } elseif (!isFilledArray($columns)) { + // No columns specified + reportBug(__FUNCTION__, __LINE__, 'columns is not given. Please fix your XML,tableTemplate=' . $tableTemplate . ',rowTemplate=' . $rowTemplate . ',tableName[0]=' . $tableName[0]); + } + + // This is the minimum query, so at least columns and tableName must have entries + $sql = 'SELECT '; + + // Get the sql part back from given array + $sql .= getSqlPartFromXmlArray($columns); + + // Add "FROM" + $sql .= getSqlXmlFromTable($tableName); + + // Add "WHERE" + $sql .= getSqlXmlWhereConditions($whereColumns, $conditions); + + // Add "ORDER BY" + $sql .= getSqlXmlOrderBy($orderByColumns); + + // Now handle all over to the inner function which will execute the listing + doListEntries($sql, $tableTemplate, $noEntryMessageId, $rowTemplate, $callbackColumns, $extraParameters, $content); +} + +// Do the listing of entries +function doListEntries ($sql, $tableTemplate, $noEntryMessageId, $rowTemplate, $callbackColumns, $extraParameters = array(), $content = array()) { + // Run the SQL query + $result = sqlQuery($sql, __FUNCTION__, __LINE__); + + // Are there some URLs left? + if (!ifSqlHasZeroNumRows($result)) { + // List all URLs + $OUT = ''; + while ($row = sqlFetchArray($result)) { + // "Translate" content + foreach ($callbackColumns as $columnName => $callbackName) { + // Fill the callback arguments + $args = array($row[$columnName]); + + // Is there more to add? + if (isset($extraParameters[$columnName])) { + // Add them as well + $args = merge_array($args, $extraParameters[$columnName]); + } // END - if + + // Call the callback-function + //* NOISY-DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'callbackFunction=' . $callbackName . ',args=
'.print_r($args, TRUE).'
'); + // @TODO If the EL sub-system can support more than one parameter, this call_user_func_array() can be avoided + $row[$columnName] = call_user_func_array($callbackName, $args); + } // END - foreach + + // Load row template + $OUT .= loadTemplate(trim($rowTemplate[0]), TRUE, $row); + } // END - while + + // Is at least one entry set in content? + if (isFilledArray($content)) { + // Then add generic 'rows' element + $content['rows'] = $OUT; + } else { + // Direct output is content + $content = $OUT; + } + + // Load main template + loadTemplate(trim($tableTemplate[0]), FALSE, $content); + } else { + // No URLs in surfbar + displayMessage('{--' .$noEntryMessageId[0] . '--}'); + } + + // Free result + sqlFreeResult($result); +} + +// Adds a given entry to the database +function doGenericAddEntries ($tableName, $columns = array(), $filterFunctions = array(), $extraValues = array(), $timeColumns = array(), $columnIndex = NULL) { + //* DEBUG: */ die(__FUNCTION__.':columns=
'.print_r($columns,TRUE).'
,filterFunctions=
'.print_r($filterFunctions,TRUE).'
,extraValues=
'.print_r($extraValues,TRUE).'
,timeColumns=
'.print_r($timeColumns,TRUE).'
,columnIndex=
'.print_r($columnIndex,TRUE).'
,POST=
'.print_r($_POST,TRUE).'
'); + // Verify that tableName and columns are not empty + if ((!is_array($tableName)) || (count($tableName) != 1)) { + // No tableName specified + reportBug(__FUNCTION__, __LINE__, 'tableName is not given. Please fix your XML,tableName[]=' . gettype($tableName) . '!=array: userIdColumn=' . $userIdColumn); + } elseif (!isFilledArray($columns)) { + // No columns specified + reportBug(__FUNCTION__, __LINE__, 'columns is not given. Please fix your XML.'); + } + + // Init columns and value elements + $sqlColumns = array(); + $sqlValues = array(); + + // Default is that all went fine + $GLOBALS['__XML_PARSE_RESULT'] = TRUE; + + // Is there "time columns"? + if (isFilledArray($timeColumns)) { + // Then "walk" through all entries + foreach ($timeColumns as $column) { + // Convert all (possible) selections + convertSelectionsToEpocheTimeInPostData($column . '_ye'); + } // END - foreach + } // END - if + + // Add columns and values + foreach ($columns as $key => $columnName) { + //* NOISY-DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'key=' . $key . ',columnName=' . $columnName); + // Is columnIndex set? + if (!is_null($columnIndex)) { + // Check conditions + //* DEBUG: */ die('columnName=
'.print_r($columnName,TRUE).'
columnIndex=
'.print_r($columnIndex,TRUE).'
'.debug_get_printable_backtrace()); + assert((is_array($columnName)) && (is_string($columnIndex)) && (isset($columnName[$columnIndex]))); + + // Then use that index "blindly" + $columnName = $columnName[$columnIndex]; + } // END - if + + // Debug message + //* NOISY-DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'key=' . $key . ',columnName[' . gettype($columnName) . ']=' . $columnName . ',filterFunctions=' . $filterFunctions[$key] . ',extraValues=' . intval(isset($extraValues[$key])) . ',extraValuesName=' . intval(isset($extraValues[$columnName . '_list']))); + + // Get value back (no array supported) + $value = postRequestElement($columnName); + + // Is this an array and element 0 is set? + if ((is_array($value)) && (isset($value[0]))) { + // Then only take this + $value = $value[0]; + } // END - if + + // Copy entry securely to the final arrays + $sqlColumns[$key] = sqlEscapeString($columnName); + $sqlValues[$key] = sqlEscapeString($value); + + // Search for it + $search = key(search_array($columns, 'column', $columnName)); + + // Try to handle call-back functions and/or extra values on the list + //* DEBUG: */ outputHtml($key . '/' . $columnName . '=
'.print_r($columns,true).'
search_array()=
'.print_r(search_array($columns, 'column', $columnName), TRUE).'
'); + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'sqlValues[' . $key . '(' . gettype($key) . ')][' . gettype($sqlValues[$key]) . ']=' . $sqlValues[$key] . ' - BEFORE!'); + if (is_string($key)) { + // Key is a string + $sqlValues[$key] = doHandleExtraValues($filterFunctions, $extraValues, $key . '_list', $sqlValues[$key], array(''), $search); + } else { + // Is a number + $sqlValues[$key] = doHandleExtraValues($filterFunctions, $extraValues, $key, $sqlValues[$key], array(''), $search); + } + + // Is the value not a number? + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'sqlValues[' . $key . '(' . gettype($key) . ')][' . gettype($sqlValues[$key]) . ']=' . $sqlValues[$key] . ' - AFTER!'); + if (($sqlValues[$key] != 'NULL') && (is_string($sqlValues[$key]))) { + // Add quotes around it + $sqlValues[$key] = chr(39) . $sqlValues[$key] . chr(39); + } // END - if + + // Is the value false? + if ($sqlValues[$key] === FALSE) { + // One "parser" didn't like it + $GLOBALS['__XML_PARSE_RESULT'] = FALSE; + break; + } // END - if + } // END - foreach + + // If all values are okay, continue + if ($sqlValues[$key] !== FALSE) { + // Build the SQL query + $sql = 'INSERT INTO `{?_MYSQL_PREFIX?}_' . $tableName[0] . '` (`' . implode('`, `', $sqlColumns) . "`) VALUES (" . implode(',', $sqlValues) . ')'; + + // Run the SQL query + sqlQuery($sql, __FUNCTION__, __LINE__); + + // Add id number + setPostRequestElement('id', getSqlInsertId()); + + // Prepare filter data array + $filterData = array( + 'mode' => 'add', + 'table_name' => $tableName, + 'content' => postRequestArray(), + 'id' => getSqlInsertId(), + 'subject' => '', + // @TODO Used generic 'userid' here + 'userid_column' => array('userid'), + 'raw_userid' => array('userid'), + 'affected' => sqlAffectedRows(), + 'sql' => $sql, + ); + + // Send "build mail" out + runFilterChain('send_build_mail', $filterData); + } // END - if +} + +// Edit rows by given id numbers +function doGenericEditEntriesConfirm ($tableName, $columns = array(), $filterFunctions = array(), $extraValues = array(), $timeColumns = array(), $editNow = array(FALSE), $idColumn = array('id'), $userIdColumn = array('userid'), $rawUserId = array('userid'), $cacheFiles = array(), $subject = '') { + // Is there "time columns"? + if (isFilledArray($timeColumns)) { + // Then "walk" through all entries + foreach ($timeColumns as $column) { + // Convert all (possible) selections + convertSelectionsToEpocheTimeInPostData($column . '_ye'); + } // END - foreach + } // END - if + + // Change them all + $affected = '0'; + foreach (postRequestElement($idColumn[0]) as $id => $sel) { + // Secure id number + $id = bigintval($id); + + // Prepare content array (new values) + $content = array(); + + // Prepare SQL for this row + $sql = sprintf('UPDATE `{?_MYSQL_PREFIX?}_%s` SET', + sqlEscapeString($tableName[0]) + ); + + // "Walk" through all entries + foreach (postRequestArray() as $key => $entries) { + // Skip raw userid which is always invalid + if (($key == $rawUserId[0]) || ($key == ($rawUserId[0] . '_raw')) || ($key == 'do_edit')) { + // Continue with next field + //* NOISY-DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'key=' . $key . ',idColumn[0]=' . $idColumn[0] . ',rawUserId=' . $rawUserId[0]); + continue; + } // END - if + + // Debug message + //* NOISY-DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'key=' . $key . ',id=' . $id . ',idColumn[0]=' . $idColumn[0] . ',entries=
'.print_r($entries,TRUE).'
'); + + // Is entries an array? + if (($key != $idColumn[0]) && (is_array($entries)) && (isset($entries[$id]))) { + // Search for the right array index + $search = key(search_array($columns, 'column', $key)); + + // Add this entry to content + $content[$key] = $entries[$id]; + + // Debug message + //* BUG: */ die($key.'/'.$id.'/'.$search.'=
'.print_r($columns,TRUE).'
'.print_r($filterFunctions,TRUE).'
'); + + // Handle possible call-back functions and/or extra values + $entries[$id] = doHandleExtraValues($filterFunctions, $extraValues, $key, $entries[$id], $userIdColumn, $search); + + // Add key/value pair to SQL string + $sql .= addKeyValueSql($key, $entries[$id]); + } elseif (($key != $idColumn[0]) && (!is_array($entries))) { + // Search for it + $search = key(search_array($columns, 'column', $key)); + //* BUG: */ die($key.'/
'.print_r($search, TRUE).'
=
'.print_r($columns, TRUE).'
'); + + // Debug message + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'key=' . $key . ',entries[' . gettype($entries) . ']=' . $entries . ',search=' . $search . ' - BEFORE!'); + + // Add normal entries as well + $content[$key] = $entries; + + // Handle possible call-back functions and/or extra values + $entries = doHandleExtraValues($filterFunctions, $extraValues, $key, $entries, $userIdColumn, $search); + + // Debug message + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'key=' . $key . ',entries[' . gettype($entries) . ']=' . $entries . ',search=' . $search . ' - AFTER!'); + + // Add key/value pair to SQL string + $sql .= addKeyValueSql($key, $entries); + } + } // END - foreach + + // Finish SQL command + $sql = substr($sql, 0, -1) . " WHERE `" . sqlEscapeString($idColumn[0]) . "`=" . $id; + if ((isset($rawUserId[0])) && (isset($userIdColumn[0])) && (isPostRequestElementSet($rawUserId[0])) && (!is_array(postRequestElement($rawUserId[0])))) { + // Add user id as well + $sql .= ' AND `' . $userIdColumn[0] . '`=' . bigintval(postRequestElement($rawUserId[0])); + } // END - if + $sql .= " LIMIT 1"; + + // Run this query + //* BUG: */ die($sql.'
'.print_r(postRequestArray(), TRUE).'
'); + sqlQuery($sql, __FUNCTION__, __LINE__); + + // Add affected rows + $edited = sqlAffectedRows(); + $affected += $edited; + + // Load all data from that id + $result = sqlQueryEscaped("SELECT * FROM `{?_MYSQL_PREFIX?}_%s` WHERE `%s`=%s LIMIT 1", + array( + $tableName[0], + $idColumn[0], + $id + ), __FUNCTION__, __LINE__); + + // Fetch the data and merge it into $content + $content = merge_array($content, sqlFetchArray($result)); + + // Prepare filter data array + $filterData = array( + 'mode' => 'edit', + 'table_name' => $tableName, + 'content' => $content, + 'id' => $id, + 'subject' => $subject, + 'userid_column' => $userIdColumn, + 'raw_userid' => $rawUserId, + 'affected' => $edited, + 'sql' => $sql, + ); + + // Send "build mail" out + runFilterChain('send_build_mail', $filterData); + + // Free the result + sqlFreeResult($result); + } // END - foreach + + // Delete cache? + if ((isFilledArray($cacheFiles)) && (!empty($cacheFiles[0]))) { + // Delete cache file(s) + foreach ($cacheFiles as $cache) { + // Skip any empty entries + if (empty($cache)) { + // This may cause trouble in loadCacheFile() + continue; + } // END - if + + // Use rebuildCache() to delete it + rebuildCache($cache); + } // END - foreach + } // END - if + + // Return affected rows + return $affected; +} + +// Delete rows by given id numbers +function doGenericDeleteEntriesConfirm ($tableName, $columns = array(), $filterFunctions = array(), $extraValues = array(), $deleteNow = array(FALSE), $idColumn = array('id'), $userIdColumn = array('userid'), $rawUserId = array('userid'), $cacheFiles = array()) { + // The base SQL command: + $sql = "DELETE LOW_PRIORITY FROM `{?_MYSQL_PREFIX?}_%s` WHERE `%s` IN (%s)"; + + // Is a user id provided? + //* BUG: */ die('
'.print_r($rawUserId,TRUE).'
'.print_r($userIdColumn,TRUE).'
'); + if ((isset($rawUserId[0])) && (isset($userIdColumn[0])) && (isPostRequestElementSet($rawUserId[0])) && (!is_array(postRequestElement($rawUserId[0])))) { + // Add user id as well + $sql .= ' AND `' . $userIdColumn[0] . '`=' . bigintval(postRequestElement($rawUserId[0])); + } // END - if + + // $idColumn[0] in POST must be an array again + if (!is_array(postRequestElement($idColumn[0]))) { + // This indicates that you have conflicting form field naming with XML names + reportBug(__FUNCTION__, __LINE__, 'You have a wrong form field element, idColumn[0]=' . $idColumn[0]); + } // END - if + + // Delete them all + //* BUG: */ die($sql.'
'.print_r($tableName,TRUE).'
'.print_r($columns,TRUE).'
'.print_r($filterFunctions,TRUE).'
'.print_r($extraValues,TRUE).'
'.print_r($deleteNow,TRUE).'
'.print_r($idColumn,TRUE).'
'); + $idList = ''; + foreach (postRequestElement($idColumn[0]) as $id => $sel) { + // Is id zero? + if (!isValidId($id)) { + // Then skip this + continue; + } // END - if + + // Is there a userid? + if (isPostRequestElementSet($userIdColumn[0])) { + // Load all data from that id + $result = sqlQueryEscaped("SELECT * FROM `{?_MYSQL_PREFIX?}_%s` WHERE `%s`=%s LIMIT 1", + array( + $tableName[0], + $idColumn[0], + $id + ), __FUNCTION__, __LINE__); + + // Fetch the data + $content = sqlFetchArray($result); + + // Free the result + sqlFreeResult($result); + + // Send "build mails" out + sendGenericBuildMails('delete', $tableName, $content, $id, '', $userIdColumn); + } // END - if + + // Add id number + $idList .= $id . ','; + } // END - foreach + + // Run the query + sqlQueryEscaped($sql, + array( + $tableName[0], + $idColumn[0], + convertNullToZero(substr($idList, 0, -1)) + ), __FUNCTION__, __LINE__); + + // Return affected rows + return sqlAffectedRows(); +} + +// Build a special template list +// @TODO cacheFiles is not yet supported +function doGenericListBuilder ($prefix, $listType, $tableName, $columns, $filterFunctions, $extraValues, $idColumn, $userIdColumn, $rawUserId = array('userid'), $content = array()) { + // $tableName and $idColumn must bove be arrays! + if ((!is_array($tableName)) || (count($tableName) != 1)) { + // $tableName is no array + reportBug(__FUNCTION__, __LINE__, 'tableName[]=' . gettype($tableName) . '!=array: userIdColumn=' . $userIdColumn); + } elseif (!is_array($idColumn)) { + // $idColumn is no array + reportBug(__FUNCTION__, __LINE__, 'idColumn[]=' . gettype($idColumn) . '!=array: userIdColumn=' . $userIdColumn); + } elseif ((!is_array($userIdColumn)) || (count($userIdColumn) != 1)) { + // $tableName is no array + reportBug(__FUNCTION__, __LINE__, 'userIdColumn[]=' . gettype($userIdColumn) . '!=array: userIdColumn=' . $userIdColumn); + } + + // Init row output + $OUT = ''; + + // "Walk" through all entries + //* DEBUG: */ reportBug(__FUNCTION__, __LINE__, 'listType=
'.print_r($listType,TRUE).'
,tableName
'.print_r($tableName,TRUE).'
,columns=
'.print_r($columns,TRUE).'
,filterFunctions=
'.print_r($filterFunctions,TRUE).'
,extraValues=
'.print_r($extraValues,TRUE).'
,idColumn=
'.print_r($idColumn,TRUE).'
,userIdColumn=
'.print_r($userIdColumn,TRUE).'
,rawUserId=
'.print_r($rawUserId,TRUE).'
'); + foreach (postRequestElement($idColumn[0]) as $id => $selected) { + // Secure id number + $id = bigintval($id); + + // Get result from a given column array and table name + $result = getSqlResultFromArray($tableName[0], $columns, $idColumn[0], $id, __FUNCTION__, __LINE__); + + // Is there one entry? + if (sqlNumRows($result) == 1) { + // Load all data + $row = sqlFetchArray($result); + + // Filter all data + foreach ($row as $key => $value) { + // Search index + $idx = searchXmlArray($key, $columns, 'column'); + + // Default name is NULL + $name = NULL; + + // Is the name there? + if (isset($columns[$idx]['name'])) { + // Then use it + $name = $columns[$idx]['name']; + } // END - if + + // Skip any missing entries + if ($idx === FALSE) { + // Skip this one + //* DEBUG: */ reportBug(__FUNCTION__, __LINE__, 'key=' . $key . ' - SKIPPED!'); + continue; + } // END - if + + // Is there a userid? + //* NOISY-DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'key=' . $key . ',userIdColumn=' . $userIdColumn[0]); + if ($key == $userIdColumn[0]) { + // Add it again as raw id + //* DEBUG: */ reportBug(__FUNCTION__, __LINE__, 'key=' . $key . ',userIdColumn=' . $userIdColumn[0]); + $row[$userIdColumn[0]] = convertZeroToNull($value); + $row[$userIdColumn[0] . '_raw'] = $row[$userIdColumn[0]]; + } // END - if + + // If the key matches the idColumn variable, we need to temporary remember it + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'key=' . $key . ',idColumn=' . $idColumn[0] . ',value=' . $value); + if ($key == $idColumn[0]) { + /* + * Found, so remember it securely (to make sure only id + * numbers can pass, don't use alpha-numerical values!) + */ + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'value=' . $value . ' - set as ' . $prefix . '_list_builder_id_value!'); + $GLOBALS[$prefix . '_list_builder_id_value'] = bigintval($value); + } // END - if + + // Try to handle call-back functions and/or extra values + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'idx=' . $idx . ',row[' . $key . ']=' . $row[$key]); + //if ($key == 'forced_campaign_created') die($idx.'=
'.print_r($columns,true).'
'.print_r($extraValues,true).'
'); + $row[$key] = doHandleExtraValues($filterFunctions, $extraValues, $idx, $row[$key], $userIdColumn, ((!is_null($name)) ? $name : $key), $id); + } // END - foreach + + // Then list it + $OUT .= loadTemplate(sprintf('%s_%s_%s_row', + $prefix, + $listType, + $tableName[0] + ), TRUE, $row + ); + } // END - if + + // Free the result + sqlFreeResult($result); + } // END - foreach + + // Is there an entry in $content? + if (isFilledArray($content)) { + // Use generic 'rows' + $content['rows'] = $OUT; + } else { + // Use direct output + $content = $OUT; + } + + // Load master template + loadTemplate( + sprintf('%s_%s_%s', + $prefix, + $listType, + $tableName[0] + ), FALSE, $content + ); +} + +// Adds key/value pair to a working SQL string together +function addKeyValueSql ($key, $value) { + // Init SQL + $sql = ''; + + // Is it NULL? + if (($value == 'NULL') || (is_null($value))) { + // Add key with NULL + $sql .= sprintf(' `%s`=NULL,', + sqlEscapeString($key) + ); + } elseif ((is_double($value)) || (is_float($value)) || (is_int($value))) { + // Is a number, so addd it directly + $sql .= sprintf(' `%s`=%s,', + sqlEscapeString($key), + $value + ); + } else { + // Else add the value escape'd + $sql .= sprintf(" `%s`='%s',", + sqlEscapeString($key), + sqlEscapeString($value) + ); + } + + // Return SQL string + return $sql; +} + +// "Getter" for an array from given table and columns +function getArrayFromTable ($tableName, $columns, $orderBy, $ordered = 'ASC', $whereSql = '') { + // The table must exist + assert(ifSqlTableExists($tableName)); + + // Search for it + $result = sqlQueryEscaped('SELECT + `' . implode('`, `', $columns) . '` +FROM + `{?_MYSQL_PREFIX?}_%s` +' . $whereSql . ' +ORDER BY + `%s` %S', + array( + $tableName, + $orderBy, + $ordered + ), __FUNCTION__, __LINE__ + ); + + // Init array + $rows = array(); + + // Are there entries? + if (!ifSqlHasZeroNumRows($result)) { + // Load all entries + while ($row = sqlFetchArray($result)) { + array_push($rows, $row); + } // END - while + } // END - if + + // Free result + sqlFreeResult($result); + + // Return all found rows + return $rows; +} + +// [EOF] +?> diff --git a/inc/error-functions.php b/inc/error-functions.php new file mode 100644 index 0000000000..9c36418b71 --- /dev/null +++ b/inc/error-functions.php @@ -0,0 +1,70 @@ + diff --git a/inc/expression-functions.php b/inc/expression-functions.php index 9bd74b48cc..fcd54874ca 100644 --- a/inc/expression-functions.php +++ b/inc/expression-functions.php @@ -322,9 +322,6 @@ function doExpressionMath ($data) { // Replace the code $code = replaceExpressionCode($data, $replacer); - // Load include once - loadIncludeOnce('inc/math-functions.php'); - // Return the (maybe) replaced code return $code; } diff --git a/inc/functions.php b/inc/functions.php deleted file mode 100644 index 0d6c9889ec..0000000000 --- a/inc/functions.php +++ /dev/null @@ -1,2969 +0,0 @@ -= 10); - - // Start creating password - $password = ''; - while (strlen($password) < $length) { - $password .= $localAbc[mt_rand(0, count($localAbc) -1)]; - } // END - while - - /* - * When the length of the password is below 40 characters additional - * security can be added by scrambling it. Otherwise the hash may - * corrupted. - */ - if (strlen($password) <= 40) { - // Also scramble the password - $password = scrambleString($password); - } // END - if - - // Return the password - return $password; -} - -// Generates a human-readable timestamp from the Uni* stamp -function generateDateTime ($time, $mode = '0') { - // Is there cache? - if (isset($GLOBALS[__FUNCTION__][$time][$mode])) { - // Return it instead - return $GLOBALS[__FUNCTION__][$time][$mode]; - } // END - if - - // If the stamp is zero it mostly didn't "happen" - if (($time == '0') || (is_null($time))) { - // Never happend - return '{--NEVER_HAPPENED--}'; - } // END - if - - // Filter out numbers - $timeSecured = bigintval($time); - - // Detect language - switch (getLanguage()) { - case 'de': // German date / time format - switch ($mode) { - case '0': $ret = date("d.m.Y \u\m H:i \U\h\\r", $timeSecured); break; - case '1': $ret = strtolower(date('d.m.Y - H:i', $timeSecured)); break; - case '2': $ret = date('d.m.Y|H:i', $timeSecured); break; - case '3': $ret = date('d.m.Y', $timeSecured); break; - case '4': $ret = date('d.m.Y|H:i:s', $timeSecured); break; - case '5': $ret = date('d-m-Y (l-F-T)', $timeSecured); break; - case '6': $ret = date('Ymd', $timeSecured); break; - case '7': $ret = date('Y-m-d H:i:s', $timeSecured); break; // Compatible with MySQL TIMESTAMP - default: - logDebugMessage(__FUNCTION__, __LINE__, sprintf('Invalid date mode %s detected.', $mode)); - break; - } // END - switch - break; - - default: // Default is the US date / time format! - switch ($mode) { - case '0': $ret = date('r', $timeSecured); break; - case '1': $ret = strtolower(date('Y-m-d - g:i A', $timeSecured)); break; - case '2': $ret = date('y-m-d|H:i', $timeSecured); break; - case '3': $ret = date('y-m-d', $timeSecured); break; - case '4': $ret = date('d.m.Y|H:i:s', $timeSecured); break; - case '5': $ret = date('d-m-Y (l-F-T)', $timeSecured); break; - case '6': $ret = date('Ymd', $timeSecured); break; - case '7': $ret = date('Y-m-d H:i:s', $timeSecured); break; // Compatible with MySQL TIMESTAMP - default: - logDebugMessage(__FUNCTION__, __LINE__, sprintf('Invalid date mode %s detected.', $mode)); - break; - } // END - switch - } // END - switch - - // Store it in cache - $GLOBALS[__FUNCTION__][$time][$mode] = $ret; - - // Return result - return $ret; -} - -// Translates Y/N to yes/no -function translateYesNo ($yn) { - // Is it cached? - if (!isset($GLOBALS[__FUNCTION__][$yn])) { - // Default - $GLOBALS[__FUNCTION__][$yn] = '??? (' . $yn . ')'; - switch ($yn) { - case 'Y': // Yes - $GLOBALS[__FUNCTION__][$yn] = '{--YES--}'; - break; - - case 'N': // No - $GLOBALS[__FUNCTION__][$yn] = '{--NO--}'; - break; - - default: // Log unknown value - logDebugMessage(__FUNCTION__, __LINE__, sprintf('Unknown value %s. Expected: Y/N', $yn)); - break; - } // END - switch - } // END - if - - // Return it - return $GLOBALS[__FUNCTION__][$yn]; -} - -// "Translates" Y/N into "de-/active" -function translateActivationStatus ($status) { - // Is it cached? - if (!isset($GLOBALS[__FUNCTION__][$status])) { - // Default - $GLOBALS[__FUNCTION__][$status] = '??? (' . $status . ')'; - switch ($status) { - case 'Y': // Activated - $GLOBALS[__FUNCTION__][$status] = '{--ACTIVATED--}'; - break; - - case 'N': // Deactivated - $GLOBALS[__FUNCTION__][$status] = '{--DEACTIVATED--}'; - break; - - default: // Log unknown value - logDebugMessage(__FUNCTION__, __LINE__, sprintf('Unknown value %s. Expected: Y/N', $status)); - break; - } // END - switch - } // END - if - - // Return it - return $GLOBALS[__FUNCTION__][$status]; -} - -// Translates the american decimal dot into a german comma -// OPPOMENT: convertCommaToDot() -function translateComma ($dotted, $cut = TRUE, $max = '0') { - // First, cast all to double, due to PHP changes - $double = (double) $dotted; - - // Use from config is default - $maxComma = getConfig('max_comma'); - - // Use from parameter? - if ($max > 0) { - $maxComma = $max; - } // END - if - - // Cut zeros off? - if (($cut === TRUE) && ($max == '0')) { - // Test for commata if in cut-mode - $com = explode('.', $double); - if (count($com) < 2) { - // Don't display commatas even if there are none... ;-) - $maxComma = '0'; - } // END - if - } // END - if - - // Debug log - - // Translate it now - $translated = $double; - switch (getLanguage()) { - case 'de': // German language - $translated = number_format($double, $maxComma, ',', '.'); - break; - - default: // All others - $translated = number_format($double, $maxComma, '.', ','); - break; - } // END - switch - - // Return translated value - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'double=' . $double . ',translated=' . $translated . ',maxComma=' . $maxComma); - return $translated; -} - -// Translate Uni*-like gender to human-readable -function translateGender ($gender) { - // Default - $ret = '!' . $gender . '!'; - - // Male/female or company? - switch ($gender) { - case 'M': // Male - case 'F': // Female - case 'C': // Company - // Use generic function - $ret = translateGeneric('GENDER', $gender); - break; - - default: - // Please report bugs on unknown genders - reportBug(__FUNCTION__, __LINE__, sprintf('Unknown gender %s detected.', $gender)); - break; - } // END - switch - - // Return translated gender - return $ret; -} - -// "Translates" the user status -function translateUserStatus ($status) { - // Default status is unknown if something goes through - $ret = '{--ACCOUNT_STATUS_UNKNOWN--}'; - - // Generate message depending on status - switch ($status) { - case 'UNCONFIRMED': - case 'CONFIRMED': - case 'LOCKED': - // Use generic function for all "normal" cases - $ret = translateGeneric('ACCOUNT_STATUS', $status); - break; - - case '': // Account deleted - case NULL: // Account deleted - $ret = '{--ACCOUNT_STATUS_DELETED--}'; - break; - - default: // Please report all unknown status - reportBug(__FUNCTION__, __LINE__, sprintf('Unknown status %s(%s) detected.', $status, gettype($status))); - break; - } // END - switch - - // Return it - return $ret; -} - -// "Translates" 'visible' and 'locked' to a CSS class -function translateMenuVisibleLocked ($content, $prefix = '') { - // 1st parameter should be an array - assert(is_array($content)); - - // Default is 'menu_unknown' - $content['visible_css'] = $prefix . 'menu_unknown'; - - // Translate 'visible' and keep an eye on the prefix - switch ($content['visible']) { - case 'Y': // Should be visible - $content['visible_css'] = $prefix . 'menu_visible'; - break; - - case 'N': // Is invisible - $content['visible_css'] = $prefix . 'menu_invisible'; - break; - - default: // Please report this - reportBug(__FUNCTION__, __LINE__, 'Unsupported visible value detected. content=
' . print_r($content, TRUE) . '
'); - break; - } // END - switch - - // Translate 'locked' and keep an eye on the prefix - switch ($content['locked']) { - case 'Y': // Should be locked, only admins can call this - $content['locked_css'] = $prefix . 'menu_locked'; - break; - - case 'N': // Is unlocked and visible to members/guests/sponsors - $content['locked_css'] = $prefix . 'menu_unlocked'; - break; - - default: // Please report this - reportBug(__FUNCTION__, __LINE__, 'Unsupported locked value detected. content=
' . print_r($content, TRUE) . '
'); - break; - } // END - switch - - // Return the resulting array - return $content; -} - -// Generates an URL for the dereferer -function generateDereferrerUrl ($url) { - // Don't de-refer our own links! - if ((!empty($url)) && (substr($url, 0, strlen(getUrl())) != getUrl())) { - // Encode URL - $encodedUrl = encodeString(compileUriCode($url)); - - // Generate hash - $hash = generateHash($url . getSiteKey() . getDateKey()); - - // Log plain URL and hash - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'url=' . $url . ',hash=' . $hash . '(' . strlen($hash) . ')'); - - // De-refer this URL - $url = sprintf( - '{%%url=modules.php?module=loader&url=%s&hash=%s&salt=%s%%}', - $encodedUrl, - encodeHashForCookie($hash), - substr($hash, 0, getSaltLength()) - ); - } // END - if - - // Return link - return $url; -} - -// Generates an URL for the frametester -function generateFrametesterUrl ($url) { - // Prepare frametester URL - $frametesterUrl = sprintf('{%%url=modules.php?module=frametester&url=%s%%}', - encodeString(compileUriCode($url)) - ); - - // Return the new URL - return $frametesterUrl; -} - -// Count entries from e.g. a selection box -function countSelection ($array) { - // Integrity check - if (!is_array($array)) { - // Not an array! - reportBug(__FUNCTION__, __LINE__, 'No array provided.'); - } // END - if - - // Init count - $ret = '0'; - - // Count all entries - foreach ($array as $selected) { - // Is it checked? - if (!empty($selected)) { - // Yes, then count it - $ret++; - } // END - if - } // END - foreach - - // Return counted selections - return $ret; -} - -// Generates a timestamp (some wrapper for mktime()) -function makeTime ($hours, $minutes, $seconds, $stamp) { - // Extract day, month and year from given timestamp - $days = getDay($stamp); - $months = getMonth($stamp); - $years = getYear($stamp); - - // Create timestamp for wished time which depends on extracted date - return mktime( - $hours, - $minutes, - $seconds, - $months, - $days, - $years - ); -} - -// Redirects to an URL and if neccessarry extends it with own base URL -// @TODO $allowSpider is unused -function redirectToUrl ($url, $allowSpider = TRUE, $compileCode = TRUE) { - // Is the output mode -2? - if (isAjaxOutputMode()) { - // This is always (!) an AJAX request and shall not be redirected - return; - } // END - if - - // Remove {%url= - if (substr($url, 0, 6) == '{%url=') { - $url = substr($url, 6, -2); - } // END - if - - // Compile codes out? - if ($compileCode === TRUE) { - // Compile out codes - eval('$url = "' . compileRawCode(encodeUrl($url)) . '";'); - } // END - if - - // Default 'rel' value is external, nofollow is evil from Google and hurts the Internet - $rel = ' rel="external"'; - - // Is there internal or external URL? - if (substr($url, 0, strlen(getUrl())) == getUrl()) { - // Own (=internal) URL - $rel = ''; - } // END - if - - // Three different ways to debug... - //* DEBUG: */ reportBug(__FUNCTION__, __LINE__, 'URL=' . $url); - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'URL=' . $url); - //* DEBUG-DIE: */ die(__METHOD__ . ':url=' . $url . '
