X-Git-Url: https://git.mxchange.org/?p=mailer.git;a=blobdiff_plain;f=inc%2Flibs%2Fadmins_functions.php;h=1c43c5ec22a8f2581c2b3a19e67569784850cde4;hp=04511c31430ea6ed6bf07600def8898a5acb4f65;hb=e5527fd38a6585c8466dc28d013f12d21eb7c07a;hpb=5071030af40e69ca4284642f44758964e18f5be8

diff --git a/inc/libs/admins_functions.php b/inc/libs/admins_functions.php
index 04511c3143..1c43c5ec22 100644
--- a/inc/libs/admins_functions.php
+++ b/inc/libs/admins_functions.php
@@ -1,7 +1,7 @@
 <?php
 /************************************************************************
- * MXChange v0.2.1                                    Start: 06/30/2003 *
- * ===============                              Last change: 11/27/2004 *
+ * Mailer v0.2.1-FINAL                                Start: 06/30/2003 *
+ * ===================                          Last change: 11/27/2004 *
  *                                                                      *
  * -------------------------------------------------------------------- *
  * File              : admins_functions.php                             *
@@ -14,11 +14,10 @@
  * $Date::                                                            $ *
  * $Tag:: 0.2.1-FINAL                                                 $ *
  * $Author::                                                          $ *
- * Needs to be in all Files and every File needs "svn propset           *
- * svn:keywords Date Revision" (autoprobset!) at least!!!!!!            *
  * -------------------------------------------------------------------- *
- * Copyright (c) 2003 - 2008 by Roland Haeder                           *
- * For more information visit: http://www.mxchange.org                  *
+ * Copyright (c) 2003 - 2009 by Roland Haeder                           *
+ * Copyright (c) 2009 - 2013 by Mailer Developer Team                   *
+ * For more information visit: http://mxchange.org                      *
  *                                                                      *
  * This program is free software; you can redistribute it and/or modify *
  * it under the terms of the GNU General Public License as published by *
@@ -38,111 +37,134 @@
 
 // Some security stuff...
 if (!defined('__SECURITY')) {
-	$INC = substr(dirname(__FILE__), 0, strpos(dirname(__FILE__), '/inc') + 4) . '/security.php';
-	require($INC);
-}
+	die();
+} // END - if
 
 // Check ACL for menu combination
-function adminsCheckAdminAcl ($act, $wht) {
-	// If action is login or logout allow allways!
-	$default = "allow";
-	if (($act == "login") || ($act == "logout")) return true;
-
-	// Default is deny
-	$ret = false;
-
-	// Get admin's ID
-	$aid = getCurrentAdminId();
+function isAdminsAllowedByAcl ($action, $what) {
+	// Get admin's id
+	$adminId = getCurrentAdminId();
+
+	if (($action == 'login') || ($action == 'logout')) {
+		// If action is login or logout allow allways!
+		return TRUE;
+	} elseif (isset($GLOBALS[__FUNCTION__][$adminId][$action][$what])) {
+		// If we have cache, use it
+		return $GLOBALS[__FUNCTION__][$adminId][$action][$what];
+	}
 
 	// Get admin's defult access right
-	$default = getAdminDefaultAcl($aid);
+	$default = getAdminDefaultAcl($adminId);
 
-	if (!empty($wht)) {
+	if (!empty($what)) {
 		// Check for parent menu:
 		// First get it's action value
-		$parent_action = getModeAction('admin', $wht);
+		$parent_action = getActionFromModuleWhat('admin', $what);
 
 		// Check with this function...
-		$parent = adminsCheckAdminAcl($parent_action, '');
+		$parent = isAdminsAllowedByAcl($parent_action, '');
 	} else {
 		// Anything else is true!
-		$parent = false;
+		$parent = FALSE;
 	}
 
 	// Shall I test for a main or sub menu? (action or what?)
-	$acl_mode = "failed";
-	if ((GET_EXT_VERSION('cache') >= '0.1.2') && (count($GLOBALS['cache_array']['admin_acls']) > 0)) {
+	$aclMode = 'failed';
+	if ((isExtensionInstalledAndNewer('cache', '0.1.2')) && (isset($GLOBALS['cache_array']['admin_acls'])) && (count($GLOBALS['cache_array']['admin_acls']) > 0)) {
 		// Lookup in cache
-		if ((!empty($act)) && (isset($GLOBALS['cache_array']['admin_acls']['action_menu'][$aid])) & ($GLOBALS['cache_array']['admin_acls']['action_menu'][$aid] == $act)) {
+		if ((!empty($action)) && (isset($GLOBALS['cache_array']['admin_acls']['action_menu'][$adminId])) & (in_array($action, $GLOBALS['cache_array']['admin_acls']['action_menu'][$adminId]))) {
+			// Search for it
+			$key = array_search($action, $GLOBALS['cache_array']['admin_acls']['action_menu'][$adminId]);
+
 			// Main menu line found
-			$acl_mode = $GLOBALS['cache_array']['admin_acls']['access_mode'][$aid];
+			$aclMode = $GLOBALS['cache_array']['admin_acls']['access_mode'][$adminId][$key];
+
+			// Log debug message
+			//* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'action=' . $action . ',key=' . $key . ',acl_mode=' . $aclMode);
 
