************************************************************************/
// Some security stuff...
-if ((ereg(basename(__FILE__), $_SERVER['PHP_SELF'])) || (!IS_ADMIN()))
-{
+if ((!defined('__SECURITY')) || (!IS_ADMIN())) {
$INC = substr(dirname(__FILE__), 0, strpos(dirname(__FILE__), "/inc") + 4) . "/security.php";
require($INC);
}
+
// Add description as navigation point
-ADD_DESCR("admin", basename(__FILE__));
+ADD_DESCR("admin", __FILE__);
-OPEN_TABLE("100%", "admin_content admin_content_align", "");
-if (!empty($_GET['u_id']))
-{
+if (REQUEST_ISSET_GET(('uid'))) {
// Check if the user already exists
- $result = SQL_QUERY_ESC("SELECT surname, family, email FROM "._MYSQL_PREFIX."_user_data WHERE userid=%d LIMIT 1",
- array(bigintval($_GET['u_id'])), __FILE__, __LINE__);
- if (SQL_NUMROWS($result) == 1)
- {
+ $result = SQL_QUERY_ESC("SELECT surname, family, email FROM `{!_MYSQL_PREFIX!}_user_data` WHERE userid=%s LIMIT 1",
+ array(bigintval(REQUEST_GET('uid'))), __FILE__, __LINE__);
+ if (SQL_NUMROWS($result) == 1) {
// Loads surname, family's name and the email address
list($sname, $fname, $email) = SQL_FETCHROW($result);
SQL_FREERESULT($result);
// Prepare constants
- define('__CATS_BASE' , "<A href=\"".URL."/modules.php?module=admin&u_id=");
- define('__UID' , bigintval($_GET['u_id']));
+ define('__CATS_BASE' , "<a href=\"{!URL!}/modules.php?module=admin&uid=");
+ define('__UID' , bigintval(REQUEST_GET('uid')));
define('__MEMBER_LINKS', MEMBER_ACTION_LINKS(__UID));
- define('__EMAIL' , "<A href=\"".CREATE_EMAIL_LINK($email, "user_data")."\">".$sname." ".$fname."</A>");
+ define('__EMAIL' , "<a href=\"".CREATE_EMAIL_LINK($email, "user_data")."\">".$sname." ".$fname."</a>");
// Ok, list categories of this user
- $result_cats = SQL_QUERY("SELECT id, cat FROM "._MYSQL_PREFIX."_cats ORDER BY sort", __FILE__, __LINE__);
+ $result_cats = SQL_QUERY("SELECT id, cat FROM `{!_MYSQL_PREFIX!}_cats` ORDER BY `sort`", __FILE__, __LINE__);
- if (SQL_NUMROWS($result_cats) > 0)
- {
+ if (SQL_NUMROWS($result_cats) > 0) {
// List categories
$cnt = "1"; $SW = 2; $OUT = "";
- while (list($cid, $cat) = SQL_FETCHROW($result_cats))
- {
+ while (list($cid, $cat) = SQL_FETCHROW($result_cats)) {
// Check user's selection
- $result_user = SQL_QUERY_ESC("SELECT id FROM "._MYSQL_PREFIX."_user_cats WHERE userid=%d AND cat_id=%d LIMIT 1",
- array(bigintval($_GET['u_id']), bigintval($cid)), __FILE__, __LINE__);
+ $result_user = SQL_QUERY_ESC("SELECT id FROM `{!_MYSQL_PREFIX!}_user_cats` WHERE userid=%s AND cat_id=%s LIMIT 1",
+ array(bigintval(REQUEST_GET('uid')), bigintval($cid)), __FILE__, __LINE__);
// Set selection
- $SELECTED = "<FONT color=\"red\">".NO."</FONT>";
- if (SQL_NUMROWS($result_user) == 1) $SELECTED = "<FONT color=\"green\">".YES."</FONT>";
+ $SELECTED = "<font color=\"red\">{--NO--}</div>";
+ if (SQL_NUMROWS($result_user) == 1) $SELECTED = "<font color=\"green\">{--YES--}</div>";
// Prepare array for the row template
$content = array(
// Load main template
LOAD_TEMPLATE("admin_list_cats");
- }
- else
- {
+ } else {
// No categories selected! :-(
LOAD_TEMPLATE("admin_list_cats_404");
}
- }
- else
- {
+ } else {
// User not found
- LOAD_TEMPLATE("admin_settings_saved", false, ADMIN_MEMBER_404_1.__UID.ADMIN_MEMBER_404_2);
+ LOAD_TEMPLATE("admin_settings_saved", false, sprintf(getMessage('ADMIN_MEMBER_404'), constant('__UID')));
}
-}
- else
-{
+} else {
// Output selection form with all confirmed user accounts listed
ADD_MEMBER_SELECTION_BOX();
}
-CLOSE_TABLE();
+
//
?>
projects / mailer.git / blobdiff