PageRenderTime 75ms CodeModel.GetById 42ms RepoModel.GetById 1ms app.codeStats 0ms

/lists_old/admin/import1.php

https://github.com/condesan/infoandina
PHP | 366 lines | 291 code | 45 blank | 30 comment | 96 complexity | 64e44ef6a2b8774ee3b279dbfdefb330 MD5 | raw file
    

  1. <?php
    2. 

  2. require_once dirname(__FILE__).'/accesscheck.php';
    3. 

  3. 

  4. $subselect = '';
    5. 

  5. 

  6. if (!ALLOW_IMPORT) {
    7. 

  7.   print '<p>'.$GLOBALS['I18N']->get('import is not available').'</p>';
    8. 

  8.   return;
    9. 

  9. }
    10. 

  10. 

  11. print '<script language="Javascript" src="js/progressbar.js" type="text/javascript"></script>';
    12. 

  12. 

  13. ignore_user_abort();
    14. 

  14. set_time_limit(500);
    15. 

  15. ob_end_flush();
    16. 

  16. ?>
    17. 

  17. <p>
    18. 

  18. 

  19. <?php
    20. 

  20. 

  21. if (!isset($GLOBALS["tmpdir"])) {
    22. 

  22.   $GLOBALS["tmpdir"] = ini_get("upload_tmp_dir");
    23. 

  23. }
    24. 

  24. if (!is_dir($GLOBALS["tmpdir"]) || !is_writable($GLOBALS["tmpdir"])) {
    25. 

  25.   $GLOBALS["tmpdir"] = ini_get("upload_tmp_dir");
    26. 

  26. }
    27. 

  27. #if (ini_get("open_basedir")) {
    28. 

  28. if (!is_dir($GLOBALS["tmpdir"]) || !is_writable($GLOBALS["tmpdir"])) {
    29. 

  29.   Warn($GLOBALS['I18N']->get('temp_dir_not_writeable')." (".$GLOBALS["tmpdir"].")");
    30. 

  30. }
    31. 

  31. 

  32. if(isset($_REQUEST['import'])) {
    33. 

  33. 

  34.   $test_import = (isset($_POST["import_test"]) && $_POST["import_test"] == "yes");
    35. 

  35.  /*
    36. 

  36.   if (!is_array($_POST["lists"]) && !$test_import) {
    37. 

  37.     Fatal_Error($GLOBALS['I18N']->get('select_list'));
    38. 

  38.     return;
    39. 

  39.   }
    40. 

  40.  */
    41. 

  41.   if(empty($_FILES["import_file"])) {
    42. 

  42.     Fatal_Error($GLOBALS['I18N']->get('none_specified'));
    43. 

  43.     return;
    44. 

  44.   }
    45. 

  45.   if(!$_FILES["import_file"]) {
    46. 

  46.     Fatal_Error($GLOBALS['I18N']->get('too_large_inexistant'));
    47. 

  47.     return;
    48. 

  48.   }
    49. 

  49.   if (filesize($_FILES["import_file"]['tmp_name']) > 1000000) {
    50. 

  50.     Fatal_Error($GLOBALS['I18N']->get('too_big'));
    51. 

  51.     return;
    52. 

  52.   }
    53. 

  53.   if( !preg_match("/^[0-9A-Za-z_\.\-\/\s \(\)]+$/", $_FILES["import_file"]["name"]) ) {
    54. 

  54.     Fatal_Error($GLOBALS['I18N']->get('wrong_characters').$_FILES["import_file"]["name"]);
    55. 

  55.     return;
    56. 

  56.   }
    57. 

  57.   if (!$_POST["notify"] && !$test_import) {
    58. 

  58.     Fatal_Error($GLOBALS['I18N']->get('signup_or_notify'));
    59. 

  59.     return;
    60. 

  60.   }
    61. 

  61.   $notify = $_POST["notify"];
    62. 

  62. 

  63.   if ($_FILES["import_file"] && filesize($_FILES["import_file"]['tmp_name']) > 10) {
    64. 

