Zeile 3 | Zeile 3 |
---|
* MyBB 1.2 * Copyright � 2006 MyBB Group, All Rights Reserved *
|
* MyBB 1.2 * Copyright � 2006 MyBB Group, All Rights Reserved *
|
* Website: http://www.mybboard.com * License: http://www.mybboard.com/eula.html
| * Website: http://www.mybboard.net * License: http://www.mybboard.net/eula.html
|
*
|
*
|
* $Id: usercp.php 2173 2006-08-30 18:07:30Z Kilroy $
| * $Id: usercp.php 3139 2007-06-18 08:34:28Z chris $
|
*/
define("IN_MYBB", 1);
| */
define("IN_MYBB", 1);
|
Zeile 32 | Zeile 32 |
---|
if(!$mybb->user['pmfolders']) {
|
if(!$mybb->user['pmfolders']) {
|
$mybb->user['pmfolders'] = "1**Inbox$%%$2**Sent Items$%%$3**Drafts$%%$4**Trash Can";
| $mybb->user['pmfolders'] = "1**".$lang->folder_inbox."$%%$2**".$lang->folder_sent_items."$%%$3**".$lang->folder_drafts."$%%$4**".$lang->folder_trash;
|
$db->update_query(TABLE_PREFIX."users", array('pmfolders' => $mybb->user['pmfolders']), "uid='".$mybb->user['uid']."'"); }
| $db->update_query(TABLE_PREFIX."users", array('pmfolders' => $mybb->user['pmfolders']), "uid='".$mybb->user['uid']."'"); }
|
Zeile 52 | Zeile 52 |
---|
'allow_imgcode' => $mybb->settings['sigimgcode'] ); $parsed_sig = $parser->parse_message($mybb->input['signature'], $parser_options);
|
'allow_imgcode' => $mybb->settings['sigimgcode'] ); $parsed_sig = $parser->parse_message($mybb->input['signature'], $parser_options);
|
if(($mybb->settings['sigimgcode'] == "no" && substr_count($parsed_sig, "<img") > 0) || ($mybb->settings['sigimgcode'] == "yes" && substr_count($parsed_sig, "<img") > $mybb->settings['maxsigimages']))
| if((($mybb->settings['sigimgcode'] == "no" && $mybb->settings['sigsmilies'] != 'yes') && substr_count($parsed_sig, "<img") > 0) || (($mybb->settings['sigimgcode'] == "yes" || $mybb->settings['sigsmilies'] == 'yes') && substr_count($parsed_sig, "<img") > $mybb->settings['maxsigimages']) )
|
{ if($mybb->settings['sigimgcode'] == "yes") {
| { if($mybb->settings['sigimgcode'] == "yes") {
|
Zeile 158 | Zeile 162 |
---|
if($mybb->input['away'] == "yes" && $mybb->settings['allowaway'] != "no") { $awaydate = time();
|
if($mybb->input['away'] == "yes" && $mybb->settings['allowaway'] != "no") { $awaydate = time();
|
if($mybb->input['awayday'] && $mybb->input['awaymonth'] && $mybb->input['awayyear'])
| if($mybb->input['awayday'])
|
{
|
{
|
| if(!$mybb->input['awaymonth']) { $mybb->input['awaymonth'] = my_date('n', $awaydate); } if(!$mybb->input['awayyear']) { $mybb->input['awayyear'] = my_date('Y', $awaydate); } if($mybb->input['awayyear'] >= 2038) { error($lang->error_usercp_return_date_2038); }
|
$returntimestamp = gmmktime(0, 0, 0, $mybb->input['awaymonth'], $mybb->input['awayday'], $mybb->input['awayyear']); $awaytimestamp = gmmktime(0, 0, 0, my_date('n', $awaydate), my_date('j', $awaydate), my_date('Y', $awaydate));
|
$returntimestamp = gmmktime(0, 0, 0, $mybb->input['awaymonth'], $mybb->input['awayday'], $mybb->input['awayyear']); $awaytimestamp = gmmktime(0, 0, 0, my_date('n', $awaydate), my_date('j', $awaydate), my_date('Y', $awaydate));
|
if ($returntimestamp < $awaytimestamp)
| if($returntimestamp < $awaytimestamp && $mybb->input['awayyear'] < my_date("Y"))
|
{ error($lang->error_usercp_return_date_past); }
| { error($lang->error_usercp_return_date_past); }
|
Zeile 177 | Zeile 196 |
---|
"date" => $awaydate, "returndate" => $returndate, "awayreason" => $mybb->input['awayreason']
|
"date" => $awaydate, "returndate" => $returndate, "awayreason" => $mybb->input['awayreason']
|
); } else {
| ); } else {
|
$away = array( "away" => "no", "date" => '',
| $away = array( "away" => "no", "date" => '',
|
Zeile 218 | Zeile 237 |
---|
$user['usertitle'] = $mybb->input['usertitle']; } else if($mybb->input['reverttitle'])
