Context Navigation

source: extensions/UserAdvManager/trunk/include/functions.inc.php @ 18049

Last change on this file since 18049 was 18049, checked in by Eric, 12 years ago
Using pwg_mail_notification_admins() to send validation link to admins and webmaster - Removing commented code Reference language files updated for admin's email subject and content changelog.txt.php updated - Todo : New simplifed administration panel
Property svn:eol-style set to `LF`
File size: 89.8 KB

Line
1	<?php
2	include_once (UAM_PATH.'include/constants.php');
3	load_language('plugin.lang', UAM_PATH);
4
5
6	/**
7	* Triggered on get_admin_plugin_menu_links
8	*
9	* Plugin's administration menu
10	*/
11	function UAM_admin_menu($menu)
12	{
13	// +-----------------------------------------------------------------------+
14	// \| Getting plugin name \|
15	// +-----------------------------------------------------------------------+
16	$plugin = PluginInfos(UAM_PATH);
17	$name = $plugin['name'];
18
19	array_push($menu,
20	array(
21	'NAME' => $name,
22	'URL' => get_root_url().'admin.php?page=plugin-'.basename(UAM_PATH)
23	)
24	);
25
26	return $menu;
27	}
28
29
30	/**
31	* Triggered on loc_begin_admin_page
32	*
33	* Check options compatibility
34	*/
35	function UAM_check_compat()
36	{
37	global $conf, $page;
38
39	$conf_UAM = unserialize($conf['UserAdvManager']);
40
41	// Check mandatory email address for email exclusion
42	if (!$conf['obligatory_user_mail_address'] and $conf_UAM[10] = 'true')
43	{
44	array_push($page['warnings'], l10n('UAM_mail_exclusion_error'));
45	}
46	}
47
48
49	/**
50	* Triggered on loc_begin_index
51	*
52	* Initiating GhostTracker - Perform user logout after registration if not validated
53	*/
54	function UAM_Init()
55	{
56	global $conf, $user;
57
58	include_once(PHPWG_ROOT_PATH.'admin/include/functions.php');
59
60	$conf_UAM = unserialize($conf['UserAdvManager']);
61
62	// Admins, Guests and Adult_Content users are not tracked for Ghost Tracker or Users Tracker
63	// -----------------------------------------------------------------------------------------
64	if (!is_admin() and !is_a_guest() and $user['username'] != "16" and $user['username'] != "18")
65	{
66	if ((isset($conf_UAM[15]) and $conf_UAM[15] == 'true') or (isset($conf_UAM[18]) and $conf_UAM[18] == 'true'))
67	{
68
69	$userid = get_userid($user['username']);
70
71	// Looking for existing entry in last visit table
72	// ----------------------------------------------
73	$query = '
74	SELECT *
75	FROM '.USER_LASTVISIT_TABLE.'
76	WHERE user_id = '.$userid.'
77	;';
78
79	$count = pwg_db_num_rows(pwg_query($query));
80
81	if ($count == 0)
82	{
83	// If not, data are inserted in table
84	// ----------------------------------
85	$query = '
86	INSERT INTO '.USER_LASTVISIT_TABLE.' (user_id, lastvisit, reminder)
87	VALUES ('.$userid.', now(), "false")
88	;';
89	pwg_query($query);
90	}
91	else if ($count > 0)
92	{
93	// If yes, data are updated in table
94	// ---------------------------------
95	$query = '
96	UPDATE '.USER_LASTVISIT_TABLE.'
97	SET lastvisit = now(), reminder = "false"
98	WHERE user_id = '.$userid.'
99	LIMIT 1
100	;';
101	pwg_query($query);
102	}
103	}
104
105	// Perform user logout after registration if not validated
106	if ((isset($conf_UAM[39]) and $conf_UAM[39] == 'true') and !UAM_UsrReg_Verif($user['id']) and !is_admin() and !is_webmaster() )
107	{
108	invalidate_user_cache();
109	logout_user();
110	if ( $conf['guest_access'] )
111	{
112	redirect( make_index_url().'?UAM_msg=rejected', 0);
113	}
114	else
115	{
116	redirect( get_root_url().'identification.php?UAM_msg=rejected' , 0);
117	}
118	}
119	}
120	}
121
122
123	/**
124	* Triggered on register_user
125	*
126	* Additional controls on user registration
127	*/
128	function UAM_Adduser($register_user)
129	{
130	global $conf;
131
132	$conf_UAM = unserialize($conf['UserAdvManager']);
133
134	// Exclusion of Adult_Content users
135	// --------------------------------
136	if ($register_user['username'] != "16" and $register_user['username'] != "18")
137	{
138	$passwd = (isset($_POST['password'])) ? $_POST['password'] : '';
139
140	if (isset($conf_UAM[1]) and $conf_UAM[1] == 'local')
141	{
142	// This is to set user to "waiting" group or status and without ConfirMail until admin validation
143	// ----------------------------------------------------------------------------------------------
144	SetPermission($register_user['id']);// Set to "waiting" group or status until admin validation
145
146	// This is to set UAM_validated field to false in #_users table - Usefull if no "waiting" group or status is set
147	// -------------------------------------------------------------------------------------------------------------
148	SetUnvalidated($register_user['id']);
149
150	// This is to send the validation key by email to admins for their manual validation without having to connect the gallery
151	// -----------------------------------------------------------------------------------------------------------------------
152	SendMail2User(1, $register_user['id'], $register_user['username'], $passwd, $register_user['email'], true);
153	}
154	// Sending registration confirmation by email
155	// ------------------------------------------
156	elseif (isset($conf_UAM[1]) and $conf_UAM[1] == 'true')
157	{
158	if (is_admin() and isset($conf_UAM[19]) and $conf_UAM[19] == 'true')
159	{
160	SendMail2User(1, $register_user['id'], $register_user['username'], $passwd, $register_user['email'], true);
161	}
162	elseif (is_admin() and isset($conf_UAM[19]) and $conf_UAM[19] == 'false')
163	{
164	SendMail2User(1, $register_user['id'], $register_user['username'], $passwd, $register_user['email'], false);
165	}
166	elseif (!is_admin())
167	{
168	SendMail2User(1, $register_user['id'], $register_user['username'], $passwd, $register_user['email'], true);
169	}
170	}
171	}
172	}
173
174
175	/**
176	* Triggered on delete_user
177	*
178	* Database cleanup on user deletion
179	*/
180	function UAM_Deluser($user_id)
181	{
182	// Cleanup for ConfirmMail table
183	// -----------------------------
184	DeleteConfirmMail($user_id);
185	// Cleanup for LastVisit table
186	// ---------------------------
187	DeleteLastVisit($user_id);
188	// Cleanup Redirection settings
189	// ----------------------------
190	DeleteRedir($user_id);
191	}
192
193
194	/**
195	* Triggered on register_user_check
196	*
197	* Additional controls on user registration check
198	*/
199	function UAM_RegistrationCheck($errors, $user)
200	{
201	global $conf;
202
203	// Exclusion of Adult_Content users
204	// --------------------------------
205	if ($user['username'] != "16" and $user['username'] != "18")
206	{
207	load_language('plugin.lang', UAM_PATH);
208
209	$PasswordCheck = 0;
210
211	$conf_UAM = unserialize($conf['UserAdvManager']);
212
213	// Password enforcement control
214	// ----------------------------
215	if (isset($conf_UAM[12]) and $conf_UAM[12] == 'true' and !empty($conf_UAM[13]))
216	{
217	if (!empty($user['password']) and !is_admin())
218	{
219	$PasswordCheck = testpassword($user['password']);
220
221	if ($PasswordCheck < $conf_UAM[13])
222	{
223	$message = get_l10n_args('UAM_reg_err_login4_%s', $PasswordCheck);
224	$lang['reg_err_pass'] = l10n_args($message).$conf_UAM[13];
225	array_push($errors, $lang['reg_err_pass']);
226	}
227	}
228	else if (!empty($user['password']) and is_admin() and isset($conf_UAM[14]) and $conf_UAM[14] == 'true')
229	{
230	$PasswordCheck = testpassword($user['password']);
231
232	if ($PasswordCheck < $conf_UAM[13])
233	{
234	$message = get_l10n_args('UAM_reg_err_login4_%s', $PasswordCheck);
235	$lang['reg_err_pass'] = l10n_args($message).$conf_UAM[13];
236	array_push($errors, $lang['reg_err_pass']);
237	}
238	}
239	}
240
241	// Username without forbidden keys
242	// -------------------------------
243	if (isset($conf_UAM[5]) and $conf_UAM[5] == 'true' and !empty($user['username']) and ValidateUsername($user['username']) and !is_admin())
244	{
245	$lang['reg_err_login1'] = l10n('UAM_reg_err_login2')."'".$conf_UAM[6]."'";
246	array_push($errors, $lang['reg_err_login1']);
247	}
248
249	// Email without forbidden domains
250	// -------------------------------
251	if (isset($conf_UAM[10]) and $conf_UAM[10] == 'true' and !empty($user['email']) and ValidateEmailProvider($user['email']) and !is_admin())
252	{
253	$lang['reg_err_login1'] = l10n('UAM_reg_err_login5')."'".$conf_UAM[11]."'";
254	array_push($errors, $lang['reg_err_login1']);
255	}
256	return $errors;
257	}
258	}
259
260
261	/**
262	* Triggered on loc_begin_profile
263	*/
264	function UAM_Profile_Init()
265	{
266	global $conf, $user, $template;
267
268	$conf_UAM = unserialize($conf['UserAdvManager']);
269
270	// Update first redirection parameter
271	// ----------------------------------
272	if ((isset($conf_UAM[20]) and $conf_UAM[20] == 'true'))
273	{
274	$user_idsOK = array();
275	if (!UAM_check_profile($user['id'], $user_idsOK))
276	{
277	$user_idsOK[] = $user['id'];
278
279	$query = '
280	UPDATE '.CONFIG_TABLE.'
281	SET value = "'.implode(',', $user_idsOK).'"
282	WHERE param = "UserAdvManager_Redir";';
283
284	pwg_query($query);
285	}
286	}
287
288	// Special message display for password reset
289	// ------------------------------------------
290	if ((isset($conf_UAM[38]) and $conf_UAM[38] == 'true'))
291	{
292	if (UAM_check_pwgreset($user['id']))
293	{
294	$template->append('errors', l10n('UAM_Password_Reset_Msg'));
295	}
296	}
297
298	// Controls on profile page submission
299	// -----------------------------------
300	if (isset($_POST['validate']) and !is_admin())
301	{
302	// Email without forbidden domains
303	// -------------------------------
304	if (isset($conf_UAM[10]) and $conf_UAM[10] == 'true' and !empty($_POST['mail_address']))
305	{
306	if (ValidateEmailProvider($_POST['mail_address']))
307	{
308	$template->append('errors', l10n('UAM_reg_err_login5')."'".$conf_UAM[11]."'");
309	unset($_POST['validate']);
310	}
311	}
312
313	// Password reset control
314	// ----------------------
315	if (isset($conf_UAM[38]) and $conf_UAM[38] == 'true' and UAM_check_pwgreset($user['id']))
316	{
317	// if password not changed then pwdreset field = true else pwdreset field = false
318	// ------------------------------------------------------------------------------
319	if (!empty($_POST['use_new_pwd']))
320	{
321	$query = '
322	UPDATE '.USERS_TABLE.'
323	SET UAM_pwdreset = "false"
324	WHERE id = '.$user['id'].'
325	LIMIT 1
326	;';
327	pwg_query($query);
328	}
329	}
330
331	$typemail = 3; // Only information email send to user on user profile update if checked
332
333	if (!empty($_POST['use_new_pwd']))
334	{
335	$typemail = 2; // Confirmation email on user profile update - With information email
336
337	// Password enforcement control
338	// ----------------------------
339	if (isset($conf_UAM[12]) and $conf_UAM[12] == 'true' and !empty($conf_UAM[13]))
340	{
341	$PasswordCheck = testpassword($_POST['use_new_pwd']);
342
343	if ($PasswordCheck < $conf_UAM[13])
344	{
345	$message = get_l10n_args('UAM_reg_err_login4_%s', $PasswordCheck);
346	$template->append('errors', l10n_args($message).$conf_UAM[13]);
347	unset($_POST['use_new_pwd']);
348	unset($_POST['validate']);
349	}
350	}
351	}
352
353	// Sending registration confirmation by email
354	// ------------------------------------------
355	if ((isset($conf_UAM[1]) and $conf_UAM[1] == 'true') or (isset($conf_UAM[1]) and $conf_UAM[1] == 'local'))
356	{
357	$confirm_mail_need = false;
358
359	if (!empty($_POST['mail_address']))
360	{
361	$query = '
362	SELECT '.$conf['user_fields']['email'].' AS email
363	FROM '.USERS_TABLE.'
364	WHERE '.$conf['user_fields']['id'].' = \''.$user['id'].'\'
365	;';
366
367	list($current_email) = pwg_db_fetch_row(pwg_query($query));
368
369	// This is to send a new validation key
370	// ------------------------------------
371	if ($_POST['mail_address'] != $current_email and (isset($conf_UAM[1]) and $conf_UAM[1] == 'true'))
372	{
373	SetPermission($user['id']);// Set to "waiting" group or status until user validation
374	SetUnvalidated($user['id']); // Set UAM_validated field to false in #_users table
375	$confirm_mail_need = true;
376	}
377
378	// This is to set the user to "waiting" group or status until admin validation
379	// ---------------------------------------------------------------------------
380	elseif ($_POST['mail_address'] != $current_email and (isset($conf_UAM[1]) and $conf_UAM[1] == 'local'))
381	{
382	SetPermission($user['id']);// Set to "waiting" group or status until admin validation
383	SetUnvalidated($user['id']); // Set UAM_validated field to false in #_users table
384	$confirm_mail_need = false;
385	}
386	}
387
388	if (((!empty($_POST['use_new_pwd']) and (isset($conf_UAM[0]) and $conf_UAM[0] == 'true')) or $confirm_mail_need))
389	{
390	$query = '
