/html/AppCode/expressionengine/controllers/cp/members.php

<?php  if ( ! defined('BASEPATH')) exit('No direct script access allowed');
/**
 * ExpressionEngine - by EllisLab
 *
 * @package		ExpressionEngine
 * @author		ExpressionEngine Dev Team
 * @copyright	Copyright (c) 2003 - 2010, EllisLab, Inc.
 * @license		http://expressionengine.com/user_guide/license.html
 * @link		http://expressionengine.com
 * @since		Version 2.0
 * @filesource
 */

// ------------------------------------------------------------------------

/**
 * ExpressionEngine Member Management Class
 *
 * @package		ExpressionEngine
 * @subpackage	Control Panel
 * @category	Control Panel
 * @author		ExpressionEngine Dev Team
 * @link		http://expressionengine.com
 */

class Members extends Controller {

	// Default member groups.  We used these for translation purposes
	var $english		= array('Guests', 'Banned', 'Members', 'Pending', 'Super Admins');
	var $no_delete		= array('1', '2', '3', '4'); // Member groups that can not be deleted
	var $perpage		= 50;  // Number of results on the "View all member" page	
	var $pipe_length	= 5;
	
	/**
	 * Constructor
	 *
	 * @access	public
	 */
	function Members()
	{
		parent::Controller();
		
		if ( ! $this->cp->allowed_group('can_access_members'))
		{
			show_error($this->lang->line('unauthorized_access'));
		}

		$this->lang->loadfile('members');
		$this->load->model('member_model');
	}
	
	// --------------------------------------------------------------------

	/**
	 * Index function
	 *
	 * @access	public
	 * @return	mixed
	 */	
	function index()
	{
		if ( ! $this->cp->allowed_group('can_access_members'))
		{
			show_error($this->lang->line('unauthorized_access'));
		}

		$this->cp->set_variable('cp_page_title', $this->lang->line('members'));

		$this->javascript->compile();

		$this->load->vars(array('controller'=>'members'));

		$this->load->view('_shared/overview');
	}
	
	// --------------------------------------------------------------------

	/**
	 * View all members
	 *
	 * @access	public
	 * @return	mixed
	 */
	function view_all_members()
	{
		if ( ! $this->cp->allowed_group('can_access_members'))
		{
			show_error($this->lang->line('unauthorized_access'));
		}
		
		$message = $this->session->flashdata('message');
		
		$this->load->library('table');
		$this->load->library('pagination');
		$this->load->helper('form');
	
		$this->cp->set_variable('cp_page_title', $this->lang->line('view_members'));

		$this->cp->add_js_script(array('plugin' => 'dataTables'));

		$this->javascript->output('
		
			$("#filter_member_submit").hide();
		
			$(".toggle_all").toggle(
				function(){		
					$("input.toggle").each(function() {
						this.checked = true;
					});
				}, function (){
					var checked_status = this.checked;
					$("input.toggle").each(function() {
						this.checked = false;
					});
				}
			);
		');

		// These variables are only set when one of the pull-down menus is used
		// We use it to construct the SQL query with
		
		$group_id = ($this->input->get_post('group_id')) ? $this->input->get_post('group_id') : '';
		$order	  = $this->input->get_post('order');		

		$vars['column_filter_options'] = array(
			'all'				=> $this->lang->line('all'),
			'screen_name'		=> $this->lang->line('screen_name'),
			'username'			=> $this->lang->line('username'),
			'email'				=> $this->lang->line('email')
		);

		$vars['column_filter_selected'] = ($this->input->get_post('column_filter')) ? $this->input->get_post('column_filter') : 'all';

		// Repopulate Search Box ?
		$member_name = $this->input->get_post('member_name') ? $this->input->get_post('member_name') : '';	
		$per_page = ($this->input->get('per_page') != '') ? $this->input->get('per_page') : '0';

		// remember previously selected values
		$vars['selected_group'] = $group_id;

		// start blank, and add any we need as we go
		$vars['message'] = $message;

		// get all member groups for the dropdown list
		$member_groups = $this->member_model->get_member_groups();
		
		// first dropdown item is "all"
		$vars['member_groups_dropdown'] = array('' => $this->lang->line('all'));
		
		foreach($member_groups->result() as $group)
		{
			$vars['member_groups_dropdown'][$group->group_id] = $group->group_title;
		}

		$vars['member_list'] = $this->member_model->get_members($group_id, $this->config->item('memberlist_row_limit'), $per_page, $member_name);

		if ($vars['member_list'] === FALSE)
		{
			$vars['total_members'] = 0;
		}
		else
		{
			$vars['total_members'] = $this->member_model->count_members($group_id, $member_name);
		}
		
		// if we're looking at group 4 (pending), and require email activation, let's also give the option to resend their activation emails
		if ($group_id == '4' && $this->config->item('req_mbr_activation') == 'email' && $this->cp->allowed_group('can_admin_members'))
		{
			$vars['member_action_options'] = array('delete' => $this->lang->line('delete_selected'), 'resend' => $this->lang->line('resend_activation_emails'));
			$vars['delete_button_label'] = $this->lang->line('submit');
		}
		else
		{
			$vars['member_action_options'] = array();
			$vars['form_hidden']['action'] = 'delete';
			$vars['delete_button_label'] = $this->lang->line('delete_selected');
		}
		
		// creating a member automatically fills the search box
		if ( ! $member_name && ! $member_name = $this->session->flashdata('username'))
		{
			$member_name = '';
		}
		
		$vars['member_name'] = $member_name;

		// Pagination stuff
		$group_pagination = ($this->input->get_post('group_id')) ? AMP.'group_id='.$group_id : '';
		$member_pagination = ($this->input->get_post('member_name')) ? AMP.'member_name='.$group_id : '';
		$config['base_url'] = BASE.AMP.'C=members'.AMP.'M=view_all_members'.$group_pagination.$member_pagination;
		$config['total_rows'] = $vars['total_members'];
		$config['per_page'] = $this->config->item('memberlist_row_limit');
		$config['page_query_string'] = TRUE;
		$config['full_tag_open'] = '<p id="paginationLinks">';
		$config['full_tag_close'] = '</p>';
		$config['prev_link'] = '<img src="'.$this->cp->cp_theme_url.'images/pagination_prev_button.gif" width="13" height="13" alt="&lt;" />';
		$config['next_link'] = '<img src="'.$this->cp->cp_theme_url.'images/pagination_next_button.gif" width="13" height="13" alt="&gt;" />';
		$config['first_link'] = '<img src="'.$this->cp->cp_theme_url.'images/pagination_first_button.gif" width="13" height="13" alt="&lt; &lt;" />';
		$config['last_link'] = '<img src="'.$this->cp->cp_theme_url.'images/pagination_last_button.gif" width="13" height="13" alt="&gt; &gt;" />';

		$this->pagination->initialize($config);
		$vars['pagination'] = $this->pagination->create_links();
		
		
		//$this->jquery->dataTables('.mainTable');
		

	$this->javascript->output('
var oCache = {
	iCacheLower: -1
};

function fnSetKey( aoData, sKey, mValue )
{
	for ( var i=0, iLen=aoData.length ; i<iLen ; i++ )
	{
		if ( aoData[i].name == sKey )
		{
			aoData[i].value = mValue;
		}
	}
}

function fnGetKey( aoData, sKey )
{
	for ( var i=0, iLen=aoData.length ; i<iLen ; i++ )
	{
		if ( aoData[i].name == sKey )
		{
			return aoData[i].value;
		}
	}
	return null;
}

function fnDataTablesPipeline ( sSource, aoData, fnCallback ) {
	var iPipe = '.$this->pipe_length.';  /* Adjust the pipe size */
	
	var bNeedServer = false;
	var sEcho = fnGetKey(aoData, "sEcho");
	var iRequestStart = fnGetKey(aoData, "iDisplayStart");
	var iRequestLength = fnGetKey(aoData, "iDisplayLength");
	var iRequestEnd = iRequestStart + iRequestLength;
	var k_search    = document.getElementById("member_name");
    var group       = document.getElementById("group_id");
    var column_filter       = document.getElementById("column_filter");

	aoData.push( 
		{ "name": "k_search", "value": k_search.value },
		{ "name": "group", "value": group.value },
		{ "name": "column_filter", "value": column_filter.value }
	 );
	
	oCache.iDisplayStart = iRequestStart;
	
	/* outside pipeline? */
	if ( oCache.iCacheLower < 0 || iRequestStart < oCache.iCacheLower || iRequestEnd > oCache.iCacheUpper )
	{
		bNeedServer = true;
	}
	
	/* sorting etc changed? */
	if ( oCache.lastRequest && !bNeedServer )
	{
		for( var i=0, iLen=aoData.length ; i<iLen ; i++ )
		{
			if ( aoData[i].name != "iDisplayStart" && aoData[i].name != "iDisplayLength" && aoData[i].name != "sEcho" )
			{
				if ( aoData[i].value != oCache.lastRequest[i].value )
				{
					bNeedServer = true;
					break;
				}
			}
		}
	}
	
	/* Store the request for checking next time around */
	oCache.lastRequest = aoData.slice();
	
	if ( bNeedServer )
	{
		if ( iRequestStart < oCache.iCacheLower )
		{
			iRequestStart = iRequestStart - (iRequestLength*(iPipe-1));
			if ( iRequestStart < 0 )
			{
				iRequestStart = 0;
			}
		}
		
		oCache.iCacheLower = iRequestStart;
		oCache.iCacheUpper = iRequestStart + (iRequestLength * iPipe);
		oCache.iDisplayLength = fnGetKey( aoData, "iDisplayLength" );
		fnSetKey( aoData, "iDisplayStart", iRequestStart );
		fnSetKey( aoData, "iDisplayLength", iRequestLength*iPipe );
		
			aoData.push( 
				{ "name": "k_search", "value": k_search.value },
				{ "name": "group", "value": group.value },
				{ "name": "column_filter", "value": column_filter.value }
			 );

		$.getJSON( sSource, aoData, function (json) { 
			/* Callback processing */
			oCache.lastJson = jQuery.extend(true, {}, json);
 			
			if ( oCache.iCacheLower != oCache.iDisplayStart )
			{
				json.aaData.splice( 0, oCache.iDisplayStart-oCache.iCacheLower );
			}
			json.aaData.splice( oCache.iDisplayLength, json.aaData.length );
			
			fnCallback(json)
		} );
	}
	else
	{
		json = jQuery.extend(true, {}, oCache.lastJson);
		json.sEcho = sEcho; /* Update the echo for each response */
		json.aaData.splice( 0, iRequestStart-oCache.iCacheLower );
		json.aaData.splice( iRequestLength, json.aaData.length );
		fnCallback(json);
		return;
	}
}


		
	oTable = $(".mainTable").dataTable( {	
			"sPaginationType": "full_numbers",
			"bLengthChange": false,
			"bFilter": false,
			"sWrapper": false,
			"sInfo": false,
			"bAutoWidth": false,
			"iDisplayLength": '.$this->perpage.',  

		"aoColumns": [null, null, null, null, null, { "bSortable" : false }, { "bSortable" : false } ],
			
			
		"oLanguage": {
			"sZeroRecords": "'.$this->lang->line('no_members_matching_that_criteria').'",
			
			"oPaginate": {
				"sFirst": "<img src=\"'.$this->cp->cp_theme_url.'images/pagination_first_button.gif\" width=\"13\" height=\"13\" alt=\"&lt; &lt;\" />",
				"sPrevious": "<img src=\"'.$this->cp->cp_theme_url.'images/pagination_prev_button.gif\" width=\"13\" height=\"13\" alt=\"&lt; &lt;\" />",
				"sNext": "<img src=\"'.$this->cp->cp_theme_url.'images/pagination_next_button.gif\" width=\"13\" height=\"13\" alt=\"&lt; &lt;\" />", 
				"sLast": "<img src=\"'.$this->cp->cp_theme_url.'images/pagination_last_button.gif\" width=\"13\" height=\"13\" alt=\"&lt; &lt;\" />"
			}
		},
		
			"bProcessing": true,
			"bServerSide": true,
			"sAjaxSource": EE.BASE+"&C=members&M=member_search",
			"fnServerData": fnDataTablesPipeline
	} );

		$("#member_name").bind("keyup blur paste", function (e) {
		/* Filter on the column (the index) of this element */
    	setTimeout(function(){oTable.fnDraw();}, 1);
		});

		$("#member_form").submit(function() {
			oTable.fnDraw();
  			return false;
		});
	
		$("select#group_id").change(function () {
				oTable.fnDraw();
				
				if ($(this).val() == 4)
				{
					$("#member_action_options").show();
				}
			});		
		
		$("select#column_filter").change(function () {
				oTable.fnDraw();

			});		
		');
		
		$this->javascript->compile();

		$this->load->view('members/view_members', $vars);
	}

	function member_search()
	{
		if ( ! $this->cp->allowed_group('can_access_members'))
		{
			show_error($this->lang->line('unauthorized_access'));
		}

		$this->output->enable_profiler(FALSE);
		
		$col_map = array('username', 'screen_name', 'email', 'join_date', 'last_visit');
		
		$search_value = ($this->input->get_post('k_search')) ? $this->input->get_post('k_search') : '';
		$group_id = ($this->input->get_post('group')) ? $this->input->get_post('group') : '';		

		
		// Note- we pipeline the js, so pull more data than are displayed on the page		
		$perpage = $this->input->get_post('iDisplayLength');
		$offset = ($this->input->get_post('iDisplayStart')) ? $this->input->get_post('iDisplayStart') : 0; // Display start point
		$sEcho = $this->input->get_post('sEcho');	
		
		/* Ordering */
		$order = array();
		
		if ($this->input->get('iSortCol_0') !== FALSE)
		{
			for ( $i=0; $i < $this->input->get('iSortingCols'); $i++ )
			{
				if (isset($col_map[$this->input->get('iSortCol_'.$i)]))
				{
					$order[$col_map[$this->input->get('iSortCol_'.$i)]] = ($this->input->get('sSortDir_'.$i) == 'asc') ? 'asc' : 'desc';
				}
			}
		}
		
		$column_filter = ($this->input->get_post('column_filter')) ? $this->input->get_post('column_filter') : 'all';