 			// Count cache hits
-			incrementConfigEntry('cache_hits');
-		} elseif ((!empty($wht)) && (isset($GLOBALS['cache_array']['admin_acls']['what_menu'][$aid])) && ($GLOBALS['cache_array']['admin_acls']['what_menu'][$aid] == $wht)) {
+			incrementStatsEntry('cache_hits');
+		} elseif ((!empty($what)) && (isset($GLOBALS['cache_array']['admin_acls']['what_menu'][$adminId])) && (in_array($what, $GLOBALS['cache_array']['admin_acls']['what_menu'][$adminId]))) {
+			// Search for it
+			$key = array_search($action, $GLOBALS['cache_array']['admin_acls']['what_menu'][$adminId]);
+
 			// Check sub menu
-			$acl_mode = $GLOBALS['cache_array']['admin_acls']['access_mode'][$aid];
+			$aclMode = $GLOBALS['cache_array']['admin_acls']['access_mode'][$adminId][$key];
+
+			// Log debug message
+			//* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'what=' . $what . ',key=' . $key . ',acl_mode=' . $aclMode);
 
 			// Count cache hits
-			incrementConfigEntry('cache_hits');
+			incrementStatsEntry('cache_hits');
 		}
-	} elseif (!EXT_IS_ACTIVE('cache')) {
-		// Old version, so load it from database
-		if (!empty($act)) {
+	} elseif (!isExtensionActive('cache')) {
+		// Extension ext-cache is absent, so load it from database
+		$result = FALSE;
+		if (!empty($action)) {
 			// Main menu
-			$result = SQL_QUERY_ESC("SELECT access_mode FROM `{!_MYSQL_PREFIX!}_admins_acls` WHERE admin_id=%s AND action_menu='%s' LIMIT 1",
-			array(bigintval($aid), $act), __FUNCTION__, __LINE__);
-		} elseif (!empty($wht)) {
+			$result = sqlQueryEscaped("SELECT `access_mode` FROM `{?_MYSQL_PREFIX?}_admins_acls` WHERE `admin_id`=%s AND `action_menu`='%s' LIMIT 1",
+				array(bigintval($adminId), $action), __FUNCTION__, __LINE__);
+		} elseif (!empty($what)) {
 			// Sub menu
-			$result = SQL_QUERY_ESC("SELECT access_mode FROM `{!_MYSQL_PREFIX!}_admins_acls` WHERE admin_id=%s AND what_menu='%s' LIMIT 1",
-			array(bigintval($aid), $wht), __FUNCTION__, __LINE__);
+			$result = sqlQueryEscaped("SELECT `access_mode` FROM `{?_MYSQL_PREFIX?}_admins_acls` WHERE `admin_id`=%s AND `what_menu`='%s' LIMIT 1",
+				array(bigintval($adminId), $what), __FUNCTION__, __LINE__);
 		}
 
 		// Is an entry found?
-		if (SQL_NUMROWS($result) == 1) {
+		if (sqlNumRows($result) == 1) {
 			// Load ACL
-			list($acl_mode) = SQL_FETCHROW($result);
+			list($aclMode) = sqlFetchRow($result);
 		} // END - if
 
 		// Free memory
-		SQL_FREERESULT($result);
+		sqlFreeResult($result);
 	}
 
+	// But default result is failed
+	$GLOBALS[__FUNCTION__][$adminId][$action][$what] = FALSE;
+
 	// Check ACL and (maybe) allow
-	if (($default == "allow") || (($default == "deny") && ($acl_mode == "allow")) || ($parent === true)) {
+	//* DEBUG: */ debugOutput('default='.$default.',acl_mode='.$aclMode.',parent='.intval($parent));
+	if ((($default == 'allow') && ($aclMode != 'deny')) || (($default == 'deny') && ($aclMode == 'allow')) || ($parent === TRUE) || (($default == 'NO-ACL') && ($aclMode == 'failed') && ($parent === FALSE))) {
 		// Access is granted
-		$ret = true;
+		$GLOBALS[__FUNCTION__][$adminId][$action][$what] = TRUE;
 	} // END - if
 
 	// Return value
-	//* DEBUG: */ print __FUNCTION__."[".__LINE__."]:act={$act},wht={$wht},default={$default},acl_mode={$acl_mode}<br />\n";
-	return $ret;
+	//* DEBUG: */ debugOutput(__FUNCTION__.'['.__LINE__.']:act='.$action.',wht='.$what.',default='.$default.',aclMode='.$aclMode);
+	return $GLOBALS[__FUNCTION__][$adminId][$action][$what];
 }
 
 // Create email link to admins's account
-function adminsCreateEmailLink ($email, $mod='admin') {
+function generateAdminEmailLink ($email, $mod = 'admin') {
 	// Is it an email?
-	if (strpos($email, "@") !== false) {
+	if (isInString('@', $email)) {
 		// Create email link
-		$result = SQL_QUERY_ESC("SELECT `id`
-FROM `{!_MYSQL_PREFIX!}_admins`
-WHERE `email`='%s' LIMIT 1",
+		$result = sqlQueryEscaped("SELECT `id`
+FROM
+	`{?_MYSQL_PREFIX?}_admins`
+WHERE
+	'%s' REGEXP `email`
+LIMIT 1",
 		array($email), __FUNCTION__, __LINE__);
 