391	SELECT '.$conf['user_fields']['username'].'
392	FROM '.USERS_TABLE.'
393	WHERE '.$conf['user_fields']['id'].' = \''.$user['id'].'\'
394	;';
395
396	list($username) = pwg_db_fetch_row(pwg_query($query));
397	SendMail2User($typemail, $user['id'], $username, $_POST['use_new_pwd'], $_POST['mail_address'], $confirm_mail_need);
398	}
399	}
400	}
401	}
402
403
404	/**
405	* Triggered on login_success
406	*
407	* Triggers scheduled tasks at login
408	* Redirects a visitor (except for admins, webmasters and generic statuses) to his profile.php page (Thx to LucMorizur)
409	*
410	*/
411	function UAM_LoginTasks()
412	{
413	global $conf, $user;
414
415	include_once(PHPWG_ROOT_PATH.'admin/include/functions.php');
416
417	$conf_UAM = unserialize($conf['UserAdvManager']);
418
419	// Performing GhostTracker scheduled tasks
420	// ---------------------------------------
421	if ((isset($conf_UAM[21]) and $conf_UAM[21] == 'true'))
422	{
423	UAM_GT_ScheduledTasks();
424	}
425
426	// Performing User validation scheduled tasks
427	// ------------------------------------------
428	if ((isset($conf_UAM[30]) and $conf_UAM[30] == 'true'))
429	{
430	UAM_USR_ScheduledTasks();
431	}
432
433	// Avoid login into public galleries until registration confirmation is done
434	if ((isset($conf_UAM[39]) and $conf_UAM[39] == 'false') or ((isset($conf_UAM[39]) and $conf_UAM[39] == 'true') and UAM_UsrReg_Verif($user['id'])))
435	{
436	// Performing redirection to profile page on first login
437	// -----------------------------------------------------
438	if ((isset($conf_UAM[20]) and $conf_UAM[20] == 'true'))
439	{
440	$query ='
441	SELECT user_id, status
442	FROM '.USER_INFOS_TABLE.'
443	WHERE user_id = '.$user['id'].'
444	;';
445	$data = pwg_db_fetch_assoc(pwg_query($query));
446
447	if ($data['status'] <> "admin" and $data['status'] <> "webmaster" and $data['status'] <> "generic") // Exclusion of specific accounts
448	{
449	$user_idsOK = array();
450	if (!UAM_check_profile($user['id'], $user_idsOK))
451	redirect(PHPWG_ROOT_PATH.'profile.php');
452	}
453	}
454
455	// Performing redirection to profile page for password reset
456	// ---------------------------------------------------------
457	if ((isset($conf_UAM[38]) and $conf_UAM[38] == 'true'))
458	{
459	$query ='
460	SELECT user_id, status
461	FROM '.USER_INFOS_TABLE.'
462	WHERE user_id = '.$user['id'].'
463	;';
464	$data = pwg_db_fetch_assoc(pwg_query($query));
465
466	if ($data['status'] <> "webmaster" and $data['status'] <> "generic") // Exclusion of specific accounts
467	{
468	if (UAM_check_pwgreset($user['id']))
469	{
470	redirect(PHPWG_ROOT_PATH.'profile.php');
471	}
472	}
473	}
474	}
475	elseif ((isset($conf_UAM[39]) and $conf_UAM[39] == 'true') and !UAM_UsrReg_Verif($user['id']) and !is_admin() and !is_webmaster())
476	{
477	// Logged-in user cleanup, session destruction and redirected to custom page
478	// -------------------------------------------------------------------------
479	invalidate_user_cache();
480	logout_user();
481	if ( $conf['guest_access'] )
482	{
483	redirect( make_index_url().'?UAM_msg=rejected', 0);
484	}
485	else
486	{
487	redirect( get_root_url().'identification.php?UAM_msg=rejected' , 0);
488	}
489	}
490	}
491
492
493	/**
494	* Adds a new module settable in PWG_Stuffs - Triggered on get_stuffs_modules in main.inc.php
495	* Useful to inform unvalidated user for their status
496	*
497	*/
498	function register_UAM_stuffs_module($modules)
499	{
500	array_push($modules, array(
501	'path' => UAM_PATH.'/stuffs_module',
502	'name' => l10n('UAM_Stuffs_Title'),
503	'description' => l10n('UAM_Stuffs_Desc'),
504	)
505	);
506	return $modules;
507	}
508
509
510	/**
511	* Triggered on UAM_LoginTasks()
512	*
513	* Executes optional post-login tasks for Ghost users
514	*
515	*/
516	function UAM_GT_ScheduledTasks()
517	{
518	global $conf, $user, $page;
519
520	if (!defined('PHPWG_ROOT_PATH'))
521	{
522	die('Hacking attempt!');
523	}
524
525	include_once(PHPWG_ROOT_PATH.'admin/include/functions.php');
526
527	$conf_UAM = unserialize($conf['UserAdvManager']);
528
529	$collection = array();
530	$reminder = false;
531
532	$page['filtered_users'] = get_ghosts_autotasks();
533
534	foreach($page['filtered_users'] as $listed_user)
535	{
536	array_push($collection, $listed_user['id']);
537	}
538
539	// Auto group, status or privacy level downgrade and autodeletion if user already reminded
540	// ---------------------------------------------------------------------------------------
541	if ((isset($conf_UAM[21]) and $conf_UAM[21] == 'true') and ((isset($conf_UAM[25]) and $conf_UAM[25] <> -1) or (isset($conf_UAM[26]) and $conf_UAM[26] <> -1) or (isset($conf_UAM[37]) and $conf_UAM[37] <> -1)))
542	{
543	if (count($collection) > 0)
544	{
545	// Process if a non-admin nor webmaster user is logged
546	// ---------------------------------------------------
547	if (in_array($user['id'], $collection))
548	{
549	// Check lastvisit reminder state
550	// ------------------------------
551	$query = '
552	SELECT reminder
553	FROM '.USER_LASTVISIT_TABLE.'
554	WHERE user_id = '.$user['id'].';';
555
556	$result = pwg_db_fetch_assoc(pwg_query($query));
557
558	if (isset($result['reminder']) and $result['reminder'] == 'true')
559	{
560	$reminder = true;
561	}
562	else
563	{
564	$reminder = false;
565	}
566
567	// If user already reminded for ghost account
568	// ------------------------------------------
569	if ($reminder)
570	{
571	// Delete account
572	// --------------
573	delete_user($user['id']);
574
575	// Logged-in user cleanup, session destruction and redirected to custom page
576	// -------------------------------------------------------------------------
577	invalidate_user_cache();
578	logout_user();
579	redirect(UAM_PATH.'GT_del_account.php');
580	}
581	}
582	else // Process if an admin or webmaster user is logged
583	{
584	foreach ($collection as $user_id)
585	{
586	// Check lastvisit reminder state
587	// ------------------------------
588	$query = '
589	SELECT reminder
590	FROM '.USER_LASTVISIT_TABLE.'
591	WHERE user_id = '.$user_id.';';
592
593	$result = pwg_db_fetch_assoc(pwg_query($query));
594
595	if (isset($result['reminder']) and $result['reminder'] == 'true')
596	{
597	$reminder = true;
598	}
599	else
600	{
601	$reminder = false;
602	}
603
604	// If never reminded before
605	// ------------------------
606	if (!$reminder)
607	{
608	// Reset of lastvisit date
609	// -----------------------
610	list($dbnow) = pwg_db_fetch_row(pwg_query('SELECT NOW();'));
611
612	$query = '
613	UPDATE '.USER_LASTVISIT_TABLE.'
614	SET lastvisit="'.$dbnow.'"
615	WHERE user_id = '.$user_id.'
616	;';
617	pwg_query($query);
618
619	// Auto change group and / or status
620	// ---------------------------------
621	// Delete user from all groups
622	// ---------------------------
623	if ($conf_UAM[2] <> -1 and $conf_UAM[3] <> -1)
624	{
625	$query = '
626	DELETE FROM '.USER_GROUP_TABLE.'
627	WHERE user_id = '.$user_id.'
628	AND (
629	group_id = '.$conf_UAM[2].'
630	OR
631	group_id = '.$conf_UAM[3].'
632	)
633	;';
634	pwg_query($query);
635	}
636
637	// Change user status
638	// ------------------
639	if ($conf_UAM[26] <> -1)
640	{
641	$query = '
642	UPDATE '.USER_INFOS_TABLE.'
643	SET status = "'.$conf_UAM[26].'"
644	WHERE user_id = '.$user_id.'
645	;';
646	pwg_query($query);
647	}
648
649	// Change user group
650	// -----------------
651	if ($conf_UAM[25] <> -1)
652	{
653	$query = '
654	INSERT INTO '.USER_GROUP_TABLE.'
655	(user_id, group_id)
656	VALUES
657	('.$user_id.', "'.$conf_UAM[25].'")
658	;';
659	pwg_query($query);
660	}
661
662	// Change user privacy level
663	// -------------------------
664	if ($conf_UAM[37] <> -1)
665	{
666	$query = '
667	UPDATE '.USER_INFOS_TABLE.'
668	SET level = "'.$conf_UAM[37].'"
669	WHERE user_id = '.$user_id.'
670	;';
671	pwg_query($query);
672	}
673
674	// Auto send email notification on group / status downgrade
675	// --------------------------------------------------------
676	if (isset($conf_UAM[22]) and $conf_UAM[22] == 'true')
677	{
678	// Set reminder true
679	// -----------------
680	$query = '
681	UPDATE '.USER_LASTVISIT_TABLE.'
682	SET reminder = "true"
683	WHERE user_id = '.$user_id.'
684	;';
685	pwg_query($query);
686
687	// Reset confirmed user status to unvalidated
688	// ------------------------------------------
689	$query = '
690	UPDATE '.USER_CONFIRM_MAIL_TABLE.'
691	SET date_check = NULL
692	WHERE user_id = '.$user_id.'
693	;';
694	pwg_query($query);
695
696	// Get users information for email notification
697	// --------------------------------------------
698	$query = '
699	SELECT id, username, mail_address
700	FROM '.USERS_TABLE.'
701	WHERE id = '.$user_id.'
702	;';
703	$data = pwg_db_fetch_assoc(pwg_query($query));
704
705	demotion_mail($user_id, $data['username'], $data['mail_address']);
706	}
707	}
708	elseif ($reminder) // If user already reminded for ghost account
709	{
710	// Delete account
711	// --------------
712	delete_user($user_id);
713	}
714	}
715	}
716	}
717	}
718	}
719
720
721	/**
722	* Triggered on UAM_LoginTasks()
723	*
724	* Executes optional post-login tasks for unvalidated users
725	*
726	*/
727	function UAM_USR_ScheduledTasks()
728	{
729	global $conf, $user, $page;
730
731	if (!defined('PHPWG_ROOT_PATH'))
732	{
733	die('Hacking attempt!');
734	}
735
736	include_once(PHPWG_ROOT_PATH.'admin/include/functions.php');
737
738	$conf_UAM = unserialize($conf['UserAdvManager']);
739
740	$collection = array();
741	$reminder = false;
742
743	$page['filtered_users'] = get_unvalid_user_autotasks();
744
745	foreach($page['filtered_users'] as $listed_user)
746	{
747	array_push($collection, $listed_user['id']);
748	}
749
750	// Unvalidated accounts auto email sending and autodeletion if user already reminded
751	// ---------------------------------------------------------------------------------
752	if ((isset($conf_UAM[30]) and $conf_UAM[30] == 'true'))
753	{
754	if (count($collection) > 0)
755	{
756	// Process if a non-admin nor webmaster user is logged
757	// ---------------------------------------------------
758	if (in_array($user['id'], $collection))
759	{
760	// Check ConfirmMail reminder state
761	// --------------------------------
762	$query = '
763	SELECT reminder
764	FROM '.USER_CONFIRM_MAIL_TABLE.'
765	WHERE user_id = '.$user['id'].';';
766
767	$result = pwg_db_fetch_assoc(pwg_query($query));
768
769	if (isset($result['reminder']) and $result['reminder'] == 'true')
770	{
771	$reminder = true;
772	}
773	else
774	{
775	$reminder = false;
776	}
777
778	// If never reminded before, send reminder and set reminder True
779	// -------------------------------------------------------------
780	if (!$reminder and isset($conf_UAM[32]) and $conf_UAM[32] == 'true')
781	{
782	$typemail = 1;
783
784	// Get current user informations
785	// -----------------------------
786	$query = '
787	SELECT id, username, mail_address
788	FROM '.USERS_TABLE.'
789	WHERE id = '.$user['id'].'
790	;';
791	$data = pwg_db_fetch_assoc(pwg_query($query));
792
793	ResendMail2User($typemail,$user['id'],stripslashes($data['username']),$data['mail_address'],true);
794	}
795
796	// If already reminded before, delete user
797	// ---------------------------------------
798	if ($reminder)
799	{
800	// delete account
801	delete_user($user['id']);
802
803	// Logged-in user cleanup, session destruction and redirected to custom page
804	// -------------------------------------------------------------------------
805	invalidate_user_cache();
806	logout_user();
807	redirect(UAM_PATH.'USR_del_account.php');
808	}
809	}
810	else // Process if an admin or webmaster user is logged
811	{
812	foreach ($collection as $user_id)
813	{
814	// Check reminder state
815	// --------------------
816	$query = '
817	SELECT reminder
818	FROM '.USER_CONFIRM_MAIL_TABLE.'
819	WHERE user_id = '.$user_id.';';
820
821	$result = pwg_db_fetch_assoc(pwg_query($query));
822
823	if (isset($result['reminder']) and $result['reminder'] == 'true')
824	{
825	$reminder = true;
826	}
827	else
828	{
829	$reminder = false;
830	}
831
832	// If never reminded before, send reminder and set reminder True
833	// -------------------------------------------------------------
834	if (!$reminder and isset($conf_UAM[32]) and $conf_UAM[32] == 'true')
835	{
836	$typemail = 1;
837
838	// Get current user informations
839	// -----------------------------
840	$query = '
