userrank.php

在综合英文版XOOPS 2.09, 2.091, 2.092 的基础上正式发布XOOPS 2.09中文版 XOOPS 2.09x 版主要是PHP5升级、bug修正和安全补正： 1 全面兼容PHP 5.

<?php
// $Id: userrank.php,v 1.9 2004/12/26 19:12:06 onokazu Exp $
//  ------------------------------------------------------------------------ //
//                XOOPS - PHP Content Management System                      //
//                    Copyright (c) 2000 XOOPS.org                           //
//                       <http://www.xoops.org/>                             //
//  ------------------------------------------------------------------------ //
//  This program is free software; you can redistribute it and/or modify     //
//  it under the terms of the GNU General Public License as published by     //
//  the Free Software Foundation; either version 2 of the License, or        //
//  (at your option) any later version.                                      //
//                                                                           //
//  You may not change or alter any portion of this comment or credits       //
//  of supporting developers from this source code or any supporting         //
//  source code which is considered copyrighted (c) material of the          //
//  original comment or credit authors.                                      //
//                                                                           //
//  This program is distributed in the hope that it will be useful,          //
//  but WITHOUT ANY WARRANTY; without even the implied warranty of           //
//  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the            //
//  GNU General Public License for more details.                             //
//                                                                           //
//  You should have received a copy of the GNU General Public License        //
//  along with this program; if not, write to the Free Software              //
//  Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA  02111-1307 USA //
//  ------------------------------------------------------------------------ //
// Author: Kazumi Ono (AKA onokazu)                                          //
// URL: http://www.myweb.ne.jp/, http://www.xoops.org/, http://jp.xoops.org/ //
// Project: The XOOPS Project                                                //
// ------------------------------------------------------------------------- //

if ( !is_object($xoopsUser) || !is_object($xoopsModule) || !$xoopsUser->isAdmin($xoopsModule->mid()) ) {
	exit("Access Denied");
}

function RankForumAdmin()
{
	$db =& Database::getInstance();
	xoops_cp_header();
	echo "<h4 style='text-align:left;'>"._AM_RANKSSETTINGS."</h4>
	<table width='100%' class='outer' cellpadding='4' cellspacing='1'>
	<tr align='center'>
	<th align='left'>"._AM_TITLE."</th>
	<th>"._AM_MINPOST."</th>
	<th>"._AM_MAXPOST."</th>
	<th>"._AM_IMAGE."</th>
	<th>"._AM_SPERANK."</th>
	<th>"._AM_ACTION."</th></tr>";
	$result = $db->query("SELECT * FROM ".$db->prefix("ranks")." ORDER BY rank_id");
	$count = 0;
	while ( $rank = $db->fetchArray($result) ) {
		if ($count % 2 == 0) {
			$class = 'even';
		} else {
			$class = 'odd';
		}
		echo "<tr class='$class' align='center'>
		<td align='left'>".$rank['rank_title']."</td>
		<td>".$rank['rank_min']."</td>
		<td>".$rank['rank_max']."</td>
		<td>";
		if ($rank['rank_image'] && file_exists(XOOPS_UPLOAD_PATH.'/'.$rank['rank_image'])) {
			echo '<img src="'.XOOPS_UPLOAD_URL.'/'.$rank['rank_image'].'" alt="" /></td>';
		} else {
			echo '&nbsp;';
		}
		if ($rank['rank_special'] == 1) {
			echo '<td>'._AM_ON.'</td>';
		} else {
			echo '<td>'._AM_OFF.'</td>';
		}
		echo"<td><a href='admin.php?fct=userrank&amp;op=RankForumEdit&amp;rank_id=".$rank['rank_id']."'>"._AM_EDIT."</a> <a href='admin.php?fct=userrank&amp;op=RankForumDel&amp;rank_id=".$rank['rank_id']."&amp;ok=0'>"._AM_DEL."</a></td></tr>";
		$count++;
    }
    echo '</table><br /><br />';
	$rank['rank_min'] = 0;
	$rank['rank_max'] = 0;
	$rank['rank_special'] = 0;
	$rank['rank_id'] = '';
	$rank['rank_title'] = '';
	$rank['rank_image'] = 'blank.gif';
	$rank['form_title'] = _AM_ADDNEWRANK;
	$rank['op'] = 'RankForumAdd';
	include_once XOOPS_ROOT_PATH.'/modules/system/admin/userrank/rankform.php';
	$rank_form->display();
    xoops_cp_footer();
}

