PageRenderTime 48ms CodeModel.GetById 13ms RepoModel.GetById 1ms app.codeStats 0ms

/interfase/draft/groupcp.php

https://github.com/nopticon/hyd
PHP | 1085 lines | 813 code | 173 blank | 99 comment | 167 complexity | 1a670481d5938ffa325b8b4306843ddb MD5 | raw file
Possible License(s): MIT
  1. <?php
  2. /*
  3. <Orion, a web development framework for RK.>
  4. Copyright (C) <2011> <Orion>
  5. This program is free software: you can redistribute it and/or modify
  6. it under the terms of the GNU General Public License as published by
  7. the Free Software Foundation, either version 3 of the License, or
  8. (at your option) any later version.
  9. This program is distributed in the hope that it will be useful,
  10. but WITHOUT ANY WARRANTY; without even the implied warranty of
  11. MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
  12. GNU General Public License for more details.
  13. You should have received a copy of the GNU General Public License
  14. along with this program. If not, see <http://www.gnu.org/licenses/>.
  15. */
  16. define('IN_APP', true);
  17. require_once('./interfase/common.php');
  18. $user->init();
  19. $script_name = ( $script_name != '' ) ? $script_name . '/groupcp.php' : 'groupcp.php';
  20. $server_name = trim($config['server_name']);
  21. $server_protocol = ( $config['cookie_secure'] ) ? 'https://' : 'http://';
  22. $server_url = $server_protocol . $server_name . $script_name;
  23. if ( isset($_GET[POST_GROUPS_URL]) || isset($_POST[POST_GROUPS_URL]) )
  24. {
  25. $group_id = ( isset($_POST[POST_GROUPS_URL]) ) ? intval($_POST[POST_GROUPS_URL]) : intval($_GET[POST_GROUPS_URL]);
  26. }
  27. else
  28. {
  29. $group_id = '';
  30. }
  31. if ( isset($_POST['mode']) || isset($_GET['mode']) )
  32. {
  33. $mode = ( isset($_POST['mode']) ) ? $_POST['mode'] : $_GET['mode'];
  34. $mode = htmlspecialchars($mode);
  35. }
  36. else
  37. {
  38. $mode = '';
  39. }
  40. $confirm = ( isset($_POST['confirm']) ) ? true : 0;
  41. $cancel = ( isset($_POST['cancel']) ) ? true : 0;
  42. $start = ( isset($_GET['start']) ) ? intval($_GET['start']) : 0;
  43. //
  44. // Default var values
  45. //
  46. $is_moderator = false;
  47. if ( isset($_POST['groupstatus']) && $group_id )
  48. {
  49. if ( !$userdata['session_logged_in'] )
  50. {
  51. do_login();
  52. }
  53. $result = $db->sql_query("SELECT group_moderator FROM _groups WHERE group_id = $group_id");
  54. $row = $db->sql_fetchrow($result);
  55. if ( $row['group_moderator'] != $userdata['user_id'] && $userdata['user_level'] != USER_ADMIN )
  56. {
  57. $template->assign_vars(array(
  58. 'META' => '<meta http-equiv="refresh" content="3;url=' . s_link('cover') . '">')
  59. );
  60. $message = $lang['Not_group_moderator'] . '<br /><br />' . sprintf($lang['Click_return_group'], '<a href="' . "groupcp.php?g=$group_id" . '">', '</a>') . '<br /><br />' . sprintf($lang['Click_return_index'], '<a href="' . s_link('cover') . '">', '</a>');
  61. trigger_error($message);
  62. }
  63. $result = $db->sql_query("UPDATE _groups SET group_type = " . intval($_POST['group_type']) . " WHERE group_id = $group_id");
  64. $template->assign_vars(array(
  65. 'META' => '<meta http-equiv="refresh" content="3;url=' . "groupcp.php?g=$group_id" . '">')
  66. );
  67. $message = $lang['Group_type_updated'] . '<br /><br />' . sprintf($lang['Click_return_group'], '<a href="' . "groupcp.php?g=$group_id" . '">', '</a>') . '<br /><br />' . sprintf($lang['Click_return_index'], '<a href="' . s_link('cover') . '">', '</a>');
  68. trigger_error($message);
  69. }
  70. else if ( isset($_POST['joingroup']) && $group_id )
  71. {
  72. //
  73. // First, joining a group
  74. // If the user isn't logged in redirect them to login
  75. //
  76. if ( !$userdata['session_logged_in'] )
  77. {
  78. do_login();
  79. }
  80. $sql = "SELECT ug.user_id, g.group_type, group_count, group_count_max
  81. FROM _members_group ug, _groups g
  82. WHERE g.group_id = $group_id
  83. AND ( g.group_type <> " . GROUP_HIDDEN . " OR (g.group_count <= '".$userdata['user_posts']."' AND g.group_count_max > '".$userdata['user_posts']."'))