841	SELECT id, username, mail_address
842	FROM '.USERS_TABLE.'
843	WHERE id = '.$user_id.'
844	;';
845	$data = pwg_db_fetch_assoc(pwg_query($query));
846
847	ResendMail2User($typemail,$user_id,stripslashes($data['username']),$data['mail_address'],true);
848	}
849	elseif ($reminder) // If user already reminded for account validation
850	{
851	// Delete account
852	// --------------
853	delete_user($user_id);
854	}
855	}
856	}
857	}
858	}
859	}
860
861
862	/**
863	* Triggered on init
864	*
865	* Check for forbidden email domains in admin's users management panel
866	*/
867	function UAM_InitPage()
868	{
869	load_language('plugin.lang', UAM_PATH);
870	global $conf, $template, $page, $lang, $errors;
871
872	$conf_UAM = unserialize($conf['UserAdvManager']);
873
874	// Admin user management
875	// ---------------------
876	if (script_basename() == 'admin' and isset($_GET['page']) and $_GET['page'] == 'user_list')
877	{
878	if (isset($_POST['submit_add']))
879	{
880	// Email without forbidden domains
881	// -------------------------------
882	if (isset($conf_UAM[10]) and $conf_UAM[10] == 'true' and !empty($_POST['email']) and ValidateEmailProvider($_POST['email']))
883	{
884	$template->append('errors', l10n('UAM_reg_err_login5')."'".$conf_UAM[11]."'");
885	unset($_POST['submit_add']);
886	}
887	}
888	}
889	}
890
891	/**
892	* Triggered on init
893	*
894	* Display a message according to $_GET['UAM_msg']
895	*/
896	function UAM_DisplayMsg()
897	{
898	if( isset($_GET['UAM_msg']))
899	{
900	global $user, $lang, $conf, $page;
901	$conf_UAM = unserialize($conf['UserAdvManager']);
902
903	if (isset($conf_UAM[40]) and $conf_UAM[40] <> '' and $_GET['UAM_msg']="rejected")
904	{
905	// Management of Extension flags ([mygallery], [myurl])
906	// ---------------------------------------------------
907	$patterns[] = '#\[mygallery\]#i';
908	$replacements[] = $conf['gallery_title'];
909	$patterns[] = '#\[myurl\]#i';
910	$replacements[] = get_gallery_home_url();
911
912	if (function_exists('get_user_language_desc'))
913	{
914	$custom_text = get_user_language_desc(preg_replace($patterns, $replacements, $conf_UAM[40]));
915	}
916	else $custom_text = l10n(preg_replace($patterns, $replacements, $conf_UAM[40]));
917	$page["errors"][]=$custom_text;
918	}
919	}
920	}
921
922	/**
923	* Triggered on render_lost_password_mail_content
924	*
925	* Adds a customized text in lost password email content
926	* Added text is inserted before users login name and new password
927	*
928	* @param : Standard Piwigo email content
929	*
930	* @return : Customized content added to standard content
931	*
932	*/
933	function UAM_lost_password_mail_content($infos)
934	{
935	global $conf;
936
937	load_language('plugin.lang', UAM_PATH);
938
939	$conf_UAM = unserialize($conf['UserAdvManager']);
940
941	if (isset($conf_UAM[28]) and $conf_UAM[28] == 'true')
942	{
943	// Management of Extension flags ([mygallery], [myurl])
944	$patterns[] = '#\[mygallery\]#i';
945	$replacements[] = $conf['gallery_title'];
946	$patterns[] = '#\[myurl\]#i';
947	$replacements[] = get_gallery_home_url();
948
949	$infos = preg_replace($patterns, $replacements, $conf_UAM[29])."\n"."\n".$infos;
950	}
951	return $infos;
952	}
953
954
955	/**
956	* Function called from main.inc.php to send validation email
957	*
958	* @param : Type of email, user id, username, email address, confirmation (optional)
959	*
960	*/
961	function SendMail2User($typemail, $id, $username, $password, $email, $confirm)
962	{
963	global $conf;
964
965	$conf_UAM = unserialize($conf['UserAdvManager']);
966
967	include_once(PHPWG_ROOT_PATH.'include/functions_mail.inc.php');
968
969	$infos1_perso = "";
970	$infos2_perso = "";
971	$subject = "";
972
973	// We have to get the user's language in database
974	// ----------------------------------------------
975	$query ='
976	SELECT user_id, language
977	FROM '.USER_INFOS_TABLE.'
978	WHERE user_id = '.$id.'
979	;';
980	$data = pwg_db_fetch_assoc(pwg_query($query));
981
982	// Check if user is already registered (profile changing) - If not (new registration), language is set to current gallery language
983	// -------------------------------------------------------------------------------------------------------------------------------
984	if (empty($data))
985	{
986	// And switch gallery to this language before using personalized and multilangual contents
987	// ---------------------------------------------------------------------------------------
988	$language = pwg_get_session_var( 'lang_switch', $user['language'] );
989	switch_lang_to($language);
990	}
991	else
992	{
993	// And switch gallery to this language before using personalized and multilangual contents
994	// ---------------------------------------------------------------------------------------
995	//$language = $data['language']; // Usefull for debugging
996	switch_lang_to($data['language']);
997	load_language('plugin.lang', UAM_PATH);
998	}
999
1000	switch($typemail)
1001	{
1002	case 1: // Confirmation email on user registration - Without information email (already managed by Piwigo)
1003	if (isset($conf_UAM[41]) and $conf_UAM[41] <> '')
1004	{
1005	// Management of Extension flags ([username], [mygallery])
1006	// -------------------------------------------------------
1007	$patterns[] = '#\[username\]#i';
1008	$replacements[] = $username;
1009	$patterns[] = '#\[mygallery\]#i';
1010	$replacements[] = $conf['gallery_title'];
1011
1012	if (function_exists('get_user_language_desc'))
1013	{
1014	$subject = get_user_language_desc(preg_replace($patterns, $replacements, $conf_UAM[41]))."\n\n";
1015	}
1016	else $subject = l10n(preg_replace($patterns, $replacements, $conf_UAM[41]))."\n\n";
1017	}
1018
1019	break;
1020
1021	case 2: // Confirmation email on user profile update - With information email if modification done in user profile
1022	if (isset($conf_UAM[41]) and $conf_UAM[41] <> '')
1023	{
1024	// Management of Extension flags ([username], [mygallery])
1025	// -------------------------------------------------------
1026	$patterns[] = '#\[username\]#i';
1027	$replacements[] = $username;
1028	$patterns[] = '#\[mygallery\]#i';
1029	$replacements[] = $conf['gallery_title'];
1030
1031	if (function_exists('get_user_language_desc'))
1032	{
1033	$subject = get_user_language_desc(preg_replace($patterns, $replacements, $conf_UAM[41]))."\n\n";
1034	}
1035	else $subject = l10n(preg_replace($patterns, $replacements, $conf_UAM[41]))."\n\n";
1036	}
1037
1038	$password = $password <> '' ? $password : l10n('UAM_empty_pwd');
1039
1040	if (isset($conf_UAM[8]) and $conf_UAM[8] <> '')
1041	{
1042	// Management of Extension flags ([username], [mygallery], [myurl])
1043	// ----------------------------------------------------------------
1044	$patterns[] = '#\[username\]#i';
1045	$replacements[] = $username;
1046	$patterns[] = '#\[mygallery\]#i';
1047	$replacements[] = $conf['gallery_title'];
1048	$patterns[] = '#\[myurl\]#i';
1049	$replacements[] = get_gallery_home_url();
1050
1051	if (function_exists('get_user_language_desc'))
1052	{
1053	$infos1_perso = get_user_language_desc(preg_replace($patterns, $replacements, $conf_UAM[8]))."\n\n";
1054	}
1055	else $infos1_perso = l10n(preg_replace($patterns, $replacements, $conf_UAM[8]))."\n\n";
1056	}
1057
1058	if (isset($conf_UAM[0]) and $conf_UAM[0] == 'true')
1059	{
1060	if (isset($conf_UAM[34]) and $conf_UAM[34] == 'true') // Allow display of clear password in email
1061	{
1062	$infos1 = array(
1063	get_l10n_args('UAM_infos_mail %s', stripslashes($username)),
1064	get_l10n_args('UAM_User: %s', stripslashes($username)),
1065	get_l10n_args('UAM_Password: %s', $password),
1066	get_l10n_args('Email: %s', $email),
1067	get_l10n_args('', ''),
1068	);
1069	}
1070	else // Do not allow display of clear password in email
1071	{
1072	$infos1 = array(
1073	get_l10n_args('UAM_infos_mail %s', stripslashes($username)),
1074	get_l10n_args('UAM_User: %s', stripslashes($username)),
1075	get_l10n_args('Email: %s', $email),
1076	get_l10n_args('', ''),
1077	);
1078	}
1079	}
1080
1081	break;
1082
1083	case 3: // Only information email send to user if checked
1084	if (isset($conf_UAM[43]) and $conf_UAM[43] <> '')
1085	{
1086	// Management of Extension flags ([username], [mygallery])
1087	// -------------------------------------------------------
1088	$patterns[] = '#\[username\]#i';
1089	$replacements[] = $username;
1090	$patterns[] = '#\[mygallery\]#i';
1091	$replacements[] = $conf['gallery_title'];
1092
1093	if (function_exists('get_user_language_desc'))
1094	{
1095	$subject = get_user_language_desc(preg_replace($patterns, $replacements, $conf_UAM[43]))."\n\n";
1096	}
1097	else $subject = l10n(preg_replace($patterns, $replacements, $conf_UAM[43]))."\n\n";
1098	}
1099
1100	$password = $password <> '' ? $password : l10n('UAM_no_update_pwd');
1101
1102	if (isset($conf_UAM[8]) and $conf_UAM[8] <> '')
1103	{
1104	// Management of Extension flags ([username], [mygallery], [myurl])
1105	// ----------------------------------------------------------------
1106	$patterns[] = '#\[username\]#i';
1107	$replacements[] = $username;
1108	$patterns[] = '#\[mygallery\]#i';
1109	$replacements[] = $conf['gallery_title'];
1110	$patterns[] = '#\[myurl\]#i';
1111	$replacements[] = get_gallery_home_url();
1112
1113	if (function_exists('get_user_language_desc'))
1114	{
1115	$infos1_perso = get_user_language_desc(preg_replace($patterns, $replacements, $conf_UAM[8]))."\n\n";
1116	}
1117	else $infos1_perso = l10n(preg_replace($patterns, $replacements, $conf_UAM[8]))."\n\n";
1118	}
1119
1120	if (isset($conf_UAM[0]) and $conf_UAM[0] == 'true')
1121	{
1122	if (isset($conf_UAM[34]) and $conf_UAM[34] == 'true') // Allow display of clear password in email
1123	{
1124	$infos1 = array(
1125	get_l10n_args('UAM_infos_mail %s', stripslashes($username)),
1126	get_l10n_args('UAM_User: %s', stripslashes($username)),
1127	get_l10n_args('UAM_Password: %s', $password),
1128	get_l10n_args('Email: %s', $email),
1129	get_l10n_args('', ''),
1130	);
1131	}
1132	else // Do not allow display of clear password in email
1133	{
1134	$infos1 = array(
1135	get_l10n_args('UAM_infos_mail %s', stripslashes($username)),
1136	get_l10n_args('UAM_User: %s', stripslashes($username)),
1137	get_l10n_args('Email: %s', $email),
1138	get_l10n_args('', ''),
1139	);
1140	}
1141	}
1142
1143	break;
1144	}
1145
1146	if (isset($conf_UAM[1]) and ($conf_UAM[1] == 'true' or $conf_UAM[1] == 'local') and $confirm) // Add confirmation link ?
1147	{
1148	$infos2 = array
1149	(
1150	get_l10n_args('UAM_Link: %s', AddConfirmMail($id, $email)),
1151	get_l10n_args('', ''),
1152	);
1153
1154	if (isset($conf_UAM[9]) and $conf_UAM[9] <> '') // Add personal text in confirmation email ?
1155	{
1156	// Management of Extension flags ([username], [mygallery], [myurl], [Kdays])
1157	// -------------------------------------------------------------------------
1158	$patterns[] = '#\[username\]#i';
1159	$replacements[] = $username;
1160	$patterns[] = '#\[mygallery\]#i';
1161	$replacements[] = $conf['gallery_title'];
1162	$patterns[] = '#\[myurl\]#i';
1163	$replacements[] = get_gallery_home_url();
1164
1165	if (isset($conf_UAM_ConfirmMail[0]) and $conf_UAM_ConfirmMail[0] == 'true') // [Kdays] replacement only if related option is active
1166	{
1167	$patterns[] = '#\[Kdays\]#i';
1168	$replacements[] = $conf_UAM_ConfirmMail[1];
1169	}
1170
1171	if (function_exists('get_user_language_desc'))
1172	{
1173	$infos2_perso = get_user_language_desc(preg_replace($patterns, $replacements, $conf_UAM[9]))."\n\n";
1174	}
1175	else $infos2_perso = l10n(preg_replace($patterns, $replacements, $conf_UAM[9]))."\n\n";
1176	}
1177	}
1178
1179	// Sending the email with subject and contents
1180	// -------------------------------------------
1181	if (isset($conf_UAM[1]) and $conf_UAM[1] == 'local')
1182	{
1183	$keyargs_content = array();
1184	$keyargs_content[] = get_l10n_args('UAM Manual validation needed for %s', $username);
1185	$keyargs_content[] = get_l10n_args('UAM_Link: %s', AddConfirmMail($id, $email));
1186	pwg_mail_notification_admins(get_l10n_args('UAM Subjet manual validation for %s',$username),$keyargs_content,false);
1187	}
1188	else
1189	{
1190	pwg_mail($email, array(
1191	'subject' => $subject,
1192	'content' => (isset($infos1) ? $infos1_perso.l10n_args($infos1)."\n\n" : "").(isset($infos2) ? $infos2_perso.l10n_args($infos2)."\n\n" : "").get_absolute_root_url(),
1193	));
1194	}
1195	// Switching back to default language
1196	// ----------------------------------
1197	switch_lang_back();
1198	}
1199
1200
1201	/**
1202	* Function called from UAM_admin.php to resend validation email with or without new validation key
1203	*
1204	* @param : Type of email, user id, username, email address, confirmation (optional)
1205	*
1206	*/
1207	function ResendMail2User($typemail, $user_id, $username, $email, $confirm)
1208	{
1209	global $conf;
1210
1211	$subject = "";
1212
1213	$conf_UAM = unserialize($conf['UserAdvManager']);
1214
1215	$conf_UAM_ConfirmMail = unserialize($conf['UserAdvManager_ConfirmMail']);
1216
1217	include_once(PHPWG_ROOT_PATH.'include/functions_mail.inc.php');
1218
1219	// We have to get the user's language in database
1220	// ----------------------------------------------
1221	$query ='