		$members = $this->member_model->get_members($group_id, $perpage, $offset, $search_value, $order, $column_filter);

		$total = $this->member_model->count_members();
		$f_total = $this->member_model->count_members($group_id, $search_value, $column_filter);

		$j_response['sEcho'] = $sEcho;
		$j_response['iTotalRecords'] = $total;
		$j_response['iTotalDisplayRecords'] = $f_total;
		
		// Get the group titles- we need this in the display

		$member_groups = $this->member_model->get_member_groups();
		$groups = array();
		
		foreach($member_groups->result() as $group)
		{
			$groups[$group->group_id] = $group->group_title;
		}
		
		$tdata = array();
		$i = 0;

		if ($members !== FALSE)
		{
			foreach ($members->result_array() as $k => $member)
			{
		
				$m[] = '<a href="'.BASE.AMP.'C=myaccount'.AMP.'id='.$member['member_id'].'">'.$member['username'].'</a>';
				$m[] = $member['screen_name'];
				$m[] = '<a href="mailto:'.$member['email'].'">'.$member['email'].'</a>';
				$m[] = $this->localize->convert_timestamp('%Y', $member['join_date']).'-'.
										$this->localize->convert_timestamp('%m', $member['join_date']).'-'.
										$this->localize->convert_timestamp('%d', $member['join_date']);
				$m[] = ($member['last_visit'] == 0) ? ' - ' : $this->localize->set_human_time($member['last_visit']);
				$m[] = $groups[$member['group_id']];		
				$m[] = '<input class="toggle" type="checkbox" name="toggle[]" value="'.$member['member_id'].'" />';

				$tdata[$i] = $m;
				$i++;
				unset($m);
			}
		}

		$j_response['aaData'] = $tdata;	
		$sOutput = $this->javascript->generate_json($j_response, TRUE);
	
		exit($sOutput);
	}

	// --------------------------------------------------------------------

	/**
	 * Member Confirm
	 *
	 * Used to choose between emailing or deleting
	 *
	 * @access	public
	 * @return	mixed
	 */		
	function member_confirm()
	{
		if ( ! $this->cp->allowed_group('can_access_members'))
		{
			show_error($this->lang->line('unauthorized_access'));
		}
		
		if ($this->input->post('action') == 'resend')
		{
			$this->resend_activation_emails();
		}
		else
		{
			$this->member_delete_confirm();
		}
	}

	// --------------------------------------------------------------------

	/**
	 * Resend Activation Emails
	 *
	 * Resend Pending Member's Activation Emails
	 *
	 * @access	public
	 * @return	mixed
	 */		
	function resend_activation_emails()
	{
		if ( ! $this->cp->allowed_group('can_access_members') OR $this->config->item('req_mbr_activation') !== 'email')
		{
			show_error($this->lang->line('unauthorized_access'));
		}
		
		if ($this->input->get('mid') !== FALSE)
		{
			$_POST['toggle'][] = $this->input->get('mid');
		}

		if ( ! $this->input->post('toggle'))
		{
			$this->functions->redirect(BASE.AMP.'C=members'.AMP.'M=view_all_members');
		}

		$damned = array();

		foreach ($_POST['toggle'] as $key => $val)
		{
			$damned[] = $val;
		}
		
		if (count($damned) == 0)
		{
			$this->functions->redirect(BASE.AMP.'C=members'.AMP.'M=view_all_members');
		}

		$this->load->library('email');
		$this->load->helper('text');

		$this->db->select('screen_name, username, email, authcode');
		$this->db->where_in('member_id', $damned);
		$query = $this->db->get('members');
		
		if ($query->num_rows() == 0)
		{
			$this->functions->redirect(BASE.AMP.'C=members'.AMP.'M=view_all_members');
		}
			
		$action_id = $this->functions->fetch_action_id('Member', 'activate_member');
		
		$template = $this->functions->fetch_email_template('mbr_activation_instructions');
		
		$swap = array(
						'site_name'			=> stripslashes($this->config->item('site_name')),
						'site_url'			=> $this->config->item('site_url')
					 );
		
		foreach($query->result_array() as $row)
		{
			$swap['name']			= ($row['screen_name'] != '') ? $row['screen_name'] : $row['username'];
			$swap['activation_url']	= $this->functions->fetch_site_index(0, 0).QUERY_MARKER.'ACT='.$action_id.'&id='.$row['authcode'];
			$swap['username']		= $row['username'];
			$swap['email']			= $row['email'];
												
			// Send email

			$this->email->EE_initialize();
			$this->email->wordwrap = TRUE;
			$this->email->from($this->config->item('webmaster_email'), $this->config->item('webmaster_name'));	
			$this->email->to($row['email']);
			$this->email->subject($this->functions->var_swap($template['title'], $swap));	
			$this->email->message(entities_to_ascii($this->functions->var_swap($template['data'], $swap)));		
			$this->email->send();
		}

		$this->session->set_flashdata('message_success', $this->lang->line(($this->input->get('mid') !== FALSE) ? 'activation_email_resent' : 'activation_emails_resent'));
		$this->functions->redirect(BASE.AMP.'C=members'.AMP.'M=view_all_members');
	}

	// --------------------------------------------------------------------

	/**
	 * Delete Member (confirm)
	 *
	 * Warning message if you try to delete members
	 *
	 * @access	public
	 * @return	mixed
	 */		
	function member_delete_confirm()
	{
		if ( ! $this->cp->allowed_group('can_access_members') OR ! $this->cp->allowed_group('can_delete_members'))
		{
			show_error($this->lang->line('unauthorized_access'));
		}

		$this->load->helper('form');

		$from_myaccount = FALSE;

		if ($this->input->get('mid') != '')
		{
			$from_myaccount = TRUE;
			$_POST['toggle'][] = $this->input->get('mid');
		}

		if ( ! isset($_POST['toggle']))
		{
			$this->functions->redirect(BASE.AMP.'C=members'.AMP.'M=view_all_members');
		}

		if ( ! is_array($_POST['toggle']) OR count($_POST['toggle']) == 0)
		{
			$this->functions->redirect(BASE.AMP.'C=members'.AMP.'M=view_all_members');
		}

		$damned = array();

		$vars['ids_delete'] = array();
		
		foreach ($this->input->post('toggle') as $key => $val)
		{
			// Is the user trying to delete himself?
			if ($this->session->userdata('member_id') == $val)
			{
				show_error($this->lang->line('can_not_delete_self'));
			}

			$damned[] = $val;
		}

		// Pass the damned on for judgement
		$vars['damned'] = $damned;

		if (count($damned) == 1)
		{
			$vars['user_name'] = $this->member_model->get_username($damned['0']);
		}
		else
		{
			$vars['user_name'] = '';
		}

		// Do the users being deleted have entries assigned to them?
		// If so, fetch the member names for reassigment

		$vars['heirs'] = array();
		
		if ($this->member_model->count_member_entries($damned)  > 0)
		{
			$group_ids = $this->member_model->get_members_group_ids($damned);
			
			// Find Valid Member Replacements
			$this->db->select('member_id, username, screen_name');
			$this->db->from('members');
			$this->db->where_in('member_id', $group_ids);
			$this->db->where_not_in('member_id', $damned);
			$this->db->order_by('screen_name');
			$heirs = $this->db->get();

			foreach($heirs->result() as $heir)
			{
				$name_to_use = ($heir->screen_name != '') ? $heir->screen_name : $heir->username;
				$vars['heirs'][$heir->member_id] = $name_to_use;
			}
		}

		$this->cp->set_variable('cp_page_title', $this->lang->line('delete_member'));
		
		$this->load->view('members/delete_confirm', $vars);
	}

	// --------------------------------------------------------------------

	/**
	 * Login as Member
	 *
	 * Login as Member - SuperAdmins only!
	 *
	 * @access	public
	 * @return	mixed
	 */		
	function login_as_member()
	{
		if ($this->session->userdata('group_id') != 1)
		{
			show_error($this->lang->line('unauthorized_access'));
		}

		$this->lang->loadfile('myaccount');

		$id = $this->input->get('mid');

		if ($id == '')
		{
			show_error($this->lang->line('unauthorized_access'));
		}

		if ($this->session->userdata['member_id'] == $id)
		{
			show_error($this->lang->line('unauthorized_access'));
		}

		$this->load->helper('form');
		$this->cp->set_variable('cp_page_title', $this->lang->line('login_as_member'));

		// Fetch member data
		$this->db->from('members, member_groups');
		$this->db->select('members.screen_name, member_groups.can_access_cp');
		$this->db->where('member_id', $id);
		$this->db->where('member_groups.site_id', $this->config->item('site_id'));
		$this->db->where('members.group_id = '.$this->db->dbprefix('member_groups.group_id'));
		$query = $this->db->get();

		if ($query->num_rows() == 0)
		{
			show_error($this->lang->line('unauthorized_access'));
		}

		$vars['message'] = str_replace('%screen_name%', $query->row('screen_name') , $this->lang->line('login_as_member_description'));

		$vars['form_hidden']['mid'] = $id;

		$vars['can_access_cp'] = ($query->row('can_access_cp')  == 'y') ? TRUE : FALSE;

		$this->load->view('members/login_as_member', $vars);
	}

	// --------------------------------------------------------------------

	/**
	 * Do Login as Member
	 *
	 * Do Login as Member - SuperAdmins only!
	 *
	 * @access	public
	 * @return	mixed
	 */
	function do_login_as_member()
	{
		if ($this->session->userdata['group_id'] != 1)
		{
			show_error($this->lang->line('unauthorized_access'));
		}

		$id = $this->input->get_post('mid');

		if ($id == '')
		{
			show_error($this->lang->line('unauthorized_access'));
		}

		if ($this->session->userdata['member_id'] == $id)
		{
			show_error($this->lang->line('unauthorized_access'));
		}

		// Fetch member data

		$this->db->from('members, member_groups');
		$this->db->select('members.username, members.password, members.unique_id, members.member_id, members.group_id, member_groups.can_access_cp');
		$this->db->where('member_id', $id);
		$this->db->where('member_groups.site_id', $this->config->item('site_id'));
		$this->db->where('members.group_id = '.$this->db->dbprefix('member_groups.group_id'));
		$query = $this->db->get();

		if ($query->num_rows() == 0)
		{
			show_error($this->lang->line('unauthorized_access'));
		}

		$this->lang->loadfile('login');

		//  Do we allow multiple logins on the same account?
		if ($this->config->item('allow_multi_logins') == 'n')
		{
			// Kill old sessions first
			$this->session->gc_probability = 100;
			$this->session->delete_old_sessions();
			$expire = time() - $this->session->session_length;

			// See if there is a current session

			$this->db->select('ip_address, user_agent');
			$this->db->where('member_id', $query->row('member_id'));
			$this->db->where('last_activity >', $expire);
			$result = $this->db->get('sessions');

			// If a session exists, trigger the error message

			if ($result->num_rows() == 1)
			{
				if ($this->session->userdata['ip_address'] != $result->row('ip_address')  OR
					$this->session->userdata['user_agent'] != $result->row('user_agent')  )
				{
					show_error($this->lang->line('multi_login_warning'));
				}
			}
		}

		// Log the SuperAdmin login

		$this->logger->log_action($this->lang->line('login_as_user').':'.NBS.$query->row('username') );

		// Set cookie expiration to one year if the "remember me" button is clicked

		$expire = 0;
		$type = (isset($_POST['return_destination']) && $_POST['return_destination'] == 'cp') ? $this->config->item('admin_session_type') : $this->config->item('user_session_type');

		if ($type != 's')
		{
			$this->functions->set_cookie($this->session->c_expire , time()+$expire, $expire);
			$this->functions->set_cookie($this->session->c_uniqueid , $query->row('unique_id') , $expire);
			$this->functions->set_cookie($this->session->c_password , $query->row('password') ,  $expire);
			$this->functions->set_cookie($this->session->c_anon , 1,  $expire);
		}

		// Create a new session

		$session_id = $this->session->create_new_session($query->row('member_id') , TRUE);

		// Delete old password lockouts

		$this->session->delete_password_lockout();

		// Redirect the user to the return page

		$return_path = $this->functions->fetch_site_index();

		if (isset($_POST['return_destination']))
		{
			if ($_POST['return_destination'] == 'cp')
			{
				$s = ($this->config->item('admin_session_type') != 'c') ? $this->session->userdata['session_id'] : 0;
				$return_path = $this->config->item('cp_url', FALSE).'?S='.$s;
			}
			elseif ($_POST['return_destination'] == 'other' && isset($_POST['other_url']) && stristr($_POST['other_url'], 'http'))
			{
				$return_path = $this->security->xss_clean(strip_tags($_POST['other_url']));
			}
		}

		$this->functions->redirect($return_path);
	}

	// --------------------------------------------------------------------

	/**
	 * Member Delete
	 *
	 * Delete Members
	 *
	 * @access	public
	 * @return	mixed
	 */		
	function member_delete()
	{
		if ( ! $this->cp->allowed_group('can_access_members') OR ! $this->cp->allowed_group('can_delete_members'))
		{
			show_error($this->lang->line('unauthorized_access'));
		}

		if ( ! $this->input->post('delete') OR ! is_array($this->input->post('delete')))
		{
			$this->functions->redirect(BASE.AMP.'C=members'.AMP.'M=view_all_members');
		}

		$this->load->model('member_model');

		//  Fetch member ID numbers and build the query

		$ids = array();
		$mids = array();
				
		foreach ($this->input->post('delete') as $key => $val)
		{		
			if ($val != '')
			{
				$ids[] = "member_id = '".$this->db->escape_str($val)."'";
				$mids[] = $this->db->escape_str($val);
			}		
		}
		
		$IDS = implode(" OR ", $ids);

		// SAFETY CHECK
		// Let's fetch the Member Group ID of each member being deleted
		// If there is a Super Admin in the bunch we'll run a few more safeties
				
		$super_admins = 0;
		
		$query = $this->db->query("SELECT group_id FROM exp_members WHERE ".$IDS);		
		
		foreach ($query->result_array() as $row)
		{
			if ($query->row('group_id')  == 1)
			{
				$super_admins++;			
			}
		}		
		
		if ($super_admins > 0)
		{
			// You must be a Super Admin to delete a Super Admin
		
			if ($this->session->userdata['group_id'] != 1)
			{
				show_error($this->lang->line('must_be_superadmin_to_delete_one'));
			}
			
