mirror of
https://github.com/torrentpier/torrentpier.git
synced 2024-12-15 00:21:17 -08:00
bf7fea1f20
* Added demo mode 📺 * Updated * Update main.php * Updated * Updated * Update admin_cron.php * Update admin_phpinfo.php * Updated * Update admin_forums.php * Update admin_extensions.php * Update admin_ug_auth.php * Update index.php * Update admin_phpinfo.php * Update admin_forums.php * Updated * Update admin_extensions.php * Update register.php * Updated * Update mysql.sql * Updated * Update demo_mode.php * Update demo_mode.php * Update demo_mode.php * Updated * Update demo_mode.php * Update demo_mode.php * Update demo_mode.php * Update demo_mode.php * Update mysql.sql * Update mysql.sql * Update demo_mode.php * Update admin_cron.php * Update admin_phpinfo.php * Revert "Update mysql.sql" This reverts commitd2ec089d8f
. * Revert "Update mysql.sql" This reverts commitdd7a584c47
. * Update mysql.sql * Update demo_mode.php * Updated * Update usercp_viewprofile.tpl * Update demo_mode.php * Update main.php * Update demo_mode.php * Updated * Update admin_cron.php * Update admin_cron.php * Update edit_user_profile.php * Update CHANGELOG.md * Update viewtopic.tpl * Update CHANGELOG.md
327 lines
12 KiB
PHP
327 lines
12 KiB
PHP
<?php
|
||
/**
|
||
* TorrentPier – Bull-powered BitTorrent tracker engine
|
||
*
|
||
* @copyright Copyright (c) 2005-2024 TorrentPier (https://torrentpier.com)
|
||
* @link https://github.com/torrentpier/torrentpier for the canonical source repository
|
||
* @license https://github.com/torrentpier/torrentpier/blob/master/LICENSE MIT License
|
||
*/
|
||
|
||
if (!empty($setmodules)) {
|
||
$module['FORUMS']['PERMISSIONS_LIST'] = basename(__FILE__);
|
||
return;
|
||
}
|
||
|
||
require __DIR__ . '/pagestart.php';
|
||
|
||
// View Read Post Reply Edit Delete Sticky Announce Vote Poll PostAttach Download
|
||
$simple_auth_ary = [
|
||
0 => [AUTH_ALL, AUTH_ALL, AUTH_ALL, AUTH_ALL, AUTH_REG, AUTH_REG, AUTH_MOD, AUTH_MOD, AUTH_REG, AUTH_REG, AUTH_REG, AUTH_ALL], // Public
|
||
1 => [AUTH_ALL, AUTH_ALL, AUTH_REG, AUTH_REG, AUTH_REG, AUTH_REG, AUTH_MOD, AUTH_MOD, AUTH_REG, AUTH_REG, AUTH_REG, AUTH_REG], // Registered
|
||
2 => [AUTH_REG, AUTH_REG, AUTH_REG, AUTH_REG, AUTH_REG, AUTH_REG, AUTH_MOD, AUTH_MOD, AUTH_REG, AUTH_REG, AUTH_REG, AUTH_REG], // Registered [Hidden]
|
||
3 => [AUTH_REG, AUTH_ACL, AUTH_ACL, AUTH_ACL, AUTH_ACL, AUTH_ACL, AUTH_MOD, AUTH_MOD, AUTH_ACL, AUTH_ACL, AUTH_ACL, AUTH_ACL], // Private
|
||
4 => [AUTH_ACL, AUTH_ACL, AUTH_ACL, AUTH_ACL, AUTH_ACL, AUTH_ACL, AUTH_MOD, AUTH_MOD, AUTH_ACL, AUTH_ACL, AUTH_ACL, AUTH_ACL], // Private [Hidden]
|
||
