acl_get('a_group')) { return; } $module['GROUP']['MANAGE'] = basename(__FILE__) . "$SID&mode=manage"; $module['GROUP']['GROUP_PREFS'] = basename(__FILE__) . "$SID&mode=prefs"; return; } define('IN_PHPBB', 1); // Include files $phpbb_root_path = '../'; $phpEx = substr(strrchr(__FILE__, '.'), 1); require('pagestart.' . $phpEx); // Do we have general permissions? if (!$auth->acl_get('a_group') ) { trigger_error($user->lang['NO_ADMIN']); } // Check and set some common vars $update = (isset($_POST['update'])) ? true : false; $mode = (isset($_REQUEST['mode'])) ? htmlspecialchars($_REQUEST['mode']) : ''; $group_id = (isset($_REQUEST['g'])) ? intval($_REQUEST['g']) : ''; if (isset($_POST['addgroup'])) { $action = 'addgroup'; } else if (isset($_POST['addleaders']) || isset($_POST['addusers'])) { $action = (isset($_POST['addleaders'])) ? 'addleaders' : 'addusers'; } else { $action = (isset($_REQUEST['action'])) ? htmlspecialchars($_REQUEST['action']) : ''; } $start = (isset($_GET['start']) && $action == 'member') ? intval($_GET['start']) : 0; $start_mod = (isset($_GET['start']) && $action == 'leader') ? intval($_GET['start']) : 0; // Grab basic data for group, if group_id is set since it's used // in several places below if ($group_id) { $sql = 'SELECT * FROM ' . GROUPS_TABLE . " WHERE group_id = $group_id"; $result = $db->sql_query($sql); if (!extract($db->sql_fetchrow($result))) { trigger_error($user->lang['NO_GROUP']); } $db->sql_freeresult($result); } switch ($mode) { case 'manage': // Page header adm_page_header($user->lang['MANAGE']); // Which page? switch ($action) { case 'delete': if (!$group_id) { trigger_error($user->lang['NO_GROUP']); } break; case 'approve': if (!$group_id) { trigger_error($user->lang['NO_GROUP']); } if (!empty($_POST['mark'])) { $id_ary = array_map('intval', $_POST['mark']); $sql = 'UPDATE ' . USER_GROUP_TABLE . ' SET user_pending = 1 WHERE user_id IN (' . implode(', ', $id_ary) . ") AND group_id = $group_id"; $db->sql_query($sql); $sql = 'SELECT username FROM ' . USERS_TABLE . ' WHERE user_id IN (' . implode(', ', $id_ary) . ')'; $result = $db->sql_query($sql); $usernames = array(); while ($row = $db->sql_fetchrow($result)) { $usernames[] = $row['username']; } $db->sql_freeresult($result); add_log('admin', 'LOG_GROUP_APPROVE', $group_name, implode(', ', $usernames)); unset($usernames); trigger_error($user->lang['USERS_APPROVED']); } break; case 'default': if (!$group_id) { trigger_error($user->lang['NO_GROUP']); } $id_ary = (!empty($_POST['mark'])) ? array_map('intval', $_POST['mark']) : false; switch (SQL_LAYER) { case 'mysql': case 'mysql4': $start = 0; do { $sql = 'SELECT user_id FROM ' . USER_GROUP_TABLE . " WHERE group_id = $group_id ORDER BY user_id LIMIT $start, 200"; $result = $db->sql_query($sql); $user_id_ary = array(); if ($row = $db->sql_fetchrow($result)) { do { $user_id_ary[] = $row['user_id']; } while ($row = $db->sql_fetchrow($result)); $sql = 'UPDATE ' . USERS_TABLE . " SET group_id = $group_id, user_colour = '$group_colour', user_rank = $group_rank WHERE user_id IN (" . implode(', ', $user_id_ary) . ')'; $db->sql_query($sql); $start = (sizeof($user_id_ary) < 200) ? 