/html/AppCode/expressionengine/controllers/cp/members.php

Large files files are truncated, but you can click here to view the full file

<?php  if ( ! defined('BASEPATH')) exit('No direct script access allowed');
/**
 * ExpressionEngine - by EllisLab
 *
 * @package		ExpressionEngine
 * @author		ExpressionEngine Dev Team
 * @copyright	Copyright (c) 2003 - 2010, EllisLab, Inc.
 * @license		http://expressionengine.com/user_guide/license.html
 * @link		http://expressionengine.com
 * @since		Version 2.0
 * @filesource
 */

// ------------------------------------------------------------------------

/**
 * ExpressionEngine Member Management Class
 *
 * @package		ExpressionEngine
 * @subpackage	Control Panel
 * @category	Control Panel
 * @author		ExpressionEngine Dev Team
 * @link		http://expressionengine.com
 */

class Members extends Controller {

	// Default member groups.  We used these for translation purposes
	var $english		= array('Guests', 'Banned', 'Members', 'Pending', 'Super Admins');
	var $no_delete		= array('1', '2', '3', '4'); // Member groups that can not be deleted
	var $perpage		= 50;  // Number of results on the "View all member" page	
	var $pipe_length	= 5;
	
	/**
	 * Constructor
	 *
	 * @access	public
	 */
	function Members()
	{
		parent::Controller();
		
		if ( ! $this->cp->allowed_group('can_access_members'))
		{
			show_error($this->lang->line('unauthorized_access'));
		}

		$this->lang->loadfile('members');
		$this->load->model('member_model');
	}
	
	// --------------------------------------------------------------------

	/**
	 * Index function
	 *
	 * @access	public
	 * @return	mixed
	 */	
	function index()
	{
		if ( ! $this->cp->allowed_group('can_access_members'))
		{
			show_error($this->lang->line('unauthorized_access'));
		}

		$this->cp->set_variable('cp_page_title', $this->lang->line('members'));

		$this->javascript->compile();

		$this->load->vars(array('controller'=>'members'));

		$this->load->view('_shared/overview');
	}
	
	// --------------------------------------------------------------------

	/**
	 * View all members
	 *
	 * @access	public
	 * @return	mixed
	 */
	function view_all_members()
	{
		if ( ! $this->cp->allowed_group('can_access_members'))
		{
			show_error($this->lang->line('unauthorized_access'));
		}
		
		$message = $this->session->flashdata('message');
		
		$this->load->library('table');
		$this->load->library('pagination');
		$this->load->helper('form');
	
		$this->cp->set_variable('cp_page_title', $this->lang->line('view_members'));

		$this->cp->add_js_script(array('plugin' => 'dataTables'));

		$this->javascript->output('
		
			$("#filter_member_submit").hide();
		
			$(".toggle_all").toggle(
				function(){		
					$("input.toggle").each(function() {
						this.checked = true;
					});
				}, function (){
					var checked_status = this.checked;
					$("input.toggle").each(function() {
						this.checked = false;
					});
				}
			);
		');

		// These variables are only set when one of the pull-down menus is used
		// We use it to construct the SQL query with
		
		$group_id = ($this->input->get_post('group_id')) ? $this->input->get_post('group_id') : '';
		$order	  = $this->input->get_post('order');		

		$vars['column_filter_options'] = array(
			'all'				=> $this->lang->line('all'),
			'screen_name'		=> $this->lang->line('screen_name'),
			'username'			=> $this->lang->line('username'),
			'email'				=> $this->lang->line('email')
		);

		$vars['column_filter_selected'] = ($this->input->get_post('column_filter')) ? $this->input->get_post('column_filter') : 'all';

		// Repopulate Search Box ?
		$member_name = $this->input->get_post('member_name') ? $this->input->get_post('member_name') : '';	
		$per_page = ($this->input->get('per_page') != '') ? $this->input->get('per_page') : '0';

		// remember previously selected values
		$vars['selected_group'] = $group_id;

		// start blank, and add any we need as we go
		$vars['message'] = $message;

		// get all member groups for the dropdown list
		$member_groups = $this->member_model->get_member_groups();
		
		// first dropdown item is "all"
		$vars['member_groups_dropdown'] = array('' => $this->lang->line('all'));
		
		foreach($member_groups->result() as $group)
		{
			$vars['member_groups_dropdown'][$group->group_id] = $group->group_title;
		}

		$vars['member_list'] = $this->member_model->get_members($group_id, $this->config->item('memberlist_row_limit'), $per_page, $member_name);

		if ($vars['member_list'] === FALSE)
		{
			$vars['total_members'] = 0;
		}
		else
		{
			$vars['total_members'] = $this->member_model->count_members($group_id, $member_name);
		}
		
		// if we're looking at group 4 (pending), and require email activation, let's also give the option to resend their activation emails
		if ($group_id == '4' && $this->config->item('req_mbr_activation') == 'email' && $this->cp->allowed_group('can_admin_members'))
		{
			$vars['member_action_options'] = array('delete' => $this->lang->line('delete_selected'), 'resend' => $this->lang->line('resend_activation_emails'));
			$vars['delete_button_label'] = $this->lang->line('submit');
		}
		else
		{
			$vars['member_action_options'] = array();
			$vars['form_hidden']['action'] = 'delete';
			$vars['delete_button_label'] = $this->lang->line('delete_selected');
		}
		
		// creating a member automatically fills the search box
		if ( ! $member_name && ! $member_name = $this->session->flashdata('username'))
		{
			$member_name = '';
		}
		
		$vars['member_name'] = $member_name;

		// Pagination stuff
		$group_pagination = ($this->input->get_post('group_id')) ? AMP.'group_id='.$group_id : '';
		$member_pagination = ($this->input->get_post('member_name')) ? AMP.'member_name='.$group_id : '';
		$config['base_url'] = BASE.AMP.'C=members'.AMP.'M=view_all_members'.$group_pagination.$member_pagination;
		$config['total_rows'] = $vars['total_members'];
		$config['per_page'] = $this->config->item('memberlist_row_limit');
		$config['page_query_string'] = TRUE;
		$config['full_tag_open'] = '<p id="paginationLinks">';
		$config['full_tag_close'] = '</p>';
		$config['prev_link'] = '<img src="'.$this->cp->cp_theme_url.'images/pagination_prev_button.gif" width="13" height="13" alt="&lt;" />';
		$config['next_link'] = '<img src="'.$this->cp->cp_theme_url.'images/pagination_next_button.gif" width="13" height="13" alt="&gt;" />';
		$config['first_link'] = '<img src="'.$this->cp->cp_theme_url.'images/pagination_first_button.gif" width="13" height="13" alt="&lt; &lt;" />';
		$config['last_link'] = '<img src="'.$this->cp->cp_theme_url.'images/pagination_last_button.gif" width="13" height="13" alt="&gt; &gt;" />';