 		// Is there an entry?
-		if (SQL_NUMROWS($result) == 1) {
+		if (sqlNumRows($result) == 1) {
 			// Load userid
-			list($aid) = SQL_FETCHROW($result);
+			list($adminId) = sqlFetchRow($result);
 
-			// Rewrite email address to contact link
-			$email = "{!URL!}/modules.php?module=".$mod."&amp;what=admins_contct&amp;admin=".bigintval($aid);
+			// Call this function again
+			$email = generateAdminEmailLink($adminId, $mod);
 		} // END - if
 
 		// Free memory
-		SQL_FREERESULT($result);
-	} elseif ((is_int($email)) && ($email > 0)) {
-		// Direct ID given
-		$email = "{!URL!}/modules.php?module=".$mod."&amp;what=admins_contct&amp;admin=".bigintval($email);
+		sqlFreeResult($result);
+	} elseif (isValidId($email)) {
+		// Direct id given
+		$email = '{%url=modules.php?module=' . $mod . '&amp;what=admins_contct&amp;id=' . bigintval($email) . '%}';
+	} else {
+		// This is strange and needs fixing
+		reportBug(__FUNCTION__, __LINE__, 'email[' . gettype($email) . ']=' . $email . ',mod=' . $mod . ' - This should not happen.');
 	}
 
 	// Return rewritten (?) email address
@@ -150,250 +172,588 @@ WHERE `email`='%s' LIMIT 1",
 }
 
 // Change a lot admin account
-function adminsChangeAdminAccount ($POST) {
+function adminsChangeAdminAccount ($postData, $element = '', $displayMessage = TRUE) {
 	// Begin the update
-	$cache_update = 0;
-	foreach ($POST['login'] as $id => $login) {
-		// Secure ID number
+	$cache_update = '0';
+	$message = '';
+
+	foreach ($postData['login'] as $id => $login) {
+		// Secure id number
 		$id = bigintval($id);
+		//* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'id=' . $id . ',login=' . $login);
 
 		// When both passwords match update admin account
-		if ($POST['pass1'][$id] == $POST['pass2'][$id]) {
-			// Save only when both passwords are the same (also when they are empty)
-			$add = ''; $cache_update = '1';
-
-			// Generate hash
-			$hash = generateHash($POST['pass1'][$id]);
-
-			// Save password when set
-			if (!empty($POST['pass1'][$id])) $add = sprintf(", password='%s'", SQL_ESCAPE($hash));
-
-			// Get admin's ID
-			$aid = getCurrentAdminId();
-			$salt = substr(GET_ADMIN_HASH($aid), 0, -40);
-
-			// Rewrite cookie when it's own account
-			if ($aid == $id) {
-				// Set timeout cookie
-				setSession('admin_last', time());
-
-				if ($login != getSession('admin_login')) {
-					// Update login cookie
-					setSession('admin_login', $login);
-
-					// Update password cookie as well?
-					if (!empty($add)) setSession('admin_md5', $hash);
-				} elseif (generateHash($POST['pass1'][$id], $salt) != getSession('admin_md5')) {
-					// Update password cookie
-					setSession('admin_md5', $hash);
-				}
-			} // END - if
-
-			// Get default ACL from admin to check if we can allow him to change the default ACL
-			$default = getAdminDefaultAcl(getCurrentAdminId());
-
-			// Update admin account
-			if ($default == "allow") {
-				// Allow changing default ACL
-				SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_admins` SET
-login='%s'".$add.",
-email='%s',
-default_acl='%s',
-la_mode='%s'
-WHERE `id`=%s LIMIT 1",
+		if ((!empty($element)) && (isset($postData[$element]))) {
+			// Save this setting
+			sqlQueryEscaped("UPDATE `{?_MYSQL_PREFIX?}_admins` SET `%s`='%s' WHERE `id`=%s LIMIT 1",
 				array(
-				$login,
-				$POST['email'][$id],
-				$POST['mode'][$id],
-				$POST['la_mode'][$id],
-				$id
+					$element,
+					$postData[$element][$id],
+					$id
 				), __FUNCTION__, __LINE__);
+
+			// Admin account saved
+			$message = '{--ADMIN_ACCOUNT_SAVED--}';
+		} elseif ((!empty($postData['password1'])) && (!empty($postData['password2']))) {
+			// Update only if both passwords match
+			if (($postData['password1'][$id] == $postData['password2'][$id])) {
+				// Save only when both passwords are the same (also when they are empty)
+				$add = ''; $cache_update = 1;
+
+				// Generate hash
+				$hash = generateHash($postData['password1'][$id]);
+
+				// Save password when set
+				if (!empty($postData['password1'][$id])) {
+					$add = sprintf(",`password`='%s'", sqlEscapeString($hash));
+				} // END - if
+
+				// Get admin's id
+				$adminId = getCurrentAdminId();
+				$salt = substr(getAdminHash(getAdminLogin($adminId)), 0, -40);
+
+				// Rewrite cookie when it's own account
+				if ($adminId == $id) {
+					// Set timeout cookie
+					setAdminLast(time());
+
+					if ($adminId != getCurrentAdminId()) {
+						// Update login cookie
+						setAdminId($adminId);
+
+						// Update password cookie as well?
+						if (!empty($add)) {
+							setAdminMd5($hash);
+						} // END - if
+					} elseif (generateHash($postData['password1'][$id], $salt) != getAdminMd5()) {
+						// Update password cookie
+						setAdminMd5($hash);
+					}
+				} // END - if
+
+				// Get default ACL from admin to check if we can allow him to change the default ACL
+				$default = getAdminDefaultAcl(getCurrentAdminId());
+
+				// Update admin account
+				if ($default == 'allow') {
+					// Allow changing default ACL
+					sqlQueryEscaped("UPDATE
+	`{?_MYSQL_PREFIX?}_admins`
+SET
+	`login`='%s'" . $add . ",
+	`email`='%s',
+	`default_acl`='%s',
+	`la_mode`='%s'
+WHERE
+	`id`=%s
+LIMIT 1",
+					array(
+						$login,
+						$postData['email'][$id],
+						$postData['access_mode'][$id],
+						$postData['la_mode'][$id],
+						$id
+					), __FUNCTION__, __LINE__);
+				} else {
+					// Do not allow it here
+					sqlQueryEscaped("UPDATE
+	`{?_MYSQL_PREFIX?}_admins`
+SET
+	`login`='%s'" . $add . ",
+	`email`='%s',
+	`la_mode`='%s'
+WHERE
+	`id`=%s
+LIMIT 1",
+					array(
+						$login,
+						$postData['email'][$id],
+						$postData['la_mode'][$id],
+						$id
+					), __FUNCTION__, __LINE__);
+				}
+
+				// Admin account saved
+				$message = '{--ADMIN_ACCOUNT_SAVED--}';
 			} else {
-				// Do not allow it here
-				SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_admins` SET
-login='%s'".$add.",
-email='%s',
-la_mode='%s'
-WHERE `id`=%s LIMIT 1",
-				array(
-				$login,
-				$POST['email'][$id],
-				$POST['la_mode'][$id],
-				$id
-				), __FUNCTION__, __LINE__);
+				// Passwords did not match
+				$message = '{--ADMIN_ADMINS_ERROR_PASS_MISMATCH--}';
 			}
+		} else {
+			// Update whole array
+			$SQL = getUpdateSqlFromArray($postData, 'admins', 'id', '%s', array('login', 'id'), $id);
 
