inc/modules/admin/what-lock_user.php

   1 <?php
   2 /************************************************************************
   3  * MXChange v0.2.1                                    Start: 09/28/2003 *
   4  * ===============                              Last change: 06/10/2004 *
   5  *                                                                      *
   6  * -------------------------------------------------------------------- *
   7  * File              : what-lock_user.php                               *
   8  * -------------------------------------------------------------------- *
   9  * Short description : Lock members                                     *
  10  * -------------------------------------------------------------------- *
  11  * Kurzbeschreibung  : Mitglieder sperren                               *
  12  * -------------------------------------------------------------------- *
  13  *                                                                      *
  14  * -------------------------------------------------------------------- *
  15  * Copyright (c) 2003 - 2008 by Roland Haeder                           *
  16  * For more information visit: http://www.mxchange.org                  *
  17  *                                                                      *
  18  * This program is free software; you can redistribute it and/or modify *
  19  * it under the terms of the GNU General Public License as published by *
  20  * the Free Software Foundation; either version 2 of the License, or    *
  21  * (at your option) any later version.                                  *
  22  *                                                                      *
  23  * This program is distributed in the hope that it will be useful,      *
  24  * but WITHOUT ANY WARRANTY; without even the implied warranty of       *
  25  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the        *
  26  * GNU General Public License for more details.                         *
  27  *                                                                      *
  28  * You should have received a copy of the GNU General Public License    *
  29  * along with this program; if not, write to the Free Software          *
  30  * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston,               *
  31  * MA  02110-1301  USA                                                  *
  32  ************************************************************************/
  33
  34 // Some security stuff...
  35 if ((!defined('__SECURITY')) || (!IS_ADMIN())) {
  36         $INC = substr(dirname(__FILE__), 0, strpos(dirname(__FILE__), "/inc") + 4) . "/security.php";
  37         require($INC);
  38 }
  39
  40 // Add description as navigation point
  41 ADD_DESCR("admin", __FILE__);
  42
  43 // Is a userid set?
  44 if (!empty($_GET['u_id'])) {
  45         // Load user's data
  46         $result_user = SQL_QUERY_ESC("SELECT status, gender, surname, family, email FROM `"._MYSQL_PREFIX."_user_data` WHERE userid=%s LIMIT 1",
  47          array(bigintval($_GET['u_id'])), __FILE__, __LINE__);
  48         $ACT = false;
  49         if (SQL_NUMROWS($result_user) == 1) {
  50                 // User found
  51                 list($status, $gender, $sname, $fname, $email) = SQL_FETCHROW($result_user);
  52
  53                 // Free result
  54                 SQL_FREERESULT($result_user);
  55
  56                 // Is a lock reason set?
  57                 if ((!empty($_POST['lock'])) && ($status != "LOCKED")) {
  58                         // Ok, lock the account!
  59                         if (GET_EXT_VERSION("user") >= "0.3.5") {
  60                                 // Lock with reason
  61                                 SQL_QUERY_ESC("UPDATE `"._MYSQL_PREFIX."_user_data` SET status='LOCKED',lock_reason='%s',lock_timestamp=NOW() WHERE userid=%s LIMIT 1",
  62                                         array($_POST['reason'], bigintval($_GET['u_id'])), __FILE__, __LINE__);
  63                         } else {
  64                                 // Lock with no lock reason saved
  65                                 SQL_QUERY_ESC("UPDATE `"._MYSQL_PREFIX."_user_data` SET status='LOCKED' WHERE userid=%s LIMIT 1",
  66                                         array(bigintval($_GET['u_id'])), __FILE__, __LINE__);
  67                         }
  68
  69                         // Entry updated?
  70                         if (SQL_AFFECTEDROWS() == 1) {
  71                                 // Send an email to the user! In later version you can optionally switch this feature off
  72                                 $msg = LOAD_EMAIL_TEMPLATE("lock-user", array('text' => $_POST['reason']), bigintval($_GET['u_id']));
  73
  74                                 // Send away...
  75                                 SEND_EMAIL(bigintval($_GET['u_id']), ADMIN_LOCKED_SUBJ, $msg);
  76                         } // END - if
  77
  78                         // Prepare message
  79                         $MSG = USER_ACCOUNT_LOCKED_1.$_GET['u_id'].USER_ACCOUNT_LOCKED_2;
  80                         $ACT = true;
  81                 } elseif ((!empty($_POST['unlock'])) && ($status == "LOCKED")) {
  82                         // Ok, unlock the account!
  83                         if (GET_EXT_VERSION("user") >= "0.3.5") {
  84                                 // Reset lock reason as well
  85                                 SQL_QUERY_ESC("UPDATE `"._MYSQL_PREFIX."_user_data` SET status='CONFIRMED',lock_reason='',lock_timestamp='0000-00-00 00:00' WHERE userid=%s LIMIT 1",
  86                                         array(bigintval($_GET['u_id'])), __FILE__, __LINE__);
  87                         } else {
  88                                 // No lock reason to reset
  89                                 SQL_QUERY_ESC("UPDATE `"._MYSQL_PREFIX."_user_data` SET status='CONFIRMED' WHERE userid=%s LIMIT 1",
  90                                         array(bigintval($_GET['u_id'])), __FILE__, __LINE__);
  91                         }
  92
  93                         // Entry updated?
