| Zeile 54 | Zeile 54 |
|---|
$session->init();
$mybb->session = &$session;
|
$session->init();
$mybb->session = &$session;
|
$mybb->user['ismoderator'] = is_moderator('', '', $mybb->user['uid']);
| $mybb->user['ismoderator'] = is_moderator(0, '', $mybb->user['uid']);
|
// Set our POST validation code here
$mybb->post_code = generate_post_check();
|
// Set our POST validation code here
$mybb->post_code = generate_post_check();
|
| Zeile 375 | Zeile 375 |
|---|
}
// Are we linking to a remote theme server?
|
}
// Are we linking to a remote theme server?
|
if(my_substr($theme['imgdir'], 0, 7) == 'http://' || my_substr($theme['imgdir'], 0, 8) == 'https://')
| if(my_validate_url($theme['imgdir']))
|
{
// If a language directory for the current language exists within the theme - we use it
if(!empty($mybb->user['language']))
| {
// If a language directory for the current language exists within the theme - we use it
if(!empty($mybb->user['language']))
|
| Zeile 449 | Zeile 449 |
|---|
$templatelist = '';
}
|
$templatelist = '';
}
|
$templatelist .= "headerinclude,header,footer,gobutton,htmldoctype,header_welcomeblock_member,header_welcomeblock_guest,header_welcomeblock_member_admin,global_pm_alert,global_unreadreports,error,footer_languageselect_option,footer_contactus";
$templatelist .= ",global_pending_joinrequests,global_awaiting_activation,nav,nav_sep,nav_bit,nav_sep_active,nav_bit_active,footer_languageselect,footer_themeselect,header_welcomeblock_member_moderator,redirect,header_menu_calendar,nav_dropdown,footer_themeselector,task_image";
$templatelist .= ",global_boardclosed_warning,global_bannedwarning,error_inline,error_nopermission_loggedin,error_nopermission,debug_summary,header_quicksearch,header_menu_search,header_menu_portal,header_menu_memberlist,usercp_themeselector_option,smilie,global_board_offline_modal";
$templatelist .= ",video_dailymotion_embed,video_facebook_embed,video_liveleak_embed,video_metacafe_embed,video_myspacetv_embed,video_veoh_embed,video_vimeo_embed,video_yahoo_embed,video_youtube_embed";
| $templatelist .= "headerinclude,header,footer,gobutton,htmldoctype,header_welcomeblock_member,header_welcomeblock_member_user,header_welcomeblock_member_moderator,header_welcomeblock_member_admin,error";
$templatelist .= ",global_pending_joinrequests,global_awaiting_activation,nav,nav_sep,nav_bit,nav_sep_active,nav_bit_active,footer_languageselect,footer_themeselect,global_unreadreports,footer_contactus";
$templatelist .= ",global_boardclosed_warning,global_bannedwarning,error_inline,error_nopermission_loggedin,error_nopermission,global_pm_alert,header_menu_search,header_menu_portal,redirect,footer_languageselect_option";
$templatelist .= ",video_dailymotion_embed,video_facebook_embed,video_liveleak_embed,video_metacafe_embed,video_myspacetv_embed,video_veoh_embed,video_vimeo_embed,video_yahoo_embed,video_youtube_embed,debug_summary";
$templatelist .= ",smilieinsert_row,smilieinsert_row_empty,smilieinsert,smilieinsert_getmore,smilieinsert_smilie,global_board_offline_modal,footer_themeselector,task_image,usercp_themeselector_option,php_warnings";
$templatelist .= ",mycode_code,mycode_email,mycode_img,mycode_php,mycode_quote_post,mycode_size_int,mycode_url,global_no_permission_modal,global_boardclosed_reason,nav_dropdown,global_remote_avatar_notice";
$templatelist .= ",header_welcomeblock_member_pms,header_welcomeblock_member_search,header_welcomeblock_guest,header_menu_calendar,header_menu_memberlist,global_dst_detection,header_quicksearch,smilie";
|
$templates->cache($db->escape_string($templatelist));
// Set the current date and time now
| $templates->cache($db->escape_string($templatelist));
// Set the current date and time now
|
| Zeile 481 | Zeile 484 |
|---|
}
// Prepare the main templates for use
|
}
// Prepare the main templates for use
|
$admincplink = $modcplink = '';
| $admincplink = $modcplink = $usercplink = '';
|
// Load appropriate welcome block for the current logged in user
if($mybb->user['uid'] != 0)
|
// Load appropriate welcome block for the current logged in user
if($mybb->user['uid'] != 0)
|
| Zeile 496 | Zeile 499 |
|---|