		$this->pagination->initialize($config);
		$vars['pagination'] = $this->pagination->create_links();
		
		
		//$this->jquery->dataTables('.mainTable');
		

	$this->javascript->output('
var oCache = {
	iCacheLower: -1
};

function fnSetKey( aoData, sKey, mValue )
{
	for ( var i=0, iLen=aoData.length ; i<iLen ; i++ )
	{
		if ( aoData[i].name == sKey )
		{
			aoData[i].value = mValue;
		}
	}
}

function fnGetKey( aoData, sKey )
{
	for ( var i=0, iLen=aoData.length ; i<iLen ; i++ )
	{
		if ( aoData[i].name == sKey )
		{
			return aoData[i].value;
		}
	}
	return null;
}

function fnDataTablesPipeline ( sSource, aoData, fnCallback ) {
	var iPipe = '.$this->pipe_length.';  /* Adjust the pipe size */
	
	var bNeedServer = false;
	var sEcho = fnGetKey(aoData, "sEcho");
	var iRequestStart = fnGetKey(aoData, "iDisplayStart");
	var iRequestLength = fnGetKey(aoData, "iDisplayLength");
	var iRequestEnd = iRequestStart + iRequestLength;
	var k_search    = document.getElementById("member_name");
    var group       = document.getElementById("group_id");
    var column_filter       = document.getElementById("column_filter");

	aoData.push( 
		{ "name": "k_search", "value": k_search.value },
		{ "name": "group", "value": group.value },
		{ "name": "column_filter", "value": column_filter.value }
	 );
	
	oCache.iDisplayStart = iRequestStart;
	
	/* outside pipeline? */
	if ( oCache.iCacheLower < 0 || iRequestStart < oCache.iCacheLower || iRequestEnd > oCache.iCacheUpper )
	{
		bNeedServer = true;
	}
	
	/* sorting etc changed? */
	if ( oCache.lastRequest && !bNeedServer )
	{
		for( var i=0, iLen=aoData.length ; i<iLen ; i++ )
		{
			if ( aoData[i].name != "iDisplayStart" && aoData[i].name != "iDisplayLength" && aoData[i].name != "sEcho" )
			{
				if ( aoData[i].value != oCache.lastRequest[i].value )
				{
					bNeedServer = true;
					break;
				}
			}
		}
	}
	
	/* Store the request for checking next time around */
	oCache.lastRequest = aoData.slice();
	
	if ( bNeedServer )
	{
		if ( iRequestStart < oCache.iCacheLower )
		{
			iRequestStart = iRequestStart - (iRequestLength*(iPipe-1));
			if ( iRequestStart < 0 )
			{
				iRequestStart = 0;
			}
		}
		
		oCache.iCacheLower = iRequestStart;
		oCache.iCacheUpper = iRequestStart + (iRequestLength * iPipe);
		oCache.iDisplayLength = fnGetKey( aoData, "iDisplayLength" );
		fnSetKey( aoData, "iDisplayStart", iRequestStart );
		fnSetKey( aoData, "iDisplayLength", iRequestLength*iPipe );
		
			aoData.push( 
				{ "name": "k_search", "value": k_search.value },
				{ "name": "group", "value": group.value },
				{ "name": "column_filter", "value": column_filter.value }
			 );

		$.getJSON( sSource, aoData, function (json) { 
			/* Callback processing */
			oCache.lastJson = jQuery.extend(true, {}, json);
 			
			if ( oCache.iCacheLower != oCache.iDisplayStart )
			{
				json.aaData.splice( 0, oCache.iDisplayStart-oCache.iCacheLower );
			}
			json.aaData.splice( oCache.iDisplayLength, json.aaData.length );
			
			fnCallback(json)
		} );
	}
	else
	{
		json = jQuery.extend(true, {}, oCache.lastJson);
		json.sEcho = sEcho; /* Update the echo for each response */
		json.aaData.splice( 0, iRequestStart-oCache.iCacheLower );
		json.aaData.splice( iRequestLength, json.aaData.length );
		fnCallback(json);
		return;
	}
}


		
	oTable = $(".mainTable").dataTable( {	
			"sPaginationType": "full_numbers",
			"bLengthChange": false,
			"bFilter": false,
			"sWrapper": false,
			"sInfo": false,
			"bAutoWidth": false,
			"iDisplayLength": '.$this->perpage.',  

		"aoColumns": [null, null, null, null, null, { "bSortable" : false }, { "bSortable" : false } ],
			
			
		"oLanguage": {
			"sZeroRecords": "'.$this->lang->line('no_members_matching_that_criteria').'",
			
			"oPaginate": {
				"sFirst": "<img src=\"'.$this->cp->cp_theme_url.'images/pagination_first_button.gif\" width=\"13\" height=\"13\" alt=\"&lt; &lt;\" />",
				"sPrevious": "<img src=\"'.$this->cp->cp_theme_url.'images/pagination_prev_button.gif\" width=\"13\" height=\"13\" alt=\"&lt; &lt;\" />",
				"sNext": "<img src=\"'.$this->cp->cp_theme_url.'images/pagination_next_button.gif\" width=\"13\" height=\"13\" alt=\"&lt; &lt;\" />", 
				"sLast": "<img src=\"'.$this->cp->cp_theme_url.'images/pagination_last_button.gif\" width=\"13\" height=\"13\" alt=\"&lt; &lt;\" />"
			}
		},
		
			"bProcessing": true,
			"bServerSide": true,
			"sAjaxSource": EE.BASE+"&C=members&M=member_search",
			"fnServerData": fnDataTablesPipeline
	} );

		$("#member_name").bind("keyup blur paste", function (e) {
		/* Filter on the column (the index) of this element */
    	setTimeout(function(){oTable.fnDraw();}, 1);
		});

		$("#member_form").submit(function() {
			oTable.fnDraw();
  			return false;
		});
	
		$("select#group_id").change(function () {
				oTable.fnDraw();
				
				if ($(this).val() == 4)
				{
					$("#member_action_options").show();
				}
			});		
		
		$("select#column_filter").change(function () {
				oTable.fnDraw();

			});		
		');
		
		$this->javascript->compile();

		$this->load->view('members/view_members', $vars);
	}

	function member_search()
	{
		if ( ! $this->cp->allowed_group('can_access_members'))
		{
			show_error($this->lang->line('unauthorized_access'));
		}

		$this->output->enable_profiler(FALSE);
		
		$col_map = array('username', 'screen_name', 'email', 'join_date', 'last_visit');
		
		$search_value = ($this->input->get_post('k_search')) ? $this->input->get_post('k_search') : '';
		$group_id = ($this->input->get_post('group')) ? $this->input->get_post('group') : '';		