compileCode=' . intval($compileCode)); - - // We should not sent a redirect if headers are already sent - if (!headers_sent()) { - // Compile again? - if ($compileCode === TRUE) { - // Do final compilation - $url = doFinalCompilation(str_replace('&', '&', $url), FALSE); - } // END - if - - // Load URL when headers are not sent - sendRawRedirect($url); - } else { - // Output error message - loadPageHeader(); - loadTemplate('redirect_url', FALSE, str_replace('&', '&', $url)); - loadPageFooter(); - } - - // Shut the mailer down here - doShutdown(); -} - -/************************************************************************ - * * - * Gaenderter Sortier-Algorythmus, $array wird nach dem Array (!) * - * $a_sort sortiert: * - * * - * $array - Das 3-dimensionale Array, das paralell sortiert werden soll * - * $a_sort - Array, das die Sortiereihenfolge der ersten Elementeben * - * $primary_key - Primaerschl.ssel aus $a_sort, nach dem sortiert wird * - * $order - Sortiereihenfolge: -1 = a-Z, 0 = keine, 1 = Z-a * - * $nums - TRUE = Als Zahlen sortieren, FALSE = Als Zeichen sortieren * - * * - * $a_sort muss Elemente enthalten, deren Wert Schluessel von $array * - * sind... Klingt kompliziert, suchen Sie mal mein Beispiel, dann sehen * - * Sie, dass es doch nicht so schwer ist! :-) * - * * - ************************************************************************/ -function array_pk_sort (&$array, $a_sort, $primary_key = '0', $order = -1, $nums = FALSE) { - $temporaryArray = $array; - while ($primary_key < count($a_sort)) { - foreach ($temporaryArray[$a_sort[$primary_key]] as $key => $value) { - foreach ($temporaryArray[$a_sort[$primary_key]] as $key2 => $value2) { - $match = FALSE; - if ($nums === FALSE) { - // Sort byte-by-byte (also numbers will be interpreted as chars! E.g.: "9" > "10") - if (($key != $key2) && (strcmp(strtolower($temporaryArray[$a_sort[$primary_key]][$key]), strtolower($temporaryArray[$a_sort[$primary_key]][$key2])) == $order)) $match = TRUE; - } elseif ($key != $key2) { - // Sort numbers (E.g.: 9 < 10) - if (($temporaryArray[$a_sort[$primary_key]][$key] < $temporaryArray[$a_sort[$primary_key]][$key2]) && ($order == -1)) $match = TRUE; - if (($temporaryArray[$a_sort[$primary_key]][$key] > $temporaryArray[$a_sort[$primary_key]][$key2]) && ($order == 1)) $match = TRUE; - } - - if ($match) { - // We have found two different values, so let's sort whole array - foreach ($temporaryArray as $sort_key => $sort_val) { - $t = $temporaryArray[$sort_key][$key]; - $temporaryArray[$sort_key][$key] = $temporaryArray[$sort_key][$key2]; - $temporaryArray[$sort_key][$key2] = $t; - unset($t); - } // END - foreach - } // END - if - } // END - foreach - } // END - foreach - - // Count one up - $primary_key++; - } // END - while - - // Write back sorted array - $array = $temporaryArray; -} - - -// -// Deprecated : $length (still has one reference in this function) -// Optional : $extraData -// -function generateRandomCode ($length, $code, $userid, $extraData = '') { - // Build server string - $server = $_SERVER['REQUEST_URI'] . getEncryptSeparator() . detectUserAgent() . getEncryptSeparator() . getenv('SERVER_SOFTWARE') . getEncryptSeparator() . detectRealIpAddress() . getEncryptSeparator() . detectRemoteAddr(); - - // Build key string - $keys = getSiteKey() . getEncryptSeparator() . getDateKey(); - if (isConfigEntrySet('secret_key')) { - $keys .= getEncryptSeparator() . getSecretKey(); - } // END - if - if (isConfigEntrySet('file_hash')) { - $keys .= getEncryptSeparator() . getFileHash(); - } // END - if - - if (isConfigEntrySet('master_salt')) { - $keys .= getEncryptSeparator() . getMasterSalt(); - } // END - if - - // Build string from misc data - $data = $code . getEncryptSeparator() . $userid . getEncryptSeparator() . $extraData; - - // Add more additional data - if (isSessionVariableSet('u_hash')) { - $data .= getEncryptSeparator() . getSession('u_hash'); - } // END - if - - // Add referral id, language, theme and userid - $data .= getEncryptSeparator() . determineReferralId(); - $data .= getEncryptSeparator() . getLanguage(); - $data .= getEncryptSeparator() . getCurrentTheme(); - $data .= getEncryptSeparator() . getMemberId(); - - // Calculate number for generating the code - $a = $code + getConfig('_ADD') - 1; - - if (isConfigEntrySet('master_salt')) { - // Generate hash with master salt from modula of number with the prime number and other data - $saltedHash = generateHash(($a % getPrime()) . getEncryptSeparator() . $server . getEncryptSeparator() . $keys . getEncryptSeparator() . $data . getEncryptSeparator() . getDateKey() . getEncryptSeparator() . $a, getMasterSalt()); - } else { - // Generate hash with "hash of site key" from modula of number with the prime number and other data - $saltedHash = generateHash(($a % getPrime()) . getEncryptSeparator() . $server . getEncryptSeparator() . $keys . getEncryptSeparator() . $data . getEncryptSeparator() . getDateKey() . getEncryptSeparator() . $a, substr(sha1(getSiteKey()), 0, getSaltLength())); - } - - // Create number from hash - $rcode = hexdec(substr($saltedHash, getSaltLength(), 9)) / abs(getRandNo() - $a + sqrt(getConfig('_ADD'))) / pi(); - - // At least 10 numbers shall be secure enought! - if (isExtensionActive('other')) { - $len = getCodeLength(); - } else { - $len = $length; - } // END - if - - // Smaller 1 is not okay - if ($len < 1) { - // Fix it to 10 - $len = 10; - } // END - if - - // Cut off requested counts of number, but skip first digit (which is mostly a zero) - $return = substr($rcode, (strpos($rcode, '.') + 1), $len); - - // Done building code - return $return; -} - -// Does only allow numbers -function bigintval ($num, $castValue = TRUE, $abortOnMismatch = TRUE) { - //* DEBUG: */ debugOutput('[' . __FUNCTION__ . ':' . __LINE__ . '] ' . 'num=' . $num . ',castValue=' . intval($castValue) . ',abortOnMismatch=' . intval($abortOnMismatch) . ' - ENTERED!'); - // Filter all non-number chars out, so only number chars will remain - $ret = preg_replace('/[^0123456789]/', '', $num); - - // Shall we cast? - if ($castValue === TRUE) { - // Cast to biggest numeric type - $ret = (double) $ret; - } // END - if - - // Has the whole value changed? - if (('' . $ret . '' != '' . $num . '') && ($abortOnMismatch === TRUE) && (!is_null($num))) { - // Log the values - reportBug(__FUNCTION__, __LINE__, 'Problem with number found. ret[' . gettype($ret) . ']=' . $ret . ', num[' . gettype($num) . ']='. $num); - } // END - if - - // Return result - //* DEBUG: */ debugOutput('[' . __FUNCTION__ . ':' . __LINE__ . '] ' . 'num=' . $num . ',castValue=' . intval($castValue) . ',abortOnMismatch=' . intval($abortOnMismatch) . ',ret=' . $ret . ' - EXIT!'); - return $ret; -} - -// Creates a Uni* timestamp from given selection data and prefix -function createEpocheTimeFromSelections ($prefix, $postData) { - // Assert on typical array element (maybe all?) - assert(isset($postData[$prefix . '_ye'])); - - // Initial return value - $ret = '0'; - - // Is there a leap year? - $SWITCH = '0'; - $TEST = getYear() / 4; - $M1 = getMonth(); - - // If so and if current time is before 02/29 and estimated time is after 02/29 then add 86400 seconds (one day) - // 01 2 2 1 1 1 123 4 43 3 32 233 4 43 3 3210 - if ((floor($TEST) == $TEST) && ($M1 == '02') && (((isset($postData[$prefix . '_mo'])) && ($postData[$prefix . '_mo'] > '02')) || ((isset($postData[$prefix . '_mn'])) && ($postData[$prefix . '_mn'] > '02')))) { - $SWITCH = getOneDay(); - } // END - if - - // First add years... - $ret += $postData[$prefix . '_ye'] * (31536000 + $SWITCH); - - // Next months... - if (isset($postData[$prefix . '_mo'])) { - $ret += $postData[$prefix . '_mo'] * 2628000; - } elseif (isset($postData[$prefix . '_mn'])) { - $ret += $postData[$prefix . '_mn'] * 2628000; - } - - // Next weeks - $ret += $postData[$prefix . '_we'] * 604800; - - // Next days... - $ret += $postData[$prefix . '_da'] * 86400; - - // Next hours... - $ret += $postData[$prefix . '_ho'] * 3600; - - // Next minutes.. - $ret += $postData[$prefix . '_mi'] * 60; - - // And at last seconds... - $ret += $postData[$prefix . '_se']; - - // Return calculated value - return $ret; -} - -// Creates a 'fancy' human-readable timestamp from a Uni* stamp -function createFancyTime ($stamp) { - // Get data array with years/months/weeks/days/... - $data = createTimeSelections($stamp, '', '', '', TRUE); - $ret = ''; - foreach ($data as $k => $v) { - if ($v > 0) { - // Value is greater than 0 "eval" data to return string - $ret .= ', ' . $v . ' {%pipe,translateTimeUnit=' . $k . '%}'; - break; - } // END - if - } // END - foreach - - // Is something there? - if (!empty($ret)) { - // Remove leading commata and space - $ret = substr($ret, 2); - } else { - // Zero seconds - $ret = '0 {--TIME_UNIT_SECOND--}'; - } - - // Return fancy time string - return $ret; -} - -// Taken from www.php.net isInStringIgnoreCase() user comments -function isEmailValid ($email) { - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'email=' . $email . ' - ENTERED!'); - - // Is there cache? - if (!isset($GLOBALS[__FUNCTION__][$email])) { - // Check first part of email address - $first = '[-a-z0-9!#$%&\'*+/=?^_<{|}~]+(\.[-a-zA-Z0-9!#$%&\'*+/=?^_<{|}~]+)*'; - - // Check domain - $domain = '[a-z0-9-]+(\.[a-z0-9-]{2,5})+'; - - // Generate pattern - $regex = '@^' . $first . '\@' . $domain . '$@iU'; - - // Determine it - $GLOBALS[__FUNCTION__][$email] = (($email != getMessage('DEFAULT_WEBMASTER')) && (preg_match($regex, $email))); - } // END - if - - // Return check result - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'email=' . $email . ',isValid=' . intval($GLOBALS[__FUNCTION__][$email]) . ' - EXIT!'); - return $GLOBALS[__FUNCTION__][$email]; -} - -// Function taken from user comments on www.php.net / function isInStringIgnoreCase() -function isUrlValid ($url, $compile = TRUE) { - // Trim URL a little - $url = trim(urldecode($url)); - //* DEBUG: */ debugOutput($url); - - // Compile some chars out... - if ($compile === TRUE) { - $url = compileUriCode($url, FALSE, FALSE, FALSE); - } // END - if - //* DEBUG: */ debugOutput($url); - - // Check for the extension filter - if (isExtensionActive('filter')) { - // Use the extension's filter set - return FILTER_VALIDATE_URL($url, FALSE); - } // END - if - - /* - * If not installed, perform a simple test. Just make it sure there is always a - * http:// or https:// in front of the URLs. - */ - return isUrlValidSimple($url); -} - -// Generate a hash for extra-security for all passwords -function generateHash ($plainText, $salt = '', $hash = TRUE) { - // Debug output - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'plainText('.strlen($plainText).')=' . $plainText . ',salt('.strlen($salt).')=' . $salt . ',hash=' . intval($hash)); - - // Is the required extension 'sql_patches' there and a salt is not given? - // 123 4 43 3 4 432 2 3 32 2 3 32 2 3 3 21 - if (((isExtensionInstalledAndOlder('sql_patches', '0.3.6')) && (empty($salt))) || (!isExtensionActive('sql_patches')) || (!isExtensionInstalledAndNewer('other', '0.2.5')) || (strlen($salt) == 32)) { - // Extension ext-sql_patches is missing/outdated so we hash the plain text with MD5 - if ($hash === TRUE) { - // Is plain password - return md5($plainText); - } else { - // Is already a hash - return $plainText; - } - } // END - if - - // Is an arry element missing here? - if (!isConfigEntrySet('file_hash')) { - // Stop here - reportBug(__FUNCTION__, __LINE__, 'Missing file_hash in ' . __FUNCTION__ . '.'); - } // END - if - - // When the salt is empty build a new one, else use the first x configured characters as the salt - if (empty($salt)) { - // Build server string for more entropy - $server = $_SERVER['REQUEST_URI'] . getEncryptSeparator() . detectUserAgent() . getEncryptSeparator() . getenv('SERVER_SOFTWARE') . getEncryptSeparator() . detectRealIpAddress() . getEncryptSeparator() . detectRemoteAddr(); - - // Build key string - $keys = getSiteKey() . getEncryptSeparator() . getDateKey() . getEncryptSeparator() . getFileHash() . getEncryptSeparator() . getMasterSalt(); - - // Is the secret_key config entry set? - if (isConfigEntrySet('secret_key')) { - // Add it - $keys .= getEncryptSeparator() . getSecretKey(); - } // END - if - - // Additional data - $data = $plainText . getEncryptSeparator() . uniqid(mt_rand(), TRUE) . getEncryptSeparator() . time(); - - // Calculate number for generating the code - $a = time() + getConfig('_ADD') - 1; - - // Generate SHA1 sum from modula of number and the prime number - $sha1 = sha1(($a % getPrime()) . $server . getEncryptSeparator() . $keys . getEncryptSeparator() . $data . getEncryptSeparator() . getDateKey() . getEncryptSeparator() . $a); - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'SHA1=' . $sha1.' ('.strlen($sha1).')'); - $sha1 = scrambleString($sha1); - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'Scrambled=' . $sha1.' ('.strlen($sha1).')'); - //* DEBUG: */ $sha1b = descrambleString($sha1); - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'Descrambled=' . $sha1b.' ('.strlen($sha1b).')'); - - // Generate the password salt string - $salt = substr($sha1, 0, getSaltLength()); - //* DEBUG: */ debugOutput($salt.' ('.strlen($salt).')'); - } else { - // Use given salt - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'salt=' . $salt); - $salt = substr($salt, 0, getSaltLength()); - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'salt=' . $salt . '(' . strlen($salt) . '/' . getSaltLength() . ')'); - - // Sanity check on salt - if (strlen($salt) != getSaltLength()) { - // Not the same! - reportBug(__FUNCTION__, __LINE__, 'salt length mismatch! (' . strlen($salt) . '/' . getSaltLength() . ')'); - } // END - if - } - - // Generate final hash (for debug output) - $finalHash = $salt . sha1($salt . $plainText); - - // Debug output - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'finalHash('.strlen($finalHash).')=' . $finalHash); - - // Return hash - return $finalHash; -} - -// Scramble a string -function scrambleString ($str) { - // Init - $scrambled = ''; - - // Final check, in case of failure it will return unscrambled string - if (strlen($str) > 40) { - // The string is to long - return $str; - } elseif ((strlen($str) == 40) && (getPassScramble() != '')) { - // From database - $scramble = getPassScramble(); - } else { - // Generate new numbers - $scramble = genScrambleString(strlen($str)); - } - - // Convert it into an array - $scrambleNums = explode(':', $scramble); - - // Assert on both lengths - assert(strlen($str) == count($scrambleNums)); - - // Scramble string here - //* DEBUG: */ debugOutput('***Original=' . $str.'***
'); - for ($idx = 0; $idx < strlen($str); $idx++) { - // Get char on scrambled position - $char = substr($str, $scrambleNums[$idx], 1); - - // Add it to final output string - $scrambled .= $char; - } // END - for - - // Return scrambled string - //* DEBUG: */ debugOutput('***Scrambled=' . $scrambled.'***
'); - return $scrambled; -} - -// De-scramble a string scrambled by scrambleString() -function descrambleString ($str) { - // Scramble only 40 chars long strings - if (strlen($str) != 40) { - return $str; - } // END - if - - // Load numbers from config - $scrambleNums = explode(':', getPassScramble()); - - // Validate numbers - if (count($scrambleNums) != 40) { - return $str; - } // END - if - - // Begin descrambling - $orig = str_repeat(' ', 40); - //* DEBUG: */ debugOutput('+++Scrambled=' . $str.'+++
'); - for ($idx = 0; $idx < 40; $idx++) { - $char = substr($str, $idx, 1); - $orig = substr_replace($orig, $char, $scrambleNums[$idx], 1); - } // END - for - - // Return scrambled string - //* DEBUG: */ debugOutput('+++Original=' . $orig.'+++
'); - return $orig; -} - -// Generated a "string" for scrambling -function genScrambleString ($len) { - // Prepare array for the numbers - $scrambleNumbers = array(); - - // First we need to setup randomized numbers from 0 to 31 - for ($idx = 0; $idx < $len; $idx++) { - // Generate number - $rand = mt_rand(0, ($len - 1)); - - // Check for it by creating more numbers - while (array_key_exists($rand, $scrambleNumbers)) { - $rand = mt_rand(0, ($len - 1)); - } // END - while - - // Add number - $scrambleNumbers[$rand] = $rand; - } // END - for - - // So let's create the string for storing it in database - $scrambleString = implode(':', $scrambleNumbers); - - // Return it - return $scrambleString; -} - -// Generate an PGP-like encrypted hash of given hash for e.g. cookies -function encodeHashForCookie ($passHash) { - // Return vanilla password hash - $ret = $passHash; - - // Is a secret key and master salt already initialized? - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, intval(isExtensionInstalled('sql_patches')) . '/' . intval(isConfigEntrySet('_PRIME')) . '/' . intval(isConfigEntrySet('secret_key')) . '/' . intval(isConfigEntrySet('master_salt'))); - if ((isExtensionInstalled('sql_patches')) && (isConfigEntrySet('_PRIME')) && (isConfigEntrySet('secret_key')) && (isConfigEntrySet('master_salt'))) { - // Only calculate when the secret key is generated - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, strlen($passHash) . '/' . strlen(getSecretKey())); - if ((strlen($passHash) != 49) || (strlen(getSecretKey()) != 40)) { - // Both keys must have same length so return unencrypted - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, strlen($passHash) . '!=49/' . strlen(getSecretKey()) . '!=40 - EXIT!'); - return $ret; - } // END - if - - $newHash = ''; $start = 9; - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'passHash=' . $passHash . '(' . strlen($passHash) . ')'); - for ($idx = 0; $idx < 20; $idx++) { - // Get hash parts and convert them (00-FF) to matching ASCII value (0-255) - $part1 = hexdec(substr($passHash , $start, 2)); - $part2 = hexdec(substr(getSecretKey(), $start, 2)); - - // Default is hexadecimal of index if both are same - $mod = dechex($idx); - - // Is part1 larger or part2 than its counter part? - if ($part1 > $part2) { - // part1 is larger - $mod = dechex(sqrt(($part1 - $part2) * getPrime() / pi())); - } elseif ($part2 > $part1) { - // part2 is larger - $mod = dechex(sqrt(($part2 - $part1) * getPrime() / pi())); - } - - $mod = substr($mod, 0, 2); - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'idx=' . $idx . ',part1=' . $part1 . '/part2=' . $part2 . '/mod=' . $mod . '(' . strlen($mod) . ')'); - $mod = padLeftZero($mod, 2); - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'mod(' . ($idx * 2) . ')=' . $mod . '*'); - $start += 2; - $newHash .= $mod; - } // END - for - - // Just copy it over, as the master salt is not really helpful here - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, $passHash . '(' . strlen($passHash) . '),' . $newHash . ' (' . strlen($newHash) . ')'); - $ret = $newHash; - } // END - if - - // Return result - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'ret=' . $ret . ''); - return $ret; -} - -// Fix "deleted" cookies -function fixDeletedCookies ($cookies) { - // Is this an array with entries? - if (isFilledArray($cookies)) { - // Then check all cookies if they are marked as deleted! - foreach ($cookies as $cookieName) { - // Is the cookie set to "deleted"? - if (getSession($cookieName) == 'deleted') { - setSession($cookieName, ''); - } // END - if - } // END - foreach - } // END - if -} - -// Checks if a given apache module is loaded -function isApacheModuleLoaded ($apacheModule) { - // Check it and return result - return (((function_exists('apache_get_modules')) && (in_array($apacheModule, apache_get_modules()))) || (!function_exists('apache_get_modules'))); -} - -// Get current theme name -function getCurrentTheme () { - // The default theme is 'default'... ;-) - $ret = 'default'; - - // Is there ext-theme installed and active or is 'theme' in URL or POST data? - if (isExtensionActive('theme')) { - // Call inner method - $ret = getActualTheme(); - } elseif ((isPostRequestElementSet('theme')) && (isThemeReadable(postRequestElement('theme')))) { - // Use value from POST data - $ret = postRequestElement('theme'); - } elseif ((isGetRequestElementSet('theme')) && (isThemeReadable(getRequestElement('theme')))) { - // Use value from GET data - $ret = getRequestElement('theme'); - } elseif ((isMailerThemeSet()) && (isThemeReadable(getMailerTheme()))) { - // Use value from GET data - $ret = getMailerTheme(); - } - - // Return theme value - return $ret; -} - -// Generates an error code from given account status -function generateErrorCodeFromUserStatus ($status = '') { - // If no status is provided, use the default, cached - if ((empty($status)) && (isMember())) { - // Get user status - $status = getUserData('status'); - } // END - if - - // Default error code if unknown account status - $errorCode = getCode('ACCOUNT_UNKNOWN'); - - // Generate constant name - $codeName = sprintf('ACCOUNT_%s', strtoupper($status)); - - // Is the constant there? - if (isCodeSet($codeName)) { - // Then get it! - $errorCode = getCode($codeName); - } else { - // Unknown status - logDebugMessage(__FUNCTION__, __LINE__, sprintf('Unknown error status %s detected.', $status)); - } - - // Return error code - return $errorCode; -} - -// Back-ported from the new ship-simu engine. :-) -function debug_get_printable_backtrace () { - // Init variable - $backtrace = '
    '; - - // Get and prepare backtrace for output - $backtraceArray = debug_backtrace(); - foreach ($backtraceArray as $key => $trace) { - if (!isset($trace['file'])) $trace['file'] = __FUNCTION__; - if (!isset($trace['line'])) $trace['line'] = __LINE__; - if (!isset($trace['args'])) $trace['args'] = array(); - $backtrace .= '
  1. ' . basename($trace['file']) . ':' . $trace['line'] . ', ' . $trace['function'] . '(' . count($trace['args']) . ')
  2. '; - } // END - foreach - - // Close it - $backtrace .= '
'; - - // Return the backtrace - return $backtrace; -} - -// A mail-able backtrace -function debug_get_mailable_backtrace () { - // Init variable - $backtrace = ''; - - // Get and prepare backtrace for output - $backtraceArray = debug_backtrace(); - foreach ($backtraceArray as $key => $trace) { - if (!isset($trace['file'])) $trace['file'] = __FUNCTION__; - if (!isset($trace['line'])) $trace['line'] = __LINE__; - if (!isset($trace['args'])) $trace['args'] = array(); - $backtrace .= ($key+1) . '.:' . basename($trace['file']) . ':' . $trace['line'] . ', ' . $trace['function'] . '(' . count($trace['args']) . ")\n"; - } // END - foreach - - // Return the backtrace - return $backtrace; -} - -// Generates a ***weak*** seed -function generateSeed () { - return microtime(TRUE) * 100000; -} - -// Converts a message code to a human-readable message -function getMessageFromErrorCode ($code) { - // Default is an unknown error code - $message = '{%message,UNKNOWN_ERROR_CODE=' . $code . '%}'; - - // Which code is provided? - switch ($code) { - case '': - // No error code is bad coding practice - reportBug(__FUNCTION__, __LINE__, 'Empty error code supplied. Please fix your code.'); - break; - - // All error messages - case getCode('LOGOUT_DONE') : $message = '{--LOGOUT_DONE--}'; break; - case getCode('LOGOUT_FAILED') : $message = '{--LOGOUT_FAILED--}'; break; - case getCode('DATA_INVALID') : $message = '{--MAIL_DATA_INVALID--}'; break; - case getCode('POSSIBLE_INVALID') : $message = '{--MAIL_POSSIBLE_INVALID--}'; break; - case getCode('USER_404') : $message = '{--USER_404--}'; break; - case getCode('STATS_404') : $message = '{--MAIL_STATS_404--}'; break; - case getCode('ALREADY_CONFIRMED') : $message = '{--MAIL_ALREADY_CONFIRMED--}'; break; - case getCode('BEG_SAME_AS_OWN') : $message = '{--BEG_SAME_USERID_AS_OWN--}'; break; - case getCode('LOGIN_FAILED') : $message = '{--GUEST_LOGIN_FAILED_GENERAL--}'; break; - case getCode('MODULE_MEMBER_ONLY') : $message = '{%message,MODULE_MEMBER_ONLY=' . getRequestElement('mod') . '%}'; break; - case getCode('OVERLENGTH') : $message = '{--MEMBER_TEXT_OVERLENGTH--}'; break; - case getCode('URL_FOUND') : $message = '{--MEMBER_TEXT_CONTAINS_URL--}'; break; - case getCode('SUBJECT_URL') : $message = '{--MEMBER_SUBJECT_CONTAINS_URL--}'; break; - case getCode('BLIST_URL') : $message = '{--MEMBER_URL_BLACK_LISTED--}
{--MEMBER_BLIST_TIME--}: ' . generateDateTime(getRequestElement('blist'), 0); break; - case getCode('NO_RECS_LEFT') : $message = '{--MEMBER_SELECTED_MORE_RECS--}'; break; - case getCode('INVALID_TAGS') : $message = '{--MEMBER_HTML_INVALID_TAGS--}'; break; - case getCode('MORE_POINTS') : $message = '{--MEMBER_MORE_POINTS_NEEDED--}'; break; - case getCode('MORE_RECEIVERS1') : $message = '{--MEMBER_ENTER_MORE_RECEIVERS--}'; break; - case getCode('MORE_RECEIVERS2') : $message = '{--MEMBER_NO_MORE_RECEIVERS_FOUND--}'; break; - case getCode('MORE_RECEIVERS3') : $message = '{--MEMBER_ENTER_MORE_MIN_RECEIVERS--}'; break; - case getCode('INVALID_URL') : $message = '{--MEMBER_ENTER_INVALID_URL--}'; break; - case getCode('NO_MAIL_TYPE') : $message = '{--MEMBER_NO_MAIL_TYPE_SELECTED--}'; break; - case getCode('PROFILE_UPDATED') : $message = '{--MEMBER_PROFILE_UPDATED--}'; break; - case getCode('UNKNOWN_REDIRECT') : $message = '{--UNKNOWN_REDIRECT_VALUE--}'; break; - case getCode('WRONG_PASS') : $message = '{--LOGIN_WRONG_PASS--}'; break; - case getCode('WRONG_ID') : $message = '{--LOGIN_WRONG_ID--}'; break; - case getCode('ACCOUNT_LOCKED') : $message = '{--LOGIN_STATUS_LOCKED--}'; break; - case getCode('ACCOUNT_UNCONFIRMED') : $message = '{--LOGIN_STATUS_UNCONFIRMED--}'; break; - case getCode('COOKIES_DISABLED') : $message = '{--LOGIN_COOKIES_DISABLED--}'; break; - case getCode('UNKNOWN_ERROR') : $message = '{--LOGIN_UNKNOWN_ERROR--}'; break; - case getCode('UNKNOWN_STATUS') : $message = '{--LOGIN_UNKNOWN_STATUS--}'; break; - case getCode('LOGIN_EMPTY_ID') : $message = '{--LOGIN_ID_IS_EMPTY--}'; break; - case getCode('LOGIN_EMPTY_PASSWORD'): $message = '{--LOGIN_PASSWORD_IS_EMPTY--}'; break; - - case getCode('ERROR_MAILID'): - if (isExtensionActive('mailid', TRUE)) { - $message = '{--ERROR_CONFIRMING_MAIL--}'; - } else { - $message = '{%pipe,generateExtensionInactiveNotInstalledMessage=mailid%}'; - } - break; - - case getCode('EXTENSION_PROBLEM'): - if (isGetRequestElementSet('ext')) { - $message = '{%pipe,generateExtensionInactiveNotInstalledMessage=' . getRequestElement('ext') . '%}'; - } else { - $message = '{--EXTENSION_PROBLEM_UNSET_EXT--}'; - } - break; - - case getCode('URL_TIME_LOCK'): - // Load timestamp from last order - $content = getPoolDataFromId(getRequestElement('id')); - - // Translate it for templates - $content['timestamp'] = generateDateTime($content['timestamp'], 1); - - // Calculate hours... - $content['hours'] = round(getUrlTlock() / 60 / 60); - - // Minutes... - $content['minutes'] = round((getUrlTlock() - $content['hours'] * 60 * 60) / 60); - - // And seconds - $content['seconds'] = round(getUrlTlock() - $content['hours'] * 60 * 60 - $content['minutes'] * 60); - - // Finally contruct the message - $message = loadTemplate('tlock_message', TRUE, $content); - break; - - default: - // Log missing/invalid error codes - logDebugMessage(__FUNCTION__, __LINE__, getMessage('UNKNOWN_MAILID_CODE', $code)); - break; - } // END - switch - - // Return the message - return $message; -} - -// Function taken from user comments on www.php.net / function isInStringIgnoreCase() -function isUrlValidSimple ($url) { - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'url=' . $url . ' - ENTERED!'); - // Prepare URL - $url = secureString(str_replace(chr(92), '', compileRawCode(urldecode($url)))); - - // Allows http and https - $http = "(http|https)+(:\/\/)"; - // Test domain - $domain1 = "([[:alnum:]]([-[:alnum:]])*\.)?([[:alnum:]][-[:alnum:]\.]*[[:alnum:]])(\.[[:alpha:]]{2,5})?"; - // Test double-domains (e.g. .de.vu) - $domain2 = "([-[:alnum:]])?(\.[[:alnum:]][-[:alnum:]\.]*[[:alnum:]])(\.[[:alpha:]]{2,5})(\.[[:alpha:]]{2,5})?"; - // Test IP number - $ip = "([[:digit:]]{1,3})\.([[:digit:]]{1,3})\.([[:digit:]]{1,3})\.([[:digit:]]{1,3})"; - // ... directory - $dir = "((/)+([-_\.[:alnum:]])+)*"; - // ... page - $page = "/([-_[:alnum:]][-\._[:alnum:]]*\.[[:alnum:]]{2,5})?"; - // ... and the string after and including question character - $getstring1 = "([\?/]([[:alnum:]][-\._%[:alnum:]]*(=)?([-\@\._:%[:alnum:]])+)(&([[:alnum:]]([-_%[:alnum:]])*(=)?([-\@\[\._:%[:alnum:]])+(\])*))*)?"; - // Pattern for URLs like http://url/dir/doc.html?var=value - $pattern['d1dpg1'] = $http . $domain1 . $dir . $page . $getstring1; - $pattern['d2dpg1'] = $http . $domain2 . $dir . $page . $getstring1; - $pattern['ipdpg1'] = $http . $ip . $dir . $page . $getstring1; - // Pattern for URLs like http://url/dir/?var=value - $pattern['d1dg1'] = $http . $domain1 . $dir.'/' . $getstring1; - $pattern['d2dg1'] = $http . $domain2 . $dir.'/' . $getstring1; - $pattern['ipdg1'] = $http . $ip . $dir.'/' . $getstring1; - // Pattern for URLs like http://url/dir/page.ext - $pattern['d1dp'] = $http . $domain1 . $dir . $page; - $pattern['d1dp'] = $http . $domain2 . $dir . $page; - $pattern['ipdp'] = $http . $ip . $dir . $page; - // Pattern for URLs like http://url/dir - $pattern['d1d'] = $http . $domain1 . $dir; - $pattern['d2d'] = $http . $domain2 . $dir; - $pattern['ipd'] = $http . $ip . $dir; - // Pattern for URLs like http://url/?var=value - $pattern['d1g1'] = $http . $domain1 . '/' . $getstring1; - $pattern['d2g1'] = $http . $domain2 . '/' . $getstring1; - $pattern['ipg1'] = $http . $ip . '/' . $getstring1; - // Pattern for URLs like http://url?var=value - $pattern['d1g12'] = $http . $domain1 . $getstring1; - $pattern['d2g12'] = $http . $domain2 . $getstring1; - $pattern['ipg12'] = $http . $ip . $getstring1; - - // Test all patterns - $reg = FALSE; - foreach ($pattern as $key => $pat) { - // Debug regex? - if (isDebugRegularExpressionEnabled()) { - // @TODO Are these convertions still required? - $pat = str_replace('.', '\.', $pat); - $pat = str_replace('@', '\@', $pat); - //* DEBUG: */ debugOutput($key . '= ' . $pat); - } // END - if - - // Check if expression matches - $reg = ($reg || preg_match(('^' . $pat . '^'), $url)); - - // Does it match? - if ($reg === TRUE) { - break; - } // END - if - } // END - foreach - - // Return true/false - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'url=' . $url . ',reg=' . intval($reg) . ' - EXIT!'); - return $reg; -} - -// Wtites data to a config.php-style file -// @TODO Rewrite this function to use readFromFile() and writeToFile() -function changeDataInFile ($FQFN, $comment, $prefix, $suffix, $inserted, $seek = 0) { - // Initialize some variables - $done = FALSE; - $seek++; - $next = -1; - $found = FALSE; - - // Is the file there and read-/write-able? - if ((isFileReadable($FQFN)) && (is_writeable($FQFN))) { - $search = 'CFG: ' . $comment; - $tmp = $FQFN . '.tmp'; - - // Open the source file - $fp = fopen($FQFN, 'r') or reportBug(__FUNCTION__, __LINE__, 'Cannot read. file=' . basename($FQFN)); - - // Is the resource valid? - if (is_resource($fp)) { - // Open temporary file - $fp_tmp = fopen($tmp, 'w') or reportBug(__FUNCTION__, __LINE__, 'Cannot write. tmp=' . basename($tmp) . ',file=' . $FQFN); - - // Is the resource again valid? - if (is_resource($fp_tmp)) { - // Mark temporary file as readable - $GLOBALS['file_readable'][$tmp] = TRUE; - - // Start reading - while (!feof($fp)) { - // Read from source file - $line = fgets($fp, 1024); - - if (isInString($search, $line)) { - $next = '0'; - $found = TRUE; - } // END - if - - if ($next > -1) { - if ($next === $seek) { - $next = -1; - $line = $prefix . $inserted . $suffix . PHP_EOL; - } else { - $next++; - } - } // END - if - - // Write to temp file - fwrite($fp_tmp, $line); - } // END - while - - // Close temp file - fclose($fp_tmp); - - // Finished writing tmp file - $done = TRUE; - } // END - if - - // Close source file - fclose($fp); - - if (($done === TRUE) && ($found === TRUE)) { - // Copy back temporary->FQFN file and ... - copyFileVerified($tmp, $FQFN, 0644); - - // ... delete temporay file :-) - return removeFile($tmp); - } elseif ($found === FALSE) { - // Entry not found - logDebugMessage(__FUNCTION__, __LINE__, 'File ' . basename($FQFN) . ' cannot be changed: comment=' . $comment . ',prefix=' . $prefix . ',inserted=' . $inserted . ',seek=' . $seek . ' - 404!'); - } else { - // Temporary file not fully written - logDebugMessage(__FUNCTION__, __LINE__, 'File ' . basename($FQFN) . ' cannot be changed: comment=' . $comment . ',prefix=' . $prefix . ',inserted=' . $inserted . ',seek=' . $seek . ' - Temporary file unfinished!'); - } - } - } else { - // File not found, not readable or writeable - reportBug(__FUNCTION__, __LINE__, 'File not readable/writeable. file=' . basename($FQFN) . ',comment=' . $comment . ',prefix=' . $prefix . ',inserted=' . $inserted . ',seek=' . $seek); - } - - // An error was detected! - return FALSE; -} - -// Debug message logger -function logDebugMessage ($funcFile, $line, $message, $force=true) { - // Is debug mode enabled? - if ((isDebugModeEnabled()) || ($force === TRUE)) { - // Remove CRLF - $message = str_replace(array(chr(13), PHP_EOL), array('', ''), $message); - - // Log this message away - appendLineToFile(getPath() . getCachePath() . 'debug.log', generateDateTime(time(), '4') . '|' . getModule(FALSE) . ':' . getExtraModule() . '|' . basename($funcFile) . '|' . $line . '|' . $message); - } // END - if -} - -// Handle extra values -function handleExtraValues ($filterFunction, $value, $extraValue) { - // Default is the value itself - $ret = $value; - - // Is there a special filter function? - if ((empty($filterFunction)) || (!function_exists($filterFunction))) { - // Call-back function does not exist or is empty - reportBug(__FUNCTION__, __LINE__, 'Filter function ' . $filterFunction . ' does not exist or is empty: value[' . gettype($value) . ']=' . $value . ',extraValue[' . gettype($extraValue) . ']=' . $extraValue); - } // END - if - - // Is there extra parameters here? - if ((!is_null($extraValue)) && (!empty($extraValue))) { - // Put both parameters in one new array by default - $args = array($value, $extraValue); - - // If we have an array simply use it and pre-extend it with our value - if (is_array($extraValue)) { - // Make the new args array - $args = merge_array(array($value), $extraValue); - } // END - if - - // Call the multi-parameter call-back - $ret = call_user_func_array($filterFunction, $args); - - // Is $ret 'true'? - if ($ret === TRUE) { - // Test passed, so write direct value - $ret = $args; - } // END - if - } else { - // One parameter call - $ret = call_user_func($filterFunction, $value); - //* BUG */ die('ret['.gettype($ret).']=' . $ret . ',value=' . $value.',filterFunction=' . $filterFunction); - - // Is $ret 'true'? - if ($ret === TRUE) { - // Test passed, so write direct value - $ret = $value; - } // END - if - } - - // Return the value - return $ret; -} - -// Tries to determine if call-back functions and/or extra values shall be parsed -function doHandleExtraValues ($filterFunctions, $extraValues, $key, $entries, $userIdColumn, $search, $id = NULL) { - // Debug mode enabled? - if (isDebugModeEnabled()) { - // Debug message - /* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'key=' . $key . ',entries=' . $entries . ',userIdColumn=' . $userIdColumn[0] . ',search=' . $search . ',filterFunctions=' . print_r($filterFunctions, TRUE) . ',extraValues=' . print_r($extraValues, TRUE)); - } // END - if - - // Send data through the filter function if found - if ($key === $userIdColumn[0]) { - // Is the userid, we have to process it with convertZeroToNull() - $entries = convertZeroToNull($entries); - } elseif ((!empty($filterFunctions[$key])) && (isset($extraValues[$key]))) { - // Debug mode enabled? - if (isDebugModeEnabled()) { - // Then log it - /* NOISY-DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'search=' . $search . ',filterFunctions=' . $filterFunctions[$key] . ',extraValues=' . $extraValues[$key] . ',key=' . $key . ',id=' . $id . ',entries[' . gettype($entries) . ']=' . $entries . ' - BEFORE!'); - } // END - if - - // Filter function + extra value set - $entries = handleExtraValues($filterFunctions[$key], $entries, $extraValues[$key]); - - // Debug mode enabled? - if (isDebugModeEnabled()) { - // Then log it - /* NOISY-DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'search=' . $search . ',filterFunctions=' . $filterFunctions[$key] . ',extraValues=' . $extraValues[$key] . ',key=' . $key . ',id=' . $id . ',entries[' . gettype($entries) . ']=' . $entries . ' - AFTER!'); - } // END - if - } elseif ((!empty($filterFunctions[$search])) && (!empty($extraValues[$search]))) { - // Debug mode enabled? - if (isDebugModeEnabled()) { - // Then log it - /* NOISY-DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'search=' . $search . ',filterFunctions=' . $filterFunctions[$search] . ',key=' . $key . ',search=' . $search . ',entries[' . gettype($entries) . ']=' . $entries . ' - BEFORE!'); - } // END - if - - // Handle extra values - $entries = handleExtraValues($filterFunctions[$search], $entries, $extraValues[$search]); - - // Debug mode enabled? - if (isDebugModeEnabled()) { - // Then log it - /* NOISY-DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'search=' . $search . ',filterFunctions=' . $filterFunctions[$search] . ',key=' . $key . ',search=' . $search . ',entries[' . gettype($entries) . ']=' . $entries . ' - AFTER!'); - } // END - if - - // Make sure entries is not bool, then something went wrong - assert(!is_bool($entries)); - } elseif (!empty($filterFunctions[$search])) { - // Debug mode enabled? - if (isDebugModeEnabled()) { - // Then log it - /* NOISY-DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'search=' . $search . ',filterFunctions=' . $filterFunctions[$search] . ',key=' . $key . ',search=' . $search . ',entries[' . gettype($entries) . ']=' . $entries . ' - BEFORE!'); - } // END - if - - // Handle extra values - $entries = handleExtraValues($filterFunctions[$search], $entries, NULL); - - // Debug mode enabled? - if (isDebugModeEnabled()) { - // Then log it - /* NOISY-DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'search=' . $search . ',filterFunctions=' . $filterFunctions[$search] . ',key=' . $key . ',search=' . $search . ',entries[' . gettype($entries) . ']=' . $entries . ' - AFTER!'); - } // END - if - - // Make sure entries is not bool, then something went wrong - assert(!is_bool($entries)); - } - - // Return value - return $entries; -} - -// Converts timestamp selections into a timestamp -function convertSelectionsToEpocheTime (array &$postData, array &$content, &$id, &$skip) { - // Init test variable - $skip = FALSE; - $test2 = ''; - - // Get last three chars - $test = substr($id, -3); - - // Improved way of checking! :-) - if (in_array($test, array('_ye', '_mo', '_mn', '_we', '_da', '_ho', '_mi', '_se'))) { - // Found a multi-selection for timings? - $test = substr($id, 0, -3); - if ((isset($postData[$test . '_ye'])) && ((isset($postData[$test . '_mo'])) || (isset($postData[$test . '_mn']))) && (isset($postData[$test . '_we'])) && (isset($postData[$test . '_da'])) && (isset($postData[$test . '_ho'])) && (isset($postData[$test . '_mi'])) && (isset($postData[$test . '_se'])) && ($test != $test2)) { - // Generate timestamp - $postData[$test] = createEpocheTimeFromSelections($test, $postData); - array_push($content, sprintf("`%s`='%s'", $test, $postData[$test])); - $GLOBALS['skip_config'][$test] = TRUE; - - // Remove data from array - foreach (array('ye', 'mo', 'mn', 'we', 'da', 'ho', 'mi', 'se') as $rem) { - unset($postData[$test . '_' . $rem]); - } // END - foreach - - // Skip adding - unset($id); - $skip = TRUE; - $test2 = $test; - } // END - if - } // END - if -} - -// Reverts the german decimal comma into Computer decimal dot -// OPPOMENT: translateComma() -function convertCommaToDot ($str) { - // Default float is not a float... ;-) - $float = FALSE; - - // Which language is selected? - switch (getLanguage()) { - case 'de': // German language - // Remove german thousand dots first - $str = str_replace('.', '', $str); - - // Replace german commata with decimal dot and cast it - $float = sprintf(getConfig('FLOAT_MASK'), str_replace(',', '.', $str)); - break; - - default: // US and so on - // Remove thousand commatas first and cast - $float = sprintf(getConfig('FLOAT_MASK'), str_replace(',', '', $str)); - break; - } // END - switch - - // Return float - return $float; -} - -// Handle menu-depending failed logins and return the rendered content -function handleLoginFailures ($accessLevel) { - // Default output is empty ;-) - $OUT = ''; - - // Is the session data set? - if ((isSessionVariableSet('mailer_' . $accessLevel . '_failures')) && (isSessionVariableSet('mailer_' . $accessLevel . '_last_failure'))) { - // Ignore zero values - if (getSession('mailer_' . $accessLevel . '_failures') > 0) { - // Non-guest has login failures found, get both data and prepare it for template - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'accessLevel=' . $accessLevel . '
