/source/admincp/admincp_members.php

https://github.com/kuaileshike/upload · PHP · 3279 lines · 2895 code · 378 blank · 6 comment · 734 complexity · fee933808c1b42223764b019fbcb0622 MD5 · raw file

Large files are truncated click here to view the full file

    

  1. <?php
    2. 

  2. 

  3. /**
    4. 

  4.  *      [Discuz!] (C)2001-2099 Comsenz Inc.
    5. 

  5.  *      This is NOT a freeware, use is subject to license terms
    6. 

  6.  *
    7. 

  7.  *      $Id: admincp_members.php 31986 2012-10-30 05:18:16Z chenmengshu $
    8. 

  8.  */
    9. 

  9. 

  10. if(!defined('IN_DISCUZ') || !defined('IN_ADMINCP')) {
    11. 

  11. 	exit('Access Denied');
    12. 

  12. }
    13. 

  13. 

  14. @set_time_limit(600);
    15. 

  15. if($operation != 'export') {
    16. 

  16. 	cpheader();
    17. 

  17. }
    18. 

  18. 

  19. require_once libfile('function/delete');
    20. 

  20. 

  21. $_G['setting']['memberperpage'] = 20;
    22. 

  22. $page = max(1, $_G['page']);
    23. 

  23. $start_limit = ($page - 1) * $_G['setting']['memberperpage'];
    24. 

  24. $search_condition = array_merge($_GET, $_POST);
    25. 

  25. 

  26. if(!is_array($search_condition['groupid']) && $search_condition['groupid']) {
    27. 

  27. 	$search_condition['groupid'][0] = $search_condition['groupid'];
    28. 

  28. }
    29. 

  29. foreach($search_condition as $k => $v) {
    30. 

  30. 	if(in_array($k, array('action', 'operation', 'formhash', 'confirmed', 'submit', 'page', 'deletestart', 'allnum', 'includeuc','includepost','current','pertask','lastprocess','deleteitem')) || $v === '') {
    31. 

  31. 		unset($search_condition[$k]);
    32. 

  32. 	}
    33. 

  33. }
    34. 

  34. $search_condition = searchcondition($search_condition);
    35. 

  35. $tmpsearch_condition = $search_condition;
    36. 

  36. unset($tmpsearch_condition['tablename']);
    37. 

  37. $member = array();
    38. 

  38. $tableext = '';
    39. 

  39. if(in_array($operation, array('ban', 'edit', 'group', 'credit', 'medal', 'access'), true)) {
    40. 

  40. 	if(empty($_GET['uid']) && empty($_GET['username'])) {
    41. 

  41. 		cpmsg('members_nonexistence', 'action=members&operation='.$operation.(!empty($_GET['highlight']) ? "&highlight={$_GET['highlight']}" : ''), 'form', array(), '<input type="text" name="username" value="" class="txt" />');
    42. 

  42. 	}
    43. 

  43. 	$member = !empty($_GET['uid']) ? C::t('common_member')->fetch($_GET['uid'], false, 1) : C::t('common_member')->fetch_by_username($_GET['username'], 1);
    44. 

  44. 	if(!$member) {
    45. 

  45. 		cpmsg('members_edit_nonexistence', '', 'error');
    46. 

  46. 	}
    47. 

  47. 	$tableext = isset($member['_inarchive']) ? '_archive' : '';
    48. 

  48. }
    49. 

  49. 

  50. if($operation == 'search') {
    51. 

  51. 

  52. 	if(!submitcheck('submit', 1)) {
    53. 

  53. 

  54. 		shownav('user', 'nav_members');
    55. 

  55. 		showsubmenu('nav_members', array(
    56. 

  56. 			array('search', 'members&operation=search', 1),
    57. 

  57. 			array('clean', 'members&operation=clean', 0),
    58. 

  58. 			array('nav_repeat', 'members&operation=repeat', 0),
    59. 

  59. 		));
    60. 

  60. 		showtips('members_admin_tips');
    61. 

  61. 		if(!empty($_GET['vid']) && ($_GET['vid'] > 0 && $_GET['vid'] < 8)) {
    62. 

  62. 			$_GET['verify'] = array('verify'.intval($_GET['vid']));
    63. 

  63. 		}
    64. 

  64. 		showsearchform('search');
    65. 

  65. 		if($_GET['more']) {
    66. 

  66. 			print <<<EOF
    67. 

  67. 		<script type="text/javascript">
    68. 

  68. 			$('btn_more').click();
    69. 

  69. 		</script>
    70. 

  70. 

  71. EOF;
    72. 

  72. 		}
    73. 

  73. 	} else {
    74. 

  74. 

  75. 		$membernum = countmembers($search_condition, $urladd);
    76. 

  76. 

  77. 		$members = '';
    78. 

  78. 		if($membernum > 0) {
    79. 

  79. 			$multipage = multi($membernum, $_G['setting']['memberperpage'], $page, ADMINSCRIPT."?action=members&operation=search&submit=yes".$urladd);
    80. 

  80. 

  81. 			$usergroups = array();
    82. 

  82. 			foreach(C::t('common_usergroup')->range() as $group) {
    83. 

  83. 				switch($group['type']) {
    84. 

  84. 					case 'system': $group['grouptitle'] = '<b>'.$group['grouptitle'].'</b>'; break;
    85. 

  85. 					case 'special': $group['grouptitle'] = '<i>'.$group['grouptitle'].'</i>'; break;
    86. 

  86. 				}
    87. 

  87. 				$usergroups[$group['groupid']] = $group;
    88. 

  88. 			}
    89. 

  89. 

  90. 			$uids = searchmembers($search_condition, $_G['setting']['memberperpage'], $start_limit);
    91. 

  91. 			if($uids) {
    92. 

  92. 				$allmember = C::t('common_member')->fetch_all($uids);
    93. 

  93. 				$allcount = C::t('common_member_count')->fetch_all($uids);
    94. 

  94. 				foreach($allmember as $uid=>$member) {
    95. 

  95. 					$member = array_merge($member, (array)$allcount[$uid]);
    96. 

  96. 					$memberextcredits = array();
    97. 

  97. 					if($_G['setting']['extcredits']) {
    98. 

  98. 						foreach($_G['setting']['extcredits'] as $id => $credit) {
    99. 

  99. 							$memberextcredits[] = $_G['setting']['extcredits'][$id]['title'].': '.$member['extcredits'.$id].' ';
    100. 

  100. 						}
    101. 

  101. 					}
    102. 

  102. 					$lockshow = $member['status'] == '-1' ? '<em class="lightnum">['.cplang('lock').']</em>' : '';
    103. 

  103. 					$members .= showtablerow('', array('class="td25"', '', 'title="'.implode("\n", $memberextcredits).'"'), array(
    104. 

  104. 						"<input type=\"checkbox\" name=\"uidarray[]\" value=\"$member[uid]\"".($member['adminid'] == 1 ? 'disabled' : '')." class=\"checkbox\">",
    105. 

  105. 						($_G['setting']['connect']['allow'] && $member['conisbind'] ? '<img class="vmiddle" src="static/image/common/connect_qq.gif" /> ' : '')."<a href=\"home.php?mod=space&uid=$member[uid]\" target=\"_blank\">$member[username]</a>",
    106. 

  106. 						$member['credits'],
    107. 

  107. 						$member['posts'],
    108. 

  108. 						$usergroups[$member['adminid']]['grouptitle'],
    109. 

  109. 						$usergroups[$member['groupid']]['grouptitle'].$lockshow,
    110. 

  110. 						"<a href=\"".ADMINSCRIPT."?action=members&operation=group&uid=$member[uid]\" class=\"act\">$lang[usergroup]</a><a href=\"".ADMINSCRIPT."?action=members&operation=access&uid=$member[uid]\" class=\"act\">$lang[members_access]</a>".
    111. 

  111. 						($_G['setting']['extcredits'] ? "<a href=\"".ADMINSCRIPT."?action=members&operation=credit&uid=$member[uid]\" class=\"act\">$lang[credits]</a>" : "<span disabled>$lang[edit]</span>").
    112. 

  112. 						"<a href=\"".ADMINSCRIPT."?action=members&operation=medal&uid=$member[uid]\" class=\"act\">$lang[medals]</a>".
    113. 

  113. 						"<a href=\"".ADMINSCRIPT."?action=members&operation=repeat&uid=$member[uid]\" class=\"act\">$lang[members_repeat]</a>".
    114. 

  114. 						"<a href=\"".ADMINSCRIPT."?action=members&operation=edit&uid=$member[uid]\" class=\"act\">$lang[detail]</a>".
    115. 

  115. 						"<a href=\"".ADMINSCRIPT."?action=members&operation=ban&uid=$member[uid]\" class=\"act\">$lang[members_ban]</a>"
    116. 

  116. 					), TRUE);
    117. 

  117. 				}
    118. 

  118. 			}
    119. 

  119. 		}
    120. 

  120. 

  121. 		shownav('user', 'nav_members');
    122. 

  122. 		showsubmenu('nav_members');
    123. 

  123. 		showtips('members_export_tips');
    124. 

  124. 		foreach($search_condition as $k => $v) {
    125. 

  125. 			if($k == 'username') {
    126. 

  126. 				$v = explode(',', $v);
    127. 

  127. 				$tmpv = array();
    128. 

  128. 				foreach($v as $subvalue) {
    129. 

  129. 					$tmpv[] = rawurlencode($subvalue);
    130. 

  130. 				}
    131. 

  131. 				$v = implode(',', $tmpv);
    132. 

  132. 			}
    133. 

  133. 			if(is_array($v)) {
    134. 

  134. 				foreach($v as $value ) {
    135. 

  135. 					$condition_str .= '&'.$k.'[]='.$value;
    136. 

  136. 				}
    137. 

  137. 			} else {
    138. 

  138. 				$condition_str .= '&'.$k.'='.$v;
    139. 

  139. 			}
    140. 

  140. 		}
    141. 

  141. 		showformheader("members&operation=clean".$condition_str);
    142. 