1222	SELECT user_id, language
1223	FROM '.USER_INFOS_TABLE.'
1224	WHERE user_id = '.$user_id.'
1225	;';
1226	$data = pwg_db_fetch_assoc(pwg_query($query));
1227	$language = $data['language'];
1228
1229	// And switch gallery to this language before using personalized and multilangual contents
1230	// ---------------------------------------------------------------------------------------
1231	switch_lang_to($data['language']);
1232
1233	load_language('plugin.lang', UAM_PATH);
1234
1235	switch($typemail)
1236	{
1237	case 1: //Generating email content for remind with a new key
1238	if (isset($conf_UAM[42]) and $conf_UAM[42] <> '')
1239	{
1240	// Management of Extension flags ([username], [mygallery])
1241	// -------------------------------------------------------
1242	$patterns[] = '#\[username\]#i';
1243	$replacements[] = $username;
1244	$patterns[] = '#\[mygallery\]#i';
1245	$replacements[] = $conf['gallery_title'];
1246
1247	if (function_exists('get_user_language_desc'))
1248	{
1249	$subject = get_user_language_desc(preg_replace($patterns, $replacements, $conf_UAM[42]))."\n\n";
1250	}
1251	else $subject = l10n(preg_replace($patterns, $replacements, $conf_UAM[42]))."\n\n";
1252	}
1253
1254	if (isset($conf_UAM_ConfirmMail[2]) and $conf_UAM_ConfirmMail[2] <> '' and isset($conf_UAM_ConfirmMail[3]) and $conf_UAM_ConfirmMail[3] == 'true' and $confirm)
1255	{
1256	// Management of Extension flags ([username], [mygallery], [myurl], [Kdays])
1257	// -------------------------------------------------------------------------
1258	$patterns[] = '#\[username\]#i';
1259	$replacements[] = $username;
1260	$patterns[] = '#\[mygallery\]#i';
1261	$replacements[] = $conf['gallery_title'];
1262	$patterns[] = '#\[myurl\]#i';
1263	$replacements[] = get_gallery_home_url();
1264
1265	if (isset($conf_UAM_ConfirmMail[0]) and $conf_UAM_ConfirmMail[0] == 'true') // [Kdays] replacement only if related option is active
1266	{
1267	$patterns[] = '#\[Kdays\]#i';
1268	$replacements[] = $conf_UAM_ConfirmMail[1];
1269	}
1270
1271	if (function_exists('get_user_language_desc'))
1272	{
1273	$infos1 = get_user_language_desc(preg_replace($patterns, $replacements, $conf_UAM_ConfirmMail[2]))."\n\n";
1274	}
1275	else $infos1 = l10n(preg_replace($patterns, $replacements, $conf_UAM_ConfirmMail[2]))."\n\n";
1276
1277	$infos2 = array
1278	(
1279	get_l10n_args('UAM_Link: %s', ResetConfirmMail($user_id)),
1280	get_l10n_args('', ''),
1281	);
1282	}
1283
1284	// Set reminder true
1285	// -----------------
1286	$query = '
1287	UPDATE '.USER_CONFIRM_MAIL_TABLE.'
1288	SET reminder = "true"
1289	WHERE user_id = '.$user_id.'
1290	;';
1291	pwg_query($query);
1292
1293	break;
1294
1295	case 2: //Generating email content for remind without a new key
1296	if (isset($conf_UAM[42]) and $conf_UAM[42] <> '')
1297	{
1298	// Management of Extension flags ([username], [mygallery])
1299	// -------------------------------------------------------
1300	$patterns[] = '#\[username\]#i';
1301	$replacements[] = $username;
1302	$patterns[] = '#\[mygallery\]#i';
1303	$replacements[] = $conf['gallery_title'];
1304
1305	if (function_exists('get_user_language_desc'))
1306	{
1307	$subject = get_user_language_desc(preg_replace($patterns, $replacements, $conf_UAM[42]))."\n\n";
1308	}
1309	else $subject = l10n(preg_replace($patterns, $replacements, $conf_UAM[42]))."\n\n";
1310	}
1311
1312	if (isset($conf_UAM_ConfirmMail[4]) and $conf_UAM_ConfirmMail[4] <> '' and isset($conf_UAM_ConfirmMail[3]) and $conf_UAM_ConfirmMail[3] == 'true' and !$confirm)
1313	{
1314	// Management of Extension flags ([username], [mygallery], [myurl], [Kdays])
1315	// -------------------------------------------------------------------------
1316	$patterns[] = '#\[username\]#i';
1317	$replacements[] = $username;
1318	$patterns[] = '#\[mygallery\]#i';
1319	$replacements[] = $conf['gallery_title'];
1320	$patterns[] = '#\[myurl\]#i';
1321	$replacements[] = get_gallery_home_url();
1322
1323	if (isset($conf_UAM_ConfirmMail[0]) and $conf_UAM_ConfirmMail[0] == 'true') // [Kdays] replacement only if related option is active
1324	{
1325	$patterns[] = '#\[Kdays\]#i';
1326	$replacements[] = $conf_UAM_ConfirmMail[1];
1327	}
1328
1329	if (function_exists('get_user_language_desc'))
1330	{
1331	$infos1 = get_user_language_desc(preg_replace($patterns, $replacements, $conf_UAM_ConfirmMail[4]))."\n\n";
1332	}
1333	else $infos1 = l10n(preg_replace($patterns, $replacements, $conf_UAM_ConfirmMail[4]))."\n\n";
1334	}
1335
1336	// Set reminder true
1337	// -----------------
1338	$query = '
1339	UPDATE '.USER_CONFIRM_MAIL_TABLE.'
1340	SET reminder = "true"
1341	WHERE user_id = '.$user_id.'
1342	;';
1343	pwg_query($query);
1344
1345	break;
1346	}
1347
1348	pwg_mail($email, array(
1349	'subject' => $subject,
1350	'content' => ($infos1."\n\n").(isset($infos2) ? l10n_args($infos2)."\n\n" : "").get_absolute_root_url(),
1351	));
1352
1353	// Switching back to default language
1354	// ----------------------------------
1355	switch_lang_back();
1356	}
1357
1358
1359	/**
1360	* Function called from UAM_admin.php to send a reminder mail for ghost users
1361	*
1362	* @param : User id, username, email address
1363	*
1364	*/
1365	function ghostreminder($user_id, $username, $email)
1366	{
1367	global $conf;
1368
1369	$conf_UAM = unserialize($conf['UserAdvManager']);
1370	$subject = "";
1371
1372	include_once(PHPWG_ROOT_PATH.'include/functions_mail.inc.php');
1373
1374	// We have to get the user's language in database
1375	// ----------------------------------------------
1376	$query ='
1377	SELECT user_id, language
1378	FROM '.USER_INFOS_TABLE.'
1379	WHERE user_id = '.$user_id.'
1380	;';
1381	$data = pwg_db_fetch_assoc(pwg_query($query));
1382	$language = $data['language'];
1383
1384	// And switch gallery to this language before using personalized and multilangual contents
1385	// ---------------------------------------------------------------------------------------
1386	switch_lang_to($data['language']);
1387
1388	load_language('plugin.lang', UAM_PATH);
1389
1390	if (isset($conf_UAM[45]) and $conf_UAM[45] <> '')
1391	{
1392	// Management of Extension flags ([username], [mygallery])
1393	// -------------------------------------------------------
1394	$patterns[] = '#\[username\]#i';
1395	$replacements[] = $username;
1396	$patterns[] = '#\[mygallery\]#i';
1397	$replacements[] = $conf['gallery_title'];
1398
1399	if (function_exists('get_user_language_desc'))
1400	{
1401	$subject = get_user_language_desc(preg_replace($patterns, $replacements, $conf_UAM[45]))."\n\n";
1402	}
1403	else $subject = l10n(preg_replace($patterns, $replacements, $conf_UAM[45]))."\n\n";
1404	}
1405
1406	if (isset($conf_UAM[17]) and $conf_UAM[17] <> '' and isset($conf_UAM[15]) and $conf_UAM[15] == 'true')
1407	{
1408	// Management of Extension flags ([username], [mygallery], [myurl], [days])
1409	// ------------------------------------------------------------------------
1410	$patterns[] = '#\[username\]#i';
1411	$replacements[] = $username;
1412	$patterns[] = '#\[mygallery\]#i';
1413	$replacements[] = $conf['gallery_title'];
1414	$patterns[] = '#\[myurl\]#i';
1415	$replacements[] = get_gallery_home_url();
1416	$patterns[] = '#\[days\]#i';
1417	$replacements[] = $conf_UAM[16];
1418
1419	if (function_exists('get_user_language_desc'))
1420	{
1421	$infos1 = get_user_language_desc(preg_replace($patterns, $replacements, $conf_UAM[17]))."\n\n";
1422	}
1423	else
1424	{
1425	$infos1 = l10n(preg_replace($patterns, $replacements, $conf_UAM[17]))."\n\n";
1426	}
1427
1428	resetlastvisit($user_id);
1429	}
1430
1431	pwg_mail($email, array(
1432	'subject' => $subject,
1433	'content' => $infos1.get_absolute_root_url(),
1434	));
1435
1436	// Switching back to default language
1437	// ----------------------------------
1438	switch_lang_back();
1439	}
1440
1441
1442	/**
1443	* Function called from functions.inc.php to send notification email when user have been downgraded
1444	*
1445	* @param : user id, username, email address
1446	*
1447	*/
1448	function demotion_mail($id, $username, $email)
1449	{
1450	global $conf;
1451
1452	$conf_UAM = unserialize($conf['UserAdvManager']);
1453
1454	include_once(PHPWG_ROOT_PATH.'include/functions_mail.inc.php');
1455
1456	$custom_txt = "";
1457	$subject = "";
1458
1459	// We have to get the user's language in database
1460	// ----------------------------------------------
1461	$query = '
1462	SELECT user_id, language
1463	FROM '.USER_INFOS_TABLE.'
1464	WHERE user_id = '.$id.'
1465	;';
1466	$data = pwg_db_fetch_assoc(pwg_query($query));
1467
1468	// Check if user is already registered (profile changing) - If not (new registration), language is set to current gallery language
1469	// -------------------------------------------------------------------------------------------------------------------------------
1470	if (empty($data))
1471	{
1472	// And switch gallery to this language before using personalized and multilangual contents
1473	// ---------------------------------------------------------------------------------------
1474	$language = pwg_get_session_var( 'lang_switch', $user['language'] );
1475	switch_lang_to($language);
1476	}
1477	else
1478	{
1479	// And switch gallery to this language before using personalized and multilangual contents
1480	// ---------------------------------------------------------------------------------------
1481	$language = $data['language']; // Usefull for debugging
1482	switch_lang_to($data['language']);
1483	load_language('plugin.lang', UAM_PATH);
1484	}
1485
1486	if (isset($conf_UAM[44]) and $conf_UAM[44] <> '')
1487	{
1488	// Management of Extension flags ([username], [mygallery])
1489	// -------------------------------------------------------
1490	$patterns[] = '#\[username\]#i';
1491	$replacements[] = $username;
1492	$patterns[] = '#\[mygallery\]#i';
1493	$replacements[] = $conf['gallery_title'];
1494
1495	if (function_exists('get_user_language_desc'))
1496	{
1497	$subject = get_user_language_desc(preg_replace($patterns, $replacements, $conf_UAM[44]))."\n\n";
1498	}
1499	else $subject = l10n(preg_replace($patterns, $replacements, $conf_UAM[44]))."\n\n";
1500	}
1501
1502	if (isset($conf_UAM[24]) and $conf_UAM[24] <> '')
1503	{
1504	// Management of Extension flags ([username], [mygallery], [myurl])
1505	// ----------------------------------------------------------------
1506	$patterns[] = '#\[username\]#i';
1507	$replacements[] = stripslashes($username);
1508	$patterns[] = '#\[mygallery\]#i';
1509	$replacements[] = $conf['gallery_title'];
1510	$patterns[] = '#\[myurl\]#i';
1511	$replacements[] = get_gallery_home_url();
1512
1513	if (function_exists('get_user_language_desc'))
1514	{
1515	$custom_txt = get_user_language_desc(preg_replace($patterns, $replacements, $conf_UAM[24]))."\n\n";
1516	}
1517	else $custom_txt = l10n(preg_replace($patterns, $replacements, $conf_UAM[24]))."\n\n";
1518	}
1519
1520	$infos1 = array(
1521	get_l10n_args('UAM_User: %s', stripslashes($username)),
1522	get_l10n_args('Email: %s', $email),
1523	get_l10n_args('', ''),
1524	);
1525
1526	$infos2 = array
1527	(
1528	get_l10n_args('UAM_Link: %s', ResetConfirmMail($id)),
1529	get_l10n_args('', ''),
1530	);
1531
1532	resetlastvisit($id);
1533
1534	// Sending the email with subject and contents
1535	// -------------------------------------------
1536	pwg_mail($email, array(
1537	'subject' => $subject,
1538	'content' => ($custom_txt.l10n_args($infos1)."\n\n".l10n_args($infos2)."\n\n").get_absolute_root_url(),
1539	));
1540
1541	// Switching back to default language
1542	// ----------------------------------
1543	switch_lang_back();
1544	}
1545
1546
1547	/**
1548	* Function called from UAM_admin.php to send notification email when user registration have been manually validated by admin
1549	*
1550	* @param : user id
1551	*
1552	*/
1553	function validation_mail($id)
1554	{
1555	global $conf;
1556
1557	$conf_UAM = unserialize($conf['UserAdvManager']);
1558
1559	include_once(PHPWG_ROOT_PATH.'include/functions_mail.inc.php');
1560
1561	$custom_txt = "";
1562	$subject = "";
1563
1564	// We have to get the user's language in database
1565	// ----------------------------------------------
1566	$query ='