'); - $content = array( - 'login_failures' => 'mailer_' . $accessLevel . '_failures', - 'last_failure' => generateDateTime(getSession('mailer_' . $accessLevel . '_last_failure'), 2) - ); - - // Load template - $OUT = loadTemplate('login_failures', TRUE, $content); - } // END - if - - // Reset session data - setSession('mailer_' . $accessLevel . '_failures', ''); - setSession('mailer_' . $accessLevel . '_last_failure', ''); - } // END - if - - // Return rendered content - return $OUT; -} - -// Rebuild cache -function rebuildCache ($cache, $inc = '', $force = FALSE) { - // Debug message - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, sprintf("cache=%s, inc=%s, force=%s", $cache, $inc, intval($force))); - - // Shall I remove the cache file? - if ((isExtensionInstalled('cache')) && (isValidCacheInstance()) && (isHtmlOutputMode())) { - // Rebuild cache only in HTML output-mode - // @TODO This should be rewritten not to load the cache file for just checking if it is there for save removal. - if ($GLOBALS['cache_instance']->loadCacheFile($cache)) { - // Destroy it - $GLOBALS['cache_instance']->removeCacheFile($force); - } // END - if - - // Include file given? - if (!empty($inc)) { - // Construct FQFN - $inc = sprintf('inc/loader/load-%s.php', $inc); - - // Is the include there? - if (isIncludeReadable($inc)) { - // And rebuild it from scratch - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'inc=' . $inc . ' - LOADED!'); - loadInclude($inc); - } else { - // Include not found, which needs now tracing - reportBug(__FUNCTION__, __LINE__, 'Include ' . $inc . ' not found. cache=' . $cache); - } - } // END - if - } // END - if -} - -// Determines the real remote address -function determineRealRemoteAddress ($remoteAddr = FALSE) { - // Default is 127.0.0.1 - $address = '127.0.0.1'; - - // Is a proxy in use? - if ((isset($_SERVER['HTTP_X_FORWARDED_FOR'])) && (!$remoteAddr)) { - // Proxy was used - $address = $_SERVER['HTTP_X_FORWARDED_FOR']; - } elseif ((isset($_SERVER['HTTP_CLIENT_IP'])) && (!$remoteAddr)) { - // Yet, another proxy - $address = $_SERVER['HTTP_CLIENT_IP']; - } elseif (isset($_SERVER['REMOTE_ADDR'])) { - // The regular address when no proxy was used - $address = $_SERVER['REMOTE_ADDR']; - } - - // This strips out the real address from proxy output - if (strstr($address, ',')) { - $addressArray = explode(',', $address); - $address = $addressArray[0]; - } // END - if - - // Return the result - return $address; -} - -// Adds a bonus mail to the queue -// This is a high-level function! -function addNewBonusMail ($data, $mode = '', $output = TRUE) { - // Use mode from data if not set and availble ;-) - if ((empty($mode)) && (isset($data['mail_mode']))) { - $mode = $data['mail_mode']; - } // END - if - - // Generate receiver list - $receiver = generateReceiverList($data['cat'], $data['receiver'], $mode); - - // Receivers added? - if (!empty($receiver)) { - // Add bonus mail to queue - addBonusMailToQueue( - $data['subject'], - $data['text'], - $receiver, - $data['points'], - $data['seconds'], - $data['url'], - $data['cat'], - $mode, - $data['receiver'] - ); - - // Mail inserted into bonus pool - if ($output === TRUE) { - displayMessage('{--ADMIN_BONUS_SEND--}'); - } // END - if - } elseif ($output === TRUE) { - // More entered than can be reached! - displayMessage('{--ADMIN_MORE_SELECTED--}'); - } else { - // Debug log - logDebugMessage(__FUNCTION__, __LINE__, 'cat=' . $data['cat'] . ',receiver=' . $data['receiver'] . ',data=' . base64_encode(serialize($data)) . ' More selected, than available!'); - } -} - -// Enables the hourly reset mode and runs it -function doHourly () { - // Enable the hourly reset mode - $GLOBALS['hourly_enabled'] = TRUE; - - // Run filters (one always!) - runFilterChain('hourly'); - - // Do not update in hourly debug mode - if ((!isConfigEntrySet('DEBUG_HOURLY')) || (!isDebugHourlyEnabled())) { - // Update database - updateConfiguration('last_hourly', getHour()); - } // END - if -} - -// Enables the daily reset mode and runs it -function doDaily () { - // Enable the reset mode - $GLOBALS['daily_enabled'] = TRUE; - - // Run filters - runFilterChain('daily'); - - // Do not update in daily debug mode - if ((!isConfigEntrySet('DEBUG_DAILY')) || (!isDebugDailyEnabled())) { - // Update database - updateConfiguration('last_daily', getDay()); - } // END - if -} - -// Enables the weekly reset mode and runs it -function doWeekly () { - // Enable the reset mode - $GLOBALS['weekly_enabled'] = TRUE; - - // Run filters - runFilterChain('weekly'); - - // Do not update in weekly debug mode - if ((!isConfigEntrySet('DEBUG_WEEKLY')) || (!isDebugWeeklyEnabled())) { - // Update database - updateConfiguration('last_weekly', getWeek()); - } // END - if -} - -// Enables the monthly reset mode and runs it -function doMonthly () { - // Enable the reset mode - $GLOBALS['monthly_enabled'] = TRUE; - - // Run filters - runFilterChain('monthly'); - - // Do not update in monthly debug mode - if ((!isConfigEntrySet('DEBUG_MONTHLY')) || (!isDebugMonthlyEnabled())) { - // Update database - updateConfiguration('last_monthly', getMonth()); - } // END - if -} - -// Enables the yearly reset mode and runs it -function doYearly () { - // Enable the reset mode - $GLOBALS['yearly_enabled'] = TRUE; - - // Run filters - runFilterChain('yearly'); - - // Do not update in yearly debug mode - if ((!isConfigEntrySet('DEBUG_YEARLY')) || (!isDebugYearlyEnabled())) { - // Update database - updateConfiguration('last_yearly', getYear()); - } // END - if -} - -// Shuts down the mailer (e.g. closing database link, flushing output/filters, etc.) -function doShutdown () { - // Call the filter chain 'shutdown' - runFilterChain('shutdown', NULL); - - // Check if link is up - if (isSqlLinkUp()) { - // Close link - sqlCloseLink(__FUNCTION__, __LINE__); - } elseif (!isInstaller()) { - // No database link - reportBug(__FUNCTION__, __LINE__, 'Database link is already down, while shutdown is running.'); - } - - // Stop executing here - exit; -} - -// Init member id -function initMemberId () { - $GLOBALS['member_id'] = '0'; -} - -// Setter for member id -function setMemberId ($memberId) { - // We should not set member id to zero - if (!isValidId($memberId)) { - reportBug(__FUNCTION__, __LINE__, 'Userid should not be set zero.'); - } // END - if - - // Set it secured - $GLOBALS['member_id'] = bigintval($memberId); -} - -// Getter for member id or returns zero -function getMemberId () { - // Default member id - $memberId = '0'; - - // Is the member id set? - if (isMemberIdSet()) { - // Then use it - $memberId = $GLOBALS['member_id']; - } // END - if - - // Return it - return $memberId; -} - -// Checks ether the member id is set -function isMemberIdSet () { - return (isset($GLOBALS['member_id'])); -} - -// Setter for extra title -function setExtraTitle ($extraTitle) { - $GLOBALS['extra_title'] = $extraTitle; -} - -// Getter for extra title -function getExtraTitle () { - // Is the extra title set? - if (!isExtraTitleSet()) { - // No, then abort here - reportBug(__FUNCTION__, __LINE__, 'extra_title is not set!'); - } // END - if - - // Return it - return $GLOBALS['extra_title']; -} - -// Checks if the extra title is set -function isExtraTitleSet () { - return ((isset($GLOBALS['extra_title'])) && (!empty($GLOBALS['extra_title']))); -} - -/** - * Reads a directory recursively by default and searches for files not matching - * an exclusion pattern. You can now keep the exclusion pattern empty for reading - * a whole directory. - * - * @param $baseDir Relative base directory to PATH to scan from - * @param $prefix Prefix for all positive matches (which files should be found) - * @param $fileIncludeDirs Whether to include directories in the final output array - * @param $addBaseDir Whether to add $baseDir to all array entries - * @param $excludeArray Excluded files and directories, these must be full files names, e.g. 'what-' will exclude all files named 'what-' but won't exclude 'what-foo.php' - * @param $extension File extension for all positive matches - * @param $excludePattern Regular expression to exclude more files (preg_match()) - * @param $recursive Whether to scan recursively - * @param $suffix Suffix for positive matches ($extension will be appended, too) - * @param $withPrefixSuffix Whether to include prefix/suffix in found entries - * @return $foundMatches All found positive matches for above criteria - */ -function getArrayFromDirectory ($baseDir, $prefix, $fileIncludeDirs = FALSE, $addBaseDir = TRUE, $excludeArray = array(), $extension = '.php', $excludePattern = '@(\.|\.\.)$@', $recursive = TRUE, $suffix = '', $withPrefixSuffix = TRUE) { - // Add default entries we should always exclude - array_unshift($excludeArray, '.', '..', '.svn', '.htaccess'); - - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'baseDir=' . $baseDir . ',prefix=' . $prefix . ' - Entered!'); - // Init found includes - $foundMatches = array(); - - // Open directory - $dirPointer = opendir(getPath() . $baseDir) or reportBug(__FUNCTION__, __LINE__, 'Cannot read directory ' . basename($baseDir) . '.'); - - // Read all entries - while ($baseFile = readdir($dirPointer)) { - // Exclude '.', '..' and entries in $excludeArray automatically - if (in_array($baseFile, $excludeArray, TRUE)) { - // Exclude them - //* DEBUG: */ debugOutput('excluded=' . $baseFile); - continue; - } // END - if - - // Construct include filename and FQFN - $fileName = $baseDir . $baseFile; - $FQFN = getPath() . $fileName; - - // Remove double slashes - $FQFN = str_replace('//', '/', $FQFN); - - // Check if the base filenname matches an exclusion pattern and if the pattern is not empty - if ((!empty($excludePattern)) && (preg_match($excludePattern, $baseFile, $match))) { - // Debug message - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'baseDir=' . $baseDir . ',baseFile=' . $baseFile . ',FQFN=' . $FQFN); - - // Exclude this one - continue; - } // END - if - - // Skip also files with non-matching prefix genericly - if (($recursive === TRUE) && (isDirectory($FQFN))) { - // Is a redirectory so read it as well - $foundMatches = merge_array($foundMatches, getArrayFromDirectory($baseDir . $baseFile . '/', $prefix, $fileIncludeDirs, $addBaseDir, $excludeArray, $extension, $excludePattern, $recursive)); - - // And skip further processing - continue; - } elseif (!isFilePrefixFound($baseFile, $prefix)) { - // Skip this file - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'Invalid prefix in file ' . $baseFile . ', prefix=' . $prefix); - continue; - } elseif ((!empty($suffix)) && (substr($baseFile, -(strlen($suffix . $extension)), (strlen($suffix . $extension))) != $suffix . $extension)) { - // Skip wrong suffix as well - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'Invalid suffix in file ' . $baseFile . ', suffix=' . $suffix); - continue; - } elseif (!isFileReadable($FQFN)) { - // Not readable so skip it - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'File ' . $FQFN . ' is not readable!'); - } elseif (filesize($FQFN) < 50) { - // Might be deprecated - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'File ' . $FQFN . ' is to small (' . filesize($FQFN) . ')!'); - continue; - } elseif (($extension == '.php') && (filesize($FQFN) < 50)) { - // This PHP script is deprecated - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'File ' . $FQFN . ' is a deprecated PHP script!'); - continue; - } - - // Get file' extension (last 4 chars) - $fileExtension = substr($baseFile, -4, 4); - - // Is the file a PHP script or other? - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'baseDir=' . $baseDir . ',prefix=' . $prefix . ',baseFile=' . $baseFile); - if (($fileExtension == '.php') || (($fileIncludeDirs === TRUE) && (isDirectory($FQFN)))) { - // Is this a valid include file? - if ($extension == '.php') { - // Remove both for extension name - $extName = substr($baseFile, strlen($prefix), -4); - - // Add file with or without base path - if ($addBaseDir === TRUE) { - // With base path - array_push($foundMatches, $fileName); - } elseif (($withPrefixSuffix === FALSE) && (!empty($extension))) { - // No prefix/suffix - array_push($foundMatches, substr($baseFile, strlen($prefix), -strlen($suffix . $extension))); - } else { - // No base path - array_push($foundMatches, $baseFile); - } - } else { - // We found .php file but should not search for them, why? - reportBug(__FUNCTION__, __LINE__, 'We should find files with extension=' . $extension . ', but we found a PHP script. (baseFile=' . $baseFile . ')'); - } - } elseif ((($fileExtension == $extension) || (empty($extension))) && (isFileReadable($FQFN))) { - // Other, generic file found - if ($addBaseDir === TRUE) { - // With base path - array_push($foundMatches, $fileName); - } elseif (($withPrefixSuffix === FALSE) && (!empty($extension))) { - // No prefix/suffix - array_push($foundMatches, substr($baseFile, strlen($prefix), -strlen($suffix . $extension))); - } else { - // No base path - array_push($foundMatches, $baseFile); - } - } - } // END - while - - // Close directory - closedir($dirPointer); - - // Sort array - sort($foundMatches); - - // Return array with include files - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, '- Left!'); - return $foundMatches; -} - -// Checks whether $prefix is found in $fileName -function isFilePrefixFound ($fileName, $prefix) { - // @TODO Find a way to cache this - return (substr($fileName, 0, strlen($prefix)) == $prefix); -} - -// Maps a module name into a database table name -function mapModuleToTable ($moduleName) { - // Map only these, still lame code... - switch ($moduleName) { - case 'index': // 'index' is the guest's menu - $moduleName = 'guest'; - break; - - case 'login': // ... and 'login' the member's menu - $moduleName = 'member'; - break; - // Anything else will not be mapped, silently. - } // END - switch - - // Return result - return $moduleName; -} - -// Add SQL debug data to array for later output -function addSqlToDebug ($result, $sqlString, $timing, $file, $line) { - // Is there cache? - if (!isset($GLOBALS['debug_sql_available'])) { - // Check it and cache it in $GLOBALS - $GLOBALS['debug_sql_available'] = ((isConfigurationLoaded()) && (isDisplayDebugSqlEnabled())); - } // END - if - - // Don't execute anything here if we don't need or ext-other is missing - if ($GLOBALS['debug_sql_available'] === FALSE) { - return; - } // END - if - - // Already executed? - if (isset($GLOBALS['debug_sqls'][$file][$line][$sqlString])) { - // Then abort here, we don't need to profile a query twice - return; - } // END - if - - // Remeber this as profiled (or not, but we don't care here) - $GLOBALS['debug_sqls'][$file][$line][$sqlString] = TRUE; - - // Generate record - $record = array( - 'num_rows' => sqlNumRows($result), - 'affected' => sqlAffectedRows(), - 'sql_str' => $sqlString, - 'timing' => $timing, - 'file' => basename($file), - 'line' => $line - ); - - // Add it - array_push($GLOBALS['debug_sqls'], $record); -} - -// Initializes the cache instance -function initCacheInstance () { - // Check for double-initialization - if (isset($GLOBALS['cache_instance'])) { - // This should not happen and must be fixed - reportBug(__FUNCTION__, __LINE__, 'Double initialization of cache system detected. cache_instance[]=' . gettype($GLOBALS['cache_instance'])); - } // END - if - - // Load include for CacheSystem class - loadIncludeOnce('inc/classes/cachesystem.class.php'); - - // Initialize cache system only when it's needed - $GLOBALS['cache_instance'] = new CacheSystem(); - - // Did it work? - if ($GLOBALS['cache_instance']->getStatusCode() != 'done') { - // Failed to initialize cache sustem - reportBug(__FUNCTION__, __LINE__, 'Cache system returned with unexpected error. getStatusCode()=' . $GLOBALS['cache_instance']->getStatusCode()); - } // END - if -} - -// Getter for message from array or raw message -function getMessageFromIndexedArray ($message, $pos, $array) { - // Check if the requested message was found in array - if (isset($array[$pos])) { - // ... if yes then use it! - $ret = $array[$pos]; - } else { - // ... else use default message - $ret = $message; - } - - // Return result - return $ret; -} - -// Convert ';' to ', ' for e.g. receiver list -function convertReceivers ($old) { - return str_replace(';', ', ', $old); -} - -// Get a module from filename and access level -function getModuleFromFileName ($file, $accessLevel) { - // Default is 'invalid'; - $modCheck = 'invalid'; - - // @TODO This is still very static, rewrite it somehow - switch ($accessLevel) { - case 'admin': - $modCheck = 'admin'; - break; - - case 'sponsor': - case 'guest': - case 'member': - $modCheck = getModule(); - break; - - default: // Unsupported file name / access level - reportBug(__FUNCTION__, __LINE__, 'Unsupported file name=' . basename($file) . '/access level=' . $accessLevel); - break; - } // END - switch - - // Return result - return $modCheck; -} - -// Encodes an URL for adding session id, etc. -function encodeUrl ($url, $outputMode = '0') { - // Is there already have a PHPSESSID inside or view.php is called? Then abort here - if ((isInStringIgnoreCase(session_name(), $url)) || (isRawOutputMode())) { - // Raw output mode detected or session_name() found in URL - return $url; - } // END - if - - // Is there a valid session? - if ((!isValidSession()) && (!isSpider())) { - // Determine right separator - $separator = '&'; - if (!isInString('?', $url)) { - // No question mark - $separator = '?'; - } // END - if - - // Then add it to URL - $url .= $separator . session_name() . '=' . session_id(); - } // END - if - - // Add {?URL?} ? - if ((substr($url, 0, strlen(getUrl())) != getUrl()) && (substr($url, 0, 7) != '{?URL?}') && (!isFullQualifiedUrl($url))) { - // Add it - $url = '{?URL?}/' . $url; - } // END - if - - // Debug message - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'url=' . $url . ',isHtmlOutputMode()=' . intval(isHtmlOutputMode()) . ',outputMode=' . $outputMode); - - // Is there to decode entities? - if (!isHtmlOutputMode()) { - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'url=' . $url . ' - BEFORE DECODING'); - // Decode them for e.g. JavaScript parts - $url = decodeEntities($url); - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'url=' . $url . ' - AFTER DECODING'); - } // END - if - - // Debug log - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'url=' . $url . ',outputMode=' . $outputMode); - - // Return the encoded URL - return $url; -} - -// Simple check for spider -function isSpider () { - // Get the UA and trim it down - $userAgent = trim(detectUserAgent(TRUE)); - - // It should not be empty, if so it is better a browser - if (empty($userAgent)) { - // It is a browser that blocks its UA string - return FALSE; - } // END - if - - // Is it a spider? - return ((isInStringIgnoreCase('spider', $userAgent)) || (isInStringIgnoreCase('slurp', $userAgent)) || (isInStringIgnoreCase('bot', $userAgent)) || (isInStringIgnoreCase('archiver', $userAgent))); -} - -// Handles the braces [] of a field (e.g. value of 'name' attribute) -function handleFieldWithBraces ($field) { - // Are there braces [] at the end? - if (substr($field, -2, 2) == '[]') { - /* - * Try to find one and replace it. I do it this way to allow easy - * extending of this code. - */ - foreach (array('admin_list_builder_id_value') as $key) { - /* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'key=' . $key); - // Is the cache entry set? - if (isset($GLOBALS[$key])) { - // Insert it - $field = str_replace('[]', '[' . $GLOBALS[$key] . ']', $field); - - // And abort - /* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'key=' . $key, 'field=' . $field); - break; - } // END - if - } // END - foreach - } // END - if - - // Return it - return $field; -} - -// Converts a zero or NULL to word 'NULL' -function convertZeroToNull ($number) { - // Is it a valid username? - if (isValidNumber($number)) { - // Always secure it - $number = bigintval($number); - } else { - // Is not valid or zero - $number = 'NULL'; - } - - // Return it - return $number; -} - -// Converts an empty string to NULL, else leaves it untouched -function convertEmptyToNull ($str) { - // Is the string empty? - if (strlen($str) == 0) { - // Is really empty - $str = NULL; - } // END - if - - // Return it - return $str; -} - -// Converts a NULL|empty string|< 1 to zero -function convertNullToZero ($number) { - // Is it a valid username? - if (!isValidNumber($number)) { - // Is not valid or zero - $number = '0'; - } // END - if - - // Return it - return $number; -} - -// Capitalizes a string with underscores, e.g.: some_foo_string will become SomeFooString -// Note: This function is cached -function capitalizeUnderscoreString ($str) { - // Is there cache? - if (!isset($GLOBALS[__FUNCTION__][$str])) { - // Init target string - $capitalized = ''; - - // Explode it with the underscore, but rewrite dashes to underscore before - $strArray = explode('_', str_replace('-', '_', $str)); - - // "Walk" through all elements and make them lower-case but first upper-case - foreach ($strArray as $part) { - // Capitalize the string part - $capitalized .= firstCharUpperCase($part); - } // END - foreach - - // Store the converted string in cache array - $GLOBALS[__FUNCTION__][$str] = $capitalized; - } // END - if - - // Return cache - return $GLOBALS[__FUNCTION__][$str]; -} - -// Generate admin links for mail order -// mailType can be: 'normal' or 'bonus' -function generateAdminMailLinks ($mailType, $mailId) { - // Init variables - $OUT = ''; - $table = ''; - - // Default column for mail status is 'data_type' - // @TODO Rename column data_type to e.g. mail_status - $statusColumn = 'data_type'; - - // Which mail do we have? - switch ($mailType) { - case 'bonus': // Bonus mail - $table = 'bonus'; - break; - - case 'normal': // Member mail - $table = 'pool'; - break; - - default: // Handle unsupported types - logDebugMessage(__FUNCTION__, __LINE__, 'Unsupported mail type ' . $mailType . ' for mailId=' . $mailId . ' detected.'); - $OUT = '
{%message,ADMIN_UNSUPPORTED_MAIL_TYPE_DETECTED=' . $mailType . '%}
'; - break; - } // END - switch - - // Is the mail type supported? - if (!empty($table)) { - // Query for the mail - $result = sqlQueryEscaped("SELECT `id`, `%s` AS `mail_status` FROM `{?_MYSQL_PREFIX?}_%s` WHERE `id`=%s LIMIT 1", - array( - $statusColumn, - $table, - bigintval($mailId) - ), __FILE__, __LINE__); - - // Is there one entry there? - if (sqlNumRows($result) == 1) { - // Load the entry - $content = sqlFetchArray($result); - - // Add output and type - $content['type'] = $mailType; - $content['__output'] = ''; - - // Filter all data - $content = runFilterChain('generate_admin_mail_links', $content); - - // Get output back - $OUT = $content['__output']; - } // END - if - - // Free result - sqlFreeResult($result); - } // END - if - - // Return generated HTML code - return $OUT; -} - - -/** - * Determine if a string can represent a number in hexadecimal - * - * @param $hex A string to check if it is hex-encoded - * @return $foo True if the string is a hex, otherwise false - * @author Marques Johansson - * @link http://php.net/manual/en/function.http-chunked-decode.php#89786 - */ -function isHexadecimal ($hex) { - // Make it lowercase - $hex = strtolower(trim(ltrim($hex, '0'))); - - // Fix empty strings to zero - if (empty($hex)) { - $hex = 0; - } // END - if - - // Simply compare decode->encode result with original - return ($hex == dechex(hexdec($hex))); -} - -/** - * Replace chr(13) with "[r]" and PHP_EOL with "[n]" and add a final new-line to make - * them visible to the developer. Use this function to debug e.g. buggy HTTP - * response handler functions. - * - * @param $str String to overwork - * @return $str Overworked string - */ -function replaceReturnNewLine ($str) { - return str_replace(array(chr(13), chr(10)), array('[r]', '[n]'), $str); -} - -// Converts a given string by splitting it up with given delimiter similar to -// explode(), but appending the delimiter again -function stringToArray ($delimiter, $string) { - // Init array - $strArray = array(); - - // "Walk" through all entries - foreach (explode($delimiter, $string) as $split) { - // Append the delimiter and add it to the array - array_push($strArray, $split . $delimiter); - } // END - foreach - - // Return array - return $strArray; -} - -// Detects the prefix 'mb_' if a multi-byte string is given -function detectMultiBytePrefix ($str) { - // Default is without multi-byte - $mbPrefix = ''; - - // Detect multi-byte (strictly) - if (mb_detect_encoding($str, 'auto', TRUE) !== FALSE) { - // With multi-byte encoded string - $mbPrefix = 'mb_'; - } // END - if - - // Return the prefix - return $mbPrefix; -} - -// Searches given array for a sub-string match and returns all found keys in an array -function getArrayKeysFromSubStrArray ($heystack, $needles, $offset = 0) { - // Init array for all found keys - $keys = array(); - - // Now check all entries - foreach ($needles as $key => $needle) { - // Is there found a partial string? - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'heystack='.$heystack.',key='.$key.',needle='.$needle.',offset='.$offset); - if (strpos($heystack, $needle, $offset) !== FALSE) { - // Add the found key - array_push($keys, $key); - } // END - if - } // END - foreach - - // Return the array - return $keys; -} - -// Determines database column name from given subject and locked -function determinePointsColumnFromSubjectLocked ($subject, $locked) { - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'subject=' . $subject . ',locked=' . intval($locked) . ' - ENTERED!'); - // Default is 'normal' points - $pointsColumn = 'points'; - - // Which points, locked or normal? - if ($locked === TRUE) { - $pointsColumn = 'locked_points'; - } // END - if - - // Prepare array for filter - $filterData = array( - 'subject' => $subject, - 'locked' => $locked, - 'column' => $pointsColumn - ); - - // Run the filter - $filterData = runFilterChain('determine_points_column_name', $filterData); - - // Extract column name from array - $pointsColumn = $filterData['column']; - - // Return it - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'subject=' . $subject . ',locked=' . intval($locked) . ',pointsColumn=' . $pointsColumn . ' - EXIT!'); - return $pointsColumn; -} - -// Converts a boolean variable into 'Y' for true and 'N' for false -function convertBooleanToYesNo ($boolean) { - // Default is 'N' - $converted = 'N'; - if ($boolean === TRUE) { - // Set 'Y' - $converted = 'Y'; - } // END - if - - // Return it - return $converted; -} - -// "Translates" 'true' to true and 'false' to false -function convertStringToBoolean ($str) { - // Debug message (to measure how often this function is called) - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'str=' . $str); - - // Is there cache? - if (!isset($GLOBALS[__FUNCTION__][$str])) { - // Trim it lower-case for validation - $strTrimmed = trim(strtolower($str)); - - // Is it valid? - if (!in_array($strTrimmed, array('true', 'false'))) { - // Not valid! - reportBug(__FUNCTION__, __LINE__, 'str=' . $str . '(' . $strTrimmed . ') is not true/false'); - } // END - if - - // Determine it - $GLOBALS[__FUNCTION__][$str] = ($strTrimmed == 'true'); - } // END - if - - // Return cache - return $GLOBALS[__FUNCTION__][$str]; -} - -/** - * "Makes" a variable in given string parseable, this function will throw an - * error if the first character is not a dollar sign. - * - * @param $varString String which contains a variable - * @return $return String with added single quotes for better parsing - */ -function makeParseableVariable ($varString) { - // The first character must be a dollar sign - if (substr($varString, 0, 1) != '$') { - // Please report this - reportBug(__FUNCTION__, __LINE__, 'varString=' . $varString . ' - No dollar sign detected, will not parse it.'); - } // END - if - - // Is there cache? - if (!isset($GLOBALS[__FUNCTION__][$varString])) { - // Snap them in, if [,] are there - $GLOBALS[__FUNCTION__][$varString] = str_replace(array('[', ']'), array("['", "']"), $varString); - } // END - if - - // Return cache - return $GLOBALS[__FUNCTION__][$varString]; -} - -// "Getter" for random TAN -function getRandomTan () { - // Generate one - return mt_rand(0, 99999); -} - -// Removes any : from subject -function removeDoubleDotFromSubject ($subject) { - // Remove it - $subjectArray = explode(':', $subject); - $subject = $subjectArray[0]; - unset($subjectArray); - - // Return it - return $subject; -} - -// Adds a given entry to the database -function memberAddEntries ($tableName, $columns = array(), $filterFunctions = array(), $extraValues = array(), $timeColumns = array(), $columnIndex = NULL) { - // Is it a member? - if (!isMember()) { - // Then abort here - return FALSE; - } // END - if - - // Set POST data generic userid - setPostRequestElement('userid', getMemberId()); - - // Call inner function - doGenericAddEntries($tableName, $columns, $filterFunctions, $extraValues, $timeColumns, $columnIndex); - - // Entry has been added? - if ((!ifSqlHasZeroAffectedRows()) && ($GLOBALS['__XML_PARSE_RESULT'] === TRUE)) { - // Display success message - displayMessage('{--MEMBER_ENTRY_ADDED--}'); - } else { - // Display failed message - displayMessage('{--MEMBER_ENTRY_NOT_ADDED--}'); - } -} - -// Edit rows by given id numbers -function memberEditEntriesConfirm ($tableName, $columns = array(), $filterFunctions = array(), $extraValues = array(), $timeColumns = array(), $editNow = array(FALSE), $idColumn = array('id'), $userIdColumn = array('userid'), $rawUserId = array('userid'), $cacheFiles = array(), $content = array()) { - // $tableName must be an array - if ((!is_array($tableName)) || (count($tableName) != 1)) { - // No tableName specified - reportBug(__FUNCTION__, __LINE__, 'tableName is not given. Please fix your XML,tableName[]=' . gettype($tableName) . '!=array: userIdColumn=' . $userIdColumn); - } elseif (!is_array($idColumn)) { - // $idColumn is no array - reportBug(__FUNCTION__, __LINE__, 'idColumn[]=' . gettype($idColumn) . '!=array: userIdColumn=' . $userIdColumn); - } elseif (!is_array($userIdColumn)) { - // $userIdColumn is no array - reportBug(__FUNCTION__, __LINE__, 'userIdColumn[]=' . gettype($userIdColumn) . '!=array: userIdColumn=' . $userIdColumn); - } elseif (!is_array($editNow)) { - // $editNow is no array - reportBug(__FUNCTION__, __LINE__, 'editNow[]=' . gettype($editNow) . '!=array: userIdColumn=' . $userIdColumn); - } // END - if - - // Shall we change here or list for editing? - if ($editNow[0] === TRUE) { - // Add generic userid field - setPostRequestElement('userid', getMemberId()); - - // Call generic change method - $affected = doGenericEditEntriesConfirm($tableName, $columns, $filterFunctions, $extraValues, $timeColumns, $editNow, $idColumn, $userIdColumn, $rawUserId, $cacheFiles, 'mem_edit'); - - // Was this fine? - if ($affected == countPostSelection($idColumn[0])) { - // All deleted - displayMessage('{--MEMBER_ALL_ENTRIES_EDITED--}'); - } else { - // Some are still there :( - displayMessage(sprintf(getMessage('MEMBER_SOME_ENTRIES_NOT_EDITED'), $affected, countPostSelection($idColumn[0]))); - } - } else { - // List for editing - memberListBuilder('edit', $tableName, $columns, $filterFunctions, $extraValues, $idColumn, $userIdColumn, $rawUserId, $content); - } -} - -// Delete rows by given id numbers -function memberDeleteEntriesConfirm ($tableName, $columns = array(), $filterFunctions = array(), $extraValues = array(), $deleteNow = array(FALSE), $idColumn = array('id'), $userIdColumn = array('userid'), $rawUserId = array('userid'), $cacheFiles = array(), $content = array()) { - // Do this only for members - assert(isMember()); - - // $tableName must be an array - if ((!is_array($tableName)) || (count($tableName) != 1)) { - // No tableName specified - reportBug(__FUNCTION__, __LINE__, 'tableName is not given. Please fix your XML,tableName[]=' . gettype($tableName) . '!=array: userIdColumn=' . $userIdColumn); - } elseif (!is_array($idColumn)) { - // $idColumn is no array - reportBug(__FUNCTION__, __LINE__, 'idColumn[]=' . gettype($idColumn) . '!=array: userIdColumn=' . $userIdColumn); - } elseif (!is_array($userIdColumn)) { - // $userIdColumn is no array - reportBug(__FUNCTION__, __LINE__, 'userIdColumn[]=' . gettype($userIdColumn) . '!=array: userIdColumn=' . $userIdColumn); - } elseif (!is_array($deleteNow)) { - // $deleteNow is no array - reportBug(__FUNCTION__, __LINE__, 'deleteNow[]=' . gettype($deleteNow) . '!=array: userIdColumn=' . $userIdColumn); - } // END - if - - // Shall we delete here or list for deletion? - if ($deleteNow[0] === TRUE) { - // Add generic userid field - setPostRequestElement('userid', getMemberId()); - - // Call generic function - $affected = doGenericDeleteEntriesConfirm($tableName, $columns, $filterFunctions, $extraValues, $deleteNow, $idColumn, $userIdColumn, $rawUserId, $cacheFiles, 'mem_delete'); - - // Was this fine? - if ($affected == countPostSelection($idColumn[0])) { - // All deleted - displayMessage('{--MEMBER_ALL_ENTRIES_REMOVED--}'); - } else { - // Some are still there :( - displayMessage(sprintf(getMessage('MEMBER_SOME_ENTRIES_NOT_DELETED'), sqlAffectedRows(), countPostSelection($idColumn[0]))); - } - } else { - // List for deletion confirmation - memberListBuilder('delete', $tableName, $columns, $filterFunctions, $extraValues, $idColumn, $userIdColumn, $rawUSerId, $content); - } -} - -// Build a special template list -// @TODO cacheFiles is not yet supported -function memberListBuilder ($listType, $tableName, $columns, $filterFunctions, $extraValues, $idColumn, $userIdColumn, $rawUserId = array('userid'), $content = array()) { - // Do this only for logged in member - assert(isMember()); - - // Call inner (general) function - doGenericListBuilder('member', $listType, $tableName, $columns, $filterFunctions, $extraValues, $idColumn, $userIdColumn, $rawUserId, $content); -} - -// Checks whether given address is IPv4 -function isIp4AddressValid ($address) { - // Is there cache? - if (!isset($GLOBALS[__FUNCTION__][$address])) { - // Determine it ... - $GLOBALS[__FUNCTION__][$address] = preg_match('/((25[0-5]|2[0-4][0-9]|[0-1]{1}[0-9]{2}|[1-9]{1}[0-9]{1}|[1-9])\.(25[0-5]|2[0-4][0-9]|[0-1]{1}[0-9]{2}|[1-9]{1}[0-9]{1}|[1-9]|0)\.(25[0-5]|2[0-4][0-9]|[0-1]{1}[0-9]{2}|[1-9]{1}[0-9]{1}|[1-9]|0)\.