  84. AND ug.group_id = g.group_id";
  85. $result = $db->sql_query($sql);
  86. unset($sql);
  87. if ( $row = $db->sql_fetchrow($result) )
  88. {
  89. $is_autogroup_enable = ($row['group_count'] <= $userdata['user_posts'] && $row['group_count_max'] > $userdata['user_posts']) ? true : false;
  90. if ( $row['group_type'] == GROUP_OPEN || $is_autogroup_enable)
  91. {
  92. do
  93. {
  94. if ( $userdata['user_id'] == $row['user_id'] )
  95. {
  96. $template->assign_vars(array(
  97. 'META' => '<meta http-equiv="refresh" content="3;url=' . s_link('cover') . '">')
  98. );
  99. $message = $lang['Already_member_group'] . '<br /><br />' . sprintf($lang['Click_return_group'], '<a href="' . "groupcp.php?g=$group_id" . '">', '</a>') . '<br /><br />' . sprintf($lang['Click_return_index'], '<a href="' . s_link('cover') . '">', '</a>');
  100. trigger_error($message);
  101. }
  102. } while ( $row = $db->sql_fetchrow($result) );
  103. }
  104. else
  105. {
  106. $template->assign_vars(array(
  107. 'META' => '<meta http-equiv="refresh" content="3;url=' . s_link('cover') . '">')
  108. );
  109. $message = $lang['This_closed_group'] . '<br /><br />' . sprintf($lang['Click_return_group'], '<a href="' . "groupcp.php?g=$group_id" . '">', '</a>') . '<br /><br />' . sprintf($lang['Click_return_index'], '<a href="' . s_link('cover') . '">', '</a>');
  110. trigger_error($message);
  111. }
  112. }
  113. else
  114. {
  115. trigger_error('No_groups_exist');
  116. }
  117. $result = $db->sql_query("INSERT INTO _members_group (group_id, user_id, user_pending) VALUES ($group_id, " . $userdata['user_id'] . ",'".(($is_autogroup_enable)? 0 : 1)."')");
  118. $result = $db->sql_query("SELECT u.user_email, u.username, u.user_lang, g.group_name FROM _members u, _groups g WHERE u.user_id = g.group_moderator AND g.group_id = '$group_id'");
  119. $moderator = $db->sql_fetchrow($result);
  120. if (!$is_autogroup_enable)
  121. {
  122. $emailer = new emailer();
  123. $emailer->from($config['board_email']);
  124. $emailer->replyto($config['board_email']);
  125. $emailer->use_template('group_request', $moderator['user_lang']);
  126. $emailer->email_address($moderator['user_email']);
  127. $emailer->set_subject($lang['Group_request']);
  128. $emailer->assign_vars(array(
  129. 'SITENAME' => $config['sitename'],
  130. 'GROUP_MODERATOR' => $moderator['username'],
  131. 'U_GROUPCP' => $server_url . '?' . POST_GROUPS_URL . "=$group_id&validate=true"
  132. ));
  133. $emailer->send();
  134. $emailer->reset();}
  135. $template->assign_vars(array(
  136. 'META' => '<meta http-equiv="refresh" content="3;url=' . s_link('cover') . '">'
  137. ));
  138. $message = ($is_autogroup_enable) ? $lang['Group_added'] : $lang['Group_joined'] . '<br /><br />' . sprintf($lang['Click_return_group'], '<a href="' . "groupcp.php?g=$group_id" . '">', '</a>') . '<br /><br />' . sprintf($lang['Click_return_index'], '<a href="' . s_link('cover') . '">', '</a>');
  139. trigger_error($message);
  140. }
  141. else if ( isset($_POST['unsub']) || isset($_POST['unsubpending']) && $group_id )
  142. {
  143. //
  144. // Second, unsubscribing from a group
  145. // Check for confirmation of unsub.
  146. //
  147. if ( $cancel )
  148. {
  149. redirect("groupcp.php");
  150. }
  151. elseif ( !$userdata['session_logged_in'] )
  152. {
  153. do_login();
  154. }
  155. if ( $confirm )
  156. {
  157. $result = $db->sql_query("DELETE FROM _members_group WHERE user_id = " . $userdata['user_id'] . " AND group_id = '$group_id'");
  158. if ( $userdata['user_level'] != USER_ADMIN && $userdata['user_level'] == USER_MOD )
  159. {
  160. $result = $db->sql_query("SELECT COUNT(auth_mod) AS is_auth_mod FROM _auth_access aa, _members_group ug WHERE ug.user_id = " . $userdata['user_id'] . " AND aa.group_id = ug.group_id AND aa.auth_mod = 1");
  161. if ( !($row = $db->sql_fetchrow($result)) || $row['is_auth_mod'] == 0 )
  162. {
  163. $result = $db->sql_query("UPDATE _members SET user_level = " . USER_NORMAL . " WHERE user_id = " . $userdata['user_id']);
  164. }
  165. }
  166. $template->assign_vars(array(
  167. 'META' => '<meta http-equiv="refresh" content="3;url=' . s_link('cover') . '">')
  168. );
  169. $message = $lang['Unsub_success'] . '<br /><br />' . sprintf($lang['Click_return_group'], '<a href="' . "groupcp.php?g=$group_id" . '">', '</a>') . '<br /><br />' . sprintf($lang['Click_return_index'], '<a href="' . s_link('cover') . '">', '</a>');
  170. trigger_error($message);
  171. }
  172. else
  173. {
  174. $unsub_msg = ( isset($_POST['unsub']) ) ? $lang['Confirm_unsub'] : $lang['Confirm_unsub_pending'];
  175. $s_hidden_fields = '<input type="hidden" name="' . POST_GROUPS_URL . '" value="' . $group_id . '" /><input type="hidden" name="unsub" value="1" />';
  176. $template_vars = array(
  177. 'MESSAGE_TITLE' => $lang['Confirm'],
  178. 'MESSAGE_TEXT' => $unsub_msg,
  179. 'L_YES' => $lang['Yes'],
  180. 'L_NO' => $lang['No'],
  181. 'S_CONFIRM_ACTION' => "groupcp.php",
  182. 'S_HIDDEN_FIELDS' => $s_hidden_fields
  183. );
  184. page_layout('Group_Control_Panel', 'confirm_body', $template_vars);
  185. }
  186. }
  187. else if ( $group_id )
  188. {
  189. //
  190. // Did the group moderator get here through an email?
  191. // If so, check to see if they are logged in.
