3 This program is free software; you can redistribute it and/or modify
4 it under the terms of the Revised BSD License.
6 This program is distributed in the hope that it will be useful,
7 but WITHOUT ANY WARRANTY; without even the implied warranty of
8 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
9 Revised BSD License for more details.
11 Copyright 2004-2011 iDB Support - http://idb.berlios.de/
12 Copyright 2004-2011 Game Maker 2k - http://gamemaker2k.org/
14 $FileInfo: members.php - Last Update: 07/01/2011 SVN 691 - Author: cooldude2k $
16 $File3Name = basename($_SERVER['SCRIPT_NAME']);
17 if ($File3Name=="members.php"||
$File3Name=="/members.php") {
21 // Check if we can goto admin cp
22 if($_SESSION['UserGroup']==$Settings['GuestGroup']||
$GroupInfo['HasAdminCP']=="no") {
23 redirect("location",$rbasedir.url_maker($exfile['index'],$Settings['file_ext'],"act=view",$Settings['qstr'],$Settings['qsep'],$prexqstr['index'],$exqstr['index'],false));
24 ob_clean(); header("Content-Type: text/plain; charset=".$Settings['charset']); $urlstatus = 302;
25 gzip_page($Settings['use_gzip'],$GZipEncode['Type']); session_write_close(); die(); }
26 if(!isset($_POST['update'])) { $_POST['update'] = null; }
27 if(!isset($_POST['gid'])) { $_POST['gid'] = "0"; }
28 if(!isset($_POST['search'])) { $_POST['search'] = "%"; }
29 if(!is_numeric($_POST['gid'])) { $_POST['gid'] = "0"; }
30 $Error = null; $errorstr = null;
32 <table
class="Table3">
33 <tr style
="width: 100%; vertical-align: top;">
34 <td style
="width: 15%; vertical-align: top;">
36 require($SettDir['admin'].'table.php');
39 <td style
="width: 85%; vertical-align: top;">
40 <?php
if($_POST['act']=="validate"&&$_POST['update']=="now"&&$_GET['act']=="validate"&&$_POST['id']=="0") {
41 $_POST['act'] = null; $_POST['update'] = null; }
42 if($_GET['act']=="validate"&&$_POST['update']!="now") {
43 $admincptitle = " ".$ThemeSet['TitleDivider']." Validating Members";
45 <div
class="TableMenuBorder">
46 <?php
if($ThemeSet['TableStyle']=="div") { ?
>
47 <div
class="TableMenuRow1">
48 <?php
echo $ThemeSet['TitleIcon']; ?
><a href
="<?php echo url_maker($exfile['admin'],$Settings['file_ext'],"act
=validate
",$Settings['qstr'],$Settings['qsep'],$prexqstr['admin'],$exqstr['admin']); ?>">Validating Members Manager
</a
></div
>
50 <table
class="TableMenu" style
="width: 100%;">
51 <?php
if($ThemeSet['TableStyle']=="table") { ?
>
52 <tr
class="TableMenuRow1">
53 <td
class="TableMenuColumn1"><span style
="float: left;">
54 <?php
echo $ThemeSet['TitleIcon']; ?
><a href
="<?php echo url_maker($exfile['admin'],$Settings['file_ext'],"act
=validate
",$Settings['qstr'],$Settings['qsep'],$prexqstr['admin'],$exqstr['admin']); ?>">Validating Members Manager
</a
>
55 </span
><span style
="float: right;"> 
;</span
></td
>
57 <tr
class="TableMenuRow2">
58 <th
class="TableMenuColumn2" style
="width: 100%; text-align: left;">
59 <span style
="float: left;"> 
;Validating Members Manager
: </span
>
60 <span style
="float: right;"> 
;</span
>
63 <tr
class="TableMenuRow3">
64 <td
class="TableMenuColumn3">
65 <form style
="display: inline;" method
="post" id
="acptool" action
="<?php echo url_maker($exfile['admin'],$Settings['file_ext'],"act
=validate
",$Settings['qstr'],$Settings['qsep'],$prexqstr['admin'],$exqstr['admin']); ?>">
66 <table style
="text-align: left;">
67 <tr style
="text-align: left;">
68 <td style
="width: 50%;"><label
class="TextBoxLabel" for="id">Member to validate
:</label
></td
>
69 <td style
="width: 50%;"><select size
="1" class="TextBox" name
="id" id
="id">
71 $gquerys = sql_pre_query("SELECT * FROM \"".$Settings['sqltable']."groups\" WHERE \"Name\"='%s' LIMIT 1", array($Settings['ValidateGroup']));
72 $gresults=sql_query($gquerys,$SQLStat);
73 $VGroupID=sql_result($gresults,0,"id");
74 sql_free_result($gresults);
75 $getmemidq = sql_pre_query("SELECT * FROM \"".$Settings['sqltable']."members\" WHERE (\"GroupID\"=%i AND \"id\"<>-1) OR (\"Validated\"='no' AND \"id\"<>-1)", array($VGroupID));
76 $getmemidr=sql_query($getmemidq,$SQLStat);
77 $getmemidnum=sql_num_rows($getmemidr);
79 if($getmemidnum<1) { ?
>
80 <option value
="0">None
</option
>
82 while ($getmemidi < $getmemidnum) {
83 $getmemidID=sql_result($getmemidr,$getmemidi,"id");
84 $getmemidName=sql_result($getmemidr,$getmemidi,"Name");
86 <option value
="<?php echo $getmemidID; ?>"><?php
echo $getmemidName; ?