		
		// Note- we pipeline the js, so pull more data than are displayed on the page		
		$perpage = $this->input->get_post('iDisplayLength');
		$offset = ($this->input->get_post('iDisplayStart')) ? $this->input->get_post('iDisplayStart') : 0; // Display start point
		$sEcho = $this->input->get_post('sEcho');	
		
		/* Ordering */
		$order = array();
		
		if ($this->input->get('iSortCol_0') !== FALSE)
		{
			for ( $i=0; $i < $this->input->get('iSortingCols'); $i++ )
			{
				if (isset($col_map[$this->input->get('iSortCol_'.$i)]))
				{
					$order[$col_map[$this->input->get('iSortCol_'.$i)]] = ($this->input->get('sSortDir_'.$i) == 'asc') ? 'asc' : 'desc';
				}
			}
		}
		
		$column_filter = ($this->input->get_post('column_filter')) ? $this->input->get_post('column_filter') : 'all';

		$members = $this->member_model->get_members($group_id, $perpage, $offset, $search_value, $order, $column_filter);

		$total = $this->member_model->count_members();
		$f_total = $this->member_model->count_members($group_id, $search_value, $column_filter);

		$j_response['sEcho'] = $sEcho;
		$j_response['iTotalRecords'] = $total;
		$j_response['iTotalDisplayRecords'] = $f_total;
		
		// Get the group titles- we need this in the display

		$member_groups = $this->member_model->get_member_groups();
		$groups = array();
		
		foreach($member_groups->result() as $group)
		{
			$groups[$group->group_id] = $group->group_title;
		}
		
		$tdata = array();
		$i = 0;

		if ($members !== FALSE)
		{
			foreach ($members->result_array() as $k => $member)
			{
		
				$m[] = '<a href="'.BASE.AMP.'C=myaccount'.AMP.'id='.$member['member_id'].'">'.$member['username'].'</a>';
				$m[] = $member['screen_name'];
				$m[] = '<a href="mailto:'.$member['email'].'">'.$member['email'].'</a>';
				$m[] = $this->localize->convert_timestamp('%Y', $member['join_date']).'-'.
										$this->localize->convert_timestamp('%m', $member['join_date']).'-'.
										$this->localize->convert_timestamp('%d', $member['join_date']);
				$m[] = ($member['last_visit'] == 0) ? ' - ' : $this->localize->set_human_time($member['last_visit']);
				$m[] = $groups[$member['group_id']];		
				$m[] = '<input class="toggle" type="checkbox" name="toggle[]" value="'.$member['member_id'].'" />';

				$tdata[$i] = $m;
				$i++;
				unset($m);
			}
		}

		$j_response['aaData'] = $tdata;	
		$sOutput = $this->javascript->generate_json($j_response, TRUE);
	
		exit($sOutput);
	}

	// --------------------------------------------------------------------

	/**
	 * Member Confirm
	 *
	 * Used to choose between emailing or deleting
	 *
	 * @access	public
	 * @return	mixed
	 */		
	function member_confirm()
	{
		if ( ! $this->cp->allowed_group('can_access_members'))
		{
			show_error($this->lang->line('unauthorized_access'));
		}
		
		if ($this->input->post('action') == 'resend')
		{
			$this->resend_activation_emails();
		}
		else
		{
			$this->member_delete_confirm();
		}
	}

	// --------------------------------------------------------------------

	/**
	 * Resend Activation Emails
	 *
	 * Resend Pending Member's Activation Emails
	 *
	 * @access	public
	 * @return	mixed
	 */		
	function resend_activation_emails()
	{
		if ( ! $this->cp->allowed_group('can_access_members') OR $this->config->item('req_mbr_activation') !== 'email')
		{
			show_error($this->lang->line('unauthorized_access'));
		}
		
		if ($this->input->get('mid') !== FALSE)
		{
			$_POST['toggle'][] = $this->input->get('mid');
		}

		if ( ! $this->input->post('toggle'))
		{
			$this->functions->redirect(BASE.AMP.'C=members'.AMP.'M=view_all_members');
		}

		$damned = array();

		foreach ($_POST['toggle'] as $key => $val)
		{
			$damned[] = $val;
		}
		
		if (count($damned) == 0)
		{
			$this->functions->redirect(BASE.AMP.'C=members'.AMP.'M=view_all_members');
		}

		$this->load->library('email');
		$this->load->helper('text');

		$this->db->select('screen_name, username, email, authcode');
		$this->db->where_in('member_id', $damned);
		$query = $this->db->get('members');
		
		if ($query->num_rows() == 0)
		{
			$this->functions->redirect(BASE.AMP.'C=members'.AMP.'M=view_all_members');
		}
			
		$action_id = $this->functions->fetch_action_id('Member', 'activate_member');
		
		$template = $this->functions->fetch_email_template('mbr_activation_instructions');
		
		$swap = array(
						'site_name'			=> stripslashes($this->config->item('site_name')),
						'site_url'			=> $this->config->item('site_url')
					 );
		
		foreach($query->result_array() as $row)
		{
			$swap['name']			= ($row['screen_name'] != '') ? $row['screen_name'] : $row['username'];
			$swap['activation_url']	= $this->functions->fetch_site_index(0, 0).QUERY_MARKER.'ACT='.$action_id.'&id='.$row['authcode'];
			$swap['username']		= $row['username'];
			$swap['email']			= $row['email'];
												
			// Send email

			$this->email->EE_initialize();
			$this->email->wordwrap = TRUE;
			$this->email->from($this->config->item('webmaster_email'), $this->config->item('webmaster_name'));	
			$this->email->to($row['email']);
			$this->email->subject($this->functions->var_swap($template['title'], $swap));	
			$this->email->message(entities_to_ascii($this->functions->var_swap($template['data'], $swap)));		
			$this->email->send();
		}

		$this->session->set_flashdata('message_success', $this->lang->line(($this->input->get('mid') !== FALSE) ? 'activation_email_resent' : 'activation_emails_resent'));
		$this->functions->redirect(BASE.AMP.'C=members'.AMP.'M=view_all_members');
	}

	// --------------------------------------------------------------------

	/**
	 * Delete Member (confirm)
	 *
	 * Warning message if you try to delete members
	 *
	 * @access	public
	 * @return	mixed
	 */		
	function member_delete_confirm()
	{
		if ( ! $this->cp->allowed_group('can_access_members') OR ! $this->cp->allowed_group('can_delete_members'))
		{
			show_error($this->lang->line('unauthorized_access'));
		}

		$this->load->helper('form');

		$from_myaccount = FALSE;

		if ($this->input->get('mid') != '')
		{
			$from_myaccount = TRUE;
			$_POST['toggle'][] = $this->input->get('mid');
		}

		if ( ! isset($_POST['toggle']))
		{
			$this->functions->redirect(BASE.AMP.'C=members'.AMP.'M=view_all_members');
		}

		if ( ! is_array($_POST['toggle']) OR count($_POST['toggle']) == 0)
		{
			$this->functions->redirect(BASE.AMP.'C=members'.AMP.'M=view_all_members');
		}