  192. //
  193. if ( isset($_GET['validate']) )
  194. {
  195. if ( !$userdata['session_logged_in'] )
  196. {
  197. do_login();
  198. }
  199. }
  200. $sql = "SELECT g.group_moderator, g.group_type, aa.auth_mod
  201. FROM ( _groups g
  202. LEFT JOIN _auth_access aa ON aa.group_id = g.group_id )
  203. WHERE g.group_id = $group_id";
  204. $result = $db->sql_query($sql);
  205. unset($sql);
  206. if ( $group_info = $db->sql_fetchrow($result) )
  207. {
  208. $group_moderator = $group_info['group_moderator'];
  209. if ( $group_moderator == $userdata['user_id'] || $userdata['user_level'] == USER_ADMIN )
  210. {
  211. $is_moderator = true;
  212. }
  213. //
  214. // Handle Additions, removals, approvals and denials
  215. //
  216. if ( !empty($_POST['add']) || !empty($_POST['remove']) || isset($_POST['approve']) || isset($_POST['deny']) )
  217. {
  218. if ( !$userdata['session_logged_in'] )
  219. {
  220. do_login();
  221. }
  222. if ( !$is_moderator )
  223. {
  224. $template->assign_vars(array(
  225. 'META' => '<meta http-equiv="refresh" content="3;url=' . s_link('cover') . '">')
  226. );
  227. $message = $lang['Not_group_moderator'] . '<br /><br />' . sprintf($lang['Click_return_index'], '<a href="' . s_link('cover') . '">', '</a>');
  228. trigger_error($message);
  229. }
  230. if ( isset($_POST['add']) )
  231. {
  232. $username = ( isset($_POST['username']) ) ? get_username_base($_POST['username']) : '';
  233. $result = $db->sql_query("SELECT user_id, user_email, user_lang, user_level FROM _members WHERE username = '" . str_replace("\'", "''", $username) . "'");
  234. if ( !($row = $db->sql_fetchrow($result)) )
  235. {
  236. $template->assign_vars(array(
  237. 'META' => '<meta http-equiv="refresh" content="3;url=' . "groupcp.php?g=$group_id" . '">')
  238. );
  239. $message = $lang['Could_not_add_user'] . "<br /><br />" . sprintf($lang['Click_return_group'], "<a href=\"" . "groupcp.php?g=$group_id" . "\">", "</a>") . "<br /><br />" . sprintf($lang['Click_return_index'], "<a href=\"" . s_link('cover') . "\">", "</a>");
  240. trigger_error($message);
  241. }
  242. if ( $row['user_id'] == GUEST )
  243. {
  244. $template->assign_vars(array(
  245. 'META' => '<meta http-equiv="refresh" content="3;url=' . "groupcp.php?g=$group_id" . '">')
  246. );
  247. $message = $lang['Could_not_anon_user'] . '<br /><br />' . sprintf($lang['Click_return_group'], '<a href="' . "groupcp.php?g=$group_id" . '">', '</a>') . '<br /><br />' . sprintf($lang['Click_return_index'], '<a href="' . s_link('cover') . '">', '</a>');
  248. trigger_error($message);
  249. }
  250. $result = $db->sql_query("SELECT ug.user_id, u.user_level FROM _members_group ug, _members u WHERE u.user_id = " . $row['user_id'] . " AND ug.user_id = u.user_id AND ug.group_id = '$group_id'");
  251. if ( !($db->sql_fetchrow($result)) )
  252. {
  253. $db->sql_query("INSERT INTO _members_group (user_id, group_id, user_pending) VALUES (" . $row['user_id'] . ", $group_id, 0)");
  254. if ( $row['user_level'] != USER_ADMIN && $row['user_level'] != USER_MOD && $group_info['auth_mod'] )
  255. {
  256. $db->sql_query("UPDATE _members SET user_level = " . USER_MOD . " WHERE user_id = " . $row['user_id']);
  257. }
  258. //
  259. // Get the group name
  260. // Email the user and tell them they're in the group
  261. //
  262. $result = $db->sql_query("SELECT group_name FROM _groups WHERE group_id = '$group_id'");
  263. $group_name_row = $db->sql_fetchrow($result);
  264. $group_name = $group_name_row['group_name'];
  265. $emailer = new emailer();
  266. $emailer->from($config['board_email']);
  267. $emailer->replyto($config['board_email']);
  268. $emailer->use_template('group_added', $row['user_lang']);
  269. $emailer->email_address($row['user_email']);
  270. $emailer->set_subject($lang['Group_added']);
  271. $emailer->assign_vars(array(
  272. 'SITENAME' => $config['sitename'],
  273. 'GROUP_NAME' => $group_name,
  274. 'U_GROUPCP' => $server_url . '?' . POST_GROUPS_URL . "=$group_id")
  275. );
  276. $emailer->send();
  277. $emailer->reset();
  278. }
  279. else
  280. {
  281. $template->assign_vars(array(
  282. 'META' => '<meta http-equiv="refresh" content="3;url=' . "groupcp.php?g=$group_id" . '">')
  283. );
  284. $message = $lang['User_is_member_group'] . '<br /><br />' . sprintf($lang['Click_return_group'], '<a href="' . "groupcp.php?=$group_id" . '">', '</a>') . '<br /><br />' . sprintf($lang['Click_return_index'], '<a href="' . s_link('cover') . '">', '</a>');
  285. trigger_error($message);
  286. }
  287. }
  288. else
  289. {
  290. if ( ( ( isset($_POST['approve']) || isset($_POST['deny']) ) && isset($_POST['pending_members']) ) || ( isset($_POST['remove']) && isset($_POST['members']) ) )
  291. {
  292. $members = ( isset($_POST['approve']) || isset($_POST['deny']) ) ? $_POST['pending_members'] : $_POST['members'];
  293. $sql_in = '';
  294. for($i = 0; $i < count($members); $i++)
  295. {
  296. $sql_in .= ( ( $sql_in != '' ) ? ', ' : '' ) . intval($members[$i]);
  297. }
  298. if ( isset($_POST['approve']) )
  299. {
  300. if ( $group_info['auth_mod'] )
  301. {