  64.     $newfile = $GLOBALS['tmpdir'].'/'. $_FILES['import_file']['name'].time();
    65. 

  65.     move_uploaded_file($_FILES['import_file']['tmp_name'], $newfile);
    66. 

  66.     if( !($fp = fopen ($newfile, "r"))) {
    67. 

  67.       Fatal_Error($GLOBALS['I18N']->get('unreadable')." (".$newfile.")");
    68. 

  68.       return;
    69. 

  69.      }
    70. 

  70.     $email_list = fread($fp, filesize ($newfile));
    71. 

  71.     fclose($fp);
    72. 

  72.   } elseif ($_FILES["import_file"]) {
    73. 

  73.     Fatal_Error($GLOBALS['I18N']->get('empty_file'));
    74. 

  74.     return;
    75. 

  75.   }
    76. 

  76. 

  77.   // Clean up email file
    78. 

  78.   $email_list = trim($email_list);
    79. 

  79.   $email_list = str_replace("\r","\n",$email_list);
    80. 

  80.   $email_list = str_replace("\n\r","\n",$email_list);
    81. 

  81.   $email_list = str_replace("\n\n","\n",$email_list);
    82. 

  82. 

  83.   if (isset($_REQUEST['import_record_delimiter'])) {
    84. 

  84.     $import_record_delimiter = $_REQUEST['import_record_delimiter'];
    85. 

  85.   } else {
    86. 

  86.     $import_record_delimiter = "\n";
    87. 

  87.   }
    88. 

  88. 

  89.   // Change delimiter for new line.
    90. 

  90.   if(isset($import_record_delimiter) && $import_record_delimiter != "" && $import_record_delimiter != "\n") {
    91. 

  91.     $email_list = str_replace($import_record_delimiter,"\n",$email_list);
    92. 

  92.   };
    93. 

  93. 

  94.   if (!isset($import_field_delimiter) || $import_field_delimiter == "" || $import_field_delimiter == "TAB")
    95. 

  95.     $import_field_delimiter = "\t";
    96. 

  96. 

  97.   // Check file for illegal characters
    98. 

  98.   $illegal_cha = array(",", ";", ":", "#","\t");
    99. 

  99.   for($i=0; $i<count($illegal_cha); $i++) {
    100. 

  100.     if( ($illegal_cha[$i] != $import_field_delimiter) && ($illegal_cha[$i] != $import_record_delimiter) && (strpos($email_list, $illegal_cha[$i]) != false) ) {
    101. 

  101.       Fatal_Error($GLOBALS['I18N']->get('invalid_delimiter')." $import_field_delimiter, $import_record_delimiter");return;
    102. 

  102.     }
    103. 

  103.   };
    104. 

  104. 

  105.   // Split file/emails into array
    106. 

  106.   $email_list = explode("\n",$email_list);
    107. 

  107. 

  108.   // Parse the lines into records
    109. 

  109.   $hasinfo = 0;
    110. 

  110.   foreach ($email_list as $line) {
    111. 

  111.     $uservalues = explode($import_field_delimiter,$line);
    112. 

  112.     $email = trim(array_shift($uservalues));
    113. 

  113.     $info = join(" ",$uservalues);
    114. 

  114.     $hasinfo = $hasinfo || $info != "";
    115. 

  115.     $user_list[$email] = array (
    116. 

  116.       "info" => $info
    117. 

  117.     );
    118. 

  118.   }
    119. 

  119. 

  120.   if (sizeof($email_list) > 300 && !$test_import) {
    121. 

  121.     # this is a possibly a time consuming process, so lets show a progress bar
    122. 

  122.     print '<script language="Javascript" type="text/javascript"> document.write(progressmeter); start();</script>';
    123. 

  123.     flush();
    124. 

  124.     # increase the memory to make sure we are not running out
    125. 

  125.     ini_set("memory_limit","16M");
    126. 

  126.   }
    127. 

  127. 

  128.   // View test output of emails
    129. 