|
$user['usertitle'] = $mybb->input['usertitle']; } else if($mybb->input['reverttitle'])
|
{
| {
|
$user['usertitle'] = ''; } }
| $user['usertitle'] = ''; } }
|
Zeile 234 | Zeile 253 |
---|
{ $userhandler->update_user();
|
{ $userhandler->update_user();
|
$db->update_query(TABLE_PREFIX."users", $newprofile, "uid='".$mybb->user['uid']."'");
| |
$plugins->run_hooks("usercp_do_profile_end"); redirect("usercp.php", $lang->redirect_profileupdated); }
| $plugins->run_hooks("usercp_do_profile_end"); redirect("usercp.php", $lang->redirect_profileupdated); }
|
Zeile 277 | Zeile 295 |
---|
$user['website'] = "http://"; } else
|
$user['website'] = "http://"; } else
|
{
| {
|
$user['website'] = htmlspecialchars_uni($user['website']); }
| $user['website'] = htmlspecialchars_uni($user['website']); }
|
Zeile 315 | Zeile 333 |
---|
} else {
|
} else {
|
| $user['awayreason'] = htmlspecialchars_uni($user['awayreason']);
|
if($mybb->user['away'] == "yes") { $awaydate = my_date($mybb->settings['dateformat'], $mybb->user['awaydate']);
| if($mybb->user['away'] == "yes") { $awaydate = my_date($mybb->settings['dateformat'], $mybb->user['awaydate']);
|
Zeile 353 | Zeile 371 |
---|
while($profilefield = $db->fetch_array($query)) { $profilefield['type'] = htmlspecialchars_uni($profilefield['type']);
|
while($profilefield = $db->fetch_array($query)) { $profilefield['type'] = htmlspecialchars_uni($profilefield['type']);
|
| $profilefield['description'] = htmlspecialchars_uni($profilefield['description']);
|
$thing = explode("\n", $profilefield['type'], "2"); $type = $thing[0]; $options = $thing[1];
| $thing = explode("\n", $profilefield['type'], "2"); $type = $thing[0]; $options = $thing[1];
|
Zeile 492 | Zeile 511 |
---|
else { eval("\$customfields .= \"".$templates->get("usercp_profile_customfield")."\";");
|
else { eval("\$customfields .= \"".$templates->get("usercp_profile_customfield")."\";");
|
}
| }
|
$altbg = alt_trow(); $code = ""; $select = "";
| $altbg = alt_trow(); $code = ""; $select = "";
|
Zeile 532 | Zeile 551 |
---|
} } eval("\$customtitle = \"".$templates->get("usercp_profile_customtitle")."\";");
|
} } eval("\$customtitle = \"".$templates->get("usercp_profile_customtitle")."\";");
|
} else
| } else
|
{ $customtitle = ""; }
| { $customtitle = ""; }
|
Zeile 572 | Zeile 591 |
---|
"remember" => $mybb->input['remember'], "receivepms" => $mybb->input['receivepms'], "pmpopup" => $mybb->input['pmpopup'],
|
"remember" => $mybb->input['remember'], "receivepms" => $mybb->input['receivepms'], "pmpopup" => $mybb->input['pmpopup'],
|
"daysprune" => intval($mybb->input['daysprune']), "showcodebuttons" => $mybb->input['showcodebuttons'],
| "daysprune" => $mybb->input['daysprune'], "showcodebuttons" => intval($mybb->input['showcodebuttons']),
|
"pmnotify" => $mybb->input['pmnotify'], "showredirect" => $mybb->input['showredirect'] );
| "pmnotify" => $mybb->input['pmnotify'], "showredirect" => $mybb->input['showredirect'] );
|
Zeile 596 | Zeile 615 |
---|
$errors = $userhandler->get_friendly_errors(); $errors = inline_error($errors); $mybb->input['action'] = "options";
|
$errors = $userhandler->get_friendly_errors(); $errors = inline_error($errors); $mybb->input['action'] = "options";
|
} else
| } else
|
{ $userhandler->update_user();
|
{ $userhandler->update_user();
|
$db->update_query(TABLE_PREFIX."users", $updatedoptions, "uid='".$mybb->user['uid']."'");
| |
// If the cookie settings are different, re-set the cookie if($mybb->input['remember'] != $mybb->user['remember'])
| // If the cookie settings are different, re-set the cookie if($mybb->input['remember'] != $mybb->user['remember'])
|
Zeile 611 | Zeile 628 |
---|
my_unsetcookie("mybbuser"); // Set the new one if($mybb->input['remember'] == "yes")