  302. $db->sql_query("UPDATE _members SET user_level = " . USER_MOD . " WHERE user_id IN ($sql_in) AND user_level NOT IN (" . USER_MOD . ", " . USER_ADMIN . ")");
  303. }
  304. $sql = "UPDATE _members_group SET user_pending = 0 WHERE user_id IN ($sql_in) AND group_id = $group_id";
  305. $sql_select = "SELECT user_email FROM _members WHERE user_id IN ($sql_in)";
  306. }
  307. else if ( isset($_POST['deny']) || isset($_POST['remove']) )
  308. {
  309. if ( $group_info['auth_mod'] )
  310. {
  311. $sql = "SELECT ug.user_id, ug.group_id
  312. FROM _auth_access aa, _members_group ug
  313. WHERE ug.user_id IN ($sql_in)
  314. AND aa.group_id = ug.group_id
  315. AND aa.auth_mod = 1
  316. GROUP BY ug.user_id, ug.group_id
  317. ORDER BY ug.user_id, ug.group_id";
  318. $result = $db->sql_query($sql);
  319. unset($sql);
  320. if ( $row = $db->sql_fetchrow($result) )
  321. {
  322. $group_check = array();
  323. $remove_mod_sql = '';
  324. do
  325. {
  326. $group_check[$row['user_id']][] = $row['group_id'];
  327. }
  328. while ( $row = $db->sql_fetchrow($result) );
  329. while( list($user_id, $group_list) = @each($group_check) )
  330. {
  331. if ( count($group_list) == 1 )
  332. {
  333. $remove_mod_sql .= ( ( $remove_mod_sql != '' ) ? ', ' : '' ) . $user_id;
  334. }
  335. }
  336. if ( $remove_mod_sql != '' )
  337. {
  338. $db->sql_query("UPDATE _members SET user_level = " . USER_NORMAL . " WHERE user_id IN ($remove_mod_sql) AND user_level NOT IN (" . USER_ADMIN . ")");
  339. }
  340. }
  341. }
  342. $sql = "DELETE FROM _members_group WHERE user_id IN ($sql_in) AND group_id = $group_id";
  343. }
  344. $db->sql_query($sql);
  345. //
  346. // Email users when they are approved
  347. //
  348. if ( isset($_POST['approve']) )
  349. {
  350. $result = $db->sql_query($sql_select);
  351. $bcc_list = array();
  352. while ($row = $db->sql_fetchrow($result))
  353. {
  354. $bcc_list[] = $row['user_email'];
  355. }
  356. //
  357. // Get the group name
  358. //
  359. $result = $db->sql_query("SELECT group_name FROM _groups WHERE group_id = '$group_id'");
  360. $group_name_row = $db->sql_fetchrow($result);
  361. $group_name = $group_name_row['group_name'];
  362. $emailer = new emailer();
  363. $emailer->from($config['board_email']);
  364. $emailer->replyto($config['board_email']);
  365. for ($i = 0; $i < count($bcc_list); $i++)
  366. {
  367. $emailer->bcc($bcc_list[$i]);
  368. }
  369. $emailer->use_template('group_approved');
  370. $emailer->set_subject($lang['Group_approved']);
  371. $emailer->assign_vars(array(
  372. 'SITENAME' => $config['sitename'],
  373. 'GROUP_NAME' => $group_name,
  374. 'U_GROUPCP' => $server_url . '?' . POST_GROUPS_URL . "=$group_id")
  375. );
  376. $emailer->send();
  377. $emailer->reset();
  378. }
  379. }
  380. }
  381. }
  382. //
  383. // END approve or deny
  384. //
  385. }
  386. else
  387. {
  388. trigger_error('No_groups_exist');
  389. }
  390. //
  391. // Get group details
  392. //
  393. $result = $db->sql_query("SELECT * FROM _groups WHERE group_id = '$group_id' AND group_single_user = 0");
  394. if ( !($group_info = $db->sql_fetchrow($result)) )
  395. {
  396. trigger_error('Group_not_exist');
  397. }
  398. //
  399. // Get moderator details for this group
  400. //
  401. $result = $db->sql_query("SELECT username, user_id, user_viewemail, user_posts, user_regdate, user_from, user_website, user_email, user_icq, user_aim, user_yim, user_msnm FROM _members WHERE user_id = " . $group_info['group_moderator']);
  402. $group_moderator = $db->sql_fetchrow($result);
  403. //
  404. // Get user information for this group
  405. //
  406. $sql = "SELECT u.username, u.user_id, u.user_viewemail, u.user_posts, u.user_regdate, u.user_from, u.user_website, u.user_email, u.user_icq, u.user_aim, u.user_yim, u.user_msnm, ug.user_pending
  407. FROM _members u, _members_group ug
  408. WHERE ug.group_id = $group_id
  409. AND u.user_id = ug.user_id
  410. AND ug.user_pending = 0
  411. AND ug.user_id <> " . $group_moderator['user_id'] . "
  412. ORDER BY u.username LIMIT $start, ".$config['topics_per_page'];
  413. $result = $db->sql_query($sql);
  414. unset($sql);
  415. $group_members = $db->sql_fetchrowset($result);
  416. // 1 line deleted for Faster groupcp USER_MOD >> $members_count = count($group_members);
  417. $db->sql_freeresult($result);
  418. $sql = "SELECT u.username, u.user_id, u.user_viewemail, u.user_posts, u.user_regdate, u.user_from, u.user_website, u.user_email, u.user_icq, u.user_aim, u.user_yim, u.user_msnm
  419. FROM _members_group ug, _members u
  420. WHERE ug.group_id = $group_id
  421. AND ug.user_pending = 1
  422. AND u.user_id = ug.user_id
  423. ORDER BY u.username";
  424. $result = $db->sql_query($sql);
  425. unset($sql);
  426. $modgroup_pending_list = $db->sql_fetchrowset($result);
  427. $result = $db->sql_query("SELECT SUM(user_pending = 0) as members, SUM(user_pending=1) as pending FROM _members_group WHERE group_id = $group_id AND user_id <> " . $group_moderator['user_id']);
  428. $counting_list = $db->sql_fetchrow($result);
  429. $members_count = $counting_list['members'];
  430. $modgroup_pending_count = $counting_list['pending'];
