1:
2:
3:
4:
5:
6:
7:
8:
9:
10:
11:
12:
13:
14:
15:
16:
17:
18:
19:
20:
21:
22:
23:
24:
25:
26:
27:
28:
29:
30:
31:
32:
33:
34:
35:
36:
37:
38:
39:
40:
41:
42:
43:
44:
45:
46:
47:
48:
49:
50:
51:
52:
53:
54:
55:
56:
57:
58:
59:
60:
61:
62:
63:
64:
65:
66:
67:
68:
69:
70:
71:
72:
73:
74:
75:
76:
77:
78:
79:
80:
81:
82:
83:
84:
85:
86:
87:
88:
89:
90:
91:
92:
93:
94:
95:
96:
97:
98:
99:
100:
101:
102:
103:
104:
105:
106:
107:
108:
109:
110:
111:
112:
113:
114:
115:
116:
117:
118:
119:
120:
121:
122:
123:
124:
125:
126:
127:
128:
129:
130:
131:
132:
133:
134:
135:
136:
137:
138:
139:
140:
141:
142:
143:
144:
145:
146:
147:
148:
149:
150:
151:
152:
153:
154:
155:
156:
157:
158:
159:
160:
161:
162:
163:
164:
165:
166:
167:
168:
169:
170:
171:
172:
173:
174:
175:
176:
177:
178:
179:
180:
181:
182:
183:
184:
185:
186:
187:
188:
189:
190:
191:
192:
193:
194:
195:
196:
197:
198:
199:
200:
201:
202:
203:
204:
205:
206:
207:
208:
209:
210:
211:
212:
213:
214:
215:
216:
217:
218:
219:
220:
221:
222:
223:
224:
225:
226:
227:
228:
229:
230:
231:
232:
233:
234:
235:
236:
237:
238:
239:
240:
241:
242:
243:
244:
245:
246:
247:
248:
249:
250:
251:
252:
253:
254:
255:
256:
257:
258:
259:
260:
261:
262:
263:
264:
265:
266:
267:
268:
269:
270:
271:
272:
273:
274:
275:
276:
277:
278:
279:
280:
281:
282:
283:
284:
285:
286:
287:
288:
289:
290:
291:
292:
293:
294:
295:
296:
297:
298:
299:
300:
301:
302:
303:
304:
305:
306:
307:
308:
309:
310:
311:
312:
313:
314:
315:
316:
317:
318:
319:
320:
321:
322:
323:
324:
325:
326:
327:
328:
329:
330:
331:
332:
333:
334:
335:
336:
337:
338:
339:
340:
341:
342:
343:
344:
345:
346:
347:
348:
349:
350:
351:
352:
353:
354:
355:
356:
357:
358:
359:
360:
361:
362:
363:
364:
365:
366:
367:
368:
369:
370:
371:
372:
373:
374:
375:
376:
377:
378:
379:
380:
381:
382:
383:
384:
385:
386:
387:
388:
389:
390:
391:
392:
393:
394:
395:
|
<?php
require ("./global.php");
isAdmin();
function set_hilight_ids() {
global $db, $n;
$modids = "";
$smodids = "";
$adminids = "";
$result=$db->query("SELECT groupid FROM bb".$n."_groups WHERE canuseacp=1");
while($row=$db->fetch_array($result)) {
if($adminids) $adminids.=",".$row['groupid'];
else $adminids=$row['groupid'];
}
$result=$db->query("SELECT groupid FROM bb".$n."_groups WHERE issupermod=1 AND canuseacp=0");
while($row=$db->fetch_array($result)) {
if($smodids) $smodids.=",".$row['groupid'];
else $smodids=$row['groupid'];
}
$result=$db->query("SELECT groupid FROM bb".$n."_groups WHERE ismod=1 AND issupermod=0 AND canuseacp=0");
while($row=$db->fetch_array($result)) {
if($modids) $modids.=",".$row['groupid'];
else $modids=$row['groupid'];
}
$db->query("UPDATE bb".$n."_options SET value='$adminids' WHERE varname='adminids'");
$db->query("UPDATE bb".$n."_options SET value='$smodids' WHERE varname='smodids'");
$db->query("UPDATE bb".$n."_options SET value='$modids' WHERE varname='modids'");
require("lib/class_options.php");
$option=new options("lib");
$option->write();
}
if(isset($_REQUEST['action'])) $action=$_REQUEST['action'];
else $action="view";
if($action == "view") {
$result=$db->query("SELECT COUNT(u.userid) AS count, g.groupid, g.title FROM bb".$n."_groups g LEFT JOIN bb".$n."_users u USING (groupid) GROUP BY groupid ORDER BY title ASC");