></option
>
88 sql_free_result($getmemidr); ?
>
91 <table style
="text-align: left;">
92 <tr style
="text-align: left;">
93 <td style
="width: 100%;">
94 <input type
="hidden" name
="act" value
="validate" style
="display: none;" />
95 <input type
="hidden" name
="update" value
="now" style
="display: none;" />
96 <input type
="submit" class="Button" value
="Validate Member" name
="Apply_Changes" />
97 <input type
="reset" value
="Reset Form" class="Button" name
="Reset_Form" />
102 <tr
class="TableMenuRow4">
103 <td
class="TableMenuColumn4"> 
;</td
>
107 <?php
} if($_POST['act']=="validate"&&$_POST['update']=="now"&&$_GET['act']=="validate"&&$_POST['id']!="0") {
108 $mguerys = sql_pre_query("SELECT * FROM \"".$Settings['sqltable']."groups\" WHERE \"Name\"='%s' LIMIT 1", array($Settings['MemberGroup']));
109 $mgresults=sql_query($mguerys,$SQLStat);
110 $MGroupID=sql_result($mgresults,0,"id");
111 sql_free_result($mgresults);
112 $gquerys = sql_pre_query("SELECT * FROM \"".$Settings['sqltable']."groups\" WHERE \"Name\"='%s' LIMIT 1", array($Settings['ValidateGroup']));
113 $gresults=sql_query($gquerys,$SQLStat);
114 $VGroupID=sql_result($gresults,0,"id");
115 sql_free_result($gresults);
116 $query = sql_pre_query("SELECT * FROM \"".$Settings['sqltable']."members\" WHERE \"id\"=%i LIMIT 1", array($_POST['id']));
117 $result=sql_query($query,$SQLStat);
118 $num=sql_num_rows($result);
120 $VMemName=sql_result($result,$i,"Name");
121 $VMemGroup=sql_result($result,$i,"GroupID");
122 $VMemValidated=sql_result($result,$i,"Validated");
123 $admincptitle = " ".$ThemeSet['TitleDivider']." Validating Members";
124 redirect("refresh",$rbasedir.url_maker($exfile['admin'],$Settings['file_ext'],"act=".$_GET['act']."&menu=members",$Settings['qstr'],$Settings['qsep'],$prexqstr['admin'],$exqstr['admin'],FALSE),"4");
125 if($VMemGroup==$VGroupID) {
126 $query = sql_pre_query("UPDATE \"".$Settings['sqltable']."members\" SET \"GroupID\"='%s', \"Validated\"='%s' WHERE \"id\"=%i", array($MGroupID, "yes", $_POST['id']));
127 sql_query($query,$SQLStat); }
128 if($VMemGroup!=$VGroupID&&$VMemValidated=="no") {
129 $query = sql_pre_query("UPDATE \"".$Settings['sqltable']."members\" SET \"Validated\"='%s' WHERE \"id\"=%i", array("yes", $_POST['id']));
130 sql_query($query,$SQLStat); }
132 <div
class="TableMenuBorder">
133 <?php
if($ThemeSet['TableStyle']=="div") { ?
>
134 <div
class="TableMenuRow1">
135 <?php
echo $ThemeSet['TitleIcon']; ?
><a href
="<?php echo url_maker($exfile['admin'],$Settings['file_ext'],"act
=".$_GET['act']."&menu
=members
",$Settings['qstr'],$Settings['qsep'],$prexqstr['admin'],$exqstr['admin']); ?>">Updating Settings
</a
></div
>
137 <table
class="TableMenu" style
="width: 100%;">
138 <?php
if($ThemeSet['TableStyle']=="table") { ?
>
139 <tr
class="TableMenuRow1">
140 <td
class="TableMenuColumn1"><span style
="float: left;">
141 <?php
echo $ThemeSet['TitleIcon']; ?
><a href
="<?php echo url_maker($exfile['admin'],$Settings['file_ext'],"act
=".$_GET['act']."&menu
=members
",$Settings['qstr'],$Settings['qsep'],$prexqstr['admin'],$exqstr['admin']); ?>">Updating Settings
</a
>
142 </span
><span style
="float: right;"> 
;</span
></td
>
144 <tr id
="ProfileTitle" class="TableMenuRow2">
145 <th
class="TableMenuColumn2">Updating Settings
</th
>
147 <tr
class="TableMenuRow3" id
="ProfileUpdate">
148 <td
class="TableMenuColumn3">
149 <div style
="text-align: center;">
150 <br
/><?php
echo $VMemName; ?
> was validated successfully
.<br
/> <a href
="<?php echo url_maker($exfile['admin'],$Settings['file_ext'],"act
=".$_GET['act']."&menu
=members
",$Settings['qstr'],$Settings['qsep'],$prexqstr['admin'],$exqstr['admin']); ?>">Click here
</a
> to back to admin cp
.<br
/> 
;
153 <tr id
="ProfileTitleEnd" class="TableMenuRow4">
154 <td
class="TableMenuColumn4"> 
;</td
>
156 <?php
} if($_POST['act']=="deletemember"&&$_POST['update']=="now"&&$_GET['act']=="deletemember"&&
157 ($_POST['id']=="0"||
$_POST['id']=="1"||
$_POST['id']=="-1")) {
158 $_POST['act'] = null; $_POST['update'] = null; }
159 if($_GET['act']=="deletemember"&&$_POST['update']!="now") {
160 $admincptitle = " ".$ThemeSet['TitleDivider']." Deleting Members";
162 <div
class="TableMenuBorder">
163 <?php
if($ThemeSet['TableStyle']=="div") { ?