-			// Purge cache
-			cachePurgeAdminMenu($id);
+			// Run it
+			sqlQueryEscaped($SQL, array(bigintval($id)), __FUNCTION__, __LINE__);
 
-			// Admin account saved
-			$message = ADMIN_ACCOUNT_SAVED;
-		} else {
-			// Passwords did not match
-			$message = ADMINS_ERROR_PASS_MISMATCH;
+			// Was it updated?
+			if (sqlAffectedRows() == 1) {
+				// Admin account saved
+				$message = '{--ADMIN_ACCOUNT_SAVED--}';
+			} else {
+				// Passwords did not match
+				$message = '{--ADMIN_ADMINS_ERROR_PASS_MISMATCH--}';
+			}
 		}
+	} // END - foreach
 
-		// Display message
-		if (!empty($message)) {
-			LOAD_TEMPLATE('admin_settings_saved', false, $message);
-		}
-	}
+	// Display message if not empty and allowed
+	if ((!empty($message)) && ($displayMessage === TRUE)) {
+		// Display it
+		displayMessage($message);
+	} // END - if
 
 	// Remove cache file
-	runFilterChain('post_admin_edited', REQUEST_POST_ARRAY());
+	runFilterChain('post_form_submited', postRequestArray());
+
+	// Return message
+	return $message;
 }
 
 // Make admin accounts editable
-function adminsEditAdminAccount ($POST) {
+function adminsEditAdminAccount ($postData) {
 	// "Resolve" current's admin access mode
 	$currMode = getAdminDefaultAcl(getCurrentAdminId());
 
 	// Begin the edit loop
-	$OUT = ''; $SW = 2;
-	foreach ($POST['sel'] as $id => $selected) {
-		// Secure ID number
+	$OUT = '';
+	foreach ($postData['sel'] as $id => $selected) {
+		// Secure id number
 		$id = bigintval($id);
 
 		// Get the admin's data
-		$result = SQL_QUERY_ESC("SELECT login, email, default_acl AS mode, la_mode FROM `{!_MYSQL_PREFIX!}_admins` WHERE `id`=%s LIMIT 1",
-		array($id), __FUNCTION__, __LINE__);
-		if ((SQL_NUMROWS($result) == 1) && ($selected == 1)) {
+		$result = sqlQueryEscaped('SELECT `login`, `email` FROM `{?_MYSQL_PREFIX?}_admins` WHERE `id`=%s LIMIT 1',
+			array($id), __FUNCTION__, __LINE__);
+		if ((sqlNumRows($result) == 1) && ($selected == 1)) {
 			// Entry found
-			$content = SQL_FETCHARRAY($result);
-			SQL_FREERESULT($result);
+			$content = sqlFetchArray($result);
 