			// You can't delete the only Super Admin
			$query = $this->member_model->count_members(1);
			
			if ($super_admins >= $query)
			{
				show_error($this->lang->line('can_not_delete_super_admin'));
			}
		}
		
		// If we got this far we're clear to delete the members
	
		$this->db->query("DELETE FROM exp_members WHERE ".$IDS);
		$this->db->query("DELETE FROM exp_member_data WHERE ".$IDS);
		$this->db->query("DELETE FROM exp_member_homepage WHERE ".$IDS);
		
		foreach($mids as $val)
		{
			$message_query = $this->db->query("SELECT DISTINCT recipient_id FROM exp_message_copies WHERE sender_id = '$val' AND message_read = 'n'");
			$this->db->query("DELETE FROM exp_message_copies WHERE sender_id = '$val'");
			$this->db->query("DELETE FROM exp_message_data WHERE sender_id = '$val'");
			$this->db->query("DELETE FROM exp_message_folders WHERE member_id = '$val'");
			$this->db->query("DELETE FROM exp_message_listed WHERE member_id = '$val'");
			
			if ($message_query->num_rows() > 0)
			{
				foreach($message_query->result_array() as $row)
				{
					$count_query = $this->db->query("SELECT COUNT(*) AS count FROM exp_message_copies WHERE recipient_id = '".$row['recipient_id']."' AND message_read = 'n'");
					$this->db->query($this->db->update_string('exp_members', array('private_messages' => $count_query->row('count') ), "member_id = '".$row['recipient_id']."'"));
				}
			}
		}

		/** ----------------------------------
		/**  Are there forum posts to delete?
		/** ----------------------------------*/
		
		if ($this->config->item('forum_is_installed') == "y")
		{
			$this->db->query("DELETE FROM exp_forum_subscriptions  WHERE ".$IDS);
			$this->db->query("DELETE FROM exp_forum_pollvotes  WHERE ".$IDS);

			$IDS = str_replace('member_id', 'admin_member_id', $IDS);
			$this->db->query("DELETE FROM exp_forum_administrators WHERE ".$IDS);
			
			$IDS = str_replace('admin_member_id', 'mod_member_id', $IDS);			
			$this->db->query("DELETE FROM exp_forum_moderators WHERE ".$IDS);

			$IDS = str_replace('mod_member_id', 'author_id', $IDS);
			$this->db->query("DELETE FROM exp_forum_topics WHERE ".$IDS);
			
			// Snag the affected topic id's before deleting the members for the update afterwards
			$query = $this->db->query("SELECT topic_id FROM exp_forum_posts WHERE ".$IDS);
			
			if ($query->num_rows() > 0)
			{
				$topic_ids = array();
				
				foreach ($query->result_array() as $row)
				{
					$topic_ids[] = $row['topic_id'];
				}
				
				$topic_ids = array_unique($topic_ids);
			}
			
			$this->db->query("DELETE FROM exp_forum_posts  WHERE ".$IDS);
			$this->db->query("DELETE FROM exp_forum_polls  WHERE ".$IDS);
	
			$IDS = str_replace('author_id', 'member_id', $IDS);
			
			// Kill any attachments
			$query = $this->db->query("SELECT attachment_id, filehash, extension, board_id FROM exp_forum_attachments WHERE ".$IDS);
			
			if ($query->num_rows()  > 0)
			{
				// Grab the upload path
				$res = $this->db->query('SELECT board_id, board_upload_path FROM exp_forum_boards');
			
				$paths = array();
				foreach ($res->result_array() as $row)
				{
					$paths[$row['board_id']] = $row['board_upload_path'];
				}
			
				foreach ($query->result_array() as $row)
				{
					if ( ! isset($paths[$row['board_id']]))
					{
						continue;
					}
					
					$file  = $paths[$row['board_id']].$row['filehash'].$row['extension'];
					$thumb = $paths[$row['board_id']].$row['filehash'].'_t'.$row['extension'];
				
					@unlink($file);
					@unlink($thumb);					
			
					$this->db->query("DELETE FROM exp_forum_attachments WHERE attachment_id = '{$row['attachment_id']}'");
				}				
			}			
	
			// Update the forum stats			
			$query = $this->db->query("SELECT forum_id FROM exp_forums WHERE forum_is_cat = 'n'");
			
		
			if ( ! class_exists('Forum'))
			{
				require PATH_MOD.'forum/mod.forum'.EXT;
				require PATH_MOD.'forum/mod.forum_core'.EXT;
			}
			
			$FRM = new Forum_Core;
			
			foreach ($query->result_array() as $row)
			{
				$FRM->_update_post_stats($row['forum_id']);
			}
			
			if (isset($topic_ids))
			{
				foreach ($topic_ids as $topic_id)
				{
					$FRM->_update_topic_stats($topic_id);
				}
			}
		}		
		
		/** -------------------------------------
		/**  Delete comments and update entry stats
		/** -------------------------------------*/
		
		$channel_ids = array();

		if ($this->db->table_exists('comment_subscriptions'))
		{
			$this->db->query("DELETE FROM exp_comment_subscriptions WHERE ".$IDS);
		}

		if ($this->db->table_exists('comments'))
		{
			$IDS = str_replace('member_id', 'author_id', $IDS);
		
			$query = $this->db->query("SELECT DISTINCT(entry_id), channel_id FROM exp_comments WHERE ".$IDS);
		
			if ($query->num_rows() > 0)
			{
				$this->db->query("DELETE FROM exp_comments WHERE ".$IDS);

				foreach ($query->result_array() as $row)
				{
					$channel_ids[] = $row['channel_id'];
				
					$query = $this->db->query("SELECT MAX(comment_date) AS max_date FROM exp_comments WHERE status = 'o' AND entry_id = '".$this->db->escape_str($row['entry_id'])."'");
				
					$comment_date = ($query->num_rows() == 0 OR ! is_numeric($query->row('max_date') )) ? 0 : $query->row('max_date') ;
				
					$query = $this->db->query("SELECT COUNT(*) AS count FROM exp_comments WHERE entry_id = '{$row['entry_id']}' AND status = 'o'");		
				
					$this->db->query("UPDATE exp_channel_titles
								SET comment_total = '".$this->db->escape_str($query->row('count') )."', recent_comment_date = '$comment_date'
								WHERE entry_id = '{$row['entry_id']}'");
				}
			}
		
			if (count($channel_ids) > 0)
			{	
				foreach (array_unique($channel_ids) as $channel_id)
				{
					$this->stats->update_comment_stats($channel_id);
				}
			}
		}

		/** ----------------------------------
		/**  Reassign Entires to Heir
		/** ----------------------------------*/
		
		$heir_id = $this->input->post('heir');
		
		if ($heir_id !== FALSE && is_numeric($heir_id))
		{
			$this->db->query("UPDATE exp_channel_titles SET author_id = '{$heir_id}' WHERE ".str_replace('member_id', 'author_id', $IDS));
			
			$query = $this->db->query("SELECT COUNT(entry_id) AS count, MAX(entry_date) AS entry_date
								 FROM exp_channel_titles
								 WHERE author_id = '{$heir_id}'");
									
			$this->db->query("UPDATE exp_members
						SET total_entries = '".$this->db->escape_str($query->row('count') )."', last_entry_date = '".$this->db->escape_str($query->row('entry_date') )."'
						WHERE member_id = '{$heir_id}'");
		}

		/* -------------------------------------------
		/* 'cp_members_member_delete_end' hook.
		/*  - Additional processing when a member is deleted through the CP
		*/
			$edata = $this->extensions->call('cp_members_member_delete_end');
			if ($this->extensions->end_script === TRUE) return;
		/*
		/* -------------------------------------------*/
				
		// Update		
		$this->stats->update_member_stats();
			
		$cp_message = (count($ids) == 1) ? $this->lang->line('member_deleted') :
										$this->lang->line('members_deleted');

		$this->session->set_flashdata('message_success', $cp_message);
		$this->functions->redirect(BASE.AMP.'C=members'.AMP.'M=view_all_members');
	}

	// --------------------------------------------------------------------

	/**
	 * Member Group Manager
	 *
	 * Member group overview
	 *
	 * @access	public
	 * @return	mixed
	 */		
	function member_group_manager()
	{
		if ( ! $this->cp->allowed_group('can_access_members') OR ! $this->cp->allowed_group('can_admin_mbr_groups'))
		{
			show_error($this->lang->line('unauthorized_access'));
		}

		$this->load->library('table');
		$this->load->library('pagination');
		$this->load->helper('form');

		$row_limit = $this->perpage;
		$offset = ($this->input->get('per_page') != '') ? $this->input->get('per_page') : 0;

		$query = $this->member_model->get_member_groups(array('can_access_cp', 'is_locked'), array(), $row_limit, $offset);	

		$groups = array(); // holder for group info
				
		foreach($query->result_array() as $row)
		{
			$group_name = $row['group_title'];
					
			if (in_array($group_name, $this->english))
			{
				$group_name = $this->lang->line(strtolower(str_replace(" ", "_", $group_name)));
			}
	
			$groups[$row['group_id']]['group_id'] = $row['group_id'];
			$groups[$row['group_id']]['title'] = $group_name;						
			$groups[$row['group_id']]['can_access_cp'] = $row['can_access_cp'];
			$groups[$row['group_id']]['security_lock'] = ($row['is_locked'] == 'y') ? $this->lang->line('locked') : $this->lang->line('unlocked');
			$groups[$row['group_id']]['member_count'] = $this->member_model->count_members($row['group_id']);
			$groups[$row['group_id']]['delete'] = ( ! in_array($row['group_id'], $this->no_delete)) ? TRUE : FALSE;
		}

		$vars['clone_group_options'] = array();
		$g_query = $this->member_model->get_member_groups();

		foreach($g_query->result_array() as $row)
		{
			$vars['clone_group_options'][$row['group_id']] = $row['group_title'];
		}

		$config = array(
				'base_url'		=> BASE.AMP.'C=members'.AMP.'M=member_group_manager',
				'total_rows'	=> $g_query->num_rows(),
				'per_page'		=> $row_limit,
				'page_query_string'	=> TRUE,
				'first_link'	=> $this->lang->line('pag_first_link'),
				'last_link'		=> $this->lang->line('pag_last_link')
			);

		$this->pagination->initialize($config);

		$vars['paginate'] = $this->pagination->create_links();

		$this->cp->set_variable('cp_page_title', $this->lang->line('member_groups'));

		$this->jquery->tablesorter('.mainTable', '{headers: {1: {sorter: false}, 5: {sorter: false}}, widgets: ["zebra"]}');
		
		$this->javascript->compile();
		
		$vars['groups'] = $groups;

        $this->cp->set_right_nav(array('create_new_member_group' => BASE.AMP.'C=members'.AMP.'M=edit_member_group'));

		$this->load->view('members/member_group_manager', $vars);
	}

	// --------------------------------------------------------------------

	/**
	 * Edit Member Group
	 *
	 * Edit/Create a member group form
	 *
	 * @access	public
	 * @return	mixed
	 */		
	function edit_member_group()
	{	
		// Only super admins can administrate member groups
		if ($this->session->userdata['group_id'] != 1)
		{
			show_error($this->lang->line('only_superadmins_can_admin_groups'));
		}

		$this->load->library('table');
		$this->load->helper('form');
		$this->load->model('channel_model');
		$this->load->model('template_model');
		$this->load->model('addons_model');
		$this->load->model('site_model');
		$this->lang->loadfile('admin');

		$this->cp->add_js_script('ui', 'accordion');

		$this->jquery->tablesorter('#edit_member_group table', '{
			headers: {1: {sorter: false}, 2: {sorter: false}},
			widgets: ["zebra"]
		}');

		$this->javascript->output('
			$(".site_prefs").hide();
			$(".site_prefs:first").show();
			$("#edit_member_group").accordion({autoHeight: false,header: "h3"});

			$("#site_list_pulldown").change(function() {
				id = $("#site_list_pulldown").val();
				$(".site_prefs").fadeOut("500", function(){
					$("#site_options_"+id).fadeIn("500");
				});
			});

		');
			
		$this->javascript->compile();
		
		$group_id = $this->input->get_post('group_id');
		$clone_id = $this->input->get_post('clone_id');
		
		$id = ($group_id == '') ? '3' : $group_id;

		// Assign the page title
		$title = ($group_id != '') ? $this->lang->line('edit_member_group') : $this->lang->line('create_member_group');

		// Fetch the Sites

		if ($this->config->item('multiple_sites_enabled') == 'y')
		{
			$sites_query = $this->site_model->get_site();
		}
		else
		{
			$sites_query = $this->site_model->get_site('1');
		}

		// Fetch the member group data

		if ($clone_id != '')
		{
			$id = $clone_id;
		}

		$query = $this->db->get_where('member_groups', array('group_id' => $id));

		$result = ($query->num_rows() == 0) ? FALSE : TRUE;
		
		$group_data = array();
		
		foreach($query->result_array() as $row)
		{
			$group_data[$row['site_id']] = $row;
		}

		$default_id = $query->row('site_id');
		
		// Translate the group title 	
		// We only translate this if it has not been edited
		
		$group_title = ($group_id == '') ? '' : $group_data[$default_id]['group_title'];
		$group_description = ($group_id == '') ? '' : $group_data[$default_id]['group_description'];
			
		if (isset($this->english[$group_title]))
		{
			$group_title = $this->lang->line(strtolower(str_replace(" ", "_", $group_title)));
		}

		if ($clone_id != '')
		{
			$group_title = '';
			$group_description = '';
			$vars['form_hidden']['clone_id'] = $clone_id;
		}

		$vars['form_hidden']['group_id'] = $group_id;
		
		//  Group name and description form fields
		$vars['group_title'] = $group_title;
		$vars['group_description'] = $group_description;
		$vars['group_id'] = $group_id;
			
		//  Group lock
	 	$vars['is_locked'] = ($group_data[$default_id]['is_locked'] == 'y') ? 'y' : 'n';

		//  Fetch the names and IDs of all channels
		$this->db->select('channel_id, site_id, channel_title');
 		$this->db->order_by('channel_title');
		$query 	= $this->db->get('channels');