  431. // End replacement - Faster groupcp USER_MOD
  432. $db->sql_freeresult($result);
  433. $is_group_member = 0;
  434. if ( $members_count )
  435. {
  436. for($i = 0; $i < $members_count; $i++)
  437. {
  438. if ( $group_members[$i]['user_id'] == $userdata['user_id'] && $userdata['session_logged_in'] )
  439. {
  440. $is_group_member = true;
  441. }
  442. }
  443. }
  444. $is_group_pending_member = 0;
  445. $is_autogroup_enable = ($group_info['group_count'] <= $userdata['user_posts'] && $group_info['group_count_max'] > $userdata['user_posts']) ? true : false;
  446. if ( $modgroup_pending_count )
  447. {
  448. for($i = 0; $i < $modgroup_pending_count; $i++)
  449. {
  450. if ( $modgroup_pending_list[$i]['user_id'] == $userdata['user_id'] && $userdata['session_logged_in'] )
  451. {
  452. $is_group_pending_member = true;
  453. }
  454. }
  455. }
  456. if ( $userdata['user_level'] == USER_ADMIN )
  457. {
  458. $is_moderator = true;
  459. }
  460. if ( $userdata['user_id'] == $group_info['group_moderator'] )
  461. {
  462. $is_moderator = true;
  463. $group_details = $lang['Are_group_moderator'];
  464. $s_hidden_fields = '<input type="hidden" name="' . POST_GROUPS_URL . '" value="' . $group_id . '" />';
  465. }
  466. else if ( $is_group_member || $is_group_pending_member )
  467. {
  468. $template->assign_block_vars('switch_unsubscribe_group_input', array());
  469. $group_details = ( $is_group_pending_member ) ? $lang['Pending_this_group'] : $lang['Member_this_group'];
  470. $s_hidden_fields = '<input type="hidden" name="' . POST_GROUPS_URL . '" value="' . $group_id . '" />';
  471. }
  472. else if ( $userdata['user_id'] == GUEST )
  473. {
  474. $group_details = $lang['Login_to_join'];
  475. $s_hidden_fields = '';
  476. }
  477. else
  478. {
  479. if ( $group_info['group_type'] == GROUP_OPEN )
  480. {
  481. $template->assign_block_vars('switch_subscribe_group_input', array());
  482. $group_details = $lang['This_open_group'];
  483. $s_hidden_fields = '<input type="hidden" name="' . POST_GROUPS_URL . '" value="' . $group_id . '" />';
  484. }
  485. else if ( $group_info['group_type'] == GROUP_CLOSED )
  486. {
  487. if ($is_autogroup_enable)
  488. {
  489. $template->assign_block_vars('switch_subscribe_group_input', array());
  490. $group_details = sprintf ($lang['This_closed_group'],$lang['Join_auto']);
  491. $s_hidden_fields = '<input type="hidden" name="' . POST_GROUPS_URL . '" value="' . $group_id . '" />';
  492. } else
  493. {
  494. $group_details = sprintf ($lang['This_closed_group'],$lang['No_more']);
  495. $s_hidden_fields = '';
  496. }
  497. }
  498. else if ( $group_info['group_type'] == GROUP_HIDDEN )
  499. {
  500. if ($is_autogroup_enable)
  501. {
  502. $template->assign_block_vars('switch_subscribe_group_input', array());
  503. $group_details = sprintf ($lang['This_hidden_group'],$lang['Join_auto']);
  504. $s_hidden_fields = '<input type="hidden" name="' . POST_GROUPS_URL . '" value="' . $group_id . '" />';
  505. } else
  506. {
  507. $group_details = sprintf ($lang['This_closed_group'],$lang['No_add_allowed']);
  508. $s_hidden_fields = '';
  509. }
  510. }
  511. }
  512. //
  513. // Load templates
  514. //
  515. $template->set_filenames(array(
  516. 'pendinginfo' => 'groupcp_pending_info.htm')
  517. );
  518. //
  519. // Add the moderator
  520. //
  521. $username = $group_moderator['username'];
  522. $user_id = $group_moderator['user_id'];
  523. generate_user_info($group_moderator, $config['default_dateformat'], $is_moderator, $from, $posts, $joined, $poster_avatar, $profile_img, $profile, $search_img, $search, $pm_img, $pm, $email_img, $email, $www_img, $www, $icq_status_img, $icq_img, $icq, $aim_img, $aim, $msn_img, $msn, $yim_img, $yim);
  524. $s_hidden_fields .= '';
  525. $template->assign_vars(array(
  526. 'L_GROUP_INFORMATION' => $lang['Group_Information'],
  527. 'L_GROUP_NAME' => $lang['Group_name'],
  528. 'L_GROUP_DESC' => $lang['Group_description'],
  529. 'L_GROUP_TYPE' => $lang['Group_type'],
  530. 'L_GROUP_MEMBERSHIP' => $lang['Group_membership'],
  531. 'L_SUBSCRIBE' => $lang['Subscribe'],
  532. 'L_UNSUBSCRIBE' => $lang['Unsubscribe'],
  533. 'L_JOIN_GROUP' => $lang['Join_group'],
  534. 'L_UNSUBSCRIBE_GROUP' => $lang['Unsubscribe'],
  535. 'L_GROUP_OPEN' => $lang['Group_open'],
  536. 'L_GROUP_CLOSED' => $lang['Group_closed'],
  537. 'L_GROUP_HIDDEN' => $lang['Group_hidden'],
  538. 'L_UPDATE' => $lang['Update'],
  539. 'L_GROUP_MODERATOR' => $lang['Group_Moderator'],
  540. 'L_GROUP_MEMBERS' => $lang['Group_Members'],
  541. 'L_PENDING_MEMBERS' => $lang['Pending_members'],
  542. 'L_SELECT_SORT_METHOD' => $lang['Select_sort_method'],
  543. 'L_PM' => $lang['Private_Message'],
  544. 'L_EMAIL' => $lang['Email'],
  545. 'L_POSTS' => $lang['Posts'],
  546. 'L_WEBSITE' => $lang['Website'],
  547. 'L_FROM' => $lang['Location'],
  548. 'L_ORDER' => $lang['Order'],
  549. 'L_SORT' => $lang['Sort'],
  550. 'L_SUBMIT' => $lang['Sort'],
  551. 'L_AIM' => $lang['AIM'],
  552. 'L_YIM' => $lang['YIM'],
  553. 'L_MSNM' => $lang['MSNM'],
  554. 'L_ICQ' => $lang['ICQ'],
  555. 'L_SELECT' => $lang['Select'],