|
my_unsetcookie("mybbuser"); // Set the new one if($mybb->input['remember'] == "yes")
|
{ my_setcookie("mybbuser", $mybb->user['uid']."_".$mybb->user['loginkey']);
| { my_setcookie("mybbuser", $mybb->user['uid']."_".$mybb->user['loginkey'], null, true);
|
} else {
|
} else {
|
my_setcookie("mybbuser", $mybb->user['uid']."_".$mybb->user['loginkey'], -1);
| my_setcookie("mybbuser", $mybb->user['uid']."_".$mybb->user['loginkey'], -1, true);
|
}
|
}
|
}
$plugins->run_hooks("usercp_do_options_end");
| }
$plugins->run_hooks("usercp_do_options_end");
|
redirect("usercp.php", $lang->redirect_optionsupdated); } }
| redirect("usercp.php", $lang->redirect_optionsupdated); } }
|
Zeile 663 | Zeile 680 |
---|
if($user['invisible'] == "yes") { $invisiblecheck = "checked=\"checked\"";
|
if($user['invisible'] == "yes") { $invisiblecheck = "checked=\"checked\"";
|
}
| }
|
else { $invisiblecheck = "";
| else { $invisiblecheck = "";
|
Zeile 745 | Zeile 762 |
---|
{ $dstcheck = "checked=\"checked\""; --$mybb->user['timezone'];
|
{ $dstcheck = "checked=\"checked\""; --$mybb->user['timezone'];
|
} else
| } else
|
{ $dstcheck = "";
|
{ $dstcheck = "";
|
}
| }
|
if($user['showcodebuttons'] == 1) { $showcodebuttonscheck = "checked=\"checked\"";
|
if($user['showcodebuttons'] == 1) { $showcodebuttonscheck = "checked=\"checked\"";
|
} else
| } else
|
{ $showcodebuttonscheck = "";
|
{ $showcodebuttonscheck = "";
|
}
| }
|
if($user['showredirect'] != "no")
|
if($user['showredirect'] != "no")
|
{
| {
|
$showredirectcheck = "checked=\"checked\""; } else { $showredirectcheck = "";
|
$showredirectcheck = "checked=\"checked\""; } else { $showredirectcheck = "";
|
}
| }
|
if($user['pmnotify'] != "no") { $pmnotifycheck = "checked=\"checked\"";
| if($user['pmnotify'] != "no") { $pmnotifycheck = "checked=\"checked\"";
|
Zeile 828 | Zeile 845 |
---|
if(is_array($explodedtpp)) { foreach($explodedtpp as $key => $val)
|
if(is_array($explodedtpp)) { foreach($explodedtpp as $key => $val)
|
{
| {
|
$val = trim($val); $selected = ""; if($user['tpp'] == $val)
| $val = trim($val); $selected = ""; if($user['tpp'] == $val)
|
Zeile 846 | Zeile 863 |
---|
$pppoptions = ''; if(is_array($explodedppp)) {
|
$pppoptions = ''; if(is_array($explodedppp)) {
|
foreach($explodedtpp as $key => $val)
| foreach($explodedppp as $key => $val)
|
{ $val = trim($val); $selected = "";
| { $val = trim($val); $selected = "";
|
Zeile 866 | Zeile 883 |
---|
if($mybb->input['action'] == "do_email" && $mybb->request_method == "post") {
|
if($mybb->input['action'] == "do_email" && $mybb->request_method == "post") {
|
| $errors = array();
|
$plugins->run_hooks("usercp_do_email_start");
|
$plugins->run_hooks("usercp_do_email_start");
|
$user = validate_password_from_uid($mybb->user['uid'], $mybb->input['password']); if(!$user['uid']) { error($lang->error_invalidpassword); } if($mybb->input['email'] != $mybb->input['email2']) { error($lang->error_emailmismatch); }
| if(validate_password_from_uid($mybb->user['uid'], $mybb->input['password']) == false) { $errors[] = $lang->error_invalidpassword; } else { // Set up user handler. require_once "inc/datahandlers/user.php"; $userhandler = new UserDataHandler("update");
|
|
|
//Email Banning Code if($mybb->settings['emailkeep'] != "yes") { $bannedemails = explode(" ", $mybb->settings['emailban']); if(is_array($bannedemails)) { foreach($bannedemails as $key => $bannedemail) { $bannedemail = trim($bannedemail); if($bannedemail != "") { if(strstr($mybb->input['email'], $bannedemail) != "") { error($lang->error_bannedemail); } } } } } if(!preg_match("/^(.+)@[a-zA-Z0-9-]+\.[a-zA-Z0-9.-]+$/si", $mybb->input['email'])) { error($lang->error_invalidemail); } if(function_exists("emailChanged")) { emailChanged($mybb->user['uid'], $mybb->input['email']); }