  129.   if($test_import) {
    130. 

  130.     print $GLOBALS['I18N']->get('test_output').':<br>'.$GLOBALS['I18N']->get('one_email_per_line').'<br>'.$GLOBALS['I18N']->get('output_ok').' <a href="javascript:history.go(-1)">'.$GLOBALS['I18N']->get('back').'</a>'.$GLOBALS['I18N']->get('resubmit').'<br><br>';
    131. 

  131.     $i = 1;
    132. 

  132.     while (list($email,$data) = each ($user_list)) {
    133. 

  133.       $email = trim($email);
    134. 

  134.       if(strlen($email) > 4) {
    135. 

  135.         print "<b>$email</b><br>";
    136. 

  136.         $html = "";
    137. 

  137.         foreach (array("info") as $item)
    138. 

  138.           if ($user_list[$email][$item])
    139. 

  139.             $html .= "$item -> ".$user_list[$email][$item]."<br>";
    140. 

  140.         if ($html) print "<blockquote>$html</blockquote>";
    141. 

  141.       };
    142. 

  142.       if($i == 50) {break;};
    143. 

  143.       $i++;
    144. 

  144.     };
    145. 

  145. 

  146.   // Do import
    147. 

  147.   } else {
    148. 

  148.     $count_email_add = 0;
    149. 

  149.     $count_email_exist = 0;
    150. 

  150.     $count_list_add = 0;
    151. 

  151.     if (isset($_REQUEST['lists']) && is_array($_REQUEST['lists'])) {
    152. 

  152.       $lists = $_REQUEST['lists'];
    153. 

  153.     } else {
    154. 

  154.       $lists = array();
    155. 

  155.     }
    156. 

  156.     $num_lists = sizeof($lists);
    157. 

  157.     $todo = sizeof($user_list);
    158. 

  158.     $done = 0;
    159. 

  159.     if ($hasinfo) {
    160. 

  160.       # we need to add an info attribute if it does not exist
    161. 

  161.       $req = Sql_Query("select id from ".$tables["attribute"]." where name = \"info\"");
    162. 

  162.       if (!Sql_Affected_Rows()) {
    163. 

  163.         # it did not exist
    164. 

  164.         Sql_Query(sprintf('insert into %s (name,type,listorder,default_value,required,tablename)
    165. 

  165.          values("info","textline",0,"",0,"info")', $tables["attribute"]));
    166. 

  166.       }
    167. 

  167.     }
    168. 

  168. 

  169.     # which attributes were chosen, apply to all users
    170. 

  170.     $res = Sql_Query("select * from ".$tables["attribute"]);
    171. 

  171.     $attributes = array();
    172. 

  172.     while ($row = Sql_Fetch_Array($res)) {
    173. 

  173.       $fieldname = "attribute" .$row["id"];
    174. 

  174.       $attributes[$row["id"]] = $_POST[$fieldname];
    175. 

  175.     }
    176. 

  176. 

  177.     while (list($email,$data) = each ($user_list)) {
    178. 

  178.       $done++;
    179. 

  179.       if ($done % 50 ==0) {
    180. 

  180.         print "$done/$todo<br/>";
    181. 

  181.         flush();
    182. 

  182.       }
    183. 

  183.       if(strlen($email) > 4) {
    184. 

  184.         $email = addslashes($email);
    185. 

  185.         // Annoying hack => Much too time consuming. Solution => Set email in users to UNIQUE()
    186. 

  186.         $result = Sql_query("SELECT id,uniqid FROM ".$tables["user"]." WHERE email = '$email'");
    187. 

  187.         if (Sql_affected_rows()) {
    188. 

  188.           // Email exist, remember some values to add them to the lists
    189. 

  189.           $user = Sql_fetch_array($result);
    190. 

  190.           $userid = $user["id"];
    191. 

  191.           $uniqid = $user["uniqid"];
    192. 

  192.           $history_entry = $GLOBALS['I18N']->get('import_user');
    193. 