0 : $start + 200; } else { $start = 0; } $db->sql_freeresult($result); } while ($start); break; default: $sql = 'UPDATE ' . USERS_TABLE . " SET group_id = $group_id, user_colour = '$group_color', user_rank = $group_rank WHERE user_id IN ( SELECT user_id FROM " . USER_GROUP_TABLE . " WHERE group_id = $group_id )"; $db->sql_query($sql); break; } add_log('admin', 'LOG_GROUP_DEFAULTS', $group_name); trigger_error($user->lang['GROUP_DEFS_UPDATED']); break; case 'edit': case 'addgroup': if ($action == 'edit' && !$group_id) { trigger_error($user->lang['NO_GROUP']); } // Did we submit? if ($update) { if ($group_type != GROUP_SPECIAL) { $group_name = (!empty($_POST['group_name'])) ? stripslashes(htmlspecialchars($_POST['group_name'])) : ''; $group_type = (!empty($_POST['group_type'])) ? intval($_POST['group_type']) : ''; } $group_description = (!empty($_POST['group_description'])) ? stripslashes(htmlspecialchars($_POST['group_description'])) : ''; $group_colour2 = (!empty($_POST['group_colour'])) ? stripslashes(htmlspecialchars($_POST['group_colour'])) : ''; $group_avatar2 = (!empty($_POST['group_avatar'])) ? stripslashes(htmlspecialchars($_POST['group_avatar'])) : ''; $group_rank2 = (isset($_POST['group_rank'])) ? intval($_POST['group_rank']) : ''; // Check data if (!strlen($group_name) || strlen($group_name) > 40) { $error[] = (!strlen($group_name)) ? $user->lang['GROUP_ERR_USERNAME'] : $user->lang['GROUP_ERR_USER_LONG']; } if (strlen($group_description) > 255) { $error[] = $user->lang['GROUP_ERR_DESC_LONG']; } if ($group_type < GROUP_OPEN || $group_type > GROUP_FREE) { $error[] = $user->lang['GROUP_ERR_TYPE']; } // Update DB if (!sizeof($error)) { // Update group preferences $sql_ary = array( 'group_name' => (string) $group_name, 'group_description' => (string) $group_description, 'group_type' => (int) $group_type, 'group_rank' => (int) $group_rank2, 'group_colour' => (string) $group_colour2, ); $sql = ($action == 'edit') ? 'UPDATE ' . GROUPS_TABLE . ' SET ' . $db->sql_build_array('UPDATE', $sql_ary) . " WHERE group_id = $group_id" : 'INSERT INTO ' . GROUPS_TABLE . ' ' . $db->sql_build_array('INSERT', $sql_ary); $db->sql_query($sql); if ($group_id && ($group_colour != $group_colour2 || $group_rank != $group_rank2 || $group_avatar != $group_avatar2)) { $sql_ary = array( 'user_rank' => (string) $group_rank2, 'user_colour' => (string) $group_colour2, ); $sql = 'UPDATE ' . USERS_TABLE . ' SET ' . $db->sql_build_array('UPDATE', $sql_ary) . " WHERE group_id = $group_id"; $db->sql_query($sql); } $log = ($action == 'edit') ? 'LOG_GROUP_UPDATED' : 'LOG_GROUP_CREATED'; add_log('admin', $log, $group_name); $message = ($action == 'edit') ? 'GROUP_UPDATED' : 'GROUP_CREATED'; trigger_error($message); } $group_colour = &$group_colour2; $group_rank = &$group_rank2; $group_avatar = &$group_avatar2; } else if (!$group_id) { $group_name = (!empty($_POST['group_name'])) ? stripslashes(htmlspecialchars($_POST['group_name'])) : ''; $group_description = $group_colour = $group_avatar = ''; $group_type = GROUP_FREE; } ?>