(25[0-5]|2[0-4][0-9]|[0-1]{1}[0-9]{2}|[1-9]{1}[0-9]{1}|[0-9]))/', $address); - } // END - if - - // Return cache - return $GLOBALS[__FUNCTION__][$address]; -} - -// Returns the string if not empty or FALSE if empty -function validateIsEmpty ($str) { - // Trim it - $trimmed = trim($str); - - // Is the string empty? - if (empty($trimmed)) { - // Then set FALSE - $str = FALSE; - } // END - if - - // Return it - return $str; -} - -// "Getter" for seconds from given time unit -function getSecondsFromTimeUnit ($timeUnit) { - // Default is not found - $seconds = NULL; - - // "Detect" it - switch ($timeUnit) { - case 's': // Seconds = 1 - $seconds = 1; - break; - - case 'm': // Minutes - $seconds = 60; - break; - - case 'h': // Hours - $seconds = 60*60; - break; - - case 'D': // Days - $seconds = 60*60*24; - break; - - case 'W': // Weeks - $seconds = 60*60*24*7; - break; - - default: // Unsupported - reportBug(__FUNCTION__, __LINE__, 'Unsupported time unit ' . $timeUnit . ' detected.'); - break; - } // END - switch - - // Return value - return $seconds; -} - -// Calulates value for given seconds and time unit -function caluculateTimeUnitValue ($seconds, $timeUnit) { - // Calculate it - return ($seconds / getSecondsFromTimeUnit($timeUnit)); -} - -// "Getter" for an array from given one but only one index of it -function getArrayFromArrayIndex ($array, $key) { - // Some simple validation - assert(isset($array[0][$key])); - - // Init new array - $newArray = array(); - - // "Walk" through all elements - foreach ($array as $element) { - $newArray[] = $element[$key]; - } // END - if - - // Return it - return $newArray; -} - -/** - * Compress given data and encodes it into BASE64 to be stored in database with - * sqlQueryEscaped() - * - * @param $data Data to be compressed and encoded - * @return $data Compressed+encoded data - */ -function compress ($data) { - // Compress it - return base64_encode(gzcompress($data)); -} - -/** - * Decompress given data previously compressed with compress(). - * - * @param $data Data compressed with compress() - * @reurn $data Uncompressed data - */ -function decompress ($data) { - // Decompress it - return gzuncompress(base64_decode($data)); -} - -/** - * Converts given charset in given string to UTF-8 if not UTF-8. This function - * is currently limited to iconv(). - * - * @param $str String to convert charset in - * @param $charset Charset to convert from - * @return $str Converted string - */ -function convertCharsetToUtf8 ($str, $charset) { - // Is iconv() available? - if (!function_exists('iconv')) { - // Please make it sure - reportBug(__FUNCTION__, __LINE__, 'PHP function iconv() is currently required to do charset convertion.'); - } // END - if - - // Is the charset not UTF-8? - if (strtoupper($charset) != 'UTF-8') { - // Convert it to UTF-8 - $str = iconv(strtoupper($charset), 'UTF-8//TRANSLIT', $str); - } // END - if - - // Return converted string - return $str; -} - -// ---------------------------------------------------------------------------- -// "Translatation" functions for points_data table -// ---------------------------------------------------------------------------- - -// Translates generically some data into a target string -function translateGeneric ($messagePrefix, $data, $messageSuffix = '') { - // Is the method null or empty? - if (is_null($data)) { - // Is NULL - $data = 'NULL'; - } elseif (empty($data)) { - // Is empty (string) - $data = 'EMPTY'; - } // END - if - - // Default column name is unknown - $return = '{%message,' . $messagePrefix . '_UNKNOWN' . $messageSuffix . '=' . strtoupper($data) . '%}'; - - // Construct message id - $messageId = $messagePrefix . '_' . strtoupper($data) . $messageSuffix; - - // Is it there? - if (isMessageIdValid($messageId)) { - // Then use it as message string - $return = '{--' . $messageId . '--}'; - } // END - if - - // Return the column name - return $return; -} - -// Translates points subject to human-readable -function translatePointsSubject ($subject) { - // Remove any :x - $subject = removeDoubleDotFromSubject($subject); - - // Return it - return translateGeneric('POINTS_SUBJECT', $subject); -} - -// "Translates" given points account type -function translatePointsAccountType ($accountType) { - // Return it - return translateGeneric('POINTS_ACCOUNT_TYPE', $accountType); -} - -// "Translates" given points "locked mode" -function translatePointsLockedMode ($lockedMode) { - // Return it - return translateGeneric('POINTS_LOCKED_MODE', $lockedMode); -} - -// "Translates" given points payment method -function translatePointsPaymentMethod ($paymentMethod) { - // Return it - return translateGeneric('POINTS_PAYMENT_METHOD', $paymentMethod); -} - -// "Translates" given points account provider -function translatePointsAccountProvider ($accountProvider) { - // Return it - return translateGeneric('POINTS_ACCOUNT_PROVIDER', $accountProvider); -} - -// "Translates" given points notify recipient -function translatePointsNotifyRecipient ($notifyRecipient) { - // Return it - return translateGeneric('POINTS_NOTIFY_RECIPIENT', $notifyRecipient); -} - -// "Translates" given mode to a human-readable version -function translatePointsMode ($pointsMode) { - // Return it - return translateGeneric('POINTS_MODE', $pointsMode); -} - -// "Translates" task type to a human-readable version -function translateTaskType ($taskType) { - // Return it - return translateGeneric('ADMIN_TASK_TYPE', $taskType); -} - -// "Translates" task status to a human-readable version -function translateTaskStatus ($taskStatus) { - // Return it - return translateGeneric('ADMIN_TASK_STATUS', $taskStatus); -} - -/* - *----------------------------------------------------------------------------- - * Automatically re-created functions, all taken from user comments on - * www.php.net - *----------------------------------------------------------------------------- - */ -if (!function_exists('html_entity_decode')) { - // Taken from documentation on www.php.net - function html_entity_decode ($string) { - $trans_tbl = get_html_translation_table(HTML_ENTITIES); - $trans_tbl = array_flip($trans_tbl); - return strtr($string, $trans_tbl); - } -} // END - if - -// "Getter" for base path from theme -function getBasePathFromTheme ($theme) { - return sprintf('%stheme/%s/css/', getPath(), $theme); -} - -// Wrapper to check whether given theme is readable -function isThemeReadable ($theme) { - // Is there cache? - if (!isset($GLOBALS[__FUNCTION__][$theme])) { - // Determine it - $GLOBALS[__FUNCTION__][$theme] = (isIncludeReadable(sprintf('theme/%s/theme.php', $theme))); - } // END - if - - // Return cache - return $GLOBALS[__FUNCTION__][$theme]; -} - -// Checks whether a given PHP extension is loaded or can be loaded at runtime -// -// Supported OS: Windows, Linux, (Mac?) -function isPhpExtensionLoaded ($extension) { - // Is the extension loaded? - if (extension_loaded($extension)) { - // All fine - return TRUE; - } // END - if - - // Try to load the extension - return loadLibrary($extension); -} - -// Loads given library (aka. PHP extension) -function loadLibrary ($n, $f = NULL) { - // Is the actual function dl() available? (Not on all SAPIs since 5.3) - if (!is_callable('dl')) { - // Not callable - /* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'dl() is not callable for n=' . $n . ',f[' . gettype($f) . ']=' . $f); - return FALSE; - } // END - if - - // Try to load PHP library - return dl(((PHP_SHLIB_SUFFIX === 'dll') ? 'php_' : '') . ($f ? $f : $n) . '.' . PHP_SHLIB_SUFFIX); -} - -// "Translates" given PHP extension name into a readable version -function translatePhpExtension ($extension) { - // Return the language element - return '{--PHP_EXTENSION_' . strtoupper($extension) . '--}'; -} - -// Loads stylesheet files in different ways, depending on output mode -function loadStyleSheets () { - // Default styles - $stylesList = array( - 'general.css', - 'ajax.css', - ); - - // Add stylesheet for installation - if ((isInstaller())) { - array_push($stylesList, 'install.css'); - } // END - if - - // When no CSS output-mode is set, set it to file-output - if (!isConfigEntrySet('css_php')) { - setConfigEntry('css_php', 'FILE'); - } // END - if - - // Get current theme - $currentTheme = getCurrentTheme(); - - // Has the theme changed? - if ($currentTheme != getSession('mailer_theme')) { - // Then set it - setMailerTheme($currentTheme); - } // END - if - - // Output CSS files or content or link to css.php ? - if ((isCssOutputMode()) || (getCssPhp() == 'DIRECT')) { - // Load CSS files - $stylesList = merge_array($stylesList, getExtensionCssFiles()); - - // Generate base path - $basePath = getBasePathFromTheme($currentTheme); - - // Output inclusion lines - foreach ($stylesList as $value) { - // Only include found CSS files (to reduce 404 requests) - $FQFN = $basePath . '/' . $value; - - // Do include only existing files and whose are not empty - if ((isFileReadable($FQFN)) && (filesize($FQFN) > 0)) { - switch (getCssPhp()) { - case 'DIRECT': // Just link them (unsupported) - $GLOBALS['__page_header'] .= ''; - break; - - case 'FILE': // Output contents - $GLOBALS['__page_header'] .= removeDeprecatedComment(readFromFile($FQFN)); - break; - - default: // Invalid mode! - reportBug(__FILE__, __LINE__, sprintf('Invalid css_php value %s detected.', getCssPhp())); - break; - } // END - switch - } // END - if - } // END - foreach - } elseif ((isHtmlOutputMode()) || (getCssPhp() == 'INLINE')) { - // Load CSS files - $stylesList = merge_array($stylesList, getExtensionCssFiles()); - - // Generate base path - $basePath = getBasePathFromTheme(getCurrentTheme()); - - // Output inclusion lines - $OUT = ''; - foreach ($stylesList as $value) { - // Only include found CSS files (to reduce 404 requests) - $FQFN = $basePath . '/' . $value; - - // Do include only existing files and whose are not empty - if ((isFileReadable($FQFN)) && (filesize($FQFN) > 0)) { - // Load CSS content - $OUT .= readFromFile($FQFN); - } // END - if - } // END - foreach - - // Load template - $GLOBALS['__page_header'] .= loadTemplate('css_inline', TRUE, removeDeprecatedComment($OUT)); - } else { - // Now we load all CSS files from css.php! - $OUT = ''; - } -} - -// [EOF] -?> diff --git a/inc/general-functions.php b/inc/general-functions.php new file mode 100644 index 0000000000..acdec10b65 --- /dev/null +++ b/inc/general-functions.php @@ -0,0 +1,3081 @@ += 10); + + // Start creating password + $password = ''; + while (strlen($password) < $length) { + $password .= $localAbc[mt_rand(0, count($localAbc) -1)]; + } // END - while + + /* + * When the length of the password is below 40 characters additional + * security can be added by scrambling it. Otherwise the hash may + * corrupted. + */ + if (strlen($password) <= 40) { + // Also scramble the password + $password = scrambleString($password); + } // END - if + + // Return the password + return $password; +} + +// Generates a human-readable timestamp from the Uni* stamp +function generateDateTime ($time, $mode = '0') { + // Is there cache? + if (isset($GLOBALS[__FUNCTION__][$time][$mode])) { + // Return it instead + return $GLOBALS[__FUNCTION__][$time][$mode]; + } // END - if + + // If the stamp is zero it mostly didn't "happen" + if (($time == '0') || (is_null($time))) { + // Never happend + return '{--NEVER_HAPPENED--}'; + } // END - if + + // Filter out numbers + $timeSecured = bigintval($time); + + // Detect language + switch (getLanguage()) { + case 'de': // German date / time format + switch ($mode) { + case '0': $ret = date("d.m.Y \u\m H:i \U\h\\r", $timeSecured); break; + case '1': $ret = strtolower(date('d.m.Y - H:i', $timeSecured)); break; + case '2': $ret = date('d.m.Y|H:i', $timeSecured); break; + case '3': $ret = date('d.m.Y', $timeSecured); break; + case '4': $ret = date('d.m.Y|H:i:s', $timeSecured); break; + case '5': $ret = date('d-m-Y (l-F-T)', $timeSecured); break; + case '6': $ret = date('Ymd', $timeSecured); break; + case '7': $ret = date('Y-m-d H:i:s', $timeSecured); break; // Compatible with MySQL TIMESTAMP + default: + logDebugMessage(__FUNCTION__, __LINE__, sprintf('Invalid date mode %s detected.', $mode)); + break; + } // END - switch + break; + + default: // Default is the US date / time format! + switch ($mode) { + case '0': $ret = date('r', $timeSecured); break; + case '1': $ret = strtolower(date('Y-m-d - g:i A', $timeSecured)); break; + case '2': $ret = date('y-m-d|H:i', $timeSecured); break; + case '3': $ret = date('y-m-d', $timeSecured); break; + case '4': $ret = date('d.m.Y|H:i:s', $timeSecured); break; + case '5': $ret = date('d-m-Y (l-F-T)', $timeSecured); break; + case '6': $ret = date('Ymd', $timeSecured); break; + case '7': $ret = date('Y-m-d H:i:s', $timeSecured); break; // Compatible with MySQL TIMESTAMP + default: + logDebugMessage(__FUNCTION__, __LINE__, sprintf('Invalid date mode %s detected.', $mode)); + break; + } // END - switch + } // END - switch + + // Store it in cache + $GLOBALS[__FUNCTION__][$time][$mode] = $ret; + + // Return result + return $ret; +} + +// Translates Y/N to yes/no +function translateYesNo ($yn) { + // Is it cached? + if (!isset($GLOBALS[__FUNCTION__][$yn])) { + // Default + $GLOBALS[__FUNCTION__][$yn] = '??? (' . $yn . ')'; + switch ($yn) { + case 'Y': // Yes + $GLOBALS[__FUNCTION__][$yn] = '{--YES--}'; + break; + + case 'N': // No + $GLOBALS[__FUNCTION__][$yn] = '{--NO--}'; + break; + + default: // Log unknown value + logDebugMessage(__FUNCTION__, __LINE__, sprintf('Unknown value %s. Expected: Y/N', $yn)); + break; + } // END - switch + } // END - if + + // Return it + return $GLOBALS[__FUNCTION__][$yn]; +} + +// "Translates" Y/N into "de-/active" +function translateActivationStatus ($status) { + // Is it cached? + if (!isset($GLOBALS[__FUNCTION__][$status])) { + // Default + $GLOBALS[__FUNCTION__][$status] = '??? (' . $status . ')'; + switch ($status) { + case 'Y': // Activated + $GLOBALS[__FUNCTION__][$status] = '{--ACTIVATED--}'; + break; + + case 'N': // Deactivated + $GLOBALS[__FUNCTION__][$status] = '{--DEACTIVATED--}'; + break; + + default: // Log unknown value + logDebugMessage(__FUNCTION__, __LINE__, sprintf('Unknown value %s. Expected: Y/N', $status)); + break; + } // END - switch + } // END - if + + // Return it + return $GLOBALS[__FUNCTION__][$status]; +} + +// Translates the american decimal dot into a german comma +// OPPOMENT: convertCommaToDot() +function translateComma ($dotted, $cut = TRUE, $max = '0') { + // First, cast all to double, due to PHP changes + $double = (double) $dotted; + + // Use from config is default + $maxComma = getConfig('max_comma'); + + // Use from parameter? + if ($max > 0) { + $maxComma = $max; + } // END - if + + // Cut zeros off? + if (($cut === TRUE) && ($max == '0')) { + // Test for commata if in cut-mode + $com = explode('.', $double); + if (count($com) < 2) { + // Don't display commatas even if there are none... ;-) + $maxComma = '0'; + } // END - if + } // END - if + + // Debug log + + // Translate it now + $translated = $double; + switch (getLanguage()) { + case 'de': // German language + $translated = number_format($double, $maxComma, ',', '.'); + break; + + default: // All others + $translated = number_format($double, $maxComma, '.', ','); + break; + } // END - switch + + // Return translated value + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'double=' . $double . ',translated=' . $translated . ',maxComma=' . $maxComma); + return $translated; +} + +// Translate Uni*-like gender to human-readable +function translateGender ($gender) { + // Default + $ret = '!' . $gender . '!'; + + // Male/female or company? + switch ($gender) { + case 'M': // Male + case 'F': // Female + case 'C': // Company + // Use generic function + $ret = translateGeneric('GENDER', $gender); + break; + + default: + // Please report bugs on unknown genders + reportBug(__FUNCTION__, __LINE__, sprintf('Unknown gender %s detected.', $gender)); + break; + } // END - switch + + // Return translated gender + return $ret; +} + +// "Translates" the user status +function translateUserStatus ($status) { + // Default status is unknown if something goes through + $ret = '{--ACCOUNT_STATUS_UNKNOWN--}'; + + // Generate message depending on status + switch ($status) { + case 'UNCONFIRMED': + case 'CONFIRMED': + case 'LOCKED': + // Use generic function for all "normal" cases + $ret = translateGeneric('ACCOUNT_STATUS', $status); + break; + + case '': // Account deleted + case NULL: // Account deleted + $ret = '{--ACCOUNT_STATUS_DELETED--}'; + break; + + default: // Please report all unknown status + reportBug(__FUNCTION__, __LINE__, sprintf('Unknown status %s(%s) detected.', $status, gettype($status))); + break; + } // END - switch + + // Return it + return $ret; +} + +// "Translates" 'visible' and 'locked' to a CSS class +function translateMenuVisibleLocked ($content, $prefix = '') { + // 1st parameter should be an array + assert(is_array($content)); + + // Default is 'menu_unknown' + $content['visible_css'] = $prefix . 'menu_unknown'; + + // Translate 'visible' and keep an eye on the prefix + switch ($content['visible']) { + case 'Y': // Should be visible + $content['visible_css'] = $prefix . 'menu_visible'; + break; + + case 'N': // Is invisible + $content['visible_css'] = $prefix . 'menu_invisible'; + break; + + default: // Please report this + reportBug(__FUNCTION__, __LINE__, 'Unsupported visible value detected. content=
' . print_r($content, TRUE) . '
'); + break; + } // END - switch + + // Translate 'locked' and keep an eye on the prefix + switch ($content['locked']) { + case 'Y': // Should be locked, only admins can call this + $content['locked_css'] = $prefix . 'menu_locked'; + break; + + case 'N': // Is unlocked and visible to members/guests/sponsors + $content['locked_css'] = $prefix . 'menu_unlocked'; + break; + + default: // Please report this + reportBug(__FUNCTION__, __LINE__, 'Unsupported locked value detected. content=
' . print_r($content, TRUE) . '
'); + break; + } // END - switch + + // Return the resulting array + return $content; +} + +// Generates an URL for the dereferer +function generateDereferrerUrl ($url) { + // Don't de-refer our own links! + if ((!empty($url)) && (substr($url, 0, strlen(getUrl())) != getUrl())) { + // Encode URL + $encodedUrl = encodeString(compileUriCode($url)); + + // Generate hash + $hash = generateHash($url . getSiteKey() . getDateKey()); + + // Log plain URL and hash + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'url=' . $url . ',hash=' . $hash . '(' . strlen($hash) . ')'); + + // De-refer this URL + $url = sprintf( + '{%%url=modules.php?module=loader&url=%s&hash=%s&salt=%s%%}', + $encodedUrl, + encodeHashForCookie($hash), + substr($hash, 0, getSaltLength()) + ); + } // END - if + + // Return link + return $url; +} + +// Generates an URL for the frametester +function generateFrametesterUrl ($url) { + // Prepare frametester URL + $frametesterUrl = sprintf('{%%url=modules.php?module=frametester&url=%s%%}', + encodeString(compileUriCode($url)) + ); + + // Return the new URL + return $frametesterUrl; +} + +// Count entries from e.g. a selection box +function countSelection ($array) { + // Integrity check + if (!is_array($array)) { + // Not an array! + reportBug(__FUNCTION__, __LINE__, 'No array provided.'); + } // END - if + + // Init count + $ret = '0'; + + // Count all entries + foreach ($array as $selected) { + // Is it checked? + if (!empty($selected)) { + // Yes, then count it + $ret++; + } // END - if + } // END - foreach + + // Return counted selections + return $ret; +} + +// Generates a timestamp (some wrapper for mktime()) +function makeTime ($hours, $minutes, $seconds, $stamp) { + // Extract day, month and year from given timestamp + $days = getDay($stamp); + $months = getMonth($stamp); + $years = getYear($stamp); + + // Create timestamp for wished time which depends on extracted date + return mktime( + $hours, + $minutes, + $seconds, + $months, + $days, + $years + ); +} + +// Redirects to an URL and if neccessarry extends it with own base URL +// @TODO $allowSpider is unused +function redirectToUrl ($url, $allowSpider = TRUE, $compileCode = TRUE) { + // Is the output mode -2? + if (isAjaxOutputMode()) { + // This is always (!) an AJAX request and shall not be redirected + return; + } // END - if + + // Remove {%url= + if (substr($url, 0, 6) == '{%url=') { + $url = substr($url, 6, -2); + } // END - if + + // Compile codes out? + if ($compileCode === TRUE) { + // Compile out codes + eval('$url = "' . compileRawCode(encodeUrl($url)) . '";'); + } // END - if + + // Default 'rel' value is external, nofollow is evil from Google and hurts the Internet + $rel = ' rel="external"'; + + // Is there internal or external URL? + if (substr($url, 0, strlen(getUrl())) == getUrl()) { + // Own (=internal) URL + $rel = ''; + } // END - if + + // Three different ways to debug... + //* DEBUG: */ reportBug(__FUNCTION__, __LINE__, 'URL=' . $url); + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'URL=' . $url); + //* DEBUG-DIE: */ die(__METHOD__ . ':url=' . $url . '
compileCode=' . intval($compileCode)); + + // We should not sent a redirect if headers are already sent + if (!headers_sent()) { + // Compile again? + if ($compileCode === TRUE) { + // Do final compilation + $url = doFinalCompilation(str_replace('&', '&', $url), FALSE); + } // END - if + + // Load URL when headers are not sent + sendRawRedirect($url); + } else { + // Output error message + loadPageHeader(); + loadTemplate('redirect_url', FALSE, str_replace('&', '&', $url)); + loadPageFooter(); + } + + // Shut the mailer down here + doShutdown(); +} + +/************************************************************************ + * * + * Gaenderter Sortier-Algorythmus, $array wird nach dem Array (!) * + * $a_sort sortiert: * + * * + * $array - Das 3-dimensionale Array, das paralell sortiert werden soll * + * $a_sort - Array, das die Sortiereihenfolge der ersten Elementeben * + * $primary_key - Primaerschl.ssel aus $a_sort, nach dem sortiert wird * + * $order - Sortiereihenfolge: -1 = a-Z, 0 = keine, 1 = Z-a * + * $nums - TRUE = Als Zahlen sortieren, FALSE = Als Zeichen sortieren * + * * + * $a_sort muss Elemente enthalten, deren Wert Schluessel von $array * + * sind... Klingt kompliziert, suchen Sie mal mein Beispiel, dann sehen * + * Sie, dass es doch nicht so schwer ist! :-) * + * * + ************************************************************************/ +function array_pk_sort (&$array, $a_sort, $primary_key = '0', $order = -1, $nums = FALSE) { + $temporaryArray = $array; + while ($primary_key < count($a_sort)) { + foreach ($temporaryArray[$a_sort[$primary_key]] as $key => $value) { + foreach ($temporaryArray[$a_sort[$primary_key]] as $key2 => $value2) { + $match = FALSE; + if ($nums === FALSE) { + // Sort byte-by-byte (also numbers will be interpreted as chars! E.g.: "9" > "10") + if (($key != $key2) && (strcmp(strtolower($temporaryArray[$a_sort[$primary_key]][$key]), strtolower($temporaryArray[$a_sort[$primary_key]][$key2])) == $order)) $match = TRUE; + } elseif ($key != $key2) { + // Sort numbers (E.g.: 9 < 10) + if (($temporaryArray[$a_sort[$primary_key]][$key] < $temporaryArray[$a_sort[$primary_key]][$key2]) && ($order == -1)) $match = TRUE; + if (($temporaryArray[$a_sort[$primary_key]][$key] > $temporaryArray[$a_sort[$primary_key]][$key2]) && ($order == 1)) $match = TRUE; + } + + if ($match) { + // We have found two different values, so let's sort whole array + foreach ($temporaryArray as $sort_key => $sort_val) { + $t = $temporaryArray[$sort_key][$key]; + $temporaryArray[$sort_key][$key] = $temporaryArray[$sort_key][$key2]; + $temporaryArray[$sort_key][$key2] = $t; + unset($t); + } // END - foreach + } // END - if + } // END - foreach + } // END - foreach + + // Count one up + $primary_key++; + } // END - while + + // Write back sorted array + $array = $temporaryArray; +} + + +// +// Deprecated : $length (still has one reference in this function) +// Optional : $extraData +// +function generateRandomCode ($length, $code, $userid, $extraData = '') { + // Build server string + $server = $_SERVER['REQUEST_URI'] . getEncryptSeparator() . detectUserAgent() . getEncryptSeparator() . getenv('SERVER_SOFTWARE') . getEncryptSeparator() . detectRealIpAddress() . getEncryptSeparator() . detectRemoteAddr(); + + // Build key string + $keys = getSiteKey() . getEncryptSeparator() . getDateKey(); + if (isConfigEntrySet('secret_key')) { + $keys .= getEncryptSeparator() . getSecretKey(); + } // END - if + if (isConfigEntrySet('file_hash')) { + $keys .= getEncryptSeparator() . getFileHash(); + } // END - if + + if (isConfigEntrySet('master_salt')) { + $keys .= getEncryptSeparator() . getMasterSalt(); + } // END - if + + // Build string from misc data + $data = $code . getEncryptSeparator() . $userid . getEncryptSeparator() . $extraData; + + // Add more additional data + if (isSessionVariableSet('u_hash')) { + $data .= getEncryptSeparator() . getSession('u_hash'); + } // END - if + + // Add referral id, language, theme and userid + $data .= getEncryptSeparator() . determineReferralId(); + $data .= getEncryptSeparator() . getLanguage(); + $data .= getEncryptSeparator() . getCurrentTheme(); + $data .= getEncryptSeparator() . getMemberId(); + + // Calculate number for generating the code + $a = $code + getConfig('_ADD') - 1; + + if (isConfigEntrySet('master_salt')) { + // Generate hash with master salt from modula of number with the prime number and other data + $saltedHash = generateHash(($a % getPrime()) . getEncryptSeparator() . $server . getEncryptSeparator() . $keys . getEncryptSeparator() . $data . getEncryptSeparator() . getDateKey() . getEncryptSeparator() . $a, getMasterSalt()); + } else { + // Generate hash with "hash of site key" from modula of number with the prime number and other data + $saltedHash = generateHash(($a % getPrime()) . getEncryptSeparator() . $server . getEncryptSeparator() . $keys . getEncryptSeparator() . $data . getEncryptSeparator() . getDateKey() . getEncryptSeparator() . $a, substr(sha1(getSiteKey()), 0, getSaltLength())); + } + + // Create number from hash + $rcode = hexdec(substr($saltedHash, getSaltLength(), 9)) / abs(getRandNo() - $a + sqrt(getConfig('_ADD'))) / pi(); + + // At least 10 numbers shall be secure enought! + if (isExtensionActive('other')) { + $len = getCodeLength(); + } else { + $len = $length; + } // END - if + + // Smaller 1 is not okay + if ($len < 1) { + // Fix it to 10 + $len = 10; + } // END - if + + // Cut off requested counts of number, but skip first digit (which is mostly a zero) + $return = substr($rcode, (strpos($rcode, '.') + 1), $len); + + // Done building code + return $return; +} + +// Does only allow numbers +function bigintval ($num, $castValue = TRUE, $abortOnMismatch = TRUE) { + //* DEBUG: */ debugOutput('[' . __FUNCTION__ . ':' . __LINE__ . '] ' . 'num=' . $num . ',castValue=' . intval($castValue) . ',abortOnMismatch=' . intval($abortOnMismatch) . ' - ENTERED!'); + // Filter all non-number chars out, so only number chars will remain + $ret = preg_replace('/[^0123456789]/', '', $num); + + // Shall we cast? + if ($castValue === TRUE) { + // Cast to biggest numeric type + $ret = (double) $ret; + } // END - if + + // Has the whole value changed? + if (('' . $ret . '' != '' . $num . '') && ($abortOnMismatch === TRUE) && (!is_null($num))) { + // Log the values + reportBug(__FUNCTION__, __LINE__, 'Problem with number found. ret[' . gettype($ret) . ']=' . $ret . ', num[' . gettype($num) . ']='. $num); + } // END - if + + // Return result + //* DEBUG: */ debugOutput('[' . __FUNCTION__ . ':' . __LINE__ . '] ' . 'num=' . $num . ',castValue=' . intval($castValue) . ',abortOnMismatch=' . intval($abortOnMismatch) . ',ret=' . $ret . ' - EXIT!'); + return $ret; +} + +// Creates a Uni* timestamp from given selection data and prefix +function createEpocheTimeFromSelections ($prefix, $postData) { + // Assert on typical array element (maybe all?) + assert(isset($postData[$prefix . '_ye'])); + + // Initial return value + $ret = '0'; + + // Is there a leap year? + $SWITCH = '0'; + $TEST = getYear() / 4; + $M1 = getMonth(); + + // If so and if current time is before 02/29 and estimated time is after 02/29 then add 86400 seconds (one day) + // 01 2 2 1 1 1 123 4 43 3 32 233 4 43 3 3210 + if ((floor($TEST) == $TEST) && ($M1 == '02') && (((isset($postData[$prefix . '_mo'])) && ($postData[$prefix . '_mo'] > '02')) || ((isset($postData[$prefix . '_mn'])) && ($postData[$prefix . '_mn'] > '02')))) { + $SWITCH = getOneDay(); + } // END - if + + // First add years... + $ret += $postData[$prefix . '_ye'] * (31536000 + $SWITCH); + + // Next months... + if (isset($postData[$prefix . '_mo'])) { + $ret += $postData[$prefix . '_mo'] * 2628000; + } elseif (isset($postData[$prefix . '_mn'])) { + $ret += $postData[$prefix . '_mn'] * 2628000; + } + + // Next weeks + $ret += $postData[$prefix . '_we'] * 604800; + + // Next days... + $ret += $postData[$prefix . '_da'] * 86400; + + // Next hours... + $ret += $postData[$prefix . '_ho'] * 3600; + + // Next minutes.. + $ret += $postData[$prefix . '_mi'] * 60; + + // And at last seconds... + $ret += $postData[$prefix . '_se']; + + // Return calculated value + return $ret; +} + +// Creates a 'fancy' human-readable timestamp from a Uni* stamp +function createFancyTime ($stamp) { + // Get data array with years/months/weeks/days/... + $data = createTimeSelections($stamp, '', '', '', TRUE); + $ret = ''; + foreach ($data as $k => $v) { + if ($v > 0) { + // Value is greater than 0 "eval" data to return string + $ret .= ', ' . $v . ' {%pipe,translateTimeUnit=' . $k . '%}'; + break; + } // END - if + } // END - foreach + + // Is something there? + if (!empty($ret)) { + // Remove leading commata and space + $ret = substr($ret, 2); + } else { + // Zero seconds + $ret = '0 {--TIME_UNIT_SECOND--}'; + } + + // Return fancy time string + return $ret; +} + +// Taken from www.php.net isInStringIgnoreCase() user comments +function isEmailValid ($email) { + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'email=' . $email . ' - ENTERED!'); + + // Is there cache? + if (!isset($GLOBALS[__FUNCTION__][$email])) { + // Check first part of email address + $first = '[-a-z0-9!#$%&\'*+/=?^_<{|}~]+(\.[-a-zA-Z0-9!#$%&\'*+/=?^_<{|}~]+)*'; + + // Check domain + $domain = '[a-z0-9-]+(\.[a-z0-9-]{2,5})+'; + + // Generate pattern + $regex = '@^' . $first . '\@' . $domain . '$@iU'; + + // Determine it + $GLOBALS[__FUNCTION__][$email] = (($email != getMessage('DEFAULT_WEBMASTER')) && (preg_match($regex, $email))); + } // END - if + + // Return check result + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'email=' . $email . ',isValid=' . intval($GLOBALS[__FUNCTION__][$email]) . ' - EXIT!'); + return $GLOBALS[__FUNCTION__][$email]; +} + +// Function taken from user comments on www.php.net / function isInStringIgnoreCase() +function isUrlValid ($url, $compile = TRUE) { + // Trim URL a little + $url = trim(urldecode($url)); + //* DEBUG: */ debugOutput($url); + + // Compile some chars out... + if ($compile === TRUE) { + $url = compileUriCode($url, FALSE, FALSE, FALSE); + } // END - if + //* DEBUG: */ debugOutput($url); + + // Check for the extension filter + if (isExtensionActive('filter')) { + // Use the extension's filter set + return FILTER_VALIDATE_URL($url, FALSE); + } // END - if + + /* + * If not installed, perform a simple test. Just make it sure there is always a + * http:// or https:// in front of the URLs. + */ + return isUrlValidSimple($url); +} + +// Generate a hash for extra-security for all passwords +function generateHash ($plainText, $salt = '', $hash = TRUE) { + // Debug output + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'plainText('.strlen($plainText).')=' . $plainText . ',salt('.strlen($salt).')=' . $salt . ',hash=' . intval($hash)); + + // Is the required extension 'sql_patches' there and a salt is not given? + // 123 4 43 3 4 432 2 3 32 2 3 32 2 3 3 21 + if (((isExtensionInstalledAndOlder('sql_patches', '0.3.6')) && (empty($salt))) || (!isExtensionActive('sql_patches')) || (!isExtensionInstalledAndNewer('other', '0.2.5')) || (strlen($salt) == 32)) { + // Extension ext-sql_patches is missing/outdated so we hash the plain text with MD5 + if ($hash === TRUE) { + // Is plain password + return md5($plainText); + } else { + // Is already a hash + return $plainText; + } + } // END - if + + // Is an arry element missing here? + if (!isConfigEntrySet('file_hash')) { + // Stop here + reportBug(__FUNCTION__, __LINE__, 'Missing file_hash in ' . __FUNCTION__ . '.'); + } // END - if + + // When the salt is empty build a new one, else use the first x configured characters as the salt + if (empty($salt)) { + // Build server string for more entropy + $server = $_SERVER['REQUEST_URI'] . getEncryptSeparator() . detectUserAgent() . getEncryptSeparator() . getenv('SERVER_SOFTWARE') . getEncryptSeparator() . detectRealIpAddress() . getEncryptSeparator() . detectRemoteAddr(); + + // Build key string + $keys = getSiteKey() . getEncryptSeparator() . getDateKey() . getEncryptSeparator() . getFileHash() . getEncryptSeparator() . getMasterSalt(); + + // Is the secret_key config entry set? + if (isConfigEntrySet('secret_key')) { + // Add it + $keys .= getEncryptSeparator() . getSecretKey(); + } // END - if + + // Additional data + $data = $plainText . getEncryptSeparator() . uniqid(mt_rand(), TRUE) . getEncryptSeparator() . time(); + + // Calculate number for generating the code + $a = time() + getConfig('_ADD') - 1; + + // Generate SHA1 sum from modula of number and the prime number + $sha1 = sha1(($a % getPrime()) . $server . getEncryptSeparator() . $keys . getEncryptSeparator() . $data . getEncryptSeparator() . getDateKey() . getEncryptSeparator() . $a); + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'SHA1=' . $sha1.' ('.strlen($sha1).')'); + $sha1 = scrambleString($sha1); + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'Scrambled=' . $sha1.' ('.strlen($sha1).')'); + //* DEBUG: */ $sha1b = descrambleString($sha1); + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'Descrambled=' . $sha1b.' ('.strlen($sha1b).')'); + + // Generate the password salt string + $salt = substr($sha1, 0, getSaltLength()); + //* DEBUG: */ debugOutput($salt.' ('.strlen($salt).')'); + } else { + // Use given salt + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'salt=' . $salt); + $salt = substr($salt, 0, getSaltLength()); + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'salt=' . $salt . '(' . strlen($salt) . '/' . getSaltLength() . ')'); + + // Sanity check on salt + if (strlen($salt) != getSaltLength()) { + // Not the same! + reportBug(__FUNCTION__, __LINE__, 'salt length mismatch! (' . strlen($salt) . '/' . getSaltLength() . ')'); + } // END - if + } + + // Generate final hash (for debug output) + $finalHash = $salt . sha1($salt . $plainText); + + // Debug output + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'finalHash('.strlen($finalHash).')=' . $finalHash); + + // Return hash + return $finalHash; +} + +// Scramble a string +function scrambleString ($str) { + // Init + $scrambled = ''; + + // Final check, in case of failure it will return unscrambled string + if (strlen($str) > 40) { + // The string is to long + return $str; + } elseif ((strlen($str) == 40) && (getPassScramble() != '')) { + // From database + $scramble = getPassScramble(); + } else { + // Generate new numbers + $scramble = genScrambleString(strlen($str)); + } + + // Convert it into an array + $scrambleNums = explode(':', $scramble); + + // Assert on both lengths + assert(strlen($str) == count($scrambleNums)); + + // Scramble string here + //* DEBUG: */ debugOutput('***Original=' . $str.'***
'); + for ($idx = 0; $idx < strlen($str); $idx++) { + // Get char on scrambled position + $char = substr($str, $scrambleNums[$idx], 1); + + // Add it to final output string + $scrambled .= $char; + } // END - for + + // Return scrambled string + //* DEBUG: */ debugOutput('***Scrambled=' . $scrambled.'***
'); + return $scrambled; +} + +// De-scramble a string scrambled by scrambleString() +function descrambleString ($str) { + // Scramble only 40 chars long strings + if (strlen($str) != 40) { + return $str; + } // END - if + + // Load numbers from config + $scrambleNums = explode(':', getPassScramble()); + + // Validate numbers + if (count($scrambleNums) != 40) { + return $str; + } // END - if + + // Begin descrambling + $orig = str_repeat(' ', 40); + //* DEBUG: */ debugOutput('+++Scrambled=' . $str.'+++
'); + for ($idx = 0; $idx < 40; $idx++) { + $char = substr($str, $idx, 1); + $orig = substr_replace($orig, $char, $scrambleNums[$idx], 1); + } // END - for + + // Return scrambled string + //* DEBUG: */ debugOutput('+++Original=' . $orig.'+++
