File: /var/www/ilya/data/www/irkboard.ru/admin/applications/members/modules_admin/groups/groups.php
<?php
/**
* Invision Power Services
* IP.Board v3.0.1
* Group management
* Last Updated: $Date: 2009-06-19 10:31:08 -0400 (Fri, 19 Jun 2009) $
*
* @author $Author: bfarber $
* @copyright (c) 2001 - 2009 Invision Power Services, Inc.
* @license http://www.invisionpower.com/community/board/license.html
* @package Invision Power Board
* @subpackage Members
* @link http://www.invisionpower.com
* @version $Revision: 4794 $
*
*/
if ( ! defined( 'IN_ACP' ) )
{
print "<h1>Incorrect access</h1>You cannot access this file directly. If you have recently upgraded, make sure you upgraded 'admin.php'.";
exit();
}
class admin_members_groups_groups extends ipsCommand
{
/**
* Skin object
*
* @access private
* @var object Skin templates
*/
private $html;
/**
* Shortcut for url
*
* @access private
* @var string URL shortcut
*/
private $form_code;
/**
* Shortcut for url (javascript)
*
* @access private
* @var string JS URL shortcut
*/
private $form_code_js;
/**
* Main class entry point
*
* @access public
* @param object ipsRegistry reference
* @return void [Outputs to screen]
*/
public function doExecute( ipsRegistry $registry )
{
//-----------------------------------------
// Load skin
//-----------------------------------------
$this->html = $this->registry->output->loadTemplate('cp_skin_groups');
//-----------------------------------------
// Set up stuff
//-----------------------------------------
$this->form_code = $this->html->form_code = 'module=groups&section=groups';
$this->form_code_js = $this->html->form_code_js = 'module=groups§ion=groups';
//-----------------------------------------
// Load lang
//-----------------------------------------
ipsRegistry::getClass('class_localization')->loadLanguageFile( array( 'admin_groups' ) );
///----------------------------------------
// What to do...
//-----------------------------------------
switch( $this->request['do'] )
{
case 'doadd':
$this->registry->getClass('class_permissions')->checkPermissionAutoMsg( 'groups_add' );
$this->_saveGroup('add');
break;
case 'add':
$this->registry->getClass('class_permissions')->checkPermissionAutoMsg( 'groups_add' );
$this->_groupForm('add');
break;
case 'edit':
$this->registry->getClass('class_permissions')->checkPermissionAutoMsg( 'groups_edit' );
$this->_groupForm('edit');
break;
case 'doedit':
$this->registry->getClass('class_permissions')->checkPermissionAutoMsg( 'groups_edit' );
$this->_saveGroup('edit');
break;
case 'delete':
$this->registry->getClass('class_permissions')->checkPermissionAutoMsg( 'groups_delete' );
$this->_deleteForm();
break;
case 'dodelete':
$this->registry->getClass('class_permissions')->checkPermissionAutoMsg( 'groups_delete' );
$this->_doDelete();
break;
case 'master_xml_export':
$this->masterXMLExport();
break;
case 'groups_overview':
default:
$this->_mainScreen();
break;
}
//-----------------------------------------
// Pass to CP output hander
//-----------------------------------------
$this->registry->getClass('output')->html_main .= $this->registry->getClass('output')->global_template->global_frame_wrapper();
$this->registry->getClass('output')->sendOutput();
}
/**
* List the groups
*
* @access private
* @return void [Outputs to screen]
*/
private function _mainScreen()
{
//-----------------------------------------
// INIT
//-----------------------------------------
$g_array = array();
$content = "";
$form = array();
//-----------------------------------------
// Page details
//-----------------------------------------
$this->registry->output->extra_nav[] = array( $this->form_code, $this->lang->words['g_nav'] );
//-----------------------------------------
// Get groups
//-----------------------------------------
$this->DB->build( array( 'select' => 'g.g_id, g.g_access_cp, g.g_is_supmod, g.g_title,g.prefix, g.suffix',
'from' => array( 'groups' => 'g' ),
'group' => 'g.g_id',
'order' => 'g.g_title',
'add_join' => array(
array( 'select' => 'COUNT(m.member_id) as count',
'from' => array( 'members' => 'm' ),
'where' => "m.member_group_id = g.g_id OR g.g_id IN(m.mgroup_others)",