  94                         if (SQL_AFFECTEDROWS() == 1) {
  95                                 // Send an email to the user! In later version you can optionally switch this feature off
  96                                 $msg = LOAD_EMAIL_TEMPLATE("unlock-user", array('text' => $_POST['reason']), bigintval($_GET['u_id']));
  97
  98                                 // Send away...
  99                                 SEND_EMAIL(bigintval($_GET['u_id']), ADMIN_UNLOCKED_SUBJ, $msg);
 100                                 if (EXT_IS_ACTIVE("rallye")) {
 101                                         RALLYE_AUTOADD_USER($_GET['u_id']);
 102                                 } // END - if
 103                         } // END - if
 104
 105                         // Prepare message
 106                         $MSG = USER_ACCOUNT_UNLOCKED_1.$_GET['u_id'].USER_ACCOUNT_UNLOCKED_2;
 107                         $ACT = true;
 108                 } elseif (isset($_POST['del'])) {
 109                         // Delete the account
 110                         $ACT = true;
 111                         require_once(PATH."inc/modules/admin/what-del_user.php");
 112                 } elseif (!empty($_POST['no'])) {
 113                         // Do not lock him...
 114                         $URL = "modules.php?module=admin&amp;what=list_user&amp;u_id=".bigintval($_GET['u_id']);
 115                 } else {
 116                         $result = SQL_QUERY_ESC("SELECT email, surname, family FROM `"._MYSQL_PREFIX."_user_data` WHERE userid=%s LIMIT 1",
 117                                 array(bigintval($_GET['u_id'])), __FILE__, __LINE__);
 118
 119                         // Entry found?
 120                         if (SQL_NUMROWS($result) == 1) {
 121                                 // Load data
 122                                 list ($email, $sname, $fname) = SQL_FETCHROW($result);
 123
 124                                 // Free result
 125                                 SQL_FREERESULT($result);
 126
 127                                 // Transfer data to constants for the template
 128                                 define('__EMAIL', CREATE_EMAIL_LINK($email, "user_data"));
 129                                 define('__SNAME', $sname);
 130                                 define('__FNAME', $fname);
 131                                 define('__UID'  , bigintval($_GET['u_id']));
 132
 133                                 // Realy want to lock?
 134                                 switch ($status)
 135                                 {
 136                                 case "CONFIRMED": // Yes, lock him down... ;-)
 137                                         define('__OK_VALUE'    , "lock");
 138                                         define('__HEADER_VALUE', ADMIN_HEADER_LOCK_ACCOUNT_1.__UID.ADMIN_HEADER_LOCK_ACCOUNT_2);
 139                                         define('__TEXT_VALUE'  , ADMIN_TEXT_LOCK_ACCOUNT_1.__UID.ADMIN_TEXT_LOCK_ACCOUNT_2);
 140                                         break;
 141
 142                                 case "LOCKED": // Unlock the user
 143                                         define('__OK_VALUE'    , "unlock");
 144                                         define('__HEADER_VALUE', ADMIN_HEADER_UNLOCK_ACCOUNT_1.__UID.ADMIN_HEADER_UNLOCK_ACCOUNT_2);
 145                                         define('__TEXT_VALUE'  , ADMIN_TEXT_UNLOCK_ACCOUNT_1.__UID.ADMIN_TEXT_UNLOCK_ACCOUNT_2);
 146                                         break;
 147
 148                                 case "UNCONFIRMED": // Unconfirmed accounts cannot be unlocked!
 149                                         define('__OK_VALUE'    , "del");
 150                                         define('__HEADER_VALUE', ADMIN_HEADER_DEL_ACCOUNT_1.__UID.ADMIN_HEADER_DEL_ACCOUNT_2);
 151                                         define('__TEXT_VALUE'  , ADMIN_TEXT_DEL_ACCOUNT_1.__UID.ADMIN_TEXT_DEL_ACCOUNT_2);
 152                                         break;
 153                                 }
 154
 155                                 // Output form
 156                                 LOAD_TEMPLATE("admin_lock_user");
 157                         } else {
 158                                 // Account does not exists!
 159                                 LOAD_TEMPLATE("admin_settings_saved", false, "<div class=\"admin_failed\">".ADMIN_MEMBER_404_1.$_GET['u_id'].ADMIN_MEMBER_404_2."</div>");
 160                         }
 161                 }
 162
 163                 // Is an URL set?
 164                 if (!empty($URL)) {
 165                         // Reload and die...
 166                         LOAD_URL($URL);
 167                 } elseif ($ACT) {
 168                         // An action was performed...
 169                         if (!empty($MSG)) {
 170                                 LOAD_TEMPLATE("admin_settings_saved", false, "<div class=\"admin_green\">".$MSG."</div>");
 171                         } else {
 172                                 LOAD_TEMPLATE("admin_settings_saved", false, "<div class=\"admin_green\">".ADMIN_USER_UPDATED."</div>");
 173                         }
 174                 }
 175         } else {
 176                 // Account does not exists!
 177                 LOAD_TEMPLATE("admin_settings_saved", false, "<div class=\"admin_failed\">".ADMIN_MEMBER_404_1.$_GET['u_id'].ADMIN_MEMBER_404_2."</div>");
 178         }
 179 } else {
 180         // List all users
 181         ADD_MEMBER_SELECTION_BOX();
 182 }
 183
 184 //
 185 ?>