'); + return $orig; +} + +// Generated a "string" for scrambling +function genScrambleString ($len) { + // Prepare array for the numbers + $scrambleNumbers = array(); + + // First we need to setup randomized numbers from 0 to 31 + for ($idx = 0; $idx < $len; $idx++) { + // Generate number + $rand = mt_rand(0, ($len - 1)); + + // Check for it by creating more numbers + while (array_key_exists($rand, $scrambleNumbers)) { + $rand = mt_rand(0, ($len - 1)); + } // END - while + + // Add number + $scrambleNumbers[$rand] = $rand; + } // END - for + + // So let's create the string for storing it in database + $scrambleString = implode(':', $scrambleNumbers); + + // Return it + return $scrambleString; +} + +// Generate an PGP-like encrypted hash of given hash for e.g. cookies +function encodeHashForCookie ($passHash) { + // Return vanilla password hash + $ret = $passHash; + + // Is a secret key and master salt already initialized? + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, intval(isExtensionInstalled('sql_patches')) . '/' . intval(isConfigEntrySet('_PRIME')) . '/' . intval(isConfigEntrySet('secret_key')) . '/' . intval(isConfigEntrySet('master_salt'))); + if ((isExtensionInstalled('sql_patches')) && (isConfigEntrySet('_PRIME')) && (isConfigEntrySet('secret_key')) && (isConfigEntrySet('master_salt'))) { + // Only calculate when the secret key is generated + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, strlen($passHash) . '/' . strlen(getSecretKey())); + if ((strlen($passHash) != 49) || (strlen(getSecretKey()) != 40)) { + // Both keys must have same length so return unencrypted + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, strlen($passHash) . '!=49/' . strlen(getSecretKey()) . '!=40 - EXIT!'); + return $ret; + } // END - if + + $newHash = ''; $start = 9; + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'passHash=' . $passHash . '(' . strlen($passHash) . ')'); + for ($idx = 0; $idx < 20; $idx++) { + // Get hash parts and convert them (00-FF) to matching ASCII value (0-255) + $part1 = hexdec(substr($passHash , $start, 2)); + $part2 = hexdec(substr(getSecretKey(), $start, 2)); + + // Default is hexadecimal of index if both are same + $mod = dechex($idx); + + // Is part1 larger or part2 than its counter part? + if ($part1 > $part2) { + // part1 is larger + $mod = dechex(sqrt(($part1 - $part2) * getPrime() / pi())); + } elseif ($part2 > $part1) { + // part2 is larger + $mod = dechex(sqrt(($part2 - $part1) * getPrime() / pi())); + } + + $mod = substr($mod, 0, 2); + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'idx=' . $idx . ',part1=' . $part1 . '/part2=' . $part2 . '/mod=' . $mod . '(' . strlen($mod) . ')'); + $mod = padLeftZero($mod, 2); + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'mod(' . ($idx * 2) . ')=' . $mod . '*'); + $start += 2; + $newHash .= $mod; + } // END - for + + // Just copy it over, as the master salt is not really helpful here + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, $passHash . '(' . strlen($passHash) . '),' . $newHash . ' (' . strlen($newHash) . ')'); + $ret = $newHash; + } // END - if + + // Return result + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'ret=' . $ret . ''); + return $ret; +} + +// Fix "deleted" cookies +function fixDeletedCookies ($cookies) { + // Is this an array with entries? + if (isFilledArray($cookies)) { + // Then check all cookies if they are marked as deleted! + foreach ($cookies as $cookieName) { + // Is the cookie set to "deleted"? + if (getSession($cookieName) == 'deleted') { + setSession($cookieName, ''); + } // END - if + } // END - foreach + } // END - if +} + +// Checks if a given apache module is loaded +function isApacheModuleLoaded ($apacheModule) { + // Check it and return result + return (((function_exists('apache_get_modules')) && (in_array($apacheModule, apache_get_modules()))) || (!function_exists('apache_get_modules'))); +} + +// Get current theme name +function getCurrentTheme () { + // The default theme is 'default'... ;-) + $ret = 'default'; + + // Is there ext-theme installed and active or is 'theme' in URL or POST data? + if (isExtensionActive('theme')) { + // Call inner method + $ret = getActualTheme(); + } elseif ((isPostRequestElementSet('theme')) && (isThemeReadable(postRequestElement('theme')))) { + // Use value from POST data + $ret = postRequestElement('theme'); + } elseif ((isGetRequestElementSet('theme')) && (isThemeReadable(getRequestElement('theme')))) { + // Use value from GET data + $ret = getRequestElement('theme'); + } elseif ((isMailerThemeSet()) && (isThemeReadable(getMailerTheme()))) { + // Use value from GET data + $ret = getMailerTheme(); + } + + // Return theme value + return $ret; +} + +// Generates an error code from given account status +function generateErrorCodeFromUserStatus ($status = '') { + // If no status is provided, use the default, cached + if ((empty($status)) && (isMember())) { + // Get user status + $status = getUserData('status'); + } // END - if + + // Default error code if unknown account status + $errorCode = getCode('ACCOUNT_UNKNOWN'); + + // Generate constant name + $codeName = sprintf('ACCOUNT_%s', strtoupper($status)); + + // Is the constant there? + if (isCodeSet($codeName)) { + // Then get it! + $errorCode = getCode($codeName); + } else { + // Unknown status + logDebugMessage(__FUNCTION__, __LINE__, sprintf('Unknown error status %s detected.', $status)); + } + + // Return error code + return $errorCode; +} + +// Back-ported from the new ship-simu engine. :-) +function debug_get_printable_backtrace () { + // Init variable + $backtrace = '
    '; + + // Get and prepare backtrace for output + $backtraceArray = debug_backtrace(); + foreach ($backtraceArray as $key => $trace) { + if (!isset($trace['file'])) $trace['file'] = __FUNCTION__; + if (!isset($trace['line'])) $trace['line'] = __LINE__; + if (!isset($trace['args'])) $trace['args'] = array(); + $backtrace .= '
  1. ' . basename($trace['file']) . ':' . $trace['line'] . ', ' . $trace['function'] . '(' . count($trace['args']) . ')
  2. '; + } // END - foreach + + // Close it + $backtrace .= '
'; + + // Return the backtrace + return $backtrace; +} + +// A mail-able backtrace +function debug_get_mailable_backtrace () { + // Init variable + $backtrace = ''; + + // Get and prepare backtrace for output + $backtraceArray = debug_backtrace(); + foreach ($backtraceArray as $key => $trace) { + if (!isset($trace['file'])) $trace['file'] = __FUNCTION__; + if (!isset($trace['line'])) $trace['line'] = __LINE__; + if (!isset($trace['args'])) $trace['args'] = array(); + $backtrace .= ($key+1) . '.:' . basename($trace['file']) . ':' . $trace['line'] . ', ' . $trace['function'] . '(' . count($trace['args']) . ")\n"; + } // END - foreach + + // Return the backtrace + return $backtrace; +} + +// Generates a ***weak*** seed +function generateSeed () { + return microtime(TRUE) * 100000; +} + +// Converts a message code to a human-readable message +function getMessageFromErrorCode ($code) { + // Default is an unknown error code + $message = '{%message,UNKNOWN_ERROR_CODE=' . $code . '%}'; + + // Which code is provided? + switch ($code) { + case '': + // No error code is bad coding practice + reportBug(__FUNCTION__, __LINE__, 'Empty error code supplied. Please fix your code.'); + break; + + // All error messages + case getCode('LOGOUT_DONE') : $message = '{--LOGOUT_DONE--}'; break; + case getCode('LOGOUT_FAILED') : $message = '{--LOGOUT_FAILED--}'; break; + case getCode('DATA_INVALID') : $message = '{--MAIL_DATA_INVALID--}'; break; + case getCode('POSSIBLE_INVALID') : $message = '{--MAIL_POSSIBLE_INVALID--}'; break; + case getCode('USER_404') : $message = '{--USER_404--}'; break; + case getCode('STATS_404') : $message = '{--MAIL_STATS_404--}'; break; + case getCode('ALREADY_CONFIRMED') : $message = '{--MAIL_ALREADY_CONFIRMED--}'; break; + case getCode('BEG_SAME_AS_OWN') : $message = '{--BEG_SAME_USERID_AS_OWN--}'; break; + case getCode('LOGIN_FAILED') : $message = '{--GUEST_LOGIN_FAILED_GENERAL--}'; break; + case getCode('MODULE_MEMBER_ONLY') : $message = '{%message,MODULE_MEMBER_ONLY=' . getRequestElement('mod') . '%}'; break; + case getCode('OVERLENGTH') : $message = '{--MEMBER_TEXT_OVERLENGTH--}'; break; + case getCode('URL_FOUND') : $message = '{--MEMBER_TEXT_CONTAINS_URL--}'; break; + case getCode('SUBJECT_URL') : $message = '{--MEMBER_SUBJECT_CONTAINS_URL--}'; break; + case getCode('BLIST_URL') : $message = '{--MEMBER_URL_BLACK_LISTED--}
{--MEMBER_BLIST_TIME--}: ' . generateDateTime(getRequestElement('blist'), 0); break; + case getCode('NO_RECS_LEFT') : $message = '{--MEMBER_SELECTED_MORE_RECS--}'; break; + case getCode('INVALID_TAGS') : $message = '{--MEMBER_HTML_INVALID_TAGS--}'; break; + case getCode('MORE_POINTS') : $message = '{--MEMBER_MORE_POINTS_NEEDED--}'; break; + case getCode('MORE_RECEIVERS1') : $message = '{--MEMBER_ENTER_MORE_RECEIVERS--}'; break; + case getCode('MORE_RECEIVERS2') : $message = '{--MEMBER_NO_MORE_RECEIVERS_FOUND--}'; break; + case getCode('MORE_RECEIVERS3') : $message = '{--MEMBER_ENTER_MORE_MIN_RECEIVERS--}'; break; + case getCode('INVALID_URL') : $message = '{--MEMBER_ENTER_INVALID_URL--}'; break; + case getCode('NO_MAIL_TYPE') : $message = '{--MEMBER_NO_MAIL_TYPE_SELECTED--}'; break; + case getCode('PROFILE_UPDATED') : $message = '{--MEMBER_PROFILE_UPDATED--}'; break; + case getCode('UNKNOWN_REDIRECT') : $message = '{--UNKNOWN_REDIRECT_VALUE--}'; break; + case getCode('WRONG_PASS') : $message = '{--LOGIN_WRONG_PASS--}'; break; + case getCode('WRONG_ID') : $message = '{--LOGIN_WRONG_ID--}'; break; + case getCode('ACCOUNT_LOCKED') : $message = '{--LOGIN_STATUS_LOCKED--}'; break; + case getCode('ACCOUNT_UNCONFIRMED') : $message = '{--LOGIN_STATUS_UNCONFIRMED--}'; break; + case getCode('COOKIES_DISABLED') : $message = '{--LOGIN_COOKIES_DISABLED--}'; break; + case getCode('UNKNOWN_ERROR') : $message = '{--LOGIN_UNKNOWN_ERROR--}'; break; + case getCode('UNKNOWN_STATUS') : $message = '{--LOGIN_UNKNOWN_STATUS--}'; break; + case getCode('LOGIN_EMPTY_ID') : $message = '{--LOGIN_ID_IS_EMPTY--}'; break; + case getCode('LOGIN_EMPTY_PASSWORD'): $message = '{--LOGIN_PASSWORD_IS_EMPTY--}'; break; + + case getCode('ERROR_MAILID'): + if (isExtensionActive('mailid', TRUE)) { + $message = '{--ERROR_CONFIRMING_MAIL--}'; + } else { + $message = '{%pipe,generateExtensionInactiveNotInstalledMessage=mailid%}'; + } + break; + + case getCode('EXTENSION_PROBLEM'): + if (isGetRequestElementSet('ext')) { + $message = '{%pipe,generateExtensionInactiveNotInstalledMessage=' . getRequestElement('ext') . '%}'; + } else { + $message = '{--EXTENSION_PROBLEM_UNSET_EXT--}'; + } + break; + + case getCode('URL_TIME_LOCK'): + // Load timestamp from last order + $content = getPoolDataFromId(getRequestElement('id')); + + // Translate it for templates + $content['timestamp'] = generateDateTime($content['timestamp'], 1); + + // Calculate hours... + $content['hours'] = round(getUrlTlock() / 60 / 60); + + // Minutes... + $content['minutes'] = round((getUrlTlock() - $content['hours'] * 60 * 60) / 60); + + // And seconds + $content['seconds'] = round(getUrlTlock() - $content['hours'] * 60 * 60 - $content['minutes'] * 60); + + // Finally contruct the message + $message = loadTemplate('tlock_message', TRUE, $content); + break; + + default: + // Log missing/invalid error codes + logDebugMessage(__FUNCTION__, __LINE__, getMessage('UNKNOWN_MAILID_CODE', $code)); + break; + } // END - switch + + // Return the message + return $message; +} + +// Function taken from user comments on www.php.net / function isInStringIgnoreCase() +function isUrlValidSimple ($url) { + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'url=' . $url . ' - ENTERED!'); + // Prepare URL + $url = secureString(str_replace(chr(92), '', compileRawCode(urldecode($url)))); + + // Allows http and https + $http = "(http|https)+(:\/\/)"; + // Test domain + $domain1 = "([[:alnum:]]([-[:alnum:]])*\.)?([[:alnum:]][-[:alnum:]\.]*[[:alnum:]])(\.[[:alpha:]]{2,5})?"; + // Test double-domains (e.g. .de.vu) + $domain2 = "([-[:alnum:]])?(\.[[:alnum:]][-[:alnum:]\.]*[[:alnum:]])(\.[[:alpha:]]{2,5})(\.[[:alpha:]]{2,5})?"; + // Test IP number + $ip = "([[:digit:]]{1,3})\.([[:digit:]]{1,3})\.([[:digit:]]{1,3})\.([[:digit:]]{1,3})"; + // ... directory + $dir = "((/)+([-_\.[:alnum:]])+)*"; + // ... page + $page = "/([-_[:alnum:]][-\._[:alnum:]]*\.[[:alnum:]]{2,5})?"; + // ... and the string after and including question character + $getstring1 = "([\?/]([[:alnum:]][-\._%[:alnum:]]*(=)?([-\@\._:%[:alnum:]])+)(&([[:alnum:]]([-_%[:alnum:]])*(=)?([-\@\[\._:%[:alnum:]])+(\])*))*)?"; + // Pattern for URLs like http://url/dir/doc.html?var=value + $pattern['d1dpg1'] = $http . $domain1 . $dir . $page . $getstring1; + $pattern['d2dpg1'] = $http . $domain2 . $dir . $page . $getstring1; + $pattern['ipdpg1'] = $http . $ip . $dir . $page . $getstring1; + // Pattern for URLs like http://url/dir/?var=value + $pattern['d1dg1'] = $http . $domain1 . $dir.'/' . $getstring1; + $pattern['d2dg1'] = $http . $domain2 . $dir.'/' . $getstring1; + $pattern['ipdg1'] = $http . $ip . $dir.'/' . $getstring1; + // Pattern for URLs like http://url/dir/page.ext + $pattern['d1dp'] = $http . $domain1 . $dir . $page; + $pattern['d1dp'] = $http . $domain2 . $dir . $page; + $pattern['ipdp'] = $http . $ip . $dir . $page; + // Pattern for URLs like http://url/dir + $pattern['d1d'] = $http . $domain1 . $dir; + $pattern['d2d'] = $http . $domain2 . $dir; + $pattern['ipd'] = $http . $ip . $dir; + // Pattern for URLs like http://url/?var=value + $pattern['d1g1'] = $http . $domain1 . '/' . $getstring1; + $pattern['d2g1'] = $http . $domain2 . '/' . $getstring1; + $pattern['ipg1'] = $http . $ip . '/' . $getstring1; + // Pattern for URLs like http://url?var=value + $pattern['d1g12'] = $http . $domain1 . $getstring1; + $pattern['d2g12'] = $http . $domain2 . $getstring1; + $pattern['ipg12'] = $http . $ip . $getstring1; + + // Test all patterns + $reg = FALSE; + foreach ($pattern as $key => $pat) { + // Debug regex? + if (isDebugRegularExpressionEnabled()) { + // @TODO Are these convertions still required? + $pat = str_replace('.', '\.', $pat); + $pat = str_replace('@', '\@', $pat); + //* DEBUG: */ debugOutput($key . '= ' . $pat); + } // END - if + + // Check if expression matches + $reg = ($reg || preg_match(('^' . $pat . '^'), $url)); + + // Does it match? + if ($reg === TRUE) { + break; + } // END - if + } // END - foreach + + // Return true/false + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'url=' . $url . ',reg=' . intval($reg) . ' - EXIT!'); + return $reg; +} + +// Wtites data to a config.php-style file +// @TODO Rewrite this function to use readFromFile() and writeToFile() +function changeDataInFile ($FQFN, $comment, $prefix, $suffix, $inserted, $seek = 0) { + // Initialize some variables + $done = FALSE; + $seek++; + $next = -1; + $found = FALSE; + + // Is the file there and read-/write-able? + if ((isFileReadable($FQFN)) && (is_writeable($FQFN))) { + $search = 'CFG: ' . $comment; + $tmp = $FQFN . '.tmp'; + + // Open the source file + $fp = fopen($FQFN, 'r') or reportBug(__FUNCTION__, __LINE__, 'Cannot read. file=' . basename($FQFN)); + + // Is the resource valid? + if (is_resource($fp)) { + // Open temporary file + $fp_tmp = fopen($tmp, 'w') or reportBug(__FUNCTION__, __LINE__, 'Cannot write. tmp=' . basename($tmp) . ',file=' . $FQFN); + + // Is the resource again valid? + if (is_resource($fp_tmp)) { + // Mark temporary file as readable + $GLOBALS['file_readable'][$tmp] = TRUE; + + // Start reading + while (!feof($fp)) { + // Read from source file + $line = fgets($fp, 1024); + + if (isInString($search, $line)) { + $next = '0'; + $found = TRUE; + } // END - if + + if ($next > -1) { + if ($next === $seek) { + $next = -1; + $line = $prefix . $inserted . $suffix . PHP_EOL; + } else { + $next++; + } + } // END - if + + // Write to temp file + fwrite($fp_tmp, $line); + } // END - while + + // Close temp file + fclose($fp_tmp); + + // Finished writing tmp file + $done = TRUE; + } // END - if + + // Close source file + fclose($fp); + + if (($done === TRUE) && ($found === TRUE)) { + // Copy back temporary->FQFN file and ... + copyFileVerified($tmp, $FQFN, 0644); + + // ... delete temporay file :-) + return removeFile($tmp); + } elseif ($found === FALSE) { + // Entry not found + logDebugMessage(__FUNCTION__, __LINE__, 'File ' . basename($FQFN) . ' cannot be changed: comment=' . $comment . ',prefix=' . $prefix . ',inserted=' . $inserted . ',seek=' . $seek . ' - 404!'); + } else { + // Temporary file not fully written + logDebugMessage(__FUNCTION__, __LINE__, 'File ' . basename($FQFN) . ' cannot be changed: comment=' . $comment . ',prefix=' . $prefix . ',inserted=' . $inserted . ',seek=' . $seek . ' - Temporary file unfinished!'); + } + } + } else { + // File not found, not readable or writeable + reportBug(__FUNCTION__, __LINE__, 'File not readable/writeable. file=' . basename($FQFN) . ',comment=' . $comment . ',prefix=' . $prefix . ',inserted=' . $inserted . ',seek=' . $seek); + } + + // An error was detected! + return FALSE; +} + +// Debug message logger +function logDebugMessage ($funcFile, $line, $message, $force=true) { + // Is debug mode enabled? + if ((isDebugModeEnabled()) || ($force === TRUE)) { + // Remove CRLF + $message = str_replace(array(chr(13), PHP_EOL), array('', ''), $message); + + // Log this message away + appendLineToFile(getPath() . getCachePath() . 'debug.log', generateDateTime(time(), '4') . '|' . getModule(FALSE) . ':' . getExtraModule() . '|' . basename($funcFile) . '|' . $line . '|' . $message); + } // END - if +} + +// Handle extra values +function handleExtraValues ($filterFunction, $value, $extraValue) { + // Default is the value itself + $ret = $value; + + // Is there a special filter function? + if ((empty($filterFunction)) || (!function_exists($filterFunction))) { + // Call-back function does not exist or is empty + reportBug(__FUNCTION__, __LINE__, 'Filter function ' . $filterFunction . ' does not exist or is empty: value[' . gettype($value) . ']=' . $value . ',extraValue[' . gettype($extraValue) . ']=' . $extraValue); + } // END - if + + // Is there extra parameters here? + if ((!is_null($extraValue)) && (!empty($extraValue))) { + // Put both parameters in one new array by default + $args = array($value, $extraValue); + + // If we have an array simply use it and pre-extend it with our value + if (is_array($extraValue)) { + // Make the new args array + $args = merge_array(array($value), $extraValue); + } // END - if + + // Call the multi-parameter call-back + $ret = call_user_func_array($filterFunction, $args); + + // Is $ret 'true'? + if ($ret === TRUE) { + // Test passed, so write direct value + $ret = $args; + } // END - if + } else { + // One parameter call + $ret = call_user_func($filterFunction, $value); + //* BUG */ die('ret['.gettype($ret).']=' . $ret . ',value=' . $value.',filterFunction=' . $filterFunction); + + // Is $ret 'true'? + if ($ret === TRUE) { + // Test passed, so write direct value + $ret = $value; + } // END - if + } + + // Return the value + return $ret; +} + +// Tries to determine if call-back functions and/or extra values shall be parsed +function doHandleExtraValues ($filterFunctions, $extraValues, $key, $entries, $userIdColumn, $search, $id = NULL) { + // Debug mode enabled? + if (isDebugModeEnabled()) { + // Debug message + /* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'key=' . $key . ',entries=' . $entries . ',userIdColumn=' . $userIdColumn[0] . ',search=' . $search . ',filterFunctions=' . print_r($filterFunctions, TRUE) . ',extraValues=' . print_r($extraValues, TRUE)); + } // END - if + + // Send data through the filter function if found + if ($key === $userIdColumn[0]) { + // Is the userid, we have to process it with convertZeroToNull() + $entries = convertZeroToNull($entries); + } elseif ((!empty($filterFunctions[$key])) && (isset($extraValues[$key]))) { + // Debug mode enabled? + if (isDebugModeEnabled()) { + // Then log it + /* NOISY-DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'search=' . $search . ',filterFunctions=' . $filterFunctions[$key] . ',extraValues=' . $extraValues[$key] . ',key=' . $key . ',id=' . $id . ',entries[' . gettype($entries) . ']=' . $entries . ' - BEFORE!'); + } // END - if + + // Filter function + extra value set + $entries = handleExtraValues($filterFunctions[$key], $entries, $extraValues[$key]); + + // Debug mode enabled? + if (isDebugModeEnabled()) { + // Then log it + /* NOISY-DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'search=' . $search . ',filterFunctions=' . $filterFunctions[$key] . ',extraValues=' . $extraValues[$key] . ',key=' . $key . ',id=' . $id . ',entries[' . gettype($entries) . ']=' . $entries . ' - AFTER!'); + } // END - if + } elseif ((!empty($filterFunctions[$search])) && (!empty($extraValues[$search]))) { + // Debug mode enabled? + if (isDebugModeEnabled()) { + // Then log it + /* NOISY-DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'search=' . $search . ',filterFunctions=' . $filterFunctions[$search] . ',key=' . $key . ',search=' . $search . ',entries[' . gettype($entries) . ']=' . $entries . ' - BEFORE!'); + } // END - if + + // Handle extra values + $entries = handleExtraValues($filterFunctions[$search], $entries, $extraValues[$search]); + + // Debug mode enabled? + if (isDebugModeEnabled()) { + // Then log it + /* NOISY-DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'search=' . $search . ',filterFunctions=' . $filterFunctions[$search] . ',key=' . $key . ',search=' . $search . ',entries[' . gettype($entries) . ']=' . $entries . ' - AFTER!'); + } // END - if + + // Make sure entries is not bool, then something went wrong + assert(!is_bool($entries)); + } elseif (!empty($filterFunctions[$search])) { + // Debug mode enabled? + if (isDebugModeEnabled()) { + // Then log it + /* NOISY-DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'search=' . $search . ',filterFunctions=' . $filterFunctions[$search] . ',key=' . $key . ',search=' . $search . ',entries[' . gettype($entries) . ']=' . $entries . ' - BEFORE!'); + } // END - if + + // Handle extra values + $entries = handleExtraValues($filterFunctions[$search], $entries, NULL); + + // Debug mode enabled? + if (isDebugModeEnabled()) { + // Then log it + /* NOISY-DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'search=' . $search . ',filterFunctions=' . $filterFunctions[$search] . ',key=' . $key . ',search=' . $search . ',entries[' . gettype($entries) . ']=' . $entries . ' - AFTER!'); + } // END - if + + // Make sure entries is not bool, then something went wrong + assert(!is_bool($entries)); + } + + // Return value + return $entries; +} + +// Converts timestamp selections into a timestamp +function convertSelectionsToEpocheTime (array &$postData, array &$content, &$id, &$skip) { + // Init test variable + $skip = FALSE; + $test2 = ''; + + // Get last three chars + $test = substr($id, -3); + + // Improved way of checking! :-) + if (in_array($test, array('_ye', '_mo', '_mn', '_we', '_da', '_ho', '_mi', '_se'))) { + // Found a multi-selection for timings? + $test = substr($id, 0, -3); + if ((isset($postData[$test . '_ye'])) && ((isset($postData[$test . '_mo'])) || (isset($postData[$test . '_mn']))) && (isset($postData[$test . '_we'])) && (isset($postData[$test . '_da'])) && (isset($postData[$test . '_ho'])) && (isset($postData[$test . '_mi'])) && (isset($postData[$test . '_se'])) && ($test != $test2)) { + // Generate timestamp + $postData[$test] = createEpocheTimeFromSelections($test, $postData); + array_push($content, sprintf("`%s`='%s'", $test, $postData[$test])); + $GLOBALS['skip_config'][$test] = TRUE; + + // Remove data from array + foreach (array('ye', 'mo', 'mn', 'we', 'da', 'ho', 'mi', 'se') as $rem) { + unset($postData[$test . '_' . $rem]); + } // END - foreach + + // Skip adding + unset($id); + $skip = TRUE; + $test2 = $test; + } // END - if + } // END - if +} + +// Reverts the german decimal comma into Computer decimal dot +// OPPOMENT: translateComma() +function convertCommaToDot ($str) { + // Default float is not a float... ;-) + $float = FALSE; + + // Which language is selected? + switch (getLanguage()) { + case 'de': // German language + // Remove german thousand dots first + $str = str_replace('.', '', $str); + + // Replace german commata with decimal dot and cast it + $float = sprintf(getConfig('FLOAT_MASK'), str_replace(',', '.', $str)); + break; + + default: // US and so on + // Remove thousand commatas first and cast + $float = sprintf(getConfig('FLOAT_MASK'), str_replace(',', '', $str)); + break; + } // END - switch + + // Return float + return $float; +} + +// Handle menu-depending failed logins and return the rendered content +function handleLoginFailures ($accessLevel) { + // Default output is empty ;-) + $OUT = ''; + + // Is the session data set? + if ((isSessionVariableSet('mailer_' . $accessLevel . '_failures')) && (isSessionVariableSet('mailer_' . $accessLevel . '_last_failure'))) { + // Ignore zero values + if (getSession('mailer_' . $accessLevel . '_failures') > 0) { + // Non-guest has login failures found, get both data and prepare it for template + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'accessLevel=' . $accessLevel . '
'); + $content = array( + 'login_failures' => 'mailer_' . $accessLevel . '_failures', + 'last_failure' => generateDateTime(getSession('mailer_' . $accessLevel . '_last_failure'), 2) + ); + + // Load template + $OUT = loadTemplate('login_failures', TRUE, $content); + } // END - if + + // Reset session data + setSession('mailer_' . $accessLevel . '_failures', ''); + setSession('mailer_' . $accessLevel . '_last_failure', ''); + } // END - if + + // Return rendered content + return $OUT; +} + +// Rebuild cache +function rebuildCache ($cache, $inc = '', $force = FALSE) { + // Debug message + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, sprintf("cache=%s, inc=%s, force=%s", $cache, $inc, intval($force))); + + // Shall I remove the cache file? + if ((isExtensionInstalled('cache')) && (isValidCacheInstance()) && (isHtmlOutputMode())) { + // Rebuild cache only in HTML output-mode + // @TODO This should be rewritten not to load the cache file for just checking if it is there for save removal. + if ($GLOBALS['cache_instance']->loadCacheFile($cache)) { + // Destroy it + $GLOBALS['cache_instance']->removeCacheFile($force); + } // END - if + + // Include file given? + if (!empty($inc)) { + // Construct FQFN + $inc = sprintf('inc/loader/load-%s.php', $inc); + + // Is the include there? + if (isIncludeReadable($inc)) { + // And rebuild it from scratch + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'inc=' . $inc . ' - LOADED!'); + loadInclude($inc); + } else { + // Include not found, which needs now tracing + reportBug(__FUNCTION__, __LINE__, 'Include ' . $inc . ' not found. cache=' . $cache); + } + } // END - if + } // END - if +} + +// Determines the real remote address +function determineRealRemoteAddress ($remoteAddr = FALSE) { + // Default is 127.0.0.1 + $address = '127.0.0.1'; + + // Is a proxy in use? + if ((isset($_SERVER['HTTP_X_FORWARDED_FOR'])) && (!$remoteAddr)) { + // Proxy was used + $address = $_SERVER['HTTP_X_FORWARDED_FOR']; + } elseif ((isset($_SERVER['HTTP_CLIENT_IP'])) && (!$remoteAddr)) { + // Yet, another proxy + $address = $_SERVER['HTTP_CLIENT_IP']; + } elseif (isset($_SERVER['REMOTE_ADDR'])) { + // The regular address when no proxy was used + $address = $_SERVER['REMOTE_ADDR']; + } + + // This strips out the real address from proxy output + if (strstr($address, ',')) { + $addressArray = explode(',', $address); + $address = $addressArray[0]; + } // END - if + + // Return the result + return $address; +} + +// Adds a bonus mail to the queue +// This is a high-level function! +function addNewBonusMail ($data, $mode = '', $output = TRUE) { + // Use mode from data if not set and availble ;-) + if ((empty($mode)) && (isset($data['mail_mode']))) { + $mode = $data['mail_mode']; + } // END - if + + // Generate receiver list + $receiver = generateReceiverList($data['cat'], $data['receiver'], $mode); + + // Receivers added? + if (!empty($receiver)) { + // Add bonus mail to queue + addBonusMailToQueue( + $data['subject'], + $data['text'], + $receiver, + $data['points'], + $data['seconds'], + $data['url'], + $data['cat'], + $mode, + $data['receiver'] + ); + + // Mail inserted into bonus pool + if ($output === TRUE) { + displayMessage('{--ADMIN_BONUS_SEND--}'); + } // END - if + } elseif ($output === TRUE) { + // More entered than can be reached! + displayMessage('{--ADMIN_MORE_SELECTED--}'); + } else { + // Debug log + logDebugMessage(__FUNCTION__, __LINE__, 'cat=' . $data['cat'] . ',receiver=' . $data['receiver'] . ',data=' . base64_encode(serialize($data)) . ' More selected, than available!'); + } +} + +// Enables the hourly reset mode and runs it +function doHourly () { + // Enable the hourly reset mode + $GLOBALS['hourly_enabled'] = TRUE; + + // Run filters (one always!) + runFilterChain('hourly'); + + // Do not update in hourly debug mode + if ((!isConfigEntrySet('DEBUG_HOURLY')) || (!isDebugHourlyEnabled())) { + // Update database + updateConfiguration('last_hourly', getHour()); + } // END - if +} + +// Enables the daily reset mode and runs it +function doDaily () { + // Enable the reset mode + $GLOBALS['daily_enabled'] = TRUE; + + // Run filters + runFilterChain('daily'); + + // Do not update in daily debug mode + if ((!isConfigEntrySet('DEBUG_DAILY')) || (!isDebugDailyEnabled())) { + // Update database + updateConfiguration('last_daily', getDay()); + } // END - if +} + +// Enables the weekly reset mode and runs it +function doWeekly () { + // Enable the reset mode + $GLOBALS['weekly_enabled'] = TRUE; + + // Run filters + runFilterChain('weekly'); + + // Do not update in weekly debug mode + if ((!isConfigEntrySet('DEBUG_WEEKLY')) || (!isDebugWeeklyEnabled())) { + // Update database + updateConfiguration('last_weekly', getWeek()); + } // END - if +} + +// Enables the monthly reset mode and runs it +function doMonthly () { + // Enable the reset mode + $GLOBALS['monthly_enabled'] = TRUE; + + // Run filters + runFilterChain('monthly'); + + // Do not update in monthly debug mode + if ((!isConfigEntrySet('DEBUG_MONTHLY')) || (!isDebugMonthlyEnabled())) { + // Update database + updateConfiguration('last_monthly', getMonth()); + } // END - if +} + +// Enables the yearly reset mode and runs it +function doYearly () { + // Enable the reset mode + $GLOBALS['yearly_enabled'] = TRUE; + + // Run filters + runFilterChain('yearly'); + + // Do not update in yearly debug mode + if ((!isConfigEntrySet('DEBUG_YEARLY')) || (!isDebugYearlyEnabled())) { + // Update database + updateConfiguration('last_yearly', getYear()); + } // END - if +} + +// Shuts down the mailer (e.g. closing database link, flushing output/filters, etc.) +function doShutdown () { + // Call the filter chain 'shutdown' + runFilterChain('shutdown', NULL); + + // Check if link is up + if (isSqlLinkUp()) { + // Close link + sqlCloseLink(__FUNCTION__, __LINE__); + } elseif (!isInstaller()) { + // No database link + reportBug(__FUNCTION__, __LINE__, 'Database link is already down, while shutdown is running.'); + } + + // Stop executing here + exit; +} + +// Init member id +function initMemberId () { + $GLOBALS['member_id'] = '0'; +} + +// Setter for member id +function setMemberId ($memberId) { + // We should not set member id to zero + if (!isValidId($memberId)) { + reportBug(__FUNCTION__, __LINE__, 'Userid should not be set zero.'); + } // END - if + + // Set it secured + $GLOBALS['member_id'] = bigintval($memberId); +} + +// Getter for member id or returns zero +function getMemberId () { + // Default member id + $memberId = '0'; + + // Is the member id set? + if (isMemberIdSet()) { + // Then use it + $memberId = $GLOBALS['member_id']; + } // END - if + + // Return it + return $memberId; +} + +// Checks ether the member id is set +function isMemberIdSet () { + return (isset($GLOBALS['member_id'])); +} + +// Setter for extra title +function setExtraTitle ($extraTitle) { + $GLOBALS['extra_title'] = $extraTitle; +} + +// Getter for extra title +function getExtraTitle () { + // Is the extra title set? + if (!isExtraTitleSet()) { + // No, then abort here + reportBug(__FUNCTION__, __LINE__, 'extra_title is not set!'); + } // END - if + + // Return it + return $GLOBALS['extra_title']; +} + +// Checks if the extra title is set +function isExtraTitleSet () { + return ((isset($GLOBALS['extra_title'])) && (!empty($GLOBALS['extra_title']))); +} + +/** + * Reads a directory recursively by default and searches for files not matching + * an exclusion pattern. You can now keep the exclusion pattern empty for reading + * a whole directory. + * + * @param $baseDir Relative base directory to PATH to scan from + * @param $prefix Prefix for all positive matches (which files should be found) + * @param $fileIncludeDirs Whether to include directories in the final output array + * @param $addBaseDir Whether to add $baseDir to all array entries + * @param $excludeArray Excluded files and directories, these must be full files names, e.g. 'what-' will exclude all files named 'what-' but won't exclude 'what-foo.php' + * @param $extension File extension for all positive matches + * @param $excludePattern Regular expression to exclude more files (preg_match()) + * @param $recursive Whether to scan recursively + * @param $suffix Suffix for positive matches ($extension will be appended, too) + * @param $withPrefixSuffix Whether to include prefix/suffix in found entries + * @return $foundMatches All found positive matches for above criteria + */ +function getArrayFromDirectory ($baseDir, $prefix, $fileIncludeDirs = FALSE, $addBaseDir = TRUE, $excludeArray = array(), $extension = '.php', $excludePattern = '@(\.|\.\.)