$count=0;
$group_viewbit="";
while($row=$db->fetch_array($result)) {
$rowclass=getone($count++,"firstrow","secondrow");
eval ("\$group_viewbit .= "".gettemplate("group_viewbit")."";");
}
eval("print("".gettemplate("group_view")."");");
}
function makeboardlist($boardid,$x=0) {
global $boardcache, $session, $maxcolspan, $permissioncache;
if(!isset($boardcache[$boardid])) return;
while (list($key1,$val1) = each($boardcache[$boardid])) {
while(list($key2,$boards) = each($val1)) {
$colspan=$maxcolspan-$x;
$temp=$maxcolspan-($maxcolspan-$x);
if($temp) $tds=str_repeat("<td class="secondrow"> </td>",$temp);
else $tds="";
if($permissioncache[$boards['boardid']]['boardpermission']==1) $checked1=" checked";
else $checked1="";
if($permissioncache[$boards['boardid']]['startpermission']==1) $checked2=" checked";
else $checked2="";
if($permissioncache[$boards['boardid']]['replypermission']==1) $checked3=" checked";
else $checked3="";
eval ("\$out .= "".gettemplate("group_rightsbit")."";");
$out .= makeboardlist($boards[boardid],$x+1);
}
}
unset($boardcache[$boardid]);
return $out;
}
if($action == "rights") {
$groupid=intval($_REQUEST['groupid']);
$group = $db->query_first("SELECT groupid, title FROM bb".$n."_groups WHERE groupid='$groupid'");
if(!$group['groupid']) {
header("Location: group.php?action=view&sid=$session[hash]");
exit();
}
if(isset($_POST['send'])) {
reset($_POST);
while(list($key,$val)=each($_POST)) $$key=$val;
$result=$db->query("SELECT boardid FROM bb".$n."_boards");
while($row=$db->fetch_array($result)) $db->query("REPLACE INTO bb".$n."_permissions (boardid,groupid,boardpermission,startpermission,replypermission) VALUES ('$row[boardid]','$groupid','".$boardpermission[$row['boardid']]."','".$startpermission[$row['boardid']]."','".$replypermission[$row['boardid']]."')");
header("Location: group.php?action=view&sid=$session[hash]");
exit();
}
$result = $db->query("SELECT * FROM bb".$n."_permissions WHERE groupid = '$groupid'");
while ($row = $db->fetch_array($result)) $permissioncache[$row['boardid']] = $row;
$maxcolspan=0;
$result = $db->query("SELECT boardid, parentid, boardorder, title, parentlist FROM bb".$n."_boards ORDER by parentid ASC, boardorder ASC");
while ($row = $db->fetch_array($result)) {
$temp=count(explode(",",$row['parentlist']));
if($temp>$maxcolspan) $maxcolspan=$temp;
$boardcache[$row['parentid']][$row['boardorder']][$row['boardid']] = $row;
}
$boardlist = makeboardlist(0);
$maxcolspan2=$maxcolspan+3;
eval("print("".gettemplate("group_rights")."");");
}
if($action == "default") {
if(isset($_POST['send'])) {
reset($_POST);
while(list($key,$val)=each($_POST)) $$key=trim($val);
if($default1==$default2) eval("acp_error("".gettemplate("error_default2groups")."");");
$db->query("UPDATE bb".$n."_groups SET default_group='0'");
$db->query("UPDATE bb".$n."_groups SET default_group='1' WHERE groupid='$default1'");
$db->query("UPDATE bb".$n."_groups SET default_group='2' WHERE groupid='$default2'");
}
$result=$db->query("SELECT groupid, default_group FROM bb".$n."_groups WHERE default_group > 0");
while($row=$db->fetch_array($result)) $default[$row['default_group']]=$row['groupid'];
$result=$db->query("SELECT groupid, title FROM bb".$n."_groups ORDER BY title ASC");