  142. 		showtableheader(cplang('members_search_result', array('membernum' => $membernum)).'<a href="'.ADMINSCRIPT.'?action=members&operation=search" class="act lightlink normal">'.cplang('research').'</a>&nbsp;&nbsp;&nbsp;<a href='.ADMINSCRIPT.'?action=members&operation=export'.$condition_str.'>'.$lang['members_search_export'].'</a>');
    143. 

  143. 

  144. 		if($membernum) {
    145. 

  145. 			showsubtitle(array('', 'username', 'credits', 'posts', 'admingroup', 'usergroup', ''));
    146. 

  146. 			echo $members;
    147. 

  147. 			$condition_str = str_replace('&tablename=master', '', $condition_str);
    148. 

  148. 			showsubmit('deletesubmit', cplang('delete'), ($tmpsearch_condition ? '<input type="checkbox" name="chkall" onclick="checkAll(\'prefix\', this.form, \'uidarray\');if(this.checked){$(\'deleteallinput\').style.display=\'\';}else{$(\'deleteall\').checked = false;$(\'deleteallinput\').style.display=\'none\';}" class="checkbox">'.cplang('select_all') : ''), ' &nbsp;&nbsp;&nbsp;<span id="deleteallinput" style="display:none"><input id="deleteall" type="checkbox" name="deleteall" class="checkbox">'.cplang('members_search_deleteall', array('membernum' => $membernum)).'</span>', $multipage);
    149. 

  149. 		}
    150. 

  150. 		showtablefooter();
    151. 

  151. 		showformfooter();
    152. 

  152. 

  153. 	}
    154. 

  154. 

  155. } elseif($operation == 'export') {
    156. 

  156. 	$uids = searchmembers($search_condition, 10000);
    157. 

  157. 	$detail = '';
    158. 

  158. 	if($uids && is_array($uids)) {
    159. 

  159. 

  160. 		$allprofile = C::t('common_member_profile')->fetch_all($uids);
    161. 

  161. 		$allusername = C::t('common_member')->fetch_all_username_by_uid($uids);
    162. 

  162. 		foreach($allprofile as $uid=>$profile) {
    163. 

  163. 			unset($profile['uid']);
    164. 

  164. 			$profile = array_merge(array('uid'=>$uid, 'username'=>$allusername[$uid]),$profile);
    165. 

  165. 			foreach($profile as $key => $value) {
    166. 

  166. 				$value = preg_replace('/\s+/', ' ', $value);
    167. 

  167. 				if($key == 'gender') $value = lang('space', 'gender_'.$value);
    168. 

  168. 				$detail .= strlen($value) > 11 && is_numeric($value) ? '['.$value.'],' : $value.',';
    169. 

  169. 			}
    170. 

  170. 			$detail = $detail."\n";
    171. 

  171. 		}
    172. 

  172. 	}
    173. 

  173. 	$title = array('realname' => '', 'gender' => '', 'birthyear' => '', 'birthmonth' => '', 'birthday' => '', 'constellation' => '',
    174. 

  174. 		'zodiac' => '', 'telephone' => '', 'mobile' => '', 'idcardtype' => '', 'idcard' => '', 'address' => '', 'zipcode' => '','nationality' => '',
    175. 

  175. 		'birthprovince' => '', 'birthcity' => '', 'birthdist' => '', 'birthcommunity' => '', 'resideprovince' => '', 'residecity' => '', 'residedist' => '',
    176. 

  176. 		'residecommunity' => '', 'residesuite' => '', 'graduateschool' => '', 'education' => '', 'company' => '', 'occupation' => '',
    177. 

  177. 		'position' => '', 'revenue' => '', 'affectivestatus' => '', 'lookingfor' => '', 'bloodtype' => '', 'height' => '', 'weight' => '',
    178. 

  178. 		'alipay' => '', 'icq' => '', 'qq' => '', 'yahoo' => '', 'msn' => '', 'taobao' => '', 'site' => '', 'bio' => '', 'interest' => '',
    179. 

  179. 		'field1' => '', 'field2' => '', 'field3' => '', 'field4' => '', 'field5' => '', 'field6' => '', 'field7' => '', 'field8' => '');
    180. 

  180. 	foreach(C::t('common_member_profile_setting')->range() as $value) {
    181. 

  181. 		if(isset($title[$value['fieldid']])) {
    182. 

  182. 			$title[$value['fieldid']] = $value['title'];
    183. 

  183. 		}
    184. 

  184. 	}
    185. 

  185. 	foreach($title as $k => $v) {
    186. 

  186. 		$subject .= ($v ? $v : $k).",";
    187. 

  187. 	}
    188. 

  188. 	$detail = "UID,".$lang['username'].",".$subject."\n".$detail;
    189. 

  189. 	$filename = date('Ymd', TIMESTAMP).'.csv';
    190. 

  190. 

  191. 	ob_end_clean();
    192. 

  192. 	header('Content-Encoding: none');
    193. 

  193. 	header('Content-Type: application/octet-stream');
    194. 

  194. 	header('Content-Disposition: attachment; filename='.$filename);
    195. 

  195. 	header('Pragma: no-cache');
    196. 

  196. 	header('Expires: 0');
    197. 

  197. 	if($_G['charset'] != 'gbk') {
    198. 

  198. 		$detail = diconv($detail, $_G['charset'], 'GBK');
    199. 

  199. 	}
    200. 

  200. 	echo $detail;
    201. 

  201. 	exit();
    202. 

  202. 

  203. } elseif($operation == 'repeat') {
    204. 

  204. 

  205. 	if(empty($_GET['uid']) && empty($_GET['username']) && empty($_GET['ip'])) {
    206. 

  206. 

  207. 		shownav('user', 'nav_members');
    208. 

  208. 		showsubmenu('nav_members', array(
    209. 

  209. 			array('search', 'members&operation=search', 0),
    210. 

  210. 			array('clean', 'members&operation=clean', 0),
    211. 

  211. 			array('nav_repeat', 'members&operation=repeat', 1),
    212. 

  212. 		));
    213. 

  213. 

  214. 		showformheader("members&operation=repeat");
    215. 

  215. 		showtableheader();
    216. 

  216. 		showsetting('members_search_repeatuser', 'username', '', 'text');
    217. 

  217. 		showsetting('members_search_uid', 'uid', '', 'text');
    218. 

  218. 		showsetting('members_search_repeatip', 'ip', $_GET['inputip'], 'text');
    219. 

  219. 		showsubmit('submit', 'submit');
    220. 

  220. 		showtablefooter();
    221. 

  221. 		showformfooter();
    222. 

  222. 

  223. 	} else {
    224. 

  224. 

  225. 		$ips = array();
    226. 

  226. 		$urladd = '';
    227. 

  227. 		if(!empty($_GET['username'])) {
    228. 

  228. 			$uid = C::t('common_member')->fetch_uid_by_username($_GET['username']);
    229. 

  229. 			$searchmember = $uid ? C::t('common_member_status')->fetch($uid) : '';
    230. 

  230. 			$searchmember['username'] = $_GET['username'];
    231. 

  231. 			$urladd .= '&username='.$_GET['username'];
    232. 

  232. 		} elseif(!empty($_GET['uid'])) {
    233. 

  233. 			$searchmember = C::t('common_member_status')->fetch($_GET['uid']);
    234. 

  234. 			$themember = C::t('common_member')->fetch($_GET['uid']);
    235. 

  235. 			$searchmember['username'] = $themember['username'];
    236. 

  236. 			$urladd .= '&uid='.$_GET['uid'];
    237. 

  237. 			unset($_GET['uid']);
    238. 

  238. 		} elseif(!empty($_GET['ip'])) {
    239. 

  239. 			$regip = $lastip = $_GET['ip'];
    240. 

  240. 			$ips[] = $_GET['ip'];
    241. 

  241. 			$search_condition['lastip'] = $_GET['ip'];
    242. 

  242. 			$urladd .= '&ip='.$_GET['ip'];
    243. 

  243. 		}
    244. 

  244. 

  245. 		if($searchmember) {
    246. 

  246. 			$ips = array();
    247. 

  247. 			foreach(array('regip', 'lastip') as $iptype) {
    248. 

  248. 				if($searchmember[$iptype] != '' && $searchmember[$iptype] != 'hidden') {
    249. 

  249. 					$ips[] = $searchmember[$iptype];
    250. 

  250. 				}
    251. 

  251. 			}
    252. 

  252. 			$ips = !empty($ips) ? array_unique($ips) : array('unknown');
    253. 

  253. 		}
    254. 

  254. 		$searchmember['username'] .= ' (IP '.dhtmlspecialchars($ids).')';
    255. 

  255. 		$membernum = !empty($ips) ? C::t('common_member_status')->count_by_ip($ips) : C::t('common_member_status')->count();
    256. 

  256. 

  257. 		$members = '';
    258. 

  258. 		if($membernum) {
    259. 

  259. 			$usergroups = array();
    260. 

  260. 			foreach(C::t('common_usergroup')->range() as $group) {
    261. 

  261. 				switch($group['type']) {
    262. 

  262. 					case 'system': $group['grouptitle'] = '<b>'.$group['grouptitle'].'</b>'; break;
    263. 

  263. 					case 'special': $group['grouptitle'] = '<i>'.$group['grouptitle'].'</i>'; break;
    264. 

  264. 				}
    265. 

  265. 				$usergroups[$group['groupid']] = $group;
    266. 

  266. 			}
    267. 

  267. 

  268. 			$uids = searchmembers($search_condition, $_G['setting']['memberperpage'], $start_limit);
    269. 

  269. 			$conditions = 'm.uid IN ('.dimplode($uids).')';
    270. 

  270. 			$_G['setting']['memberperpage'] = 100;
    271. 

  271. 			$start_limit = ($page - 1) * $_G['setting']['memberperpage'];
    272. 

  272. 			$multipage = multi($membernum, $_G['setting']['memberperpage'], $page, ADMINSCRIPT."?action=members&operation=repeat&submit=yes".$urladd);
    273. 

  273. 			$allstatus = !empty($ips) ? C::t('common_member_status')->fetch_all_by_ip($ips, $start_limit, $_G['setting']['memberperpage'])
    274. 