$@', $recursive = TRUE, $suffix = '', $withPrefixSuffix = TRUE) { + // Add default entries we should always exclude + array_unshift($excludeArray, '.', '..', '.svn', '.htaccess'); + + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'baseDir=' . $baseDir . ',prefix=' . $prefix . ' - Entered!'); + // Init found includes + $foundMatches = array(); + + // Open directory + $dirPointer = opendir(getPath() . $baseDir) or reportBug(__FUNCTION__, __LINE__, 'Cannot read directory ' . basename($baseDir) . '.'); + + // Read all entries + while ($baseFile = readdir($dirPointer)) { + // Exclude '.', '..' and entries in $excludeArray automatically + if (in_array($baseFile, $excludeArray, TRUE)) { + // Exclude them + //* DEBUG: */ debugOutput('excluded=' . $baseFile); + continue; + } // END - if + + // Construct include filename and FQFN + $fileName = $baseDir . $baseFile; + $FQFN = getPath() . $fileName; + + // Remove double slashes + $FQFN = str_replace('//', '/', $FQFN); + + // Check if the base filenname matches an exclusion pattern and if the pattern is not empty + if ((!empty($excludePattern)) && (preg_match($excludePattern, $baseFile, $match))) { + // Debug message + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'baseDir=' . $baseDir . ',baseFile=' . $baseFile . ',FQFN=' . $FQFN); + + // Exclude this one + continue; + } // END - if + + // Skip also files with non-matching prefix genericly + if (($recursive === TRUE) && (isDirectory($FQFN))) { + // Is a redirectory so read it as well + $foundMatches = merge_array($foundMatches, getArrayFromDirectory($baseDir . $baseFile . '/', $prefix, $fileIncludeDirs, $addBaseDir, $excludeArray, $extension, $excludePattern, $recursive)); + + // And skip further processing + continue; + } elseif (!isFilePrefixFound($baseFile, $prefix)) { + // Skip this file + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'Invalid prefix in file ' . $baseFile . ', prefix=' . $prefix); + continue; + } elseif ((!empty($suffix)) && (substr($baseFile, -(strlen($suffix . $extension)), (strlen($suffix . $extension))) != $suffix . $extension)) { + // Skip wrong suffix as well + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'Invalid suffix in file ' . $baseFile . ', suffix=' . $suffix); + continue; + } elseif (!isFileReadable($FQFN)) { + // Not readable so skip it + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'File ' . $FQFN . ' is not readable!'); + } elseif (filesize($FQFN) < 50) { + // Might be deprecated + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'File ' . $FQFN . ' is to small (' . filesize($FQFN) . ')!'); + continue; + } elseif (($extension == '.php') && (filesize($FQFN) < 50)) { + // This PHP script is deprecated + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'File ' . $FQFN . ' is a deprecated PHP script!'); + continue; + } + + // Get file' extension (last 4 chars) + $fileExtension = substr($baseFile, -4, 4); + + // Is the file a PHP script or other? + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'baseDir=' . $baseDir . ',prefix=' . $prefix . ',baseFile=' . $baseFile); + if (($fileExtension == '.php') || (($fileIncludeDirs === TRUE) && (isDirectory($FQFN)))) { + // Is this a valid include file? + if ($extension == '.php') { + // Remove both for extension name + $extName = substr($baseFile, strlen($prefix), -4); + + // Add file with or without base path + if ($addBaseDir === TRUE) { + // With base path + array_push($foundMatches, $fileName); + } elseif (($withPrefixSuffix === FALSE) && (!empty($extension))) { + // No prefix/suffix + array_push($foundMatches, substr($baseFile, strlen($prefix), -strlen($suffix . $extension))); + } else { + // No base path + array_push($foundMatches, $baseFile); + } + } else { + // We found .php file but should not search for them, why? + reportBug(__FUNCTION__, __LINE__, 'We should find files with extension=' . $extension . ', but we found a PHP script. (baseFile=' . $baseFile . ')'); + } + } elseif ((($fileExtension == $extension) || (empty($extension))) && (isFileReadable($FQFN))) { + // Other, generic file found + if ($addBaseDir === TRUE) { + // With base path + array_push($foundMatches, $fileName); + } elseif (($withPrefixSuffix === FALSE) && (!empty($extension))) { + // No prefix/suffix + array_push($foundMatches, substr($baseFile, strlen($prefix), -strlen($suffix . $extension))); + } else { + // No base path + array_push($foundMatches, $baseFile); + } + } + } // END - while + + // Close directory + closedir($dirPointer); + + // Sort array + sort($foundMatches); + + // Return array with include files + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, '- Left!'); + return $foundMatches; +} + +// Checks whether $prefix is found in $fileName +function isFilePrefixFound ($fileName, $prefix) { + // @TODO Find a way to cache this + return (substr($fileName, 0, strlen($prefix)) == $prefix); +} + +// Maps a module name into a database table name +function mapModuleToTable ($moduleName) { + // Map only these, still lame code... + switch ($moduleName) { + case 'index': // 'index' is the guest's menu + $moduleName = 'guest'; + break; + + case 'login': // ... and 'login' the member's menu + $moduleName = 'member'; + break; + // Anything else will not be mapped, silently. + } // END - switch + + // Return result + return $moduleName; +} + +// Add SQL debug data to array for later output +function addSqlToDebug ($result, $sqlString, $timing, $file, $line) { + // Is there cache? + if (!isset($GLOBALS['debug_sql_available'])) { + // Check it and cache it in $GLOBALS + $GLOBALS['debug_sql_available'] = ((isConfigurationLoaded()) && (isDisplayDebugSqlEnabled())); + } // END - if + + // Don't execute anything here if we don't need or ext-other is missing + if ($GLOBALS['debug_sql_available'] === FALSE) { + return; + } // END - if + + // Already executed? + if (isset($GLOBALS['debug_sqls'][$file][$line][$sqlString])) { + // Then abort here, we don't need to profile a query twice + return; + } // END - if + + // Remeber this as profiled (or not, but we don't care here) + $GLOBALS['debug_sqls'][$file][$line][$sqlString] = TRUE; + + // Generate record + $record = array( + 'num_rows' => sqlNumRows($result), + 'affected' => sqlAffectedRows(), + 'sql_str' => $sqlString, + 'timing' => $timing, + 'file' => basename($file), + 'line' => $line + ); + + // Add it + array_push($GLOBALS['debug_sqls'], $record); +} + +// Initializes the cache instance +function initCacheInstance () { + // Check for double-initialization + if (isset($GLOBALS['cache_instance'])) { + // This should not happen and must be fixed + reportBug(__FUNCTION__, __LINE__, 'Double initialization of cache system detected. cache_instance[]=' . gettype($GLOBALS['cache_instance'])); + } // END - if + + // Load include for CacheSystem class + loadIncludeOnce('inc/classes/cachesystem.class.php'); + + // Initialize cache system only when it's needed + $GLOBALS['cache_instance'] = new CacheSystem(); + + // Did it work? + if ($GLOBALS['cache_instance']->getStatusCode() != 'done') { + // Failed to initialize cache sustem + reportBug(__FUNCTION__, __LINE__, 'Cache system returned with unexpected error. getStatusCode()=' . $GLOBALS['cache_instance']->getStatusCode()); + } // END - if +} + +// Getter for message from array or raw message +function getMessageFromIndexedArray ($message, $pos, $array) { + // Check if the requested message was found in array + if (isset($array[$pos])) { + // ... if yes then use it! + $ret = $array[$pos]; + } else { + // ... else use default message + $ret = $message; + } + + // Return result + return $ret; +} + +// Convert ';' to ', ' for e.g. receiver list +function convertReceivers ($old) { + return str_replace(';', ', ', $old); +} + +// Get a module from filename and access level +function getModuleFromFileName ($file, $accessLevel) { + // Default is 'invalid'; + $modCheck = 'invalid'; + + // @TODO This is still very static, rewrite it somehow + switch ($accessLevel) { + case 'admin': + $modCheck = 'admin'; + break; + + case 'sponsor': + case 'guest': + case 'member': + $modCheck = getModule(); + break; + + default: // Unsupported file name / access level + reportBug(__FUNCTION__, __LINE__, 'Unsupported file name=' . basename($file) . '/access level=' . $accessLevel); + break; + } // END - switch + + // Return result + return $modCheck; +} + +// Encodes an URL for adding session id, etc. +function encodeUrl ($url, $outputMode = '0') { + // Is there already have a PHPSESSID inside or view.php is called? Then abort here + if ((isInStringIgnoreCase(session_name(), $url)) || (isRawOutputMode())) { + // Raw output mode detected or session_name() found in URL + return $url; + } // END - if + + // Is there a valid session? + if ((!isValidSession()) && (!isSpider())) { + // Determine right separator + $separator = '&'; + if (!isInString('?', $url)) { + // No question mark + $separator = '?'; + } // END - if + + // Then add it to URL + $url .= $separator . session_name() . '=' . session_id(); + } // END - if + + // Add {?URL?} ? + if ((substr($url, 0, strlen(getUrl())) != getUrl()) && (substr($url, 0, 7) != '{?URL?}') && (!isFullQualifiedUrl($url))) { + // Add it + $url = '{?URL?}/' . $url; + } // END - if + + // Debug message + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'url=' . $url . ',isHtmlOutputMode()=' . intval(isHtmlOutputMode()) . ',outputMode=' . $outputMode); + + // Is there to decode entities? + if (!isHtmlOutputMode()) { + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'url=' . $url . ' - BEFORE DECODING'); + // Decode them for e.g. JavaScript parts + $url = decodeEntities($url); + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'url=' . $url . ' - AFTER DECODING'); + } // END - if + + // Debug log + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'url=' . $url . ',outputMode=' . $outputMode); + + // Return the encoded URL + return $url; +} + +// Simple check for spider +function isSpider () { + // Get the UA and trim it down + $userAgent = trim(detectUserAgent(TRUE)); + + // It should not be empty, if so it is better a browser + if (empty($userAgent)) { + // It is a browser that blocks its UA string + return FALSE; + } // END - if + + // Is it a spider? + return ((isInStringIgnoreCase('spider', $userAgent)) || (isInStringIgnoreCase('slurp', $userAgent)) || (isInStringIgnoreCase('bot', $userAgent)) || (isInStringIgnoreCase('archiver', $userAgent))); +} + +// Handles the braces [] of a field (e.g. value of 'name' attribute) +function handleFieldWithBraces ($field) { + // Are there braces [] at the end? + if (substr($field, -2, 2) == '[]') { + /* + * Try to find one and replace it. I do it this way to allow easy + * extending of this code. + */ + foreach (array('admin_list_builder_id_value') as $key) { + /* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'key=' . $key); + // Is the cache entry set? + if (isset($GLOBALS[$key])) { + // Insert it + $field = str_replace('[]', '[' . $GLOBALS[$key] . ']', $field); + + // And abort + /* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'key=' . $key, 'field=' . $field); + break; + } // END - if + } // END - foreach + } // END - if + + // Return it + return $field; +} + +// Converts a zero or NULL to word 'NULL' +function convertZeroToNull ($number) { + // Is it a valid username? + if (isValidNumber($number)) { + // Always secure it + $number = bigintval($number); + } else { + // Is not valid or zero + $number = 'NULL'; + } + + // Return it + return $number; +} + +// Converts an empty string to NULL, else leaves it untouched +function convertEmptyToNull ($str) { + // Is the string empty? + if (strlen($str) == 0) { + // Is really empty + $str = NULL; + } // END - if + + // Return it + return $str; +} + +// Converts a NULL|empty string|< 1 to zero +function convertNullToZero ($number) { + // Is it a valid username? + if (!isValidNumber($number)) { + // Is not valid or zero + $number = '0'; + } // END - if + + // Return it + return $number; +} + +// Capitalizes a string with underscores, e.g.: some_foo_string will become SomeFooString +// Note: This function is cached +function capitalizeUnderscoreString ($str) { + // Is there cache? + if (!isset($GLOBALS[__FUNCTION__][$str])) { + // Init target string + $capitalized = ''; + + // Explode it with the underscore, but rewrite dashes to underscore before + $strArray = explode('_', str_replace('-', '_', $str)); + + // "Walk" through all elements and make them lower-case but first upper-case + foreach ($strArray as $part) { + // Capitalize the string part + $capitalized .= firstCharUpperCase($part); + } // END - foreach + + // Store the converted string in cache array + $GLOBALS[__FUNCTION__][$str] = $capitalized; + } // END - if + + // Return cache + return $GLOBALS[__FUNCTION__][$str]; +} + +// Generate admin links for mail order +// mailType can be: 'normal' or 'bonus' +function generateAdminMailLinks ($mailType, $mailId) { + // Init variables + $OUT = ''; + $table = ''; + + // Default column for mail status is 'data_type' + // @TODO Rename column data_type to e.g. mail_status + $statusColumn = 'data_type'; + + // Which mail do we have? + switch ($mailType) { + case 'bonus': // Bonus mail + $table = 'bonus'; + break; + + case 'normal': // Member mail + $table = 'pool'; + break; + + default: // Handle unsupported types + logDebugMessage(__FUNCTION__, __LINE__, 'Unsupported mail type ' . $mailType . ' for mailId=' . $mailId . ' detected.'); + $OUT = '
{%message,ADMIN_UNSUPPORTED_MAIL_TYPE_DETECTED=' . $mailType . '%}
'; + break; + } // END - switch + + // Is the mail type supported? + if (!empty($table)) { + // Query for the mail + $result = sqlQueryEscaped("SELECT `id`, `%s` AS `mail_status` FROM `{?_MYSQL_PREFIX?}_%s` WHERE `id`=%s LIMIT 1", + array( + $statusColumn, + $table, + bigintval($mailId) + ), __FILE__, __LINE__); + + // Is there one entry there? + if (sqlNumRows($result) == 1) { + // Load the entry + $content = sqlFetchArray($result); + + // Add output and type + $content['type'] = $mailType; + $content['__output'] = ''; + + // Filter all data + $content = runFilterChain('generate_admin_mail_links', $content); + + // Get output back + $OUT = $content['__output']; + } // END - if + + // Free result + sqlFreeResult($result); + } // END - if + + // Return generated HTML code + return $OUT; +} + + +/** + * Determine if a string can represent a number in hexadecimal + * + * @param $hex A string to check if it is hex-encoded + * @return $foo True if the string is a hex, otherwise false + * @author Marques Johansson + * @link http://php.net/manual/en/function.http-chunked-decode.php#89786 + */ +function isHexadecimal ($hex) { + // Make it lowercase + $hex = strtolower(trim(ltrim($hex, '0'))); + + // Fix empty strings to zero + if (empty($hex)) { + $hex = 0; + } // END - if + + // Simply compare decode->encode result with original + return ($hex == dechex(hexdec($hex))); +} + +/** + * Replace chr(13) with "[r]" and PHP_EOL with "[n]" and add a final new-line to make + * them visible to the developer. Use this function to debug e.g. buggy HTTP + * response handler functions. + * + * @param $str String to overwork + * @return $str Overworked string + */ +function replaceReturnNewLine ($str) { + return str_replace(array(chr(13), chr(10)), array('[r]', '[n]'), $str); +} + +// Converts a given string by splitting it up with given delimiter similar to +// explode(), but appending the delimiter again +function stringToArray ($delimiter, $string) { + // Init array + $strArray = array(); + + // "Walk" through all entries + foreach (explode($delimiter, $string) as $split) { + // Append the delimiter and add it to the array + array_push($strArray, $split . $delimiter); + } // END - foreach + + // Return array + return $strArray; +} + +// Detects the prefix 'mb_' if a multi-byte string is given +function detectMultiBytePrefix ($str) { + // Default is without multi-byte + $mbPrefix = ''; + + // Detect multi-byte (strictly) + if (mb_detect_encoding($str, 'auto', TRUE) !== FALSE) { + // With multi-byte encoded string + $mbPrefix = 'mb_'; + } // END - if + + // Return the prefix + return $mbPrefix; +} + +// Searches given array for a sub-string match and returns all found keys in an array +function getArrayKeysFromSubStrArray ($heystack, $needles, $offset = 0) { + // Init array for all found keys + $keys = array(); + + // Now check all entries + foreach ($needles as $key => $needle) { + // Is there found a partial string? + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'heystack='.$heystack.',key='.$key.',needle='.$needle.',offset='.$offset); + if (strpos($heystack, $needle, $offset) !== FALSE) { + // Add the found key + array_push($keys, $key); + } // END - if + } // END - foreach + + // Return the array + return $keys; +} + +// Determines database column name from given subject and locked +function determinePointsColumnFromSubjectLocked ($subject, $locked) { + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'subject=' . $subject . ',locked=' . intval($locked) . ' - ENTERED!'); + // Default is 'normal' points + $pointsColumn = 'points'; + + // Which points, locked or normal? + if ($locked === TRUE) { + $pointsColumn = 'locked_points'; + } // END - if + + // Prepare array for filter + $filterData = array( + 'subject' => $subject, + 'locked' => $locked, + 'column' => $pointsColumn + ); + + // Run the filter + $filterData = runFilterChain('determine_points_column_name', $filterData); + + // Extract column name from array + $pointsColumn = $filterData['column']; + + // Return it + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'subject=' . $subject . ',locked=' . intval($locked) . ',pointsColumn=' . $pointsColumn . ' - EXIT!'); + return $pointsColumn; +} + +// Converts a boolean variable into 'Y' for true and 'N' for false +function convertBooleanToYesNo ($boolean) { + // Default is 'N' + $converted = 'N'; + if ($boolean === TRUE) { + // Set 'Y' + $converted = 'Y'; + } // END - if + + // Return it + return $converted; +} + +// "Translates" 'true' to true and 'false' to false +function convertStringToBoolean ($str) { + // Debug message (to measure how often this function is called) + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'str=' . $str); + + // Is there cache? + if (!isset($GLOBALS[__FUNCTION__][$str])) { + // Trim it lower-case for validation + $strTrimmed = trim(strtolower($str)); + + // Is it valid? + if (!in_array($strTrimmed, array('true', 'false'))) { + // Not valid! + reportBug(__FUNCTION__, __LINE__, 'str=' . $str . '(' . $strTrimmed . ') is not true/false'); + } // END - if + + // Determine it + $GLOBALS[__FUNCTION__][$str] = ($strTrimmed == 'true'); + } // END - if + + // Return cache + return $GLOBALS[__FUNCTION__][$str]; +} + +/** + * "Makes" a variable in given string parseable, this function will throw an + * error if the first character is not a dollar sign. + * + * @param $varString String which contains a variable + * @return $return String with added single quotes for better parsing + */ +function makeParseableVariable ($varString) { + // The first character must be a dollar sign + if (substr($varString, 0, 1) != '$') { + // Please report this + reportBug(__FUNCTION__, __LINE__, 'varString=' . $varString . ' - No dollar sign detected, will not parse it.'); + } // END - if + + // Is there cache? + if (!isset($GLOBALS[__FUNCTION__][$varString])) { + // Snap them in, if [,] are there + $GLOBALS[__FUNCTION__][$varString] = str_replace(array('[', ']'), array("['", "']"), $varString); + } // END - if + + // Return cache + return $GLOBALS[__FUNCTION__][$varString]; +} + +// "Getter" for random TAN +function getRandomTan () { + // Generate one + return mt_rand(0, 99999); +} + +// Removes any : from subject +function removeDoubleDotFromSubject ($subject) { + // Remove it + $subjectArray = explode(':', $subject); + $subject = $subjectArray[0]; + unset($subjectArray); + + // Return it + return $subject; +} + +// Adds a given entry to the database +function memberAddEntries ($tableName, $columns = array(), $filterFunctions = array(), $extraValues = array(), $timeColumns = array(), $columnIndex = NULL) { + // Is it a member? + if (!isMember()) { + // Then abort here + return FALSE; + } // END - if + + // Set POST data generic userid + setPostRequestElement('userid', getMemberId()); + + // Call inner function + doGenericAddEntries($tableName, $columns, $filterFunctions, $extraValues, $timeColumns, $columnIndex); + + // Entry has been added? + if ((!ifSqlHasZeroAffectedRows()) && ($GLOBALS['__XML_PARSE_RESULT'] === TRUE)) { + // Display success message + displayMessage('{--MEMBER_ENTRY_ADDED--}'); + } else { + // Display failed message + displayMessage('{--MEMBER_ENTRY_NOT_ADDED--}'); + } +} + +// Edit rows by given id numbers +function memberEditEntriesConfirm ($tableName, $columns = array(), $filterFunctions = array(), $extraValues = array(), $timeColumns = array(), $editNow = array(FALSE), $idColumn = array('id'), $userIdColumn = array('userid'), $rawUserId = array('userid'), $cacheFiles = array(), $content = array()) { + // $tableName must be an array + if ((!is_array($tableName)) || (count($tableName) != 1)) { + // No tableName specified + reportBug(__FUNCTION__, __LINE__, 'tableName is not given. Please fix your XML,tableName[]=' . gettype($tableName) . '!=array: userIdColumn=' . $userIdColumn); + } elseif (!is_array($idColumn)) { + // $idColumn is no array + reportBug(__FUNCTION__, __LINE__, 'idColumn[]=' . gettype($idColumn) . '!=array: userIdColumn=' . $userIdColumn); + } elseif (!is_array($userIdColumn)) { + // $userIdColumn is no array + reportBug(__FUNCTION__, __LINE__, 'userIdColumn[]=' . gettype($userIdColumn) . '!=array: userIdColumn=' . $userIdColumn); + } elseif (!is_array($editNow)) { + // $editNow is no array + reportBug(__FUNCTION__, __LINE__, 'editNow[]=' . gettype($editNow) . '!=array: userIdColumn=' . $userIdColumn); + } // END - if + + // Shall we change here or list for editing? + if ($editNow[0] === TRUE) { + // Add generic userid field + setPostRequestElement('userid', getMemberId()); + + // Call generic change method + $affected = doGenericEditEntriesConfirm($tableName, $columns, $filterFunctions, $extraValues, $timeColumns, $editNow, $idColumn, $userIdColumn, $rawUserId, $cacheFiles, 'mem_edit'); + + // Was this fine? + if ($affected == countPostSelection($idColumn[0])) { + // All deleted + displayMessage('{--MEMBER_ALL_ENTRIES_EDITED--}'); + } else { + // Some are still there :( + displayMessage(sprintf(getMessage('MEMBER_SOME_ENTRIES_NOT_EDITED'), $affected, countPostSelection($idColumn[0]))); + } + } else { + // List for editing + memberListBuilder('edit', $tableName, $columns, $filterFunctions, $extraValues, $idColumn, $userIdColumn, $rawUserId, $content); + } +} + +// Delete rows by given id numbers +function memberDeleteEntriesConfirm ($tableName, $columns = array(), $filterFunctions = array(), $extraValues = array(), $deleteNow = array(FALSE), $idColumn = array('id'), $userIdColumn = array('userid'), $rawUserId = array('userid'), $cacheFiles = array(), $content = array()) { + // Do this only for members + assert(isMember()); + + // $tableName must be an array + if ((!is_array($tableName)) || (count($tableName) != 1)) { + // No tableName specified + reportBug(__FUNCTION__, __LINE__, 'tableName is not given. Please fix your XML,tableName[]=' . gettype($tableName) . '!=array: userIdColumn=' . $userIdColumn); + } elseif (!is_array($idColumn)) { + // $idColumn is no array + reportBug(__FUNCTION__, __LINE__, 'idColumn[]=' . gettype($idColumn) . '!=array: userIdColumn=' . $userIdColumn); + } elseif (!is_array($userIdColumn)) { + // $userIdColumn is no array + reportBug(__FUNCTION__, __LINE__, 'userIdColumn[]=' . gettype($userIdColumn) . '!=array: userIdColumn=' . $userIdColumn); + } elseif (!is_array($deleteNow)) { + // $deleteNow is no array + reportBug(__FUNCTION__, __LINE__, 'deleteNow[]=' . gettype($deleteNow) . '!=array: userIdColumn=' . $userIdColumn); + } // END - if + + // Shall we delete here or list for deletion? + if ($deleteNow[0] === TRUE) { + // Add generic userid field + setPostRequestElement('userid', getMemberId()); + + // Call generic function + $affected = doGenericDeleteEntriesConfirm($tableName, $columns, $filterFunctions, $extraValues, $deleteNow, $idColumn, $userIdColumn, $rawUserId, $cacheFiles, 'mem_delete'); + + // Was this fine? + if ($affected == countPostSelection($idColumn[0])) { + // All deleted + displayMessage('{--MEMBER_ALL_ENTRIES_REMOVED--}'); + } else { + // Some are still there :( + displayMessage(sprintf(getMessage('MEMBER_SOME_ENTRIES_NOT_DELETED'), sqlAffectedRows(), countPostSelection($idColumn[0]))); + } + } else { + // List for deletion confirmation + memberListBuilder('delete', $tableName, $columns, $filterFunctions, $extraValues, $idColumn, $userIdColumn, $rawUSerId, $content); + } +} + +// Build a special template list +// @TODO cacheFiles is not yet supported +function memberListBuilder ($listType, $tableName, $columns, $filterFunctions, $extraValues, $idColumn, $userIdColumn, $rawUserId = array('userid'), $content = array()) { + // Do this only for logged in member + assert(isMember()); + + // Call inner (general) function + doGenericListBuilder('member', $listType, $tableName, $columns, $filterFunctions, $extraValues, $idColumn, $userIdColumn, $rawUserId, $content); +} + +// Checks whether given address is IPv4 +function isIp4AddressValid ($address) { + // Is there cache? + if (!isset($GLOBALS[__FUNCTION__][$address])) { + // Determine it ... + $GLOBALS[__FUNCTION__][$address] = preg_match('/((25[0-5]|2[0-4][0-9]|[0-1]{1}[0-9]{2}|[1-9]{1}[0-9]{1}|[1-9])\.(25[0-5]|2[0-4][0-9]|[0-1]{1}[0-9]{2}|[1-9]{1}[0-9]{1}|[1-9]|0)\.(25[0-5]|2[0-4][0-9]|[0-1]{1}[0-9]{2}|[1-9]{1}[0-9]{1}|[1-9]|0)\.(25[0-5]|2[0-4][0-9]|[0-1]{1}[0-9]{2}|[1-9]{1}[0-9]{1}|[0-9]))/', $address); + } // END - if + + // Return cache + return $GLOBALS[__FUNCTION__][$address]; +} + +// Returns the string if not empty or FALSE if empty +function validateIsEmpty ($str) { + // Trim it + $trimmed = trim($str); + + // Is the string empty? + if (empty($trimmed)) { + // Then set FALSE + $str = FALSE; + } // END - if + + // Return it + return $str; +} + +// "Getter" for seconds from given time unit +function getSecondsFromTimeUnit ($timeUnit) { + // Default is not found + $seconds = NULL; + + // "Detect" it + switch ($timeUnit) { + case 's': // Seconds = 1 + $seconds = 1; + break; + + case 'm': // Minutes + $seconds = 60; + break; + + case 'h': // Hours + $seconds = 60*60; + break; + + case 'D': // Days + $seconds = 60*60*24; + break; + + case 'W': // Weeks + $seconds = 60*60*24*7; + break; + + default: // Unsupported + reportBug(__FUNCTION__, __LINE__, 'Unsupported time unit ' . $timeUnit . ' detected.'); + break; + } // END - switch + + // Return value + return $seconds; +} + +// Calulates value for given seconds and time unit +function caluculateTimeUnitValue ($seconds, $timeUnit) { + // Calculate it + return ($seconds / getSecondsFromTimeUnit($timeUnit)); +} + +// "Getter" for an array from given one but only one index of it +function getArrayFromArrayIndex ($array, $key) { + // Some simple validation + assert(isset($array[0][$key])); + + // Init new array + $newArray = array(); + + // "Walk" through all elements + foreach ($array as $element) { + $newArray[] = $element[$key]; + } // END - if + + // Return it + return $newArray; +} + +/** + * Compress given data and encodes it into BASE64 to be stored in database with + * sqlQueryEscaped() + * + * @param $data Data to be compressed and encoded + * @return $data Compressed+encoded data + */ +function compress ($data) { + // Compress it + return base64_encode(gzcompress($data)); +} + +/** + * Decompress given data previously compressed with compress(). + * + * @param $data Data compressed with compress() + * @reurn $data Uncompressed data + */ +function decompress ($data) { + // Decompress it + return gzuncompress(base64_decode($data)); +} + +/** + * Converts given charset in given string to UTF-8 if not UTF-8. This function + * is currently limited to iconv(). + * + * @param $str String to convert charset in + * @param $charset Charset to convert from + * @return $str Converted string + */ +function convertCharsetToUtf8 ($str, $charset) { + // Is iconv() available? + if (!function_exists('iconv')) { + // Please make it sure + reportBug(__FUNCTION__, __LINE__, 'PHP function iconv() is currently required to do charset convertion.'); + } // END - if + + // Is the charset not UTF-8? + if (strtoupper($charset) != 'UTF-8') { + // Convert it to UTF-8 + $str = iconv(strtoupper($charset), 'UTF-8//TRANSLIT', $str); + } // END - if + + // Return converted string + return $str; +} + +// ---------------------------------------------------------------------------- +// "Translatation" functions for points_data table +// ---------------------------------------------------------------------------- + +// Translates generically some data into a target string +function translateGeneric ($messagePrefix, $data, $messageSuffix = '') { + // Is the method null or empty? + if (is_null($data)) { + // Is NULL + $data = 'NULL'; + } elseif (empty($data)) { + // Is empty (string) + $data = 'EMPTY'; + } // END - if + + // Default column name is unknown + $return = '{%message,' . $messagePrefix . '_UNKNOWN' . $messageSuffix . '=' . strtoupper($data) . '%}'; + + // Construct message id + $messageId = $messagePrefix . '_' . strtoupper($data) . $messageSuffix; + + // Is it there? + if (isMessageIdValid($messageId)) { + // Then use it as message string + $return = '{--' . $messageId . '--}'; + } // END - if + + // Return the column name + return $return; +} + +// Translates points subject to human-readable +function translatePointsSubject ($subject) { + // Remove any :x + $subject = removeDoubleDotFromSubject($subject); + + // Return it + return translateGeneric('POINTS_SUBJECT', $subject); +} + +// "Translates" given points account type +function translatePointsAccountType ($accountType) { + // Return it + return translateGeneric('POINTS_ACCOUNT_TYPE', $accountType); +} + +// "Translates" given points "locked mode" +function translatePointsLockedMode ($lockedMode) { + // Return it + return translateGeneric('POINTS_LOCKED_MODE', $lockedMode); +} + +// "Translates" given points payment method +function translatePointsPaymentMethod ($paymentMethod) { + // Return it + return translateGeneric('POINTS_PAYMENT_METHOD', $paymentMethod); +} + +// "Translates" given points account provider +function translatePointsAccountProvider ($accountProvider) { + // Return it + return translateGeneric('POINTS_ACCOUNT_PROVIDER', $accountProvider); +} + +// "Translates" given points notify recipient +function translatePointsNotifyRecipient ($notifyRecipient) { + // Return it + return translateGeneric('POINTS_NOTIFY_RECIPIENT', $notifyRecipient); +} + +// "Translates" given mode to a human-readable version +function translatePointsMode ($pointsMode) { + // Return it + return translateGeneric('POINTS_MODE', $pointsMode); +} + +// "Translates" task type to a human-readable version +function translateTaskType ($taskType) { + // Return it + return translateGeneric('ADMIN_TASK_TYPE', $taskType); +} + +// "Translates" task status to a human-readable version +function translateTaskStatus ($taskStatus) { + // Return it + return translateGeneric('ADMIN_TASK_STATUS', $taskStatus); +} + +/* + *----------------------------------------------------------------------------- + * Automatically re-created functions, all taken from user comments on + * www.php.net + *----------------------------------------------------------------------------- + */ +if (!function_exists('html_entity_decode')) { + // Taken from documentation on www.php.net + function html_entity_decode ($string) { + $trans_tbl = get_html_translation_table(HTML_ENTITIES); + $trans_tbl = array_flip($trans_tbl); + return strtr($string, $trans_tbl); + } +} // END - if + +// "Getter" for base path from theme +function getBasePathFromTheme ($theme) { + return sprintf('%stheme/%s/css/', getPath(), $theme); +} + +// Wrapper to check whether given theme is readable +function isThemeReadable ($theme) { + // Is there cache? + if (!isset($GLOBALS[__FUNCTION__][$theme])) { + // Determine it + $GLOBALS[__FUNCTION__][$theme] = (isIncludeReadable(sprintf('theme/%s/theme.php', $theme))); + } // END - if + + // Return cache + return $GLOBALS[__FUNCTION__][$theme]; +} + +// Checks whether a given PHP extension is loaded or can be loaded at runtime +// +// Supported OS: Windows, Linux, (Mac?) +function isPhpExtensionLoaded ($extension) { + // Is the extension loaded? + if (extension_loaded($extension)) { + // All fine + return TRUE; + } // END - if + + // Try to load the extension + return loadLibrary($extension); +} + +// Loads given library (aka. PHP extension) +function loadLibrary ($n, $f = NULL) { + // Is the actual function dl() available? (Not on all SAPIs since 5.3) + if (!is_callable('dl')) { + // Not callable + /* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'dl() is not callable for n=' . $n . ',f[' . gettype($f) . ']=' . $f); + return FALSE; + } // END - if + + // Try to load PHP library + return dl(((PHP_SHLIB_SUFFIX === 'dll') ? 'php_' : '') . ($f ? $f : $n) . '.' . PHP_SHLIB_SUFFIX); +} + +// "Translates" given PHP extension name into a readable version +function translatePhpExtension ($extension) { + // Return the language element + return '{--PHP_EXTENSION_' . strtoupper($extension) . '--}'; +} + +// Loads stylesheet files in different ways, depending on output mode +function loadStyleSheets () { + // Default styles + $stylesList = array( + 'general.css', + 'ajax.css', + ); + + // Add stylesheet for installation + if ((isInstaller())) { + array_push($stylesList, 'install.css'); + } // END - if + + // When no CSS output-mode is set, set it to file-output + if (!isConfigEntrySet('css_php')) { + setConfigEntry('css_php', 'FILE'); + } // END - if + + // Get current theme + $currentTheme = getCurrentTheme(); + + // Has the theme changed? + if ($currentTheme != getSession('mailer_theme')) { + // Then set it + setMailerTheme($currentTheme); + } // END - if + + // Output CSS files or content or link to css.php ? + if ((isCssOutputMode()) || (getCssPhp() == 'DIRECT')) { + // Load CSS files + $stylesList = merge_array($stylesList, getExtensionCssFiles()); + + // Generate base path + $basePath = getBasePathFromTheme($currentTheme); + + // Output inclusion lines + foreach ($stylesList as $value) { + // Only include found CSS files (to reduce 404 requests) + $FQFN = $basePath . '/' . $value; + + // Do include only existing files and whose are not empty + if ((isFileReadable($FQFN)) && (filesize($FQFN) > 0)) { + switch (getCssPhp()) { + case 'DIRECT': // Just link them (unsupported) + $GLOBALS['__page_header'] .= ''; + break; + + case 'FILE': // Output contents + $GLOBALS['__page_header'] .= removeDeprecatedComment(readFromFile($FQFN)); + break; + + default: // Invalid mode! + reportBug(__FILE__, __LINE__, sprintf('Invalid css_php value %s detected.', getCssPhp())); + break; + } // END - switch + } // END - if + } // END - foreach + } elseif ((isHtmlOutputMode()) || (getCssPhp() == 'INLINE')) { + // Load CSS files + $stylesList = merge_array($stylesList, getExtensionCssFiles()); + + // Generate base path + $basePath = getBasePathFromTheme(getCurrentTheme()); + + // Output inclusion lines + $OUT = ''; + foreach ($stylesList as $value) { + // Only include found CSS files (to reduce 404 requests) + $FQFN = $basePath . '/' . $value; + + // Do include only existing files and whose are not empty + if ((isFileReadable($FQFN)) && (filesize($FQFN) > 0)) { + // Load CSS content + $OUT .= readFromFile($FQFN); + } // END - if + } // END - foreach + + // Load template + $GLOBALS['__page_header'] .= loadTemplate('css_inline', TRUE, removeDeprecatedComment($OUT)); + } else { + // Now we load all CSS files from css.php! + $OUT = ''; + } +} + +// [EOF] +?> diff --git a/inc/handler.php b/inc/handler.php deleted file mode 100644 index d21b68aa2e..0000000000 --- a/inc/handler.php +++ /dev/null @@ -1,70 +0,0 @@ - diff --git a/inc/init.php b/inc/init.php new file mode 100644 index 0000000000..c46410b0c2 --- /dev/null +++ b/inc/init.php @@ -0,0 +1,69 @@ + diff --git a/inc/install-functions.php b/inc/install-functions.php index c62b260723..9b4b42403f 100644 --- a/inc/install-functions.php +++ b/inc/install-functions.php @@ -76,6 +76,70 @@ function initInstaller () { setConfigEntry('verbose_sql' , 'N'); } +// Installer bootstrap +function doInstallerBootstrap () { + // Default output is 'direct' for HTML output + setConfigEntry('OUTPUT_MODE', 'direct'); + + // This hack prevents a backtrace in CSS output + if (isCssOutputMode()) { + // Problem with config so set output mode + setConfigEntry('OUTPUT_MODE', 'render'); + } // END - if + + // Debug message + /* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'isAjaxOutputMode()=' . intval(isAjaxOutputMode()) . ',isSessionVariableSet(database_extension)=' . intval(isSessionVariableSet('database_extension'))); + + // Is it AJAX call and database_extension is set? + if ((isAjaxOutputMode()) && (isSessionVariableSet('database_extension'))) { + // Then take it from session + /* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'Setting _DB_TYPE from session;database_extension=' . getSession('database_extension')); + setConfigEntry('_DB_TYPE', getSession('database_extension')); + } elseif (isPhpExtensionLoaded('mysqli')) { + // Debug message + /* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'Setting _DB_TYPE to MySQLi ...'); + + // Set (old) default + setConfigEntry('_DB_TYPE', 'mysqli'); + } elseif (isPhpExtensionLoaded('mysql')) { + // Debug message + /* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'Setting _DB_TYPE to default (mysql) ...'); + + // Set (old) default + setConfigEntry('_DB_TYPE', 'mysql'); + } else { + // Opps, cannot detect it? + reportBug(__FUNCTION__, __LINE__, 'Cannot detect mysql/mysqli. Please fix your setup.'); + } + + // Set link as down + unsetSqlLinkUp(__FUNCTION__, __LINE__); + + // Load database layer here + loadIncludeOnce('inc/db/lib.php'); + + // Init message system + initMessages(); + + // Init session + initSession(); + + // Include more + foreach (array('databases', 'install-functions', 'load_config', 'load_cache') as $inc) { + // Load include file + loadIncludeOnce('inc/' . $inc . '.php'); + } // END - foreach + + // Init installer + initInstaller(); + + // Check whether we are in installation routine + if ((!isInstalling()) && (!isCssOutputMode()) && (!isRawOutputMode())) { + // Redirect to the URL + redirectToUrl('install.php'); + } // END - if +} + // Write the local config-local.php file from "template" function doInstallWriteLocalConfigurationFile ($path, $url, $title, $slogan, $email, $noPassword, $writeFooter, $backLink, $databaseHost, $databaseName, $databaseLogin, $databasePassword, $databasePrefix, $tableType, $databaseExtension, $smtpHost, $smtpUser, $smtpPassword) { // Copy the config template and verify it diff --git a/inc/install-inc.php b/inc/install-inc.php index 5483d4fd83..ab96d7b41e 100644 --- a/inc/install-inc.php +++ b/inc/install-inc.php @@ -6,9 +6,9 @@ * -------------------------------------------------------------------- * * File : install-inc.php * * -------------------------------------------------------------------- * - * Short description : Functions for installation procedure * + * Short description : Initial stuff for plain (old) installer * * -------------------------------------------------------------------- * - * Kurzbeschreibung : Funktionen fuer die Installationsroutine * + * Kurzbeschreibung : Initiale Dinge fuer alten Installer * * -------------------------------------------------------------------- * * Copyright (c) 2003 - 2009 by Roland Haeder * * Copyright (c) 2009 - 2016 by Mailer Developer Team * diff --git a/inc/mysql-connect.php b/inc/mysql-connect.php index 513b391e66..f551ef47b7 100644 --- a/inc/mysql-connect.php +++ b/inc/mysql-connect.php @@ -1,169 +1,3 @@ diff --git a/inc/mysql-manager.php b/inc/mysql-manager.php deleted file mode 100644 index d41930089f..0000000000 --- a/inc/mysql-manager.php +++ /dev/null @@ -1,2557 +0,0 @@ - $accessLevel, 'type' => $type, 'search' => $search, 'prefix' => $prefix, 'link_add' => $linkAdd, 'content' => '', 'add' => $ADD)); - - // Add pre-content - $prefix = $ret['content']; - - // Add default content - $prefix .= '
