X-Git-Url: https://git.mxchange.org/?p=mailer.git;a=blobdiff_plain;f=inc%2Fmysql-manager.php;h=279808c0ce4768053e601a02f005a8883d6cdb76;hp=a5b364cf65ad2aad539997501b61663eedefd5b0;hb=48e59d95b50d7dd13be3c8c9b0d03c47a750120c;hpb=4db052cce49f60b6d9cc0f1c06b95cdd99f904ad
diff --git a/inc/mysql-manager.php b/inc/mysql-manager.php
index a5b364cf65..279808c0ce 100644
--- a/inc/mysql-manager.php
+++ b/inc/mysql-manager.php
@@ -32,7 +32,7 @@
************************************************************************/
// Some security stuff...
-if (ereg(basename(__FILE__), $_SERVER['PHP_SELF'])) {
+if (!defined('__SECURITY')) {
$INC = substr(dirname(__FILE__), 0, strpos(dirname(__FILE__), "/inc") + 4) . "/security.php";
require($INC);
}
@@ -44,7 +44,8 @@ function ADD_MODULE_TITLE($mod) {
// Is the script installed?
if (isBooleanConstantAndTrue('mxchange_installed')) {
- if ((GET_EXT_VERSION("cache") >= "0.1.2") && (isset($cacheArray['modules']['module'])) && (is_array($cacheArray['modules']['module'])) && (isset($cacheArray['modules']['module'][$mod]))) {
+ // Check if cache is valid
+ if ((GET_EXT_VERSION("cache") >= "0.1.2") && (isset($cacheArray['modules']['module'])) && (in_array($mod, $cacheArray['modules']['module']))) {
// Load from cache
$name = $cacheArray['modules']['title'][$mod];
@@ -56,7 +57,7 @@ function ADD_MODULE_TITLE($mod) {
list($name) = SQL_FETCHROW($result);
SQL_FREERESULT($result);
}
- }
+ } // END - if
// Trim name
$name = trim($name);
@@ -68,8 +69,10 @@ function ADD_MODULE_TITLE($mod) {
if (SQL_NUMROWS($result) == 0) {
// Add module to database
$dummy = CHECK_MODULE($mod);
- }
- }
+ } // END - if
+ } // END - if
+
+ // Return name
return $name;
}
@@ -171,10 +174,7 @@ function CHECK_MODULE($mod) {
} // END - if
// Destroy cache here
- if (GET_EXT_VERSION("cache") >= "0.1.2") {
- if ($cacheInstance->cache_file("mod_reg", true)) $cacheInstance->cache_destroy();
- unset($cacheArray['modules']);
- } // END - if
+ REBUILD_CACHE("mod_reg", "modreg");
// And reload data
$ret = CHECK_MODULE($mod_chk);
@@ -254,10 +254,13 @@ function ADD_DESCR($ACC_LVL, $file, $return = false, $output = true) {
$prefix .= " -> ";
- if (ereg(".php", $search)) {
- $search = substr($search, 0, strpos($search, ".php"));
- }
+ // We need to remove .php and the end
+ if (substr($search, -4, 4) == ".php") {
+ // Remove the .php
+ $search = substr($search, 0, -4);
+ } // END - i
+ // Get the title from menu
$result = SQL_QUERY_ESC("SELECT title FROM "._MYSQL_PREFIX."_%s_menu WHERE %s='%s' ".$AND." LIMIT 1",
array($ACC_LVL, $type, $search), __FILE__, __LINE__);
@@ -273,16 +276,20 @@ function ADD_DESCR($ACC_LVL, $file, $return = false, $output = true) {
} elseif (((GET_EXT_VERSION("sql_patches") >= "0.2.3") && ($_CONFIG['youre_here'] == "Y")) || ((IS_ADMIN()) && ($MOD_CHECK == "admin"))) {
// Output HTML code
$OUT = $prefix."".$ret."\n";
+
+ // Can we close the you-are-here navigation?