  556. 'L_REMOVE_SELECTED' => $lang['Remove_selected'],
  557. 'L_ADD_MEMBER' => $lang['Add_member'],
  558. 'L_FIND_USERNAME' => $lang['Find_username'],
  559. 'GROUP_NAME' => $group_info['group_name'],
  560. 'GROUP_DESC' => $group_info['group_description'],
  561. 'GROUP_DETAILS' => $group_details,
  562. 'MOD_ROW_COLOR' => '#' . $themeset['td_color1'],
  563. 'MOD_ROW_CLASS' => $themeset['td_class1'],
  564. 'MOD_USERNAME' => $username,
  565. 'MOD_FROM' => $from,
  566. 'MOD_JOINED' => $joined,
  567. 'MOD_POSTS' => $posts,
  568. 'MOD_AVATAR_IMG' => $poster_avatar,
  569. 'MOD_PROFILE_IMG' => $profile_img,
  570. 'MOD_PROFILE' => $profile,
  571. 'MOD_SEARCH_IMG' => $search_img,
  572. 'MOD_SEARCH' => $search,
  573. 'MOD_PM_IMG' => $pm_img,
  574. 'MOD_PM' => $pm,
  575. 'MOD_EMAIL_IMG' => $email_img,
  576. 'MOD_EMAIL' => $email,
  577. 'MOD_WWW_IMG' => $www_img,
  578. 'MOD_WWW' => $www,
  579. 'MOD_ICQ_STATUS_IMG' => $icq_status_img,
  580. 'MOD_ICQ_IMG' => $icq_img,
  581. 'MOD_ICQ' => $icq,
  582. 'MOD_AIM_IMG' => $aim_img,
  583. 'MOD_AIM' => $aim,
  584. 'MOD_MSN_IMG' => $msn_img,
  585. 'MOD_MSN' => $msn,
  586. 'MOD_YIM_IMG' => $yim_img,
  587. 'MOD_YIM' => $yim,
  588. 'U_MOD_VIEWPROFILE' => s_link('u', $user_id),
  589. 'U_SEARCH_USER' => "search.php?mode=searchuser",
  590. 'S_GROUP_OPEN_TYPE' => GROUP_OPEN,
  591. 'S_GROUP_CLOSED_TYPE' => GROUP_CLOSED,
  592. 'S_GROUP_HIDDEN_TYPE' => GROUP_HIDDEN,
  593. 'S_GROUP_OPEN_CHECKED' => ( $group_info['group_type'] == GROUP_OPEN ) ? ' checked="checked"' : '',
  594. 'S_GROUP_CLOSED_CHECKED' => ( $group_info['group_type'] == GROUP_CLOSED ) ? ' checked="checked"' : '',
  595. 'S_GROUP_HIDDEN_CHECKED' => ( $group_info['group_type'] == GROUP_HIDDEN ) ? ' checked="checked"' : '',
  596. 'S_HIDDEN_FIELDS' => $s_hidden_fields,
  597. 'S_MODE_SELECT' => $select_sort_mode,
  598. 'S_ORDER_SELECT' => $select_sort_order,
  599. 'S_GROUPCP_ACTION' => "groupcp.php?g=$group_id")
  600. );
  601. //
  602. // Dump out the remaining users
  603. //
  604. // 1 line deleted >> for($i = $start; $i < min($config['topics_per_page'] + $start, $members_count); $i++)
  605. // Start replacement - Faster groupcp USER_MOD
  606. $i = -1;
  607. while(!empty($group_members[++$i]['username']))
  608. // End replacement - Faster groupcp USER_MOD
  609. {
  610. $username = $group_members[$i]['username'];
  611. $user_id = $group_members[$i]['user_id'];
  612. generate_user_info($group_members[$i], $config['default_dateformat'], $is_moderator, $from, $posts, $joined, $poster_avatar, $profile_img, $profile, $search_img, $search, $pm_img, $pm, $email_img, $email, $www_img, $www, $icq_status_img, $icq_img, $icq, $aim_img, $aim, $msn_img, $msn, $yim_img, $yim);
  613. if ( $group_info['group_type'] != GROUP_HIDDEN || $is_group_member || $is_moderator )
  614. {
  615. $row_color = ( !($i % 2) ) ? $themeset['td_color1'] : $themeset['td_color2'];
  616. $row_class = ( !($i % 2) ) ? $themeset['td_class1'] : $themeset['td_class2'];
  617. $template->assign_block_vars('member_row', array(
  618. 'ROW_COLOR' => '#' . $row_color,
  619. 'ROW_CLASS' => $row_class,
  620. 'USERNAME' => $username,
  621. 'FROM' => $from,
  622. 'JOINED' => $joined,
  623. 'POSTS' => $posts,
  624. 'USER_ID' => $user_id,
  625. 'AVATAR_IMG' => $poster_avatar,
  626. 'PROFILE_IMG' => $profile_img,
  627. 'PROFILE' => $profile,
  628. 'SEARCH_IMG' => $search_img,
  629. 'SEARCH' => $search,
  630. 'PM_IMG' => $pm_img,
  631. 'PM' => $pm,
  632. 'EMAIL_IMG' => $email_img,
  633. 'EMAIL' => $email,
  634. 'WWW_IMG' => $www_img,
  635. 'WWW' => $www,
  636. 'ICQ_STATUS_IMG' => $icq_status_img,
  637. 'ICQ_IMG' => $icq_img,
  638. 'ICQ' => $icq,
  639. 'AIM_IMG' => $aim_img,
  640. 'AIM' => $aim,
  641. 'MSN_IMG' => $msn_img,
  642. 'MSN' => $msn,
  643. 'YIM_IMG' => $yim_img,
  644. 'YIM' => $yim,
  645. 'U_VIEWPROFILE' => s_link('u', $user_id))
  646. );
  647. if ( $is_moderator )
  648. {
  649. $template->assign_block_vars('member_row.switch_mod_option', array());
  650. }
  651. }
  652. }
  653. if ( !$members_count )
  654. {
  655. //
  656. // No group members
  657. //
  658. $template->assign_block_vars('switch_no_members', array());
  659. $template->assign_vars(array(
  660. 'L_NO_MEMBERS' => $lang['No_group_members'])
  661. );
  662. }
  663. $current_page = ( !$members_count ) ? 1 : ceil( $members_count / $config['topics_per_page'] );
  664. $template->assign_vars(array(
  665. 'PAGINATION' => generate_pagination("groupcp.php?g=$group_id", $members_count, $config['topics_per_page'], $start),
  666. 'PAGE_NUMBER' => sprintf($lang['Page_of'], ( floor( $start / $config['topics_per_page'] ) + 1 ), $current_page ),
  667. 'L_GOTO_PAGE' => $lang['Goto_page'])
  668. );
  669. if ( $group_info['group_type'] == GROUP_HIDDEN && !$is_group_member && !$is_moderator )
  670. {
  671. //
  672. // No group members
  673. //
  674. $template->assign_block_vars('switch_hidden_group', array());
  675. $template->assign_vars(array(
  676. 'L_HIDDEN_MEMBERS' => $lang['Group_hidden_members'])
  677. );
  678. }
  679. //
  680. // We've displayed the members who belong to the group, now we
  681. // do that pending memebers...