5 => [AUTH_REG, AUTH_MOD, AUTH_MOD, AUTH_MOD, AUTH_MOD, AUTH_MOD, AUTH_MOD, AUTH_MOD, AUTH_MOD, AUTH_MOD, AUTH_MOD, AUTH_MOD], // Moderators
|
||
6 => [AUTH_MOD, AUTH_MOD, AUTH_MOD, AUTH_MOD, AUTH_MOD, AUTH_MOD, AUTH_MOD, AUTH_MOD, AUTH_MOD, AUTH_MOD, AUTH_MOD, AUTH_MOD], // Moderators [Hidden]
|
||
];
|
||
|
||
$simple_auth_types = [
|
||
$lang['PUBLIC'],
|
||
$lang['REGISTERED'],
|
||
$lang['REGISTERED'] . ' [' . $lang['HIDDEN'] . ']',
|
||
$lang['PRIVATE'],
|
||
$lang['PRIVATE'] . ' [' . $lang['HIDDEN'] . ']',
|
||
$lang['MODERATORS'],
|
||
$lang['MODERATORS'] . ' [' . $lang['HIDDEN'] . ']',
|
||
];
|
||
|
||
$forum_auth_fields = [
|
||
'auth_view',
|
||
'auth_read',
|
||
'auth_reply',
|
||
'auth_edit',
|
||
'auth_delete',
|
||
'auth_vote',
|
||
'auth_pollcreate',
|
||
'auth_attachments',
|
||
'auth_download',
|
||
'auth_post',
|
||
'auth_sticky',
|
||
'auth_announce',
|
||
];
|
||
|
||
$field_names = [];
|
||
foreach ($forum_auth_fields as $auth_type) {
|
||
$field_names[$auth_type] = $lang[strtoupper($auth_type)];
|
||
}
|
||
|
||
$forum_auth_levels = ['ALL', 'REG', 'PRIVATE', 'MOD', 'ADMIN'];
|
||
$forum_auth_const = [AUTH_ALL, AUTH_REG, AUTH_ACL, AUTH_MOD, AUTH_ADMIN];
|
||
|
||
if (isset($_GET[POST_FORUM_URL]) || isset($_POST[POST_FORUM_URL])) {
|
||
$forum_id = isset($_POST[POST_FORUM_URL]) ? (int)$_POST[POST_FORUM_URL] : (int)$_GET[POST_FORUM_URL];
|
||
$forum_sql = "AND forum_id = $forum_id";
|
||
} else {
|
||
unset($forum_id);
|
||
$forum_sql = '';
|
||
}
|
||
|
||
if (isset($_GET[POST_CAT_URL]) || isset($_POST[POST_CAT_URL])) {
|
||
$cat_id = isset($_POST[POST_CAT_URL]) ? (int)$_POST[POST_CAT_URL] : (int)$_GET[POST_CAT_URL];
|
||
$cat_sql = "AND c.cat_id = $cat_id";
|
||
} else {
|
||
unset($cat_id);
|
||
$cat_sql = '';
|
||
}
|
||
|
||
if (isset($_GET['adv'])) {
|
||
$adv = (int)$_GET['adv'];
|
||
} else {
|
||
unset($adv);
|
||
}
|
||
|
||
$submit = isset($_POST['submit']);
|
||
|
||
// Check for demo mode
|
||
if (IN_DEMO_MODE && $submit) {
|
||
bb_die($lang['CANT_EDIT_IN_DEMO_MODE']);
|
||
}
|
||
|
||
/**
|
||
* Start program proper
|
||
*/
|
||
if ($submit) {
|
||
$sql = '';
|
||
|
||
if (!empty($forum_id)) {
|
||
if (isset($_POST['simpleauth'])) {
|
||
$simple_ary = $simple_auth_ary[(int)$_POST['simpleauth']];
|
||
|
||
for ($i = 0, $iMax = count($simple_ary); $i < $iMax; $i++) {
|
||
$sql .= (($sql != '') ? ', ' : '') . $forum_auth_fields[$i] . ' = ' . $simple_ary[$i];
|
||
}
|
||
|
||
if (is_array($simple_ary)) {
|
||
$sql = 'UPDATE ' . BB_FORUMS . " SET $sql WHERE forum_id = $forum_id";
|
||
}
|
||
} else {
|
||
for ($i = 0, $iMax = count($forum_auth_fields); $i < $iMax; $i++) {
|
||