 			// Prepare some more data for the template
-			$content['sw'] = $SW;
 			$content['id'] = $id;
 
 			// Shall we allow changing default ACL?
-			if ($currMode == "allow") {
-				// Allow chaning it
-				$content['mode']    = generateOptionList('/ARRAY/', array("allow", "deny"), array(constant('ADMINS_ALLOW_MODE'), constant('ADMINS_DENY_MODE')), $content['mode']);
+			if ($currMode == 'allow') {
+				// Allow changing it
+				$content['access_mode'] = '{%pipe,generateAdminAccessModeSelectionBox=' . $id . '%}';
 			} else {
 				// Don't allow it
-				$content['mode'] = "&nbsp;";
+				$content['access_mode'] = '&nbsp;';
 			}
-			$content['la_mode'] = generateOptionList('/ARRAY/', array("global", "OLD", "NEW"), array(ADMINS_GLOBAL_LA_SETTING, ADMINS_OLD_LA_SETTING, ADMINS_NEW_LA_SETTING), $content['la_mode']);
 
 			// Load row template and switch color
-			$OUT .= LOAD_TEMPLATE("admin_edit_admins_row", true, $content);
-			$SW = 3 - $SW;
-		}
-	}
-	define('__ADMINS_ROWS', $OUT);
+			$OUT .= loadTemplate('admin_edit_admins_row', TRUE, $content);
+		} // END - if
+
+		// Free result
+		sqlFreeResult($result);
+	} // END - foreach
 
 	// Load template
-	LOAD_TEMPLATE("admin_edit_admins");
+	loadTemplate('admin_edit_admins', FALSE, $OUT);
+}
+
+// Generate access mode selection box for given admin id
+function generateAdminAccessModeSelectionBox ($adminId = NULL) {
+	// Start the selection box
+	$OUT = '<select name="access_mode[' . $adminId . ']" size="1" class="form_select">';
+
+	// Add option list
+	$OUT .= generateOptions(
+		'/ARRAY/',
+		array(
+			'allow',
+			'deny'
+		), array(
+			'{--ADMIN_ADMINS_ACCESS_MODE_ALLOW--}',
+			'{--ADMIN_ADMINS_ACCESS_MODE_DENY--}'
+		),
+		getAdminDefaultAcl($adminId)
+	);
+
+	// Finish it
+	$OUT .= '</select>';
+
+	// Return content
+	return $OUT;
+}
+
+// Generate menu mode selection box for given admin it
+function generateAdminMenuModeSelectionBox ($adminId = NULL) {
+	// Start the selection box
+	$OUT = '<select name="la_mode[{%pipe,convertNullToZero=' . convertZeroToNull($adminId) . '%}]" size="1" class="form_select">';
+
+	// Add option list
+	$OUT .= generateOptions(
+		'/ARRAY/',
+		array(
+			'global',
+			'OLD',
+			'NEW'
+		), array(
+			'{--ADMIN_ADMINS_LA_MODE_GLOBAL--}',
+			'{--ADMIN_ADMINS_LA_MODE_OLD--}',
+			'{--ADMIN_ADMINS_LA_MODE_NEW--}'
+		),
+		getAdminMenuMode($adminId)
+	);
+
+	// Finish it
+	$OUT .= '</select>';
+
+	// Return content
+	return $OUT;
 }
 
 // Delete given admin accounts
-function adminsDeleteAdminAccount ($POST) {
+function adminsDeleteAdminAccount ($postData) {
 	// Check if this account is the last one which cannot be deleted...
-	$result_main = SQL_QUERY("SELECT `id` FROM `{!_MYSQL_PREFIX!}_admins`", __FUNCTION__, __LINE__);
-	$accounts = SQL_NUMROWS($result_main);
-	SQL_FREERESULT($result_main);
-	if ($accounts > 1) {
+	if (countSumTotalData('', 'admins', 'id', '', TRUE) > 1) {
 		// Delete accounts
-		$OUT = ''; $SW = 2;
-		foreach ($POST['sel'] as $id => $selected) {
-			// Secure ID number
+		$OUT = '';
+		foreach ($postData['sel'] as $id => $selected) {
+			// Secure id number
 			$id = bigintval($id);
 
 			// Get the admin's data
-			$result = SQL_QUERY_ESC("SELECT login, email, default_acl AS mode, la_mode FROM `{!_MYSQL_PREFIX!}_admins` WHERE `id`=%s LIMIT 1",
-			array($id), __FUNCTION__, __LINE__);
-			if (SQL_NUMROWS($result) == 1) {
-				// Entry found
-				$content = SQL_FETCHARRAY($result);
-				SQL_FREERESULT($result);
-				$content['mode'] = constant('ADMINS_'.strtoupper($content['mode']).'_MODE');
-				$content['la_mode'] = constant('ADMINS_'.strtoupper($content['la_mode']).'_LA_SETTING');
+			$result = sqlQueryEscaped('SELECT
+	`login`,
+	`email`,
+	`default_acl` AS `access_mode`,
+	`la_mode`
+FROM
+	`{?_MYSQL_PREFIX?}_admins`
+WHERE
+	`id`=%s
+LIMIT 1',
+				array($id), __FUNCTION__, __LINE__);
+
+			// Is there an entry?
+			if (sqlNumRows($result) == 1) {
+				// Entry found, so load data
+				$content = sqlFetchArray($result);
+				$content['access_mode'] = '{--ADMIN_ADMINS_ACCESS_MODE_' . strtoupper($content['access_mode'])    . '--}';
+				$content['la_mode']     = '{--ADMIN_ADMINS_LA_MODE_' . strtoupper($content['la_mode']) . '--}';
 