		$damned = array();

		$vars['ids_delete'] = array();
		
		foreach ($this->input->post('toggle') as $key => $val)
		{
			// Is the user trying to delete himself?
			if ($this->session->userdata('member_id') == $val)
			{
				show_error($this->lang->line('can_not_delete_self'));
			}

			$damned[] = $val;
		}

		// Pass the damned on for judgement
		$vars['damned'] = $damned;

		if (count($damned) == 1)
		{
			$vars['user_name'] = $this->member_model->get_username($damned['0']);
		}
		else
		{
			$vars['user_name'] = '';
		}

		// Do the users being deleted have entries assigned to them?
		// If so, fetch the member names for reassigment

		$vars['heirs'] = array();
		
		if ($this->member_model->count_member_entries($damned)  > 0)
		{
			$group_ids = $this->member_model->get_members_group_ids($damned);
			
			// Find Valid Member Replacements
			$this->db->select('member_id, username, screen_name');
			$this->db->from('members');
			$this->db->where_in('member_id', $group_ids);
			$this->db->where_not_in('member_id', $damned);
			$this->db->order_by('screen_name');
			$heirs = $this->db->get();

			foreach($heirs->result() as $heir)
			{
				$name_to_use = ($heir->screen_name != '') ? $heir->screen_name : $heir->username;
				$vars['heirs'][$heir->member_id] = $name_to_use;
			}
		}

		$this->cp->set_variable('cp_page_title', $this->lang->line('delete_member'));
		
		$this->load->view('members/delete_confirm', $vars);
	}

	// --------------------------------------------------------------------

	/**
	 * Login as Member
	 *
	 * Login as Member - SuperAdmins only!
	 *
	 * @access	public
	 * @return	mixed
	 */		
	function login_as_member()
	{
		if ($this->session->userdata('group_id') != 1)
		{
			show_error($this->lang->line('unauthorized_access'));
		}

		$this->lang->loadfile('myaccount');

		$id = $this->input->get('mid');

		if ($id == '')
		{
			show_error($this->lang->line('unauthorized_access'));
		}

		if ($this->session->userdata['member_id'] == $id)
		{
			show_error($this->lang->line('unauthorized_access'));
		}

		$this->load->helper('form');
		$this->cp->set_variable('cp_page_title', $this->lang->line('login_as_member'));

		// Fetch member data
		$this->db->from('members, member_groups');
		$this->db->select('members.screen_name, member_groups.can_access_cp');
		$this->db->where('member_id', $id);
		$this->db->where('member_groups.site_id', $this->config->item('site_id'));
		$this->db->where('members.group_id = '.$this->db->dbprefix('member_groups.group_id'));
		$query = $this->db->get();

		if ($query->num_rows() == 0)
		{
			show_error($this->lang->line('unauthorized_access'));
		}

		$vars['message'] = str_replace('%screen_name%', $query->row('screen_name') , $this->lang->line('login_as_member_description'));

		$vars['form_hidden']['mid'] = $id;

		$vars['can_access_cp'] = ($query->row('can_access_cp')  == 'y') ? TRUE : FALSE;

		$this->load->view('members/login_as_member', $vars);
	}

	// --------------------------------------------------------------------

	/**
	 * Do Login as Member
	 *
	 * Do Login as Member - SuperAdmins only!
	 *
	 * @access	public
	 * @return	mixed
	 */
	function do_login_as_member()
	{
		if ($this->session->userdata['group_id'] != 1)
		{
			show_error($this->lang->line('unauthorized_access'));
		}

		$id = $this->input->get_post('mid');

		if ($id == '')
		{
			show_error($this->lang->line('unauthorized_access'));
		}

		if ($this->session->userdata['member_id'] == $id)
		{
			show_error($this->lang->line('unauthorized_access'));
		}

		// Fetch member data

		$this->db->from('members, member_groups');
		$this->db->select('members.username, members.password, members.unique_id, members.member_id, members.group_id, member_groups.can_access_cp');
		$this->db->where('member_id', $id);
		$this->db->where('member_groups.site_id', $this->config->item('site_id'));
		$this->db->where('members.group_id = '.$this->db->dbprefix('member_groups.group_id'));
		$query = $this->db->get();

		if ($query->num_rows() == 0)
		{
			show_error($this->lang->line('unauthorized_access'));
		}

		$this->lang->loadfile('login');

		//  Do we allow multiple logins on the same account?
		if ($this->config->item('allow_multi_logins') == 'n')
		{
			// Kill old sessions first
			$this->session->gc_probability = 100;
			$this->session->delete_old_sessions();
			$expire = time() - $this->session->session_length;

			// See if there is a current session

			$this->db->select('ip_address, user_agent');
			$this->db->where('member_id', $query->row('member_id'));
			$this->db->where('last_activity >', $expire);
			$result = $this->db->get('sessions');

			// If a session exists, trigger the error message

			if ($result->num_rows() == 1)
			{
				if ($this->session->userdata['ip_address'] != $result->row('ip_address')  OR
					$this->session->userdata['user_agent'] != $result->row('user_agent')  )
				{
					show_error($this->lang->line('multi_login_warning'));
				}
			}
		}

		// Log the SuperAdmin login

		$this->logger->log_action($this->lang->line('login_as_user').':'.NBS.$query->row('username') );

		// Set cookie expiration to one year if the "remember me" button is clicked

		$expire = 0;
		$type = (isset($_POST['return_destination']) && $_POST['return_destination'] == 'cp') ? $this->config->item('admin_session_type') : $this->config->item('user_session_type');

		if ($type != 's')
		{
			$this->functions->set_cookie($this->session->c_expire , time()+$expire, $expire);
			$this->functions->set_cookie($this->session->c_uniqueid , $query->row('unique_id') , $expire);
			$this->functions->set_cookie($this->session->c_password , $query->row('password') ,  $expire);
			$this->functions->set_cookie($this->session->c_anon , 1,  $expire);
		}

		// Create a new session

		$session_id = $this->session->create_new_session($query->row('member_id') , TRUE);

		// Delete old password lockouts

		$this->session->delete_password_lockout();

		// Redirect the user to the return page

		$return_path = $this->functions->fetch_site_index();

		if (isset($_POST['return_destination']))
		{
			if ($_POST['return_destination'] == 'cp')
			{
				$s = ($this->config->item('admin_session_type') != 'c') ? $this->session->userdata['session_id'] : 0;
				$return_path = $this->config->item('cp_url', FALSE).'?S='.$s;
			}
			elseif ($_POST['return_destination'] == 'other' && isset($_POST['other_url']) && stristr($_POST['other_url'], 'http'))
			{
				$return_path = $this->security->xss_clean(strip_tags($_POST['other_url']));
			}
		}