		$channel_names = array();
		$channel_perms = array();
		$channel_ids	= array();
		
        if ($id == 1)
        {
			foreach($query->result_array() as $row)
			{
				$channel_names['channel_id_'.$row['channel_id']] = $row['channel_title'];
				$channel_perms[$row['site_id']]['channel_id_'.$row['channel_id']] = 'y';
			}
		}
		else
		{
			$this->db->select('channel_id');
 			$this->db->where('group_id', $id);		
			$res = $this->db->get('channel_member_groups');				
			
			if ($res->num_rows() > 0)
			{
				foreach ($res->result_array() as $row)
				{
					$channel_ids[$row['channel_id']] = TRUE;
				}
			}
									
			foreach($query->result_array() as $row)
			{
				$channel_names['channel_id_'.$row['channel_id']] = $row['channel_title'];
				$channel_perms[$row['site_id']]['channel_id_'.$row['channel_id']] = (isset($channel_ids[$row['channel_id']])) ? 'y' : 'n';
			}
		}
	
		$vars['channel_names'] = $channel_names;
		
		//  Fetch the names and IDs of all modules	
		$this->db->select('module_id, module_name');
 		$this->db->where('has_cp_backend', 'y');		
 		$this->db->order_by('module_name');
		$query = $this->db->get('modules');		

		$module_names = array();
		$module_perms = array();
		$module_ids	= array();

        if ($id == 1)
        {
			foreach($query->result_array() as $row)
			{
				$module_names['module_id_'.$row['module_id']] = $row['module_name'];
				$module_perms['module_id_'.$row['module_id']] = 'y';
			}
		}
		else
		{
			$this->db->select('module_id');
 			$this->db->where('group_id', $id);		
			$res = $this->db->get('module_member_groups');	
			
			if ($res->num_rows() > 0)
			{
				foreach ($res->result_array() as $row)
				{
					$module_ids[$row['module_id']] = TRUE;
				}
			}
						
			foreach($query->result_array() as $row)
			{
				$module_names['module_id_'.$row['module_id']] = $row['module_name'];
				$module_perms['module_id_'.$row['module_id']] = (isset($module_ids[$row['module_id']])) ? 'y' : 'n';
			}
		}
		
		$vars['module_names'] = $module_names;
		$vars['module_perms'] = $module_perms;
		
		//  Fetch the names and IDs of all template groups
		$this->db->select('group_id, group_name, site_id');
 		$this->db->order_by('group_name');
		$query = $this->db->get('template_groups');			

		$template_names = array();
		$template_perms = array();
		
		if ($id == 1)
		{
			foreach ($query->result_array() as $row)
			{
				$template_names['template_id_'.$row['group_id']] = $row['group_name'];
				$template_perms[$row['site_id']]['template_id_'.$row['group_id']] = 'y';				
			}
		}
		else
		{
			$this->db->select('template_group_id');
 			$this->db->where('group_id', $id);		
			$res = $this->db->get('template_member_groups');	

			$template_ids = array();

			if ($res->num_rows() > 0)
			{
				foreach ($res->result_array() as $row)
				{
					$template_ids[$row['template_group_id']] = TRUE;
				}
			}

			foreach($query->result_array() as $row)
			{
				$template_names['template_id_'.$row['group_id']] = $row['group_name'];
				$template_perms[$row['site_id']]['template_id_'.$row['group_id']] = (isset($template_ids[$row['group_id']])) ? 'y' : 'n';
			}
		}

		$vars['template_names'] = $template_names;

		/** ----------------------------------------------------
		/**  Assign clusters of member groups
		/** ----------------------------------------------------*/
				
		// NOTE: the associative value (y/n) is the default setting used
		// only when we are showing the "create new group" form

		$G = array(
				'site_access'	 	=> array (
												'can_view_online_system'	=> 'n',
												'can_view_offline_system'	=> 'n'
											 ),

				'mbr_account_privs' => array (
												'can_view_profiles'			=> 'n',
												'can_email_from_profile'	=> 'n',
												'include_in_authorlist'		=> 'n',
												'include_in_memberlist'		=> 'n',
												'include_in_mailinglists'	=> 'y',
												'can_delete_self'			=> 'n',
												'mbr_delete_notify_emails'	=> $this->config->item('webmaster_email')
											 ),

				'commenting_privs' => array (
												'can_post_comments'			=> 'n',
												'exclude_from_moderation'	=> 'n'
											 ),

				'search_privs'		=> array (
												'can_search'				=> 'n',
												'search_flood_control'		=> '30'
											 ),

				'priv_msg_privs'	=> array (
												'can_send_private_messages'			=> 'n',
												'prv_msg_send_limit'				=> '20',
												'prv_msg_storage_limit'				=> '60',
												'can_attach_in_private_messages'	=> 'n',
												'can_send_bulletins'				=> 'n'
											 ),

				'global_cp_access' => array (
												'can_access_cp'		 		=> 'n',
												'can_access_content'		=> 'n',
												'can_access_publish'		=> 'n',
												'can_access_edit'			=> 'n',												
												'can_access_files'	 		=> 'n',
												'can_access_design'	 		=> 'n',
												'can_access_addons'			=> 'n',
												'can_access_modules'		=> 'n',
												'can_access_extensions'		=> 'n',
												'can_access_accessories'	=> 'n',
												'can_access_plugins'		=> 'n',												
												'can_access_fieldtypes'		=> 'n',
												'can_access_members'		=> 'n',
												'can_access_admin'	  		=> 'n',
												'can_access_sys_prefs'	 	=> 'n',
												'can_access_content_prefs'	=> 'n',
												'can_access_tools'			=> 'n',
												'can_access_comm'	 		=> 'n',
												'can_access_utilities'		=> 'n',
												'can_access_data'			=> 'n',
												'can_access_logs'	 		=> 'n'												
											 ),

				'cp_admin_privs'	=> array (
												'can_admin_channels'	 	=> 'n',
												'can_admin_templates'		=> 'n',
												'can_admin_design' 			=> 'n',												
												'can_admin_members'	 		=> 'n',
												'can_admin_mbr_groups'  	=> 'n',
												'can_admin_mbr_templates'  	=> 'n',
												'can_delete_members'		=> 'n',
												'can_ban_users'		 		=> 'n',
												'can_admin_modules'	 		=> 'n'
											 ),

				'cp_email_privs' => array (
												'can_send_email'			=> 'n',
												'can_email_member_groups'	=> 'n',
												'can_email_mailinglist'		=> 'n',
												'can_send_cached_email'		=> 'n',
											 ),

				'cp_channel_privs'	=>  array(
												'can_view_other_entries'	=> 'n',
												'can_delete_self_entries'  => 'n',
												'can_edit_other_entries'	=> 'n',
												'can_delete_all_entries'	=> 'n',
												'can_assign_post_authors'  => 'n',
												'can_edit_categories'		=> 'n',
												'can_delete_categories'		=> 'n',
											 ),

				'cp_channel_post_privs'	=>  $channel_perms,

				'cp_comment_privs' => array (
												'can_moderate_comments'		=> 'n',
												'can_view_other_comments'	=> 'n',
												'can_edit_own_comments'	 => 'n',
												'can_delete_own_comments'	=> 'n',
												'can_edit_all_comments'	 => 'n',
												'can_delete_all_comments'	=> 'n'
											 ),
											
				'cp_template_access_privs' =>  $template_perms,

//				'cp_module_access_privs'	=>  $module_perms, // handled via $vars['module_names'] and $vars['module_perms']
					);

		// Super Admin Group can not be edited
		// If the form being viewed is the Super Admin one we only allow the name to be changed.
		if ($group_id == 1)
		{
			$G = array('mbr_account_privs' => array ('include_in_authorlist' => 'n', 'include_in_memberlist' => 'n'));
		}

		//  Assign items we want to highlight
		$vars['alert'] = array(
						'can_view_offline_system',
						'can_access_cp',
						'can_admin_channels',
						'can_admin_templates',
						'can_delete_members',
						'can_admin_mbr_groups',
						'can_admin_mbr_templates',
						'can_ban_users',
						'can_admin_members',
						'can_admin_design',
						'can_admin_modules',
						'can_edit_categories',
						'can_delete_categories',
						'can_delete_self'
					  );

		// Items that should be shown in an input box
		$vars['textbox'] = array(
						'search_flood_control',
						'prv_msg_send_limit',
						'prv_msg_storage_limit',
						'mbr_delete_notify_emails'
					  );

		$s = 0;
//echo '<pre>'; print_r($G); exit;
		foreach($sites_query->result_array() as $sites)
		{

			$vars['sites_dropdown'][$sites['site_id']] = $sites['site_label'];

			foreach ($G as $g_key => $g_val)
			{
				if ($g_key == 'cp_module_access_privs')
				{
					if ($s == 0)
					{
						$add = '';
					}
					else
					{
						continue;
					}
				}
				else
				{
					$add = $sites['site_id'].'_';
				}

				foreach($g_val as $key => $val)
				{
					if ($g_key == 'cp_module_access_privs')
					{
						$vars['group_data'][$sites['site_id']][$add.$key] = $group_data[$key];
					}
					elseif (isset($group_data[$sites['site_id']][$key]) && $group_data[$sites['site_id']][$key] != '')
					{
						$vars['group_data'][$sites['site_id']][$g_key][$add.$key] = $group_data[$sites['site_id']][$key];
					}
					elseif ($key == $sites['site_id'])
					{
						foreach($val as $p => $a)
						{
						$vars['group_data'][$sites['site_id']][$g_key][$add.$p] = $a;							
						}
					}
					else  // probably redundant
					{
						//$vars['group_data'][$sites['site_id']][$g_key][$add.$key] = $val;
					}					
				}
			}
			
			++$s;
		}

		//  Submit button lang key
		$vars['action'] = ($group_id == '') ? 'submit' : 'update';

		$this->cp->set_variable('cp_page_title', $title);

		$this->load->view('members/edit_member_group', $vars);
	}

	// --------------------------------------------------------------------

	/**
	 * Member Config
	 *
	 * @access	public
	 * @return	mixed
	 */		
	function member_config()
	{		
		if ( ! $this->cp->allowed_group('can_access_members') OR ! $this->cp->allowed_group('can_admin_members'))
		{
			show_error($this->lang->line('unauthorized_access'));
		}

		$this->lang->loadfile('admin');
		$this->load->library('table');
		$this->load->helper('form');

		$f_data =  array(

			'general_cfg'		=>	array(
											'allow_member_registration'	=> array('r', array('y' => 'yes', 'n' => 'no')),
											'req_mbr_activation'		=> array('s', array('none' => 'no_activation', 'email' => 'email_activation', 'manual' => 'manual_activation')),
											'require_terms_of_service'	=> array('r', array('y' => 'yes', 'n' => 'no')),
											'allow_member_localization'	=> array('r', array('y' => 'yes', 'n' => 'no')),
											'use_membership_captcha'	=> array('r', array('y' => 'yes', 'n' => 'no')),											
											'default_member_group'		=> array('f', 'member_groups'),
											'member_theme'				=> array('f', 'member_theme_menu'),
											'profile_trigger'			=> ''
											),

			'memberlist_cfg'		=>	array(
											'memberlist_order_by'		=> array('s', array('total_posts'		=> 'total_posts',
																							'screen_name'		=> 'screen_name',
																							'total_comments'	=> 'total_comments',
																							'total_entries'		=> 'total_entries',
																							'join_date'			=> 'join_date')),
											'memberlist_sort_order'		=> array('s', array('desc' => 'memberlist_desc', 'asc' => 'memberlist_asc')),
											'memberlist_row_limit'		=> array('s', array('10' => '10', '20' => '20', '30' => '30', '40' => '40', '50' => '50', '75' => '75', '100' => '100'))
											),
									
			'notification_cfg'		=>	array(
											'new_member_notification'	=> array('r', array('y' => 'yes', 'n' => 'no')),
											'mbr_notification_emails'	=> ''
											),
											
			'pm_cfg'			=>	array(
											'prv_msg_max_chars'			=> '',
											'prv_msg_html_format'		=> array('s', array('safe' => 'html_safe', 'none' => 'html_none', 'all' => 'html_all')),
											'prv_msg_auto_links'		=> array('r', array('y' => 'yes', 'n' => 'no')),
											'prv_msg_upload_path'		=> '',
											'prv_msg_max_attachments'	=> '',
											'prv_msg_attach_maxsize'	=> '',
											'prv_msg_attach_total'		=> ''
										 ),
											
			'avatar_cfg'		=>	array(
											'enable_avatars'		=> array('r', array('y' => 'yes', 'n' => 'no')),
											'allow_avatar_uploads'	=> array('r', array('y' => 'yes', 'n' => 'no')),
											'avatar_url'			=> '',
											'avatar_path'			=> '',
											'avatar_max_width'		=> '',
											'avatar_max_height'		=> '',
											'avatar_max_kb'			=> ''
											),
			'photo_cfg'		=>	array(
											'enable_photos'			=> array('r', array('y' => 'yes', 'n' => 'no')),
											'photo_url'				=> '',
											'photo_path'			=> '',
											'photo_max_width'		=> '',
											'photo_max_height'		=> '',
											'photo_max_kb'			=> ''
											),
			'signature_cfg'		=>	array(
											'allow_signatures'			=> array('r', array('y' => 'yes', 'n' => 'no')),
											'sig_maxlength'				=> '',
											'sig_allow_img_hotlink'		=> array('r', array('y' => 'yes', 'n' => 'no')),
											'sig_allow_img_upload'		=> array('r', array('y' => 'yes', 'n' => 'no')),
											'sig_img_url'				=> '',
											'sig_img_path'				=> '',
											'sig_img_max_width'			=> '',
											'sig_img_max_height'		=> '',
											'sig_img_max_kb'			=> ''
											)
			);

		$subtext = array(	
						'profile_trigger'			=> array('profile_trigger_notes'),
						'mbr_notification_emails'	=> array('separate_emails'),
						'default_member_group' 		=> array('group_assignment_defaults_to_two'),
						'avatar_path'				=> array('must_be_path'),
						'photo_path'				=> array('must_be_path'),
						'sig_img_path'				=> array('must_be_path'),
						'allow_member_localization'	=> array('allow_member_loc_notes')
					);
		