  274. 					: C::t('common_member_status')->range($start_limit, $_G['setting']['memberperpage']);
    275. 

  275. 			$allcount = C::t('common_member_count')->fetch_all(array_keys($allstatus));
    276. 

  276. 			$allmember = C::t('common_member')->fetch_all(array_keys($allstatus));
    277. 

  277. 			foreach($allstatus as $uid => $member) {
    278. 

  278. 				$member = array_merge($member, (array)$allcount[$uid], (array)$allmember[$uid]);
    279. 

  279. 				$memberextcredits = array();
    280. 

  280. 				foreach($_G['setting']['extcredits'] as $id => $credit) {
    281. 

  281. 					$memberextcredits[] = $_G['setting']['extcredits'][$id]['title'].': '.$member['extcredits'.$id];
    282. 

  282. 				}
    283. 

  283. 				$members .= showtablerow('', array('class="td25"', '', 'title="'.implode("\n", $memberextcredits).'"'), array(
    284. 

  284. 					"<input type=\"checkbox\" name=\"uidarray[]\" value=\"$member[uid]\"".($member['adminid'] == 1 ? 'disabled' : '')." class=\"checkbox\">",
    285. 

  285. 					"<a href=\"home.php?mod=space&uid=$member[uid]\" target=\"_blank\">$member[username]</a>",
    286. 

  286. 					$member['credits'],
    287. 

  287. 					$member['posts'],
    288. 

  288. 					$usergroups[$member['adminid']]['grouptitle'],
    289. 

  289. 					$usergroups[$member['groupid']]['grouptitle'],
    290. 

  290. 					"<a href=\"".ADMINSCRIPT."?action=members&operation=group&uid=$member[uid]\" class=\"act\">$lang[usergroup]</a><a href=\"".ADMINSCRIPT."?action=members&operation=access&uid=$member[uid]\" class=\"act\">$lang[members_access]</a>".
    291. 

  291. 					($_G['setting']['extcredits'] ? "<a href=\"".ADMINSCRIPT."?action=members&operation=credit&uid=$member[uid]\" class=\"act\">$lang[credits]</a>" : "<span disabled>$lang[edit]</span>").
    292. 

  292. 					"<a href=\"".ADMINSCRIPT."?action=members&operation=medal&uid=$member[uid]\" class=\"act\">$lang[medals]</a>".
    293. 

  293. 					"<a href=\"".ADMINSCRIPT."?action=members&operation=repeat&uid=$member[uid]\" class=\"act\">$lang[members_repeat]</a>".
    294. 

  294. 					"<a href=\"".ADMINSCRIPT."?action=members&operation=edit&uid=$member[uid]\" class=\"act\">$lang[detail]</a>"
    295. 

  295. 				), TRUE);
    296. 

  296. 			}
    297. 

  297. 		}
    298. 

  298. 

  299. 		shownav('user', 'nav_repeat');
    300. 

  300. 		showsubmenu($lang['nav_repeat'].' - '.$searchmember['username']);
    301. 

  301. 		showformheader("members&operation=clean");
    302. 

  302. 		$searchadd = '';
    303. 

  303. 		if(is_array($ips)) {
    304. 

  304. 			foreach($ips as $ip) {
    305. 

  305. 				$searchadd .= '<a href="'.ADMINSCRIPT.'?action=members&operation=repeat&inputip='.rawurlencode($ip).'" class="act lightlink normal">'.cplang('search').'IP '.dhtmlspecialchars($ip).'</a>';
    306. 

  306. 			}
    307. 

  307. 		}
    308. 

  308. 		showtableheader(cplang('members_search_result', array('membernum' => $membernum)).'<a href="'.ADMINSCRIPT.'?action=members&operation=repeat" class="act lightlink normal">'.cplang('research').'</a>'.$searchadd);
    309. 

  309. 		showsubtitle(array('', 'username', 'credits', 'posts', 'admingroup', 'usergroup', ''));
    310. 

  310. 		echo $members;
    311. 

  311. 		showtablerow('', array('class="td25"', 'class="lineheight" colspan="7"'), array('', cplang('members_admin_comment')));
    312. 

  312. 		showsubmit('submit', 'submit', '<input type="checkbox" name="chkall" onclick="checkAll(\'prefix\', this.form, \'uidarray\')" class="checkbox">'.cplang('del'), '', $multipage);
    313. 

  313. 		showtablefooter();
    314. 

  314. 		showformfooter();
    315. 

  315. 

  316. 	}
    317. 

  317. 

  318. } elseif($operation == 'clean') {
    319. 

  319. 

  320. 	if(!submitcheck('submit', 1) && !submitcheck('deletesubmit', 1)) {
    321. 

  321. 

  322. 		shownav('user', 'nav_members');
    323. 

  323. 		showsubmenu('nav_members', array(
    324. 

  324. 			array('search', 'members&operation=search', 0),
    325. 

  325. 			array('clean', 'members&operation=clean', 1),
    326. 

  326. 			array('nav_repeat', 'members&operation=repeat', 0),
    327. 

  327. 		));
    328. 

  328. 

  329. 		showsearchform('clean');
    330. 

  330. 

  331. 	} else {
    332. 

  332. 

  333. 		if((!$tmpsearch_condition && empty($_GET['uidarray'])) || (submitcheck('deletesubmit', 1) && empty($_GET['uidarray']))) {
    334. 

  334. 			cpmsg('members_no_find_deluser', '', 'error');
    335. 

  335. 		}
    336. 

  336. 		if(!empty($_GET['deleteall'])) {
    337. 

  337. 			unset($search_condition['uidarray']);
    338. 

  338. 			$_GET['uidarray'] = '';
    339. 

  339. 		}
    340. 

  340. 		$uids = 0;
    341. 

  341. 		$extra = '';
    342. 

  342. 		$delmemberlimit = 300;
    343. 

  343. 		$deletestart = intval($_GET['deletestart']);
    344. 

  344. 

  345. 		if(!empty($_GET['uidarray'])) {
    346. 

  346. 			$uids = array();
    347. 

  347. 			$allmember = C::t('common_member')->fetch_all($_GET['uidarray']);
    348. 

  348. 			$count = count($allmember);
    349. 

  349. 			$membernum = 0;
    350. 

  350. 			foreach($allmember as $uid => $member) {
    351. 

  351. 				if($member['adminid'] !== 1 && $member['groupid'] !== 1) {
    352. 

  352. 					if($count < 2000 || !empty($_GET['uidarray'])) {
    353. 

  353. 						$extra .= '<input type="hidden" name="uidarray[]" value="'.$member['uid'].'" />';
    354. 

  354. 					}
    355. 

  355. 					$uids[] = $member['uid'];
    356. 

  356. 					$membernum ++;
    357. 

  357. 				}
    358. 

  358. 			}
    359. 

  359. 		} elseif($tmpsearch_condition) {
    360. 

  360. 			$membernum = countmembers($search_condition, $urladd);
    361. 

  361. 			$uids = searchmembers($search_condition, $delmemberlimit, 0);
    362. 

  362. 		}
    363. 

  363. 		$allnum = intval($_GET['allnum']);
    364. 

  364. 		$conditions = $uids ? 'm.uid IN ('.dimplode($uids).')' : '0';
    365. 

  365. 

  366. 		if((empty($membernum) || empty($uids))) {
    367. 

  367. 			if($deletestart) {
    368. 

  368. 				cpmsg('members_delete_succeed', '', 'succeed', array('numdeleted' => $allnum));
    369. 

  369. 			}
    370. 

  370. 			cpmsg('members_no_find_deluser', '', 'error');
    371. 

  371. 		}
    372. 

  372. 		if(!$_GET['confirmed']) {
    373. 

  373. 

  374. 			cpmsg('members_delete_confirm', "action=members&operation=clean&submit=yes&confirmed=yes".$urladd, 'form', array('membernum' => $membernum), $extra.'<br /><label><input type="checkbox" name="includepost" value="1" class="checkbox" />'.$lang['members_delete_all'].'</label>'.($isfounder ? '&nbsp;<label><input type="checkbox" name="includeuc" value="1" class="checkbox" />'.$lang['members_delete_ucdata'].'</label>' : ''), '');
    375. 

  375. 

  376. 		} else {
    377. 

  377. 

  378. 			if(empty($_GET['includepost'])) {
    379. 

  379. 

  380. 				require_once libfile('function/delete');
    381. 

  381. 				$numdeleted = deletemember($uids, 0);
    382. 

  382. 

  383. 				if($isfounder && !empty($_GET['includeuc'])) {
    384. 

  384. 					loaducenter();
    385. 

  385. 					uc_user_delete($uids);
    386. 

  386. 					$_GET['includeuc'] = 1;
    387. 

  387. 				} else {
    388. 

  388. 					$_GET['includeuc'] = 0;
    389. 

  389. 				}
    390. 

  390. 				if($_GET['uidarray']) {
    391. 

  391. 					cpmsg('members_delete_succeed', '', 'succeed', array('numdeleted' => $numdeleted));
    392. 

  392. 				} else {
    393. 

  393. 					$allnum += $membernum < $delmemberlimit ? $membernum : $delmemberlimit;
    394. 

  394. 					$nextlink = "action=members&operation=clean&confirmed=yes&submit=yes".(!empty($_GET['includeuc']) ? '&includeuc=yes' : '')."&allnum=$allnum&deletestart=".($deletestart+$delmemberlimit).$urladd;
    395. 

  395. 					cpmsg(cplang('members_delete_user_processing_next', array('deletestart' => $deletestart, 'nextdeletestart' => $deletestart+$delmemberlimit)), $nextlink, 'loadingform', array());
    396. 

  396. 				}
    397. 

  397. 

  398. 			} else {
    399. 

  399. 

  400. 				if(empty($uids)) {
    401. 

  401. 					cpmsg('members_no_find_deluser', '', 'error');
    402. 

  402. 				}
    403. 

  403. 				$numdeleted = $numdeleted ? $numdeleted : count($uids);
    404. 

  404. 				$pertask = 1000;
    405. 