 				// Prepare some more data
-				$content['sw'] = $SW;
 				$content['id'] = $id;
 
 				// Load row template and switch color
-				$OUT .= LOAD_TEMPLATE("admin_del_admins_row", true, $content);
-				$SW = 3 - $SW;
-			}
-		}
-		define('__ADMINS_ROWS', $OUT);
+				$OUT .= loadTemplate('admin_delete_admins_row', TRUE, $content);
+			} // END - if
+
+			// Free result
+			sqlFreeResult($result);
+		} // END - foreach
 
 		// Load template
-		LOAD_TEMPLATE("admin_del_admins");
+		loadTemplate('admin_delete_admins', FALSE, $OUT);
 	} else {
 		// Cannot delete last account!
-		LOAD_TEMPLATE('admin_settings_saved', false, getMessage('ADMIN_ADMINS_CANNOT_DELETE_LAST'));
+		displayMessage('{--ADMIN_ADMINS_CANNOT_DELETE_LAST--}');
 	}
 }
 
 // Remove the given accounts
-function adminsRemoveAdminAccount ($POST) {
+function adminsRemoveAdminAccount ($postData) {
 	// Begin removal
-	$cache_update = 0;
-	foreach ($POST['sel'] as $id => $del) {
-		// Secure ID number
+	$cache_update = '0';
+	foreach ($postData['sel'] as $id => $del) {
+		// Secure id number
 		$id = bigintval($id);
 
 		// Delete only when it's not your own account!
 		if (($del == 1) && (getCurrentAdminId() != $id)) {
 			// Rewrite his tasks to all admins
-			SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_task_system` SET `assigned_admin`=0 WHERE `assigned_admin`=%s",
-			array($id), __FUNCTION__, __LINE__);
+			sqlQueryEscaped('UPDATE `{?_MYSQL_PREFIX?}_task_system` SET `assigned_admin`=NULL WHERE `assigned_admin`=%s',
+				array($id), __FUNCTION__, __LINE__);
 
 			// Remove account
-			SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM `{!_MYSQL_PREFIX!}_admins` WHERE `id`=%s LIMIT 1",
-			array($id), __FUNCTION__, __LINE__);
-
-			// Purge cache
-			cachePurgeAdminMenu($id);
-			$cache_update = '1';
+			sqlQueryEscaped('DELETE LOW_PRIORITY FROM `{?_MYSQL_PREFIX?}_admins` WHERE `id`=%s LIMIT 1',
+				array($id), __FUNCTION__, __LINE__);
 		}
 	}
 
 	// Remove cache if cache system is activated
-	runFilterChain('post_admin_deleted', REQUEST_POST_ARRAY());
+	runFilterChain('post_form_deleted', postRequestArray());
 }
 
 // List all admin accounts
 function adminsListAdminAccounts() {
 	// Select all admin accounts
-	$result = SQL_QUERY("SELECT id, login, email, default_acl AS mode, la_mode FROM `{!_MYSQL_PREFIX!}_admins` ORDER BY login ASC", __FUNCTION__, __LINE__);
-	$OUT = ''; $SW = 2;
-	while ($content = SQL_FETCHARRAY($result)) {
+	$result = sqlQuery('SELECT
+	`id`,
+	`login`,
+	`email`,
+	`default_acl` AS `access_mode`,
+	`la_mode`
+FROM
+	`{?_MYSQL_PREFIX?}_admins`
+ORDER BY
+	`login` ASC', __FUNCTION__, __LINE__);
+	$OUT = '';
+	while ($content = sqlFetchArray($result)) {
 		// Compile some variables
-		$content['mode'] = constant('ADMINS_'.strtoupper($content['mode']).'_MODE');
-		$content['la_mode'] = constant('ADMINS_'.strtoupper($content['la_mode']).'_LA_SETTING');
-
-		// Prepare some more data
-		$content['sw']         = $SW;
-		$content['email_link'] = generateMemberEmailLink($content['id']);
+		$content['access_mode'] = '{--ADMIN_ADMINS_ACCESS_MODE_' . strtoupper($content['access_mode'])    . '--}';
+		$content['la_mode']     = '{--ADMIN_ADMINS_LA_MODE_' . strtoupper($content['la_mode']) . '--}';
 
 		// Load row template and switch color
-		$OUT .= LOAD_TEMPLATE("admin_list_admins_row", true, $content);
-		$SW = 3 - $SW;
-	}
+		$OUT .= loadTemplate('admin_list_admins_row', TRUE, $content);
+	} // END - while
 