		$this->functions->redirect($return_path);
	}

	// --------------------------------------------------------------------

	/**
	 * Member Delete
	 *
	 * Delete Members
	 *
	 * @access	public
	 * @return	mixed
	 */		
	function member_delete()
	{
		if ( ! $this->cp->allowed_group('can_access_members') OR ! $this->cp->allowed_group('can_delete_members'))
		{
			show_error($this->lang->line('unauthorized_access'));
		}

		if ( ! $this->input->post('delete') OR ! is_array($this->input->post('delete')))
		{
			$this->functions->redirect(BASE.AMP.'C=members'.AMP.'M=view_all_members');
		}

		$this->load->model('member_model');

		//  Fetch member ID numbers and build the query

		$ids = array();
		$mids = array();
				
		foreach ($this->input->post('delete') as $key => $val)
		{		
			if ($val != '')
			{
				$ids[] = "member_id = '".$this->db->escape_str($val)."'";
				$mids[] = $this->db->escape_str($val);
			}		
		}
		
		$IDS = implode(" OR ", $ids);

		// SAFETY CHECK
		// Let's fetch the Member Group ID of each member being deleted
		// If there is a Super Admin in the bunch we'll run a few more safeties
				
		$super_admins = 0;
		
		$query = $this->db->query("SELECT group_id FROM exp_members WHERE ".$IDS);		
		
		foreach ($query->result_array() as $row)
		{
			if ($query->row('group_id')  == 1)
			{
				$super_admins++;			
			}
		}		
		
		if ($super_admins > 0)
		{
			// You must be a Super Admin to delete a Super Admin
		
			if ($this->session->userdata['group_id'] != 1)
			{
				show_error($this->lang->line('must_be_superadmin_to_delete_one'));
			}
			
			// You can't delete the only Super Admin
			$query = $this->member_model->count_members(1);
			
			if ($super_admins >= $query)
			{
				show_error($this->lang->line('can_not_delete_super_admin'));
			}
		}
		
		// If we got this far we're clear to delete the members
	
		$this->db->query("DELETE FROM exp_members WHERE ".$IDS);
		$this->db->query("DELETE FROM exp_member_data WHERE ".$IDS);
		$this->db->query("DELETE FROM exp_member_homepage WHERE ".$IDS);
		
		foreach($mids as $val)
		{
			$message_query = $this->db->query("SELECT DISTINCT recipient_id FROM exp_message_copies WHERE sender_id = '$val' AND message_read = 'n'");
			$this->db->query("DELETE FROM exp_message_copies WHERE sender_id = '$val'");
			$this->db->query("DELETE FROM exp_message_data WHERE sender_id = '$val'");
			$this->db->query("DELETE FROM exp_message_folders WHERE member_id = '$val'");
			$this->db->query("DELETE FROM exp_message_listed WHERE member_id = '$val'");
			
			if ($message_query->num_rows() > 0)
			{
				foreach($message_query->result_array() as $row)
				{
					$count_query = $this->db->query("SELECT COUNT(*) AS count FROM exp_message_copies WHERE recipient_id = '".$row['recipient_id']."' AND message_read = 'n'");
					$this->db->query($this->db->update_string('exp_members', array('private_messages' => $count_query->row('count') ), "member_id = '".$row['recipient_id']."'"));
				}
			}
		}

		/** ----------------------------------
		/**  Are there forum posts to delete?
		/** ----------------------------------*/
		
		if ($this->config->item('forum_is_installed') == "y")
		{
			$this->db->query("DELETE FROM exp_forum_subscriptions  WHERE ".$IDS);
			$this->db->query("DELETE FROM exp_forum_pollvotes  WHERE ".$IDS);

			$IDS = str_replace('member_id', 'admin_member_id', $IDS);
			$this->db->query("DELETE FROM exp_forum_administrators WHERE ".$IDS);
			
			$IDS = str_replace('admin_member_id', 'mod_member_id', $IDS);			
			$this->db->query("DELETE FROM exp_forum_moderators WHERE ".$IDS);

			$IDS = str_replace('mod_member_id', 'author_id', $IDS);
			$this->db->query("DELETE FROM exp_forum_topics WHERE ".$IDS);
			
			// Snag the affected topic id's before deleting the members for the update afterwards
			$query = $this->db->query("SELECT topic_id FROM exp_forum_posts WHERE ".$IDS);
			
			if ($query->num_rows() > 0)
			{
				$topic_ids = array();
				
				foreach ($query->result_array() as $row)
				{
					$topic_ids[] = $row['topic_id'];
				}
				
				$topic_ids = array_unique($topic_ids);
			}
			
			$this->db->query("DELETE FROM exp_forum_posts  WHERE ".$IDS);
			$this->db->query("DELETE FROM exp_forum_polls  WHERE ".$IDS);
	
			$IDS = str_replace('author_id', 'member_id', $IDS);
			
			// Kill any attachments
			$query = $this->db->query("SELECT attachment_id, filehash, extension, board_id FROM exp_forum_attachments WHERE ".$IDS);
			
			if ($query->num_rows()  > 0)
			{
				// Grab the upload path
				$res = $this->db->query('SELECT board_id, board_upload_path FROM exp_forum_boards');
			
				$paths = array();
				foreach ($res->result_array() as $row)
				{
					$paths[$row['board_id']] = $row['board_upload_path'];
				}
			
				foreach ($query->result_array() as $row)
				{
					if ( ! isset($paths[$row['board_id']]))
					{
						continue;
					}
					
					$file  = $paths[$row['board_id']].$row['filehash'].$row['extension'];
					$thumb = $paths[$row['board_id']].$row['filehash'].'_t'.$row['extension'];
				
					@unlink($file);
					@unlink($thumb);					
			
					$this->db->query("DELETE FROM exp_forum_attachments WHERE attachment_id = '{$row['attachment_id']}'");
				}				
			}			
	
			// Update the forum stats			
			$query = $this->db->query("SELECT forum_id FROM exp_forums WHERE forum_is_cat = 'n'");
			
		
			if ( ! class_exists('Forum'))
			{
				require PATH_MOD.'forum/mod.forum'.EXT;
				require PATH_MOD.'forum/mod.forum_core'.EXT;
			}
			
			$FRM = new Forum_Core;
			
			foreach ($query->result_array() as $row)
			{
				$FRM->_update_post_stats($row['forum_id']);
			}
			
			if (isset($topic_ids))
			{
				foreach ($topic_ids as $topic_id)
				{
					$FRM->_update_topic_stats($topic_id);
				}
			}
		}		
		
		/** -------------------------------------
		/**  Delete comments and update entry stats
		/** -------------------------------------*/
		
