PageRenderTime 74ms CodeModel.GetById 20ms RepoModel.GetById 1ms app.codeStats 0ms

/hosting_project/ws_versions/ws1/admin/ranks.php

https://github.com/WeMake-IT/Hosting-Service
PHP | 202 lines | 138 code | 22 blank | 42 comment | 35 complexity | 9cc73c113acbd5e9bf1addebbb4105c6 MD5 | raw file
    

  1. <?php

    2. 

  2. /*

    3. 

  3. ##########################################################################

    4. 

  4. #                                                                        #

    5. 

  5. #           Version 4       /                        /   /               #

    6. 

  6. #          -----------__---/__---__------__----__---/---/-               #

    7. 

  7. #           | /| /  /___) /   ) (_ `   /   ) /___) /   /                 #

    8. 

  8. #          _|/_|/__(___ _(___/_(__)___/___/_(___ _/___/___               #

    9. 

  9. #                       Free Content / Management System                 #

    10. 

  10. #                                   /                                    #

    11. 

  11. #                                                                        #

    12. 

  12. #                                                                        #

    13. 

  13. #   Copyright 2005-2010 by webspell.org                                  #

    14. 

  14. #                                                                        #

    15. 

  15. #   visit webSPELL.org, webspell.info to get webSPELL for free           #

    16. 

  16. #   - Script runs under the GNU GENERAL PUBLIC LICENSE                   #

    17. 

  17. #   - It's NOT allowed to remove this copyright-tag                      #

    18. 

  18. #   -- http://www.fsf.org/licensing/licenses/gpl.html                    #

    19. 

  19. #                                                                        #

    20. 

  20. #   Code based on WebSPELL Clanpackage (Michael Gruber - webspell.at),   #

    21. 

  21. #   Far Development by Development Team - webspell.org                   #

    22. 

  22. #                                                                        #

    23. 

  23. #   visit webspell.org                                                   #

    24. 

  24. #                                                                        #

    25. 

  25. ##########################################################################

    26. 

  26. 

    27. 

  27. ##########################################################################

    28. 

  28. #                                                                        #

    29. 

  29. #           Version 4       /                        /   /               #

    30. 

  30. #          -----------__---/__---__------__----__---/---/-               #

    31. 

  31. #           | /| /  /___) /   ) (_ `   /   ) /___) /   /                 #

    32. 

  32. #          _|/_|/__(___ _(___/_(__)___/___/_(___ _/___/___               #

    33. 

  33. #                            Society / Edition                           #

    34. 

  34. #                                   /                                    #

    35. 

  35. #                                                                        #

    36. 

  36. #   modified by webspell|k3rmit (Stefan Giesecke) in 2009                #

    37. 

  37. #                                                                        #

    38. 

  38. #   - Modifications are released under the GNU GENERAL PUBLIC LICENSE    #

    39. 

  39. #   - It is NOT allowed to remove this copyright-tag                     #

    40. 

  40. #   - http://www.fsf.org/licensing/licenses/gpl.html                     #

    41. 

  41. #                                                                        #

    42. 

  42. ##########################################################################

    43. 

  43. */

    44. 

  44. 

    45. 

  45. $_language->read_module('ranks');

    46. 

  46. 

    47. 

  47. if(!isforumadmin($userID) OR mb_substr(basename($_SERVER['REQUEST_URI']),0,15) != "admincenter.php") die($_language->module['access_denied']);

    48. 

  48. 

    49. 

  49. if(isset($_GET['delete'])) {

    50. 

  50.  	$CAPCLASS = new Captcha;

    51. 

  51. 	if($CAPCLASS->check_captcha(0, $_GET['captcha_hash'])) {

    52. 

  52. 		safe_query(" DELETE FROM ".PREFIX."forum_ranks WHERE rankID='".$_GET['rankID']."' ");

    53. 

  53. 	} else echo $_language->module['transaction_invalid'];

    54. 

  54. }

    55. 

  55. 

    56. 

  56. elseif(isset($_POST['save'])) {

    57. 

  57. 

    58. 

  58. 	$name = $_POST['name'];

    59. 

  59. 	$rank = $_FILES['rank'];

    60. 

  60. 	$max = $_POST['max'];

    61. 

  61.   	$min = $_POST['min'];

    62. 

  62.   	

    63. 

  63. 	$CAPCLASS = new Captcha;

    64. 

  64. 	if($CAPCLASS->check_captcha(0, $_POST['captcha_hash'])) {

    65. 

  65. 		if(checkforempty(Array('min', 'max'))) {

    66. 

  66. 			if($max=="MAX") $maximum=2147483647;

    67. 

  67. 			else $maximum=$max;

    68. 

  68. 		

    69. 

  69. 			safe_query("INSERT INTO ".PREFIX."forum_ranks ( rank, postmin, postmax ) values( '$name', '$min', '$maximum' )");

    70. 