>
164 <div
class="TableMenuRow1">
165 <?php
echo $ThemeSet['TitleIcon']; ?
><a href
="<?php echo url_maker($exfile['admin'],$Settings['file_ext'],"act
=deletemember
",$Settings['qstr'],$Settings['qsep'],$prexqstr['admin'],$exqstr['admin']); ?>">Deleting Members Manager
</a
></div
>
167 <table
class="TableMenu" style
="width: 100%;">
168 <?php
if($ThemeSet['TableStyle']=="table") { ?
>
169 <tr
class="TableMenuRow1">
170 <td
class="TableMenuColumn1"><span style
="float: left;">
171 <?php
echo $ThemeSet['TitleIcon']; ?
><a href
="<?php echo url_maker($exfile['admin'],$Settings['file_ext'],"act
=deletemember
",$Settings['qstr'],$Settings['qsep'],$prexqstr['admin'],$exqstr['admin']); ?>">Deleting Members Manager
</a
>
172 </span
><span style
="float: right;"> 
;</span
></td
>
174 <tr
class="TableMenuRow2">
175 <th
class="TableMenuColumn2" style
="width: 100%; text-align: left;">
176 <span style
="float: left;"> 
;Deleting Members Manager
: </span
>
177 <span style
="float: right;"> 
;</span
>
180 <tr
class="TableMenuRow3">
181 <td
class="TableMenuColumn3">
182 <form style
="display: inline;" method
="post" id
="acptool" action
="<?php echo url_maker($exfile['admin'],$Settings['file_ext'],"act
=deletemember
",$Settings['qstr'],$Settings['qsep'],$prexqstr['admin'],$exqstr['admin']); ?>">
183 <table style
="text-align: left;">
184 <tr style
="text-align: left;">
185 <td style
="width: 50%;"><label
class="TextBoxLabel" for="id">Member to delete
:</label
></td
>
186 <td style
="width: 50%;"><select size
="1" class="TextBox" name
="id" id
="id">
188 $getmemidq = sql_pre_query("SELECT * FROM \"".$Settings['sqltable']."members\" WHERE (\"id\"<>-1 AND \"id\"<>1)", array(null));
189 $getmemidr=sql_query($getmemidq,$SQLStat);
190 $getmemidnum=sql_num_rows($getmemidr);
192 if($getmemidnum<1) { ?
>
193 <option value
="0">None
</option
>
195 while ($getmemidi < $getmemidnum) {
196 $getmemidID=sql_result($getmemidr,$getmemidi,"id");
197 $getmemidName=sql_result($getmemidr,$getmemidi,"Name");
199 <option value
="<?php echo $getmemidID; ?>"><?php
echo $getmemidName; ?
></option
>
200 <?php ++
$getmemidi; }
201 sql_free_result($getmemidr); ?
>
204 <table style
="text-align: left;">
205 <tr style
="text-align: left;">
206 <td style
="width: 100%;">
207 <input type
="hidden" name
="act" value
="deletemember" style
="display: none;" />
208 <input type
="hidden" name
="update" value
="now" style
="display: none;" />
209 <input type
="submit" class="Button" value
="Delete Member" name
="Apply_Changes" />
210 <input type
="reset" value
="Reset Form" class="Button" name
="Reset_Form" />
215 <tr
class="TableMenuRow4">
216 <td
class="TableMenuColumn4"> 
;</td
>
220 <?php
} if($_POST['act']=="deletemember"&&$_POST['update']=="now"&&$_GET['act']=="deletemember"&&
221 ($_POST['id']!="0"||
$_POST['id']!="1"||
$_POST['id']!="-1")) {
222 $DMemName = GetUserName($_POST['id'],$Settings['sqltable']);
223 $DMemName = $DMemName['Name'];
224 if($DMemName!==null&&($_POST['id']!="0"||
$_POST['id']!="1"||
$_POST['id']!="-1")) {
225 $dmquery = sql_pre_query("DELETE FROM \"".$Settings['sqltable']."members\" WHERE \"id\"=%i", array($_POST['id']));
226 sql_query($dmquery,$SQLStat);
227 $dmquery = sql_pre_query("DELETE FROM \"".$Settings['sqltable']."mempermissions\" WHERE \"id\"=%i", array($_POST['id']));
228 sql_query($dmquery,$SQLStat); }
230 <div
class="TableMenuBorder">
231 <?php
if($ThemeSet['TableStyle']=="div") { ?
>
232 <div
class="TableMenuRow1">
233 <?php
echo $ThemeSet['TitleIcon']; ?
><a href
="<?php echo url_maker($exfile['admin'],$Settings['file_ext'],"act
=".$_GET['act']."&menu
=members
",$Settings['qstr'],$Settings['qsep'],$prexqstr['admin'],$exqstr['admin']); ?>">Updating Settings
</a
></div
>
235 <table
class="TableMenu" style
="width: 100%;">
236 <?php
if($ThemeSet['TableStyle']=="table") { ?
>
237 <tr
class="TableMenuRow1">
238 <td
class="TableMenuColumn1"><span style
="float: left;">
239 <?php
echo $ThemeSet['TitleIcon']; ?