		$channel_ids = array();

		if ($this->db->table_exists('comment_subscriptions'))
		{
			$this->db->query("DELETE FROM exp_comment_subscriptions WHERE ".$IDS);
		}

		if ($this->db->table_exists('comments'))
		{
			$IDS = str_replace('member_id', 'author_id', $IDS);
		
			$query = $this->db->query("SELECT DISTINCT(entry_id), channel_id FROM exp_comments WHERE ".$IDS);
		
			if ($query->num_rows() > 0)
			{
				$this->db->query("DELETE FROM exp_comments WHERE ".$IDS);

				foreach ($query->result_array() as $row)
				{
					$channel_ids[] = $row['channel_id'];
				
					$query = $this->db->query("SELECT MAX(comment_date) AS max_date FROM exp_comments WHERE status = 'o' AND entry_id = '".$this->db->escape_str($row['entry_id'])."'");
				
					$comment_date = ($query->num_rows() == 0 OR ! is_numeric($query->row('max_date') )) ? 0 : $query->row('max_date') ;
				
					$query = $this->db->query("SELECT COUNT(*) AS count FROM exp_comments WHERE entry_id = '{$row['entry_id']}' AND status = 'o'");		
				
					$this->db->query("UPDATE exp_channel_titles
								SET comment_total = '".$this->db->escape_str($query->row('count') )."', recent_comment_date = '$comment_date'
								WHERE entry_id = '{$row['entry_id']}'");
				}
			}
		
			if (count($channel_ids) > 0)
			{	
				foreach (array_unique($channel_ids) as $channel_id)
				{
					$this->stats->update_comment_stats($channel_id);
				}
			}
		}

		/** ----------------------------------
		/**  Reassign Entires to Heir
		/** ----------------------------------*/
		
		$heir_id = $this->input->post('heir');
		
		if ($heir_id !== FALSE && is_numeric($heir_id))
		{
			$this->db->query("UPDATE exp_channel_titles SET author_id = '{$heir_id}' WHERE ".str_replace('member_id', 'author_id', $IDS));
			
			$query = $this->db->query("SELECT COUNT(entry_id) AS count, MAX(entry_date) AS entry_date
								 FROM exp_channel_titles
								 WHERE author_id = '{$heir_id}'");
									
			$this->db->query("UPDATE exp_members
						SET total_entries = '".$this->db->escape_str($query->row('count') )."', last_entry_date = '".$this->db->escape_str($query->row('entry_date') )."'
						WHERE member_id = '{$heir_id}'");
		}

		/* -------------------------------------------
		/* 'cp_members_member_delete_end' hook.
		/*  - Additional processing when a member is deleted through the CP
		*/
			$edata = $this->extensions->call('cp_members_member_delete_end');
			if ($this->extensions->end_script === TRUE) return;
		/*
		/* -------------------------------------------*/
				
		// Update		
		$this->stats->update_member_stats();
			
		$cp_message = (count($ids) == 1) ? $this->lang->line('member_deleted') :
										$this->lang->line('members_deleted');

		$this->session->set_flashdata('message_success', $cp_message);
		$this->functions->redirect(BASE.AMP.'C=members'.AMP.'M=view_all_members');
	}

	// --------------------------------------------------------------------

	/**
	 * Member Group Manager
	 *
	 * Member group overview
	 *
	 * @access	public
	 * @return	mixed
	 */		
	function member_group_manager()
	{
		if ( ! $this->cp->allowed_group('can_access_members') OR ! $this->cp->allowed_group('can_admin_mbr_groups'))
		{
			show_error($this->lang->line('unauthorized_access'));
		}

		$this->load->library('table');
		$this->load->library('pagination');
		$this->load->helper('form');

		$row_limit = $this->perpage;
		$offset = ($this->input->get('per_page') != '') ? $this->input->get('per_page') : 0;

		$query = $this->member_model->get_member_groups(array('can_access_cp', 'is_locked'), array(), $row_limit, $offset);	

		$groups = array(); // holder for group info
				
		foreach($query->result_array() as $row)
		{
			$group_name = $row['group_title'];
					
			if (in_array($group_name, $this->english))
			{
				$group_name = $this->lang->line(strtolower(str_replace(" ", "_", $group_name)));
			}
	
			$groups[$row['group_id']]['group_id'] = $row['group_id'];
			$groups[$row['group_id']]['title'] = $group_name;						
			$groups[$row['group_id']]['can_access_cp'] = $row['can_access_cp'];
			$groups[$row['group_id']]['security_lock'] = ($row['is_locked'] == 'y') ? $this->lang->line('locked') : $this->lang->line('unlocked');
			$groups[$row['group_id']]['member_count'] = $this->member_model->count_members($row['group_id']);
			$groups[$row['group_id']]['delete'] = ( ! in_array($row['group_id'], $this->no_delete)) ? TRUE : FALSE;
		}

		$vars['clone_group_options'] = array();
		$g_query = $this->member_model->get_member_groups();

		foreach($g_query->result_array() as $row)
		{
			$vars['clone_group_options'][$row['group_id']] = $row['group_title'];
		}

		$config = array(
				'base_url'		=> BASE.AMP.'C=members'.AMP.'M=member_group_manager',
				'total_rows'	=> $g_query->num_rows(),
				'per_page'		=> $row_limit,
				'page_query_string'	=> TRUE,
				'first_link'	=> $this->lang->line('pag_first_link'),
				'last_link'		=> $this->lang->line('pag_last_link')
			);

		$this->pagination->initialize($config);

		$vars['paginate'] = $this->pagination->create_links();

		$this->cp->set_variable('cp_page_title', $this->lang->line('member_groups'));

		$this->jquery->tablesorter('.mainTable', '{headers: {1: {sorter: false}, 5: {sorter: false}}, widgets: ["zebra"]}');
		
		$this->javascript->compile();
		
		$vars['groups'] = $groups;

        $this->cp->set_right_nav(array('create_new_member_group' => BASE.AMP.'C=members'.AMP.'M=edit_member_group'));

		$this->load->view('members/member_group_manager', $vars);
	}

	// --------------------------------------------------------------------

	/**
	 * Edit Member Group
	 *
	 * Edit/Create a member group form
	 *
	 * @access	public
	 * @return	mixed
	 */		
	function edit_member_group()
	{	
		// Only super admins can administrate member groups
		if ($this->session->userdata['group_id'] != 1)
		{
			show_error($this->lang->line('only_superadmins_can_admin_groups'));
		}

		$this->load->library('table');
		$this->load->helper('form');
		$this->load->model('channel_model');
		$this->load->model('template_model');
		$this->load->model('addons_model');
		$this->load->model('site_model');
		$this->lang->loadfile('admin');

		$this->cp->add_js_script('ui', 'accordion');

		$this->jquery->tablesorter('#edit_member_group table', '{
			headers: {1: {sorter: false}, 2: {sorter: false}},
			widgets: ["zebra"]
		}');