if($mybb->usergroup['canmodcp'] == 1)
{
eval('$modcplink = "'.$templates->get('header_welcomeblock_member_moderator').'";');
|
if($mybb->usergroup['canmodcp'] == 1)
{
eval('$modcplink = "'.$templates->get('header_welcomeblock_member_moderator').'";');
|
| | }
if($mybb->usergroup['canusercp'] == 1)
{
eval('$usercplink = "'.$templates->get('header_welcomeblock_member_user').'";');
|
}
// Format the welcome back message
|
}
// Format the welcome back message
|
$lang->welcome_back = $lang->sprintf($lang->welcome_back, build_profile_link($mybb->user['username'], $mybb->user['uid']), $lastvisit);
| $lang->welcome_back = $lang->sprintf($lang->welcome_back, build_profile_link(htmlspecialchars_uni($mybb->user['username']), $mybb->user['uid']), $lastvisit);
$searchlink = '';
if($mybb->usergroup['cansearch'] == 1)
{
eval('$searchlink = "'.$templates->get('header_welcomeblock_member_search').'";');
}
|
// Tell the user their PM usage
|
// Tell the user their PM usage
|
$lang->welcome_pms_usage = $lang->sprintf($lang->welcome_pms_usage, my_number_format($mybb->user['pms_unread']), my_number_format($mybb->user['pms_total']));
| $pmslink = '';
if($mybb->settings['enablepms'] != 0 && $mybb->usergroup['canusepms'] == 1)
{
$lang->welcome_pms_usage = $lang->sprintf($lang->welcome_pms_usage, my_number_format($mybb->user['pms_unread']), my_number_format($mybb->user['pms_total']));
eval('$pmslink = "'.$templates->get('header_welcomeblock_member_pms').'";');
}
|
eval('$welcomeblock = "'.$templates->get('header_welcomeblock_member').'";');
}
// Otherwise, we have a guest
| eval('$welcomeblock = "'.$templates->get('header_welcomeblock_member').'";');
}
// Otherwise, we have a guest
|
| Zeile 589 | Zeile 610 |
|---|
$unreadreports = '';
// This user is a moderator, super moderator or administrator
|
$unreadreports = '';
// This user is a moderator, super moderator or administrator
|
if($mybb->usergroup['cancp'] == 1 || ($mybb->user['ismoderator'] && $mybb->usergroup['canmodcp'] == 1 && $mybb->usergroup['canmanagereportedcontent'] == 1))
| if($mybb->settings['reportmethod'] == "db" && ($mybb->usergroup['cancp'] == 1 || ($mybb->user['ismoderator'] && $mybb->usergroup['canmodcp'] == 1 && $mybb->usergroup['canmanagereportedcontent'] == 1)))
|
{
// Only worth checking if we are here because we have ACP permissions and the other condition fails
if($mybb->usergroup['cancp'] == 1 && !($mybb->user['ismoderator'] && $mybb->usergroup['canmodcp'] == 1 && $mybb->usergroup['canmanagereportedcontent'] == 1))
{
// First we check if the user's a super admin: if yes, we don't care about permissions
$can_access_moderationqueue = true;
|
{
// Only worth checking if we are here because we have ACP permissions and the other condition fails
if($mybb->usergroup['cancp'] == 1 && !($mybb->user['ismoderator'] && $mybb->usergroup['canmodcp'] == 1 && $mybb->usergroup['canmanagereportedcontent'] == 1))
{
// First we check if the user's a super admin: if yes, we don't care about permissions
$can_access_moderationqueue = true;
|
$is_super_admin = is_super_admin($recipient['uid']);
| $is_super_admin = is_super_admin($mybb->user['uid']);
|
if(!$is_super_admin)
{
// Include admin functions
| if(!$is_super_admin)
{
// Include admin functions
|
| Zeile 694 | Zeile 715 |
|---|
if($ban['lifted'] > 0)
{
|
if($ban['lifted'] > 0)
{
|
$banlift = my_date($mybb->settings['dateformat'], $ban['lifted']) . $lang->comma . my_date($mybb->settings['timeformat'], $ban['lifted']);
| $banlift = my_date('normal', $ban['lifted']);
|
}
}
if(empty($reason))
|
}
}
if(empty($reason))
|
{
| {
|
$reason = $lang->unknown;
}
if(empty($banlift))
{
$banlift = $lang->unknown;
|
$reason = $lang->unknown;
}
if(empty($banlift))
{
$banlift = $lang->unknown;
|
}
| }
|
// Display a nice warning to the user
eval('$bannedwarning = "'.$templates->get('global_bannedwarning').'";');
|
// Display a nice warning to the user
eval('$bannedwarning = "'.$templates->get('global_bannedwarning').'";');
|
}
$lang->ajax_loading = str_replace("'", "\\'", $lang->ajax_loading);
| }
$lang->ajax_loading = str_replace("'", "\\'", $lang->ajax_loading);
|
// Check if this user has a new private message.