{--YOU_ARE_HERE--} Home'; - } elseif ($return === FALSE) { - // Count depth - $GLOBALS['nav_depth']++; - } - - // Add arrow - $prefix .= ' -> '; - - // We need to remove .php and the end - if (substr($search, -4, 4) == '.php') { - // Remove the .php - $search = substr($search, 0, -4); - } // END - if - - // Is ext-sql_patches installed? - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'isExtensionInstalledAndNewer()=' . intval(isExtensionInstalledAndNewer('sql_patches', '0.2.3')) . ',youre_here=' . getYoureHere() . ',isAdmin()=' . intval(isAdmin()) . ',modCheck=' . $modCheck); - if (((isExtensionInstalledAndNewer('sql_patches', '0.2.3')) && (isYoureHereEnabled())) || ((isAdmin()) && ($modCheck == 'admin'))) { - // Output HTML code - $OUT = $prefix . '' . getTitleFromMenu($accessLevel, $search, $type, $ADD) . ''; - - // Can we close the you-are-here navigation? - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'type=' . $type . ',getWhat()=' . getWhat() . ',accessLevel=' . $accessLevel . ',isWhatSet()=' . intval(isWhatSet())); - if (($type == 'what') || (($type == 'action') && ((!isWhatSet()) || (($accessLevel == 'admin') && (getWhat() == 'welcome'))))) { - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'type=' . $type); - // Add closing div and br-tag - $GLOBALS['nav_depth'] = '0'; - - // Run the post-filter chain - $ret = runFilterChain('post_youhere_line', array('access_level' => $accessLevel, 'type' => $type, 'search' => $search, 'prefix' => $prefix, 'link_add' => $linkAdd, 'content' => $OUT, 'add' => $ADD)); - - // Get content from filter back - $OUT = $ret['content']; - - // Close div-tag, so not the filters have to do it - $OUT .= '
'; - } // END - if - } // END - if - - // Return or output HTML code? - if ($return === TRUE) { - // Return HTML code - return $OUT; - } else { - // Output HTML code here - outputHtml($OUT); - } -} - -// Adds a menu (mode = guest/member/admin/sponsor) to output -function addMenu ($mode, $action, $what) { - // Init some variables - $main_cnt = '0'; - - // is the menu action valid? - if (!isMenuActionValid($mode, $action, $what, TRUE)) { - return getCode('MENU_NOT_VALID'); - } // END - if - - // Non-admin shall not see all menus - $ADD = " AND `visible`='Y' AND `locked`='N'"; - if (isAdmin()) { - // Is admin, so make all visible - $ADD = ''; - } // END - if - - // Load SQL data and add the menu to the output stream... - $result_main = sqlQueryEscaped("SELECT - `title`, - `what`, - `action`, - `visible`, - `locked` -FROM - `{?_MYSQL_PREFIX?}_%s_menu` -WHERE - (`what`='' OR `what` IS NULL) - ".$ADD." -ORDER BY - `sort` ASC", - array($mode), __FUNCTION__, __LINE__); - - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'main_cnt=' . $main_cnt . ',getWhat()=' . getWhat()); - if (!ifSqlHasZeroNumRows($result_main)) { - // There are menus available, so we simply display them... :) - $GLOBALS['rows'] = ''; - while ($content = sqlFetchArray($result_main)) { - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'main_cnt=' . $main_cnt . ',action=' . $content['action'] . ',getWhat()=' . getWhat()); - // Disable the block-mode - enableBlockMode(FALSE); - - // Load menu header template - $GLOBALS['rows'] .= loadTemplate($mode . '_menu_title', TRUE, $content); - - // Sub menu - $result_sub = sqlQueryEscaped("SELECT - `title` AS `sub_title`, - `what` AS `sub_what`, - `visible` AS `sub_visible`, - `locked` AS `sub_locked` -FROM - `{?_MYSQL_PREFIX?}_%s_menu` -WHERE - `action`='%s' AND - `what` != '' AND - `what` IS NOT NULL - " . $ADD . " -ORDER BY - `sort` ASC", - array( - $mode, - $content['action'] - ), __FUNCTION__, __LINE__); - - // Are there some entries? - if (!ifSqlHasZeroNumRows($result_sub)) { - // Init counter - $count = '0'; - - // Load all sub menus - while ($content2 = sqlFetchArray($result_sub)) { - // Merge both arrays in one - $content = merge_array($content, $content2); - - // Init content - $OUT = ''; - - // Full file name for checking menu - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'sub_what=' . $content['sub_what']); - $inc = sprintf('inc/modules/%s/what-%s.php', $mode, $content['sub_what']); - if (isIncludeReadable($inc)) { - // Mark currently selected menu - open - if ((!empty($what)) && (($what == $content['sub_what']))) { - $OUT = ''; - } // END - if - - // Is ext-sql_patches up-to-date, and display_home_in_index is Y? - if ((getModule() == 'index') && (isExtensionInstalledAndNewer('sql_patches', '0.8.3')) && (isDisplayHomeInIndexEnabled()) && ($content['sub_what'] == getIndexHome())) { - // Use index.php as link - $OUT .= ''; - } else { - // Regular navigation link - $OUT .= ''; - } - } else { - // Not found - open - $OUT .= ''; - } - - // Menu title - $OUT .= '{?menu_blur_spacer?}' . $content['sub_title']; - - if (isIncludeReadable($inc)) { - $OUT .= ''; - - // Mark currently selected menu - close - if ((!empty($what)) && (($what == $content['sub_what']))) { - $OUT .= ''; - } // END - if - } else { - // Not found - close - $OUT .= ''; - } - - // Cunt it up - $count++; - - // Rewrite array - $content = array( - 'menu' => $OUT, - 'what' => $content['sub_what'], - 'visible' => $content['sub_visible'], - 'locked' => $content['locked'], - ); - - // Add regular menu row or bottom row? - if ($count < sqlNumRows($result_sub)) { - $GLOBALS['rows'] .= loadTemplate($mode . '_menu_row', TRUE, $content); - } else { - $GLOBALS['rows'] .= loadTemplate($mode . '_menu_bottom', TRUE, $content); - } - } // END - while - } else { - // This is a menu block... ;-) - enableBlockMode(); - - // Load menu block - $INC = sprintf('inc/modules/%s/action-%s.php', $mode, $content['action']); - if (isFileReadable($INC)) { - // Load include file - if ((!isExtensionActive($content['action'])) || ($content['action'] == 'online')) $GLOBALS['rows'] .= loadTemplate('menu_what_begin', TRUE, $mode); - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'main_cnt=' . $main_cnt . ',action=' . $content['action'] . ',getWhat()=' . getWhat()); - loadInclude($INC); - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'main_cnt=' . $main_cnt . ',action=' . $content['action'] . ',getWhat()=' . getWhat()); - if ((!isExtensionActive($content['action'])) || ($content['action'] == 'online')) $GLOBALS['rows'] .= loadTemplate('menu_what_end', TRUE, $mode); - } - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'main_cnt=' . $main_cnt . ',action=' . $content['action'] . ',getWhat()=' . getWhat()); - } - - // Free result - sqlFreeResult($result_sub); - - // Count one up - $main_cnt++; - - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'main_cnt=' . $main_cnt . ',getWhat()=' . getWhat()); - if (sqlNumRows($result_main) > $main_cnt) { - // Add separator - $GLOBALS['rows'] .= loadTemplate('menu_separator', TRUE, $mode); - - // Prepare filter data array - $filterData = array( - 'output' => '', - 'exclusive' => FALSE, - 'action' => $action, - 'mode' => $mode, - ); - - // Run filter chain - $filterData = runFilterChain($mode . '_menu_advert', $filterData); - - // Add content output - $GLOBALS['rows'] .= $filterData['output']; - } // END - if - } // END - while - - // Free memory - sqlFreeResult($result_main); - - // Prepare filter data array - $filterData = array( - 'output' => '', - 'exclusive' => FALSE, - 'action' => $action, - 'mode' => $mode, - ); - - // Run filter chain - $filterData = runFilterChain($mode . '_menu_advert_end', $filterData); - - // Add content output - $GLOBALS['rows'] .= $filterData['output']; - - // Prepare data - $content = array( - 'rows' => $GLOBALS['rows'], - 'menu_mode' => $mode - ); - - // Load main template - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'main_cnt=' . $main_cnt . ',getWhat()=' . getWhat()); - loadTemplate('menu_table', FALSE, $content); - } // END - if -} - -// Checks whether the current user is a member -function isMember () { - // By default no member - $ret = FALSE; - - // Fix missing 'last_online' array, damn stupid code :((( - // @TODO Try to rewrite this to one or more functions - if ((!isset($GLOBALS['last_online'])) || (!is_array($GLOBALS['last_online']))) { - $GLOBALS['last_online'] = array(); - } // END - if - - // Is the cache entry there? - if (isset($GLOBALS[__FUNCTION__])) { - // Then return it - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'CACHED! (' . intval($GLOBALS[__FUNCTION__]) . ')'); - return $GLOBALS[__FUNCTION__]; - } elseif ((!isSessionVariableSet('userid')) || (!isSessionVariableSet('u_hash'))) { - // Destroy any existing user session data - destroyMemberSession(); - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'No member set in cookie/session.'); - - // Abort further processing - return FALSE; - } - - // Get userid secured from session - setMemberId(getSession('userid')); - - // ... and set it as currently handled user id - setCurrentUserId(getMemberId()); - - // Init user data array - initUserData(); - - // Fix "deleted" cookies - fixDeletedCookies(array('userid', 'u_hash')); - - // Are cookies set and can the member data be loaded? - if ((isMemberIdSet()) && (isSessionVariableSet('u_hash')) && (fetchUserData(getMemberId()) === TRUE)) { - // Validate password by created the difference of it and the secret key - $valPass = encodeHashForCookie(getUserData('password')); - - // So did we now have valid data and an unlocked user? - if ((getUserData('status') == 'CONFIRMED') && ($valPass == getSession('u_hash'))) { - // Transfer last module and online time - $GLOBALS['last_online']['module'] = getUserData(getUserLastWhatName()); - $GLOBALS['last_online']['online'] = getUserData('last_online'); - - // Account is confirmed and all cookie data is valid so he is definely logged in! :-) - $ret = TRUE; - } // END - if - } // END - if - - // Is $ret still false? - if ($ret === FALSE) { - // Yes, so destroy the session - destroyMemberSession(); - } // END - if - - // Cache status - $GLOBALS[__FUNCTION__] = $ret; - - // Return status - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'ret=' . intval($ret)); - return $ret; -} - -// Fetch user data for given user id -function fetchUserData ($value, $column = 'userid') { - // Extension ext-user must be there at any case - if (!isExtensionActive('user')) { - // Absent ext-user is really not good - return FALSE; - } elseif (is_null($value)) { - // This shall never happen, so please report it - reportBug(__FUNCTION__, __LINE__, 'value=NULL,column=' . $column . ' - value can never be NULL'); - } - - // If we should look for userid secure&set it here - if (substr($column, -2, 2) == 'id') { - // Secure userid - $value = bigintval($value); - - // Don't look for invalid userids... - if (!isValidId($value)) { - // Invalid, so abort here - reportBug(__FUNCTION__, __LINE__, 'User id ' . $value . ' is invalid.'); - } // END - if - - // Unset cached values if found and different - if ((isCurrentUserIdSet()) && (getCurrentUserId() != $value)) { - // Unset it - unsetCurrentUserId(); - } elseif (isValidUserData()) { - // Use cache, so it is fine - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'value=' . $value . ' is valid, using cache #1'); - return TRUE; - } // END - if - } elseif (isValidUserData()) { - // Using cache is fine - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'value=' . $value . ' is valid, using cache #2'); - return TRUE; - } - - // By default none was found - $found = FALSE; - - // Extra SQL statements - $ADD = runFilterChain('convert_user_data_columns', ' '); - - // Query for the user - $result = sqlQueryEscaped("SELECT *" . $ADD . " FROM `{?_MYSQL_PREFIX?}_user_data` WHERE `%s`='%s' LIMIT 1", - array( - $column, - $value - ), __FUNCTION__, __LINE__); - - // Is there a record? - if (sqlNumRows($result) == 1) { - // Load data from cookies - $data = sqlFetchArray($result); - - // Set the userid for later use - setCurrentUserId($data['userid']); - - // And cache the data for this userid - $GLOBALS['user_data'][getCurrentUserId()] = $data; - - // Rewrite 'last_failure' if found and ext-user has version >= 0.3.7 - if ((isExtensionInstalledAndNewer('user', '0.3.7')) && (isset($GLOBALS['user_data'][getCurrentUserId()]['last_failure']))) { - // Backup the raw one and zero it - $GLOBALS['user_data'][getCurrentUserId()]['last_failure_raw'] = $GLOBALS['user_data'][getCurrentUserId()]['last_failure']; - $GLOBALS['user_data'][getCurrentUserId()]['last_failure'] = NULL; - - // Is it not zero? - if (!is_null($GLOBALS['user_data'][getCurrentUserId()]['last_failure_raw'])) { - // Seperate data/time - $array = explode(' ', $GLOBALS['user_data'][getCurrentUserId()]['last_failure_raw']); - - // Seperate data and time again - $array['date'] = explode('-', $array[0]); - $array['time'] = explode(':', $array[1]); - - // Now pass it to mktime() - $GLOBALS['user_data'][getCurrentUserId()]['last_failure'] = mktime( - $array['time'][0], - $array['time'][1], - $array['time'][2], - $array['date'][1], - $array['date'][2], - $array['date'][0] - ); - } // END - if - } // END - if - - // Found, but valid? - $found = isValidUserData(); - } // END - if - - // Free memory - sqlFreeResult($result); - - // Return result - return $found; -} - -/* - * Checks whether the current session bears a valid admin id and password hash. - * - * This patched function will reduce many SELECT queries for the current admin - * login. - */ -function isAdmin () { - //* DIE: */ reportBug(__FUNCTION__, __LINE__, 'CALLED!'); - //* NOISY-DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'CALLED!'); - - // Is there cache? - if (isset($GLOBALS[__FUNCTION__])) { - // Return it - //* NOISY-DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'isAdmin()=' . intval($GLOBALS[__FUNCTION__]) . ' - CACHED!'); - return $GLOBALS[__FUNCTION__]; - } // END - if - - if ((isInstaller()) || (!isAdminRegistered())) { - // No admin in installation phase! - $GLOBALS[__FUNCTION__] = FALSE; - //* NOISY-DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'isAdmin()=' . intval($GLOBALS[__FUNCTION__]) . ' - INSTALLER!'); - return FALSE; - } // END - if - - // Init variables - $ret = FALSE; - $adminId = '0'; - $passwordFromCookie = ''; - - // If admin login is not given take current from cookies... - //* NOISY-DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'isSessionVariableSet(admin_id)=' . intval(isSessionVariableSet('admin_id')) . ',isSessionVariableSet(admin_md5)=' . intval(isSessionVariableSet('admin_md5'))); - if ((isSessionVariableSet('admin_id')) && (isSessionVariableSet('admin_md5'))) { - // Debug message - //* NOISY-DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'Getting admin data from session ...'); - - // Get admin login and password from session/cookies - $adminId = getCurrentAdminId(); - $passwordFromCookie = getAdminMd5(); - } // END - if - //* NOISY-DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'adminId=' . $adminId . ',passwordFromCookie=' . $passwordFromCookie); - - // Abort if admin id is zero - if (($adminId == '0') || (empty($passwordFromCookie))) { - // A very noisy debug message ... - //* NOISY-DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'Current adminId is zero. isSessionVariableSet(admin_id)=' . intval(isSessionVariableSet('admin_id')) . ',isSessionVariableSet(admin_md5)=' . intval(isSessionVariableSet('admin_md5'))); - - // Abort here now - $GLOBALS[__FUNCTION__] = FALSE; - return FALSE; - } // END - if - - // Init it with failed - $GLOBALS[__FUNCTION__] = FALSE; - - // Search in array for entry - if (isset($GLOBALS['admin_hash'])) { - // Use cached string - //* NOISY-DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'Using admin_hash=' . $GLOBALS['admin_hash'] . ' from cache'); - } elseif ((!empty($adminId)) && (!empty($passwordFromCookie)) && (isAdminHashSet($adminId) === TRUE)) { - // Get admin hash and hash it - $GLOBALS['admin_hash'] = encodeHashForCookie(getAdminHash($adminId)); - //* NOISY-DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'valPass=' . $GLOBALS['admin_hash']); - - // Count cache hits - incrementStatsEntry('cache_hits'); - } elseif ((!empty($adminId)) && ((!isExtensionActive('cache')) || (isAdminHashSet($adminId) === FALSE))) { - // Get admin hash and hash it - $GLOBALS['admin_hash'] = encodeHashForCookie(getAdminHash($adminId)); - //* NOISY-DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'valPass=' . $GLOBALS['admin_hash']); - } - - // Check if password is valid - //* NOISY-DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, '(' . $GLOBALS['admin_hash'] . '==' . $passwordFromCookie . ')='.intval($GLOBALS['admin_hash'] == $passwordFromCookie)); - $GLOBALS[__FUNCTION__] = ((!empty($GLOBALS['admin_hash'])) && ($GLOBALS['admin_hash'] == $passwordFromCookie)); - - // Return result of comparision - //* NOISY-DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'isAdmin()=' . intval($GLOBALS[__FUNCTION__])); - return $GLOBALS[__FUNCTION__]; -} - -// Generates a list of "max receiveable emails per day" -function addMaxReceiveList ($mode, $default = '') { - $OUT = ''; - $result = FALSE; - - switch ($mode) { - case 'guest': - // Guests (in the registration form) are not allowed to select 0 mails per day. - $result = sqlQuery('SELECT `value`, `comment` FROM `{?_MYSQL_PREFIX?}_max_receive` WHERE `value` > 0 ORDER BY `value` ASC', - __FUNCTION__, __LINE__); - break; - - case 'admin': - case 'member': - // Members are allowed to set to zero mails per day (we will change this soon!) - $result = sqlQuery('SELECT `value`, `comment` FROM `{?_MYSQL_PREFIX?}_max_receive` ORDER BY `value` ASC', - __FUNCTION__, __LINE__); - break; - - default: // Invalid! - logDebugMessage(__FUNCTION__, __LINE__, sprintf('Invalid mode %s detected.', $mode)); - break; - } - - // Some entries are found? - if (!ifSqlHasZeroNumRows($result)) { - $OUT = ''; - while ($content = sqlFetchArray($result)) { - $OUT .= ' '; - } - - // Free memory - sqlFreeResult($result); - } - - // Return - hopefully - the requested data - return $ret; -} - -// Deletes a user account with given reason -function deleteUserAccount ($userid, $reason) { - // Init points - $data['points'] = '0'; - - // Search for the points and user data - $result = sqlQueryEscaped("SELECT - (SUM(`p`.`points`) - `d`.`used_points`) AS `points` -FROM - `{?_MYSQL_PREFIX?}_user_points` AS `p` -LEFT JOIN - `{?_MYSQL_PREFIX?}_user_data` AS `d` -ON - `p`.`userid`=`d`.`userid` -WHERE - `p`.`userid`=%s -LIMIT 1", - array(bigintval($userid)), __FUNCTION__, __LINE__); - - // Is there an entry? - if (sqlNumRows($result) == 1) { - // Save his points to add them to the jackpot - $data = sqlFetchArray($result); - - // Delete points entries as well - // @TODO Rewrite these lines to a filter - sqlQueryEscaped("DELETE LOW_PRIORITY FROM `{?_MYSQL_PREFIX?}_user_points` WHERE `userid`=%s", - array(bigintval($userid)), __FUNCTION__, __LINE__); - - // Update mediadata as well - if (isExtensionInstalledAndNewer('mediadata', '0.0.4')) { - // Update database - updateMediadataEntry(array('total_points'), 'sub', $data['points']); - } // END - if - - // Now, when we have all his points adds them do the jackpot! - if (isExtensionActive('jackpot')) { - addPointsToJackpot($data['points']); - } // END - if - } // END - if - - // Free the result - sqlFreeResult($result); - - // Delete category selections as well... - sqlQueryEscaped("DELETE LOW_PRIORITY FROM `{?_MYSQL_PREFIX?}_user_cats` WHERE `userid`=%s", - array(bigintval($userid)), __FUNCTION__, __LINE__); - - // Remove from rallye if found - // @TODO Rewrite this to a filter - if (isExtensionActive('rallye')) { - sqlQueryEscaped("DELETE LOW_PRIORITY FROM `{?_MYSQL_PREFIX?}_rallye_users` WHERE `userid`=%s", - array(bigintval($userid)), __FUNCTION__, __LINE__); - } // END - if - - // Add reason and translate points - $data['text'] = $reason; - - // Now a mail to the user and that's all... - $message = loadEmailTemplate('member_user_deleted', $data, $userid); - sendEmail($userid, '{--ADMIN_DELETE_ACCOUNT--}', $message); - - // Ok, delete the account! - sqlQueryEscaped("DELETE LOW_PRIORITY FROM `{?_MYSQL_PREFIX?}_user_data` WHERE `userid`=%s LIMIT 1", array(bigintval($userid)), __FUNCTION__, __LINE__); -} - -// Gets the matching what name from module -function getWhatFromModule ($modCheck) { - // Is the request element set? - if (isGetRequestElementSet('what')) { - // Then return this! - return getRequestElement('what'); - } // END - if - - // Default is empty - $what = ''; - - // Check on given module - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'modCheck=' . $modCheck); - switch ($modCheck) { - case 'index': // Guest area - // Is ext-sql_patches installed and newer than 0.0.5? - if (isExtensionInstalledAndNewer('sql_patches', '0.0.5')) { - // Use it from config - $what = getIndexHome(); - } else { - // Use default 'welcome' - $what = 'welcome'; - } - break; - - default: // Default for all other menus (getIndexHome() is for index module only) - $what = 'welcome'; - break; - } // END - switch - - // Return what value - return $what; -} - -// Returns HTML code with an option list of all categories -function generateCategoryOptionsList ($mode, $userid = NULL) { - // Prepare WHERE statement - $whereStatement = " WHERE `visible`='Y'"; - if (isAdmin()) $whereStatement = ''; - - // Initialize array... - $categories = array( - 'id' => array(), - 'name' => array(), - 'userids' => array() - ); - - // Get categories - $result = sqlQuery('SELECT - `id`, - `cat` -FROM - `{?_MYSQL_PREFIX?}_cats` -' . $whereStatement . ' -ORDER BY - `sort` ASC', - __FUNCTION__, __LINE__); - - // Are there entries? - if (!ifSqlHasZeroNumRows($result)) { - // ... and begin loading stuff - while ($content = sqlFetchArray($result)) { - // Transfer some data - $categories['id'][] = $content['id']; - array_push($categories['name'], $content['cat']); - - // Check which users are in this category - $result_userids = sqlQueryEscaped("SELECT `userid` FROM `{?_MYSQL_PREFIX?}_user_cats` WHERE `cat_id`=%s AND `userid` != %s ORDER BY `userid` ASC", - array( - bigintval($content['id']), - convertNullToZero($userid) - ), __FUNCTION__, __LINE__); - - // Init count - $userid_cnt = '0'; - - // Start adding all - while ($data = sqlFetchArray($result_userids)) { - // Add user count - $userid_cnt += countSumTotalData($data['userid'], 'user_data', 'userid', 'userid', TRUE, runFilterChain('user_exclusion_sql', " AND `status`='CONFIRMED' AND `receive_mails` > 0")); - } // END - while - - // Free memory - sqlFreeResult($result_userids); - - // Add counter - array_push($categories['userids'], $userid_cnt); - } // END - while - - // Free memory - sqlFreeResult($result); - - // Generate options - $OUT = ''; - foreach ($categories['id'] as $key => $value) { - $OUT .= ' '; - } // END - foreach - } else { - // No cateogries are defined yet - $OUT = ''; - } - - // Return HTML code - return $OUT; -} - -// Add bonus mail to queue -function addBonusMailToQueue ($subject, $text, $receiverList, $points, $seconds, $url, $categoryId, $mode='normal', $receiver=0) { - // Is admin or bonus extension there? - if (!isAdmin()) { - // Abort here - return FALSE; - } elseif (!isExtensionActive('bonus')) { - // Abort here - return FALSE; - } - - // Calculcate target sent - $target = countSelection(explode(';', $receiverList)); - - // Receiver is zero? - if ($receiver == '0') { - // Then auto-fix it - $receiver = $target; - } // END - if - - // HTML extension active? - if (isExtensionActive('html_mail')) { - // Add HTML mail - sqlQueryEscaped("INSERT INTO `{?_MYSQL_PREFIX?}_bonus` ( - `subject`, - `text`, - `receivers`, - `points`, - `time`, - `data_type`, - `timestamp`, - `url`, - `cat_id`, - `target_send`, - `mails_sent`, - `html_msg` -) VALUES ( - '%s', - '%s', - '%s', - %s, - %s, - 'NEW', - UNIX_TIMESTAMP(), - '%s', - %s, - %s, - %s, - '%s' -)", - array( - $subject, - $text, - $receiverList, - $points, - bigintval($seconds), - $url, - bigintval($categoryId), - $target, - bigintval($receiver), - convertBooleanToYesNo($mode == 'html') - ), __FUNCTION__, __LINE__); - } else { - // Add regular mail - sqlQueryEscaped("INSERT INTO `{?_MYSQL_PREFIX?}_bonus` ( - `subject`, - `text`, - `receivers`, - `points`, - `time`, - `data_type`, - `timestamp`, - `url`, - `cat_id`, - `target_send`, - `mails_sent` -) VALUES ( - '%s', - '%s', - '%s', - %s, - %s, - 'NEW', - UNIX_TIMESTAMP(), - '%s', - %s, - %s, - %s -)", - array( - $subject, - $text, - $receiverList, - $points, - bigintval($seconds), - $url, - bigintval($categoryId), - $target, - bigintval($receiver), - ), __FUNCTION__, __LINE__); - } -} - -// Generate a receiver list for given category and maximum receivers -function generateReceiverList ($categoryId, $receiver, $mode = '') { - // Init variables - $extraColumns = ''; - $receiverList = ''; - $result = FALSE; - - // Secure data - $categoryId = bigintval($categoryId); - $receiver = bigintval($receiver); - - // Is the receiver zero and mode set? - if (($receiver == '0') && (!empty($mode))) { - // Auto-fix receiver maximum - $receiver = getTotalReceivers($mode); - } // END - if - - // Exclude (maybe exclude) testers - $addWhere = runFilterChain('user_exclusion_sql', ' '); - - // Category given? - if (isValidId($categoryId)) { - // Select category - $extraColumns = "LEFT JOIN `{?_MYSQL_PREFIX?}_user_cats` AS `c` ON `d`.`userid`=`c`.`userid`"; - $addWhere = sprintf(' AND `c`.`cat_id`=%s', $categoryId); - } // END - if - - // Exclude users in holiday? - if (isExtensionInstalledAndNewer('holiday', '0.1.3')) { - // Add something for the holiday extension - $addWhere .= " AND `d`.`holiday_active`='N'"; - } // END - if - - // Run query - $result = sqlQueryEscaped("SELECT - `d`.`userid` -FROM - `{?_MYSQL_PREFIX?}_user_data` AS `d` - " . $extraColumns . " -WHERE - `d`.`status`='CONFIRMED' - " . $addWhere . " -ORDER BY - `d`.`{?order_select?}` {?order_mode?} -LIMIT %s", - array( - $receiver - ), __FUNCTION__, __LINE__); - - // Entries found? - if ((sqlNumRows($result) >= $receiver) && ($receiver > 0)) { - // Load all entries - while ($content = sqlFetchArray($result)) { - // Add receiver when not empty - if (!empty($content['userid'])) { - $receiverList .= $content['userid'] . ';'; - } // END - if - } // END - while - - // Free memory - sqlFreeResult($result); - - // Remove trailing semicolon - $receiverList = substr($receiverList, 0, -1); - } // END - if - - // Return list - return $receiverList; -} - -// Recuce the amount of received emails for the receipients for given email -function reduceRecipientReceivedMails ($column, $id, $count) { - // Search for mail in database - $result = sqlQueryEscaped("SELECT * FROM `{?_MYSQL_PREFIX?}_user_links` WHERE `%s`=%s ORDER BY `userid` ASC LIMIT %s", - array( - $column, - bigintval($id), - $count - ), __FUNCTION__, __LINE__ - ); - - // Are there entries? - if (!ifSqlHasZeroNumRows($result)) { - // Now load all userids for one big query! - $userids = array(); - while ($data = sqlFetchArray($result)) { - // By default reduce and found no emails - $num = 0; - - // We must now look if he has already confirmed this mail, so might sound double, but it may resolve problems - // @TODO Rewrite this to a filter - if ((isset($data['stats_id'])) && (isValidId($data['stats_id']))) { - // User email - $num = countSumTotalData($data['userid'], 'user_stats_data', 'id', 'userid', TRUE, sprintf(" AND `stats_type`='mailid' AND `stats_data`=%s", bigintval($data['stats_id']))); - } elseif ((isset($data['bonus_id'])) && (isValidId($data['bonus_id']))) { - // Bonus mail - $num = countSumTotalData($data['userid'], 'user_stats_data', 'id', 'userid', TRUE, sprintf(" AND `stats_type`='bonusid' AND `stats_data`=%s", bigintval($data['bonus_id']))); - } - - // Reduce this users total received emails? - if ($num === 0) { - $userids[$data['userid']] = $data['userid']; - } // END - if - } // END - while - - if (isFilledArray($userids)) { - // Now update all user accounts - sqlQueryEscaped("UPDATE `{?_MYSQL_PREFIX?}_user_data` SET `emails_received`=`emails_received`-1 WHERE `userid` IN (%s) LIMIT %s", - array( - implode(',', $userids), - count($userids) - ), __FUNCTION__, __LINE__); - } else { - // Nothing deleted - displayMessage('{%message,ADMIN_MAIL_NOTHING_DELETED=' . $id . '%}'); - } - } // END - if - - // Free result - sqlFreeResult($result); -} - -// Creates a new task -function createNewTask ($subject, $notes, $taskType, $userid = NULL, $adminId = NULL, $strip = TRUE) { - // Insert the task data into the database - sqlQueryEscaped("INSERT INTO `{?_MYSQL_PREFIX?}_task_system` (`assigned_admin`, `userid`, `status`, `task_type`, `subject`, `text`, `task_created`) VALUES (%s, %s, 'NEW', '%s', '%s', '%s', UNIX_TIMESTAMP())", - array( - convertZeroToNull($adminId), - convertZeroToNull($userid), - $taskType, - $subject, - $notes - ), __FUNCTION__, __LINE__, TRUE, $strip); - - // Return insert id which is the task id - return getSqlInsertId(); -} - -// Updates last module / online time -function updateLastActivity ($userid) { - // Is 'what' set? - if (isWhatSet()) { - // Run the update query - sqlQueryEscaped("UPDATE - `{?_MYSQL_PREFIX?}_user_data` -SET - `{%%pipe,getUserLastWhatName%%}`='{%%pipe,getWhat%%}', - `last_online`=UNIX_TIMESTAMP(), - `REMOTE_ADDR`='{%%pipe,detectRemoteAddr%%}' -WHERE - `userid`=%s -LIMIT 1", - array( - bigintval($userid) - ), __FUNCTION__, __LINE__); - } else { - // No what set, needs to be ignored (last_module is last_what) - sqlQueryEscaped("UPDATE - `{?_MYSQL_PREFIX?}_user_data` -SET - `{%%pipe,getUserLastWhatName%%}`=NULL, - `last_online`=UNIX_TIMESTAMP(), - `REMOTE_ADDR`='{%%pipe,detectRemoteAddr%%}' -WHERE - `userid`=%s -LIMIT 1", - array( - bigintval($userid) - ), __FUNCTION__, __LINE__); - } -} - -// List all given joined rows (callback function from XML) -function doGenericJoinedListEntries ($tableTemplate, $rowTemplate, $noEntryMessageId, $tableName, $tableJoinType, $tableJoinName, $joinOnLeftTable, $joinOnCondition, $joinOnRightTable, $columns, $whereColumns, $orderByColumns, $callbackColumns, $extraParameters = array(), $conditions = array(), $content = array()) { - // Verify that tableName and columns are not empty - if ((!is_array($tableName)) || (count($tableName) != 1)) { - // No tableName specified - reportBug(__FUNCTION__, __LINE__, 'tableName is not given. Please fix your XML,tableName[]=' . gettype($tableName) . '!=array,tableTemplate=' . $tableTemplate . ',rowTemplate=' . $rowTemplate); - } elseif (!isFilledArray($columns)) { - // No columns specified - reportBug(__FUNCTION__, __LINE__, 'columns is not given. Please fix your XML,tableTemplate=' . $tableTemplate . ',rowTemplate=' . $rowTemplate . ',tableName[0]=' . $tableName[0]); - } - - // This is the minimum query, so at least columns and tableName must have entries - $sql = 'SELECT '; - - // Get the sql part back from given array - $sql .= getSqlPartFromXmlArray($columns); - - // Add "FROM" - $sql .= getSqlXmlFromTable($tableName); - - // Add "JOIN" - $sql .= getSqlXmlJoinedTable($tableJoinType, $tableJoinName, $joinOnLeftTable, $joinOnCondition, $joinOnRightTable); - - // Add "WHERE" - $sql .= getSqlXmlWhereConditions($whereColumns, $conditions); - - // Add "ORDER BY" - $sql .= getSqlXmlOrderBy($orderByColumns); - - // Now handle all over to the inner function which will execute the listing - doListEntries($sql, $tableTemplate, $noEntryMessageId, $rowTemplate, $callbackColumns, $extraParameters, $content); -} - -// List all given rows (callback function from XML) -function doGenericListEntries ($tableTemplate, $rowTemplate, $noEntryMessageId, $tableName, $columns, $whereColumns, $orderByColumns, $callbackColumns, $extraParameters = array(), $conditions = array(), $content = array()) { - // Verify that tableName and columns are not empty - if ((!is_array($tableName)) || (count($tableName) != 1)) { - // No tableName specified - reportBug(__FUNCTION__, __LINE__, 'tableName is not given. Please fix your XML,tableName[]=' . gettype($tableName) . '!=array,tableTemplate=' . $tableTemplate . ',rowTemplate=' . $rowTemplate); - } elseif (!isFilledArray($columns)) { - // No columns specified - reportBug(__FUNCTION__, __LINE__, 'columns is not given. Please fix your XML,tableTemplate=' . $tableTemplate . ',rowTemplate=' . $rowTemplate . ',tableName[0]=' . $tableName[0]); - } - - // This is the minimum query, so at least columns and tableName must have entries - $sql = 'SELECT '; - - // Get the sql part back from given array - $sql .= getSqlPartFromXmlArray($columns); - - // Add "FROM" - $sql .= getSqlXmlFromTable($tableName); - - // Add "WHERE" - $sql .= getSqlXmlWhereConditions($whereColumns, $conditions); - - // Add "ORDER BY" - $sql .= getSqlXmlOrderBy($orderByColumns); - - // Now handle all over to the inner function which will execute the listing - doListEntries($sql, $tableTemplate, $noEntryMessageId, $rowTemplate, $callbackColumns, $extraParameters, $content); -} - -// Do the listing of entries -function doListEntries ($sql, $tableTemplate, $noEntryMessageId, $rowTemplate, $callbackColumns, $extraParameters = array(), $content = array()) { - // Run the SQL query - $result = sqlQuery($sql, __FUNCTION__, __LINE__); - - // Are there some URLs left? - if (!ifSqlHasZeroNumRows($result)) { - // List all URLs - $OUT = ''; - while ($row = sqlFetchArray($result)) { - // "Translate" content - foreach ($callbackColumns as $columnName => $callbackName) { - // Fill the callback arguments - $args = array($row[$columnName]); - - // Is there more to add? - if (isset($extraParameters[$columnName])) { - // Add them as well - $args = merge_array($args, $extraParameters[$columnName]); - } // END - if - - // Call the callback-function - //* NOISY-DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'callbackFunction=' . $callbackName . ',args=
'.print_r($args, TRUE).'