		$this->javascript->output('
			$(".site_prefs").hide();
			$(".site_prefs:first").show();
			$("#edit_member_group").accordion({autoHeight: false,header: "h3"});

			$("#site_list_pulldown").change(function() {
				id = $("#site_list_pulldown").val();
				$(".site_prefs").fadeOut("500", function(){
					$("#site_options_"+id).fadeIn("500");
				});
			});

		');
			
		$this->javascript->compile();
		
		$group_id = $this->input->get_post('group_id');
		$clone_id = $this->input->get_post('clone_id');
		
		$id = ($group_id == '') ? '3' : $group_id;

		// Assign the page title
		$title = ($group_id != '') ? $this->lang->line('edit_member_group') : $this->lang->line('create_member_group');

		// Fetch the Sites

		if ($this->config->item('multiple_sites_enabled') == 'y')
		{
			$sites_query = $this->site_model->get_site();
		}
		else
		{
			$sites_query = $this->site_model->get_site('1');
		}

		// Fetch the member group data

		if ($clone_id != '')
		{
			$id = $clone_id;
		}

		$query = $this->db->get_where('member_groups', array('group_id' => $id));

		$result = ($query->num_rows() == 0) ? FALSE : TRUE;
		
		$group_data = array();
		
		foreach($query->result_array() as $row)
		{
			$group_data[$row['site_id']] = $row;
		}

		$default_id = $query->row('site_id');
		
		// Translate the group title 	
		// We only translate this if it has not been edited
		
		$group_title = ($group_id == '') ? '' : $group_data[$default_id]['group_title'];
		$group_description = ($group_id == '') ? '' : $group_data[$default_id]['group_description'];
			
		if (isset($this->english[$group_title]))
		{
			$group_title = $this->lang->line(strtolower(str_replace(" ", "_", $group_title)));
		}

		if ($clone_id != '')
		{
			$group_title = '';
			$group_description = '';
			$vars['form_hidden']['clone_id'] = $clone_id;
		}

		$vars['form_hidden']['group_id'] = $group_id;
		
		//  Group name and description form fields
		$vars['group_title'] = $group_title;
		$vars['group_description'] = $group_description;
		$vars['group_id'] = $group_id;
			
		//  Group lock
	 	$vars['is_locked'] = ($group_data[$default_id]['is_locked'] == 'y') ? 'y' : 'n';

		//  Fetch the names and IDs of all channels
		$this->db->select('channel_id, site_id, channel_title');
 		$this->db->order_by('channel_title');
		$query 	= $this->db->get('channels');

		$channel_names = array();
		$channel_perms = array();
		$channel_ids	= array();
		
        if ($id == 1)
        {
			foreach($query->result_array() as $row)
			{
				$channel_names['channel_id_'.$row['channel_id']] = $row['channel_title'];
				$channel_perms[$row['site_id']]['channel_id_'.$row['channel_id']] = 'y';
			}
		}
		else
		{
			$this->db->select('channel_id');
 			$this->db->where('group_id', $id);		
			$res = $this->db->get('channel_member_groups');				
			
			if ($res->num_rows() > 0)
			{
				foreach ($res->result_array() as $row)
				{
					$channel_ids[$row['channel_id']] = TRUE;
				}
			}
									
			foreach($query->result_array() as $row)
			{
				$channel_names['channel_id_'.$row['channel_id']] = $row['channel_title'];
				$channel_perms[$row['site_id']]['channel_id_'.$row['channel_id']] = (isset($channel_ids[$row['channel_id']])) ? 'y' : 'n';
			}
		}
	
		$vars['channel_names'] = $channel_names;
		
		//  Fetch the names and IDs of all modules	
		$this->db->select('module_id, module_name');
 		$this->db->where('has_cp_backend', 'y');		
 		$this->db->order_by('module_name');
		$query = $this->db->get('modules');		

		$module_names = array();
		$module_perms = array();
		$module_ids	= array();

        if ($id == 1)
        {
			foreach($query->result_array() as $row)
			{
				$module_names['module_id_'.$row['module_id']] = $row['module_name'];
				$module_perms['module_id_'.$row['module_id']] = 'y';
			}
		}
		else
		{
			$this->db->select('module_id');
 			$this->db->where('group_id', $id);		
			$res = $this->db->get('module_member_groups');	
			
			if ($res->num_rows() > 0)
			{
				foreach ($res->result_array() as $row)
				{
					$module_ids[$row['module_id']] = TRUE;
				}
			}
						
			foreach($query->result_array() as $row)
			{
				$module_names['module_id_'.$row['module_id']] = $row['module_name'];
				$module_perms['module_id_'.$row['module_id']] = (isset($module_ids[$row['module_id']])) ? 'y' : 'n';
			}
		}
		
		$vars['module_names'] = $module_names;
		$vars['module_perms'] = $module_perms;
		
		//  Fetch the names and IDs of all template groups
		$this->db->select('group_id, group_name, site_id');
 		$this->db->order_by('group_name');
		$query = $this->db->get('template_groups');			

		$template_names = array();
		$template_perms = array();
		
		if ($id == 1)
		{
			foreach ($query->result_array() as $row)
			{
				$template_names['template_id_'.$row['group_id']] = $row['group_name'];
				$template_perms[$row['site_id']]['template_id_'.$row['group_id']] = 'y';				
			}
		}
		else
		{
			$this->db->select('template_group_id');
 			$this->db->where('group_id', $id);		
			$res = $this->db->get('template_member_groups');	

			$template_ids = array();

			if ($res->num_rows() > 0)
			{
				foreach ($res->result_array() as $row)
				{
					$template_ids[$row['template_group_id']] = TRUE;
				}
			}

			foreach($query->result_array() as $row)
			{
				$template_names['template_id_'.$row['group_id']] = $row['group_name'];
				$template_perms[$row['site_id']]['template_id_'.$row['group_id']] = (isset($template_ids[$row['group_id']])) ? 'y' : 'n';
			}
		}

		$vars['template_names'] = $template_names;

		/** ----------------------------------------------------
		/**  Assign clusters of member groups
		/** ----------------------------------------------------*/
				
		// NOTE: the associative value (y/n) is the default setting used
		// only when we are showing the "create new group" form

		$G = array(
				'site_access'	 	=> array (
												'can_view_online_system'	=> 'n',
												'can_view_offline_system'	=> 'n'
											 ),

				'mbr_account_privs' => array (
												'can_view_profiles'			=> 'n',
												'can_email_from_profile'	=> 'n',
												'include_in_authorlist'		=> 'n',
												'include_in_memberlist'		=> 'n',
												'include_in_mailinglists'	=> 'y',
												'can_delete_self'			=> 'n',
												'mbr_delete_notify_emails'	=> $this->config->item('webmaster_email')
											 ),