  682. //
  683. if ( $is_moderator )
  684. {
  685. //
  686. // Users pending in ONLY THIS GROUP (which is moderated by this user)
  687. //
  688. if ( $modgroup_pending_count )
  689. {
  690. for($i = 0; $i < $modgroup_pending_count; $i++)
  691. {
  692. $username = $modgroup_pending_list[$i]['username'];
  693. $user_id = $modgroup_pending_list[$i]['user_id'];
  694. generate_user_info($modgroup_pending_list[$i], $config['default_dateformat'], $is_moderator, $from, $posts, $joined, $poster_avatar, $profile_img, $profile, $search_img, $search, $pm_img, $pm, $email_img, $email, $www_img, $www, $icq_status_img, $icq_img, $icq, $aim_img, $aim, $msn_img, $msn, $yim_img, $yim);
  695. $row_color = ( !($i % 2) ) ? $themeset['td_color1'] : $themeset['td_color2'];
  696. $row_class = ( !($i % 2) ) ? $themeset['td_class1'] : $themeset['td_class2'];
  697. $user_select = '<input type="checkbox" name="member[]" value="' . $user_id . '">';
  698. $template->assign_block_vars('pending_members_row', array(
  699. 'ROW_CLASS' => $row_class,
  700. 'ROW_COLOR' => '#' . $row_color,
  701. 'USERNAME' => $username,
  702. 'FROM' => $from,
  703. 'JOINED' => $joined,
  704. 'POSTS' => $posts,
  705. 'USER_ID' => $user_id,
  706. 'AVATAR_IMG' => $poster_avatar,
  707. 'PROFILE_IMG' => $profile_img,
  708. 'PROFILE' => $profile,
  709. 'SEARCH_IMG' => $search_img,
  710. 'SEARCH' => $search,
  711. 'PM_IMG' => $pm_img,
  712. 'PM' => $pm,
  713. 'EMAIL_IMG' => $email_img,
  714. 'EMAIL' => $email,
  715. 'WWW_IMG' => $www_img,
  716. 'WWW' => $www,
  717. 'ICQ_STATUS_IMG' => $icq_status_img,
  718. 'ICQ_IMG' => $icq_img,
  719. 'ICQ' => $icq,
  720. 'AIM_IMG' => $aim_img,
  721. 'AIM' => $aim,
  722. 'MSN_IMG' => $msn_img,
  723. 'MSN' => $msn,
  724. 'YIM_IMG' => $yim_img,
  725. 'YIM' => $yim,
  726. 'U_VIEWPROFILE' => s_link('u', $user_id))
  727. );
  728. }
  729. $template->assign_block_vars('switch_pending_members', array() );
  730. $template->assign_vars(array(
  731. 'L_SELECT' => $lang['Select'],
  732. 'L_APPROVE_SELECTED' => $lang['Approve_selected'],
  733. 'L_DENY_SELECTED' => $lang['Deny_selected'])
  734. );
  735. $template->assign_var_from_handle('PENDING_USER_BOX', 'pendinginfo');
  736. }
  737. }
  738. if ( $is_moderator )
  739. {
  740. $template->assign_block_vars('switch_mod_option', array());
  741. $template->assign_block_vars('switch_add_member', array());
  742. }
  743. }
  744. else
  745. {
  746. //
  747. // Show the main groupcp.php screen where the user can select a group.
  748. //
  749. // Select all group that the user is a member of or where the user has
  750. // a pending membership.
  751. //
  752. $in_group = array();
  753. if ( $userdata['session_logged_in'] )
  754. {
  755. $sql = "SELECT g.group_id, g.group_name, g.group_type, ug.user_pending
  756. FROM _groups g, _members_group ug
  757. WHERE ug.user_id = " . $userdata['user_id'] . "
  758. AND ug.group_id = g.group_id
  759. AND g.group_single_user <> " . true . "
  760. ORDER BY g.group_name, ug.user_id";
  761. $result = $db->sql_query($sql);
  762. unset($sql);
  763. if ( $row = $db->sql_fetchrow($result) )
  764. {
  765. $in_group = array();
  766. $s_member_groups_opt = '';
  767. $s_pending_groups_opt = '';
  768. do
  769. {
  770. $in_group[] = $row['group_id'];
  771. if ( $row['user_pending'] )
  772. {
  773. $s_pending_groups_opt .= '<option value="' . $row['group_id'] . '">' . $row['group_name'] . '</option>';
  774. }
  775. else
  776. {
  777. $s_member_groups_opt .= '<option value="' . $row['group_id'] . '">' . $row['group_name'] . '</option>';
  778. }
  779. }
  780. while( $row = $db->sql_fetchrow($result) );
  781. $s_pending_groups = '<select name="' . POST_GROUPS_URL . '">' . $s_pending_groups_opt . "</select>";
  782. $s_member_groups = '<select name="' . POST_GROUPS_URL . '">' . $s_member_groups_opt . "</select>";
  783. }
  784. }
  785. //
  786. // Select all other groups i.e. groups that this user is not a member of
  787. //
  788. $ignore_group_sql = ( count($in_group) ) ? "AND group_id NOT IN (" . implode(', ', $in_group) . ")" : '';
  789. $sql = "SELECT group_id, group_name, group_type, group_count , group_count_max
  790. FROM _groups g
  791. WHERE group_single_user <> " . true . "
  792. $ignore_group_sql
  793. ORDER BY g.group_name";
  794. $result = $db->query($sql);
  795. unset($sql);
  796. $s_group_list_opt = '';
  797. while( $row = $db->fetchrow($result) )
  798. {
  799. $is_autogroup_enable = ($row['group_count'] <= $userdata['user_posts'] && $row['group_count_max'] > $userdata['user_posts']) ? true : false;
  800. if ( $row['group_type'] != GROUP_HIDDEN || $userdata['user_level'] == USER_ADMIN|| $is_autogroup_enable )
  801. {
  802. $s_group_list_opt .='<option value="' . $row['group_id'] . '">' . $row['group_name'] . '</option>';
  803. }
  804. }