		/** -----------------------------
		/**  Blast through the array
		/** -----------------------------*/
				
		foreach ($f_data as $menu_head => $menu_array)				
		{
			$vars['menu_head'][$menu_head] = array();

			foreach ($menu_array as $key => $val)
			{

				$vars['menu_head'][$menu_head][$key]['preference'] = $this->lang->line($key, $key);
				$vars['menu_head'][$menu_head][$key]['preference_subtext'] = '';
			
				// Preference sub-heading
				if (isset($subtext[$key]))
				{
					foreach ($subtext[$key] as $sub)
					{
						$vars['menu_head'][$menu_head][$key]['preference_subtext'] = $this->lang->line($sub);
					}
				}

				$preference_controls = '';
				
				if (is_array($val))
				{
							
					if ($val['0'] == 's')
					{

						/** -----------------------------
						/** Drop-down menus
						/** -----------------------------*/

						$options = array();
						
						foreach ($val['1'] as $k => $v)
						{
							$options[$k] = $this->lang->line($v);
						}

						$preference_controls['type'] = "dropdown";
						$preference_controls['id'] = $key;
						$preference_controls['options'] = $options;
						$preference_controls['default'] = $this->config->item($key);
						}
					elseif ($val['0'] == 'r')
					{
						/** -----------------------------
						/**  Radio buttons
						/** -----------------------------*/
					
						$radios = array();
					
						foreach ($val['1'] as $k => $v)
						{
							$selected = ($k == $this->config->item($key)) ? TRUE : FALSE;

							$radios[] = array(
											'label'		=> $this->lang->line($v, "{$key}_{$k}"),
											'radio'		=> array(
																	'name' 		=> $key,
																	'id'		=> "{$key}_{$k}",
																	'value'		=> $k,
																	'checked'	=> ($k == $this->config->item($key)) ? TRUE : FALSE
																)
										  );
						}

						$preference_controls['type'] = "radio";
						$preference_controls['radio'] = $radios;
					}
					elseif ($val['0'] == 'f')
					{
						/** -----------------------------
						/**  Function calls
						/** -----------------------------*/
	
						switch ($val['1'])
						{
							case 'member_groups' :	
								$groups = $this->member_model->get_member_groups('', array('group_id !='=>'1'));
								
								$selected = ($this->config->item('default_member_group') != '') ? $this->config->item('default_member_group') : '4';
								
								$options = array();

								foreach ($groups->result() as $group)
								{
									$options[$group->group_id] = $group->group_title;
								}
		
								$preference_controls['type'] = "dropdown";
								$preference_controls['id'] = 'default_member_group';
								$preference_controls['options'] = $options;
								$preference_controls['default'] = $selected;
								
								break;
							case 'member_theme_menu' : 	
								$themes = $this->member_model->get_theme_list(PATH_MBR_THEMES);

								$options = array();

								foreach ($themes as $file=>$name)
								{
									$options[$file] = $name;
								}

								$preference_controls['type'] = "dropdown";
								$preference_controls['id'] = 'member_theme';
								$preference_controls['options'] = $options;
								$preference_controls['default'] = $this->config->item($key);
								
								break;
						}
					}
				}
				else
				{
					/** -----------------------------
					/**  Text input fields
					/** -----------------------------*/
					$item = str_replace("\\'", "'", $this->config->item($key));

					$preference_controls['type'] = "text";
					$preference_controls['data'] = array(
															'id' 	=> $key,
															'name' 	=> $key,
															'value' => $item,
															'class'	=> 'field'
														);
				}
				
				$vars['menu_head'][$menu_head][$key]['preference_controls'] = $preference_controls;
			}
		}

		$this->cp->set_variable('cp_page_title', $this->lang->line('member_cfg'));

		$this->cp->add_js_script('ui', 'accordion');

		$this->jquery->tablesorter('table', '{
			headers: {},
			widgets: ["zebra"]
		}');

		$this->javascript->output('
			$("#member_group_details").accordion({autoHeight: false,header: "h3"});
		');
			
		$this->javascript->compile();
		
		$this->load->view('members/member_config', $vars);
	}

	// --------------------------------------------------------------------

	/**
	 * Update Config
	 *
	 * Update general preferences
	 *
	 * @access	public
	 * @return	mixed
	 */		
	function update_config()
	{
		if ( ! $this->cp->allowed_group('can_access_members') OR ! $this->cp->allowed_group('can_admin_members'))
		{
			show_error($this->lang->line('unauthorized_access'));
		}
		
		$config_update = $this->config->update_site_prefs($_POST);

 		$loc = BASE.AMP.'C=members'.AMP.'M=member_config';

		if ( ! empty($config_update))
		{
			$this->load->helper('html');
			$this->session->set_flashdata('message_failure', ul($config_update, array('class' => 'bad_path_error_list')));
		}
		else
		{
			$this->session->set_flashdata('message_success', $this->lang->line('preferences_updated'));			
		}
		
		$this->functions->redirect($loc);
	}

	// --------------------------------------------------------------------

	/**
	 * Update Member Group
	 *
	 * Create/update a member group
	 *
	 * @access	public
	 * @return	mixed
	 */		
	function update_member_group()
	{
		//  Only super admins can administrate member groups
		if ($this->session->userdata['group_id'] != 1)
		{
			show_error($this->lang->line('only_superadmins_can_admin_groups'));
		}

		$edit = TRUE;
		
		$group_id = $this->input->post('group_id');
		$clone_id = $this->input->post('clone_id');

		unset($_POST['group_id']);
		unset($_POST['clone_id']);

		// Only super admins can edit the "super admin" group
		if ($group_id == 1  AND $this->session->userdata['group_id'] != 1)
		{
			show_error($this->lang->line('unauthorized_access'));
		}

		// No group name
		if ( ! $this->input->post('group_title'))
		{
			show_error($this->lang->line('missing_group_title'));
		}
		
		$return = ($this->input->get_post('return')) ? TRUE : FALSE;
		unset($_POST['return']);
		
		// New Group? Find Max
		
		if (empty($group_id))
		{
			$edit = FALSE;
			
			$query = $this->db->query("SELECT MAX(group_id) as max_group FROM exp_member_groups");
			
			$group_id = $query->row('max_group')  + 1;
		}
		
		// get existing category privileges if necessary
		
		if ($edit == TRUE)
		{
			$query = $this->db->query("SELECT site_id, can_edit_categories, can_delete_categories FROM exp_member_groups WHERE group_id = '".$this->db->escape_str($group_id)."'");
			
			$old_cat_privs = array();
			
			foreach ($query->result_array() as $row)
			{
				$old_cat_privs[$row['site_id']]['can_edit_categories'] = $row['can_edit_categories'];
				$old_cat_privs[$row['site_id']]['can_delete_categories'] = $row['can_delete_categories'];
			}
		}
		
		$query = $this->db->query("SELECT site_id FROM exp_sites");
		
		$module_ids = array();
		$channel_ids = array();
		$template_ids = array();
		$cat_group_privs = array('can_edit_categories', 'can_delete_categories');
				
		foreach($query->result_array() as $row)
		{
			$site_id = $row['site_id'];
		
			/** ----------------------------------------------------
			/**  Remove and Store Channel and Template Permissions
			/** ----------------------------------------------------*/
			
			$data = array('group_title' 		=> $this->input->post('group_title'),
						  'group_description'	=> $this->input->post('group_description'),
						  'is_locked'			=> $this->input->post('is_locked'),
						  'site_id'				=> $site_id,
						  'group_id'			=> $group_id);
							
			foreach ($_POST as $key => $val)
			{
				if (substr($key, 0, strlen($site_id.'_channel_id_')) == $site_id.'_channel_id_')
				{
					if ($val == 'y')
					{
						$channel_ids[] = substr($key, strlen($site_id.'_channel_id_'));
					}
				}
				elseif (substr($key, 0, strlen('module_id_')) == 'module_id_')
				{
					if ($val == 'y')
					{
						$module_ids[] = substr($key, strlen('module_id_'));			
					}
				}
				elseif (substr($key, 0, strlen($site_id.'_template_id_')) == $site_id.'_template_id_')
				{
					if ($val == 'y')
					{
						$template_ids[] = substr($key, strlen($site_id.'_template_id_'));						
					}
				}
				elseif (substr($key, 0, strlen($site_id.'_')) == $site_id.'_')
				{
					$data[substr($key, strlen($site_id.'_'))] = $_POST[$key];
				}
				else
				{
					continue;
				}
				
				unset($_POST[$key]);
			}

			if ($edit === FALSE)
			{	
				$this->db->query($this->db->insert_string('exp_member_groups', $data));
				
				$uploads = $this->db->query("SELECT exp_upload_prefs.id FROM exp_upload_prefs WHERE site_id = '".$this->db->escape_str($site_id)."'");
				
				if ($uploads->num_rows() > 0)
				{
					foreach($uploads->result_array() as $yeeha)
					{
						$this->db->query("INSERT INTO exp_upload_no_access (upload_id, upload_loc, member_group) VALUES ('".$this->db->escape_str($yeeha['id'])."', 'cp', '{$group_id}')");
					}
				}
				
				if ($group_id != 1)
				{
					foreach ($cat_group_privs as $field)
					{
						$privs = array(
										'member_group' => $group_id,
										'field' => $field,
										'allow' => ($data[$field] == 'y') ? TRUE : FALSE,
										'site_id' => $site_id,
										'clone_id' => $clone_id
									);

						$this->_update_cat_group_privs($privs);	
					}
				}
				
				$cp_message = $this->lang->line('member_group_created').NBS.NBS.$_POST['group_title'];			
			}
			else
			{			
				unset($data['group_id']);
				
				$this->db->query($this->db->update_string('exp_member_groups', $data, "group_id = '$group_id' AND site_id = '{$site_id}'"));
				
				if ($group_id != 1)
				{
					// update category group discrete privileges

					foreach ($cat_group_privs as $field)
					{
						// only modify category group privs if value changed, so we do not
						// globally overwrite existing defined privileges carelessly

						if ($old_cat_privs[$site_id][$field] != $data[$field])
						{
							$privs = array(
											'member_group' => $group_id,
											'field' => $field,
											'allow' => ($data[$field] == 'y') ? TRUE : FALSE,
											'site_id' => $site_id,
											'clone_id' => $clone_id
										);
	
							$this->_update_cat_group_privs($privs);						
						}
					}
				}
				
				$cp_message = $this->lang->line('member_group_updated').NBS.NBS.$_POST['group_title'];
			}
		}

		// Update groups
		
		$this->db->query("DELETE FROM exp_channel_member_groups WHERE group_id = '$group_id'");
		$this->db->query("DELETE FROM exp_module_member_groups WHERE group_id = '$group_id'");
		$this->db->query("DELETE FROM exp_template_member_groups WHERE group_id = '$group_id'");

		if (count($channel_ids) > 0)
		{
			foreach ($channel_ids as $val)
			{
				$this->db->query("INSERT INTO exp_channel_member_groups (group_id, channel_id) VALUES ('$group_id', '$val')");
			}
		}
			
		if (count($module_ids) > 0)
		{
			foreach ($module_ids as $val)
			{
				$this->db->query("INSERT INTO exp_module_member_groups (group_id, module_id) VALUES ('$group_id', '$val')");
			}
		}
		
		if (count($template_ids) > 0)
		{
			foreach ($template_ids as $val)
			{
				$this->db->query("INSERT INTO exp_template_member_groups (group_id, template_group_id) VALUES ('$group_id', '$val')");
			}
	 	}	
		
		// Update CP log
		
		$this->logger->log_action($cp_message);			

  		$_POST['group_id'] = $group_id;

		$this->session->set_flashdata('message_success', $cp_message);
		$this->functions->redirect(BASE.AMP.'C=members'.AMP.'M=member_group_manager');
	}

	// --------------------------------------------------------------------

	/**
	 * Update Category Group Privileges
	 *
	 * Updates exp_category_groups privilege lists for
	 * editing and deleting categories
	 *
	 * @access	public
	 * @return	mixed
	 */		
	function _update_cat_group_privs($params)
	{
		if ( ! is_array($params) OR empty($params))
		{
			return FALSE;
		}

		$expected = array('member_group', 'field', 'allow', 'site_id', 'clone_id');
		
		// turn parameters into variables
		
		foreach ($expected as $key)
		{
			// naughty!
			
			if ( ! isset($params[$key]))
			{
				return FALSE;
			}
			
			$$key = $params[$key];
		}
		
		$query = $this->db->query("SELECT group_id, ".$this->db->escape_str($field)." FROM exp_category_groups WHERE site_id = '".$this->db->escape_str($site_id)."'");
		
		// nothing to do?
		
		if ($query->num_rows() == 0)
		{
			return FALSE;
		}

		foreach ($query->result_array() as $row)
		{
			$can_do = explode('|', rtrim($row[$field], '|'));

			if ($allow === TRUE)
			{
				if (is_numeric($clone_id))
				{
					if (in_array($clone_id, $can_do) OR $clone_id == 1)
					{
						$can_do[] = $member_group;
					}						
				}
				elseif ($clone_id === FALSE)
				{
					$can_do[] = $member_group;
				}
			}
			else
			{
				$can_do = array_diff($can_do, array($member_group));
			}

			$this->db->query($this->db->update_string('exp_category_groups', array($field => implode('|', $can_do)), "group_id = '{$row['group_id']}'"));
		}
	}

	// --------------------------------------------------------------------

	/**
	 * Delete member group confirm
	 *
	 * Warning message shown when you try to delete a group
	 *
	 * @access	public
	 * @return	mixed
	 */		
	function delete_member_group_conf()
	{
		//  Only super admins can delete member groups
		if ($this->session->userdata['group_id'] != 1)
		{
			show_error($this->lang->line('only_superadmins_can_admin_groups'));
		}		

		if ( ! $group_id = $this->input->get_post('group_id'))
		{
			return FALSE;
		}
		
		// You can't delete these groups
		if (in_array($group_id, $this->no_delete))
		{
			show_error($this->lang->line('unauthorized_access'));
		}
		
		$this->load->model('member_model');
		$this->load->helper('form');
		