><a href
="<?php echo url_maker($exfile['admin'],$Settings['file_ext'],"act
=".$_GET['act']."&menu
=members
",$Settings['qstr'],$Settings['qsep'],$prexqstr['admin'],$exqstr['admin']); ?>">Updating Settings
</a
>
240 </span
><span style
="float: right;"> 
;</span
></td
>
242 <tr id
="ProfileTitle" class="TableMenuRow2">
243 <th
class="TableMenuColumn2">Updating Settings
</th
>
245 <tr
class="TableMenuRow3" id
="ProfileUpdate">
246 <td
class="TableMenuColumn3">
247 <div style
="text-align: center;">
248 <br
/><?php
echo $DMemName; ?
> was deleted successfully
.<br
/> <a href
="<?php echo url_maker($exfile['admin'],$Settings['file_ext'],"act
=".$_GET['act']."&menu
=members
",$Settings['qstr'],$Settings['qsep'],$prexqstr['admin'],$exqstr['admin']); ?>">Click here
</a
> to back to admin cp
.<br
/> 
;
251 <tr id
="ProfileTitleEnd" class="TableMenuRow4">
252 <td
class="TableMenuColumn4"> 
;</td
>
254 <?php
} if($_POST['act']=="editmember"&&$_POST['update']=="now"&&$_GET['act']=="editmember"&&
255 ($_POST['id']=="0"||
$_POST['id']=="-1")) {
256 $_POST['act'] = null; $_POST['update'] = null; }
257 if($_GET['act']=="editmember"&&$_POST['update']!="now"&&!isset($_POST['id'])) {
258 $admincptitle = " ".$ThemeSet['TitleDivider']." Editing Members";
259 $_POST['search'] = stripcslashes(htmlspecialchars($_POST['search'], ENT_QUOTES
, $Settings['charset']));
260 //$_POST['search'] = preg_replace("/&#(x[a-f0-9]+|[0-9]+);/i", "&#$1;", $_POST['search']);
261 $_POST['search'] = remove_spaces($_POST['search']);
263 <div
class="TableMenuBorder">
264 <?php
if($ThemeSet['TableStyle']=="div") { ?
>
265 <div
class="TableMenuRow1">
266 <?php
echo $ThemeSet['TitleIcon']; ?
><a href
="<?php echo url_maker($exfile['admin'],$Settings['file_ext'],"act
=editmember
",$Settings['qstr'],$Settings['qsep'],$prexqstr['admin'],$exqstr['admin']); ?>">Editing Members Manager
</a
></div
>
268 <table
class="TableMenu" style
="width: 100%;">
269 <?php
if($ThemeSet['TableStyle']=="table") { ?
>
270 <tr
class="TableMenuRow1">
271 <td
class="TableMenuColumn1"><span style
="float: left;">
272 <?php
echo $ThemeSet['TitleIcon']; ?
><a href
="<?php echo url_maker($exfile['admin'],$Settings['file_ext'],"act
=editmember
",$Settings['qstr'],$Settings['qsep'],$prexqstr['admin'],$exqstr['admin']); ?>">Editing Members Manager
</a
>
273 </span
><span style
="float: right;"> 
;</span
></td
>
275 <tr
class="TableMenuRow2">
276 <th
class="TableMenuColumn2" style
="width: 100%; text-align: left;">
277 <span style
="float: left;"> 
;Editing Members Manager
: </span
>
278 <span style
="float: right;"> 
;</span
>
281 <tr
class="TableMenuRow3">
282 <td
class="TableMenuColumn3">
283 <form style
="display: inline;" method
="post" id
="acpstool" action
="<?php echo url_maker($exfile['admin'],$Settings['file_ext'],"act
=editmember
",$Settings['qstr'],$Settings['qsep'],$prexqstr['admin'],$exqstr['admin']); ?>">
284 <table style
="text-align: left;">
285 <tr style
="text-align: left;">
286 <td style
="width: 50%;"><label
class="TextBoxLabel" for="search">Search
for member name
:</label
></td
>
287 <td style
="width: 50%;"><input type
="text" name
="search" class="TextBox" id
="search" size
="20" value
="<?php echo $_POST['search']; ?>" /></td
>
289 <table style
="text-align: left;">
290 <tr style
="text-align: left;">
291 <td style
="width: 100%;">
292 <input type
="submit" class="Button" value
="Search" name
="Apply_Changes" />
295 <?php
if(isset($_POST['search'])) { ?
>
296 <form style
="display: inline;" method
="post" id
="acptool" action
="<?php echo url_maker($exfile['admin'],$Settings['file_ext'],"act
=editmember
",$Settings['qstr'],$Settings['qsep'],$prexqstr['admin'],$exqstr['admin']); ?>">
297 <table style
="text-align: left;">
298 <tr style
="text-align: left;">
299 <td style
="width: 50%;"><label
class="TextBoxLabel" for="id">Member to edit
:</label
></td
>
300 <td style
="width: 50%;"><select size
="1" class="TextBox" name
="id" id
="id">
302 $getmemidq = sql_pre_query("SELECT * FROM \"".$Settings['sqltable']."members\" WHERE \"Name\" LIKE '%s' AND (\"id\"<>-1)", array($_POST['search']));
303 $getmemidr=sql_query($getmemidq,$SQLStat);
304 $getmemidnum=sql_num_rows($getmemidr);
306 if($getmemidnum<1) { ?
>
307 <option value
="0">None
</option
>
309 while ($getmemidi < $getmemidnum) {
310 $getmemidID=sql_result($getmemidr,$getmemidi,"id");
311 $getmemidName=sql_result($getmemidr,$getmemidi,"Name");
313 <option value
="<?php echo $getmemidID; ?>"><?php
echo $getmemidName; ?