1567	SELECT user_id, language
1568	FROM '.USER_INFOS_TABLE.'
1569	WHERE user_id = '.$id.'
1570	;';
1571	$data = pwg_db_fetch_assoc(pwg_query($query));
1572
1573	// Check if user is already registered (profile changing) - If not (new registration), language is set to current gallery language
1574	// -------------------------------------------------------------------------------------------------------------------------------
1575	if (empty($data))
1576	{
1577	// And switch gallery to this language before using personalized and multilangual contents
1578	// ---------------------------------------------------------------------------------------
1579	$language = pwg_get_session_var( 'lang_switch', $user['language'] );
1580	switch_lang_to($language);
1581	}
1582	else
1583	{
1584	// And switch gallery to this language before using personalized and multilangual contents
1585	// ---------------------------------------------------------------------------------------
1586	$language = $data['language']; // Usefull for debugging
1587	switch_lang_to($data['language']);
1588	load_language('plugin.lang', UAM_PATH);
1589	}
1590
1591	// Retreive users email and user name from id
1592	// ------------------------------------------
1593	$query ='
1594	SELECT id, username, mail_address
1595	FROM '.USERS_TABLE.'
1596	WHERE id = '.$id.'
1597	;';
1598	$result = pwg_db_fetch_assoc(pwg_query($query));
1599
1600	if (isset($conf_UAM[46]) and $conf_UAM[46] <> '')
1601	{
1602	// Management of Extension flags ([username], [mygallery])
1603	// -------------------------------------------------------
1604	$patterns[] = '#\[username\]#i';
1605	$replacements[] = $result['username'];
1606	$patterns[] = '#\[mygallery\]#i';
1607	$replacements[] = $conf['gallery_title'];
1608
1609	if (function_exists('get_user_language_desc'))
1610	{
1611	$subject = get_user_language_desc(preg_replace($patterns, $replacements, $conf_UAM[46]))."\n\n";
1612	}
1613	else $subject = l10n(preg_replace($patterns, $replacements, $conf_UAM[46]))."\n\n";
1614	}
1615
1616	if (isset($conf_UAM[27]) and $conf_UAM[27] <> '')
1617	{
1618	// Management of Extension flags ([username], [mygallery], [myurl])
1619	// ----------------------------------------------------------------
1620	$patterns[] = '#\[username\]#i';
1621	$replacements[] = $result['username'];
1622	$patterns[] = '#\[mygallery\]#i';
1623	$replacements[] = $conf['gallery_title'];
1624	$patterns[] = '#\[myurl\]#i';
1625	$replacements[] = get_gallery_home_url();
1626	if (function_exists('get_user_language_desc'))
1627	{
1628	$custom_txt = get_user_language_desc(preg_replace($patterns, $replacements, $conf_UAM[27]))."\n\n";
1629	}
1630	else $custom_txt = l10n(preg_replace($patterns, $replacements, $conf_UAM[27]))."\n\n";
1631	}
1632
1633	$infos = array(
1634	get_l10n_args('UAM_User: %s', stripslashes($result['username'])),
1635	get_l10n_args('Email: %s', $result['mail_address']),
1636	get_l10n_args('', ''),
1637	);
1638
1639	// Sending the email with subject and contents
1640	// -------------------------------------------
1641	pwg_mail($result['mail_address'], array(
1642	'subject' => $subject,
1643	'content' => (l10n_args($infos)."\n\n".$custom_txt),
1644	));
1645
1646	// Switching back to default language
1647	// ----------------------------------
1648	switch_lang_back();
1649	}
1650
1651
1652	/**
1653	* Function called from functions AddConfirmMail and ResetConfirmMail for validation key generation
1654	*
1655	* @return : validation key
1656	*
1657	*/
1658	function FindAvailableConfirmMailID()
1659	{
1660	while (true)
1661	{
1662	$id = generate_key(16);
1663	$query = '
1664	SELECT COUNT(*)
1665	FROM '.USER_CONFIRM_MAIL_TABLE.'
1666	WHERE id = "'.$id.'"
1667	;';
1668	list($count) = pwg_db_fetch_row(pwg_query($query));
1669
1670	if ($count == 0)
1671	return $id;
1672	}
1673	}
1674
1675
1676	/**
1677	* Function called from functions SendMail2User to process unvalidated users and generate validation key link
1678	*
1679	* @param : User id, email address
1680	*
1681	* @return : Build validation key in URL
1682	*
1683	*/
1684	function AddConfirmMail($user_id, $email)
1685	{
1686	global $conf;
1687
1688	$conf_UAM = unserialize($conf['UserAdvManager']);
1689	$Confirm_Mail_ID = FindAvailableConfirmMailID();
1690
1691	list($dbnow) = pwg_db_fetch_row(pwg_query('SELECT NOW();'));
1692
1693	if (isset($Confirm_Mail_ID))
1694	{
1695	$query = '
1696	SELECT status
1697	FROM '.USER_INFOS_TABLE.'
1698	WHERE user_id = '.$user_id.'
1699	;';
1700	list($status) = pwg_db_fetch_row(pwg_query($query));
1701
1702	$query = '
1703	INSERT INTO '.USER_CONFIRM_MAIL_TABLE.'
1704	(id, user_id, mail_address, status, date_check)
1705	VALUES
1706	("'.$Confirm_Mail_ID.'", '.$user_id.', "'.$email.'", "'.$status.'", null)
1707	;';
1708	pwg_query($query);
1709
1710	// Delete user from all groups
1711	// ---------------------------
1712	$query = '
1713	DELETE FROM '.USER_GROUP_TABLE.'
1714	WHERE user_id = '.$user_id.'
1715	AND (
1716	group_id = '.$conf_UAM[2].'
1717	OR
1718	group_id = '.$conf_UAM[3].'
1719	)
1720	;';
1721	pwg_query($query);
1722
1723	// Set user unvalidated status
1724	// ---------------------------
1725	if (!is_admin() and $conf_UAM[7] <> -1)
1726	{
1727	$query = '
1728	UPDATE '.USER_INFOS_TABLE.'
1729	SET status = "'.$conf_UAM[7].'"
1730	WHERE user_id = '.$user_id.'
1731	;';
1732	pwg_query($query);
1733	}
1734
1735	// Set user unvalidated group
1736	// --------------------------
1737	if (!is_admin() and $conf_UAM[2] <> -1)
1738	{
1739	$query = '
1740	INSERT INTO '.USER_GROUP_TABLE.'
1741	(user_id, group_id)
1742	VALUES
1743	('.$user_id.', '.$conf_UAM[2].')
1744	;';
1745	pwg_query($query);
1746	}
1747
1748	// Set user unvalidated privacy level
1749	// ----------------------------------
1750	if (!is_admin() and $conf_UAM[35] <> -1)
1751	{
1752	$query = '
1753	UPDATE '.USER_INFOS_TABLE.'
1754	SET level = "'.$conf_UAM[35].'"
1755	WHERE user_id = '.$user_id.'
1756	;';
1757	pwg_query($query);
1758	}
1759
1760	// Set UAM_validated field to false in #_users table
1761	// -------------------------------------------------
1762	SetUnvalidated($user_id);
1763
1764	return get_absolute_root_url().UAM_PATH.'ConfirmMail.php?key='.$Confirm_Mail_ID.'&userid='.$user_id;
1765	}
1766	}
1767
1768
1769	/**
1770	* Function called from UAM_Adduser() to set group/status/level to new users if manual validation is set
1771	*
1772	* @param : User id
1773	*
1774	*
1775	*/
1776	function SetPermission($user_id)
1777	{
1778	global $conf;
1779
1780	$conf_UAM = unserialize($conf['UserAdvManager']);
1781
1782	// Groups cleanup
1783	// --------------
1784	$query = '
1785	DELETE FROM '.USER_GROUP_TABLE.'
1786	WHERE user_id = '.$user_id.'
1787	AND (
1788	group_id = '.$conf_UAM[2].'
1789	OR
1790	group_id = '.$conf_UAM[3].'
1791	)
1792	;';
1793	pwg_query($query);
1794
1795	if (!is_admin() and $conf_UAM[7] <> -1) // Set status
1796	{
1797	$query = '
1798	UPDATE '.USER_INFOS_TABLE.'
1799	SET status = "'.$conf_UAM[7].'"
1800	WHERE user_id = '.$user_id.'
1801	;';
1802	pwg_query($query);
1803	}
1804
1805	if (!is_admin() and $conf_UAM[2] <> -1) // Set group
1806	{
1807	$query = '
1808	INSERT INTO '.USER_GROUP_TABLE.'
1809	(user_id, group_id)
1810	VALUES
1811	('.$user_id.', '.$conf_UAM[2].')
1812	;';
1813	pwg_query($query);
1814	}
1815
1816	if (!is_admin() and $conf_UAM[35] <> -1) // Set privacy level
1817	{
1818	$query = '
1819	INSERT INTO '.USER_INFOS_TABLE.'
1820	(user_id, level)
1821	VALUES
1822	('.$user_id.', "'.$conf_UAM[35].'")
1823	;';
1824	pwg_query($query);
1825	}
1826	}
1827
1828
1829	/**
1830	* Function called from UAM_admin.php to reset validation key
1831	*
1832	* @param : User id
1833	*
1834	* @return : Build validation key in URL
1835	*
1836	*/
1837	function ResetConfirmMail($user_id)
1838	{
1839	global $conf;
1840
1841	$Confirm_Mail_ID = FindAvailableConfirmMailID();
1842
1843	list($dbnow) = pwg_db_fetch_row(pwg_query('SELECT NOW();'));
1844
1845	if (isset($Confirm_Mail_ID))
1846	{
1847	$query = '
1848	UPDATE '.USER_CONFIRM_MAIL_TABLE.'
1849	SET id = "'.$Confirm_Mail_ID.'"
1850	WHERE user_id = '.$user_id.'
1851	;';
1852	pwg_query($query);
1853
1854	$query = '
1855	UPDATE '.USER_INFOS_TABLE.'
1856	SET registration_date = "'.$dbnow.'"
1857	WHERE user_id = '.$user_id.'
1858	;';
1859	pwg_query($query);
1860
1861	return get_absolute_root_url().UAM_PATH.'ConfirmMail.php?key='.$Confirm_Mail_ID.'&userid='.$user_id;
1862	}
1863	}
1864
1865
1866	/**
1867	* Function called from functions.inc.php to reset last visit date after sending a reminder
1868	*
1869	* @param : User id
1870	*
1871	*/
1872	function resetlastvisit($user_id)
1873	{
1874	global $conf;
1875
1876	list($dbnow) = pwg_db_fetch_row(pwg_query('SELECT NOW();'));
1877
1878	$query = '
1879	UPDATE '.USER_LASTVISIT_TABLE.'
1880	SET lastvisit = "'.$dbnow.'", reminder = "true"
1881	WHERE user_id = '.$user_id.'
1882	;';
1883	pwg_query($query);
1884	}
1885
1886
1887	/**
1888	* Function called from main.inc.php - Triggered on user deletion
1889	*
1890	*/
1891	function DeleteConfirmMail($user_id)
1892	{
1893	$query = '
1894	DELETE FROM '.USER_CONFIRM_MAIL_TABLE.'
1895	WHERE user_id = '.$user_id.'
1896	;';
1897	pwg_query($query);
1898	}
1899
1900	/**
1901	* Function called from main.inc.php - Triggered on user deletion
1902	*
1903	*/
1904	function DeleteLastVisit($user_id)
1905	{
1906	$query = '
1907	DELETE FROM '.USER_LASTVISIT_TABLE.'
1908	WHERE user_id = '.$user_id.'
1909	;';
1910	pwg_query($query);
1911	}
1912
1913
1914	/**
1915	* Function called from main.inc.php - Triggered on user deletion
1916	*
1917	* @param : User id
1918	*
1919	*/
1920	function DeleteRedir($user_id)
1921	{
1922	$tab = array();
1923
1924	$query = '
1925	SELECT value
1926	FROM '.CONFIG_TABLE.'
1927	WHERE param = "UserAdvManager_Redir"
1928	;';
1929
1930	$tab = pwg_db_fetch_row(pwg_query($query));
1931
1932	$values = explode(',', $tab[0]);
1933
1934	unset($values[array_search($user_id, $values)]);
1935
1936	$query = '
1937	UPDATE '.CONFIG_TABLE.'
1938	SET value = "'.implode(',', $values).'"
1939	WHERE param = "UserAdvManager_Redir";';
1940
1941	pwg_query($query);
1942	}
1943
1944
1945	/**
1946	* Function called from ConfirmMail.php to verify validation key used by user according time limit
1947	* Return true is key validation is OK else return false
1948	*
1949	* @param : User id
1950	*
1951	* @return : Bool
1952	*
1953	*/
1954	function VerifyConfirmMail($id)
1955	{
1956	global $conf;
1957
1958	include_once(PHPWG_ROOT_PATH.'admin/include/functions.php');
1959
1960	$conf_UAM = unserialize($conf['UserAdvManager']);
1961
1962	$conf_UAM_ConfirmMail = unserialize($conf['UserAdvManager_ConfirmMail']);
1963
1964	$query = '
1965	SELECT COUNT(*)
1966	FROM '.USER_CONFIRM_MAIL_TABLE.'
1967	WHERE id = "'.$id.'"
1968	;';
1969	list($count) = pwg_db_fetch_row(pwg_query($query));
1970
1971	if ($count == 1)
1972	{
1973	$query = '