if($mybb->user['usergroup'] != "5") { $activationcode = random_str(); $now = time(); $db->delete_query(TABLE_PREFIX."awaitingactivation", "uid='".$mybb->user['uid']."'"); $newactivation = array(
| $user = array(
|
"uid" => $mybb->user['uid'],
|
"uid" => $mybb->user['uid'],
|
"dateline" => time(), "code" => $activationcode, "type" => "e", "oldgroup" => $mybb->user['usergroup'], "misc" => $db->escape_string($mybb->input['email'])
| "email" => $mybb->input['email'], "email2" => $mybb->input['email2']
|
);
|
);
|
$db->insert_query(TABLE_PREFIX."awaitingactivation", $newactivation);
| |
|
|
$username = $mybb->user['username']; $uid = $mybb->user['uid']; $lang->emailsubject_changeemail = sprintf($lang->emailsubject_changeemail, $mybb->settings['bbname']); $lang->email_changeemail = sprintf($lang->email_changeemail, $mybb->user['username'], $mybb->settings['bbname'], $mybb->user['email'], $mybb->input['email'], $mybb->settings['bburl'], $activationcode, $mybb->user['username'], $mybb->user['uid']); my_mail($mybb->input['email'], $lang->emailsubject_changeemail, $lang->email_changeemail); $plugins->run_hooks("usercp_do_email_verify"); error($lang->redirect_changeemail_activation); }
| $userhandler->set_data($user);
if(!$userhandler->validate_user()) { $errors = $userhandler->get_friendly_errors(); } else { if($mybb->user['usergroup'] != "5" && $mybb->usergroup['cancp'] != "yes") { $activationcode = random_str(); $now = time(); $db->delete_query(TABLE_PREFIX."awaitingactivation", "uid='".$mybb->user['uid']."'"); $newactivation = array( "uid" => $mybb->user['uid'], "dateline" => time(), "code" => $activationcode, "type" => "e", "oldgroup" => $mybb->user['usergroup'], "misc" => $db->escape_string($mybb->input['email']) ); $db->insert_query(TABLE_PREFIX."awaitingactivation", $newactivation); $username = $mybb->user['username']; $uid = $mybb->user['uid']; $lang->emailsubject_changeemail = sprintf($lang->emailsubject_changeemail, $mybb->settings['bbname']); $lang->email_changeemail = sprintf($lang->email_changeemail, $mybb->user['username'], $mybb->settings['bbname'], $mybb->user['email'], $mybb->input['email'], $mybb->settings['bburl'], $activationcode, $mybb->user['username'], $mybb->user['uid']); my_mail($mybb->input['email'], $lang->emailsubject_changeemail, $lang->email_changeemail); $plugins->run_hooks("usercp_do_email_verify"); error($lang->redirect_changeemail_activation); } else { $userhandler->update_user(); $plugins->run_hooks("usercp_do_email_changed"); redirect("usercp.php", $lang->redirect_emailupdated); } } } if(count($errors) > 0) { $mybb->input['action'] = "email"; $errors = inline_error($errors); } }
if($mybb->input['action'] == "email") { // Coming back to this page after one or more errors were experienced, show fields the user previously entered (with the exception of the password) if($errors) { $email = htmlspecialchars_uni($mybb->input['email']); $email2 = htmlspecialchars_uni($mybb->input['email2']); }
|
else {
|
else {
|
$db->update_query(TABLE_PREFIX."users", array('email' => $db->escape_string($mybb->input['email'])), "uid='".$mybb->user['uid']."'"); $plugins->run_hooks("usercp_do_email_changed"); redirect("usercp.php", $lang->redirect_emailupdated);
| $email = $email2 = '';
|
}
|
}
|
}
if($mybb->input['action'] == "email") {
|
|
$plugins->run_hooks("usercp_email_start"); eval("\$changemail = \"".$templates->get("usercp_email")."\";"); $plugins->run_hooks("usercp_email_end"); output_page($changemail); }
|
$plugins->run_hooks("usercp_email_start"); eval("\$changemail = \"".$templates->get("usercp_email")."\";"); $plugins->run_hooks("usercp_email_end"); output_page($changemail); }