  405. 				$current = $_GET['current'] ? intval($_GET['current']) : 0;
    406. 

  406. 				$deleteitem = $_GET['deleteitem'] ? trim($_GET['deleteitem']) : 'post';
    407. 

  407. 				$nextdeleteitem = $deleteitem;
    408. 

  408. 

  409. 				$next = $current + $pertask;
    410. 

  410. 

  411. 				if($deleteitem == 'post') {
    412. 

  412. 					$threads = $fids = $threadsarray = array();
    413. 

  413. 					foreach(C::t('forum_thread')->fetch_all_by_authorid($uids, $pertask) as $thread) {
    414. 

  414. 						$threads[$thread['fid']][] = $thread['tid'];
    415. 

  415. 					}
    416. 

  416. 

  417. 					if($threads) {
    418. 

  418. 						require_once libfile('function/post');
    419. 

  419. 						foreach($threads as $fid => $tids) {
    420. 

  420. 							deletethread($tids);
    421. 

  421. 						}
    422. 

  422. 						if($_G['setting']['globalstick']) {
    423. 

  423. 							require_once libfile('function/cache');
    424. 

  424. 							updatecache('globalstick');
    425. 

  425. 						}
    426. 

  426. 					} else {
    427. 

  427. 						$next = 0;
    428. 

  428. 						$nextdeleteitem = 'blog';
    429. 

  429. 					}
    430. 

  430. 				}
    431. 

  431. 

  432. 				if($deleteitem == 'blog') {
    433. 

  433. 					$blogs = array();
    434. 

  434. 					$query = C::t('home_blog')->fetch_blogid_by_uid($uids, 0, $pertask);
    435. 

  435. 					foreach($query as $blog) {
    436. 

  436. 						$blogs[] = $blog['blogid'];
    437. 

  437. 					}
    438. 

  438. 

  439. 					if($blogs) {
    440. 

  440. 						deleteblogs($blogs);
    441. 

  441. 					} else {
    442. 

  442. 						$next = 0;
    443. 

  443. 						$nextdeleteitem = 'pic';
    444. 

  444. 					}
    445. 

  445. 				}
    446. 

  446. 

  447. 				if($deleteitem == 'pic') {
    448. 

  448. 					$pics = array();
    449. 

  449. 					$query = C::t('home_pic')->fetch_all_by_uid($uids, 0, $pertask);
    450. 

  450. 					foreach($query as $pic) {
    451. 

  451. 						$pics[] = $pic['picid'];
    452. 

  452. 					}
    453. 

  453. 

  454. 					if($pics) {
    455. 

  455. 						deletepics($pics);
    456. 

  456. 					} else {
    457. 

  457. 						$next = 0;
    458. 

  458. 						$nextdeleteitem = 'doing';
    459. 

  459. 					}
    460. 

  460. 				}
    461. 

  461. 

  462. 				if($deleteitem == 'doing') {
    463. 

  463. 					$doings = array();
    464. 

  464. 					$query = C::t('home_doing')->fetch_all_by_uid_doid($uids, '', '', 0, $pertask);
    465. 

  465. 					foreach ($query as $doings) {
    466. 

  466. 						$doings[] = $doing['doid'];
    467. 

  467. 					}
    468. 

  468. 

  469. 					if($doings) {
    470. 

  470. 						deletedoings($doings);
    471. 

  471. 					} else {
    472. 

  472. 						$next = 0;
    473. 

  473. 						$nextdeleteitem = 'share';
    474. 

  474. 					}
    475. 

  475. 				}
    476. 

  476. 

  477. 				if($deleteitem == 'share') {
    478. 

  478. 					$shares = array();
    479. 

  479. 					foreach(C::t('home_share')->fetch_all_by_uid($uids, $pertask) as $share) {
    480. 

  480. 						$shares[] = $share['sid'];
    481. 

  481. 					}
    482. 

  482. 

  483. 					if($shares) {
    484. 

  484. 						deleteshares($shares);
    485. 

  485. 					} else {
    486. 

  486. 						$next = 0;
    487. 

  487. 						$nextdeleteitem = 'feed';
    488. 

  488. 					}
    489. 

  489. 				}
    490. 

  490. 

  491. 				if($deleteitem == 'feed') {
    492. 

  492. 					C::t('home_follow_feed')->delete_by_uid($uids);
    493. 

  493. 					$nextdeleteitem = 'comment';
    494. 

  494. 				}
    495. 

  495. 

  496. 				if($deleteitem == 'comment') {
    497. 

  497. 					$comments = array();
    498. 

  498. 					$query = C::t('home_comment')->fetch_all_by_uid($uids, 0, $pertask);
    499. 

  499. 					foreach($query as $comment) {
    500. 

  500. 						$comments[] = $comment['cid'];
    501. 

  501. 					}
    502. 

  502. 

  503. 					if($comments) {
    504. 

  504. 						deletecomments($comments);
    505. 

  505. 					} else {
    506. 

  506. 						$next = 0;
    507. 

  507. 						$nextdeleteitem = 'allitem';
    508. 

  508. 					}
    509. 

  509. 				}
    510. 

  510. 

  511. 				if($deleteitem == 'allitem') {
    512. 

  512. 					require_once libfile('function/delete');
    513. 

  513. 					$numdeleted = deletemember($uids);
    514. 

  514. 

  515. 					if($isfounder && !empty($_GET['includeuc'])) {
    516. 

  516. 						loaducenter();
    517. 

  517. 						uc_user_delete($uids);
    518. 

  518. 					}
    519. 

  519. 					if(!empty($_GET['uidarray'])) {
    520. 

  520. 						cpmsg('members_delete_succeed', '', 'succeed', array('numdeleted' => $numdeleted));
    521. 

  521. 					} else {
    522. 

  522. 						$allnum += $membernum < $delmemberlimit ? $membernum : $delmemberlimit;
    523. 

  523. 						$nextlink = "action=members&operation=clean&confirmed=yes&submit=yes&includepost=yes".(!empty($_GET['includeuc']) ? '&includeuc=yes' : '')."&allnum=$allnum&deletestart=".($deletestart+$delmemberlimit).$urladd;
    524. 

  524. 						cpmsg(cplang('members_delete_user_processing_next', array('deletestart' => $deletestart, 'nextdeletestart' => $deletestart+$delmemberlimit)), $nextlink, 'loadingform', array());
    525. 

  525. 					}
    526. 

  526. 				}
    527. 

  527. 				$nextlink = "action=members&operation=clean&confirmed=yes&submit=yes&includepost=yes".(!empty($_GET['includeuc']) ? '&includeuc=yes' : '')."&current=$next&pertask=$pertask&lastprocess=$processed&allnum=$allnum&deletestart=$deletestart".$urladd;
    528. 

  528. 				if(empty($_GET['uidarray'])) {
    529. 

  529. 					$deladdmsg = cplang('members_delete_user_processing', array('deletestart' => $deletestart, 'nextdeletestart' => $deletestart+$delmemberlimit)).'<br>';
    530. 

  530. 				} else {
    531. 

  531. 					$deladdmsg = '';
    532. 

  532. 				}
    533. 

  533. 				if($nextdeleteitem != $deleteitem) {
    534. 

  534. 					$nextlink .= "&deleteitem=$nextdeleteitem";
    535. 

  535. 					cpmsg(cplang('members_delete_processing_next', array('deladdmsg' => $deladdmsg, 'item' => cplang('members_delete_'.$deleteitem), 'nextitem' => cplang('members_delete_'.$nextdeleteitem))), $nextlink, 'loadingform', array(), $extra);
    536. 

  536. 				} else {
    537. 

  537. 					$nextlink .= "&deleteitem=$deleteitem";
    538. 

  538. 					cpmsg(cplang('members_delete_processing', array('deladdmsg' => $deladdmsg, 'item' => cplang('members_delete_'.$deleteitem), 'current' => $current, 'next' => $next)), $nextlink, 'loadingform', array(), $extra);
    539. 

  539. 				}
    540. 

  540. 			}
    541. 

  541. 		}
    542. 

  542. 	}
    543. 

  543. 

  544. } elseif($operation == 'newsletter') {
    545. 

  545. 

  546. 	if(!submitcheck('newslettersubmit', 1)) {
    547. 

  547. 		loadcache('newsletter_detail');
    548. 

  548.         $newletter_detail = get_newsletter('newsletter_detail');
    549. 

  549. 		$newletter_detail = dunserialize($newletter_detail);
    550. 

  550. 		if($newletter_detail && $newletter_detail['uid'] == $_G['uid']) {
    551. 

  551. 			if($_GET['goon'] == 'yes') {
    552. 

  552. 				cpmsg("$lang[members_newsletter_send]: ".cplang('members_newsletter_processing', array('current' => $newletter_detail['current'], 'next' => $newletter_detail['next'], 'search_condition' => $newletter_detail['search_condition'])), $newletter_detail['action'], 'loadingform');
    553. 

  553. 			} elseif($_GET['goon'] == 'no') {
    554. 

  554. 				del_newsletter('newsletter_detail');
    555. 

  555. 			} else {
    556. 

  556. 				cpmsg('members_edit_continue', '', '', '', '<input type="button" class="btn" value="'.$lang[ok].'" onclick="location.href=\''.ADMINSCRIPT.'?action=members&operation=newsletter&goon=yes\'">&nbsp;&nbsp;<input type="button" class="btn" value="'.$lang[cancel].'" onclick="location.href=\''.ADMINSCRIPT.'?action=members&operation=newsletter&goon=no\';">');
    557. 

  557. 				exit;
    558. 

  558. 			}
    559. 

  559. 		}
    560. 

  560. 		if($_GET['do'] == 'mobile') {
    561. 

  561. 			shownav('user', 'nav_members_newsletter_mobile');
    562. 

  562. 			showsubmenusteps('nav_members_newsletter_mobile', array(
    563. 

  563. 				array('nav_members_select', !$_GET['submit']),
    564. 

  564. 				array('nav_members_notify', $_GET['submit']),
    565. 

  565. 			));
    566. 

  566. 			showtips('members_newsletter_mobile_tips');
    567. 