function RankForumAdd($rank_title,$rank_min,$rank_max,$rank_image,$rank_special)
{
	$db =& Database::getInstance();
	$myts =& MyTextSanitizer::getInstance();
	if (isset($rank_image['name']) && trim($rank_image['name']) != '') {
		include_once XOOPS_ROOT_PATH.'/class/uploader.php';
		$uploader = new XoopsMediaUploader(XOOPS_UPLOAD_PATH, array('image/gif', 'image/jpeg', 'image/pjpeg', 'image/x-png'), 100000, 120, 120);
		$uploader->setPrefix('rank');
		if ($uploader->fetchMedia($_POST['xoops_upload_file'][0])) {
			if (!$uploader->upload()) {
				$err = $uploader->getErrors();
			} else {
				$rank_title = $myts->makeTboxData4Save($rank_title);
				$rank_image = $myts->makeTboxData4Save($uploader->getSavedFileName());
				$newid = $db->genId($db->prefix("ranks")."_rank_id_seq");
				if ($rank_special == 1) {
					$db->query("INSERT INTO ".$db->prefix("ranks")." (rank_id, rank_title, rank_min, rank_max, rank_special, rank_image) VALUES ($newid, '$rank_title', -1 ,-1 ,1,'$rank_image')");
				} else {
					$db->query("INSERT INTO ".$db->prefix("ranks")." (rank_id, rank_title, rank_min, rank_max, rank_special, rank_image) VALUES ($newid, '$rank_title', '$rank_min' ,'$rank_max' , 0, '$rank_image')");
				}
			}
		} else {
			$err = $uploader->getErrors();
		}
	} else {
		$rank_title = $myts->makeTboxData4Save($rank_title);
		$newid = $db->genId($db->prefix("ranks")."_rank_id_seq");
		if ($rank_special == 1) {
			if(!$db->query("INSERT INTO ".$db->prefix("ranks")." (rank_id, rank_title, rank_min, rank_max, rank_special, rank_image) VALUES ($newid, '$rank_title', -1 ,-1 ,1,'')")) {
				$err = 'Failed storing rank data into the database';
			}
		} else {
			if (!$db->query("INSERT INTO ".$db->prefix("ranks")." (rank_id, rank_title, rank_min, rank_max, rank_special, rank_image) VALUES ($newid, '$rank_title', '$rank_min' ,'$rank_max' , 0, '')")) {
				$err = 'Failed storing rank data into the database';
			}
		}
	}
	if (!isset($err)) {
		redirect_header("admin.php?fct=userrank&amp;op=RankForumAdmin",1,_AM_DBUPDATED);
	} else {
		xoops_cp_header();
		xoops_error($err);
		xoops_cp_footer();
		exit();
	}
}

function RankForumEdit($rank_id)
{
	$db =& Database::getInstance();
	$myts =& MyTextSanitizer::getInstance();
	xoops_cp_header();
	echo '<a href="admin.php?fct=userrank">'. _AM_RANKSSETTINGS .'</a>&nbsp;<span style="font-weight:bold;">&raquo;&raquo;</span>&nbsp;'._AM_EDITRANK.'<br /><br />';
	$result = $db->query("SELECT * FROM ".$db->prefix("ranks")." WHERE rank_id=".$rank_id);
	$rank = $db->fetchArray($result);
	$rank['rank_title'] = $myts->makeTboxData4Edit($rank['rank_title']);
	$rank['rank_image'] = $myts->makeTboxData4Edit($rank['rank_image']);
	$rank['form_title'] = _AM_EDITRANK;
	$rank['op'] = 'RankForumSave';
	include_once XOOPS_ROOT_PATH.'/modules/system/admin/userrank/rankform.php';
	$rank_form->addElement(new XoopsFormHidden('old_rank', $rank['rank_image']));
	$rank_form->display();
	xoops_cp_footer();
}

/**
 * Saves a new/updated rank into the database
 * 
 * @todo	$_FILES['rank_image'] is an array and should be treated as such!
 */

function RankForumSave($rank_id, $rank_title, $rank_min, $rank_max, $rank_image, $rank_special, $old_rank)
{
	$db =& Database::getInstance();
	$myts =& MyTextSanitizer::getInstance();
	if (isset($rank_image['name']) && trim($rank_image['name']) != '') {
		include_once XOOPS_ROOT_PATH.'/class/uploader.php';
		$uploader = new XoopsMediaUploader(XOOPS_UPLOAD_PATH, array('image/gif', 'image/jpeg', 'image/pjpeg', 'image/x-png'), 100000, 120, 120);
		$uploader->setPrefix('rank');
		if ($uploader->fetchMedia($_POST['xoops_upload_file'][0])) {
			if (!$uploader->upload()) {
				$err = $uploader->getErrors();
			} else {
				$rank_title = $myts->makeTboxData4Save($rank_title);
				$rank_image = $myts->makeTboxData4Save($uploader->getSavedFileName());
				if ($rank_special != 1) {
					$sql = "UPDATE ".$db->prefix("ranks")." SET rank_title='$rank_title',rank_min=".intval($rank_min).", rank_max=".intval($rank_max).", rank_special=0, rank_image='$rank_image' WHERE rank_id=".$rank_id;
				} else {
					$sql = "UPDATE ".$db->prefix("ranks")." SET rank_title='$rank_title', rank_min=-1, rank_max=-1, rank_special=1, rank_image='$rank_image' WHERE rank_id=".$rank_id;
				}
				if (!$db->query($sql)) {
					$err = 'Failed storing rank data into the database';
				} else {
					@unlink(XOOPS_UPLOAD_PATH.'/'.$old_rank);
				}
			}
		} else {
			$err = $uploader->getErrors();
		}
	} else {
		$rank_title = $myts->makeTboxData4Save($rank_title);
		if ($rank_special != 1) {
			$sql = "UPDATE ".$db->prefix("ranks")." SET rank_title='$rank_title',rank_min=".intval($rank_min).", rank_max=".intval($rank_max).", rank_special=0 WHERE rank_id=".$rank_id;
		} else {
			$sql = "UPDATE ".$db->prefix("ranks")." SET rank_title='$rank_title', rank_min=-1, rank_max=-1, rank_special=1 WHERE rank_id=".$rank_id;
		}
		if (!$db->query($sql)) {
			$err = 'Failed storing rank data into the database';
		}
	}
	if (!isset($err)) {
		redirect_header("admin.php?fct=userrank&amp;op=RankForumAdmin",1,_AM_DBUPDATED);
	} else {
		xoops_cp_header();
		xoops_error($err);
		xoops_cp_footer();
		exit();
	}
}

function RankForumDel($rank_id, $ok=0)
{
	$db =& Database::getInstance();
   	if ($ok == 1) {
		$sql = sprintf("DELETE FROM %s WHERE rank_id = %u", $db->prefix("ranks"), $rank_id);
		$db->query($sql);
		redirect_header("admin.php?fct=userrank&amp;op=ForumAdmin",1,_AM_DBUPDATED);
		exit();
   	} else {
		xoops_cp_header();
		xoops_confirm(array('fct' => 'userrank', 'op' => 'RankForumDel', 'rank_id' => $rank_id, 'ok' => 1), 'admin.php', _AM_WAYSYWTDTR);
   	}
	xoops_cp_footer();
}
?>