users.php

简介：IceBB是一个强大

     
		if(isset($icebb->input['submit']))
		{
			$errors			= array();
		
			if(!isset($icebb->input['username']))
			{
				$errors[]	= "No username entered";
			}
			else {
				$icebb->input['user']= htmlspecialchars(wash_ebul_tags($icebb->input['username']));
				
				$usersq		= $db->query("SELECT * FROM icebb_users WHERE username='{$icebb->input['username']}'");
				if($db->get_num_rows($usersq)>=1)
				{
					$errors[]= "Username taken";
				}
			}
			
			if(!isset($icebb->input['password']))
			{
				$errors[]	= "Password not entered";
			}

			if(!isset($icebb->input['email']))
			{
				$errors[]	= "Email not entered";
			}
			
			if(count($errors)<=0)
			{
				$salty			= md5(crypt(make_salt(27)));
				$pass_hashed	= md5(md5($icebb->input['password']).$salty);
			
				$lastuser		= $db->fetch_result("SELECT * FROM icebb_users ORDER BY id DESC LIMIT 1");
			
				$db->insert('icebb_users',array(
											'id'		=> $lastuser['id']+1,
											'username'	=> $icebb->input['username'],
											'password'	=> $pass_hashed,
											'pass_salt'	=> $salty,
											'email'		=> $icebb->input['email'],
											'user_group'=> $icebb->input['group'],
											'joindate'	=> time(),
                                            'notepad'	=> 'Account made by an admin',
                                            'login_key'	=> md5(uniqid(rand(), true)),
										  ));
							
				$cache_result	= $db->fetch_result("SELECT COUNT(*) as count FROM icebb_users");
				$cache_result2	= $db->fetch_result("SELECT * FROM icebb_users ORDER BY id DESC");
				$icebb->cache['stats']['user_count']		= $cache_result['count'];
				$icebb->cache['stats']['user_newest']		= $cache_result2;
				$std->recache($icebb->cache['stats'],'stats');
					
			
				$std->log('admin',"Created user: {$icebb->input['username']}",$icebb->adsess['user']);
										  
               $icebb->admin->redirect("User added","{$icebb->base_url}act=users&func=new");
			}
          else
          {
          	foreach($errors as $errors)
               {
               	$err_msg .= $errors."<br />";
               }
          	$icebb->admin->error($errors);
          }
		}
		
		$db->query("SELECT * FROM icebb_groups WHERE gid!=3 AND gid!=4 AND gid!=5");
		while($g					= $db->fetch_row())
		{
			$ugroups[]				= array($g['gid'],$g['g_title']);
		}
     
		$icebb->admin->page_title	= "Add New User";

		$icebb->admin_skin->table_titles= array(array('{none}','40%'),array('{none}','60%'));

		$icebb->admin->html			= $icebb->admin_skin->start_form('admin.php',array('s'=>$icebb->adsess['sessid'],'act'=>'users','func'=>'new','submit'=>'1'),'post'," name='adminfrm'");

		$icebb->admin->html		   .= $icebb->admin_skin->start_table("New user information");
		
		$icebb->admin->html		   .= $icebb->admin_skin->table_row(array("<b>Username</b>",$icebb->admin_skin->form_input('username','')));
		$icebb->admin->html		   .= $icebb->admin_skin->table_row(array("<b>Password</b>",$icebb->admin_skin->form_password('password','')));
   		$icebb->admin->html		   .= $icebb->admin_skin->table_row(array("<b>Email</b>",$icebb->admin_skin->form_input('email','')));
		$icebb->admin->html		   .= $icebb->admin_skin->table_row(array("<b>Group</b>",$icebb->admin_skin->form_dropdown('group',$ugroups)));
     
		$icebb->admin->html		   .= $icebb->admin_skin->end_form("Register User");
		
		$icebb->admin->html		   .= $icebb->admin_skin->end_table();
     
    }
    
    function chg_name()
    {
		global $icebb,$db,$std;
		
		if(!empty($icebb->input['nusername']))
		{
			$u						= $db->fetch_result("SELECT * FROM icebb_users WHERE id='{$icebb->input['uid']}'");
			$ou						= $u['username'];
			$nu						= $icebb->input['nusername'];
		