$pm_notice = '';
if(isset($mybb->user['pmnotice']) && $mybb->user['pmnotice'] == 2 && $mybb->user['pms_unread'] > 0 && $mybb->settings['enablepms'] != 0 && $mybb->usergroup['canusepms'] != 0 && $mybb->usergroup['canview'] != 0 && ($current_page != "private.php" || $mybb->get_input('action') != "read"))
| // Check if this user has a new private message.
$pm_notice = '';
if(isset($mybb->user['pmnotice']) && $mybb->user['pmnotice'] == 2 && $mybb->user['pms_unread'] > 0 && $mybb->settings['enablepms'] != 0 && $mybb->usergroup['canusepms'] != 0 && $mybb->usergroup['canview'] != 0 && ($current_page != "private.php" || $mybb->get_input('action') != "read"))
|
| Zeile 740 | Zeile 761 |
|---|
{
$pm['fromusername'] = $lang->mybb_engine;
$user_text = $pm['fromusername'];
|
{
$pm['fromusername'] = $lang->mybb_engine;
$user_text = $pm['fromusername'];
|
}
else
| }
else
|
{
|
{
|
| | $pm['fromusername'] = htmlspecialchars_uni($pm['fromusername']);
|
$user_text = build_profile_link($pm['fromusername'], $pm['fromuid']);
}
| $user_text = build_profile_link($pm['fromusername'], $pm['fromuid']);
}
|
| Zeile 755 | Zeile 777 |
|---|
$privatemessage_text = $lang->sprintf($lang->newpm_notice_multiple, $mybb->user['pms_unread'], $user_text, $mybb->settings['bburl'], $pm['pmid'], htmlspecialchars_uni($pm['subject']));
}
eval('$pm_notice = "'.$templates->get('global_pm_alert').'";');
|
$privatemessage_text = $lang->sprintf($lang->newpm_notice_multiple, $mybb->user['pms_unread'], $user_text, $mybb->settings['bburl'], $pm['pmid'], htmlspecialchars_uni($pm['subject']));
}
eval('$pm_notice = "'.$templates->get('global_pm_alert').'";');
|
| | }
$remote_avatar_notice = '';
if(($mybb->user['avatartype'] === 'remote' || $mybb->user['avatartype'] === 'gravatar') && !$mybb->settings['allowremoteavatars'])
{
eval('$remote_avatar_notice = "'.$templates->get('global_remote_avatar_notice').'";');
|
}
if($mybb->settings['awactialert'] == 1 && $mybb->usergroup['cancp'] == 1)
| }
if($mybb->settings['awactialert'] == 1 && $mybb->usergroup['cancp'] == 1)
|
| Zeile 835 | Zeile 863 |
|---|
if($task_cache['nextrun'] <= TIME_NOW)
{
eval("\$task_image = \"".$templates->get("task_image")."\";");
|
if($task_cache['nextrun'] <= TIME_NOW)
{
eval("\$task_image = \"".$templates->get("task_image")."\";");
|
| | }
// Post code
$post_code_string = '';
if($mybb->user['uid'])
{
$post_code_string = '&my_post_key='.$mybb->post_code;
|
}
// Are we showing the quick language selection box?
| }
// Are we showing the quick language selection box?
|
| Zeile 844 | Zeile 879 |
|---|
$languages = $lang->get_languages();
if(count($languages) > 1)
|
$languages = $lang->get_languages();
if(count($languages) > 1)
|
{
| {
|
foreach($languages as $key => $language)
{
$language = htmlspecialchars_uni($language);
// Current language matches
if($lang->language == $key)
|
foreach($languages as $key => $language)
{
$language = htmlspecialchars_uni($language);
// Current language matches
if($lang->language == $key)
|
{
| {
|
$selected = " selected=\"selected\"";
}
else
| $selected = " selected=\"selected\"";
}
else
|
| Zeile 864 | Zeile 899 |
|---|
$lang_redirect_url = get_current_location(true, 'language');
eval('$lang_select = "'.$templates->get('footer_languageselect').'";');
|
$lang_redirect_url = get_current_location(true, 'language');
eval('$lang_select = "'.$templates->get('footer_languageselect').'";');
|
}
}
| }
}
|
// Are we showing the quick theme selection box?
$theme_select = $theme_options = '';
if($mybb->settings['showthemeselect'] != 0)
| // Are we showing the quick theme selection box?