		// Are there any members that are assigned to this group?
		$vars['member_count'] = $this->member_model->count_members($group_id);

		$query = $this->db->query("SELECT group_title FROM exp_member_groups WHERE site_id = '".$this->db->escape_str($this->config->item('site_id'))."' AND group_id = '".$this->db->escape_str($group_id)."'");
		$vars['group_title'] = $query->row('group_title');
		
		$vars['group_id'] = $group_id;
		
		$vars['form_hidden']['group_id'] = $group_id;
		$vars['form_hidden']['reassign'] = ($vars['member_count'] > 0) ? 'y' : 'n';

		if ($vars['member_count'] > 0)
		{
			$query = $this->db->query("SELECT group_title, group_id FROM exp_member_groups WHERE site_id = '".$this->db->escape_str($this->config->item('site_id'))."' AND group_id != '{$group_id}' order by group_title");
				
			foreach ($query->result() as $row)
			{
				$group_name = $row->group_title;
						
				if (in_array($group_name, $this->english))
				{
					$group_name = $this->lang->line(strtolower(str_replace(" ", "_", $group_name)));
				}
						
				$vars['new_group_id'][$row->group_id] = $group_name;
			}		
		}			

		$this->cp->set_variable('cp_page_title', $this->lang->line('delete_member_group'));
			
		$this->javascript->compile();
		
		$this->load->view('members/delete_member_group_conf', $vars);
	}

	// --------------------------------------------------------------------

	/**
	 * Delete Member Group
	 *
	 * @access	public
	 * @return	mixed
	 */		
	function delete_member_group()
	{
		// Only super admins can delete member groups
		if ($this->session->userdata['group_id'] != 1)
		{
			show_error($this->lang->line('only_superadmins_can_admin_groups'));
		}

		if ( ! $group_id = $this->input->post('group_id'))
		{
			return FALSE;
		}
				
		if (in_array($group_id, $this->no_delete))
		{
			show_error($this->lang->line('unauthorized_access'));
		}
		
		$this->load->model('member_model');
			
		if ($this->input->get_post('reassign') == 'y' AND $this->input->get_post('new_group_id') != FALSE)
		{
			$new_group = $this->input->get_post('new_group_id');
		}
		else
		{
			$new_group = '';	
		}

		$this->member_model->delete_member_group($group_id, $new_group);

		$this->session->set_flashdata('message_success', $this->lang->line('member_group_deleted'));
		$this->functions->redirect(BASE.AMP.'C=members'.AMP.'M=member_group_manager');
	}	

	// --------------------------------------------------------------------

	/**
	 * New Member Form
	 *
	 * Create a member profile form
	 *
	 * @access	public
	 * @return	mixed
	 */		
	function new_member_form()
	{
		if ( ! $this->cp->allowed_group('can_access_members') OR ! $this->cp->allowed_group('can_admin_members'))
		{
			show_error($this->lang->line('unauthorized_access'));
		}		
		
		$this->load->library('form_validation');
		$this->load->helper(array('form', 'string'));
		$this->lang->loadfile('myaccount');
		$this->load->library('table');
		
		$config = array(
						array(
							'field'  => 'username', 
							'label'  => 'lang:username', 
							'rules'  => 'required|valid_username[new]'
						),
						array(
							'field'  => 'screen_name',
							'label'  => 'lang:screen_name',
							'rules'  => 'valid_screen_name[new]'
						),
						array(
							'field'  => 'password', 
							'label'  => 'lang:password', 
							'rules'  => 'required|valid_password[username]'
						),
						array(
							'field'  => 'password_confirm', 
							'label'  => 'lang:password_confirm', 
							'rules'  => 'required|matches[password]'
						),
						array(
			   				'field'  => 'email', 
			   				'label'  => 'lang:email', 
			   				'rules'  => 'trim|required|valid_user_email[new]'
						),
						array(
			   				'field'  => 'group_id', 
			   				'label'  => 'lang:member_group_assignment', 
			   				'rules'  => 'required|integer'
						)
		            );

		$this->form_validation->set_rules($config);
		$this->form_validation->set_error_delimiters('<br /><span class="notice">', '</span>');
		
		$this->cp->set_variable('cp_page_title', $this->lang->line('register_member'));

		if ($this->form_validation->run() === FALSE)
		{
			$this->javascript->compile();

			$is_locked = ($this->session->userdata['group_id'] == 1) ? array() : array('is_locked' => 'n');
			$member_groups = $this->member_model->get_member_groups('', $is_locked);

			$vars['member_groups'] = array();

			foreach($member_groups->result() as $group)
			{
				// construct member_groups dropdown associative array
				$vars['member_groups'][$group->group_id] = $group->group_title;
			}

			$this->load->view('members/register', $vars);
		}
		else
		{
			$this->_register_member();
		}
	}

	// --------------------------------------------------------------------

	/**
	 * Register Member
	 *
	 * Create a member profile
	 *
	 * @access	public
	 * @return	mixed
	 */		
	function _register_member()
	{
		$this->load->helper('security');

		$data = array();

		if ($this->input->post('group_id'))
		{
			if ( ! $this->cp->allowed_group('can_admin_mbr_groups'))
			{
				show_error($this->lang->line('unauthorized_access'));
			}

			$data['group_id'] = $this->input->post('group_id');
		}

		// -------------------------------------------
		// 'cp_members_member_create_start' hook.
		//  - Take over member creation when done through the CP
		//  - Added 1.4.2
		//
			$edata = $this->extensions->call('cp_members_member_create_start');
			if ($this->extensions->end_script === TRUE) return;
		//
		// -------------------------------------------

		// If the screen name field is empty, we'll assign is
		// from the username field.

		$data['screen_name'] = ($this->input->post('screen_name')) ? $this->input->post('screen_name') : $this->input->post('username');

		// Assign the query data

		$data['username'] 	= $this->input->post('username');
		$data['password']	= do_hash($this->input->post('password'));
		$data['email']		= $this->input->post('email');
		$data['ip_address']	= $this->input->ip_address();
		$data['unique_id']	= random_string('encrypt');
		$data['join_date']	= $this->localize->now;
		$data['language'] 	= $this->config->item('deft_lang');
		$data['timezone'] 	= ($this->config->item('default_site_timezone') && $this->config->item('default_site_timezone') != '') ? $this->config->item('default_site_timezone') : $this->config->item('server_timezone');
		$data['daylight_savings'] = ($this->config->item('default_site_dst') && $this->config->item('default_site_dst') != '') ? $this->config->item('default_site_dst') : $this->config->item('daylight_savings');
		$data['time_format'] = ($this->config->item('time_format') && $this->config->item('time_format') != '') ? $this->config->item('time_format') : 'us';

		// Was a member group ID submitted?

		$data['group_id'] = ( ! $this->input->post('group_id')) ? 2 : $_POST['group_id'];

		$member_id = $this->member_model->create_member($data);

		// Write log file

		$message = $this->lang->line('new_member_added');
		$this->logger->log_action($message.NBS.NBS.stripslashes($data['username']));

		// -------------------------------------------
		// 'cp_members_member_create' hook.
		//  - Additional processing when a member is created through the CP
		//
			$edata = $this->extensions->call('cp_members_member_create', $member_id, $data);
			if ($this->extensions->end_script === TRUE) return;
		//
		// -------------------------------------------

		// Update Stats
		$this->stats->update_member_stats();

		$this->session->set_flashdata(array(
			'message_success' => $message.NBS.'<b>'.stripslashes($data['username']).'</b>',
			'username' => stripslashes($data['screen_name'])
		));
		
		$this->functions->redirect(BASE.AMP.'C=members'.AMP.'M=view_all_members');
	}

	// --------------------------------------------------------------------

	/**
	 * Member Banning
	 *
	 * Member banning forms
	 *
	 * @access	public
	 * @return	mixed
	 */		
	function member_banning()
	{
		if ( ! $this->cp->allowed_group('can_access_members') OR ! $this->cp->allowed_group('can_ban_users'))
		{
			show_error($this->lang->line('unauthorized_access'));
		}
		
		$this->load->library('table');
		
		$banned_ips	= $this->config->item('banned_ips');
		$banned_emails  = $this->config->item('banned_emails');
		$banned_usernames = $this->config->item('banned_usernames');
		$banned_screen_names = $this->config->item('banned_screen_names');

		$vars['banned_ips'] = '';
		$vars['banned_emails'] = '';
		$vars['banned_usernames'] = '';
		$vars['banned_screen_names'] = '';
		$vars['ban_action'] = $this->config->item('ban_action');
		$vars['ban_message'] = $this->config->item('ban_message');
		$vars['ban_destination'] = $this->config->item('ban_destination');
		
		$out		= '';
		$ips		= '';
		$email  	= '';
		$users  	= '';
		$screens	= '';
		
		if ($banned_ips != '')
		{			
			foreach (explode('|', $banned_ips) as $val)
			{
				$vars['banned_ips'] .= $val.NL;
			}
		}
		
		if ($banned_emails != '')
		{						
			foreach (explode('|', $banned_emails) as $val)
			{
				$vars['banned_emails'] .= $val.NL;
			}
		}
		
		if ($banned_usernames != '')
		{						
			foreach (explode('|', $banned_usernames) as $val)
			{
				$vars['banned_usernames'] .= $val.NL;
			}
		}

		if ($banned_screen_names != '')
		{						
			foreach (explode('|', $banned_screen_names) as $val)
			{
				$vars['banned_screen_names'] .= $val.NL;
			}
		}

		$this->cp->set_variable('cp_page_title', $this->lang->line('user_banning'));

		$this->load->helper('form');

		$this->load->view('members/member_banning', $vars);
	}

	// --------------------------------------------------------------------

	/**
	 * Update Banning Data
	 *
	 * @access	public
	 * @return	mixed
	 */		
	function update_banning_data()
	{
		if ( ! $this->cp->allowed_group('can_access_members') OR ! $this->cp->allowed_group('can_ban_users'))
		{
			show_error($this->lang->line('unauthorized_access'));
		}

		$this->load->model('site_model');
		
		foreach ($_POST as $key => $val)
		{
			$_POST[$key] = stripslashes($val);
		}
	
		$this->load->helper('string');
		$this->load->model('site_model');

		$banned_ips				= str_replace(NL, '|', $_POST['banned_ips']);
		$banned_emails 			= str_replace(NL, '|', $_POST['banned_emails']);
		$banned_usernames 		= str_replace(NL, '|', $_POST['banned_usernames']);
		$banned_screen_names 	= str_replace(NL, '|', $_POST['banned_screen_names']);
		
		$destination = ($_POST['ban_destination'] == 'http://') ? '' : $_POST['ban_destination'];
		
		$data = array(	
						'banned_ips'	  		=> $banned_ips,
						'banned_emails'			=> $banned_emails,
						'banned_emails'			=> $banned_emails,
						'banned_usernames'		=> $banned_usernames,
						'banned_screen_names'	=> $banned_screen_names,
						'ban_action'	  		=> $this->input->post('ban_action'),
						'ban_message'	 		=> $this->input->post('ban_message'),
						'ban_destination' 		=> $destination
					 );
				
		//  Preferences Stored in Database For Site
		$query = $this->site_model->get_site();

		foreach($query->result() AS $row)
		{
			$prefs = array_merge(unserialize(base64_decode($row->site_system_preferences)), $data);
			
			$this->site_model->update_site_system_preferences($prefs);
		}
		
		$this->session->set_flashdata('message_success', $this->lang->line('ban_preferences_updated'));		
		$this->functions->redirect(BASE.AMP.'C=members'.AMP.'M=member_banning');
	}

	// --------------------------------------------------------------------

	/**
	 * Custom Profile Fields
	 *
	 * This function show a list of current member fields and the
	 * form that allows you to create a new field.
	 *
	 * @access	public
	 * @return	mixed
	 */		
	function custom_profile_fields($group_id = '')
	{
		if ( ! $this->cp->allowed_group('can_access_members') OR ! $this->cp->allowed_group('can_admin_members'))
		{
			show_error($this->lang->line('unauthorized_access'));
		}		

		// Fetch language file
		// There are some lines in the publish administration language file that we need.