$value = (int)$_POST[$forum_auth_fields[$i]];
|
||
|
||
if ($forum_auth_fields[$i] == 'auth_vote') {
|
||
if ($_POST['auth_vote'] == AUTH_ALL) {
|
||
$value = AUTH_REG;
|
||
}
|
||
}
|
||
|
||
$sql .= (($sql != '') ? ', ' : '') . $forum_auth_fields[$i] . ' = ' . $value;
|
||
}
|
||
|
||
$sql = 'UPDATE ' . BB_FORUMS . " SET $sql WHERE forum_id = $forum_id";
|
||
}
|
||
|
||
if ($sql != '') {
|
||
if (!DB()->sql_query($sql)) {
|
||
bb_die('Could not update auth table #1');
|
||
}
|
||
}
|
||
|
||
$forum_sql = '';
|
||
$adv = 0;
|
||
} elseif (!empty($cat_id)) {
|
||
for ($i = 0, $iMax = count($forum_auth_fields); $i < $iMax; $i++) {
|
||
$value = (int)$_POST[$forum_auth_fields[$i]];
|
||
|
||
if ($forum_auth_fields[$i] == 'auth_vote') {
|
||
if ($_POST['auth_vote'] == AUTH_ALL) {
|
||
$value = AUTH_REG;
|
||
}
|
||
}
|
||
|
||
$sql .= (($sql != '') ? ', ' : '') . $forum_auth_fields[$i] . ' = ' . $value;
|
||
}
|
||
|
||
$sql = 'UPDATE ' . BB_FORUMS . " SET $sql WHERE cat_id = $cat_id";
|
||
|
||
if ($sql != '') {
|
||
if (!DB()->sql_query($sql)) {
|
||
bb_die('Could not update auth table #2');
|
||
}
|
||
}
|
||
|
||
$cat_sql = '';
|
||
}
|
||
|
||
$datastore->update('cat_forums');
|
||
bb_die($lang['FORUM_AUTH_UPDATED'] . '<br /><br />' . sprintf($lang['CLICK_RETURN_FORUMAUTH'], '<a href="admin_forumauth_list.php">', '</a>'));
|
||
} // End of submit
|
||
|
||
//
|
||
// Get required information, either all forums if
|
||
// no id was specified or just the requsted forum
|
||
// or category if it was
|
||
//
|
||
$sql = 'SELECT f.*
|
||
FROM ' . BB_FORUMS . ' f, ' . BB_CATEGORIES . " c
|
||
WHERE c.cat_id = f.cat_id
|
||
$forum_sql $cat_sql
|
||
ORDER BY c.cat_order ASC, f.forum_order ASC";
|
||
if (!($result = DB()->sql_query($sql))) {
|
||
bb_die('Could not obtain forum list');
|
||
}
|
||
|
||
$forum_rows = DB()->sql_fetchrowset($result);
|
||
DB()->sql_freeresult($result);
|
||
|
||
if (empty($forum_id) && empty($cat_id)) {
|
||
//
|
||
// Output the summary list if no forum id was
|
||
// specified
|
||
//
|
||
$template->assign_vars(array(
|
||
'TPL_AUTH_FORUM_LIST' => true,
|
||
'S_COLUMN_SPAN' => count($forum_auth_fields) + 1,
|
||
));
|
||
|
||
for ($i = 0, $iMax = count($forum_auth_fields); $i < $iMax; $i++) {
|
||
$template->assign_block_vars('forum_auth_titles', array(
|
||
'CELL_TITLE' => $field_names[$forum_auth_fields[$i]],
|
||
));
|
||
}
|
||
|
||
// Obtain the category list
|
||
$sql = 'SELECT c.cat_id, c.cat_title, c.cat_order
|
||
FROM ' . BB_CATEGORIES . ' c
|
||
ORDER BY c.cat_order';
|
||
if (!($result = DB()->sql_query($sql))) {
|
||
bb_die('Could not query categories list #1');