			$db->query("UPDATE icebb_users SET username='{$nu}' WHERE id='{$icebb->input['uid']}'");
			$db->query("UPDATE icebb_posts SET pauthor='{$nu}' WHERE pauthor='{$ou}'");
			$db->query("UPDATE icebb_topics SET starter='{$nu}' WHERE starter='{$ou}'");
			$db->query("UPDATE icebb_topics SET lastpost_author='{$nu}' WHERE lastpost_author='{$ou}'");
			$db->query("UPDATE icebb_ra_logs SET user='{$nu}' WHERE user='{$ou}'");
			$db->query("UPDATE icebb_pm_posts SET pauthor='{$nu}' WHERE pauthor='{$ou}'");
			$db->query("UPDATE icebb_pm_topics SET starter='{$nu}' WHERE starter='{$ou}'");
			$db->query("UPDATE icebb_forums SET lastpost_author='{$nu}' WHERE lastpost_author='{$ou}'");
			$db->query("UPDATE icebb_logs SET user='{$nu}' WHERE user='{$ou}'");
			$db->query("UPDATE icebb_moderators SET muser='{$nu}' WHERE muser='{$ou}'");
			$db->query("UPDATE icebb_poll_voters SET voteruser='{$nu}' WHERE voteruser='{$ou}'");
			$db->query("UPDATE icebb_session_data SET username='{$nu}' WHERE username='{$ou}'");
			$db->query("UPDATE icebb_users_validating SET user='{$nu}' WHERE user='{$ou}'");
		
			$icebb->admin->redirect("Username changed",$icebb->base_url."act=users&func=search&search_how={$icebb->input['search_how']}&username={$icebb->input['nusername']}");
		}
		
		$icebb->admin->page_title	= "Change Username";

		$icebb->admin_skin->table_titles= array(array('{none}','40%'),array('{none}','60%'));

		$icebb->admin->html			= $icebb->admin_skin->start_form('admin.php',array('act'=>'users','func'=>'chgname','uid'=>$icebb->input['uid'],'search_how'=>$icebb->input['search_how'],'submit'=>'1'),'post'," name='adminfrm'");
		$icebb->admin->html		   .= $icebb->admin_skin->start_table("Change username");
		$icebb->admin->html		   .= $icebb->admin_skin->table_row(array("<strong>New Username</strong>",$icebb->admin_skin->form_input('nusername','')));
		$icebb->admin->html		   .= $icebb->admin_skin->end_form("Change Username");
		$icebb->admin->html		   .= $icebb->admin_skin->end_table();
    }
    
    function suspend()
    {
    	global $icebb,$std,$db,$config;
     
		$db->query("SELECT * FROM icebb_users WHERE id='{$icebb->input['uid']}' LIMIT 1");
		$u = $db->fetch_row();	
    	
    	$time = array();

    	$time['hour'] = 'hour(s)';
		$time['day'] == 'day(s)';
		$time['month'] == 'month(s)';
		$time['year'] == 'year(s)';
     
		foreach($time as $a => $b)
		{
			$times[]			= array($a,$b);
		}
     
     if(!isset($icebb->input['submit']))
     {
     
     	$icebb->admin->page_title	= "Suspend User";
	
			$icebb->admin_skin->table_titles= array(array('{none}','40%'),array('{none}','60%'));
	
			$icebb->admin->html			= $icebb->admin_skin->start_form('admin.php',array('s'=>$icebb->adsess['sessid'],'act'=>'users','func'=>'suspend','uid'=>$icebb->input['uid'],'search_how'=>$icebb->input['search_how'],'searchq'=>$icebb->input['searchq'],'submit'=>'1'),'post'," name='adminfrm'");
	
			$icebb->admin->html		   .= $icebb->admin_skin->start_table("Suspend {$u['username']}");
			
			$icebb->admin->html		   .= $icebb->admin_skin->table_row(array("<b>Amount of time</b>",$icebb->admin_skin->form_input('time_value','')." ".$icebb->admin_skin->form_dropdown('time_name',$times)));
			$icebb->admin->html		   .= $icebb->admin_skin->table_row(array("<b>Reason</b>",$icebb->admin_skin->form_textarea('reason','')));
     