		$this->lang->loadfile('admin_content');
		$this->load->library('table');

		$vars['fields'] = $this->member_model->get_custom_member_fields();

		$this->cp->set_variable('cp_page_title', $this->lang->line('custom_profile_fields'));

		$this->jquery->tablesorter('.mainTable', '{headers: {3: {sorter: false}, 4: {sorter: false}},	widgets: ["zebra"]}');

		$this->javascript->compile();
		
		$this->cp->set_right_nav(array('create_new_profile_field' => BASE.AMP.'C=members'.AMP.'M=edit_profile_field'));
		
		$this->load->view('members/custom_profile_fields', $vars);
	}

	// --------------------------------------------------------------------

	/**
	 * Edit Profile Field
	 *
	 * This function lets you edit an existing custom field
	 *
	 * @access	public
	 * @return	mixed
	 */		
	function edit_profile_field()
	{
		if ( ! $this->cp->allowed_group('can_access_members') OR ! $this->cp->allowed_group('can_admin_members'))
		{
			show_error($this->lang->line('unauthorized_access'));
		}

		$this->load->library('form_validation');
		$this->load->model('member_model');
		$this->load->helper('form');
        $this->load->library('table');

		// Fetch language file
		// There are some lines in the publish administration language file that we need.
		$this->lang->loadfile('admin_content');

		$this->cp->set_breadcrumb(BASE.AMP.'C=members'.AMP.'M=custom_profile_fields', $this->lang->line('custom_profile_fields'));

		$type = ($m_field_id = $this->input->get_post('m_field_id')) ? 'edit' : 'new';

		$total_fields = '';
		
		if ($type == 'new')
		{
			$query = $this->db->count_all('member_fields');
			$total_fields = $query + 1;
			$vars['submit_label'] = $this->lang->line('submit');
		}
		else
		{
			$vars['submit_label'] = $this->lang->line('update');
		}

		$query = $this->db->get_where('member_fields', array('m_field_id'=>$m_field_id));

		if ($query->num_rows() == 0)
		{
			foreach ($this->db->list_fields('member_fields') as $f)
			{
				$$f = '';
			}
		}
		else
		{
			foreach ($query->row_array() as $key => $val)
			{
				$$key = $val;
			}
		}
		
		$vars['hidden_form_fields'] = array(
											'm_field_id' => $m_field_id,
											'cur_field_name' => $m_field_name
											);		

		$title = ($type == 'edit') ? 'edit_member_field' : 'create_member_field';

		// Field values
		// If a validation value is found, use it first, otherwise drop to the database provided value

		if ($type == 'new')
		{
			$m_field_order = $total_fields;
		}

		if ($m_field_width == '')
		{
			$m_field_width = '100%';
		}
		
		if ($m_field_maxl == '')
		{
			$m_field_maxl = '100';
		}

		if ($m_field_ta_rows == '')
		{
			$m_field_ta_rows = '10';
		}

		if ($m_field_required == '')
		{
			$m_field_required = 'n';
		}

		if ($m_field_public == '')
		{
			$m_field_public = 'y';
		}
		
		if ($m_field_reg == '')
		{
			$m_field_reg = 'n';
		}
	
		$vars['m_field_name'] = $m_field_name;
		$vars['m_field_label'] = $m_field_label;
		$vars['m_field_description'] = $m_field_description;
		$vars['m_field_order'] = $m_field_order;
		$vars['m_field_width'] = $m_field_width;
		$vars['m_field_maxl'] = $m_field_maxl;
		$vars['m_field_ta_rows'] = $m_field_ta_rows;
		$vars['m_field_list_items'] = $m_field_list_items;

		/** ---------------------------------
		/**  Field type
		/** ---------------------------------*/
		$vars['text_js'] = ($type == 'edit') ? 'none' : 'block';
		$vars['textarea_js'] = 'none';
		$vars['select_js'] = 'none';
		$vars['select_opt_js'] = 'none';

		switch ($m_field_type)
		{
			case 'select'	: $vars['select_js'] = 'block'; $vars['select_opt_js'] = 'block';
				break;
			case 'textarea' : $vars['textarea_js'] = 'block';
				break;
			case 'text'	 : $vars['text_js'] = 'block';
				break;
		}

		/**  Create the pull-down menu **/
		
		$vars['m_field_type_options'] = array(
											'text'=>$this->lang->line('text_input'),
											'textarea'=>$this->lang->line('textarea'),
											'select'=>$this->lang->line('select_list')
											);
		$vars['m_field_type'] = $m_field_type;

		/**  Field formatting **/
		
		$vars['m_field_fmt_options'] = array(
											'none'=>$this->lang->line('none'),
											'br'=>$this->lang->line('auto_br'),
											'xhtml'=>$this->lang->line('xhtml')
											);											
		$vars['m_field_fmt'] = $m_field_fmt;

		/**  Is field required? **/
		
		$vars['m_field_required_options'] = array(
		                                        'n'    => lang('no'),
		                                        'y'   => lang('yes') 
		                                        );
		                                        
        $vars['m_field_required'] = $m_field_required;

		/**  Is field public? **/
		
		$vars['m_field_public_options'] = array(
                                                'n'    => lang('no'),
                                                'y'   => lang('yes')
		                                        );
        
        $vars['m_field_public'] = $m_field_public;


		/**  Is field visible in reg page? **/

        $vars['m_field_reg_options'] = array(
                                                'n'    => lang('no'),
                                                'y'   => lang('yes')
		                                        );

        $vars['m_field_reg'] = $m_field_reg;

		$this->cp->set_variable('cp_page_title', $this->lang->line($title));

		$additional = '<script type="text/javascript">
					function showhide_element(id)
					{
						// set everything hidden
						document.getElementById("text_block").style.display = "none";
						document.getElementById("textarea_block").style.display = "none";
						document.getElementById("select_block").style.display = "none";
						
						// reveal the shown element
						document.getElementById(id+"_block").style.display = "block";
					}
			</script>';
		$this->cp->add_to_foot($additional);

		$this->javascript->compile();
				
		$this->load->view('members/edit_profile_field', $vars);
	}


	function _validate_custom_field($edit)
	{
		$this->load->library('form_validation');
		
		$is_edit = ($edit == TRUE) ? 'y' : 'n';
		$this->form_validation->set_rules("m_field_name", 'lang:fieldname', 'required|callback__valid_fieldname['.$is_edit.']');
		$this->form_validation->set_rules("m_field_label", 'lang:fieldlabel', 'required');

			//$error[] = $this->lang->line('no_field_name');
			//$error[] = $this->lang->line('no_field_label');


		$this->form_validation->set_rules("m_field_description", '', '');
		$this->form_validation->set_rules("m_field_order", '', '');
		$this->form_validation->set_rules("m_field_width", '', '');	
		$this->form_validation->set_rules("m_field_list_items", '', '');				
		$this->form_validation->set_rules("m_field_maxl", '', '');
		$this->form_validation->set_rules("m_field_ta_rows", '', '');
		$this->form_validation->set_rules("m_field_fmt", '', '');
		$this->form_validation->set_rules("m_field_required", '', '');
		$this->form_validation->set_rules("m_field_public", '', '');
		$this->form_validation->set_rules("m_field_reg", '', '');
		
		$this->form_validation->set_error_delimiters('<br /><span class="notice">', '</span>');
		
	}

	function _valid_fieldname($str, $edit)
	{
		$this->lang->loadfile('admin_content');

		if (in_array($str, $this->cp->invalid_custom_field_names()))
		{
			$this->form_validation->set_message('_valid_fieldname', $this->lang->line('reserved_word'));
			return FALSE;
		}

		if (preg_match('/[^a-z0-9\_\-]/i', $str))
		{
			$this->form_validation->set_message('_valid_fieldname', $this->lang->line('invalid_characters'));
			return FALSE;
		}
				
		// Is the field name taken?
		
		$this->db->where('m_field_name', $str);
		$this->db->from('member_fields');
		$count =  $this->db->count_all_results();
		
		if (($edit == 'n' OR ($edit == 'y' && $str != $this->input->post('cur_field_name')))
			&& $count  > 0)
		{
			$this->form_validation->set_message('_valid_fieldname', $this->lang->line('duplicate_field_name'));
			return FALSE;
		}
		
		return TRUE;
		
	}


	// --------------------------------------------------------------------

	/**
	 * Update Profile Fields
	 *
	 * This function alters the "exp_member_data" table, adding
	 * the new custom fields.
	 *
	 * @access	public
	 * @return	mixed
	 */		
	function update_profile_fields()
	{
		if ( ! $this->cp->allowed_group('can_access_members') OR ! $this->cp->allowed_group('can_admin_members'))
		{
			show_error($this->lang->line('unauthorized_access'));
		}

		// If the $field_id variable is present we are editing an
		// existing field, otherwise we are creating a new one
		
		$edit = (isset($_POST['m_field_id']) AND $_POST['m_field_id'] != '') ? TRUE : FALSE;

		$this->_validate_custom_field($edit);

		if ($this->form_validation->run() === FALSE)
		{
			return $this->edit_profile_field();
		}			

		$this->lang->loadfile('admin_content');
		$this->load->model('member_model');

		unset($_POST['cur_field_name']);		

		if ($this->input->post('m_field_list_items') != '')
		{
			// Load the string helper
			$this->load->helper('string');

			$_POST['m_field_list_items'] = quotes_to_entities($_POST['m_field_list_items']);
		}

		// Construct the query based on whether we are updating or inserting
		if ($edit === TRUE)
		{
			$n = $_POST['m_field_maxl'];
		
			if ($_POST['m_field_type'] == 'text')
			{
				if ( ! is_numeric($n) OR $n == '' OR $n == 0)
				{
					$n = '100';
				}
			
				$f_type = 'varchar('.$n.') NULL DEFAULT NULL';
			}
			else
			{
				$f_type = 'text NULL DEFAULT NULL';
			}
		
			$this->db->query("ALTER table exp_member_data CHANGE m_field_id_".$_POST['m_field_id']." m_field_id_".$_POST['m_field_id']." $f_type");			
					
			$id = $_POST['m_field_id'];
			unset($_POST['m_field_id']);

			$this->db->query($this->db->update_string('exp_member_fields', $_POST, 'm_field_id='.$id));
		}
		else
		{
			if ($_POST['m_field_order'] == 0 OR $_POST['m_field_order'] == '')
			{
				$query = $this->member_model->count_records('member_fields');
			
				$total = $query->row('count')  + 1;
			
				$_POST['m_field_order'] = $total;
			}

			$n = $_POST['m_field_maxl'];
		
			if ($_POST['m_field_type'] == 'text')
			{
				if ( ! is_numeric($n) OR $n == '' OR $n == 0)
				{
					$n = '100';
				}
			
				$f_type = 'varchar('.$n.') NULL DEFAULT NULL';
			}
			else
			{
				$f_type = 'text NULL DEFAULT NULL';
			}
			
			unset($_POST['m_field_id']);

			$this->db->query($this->db->insert_string('exp_member_fields', $_POST));
									
			$this->db->query('ALTER table exp_member_data add column m_field_id_'.$this->db->insert_id().' '.$f_type);
			
			$sql = "SELECT exp_members.member_id
					FROM exp_members
					LEFT JOIN exp_member_data ON exp_members.member_id = exp_member_data.member_id
					WHERE exp_member_data.member_id IS NULL
					ORDER BY exp_members.member_id";
			
			$query = $this->db->query($sql);
			
			if ($query->num_rows() > 0)
			{
				foreach ($query->result_array() as $row)
				{
					$this->db->query("INSERT INTO exp_member_data (member_id) values ('{$row['member_id']}')");
				}
			}
		}
	
	
		$cp_message = ($edit) ? $this->lang->line('field_updated') : $this->lang->line('field_created');
		$this->session->set_flashdata('message_success', $cp_message);
		$this->functions->redirect(BASE.AMP.'C=members'.AMP.'M=custom_profile_fields');
	}

	// --------------------------------------------------------------------

	/**
	 * Delete Profile Field Confirm
	 *
	 * Warning message if you try to delete a custom profile field
	 *
	 * @access	public
	 * @return	mixed
	 */		
	function delete_profile_field_conf()
	{
		if ( ! $this->cp->allowed_group('can_access_members') OR ! $this->cp->allowed_group('can_admin_members'))
		{
			show_error($this->lang->line('unauthorized_access'));
		}

		if ( ! ($m_field_id = $this->input->get_post('m_field_id')))
		{
			return FALSE;
		}
		
		$this->lang->loadfile('admin_content');
		$this->load->helper('form');

		$this->db->select('m_field_label');
		$this->db->from('member_fields');
		$this->db->where('m_field_id', $m_field_id);
		$query = $this->db->get();
		
		$vars['form_action'] = 'C=members'.AMP.'M=delete_profile_field'.AMP.'m_field_id='.$m_field_id;
		$vars['form_hidden'] = array('m_field_id'=>$m_field_id);
		$vars['field_name'] = $query->row('m_field_label');
				
		$this->cp->set_variable('cp_page_title', $this->lang->line('delete_field'));
		
		$this->load->view('members/delete_profile_fields_confirm', $vars);
	}

	// --------------------------------------------------------------------

	/**
	 * Delete member profile field
	 *
	 * @access	public
	 * @return	mixed
	 */		
	function delete_profile_field()
	{
		if ( ! $this->cp->allowed_group('can_access_members') OR ! $this->cp->allowed_group('can_admin_members'))
		{
			show_error($this->lang->line('unauthorized_access'));
		}

		if ( ! $m_field_id = $this->input->get_post('m_field_id'))
		{
			return false;
		}
		
		$query = $this->db->query("SELECT m_field_label FROM exp_member_fields WHERE m_field_id = '$m_field_id'");
		$m_field_label = $query->row('m_field_label') ;
				
		$this->db->query("ALTER TABLE exp_member_data DROP COLUMN m_field_id_".$m_field_id);
		$this->db->query("DELETE FROM exp_member_fields WHERE m_field_id = '$m_field_id'");
		
		$cp_message = $this->lang->line('profile_field_deleted').NBS.NBS.$m_field_label;
		$this->logger->log_action($cp_message);		

		$this->session->set_flashdata('message_success', $cp_message);
		$this->functions->redirect(BASE.AMP.'C=members'.AMP.'M=custom_profile_fields');
	}

	// --------------------------------------------------------------------

	/**
	 * Edit Field Order
	 *
	 * @access	public
	 * @return	mixed
	 */		
	function edit_field_order()
	{
		if ( ! $this->cp->allowed_group('can_access_members') OR ! $this->cp->allowed_group('can_admin_members'))
		{
			show_error($this->lang->line('unauthorized_access'));
		}

		$this->load->model('member_model');
		$this->lang->loadfile('admin_content');
		$this->load->library('table');
		$this->load->helper('form');

		$custom_fields = $this->member_model->get_custom_member_fields();
		
		$fields = array();
		
		foreach ($custom_fields->result() as $field)
		{
			$fields[] = array(
								'id'	=> $field->m_field_id,
								'label'	=> $field->m_field_label,
								'name'	=> $field->m_field_name,
								'value'	=> $field->m_field_order
							);
		}
				
		$vars['fields'] = $fields;
		
		$this->cp->set_variable('cp_page_title', $this->lang->line('edit_field_order'));
		$this->cp->set_breadcrumb(BASE.AMP.'C=members'.AMP.'M=custom_profile_fields', $this->lang->line('custom_profile_fields'));

		$this->load->view('members/edit_field_order', $vars);
	}

	// --------------------------------------------------------------------

	/**
	 * Update field order
	 *
	 * This function receives the field order submission
	 *
	 * @access	public
	 * @return	mixed
	 */		
	function update_field_order()
	{
		if ( ! $this->cp->allowed_group('can_access_members') OR ! $this->cp->allowed_group('can_admin_members'))
		{
			show_error($this->lang->line('unauthorized_access'));
		}
				
		foreach ($_POST as $key => $val)
		{
			$this->db->set('m_field_order', $val);
			$this->db->where('m_field_name', $key);
			$this->db->update('member_fields');
		}

		$this->session->set_flashdata('message_success', $this->lang->line('field_order_updated'));
		$this->functions->redirect(BASE.AMP.'C=members'.AMP.'M=edit_field_order');
	}