|
|
|
if($mybb->input['action'] == "do_password" && $mybb->request_method == "post") {
|
if($mybb->input['action'] == "do_password" && $mybb->request_method == "post") {
|
| $errors = array();
|
$plugins->run_hooks("usercp_do_password_start"); if(validate_password_from_uid($mybb->user['uid'], $mybb->input['oldpassword']) == false)
|
$plugins->run_hooks("usercp_do_password_start"); if(validate_password_from_uid($mybb->user['uid'], $mybb->input['oldpassword']) == false)
|
{ error($lang->error_invalidpassword); } if($mybb->input['password'] == "") { error($lang->error_invalidnewpassword);
| { $errors[] = $lang->error_invalidpassword; } else { // Set up user handler. require_once "inc/datahandlers/user.php"; $userhandler = new UserDataHandler("update");
$user = array( "uid" => $mybb->user['uid'], "password" => $mybb->input['password'], "password2" => $mybb->input['password2'] );
$userhandler->set_data($user);
if(!$userhandler->validate_user()) { $errors = $userhandler->get_friendly_errors(); } else { $userhandler->update_user(); my_setcookie("mybbuser", $mybb->user['uid']."_".$userhandler->data['loginkey']); $plugins->run_hooks("usercp_do_password_end"); redirect("usercp.php", $lang->redirect_passwordupdated); }
|
}
|
}
|
if($mybb->input['password'] != $mybb->input['password2'])
| if(count($errors) > 0)
|
{
|
{
|
error($lang->error_passwordmismatch);
| $mybb->input['action'] = "password"; $errors = inline_error($errors);
|
}
|
}
|
$plugins->run_hooks("usercp_do_password_process"); $logindetails = update_password($mybb->user['uid'], md5($mybb->input['password']), $mybb->user['salt']);
my_setcookie("mybbuser", $mybb->user['uid']."_".$logindetails['loginkey']); $plugins->run_hooks("usercp_do_password_end"); redirect("usercp.php", $lang->redirect_passwordupdated); }
| }
|
if($mybb->input['action'] == "password")
|
if($mybb->input['action'] == "password")
|
{
| {
|
$plugins->run_hooks("usercp_password_start"); eval("\$editpassword = \"".$templates->get("usercp_password")."\";"); $plugins->run_hooks("usercp_password_end");
| $plugins->run_hooks("usercp_password_start"); eval("\$editpassword = \"".$templates->get("usercp_password")."\";"); $plugins->run_hooks("usercp_password_end");
|
Zeile 978 | Zeile 1020 |
---|
if($mybb->input['action'] == "do_changename" && $mybb->request_method == "post") { $plugins->run_hooks("usercp_do_changename_start");
|
if($mybb->input['action'] == "do_changename" && $mybb->request_method == "post") { $plugins->run_hooks("usercp_do_changename_start");
|
if($mybb->usergroup['canchangename'] != "yes") { error_no_permission(); } if(!trim($mybb->input['username']) || eregi("<|>|&", $mybb->input['username'])) { error($lang->error_bannedusername); } $query = $db->simple_select(TABLE_PREFIX."users", "username", "LOWER(username)='".strtolower($mybb->input['username'])."'");
| if($mybb->usergroup['canchangename'] != "yes") { error_no_permission(); }
if(validate_password_from_uid($mybb->user['uid'], $mybb->input['password']) == false) { $errors[] = $lang->error_invalidpassword; } else { // Set up user handler. require_once "inc/datahandlers/user.php"; $userhandler = new UserDataHandler("update");
$user = array( "uid" => $mybb->user['uid'], "username" => $mybb->input['username'] );
$userhandler->set_data($user);
if(!$userhandler->validate_user()) { $errors = $userhandler->get_friendly_errors(); } else { $userhandler->update_user(); $plugins->run_hooks("usercp_do_changename_end"); redirect("usercp.php", $lang->redirect_namechanged);
|
|
|
if($db->fetch_array($query))
| } } if(count($errors) > 0)
|
{
|
{
|
error($lang->error_usernametaken);
| $errors = inline_error($errors); $mybb->input['action'] = "changename";
|
}
|
}
|