//* DEBUG: */ echo __LINE__."*".$type."/".$GLOBALS['what']."*
\n";
- if (($type == "what") || (($type == "action") && (!isset($_GET['what'])) && ($GLOBALS['what'] != "welcome"))) {
+ //* DEBUG: */ die("".print_r($_CONFIG, true)."
");
+ if (($type == "what") || (($type == "action") && ((!isset($GLOBALS['what'])) || ($GLOBALS['what'] == "overview")))) {
//* DEBUG: */ echo __LINE__."+".$type."+
\n";
$OUT .= "
\n";
$DEPTH="0";
// Handle failed logins here if not in guest
- if (($type != "guest") && (GET_EXT_VERSION("sql_patches") >= "0.4.7")) {
+ //* DEBUG: */ echo __FUNCTION__.":type={$type},action={$GLOBALS['action']},what={$GLOBALS['what']},lvl={$ACC_LVL}
\n";
+ if ((($type == "what") || ($type == "action") && ((!isset($GLOBALS['what'])) || ($GLOBALS['what'] == "overview") || ($GLOBALS['what'] == $_CONFIG['index_home']))) && ($ACC_LVL != "guest") && ((GET_EXT_VERSION("sql_patches") >= "0.4.7") || (GET_EXT_VERSION("admins") >= "0.7.0"))) {
// Handle failture
- $OUT .= HANDLE_LOGIN_FAILTURES($type);
+ $OUT .= HANDLE_LOGIN_FAILTURES($ACC_LVL);
} // END - if
} // END - if
}
@@ -338,7 +345,7 @@ function ADD_MENU($MODE, $act, $wht) {
// Load menu header template
LOAD_TEMPLATE($MODE."_menu_title", false, $content);
- $result_sub = SQL_QUERY_ESC("SELECT title, what FROM "._MYSQL_PREFIX."_%s_menu WHERE action='%s' AND what != '' ".$AND." ORDER BY sort",
+ $result_sub = SQL_QUERY_ESC("SELECT title, what FROM "._MYSQL_PREFIX."_%s_menu WHERE action='%s' AND what != '' AND what IS NOT NULL ".$AND." ORDER BY sort",
array($MODE, $main_action), __FILE__, __LINE__);
$ctl = SQL_NUMROWS($result_sub);
if ($ctl > 0) {
@@ -433,12 +440,18 @@ function IS_ADMIN($admin="")
//* DEBUG: */ echo __LINE__."ADMIN:".$admin."/".$passCookie."
";
// Search in array for entry
- if ((!empty($passCookie)) && (isset($cacheArray['admins']['password'][$admin])) && (!empty($admin))) {
+ if (isset($cacheArray['admin_hash'])) {
+ // Use cached string
+ $valPass = $cacheArray['admin_hash'];
+ } elseif ((!empty($passCookie)) && (isset($cacheArray['admins']['password'][$admin])) && (!empty($admin))) {
// Count cache hits
$_CONFIG['cache_hits']++;
// Login data is valid or not?
$valPass = generatePassString($cacheArray['admins']['password'][$admin]);
+
+ // Cache it away
+ $cacheArray['admin_hash'] = $valPass;
} elseif (!empty($admin)) {
// Search for admin
$result = SQL_QUERY_ESC("SELECT HIGH_PRIORITY password FROM "._MYSQL_PREFIX."_admins WHERE login='%s' LIMIT 1",
@@ -450,9 +463,12 @@ function IS_ADMIN($admin="")
// Admin login was found so let's load password from DB
list($passDB) = SQL_FETCHROW($result);
+ // Temporary cache it
+ $cacheArray['admins']['password'][$admin] = $passDB;
+
// Generate password hash
$valPass = generatePassString($passDB);
- }
+ } // END - if
// Free memory
SQL_FREERESULT($result);
@@ -465,7 +481,7 @@ function IS_ADMIN($admin="")
}
// Return result of comparision
- //* DEBUG: */ if (!$ret) echo __LINE__."OK!
";
+ //* DEBUG: */ if (!$ret) echo __LINE__."OK!
";
return $ret;
}
//
@@ -592,13 +608,13 @@ function IS_MEMBER()
if ((!empty($mod)) && (empty($LAST['module']))) { $LAST['module'] = $mod; $LAST['online'] = $onl; }
// So did we now have valid data and an unlocked user?
- //* DEBUG: */ echo $valPass."
".get_session('u_hash')."
";
+ //* DEBUG: */ echo $valPass."
".get_session('u_hash')."
";
if (($status == "CONFIRMED") && ($valPass == get_session('u_hash'))) {
// Account is confirmed and all cookie data is valid so he is definely logged in! :-)
$ret = true;
} else {
// Maybe got locked etc.
- //* DEBUG: */ echo __LINE__."!!!
";
+ //* DEBUG: */ echo __LINE__."!!!
";
destroy_user_session();
// Remove array elements to prevent errors
@@ -606,7 +622,7 @@ function IS_MEMBER()
}
} else {
// Cookie data is invalid!
- //* DEBUG: */ echo __LINE__."***
";
+ //* DEBUG: */ echo __LINE__."***
";
// Remove array elements to prevent errors
unset($GLOBALS['userid']);
@@ -614,21 +630,21 @@ function IS_MEMBER()
// Free memory
SQL_FREERESULT($result);
- }
- else
- {
+ } else {
// Cookie data is invalid!
- //* DEBUG: */ echo __LINE__."///
";
+ //* DEBUG: */ echo __LINE__."///
";
destroy_user_session();
// Remove array elements to prevent errors
unset($GLOBALS['userid']);
}
+
+ // Return status
return $ret;
}
//
function UPDATE_LOGIN_DATA ($UPDATE=true) {
- global $LAST;
+ global $LAST, $_CONFIG;
if (!is_array($LAST)) $LAST = array();
// Are the required cookies set?
@@ -660,10 +676,14 @@ function UPDATE_LOGIN_DATA ($UPDATE=true) {
// This will be displayed on welcome page! :-)
if (empty($LAST['module'])) {
$LAST['module'] = $mod; $LAST['online'] = $onl;
- }
+ } // END - if
+
+ // "what" not set?
if (empty($GLOBALS['what'])) {
+ // Fix it to default
$GLOBALS['what'] = "welcome";
- }
+ if (!empty($_CONFIG['index_home'])) $GLOBALS['what'] = $_CONFIG['index_home'];
+ } // END - if
// Update last module / online time
$result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_user_data SET last_module='%s', last_online=UNIX_TIMESTAMP() WHERE userid=%s LIMIT 1",
@@ -724,16 +744,29 @@ function VALIDATE_MENU_ACTION ($MODE, $act, $wht, $UPDATE=false)
return $ret;
}
//
-function GET_MOD_DESCR($MODE, $wht)
+function GET_MOD_DESCR($MODE, $wht, $column="what")
{
- if (empty($wht)) $wht = "welcome";
+ // Fix empty "what"
+ if (empty($wht)) {
+ $wht = "welcome";
+ if (!empty($_CONFIG['index_home'])) $wht = $_CONFIG['index_home'];
+ } // END - if
+
+ // Default is not found
$ret = "??? (".$wht.")";
- $result = SQL_QUERY_ESC("SELECT title FROM "._MYSQL_PREFIX."_%s_menu WHERE what='%s' LIMIT 1", array($MODE, $wht), __FILE__, __LINE__);
- if (SQL_NUMROWS($result) == 1)
- {
+
+ // Look for title
+ $result = SQL_QUERY_ESC("SELECT title FROM "._MYSQL_PREFIX."_%s_menu WHERE %s='%s' LIMIT 1",
+ array($MODE, $column, $wht), __FILE__, __LINE__);
+
+ // Is there an entry?
+ if (SQL_NUMROWS($result) == 1) {
+ // Fetch the title
list($ret) = SQL_FETCHROW($result);
- SQL_FREERESULT($result);
- }
+ } // END - if
+
+ // Free result
+ SQL_FREERESULT($result);
return $ret;
}
//
@@ -871,47 +904,37 @@ function COUNT_MODULE($mod)
// Get action value from mode (admin/guest/member) and what-value
function GET_ACTION ($MODE, &$wht)
{
- global $ret; $ret = "";
- //* DEBUG: */ echo __LINE__."=".$MODE."/".$wht."/".$GLOBALS['action']."=
";
- if ((empty($wht)) && ($MODE != "admin"))
- {
+ global $ret, $_CONFIG;
+ // @DEPRECATED Init status
+ $ret = "";
+
+ //* DEBUG: */ echo __LINE__."=".$MODE."/".$wht."/".$GLOBALS['action']."=
";
+ if ((empty($wht)) && ($MODE != "admin")) {
$wht = "welcome";
- }
- if ($MODE == "admin")
- {
+ if (!empty($_CONFIG['index_home'])) $wht = $_CONFIG['index_home'];
+ } // END - if
+
+ if ($MODE == "admin") {
// Action value for admin area
- if (!empty($GLOBALS['action']))
- {
+ if (!empty($GLOBALS['action'])) {
// Get it directly from URL
return $GLOBALS['action'];
- }
- elseif (($wht == "overview") || (empty($GLOBALS['what'])))
- {
+ } elseif (($wht == "overview") || (empty($GLOBALS['what']))) {
// Default value for admin area
$ret = "login";
}
- }
- elseif (!empty($GLOBALS['action']))
- {
- // Fix welcome value
- if (empty($wht)) $wht = "welcome";
+ } elseif (!empty($GLOBALS['action'])) {
+ // Get it directly from URL
return $GLOBALS['action'];
- }
- else
- {
- // Everything else will be touched after checking the module has a menu assigned
}
//* DEBUG: */ echo __LINE__."*".$ret."*
\n";
- if (MODULE_HAS_MENU($MODE))
- {
+ if (MODULE_HAS_MENU($MODE)) {
// Rewriting modules to menu
- switch ($MODE)
- {
+ switch ($MODE) {
case "index": $MODE = "guest"; break;
case "login": $MODE = "member"; break;
- break;
- }
+ } // END - switch
// Guest and member menu is "main" as the default
if (empty($ret)) $ret = "main";
@@ -919,15 +942,14 @@ function GET_ACTION ($MODE, &$wht)
// Load from database
$result = SQL_QUERY_ESC("SELECT action FROM "._MYSQL_PREFIX."_%s_menu WHERE what='%s' LIMIT 1",
array($MODE, $wht), __FILE__, __LINE__);
- if (SQL_NUMROWS($result) == 1)
- {
+ if (SQL_NUMROWS($result) == 1) {
// Load action value and pray that this one is the right you want... ;-)
list($ret) = SQL_FETCHROW($result);
- }
+ } // END - if
// Free memory
SQL_FREERESULT($result);
- }
+ } // END - if
// Return action value
return $ret;
@@ -938,9 +960,11 @@ function GET_CATEGORY ($cid) {
$ret = _CATEGORY_404;
// Is the category id set?
- if (!empty($cid)) {
-
- // Lookup the category
+ if ($cid == "0") {
+ // No category
+ $ret = _CATEGORY_NONE;
+ } elseif ($cid > 0) {
+ // Lookup the category in database
$result = SQL_QUERY_ESC("SELECT cat FROM "._MYSQL_PREFIX."_cats WHERE id=%s LIMIT 1",
array(bigintval($cid)), __FILE__, __LINE__);
if (SQL_NUMROWS($result) == 1) {
@@ -1069,7 +1093,7 @@ function GET_TOTAL_DATA($search, $tableName, $lookFor, $whereStatement="userid",
* rid = inc/modules/guest/what-confirm.php need this
* locked = Shall I pay it to normal (false) or locked (true) points ammount?
* add_mode = Add points only to $uid or also refs? (WARNING! Changing "ref" to "direct"
- * will cause no referral will get points ever!!!)
+ * for default value will cause no referral will get points ever!!!)
*/
function ADD_POINTS_REFSYSTEM($uid, $points, $send_notify=false, $rid="0", $locked=false, $add_mode="ref")
{
@@ -1098,8 +1122,11 @@ function ADD_POINTS_REFSYSTEM($uid, $points, $send_notify=false, $rid="0", $lock
$percents = "percents"; if (isset($_CONFIG['db_percents'])) $percents = $_CONFIG['db_percents'];
$table = "refdepths"; if (isset($_CONFIG['db_table'])) $table = $_CONFIG['db_table'];
+ // Default is "normal" points
+ $data = "points";
+
// Which points, locked or normal?
- $data = "points"; if ($locked) $data = "locked_points";
+ if ($locked) $data = "locked_points";
// Check user account
$result_user = SQL_QUERY_ESC("SELECT refid, email FROM "._MYSQL_PREFIX."_user_data WHERE userid=%s AND status='CONFIRMED' LIMIT 1",
@@ -1597,6 +1624,8 @@ function LOAD_CONFIG($no="0") {
}
// Gets the matching what name from module
function GET_WHAT($MOD_CHECK) {
+ global $_CONFIG;
+
$wht = "";
//* DEBUG: */ echo __LINE__."!".$MOD_CHECK."!
\n";
switch ($MOD_CHECK)
@@ -1608,6 +1637,7 @@ function GET_WHAT($MOD_CHECK) {
case "login":
case "index":
$wht = "welcome";
+ if (($MOD_CHECK == "index") && (!empty($_CONFIG['index_home']))) $wht = $_CONFIG['index_home'];
break;
default:
@@ -1714,14 +1744,8 @@ function UPDATE_CONFIG ($entries, $values, $updateMode="") {
$affectedRows = SQL_AFFECTEDROWS();
//* DEBUG: */ echo __FUNCTION__.":entries={$entries},affectedRows={$affectedRows}
\n";
- // Destroy cache?
- if ((GET_EXT_VERSION("cache") >= "0.1.2") && ($affectedRows == 1)) {
- global $cacheInstance, $_CONFIG, $CSS;
- if ($cacheInstance->cache_file("config", true)) $cacheInstance->cache_destroy();
-
- // Rebuid the cache
- require(PATH."inc/loader/load_cache-config.php");
- } // END - if
+ // Rebuild cache
+ REBUILD_CACHE("config", "config");
}
// Creates a new task for updated extension
function CREATE_EXTENSION_UPDATE_TASK ($admin_id, $subject, $notes) {
@@ -1756,7 +1780,7 @@ function CREATE_NEW_EXTENSION_TASK ($admin_id, $subject, $ext) {
$msg = LOAD_TEMPLATE("ext_".$ext, true);
} else {
// Load default message
- $msg = LOAD_EMAIL_TEMPLATE("admin_new_ext","", 0);
+ $msg = LOAD_TEMPLATE("admin_new_ext", "", 0);
}
// Task not created so it's a brand-new extension which we need to register and create a task for!
@@ -1773,30 +1797,6 @@ VALUES (%s, 0, 'NEW', 'EXTENSION', '%s', '%s', UNIX_TIMESTAMP())",
// Free memory
SQL_FREERESULT($result);
}
-// Handle menu-depending failed logins and return the rendered content
-function HANDLE_LOGIN_FAILTURES ($menuType) {
- // Default output is empty ;-)
- $OUT = "";
-
- // Guest menus doesn't have login failtures so is the session data set?
- if (($menuType != "guest") && (isSessionVariableSet('mxchange_'.$menuType.'_failtures')) && (isSessionVariableSet('mxchange_'.$menuType.'_last_fail'))) {
- // Non-guest has login failtures found, get both data and prepare it for template
- $content = array(
- 'login_failtures' => get_session('mxchange_'.$menuType.'_failtures'),
- 'last_failture' => MAKE_DATETIME(get_session('mxchange_'.$menuType.'_last_fail'), "2")
- );
-
- // Load template
- $OUT = LOAD_TEMPLATE("login_failture", true, $content);
-
- // Reset session data
- set_session('mxchange_'.$menuType.'_failtures', "");
- set_session('mxchange_'.$menuType.'_last_fail', "");
- } // END - if
-
- // Return rendered content
- return $OUT;
-}
//
?>