  70. 			$id=mysql_insert_id();

    71. 

  71. 		

    72. 

  72. 			$filepath = "../images/icons/ranks/";

    73. 

  73. 			if ($rank['name'] != "") {

    74. 

  74. 				move_uploaded_file($rank['tmp_name'], $filepath.$rank['name']);

    75. 

  75. 				@chmod($filepath.$rank['name'], 0755);

    76. 

  76. 				$file_ext=strtolower(mb_substr($rank['name'], strrpos($rank['name'], ".")));

    77. 

  77. 				$file=$id.$file_ext;

    78. 

  78. 				rename($filepath.$rank['name'], $filepath.$file);

    79. 

  79. 				safe_query("UPDATE ".PREFIX."forum_ranks SET pic='$file' WHERE rankID='$id' ");

    80. 

  80. 			}

    81. 

  81. 		} else echo $_language->module['information_incomplete'];

    82. 

  82. 	} else echo $_language->module['transaction_invalid'];

    83. 

  83. }

    84. 

  84. 

    85. 

  85. elseif(isset($_POST['saveedit'])) {

    86. 

  86. 

    87. 

  87. 	$rank = $_POST['rank'];

    88. 

  88. 	$min = $_POST['min'];

    89. 

  89. 	$max = $_POST['max'];

    90. 

  90. 	

    91. 

  91. 	$CAPCLASS = new Captcha;

    92. 

  92. 	if($CAPCLASS->check_captcha(0, $_POST['captcha_hash'])) {	 

    93. 

  93. 		if(checkforempty(Array('min', 'max'))) {

    94. 

  94. 			$ergebnis = safe_query("SELECT * FROM ".PREFIX."forum_ranks ORDER BY rankID");

    95. 

  95. 			$anz=mysql_num_rows($ergebnis);

    96. 

  96. 			if($anz) {

    97. 

  97. 				while($ds=mysql_fetch_array($ergebnis)) {

    98. 

  98. 					if($ds['rank'] != "Administrator" && $ds['rank'] != "Moderator") {

    99. 

  99. 						$id=$ds['rankID'];

    100. 

  100. 						if($max[$id]=="MAX") $maximum=2147483647;

    101. 

  101. 						else $maximum=$max[$id];

    102. 

  102. 						safe_query("UPDATE ".PREFIX."forum_ranks SET rank='$rank[$id]' WHERE rankID='$id'");

    103. 

  103. 						safe_query("UPDATE ".PREFIX."forum_ranks SET postmin='$min[$id]' WHERE rankID='$id'");

    104. 

  104. 						safe_query("UPDATE ".PREFIX."forum_ranks SET postmax='$maximum' WHERE rankID='$id'");

    105. 

  105. 					}

    106. 

  106. 				}

    107. 

  107. 			}

    108. 

  108. 		} else echo $_language->module['information_incomplete'];

    109. 

  109. 	} else echo $_language->module['transaction_invalid'];

    110. 

  110. }

    111. 

  111. 

    112. 

  112. if(isset($_GET['action'])) $action = $_GET['action'];

    113. 

  113. else $action = '';

    114. 

  114. 

    115. 

  115. if($action=="add") {

    116. 

  116. 	$CAPCLASS = new Captcha;

    117. 

  117. 	$CAPCLASS->create_transaction();

    118. 

  118. 	$hash = $CAPCLASS->get_hash();

    119. 

  119.   

    120. 

  120.   echo'<h1>&curren; <a href="admincenter.php?site=ranks" class="white">'.$_language->module['user_ranks'].'</a> &raquo; '.$_language->module['add_rank'].'</h1>';

    121. 

  121. 

    122. 

  122.   echo'<form method="post" action="admincenter.php?site=ranks" enctype="multipart/form-data">

    123. 

  123.   <table width="100%" border="0" cellspacing="1" cellpadding="3">

    124. 

  124.     <tr>

    125. 

  125.       <td width="15%"><b>'.$_language->module['rank_icon'].'</b></td>

    126. 

  126.       <td width="85%"><input name="rank" type="file" size="40" /></td>

    127. 

  127.     </tr>

    128. 

  128.     <tr>

    129. 

  129.       <td><b>'.$_language->module['rank_name'].'</b></td>

    130. 

  130.       <td><input type="text" name="name" size="60" /></td>

    131. 

  131.     </tr>

    132. 

  132.     <tr>

    133. 

  133.       <td><b>'.$_language->module['min_posts'].'</b></td>

    134. 

  134.       <td><input type="text" name="min" size="4" /></td>

    135. 

  135.     </tr>

    136. 

  136.     <tr>

    137. 

  137.       <td><b>'.$_language->module['max_posts'].'</b></td>

    138. 

  138.       <td><input type="text" name="max" size="4" /></td>

    139. 

  139.     </tr>

    140. 

  140.     <tr>

    141. 

  141.       <td><input type="hidden" name="captcha_hash" value="'.$hash.'" /></td>

    142. 

  142.       <td><input type="submit" name="save" value="'.$_language->module['add_rank'].'" /></td>

    143. 

  143.     </tr>

    144. 

  144.   </table>

    145. 

  145.   </form>';

    146. 

  146. }

    147. 

  147. 

    148. 

  148. else {

    149. 

  149. 	

    150. 

  150.   echo'<h1>&curren; '.$_language->module['user_ranks'].'</h1>';

    151. 

  151.   

    152. 

  152.   echo'<input type="button" onclick="MM_goToURL(\'parent\',\'admincenter.php?site=ranks&amp;action=add\');return document.MM_returnValue" value="'.$_language->module['new_rank'].'" /><br /><br />';

    153. 

  153. 	

    154. 

  154.   echo'<form method="post" action="admincenter.php?site=ranks">

    155. 

  155.   <table width="100%" border="0" cellspacing="1" cellpadding="3" bgcolor="#DDDDDD">

    156. 

  156.     <tr>

    157. 

  157.       <td width="20%" class="title"><b>'.$_language->module['rank_icon'].'</b></td>

    158. 

  158.       <td width="49%" class="title"><b>'.$_language->module['rank_name'].'</b></td>

    159. 

  159.       <td width="10%" class="title"><b>'.$_language->module['min_posts'].'</b></td>

    160. 

  160.       <td width="11%" class="title"><b>'.$_language->module['max_posts'].'</b></td>

    161. 

  161.       <td width="10%" class="title"><b>'.$_language->module['actions'].'</b></td>

    162. 

  162.     </tr>';

    163. 

  163. 

    164. 

  164. 	$ergebnis=safe_query("SELECT * FROM ".PREFIX."forum_ranks ORDER BY postmax");

    165. 

  165. 	$CAPCLASS = new Captcha;

    166. 

  166. 	$CAPCLASS->create_transaction();

    167. 

  167. 	$hash = $CAPCLASS->get_hash();

    168. 

  168.   $i=1;

    169. 

  169.   while($ds=mysql_fetch_array($ergebnis)) {

    170. 

  170.     if($i%2) { $td='td1'; }

    171. 

  171.     else { $td='td2'; }    

    172. 

  172. 		if($ds['rank']=="Administrator" || $ds['rank']=="Moderator") {			

    173. 

  173.       		echo'<tr>

    174. 

  174. 	        <td class="'.$td.'" align="center"><img src="../images/icons/ranks/'.$ds['pic'].'" alt="" /></td>

    175. 

  175. 	        <td class="'.$td.'">'.$ds['rank'].'</td>

    176. 

  176. 	        <td class="'.$td.'">&nbsp;</td>

    177. 

  177. 	        <td class="'.$td.'">&nbsp;</td>

    178. 

  178. 	        <td class="'.$td.'">&nbsp;</td>

    179. 

  179. 	      </tr>';

    180. 

  180. 		}

    181. 

  181.     

    182. 

  182. 		else {

    183. 

  183. 			if(mb_strlen(trim($ds['postmax']))>8) $max="MAX";

    184. 

  184. 			else $max=$ds['postmax'];

    185. 

  185. 			

    186. 

  186.       		echo'<tr>

    187. 

  187. 	        <td class="'.$td.'" align="center"><img src="../images/icons/ranks/'.$ds['pic'].'" alt="" /></td>

    188. 

  188. 	        <td class="'.$td.'"><input type="text" name="rank['.$ds['rankID'].']" value="'.getinput($ds['rank']).'" size="58" /></td>

    189. 

  189. 	        <td class="'.$td.'" align="center"><input type="text" name="min['.$ds['rankID'].']" value="'.$ds['postmin'].'" size="6" dir="rtl" /></td>

    190. 

  190. 	        <td class="'.$td.'" align="center"><input type="text" name="max['.$ds['rankID'].']" value="'.$max.'" size="6" dir="rtl" /></td>

    191. 

  191. 	        <td class="'.$td.'" align="center"><input type="button" onclick="MM_confirm(\''.$_language->module['really_delete'].'\', \'admincenter.php?site=ranks&amp;delete=true&amp;rankID='.$ds['rankID'].'&amp;captcha_hash='.$hash.'\')" value="'.$_language->module['delete'].'" /></td>

    192. 

  192. 	      </tr>';

    193. 

  193. 		}

    194. 

  194. 		$i++;

    195. 

  195. 	}

    196. 

  196. 	echo'<tr>

    197. 

  197.       <td class="td_head" colspan="5" align="right"><input type="hidden" name="captcha_hash" value="'.$hash.'" /><input type="submit" name="saveedit" value="'.$_language->module['update'].'" /></td>

    198. 

  198.     </tr>

    199. 

  199.   </table>

    200. 

  200.   </form>';

    201. 

  201. }

    202. 

  202. ?>
    203.