  567. 		} else {
    568. 

  568. 			shownav('user', 'nav_members_newsletter');
    569. 

  569. 			showsubmenusteps('nav_members_newsletter', array(
    570. 

  570. 				array('nav_members_select', !$_GET['submit']),
    571. 

  571. 				array('nav_members_notify', $_GET['submit']),
    572. 

  572. 			), array(), array(array('members_grouppmlist', 'members&operation=grouppmlist', 0)));
    573. 

  573. 		}
    574. 

  574. 		showsearchform('newsletter');
    575. 

  575. 

  576. 		if(submitcheck('submit', 1)) {
    577. 

  577. 			$dostr = '';
    578. 

  578. 			if($_GET['do'] == 'mobile') {
    579. 

  579. 				$search_condition['token_noempty'] = 'token';
    580. 

  580. 				$dostr = '&do=mobile';
    581. 

  581. 			}
    582. 

  582. 			$membernum = countmembers($search_condition, $urladd);
    583. 

  583. 

  584. 			showtagheader('div', 'newsletter', TRUE);
    585. 

  585. 			showformheader('members&operation=newsletter'.$urladd.$dostr);
    586. 

  586. 			showhiddenfields(array('notifymember' => 1));
    587. 

  587. 			echo '<table class="tb tb1">';
    588. 

  588. 

  589. 			if(!$membernum) {
    590. 

  590. 				showtablerow('', 'class="lineheight"', $lang['members_search_nonexistence']);
    591. 

  591. 			} else {
    592. 

  592. 				showtablerow('class="first"', array('class="th11"'), array(
    593. 

  593. 					cplang('members_newsletter_members'),
    594. 

  594. 					cplang('members_search_result', array('membernum' => $membernum))."<a href=\"###\" onclick=\"$('searchmembers').style.display='';$('newsletter').style.display='none';$('step1').className='current';$('step2').className='';\" class=\"act\">$lang[research]</a>"
    595. 

  595. 				));
    596. 

  596. 				showtablefooter();
    597. 

  597. 

  598. 				shownewsletter();
    599. 

  599. 

  600. 				$search_condition = serialize($search_condition);
    601. 

  601. 				showsubmit('newslettersubmit', 'submit', 'td', '<input type="hidden" name="conditions" value=\''.$search_condition.'\' />');
    602. 

  602. 

  603. 			}
    604. 

  604. 

  605. 			showtablefooter();
    606. 

  606. 			showformfooter();
    607. 

  607. 			showtagfooter('div');
    608. 

  608. 

  609. 		}
    610. 

  610. 

  611. 	} else {
    612. 

  612. 

  613. 		$search_condition = dunserialize($_POST['conditions']);
    614. 

  614. 		$membernum = countmembers($search_condition, $urladd);
    615. 

  615. 		notifymembers('newsletter', 'newsletter');
    616. 

  616. 

  617. 	}
    618. 

  618. 

  619. } elseif($operation == 'grouppmlist') {
    620. 

  620. 

  621. 	if(!empty($_GET['delete']) && ($isfounder || C::t('common_grouppm')->count_by_id_authorid($_GET['delete'], $_G['uid']))) {
    622. 

  622. 		if(!empty($_GET['confirm'])) {
    623. 

  623. 			C::t('common_grouppm')->delete($_GET['delete']);
    624. 

  624. 			C::t('common_member_grouppm')->delete_by_gpmid($_GET['delete']);
    625. 

  625. 		} else {
    626. 

  626. 			cpmsg('members_grouppm_delete_confirm', 'action=members&operation=grouppmlist&delete='.intval($_GET['delete']).'&confirm=yes', 'form');
    627. 

  627. 		}
    628. 

  628. 	}
    629. 

  629. 	shownav('user', 'nav_members_newsletter');
    630. 

  630. 	showsubmenu('nav_members_newsletter', array(
    631. 

  631. 		array('members_grouppmlist_newsletter', 'members&operation=newsletter', 0),
    632. 

  632. 		array('members_grouppmlist', 'members&operation=grouppmlist', 1)
    633. 

  633. 	));
    634. 

  634. 	if($do) {
    635. 

  635. 		$unreads = C::t('common_member_grouppm')->count_by_gpmid($do, 0);
    636. 

  636. 	}
    637. 

  637. 

  638. 	showtableheader();
    639. 

  639. 	$id = empty($do) ? 0 : $do;
    640. 

  640. 	$authorid = $isfounder ? 0 : $_G['uid'];
    641. 

  641. 	$grouppms = C::t('common_grouppm')->fetch_all_by_id_authorid($id, $authorid);
    642. 

  642. 	if(!empty($grouppms)) {
    643. 

  643. 		$users = C::t('common_member')->fetch_all(C::t('common_grouppm')->get_uids());
    644. 

  644. 		foreach($grouppms as $grouppm) {
    645. 

  645. 			showtablerow('', array('valign="top" class="td25"', 'valign="top"'), array(
    646. 

  646. 			    '<a href="home.php?mod=space&uid='.$grouppm['authorid'].'" target="_blank">'.avatar($grouppm['authorid'], 'small').'</a>',
    647. 

  647. 			    '<a href="home.php?mod=space&uid='.$grouppm['authorid'].'" target="_blank"><b>'.$users[$grouppm['authorid']]['username'].'</b></a> ('.dgmdate($grouppm['dateline']).'):<br />'.
    648. 

  648. 			    $grouppm['message'].'<br /><br />'.
    649. 

  649. 			    (!$do ?
    650. 

  650. 				'<a href="'.ADMINSCRIPT.'?action=members&operation=grouppmlist&do='.$grouppm['id'].'">'.cplang('members_grouppmlist_view', array('number' => $grouppm['numbers'])).'</a>' :
    651. 

  651. 				'<a href="'.ADMINSCRIPT.'?action=members&operation=grouppmlist&do='.$grouppm['id'].'">'.cplang('members_grouppmlist_view_all').'</a>('.$grouppm['numbers'].') &nbsp; '.
    652. 

  652. 				'<a href="'.ADMINSCRIPT.'?action=members&operation=grouppmlist&do='.$grouppm['id'].'&filter=unread">'.cplang('members_grouppmlist_view_unread').'</a>('.$unreads.') &nbsp; '.
    653. 

  653. 				'<a href="'.ADMINSCRIPT.'?action=members&operation=grouppmlist&do='.$grouppm['id'].'&filter=read">'.cplang('members_grouppmlist_view_read').'</a>('.($grouppm['numbers'] - $unreads).')'),
    654. 

  654. 				'<a href="'.ADMINSCRIPT.'?action=members&operation=grouppmlist&delete='.$grouppm['id'].'">'.cplang('delete').'</a>'
    655. 

  655. 			));
    656. 

  656. 		}
    657. 

  657. 	} else {
    658. 

  658. 		showtablerow('', '', cplang('members_newsletter_empty'));
    659. 

  659. 	}
    660. 

  660. 	showtablefooter();
    661. 

  661. 	if($do) {
    662. 

  662. 		$_GET['filter'] = in_array($_GET['filter'], array('read', 'unread')) ? $_GET['filter'] : '';
    663. 

  663. 		$filteradd = $_GET['filter'] ? '&filter='.$_GET['filter'] : '';
    664. 

  664. 		$ppp = 100;
    665. 

  665. 		$start_limit = ($page - 1) * $ppp;
    666. 

  666. 		if($_GET['filter'] != 'unread') {
    667. 

  667. 			$count = C::t('common_member_grouppm')->count_by_gpmid($do, 1);
    668. 

  668. 		} else {
    669. 

  669. 			$count = $unreads;
    670. 

  670. 		}
    671. 

  671. 		$multipage = multi($count, $ppp, $page, ADMINSCRIPT."?action=members&operation=grouppmlist&do=$do".$filteradd);
    672. 

  672. 		$alldata = C::t('common_member_grouppm')->fetch_all_by_gpmid($gpmid, $_GET['filter'] == 'read' ? 1 : 0, $start_limit, $ppp);
    673. 

  673. 		$allmember = $gpmuser ? C::t('common_member')->fetch_all_username_by_uid(array_keys($gpmuser)) : array();
    674. 

  674. 		foreach($alldata as $uid => $gpmuser) {
    675. 

  675. 			echo '<div style="margin-bottom:5px;float:left;width:24%"><b><a href="home.php?mod=space&uid='.$uid.'" target="_blank">'.$allmember[$uid].'</a></b><br />&nbsp;';
    676. 

  676. 			if($gpmuser['status'] == 0) {
    677. 

  677. 				echo '<span class="lightfont">'.cplang('members_grouppmlist_status_0').'</span>';
    678. 

  678. 			} else {
    679. 

  679. 				echo dgmdate($gpmuser['dateline'], 'u').' '.cplang('members_grouppmlist_status_1');
    680. 

  680. 				if($gpmuser['status'] == -1) {
    681. 

  681. 					echo ', <span class="error">'.cplang('members_grouppmlist_status_-1').'</span>';
    682. 

  682. 				}
    683. 

  683. 			}
    684. 

  684. 			echo '</div>';
    685. 

  685. 		}
    686. 

  686. 		echo $multipage;
    687. 

  687. 	}
    688. 

  688. 

  689. } elseif($operation == 'reward') {
    690. 

  690. 

  691. 	if(!submitcheck('rewardsubmit', 1)) {
    692. 

  692. 

  693. 		shownav('user', 'nav_members_reward');
    694. 

  694. 		showsubmenusteps('nav_members_reward', array(
    695. 

  695. 			array('nav_members_select', !$_GET['submit']),
    696. 

  696. 			array('nav_members_reward', $_GET['submit']),
    697. 

  697. 		));
    698. 

  698. 

  699. 		showsearchform('reward');
    700. 

  700. 

  701. 		if(submitcheck('submit', 1)) {
    702. 

  702. 

  703. 			$membernum = countmembers($search_condition, $urladd);
    704. 

  704. 			showtagheader('div', 'reward', TRUE);
    705. 

  705. 			showformheader('members&operation=reward'.$urladd);
    706. 

  706. 			echo '<table class="tb tb1">';
    707. 