				'commenting_privs' => array (
												'can_post_comments'			=> 'n',
												'exclude_from_moderation'	=> 'n'
											 ),

				'search_privs'		=> array (
												'can_search'				=> 'n',
												'search_flood_control'		=> '30'
											 ),

				'priv_msg_privs'	=> array (
												'can_send_private_messages'			=> 'n',
												'prv_msg_send_limit'				=> '20',
												'prv_msg_storage_limit'				=> '60',
												'can_attach_in_private_messages'	=> 'n',
												'can_send_bulletins'				=> 'n'
											 ),

				'global_cp_access' => array (
												'can_access_cp'		 		=> 'n',
												'can_access_content'		=> 'n',
												'can_access_publish'		=> 'n',
												'can_access_edit'			=> 'n',												
												'can_access_files'	 		=> 'n',
												'can_access_design'	 		=> 'n',
												'can_access_addons'			=> 'n',
												'can_access_modules'		=> 'n',
												'can_access_extensions'		=> 'n',
												'can_access_accessories'	=> 'n',
												'can_access_plugins'		=> 'n',												
												'can_access_fieldtypes'		=> 'n',
												'can_access_members'		=> 'n',
												'can_access_admin'	  		=> 'n',
												'can_access_sys_prefs'	 	=> 'n',
												'can_access_content_prefs'	=> 'n',
												'can_access_tools'			=> 'n',
												'can_access_comm'	 		=> 'n',
												'can_access_utilities'		=> 'n',
												'can_access_data'			=> 'n',
												'can_access_logs'	 		=> 'n'												
											 ),

				'cp_admin_privs'	=> array (
												'can_admin_channels'	 	=> 'n',
												'can_admin_templates'		=> 'n',
												'can_admin_design' 			=> 'n',												
												'can_admin_members'	 		=> 'n',
												'can_admin_mbr_groups'  	=> 'n',
												'can_admin_mbr_templates'  	=> 'n',
												'can_delete_members'		=> 'n',
												'can_ban_users'		 		=> 'n',
												'can_admin_modules'	 		=> 'n'
											 ),

				'cp_email_privs' => array (
												'can_send_email'			=> 'n',
												'can_email_member_groups'	=> 'n',
												'can_email_mailinglist'		=> 'n',
												'can_send_cached_email'		=> 'n',
											 ),

				'cp_channel_privs'	=>  array(
												'can_view_other_entries'	=> 'n',
												'can_delete_self_entries'  => 'n',
												'can_edit_other_entries'	=> 'n',
												'can_delete_all_entries'	=> 'n',
												'can_assign_post_authors'  => 'n',
												'can_edit_categories'		=> 'n',
												'can_delete_categories'		=> 'n',
											 ),

				'cp_channel_post_privs'	=>  $channel_perms,

				'cp_comment_privs' => array (
												'can_moderate_comments'		=> 'n',
												'can_view_other_comments'	=> 'n',
												'can_edit_own_comments'	 => 'n',
												'can_delete_own_comments'	=> 'n',
												'can_edit_all_comments'	 => 'n',
												'can_delete_all_comments'	=> 'n'
											 ),
											
				'cp_template_access_privs' =>  $template_perms,

//				'cp_module_access_privs'	=>  $module_perms, // handled via $vars['module_names'] and $vars['module_perms']
					);

		// Super Admin Group can not be edited
		// If the form being viewed is the Super Admin one we only allow the name to be changed.
		if ($group_id == 1)
		{
			$G = array('mbr_account_privs' => array ('include_in_authorlist' => 'n', 'include_in_memberlist' => 'n'));
		}

		//  Assign items we want to highlight
		$vars['alert'] = array(
						'can_view_offline_system',
						'can_access_cp',
						'can_admin_channels',
						'can_admin_templates',
						'can_delete_members',
						'can_admin_mbr_groups',
						'can_admin_mbr_templates',
						'can_ban_users',
						'can_admin_members',
						'can_admin_design',
						'can_admin_modules',
						'can_edit_categories',
						'can_delete_categories',
						'can_delete_self'
					  );

		// Items that should be shown in an input box
		$vars['textbox'] = array(
						'search_flood_control',
						'prv_msg_send_limit',
						'prv_msg_storage_limit',
						'mbr_delete_notify_emails'
					  );

		$s = 0;
//echo '<pre>'; print_r($G); exit;
		foreach($sites_query->result_array() as $sites)
		{

			$vars['sites_dropdown'][$sites['site_id']] = $sites['site_label'];

			foreach ($G as $g_key => $g_val)
			{
				if ($g_key == 'cp_module_access_privs')
				{
					if ($s == 0)
					{
						$add = '';
					}
					else
					{
						continue;
					}
				}
				else
				{
					$add = $sites['site_id'].'_';
				}

				foreach($g_val as $key => $val)
				{
					if ($g_key == 'cp_module_access_privs')
					{
						$vars['group_data'][$sites['site_id']][$add.$key] = $group_data[$key];
					}
					elseif (isset($group_data[$sites['site_id']][$key]) && $group_data[$sites['site_id']][$key] != '')
					{
						$vars['group_data'][$sites['site_id']][$g_key][$add.$key] = $group_data[$sites['site_id']][$key];
					}
					elseif ($key == $sites['site_id'])
					{
						foreach($val as $p => $a)
						{
						$vars['group_data'][$sites['site_id']][$g_key][$add.$p] = $a;							
						}
					}
					else  // probably redundant
					{
						//$vars['group_data'][$sites['site_id']][$g_key][$add.$key] = $val;
					}					
				}
			}
			
			++$s;
		}

		//  Submit button lang key
		$vars['action'] = ($group_id == '') ? 'submit' : 'update';

		$this->cp->set_variable('cp_page_title', $title);

		$this->load->view('members/edit_member_group', $vars);
	}

	// --------------------------------------------------------------------

	/**
	 * Member Config
	 *
	 * @access	public
	 * @return	mixed
	 */		
	function member_config()
	{		
		if ( ! $this->cp->allowed_group('can_access_members') OR ! $this->cp->allowed_group('can_admin_members'))
		{
			show_error($this->lang->line('unauthorized_access'));
		}

		$this->lang->loadfile('admin');
		$this->load->library('table');
		$this->load->helper('form');

		$f_data =  array(

			'general_cfg'		=>	array(
											'allow_member_registration'	=> array('r', array('y' => 'yes', 'n' => 'no')),
											'req_mbr_activation'		=> array('s', array('none' => 'no_activation', 'email' => 'email_activation', 'manual' => 'manual_activation')),
											'require_terms_of_service'	=> array('r', array('y' => 'yes', 'n' => 'no')),
											'allow_member_localization'	=> array('r', array('y' => 'yes', 'n' => 'no')),
											'use_membership_captcha…