1974	SELECT user_id, status, date_check
1975	FROM '.USER_CONFIRM_MAIL_TABLE.'
1976	WHERE id = "'.$id.'"
1977	;';
1978	$data = pwg_db_fetch_assoc(pwg_query($query));
1979
1980	if (!empty($data) and isset($data['user_id']) and is_null($data['date_check']))
1981	{
1982	$query = '
1983	SELECT registration_date
1984	FROM '.USER_INFOS_TABLE.'
1985	WHERE user_id = '.$data['user_id'].'
1986	;';
1987	list($registration_date) = pwg_db_fetch_row(pwg_query($query));
1988
1989	// Time limit process
1990	// ********************************************
1991	if (!empty($registration_date))
1992	{
1993	// Verify Confirmmail with time limit ON
1994	// -------------------------------------
1995	if (isset ($conf_UAM_ConfirmMail[1]))
1996	{
1997	// Dates formating and compare
1998	// ---------------------------
1999	$today = date("d-m-Y"); // Get today's date
2000	list($day, $month, $year) = explode('-', $today); // explode date of today
2001	$daytimestamp = mktime(0, 0, 0, $month, $day, $year);// Generate UNIX timestamp
2002
2003	list($regdate, $regtime) = explode(' ', $registration_date); // Explode date and time from registration date
2004	list($regyear, $regmonth, $regday) = explode('-', $regdate); // Explode date from registration date
2005	$regtimestamp = mktime(0, 0, 0, $regmonth, $regday, $regyear);// Generate UNIX timestamp
2006
2007	$deltasecs = $daytimestamp - $regtimestamp;// Compare the 2 UNIX timestamps
2008	$deltadays = floor($deltasecs / 86400);// Convert result from seconds to days
2009
2010	// Condition with the value set for time limit
2011	// -------------------------------------------
2012	if ($deltadays <= $conf_UAM_ConfirmMail[1]) // If Nb of days is less than the limit set
2013	{
2014	list($dbnow) = pwg_db_fetch_row(pwg_query('SELECT NOW();'));
2015
2016	// Update ConfirmMail table
2017	// ------------------------
2018	$query = '
2019	UPDATE '.USER_CONFIRM_MAIL_TABLE.'
2020	SET date_check="'.$dbnow.'", reminder="false"
2021	WHERE id = "'.$id.'"
2022	;';
2023	pwg_query($query);
2024
2025	// Update LastVisit table - Force reminder field to false
2026	// Usefull when a user has been automatically downgraded and revalidate its registration
2027	// -------------------------------------------------------------------------------------
2028	$query = '
2029	UPDATE '.USER_LASTVISIT_TABLE.'
2030	SET reminder="false"
2031	WHERE user_id = "'.$data['user_id'].'"
2032	;';
2033	pwg_query($query);
2034
2035	if ($conf_UAM[2] <> -1) // Delete user from unvalidated users group
2036	{
2037	$query = '
2038	DELETE FROM '.USER_GROUP_TABLE.'
2039	WHERE user_id = '.$data['user_id'].'
2040	AND group_id = '.$conf_UAM[2].'
2041	;';
2042	pwg_query($query);
2043	}
2044
2045	if ($conf_UAM[3] <> -1) // Add user to validated users group
2046	{
2047	$query = '
2048	INSERT INTO '.USER_GROUP_TABLE.'
2049	(user_id, group_id)
2050	VALUES
2051	('.$data['user_id'].', '.$conf_UAM[3].')
2052	;';
2053	pwg_query($query);
2054	}
2055
2056	if ($conf_UAM[4] <> -1) // Change user's status
2057	{
2058	$query = '
2059	UPDATE '.USER_INFOS_TABLE.'
2060	SET status = "'.$conf_UAM[4].'"
2061	WHERE user_id = '.$data['user_id'].'
2062	;';
2063	pwg_query($query);
2064	}
2065
2066	if ($conf_UAM[36] <> -1) // Change user's privacy level
2067	{
2068	$query = '
2069	UPDATE '.USER_INFOS_TABLE.'
2070	SET level = "'.$conf_UAM[36].'"
2071	WHERE user_id = '.$data['user_id'].'
2072	;';
2073	pwg_query($query);
2074	}
2075
2076	// Set UAM_validated field to True in #_users table
2077	$query = '
2078	UPDATE '.USERS_TABLE.'
2079	SET UAM_validated = "true"
2080	WHERE id = '.$data['user_id'].'
2081	;';
2082	pwg_query($query);
2083
2084	// Refresh user's category cache
2085	// -----------------------------
2086	invalidate_user_cache();
2087
2088	return true;
2089	}
2090	elseif ($deltadays > $conf_UAM_ConfirmMail[1]) // If timelimit exeeds
2091	{
2092	return false;
2093	}
2094	}
2095	// Verify Confirmmail with time limit OFF
2096	// --------------------------------------
2097	else
2098	{
2099	list($dbnow) = pwg_db_fetch_row(pwg_query('SELECT NOW();'));
2100
2101	// Update ConfirmMail table
2102	// ------------------------
2103	$query = '
2104	UPDATE '.USER_CONFIRM_MAIL_TABLE.'
2105	SET date_check="'.$dbnow.'"
2106	WHERE id = "'.$id.'"
2107	;';
2108	pwg_query($query);
2109
2110	// Update LastVisit table - Force reminder field to false
2111	// Usefull when a user has been automatically downgraded and revalidate its registration
2112	// -------------------------------------------------------------------------------------
2113	$query = '
2114	UPDATE '.USER_LASTVISIT_TABLE.'
2115	SET reminder="false"
2116	WHERE user_id = "'.$data['user_id'].'"
2117	;';
2118	pwg_query($query);
2119
2120	if ($conf_UAM[2] <> -1) // Delete user from unvalidated users group
2121	{
2122	$query = '
2123	DELETE FROM '.USER_GROUP_TABLE.'
2124	WHERE user_id = '.$data['user_id'].'
2125	AND group_id = '.$conf_UAM[2].'
2126	;';
2127	pwg_query($query);
2128	}
2129
2130	if ($conf_UAM[3] <> -1)
2131	{
2132	$query = '
2133	DELETE FROM '.USER_GROUP_TABLE.'
2134	WHERE user_id = '.$data['user_id'].'
2135	AND group_id = '.$conf_UAM[3].'
2136	;';
2137	pwg_query($query);
2138
2139	$query = '
2140	INSERT INTO '.USER_GROUP_TABLE.'
2141	(user_id, group_id)
2142	VALUES
2143	('.$data['user_id'].', '.$conf_UAM[3].')
2144	;';
2145	pwg_query($query);
2146	}
2147
2148	if ($conf_UAM[4] <> -1) // Change user's status
2149	{
2150	$query = '
2151	UPDATE '.USER_INFOS_TABLE.'
2152	SET status = "'.$conf_UAM[4].'"
2153	WHERE user_id = '.$data['user_id'].'
2154	;';
2155	pwg_query($query);
2156	}
2157
2158	if ($conf_UAM[36] <> -1) // Change user's privacy level
2159	{
2160	$query = '
2161	UPDATE '.USER_INFOS_TABLE.'
2162	SET level = "'.$conf_UAM[36].'"
2163	WHERE user_id = '.$data['user_id'].'
2164	;';
2165	pwg_query($query);
2166	}
2167
2168	// Set UAM_validated field to True in #_users table
2169	$query = '
2170	UPDATE '.USERS_TABLE.'
2171	SET UAM_validated = "true"
2172	WHERE id = '.$data['user_id'].'
2173	;';
2174	pwg_query($query);
2175
2176	// Refresh user's category cache
2177	// -----------------------------
2178	invalidate_user_cache();
2179
2180	return true;
2181	}
2182	}
2183	}
2184	else if (!empty($data) and !is_null($data['date_check']))
2185	{
2186	return false;
2187	}
2188	}
2189	else
2190	return false;
2191	}
2192
2193
2194	/**
2195	* Function called from UAM_admin.php for manual validation by admin
2196	*
2197	* @param : User id
2198	*
2199	*/
2200	function ManualValidation($id)
2201	{
2202	global $conf;
2203
2204	$conf_UAM = unserialize($conf['UserAdvManager']);
2205
2206	if (isset($conf_UAM[1]) and $conf_UAM[1] == 'true') // Set date of validation
2207	{
2208	list($dbnow) = pwg_db_fetch_row(pwg_query('SELECT NOW();'));
2209
2210	$query = '
2211	UPDATE '.USER_CONFIRM_MAIL_TABLE.'
2212	SET date_check="'.$dbnow.'"
2213	WHERE user_id = '.$id.'
2214	;';
2215	pwg_query($query);
2216	}
2217
2218	if ($conf_UAM[2] <> -1) // Delete user from waiting group
2219	{
2220	$query = '
2221	DELETE FROM '.USER_GROUP_TABLE.'
2222	WHERE user_id = '.$id.'
2223	AND group_id = '.$conf_UAM[2].'
2224	;';
2225	pwg_query($query);
2226	}
2227
2228	if ($conf_UAM[3] <> -1) // Set user's valid group
2229	{
2230	$query = '
2231	DELETE FROM '.USER_GROUP_TABLE.'
2232	WHERE user_id = '.$id.'
2233	AND group_id = '.$conf_UAM[3].'
2234	;';
2235	pwg_query($query);
2236
2237	$query = '
2238	INSERT INTO '.USER_GROUP_TABLE.'
2239	(user_id, group_id)
2240	VALUES
2241	('.$id.', '.$conf_UAM[3].')
2242	;';
2243	pwg_query($query);
2244	}
2245
2246	if ($conf_UAM[4] <> -1) // Set user's valid status
2247	{
2248	$query = '
2249	UPDATE '.USER_INFOS_TABLE.'
2250	SET status = "'.$conf_UAM[4].'"
2251	WHERE user_id = '.$id.'
2252	;';
2253	pwg_query($query);
2254	}
2255
2256	if ($conf_UAM[36] <> -1) // Set user's valid privacy level
2257	{
2258	$query = '
2259	UPDATE '.USER_INFOS_TABLE.'
2260	SET level = "'.$conf_UAM[36].'"
2261	WHERE user_id = '.$id.'
2262	;';
2263	pwg_query($query);
2264	}
2265
2266	// Set UAM_validated field to True in #_users table
2267	$query = '
2268	UPDATE '.USERS_TABLE.'
2269	SET UAM_validated = "true"
2270	WHERE id = '.$id.'
2271	;';
2272	pwg_query($query);
2273	}
2274
2275
2276	/**
2277	* Function called from functions.inc.php - Check if username matches forbidden caracters
2278	*
2279	* @param : User login
2280	*
2281	* @return : Bool
2282	*
2283	*/
2284	function ValidateUsername($login)
2285	{
2286	global $conf;
2287
2288	$conf_UAM = unserialize($conf['UserAdvManager']);
2289
2290	if (isset($login) and isset($conf_UAM[6]) and $conf_UAM[6] <> '')
2291	{
2292	$conf_CharExclusion = preg_split("/,/",$conf_UAM[6]);
2293	for ($i = 0 ; $i < count($conf_CharExclusion) ; $i++)
2294	{
2295	$pattern = '/'.$conf_CharExclusion[$i].'/i';
2296	if (preg_match($pattern, $login))
2297	{
2298	return true;
2299	}
2300	}
2301	}
2302	else
2303	{
2304	return false;
2305	}
2306	}
2307
2308
2309	/**
2310	* Function called from main.inc.php - Check if user's email is in excluded email providers list
2311	* Doesn't work on call - Must be copied in main.inc.php to work
2312	*
2313	* @param : Email address
2314	*
2315	* @return : Bool
2316	*
2317	*/
2318	function ValidateEmailProvider($email)
2319	{
2320	global $conf;
2321
2322	$conf_UAM = unserialize($conf['UserAdvManager']);
2323
2324	if (isset($email) and isset($conf_UAM[11]) and $conf_UAM[11] <> '')
2325	{
2326	$conf_MailExclusion = preg_split("/[\s,]+/",$conf_UAM[11]);
2327	for ($i = 0 ; $i < count($conf_MailExclusion) ; $i++)
2328	{
2329	$pattern = '/'.$conf_MailExclusion[$i].'/i';
2330	if (preg_match($pattern, $email))
2331	{
2332	return true;
2333	}
2334	}
2335	}
2336	else
2337	{
2338	return false;
2339	}
2340	}
2341
2342
2343	/**
2344	* Function called from UAM_admin.php - Get unvalidated users according time limit
2345	*
2346	* @return : List of users
2347	*
2348	*/
2349	function get_unvalid_user_list()
2350	{
2351	global $conf, $page;
2352
2353	// Get ConfirmMail configuration
2354	// -----------------------------
2355	$conf_UAM_ConfirmMail = unserialize($conf['UserAdvManager_ConfirmMail']);
2356	// Get UAM configuration
2357	// ---------------------
2358	$conf_UAM = unserialize($conf['UserAdvManager']);
2359
2360	$users = array();
2361
2362	// Search users depending expiration date
2363	// --------------------------------------
2364	$query = '