  707. 

  708. 			if(!$membernum) {
    709. 

  709. 				showtablerow('', 'class="lineheight"', $lang['members_search_nonexistence']);
    710. 

  710. 				showtablefooter();
    711. 

  711. 			} else {
    712. 

  712. 

  713. 				$creditscols = array('credits_title');
    714. 

  714. 				$creditsvalue = $resetcredits = array();
    715. 

  715. 				$js_extcreditids = '';
    716. 

  716. 				for($i=1; $i<=8; $i++) {
    717. 

  717. 					$js_extcreditids .= (isset($_G['setting']['extcredits'][$i]) ? ($js_extcreditids ? ',' : '').$i : '');
    718. 

  718. 					$creditscols[] = isset($_G['setting']['extcredits'][$i]) ? $_G['setting']['extcredits'][$i]['title'] : 'extcredits'.$i;
    719. 

  719. 					$creditsvalue[] = isset($_G['setting']['extcredits'][$i]) ? '<input type="text" class="txt" size="3" id="addextcredits['.$i.']" name="addextcredits['.$i.']" value="0"> '.$_G['setting']['extcredits']['$i']['unit'] : '<input type="text" class="txt" size="3" value="N/A" disabled>';
    720. 

  720. 					$resetcredits[] = isset($_G['setting']['extcredits'][$i]) ? '<input type="checkbox" id="resetextcredits['.$i.']" name="resetextcredits['.$i.']" value="1" class="radio" disabled> '.$_G['setting']['extcredits']['$i']['unit'] : '<input type="checkbox" disabled  class="radio">';
    721. 

  721. 				}
    722. 

  722. 				$creditsvalue = array_merge(array('<input type="radio" name="updatecredittype" id="updatecredittype0" value="0" class="radio" onclick="var extcredits = new Array('.$js_extcreditids.'); for(k in extcredits) {$(\'resetextcredits[\'+extcredits[k]+\']\').disabled = true; $(\'addextcredits[\'+extcredits[k]+\']\').disabled = false;}" checked="checked" /><label for="updatecredittype0">'.$lang['members_reward_value'].'</label>'), $creditsvalue);
    723. 

  723. 				$resetcredits = array_merge(array('<input type="radio" name="updatecredittype" id="updatecredittype1" value="1" class="radio" onclick="var extcredits = new Array('.$js_extcreditids.'); for(k in extcredits) {$(\'addextcredits[\'+extcredits[k]+\']\').disabled = true; $(\'resetextcredits[\'+extcredits[k]+\']\').disabled = false;}" /><label for="updatecredittype1">'.$lang['members_reward_clean'].'</label>'), $resetcredits);
    724. 

  724. 

  725. 				showtablerow('class="first"', array('class="th11"'), array(
    726. 

  726. 					cplang('members_reward_members'),
    727. 

  727. 					cplang('members_search_result', array('membernum' => $membernum))."<a href=\"###\" onclick=\"$('searchmembers').style.display='';$('reward').style.display='none';$('step1').className='current';$('step2').className='';\" class=\"act\">$lang[research]</a>"
    728. 

  728. 				));
    729. 

  729. 

  730. 				echo '<tr><td class="th12">'.cplang('nav_members_reward').'</td><td>';
    731. 

  731. 				showtableheader('', 'noborder');
    732. 

  732. 				showsubtitle($creditscols);
    733. 

  733. 				showtablerow('', array('class="td23"', 'class="td28"', 'class="td28"', 'class="td28"', 'class="td28"', 'class="td28"', 'class="td28"', 'class="td28"', 'class="td28"'), $creditsvalue);
    734. 

  734. 				showtablerow('', array('class="td23"', 'class="td28"', 'class="td28"', 'class="td28"', 'class="td28"', 'class="td28"', 'class="td28"', 'class="td28"', 'class="td28"'), $resetcredits);
    735. 

  735. 				showtablefooter();
    736. 

  736. 				showtablefooter();
    737. 

  737. 

  738. 				showtagheader('div', 'messagebody');
    739. 

  739. 				shownewsletter();
    740. 

  740. 				showtagfooter('div');
    741. 

  741. 				showsubmit('rewardsubmit', 'submit', 'td', '<input class="checkbox" type="checkbox" name="notifymember" value="1" onclick="$(\'messagebody\').style.display = this.checked ? \'\' : \'none\'" id="credits_notify" /><label for="credits_notify">'.cplang('members_reward_notify').'</label>');
    742. 

  742. 

  743. 			}
    744. 

  744. 

  745. 			showtablefooter();
    746. 

  746. 			showformfooter();
    747. 

  747. 			showtagfooter('div');
    748. 

  748. 

  749. 		}
    750. 

  750. 

  751. 	} else {
    752. 

  752. 		if(!empty($_POST['conditions'])) $search_condition = dunserialize($_POST['conditions']);
    753. 

  753. 		$membernum = countmembers($search_condition, $urladd);
    754. 

  754. 		notifymembers('reward', 'creditsnotify');
    755. 

  755. 

  756. 	}
    757. 

  757. 

  758. } elseif($operation == 'confermedal') {
    759. 

  759. 

  760. 	$medals = '';
    761. 

  761. 	foreach(C::t('forum_medal')->fetch_all_data(1) as $medal) {
    762. 

  762. 		$medals .= showtablerow('', array('class="td25"', 'class="td23"'), array(
    763. 

  763. 			"<input class=\"checkbox\" type=\"checkbox\" name=\"medals[$medal[medalid]]\" value=\"1\" />",
    764. 

  764. 			"<img src=\"static/image/common/$medal[image]\" />",
    765. 

  765. 			$medal['name']
    766. 

  766. 		), TRUE);
    767. 

  767. 	}
    768. 

  768. 

  769. 	if(!$medals) {
    770. 

  770. 		cpmsg('members_edit_medals_nonexistence', 'action=medals', 'error');
    771. 

  771. 	}
    772. 

  772. 

  773. 	if(!submitcheck('confermedalsubmit', 1)) {
    774. 

  774. 

  775. 		shownav('extended', 'nav_medals', 'nav_members_confermedal');
    776. 

  776. 		showsubmenusteps('nav_members_confermedal', array(
    777. 

  777. 			array('nav_members_select', !$_GET['submit']),
    778. 

  778. 			array('nav_members_confermedal', $_GET['submit']),
    779. 

  779. 		), array(
    780. 

  780. 			array('admin', 'medals', 0),
    781. 

  781. 			array('nav_medals_confer', 'members&operation=confermedal', 1),
    782. 

  782. 			array('nav_medals_mod', 'medals&operation=mod', 0)
    783. 

  783. 		));
    784. 

  784. 

  785. 		showsearchform('confermedal');
    786. 

  786. 

  787. 		if(submitcheck('submit', 1)) {
    788. 

  788. 

  789. 			$membernum = countmembers($search_condition, $urladd);
    790. 

  790. 

  791. 			showtagheader('div', 'confermedal', TRUE);
    792. 

  792. 			showformheader('members&operation=confermedal'.$urladd);
    793. 

  793. 			echo '<table class="tb tb1">';
    794. 

  794. 

  795. 			if(!$membernum) {
    796. 

  796. 				showtablerow('', 'class="lineheight"', $lang['members_search_nonexistence']);
    797. 

  797. 				showtablefooter();
    798. 

  798. 			} else {
    799. 

  799. 

  800. 				showtablerow('class="first"', array('class="th11"'), array(
    801. 

  801. 					cplang('members_confermedal_members'),
    802. 

  802. 					cplang('members_search_result', array('membernum' => $membernum))."<a href=\"###\" onclick=\"$('searchmembers').style.display='';$('confermedal').style.display='none';$('step1').className='current';$('step2').className='';\" class=\"act\">$lang[research]</a>"
    803. 

  803. 				));
    804. 

  804. 

  805. 				echo '<tr><td class="th12">'.cplang('members_confermedal').'</td><td>';
    806. 

  806. 				showtableheader('', 'noborder');
    807. 

  807. 				showsubtitle(array('medals_grant', 'medals_image', 'name'));
    808. 

  808. 				echo $medals;
    809. 

  809. 				showtablefooter();
    810. 

  810. 				showtablefooter();
    811. 

  811. 

  812. 				showtagheader('div', 'messagebody');
    813. 

  813. 				shownewsletter();
    814. 

  814. 				showtagfooter('div');
    815. 

  815. 				showsubmit('confermedalsubmit', 'submit', 'td', '<input class="checkbox" type="checkbox" name="notifymember" value="1" onclick="$(\'messagebody\').style.display = this.checked ? \'\' : \'none\'" id="grant_notify"/><label for="grant_notify">'.cplang('medals_grant_notify').'</label>');
    816. 

  816. 

  817. 			}
    818. 

  818. 

  819. 			showtablefooter();
    820. 

  820. 			showformfooter();
    821. 

  821. 			showtagfooter('div');
    822. 

  822. 

  823. 		}
    824. 

  824. 

  825. 	} else {
    826. 

  826. 		if(!empty($_POST['conditions'])) $search_condition = dunserialize($_POST['conditions']);
    827. 

  827. 		$membernum = countmembers($search_condition, $urladd);
    828. 

  828. 		notifymembers('confermedal', 'medalletter');
    829. 

  829. 

  830. 	}
    831. 

  831. } elseif($operation == 'confermagic') {
    832. 

  832. 

  833. 	$magics = '';
    834. 

  834. 	foreach(C::t('common_magic')->fetch_all_data(1) as $magic) {
    835. 

  835. 		$magics .= showtablerow('', array('class="td25"', 'class="td23"', 'class="td25"', ''), array(
    836. 

  836. 			"<input class=\"checkbox\" type=\"checkbox\" name=\"magic[]\" value=\"$magic[magicid]\" />",
    837. 

  837. 			"<img src=\"static/image/magic/$magic[identifier].gif\" />",
    838. 

  838. 			$magic['name'],
    839. 

  839. 			'<input class="txt" type="text" name="magicnum['.$magic['magicid'].']" value="1" size="3">'
    840. 

  840. 		), TRUE);
    841. 