while($row=$db->fetch_array($result)) {
$options1.=makeoption($row['groupid'],$row['title'],$default[1],1);
$options2.=makeoption($row['groupid'],$row['title'],$default[2],1);
}
eval("print("".gettemplate("group_default")."");");
}
if($action == "del") {
$groupid=intval($_REQUEST['groupid']);
$group = $db->query_first("SELECT groupid, title, default_group FROM bb".$n."_groups WHERE groupid='$groupid'");
if(!$group[groupid]) {
header("Location: group.php?action=view&sid=$session[hash]");
exit();
}
if($group['default_group']!=0) eval("acp_error("".gettemplate("error_isdefaultgroup")."");");
if($group['groupid']==$wbbuserdata[groupid]) eval("acp_error("".gettemplate("error_isyourgroup")."");");
if(isset($_POST['send'])) {
list($newgroupid)=$db->query_first("SELECT groupid FROM bb".$n."_groups WHERE default_group='2'");
$db->query("UPDATE bb".$n."_users SET groupid='$newgroupid' WHERE groupid='$groupid'");
$db->query("DELETE FROM bb".$n."_groups WHERE groupid='$groupid'");
$db->query("UPDATE bb".$n."_avatars SET groupid=0 WHERE groupid='$groupid'");
$db->query("UPDATE bb".$n."_events SET groupid=0 WHERE groupid='$groupid'");
$db->query("DELETE FROM bb".$n."_permissions WHERE groupid='$groupid'");
$db->query("DELETE FROM bb".$n."_ranks WHERE groupid='$groupid'");
set_hilight_ids();
header("Location: group.php?action=view&sid=$session[hash]");
exit();
}
eval("print("".gettemplate("group_del")."");");
}
if($action == "add") {
if(isset($_POST["send"])) {
reset($_POST);
while(list($key,$val)=each($_POST)) $$key=trim($val);
$allowedavatarextensions = preg_replace("/\s*\n\s*/","\n",trim($allowedavatarextensions));
if(is_array($_POST['chgpermission'])) $chgpermission=implode(",",$_POST['chgpermission']); else $chgpermission="";
$db->query("INSERT INTO
bb".$n."_groups
(groupid,
title,
canviewboard,
canviewoffboard,
canusesearch,
canusepms,
canstarttopic,
canreplyowntopic,
canreplytopic,
canpostwithoutmoderation,
caneditownpost,
candelownpost,
cancloseowntopic,
candelowntopic,
caneditowntopic,
canpostpoll,
canvotepoll,
canuseavatar,
canuploadavatar,
canratethread,
canviewmblist,
appendeditnote,
avoidfc,
ismod,
issupermod,
canuseacp,
maxpostimage,
maxsigimage,
maxsiglength,
allowedavatarextensions,
maxavatarwidth,
maxavatarheight,
maxavatarsize,
maxusertextlength,
canviewprofile,
canviewcalender,
canprivateevent,
canpublicevent,
canrateusers,
chgpermission,
canseepublic,
canrelcalthread)
VALUES
(NULL,
'".addslashes($title)."',
'$canviewboard',
'$canviewoffboard',
'$canusesearch',
'$canusepms',
'$canstarttopic',
'$canreplyowntopic',
'$canreplytopic',
'$canpostwithoutmoderation',
'$caneditownpost',
'$candelownpost',
'$cancloseowntopic',
'$candelowntopic',
'$caneditowntopic',
'$canpostpoll',
'$canvotepoll',
'$canuseavatar',
'$canuploadavatar',
'$canratethread',
'$canviewmblist',
'$appendeditnote',
'$avoidfc',
'$ismod',
'$issupermod',
'$canuseacp',
'".intval($maxpostimage)."',
'".intval($maxsigimage)."',
'".intval($maxsiglength)."',
'".addslashes($allowedavatarextensions)."',
'".intval($maxavatarwidth)."',
'".intval($maxavatarheight)."',
'".intval($maxavatarsize)."',
'".intval($maxusertextlength)."',
'$canviewprofile',
'$canviewcalender',
'$canprivateevent',
'$canpublicevent',
'$canrateusers',
'$chgpermission',
'$canseepublic',
'".intval($canrelcalthread)."')");
set_hilight_ids();
header("Location: group.php?action=view&sid=$session[hash]");
exit();
}
$result=$db->query("SELECT groupid, title FROM bb".$n."_groups ORDER BY groupid ASC");
while ($row=$db->fetch_array($result)) $sel_chgperm.=makeoption($row['groupid'],$row['title']);
eval("print('".gettemplate("group_add")."');");
}
$query = '
INSERT INTO
`bb'.mysql_real_escape_string($n).'_groups`
SET
`title` = "'.mysql_real_escape_string($title).'",
`canviewboard` = "'.mysql_real_escape_string($canviewboard).'",
`canviewoffboard` = "'.mysql_real_escape_string($canviewoffboard).'",
`canusesearch` = "'.mysql_real_escape_string($canusesearch).'",
`canusepms` = "'.mysql_real_escape_string($canusepms).'",
`canstarttopic` = "'.mysql_real_escape_string($canstarttopic).'",
`canreplyowntopic` = "'.mysql_real_escape_string($canreplyowntopic).'",
`canreplytopic` = "'.mysql_real_escape_string($canreplytopic).'",
`canpostwithoutmoderation` = "'.mysql_real_escape_string($canpostwithoutmoderation).'",
`caneditownpost` = "'.mysql_real_escape_string($caneditownpost).'",
`candelownpost` = "'.mysql_real_escape_string($candelownpost).'",
`cancloseowntopic` = "'.mysql_real_escape_string($cancloseowntopic).'",
`candelowntopic` = "'.mysql_real_escape_string($candelowntopic).'",
`caneditowntopic` = "'.mysql_real_escape_string($caneditowntopic).'",
`canpostpoll` = "'.mysql_real_escape_string($canpostpoll).'",
`canvotepoll` = "'.mysql_real_escape_string($canvotepoll).'",
`canuseavatar` = "'.mysql_real_escape_string($canuseavatar).'",
`canuploadavatar` = "'.mysql_real_escape_string($canuploadavatar).'",
`canratethread` = "'.mysql_real_escape_string($canratethread).'",
`canviewmblist` = "'.mysql_real_escape_string($canviewmblist).'",
`appendeditnote` = "'.mysql_real_escape_string($appendeditnote).'",
`avoidfc` = "'.mysql_real_escape_string($avoidfc).'",
`ismod` = "'.mysql_real_escape_string($ismod).'",
`issupermod` = "'.mysql_real_escape_string($issupermod).'",
`canuseacp` = "'.mysql_real_escape_string($canuseapc).'",
`maxpostimage` = "'.mysql_real_escape_string($maxpostimage).'",
`maxsigimage` = "'.mysql_real_escape_string($maxsigimage).'",
`maxsiglength` = "'.mysql_real_escape_string($maxsiglength).'",
`allowedavatarextensions` = "'.mysql_real_escape_string($allowedavatarextensions).'",
`maxavatarwidth` = "'.mysql_real_escape_string($maxavatarwidth).'",
`maxavatarheight` = "'.mysql_real_escape_string($maxavatarheight).'",
`maxavatarsize` = "'.mysql_real_escape_string($maxavatarsize).'",
`maxusertextlength` = "'.mysql_real_escape_string($maxusertextlength).'",
`canviewprofile` = "'.mysql_real_escape_string($canviewprofile).'",
`canviewcalender` = "'.mysql_real_escape_string($canviewcalender).'",
`canprivateevent` = "'.mysql_real_escape_string($canprivateevent).'",
`canpublicevent` = "'.mysql_real_escape_string($canpublicevent).'",
`canrateusers` = "'.mysql_real_escape_string($canrateusers).'",
`chgpermission` = "'.mysql_real_escape_string($chgpermission).'",
`canseepublic` = "'.mysql_real_escape_string($canseepublic).'",
`canrelcalthread` = "'.mysql_real_escape_string($canrelcalthread).'"
';
$db->query($query);
set_hilight_ids();
header('Location: group.php?action=view&sid='.$session['hash']);
exit();
$query = '
SELECT
`groupid`,
`title`
FROM
`bb'.mysql_real_escape_string($n).'_groups`
ORDER BY
`groupid` ASC
';
$result = $db->query($query);
while( $row = $db->fetch_array($result) ) {
$sel_chgperm .= makeoption($row['groupid'], $row['title']);
gettemplate('group_add');
}
if($action == "edit") {
$groupid=intval($_REQUEST['groupid']);
$group = $db->query_first("SELECT * FROM bb".$n."_groups WHERE groupid='$groupid'");
if(!$group['groupid']) {
header("Location: group.php?action=view&sid=$session[hash]");
exit();
}
if(isset($_POST["send"])) {
reset($_POST);
while(list($key,$val)=each($_POST)) $$key=trim($val);
$allowedavatarextensions = preg_replace("/\s*\n\s*/","\n",trim($allowedavatarextensions));
if(is_array($_POST['chgpermission'])) $chgpermission=implode(",",$_POST['chgpermission']); else $chgpermission="";
$db->query("UPDATE bb".$n."_groups SET title='".addslashes($title)."',canviewboard='$canviewboard',canviewoffboard='$canviewoffboard',canusesearch='$canusesearch',canusepms='$canusepms',canstarttopic='$canstarttopic',canreplyowntopic='$canreplyowntopic',canreplytopic='$canreplytopic',canpostwithoutmoderation='$canpostwithoutmoderation',caneditownpost='$caneditownpost',candelownpost='$candelownpost',cancloseowntopic='$cancloseowntopic',candelowntopic='$candelowntopic',caneditowntopic='$caneditowntopic',canpostpoll='$canpostpoll',canvotepoll='$canvotepoll',canuseavatar='$canuseavatar',canuploadavatar='$canuploadavatar',canratethread='$canratethread',appendeditnote='$appendeditnote',avoidfc='$avoidfc',ismod='$ismod',issupermod='$issupermod',canuseacp='$canuseacp',maxpostimage='".intval($maxpostimage)."',maxsigimage='".intval($maxsigimage)."',maxsiglength='".intval($maxsiglength)."',allowedavatarextensions='".addslashes($allowedavatarextensions)."',maxavatarwidth='".intval($maxavatarwidth)."',maxavatarheight='".intval($maxavatarheight)."',maxavatarsize='".intval($maxavatarsize)."',maxusertextlength='".intval($maxusertextlength)."', canviewprofile='$canviewprofile', canviewcalender='$canviewcalender', canprivateevent='$canprivateevent', canpublicevent='$canpublicevent', canrateusers='$canrateusers', canviewmblist='$canviewmblist', chgpermission='$chgpermission', canseepublic='$canseepublic', canrelcalthread='".intval($canrelcalthread)."' WHERE groupid='$groupid'");
set_hilight_ids();
header("Location: group.php?action=view&sid=$session[hash]");
exit();
}
$sel_canviewboard[$group[canviewboard]]=" selected";
$sel_canviewoffboard[$group[canviewoffboard]]=" selected";
$sel_canusesearch[$group[canusesearch]]=" selected";
$sel_canusepms[$group[canusepms]]=" selected";
$sel_canvotepoll[$group[canvotepoll]]=" selected";
$sel_canratethread[$group[canratethread]]=" selected";
$sel_canuseavatar[$group[canuseavatar]]=" selected";
$sel_canuploadavatar[$group[canuploadavatar]]=" selected";
$sel_canstarttopic[$group[canstarttopic]]=" selected";
$sel_canreplyowntopic[$group[canreplyowntopic]]=" selected";
$sel_canreplytopic[$group[canreplytopic]]=" selected";
$sel_canpostwithoutmoderation[$group[canpostwithoutmoderation]]=" selected";
$sel_caneditownpost[$group[caneditownpost]]=" selected";
$sel_candelownpost[$group[candelownpost]]=" selected";
$sel_cancloseowntopic[$group[cancloseowntopic]]=" selected";
$sel_candelowntopic[$group[candelowntopic]]=" selected";
$sel_caneditowntopic[$group[caneditowntopic]]=" selected";
$sel_canpostpoll[$group[canpostpoll]]=" selected";
$sel_appendeditnote[$group[appendeditnote]]=" selected";
$sel_avoidfc[$group[avoidfc]]=" selected";
$sel_ismod[$group[ismod]]=" selected";
$sel_issupermod[$group[issupermod]]=" selected";
$sel_canuseacp[$group[canuseacp]]=" selected";
$sel_canviewprofile[$group['canviewprofile']]=" selected";
$sel_canviewcalender[$group['canviewcalender']]=" selected";
$sel_canprivateevent[$group['canprivateevent']]=" selected";
$sel_canpublicevent[$group['canpublicevent']]=" selected";
$sel_canrateusers[$group['canrateusers']]=" selected";
$sel_canviewmblist[$group['canviewmblist']]=" selected";
$sel_canrelcalthread[$group['canrelcalthread']]=" selected";
$sel_canseepublic[$group['canseepublic']]=" selected";
$chgarray=explode(",",$group['chgpermission']);
$result=$db->query("SELECT groupid, title FROM bb".$n."_groups ORDER BY groupid ASC");
while ($row=$db->fetch_array($result)) $sel_chgperm.=makeoption($row['groupid'],$row['title'],$chgarray);
eval("print("".gettemplate("group_edit")."");");
}
?>
|