lang['MANAGE'] . ' : ' . $group_name . ''; ?>

lang['GROUP_EDIT_EXPLAIN']; ?>

sql_query($sql); $rank_options = ''; if ($row = $db->sql_fetchrow($result)) { do { $selected = (!empty($group_rank) && $row['rank_id'] == $group_rank) ? ' selected="selected"' : ''; $rank_options .= ''; } while ($row = $db->sql_fetchrow($result)); } $db->sql_freeresult($result); $type_free = ($group_type == GROUP_FREE) ? ' checked="checked"' : ''; $type_open = ($group_type == GROUP_OPEN) ? ' checked="checked"' : ''; $type_closed = ($group_type == GROUP_CLOSED) ? ' checked="checked"' : ''; $type_hidden = ($group_type == GROUP_HIDDEN) ? ' checked="checked"' : ''; ?>
">
lang['GROUP_DETAILS']; ?>
', $error); ?>
lang['GROUP_NAME']; ?>: lang['G_' . $group_name] : $group_name; ?>
lang['GROUP_DESC']; ?>:
lang['GROUP_TYPE']; ?>:
lang['GROUP_TYPE_EXPLAIN']; ?>		 /> lang['GROUP_OPEN']; ?>   /> lang['GROUP_REQUEST']; ?>   /> lang['GROUP_CLOSED']; ?>   /> lang['GROUP_HIDDEN']; ?>
lang['GROUP_SETTINGS_SAVE']; ?>
lang['GROUP_COLOR']; ?>:
lang['GROUP_COLOR_EXPLAIN']; ?>		   [ " onclick="swatch();return false" target="_swatch">lang['COLOUR_SWATCH']; ?> ]
lang['GROUP_RANK']; ?>:
 
lang['NO_GROUP']); } $username_ary = (!empty($_POST['usernames'])) ? array_unique(explode("\n", $_POST['usernames'])) : ''; if (!$username_ary) { trigger_error($user->lang['NO_USERS']); } $sql_where = array(); foreach ($username_ary as $username) { if ($username = trim($username)) { $sql_where[] = "'$username'"; } } unset($username_ary); // Grab the user ids $sql = 'SELECT user_id, username FROM ' . USERS_TABLE . ' WHERE username IN (' . implode(', ', $sql_where) . ')'; $result = $db->sql_query($sql); if (!($row = $db->sql_fetchrow($result))) { trigger_error($user->lang['NO_USERS']); } $id_ary = $username_ary = array(); do { $username_ary[$row['user_id']] = $row['username']; $id_ary[] = $row['user_id']; } while ($row = $db->sql_fetchrow($result)); $db->sql_freeresult($result); // Remove users who are already members of this group $sql = 'SELECT user_id, group_leader FROM ' . USER_GROUP_TABLE . ' WHERE user_id IN (' . implode(', ', $id_ary) . ") AND group_id = $group_id"; $result = $db->sql_query($sql); $add_id_ary = $update_id_ary = array(); if ($row = $db->sql_fetchrow($result)) { do { $add_id_ary[] = $row['user_id']; if ($action == 'addleaders' && !$row['group_leader']) { $update_id_ary[] = $row['user_id']; } } while ($row = $db->sql_fetchrow($result)); } $db->sql_freeresult($result); // Do all the users exist in this group? $add_id_ary = array_diff($id_ary, $add_id_ary); unset($id_ary); // If we have no users if (!sizeof($add_id_ary) && !sizeof($update_id_ary)) { trigger_error($user->lang['GROUP_USERS_EXIST']); } if (sizeof($add_id_ary)) { $group_leader = ($action == 'addleaders') ? 1 : 0; // Insert the new users switch (SQL_LAYER) { case 'mysql': case 'mysql4': $sql = 'INSERT INTO ' . USER_GROUP_TABLE . " (user_id, group_id, group_leader) VALUES " . implode(', ', preg_replace('#^([0-9]+)$#', "(\\1, $group_id, $group_leader)", $add_id_ary)); $db->sql_query($sql); break; case 'mssql': case 'sqlite': $sql = 'INSERT INTO ' . USER_GROUP_TABLE . " (user_id, group_id, group_leader) " . implode(' UNION ALL ', preg_replace('#^([0-9]+)$#', "(\\1, $group_id, $group_leader)", $add_id_ary)); $db->sql_query($sql); break; default: foreach ($add_id_ary as $user_id) { $sql = 'INSERT INTO ' . USER_GROUP_TABLE . " (user_id, group_id, group_leader) VALUES ($user_id, $group_id, $group_leader)"; $db->sql_query($sql); } break; } $sql = 'UPDATE ' . USERS_TABLE . " SET user_permissions = '' WHERE user_id IN (" . implode(', ', $add_id_ary) . ')'; $db->sql_query($sql); } $usernames = array(); if (sizeof($update_id_ary)) { $sql = 'UPDATE ' . USER_GROUP_TABLE . ' SET group_leader = 1 WHERE user_id IN (' . implode(', ', $update_id_ary) . ") AND group_id = $group_id"; $db->sql_query($sql); foreach ($update_id_ary as $id) { $usernames[] = $username_ary[$id]; } } else { foreach ($add_id_ary as $id) { $usernames[] = $username_ary[$id]; } } unset($username_ary); // Update user settings (color, rank) if applicable // TODO // Do not update users who are not approved if (!empty($_POST['default'])) { $sql = 'UPDATE ' . USERS_TABLE . " SET group_id = $group_id, user_colour = '$group_colour', user_rank = " . intval($group_rank) . " WHERE user_id IN (" . implode(', ', array_merge($add_id_ary, $update_id_ary)) . ")"; $db->sql_query($sql); } unset($update_id_ary); unset($add_id_ary); $log = ($mode == 'addleaders') ? 'LOG_MODS_ADDED' : 'LOG_USERS_ADDED'; add_log('admin', $log, $group_name, implode(', ', $usernames)); $message = ($mode == 'addleaders') ? 'GROUP_MODS_ADDED' : 'GROUP_USERS_ADDED'; trigger_error($user->lang[$message]); break; // Show list of leaders, existing and pending members case 'list': if (!$group_id) { trigger_error($user->lang['NO_GROUP']); } ?>