  841. 	}
    842. 

  842. 

  843. 	if(!$magics) {
    844. 

  844. 		cpmsg('members_edit_magics_nonexistence', 'action=magics', 'error');
    845. 

  845. 	}
    846. 

  846. 

  847. 	if(!submitcheck('confermagicsubmit', 1)) {
    848. 

  848. 

  849. 		shownav('extended', 'nav_magics', 'nav_members_confermagic');
    850. 

  850. 		showsubmenusteps('nav_members_confermagic', array(
    851. 

  851. 			array('nav_members_select', !$_GET['submit']),
    852. 

  852. 			array('nav_members_confermagic', $_GET['submit']),
    853. 

  853. 		), array(
    854. 

  854. 			array('admin', 'magics&operation=admin', 0),
    855. 

  855. 			array('nav_magics_confer', 'members&operation=confermagic', 1)
    856. 

  856. 		));
    857. 

  857. 

  858. 		showsearchform('confermagic');
    859. 

  859. 

  860. 		if(submitcheck('submit', 1)) {
    861. 

  861. 

  862. 			$membernum = countmembers($search_condition, $urladd);
    863. 

  863. 

  864. 			showtagheader('div', 'confermedal', TRUE);
    865. 

  865. 			showformheader('members&operation=confermagic'.$urladd);
    866. 

  866. 			echo '<table class="tb tb1">';
    867. 

  867. 

  868. 			if(!$membernum) {
    869. 

  869. 				showtablerow('', 'class="lineheight"', $lang['members_search_nonexistence']);
    870. 

  870. 				showtablefooter();
    871. 

  871. 			} else {
    872. 

  872. 

  873. 				showtablerow('class="first"', array('class="th11"'), array(
    874. 

  874. 					cplang('members_confermagic_members'),
    875. 

  875. 					cplang('members_search_result', array('membernum' => $membernum))."<a href=\"###\" onclick=\"$('searchmembers').style.display='';$('confermedal').style.display='none';$('step1').className='current';$('step2').className='';\" class=\"act\">$lang[research]</a>"
    876. 

  876. 				));
    877. 

  877. 

  878. 				echo '<tr><td class="th12">'.cplang('members_confermagic').'</td><td>';
    879. 

  879. 				showtableheader('', 'noborder');
    880. 

  880. 				showsubtitle(array('nav_magics_confer', 'nav_magics_image', 'nav_magics_name', 'nav_magics_num'));
    881. 

  881. 				echo $magics;
    882. 

  882. 				showtablefooter();
    883. 

  883. 				showtablefooter();
    884. 

  884. 

  885. 				showtagheader('div', 'messagebody');
    886. 

  886. 				shownewsletter();
    887. 

  887. 				showtagfooter('div');
    888. 

  888. 				showsubmit('confermagicsubmit', 'submit', 'td', '<input class="checkbox" type="checkbox" name="notifymember" value="1" onclick="$(\'messagebody\').style.display = this.checked ? \'\' : \'none\'" id="grant_notify"/><label for="grant_notify">'.cplang('magics_grant_notify').'</label>');
    889. 

  889. 

  890. 			}
    891. 

  891. 

  892. 			showtablefooter();
    893. 

  893. 			showformfooter();
    894. 

  894. 			showtagfooter('div');
    895. 

  895. 

  896. 		}
    897. 

  897. 

  898. 	} else {
    899. 

  899. 		if(!empty($_POST['conditions'])) $search_condition = dunserialize($_POST['conditions']);
    900. 

  900. 		$membernum = countmembers($search_condition, $urladd);
    901. 

  901. 		notifymembers('confermagic', 'magicletter');
    902. 

  902. 	}
    903. 

  903. } elseif($operation == 'add') {
    904. 

  904. 

  905. 	if(!submitcheck('addsubmit', 1)) {
    906. 

  906. 

  907. 		$groupselect = array();
    908. 

  908. 		$query = C::t('common_usergroup')->fetch_all_by_not_groupid(array(5, 6, 7));
    909. 

  909. 		foreach($query as $group) {
    910. 

  910. 			$group['type'] = $group['type'] == 'special' && $group['radminid'] ? 'specialadmin' : $group['type'];
    911. 

  911. 			if($group['type'] == 'member' && $group['creditshigher'] == 0) {
    912. 

  912. 				$groupselect[$group['type']] .= "<option value=\"$group[groupid]\" selected>$group[grouptitle]</option>\n";
    913. 

  913. 			} else {
    914. 

  914. 				$groupselect[$group['type']] .= "<option value=\"$group[groupid]\">$group[grouptitle]</option>\n";
    915. 

  915. 			}
    916. 

  916. 		}
    917. 

  917. 		$groupselect = '<optgroup label="'.$lang['usergroups_member'].'">'.$groupselect['member'].'</optgroup>'.
    918. 

  918. 			($groupselect['special'] ? '<optgroup label="'.$lang['usergroups_special'].'">'.$groupselect['special'].'</optgroup>' : '').
    919. 

  919. 			($groupselect['specialadmin'] ? '<optgroup label="'.$lang['usergroups_specialadmin'].'">'.$groupselect['specialadmin'].'</optgroup>' : '').
    920. 

  920. 			'<optgroup label="'.$lang['usergroups_system'].'">'.$groupselect['system'].'</optgroup>';
    921. 

  921. 		shownav('user', 'nav_members_add');
    922. 

  922. 		showsubmenu('members_add');
    923. 

  923. 		showformheader('members&operation=add');
    924. 

  924. 		showtableheader();
    925. 

  925. 		showsetting('username', 'newusername', '', 'text');
    926. 

  926. 		showsetting('password', 'newpassword', '', 'text');
    927. 

  927. 		showsetting('email', 'newemail', '', 'text');
    928. 

  928. 		showsetting('usergroup', '', '', '<select name="newgroupid">'.$groupselect.'</select>');
    929. 

  929. 		showsetting('members_add_email_notify', 'emailnotify', '', 'radio');
    930. 

  930. 		showsubmit('addsubmit');
    931. 

  931. 		showtablefooter();
    932. 

  932. 		showformfooter();
    933. 

  933. 

  934. 	} else {
    935. 

  935. 

  936. 		$newusername = trim($_GET['newusername']);
    937. 

  937. 		$newpassword = trim($_GET['newpassword']);
    938. 

  938. 		$newemail = strtolower(trim($_GET['newemail']));
    939. 

  939. 

  940. 		if(!$newusername || !isset($_GET['confirmed']) && !$newpassword || !isset($_GET['confirmed']) && !$newemail) {
    941. 

  941. 			cpmsg('members_add_invalid', '', 'error');
    942. 

  942. 		}
    943. 

  943. 

  944. 		if(C::t('common_member')->fetch_uid_by_username($newusername) || C::t('common_member_archive')->fetch_uid_by_username($newusername)) {
    945. 

  945. 			cpmsg('members_add_username_duplicate', '', 'error');
    946. 

  946. 		}
    947. 

  947. 

  948. 		loaducenter();
    949. 

  949. 

  950. 		$uid = uc_user_register(addslashes($newusername), $newpassword, $newemail);
    951. 

  951. 		if($uid <= 0) {
    952. 

  952. 			if($uid == -1) {
    953. 

  953. 				cpmsg('members_add_illegal', '', 'error');
    954. 

  954. 			} elseif($uid == -2) {
    955. 

  955. 				cpmsg('members_username_protect', '', 'error');
    956. 

  956. 			} elseif($uid == -3) {
    957. 

  957. 				if(empty($_GET['confirmed'])) {
    958. 

  958. 					cpmsg('members_add_username_activation', 'action=members&operation=add&addsubmit=yes&newgroupid='.$_GET['newgroupid'].'&newusername='.rawurlencode($newusername), 'form');
    959. 

  959. 				} else {
    960. 

  960. 					list($uid,, $newemail) = uc_get_user(addslashes($newusername));
    961. 

  961. 				}
    962. 

  962. 			} elseif($uid == -4) {
    963. 

  963. 				cpmsg('members_email_illegal', '', 'error');
    964. 

  964. 			} elseif($uid == -5) {
    965. 

  965. 				cpmsg('members_email_domain_illegal', '', 'error');
    966. 

  966. 			} elseif($uid == -6) {
    967. 

  967. 				cpmsg('members_email_duplicate', '', 'error');
    968. 

  968. 			}
    969. 

  969. 		}
    970. 

  970. 

  971. 		$group = C::t('common_usergroup')->fetch($_GET['newgroupid']);
    972. 

  972. 		$newadminid = in_array($group['radminid'], array(1, 2, 3)) ? $group['radminid'] : ($group['type'] == 'special' ? -1 : 0);
    973. 

  973. 		if($group['radminid'] == 1) {
    974. 

  974. 			cpmsg('members_add_admin_none', '', 'error');
    975. 

  975. 		}
    976. 

  976. 		if(in_array($group['groupid'], array(5, 6, 7))) {
    977. 

  977. 			cpmsg('members_add_ban_all_none', '', 'error');
    978. 

  978. 		}
    979. 

  979. 

  980. 		$profile = $verifyarr = array();
    981. 

  981. 		loadcache('fields_register');
    982. 

  982. 		$init_arr = explode(',', $_G['setting']['initcredits']);
    983. 

  983. 		$password = md5(random(10));
    984. 

  984. 		C::t('common_member')->insert($uid, $newusername, $password, $newemail, 'Manual Acting', $_GET['newgroupid'], $init_arr, $newadminid);
    985. 

  985. 		if($_GET['emailnotify']) {
    986. 

  986. 			if(!function_exists('sendmail')) {
    987. 

  987. 				include libfile('function/mail');
    988. 

  988. 			}
    989. 

  989. 			$add_member_subject = lang('email', 'add_member_subject');
    990. 

  990. 			$add_member_message = lang('email', 'add_member_message', array(
    991. 

  991. 				'newusername' => $newusername,
    992. 

  992. 				'bbname' => $_G['setting']['bbname'],
    993. 

  993. 				'adminusername' => $_G['member']['username'],
    994. 