  193.           $old_data = Sql_Fetch_Array_Query(sprintf('select * from %s where id = %d',$tables["user"],$userid));
    194. 

  194.           $old_data = array_merge($old_data,getUserAttributeValues('',$userid));
    195. 

  195.           # and membership of lists
    196. 

  196.           $req = Sql_Query("select * from {$tables["listuser"]} where userid = $userid");
    197. 

  197.           while ($row = Sql_Fetch_Array($req)) {
    198. 

  198.             $old_listmembership[$row["listid"]] = listName($row["listid"]);
    199. 

  199.           }
    200. 

  200.           $count_email_exist++;
    201. 

  201.         } else {
    202. 

  202. 

  203.           // Email does not exist
    204. 

  204. 

  205.           // Create unique number
    206. 

  206.           mt_srand((double)microtime()*1000000);
    207. 

  207.           $randval = mt_rand();
    208. 

  208.           include_once dirname(__FILE__)."/commonlib/lib/userlib.php";
    209. 

  209.           $uniqid = getUniqid();
    210. 

  210. 

  211.           $query = sprintf('INSERT INTO %s (email,entered,confirmed,uniqid,htmlemail) values("%s",now(),%d,"%s","%s")',
    212. 

  212.           $tables["user"],$email,$notify != "yes",$uniqid,$htmlemail);
    213. 

  213.           $result = Sql_query($query);
    214. 

  214.           $userid = Sql_insert_id();
    215. 

  215. 

  216.           $count_email_add++;
    217. 

  217.           $some = 1;
    218. 

  218.           $history_entry = $GLOBALS['I18N']->get('import_new_user');
    219. 

  219. 

  220.           # add the attributes for this user
    221. 

  221.           reset($attributes);
    222. 

  222.           while (list($attr,$value) = each($attributes))
    223. 

  223.             Sql_query(sprintf('replace into %s (attributeid,userid,value) values("%s","%s","%s")',
    224. 

  224.               $tables["user_attribute"],$attr,$userid,addslashes($value)));
    225. 

  225.         }
    226. 

  226. 

  227.         #add this user to the lists identified
    228. 

  228.         reset($lists);
    229. 

  229.         $addition = 0;
    230. 

  230.         $listoflists = "";
    231. 

  231.         while (list($key,$listid) = each($lists)) {
    232. 

  232.           $query = "replace INTO ".$tables["listuser"]." (userid,listid,entered) values($userid,$listid,now())";
    233. 

  233.           $result = Sql_query($query);
    234. 

  234.           # if the affected rows is 2, the user was already subscribed
    235. 

  235.           $addition = $addition || Sql_Affected_Rows() == 1;
    236. 

  236.           if (!empty($_POST['listname'][$key])) {
    237. 

  237.             $listoflists .= "  * ".$_POST['listname'][$key]."\n";
    238. 

  238.           }
    239. 

  239.         }
    240. 

  240.         if ($addition) {
    241. 

  241.           $additional_emails++;
    242. 

  242.         }
    243. 

  243. 

  244.         $subscribemessage = ereg_replace('\[LISTS\]', $listoflists, getUserConfig("subscribemessage",$userid));
    245. 

  245.         if (!TEST && $notify == "yes" && $addition)
    246. 

  246.           sendMail($email, getConfig("subscribesubject"), $subscribemessage,system_messageheaders(),$envelope);
    247. 

  247.         # history stuff
    248. 

  248.         $current_data = Sql_Fetch_Array_Query(sprintf('select * from %s where id = %d',$tables["user"],$userid));
    249. 

  249.         $current_data = array_merge($current_data,getUserAttributeValues('',$userid));
    250. 

  250.         foreach ($current_data as $key => $val) {
    251. 

  251.           if (!is_numeric($key))
    252. 

  252.             if ($old_data[$key] != $val && $key != "modified") {
    253. 

  253.             $history_entry .= "$key = $val\nchanged from $old_data[$key]\n";
    254. 

  254.           }
    255. 

  255.         }
    256. 