			$icebb->admin->html		   .= $icebb->admin_skin->end_form("Suspend");
		
			$icebb->admin->html		   .= $icebb->admin_skin->end_table();
     }
     else
     {
     	if(!$icebb->input['time_value'] || !$icebb->input['reason'] || !$icebb->input['time_name'])
          {
          	$std->error('Please fill out <em>all</em> fields!');
          }
          
			$suspend_time = strtotime("+".$icebb->input['time_value']." ".$icebb->input['time_name']);
			
			$date_normal = date('l dS F Y - H:i:s',$suspend_time);
			
			$headers .= "From: {$icebb->config['admin_email']}\r\n";
			$headers .= "Reply-To: {$icebb->config['admin_email']}\r\n";          
			$headers  = "MIME-Version: 1.0\r\n";
			
			$suspend_body = <<<EOF
Hi {$u['username']},

You have recieved this mail to inform you that you have been suspended untill {$date_normal}.
You do not have to do anything to make the suspension go away, this is done automatically.

Reason for suspension:
{$icebb->input['reason']}
EOF;
          
			mail($u['email'],"Suspension Notice",$suspend_body,$headers);
                    
			$db->query("UPDATE icebb_users SET temp_ban='{$suspend_time}' WHERE id='{$u['id']}' LIMIT 1");
          
			$std->log('admin',"Suspended user: {$icebb->input['username']} until {$date_normal}",$icebb->adsess['user']);
          
			$icebb->admin->redirect("User suspended",$icebb->base_url."act=users&func=search&search_how={$icebb->input['search_how']}&username={$icebb->input['searchq']}");
     }
    
    }
    
    function iptools()
    {
		global $icebb,$db,$config,$std;
		
		$icebb->admin->page_title			= "IP Tools";
		
		if(isset($icebb->input['ipaddr']))
		{
			$ip								= $icebb->input['ipaddr'];
		
			$icebb->admin->html			   .= $icebb->admin_skin->start_table($icebb->input['ipaddr']);
			
			$icebb->admin->html			   .= $icebb->admin_skin->table_row("IP address resolves to <em>".gethostbyaddr($ip)."</em>",'darkrow');
			
			$icebb->admin->html			   .= $icebb->admin_skin->table_row("Members using this IP",'darkrow');
			$db->query("SELECT * FROM icebb_users WHERE ip='{$ip}'");
			while($u						= $db->fetch_row())
			{
				$icebb->admin->html		   .= $icebb->admin_skin->table_row("&nbsp;&nbsp;<a href='{$icebb->base_url}act=users&amp;func=edit&amp;uid={$u['id']}'>{$u['username']}</a>");
			}
			
			$icebb->admin->html			   .= $icebb->admin_skin->table_row("Posts by members using this IP",'darkrow');
			$db->query("SELECT * FROM icebb_posts WHERE pauthor_ip='{$ip}'");
			while($p						= $db->fetch_row())
			{
				$icebb->admin->html		   .= $icebb->admin_skin->table_row("&nbsp;&nbsp;<a href='index.php?topic={$p['ptopicid']}&amp;pid={$p['pid']}' target='_blank'>Post #{$p['pid']}</a> by {$p['pauthor']}");
			}
			
			$icebb->admin->html			   .= $icebb->admin_skin->end_table();
		}
		else {
			$icebb->admin->html				= $icebb->admin_skin->start_form('admin.php',array('act'=>'users','func'=>'iptools'));
			
			$icebb->admin_skin->table_titles[]= array("{none}",'40%');
			$icebb->admin_skin->table_titles[]= array("{none}",'60%');
			
			$icebb->admin->html		       .= $icebb->admin_skin->start_table("Tell me everything you know about an IP"); 

			$icebb->admin->html			   .= $icebb->admin_skin->table_row(array("<strong>IP Address</strong>",$icebb->admin_skin->form_input('ipaddr')));
	
			$icebb->admin->html			   .= $icebb->admin_skin->end_form("Tell me!");
	
			$icebb->admin->html			   .= $icebb->admin_skin->end_table();
		}
    }
}
?>