'); - // @TODO If the EL sub-system can support more than one parameter, this call_user_func_array() can be avoided - $row[$columnName] = call_user_func_array($callbackName, $args); - } // END - foreach - - // Load row template - $OUT .= loadTemplate(trim($rowTemplate[0]), TRUE, $row); - } // END - while - - // Is at least one entry set in content? - if (isFilledArray($content)) { - // Then add generic 'rows' element - $content['rows'] = $OUT; - } else { - // Direct output is content - $content = $OUT; - } - - // Load main template - loadTemplate(trim($tableTemplate[0]), FALSE, $content); - } else { - // No URLs in surfbar - displayMessage('{--' .$noEntryMessageId[0] . '--}'); - } - - // Free result - sqlFreeResult($result); -} - -// Adds a given entry to the database -function doGenericAddEntries ($tableName, $columns = array(), $filterFunctions = array(), $extraValues = array(), $timeColumns = array(), $columnIndex = NULL) { - //* DEBUG: */ die(__FUNCTION__.':columns=
'.print_r($columns,TRUE).'
,filterFunctions=
'.print_r($filterFunctions,TRUE).'
,extraValues=
'.print_r($extraValues,TRUE).'
,timeColumns=
'.print_r($timeColumns,TRUE).'
,columnIndex=
'.print_r($columnIndex,TRUE).'
,POST=
'.print_r($_POST,TRUE).'
'); - // Verify that tableName and columns are not empty - if ((!is_array($tableName)) || (count($tableName) != 1)) { - // No tableName specified - reportBug(__FUNCTION__, __LINE__, 'tableName is not given. Please fix your XML,tableName[]=' . gettype($tableName) . '!=array: userIdColumn=' . $userIdColumn); - } elseif (!isFilledArray($columns)) { - // No columns specified - reportBug(__FUNCTION__, __LINE__, 'columns is not given. Please fix your XML.'); - } - - // Init columns and value elements - $sqlColumns = array(); - $sqlValues = array(); - - // Default is that all went fine - $GLOBALS['__XML_PARSE_RESULT'] = TRUE; - - // Is there "time columns"? - if (isFilledArray($timeColumns)) { - // Then "walk" through all entries - foreach ($timeColumns as $column) { - // Convert all (possible) selections - convertSelectionsToEpocheTimeInPostData($column . '_ye'); - } // END - foreach - } // END - if - - // Add columns and values - foreach ($columns as $key => $columnName) { - //* NOISY-DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'key=' . $key . ',columnName=' . $columnName); - // Is columnIndex set? - if (!is_null($columnIndex)) { - // Check conditions - //* DEBUG: */ die('columnName=
'.print_r($columnName,TRUE).'
columnIndex=
'.print_r($columnIndex,TRUE).'
'.debug_get_printable_backtrace()); - assert((is_array($columnName)) && (is_string($columnIndex)) && (isset($columnName[$columnIndex]))); - - // Then use that index "blindly" - $columnName = $columnName[$columnIndex]; - } // END - if - - // Debug message - //* NOISY-DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'key=' . $key . ',columnName[' . gettype($columnName) . ']=' . $columnName . ',filterFunctions=' . $filterFunctions[$key] . ',extraValues=' . intval(isset($extraValues[$key])) . ',extraValuesName=' . intval(isset($extraValues[$columnName . '_list']))); - - // Get value back (no array supported) - $value = postRequestElement($columnName); - - // Is this an array and element 0 is set? - if ((is_array($value)) && (isset($value[0]))) { - // Then only take this - $value = $value[0]; - } // END - if - - // Copy entry securely to the final arrays - $sqlColumns[$key] = sqlEscapeString($columnName); - $sqlValues[$key] = sqlEscapeString($value); - - // Search for it - $search = key(search_array($columns, 'column', $columnName)); - - // Try to handle call-back functions and/or extra values on the list - //* DEBUG: */ outputHtml($key . '/' . $columnName . '=
'.print_r($columns,true).'
search_array()=
'.print_r(search_array($columns, 'column', $columnName), TRUE).'
'); - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'sqlValues[' . $key . '(' . gettype($key) . ')][' . gettype($sqlValues[$key]) . ']=' . $sqlValues[$key] . ' - BEFORE!'); - if (is_string($key)) { - // Key is a string - $sqlValues[$key] = doHandleExtraValues($filterFunctions, $extraValues, $key . '_list', $sqlValues[$key], array(''), $search); - } else { - // Is a number - $sqlValues[$key] = doHandleExtraValues($filterFunctions, $extraValues, $key, $sqlValues[$key], array(''), $search); - } - - // Is the value not a number? - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'sqlValues[' . $key . '(' . gettype($key) . ')][' . gettype($sqlValues[$key]) . ']=' . $sqlValues[$key] . ' - AFTER!'); - if (($sqlValues[$key] != 'NULL') && (is_string($sqlValues[$key]))) { - // Add quotes around it - $sqlValues[$key] = chr(39) . $sqlValues[$key] . chr(39); - } // END - if - - // Is the value false? - if ($sqlValues[$key] === FALSE) { - // One "parser" didn't like it - $GLOBALS['__XML_PARSE_RESULT'] = FALSE; - break; - } // END - if - } // END - foreach - - // If all values are okay, continue - if ($sqlValues[$key] !== FALSE) { - // Build the SQL query - $sql = 'INSERT INTO `{?_MYSQL_PREFIX?}_' . $tableName[0] . '` (`' . implode('`, `', $sqlColumns) . "`) VALUES (" . implode(',', $sqlValues) . ')'; - - // Run the SQL query - sqlQuery($sql, __FUNCTION__, __LINE__); - - // Add id number - setPostRequestElement('id', getSqlInsertId()); - - // Prepare filter data array - $filterData = array( - 'mode' => 'add', - 'table_name' => $tableName, - 'content' => postRequestArray(), - 'id' => getSqlInsertId(), - 'subject' => '', - // @TODO Used generic 'userid' here - 'userid_column' => array('userid'), - 'raw_userid' => array('userid'), - 'affected' => sqlAffectedRows(), - 'sql' => $sql, - ); - - // Send "build mail" out - runFilterChain('send_build_mail', $filterData); - } // END - if -} - -// Edit rows by given id numbers -function doGenericEditEntriesConfirm ($tableName, $columns = array(), $filterFunctions = array(), $extraValues = array(), $timeColumns = array(), $editNow = array(FALSE), $idColumn = array('id'), $userIdColumn = array('userid'), $rawUserId = array('userid'), $cacheFiles = array(), $subject = '') { - // Is there "time columns"? - if (isFilledArray($timeColumns)) { - // Then "walk" through all entries - foreach ($timeColumns as $column) { - // Convert all (possible) selections - convertSelectionsToEpocheTimeInPostData($column . '_ye'); - } // END - foreach - } // END - if - - // Change them all - $affected = '0'; - foreach (postRequestElement($idColumn[0]) as $id => $sel) { - // Secure id number - $id = bigintval($id); - - // Prepare content array (new values) - $content = array(); - - // Prepare SQL for this row - $sql = sprintf('UPDATE `{?_MYSQL_PREFIX?}_%s` SET', - sqlEscapeString($tableName[0]) - ); - - // "Walk" through all entries - foreach (postRequestArray() as $key => $entries) { - // Skip raw userid which is always invalid - if (($key == $rawUserId[0]) || ($key == ($rawUserId[0] . '_raw')) || ($key == 'do_edit')) { - // Continue with next field - //* NOISY-DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'key=' . $key . ',idColumn[0]=' . $idColumn[0] . ',rawUserId=' . $rawUserId[0]); - continue; - } // END - if - - // Debug message - //* NOISY-DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'key=' . $key . ',id=' . $id . ',idColumn[0]=' . $idColumn[0] . ',entries=
'.print_r($entries,TRUE).'
'); - - // Is entries an array? - if (($key != $idColumn[0]) && (is_array($entries)) && (isset($entries[$id]))) { - // Search for the right array index - $search = key(search_array($columns, 'column', $key)); - - // Add this entry to content - $content[$key] = $entries[$id]; - - // Debug message - //* BUG: */ die($key.'/'.$id.'/'.$search.'=
'.print_r($columns,TRUE).'
'.print_r($filterFunctions,TRUE).'
'); - - // Handle possible call-back functions and/or extra values - $entries[$id] = doHandleExtraValues($filterFunctions, $extraValues, $key, $entries[$id], $userIdColumn, $search); - - // Add key/value pair to SQL string - $sql .= addKeyValueSql($key, $entries[$id]); - } elseif (($key != $idColumn[0]) && (!is_array($entries))) { - // Search for it - $search = key(search_array($columns, 'column', $key)); - //* BUG: */ die($key.'/
'.print_r($search, TRUE).'
=
'.print_r($columns, TRUE).'
'); - - // Debug message - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'key=' . $key . ',entries[' . gettype($entries) . ']=' . $entries . ',search=' . $search . ' - BEFORE!'); - - // Add normal entries as well - $content[$key] = $entries; - - // Handle possible call-back functions and/or extra values - $entries = doHandleExtraValues($filterFunctions, $extraValues, $key, $entries, $userIdColumn, $search); - - // Debug message - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'key=' . $key . ',entries[' . gettype($entries) . ']=' . $entries . ',search=' . $search . ' - AFTER!'); - - // Add key/value pair to SQL string - $sql .= addKeyValueSql($key, $entries); - } - } // END - foreach - - // Finish SQL command - $sql = substr($sql, 0, -1) . " WHERE `" . sqlEscapeString($idColumn[0]) . "`=" . $id; - if ((isset($rawUserId[0])) && (isset($userIdColumn[0])) && (isPostRequestElementSet($rawUserId[0])) && (!is_array(postRequestElement($rawUserId[0])))) { - // Add user id as well - $sql .= ' AND `' . $userIdColumn[0] . '`=' . bigintval(postRequestElement($rawUserId[0])); - } // END - if - $sql .= " LIMIT 1"; - - // Run this query - //* BUG: */ die($sql.'
'.print_r(postRequestArray(), TRUE).'
'); - sqlQuery($sql, __FUNCTION__, __LINE__); - - // Add affected rows - $edited = sqlAffectedRows(); - $affected += $edited; - - // Load all data from that id - $result = sqlQueryEscaped("SELECT * FROM `{?_MYSQL_PREFIX?}_%s` WHERE `%s`=%s LIMIT 1", - array( - $tableName[0], - $idColumn[0], - $id - ), __FUNCTION__, __LINE__); - - // Fetch the data and merge it into $content - $content = merge_array($content, sqlFetchArray($result)); - - // Prepare filter data array - $filterData = array( - 'mode' => 'edit', - 'table_name' => $tableName, - 'content' => $content, - 'id' => $id, - 'subject' => $subject, - 'userid_column' => $userIdColumn, - 'raw_userid' => $rawUserId, - 'affected' => $edited, - 'sql' => $sql, - ); - - // Send "build mail" out - runFilterChain('send_build_mail', $filterData); - - // Free the result - sqlFreeResult($result); - } // END - foreach - - // Delete cache? - if ((isFilledArray($cacheFiles)) && (!empty($cacheFiles[0]))) { - // Delete cache file(s) - foreach ($cacheFiles as $cache) { - // Skip any empty entries - if (empty($cache)) { - // This may cause trouble in loadCacheFile() - continue; - } // END - if - - // Use rebuildCache() to delete it - rebuildCache($cache); - } // END - foreach - } // END - if - - // Return affected rows - return $affected; -} - -// Delete rows by given id numbers -function doGenericDeleteEntriesConfirm ($tableName, $columns = array(), $filterFunctions = array(), $extraValues = array(), $deleteNow = array(FALSE), $idColumn = array('id'), $userIdColumn = array('userid'), $rawUserId = array('userid'), $cacheFiles = array()) { - // The base SQL command: - $sql = "DELETE LOW_PRIORITY FROM `{?_MYSQL_PREFIX?}_%s` WHERE `%s` IN (%s)"; - - // Is a user id provided? - //* BUG: */ die('
'.print_r($rawUserId,TRUE).'
'.print_r($userIdColumn,TRUE).'
'); - if ((isset($rawUserId[0])) && (isset($userIdColumn[0])) && (isPostRequestElementSet($rawUserId[0])) && (!is_array(postRequestElement($rawUserId[0])))) { - // Add user id as well - $sql .= ' AND `' . $userIdColumn[0] . '`=' . bigintval(postRequestElement($rawUserId[0])); - } // END - if - - // $idColumn[0] in POST must be an array again - if (!is_array(postRequestElement($idColumn[0]))) { - // This indicates that you have conflicting form field naming with XML names - reportBug(__FUNCTION__, __LINE__, 'You have a wrong form field element, idColumn[0]=' . $idColumn[0]); - } // END - if - - // Delete them all - //* BUG: */ die($sql.'
'.print_r($tableName,TRUE).'
'.print_r($columns,TRUE).'
'.print_r($filterFunctions,TRUE).'
'.print_r($extraValues,TRUE).'
'.print_r($deleteNow,TRUE).'
'.print_r($idColumn,TRUE).'
'); - $idList = ''; - foreach (postRequestElement($idColumn[0]) as $id => $sel) { - // Is id zero? - if (!isValidId($id)) { - // Then skip this - continue; - } // END - if - - // Is there a userid? - if (isPostRequestElementSet($userIdColumn[0])) { - // Load all data from that id - $result = sqlQueryEscaped("SELECT * FROM `{?_MYSQL_PREFIX?}_%s` WHERE `%s`=%s LIMIT 1", - array( - $tableName[0], - $idColumn[0], - $id - ), __FUNCTION__, __LINE__); - - // Fetch the data - $content = sqlFetchArray($result); - - // Free the result - sqlFreeResult($result); - - // Send "build mails" out - sendGenericBuildMails('delete', $tableName, $content, $id, '', $userIdColumn); - } // END - if - - // Add id number - $idList .= $id . ','; - } // END - foreach - - // Run the query - sqlQueryEscaped($sql, - array( - $tableName[0], - $idColumn[0], - convertNullToZero(substr($idList, 0, -1)) - ), __FUNCTION__, __LINE__); - - // Return affected rows - return sqlAffectedRows(); -} - -// Build a special template list -// @TODO cacheFiles is not yet supported -function doGenericListBuilder ($prefix, $listType, $tableName, $columns, $filterFunctions, $extraValues, $idColumn, $userIdColumn, $rawUserId = array('userid'), $content = array()) { - // $tableName and $idColumn must bove be arrays! - if ((!is_array($tableName)) || (count($tableName) != 1)) { - // $tableName is no array - reportBug(__FUNCTION__, __LINE__, 'tableName[]=' . gettype($tableName) . '!=array: userIdColumn=' . $userIdColumn); - } elseif (!is_array($idColumn)) { - // $idColumn is no array - reportBug(__FUNCTION__, __LINE__, 'idColumn[]=' . gettype($idColumn) . '!=array: userIdColumn=' . $userIdColumn); - } elseif ((!is_array($userIdColumn)) || (count($userIdColumn) != 1)) { - // $tableName is no array - reportBug(__FUNCTION__, __LINE__, 'userIdColumn[]=' . gettype($userIdColumn) . '!=array: userIdColumn=' . $userIdColumn); - } - - // Init row output - $OUT = ''; - - // "Walk" through all entries - //* DEBUG: */ reportBug(__FUNCTION__, __LINE__, 'listType=
'.print_r($listType,TRUE).'
,tableName
'.print_r($tableName,TRUE).'
,columns=
'.print_r($columns,TRUE).'
,filterFunctions=
'.print_r($filterFunctions,TRUE).'
,extraValues=
'.print_r($extraValues,TRUE).'
,idColumn=
'.print_r($idColumn,TRUE).'
,userIdColumn=
'.print_r($userIdColumn,TRUE).'
,rawUserId=
'.print_r($rawUserId,TRUE).'
'); - foreach (postRequestElement($idColumn[0]) as $id => $selected) { - // Secure id number - $id = bigintval($id); - - // Get result from a given column array and table name - $result = getSqlResultFromArray($tableName[0], $columns, $idColumn[0], $id, __FUNCTION__, __LINE__); - - // Is there one entry? - if (sqlNumRows($result) == 1) { - // Load all data - $row = sqlFetchArray($result); - - // Filter all data - foreach ($row as $key => $value) { - // Search index - $idx = searchXmlArray($key, $columns, 'column'); - - // Default name is NULL - $name = NULL; - - // Is the name there? - if (isset($columns[$idx]['name'])) { - // Then use it - $name = $columns[$idx]['name']; - } // END - if - - // Skip any missing entries - if ($idx === FALSE) { - // Skip this one - //* DEBUG: */ reportBug(__FUNCTION__, __LINE__, 'key=' . $key . ' - SKIPPED!'); - continue; - } // END - if - - // Is there a userid? - //* NOISY-DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'key=' . $key . ',userIdColumn=' . $userIdColumn[0]); - if ($key == $userIdColumn[0]) { - // Add it again as raw id - //* DEBUG: */ reportBug(__FUNCTION__, __LINE__, 'key=' . $key . ',userIdColumn=' . $userIdColumn[0]); - $row[$userIdColumn[0]] = convertZeroToNull($value); - $row[$userIdColumn[0] . '_raw'] = $row[$userIdColumn[0]]; - } // END - if - - // If the key matches the idColumn variable, we need to temporary remember it - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'key=' . $key . ',idColumn=' . $idColumn[0] . ',value=' . $value); - if ($key == $idColumn[0]) { - /* - * Found, so remember it securely (to make sure only id - * numbers can pass, don't use alpha-numerical values!) - */ - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'value=' . $value . ' - set as ' . $prefix . '_list_builder_id_value!'); - $GLOBALS[$prefix . '_list_builder_id_value'] = bigintval($value); - } // END - if - - // Try to handle call-back functions and/or extra values - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'idx=' . $idx . ',row[' . $key . ']=' . $row[$key]); - //if ($key == 'forced_campaign_created') die($idx.'=
'.print_r($columns,true).'
'.print_r($extraValues,true).'
'); - $row[$key] = doHandleExtraValues($filterFunctions, $extraValues, $idx, $row[$key], $userIdColumn, ((!is_null($name)) ? $name : $key), $id); - } // END - foreach - - // Then list it - $OUT .= loadTemplate(sprintf('%s_%s_%s_row', - $prefix, - $listType, - $tableName[0] - ), TRUE, $row - ); - } // END - if - - // Free the result - sqlFreeResult($result); - } // END - foreach - - // Is there an entry in $content? - if (isFilledArray($content)) { - // Use generic 'rows' - $content['rows'] = $OUT; - } else { - // Use direct output - $content = $OUT; - } - - // Load master template - loadTemplate( - sprintf('%s_%s_%s', - $prefix, - $listType, - $tableName[0] - ), FALSE, $content - ); -} - -// Adds key/value pair to a working SQL string together -function addKeyValueSql ($key, $value) { - // Init SQL - $sql = ''; - - // Is it NULL? - if (($value == 'NULL') || (is_null($value))) { - // Add key with NULL - $sql .= sprintf(' `%s`=NULL,', - sqlEscapeString($key) - ); - } elseif ((is_double($value)) || (is_float($value)) || (is_int($value))) { - // Is a number, so addd it directly - $sql .= sprintf(' `%s`=%s,', - sqlEscapeString($key), - $value - ); - } else { - // Else add the value escape'd - $sql .= sprintf(" `%s`='%s',", - sqlEscapeString($key), - sqlEscapeString($value) - ); - } - - // Return SQL string - return $sql; -} - -// "Getter" for an array from given table and columns -function getArrayFromTable ($tableName, $columns, $orderBy, $ordered = 'ASC', $whereSql = '') { - // The table must exist - assert(ifSqlTableExists($tableName)); - - // Search for it - $result = sqlQueryEscaped('SELECT - `' . implode('`, `', $columns) . '` -FROM - `{?_MYSQL_PREFIX?}_%s` -' . $whereSql . ' -ORDER BY - `%s` %S', - array( - $tableName, - $orderBy, - $ordered - ), __FUNCTION__, __LINE__ - ); - - // Init array - $rows = array(); - - // Are there entries? - if (!ifSqlHasZeroNumRows($result)) { - // Load all entries - while ($row = sqlFetchArray($result)) { - array_push($rows, $row); - } // END - while - } // END - if - - // Free result - sqlFreeResult($result); - - // Return all found rows - return $rows; -} - -// [EOF] -?> diff --git a/index.php b/index.php index 4eb0414c5d..0422155a35 100644 --- a/index.php +++ b/index.php @@ -45,8 +45,8 @@ $GLOBALS['__module'] = 'index'; $GLOBALS['__what'] = 'welcome'; $GLOBALS['__output_mode'] = '0'; -// Load config.php -require('inc/config-global.php'); +// Initialize application +require('inc/init.php'); // Fix what to 'home' setWhat(getIndexHome()); diff --git a/install.php b/install.php index 16c8f4e833..23fc61f58a 100644 --- a/install.php +++ b/install.php @@ -46,8 +46,8 @@ $GLOBALS['__mailer_installing'] = TRUE; $GLOBALS['__module'] = 'install'; $GLOBALS['__output_mode'] = '0'; -// Load config file -require('inc/config-global.php'); +// Initialize application +require('inc/init.php'); // Set content type setContentType('text/html'); diff --git a/js.php b/js.php index 49e7946740..7fae050e4d 100644 --- a/js.php +++ b/js.php @@ -51,8 +51,8 @@ $GLOBALS['__start_time'] = microtime(TRUE); $GLOBALS['__module'] = 'js'; $GLOBALS['__output_mode'] = 1; -// Load the required file(s) -require('inc/config-global.php'); +// Initialize application +require('inc/init.php'); // Set header and HTTP status setContentType('text/javascript'); diff --git a/lead-confirm.php b/lead-confirm.php index 262724e6a4..69125767d8 100644 --- a/lead-confirm.php +++ b/lead-confirm.php @@ -40,8 +40,8 @@ $GLOBALS['__start_time'] = microtime(TRUE); $GLOBALS['__module'] = 'lead-confirm'; $GLOBALS['__output_mode'] = '0'; -// Load config.php -require('inc/config-global.php'); +// Initialize application +require('inc/init.php'); // Set content type setContentType('text/html'); diff --git a/login.php b/login.php index d86debb7fe..fa30f29771 100644 --- a/login.php +++ b/login.php @@ -40,8 +40,8 @@ $GLOBALS['__start_time'] = microtime(TRUE); $GLOBALS['__module'] = 'login'; $GLOBALS['__output_mode'] = -1; -// Load the required file(s) -require('inc/config-global.php'); +// Initialize application +require('inc/init.php'); // Is this a member? if (isMember()) { diff --git a/mailid.php b/mailid.php index 1ba8898ea8..cebf439e9a 100644 --- a/mailid.php +++ b/mailid.php @@ -43,8 +43,8 @@ $GLOBALS['__output_mode'] = '0'; // Disable copyright footer which would be to large for the upper frame $GLOBALS['__copyright_enabled'] = 'N'; -// Load the required file(s) -require('inc/config-global.php'); +// Initialize application +require('inc/init.php'); // Set content type and HTTP status setContentType('text/html'); diff --git a/modules.php b/modules.php index b57ede4dcb..2a2440708a 100644 --- a/modules.php +++ b/modules.php @@ -44,7 +44,7 @@ $GLOBALS['__module'] = 'unknown'; $GLOBALS['__output_mode'] = '0'; // Needed include files -require('inc/config-global.php'); +require('inc/init.php'); // Include module doIncludeModule(); diff --git a/network-delurl.php b/network-delurl.php index f9a504dbdb..ff4cbeec0c 100644 --- a/network-delurl.php +++ b/network-delurl.php @@ -40,8 +40,8 @@ $GLOBALS['__start_time'] = microtime(TRUE); $GLOBALS['__module'] = 'network-delurl'; $GLOBALS['__output_mode'] = -1; -// Load the required file(s) -require('inc/config-global.php'); +// Initialize application +require('inc/init.php'); // Set HTTP status to 500 (if ext-network is not found, but this script is called) setHttpStatus('500 Internal Server Error'); diff --git a/network-vcheck.php b/network-vcheck.php index 002d2652dc..a21f50ea99 100644 --- a/network-vcheck.php +++ b/network-vcheck.php @@ -40,8 +40,8 @@ $GLOBALS['__start_time'] = microtime(TRUE); $GLOBALS['__module'] = 'network-vcheck'; $GLOBALS['__output_mode'] = -1; -// Load the required file(s) -require('inc/config-global.php'); +// Initialize application +require('inc/init.php'); // Set HTTP status to 500 (if ext-network is not found, but this script is called) setHttpStatus('500 Internal Server Error'); diff --git a/ref.php b/ref.php index 43f5f11e8f..80850e2f81 100644 --- a/ref.php +++ b/ref.php @@ -40,8 +40,8 @@ $GLOBALS['__start_time'] = microtime(TRUE); $GLOBALS['__module'] = 'ref'; $GLOBALS['__output_mode'] = -1; -// Load the required file(s) -require('inc/config-global.php'); +// Initialize application +require('inc/init.php'); // Set content type for e.g. search engines setContentType('text/html'); diff --git a/show_bonus.php b/show_bonus.php index 895a2e8877..1b8dec3d3b 100644 --- a/show_bonus.php +++ b/show_bonus.php @@ -40,8 +40,8 @@ $GLOBALS['__start_time'] = microtime(TRUE); $GLOBALS['__module'] = 'show_bonus'; $GLOBALS['__output_mode'] = '0'; -// Load the required file(s) -require('inc/config-global.php'); +// Initialize application +require('inc/init.php'); // Set content type setContentType('text/html'); diff --git a/sponsor_confirm.php b/sponsor_confirm.php index 1060999154..589db853d7 100644 --- a/sponsor_confirm.php +++ b/sponsor_confirm.php @@ -39,8 +39,8 @@ $GLOBALS['__start_time'] = microtime(TRUE); $GLOBALS['__module'] = 'sponsor_confirm'; $GLOBALS['__output_mode'] = -1; -// Load the required file(s) -require('inc/config-global.php'); +// Initialize application +require('inc/init.php'); // Set content type for e.g. search engines setContentType('text/html'); diff --git a/sponsor_ref.php b/sponsor_ref.php index 03f5a26ccb..eed2e8315c 100644 --- a/sponsor_ref.php +++ b/sponsor_ref.php @@ -39,8 +39,8 @@ $GLOBALS['__start_time'] = microtime(TRUE); $GLOBALS['__module'] = 'sponsor_ref'; $GLOBALS['__output_mode'] = -1; -// Load the required file(s) -require('inc/config-global.php'); +// Initialize application +require('inc/init.php'); // Set content type for e.g. search engines setContentType('text/html'); diff --git a/surfbar.php b/surfbar.php index edff6dd5a4..d33ab6b78c 100644 --- a/surfbar.php +++ b/surfbar.php @@ -41,8 +41,8 @@ $GLOBALS['__module'] = 'surfbar'; $GLOBALS['__output_mode'] = '0'; $GLOBALS['__header_sent'] = 3; -// Load the required file(s) -require('inc/config-global.php'); +// Initialize application +require('inc/init.php'); // Set content type setContentType('text/html'); diff --git a/view.php b/view.php index 6423766b36..3d1d70fc4e 100644 --- a/view.php +++ b/view.php @@ -40,8 +40,8 @@ $GLOBALS['__start_time'] = microtime(TRUE); $GLOBALS['__module'] = 'view'; $GLOBALS['__output_mode'] = -1; -// Load the required file(s) -require('inc/config-global.php'); +// Initialize application +require('inc/init.php'); // Run filter chain runFilterChain('handle_view_php');