  256.         if (!$history_entry) {
    257. 

  257.           $history_entry = "\n".$GLOBALS['I18N']->get('no_data_changed');
    258. 

  258.         }
    259. 

  259.         # check lists
    260. 

  260.         $req = Sql_Query("select * from {$tables["listuser"]} where userid = $userid");
    261. 

  261.         while ($row = Sql_Fetch_Array($req)) {
    262. 

  262.           $listmembership[$row["listid"]] = listName($row["listid"]);
    263. 

  263.         }
    264. 

  264.         $history_entry .= "\n".$GLOBALS['I18N']->get('lists_subscriptions')."\n";
    265. 

  265.         foreach ($old_listmembership as $key => $val) {
    266. 

  266.           $history_entry .= $GLOBALS['I18N']->get('was_subscribed')." $val\n";
    267. 

  267.         }
    268. 

  268.         foreach ($listmembership as $key => $val) {
    269. 

  269.           $history_entry .= $GLOBALS['I18N']->get('is_subscribed')." $val\n";
    270. 

  270.         }
    271. 

  271.         if (!sizeof($listmembership)) {
    272. 

  272.           $history_entry .= $GLOBALS['I18N']->get('not_subscribed')."\n";
    273. 

  273.         }
    274. 

  274. 

  275.         addUserHistory($email,$GLOBALS['I18N']->get('import_by').adminName(),$history_entry);
    276. 

  276. 

  277.       }; // end if
    278. 

  278.     }; // end while
    279. 

  279. 

  280.     print '<script language="Javascript" type="text/javascript"> finish(); </script>';
    281. 

  281.     # lets be gramatically correct :-)
    282. 

  282.     $displists = ($num_lists == 1) ? $GLOBALS['I18N']->get('list'): $GLOBALS['I18N']->get('lists');
    283. 

  283.     $dispemail = ($count_email_add == 1) ? $GLOBALS['I18N']->get('new_email_was'): $GLOBALS['I18N']->get('new_emails_were');
    284. 

  284.     $dispemail2 = ($additional_emails == 1) ? $GLOBALS['I18N']->get('email_was'): $GLOBALS['I18N']->get('emails_were');
    285. 

  285. 

  286.     if ($count_email_exist) {
    287. 

  287.       print "<br/>$count_email_exist ".$GLOBALS['I18N']->get('some_emails_exist');
    288. 

  288.     }
    289. 

  289.     if(!$some && !$additional_emails) {
    290. 

  290.       print "<br>".$GLOBALS['I18N']->get('all_emails_exist');
    291. 

  291.     } else {
    292. 

  292.       print "$count_email_add $dispemail ".$GLOBALS['I18N']->get('import_successful')." $num_lists $displists.<br>$additional_emails $dispemail2 ".$GLOBALS['I18N']->get('subscribed')." $displists";
    293. 

  293.     }
    294. 

  294.   }; // end else
    295. 

  295.   print '<p>'.PageLink2("import",$GLOBALS['I18N']->get('import_more_emails')).'</p>';
    296. 

  296. 

  297. 

  298. } else {
    299. 

  299. ?>
    300. 

  300. 

  301. 

  302. <ul>
    303. 

  303. <?php echo FormStart(' enctype="multipart/form-data" name="import"')?>
    304. 

  304. <?php
    305. 

  305. if ($GLOBALS["require_login"] && !isSuperUser()) {
    306. 

  306.   $access = accessLevel("import1");
    307. 

  307.   switch ($access) {
    308. 

  308.     case "owner":
    309. 

  309.       $subselect = " where owner = ".$_SESSION["logindetails"]["id"];break;
    310. 

  310.     case "all":
    311. 

  311.       $subselect = "";break;
    312. 

  312.     case "none":
    313. 

  313.     default:
    314. 

  314.       $subselect = " where id = 0";break;
    315. 

  315.   }
    316. 

  316. }
    317. 

  317. 

  318. $result = Sql_query("SELECT id,name FROM ".$tables["list"]."$subselect ORDER BY listorder");
    319. 