$plugins->run_hooks("usercp_do_changename_process"); $db->update_query(TABLE_PREFIX."users", array('username' => $db->escape_string($mybb->input['username'])), "uid='".$mybb->user['uid']."'"); $db->update_query(TABLE_PREFIX."forums", array('lastposter' => $db->escape_string($mybb->input['username'])), "lastposter='".$mybb->user['username']."'"); $db->update_query(TABLE_PREFIX."threads", array('lastposter' => $db->escape_string($mybb->input['username'])), "lastposter='".$mybb->user['username']."'"); $plugins->run_hooks("usercp_do_changename_end"); redirect("usercp.php", $lang->redirect_namechanged);
| |
}
if($mybb->input['action'] == "changename")
| }
if($mybb->input['action'] == "changename")
|
Zeile 1034 | Zeile 1095 |
---|
$lower = $start+1; $upper = $end; if($upper > $threadcount)
|
$lower = $start+1; $upper = $end; if($upper > $threadcount)
|
{
| {
|
$upper = $threadcount; } $multipage = multipage($threadcount, $perpage, $page, "usercp.php?action=favorites");
| $upper = $threadcount; } $multipage = multipage($threadcount, $perpage, $page, "usercp.php?action=favorites");
|
Zeile 1053 | Zeile 1114 |
---|
while($favorite = $db->fetch_array($query)) { $forumpermissions = $fpermissions[$favorite['fid']];
|
while($favorite = $db->fetch_array($query)) { $forumpermissions = $fpermissions[$favorite['fid']];
|
if($forumpermissions['canview'] != "no" || $forumpermissions['canviewthreads'] != "no") {
| if($forumpermissions['canview'] != "no" || $forumpermissions['canviewthreads'] != "no") {
|
$lastpostdate = my_date($mybb->settings['dateformat'], $favorite['lastpost']); $lastposttime = my_date($mybb->settings['timeformat'], $favorite['lastpost']); if($favorite['lastposteruid'] == 0)
| $lastpostdate = my_date($mybb->settings['dateformat'], $favorite['lastpost']); $lastposttime = my_date($mybb->settings['timeformat'], $favorite['lastpost']); if($favorite['lastposteruid'] == 0)
|
Zeile 1323 | Zeile 1384 |
---|
$sig = $mybb->input['signature']; $template = "usercp_editsig_preview"; }
|
$sig = $mybb->input['signature']; $template = "usercp_editsig_preview"; }
|
elseif(!$error)
| else if(!$error)
|
{ $sig = $mybb->user['signature']; $template = "usercp_editsig_current"; }
|
{ $sig = $mybb->user['signature']; $template = "usercp_editsig_current"; }
|
|
|
if($sig) { $sig_parser = array(
| if($sig) { $sig_parser = array(
|
Zeile 1379 | Zeile 1441 |
---|
$plugins->run_hooks("usercp_endsig_end"); output_page($editsig); }
|
$plugins->run_hooks("usercp_endsig_end"); output_page($editsig); }
|
| if($mybb->input['action'] == "do_avatar" && $mybb->request_method == "post") { $plugins->run_hooks("usercp_do_avatar_start"); require_once MYBB_ROOT."inc/functions_upload.php"; if($mybb->input['remove']) // remove avatar { $updated_avatar = array( "avatar" => "", "avatardimensions" => "", "avatartype" => "" ); $db->update_query(TABLE_PREFIX."users", $updated_avatar, "uid='".$mybb->user['uid']."'"); remove_avatars($mybb->user['uid']); } elseif($mybb->input['gallery']) // Gallery avatar { if(empty($mybb->input['avatar'])) { $avatar_error = $lang->error_noavatar; }
if(empty($avatar_error)) { if($mybb->input['gallery'] == "default") { $avatarpath = $db->escape_string($mybb->settings['avatardir']."/".$mybb->input['avatar']); } else { $avatarpath = $db->escape_string($mybb->settings['avatardir']."/".$mybb->input['gallery']."/".$mybb->input['avatar']); } if(file_exists($avatarpath)) { $updated_avatar = array( "avatar" => $avatarpath, "avatardimensions" => "", "avatartype" => "gallery" ); $db->update_query(TABLE_PREFIX."users", $updated_avatar, "uid='".