></option
>
314 <?php ++
$getmemidi; }
315 sql_free_result($getmemidr); ?
>
318 <table style
="text-align: left;">
319 <tr style
="text-align: left;">
320 <td style
="width: 100%;">
321 <input type
="hidden" name
="act" value
="editmember" style
="display: none;" />
322 <input type
="submit" class="Button" value
="Edit Member" name
="Apply_Changes" />
323 <input type
="reset" value
="Reset Form" class="Button" name
="Reset_Form" />
328 <tr
class="TableMenuRow4">
329 <td
class="TableMenuColumn4"> 
;</td
>
333 <?php
} if($_POST['act']=="editmember"&&$_POST['update']!="now"&&$_GET['act']=="editmember"&&
334 ($_POST['id']!="0"||
$_POST['id']!="-1")) {
335 $admincptitle = " ".$ThemeSet['TitleDivider']." Editing Members";
336 $query = sql_pre_query("SELECT * FROM \"".$Settings['sqltable']."members\" WHERE \"id\"=%i LIMIT 1", array($_POST['id']));
337 $result=sql_query($query,$SQLStat);
338 $num=sql_num_rows($result);
340 redirect("location",$rbasedir.url_maker($exfile['admin'],$Settings['file_ext'],"act=editmember",$Settings['qstr'],$Settings['qsep'],$prexqstr['admin'],$exqstr['admin'],false));
341 ob_clean(); header("Content-Type: text/plain; charset=".$Settings['charset']); $urlstatus = 302;
342 gzip_page($Settings['use_gzip'],$GZipEncode['Type']); session_write_close(); die(); }
343 $EditMem['ID']=sql_result($result,0,"id");
344 $EditMem['Name']=sql_result($result,0,"Name");
345 $EditMem['Email']=sql_result($result,0,"Email");
346 $EditMem['GroupID']=sql_result($result,0,"GroupID");
347 $gquery = sql_pre_query("SELECT * FROM \"".$Settings['sqltable']."groups\" WHERE \"id\"=%i LIMIT 1", array($EditMem['GroupID']));
348 $gresult=sql_query($gquery,$SQLStat);
349 $EditMem['Group']=sql_result($gresult,0,"Name");
350 sql_free_result($gresult);
351 $EditMem['Validated']=sql_result($result,0,"Validated");
352 $EditMem['HiddenMember']=sql_result($result,0,"HiddenMember");
353 $EditMem['WarnLevel']=sql_result($result,0,"WarnLevel");
354 $EditMem['BanTime']=sql_result($result,0,"BanTime");
355 if($EditMem['BanTime']!=""&&$EditMem['BanTime']>1) {
356 $BanMonth=GMTimeChange("m",$EditMem['BanTime'],0,0,"off");
357 $BanDay=GMTimeChange("d",$EditMem['BanTime'],0,0,"off");
358 $BanYear=GMTimeChange("Y",$EditMem['BanTime'],0,0,"off");
359 $EditMem['BanTime'] = $BanMonth."/".$BanDay."/".$BanYear; }
360 $EditMem['Interests']=sql_result($result,0,"Interests");
361 $EditMem['Signature']=sql_result($result,0,"Signature");
362 $EditMem['Avatar']=sql_result($result,0,"Avatar");
363 $EditMem['AvatarSize']=sql_result($result,0,"AvatarSize");
364 $EditMem['Title']=sql_result($result,0,"Title");
365 $EditMem['Website']=sql_result($result,0,"Website");
366 $EditMem['Gender']=sql_result($result,0,"Gender");
367 $EditMem['PostCount']=sql_result($result,0,"PostCount");
368 $EditMem['Karma']=sql_result($result,0,"Karma");
369 $EditMem['TimeZone']=sql_result($result,0,"TimeZone");
370 $EditMem['DST']=sql_result($result,0,"DST");
371 $EditMem['IP']=sql_result($result,0,"IP");
373 <div
class="TableMenuBorder">
374 <?php
if($ThemeSet['TableStyle']=="div") { ?
>
375 <div
class="TableMenuRow1">
376 <?php
echo $ThemeSet['TitleIcon']; ?
><a href
="<?php echo url_maker($exfile['admin'],$Settings['file_ext'],"act
=editmember
",$Settings['qstr'],$Settings['qsep'],$prexqstr['admin'],$exqstr['admin']); ?>">Editing Members Manager
</a
></div
>
378 <table
class="TableMenu" style
="width: 100%;">
379 <?php
if($ThemeSet['TableStyle']=="table") { ?
>
380 <tr
class="TableMenuRow1">
381 <td
class="TableMenuColumn1"><span style
="float: left;">
382 <?php
echo $ThemeSet['TitleIcon']; ?