'type' => 'left',
)
)
) );
$this->DB->execute();
while ( $row = $this->DB->fetch() )
{
//-----------------------------------------
// Set up basics
//-----------------------------------------
$row['_can_delete'] = ( $row['g_id'] > 4 ) ? 1 : 0;
$row['_can_acp'] = ( $row['g_access_cp'] == 1 ) ? 1 : 0;
$row['_can_supmod'] = ( $row['g_is_supmod'] == 1 ) ? 1 : 0;
//-----------------------------------------
// Add
//-----------------------------------------
$content .= $this->html->groupsOverviewRow( $row );
//-----------------------------------------
// Add to array
//-----------------------------------------
$g_array[] = array( $row['g_id'], $row['g_title'] );
}
//-----------------------------------------
// And output
//-----------------------------------------
$this->registry->output->html .= $this->html->groupsOverviewWrapper( $content, $g_array );
}
/**
* Exports the groups to a master XML file for distribution
*
* @access public
* @return void [Outputs to screen]
*/
public function masterXMLExport()
{
//-----------------------------------------
// INIT
//-----------------------------------------
$entry = array();
$skip = IPSLib::fetchNonDefaultGroupFields();
//-----------------------------------------
// Get XML class
//-----------------------------------------
require_once( IPS_KERNEL_PATH . 'class_xml.php' );
$xml = new class_xml();
$xml->doc_type = IPS_DOC_CHAR_SET;
$xml->xml_set_root( 'export', array( 'exported' => time() ) );
//-----------------------------------------
// Set group
//-----------------------------------------
$xml->xml_add_group( 'group' );
//-----------------------------------------
// Grab our default 6 groups
//-----------------------------------------
$this->DB->build( array( 'select' => '*',
'from' => 'groups',
'order' => 'g_id ASC',
'limit' => array( 0, 6 )
) );
$this->DB->execute();
while ( $r = $this->DB->fetch() )
{
$content = array();
$r['g_icon'] = '';
//-----------------------------------------
// Sort the fields...
//-----------------------------------------
foreach( $r as $k => $v )
{
if ( ! in_array( $k, $skip ) )
{
$content[] = $xml->xml_build_simple_tag( $k, $v );
}
}
$entry[] = $xml->xml_build_entry( 'row', $content );
}
$xml->xml_add_entry_to_group( 'group', $entry );
$xml->xml_format_document();
//-----------------------------------------
// Print to browser
//-----------------------------------------
$this->registry->output->showDownload( $xml->xml_document, 'groups.xml', '', 0 );
}
/**
* Form to delete a group
*
* @access private
* @return void [Outputs to screen]
*/
private function _deleteForm()
{
$group_id = intval($this->request['id']);
$group = $this->caches['group_cache'][ $group_id ];
if ( !$group_id )
{
$this->registry->output->showError( $this->lang->words['g_whichgroup'], 1120 );
}
if ( $group_id < 6 )
{
$this->registry->output->showError( $this->lang->words['g_preset'], 1121 );
}
if( $group['g_access_cp'] )
{
$this->registry->getClass('class_permissions')->checkPermissionAutoMsg( 'groups_delete_admin' );
}
//-----------------------------------------
// How many users will we be moving?
//-----------------------------------------
$black_adder = $this->DB->buildAndFetch( array( 'select' => 'COUNT(*) as users', 'from' => 'members', 'where' => "member_group_id=" . $group_id ) );
$extra_group = $this->DB->buildAndFetch( array( 'select' => 'COUNT(*) as users', 'from' => 'members', 'where' => "mgroup_others LIKE '%,". $group_id .",%'" ) );
$black_adder['users'] = $black_adder['users'] > 0 ? $black_adder['users'] : 0;
$extra_group['users'] = $extra_group['users'] > 1 ? $extra_group['users'] : 0;
$this->registry->output->html .= $this->html->groupDelete( $group, $black_adder['users'], $extra_group['users'] );
}
/**
* Delete the group
*
* @access private
* @return void [Outputs to screen]
*/
private function _doDelete()
{
//-----------------------------------------
// INIT
//-----------------------------------------
$this->request['id'] = intval($this->request['id'] );
$this->request['to_id'] = intval($this->request['to_id'] );
//-----------------------------------------
// Auth check...