$mybb->user['uid']."'"); } remove_avatars($mybb->user['uid']); } } elseif($_FILES['avatarupload']['name']) // upload avatar { if($mybb->usergroup['canuploadavatars'] == "no") { error_no_permission(); } $avatar = upload_avatar(); if($avatar['error']) { $avatar_error = $avatar['error']; } else { if($avatar['width'] > 0 && $avatar['height'] > 0) { $avatar_dimensions = $avatar['width']."|".$avatar['height']; } $updated_avatar = array( "avatar" => $avatar['avatar'], "avatardimensions" => $avatar_dimensions, "avatartype" => "upload" ); $db->update_query(TABLE_PREFIX."users", $updated_avatar, "uid='".$mybb->user['uid']."'"); } } else // remote avatar { $mybb->input['avatarurl'] = preg_replace("#script:#i", "", $mybb->input['avatarurl']); $mybb->input['avatarurl'] = htmlspecialchars($mybb->input['avatarurl']); $ext = get_extension($mybb->input['avatarurl']);
// Copy the avatar to the local server (work around remote URL access disabled for getimagesize) $file = fetch_remote_file($mybb->input['avatarurl']); if(!$file) { $avatar_error = $lang->error_invalidavatarurl; } else { $tmp_name = $mybb->settings['avataruploadpath']."/remote_".md5(uniqid(rand(), true)); $fp = @fopen($tmp_name, "wb"); if(!$fp) { $avatar_error = $lang->error_invalidavatarurl; } else { fwrite($fp, $file); fclose($fp); list($width, $height, $type) = @getimagesize($tmp_name); @unlink($tmp_name); if(!$type) { $avatar_error = $lang->error_invalidavatarurl; } } }
if(empty($avatar_error)) { if($width && $height && $mybb->settings['maxavatardims'] != "") { list($maxwidth, $maxheight) = explode("x", $mybb->settings['maxavatardims']); if(($maxwidth && $width > $maxwidth) || ($maxheight && $height > $maxheight)) { $lang->error_avatartoobig = sprintf($lang->error_avatartoobig, $maxwidth, $maxheight); $avatar_error = $lang->error_avatartoobig; } } }
if(empty($avatar_error)) { if($width > 0 && $height > 0) { $avatar_dimensions = intval($width)."|".intval($height); } $updated_avatar = array( "avatar" => $db->escape_string($mybb->input['avatarurl']), "avatardimensions" => $avatar_dimensions, "avatartype" => "remote" ); $db->update_query(TABLE_PREFIX."users", $updated_avatar, "uid='".$mybb->user['uid']."'"); remove_avatars($mybb->user['uid']); } }
if(empty($avatar_error)) { $plugins->run_hooks("usercp_do_avatar_end"); redirect("usercp.php", $lang->redirect_avatarupdated); } else { $mybb->input['action'] = "avatar"; $avatar_error = inline_error($avatar_error); } }
|
if($mybb->input['action'] == "avatar") {
| if($mybb->input['action'] == "avatar") {
|
Zeile 1514 | Zeile 1718 |
---|
$plugins->run_hooks("usercp_avatar_end"); output_page($avatar); }
|
$plugins->run_hooks("usercp_avatar_end"); output_page($avatar); }
|
} if($mybb->input['action'] == "do_avatar" && $mybb->request_method == "post") { $plugins->run_hooks("usercp_do_avatar_start"); require_once MYBB_ROOT."inc/functions_upload.php"; if($mybb->input['remove']) // remove avatar { $updated_avatar = array( "avatar" => "", "avatardimensions" => "", "avatartype" => "" ); $db->update_query(TABLE_PREFIX."users", $updated_avatar, "uid='".$mybb->user['uid']."'"); remove_avatars($mybb->user['uid']); } elseif($mybb->input['gallery']) // Gallery avatar { if($mybb->input['gallery'] == "default") { $avatarpath = $db->escape_string($mybb->settings['avatardir']."/".$mybb->input['avatar']); } else { $avatarpath = $db->escape_string($mybb->settings['avatardir']."/".$mybb->input['gallery']."/".$mybb->input['avatar']); } if(file_exists($avatarpath)) { $updated_avatar = array( "avatar" => $avatarpath, "avatardimensions" => "", "avatartype" => "gallery" ); $db->update_query(TABLE_PREFIX."users", $updated_avatar, "uid='".$mybb->user['uid']."'"); } remove_avatars($mybb->user['uid']); } elseif($_FILES['avatarupload']['name']) // upload avatar { if($mybb->usergroup['canuploadavatars'] == "no") { error_no_permission(); } $avatar = upload_avatar(); if($avatar['error']) { error($avatar['error']); } if($avatar['width'] > 0 && $avatar['height'] > 0) { $avatar_dimensions = $avatar['width']."