><a href
="<?php echo url_maker($exfile['admin'],$Settings['file_ext'],"act
=editmember
",$Settings['qstr'],$Settings['qsep'],$prexqstr['admin'],$exqstr['admin']); ?>">Editing Members Manager
</a
>
383 </span
><span style
="float: right;"> 
;</span
></td
>
385 <tr
class="TableMenuRow2">
386 <th
class="TableMenuColumn2" style
="width: 100%; text-align: left;">
387 <span style
="float: left;"> 
;Editing Members Manager
: </span
>
388 <span style
="float: right;"> 
;</span
>
391 <tr
class="TableMenuRow3">
392 <td
class="TableMenuColumn3">
393 <form style
="display: inline;" method
="post" id
="acptool" action
="<?php echo url_maker($exfile['admin'],$Settings['file_ext'],"act
=editmember
",$Settings['qstr'],$Settings['qsep'],$prexqstr['admin'],$exqstr['admin']); ?>">
394 <table style
="text-align: left;">
395 <tr style
="text-align: left;">
396 <td style
="width: 50%;"><label
class="TextBoxLabel" for="MemName">Members Name
:</label
></td
>
397 <td style
="width: 50%;"><input type
="text" name
="MemName" class="TextBox" id
="MemName" size
="20" value
="<?php echo $EditMem['Name']; ?>" /></td
>
398 </tr
><tr style
="text-align: left;">
399 <td style
="width: 50%;"><label
class="TextBoxLabel" for="MemEmail">Members Email
:</label
></td
>
400 <td style
="width: 50%;"><input type
="text" name
="MemEmail" class="TextBox" id
="MemEmail" size
="20" value
="<?php echo $EditMem['Email']; ?>" /></td
>
401 <?php
if($EditMem['ID']!=1) { ?
>
402 </tr
><tr style
="text-align: left;">
403 <td style
="width: 50%;"><label
class="TextBoxLabel" for="gid">New Group
for Member
:</label
></td
>
404 <td style
="width: 50%;"><select size
="1" class="TextBox" name
="gid" id
="gid">
406 $getgrpidq = sql_pre_query("SELECT * FROM \"".$Settings['sqltable']."groups\" WHERE (\"Name\"<>'%s' AND \"Name\"<>'%s')", array($Settings['GuestGroup'],$Settings['ValidateGroup']));
407 $getgrpidr=sql_query($getgrpidq,$SQLStat);
408 $getgrpidnum=sql_num_rows($getgrpidr);
410 if($getgrpidnum<1) { ?
>
411 <option value
="0">None
</option
>
413 while ($getgrpidi < $getgrpidnum) {
414 $getgrpidID=sql_result($getgrpidr,$getgrpidi,"id");
415 $getgrpidName=sql_result($getgrpidr,$getgrpidi,"Name");
417 if($getgrpidID==$EditMem['GroupID']) {
418 $GIDselected = " selected=\"selected\""; }
420 <option value
="<?php echo $getgrpidID; ?>"<?php
echo $GIDselected; ?
>><?php
echo $getgrpidName; ?
></option
>
421 <?php ++
$getgrpidi; }
422 sql_free_result($getgrpidr); ?
>
425 </tr
><tr style
="text-align: left;">
426 <td style
="width: 50%;"><label
class="TextBoxLabel" for="MemHidden">Hidden Member
:</label
></td
>
427 <td style
="width: 50%;"><select id
="MemHidden" name
="MemHidden" class="TextBox">
428 <option selected
="selected" value
="<?php echo $EditMem['HiddenMember']; ?>">Old
Value (<?php
echo $EditMem['HiddenMember']; ?
>)</option
>
429 <option value
="no">No
</option
>
430 <option value
="yes">Yes
</option
>
432 </tr
><tr style
="text-align: left;">
433 <td style
="width: 50%;"><label
class="TextBoxLabel" for="MemWarnLevel">Members Warn Level
:</label
></td
>
434 <td style
="width: 50%;"><input type
="text" name
="MemWarnLevel" class="TextBox" id
="MemWarnLevel" size
="20" value
="<?php echo $EditMem['WarnLevel']; ?>" /></td
>
435 </tr
><tr style
="text-align: left;">
436 <td style
="width: 50%;"><label
class="TextBoxLabel" for="MemBanTime" title
="Enter date till user is banned in MM/DD/YYYY format. 0 means no ban and -1 means permanent ban.">Members Ban Time
:</label
></td
>
437 <td style
="width: 50%;"><input type
="text" name
="MemBanTime" class="TextBox" id
="MemBanTime" size
="20" value
="<?php echo $EditMem['BanTime']; ?>" /></td
>
438 </tr
><tr style
="text-align: left;">
439 <td style
="width: 50%;"><label
class="TextBoxLabel" for="MemPostCount">Members Post Count
:</label
></td
>
440 <td style
="width: 50%;"><input type
="text" name
="MemPostCount" class="TextBox" id
="MemPostCount" size
="20" value
="<?php echo $EditMem['PostCount']; ?>" /></td
>
441 </tr
><tr style
="text-align: left;">
442 <td style
="width: 50%;"><label
class="TextBoxLabel" for="MemKarma">Members Karma Count
:</label