 	// Free memory
-	SQL_FREERESULT($result);
-	define('__ADMINS_ROWS', $OUT);
+	sqlFreeResult($result);
 
 	// Load template
-	LOAD_TEMPLATE("admin_list_admins");
+	loadTemplate('admin_list_admins', FALSE, $OUT);
+}
+
+// Sends out mail to all administrators
+// IMPORTANT: Please use sendAdminNotification() instead of calling this function directly
+function sendAdminsEmails ($subject, $template, $content, $userid) {
+	// Trim template name
+	$template = trim($template);
+
+	// Load email template
+	$message = loadEmailTemplate($template, $content, $userid);
+
+	// Check which admin shall receive this mail
+	$result = sqlQueryEscaped("SELECT `admin_id` FROM `{?_MYSQL_PREFIX?}_admins_mails` WHERE `mail_template`='%s' ORDER BY `admin_id` ASC",
+		array($template), __FUNCTION__, __LINE__);
+
+	// No entries found?
+	if (ifSqlHasZeroNums($result)) {
+		// Is ext-admins' version at least 0.7.9?
+		if (isExtensionInstalledAndNewer('admins', '0.7.9')) {
+			// Create new entry (to all admins)
+			sqlQueryEscaped("INSERT INTO `{?_MYSQL_PREFIX?}_admins_mails` (`admin_id`, `mail_template`) VALUES (NULL, '%s')",
+				array($template), __FUNCTION__, __LINE__);
+		} // END - if
+
+		// Select all email adresses (default)
+		$result = sqlQuery('SELECT `email` FROM `{?_MYSQL_PREFIX?}_admins` ORDER BY `id` ASC',
+			__FUNCTION__, __LINE__);
+	} else {
+		// Load admin ids...
+		// @TODO This can be, somehow, rewritten
+		$adminIds = array();
+		while ($content = sqlFetchArray($result)) {
+			array_push($adminIds, $content['admin_id']);
+		} // END - while
+
+		// Free memory
+		sqlFreeResult($result);
+
+		// Init result
+		$result = FALSE;
+
+		// "implode" ids and query string
+		$adminId = implode(',', $adminIds);
+
+		// To which admin shall we sent it?
+		if ($adminId == '-1') {
+			// Is an "event"
+			if (isExtensionActive('events')) {
+				// Add line to user events
+				EVENTS_ADD_LINE($subject, $message, $userid);
+			} else {
+				// Log error for debug
+				logDebugMessage(__FUNCTION__, __LINE__, sprintf('Extension ext-events missing: template=%s,subj=%s,userid=%s',
+					$template,
+					$subject,
+					$userid
+				));
+			}
+
+			// Abort here as below while() loop will cause problems
+			return;
+		} elseif (($adminId == '0') || (empty($adminId))) {
+			// Select all email adresses
+			$result = sqlQuery('SELECT `email` FROM `{?_MYSQL_PREFIX?}_admins` ORDER BY `id` ASC',
+				__FUNCTION__, __LINE__);
+		} else {
+			// If Admin-Id is not "to-all" select
+			$result = sqlQueryEscaped('SELECT `email` FROM `{?_MYSQL_PREFIX?}_admins` WHERE `id` IN (%s) ORDER BY `id` ASC',
+				array($adminId), __FUNCTION__, __LINE__);
+		}
+	}
+
+	// Default is no special mail header
+	$mailHeader = '';
+
+	// Is the template a bug report?
+	if ($template == 'admin_report_bug') {
+		// Then set 'Reply-To:' again
+		$mailHeader = 'Reply-To: webmaster@mxchange.org' . PHP_EOL;
+	} // END - if
+
+	// Load email addresses and send away
+	while ($content = sqlFetchArray($result)) {
+		sendEmail($content['email'], $subject, $message, 'N', $mailHeader);
+	} // END - while
+
+	// Free memory
+	sqlFreeResult($result);
+}
+
+// "Getter" for current admin's expert settings
+function getAminsExpertSettings () {
+	// Default is has not the right
+	$data['expert_settings'] = 'N';
+
+	// Get current admin Id
+	$adminId = getCurrentAdminId();
+
+	// Lookup settings in cache
+	if (isset($GLOBALS['cache_array']['admin']['expert_settings'][$adminId])) {
+		// Use cache
+		$data['expert_settings'] = $GLOBALS['cache_array']['admin']['expert_settings'][$adminId];
+
+		// Update cache hits
+		incrementStatsEntry('cache_hits');
+	} elseif (!isExtensionInstalled('cache')) {
+		// Load from database
+		$result = sqlQueryEscaped('SELECT `expert_settings` FROM `{?_MYSQL_PREFIX?}_admins` WHERE `id`=%s LIMIT 1',
+			array($adminId), __FUNCTION__, __LINE__);
+
+		// Entry found?
+		if (sqlNumRows($result) == 1) {
+			// Fetch data
+			$data = sqlFetchArray($result);
+
+			// Set cache
+			$GLOBALS['cache_array']['admin']['expert_settings'][$adminId] = $data['expert_settings'];
+		} // END - if
+
+		// Free memory
+		sqlFreeResult($result);
+	}
+
+	// Return the result
+	return $data['expert_settings'];
 }
 