  319. $c=0;
    320. 

  320. if (Sql_Affected_Rows() == 1) {
    321. 

  321.   $row = Sql_fetch_array($result);
    322. 

  322.   printf('<input type=hidden name="listname[%d]" value="%s"><input type=hidden name="lists[%d]" value="%d">'.$GLOBALS['I18N']->get('adding_users').' <b>%s</b>',$c,stripslashes($row["name"]),$c,$row["id"],stripslashes($row["name"]));
    323. 

  323. } else {
    324. 

  324.   print '<p>'.$GLOBALS['I18N']->get('select_lists').'</p>';
    325. 

  325.   while ($row = Sql_fetch_array($result)) {
    326. 

  326.     printf('<li><input type=hidden name="listname[%d]" value="%s"><input type=checkbox name="lists[%d]" value="%d">%s',$c,stripslashes($row["name"]),$c,$row["id"],stripslashes($row["name"]));
    327. 

  327.     $some = 1;$c++;
    328. 

  328.   }
    329. 

  329. 

  330.   if (!$some)
    331. 

  331.    echo $GLOBALS['I18N']->get('no_lists').PageLink2("editlist",$GLOBALS['I18N']->get('add_list'));
    332. 

  332. }
    333. 

  333. 

  334. ?>
    335. 

  335. 

  336. </ul>
    337. 

  337. 

  338. <script language="Javascript" type="text/javascript">
    339. 

  339. 

  340. var fieldstocheck = new Array();
    341. 

  341. var fieldnames = new Array();
    342. 

  342. function addFieldToCheck(value,name) {
    343. 

  343.   fieldstocheck[fieldstocheck.length] = value;
    344. 

  344.   fieldnames[fieldnames.length] = name;
    345. 

  345. }
    346. 

  346. 

  347. </script>
    348. 

  348. <table border="1">
    349. 

  349. <tr><td colspan=2><?php echo $GLOBALS['I18N']->get('info_emails_file'); ?></td></tr>
    350. 

  350. <tr><td><?php echo $GLOBALS['I18N']->get('emails_file'); ?></td><td><input type="file" name="import_file"></td></tr>
    351. 

  351. <tr><td><?php echo $GLOBALS['I18N']->get('field_delimiter'); ?></td><td><input type="text" name="import_field_delimiter" size=5> <?php echo $GLOBALS['I18N']->get('tab_default'); ?></td></tr>
    352. 

  352. <tr><td><?php echo $GLOBALS['I18N']->get('record_delimiter'); ?></td><td><input type="text" name="import_record_delimiter" size=5> <?php echo $GLOBALS['I18N']->get('line_break_default'); ?></td></tr>
    353. 

  353. <tr><td colspan=2><?php echo $GLOBALS['I18N']->get('info_test_output'); ?></td></tr>
    354. 

  354. <tr><td><?php echo $GLOBALS['I18N']->get('test_output'); ?></td><td><input type="checkbox" name="import_test" value="yes"></td></tr>
    355. 

  355. <tr><td colspan=2><?php echo $GLOBALS['I18N']->get('info_notification_email'); ?></td></tr>
    356. 

  356. <tr><td><?php echo $GLOBALS['I18N']->get('notification_email'); ?><input type="radio" name="notify" value="yes"></td><td><?php echo $GLOBALS['I18N']->get('confirmed_immediately'); ?><input type="radio" name="notify" value="no"></td></tr>
    357. 

  357. <?php
    358. 

  358. include_once dirname(__FILE__)."/subscribelib2.php";
    359. 

  359. print ListAllAttributes();
    360. 

  360. ?>
    361. 

  361. 

  362. <tr><td><input type="submit" name="import" value="<?php echo $GLOBALS['I18N']->get('import'); ?>"></td><td>&nbsp;</td></tr>
    363. 

  363. </table>
    364. 

  364. <?php } ?>
    365. 

  365. 

  366. </p>
    367. 

  367.