2365	SELECT DISTINCT u.'.$conf['user_fields']['id'].' AS id,
2366	u.'.$conf['user_fields']['username'].' AS username,
2367	u.'.$conf['user_fields']['email'].' AS email,
2368	ui.status,
2369	ui.enabled_high,
2370	ui.level,
2371	ui.registration_date
2372	FROM '.USERS_TABLE.' AS u
2373	INNER JOIN '.USER_INFOS_TABLE.' AS ui
2374	ON u.'.$conf['user_fields']['id'].' = ui.user_id
2375	LEFT JOIN '.USER_GROUP_TABLE.' AS ug
2376	ON u.'.$conf['user_fields']['id'].' = ug.user_id
2377	WHERE u.'.$conf['user_fields']['id'].' >= 3
2378	AND (TO_DAYS(NOW()) - TO_DAYS(ui.registration_date) >= "'.$conf_UAM_ConfirmMail[1].'"
2379	OR TO_DAYS(NOW()) - TO_DAYS(ui.registration_date) < "'.$conf_UAM_ConfirmMail[1].'")
2380	AND u.UAM_validated = "false"
2381	ORDER BY ui.registration_date ASC
2382	;';
2383
2384	$result = pwg_query($query);
2385
2386	while ($row = pwg_db_fetch_assoc($result))
2387	{
2388	$user = $row;
2389	$user['groups'] = array();
2390
2391	array_push($users, $user);
2392	}
2393
2394	// Add groups list
2395	// ---------------
2396	$user_ids = array();
2397	foreach ($users as $i => $user)
2398	{
2399	$user_ids[$i] = $user['id'];
2400	}
2401
2402	$user_nums = array_flip($user_ids);
2403
2404	if (count($user_ids) > 0)
2405	{
2406	$query = '
2407	SELECT user_id, group_id
2408	FROM '.USER_GROUP_TABLE.'
2409	WHERE user_id IN ('.implode(',', $user_ids).')
2410	;';
2411
2412	$result = pwg_query($query);
2413
2414	while ($row = pwg_db_fetch_assoc($result))
2415	{
2416	array_push(
2417	$users[$user_nums[$row['user_id']]]['groups'],
2418	$row['group_id']
2419	);
2420	}
2421	}
2422
2423	return $users;
2424	}
2425
2426
2427	/**
2428	* Function called from functions.inc.php - Get all users who haven't validate their registration in configured time
2429	* to delete or remail them automatically
2430	*
2431	* @return : List of users
2432	*
2433	*/
2434	function get_unvalid_user_autotasks()
2435	{
2436	global $conf, $page;
2437
2438	// Get ConfirmMail configuration
2439	// -----------------------------
2440	$conf_UAM_ConfirmMail = unserialize($conf['UserAdvManager_ConfirmMail']);
2441
2442	$users = array();
2443
2444	// search users depending expiration date
2445	// --------------------------------------
2446	$query = '
2447	SELECT DISTINCT u.'.$conf['user_fields']['id'].' AS id,
2448	ui.registration_date
2449	FROM '.USERS_TABLE.' AS u
2450	INNER JOIN '.USER_INFOS_TABLE.' AS ui
2451	ON u.'.$conf['user_fields']['id'].' = ui.user_id
2452	WHERE u.'.$conf['user_fields']['id'].' >= 3
2453	AND (TO_DAYS(NOW()) - TO_DAYS(ui.registration_date) >= "'.$conf_UAM_ConfirmMail[1].'")
2454	ORDER BY ui.registration_date ASC;';
2455
2456	$result = pwg_query($query);
2457
2458	while ($row = pwg_db_fetch_assoc($result))
2459	{
2460	array_push($users, $row);
2461	}
2462
2463	return $users;
2464	}
2465
2466
2467	/**
2468	* Function called from UAM_admin.php - Get ghost users
2469	*
2470	* @return : List of users
2471	*
2472	*/
2473	function get_ghost_user_list()
2474	{
2475	global $conf, $page;
2476
2477	$conf_UAM = unserialize($conf['UserAdvManager']);
2478
2479	$users = array();
2480
2481	// Search users depending expiration date
2482	// --------------------------------------
2483	$query = '
2484	SELECT DISTINCT u.'.$conf['user_fields']['id'].' AS id,
2485	u.'.$conf['user_fields']['username'].' AS username,
2486	u.'.$conf['user_fields']['email'].' AS email,
2487	lv.lastvisit,
2488	lv.reminder
2489	FROM '.USERS_TABLE.' AS u
2490	INNER JOIN '.USER_LASTVISIT_TABLE.' AS lv
2491	ON u.'.$conf['user_fields']['id'].' = lv.user_id
2492	WHERE (TO_DAYS(NOW()) - TO_DAYS(lv.lastvisit) >= "'.$conf_UAM[16].'")
2493	ORDER BY lv.lastvisit ASC;';
2494
2495	$result = pwg_query($query);
2496
2497	while ($row = pwg_db_fetch_assoc($result))
2498	{
2499	$user = $row;
2500	$user['groups'] = array();
2501
2502	array_push($users, $user);
2503	}
2504
2505	// Add groups list
2506	// ---------------
2507	$user_ids = array();
2508	foreach ($users as $i => $user)
2509	{
2510	$user_ids[$i] = $user['id'];
2511	}
2512
2513	return $users;
2514	}
2515
2516
2517	/**
2518	* Function called from functions.inc.php - Get all ghost users to delete or downgrade automatically on any user login
2519	*
2520	* @return : List of users to delete or downgrade automatically
2521	*
2522	*/
2523	function get_ghosts_autotasks()
2524	{
2525	global $conf, $page;
2526
2527	$conf_UAM = unserialize($conf['UserAdvManager']);
2528
2529	$users = array();
2530
2531	// Search users depending expiration date and reminder sent
2532	// --------------------------------------------------------
2533	$query = '
2534	SELECT DISTINCT u.'.$conf['user_fields']['id'].' AS id,
2535	lv.lastvisit
2536	FROM '.USERS_TABLE.' AS u
2537	INNER JOIN '.USER_LASTVISIT_TABLE.' AS lv
2538	ON u.'.$conf['user_fields']['id'].' = lv.user_id
2539	WHERE (TO_DAYS(NOW()) - TO_DAYS(lv.lastvisit) >= "'.$conf_UAM[16].'")
2540	ORDER BY lv.lastvisit ASC;';
2541
2542	$result = pwg_query($query);
2543
2544	while ($row = pwg_db_fetch_assoc($result))
2545	{
2546	array_push($users, $row);
2547	}
2548
2549	return $users;
2550	}
2551
2552
2553	/**
2554	* Function called from UAM_admin.php - Get all users to display the number of days since their last visit
2555	*
2556	* @return : List of users
2557	*
2558	*/
2559	function get_user_list()
2560	{
2561	global $conf, $page;
2562
2563	$users = array();
2564
2565	// Search users depending expiration date with exclusion of Adult_Content generic users
2566	// ------------------------------------------------------------------------------------
2567	$query = '
2568	SELECT DISTINCT u.'.$conf['user_fields']['id'].' AS id,
2569	u.'.$conf['user_fields']['username'].' AS username,
2570	u.'.$conf['user_fields']['email'].' AS email,
2571	ug.lastvisit
2572	FROM '.USERS_TABLE.' AS u
2573	INNER JOIN '.USER_LASTVISIT_TABLE.' AS ug
2574	ON u.'.$conf['user_fields']['id'].' = ug.user_id
2575	WHERE u.'.$conf['user_fields']['id'].' >= 3
2576	AND u.username NOT LIKE "16"
2577	AND u.username NOT LIKE "18"
2578	ORDER BY ug.lastvisit DESC
2579	;';
2580
2581	$result = pwg_query($query);
2582
2583	while ($row = pwg_db_fetch_assoc($result))
2584	{
2585	$user = $row;
2586	$user['groups'] = array();
2587
2588	array_push($users, $user);
2589	}
2590
2591	// Add groups list
2592	// ---------------
2593	$user_ids = array();
2594	foreach ($users as $i => $user)
2595	{
2596	$user_ids[$i] = $user['id'];
2597	}
2598
2599	return $users;
2600	}
2601
2602
2603	/**
2604	* Function called from UAM_admin.php - to determine who is expired or not and giving a different display color
2605	*
2606	* @param : user id
2607	*
2608	* @return : Bool
2609	*
2610	*/
2611	function expiration($id)
2612	{
2613	global $conf, $page;
2614
2615	// Get ConfirmMail configuration
2616	// -----------------------------
2617	$conf_UAM_ConfirmMail = unserialize($conf['UserAdvManager_ConfirmMail']);
2618
2619	// Get UAM configuration
2620	// ---------------------
2621	$conf_UAM = unserialize($conf['UserAdvManager']);
2622
2623	$query = '
2624	SELECT registration_date
2625	FROM '.USER_INFOS_TABLE.'
2626	WHERE user_id = '.$id.'
2627	;';
2628	list($registration_date) = pwg_db_fetch_row(pwg_query($query));
2629
2630	// Time limit process
2631	// ********************************************
2632	if (!empty($registration_date))
2633	{
2634	// Dates formating and compare
2635	// ---------------------------
2636	$today = date("d-m-Y"); // Get today's date
2637	list($day, $month, $year) = explode('-', $today); // explode date of today
2638	$daytimestamp = mktime(0, 0, 0, $month, $day, $year);// Generate UNIX timestamp
2639
2640	list($regdate, $regtime) = explode(' ', $registration_date); // Explode date and time from registration date
2641	list($regyear, $regmonth, $regday) = explode('-', $regdate); // Explode date from registration date
2642	$regtimestamp = mktime(0, 0, 0, $regmonth, $regday, $regyear);// Generate UNIX timestamp
2643
2644	$deltasecs = $daytimestamp - $regtimestamp;// Compare the 2 UNIX timestamps
2645	$deltadays = floor($deltasecs / 86400);// Convert result from seconds to days
2646
2647	// Condition with the value set for time limit
2648	// -------------------------------------------
2649	if ($deltadays <= $conf_UAM_ConfirmMail[1]) // If Nb of days is less than the limit set
2650	{
2651	return false;
2652	}
2653	else
2654	{
2655	return true;
2656	}
2657	}
2658	}
2659
2660
2661	/**
2662	* Returns a password's score for password complexity check
2663	*
2664	* @param : password filled by user
2665	*
2666	* @return : Score calculation
2667	*
2668	* Thanx to MathieuGut from http://m-gut.developpez.com
2669	*/
2670	function testpassword($password) // $password given by user
2671	{
2672
2673	// Variables initiation
2674	// --------------------
2675	$points = 0;
2676	$point_lowercase = 0;
2677	$point_uppercase = 0;
2678	$point_numbers = 0;
2679	$point_characters = 0;
2680
2681	// Getting password lengh
2682	// ----------------------
2683	$length = strlen($password);
2684
2685	// Loop to read password characters
2686	for($i = 0; $i < $length; $i++)
2687	{
2688	// Select each letters
2689	// $i is 0 at first turn
2690	// ---------------------
2691	$letters = $password[$i];
2692
2693	if ($letters>='a' && $letters<='z')
2694	{
2695	// Adding 1 point to score for a lowercase
2696	// ---------------------------------------
2697	$points = $points + 1;
2698
2699	// Adding bonus points for lowercase
2700	// ---------------------------------
2701	$point_lowercase = 1;
2702	}
2703	else if ($letters>='A' && $letters <='Z')
2704	{
2705	// Adding 2 points to score for uppercase
2706	// --------------------------------------
2707	$points = $points + 2;
2708
2709	// Adding bonus points for uppercase
2710	// ---------------------------------
2711	$point_uppercase = 2;
2712	}
2713	else if ($letters>='0' && $letters<='9')
2714	{
2715	// Adding 3 points to score for numbers
2716	// ------------------------------------
2717	$points = $points + 3;
2718
2719	// Adding bonus points for numbers
2720	// -------------------------------
2721	$point_numbers = 3;
2722	}
2723	else
2724	{
2725	// Adding 5 points to score for special characters
2726	// -----------------------------------------------
2727	$points = $points + 5;
2728
2729	// Adding bonus points for special characters
2730	// ------------------------------------------
2731	$point_characters = 5;
2732	}
2733	}
2734
2735	// Calculating the coefficient points/length
2736	// -----------------------------------------
2737	$step1 = $points / $length;
2738
2739	// Calculation of the diversity of character types...
2740	// --------------------------------------------------
2741	$step2 = $point_lowercase + $point_uppercase + $point_numbers + $point_characters;
2742
2743	// Multiplying the coefficient of diversity with that of the length
2744	// ----------------------------------------------------------------
2745	$score = $step1 * $step2;
2746
2747	// Multiplying the result by the length of the string
2748	// --------------------------------------------------
2749	$finalscore = $score * $length;
2750
2751	return $finalscore;
2752	}
2753
2754
2755	/**
2756	* UAM_check_profile - Thx to LucMorizur
2757	* checks if a user id is registered as having already
2758	* visited his profile page.
2759	*
2760	* @uid : the user id
2761	*
2762	* @user_idsOK : (returned) array of all users ids having already visited
2763	* their profile.php pages
2764	*
2765	* @returns : true or false whether the users has already visited his
2766	* profile.php page or not
2767	*
2768	*/
2769	function UAM_check_profile($uid, &$user_idsOK)
2770	{
2771	$t = array();
2772	$v = false;
2773
2774	$query = '
2775	SELECT value
2776	FROM '.CONFIG_TABLE.'
2777	WHERE param = "UserAdvManager_Redir"
2778	;';
2779
2780	if ($v = (($t = pwg_db_fetch_row(pwg_query($query))) !== false))
2781	{
2782	$user_idsOK = explode(',', $t[0]);
2783	$v = (in_array($uid, $user_idsOK));
2784	}
2785	return $v;
2786	}
2787
2788
2789	/**
2790	* UAM_check_pwdreset
2791	* checks if a user id is registered as having already
2792	* changed his password.