-// Filter for adding extra data to the query
-function FILTER_ADD_EXTRA_SQL_DATA ($add = '') {
-	// Is the admins extension updated? (should be!)
-	if (GET_EXT_VERSION('admins') >= '0.3.0')   $add .= ", default_acl AS def_acl";
-	if (GET_EXT_VERSION('admins') >= '0.6.7') $add .= ", la_mode";
-	if (GET_EXT_VERSION('admins') >= '0.7.2') $add .= ", login_failures, UNIX_TIMESTAMP(last_failure) AS last_failure";
+// "Getter" for current admin's expert warning (if he wants to see them or not
+function getAminsExpertWarning () {
+	// Default is has not the right
+	$data['expert_warning'] = 'N';
+
+	// Get current admin id
+	$adminId = getCurrentAdminId();
+
+	// Lookup warning in cache
+	if (isset($GLOBALS['cache_array']['admin']['expert_warning'][$adminId])) {
+		// Use cache
+		$data['expert_warning'] = $GLOBALS['cache_array']['admin']['expert_warning'][$adminId];
+
+		// Update cache hits
+		incrementStatsEntry('cache_hits');
+	} elseif (!isExtensionInstalled('cache')) {
+		// Load from database
+		$result = sqlQueryEscaped('SELECT `expert_warning` FROM `{?_MYSQL_PREFIX?}_admins` WHERE `id`=%s LIMIT 1',
+			array($adminId), __FUNCTION__, __LINE__);
+
+		// Entry found?
+		if (sqlNumRows($result) == 1) {
+			// Fetch data
+			$data = sqlFetchArray($result);
+
+			// Set cache
+			$GLOBALS['cache_array']['admin']['expert_warning'][$adminId] = $data['expert_warning'];
+		} // END - if
+
+		// Free memory
+		sqlFreeResult($result);
+	}
+
+	// Return the result
+	return $data['expert_warning'];
+}
+
+// Get login_failures number from administrator's login name
+function getAdminLoginFailures ($adminId) {
+	// Admin login should not be empty
+	if (empty($adminId)) {
+		reportBug(__FUNCTION__, __LINE__, 'adminId is empty.');
+	} // END - if
+
+	// By default no admin is found
+	$data['login_failures'] = -1;
+
+	// Check cache
+	if (isset($GLOBALS['cache_array']['admin']['login_failures'][$adminId])) {
+		// Use it if found to save SQL queries
+		$data['login_failures'] = $GLOBALS['cache_array']['admin']['login_failures'][$adminId];
+
+		// Update cache hits
+		incrementStatsEntry('cache_hits');
+	} elseif (!isExtensionActive('cache')) {
+		// Load from database
+		$result = sqlQueryEscaped('SELECT `login_failures` FROM `{?_MYSQL_PREFIX?}_admins` WHERE `id`=%s LIMIT 1',
+			array($adminId), __FUNCTION__, __LINE__);
+
+		// Is there an entry?
+		if (sqlNumRows($result) == 1) {
+			// Get it
+			$data = sqlFetchArray($result);
+		} // END - if
+
+		// Free result
+		sqlFreeResult($result);
+	}
+
+	// Return the login_failures
+	return $data['login_failures'];
+}
+
+// Get last_failure number from administrator's login name
+function getAdminLastFailure ($adminId) {
+	// Admin login should not be empty
+	if (empty($adminId)) {
+		reportBug(__FUNCTION__, __LINE__, 'adminId is empty.');
+	} // END - if
+
+	// By default no admin is found
+	$data['last_failure'] = -1;
+
+	// Check cache
+	if (isset($GLOBALS['cache_array']['admin']['last_failure'][$adminId])) {
+		// Use it if found to save SQL queries
+		$data['last_failure'] = $GLOBALS['cache_array']['admin']['last_failure'][$adminId];
+
+		// Update cache hits
+		incrementStatsEntry('cache_hits');
+	} elseif (!isExtensionActive('cache')) {
+		// Load from database
+		$result = sqlQueryEscaped('SELECT UNIX_TIMESTAMP(`last_failure`) AS `last_failure` FROM `{?_MYSQL_PREFIX?}_admins` WHERE `id`=%s LIMIT 1',
+			array($adminId), __FUNCTION__, __LINE__);
+
+		// Is there an entry?
+		if (sqlNumRows($result) == 1) {
+			// Get it
+			$data = sqlFetchArray($result);
+		} // END - if
+
+		// Free result
+		sqlFreeResult($result);
+	}
+
+	// Return the last_failure
+	return $data['last_failure'];
+}
+
+//-----------------------------------------------------------------------------
+//                             Wrapper functions
+//-----------------------------------------------------------------------------
+
+// Wrapper function to check whether expert setting warning is enabled
+function isAdminsExpertWarningEnabled () {
+	return (getAminsExpertWarning() == 'Y');
+}
 
-	// Return it
-	return $add;
+// Wrapper function to check whether expert setting is enabled
+function isAdminsExpertSettingEnabled () {
+	return (getAminsExpertSettings() == 'Y');
 }
 
-//
+// [EOF]
 ?>