$theme_select = $theme_options = '';
if($mybb->settings['showthemeselect'] != 0)
|
| Zeile 884 | Zeile 919 |
|---|
$contact_us = '';
if(($mybb->settings['contactlink'] == "contact.php" && $mybb->settings['contact'] == 1 && ($mybb->settings['contact_guests'] != 1 && $mybb->user['uid'] == 0 || $mybb->user['uid'] > 0)) || $mybb->settings['contactlink'] != "contact.php")
{
|
$contact_us = '';
if(($mybb->settings['contactlink'] == "contact.php" && $mybb->settings['contact'] == 1 && ($mybb->settings['contact_guests'] != 1 && $mybb->user['uid'] == 0 || $mybb->user['uid'] > 0)) || $mybb->settings['contactlink'] != "contact.php")
{
|
if(my_substr($mybb->settings['contactlink'], 0, 1) != '/' && my_substr($mybb->settings['contactlink'], 0, 7) != 'http://' && my_substr($mybb->settings['contactlink'], 0, 8) != 'https://' && my_substr($mybb->settings['contactlink'], 0, 7) != 'mailto:')
| if(!my_validate_url($mybb->settings['contactlink'], true) && my_substr($mybb->settings['contactlink'], 0, 7) != 'mailto:')
|
{
$mybb->settings['contactlink'] = $mybb->settings['bburl'].'/'.$mybb->settings['contactlink'];
}
| {
$mybb->settings['contactlink'] = $mybb->settings['bburl'].'/'.$mybb->settings['contactlink'];
}
|
| Zeile 895 | Zeile 930 |
|---|
// DST Auto detection enabled?
$auto_dst_detection = '';
if($mybb->user['uid'] > 0 && $mybb->user['dstcorrection'] == 2)
|
// DST Auto detection enabled?
$auto_dst_detection = '';
if($mybb->user['uid'] > 0 && $mybb->user['dstcorrection'] == 2)
|
{
$auto_dst_detection = "<script type=\"text/javascript\">if(MyBB) { $([document, window]).bind(\"load\", function() { MyBB.detectDSTChange('".($mybb->user['timezone']+$mybb->user['dst'])."'); }); }</script>\n";
}
| {
$timezone = (float)$mybb->user['timezone'] + $mybb->user['dst'];
eval('$auto_dst_detection = "'.$templates->get('global_dst_detection').'";');
}
|
eval('$footer = "'.$templates->get('footer').'";');
// Add our main parts to the navigation
| eval('$footer = "'.$templates->get('footer').'";');
// Add our main parts to the navigation
|
| Zeile 929 | Zeile 966 |
|---|
'logout',
),
'captcha.php',
|
'logout',
),
'captcha.php',
|
| | 'contact.php',
|
);
// If the board is closed, the user is not an administrator and they're not trying to login, show the board closed message
| );
// If the board is closed, the user is not an administrator and they're not trying to login, show the board closed message
|
| Zeile 940 | Zeile 978 |
|---|
$mybb->settings['boardclosed_reason'] = $lang->boardclosed_reason;
}
|
$mybb->settings['boardclosed_reason'] = $lang->boardclosed_reason;
}
|
$lang->error_boardclosed .= "<blockquote>{$mybb->settings['boardclosed_reason']}</blockquote>";
| eval('$reason = "'.$templates->get('global_boardclosed_reason').'";');
$lang->error_boardclosed .= $reason;
|
if(!$mybb->get_input('modal'))
{
|
if(!$mybb->get_input('modal'))
{
|
| Zeile 970 | Zeile 1009 |
|---|
'resetpassword',
),
'captcha.php',
|
'resetpassword',
),
'captcha.php',
|
| | 'contact.php',
|
);
// If the board forces user to login/register, and the user is a guest, show the force login message
| );
// If the board forces user to login/register, and the user is a guest, show the force login message
|
| Zeile 1008 | Zeile 1048 |
|---|
}
}
|
}
}
|
| | $output = '';
$notallowed = false;
|
if($mybb->usergroup['canview'] != 1)
{
// Check pages allowable even when not allowed to view board
| if($mybb->usergroup['canview'] != 1)
{
// Check pages allowable even when not allowed to view board
|
| Zeile 1018 | Zeile 1060 |
|---|
$allowable_actions = explode(',', ALLOWABLE_PAGE);
if(!in_array($mybb->get_input('action'), $allowable_actions))
{
|
$allowable_actions = explode(',', ALLOWABLE_PAGE);
if(!in_array($mybb->get_input('action'), $allowable_actions))
{
|
error_no_permission();
| $notallowed = true;
|
}
unset($allowable_actions);
}
else if(ALLOWABLE_PAGE !== 1)
{
|
}
unset($allowable_actions);
}
else if(ALLOWABLE_PAGE !== 1)
{
|
error_no_permission();
}
}
| $notallowed = true;
}
}
|
else
{
|
else
{
|
error_no_permission();
| $notallowed = true;
}
if($notallowed == true)
{
if(!$mybb->get_input('modal'))
{
error_no_permission();
}
else
{
eval('$output = "'.$templates->get('global_no_permission_modal', 1, 0).'";');
echo($output);
exit;
}
|
}
}
| }
}
|