//-----------------------------------------
ipsRegistry::getClass('adminFunctions')->checkSecurityKey( $this->request['secure_key'] );
//-----------------------------------------
// Check
//-----------------------------------------
if ( ! $this->request['id'] )
{
$this->registry->output->showError( $this->lang->words['g_whichgroup'], 1122 );
}
if ( $this->request['id'] < 6 )
{
$this->registry->output->showError( $this->lang->words['g_preset'], 1124 );
}
if ( ! $this->request['to_id'] )
{
$this->registry->output->showError( $this->lang->words['g_mecries'], 1123 );
}
//-----------------------------------------
// Check to make sure that the relevant groups exist.
//-----------------------------------------
$original = $this->caches['group_cache'][ $this->request['id'] ];
$move_to = $this->caches['group_cache'][ $this->request['to_id'] ];
if( !count($original) )
{
$this->registry->output->showError( $this->lang->words['g_whichgroup'], 1125 );
}
if( !count($move_to) )
{
$this->registry->output->showError( $this->lang->words['g_mecries'], 1126 );
}
//-----------------------------------------
// Check restrictions.
//-----------------------------------------
if( $original['g_access_cp'] )
{
$this->registry->getClass('class_permissions')->checkPermissionAutoMsg( 'groups_delete_admin' );
$this->registry->getClass('class_permissions')->checkPermissionAutoMsg( 'member_move_admin1', 'members', 'members' );
}
else if( $move_to['g_access_cp'] )
{
$this->registry->getClass('class_permissions')->checkPermissionAutoMsg( 'member_move_admin2', 'members', 'members' );
}
//-----------------------------------------
// Move and delete
//-----------------------------------------
$this->DB->update( 'members', array( 'member_group_id' => $this->request['to_id'] ), 'member_group_id=' . $this->request['id'] );
$this->DB->delete( 'groups', "g_id=" . $this->request['id'] );
$this->DB->delete( 'admin_permission_rows', "row_id_type='group' AND row_id=" . $this->request['id'] );
//-----------------------------------------
// Can't promote to non-existent group
//-----------------------------------------
foreach( $this->cache->getCache('group_cache') as $row )
{
$promotion = explode( '&', $row['g_promotion'] );
if( $promotion[0] == $this->request['id'] )
{
$this->DB->update( 'groups', array( 'g_promotion' => '-1&-1' ), 'g_id=' . $row['g_id'] );
}
}
//-----------------------------------------
// Remove from moderators table
//-----------------------------------------
$this->DB->delete( 'moderators', "is_group=1 AND group_id=" . $this->request['id'] );
//-----------------------------------------
// Remove as a secondary group
//-----------------------------------------
$this->DB->build( array(
'select' => 'member_group_id, mgroup_others, member_id',
'from' => 'members',
'where' => "mgroup_others LIKE '%," . $this->request['id'] . ",%'"
) );
$exg = $this->DB->execute();
while( $others = $this->DB->fetch($exg) )
{
$extra = array();
$extra = explode( ",", IPSText::cleanPermString( $others['mgroup_others'] ) );
$to_insert = array();
if( count( $extra ) )
{
foreach( $extra as $mgroup_other )
{
if( $mgroup_other != $this->request['id'] )
{
if( $mgroup_other != "" )
{
$to_insert[] = $mgroup_other;
}
}
}
if( count( $to_insert ) )
{
$new_others = ',' . implode( ',', $to_insert ) . ',';
}
else
{
$new_others = "";
}
$this->DB->update( 'members', array( 'mgroup_others' => $new_others ), 'member_id=' . $others['member_id'] );
}
}
//-----------------------------------------
// Rebuild caches
//-----------------------------------------
$this->rebuildGroupCache();
$this->cache->rebuildCache( 'moderators', 'forums' );
ipsRegistry::getClass('adminFunctions')->saveAdminLog( sprintf( $this->lang->words['g_removedlog'], $original['g_title'] ) );
$this->registry->output->global_message = $this->lang->words['g_removed'];
$this->_mainScreen();
}
/**
* Save the group [add/edit]
*
* @access private
* @param string 'add' or 'edit'
* @return void [Outputs to screen]
*/
private function _saveGroup( $type='edit' )
{
//-----------------------------------------
// INIT
//-----------------------------------------
$group_id = intval($this->request['id']);
$oldGroup = $this->caches['group_cache'][ $group_id ];
//-----------------------------------------
// Auth check...
//-----------------------------------------
ipsRegistry::getClass('adminFunctions')->checkSecurityKey( $this->request['secure_key'] );
//-----------------------------------------
// Check...
//-----------------------------------------
if ( !$this->request['g_title'] )
{
$this->registry->output->showError( $this->lang->words['g_title_error'], 1127 );
}
if ( $type == 'edit' )
{
if ( !$group_id )
{
$this->registry->output->showError( $this->lang->words['g_whichgroup'], 1128 );
}
//-----------------------------------------
// Check restrictions.
//-----------------------------------------
if( $this->caches['group_cache'][ $group_id ]['g_access_cp'] )
{
$this->registry->getClass('class_permissions')->checkPermissionAutoMsg( 'groups_edit_admin' );
}
}
//-----------------------------------------
// Check restrictions.
//-----------------------------------------
if( ( $type == 'add' OR !$this->caches['group_cache'][ $group_id ]['g_access_cp'] ) AND $this->request['g_access_cp'] )
{
$this->registry->getClass('class_permissions')->checkPermissionAutoMsg( 'groups_add_admin' );
}
//-----------------------------------------
// Sort out the perm mask id things
//-----------------------------------------
$new_perm_set_id = 0;
if( $this->request['g_new_perm_set'] )
{
$this->DB->insert( 'forum_perms', array( 'perm_name' => $this->request['g_new_perm_set'] ) );
$new_perm_set_id = $this->DB->getInsertId();
}
else
{
if ( !is_array( $this->request['permid'] ) )
{
$this->registry->output->showError( $this->lang->words['g_oneperm'], 1129 );
}
}
$this->lang->loadLanguageFile( array( 'admin_permissions' ), 'members' );
//-----------------------------------------
// Some other generic fields
//-----------------------------------------
$promotion_a = '-1'; // id
$promotion_b = '-1'; // posts
if ( $this->request['g_promotion_id'] AND $this->request['g_promotion_id'] > 0 )
{
$promotion_a = $this->request['g_promotion_id'];
$promotion_b = $this->request['g_promotion_posts'];
}
if ( $this->request['g_attach_per_post'] and $this->request['g_attach_max'] > 0 )
{
if ( $this->request['g_attach_per_post'] > $this->request['g_attach_max'] )
{
$this->registry->output->global_message = $this->lang->words['g_pergreater'];
$this->_groupForm('edit');
return;
}
}
$this->request[ 'p_max'] = str_replace( ":", "", $this->request['p_max'] );
$this->request[ 'p_width'] = str_replace( ":", "", $this->request['p_width'] );
$this->request[ 'p_height'] = str_replace( ":", "", $this->request['p_height'] );
$sig_limits = array(
$this->request['use_signatures'],
$this->request['max_images'],
$this->request['max_dims_x'],
$this->request['max_dims_y'],
$this->request['max_urls'],
$this->request['max_lines'],
);
//-----------------------------------------
// Set the db array
//-----------------------------------------
$db_string = array(
'g_view_board' => $this->request['g_view_board'],
'g_mem_info' => $this->request['g_mem_info'],
'g_can_add_friends' => $this->request['g_can_add_friends'],
'g_use_search' => $this->request['g_use_search'],
'g_email_friend' => $this->request['g_email_friend'],
'g_invite_friend' => $this->request['g_invite_friend'] ? intval( $this->request['g_invite_friend'] ) : 0,
'g_edit_profile' => $this->request['g_edit_profile'],
'g_use_pm' => $this->request['g_use_pm'],
'g_pm_perday' => intval($this->request['g_pm_perday']),
'g_is_supmod' => $this->request['g_is_supmod'],
'g_access_cp' => $this->request['g_access_cp'],
'g_title' => trim($this->request['g_title']),
'g_access_offline' => $this->request['g_access_offline'],
'g_dname_changes' => intval($this->request['g_dname_changes']),
'g_dname_date' => intval($this->request['g_dname_date']),
'prefix' => trim( IPSText::safeslashes( $_POST['prefix'] ) ),
'suffix' => trim( IPSText::safeslashes( $_POST['suffix'] ) ),
'g_hide_from_list' => $this->request['g_hide_from_list'],
'g_perm_id' => $new_perm_set_id ? $new_perm_set_id : implode( ",", $this->request['permid'] ),
'g_icon' => trim( IPSText::safeslashes( $_POST['g_icon'] ) ),
'g_attach_max' => $this->request['g_attach_max'],
'g_avatar_upload' => $this->request['g_avatar_upload'],
'g_max_messages' => $this->request['g_max_messages'],
'g_max_mass_pm' => $this->request['g_max_mass_pm'],
'g_pm_flood_mins' => $this->request['g_pm_flood_mins'],
'g_search_flood' => $this->request['g_search_flood'],
'g_promotion' => $promotion_a . '&' . $promotion_b,
'g_photo_max_vars' => $this->request['p_max'].':'.$this->request['p_width'].':'.$this->request['p_height'],
'g_dohtml' => $this->request['g_dohtml'],
'g_email_limit' => intval($this->request['join_limit']).':'.intval($this->request['join_flood']),
'g_bypass_badwords' => $this->request['g_bypass_badwords'],
'g_can_msg_attach' => $this->request['g_can_msg_attach'],
'g_attach_per_post' => $this->request['g_attach_per_post'],
'g_rep_max_positive' => intval( $this->request['g_rep_max_positive'] ),
'g_rep_max_negative' => intval( $this->request['g_rep_max_negative'] ),
'g_signature_limits' => implode( ':', $sig_limits ),
'g_hide_online_list' => intval( $this->request['g_hide_online_list'] ),
'g_displayname_unit' => intval( $this->request['g_displayname_unit'] ),
'g_sig_unit' => intval( $this->request['g_sig_unit'] ),
'g_bitoptions' => IPSBWOPtions::freeze( $this->request, 'groups', 'global' ), # Saves all BW options for all apps
);
//-----------------------------------------
// Ok? Load interface and child classes
//-----------------------------------------
IPSLib::loadInterface( 'admin/group_form.php' );
foreach( ipsRegistry::$applications as $app_dir => $app_data )
{
if ( ! IPSLib::appIsInstalled( $app_dir ) )
{
continue;
}
if ( file_exists( IPSLib::getAppDir( $app_dir ) . '/extensions/admin/group_form.php' ) )
{
require_once( IPSLib::getAppDir( $app_dir ) . '/extensions/admin/group_form.php' );
$_class = 'admin_group_form__' . $app_dir;
$_object = new $_class( $this->registry );
$remote = $_object->getForSave();
$db_string = array_merge( $remote, $db_string );
}
}
$this->DB->force_data_type = array( 'g_title' => 'string' );
//-----------------------------------------
// Editing...do an update
//-----------------------------------------
if ($type == 'edit')
{
$this->DB->update( 'groups', $db_string, 'g_id=' . $group_id );
//-----------------------------------------
// Update moderator table too
//-----------------------------------------
$this->DB->update( 'moderators', array( 'group_name' => $db_string['g_title'] ), 'group_id=' . $group_id );
ipsRegistry::getClass('adminFunctions')->saveAdminLog( sprintf( $this->lang->words['g_editedlog'], $db_string['g_title'] ) );
$this->registry->output->global_message = $this->lang->words['g_edited'];
}
else
{
$this->DB->insert( 'groups', $db_string );
$group_id = $this->DB->getInsertId();
ipsRegistry::getClass('adminFunctions')->saveAdminLog( sprintf( $this->lang->words['g_addedlog'], $db_string['g_title'] ) );
$this->registry->output->global_message = $this->lang->words['g_added'];
}
$this->rebuildGroupCache();
if( $new_perm_set_id )
{
$from = '';
if( ( $type == 'edit' AND $db_string['g_access_cp'] AND !$oldGroup['g_access_cp'] ) OR ( $type == 'add' AND $db_string['g_access_cp'] ) )
{
//-----------------------------------------
// Do they already have restrictions?