  805. $s_group_list = '<select name="' . POST_GROUPS_URL . '">' . $s_group_list_opt . '</select>';
  806. if ( $s_group_list_opt != '' || $s_pending_groups_opt != '' || $s_member_groups_opt != '' )
  807. {
  808. //
  809. // Load and process templates
  810. //
  811. $template->set_filenames(array(
  812. 'body' => 'groupcp_user_body.htm')
  813. );
  814. if ( $s_pending_groups_opt != '' || $s_member_groups_opt != '' )
  815. {
  816. $template->assign_block_vars('switch_groups_joined', array() );
  817. }
  818. if ( $s_member_groups_opt != '' )
  819. {
  820. $template->assign_block_vars('switch_groups_joined.switch_groups_member', array() );
  821. }
  822. if ( $s_pending_groups_opt != '' )
  823. {
  824. $template->assign_block_vars('switch_groups_joined.switch_groups_pending', array() );
  825. }
  826. if ( $s_group_list_opt != '' )
  827. {
  828. $template->assign_block_vars('switch_groups_remaining', array() );
  829. }
  830. $s_hidden_fields = '<input type="hidden" name="sid" value="' . $userdata['session_id'] . '" />';
  831. $template->assign_vars(array(
  832. 'L_GROUP_MEMBERSHIP_DETAILS' => $lang['Group_member_details'],
  833. 'L_JOIN_A_GROUP' => $lang['Group_member_join'],
  834. 'L_YOU_BELONG_GROUPS' => $lang['Current_memberships'],
  835. 'L_SELECT_A_GROUP' => $lang['Non_member_groups'],
  836. 'L_PENDING_GROUPS' => $lang['Memberships_pending'],
  837. 'L_SUBSCRIBE' => $lang['Subscribe'],
  838. 'L_UNSUBSCRIBE' => $lang['Unsubscribe'],
  839. 'L_VIEW_INFORMATION' => $lang['View_Information'],
  840. 'S_USERGROUP_ACTION' => "groupcp.php",
  841. 'S_HIDDEN_FIELDS' => $s_hidden_fields,
  842. 'GROUP_LIST_SELECT' => $s_group_list,
  843. 'GROUP_PENDING_SELECT' => $s_pending_groups,
  844. 'GROUP_MEMBER_SELECT' => $s_member_groups)
  845. );
  846. }
  847. else
  848. {
  849. trigger_error('No_groups_exist');
  850. }
  851. }
  852. page_layout('Group_Control_Panel', 'groupcp_info_body');
  853. //
  854. // FUNCTIONS
  855. //
  856. function generate_user_info(&$row, $date_format, $group_mod, &$from, &$posts, &$joined, &$poster_avatar, &$profile_img, &$profile, &$search_img, &$search, &$pm_img, &$pm, &$email_img, &$email, &$www_img, &$www, &$icq_status_img, &$icq_img, &$icq, &$aim_img, &$aim, &$msn_img, &$msn, &$yim_img, &$yim)
  857. {
  858. global $lang, $images, $config;
  859. $from = ( !empty($row['user_from']) ) ? $row['user_from'] : '&nbsp;';
  860. $joined = $user->format_date($row['user_regdate'], $date_format);
  861. $posts = ( $row['user_posts'] ) ? $row['user_posts'] : 0;
  862. $poster_avatar = '';
  863. if ($row['user_avatar_type'] && $row['user_id'] != GUEST)
  864. {
  865. switch( $row['user_avatar_type'] )
  866. {
  867. case USER_AVATAR_UPLOAD:
  868. $poster_avatar = ( $config['allow_avatar_upload'] ) ? '<img src="' . $config['avatar_path'] . '/' . $row['user_avatar'] . '" alt="" border="0" />' : '';
  869. break;
  870. case USER_AVATAR_REMOTE:
  871. $poster_avatar = ( $config['allow_avatar_remote'] ) ? '<img src="' . $row['user_avatar'] . '" alt="" border="0" />' : '';
  872. break;
  873. case USER_AVATAR_GALLERY:
  874. $poster_avatar = ( $config['allow_avatar_local'] ) ? '<img src="' . $config['avatar_gallery_path'] . '/' . $row['user_avatar'] . '" alt="" border="0" />' : '';
  875. break;
  876. }
  877. }
  878. if ( !empty($row['user_viewemail']) || $group_mod )
  879. {
  880. $email_uri = '';
  881. $email = '';
  882. }
  883. else
  884. {
  885. $email_img = '&nbsp;';
  886. $email = '&nbsp;';
  887. }
  888. $temp_url = s_link('m', $row['username_base']);
  889. $profile = '<a href="' . $temp_url . '">' . $lang['Read_profile'] . '</a>';
  890. $temp_url = s_link('my', array('note', $row['username_base']));
  891. $pm = '<a href="' . $temp_url . '">' . $lang['Send_private_message'] . '</a>';
  892. $www = ( $row['user_website'] ) ? '<a href="' . $row['user_website'] . '" target="_userwww">' . $lang['Visit_website'] . '</a>' : '';
  893. if ( !empty($row['user_icq']) )
  894. {
  895. $icq_status_img = '<a href="http://wwp.icq.com/' . $row['user_icq'] . '#pager"><img src="http://web.icq.com/whitepages/online?icq=' . $row['user_icq'] . '&img=5" width="18" height="18" border="0" /></a>';
  896. $icq = '<a href="http://wwp.icq.com/scripts/search.dll?to=' . $row['user_icq'] . '">' . $lang['ICQ'] . '</a>';
  897. }
  898. else
  899. {
  900. $icq_status_img = '';
  901. $icq_img = '';
  902. $icq = '';
  903. }
  904. $aim = ( $row['user_aim'] ) ? '<a href="aim:goim?screenname=' . $row['user_aim'] . '&amp;message=Hello+Are+you+there?">' . $lang['AIM'] . '</a>' : '';
  905. $temp_url = s_link('u', $row['username_base']);
  906. $msn = ( $row['user_msnm'] ) ? '<a href="' . $temp_url . '">' . $lang['MSNM'] . '</a>' : '';
  907. $yim = ( $row['user_yim'] ) ? '<a href="http://edit.yahoo.com/config/send_webmesg?.target=' . $row['user_yim'] . '&amp;.src=pg">' . $lang['YIM'] . '</a>' : '';
  908. return;
  909. }