|
||
}
|
||
|
||
$category_rows = DB()->sql_fetchrowset($result);
|
||
$cat_count = count($category_rows);
|
||
|
||
for ($i = 0; $i < $cat_count; $i++) {
|
||
$cat_id = $category_rows[$i]['cat_id'];
|
||
|
||
$template->assign_block_vars('cat_row', array(
|
||
'CAT_NAME' => htmlCHR($category_rows[$i]['cat_title']),
|
||
'CAT_URL' => 'admin_forumauth_list.php' . '?' . POST_CAT_URL . '=' . $category_rows[$i]['cat_id'])
|
||
);
|
||
|
||
for ($j = 0, $jMax = count($forum_rows); $j < $jMax; $j++) {
|
||
if ($cat_id == $forum_rows[$j]['cat_id']) {
|
||
$template->assign_block_vars('cat_row.forum_row', array(
|
||
'ROW_CLASS' => !($j % 2) ? 'row4' : 'row5',
|
||
'FORUM_NAME' => '<a class="' . ($forum_rows[$j]['forum_parent'] ? 'genmed' : 'gen') . '" href="admin_forumauth.php?' . POST_FORUM_URL . '=' . $forum_rows[$j]['forum_id'] . '">' . htmlCHR($forum_rows[$j]['forum_name']) . '</a>',
|
||
'IS_SUBFORUM' => $forum_rows[$j]['forum_parent'],
|
||
));
|
||
|
||
for ($k = 0, $kMax = count($forum_auth_fields); $k < $kMax; $k++) {
|
||
$item_auth_value = $forum_rows[$j][$forum_auth_fields[$k]];
|
||
for ($l = 0, $lMax = count($forum_auth_const); $l < $lMax; $l++) {
|
||
if ($item_auth_value == $forum_auth_const[$l]) {
|
||
$item_auth_level = $forum_auth_levels[$l];
|
||
break;
|
||
}
|
||
}
|
||
$template->assign_block_vars('cat_row.forum_row.forum_auth_data', array(
|
||
'CELL_VALUE' => $lang['FORUM_' . $item_auth_level],
|
||
'AUTH_EXPLAIN' => sprintf($lang[strtoupper('FORUM_AUTH_LIST_EXPLAIN_' . $forum_auth_fields[$k])], $lang[strtoupper('FORUM_AUTH_LIST_EXPLAIN_' . $item_auth_level)]))
|
||
);
|
||
}
|
||
}
|
||
}
|
||
}
|
||
} else {
|
||
//
|
||
// output the authorisation details if an category id was
|
||
// specified
|
||
//
|
||
|
||
//
|
||
// first display the current details for all forums
|
||
// in the category
|
||
//
|
||
for ($i = 0, $iMax = count($forum_auth_fields); $i < $iMax; $i++) {
|
||
$template->assign_block_vars('forum_auth_titles', array(
|
||
'CELL_TITLE' => $field_names[$forum_auth_fields[$i]],
|
||
));
|
||
}
|
||
|
||
// obtain the category list
|
||
$sql = 'SELECT c.cat_id, c.cat_title, c.cat_order
|
||
FROM ' . BB_CATEGORIES . " c
|
||
WHERE c.cat_id = $cat_id
|
||
ORDER BY c.cat_order";
|
||
if (!($result = DB()->sql_query($sql))) {
|
||
bb_die('Could not query categories list #2');
|
||
}
|
||
|
||
$category_rows = DB()->sql_fetchrowset($result);
|
||
|
||
$cat_id = reset($category_rows)['cat_id'];
|
||
$cat_name = reset($category_rows)['cat_title'];
|
||
|
||
$template->assign_block_vars('cat_row', array(
|
||
'CAT_NAME' => htmlCHR($cat_name),
|
||
'CAT_URL' => 'admin_forumauth_list.php?' . POST_CAT_URL . '=' . $cat_id)
|
||
);
|
||
|
||
for ($j = 0, $jMax = count($forum_rows); $j < $jMax; $j++) {
|
||
if ($cat_id == $forum_rows[$j]['cat_id']) {
|
||
$template->assign_block_vars('cat_row.forum_row', array(
|
||
'ROW_CLASS' => !($j % 2) ? 'row4' : 'row5',
|
||
'FORUM_NAME' => '<a class="' . ($forum_rows[$j]['forum_parent'] ? 'genmed' : 'gen') . '" href="admin_forumauth.php?' . POST_FORUM_URL . '=' . $forum_rows[$j]['forum_id'] . '">' . htmlCHR($forum_rows[$j]['forum_name']) . '</a>',
|
||
'IS_SUBFORUM' => $forum_rows[$j]['forum_parent'],
|
||
));
|
||
|
||
for ($k = 0, $kMax = count($forum_auth_fields); $k < $kMax; $k++) {
|
||
$item_auth_value = $forum_rows[$j][$forum_auth_fields[$k]];
|
||
for ($l = 0, $lMax = count($forum_auth_const); $l < $lMax; $l++) {
|
||
if ($item_auth_value == $forum_auth_const[$l]) {
|
||
$item_auth_level = $forum_auth_levels[$l];
|
||
break;
|
||
}
|
||
}
|
||
$template->assign_block_vars('cat_row.forum_row.forum_auth_data', array(
|
||
'CELL_VALUE' => $lang['FORUM_' . $item_auth_level],
|
||
'AUTH_EXPLAIN' => sprintf($lang[strtoupper('FORUM_AUTH_LIST_EXPLAIN_' . $forum_auth_fields[$k])], $lang[strtoupper('FORUM_AUTH_LIST_EXPLAIN_' . $item_auth_level)]))
|
||
);
|
||
}
|
||
}
|
||
}
|
||
|
||
//
|
||
// next generate the information to allow the permissions to be changed
|
||
// note: we always read from the first forum in the category
|
||
//
|
||
for ($j = 0, $jMax = count($forum_auth_fields); $j < $jMax; $j++) {
|
||
$custom_auth[$j] = '<select name="' . $forum_auth_fields[$j] . '">';
|
||
|
||
for ($k = 0, $kMax = count($forum_auth_levels); $k < $kMax; $k++) {
|
||
$selected = (!empty($forum_rows) && $forum_rows[0][$forum_auth_fields[$j]] == $forum_auth_const[$k]) ? ' selected' : '';
|
||
$custom_auth[$j] .= '<option value="' . $forum_auth_const[$k] . '"' . $selected . '>' . $lang['FORUM_' . $forum_auth_levels[$k]] . '</option>';
|
||
}
|
||
$custom_auth[$j] .= '</select>';
|
||
|
||
$template->assign_block_vars('forum_auth_data', array(
|
||
'S_AUTH_LEVELS_SELECT' => $custom_auth[$j])
|
||
);
|
||
}
|
||
|
||
//
|
||
// finally pass any remaining items to the template
|
||
//
|
||
$s_hidden_fields = '<input type="hidden" name="' . POST_CAT_URL . '" value="' . $cat_id . '">';
|
||
|
||
$template->assign_vars(array(
|
||
'TPL_AUTH_CAT' => true,
|
||
'CAT_NAME' => htmlCHR($cat_name),
|
||
'S_FORUMAUTH_ACTION' => 'admin_forumauth_list.php',
|
||
'S_COLUMN_SPAN' => count($forum_auth_fields) + 1,
|
||
'S_HIDDEN_FIELDS' => $s_hidden_fields,
|
||
));
|
||
}
|
||
|
||
print_page('admin_forumauth_list.tpl', 'admin');
|