|".$avatar['height']; } $updated_avatar = array( "avatar" => $avatar['avatar'], "avatardimensions" => $avatar_dimensions, "avatartype" => "upload" ); $db->update_query(TABLE_PREFIX."users", $updated_avatar, "uid='".$mybb->user['uid']."'"); } else // remote avatar { $mybb->input['avatarurl'] = preg_replace("#script:#i", "", $mybb->input['avatarurl']); $mybb->input['avatarurl'] = htmlspecialchars($mybb->input['avatarurl']); $ext = get_extension($mybb->input['avatarurl']); list($width, $height, $type) = @getimagesize($mybb->input['avatarurl']);
if(!$type) { error($lang->error_invalidavatarurl); }
if($width && $height && $mybb->settings['maxavatardims'] != "") { list($maxwidth, $maxheight) = explode("x", $mybb->settings['maxavatardims']); if(($maxwidth && $width > $maxwidth) || ($maxheight && $height > $maxheight)) { $lang->error_avatartoobig = sprintf($lang->error_avatartoobig, $maxwidth, $maxheight); error($lang->error_avatartoobig); } } if($width > 0 && $height > 0) { $avatar_dimensions = intval($width)."|".intval($height); } $updated_avatar = array( "avatar" => $db->escape_string($mybb->input['avatarurl']), "avatardimensions" => $avatar_dimensions, "avatartype" => "remote" ); $db->update_query(TABLE_PREFIX."users", $updated_avatar, "uid='".$mybb->user['uid']."'"); remove_avatars($mybb->user['uid']); } $plugins->run_hooks("usercp_do_avatar_end"); redirect("usercp.php", $lang->redirect_avatarupdated);
| |
} if($mybb->input['action'] == "notepad") {
| } if($mybb->input['action'] == "notepad") {
|
Zeile 1890 | Zeile 2001 |
---|
$joingroup = $mybb->input['joingroup']; eval("\$joinpage = \"".$templates->get("usercp_usergroups_joingroup")."\";"); output_page($joinpage);
|
$joingroup = $mybb->input['joingroup']; eval("\$joinpage = \"".$templates->get("usercp_usergroups_joingroup")."\";"); output_page($joinpage);
|
| exit();
|
} else {
| } else {
|
Zeile 2122 | Zeile 2234 |
---|
$bandwidth = get_friendly_size($bandwidth); if($mybb->usergroup['attachquota']) {
|
$bandwidth = get_friendly_size($bandwidth); if($mybb->usergroup['attachquota']) {
|
$percent = round(($totalusage/($mybb->usergroup['attachquota']*1000))*100)."%"; $attachquota = get_friendly_size($mybb->usergroup['attachquota']*1000);
| $percent = round(($totalusage/($mybb->usergroup['attachquota']*1024))*100)."%"; $attachquota = get_friendly_size($mybb->usergroup['attachquota']*1024);
|
$usagenote = sprintf($lang->attachments_usage_quota, $friendlyusage, $attachquota, $percent, $totalattachments); } else
| $usagenote = sprintf($lang->attachments_usage_quota, $friendlyusage, $attachquota, $percent, $totalattachments); } else
|
Zeile 2169 | Zeile 2281 |
---|
$perday = $mybb->user['postnum']; }
|
$perday = $mybb->user['postnum']; }
|
$query = $db->simple_select(TABLE_PREFIX."posts", "COUNT(pid) AS posts", "visible > 0"); $posts = $db->fetch_field($query, "posts");
| $stats = $cache->read("stats"); $posts = $stats['numposts'];
|
if($posts == 0) { $percent = "0";
| if($posts == 0) { $percent = "0";
|
Zeile 2207 | Zeile 2319 |
---|
} // Make reputations row $reputations = '';
|
} // Make reputations row $reputations = '';
|
if($mybb->usergroup['usereputationsystem'] == 'yes')
| if($mybb->usergroup['usereputationsystem'] == 'yes' && $mybb->settings['enablereputation'] == 'yes')
|
{ $reputation_link = get_reputation($mybb->user['reputation']); eval("\$reputation = \"".$templates->get("usercp_reputation")."\";");
| { $reputation_link = get_reputation($mybb->user['reputation']); eval("\$reputation = \"".$templates->get("usercp_reputation")."\";");
|