lang['GROUP_MEMBERS']; ?>

lang['GROUP_MEMBERS_EXPLAIN']; ?>

sql_query($sql); $total_leaders = ($row = $db->sql_fetchrow($result)) ? $row['total_leaders'] : 0; $db->sql_freeresult($result); // Total number of group members (non-leaders) $sql = 'SELECT COUNT(user_id) AS total_members FROM ' . USER_GROUP_TABLE . " WHERE group_id = $group_id AND group_leader <> 1"; $result = $db->sql_query($sql); $total_members = ($row = $db->sql_fetchrow($result)) ? $row['total_members'] : 0; $db->sql_freeresult($result); // Grab the members $sql = 'SELECT u.user_id, u.username, u.user_regdate, u.user_posts, u.group_id, ug.group_leader, ug.user_pending FROM ' . USERS_TABLE . ' u, ' . USER_GROUP_TABLE . " ug WHERE ug.group_id = $group_id AND u.user_id = ug.user_id ORDER BY ug.group_leader DESC, ug.user_pending DESC, u.username LIMIT $start, " . $config['topics_per_page']; $result = $db->sql_query($sql); $leader = $member = 0; $group_data = array(); if ($row = $db->sql_fetchrow($result)) { do { $type = ($row['group_leader']) ? 'leader' : 'member'; $group_data[$type][$$type]['user_id'] = $row['user_id']; $group_data[$type][$$type]['group_id'] = $row['group_id']; $group_data[$type][$$type]['username'] = $row['username']; $group_data[$type][$$type]['user_regdate'] = $row['user_regdate']; $group_data[$type][$$type]['user_posts'] = $row['user_posts']; $group_data[$type][$$type]['user_pending'] = $row['user_pending']; $$type++; } while ($row = $db->sql_fetchrow($result)); } $db->sql_freeresult($result); if ($group_type != GROUP_SPECIAL) { ?>

lang['GROUP_MODS']; ?>

lang['GROUP_MODS_EXPLAIN']; ?>

">
lang['USERNAME']; ?> Default lang['JOINED']; ?> lang['POSTS']; ?> lang['MARK']; ?>
"> lang['YES'] : $user->lang['NO']; ?> format_date($row['user_regdate'], $user->lang['DATE_FORMAT']); ?>
lang['GROUPS_NO_MODS']; ?>
Select option:      
lang['MARK_ALL']; ?> :: lang['UNMARK_ALL']; ?> 