  994. 				'siteurl' => $_G['siteurl'],
    995. 

  995. 				'newpassword' => $newpassword,
    996. 

  996. 			));
    997. 

  997. 			if(!sendmail("$newusername <$newemail>", $add_member_subject, $add_member_message)) {
    998. 

  998. 				runlog('sendmail', "$newemail sendmail failed.");
    999. 

  999. 			}
    1000. 

  1000. 		}
    1001. 

  1001. 

  1002. 		updatecache('setting');
    1003. 

  1003. 		cpmsg('members_add_succeed', '', 'succeed', array('username' => $newusername, 'uid' => $uid));
    1004. 

  1004. 

  1005. 	}
    1006. 

  1006. 

  1007. } elseif($operation == 'group') {
    1008. 

  1008. 	$membermf = C::t('common_member_field_forum'.$tableext)->fetch($_GET['uid']);
    1009. 

  1009. 	$membergroup = C::t('common_usergroup')->fetch($member['groupid']);
    1010. 

  1010. 	$member = array_merge($member, (array)$membermf, $membergroup);
    1011. 

  1011. 

  1012. 	if(!submitcheck('editsubmit')) {
    1013. 

  1013. 

  1014. 		$checkadminid = array(($member['adminid'] >= 0 ? $member['adminid'] : 0) => 'checked');
    1015. 

  1015. 

  1016. 		$member['groupterms'] = dunserialize($member['groupterms']);
    1017. 

  1017. 

  1018. 		if($member['groupterms']['main']) {
    1019. 

  1019. 			$expirydate = dgmdate($member['groupterms']['main']['time'], 'Y-n-j');
    1020. 

  1020. 			$expirydays = ceil(($member['groupterms']['main']['time'] - TIMESTAMP) / 86400);
    1021. 

  1021. 			$selecteaid = array($member['groupterms']['main']['adminid'] => 'selected');
    1022. 

  1022. 			$selectegid = array($member['groupterms']['main']['groupid'] => 'selected');
    1023. 

  1023. 		} else {
    1024. 

  1024. 			$expirydate = $expirydays = '';
    1025. 

  1025. 			$selecteaid = array($member['adminid'] => 'selected');
    1026. 

  1026. 			$selectegid = array(($member['type'] == 'member' ? 0 : $member['groupid']) => 'selected');
    1027. 

  1027. 		}
    1028. 

  1028. 

  1029. 		$extgroups = $expgroups = '';
    1030. 

  1030. 		$radmingids = 0;
    1031. 

  1031. 		$extgrouparray = explode("\t", $member['extgroupids']);
    1032. 

  1032. 		$groups = array('system' => '', 'special' => '', 'member' => '');
    1033. 

  1033. 		$group = array('groupid' => 0, 'radminid' => 0, 'type' => '', 'grouptitle' => $lang['usergroups_system_0'], 'creditshigher' => 0, 'creditslower' => '0');
    1034. 

  1034. 		$query = array_merge(array($group), (array)C::t('common_usergroup')->fetch_all_not(array(6, 7)));
    1035. 

  1035. 		foreach($query as $group) {
    1036. 

  1036. 			if($group['groupid'] && !in_array($group['groupid'], array(4, 5, 6, 7, 8)) && ($group['type'] == 'system' || $group['type'] == 'special')) {
    1037. 

  1037. 				$extgroups .= showtablerow('', array('class="td27"', 'style="width:70%"'), array(
    1038. 

  1038. 					'<input class="checkbox" type="checkbox" name="extgroupidsnew[]" value="'.$group['groupid'].'" '.(in_array($group['groupid'], $extgrouparray) ? 'checked' : '').' id="extgid_'.$group['groupid'].'" /><label for="extgid_'.$group['groupid'].'"> '.$group['grouptitle'].'</label>',
    1039. 

  1039. 					'<input type="text" class="txt" size="9" name="extgroupexpirynew['.$group['groupid'].']" value="'.(in_array($group['groupid'], $extgrouparray) && !empty($member['groupterms']['ext'][$group['groupid']]) ? dgmdate($member['groupterms']['ext'][$group['groupid']], 'Y-n-j') : '').'" onclick="showcalendar(event, this)" />'
    1040. 

  1040. 				), TRUE);
    1041. 

  1041. 			}
    1042. 

  1042. 			if($group['groupid'] && $group['type'] == 'member' && !($member['credits'] >= $group['creditshigher'] && $member['credits'] < $group['creditslower']) && $member['groupid'] != $group['groupid']) {
    1043. 

  1043. 				continue;
    1044. 

  1044. 			}
    1045. 

  1045. 

  1046. 			$expgroups .= '<option name="expgroupidnew" value="'.$group['groupid'].'" '.$selectegid[$group['groupid']].'>'.$group['grouptitle'].'</option>';
    1047. 

  1047. 

  1048. 			if($group['groupid'] != 0) {
    1049. 

  1049. 				$group['type'] = $group['type'] == 'special' && $group['radminid'] ? 'specialadmin' : $group['type'];
    1050. 

  1050. 				$groups[$group['type']] .= '<option value="'.$group['groupid'].'"'.($member['groupid'] == $group['groupid'] ? 'selected="selected"' : '').' gtype="'.$group['type'].'">'.$group['grouptitle'].'</option>';
    1051. 

  1051. 				if($group['type'] == 'special' && !$group['radminid']) {
    1052. 

  1052. 					$radmingids .= ','.$group['groupid'];
    1053. 

  1053. 				}
    1054. 

  1054. 			}
    1055. 

  1055. 

  1056. 		}
    1057. 

  1057. 

  1058. 		if(!$groups['member']) {
    1059. 

  1059. 			$group = C::t('common_usergroup')->fetch_new_groupid(true);
    1060. 

  1060. 			$groups['member'] = '<option value="'.$group['groupid'].'" gtype="member">'.$group['grouptitle'].'</option>';
    1061. 

  1061. 		}
    1062. 

  1062. 

  1063. 		shownav('user', 'members_group');
    1064. 

  1064. 		showsubmenu('members_group_member', array(), '', array('username' => $member['username']));
    1065. 

  1065. 		echo '<script src="static/js/calendar.js" type="text/javascript"></script>';
    1066. 

  1066. 		showformheader("members&operation=group&uid=$member[uid]");
    1067. 

  1067. 		showtableheader('usergroup', 'nobottom');
    1068. 

  1068. 		showsetting('members_group_group', '', '', '<select name="groupidnew" onchange="if(in_array(this.value, ['.$radmingids.'])) {$(\'relatedadminid\').style.display = \'\';$(\'adminidnew\').name=\'adminidnew[\' + this.value + \']\';} else {$(\'relatedadminid\').style.display = \'none\';$(\'adminidnew\').name=\'adminidnew[0]\';}"><optgroup label="'.$lang['usergroups_system'].'">'.$groups['system'].'<optgroup label="'.$lang['usergroups_special'].'">'.$groups['special'].'<optgroup label="'.$lang['usergroups_specialadmin'].'">'.$groups['specialadmin'].'<optgroup label="'.$lang['usergroups_member'].'">'.$groups['member'].'</select>');
    1069. 

  1069. 		showtagheader('tbody', 'relatedadminid', $member['type'] == 'special' && !$member['radminid'], 'sub');
    1070. 

  1070. 		showsetting('members_group_related_adminid', '', '', '<select id="adminidnew" name="adminidnew['.$member['groupid'].']"><option value="0"'.($member['adminid'] == 0 ? ' selected' : '').'>'.$lang['none'].'</option><option value="3"'.($member['adminid'] == 3 ? ' selected' : '').'>'.$lang['usergroups_system_3'].'</option><option value="2"'.($member['adminid'] == 2 ? ' selected' : '').'>'.$lang['usergroups_system_2'].'</option><option value="1"'.($member['adminid'] == 1 ? ' selected' : '').'>'.$lang['usergroups_system_1'].'</option></select>');
    1071. 

  1071. 		showtagfooter('tbody');
    1072. 

  1072. 		showsetting('members_group_validity', 'expirydatenew', $expirydate, 'calendar');
    1073. 

  1073. 		showsetting('members_group_orig_adminid', '', '', '<select name="expgroupidnew">'.$expgroups.'</select>');
    1074. 

  1074. 		showsetting('members_group_orig_groupid', '', '', '<select name="expadminidnew"><option value="0" '.$selecteaid[0].'>'.$lang['usergroups_system_0'].'</option><option value="1" '.$selecteaid[1].'>'.$lang['usergroups_system_1'].'</option><option value="2" '.$selecteaid[2].'>'.$lang['usergroups_system_2'].'</option><option value="3" '.$selecteaid[3].'>'.$lang['usergroups_system_3'].'</option></select>');
    1075. 

  1075. 		showtablefooter();
    1076. 

  1076. 

  1077. 		showtableheader('members_group_extended', 'noborder fixpadding');
    1078. 

  1078. 		showsubtitle(array('usergroup', 'validity'));
    1079. 

  1079. 		echo $extgroups;
    1080. 

  1080. 		showtablerow('', 'colspan="2"', cplang('members_group_extended_comment'));
    1081. 

  1081. 		showtablefooter();
    1082. 

  1082. 

  1083. 		showtableheader('members_edit_reason', 'notop');
    1084. 

  1084. 		showsetting('members_group_ban_reason', 'reason', '', 'textarea');
    1085. 

  1085. 		showsubmit('editsubmit');
    1086. 

  1086. 		showtablefooter();
    1087. 

  1087. 

  1088. 		showformfooter();
    1089. 

  1089. 

  1090. 	} else {
    1091. 

  1091. 

  1092. 		$group = C::t('common_usergroup')->fetch($_GET['groupidnew']);
    1093. 

  1093. 		if(!$group) {
    1094. 

  1094. 			cpmsg('undefined_action', '', 'error');
    1095. 

  1095. 		}
    1096. 

  1096. 

  1097. 		if(strlen(is_array($_GET['extgroupidsnew']) ? implode("\t", $_GET['extgroupidsnew']) : '') > 30) {
    1098. 

  1098. 			cpmsg('members_edit_groups_toomany', '…
    1099.