></td
>
443 <td style
="width: 50%;"><input type
="text" name
="MemKarma" class="TextBox" id
="MemKarma" size
="20" value
="<?php echo $EditMem['Karma']; ?>" /></td
>
445 <table style
="text-align: left;">
446 <tr style
="text-align: left;">
447 <td style
="width: 100%;">
448 <input type
="hidden" name
="act" value
="editmember" style
="display: none;" />
449 <input type
="hidden" name
="id" value
="<?php echo $_POST['id']; ?>" style
="display: none;" />
450 <input type
="hidden" name
="update" value
="now" style
="display: none;" />
451 <input type
="submit" class="Button" value
="Edit Member" name
="Apply_Changes" />
452 <input type
="reset" value
="Reset Form" class="Button" name
="Reset_Form" />
457 <tr
class="TableMenuRow4">
458 <td
class="TableMenuColumn4"> 
;</td
>
462 <?php
} if($_POST['act']=="editmember"&&$_POST['update']=="now"&&$_GET['act']=="editmember"&&
463 ($_POST['id']!="0"||
$_POST['id']!="-1")) {
464 $ggidquery = sql_pre_query("SELECT * FROM \"".$Settings['sqltable']."groups\" WHERE \"Name\"='%s' LIMIT 1", array($Settings['GuestGroup']));
465 $ggidresult=sql_query($ggidquery,$SQLStat);
466 $GuestGroupID=sql_result($ggidresult,0,"id");
467 sql_free_result($ggidresult);
468 $vgidquery = sql_pre_query("SELECT * FROM \"".$Settings['sqltable']."groups\" WHERE \"Name\"='%s' LIMIT 1", array($Settings['ValidateGroup']));
469 $vgidresult=sql_query($vgidquery,$SQLStat);
470 $ValidateGroupID=sql_result($vgidresult,0,"id");
471 sql_free_result($vgidresult);
472 $DMemName = GetUserName($_POST['id'],$Settings['sqltable']);
473 $DMemName = $DMemName['Name'];
474 $_POST['MemName'] = stripcslashes(htmlspecialchars($_POST['MemName'], ENT_QUOTES
, $Settings['charset']));
475 //$_POST['MemName'] = preg_replace("/&#(x[a-f0-9]+|[0-9]+);/i", "&#$1;", $_POST['MemName']);
476 $_POST['MemName'] = remove_spaces($_POST['MemName']);
477 $_POST['MemEmail'] = remove_spaces($_POST['MemEmail']);
478 $username_check = null;
479 if($_POST['MemName']!=$DMemName) {
480 $tquery = sql_pre_query("UPDATE \"".$Settings['sqltable']."topics\" SET \"GuestName\"='%s' WHERE \"UserID\"=%i", array($_POST['MemName'],$_POST['id']));
481 sql_query($tquery,$SQLStat);
482 $r1query = sql_pre_query("UPDATE \"".$Settings['sqltable']."posts\" SET \"GuestName\"='%s' WHERE \"UserID\"=%i", array($_POST['MemName'],$_POST['id']));
483 sql_query($r1query,$SQLStat);
484 $r2query = sql_pre_query("UPDATE \"".$Settings['sqltable']."posts\" SET \"EditUserName\"='%s' WHERE \"EditUser\"=%i", array($_POST['MemName'],$_POST['id']));
485 sql_query($r2query,$SQLStat);
486 $sql_username_check = sql_query(sql_pre_query("SELECT \"Name\" FROM \"".$Settings['sqltable']."members\" WHERE \"Name\"='%s'", array($_POST['MemName'])),$SQLStat);
487 $username_check = sql_num_rows($sql_username_check);
488 sql_free_result($sql_username_check); }
489 if($_POST['MemHidden']!="yes"&&$_POST['MemHidden']!="no") {
490 $_POST['MemHidden'] = "no"; }
491 if(!is_numeric($_POST['MemWarnLevel'])) { $_POST['MemWarnLevel'] = "0"; }
492 if(!is_numeric($_POST['MemPostCount'])) { $_POST['MemPostCount'] = "0"; }
493 if(!is_numeric($_POST['MemKarma'])) { $_POST['MemKarma'] = "0"; }
494 if($_POST['MemBanTime']!=null&&$_POST['MemBanTime']>1) {
495 $BirthExpl = explode("/",$_POST['MemBanTime']);
496 if(count($BirthExpl)!="3") {
497 $_POST['MemBanTime'] = "0"; $BirthExpl[0] = "0"; $BirthExpl[1] = "0"; $BirthExpl[2] = "0"; }
498 if(!is_numeric($BirthExpl[0])) { $BirthExpl[0] = "0"; }
499 if(!is_numeric($BirthExpl[1])) { $BirthExpl[1] = "0"; }
500 if(!is_numeric($BirthExpl[2])) { $BirthExpl[2] = "0"; }
501 if(count($BirthExpl)=="3"&&checkdate($BirthExpl[0],$BirthExpl[1],$BirthExpl[2])===true) {
502 if(is_numeric($BirthExpl[0])&&is_numeric($BirthExpl[1])&&is_numeric($BirthExpl[2])) {
503 if(pre_strlen($BirthExpl[0])=="1") { $BirthExpl[0] = "0".$BirthExpl[0]; }
504 if(pre_strlen($BirthExpl[1])=="1") { $BirthExpl[1] = "0".$BirthExpl[1]; }
505 if(pre_strlen($BirthExpl[0])=="2"&&pre_strlen($BirthExpl[1])=="2"&&pre_strlen($BirthExpl[2])=="4") {
506 $BirthIn = mktime(12,12,12,$BirthExpl[0],$BirthExpl[1],$BirthExpl[2]);
507 $BirthMonth=GMTimeChange("m",$BirthIn,0,0,"off");