2793	*
2794	* @uid : the user id
2795	*
2796	* @returns : true or false whether the users has already changed his password
2797	*
2798	*/
2799	function UAM_check_pwgreset($uid)
2800	{
2801	$query = '
2802	SELECT UAM_pwdreset
2803	FROM '.USERS_TABLE.'
2804	WHERE id='.$uid.'
2805	;';
2806
2807	$result = pwg_db_fetch_assoc(pwg_query($query));
2808
2809	if($result['UAM_pwdreset'] == 'true')
2810	{
2811	return true;
2812	}
2813	else return false;
2814	}
2815
2816
2817	/**
2818	* UAM_UsrReg_Verif
2819	* Check if the user who logged-in have validate his registration
2820	*
2821	* @returns : True if validation is OK else False
2822	*/
2823	function UAM_UsrReg_Verif($user_id)
2824	{
2825	global $conf;
2826
2827	$query = '
2828	SELECT UAM_validated
2829	FROM '.USERS_TABLE.'
2830	WHERE id='.$user_id.'
2831	;';
2832
2833	$result = pwg_db_fetch_assoc(pwg_query($query));
2834
2835	if($result['UAM_validated'] == 'true')
2836	{
2837	return true;
2838	}
2839	else return false;
2840	}
2841
2842
2843	/**
2844	* SetUnvalidated
2845	* Set UAM_validated field to false in #_users table
2846	*
2847	**/
2848	function SetUnvalidated($user_id)
2849	{
2850	$query ='
2851	UPDATE '.USERS_TABLE.'
2852	SET UAM_validated = "false"
2853	WHERE id = '.$user_id.'
2854	LIMIT 1
2855	;';
2856
2857	pwg_query($query);
2858	}
2859
2860
2861	/**
2862	* UAM_Set_PwdReset
2863	* Action in user_list to set a password reset for a user
2864	*/
2865	function UAM_Set_PwdReset($uid)
2866	{
2867	$query ='
2868	UPDATE '.USERS_TABLE.'
2869	SET UAM_pwdreset = "true"
2870	WHERE id = '.$uid.'
2871	LIMIT 1
2872	;';
2873
2874	pwg_query($query);
2875	}
2876
2877
2878	/**
2879	* UAM_loc_visible_user_list
2880	* Adds a new feature in user_list to allow password reset for selected users by admin
2881	*
2882	*/
2883	function UAM_loc_visible_user_list($visible_user_list)
2884	{
2885	global $template;
2886
2887	$template->append('plugin_user_list_column_titles', l10n('UAM_PwdReset'));
2888
2889	$user_ids = array();
2890
2891	foreach ($visible_user_list as $i => $user)
2892	{
2893	$user_ids[$i] = $user['id'];
2894	}
2895
2896	$user_nums = array_flip($user_ids);
2897
2898	// Query to get informations in database
2899	// -------------------------------------
2900	if (!empty($user_ids))
2901	{
2902	$query = '
2903	SELECT DISTINCT id, UAM_pwdreset
2904	FROM '.USERS_TABLE.'
2905	WHERE id IN ('.implode(',', $user_ids).')
2906	;';
2907	$result = pwg_query($query);
2908
2909	while ($row = mysql_fetch_array($result))
2910	{
2911	if ($row['UAM_pwdreset'] == 'false')
2912	{
2913	$pwdreset = l10n('UAM_PwdReset_Done');
2914	}
2915	else if ($row['UAM_pwdreset'] == 'true')
2916	{
2917	$pwdreset = l10n('UAM_PwdReset_Todo');
2918	}
2919	else $pwdreset = l10n('UAM_PwdReset_NA');
2920
2921	$visible_user_list[$user_nums[$row['id']]]['plugin_columns'][] = $pwdreset; // Shows users password state in user_list
2922	}
2923	}
2924	return $visible_user_list;
2925	}
2926
2927
2928	/**
2929	* UAM specific database dump (only for MySql !)
2930	* Creates an SQL dump of UAM specific tables and configuration settings
2931	*
2932	* @returns : Boolean to manage appropriate message display
2933	*
2934	*/
2935	function UAM_dump($download)
2936	{
2937	global $conf;
2938
2939	$plugin = PluginInfos(UAM_PATH);
2940	$version = $plugin['version'];
2941
2942	// Initial backup folder creation and file initialisation
2943	// ------------------------------------------------------
2944	if (!is_dir(UAM_PATH.'/include/backup'))
2945	mkdir(UAM_PATH.'/include/backup');
2946
2947	$Backup_File = UAM_PATH.'/include/backup/UAM_dbbackup.sql';
2948
2949	$fp = fopen($Backup_File, 'w');
2950
2951	// Writing plugin version
2952	$insertions = "-- ".$version." --\n\n";
2953	fwrite($fp, $insertions);
2954
2955	// Saving UAM specific tables
2956	// --------------------------
2957	$ListTables = array(USER_CONFIRM_MAIL_TABLE, USER_LASTVISIT_TABLE);
2958	$j=0;
2959
2960	while($j < count($ListTables))
2961	{
2962	$sql = 'SHOW CREATE TABLE '.$ListTables[$j];
2963	$res = pwg_query($sql);
2964
2965	if ($res)
2966	{
2967	$insertions = "-- -------------------------------------------------------\n";
2968	$insertions .= "-- Create ".$ListTables[$j]." table\n";
2969	$insertions .= "-- ------------------------------------------------------\n\n";
2970
2971	$insertions .= "DROP TABLE IF EXISTS ".$ListTables[$j].";\n\n";
2972
2973	$array = mysql_fetch_array($res);
2974	$array[1] .= ";\n\n";
2975	$insertions .= $array[1];
2976
2977	$req_table = pwg_query('SELECT * FROM '.$ListTables[$j]) or die(mysql_error());
2978	$nb_fields = mysql_num_fields($req_table);
2979	while ($line = mysql_fetch_array($req_table))
2980	{
2981	$insertions .= 'INSERT INTO '.$ListTables[$j].' VALUES (';
2982	for ($i=0; $i<$nb_fields; $i++)
2983	{
2984	$insertions .= '\'' . pwg_db_real_escape_string($line[$i]) . '\', ';
2985	}
2986	$insertions = substr($insertions, 0, -2);
2987	$insertions .= ");\n";
2988	}
2989	$insertions .= "\n\n";
2990	}
2991
2992	fwrite($fp, $insertions);
2993	$j++;
2994	}
2995
2996	// Saving UAM configuration
2997	// ------------------------
2998	$insertions = "-- -------------------------------------------------------\n";
2999	$insertions .= "-- Insert UAM configuration in ".CONFIG_TABLE."\n";
3000	$insertions .= "-- ------------------------------------------------------\n\n";
3001
3002	fwrite($fp, $insertions);
3003
3004	$pattern = "UserAdvManager%";
3005	$req_table = pwg_query('SELECT * FROM '.CONFIG_TABLE.' WHERE param LIKE "'.$pattern.'";') or die(mysql_error());
3006	$nb_fields = mysql_num_fields($req_table);
3007
3008	while ($line = mysql_fetch_array($req_table))
3009	{
3010	$insertions = 'INSERT INTO '.CONFIG_TABLE.' VALUES (';
3011	for ($i=0; $i<$nb_fields; $i++)
3012	{
3013	$insertions .= '\'' . pwg_db_real_escape_string($line[$i]) . '\', ';
3014	}
3015	$insertions = substr($insertions, 0, -2);
3016	$insertions .= ");\n";
3017
3018	fwrite($fp, $insertions);
3019	}
3020
3021	fclose($fp);
3022
3023	// Download generated dump file
3024	// ----------------------------
3025	if ($download == 'true')
3026	{
3027	if (@filesize($Backup_File))
3028	{
3029	$http_headers = array(
3030	'Content-Length: '.@filesize($Backup_File),
3031	'Content-Type: text/x-sql',
3032	'Content-Disposition: attachment; filename="UAM_dbbackup.sql";',
3033	'Content-Transfer-Encoding: binary',
3034	);
3035
3036	foreach ($http_headers as $header)
3037	{
3038	header($header);
3039	}
3040
3041	@readfile($Backup_File);
3042	exit();
3043	}
3044	}
3045
3046	return true;
3047	}
3048
3049
3050	/**
3051	* UAM_Restore_backup_file
3052	* Restore backup database file
3053	*
3054	* @returns : Boolean
3055	*/
3056	function UAM_Restore_backup_file()
3057	{
3058	global $prefixeTable, $dblayer, $conf;
3059
3060	define('DEFAULT_PREFIX_TABLE', 'piwigo_');
3061
3062	$Backup_File = UAM_PATH.'/include/backup/UAM_dbbackup.sql';
3063
3064	// Cleanup database before restoring
3065	// ---------------------------------
3066
3067	// Delete UserAdvManager global config in #_config table
3068	$q = '
3069	DELETE FROM '.CONFIG_TABLE.'
3070	WHERE param="UserAdvManager"
3071	;';
3072
3073	pwg_query($q);
3074
3075	// Delete UserAdvManager_ConfirmMail global config in #_config table
3076	$q = '
3077	DELETE FROM '.CONFIG_TABLE.'
3078	WHERE param="UserAdvManager_ConfirmMail"
3079	;';
3080
3081	pwg_query($q);
3082
3083	// Delete UserAdvManager_Redir config in #_config table
3084	$q = '
3085	DELETE FROM '.CONFIG_TABLE.'
3086	WHERE param="UserAdvManager_Redir"
3087	;';
3088
3089	pwg_query($q);
3090
3091	// Delete UserAdvManager_Version config in #_config table
3092	$q = '
3093	DELETE FROM '.CONFIG_TABLE.'
3094	WHERE param="UserAdvManager_Version"
3095	;';
3096
3097	pwg_query($q);
3098
3099	// Restore sql backup file - DROP TABLE queries are executed
3100	// ---------------------------------------------------------
3101	UAM_execute_sqlfile(
3102	$Backup_File,
3103	DEFAULT_PREFIX_TABLE,
3104	$prefixeTable,
3105	$dblayer
3106	);
3107	}
3108
3109
3110	/**
3111	* loads an sql file and executes all queries / Based on Piwigo's original install file
3112	*
3113	* Before executing a query, $replaced is... replaced by $replacing. This is
3114	* useful when the SQL file contains generic words.
3115	*
3116	* @param string filepath
3117	* @param string replaced
3118	* @param string replacing
3119	* @return void
3120	*/
3121	function UAM_execute_sqlfile($filepath, $replaced, $replacing, $dblayer)
3122	{
3123	$sql_lines = file($filepath);
3124	$query = '';
3125	foreach ($sql_lines as $sql_line)
3126	{
3127	$sql_line = trim($sql_line);
3128	if (preg_match('/(^--\|^$)/', $sql_line))
3129	{
3130	continue;
3131	}
3132
3133	$query.= ' '.$sql_line;
3134
3135	// if we reached the end of query, we execute it and reinitialize the
3136	// variable "query"
3137	if (preg_match('/;$/', $sql_line))
3138	{
3139	$query = trim($query);
3140	$query = str_replace($replaced, $replacing, $query);
3141	if ('mysql' == $dblayer)
3142	{
3143	if (preg_match('/^(CREATE TABLE .)[\s];[\s]*/im', $query, $matches))
3144	{
3145	$query = $matches[1].' DEFAULT CHARACTER SET utf8'.';';
3146	}
3147	}
3148	pwg_query($query);
3149	$query = '';
3150	}
3151	}
3152	}
3153
3154
3155	/**
3156	* Delete obsolete files on plugin upgrade
3157	* Obsolete files are listed in file obsolete.list
3158	*
3159	*/
3160	function clean_obsolete_files()
3161	{
3162	if (file_exists(UAM_PATH.'obsolete.list')
3163	and $old_files = file(UAM_PATH.'obsolete.list', FILE_IGNORE_NEW_LINES)
3164	and !empty($old_files))
3165	{
3166	array_push($old_files, 'obsolete.list');
3167	foreach($old_files as $old_file)
3168	{
3169	$path = UAM_PATH.$old_file;
3170	if (is_file($path))
3171	{
3172	@unlink($path);
3173	}
3174	elseif (is_dir($path))
3175	{
3176	@rmdir($path);
3177	}
3178	}
3179	}
3180	}
3181
3182
3183	/**
3184	* Function called from maintain.inc.php - to check if database upgrade is needed
3185	*
3186	* @param : table name
3187	*
3188	* @return : boolean
3189	*
3190	*/
3191	function table_exist($table)
3192	{
3193	$query = 'DESC '.$table.';';
3194	return (bool)($res=pwg_query($query));
3195	}
3196
3197
3198	/**
3199	* Function called from UAM_admin.php and main.inc.php to get the plugin version and name
3200	*
3201	* @param : plugin directory
3202	*
3203	* @return : plugin's version and name
3204	*
3205	*/
3206	function PluginInfos($dir)
3207	{
3208	$path = $dir;
3209
3210	$plg_data = implode( '', file($path.'main.inc.php') );
3211	if ( preg_match("\|Plugin Name: (.*)\|", $plg_data, $val) )
3212	{
3213	$plugin['name'] = trim( $val[1] );
3214	}
3215	if (preg_match("\|Version: (.*)\|", $plg_data, $val))
3216	{
3217	$plugin['version'] = trim($val[1]);
3218	}
3219	if ( preg_match("\|Plugin URI: (.*)\|", $plg_data, $val) )
3220	{
3221	$plugin['uri'] = trim($val[1]);
3222	}
3223	if ($desc = load_language('description.txt', $path.'/', array('return' => true)))
3224	{
3225	$plugin['description'] = trim($desc);
3226	}
3227	elseif ( preg_match("\|Description: (.*)\|", $plg_data, $val) )
3228	{
3229	$plugin['description'] = trim($val[1]);
3230	}
3231	if ( preg_match("\|Author: (.*)\|", $plg_data, $val) )
3232	{
3233	$plugin['author'] = trim($val[1]);
3234	}
3235	if ( preg_match("\|Author URI: (.*)\|", $plg_data, $val) )
3236	{
3237	$plugin['author uri'] = trim($val[1]);
3238	}
3239	if (!empty($plugin['uri']) and strpos($plugin['uri'] , 'extension_view.php?eid='))
3240	{
3241	list( , $extension) = explode('extension_view.php?eid=', $plugin['uri']);
3242	if (is_numeric($extension)) $plugin['extension'] = $extension;
3243	}
3244	// IMPORTANT SECURITY !
3245	// --------------------
3246	$plugin = array_map('htmlspecialchars', $plugin);
3247
3248	return $plugin ;
3249	}
3250
3251
3252	/**
3253	* Useful for debugging - 4 vars can be set
3254	* Output result to log.txt file
3255	*
3256	*/
3257	function UAMLog($var1, $var2, $var3, $var4)
3258	{
3259	$fo=fopen (UAM_PATH.'log.txt','a') ;
3260	fwrite($fo,"======================\n") ;
3261	fwrite($fo,'le ' . date('D, d M Y H:i:s') . "\r\n");
3262	fwrite($fo,$var1 ."\r\n") ;
3263	fwrite($fo,$var2 ."\r\n") ;
3264	fwrite($fo,$var3 ."\r\n") ;
3265	fwrite($fo,$var4 ."\r\n") ;
3266	fclose($fo) ;
3267	}
3268
3269	?>

Note: See TracBrowser for help on using the repository browser.

Download in other formats: