= "0.1.2") && (is_array($MODULES['module'])) && (isset($MODULES['module'][$mod]))) { // Load from cache $name = $MODULES['title'][$mod]; // Update cache hits $_CONFIG['cache_hits']++; } else { // Load from database $result = SQL_QUERY_ESC("SELECT title FROM "._MYSQL_PREFIX."_mod_reg WHERE module='%s' LIMIT 1", array($mod), __FILE__, __LINE__); list($name) = SQL_FETCHROW($result); SQL_FREERESULT($result); } } // Trim name $name = trim($name); // Still no luck or empty title? if (empty($name)) { // No name found $name = LANG_UNKNOWN_MODULE." (".$mod.")"; if (SQL_NUMROWS($result) == 0) { // Add module to database $dummy = CHECK_MODULE($mod); } } return $name; } // Check validity of a given module name (no file extension) function CHECK_MODULE($mod) { // We need them now here... global $MODULES, $_CONFIG, $CACHE; // Filter module name (names with low chars and underlines are fine!) $mod = preg_replace("/[^a-z_]/", "", $mod); // Check for prefix is a extension... $modSplit = explode("_", $mod); $extension = ""; $mod_chk = $mod; //* DEBUG: */ echo __LINE__."*".count($modSplit)."*/".$mod."*
"; if (count($modSplit) == 2) { // Okay, there is a seperator (_) in the name so is the first part a module? //* DEBUG: */ echo __LINE__."*".$modSplit[0]."*
"; if (EXT_IS_ACTIVE($modSplit[0])) { // The prefix is an extension's name, so let's set it $extension = $modSplit[0]; $mod = $modSplit[1]; } } // Major error in module registry is the default $ret = "major"; // Check if script is installed if not return a "done" to prevent some errors if ((!mxchange_installed) || (mxchange_installing) || (!admin_registered)) return "done"; // Check if cache is latest version $locked = 'Y'; $hidden = 'N'; $admin = 'N'; $mem = 'N'; $found = false; if ((GET_EXT_VERSION("cache") >= "0.1.2") && (is_array($MODULES['module']))) { // Is the module cached? if (isset($MODULES['locked'][$mod_chk])) { // Check cache $locked = $MODULES['locked'][$mod_chk]; $hidden = $MODULES['hidden'][$mod_chk]; $admin = $MODULES['admin_only'][$mod_chk]; $mem = $MODULES['mem_only'][$mod_chk]; // Update cache hits $_CONFIG['cache_hits']++; $found = true; } else { // No, then we have to update it! $ret = "cache_miss"; } } else { // Check for module in database $result = SQL_QUERY_ESC("SELECT locked, hidden, admin_only, mem_only FROM "._MYSQL_PREFIX."_mod_reg WHERE module='%s' LIMIT 1", array($mod_chk), __FILE__, __LINE__); if (SQL_NUMROWS($result) == 1) { // Read data list($locked, $hidden, $admin, $mem) = SQL_FETCHROW($result); SQL_FREERESULT($result); $found = true; } } // Check returned values against current access permissions // // Admin access ----- Guest access ----- --- Guest or member? --- if ((IS_ADMIN()) || (($locked == 'N') && ($admin == 'N') && (($mem == 'N') || (IS_LOGGED_IN())))) { // If you are admin you are welcome for everything! $ret = "done"; } elseif ($locked == 'Y') { // Module is locked $ret = "locked"; } elseif (($mem == 'Y') && (!IS_LOGGED_IN())) { // You have to login first! $ret = "mem_only"; } elseif (($admin == 'Y') && (!IS_ADMIN())) { // Only the Admin is allowed to enter this module! $ret = "admin_only"; } // Still no luck or not found? if (($ret == "major") || ($ret == "cache_miss") || (!$found)) { // ----- Legacy module ----- ---- Module in base folder ---- --- Module with extension's name --- if ((file_exists(PATH."inc/modules/".$mod.".php")) || (file_exists(PATH.$mod.".php")) || (file_exists(PATH.$extension."/".$mod.".php"))) { // Data is missing so we add it if (GET_EXT_VERSION("sql_patches") >= "0.3.6") { // Since 0.3.6 we have a has_menu column, this took me a half hour // to find a loop here... *sigh* $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_mod_reg (module, locked, hidden, mem_only, admin_only, has_menu) VALUES ('%s', 'Y', 'N', 'N', 'N', 'N')", array($mod_chk), __FILE__, __LINE__); } else { // Wrong/missing sql_patches! $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_mod_reg (module, locked, hidden, mem_only, admin_only) VALUES ('%s', 'Y', 'N', 'N', 'N')", array($mod_chk), __FILE__, __LINE__); } // Everthing is fine? if (SQL_AFFECTEDROWS() == 0) { // Something bad happend! return "major"; } // Destroy cache here if (GET_EXT_VERSION("cache") >= "0.1.2") { if ($CACHE->cache_file("mod_reg", true)) $CACHE->cache_destroy(); unset($MODULES); } // And reload data $ret = CHECK_MODULE($mod_chk); } else { // Module not found we don't add it to the database $ret = "404"; } } // Return the value return $ret; } // Add menu description pending on given file name (without path!) function ADD_DESCR($ACC_LVL, $file, $return = false, $output = true) { global $DEPTH, $_CONFIG; $LINK_ADD = ""; $OUT = ""; $AND = ""; // First we have to do some analysis... if (ereg("action-", $file)) { // This is an action file! $type = "action"; $search = substr($file, 7); switch ($ACC_LVL) { case "admin": $MOD_CHECK = "admin"; break; case "sponsor": case "guest": case "member": $MOD_CHECK = $GLOBALS['module']; break; } $AND = " AND what=''"; } elseif (ereg("what-", $file)) { // This is an admin what file! $type = "what"; $search = substr($file, 5); $AND = ""; switch ($ACC_LVL) { case "admin": $MOD_CHECK = "admin"; break; case "guest": case "member": $MOD_CHECK = $GLOBALS['module']; if (!IS_ADMIN()) { $AND = " AND visible='Y' AND locked='N'"; } break; } $DUMMY = substr($search, 0, -4); $AND .= " AND action='".GET_ACTION($ACC_LVL, $DUMMY)."'"; } elseif (($ACC_LVL == "sponsor") || ($ACC_LVL == "engine")) { // Sponsor / engine menu $type = "what"; $search = $file; $MOD_CHECK = $GLOBALS['module']; $AND = ""; } else { // Other $type = "menu"; $search = $file; $MOD_CHECK = $GLOBALS['module']; $AND = ""; } if ((!isset($DEPTH)) && (!$return)) { $DEPTH = "0"; $prefix = "

".YOU_ARE_HERE." Home"; } else { if (!$return) $DEPTH++; $prefix = ""; } $prefix .= " -> "; if (ereg(".php", $search)) { $search = substr($search, 0, strpos($search, ".php")); } $result = SQL_QUERY_ESC("SELECT title FROM "._MYSQL_PREFIX."_%s_menu WHERE %s='%s' ".$AND." LIMIT 1", array($ACC_LVL, $type, $search), __FILE__, __LINE__); if (SQL_NUMROWS($result) == 1) { list($ret) = SQL_FETCHROW($result); SQL_FREERESULT($result); if ($return) { // Return title return $ret; } elseif (((GET_EXT_VERSION("sql_patches") >= "0.2.3") && ($_CONFIG['youre_here'] == 'Y')) || ((IS_ADMIN()) && ($MOD_CHECK == "admin"))) { // Output HTML code $OUT = $prefix."".$ret."\n"; //* DEBUG: */ echo __LINE__."*".$type."/".$GLOBALS['what']."*
\n"; if (($type == "what") || (($type == "action") && (!isset($_GET['what'])) && ($GLOBALS['what'] != "welcome"))) { //* DEBUG: */ echo __LINE__."+".$type."+
\n"; $OUT .= "

\n"; } } } // Return or output HTML code? if ($output) { // Output HTML code here OUTPUT_HTML($OUT); } else { // Return HTML code return $OUT; } } // function ADD_MENU($MODE, $act, $wht) { global $_CONFIG; if (!VALIDATE_MENU_ACTION($MODE, $act, $wht, true)) return CODE_MENU_NOT_VALID; $main_cnt = 0; $AND = ""; $main_action = ""; $sub_what = ""; if (!IS_ADMIN()) { $AND = "AND visible='Y' AND locked='N'"; } // Load SQL data and add the menu to the output stream... $result_main = SQL_QUERY_ESC("SELECT title, action FROM "._MYSQL_PREFIX."_%s_menu WHERE what='' ".$AND." ORDER BY sort", array($MODE), __FILE__, __LINE__); //* DEBUG: */ echo __LINE__."/".$main_cnt."/".$main_action."/".$sub_what.":".$GLOBALS['what']."*
\n"; if (SQL_NUMROWS($result_main) > 0) { OUTPUT_HTML(""); // There are menus available, so we simply display them... :) while (list($main_title, $main_action) = SQL_FETCHROW($result_main)) { //* DEBUG: */ echo __LINE__."/".$main_cnt."/".$main_action."/".$sub_what.":".$GLOBALS['what']."*
\n"; // Load menu header template $BLOCK_MODE = false; $act = $main_action; LOAD_TEMPLATE($MODE."_menu_title", false, $main_title); $result_sub = SQL_QUERY_ESC("SELECT title, what FROM "._MYSQL_PREFIX."_%s_menu WHERE action='%s' AND what != '' ".$AND." ORDER BY sort", array($MODE, $main_action), __FILE__, __LINE__); $ctl = SQL_NUMROWS($result_sub); if ($ctl > 0) { $cnt=0; while (list($sub_title, $sub_what) = SQL_FETCHROW($result_sub)) { $content = ""; // Full file name for checking menu //* DEBUG: */ echo __LINE__.":!!!!".$sub_what."!!!
\n"; $test_inc = sprintf("%sinc/modules/%s/what-%s.php", PATH, $MODE, $sub_what); $test = (file_exists($test_inc) && is_readable($test_inc)); if ($test) { if ((!empty($wht)) && (($wht == $sub_what))) { $content = ""; } // Navigation link $content .= ""; } else { $content .= ""; } // Menu title $content .= $_CONFIG['middot'].$sub_title; if ($test) { $content .= ""; } else { $content .= ""; } if ((!empty($wht)) && (($wht == $sub_what))) { $content .= ""; } $wht = $sub_what; $cnt++; if ($cnt < $ctl) { LOAD_TEMPLATE($MODE."_menu_row", false, $content); } else { LOAD_TEMPLATE($MODE."_menu_bottom", false, $content); } } } else { // This is a menu block... ;-) $BLOCK_MODE = true; $INC_BLOCK = sprintf(PATH."inc/modules/%s/action-%s.php", $MODE, $main_action); if ((file_exists($INC_BLOCK)) && (is_readable($INC_BLOCK))) { // Load include file if ((!EXT_IS_ACTIVE($main_action)) || ($main_action == "online")) OUTPUT_HTML(""); } //* DEBUG: */ echo __LINE__."/".$main_cnt."/".$main_action."/".$sub_what.":".$GLOBALS['what']."*
\n"; } $main_cnt++; //* DEBUG: */ echo __LINE__."/".$main_cnt."/".$main_action."/".$sub_what.":".$GLOBALS['what']."*
\n"; if (SQL_NUMROWS($result_main) > $main_cnt) OUTPUT_HTML(""); } // Free memory SQL_FREERESULT($result_main); // Close table //* DEBUG: */ echo __LINE__."/".$main_cnt."/".$main_action."/".$sub_what.":".$GLOBALS['what']."*
\n"; OUTPUT_HTML("

"); //* DEBUG: */ echo __LINE__."/".$main_cnt."/".$main_action."/".$sub_what.":".$GLOBALS['what']."*
\n"; include ($INC_BLOCK); //* DEBUG: */ echo __LINE__."/".$main_cnt."/".$main_action."/".$sub_what.":".$GLOBALS['what']."*
\n"; if ((!EXT_IS_ACTIVE($main_action)) || ($main_action == "online")) OUTPUT_HTML("

"); } } // This patched function will reduce many SELECT queries for the specified or current admin login function IS_ADMIN($admin="") { global $_COOKIE, $ADMINS, $_CONFIG; $ret = false; $passCookie = ""; $valPass = ""; //* DEBUG: */ echo __LINE__."ADMIN:".$admin."
"; // If admin login is not given take current from cookies... if ((empty($admin)) && (!empty($_COOKIE['admin_login'])) && (!empty($_COOKIE['admin_md5']))) { $admin = SQL_ESCAPE($_COOKIE['admin_login']); $passCookie = $_COOKIE['admin_md5']; } //* DEBUG: */ echo __LINE__."ADMIN:".$admin."/".$passCookie."
"; // Search in array for entry if ((!empty($passCookie)) && (isset($ADMINS['password'][$admin])) && (!empty($admin))) { // Count cache hits $_CONFIG['cache_hits']++; // Login data is valid or not? $valPass = generatePassString($ADMINS['password'][$admin]); } elseif (!empty($admin)) { // Search for admin $result = SQL_QUERY_ESC("SELECT HIGH_PRIORITY password FROM "._MYSQL_PREFIX."_admins WHERE login='%s' LIMIT 1", array($admin), __FILE__, __LINE__); // Is he admin? $passDB = ""; if (SQL_NUMROWS($result) == 1) { // Admin login was found so let's load password from DB list($passDB) = SQL_FETCHROW($result); $valPass = generatePassString($passDB); } // Free memory SQL_FREERESULT($result); } if (!empty($valPass)) { // Check if password is valid //* DEBUG: */ echo __LINE__."*".$valPass."/".$passCookie)."*
"; $ret = (($valPass == $passCookie) || (($valPass == "*FAILED*") && (!EXT_IS_ACTIVE("cache")))); } // Return result of comparision //* DEBUG: */ if (!$ret) echo __LINE__."OK!
"; return $ret; } // function ADD_MAX_RECEIVE_LIST($MODE, $default="", $return=false) { global $_POST; $OUT = ""; switch ($MODE) { case "guest": // Guests (in the registration form) are not allowed to select 0 mails per day. $result = SQL_QUERY("SELECT value, comment FROM "._MYSQL_PREFIX."_max_receive WHERE value > 0 ORDER BY value", __FILE__, __LINE__); if (SQL_NUMROWS($result) > 0) { $OUT = ""; while (list($value, $comment) = SQL_FETCHROW($result)) { $OUT .= " \n"; } } // Return - hopefully - the requested data return $ret; } // Aiut function activateExchange() { global $_CONFIG; $result = SQL_QUERY("SELECT userid FROM "._MYSQL_PREFIX."_user_data WHERE status='CONFIRMED' AND max_mails > 0", __FILE__, __LINE__); if (SQL_NUMROWS($result) >= $_CONFIG['activate_xchange']) { // Free memory SQL_FREERESULT($result); // Activate System $SQLs = array( "UPDATE "._MYSQL_PREFIX."_mod_reg SET locked='N', hidden='N', mem_only='Y' WHERE module='order' LIMIT 1", "UPDATE "._MYSQL_PREFIX."_member_menu SET visible='Y', locked='N' WHERE what='order' OR what='unconfirmed' LIMIT 2", "UPDATE "._MYSQL_PREFIX."_config SET activate_xchange='0' WHERE config='0' LIMIT 1" ); // Run SQLs foreach ($SQLs as $sql) { $result = SQL_QUERY($sql, __FILE__, __LINE__); } // Destroy cache } } // function DELETE_USER_ACCOUNT($uid, $reason) { $points = 0; $result = SQL_QUERY_ESC("SELECT (SUM(p.points) - d.used_points) AS points FROM "._MYSQL_PREFIX."_user_points AS p LEFT JOIN "._MYSQL_PREFIX."_user_data AS d ON p.userid=d.userid WHERE p.userid=%d", array(bigintval($uid)), __FILE__, __LINE__); if (SQL_NUMROWS($result) == 1) { // Save his points to add them to the jackpot list($points) = SQL_FETCHROW($result); SQL_FREERESULT($result); // Delete points entries as well $result = SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM "._MYSQL_PREFIX."_user_points WHERE userid=%d", array(bigintval($uid)), __FILE__, __LINE__); // Update mediadata as well if (GET_EXT_VERSION("mediadata") >= "0.0.4") { // Update database MEDIA_UPDATE_ENTRY(array("total_points"), "sub", $points); } // Now, when we have all his points adds them do the jackpot! ADD_JACKPOT($points); } // Delete category selections as well... $result = SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM "._MYSQL_PREFIX."_user_cats WHERE userid=%d", array(bigintval($uid)), __FILE__, __LINE__); // Remove from rallye if found if (EXT_IS_ACTIVE("rallye")) { $result = SQL_QUERY("DELETE LOW_PRIORITY FROM "._MYSQL_PREFIX."_rallye_users WHERE userid=%d", array(bigintval($uid)), __FILE__, __LINE__); } // Now a mail to the user and that's all... $msg = LOAD_EMAIL_TEMPLATE("del-user", $reason, $uid); SEND_EMAIL($uid, ADMIN_DEL_ACCOUNT, $msg); // Ok, delete the account! $result = SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM "._MYSQL_PREFIX."_user_data WHERE userid=%d LIMIT 1", array(bigintval($uid)), __FILE__, __LINE__); } // function META_DESCRIPTION($mod, $wht) { global $_CONFIG, $DEPTH; if (($mod != "admin") && ($mod != "login")) { // Exclude admin and member's area $DESCR = MAIN_TITLE." ".trim($_CONFIG['title_middle'])." ".ADD_DESCR("guest", "what-".$wht, true); unset($DEPTH); OUTPUT_HTML(""); } } // function ADD_JACKPOT($points) { $result = SQL_QUERY("SELECT points FROM "._MYSQL_PREFIX."_jackpot WHERE ok='ok' LIMIT 1", __FILE__, __LINE__); if (SQL_NUMROWS($result) == 0) { // Create line $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_jackpot (ok, points) VALUES ('ok', '%s')", array($points), __FILE__, __LINE__); } else { // Free memory SQL_FREERESULT($result); // Update points $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_jackpot SET points=points+%s WHERE ok='ok' LIMIT 1", array($points), __FILE__, __LINE__); } } // function SUB_JACKPOT($points) { // First failed $ret = "-1"; // Get current points $result = SQL_QUERY("SELECT points FROM "._MYSQL_PREFIX."_jackpot WHERE ok='ok' LIMIT 1", __FILE__, __LINE__); if (SQL_NUMROWS($result) == 0) { // Create line $result = SQL_QUERY("INSERT INTO "._MYSQL_PREFIX."_jackpot (ok, points) VALUES ('ok', 0.00000)", __FILE__, __LINE__); } else { // Free memory SQL_FREERESULT($result); // Read points list($jackpot) = SQL_FETCHROW($result); if ($jackpot >= $points) { // Update points when there are enougth points in jackpot $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_jackpot SET points=points-%s WHERE ok='ok' LIMIT 1", array($points), __FILE__, __LINE__); $ret = $jackpot - $points; } } } // function IS_DEMO() { global $_COOKIE; return ((EXT_IS_ACTIVE("demo")) && ($_COOKIE['admin_login'] == "demo")); } // function LOAD_CONFIG($no="0") { global $CFG_CACHE, $_CONFIG; $CFG_DUMMY = false; // Check for cache extension, cache-array and if the requested configuration is in cache if ((is_array($CFG_CACHE)) && (isset($CFG_CACHE['config'][$no]))) { // Load config from cache $CFG_DUMMY = array(); foreach ($CFG_CACHE as $element=>$cfgs) { $CFG_DUMMY[$element] = $cfgs[$no]; } // Count cache hits $_CONFIG['cache_hits']++; } else { // Load config from DB $result_config = SQL_QUERY_ESC("SELECT * FROM "._MYSQL_PREFIX."_config WHERE config='%d' LIMIT 1", array(bigintval($no)), __FILE__, __LINE__); $CFG_DUMMY = SQL_FETCHARRAY($result_config); SQL_FREERESULT($result_config); } // Return config array return $CFG_DUMMY; } // Gets the matching what name from module function GET_WHAT($MOD_CHECK) { $wht = ""; //* DEBUG: */ echo __LINE__."!".$MOD_CHECK."!
\n"; switch ($MOD_CHECK) { case "admin": $wht = "overview"; break; case "login": case "index": $wht = "welcome"; break; default: $wht = ""; break; } // Return what value return $wht; } // function MODULE_HAS_MENU($mod) { global $EXTENSIONS, $MODULES, $_CONFIG; // All is false by default $ret = false; if (GET_EXT_VERSION("cache") >= "0.1.2") { if (isset($MODULES['has_menu'][$mod])) { // Check module cache and count hit if ($MODULES['has_menu'][$mod] == 'Y') $ret = true; $_CONFIG['cache_hits']++; } elseif (isset($EXTENSIONS['ext_menu'][$mod])) { // Check cache and count hit if ($EXTENSIONS['ext_menu'][$mod] == 'Y') $ret = true; $_CONFIG['cache_hits']++; } } if ((GET_EXT_VERSION("sql_patches") >= "0.3.6") && ($ret === false)) { // Check database for entry $result = SQL_QUERY_ESC("SELECT has_menu FROM "._MYSQL_PREFIX."_mod_reg WHERE module='%s' LIMIT 1", array($mod), __FILE__, __LINE__); if (SQL_NUMROWS($result) == 1) { list($has_menu) = SQL_FETCHROW($result); if ($has_menu == 'Y') $ret = true; } // Free memory SQL_FREERESULT($result); } elseif (GET_EXT_VERSION("sql_patches") == "") { // No sql_patches installed, so maybe in admin area? if ((IS_ADMIN()) && ($mod == "admin")) return true; // Then there is a menu! } // Return status return $ret; } // ?>