508 $BirthDay=GMTimeChange("d",$BirthIn,0,0,"off");
509 $BirthYear=GMTimeChange("Y",$BirthIn,0,0,"off");
510 $_POST['MemBanTime'] = $BirthIn; }
511 if(pre_strlen($BirthExpl[0])!="2"||
pre_strlen($BirthExpl[1])!="2"||
pre_strlen($BirthExpl[2])!="4") {
512 $_POST['MemBanTime'] = "0"; $BirthMonth="0"; $BirthDay="0"; $BirthYear="0"; } }
513 if (!is_numeric($BirthExpl[0])||
!is_numeric($BirthExpl[1])||
!is_numeric($BirthExpl[2])) {
514 $_POST['MemBanTime'] = "0"; $BirthMonth="0"; $BirthDay="0"; $BirthYear="0"; } }
515 if(count($BirthExpl)=="3"&&
516 checkdate($BirthExpl[0],$BirthExpl[1],$BirthExpl[2])===false) {
517 $_POST['MemBanTime'] = "0"; $BirthMonth="0"; $BirthDay="0"; $BirthYear="0"; }
518 if(count($BirthExpl)!="3") {
519 $_POST['MemBanTime'] = "0"; $BirthMonth="0"; $BirthDay="0"; $BirthYear="0"; } }
520 if($DMemName!==null&&($_POST['id']!="0"||
$_POST['id']!="-1")&&
521 ($_POST['gid']!=$GuestGroupID||
$_POST['gid']!=$ValidateGroupID)) {
522 if($_POST['MemName']==$DMemName||
$username_check>=1) {
523 if($_POST['id']!=1) {
524 $dmquery = sql_pre_query("UPDATE \"".$Settings['sqltable']."members\" SET \"GroupID\"=%i,\"HiddenMember\"='%s',\"WarnLevel\"=%i,\"BanTime\"=%i,\"PostCount\"=%i,\"Karma\"=%i WHERE \"id\"=%i", array($_POST['gid'],$_POST['MemHidden'],$_POST['MemWarnLevel'],$_POST['MemBanTime'],$_POST['MemPostCount'],$_POST['MemKarma'],$_POST['id'])); }
525 if($_POST['id']==1) {
526 $dmquery = sql_pre_query("UPDATE \"".$Settings['sqltable']."members\" SET \"HiddenMember\"='%s',\"WarnLevel\"=%i,\"BanTime\"=%i,\"PostCount\"=%i,\"Karma\"=%i WHERE \"id\"=%i", array($_POST['MemHidden'],$_POST['MemWarnLevel'],$_POST['MemBanTime'],$_POST['MemPostCount'],$_POST['MemKarma'],$_POST['id'])); } }
527 if($_POST['MemName']!=$DMemName&&$username_check<1) {
528 if($_POST['id']!=1) {
529 $dmquery = sql_pre_query("UPDATE \"".$Settings['sqltable']."members\" SET \"Name\"='%s',\"GroupID\"=%i,\"HiddenMember\"='%s',\"WarnLevel\"=%i,\"BanTime\"=%i,\"PostCount\"=%i,\"Karma\"=%i WHERE \"id\"=%i", array($_POST['MemName'],$_POST['gid'],$_POST['MemHidden'],$_POST['MemWarnLevel'],$_POST['MemBanTime'],$_POST['MemPostCount'],$_POST['MemKarma'],$_POST['id'])); }
530 if($_POST['id']==1) {
531 $dmquery = sql_pre_query("UPDATE \"".$Settings['sqltable']."members\" SET \"Name\"='%s',\"HiddenMember\"='%s',\"WarnLevel\"=%i,\"BanTime\"=%i,\"PostCount\"=%i,\"Karma\"=%i WHERE \"id\"=%i", array($_POST['MemName'],$_POST['MemHidden'],$_POST['MemWarnLevel'],$_POST['MemBanTime'],$_POST['MemPostCount'],$_POST['MemKarma'],$_POST['id'])); } }
532 sql_query($dmquery,$SQLStat); }
534 <div
class="TableMenuBorder">
535 <?php
if($ThemeSet['TableStyle']=="div") { ?
>
536 <div
class="TableMenuRow1">
537 <?php
echo $ThemeSet['TitleIcon']; ?
><a href
="<?php echo url_maker($exfile['admin'],$Settings['file_ext'],"act
=".$_GET['act']."&menu
=members
",$Settings['qstr'],$Settings['qsep'],$prexqstr['admin'],$exqstr['admin']); ?>">Updating Settings
</a
></div
>
539 <table
class="TableMenu" style
="width: 100%;">
540 <?php
if($ThemeSet['TableStyle']=="table") { ?
>
541 <tr
class="TableMenuRow1">
542 <td
class="TableMenuColumn1"><span style
="float: left;">
543 <?php
echo $ThemeSet['TitleIcon']; ?
><a href
="<?php echo url_maker($exfile['admin'],$Settings['file_ext'],"act
=".$_GET['act']."&menu
=members
",$Settings['qstr'],$Settings['qsep'],$prexqstr['admin'],$exqstr['admin']); ?>">Updating Settings
</a
>
544 </span
><span style
="float: right;"> 
;</span
></td
>
546 <tr id
="ProfileTitle" class="TableMenuRow2">
547 <th
class="TableMenuColumn2">Updating Settings
</th
>
549 <tr
class="TableMenuRow3" id
="ProfileUpdate">
550 <td
class="TableMenuColumn3">
551 <div style
="text-align: center;">
552 <br
/><?php
echo $DMemName; ?
>'s member info was changed successfully.<br /> <a href="<?php echo url_maker($exfile['admin'],$Settings['file_ext'],"act=".$_GET['act']."&menu=members",$Settings['qstr'],$Settings['qsep'],$prexqstr['admin'],$exqstr['admin']); ?>">Click here</a> to back to admin cp.<br />
555 <tr id
="ProfileTitleEnd" class="TableMenuRow4">
556 <td
class="TableMenuColumn4"> 
;</td
>