//-----------------------------------------
$test = $this->DB->buildAndFetch( array( 'select' => 'row_id', 'from' => 'admin_permission_rows', 'where' => "row_id_type='group' AND row_id=" . $group_id ) );
if( !$test['row_id'] )
{
$from = '&_from=group-' . $group_id;
}
}
$this->registry->output->doneScreen( $this->lang->words['per_saved'], $this->lang->words['per_manage'], 'module=groups&section=permissions&do=edit_set_form' . $from . '&id=' . $new_perm_set_id, 'redirect' );
return;
}
else
{
if( ( $type == 'edit' AND $db_string['g_access_cp'] AND !$oldGroup['g_access_cp'] ) OR ( $type == 'add' AND $db_string['g_access_cp'] ) )
{
//-----------------------------------------
// Do they already have restrictions?
//-----------------------------------------
$test = $this->DB->buildAndFetch( array( 'select' => 'row_id', 'from' => 'admin_permission_rows', 'where' => "row_id_type='group' AND row_id=" . $group_id ) );
if( !$test['row_id'] )
{
$this->registry->output->html .= $this->html->groupAdminConfirm( $group_id );
}
}
$this->_mainScreen();
}
}
/**
* Rebuilds the group cache
*
* @access public
* @return void
*/
public function rebuildGroupCache()
{
$cache = array();
$this->DB->build( array( 'select' => '*',
'from' => 'groups',
'order' => 'g_title ASC' ) );
$this->DB->execute();
while ( $i = $this->DB->fetch() )
{
$cache[ $i['g_id'] ] = IPSLib::unpackGroup( $i );
}
$this->cache->setCache( 'group_cache', $cache, array( 'array' => 1, 'deletefirst' => 1 ) );
}
/**
* Show the add/edit group form
*
* @access private
* @param string 'add' or 'edit'
* @return void [Outputs to screen]
*/
private function _groupForm( $type='edit' )
{
//-----------------------------------------
// Grab group data and start us off
//-----------------------------------------
if ($type == 'edit')
{
if ($this->request['id'] == "")
{
$this->registry->output->showError( $this->lang->words['g_whichgroup'], 11210 );
}
$group = $this->DB->buildAndFetch( array( 'select' => '*', 'from' => 'groups', 'where' => "g_id=" . intval($this->request['id']) ) );
$group = IPSLib::unpackGroup( $group );
//-----------------------------------------
// Check restrictions.
//-----------------------------------------
if( $group['g_access_cp'] )
{
$this->registry->getClass('class_permissions')->checkPermissionAutoMsg( 'groups_edit_admin' );
}
}
else
{
$group = array();
if( $this->request['id'] )
{
$group = $this->DB->buildAndFetch( array( 'select' => '*', 'from' => 'groups', 'where' => "g_id=" . intval($this->request['id']) ) );
$group = IPSLib::unpackGroup( $group );
}
$group['g_title'] = 'New Group';
}
//-----------------------------------------
// Grab permission masks
//-----------------------------------------
$perm_masks = array();
$this->DB->build( array( 'select' => '*', 'from' => 'forum_perms' ) );
$this->DB->execute();
while ( $r = $this->DB->fetch() )
{
$perm_masks[] = array( $r['perm_id'], $r['perm_name'] );
}
//-----------------------------------------
// Ok? Load interface and child classes
//-----------------------------------------
$blocks = array( 'tabs' => array(), 'area' => array() );
IPSLib::loadInterface( 'admin/group_form.php' );
$tabsUsed = 2;
foreach( ipsRegistry::$applications as $app_dir => $app_data )
{
if ( ! IPSLib::appIsInstalled( $app_dir ) )
{
continue;
}
if ( file_exists( IPSLib::getAppDir( $app_dir ) . '/extensions/admin/group_form.php' ) )
{
require_once( IPSLib::getAppDir( $app_dir ) . '/extensions/admin/group_form.php' );
$_class = 'admin_group_form__' . $app_dir;
$_object = new $_class( $this->registry );
$data = $_object->getDisplayContent( $group, $tabsUsed );
$blocks['area'][ $app_dir ] = $data['content'];
$blocks['tabs'][ $app_dir ] = $data['tabs'];
$tabsUsed = $data['tabsUsed'] ? ( $tabsUsed + $data['tabsUsed'] ) : ( $tabsUsed + 1 );
}
}
//-----------------------------------------
// And output to form
//-----------------------------------------
$this->registry->output->html .= $this->html->groupsForm( $type, $group, $perm_masks, $blocks );
}
}