	// --------------------------------------------------------------------

	/**
	 * IP Search
	 *
	 * IP Search Form
	 *
	 * @access	public
	 * @return	mixed
	 */		
	function ip_search()
	{
		if ( ! $this->cp->allowed_group('can_access_members') OR ! $this->cp->allowed_group('can_admin_members'))
		{
			show_error($this->lang->line('unauthorized_access'));
		}
		
		$message = '';
		$ip = ($this->input->get_post('ip_address') != FALSE) ? str_replace('_', '.',$this->input->get_post('ip_address')) : '';

		if ($this->input->get_post('error') == 2)
		{
			$message = $this->lang->line('ip_search_no_results');
		}
		elseif ($this->input->get_post('error') == 1)
		{
			$message = $this->lang->line('ip_search_too_short');
		}
		
		$this->load->helper('form');
        $this->load->library('table');

		$this->cp->set_variable('cp_page_title', $this->lang->line('ip_search'));
		
		$this->javascript->compile();

		$vars['message'] = $message;

		$this->load->view('members/ip_search', $vars);
	}

	// --------------------------------------------------------------------

	/**
	 * Do IP Search
	 *
	 * Executes the search for IP address
	 *
	 * @access	public
	 * @return	mixed
	 */		
	function do_ip_search()
	{
		if ( ! $this->cp->allowed_group('can_access_members') OR ! $this->cp->allowed_group('can_admin_members'))
		{
			show_error($this->lang->line('unauthorized_access'));
		}

		$this->lang->loadfile('members');
		$this->load->library('table');
		$this->load->library('pagination');
		$this->load->helper(array('form', 'url'));
		$this->load->model('member_model');

		$grand_total = 0;

		$ip = str_replace('_', '.', $this->input->get_post('ip_address'));
		$url_ip = str_replace('.', '_', $ip);
	
		if ($ip == '')
		{
			$this->functions->redirect(BASE.AMP.'C=members'.AMP.'M=ip_search');
		}
	
		if (strlen($ip) < 3)
		{
			$this->functions->redirect(BASE.AMP.'C=members'.AMP.'M=ip_search'.AMP.'error=1'.AMP.'ip_address='.$url_ip);
		}

		//  Set some defaults for pagination

		$per_page = ($this->input->get('per_page') != '') ? $this->input->get('per_page') : '0';

		// Find Member Accounts with IP
		
		$this->db->from('members');
		$this->db->like('ip_address', $ip);
		$total = $this->db->count_all_results(); // for paging

		$config['base_url'] = BASE.AMP.'C=members'.AMP.'M=do_ip_search'.AMP.'ip_address='.$url_ip;
		$config['per_page'] = '10';
		$config['total_rows'] = $total;
		$config['page_query_string'] = TRUE;
		$config['full_tag_open'] = '<p id="paginationLinks">';
		$config['full_tag_close'] = '</p>';
		$config['prev_link'] = '<img src="'.$this->cp->cp_theme_url.'images/pagination_prev_button.gif" width="13" height="13" alt="&lt;" />';
		$config['next_link'] = '<img src="'.$this->cp->cp_theme_url.'images/pagination_next_button.gif" width="13" height="13" alt="&gt;" />';
		$config['first_link'] = '<img src="'.$this->cp->cp_theme_url.'images/pagination_first_button.gif" width="13" height="13" alt="&lt; &lt;" />';
		$config['last_link'] = '<img src="'.$this->cp->cp_theme_url.'images/pagination_last_button.gif" width="13" height="13" alt="&gt; &gt;" />';

		$this->pagination->initialize($config);

		$vars['member_accounts_pagination'] = $this->pagination->create_links();
		$vars['members_accounts'] = $this->member_model->get_ip_members($ip, 10, $per_page);

		//  Find Channel Entries with IP
		
		$sql = "SELECT COUNT(*) AS count
				FROM exp_channel_titles t, exp_members m, exp_sites s
				WHERE t.ip_address LIKE '%".$this->db->escape_like_str($ip)."%'
				AND t.site_id = s.site_id
				AND t.author_id = m.member_id
				ORDER BY entry_id desc ";
		
		$query = $this->db->query($sql);
		$total = $query->row('count');

		$grand_total += $total;

		$config['total_rows'] = $total;
		$this->pagination->initialize($config);

		$sql = "SELECT s.site_label, t.entry_id, t.channel_id, t.title, t.ip_address, m.member_id, m.username, m.screen_name, m.email
				FROM exp_channel_titles t, exp_members m, exp_sites s
				WHERE t.ip_address LIKE '%".$this->db->escape_like_str($ip)."%'
				AND t.site_id = s.site_id
				AND t.author_id = m.member_id
				ORDER BY entry_id desc
				LIMIT {$per_page}, 10";
		
		$vars['channel_entries_pagination'] = $this->pagination->create_links();
		$vars['channel_entries'] = $this->db->query($sql);

		//  Find Comments with IP
		// But only if the comment module is installed

		$this->db->from('modules');
		$this->db->where('module_name', 'Comment');
		$comment_installed = $this->db->count_all_results();
		
		if ($comment_installed  == 1)
		{
			$sql = "SELECT COUNT(*) AS count
					FROM exp_channel_titles t, exp_members m, exp_sites s
					WHERE t.ip_address LIKE '%".$this->db->escape_like_str($ip)."%'
					AND t.site_id = s.site_id
					AND t.author_id = m.member_id
					ORDER BY entry_id desc ";
		
			$query = $this->db->query($sql);
			$total = $query->row('count');

			$grand_total += $total;

			$config['total_rows'] = $total;
			$this->pagination->initialize($config);

			$sql = "SELECT s.site_label, t.entry_id, t.channel_id, t.title, t.ip_address, m.member_id, m.username, m.screen_name, m.email
					FROM exp_channel_titles t, exp_members m, exp_sites s
					WHERE t.ip_address LIKE '%".$this->db->escape_like_str($ip)."%'
					AND t.site_id = s.site_id
					AND t.author_id = m.member_id
					ORDER BY entry_id desc
					LIMIT {$per_page}, 10";
		
			$vars['channel_entries_pagination'] = $this->pagination->create_links();
			$vars['channel_entries'] = $this->db->query($sql);
		}

		// Find Forum Topics with IP
		// But only if the forum module is installed

		$this->db->from('modules');
		$this->db->where('module_name', 'Forum');
		$forum_installed = $this->db->count_all_results();
		
		if ($forum_installed  == 1)
		{
			$sql = "SELECT COUNT(*) AS count
					FROM exp_forum_topics f, exp_members m, exp_forum_boards b
					WHERE f.ip_address LIKE '%".$this->db->escape_like_str($ip)."%'
					AND f.board_id = b.board_id
					AND f.author_id = m.member_id
					ORDER BY f.topic_id desc";
		
			$query = $this->db->query($sql);
			$total = $query->row('count');

			$grand_total += $total;

			$config['total_rows'] = $total;
			$this->pagination->initialize($config);

			$sql = "SELECT f.topic_id, f.forum_id, f.title, f.ip_address, m.member_id, m.screen_name, m.email, b.board_forum_url
					FROM exp_forum_topics f, exp_members m, exp_forum_boards b
					WHERE f.ip_address LIKE '%".$this->db->escape_like_str($ip)."%'
					AND f.board_id = b.board_id
					AND f.author_id = m.member_id
					ORDER BY f.topic_id desc
					LIMIT {$per_page}, 10";
		
			$vars['forum_topics_pagination'] = $this->pagination->create_links();
			$vars['forum_topics'] = $this->db->query($sql);
		
			//  Find Forum Posts with IP

			$sql = "SELECT COUNT(*) AS count
					FROM exp_forum_posts p, exp_members m
					WHERE p.ip_address LIKE '%".$this->db->escape_like_str($ip)."%'
					AND p.author_id = m.member_id
					ORDER BY p.topic_id desc";
		
			$query = $this->db->query($sql);
			$total = $query->row('count');

			$grand_total += $total;

			$config['total_rows'] = $total;
			$this->pagination->initialize($config);

			$sql = "SELECT p.post_id, p.forum_id, p.body, p.ip_address, m.member_id, m.screen_name, m.email, b.board_forum_url
					FROM exp_forum_posts p, exp_members m, exp_forum_boards b
					WHERE p.ip_address LIKE '%".$this->db->escape_like_str($ip)."%'
					AND p.author_id = m.member_id
					AND p.board_id = b.board_id
					ORDER BY p.topic_id desc
					LIMIT {$per_page}, 10";

			$vars['forum_posts_pagination'] = $this->pagination->create_links();
			$vars['forum_posts'] = $this->db->query($sql);
		
		}

		$this->cp->set_variable('cp_page_title', $this->lang->line('ip_search'));
		
		$this->javascript->compile();

		$vars['grand_total'] = $grand_total;

		$this->load->view('members/ip_search_results', $vars);
	}

	// --------------------------------------------------------------------

	/**
	 * Member Validation
	 *
	 * @access	public
	 * @return	mixed
	 */		
	function member_validation()
	{
		if ( ! $this->cp->allowed_group('can_access_members') OR ! $this->cp->allowed_group('can_admin_members'))
		{
			show_error($this->lang->line('unauthorized_access'));
		}
				
		$this->load->library('table');
		$this->load->helper(array('form', 'url'));
		$vars['message'] = FALSE;

		$this->cp->set_variable('cp_page_title', $this->lang->line('member_validation'));
	
		$this->jquery->tablesorter('.mainTable', '{headers: {1: {sorter: false}},	widgets: ["zebra"]}');

		$this->javascript->output('
			$("#toggle_all").click(function() {
				var checked_status = this.checked;
				$("input.toggle").each(function() {
					this.checked = checked_status;
				});
			});
		');

		$this->javascript->compile();
		
		$group_members = $this->member_model->get_group_members(4);

		if ($group_members->num_rows() == 0)
		{
			$vars['message'] = $this->lang->line('no_members_to_validate');
		}

		$vars['member_list'] = $group_members;

		$this->load->view('members/activate', $vars);
	}

	// --------------------------------------------------------------------

	/**
	 * Validate Members
	 *
	 * Validate/Delete Selected Members
	 *
	 * @access	public
	 * @return	mixed
	 */		
	function validate_members()
	{
		if ( ! $this->cp->allowed_group('can_access_members') OR ! $this->cp->allowed_group('can_admin_members') OR ! $this->cp->allowed_group('can_delete_members'))
		{
			show_error($this->lang->line('unauthorized_access'));
		}

		if ( ! $this->input->post('toggle'))
		{
			return $this->member_validation();
		}

		$send_email = (isset($_POST['send_notification'])) ? TRUE : FALSE;
		
		if ($send_email == TRUE)
		{
			if ($this->input->post('action') == 'activate')
			{
				$template = $this->functions->fetch_email_template('validated_member_notify');
			}
			else
			{
				$template = $this->functions->fetch_email_template('decline_member_validation');
			}
			
			$this->load->library('email');
			$this->email->wordwrap = true;
		}

		$group_id = $this->config->item('default_member_group');

		// Load the text helper
		$this->load->helper('text');
		
		foreach ($_POST['toggle'] as $key => $val)
		{
			if ($send_email == TRUE)
			{
				$this->db->select('username, screen_name, email');
				$this->db->from('members');
				$this->db->where('member_id', $val);
				$this->db->where('email != ""');
				$query = $this->db->get();			
				
				if ($query->num_rows() == 1)
				{	
					$swap = array(
									'name'		=> ($query->row('screen_name')  != '') ? $query->row('screen_name')  : $query->row('username') ,
									'site_name'	=> stripslashes($this->config->item('site_name')),
									'site_url'	=> $this->config->item('site_url')
								 );

					$email_tit = $this->functions->var_swap($template['title'], $swap);
					$email_msg = $this->functions->var_swap($template['data'], $swap);
							
					$this->email->EE_initialize();
					$this->email->from($this->config->item('webmaster_email'), $this->config->item('webmaster_name'));	
					$this->email->to($query->row('email') );
					$this->email->subject($email_tit);	
					$this->email->message(entities_to_ascii($email_msg));		
					$this->email->send();
				}
			}
			
			if ($this->input->post('action') == 'activate')
			{
				$this->db->set('group_id', $group_id);
				$this->db->where('member_id', $val);
				$this->db->update('members');
			}
			else
			{
				$this->db->query("DELETE FROM exp_members WHERE member_id = '$val'");
				$this->db->query("DELETE FROM exp_member_data WHERE member_id = '$val'");
				$this->db->query("DELETE FROM exp_member_homepage WHERE member_id = '$val'");
				
				$message_query = $this->db->query("SELECT DISTINCT recipient_id FROM exp_message_copies WHERE sender_id = '$val' AND message_read = 'n'");

				$this->db->query("DELETE FROM exp_message_copies WHERE sender_id = '$val'");
				$this->db->query("DELETE FROM exp_message_data WHERE sender_id = '$val'");
				$this->db->query("DELETE FROM exp_message_folders WHERE member_id = '$val'");
				$this->db->query("DELETE FROM exp_message_listed WHERE member_id = '$val'");
				
				if ($message_query->num_rows() > 0)
				{
					foreach($message_query->result_array() as $row)
					{
						$count_query = $this->db->query("SELECT COUNT(*) AS count FROM exp_message_copies WHERE recipient_id = '".$row['recipient_id']."' AND message_read = 'n'");
						$this->db->query($this->db->update_string('exp_members', array('private_messages' => $count_query->row('count') ), "member_id = '".$row['recipient_id']."'"));
					}
				}
			}
		}
		
		$this->stats->update_member_stats();

		/* -------------------------------------------
		/* 'cp_members_validate_members' hook.
		/*  - Additional processing when member(s) are validated in the CP
		/*  - Added 1.5.2, 2006-12-28
		*/
			$edata = $this->extensions->call('cp_members_validate_members');
			if ($this->extensions->end_script === TRUE) return;
		/*
		/* -------------------------------------------*/
			
		$vars['message'] = ($this->input->post('action') == 'activate') ? $this->lang->line('members_are_validated') : $this->lang->line('members_are_deleted');

		$this->cp->set_variable('cp_page_title', $vars['message']);

		$this->load->view("members/message", $vars);
	}	
	
}

/* End of file members.php */
/* Location: ./system/expressionengine/controllers/cp/members.php */