lang['ADD_USERS']; ?>
lang['USER_GETS_GROUP_SET']; ?>:
lang['USER_GETS_GROUP_SET_EXPLAIN']; ?>		 lang['YES']; ?>   lang['NO']; ?>
lang['USERNAME']; ?>:
lang['USERNAMES_EXPLAIN']; ?>
  &mode=searchuser&form=mod&field=usernames', '_phpbbsearch', 'HEIGHT=500,resizable=yes,scrollbars=yes,WIDTH=740');return false;" />

lang['GROUP_LIST']; ?>

lang['GROUP_LIST_EXPLAIN']; ?>

">
lang['USERNAME']; ?> Default lang['JOINED']; ?> lang['POSTS']; ?> lang['MARK']; ?>
Approved Members
Pending Members
"> lang['YES'] : $user->lang['NO']; ?> format_date($row['user_regdate'], $user->lang['DATE_FORMAT']); ?>
lang['GROUPS_NO_MEMBERS']; ?>
Select option:      
lang['MARK_ALL']; ?> :: lang['UNMARK_ALL']; ?> 

lang['ADD_USERS']; ?>
lang['USER_GETS_GROUP_SET']; ?>:
lang['USER_GETS_GROUP_SET_EXPLAIN']; ?>		 lang['YES']; ?>   lang['NO']; ?>
lang['USERNAME']; ?>:
lang['USERNAMES_EXPLAIN']; ?>
  &mode=searchuser&form=mod&field=usernames', '_phpbbsearch', 'HEIGHT=500,resizable=yes,scrollbars=yes,WIDTH=740');return false;" />

lang['MANAGE']; ?>

lang['GROUP_MANAGE_EXPLAIN']; ?>

lang['USER_DEF_GROUPS']; ?>

lang['USER_DEF_GROUPS_EXPLAIN']; ?>

">sql_query($sql); $special = $normal = 0; $group_ary = array(); while ($row = $db->sql_fetchrow($result) ) { $type = ($row['group_type'] == GROUP_SPECIAL) ? 'special' : 'normal'; $group_ary[$type][$$type]['group_id'] = $row['group_id']; $group_ary[$type][$$type]['group_name'] = $row['group_name']; $group_ary[$type][$$type]['group_type'] = $row['group_type']; $group_ary[$type][$$type]['total_members'] = $row['total_members']; $$type++; } $db->sql_freeresult($result); $special_toggle = false; foreach ($group_ary as $type => $row_ary) { if ($type == 'special') { ?>
lang['MANAGE']; ?> lang['TOTAL_MEMBERS']; ?> lang['OPTIONS']; ?>
Create new group:

lang['SPECIAL_GROUPS']; ?>

lang['SPECIAL_GROUPS_EXPLAIN']; ?>

lang['G_' . $row['group_name']]))? $user->lang['G_' . $row['group_name']] : $row['group_name']; ?>
lang['MANAGE']; ?> lang['TOTAL_MEMBERS']; ?> lang['OPTIONS']; ?>
">     ">Defaultlang['']; ?>   ">lang['EDIT']; ?>   " . $user->lang['DELETE'] . '' : $user->lang['DELETE']; ?> 
 
lang['GROUP_PREFS']); adm_page_footer(); break; default: trigger_error($user->lang['NO_MODE']); } exit; /* case 'add': break; case 'delete': // TODO: // Need to offer ability to demote moderators or remove from group break; case 'approve': break; adm_page_footer(); case 'prefs': } else { $user_lang = (!empty($_POST['user_lang'])) ? htmlspecialchars($_POST['user_lang']) : ''; $user_tz = (isset($_POST['user_tz'])) ? doubleval($_POST['user_tz']) : ''; $user_dst = (isset($_POST['user_dst'])) ? intval($_POST['user_dst']) : ''; } ?>

lang['GROUP_SETTINGS']; ?>

lang['GROUP_SETTINGS_EXPLAIN']; ?>

">
lang['GROUP_SETTINGS']; ?>
lang['GROUP_LANG']; ?>:
lang['GROUP_TIMEZONE']; ?>:
lang['GROUP_DST']; ?>: lang['DISABLED']; ?>   lang['ENABLED']; ?>   lang['USER_DEFAULT']; ?>