|
|
|
|
@ -53,12 +53,7 @@ function route(){
|
|
|
|
|
send_login();
|
|
|
|
|
}elseif($_REQUEST['action']==='view'){
|
|
|
|
|
check_session();
|
|
|
|
|
send_messages(false);
|
|
|
|
|
}elseif($_REQUEST['action']==='jsview'){
|
|
|
|
|
check_session();
|
|
|
|
|
send_messages(true);
|
|
|
|
|
}elseif($_REQUEST['action']==='jsrefresh'){
|
|
|
|
|
send_jsrefresh();
|
|
|
|
|
send_messages();
|
|
|
|
|
}elseif($_REQUEST['action']==='redirect' && !empty($_GET['url'])){
|
|
|
|
|
send_redirect($_GET['url']);
|
|
|
|
|
}elseif($_REQUEST['action']==='wait'){
|
|
|
|
|
@ -156,7 +151,7 @@ function route_admin(){
|
|
|
|
|
if($_REQUEST['what']==='choose'){
|
|
|
|
|
send_choose_messages();
|
|
|
|
|
}elseif($_REQUEST['what']==='selected'){
|
|
|
|
|
clean_selected();
|
|
|
|
|
clean_selected($U['status']);
|
|
|
|
|
}elseif($_REQUEST['what']==='room'){
|
|
|
|
|
clean_room();
|
|
|
|
|
}elseif($_REQUEST['what']==='nick'){
|
|
|
|
|
@ -216,7 +211,7 @@ function route_setup(){
|
|
|
|
|
if(!valid_admin()){
|
|
|
|
|
send_alogin();
|
|
|
|
|
}
|
|
|
|
|
$C['bool_settings']=array('suguests', 'imgembed', 'timestamps', 'trackip', 'memkick', 'forceredirect', 'incognito', 'enablejs', 'sendmail', 'modfallback', 'disablepm', 'eninbox');
|
|
|
|
|
$C['bool_settings']=array('suguests', 'imgembed', 'timestamps', 'trackip', 'memkick', 'forceredirect', 'incognito', 'sendmail', 'modfallback', 'disablepm', 'eninbox');
|
|
|
|
|
$C['colour_settings']=array('colbg', 'coltxt');
|
|
|
|
|
$C['msg_settings']=array('msgenter', 'msgexit', 'msgmemreg', 'msgsureg', 'msgkick', 'msgmultikick', 'msgallkick', 'msgclean', 'msgsendall', 'msgsendmem', 'msgsendmod', 'msgsendadm', 'msgsendprv');
|
|
|
|
|
$C['number_settings']=array('memberexpire', 'guestexpire', 'kickpenalty', 'entrywait', 'captchatime', 'messageexpire', 'messagelimit', 'keeplimit', 'maxmessage', 'maxname', 'minpass', 'defaultrefresh', 'numnotes');
|
|
|
|
|
@ -283,12 +278,15 @@ function thr(){
|
|
|
|
|
function print_start($class='', $ref=0, $url=''){
|
|
|
|
|
global $H, $I;
|
|
|
|
|
if(!empty($url)){
|
|
|
|
|
$url=str_replace('&', '&', $url);// Don't escape "&" in URLs here, it breaks some (older) browsers!
|
|
|
|
|
$url=str_replace('&', '&', $url);// Don't escape "&" in URLs here, it breaks some (older) browsers and js refresh!
|
|
|
|
|
header("Refresh: $ref; URL=$url");
|
|
|
|
|
}
|
|
|
|
|
echo "<!DOCTYPE html><html><head>$H[meta_html]";
|
|
|
|
|
if(!empty($url)){
|
|
|
|
|
echo "<meta http-equiv=\"Refresh\" content=\"$ref; URL=$url\">";
|
|
|
|
|
$ref+=5;//only use js if browser refresh stopped working
|
|
|
|
|
$ref*=1000;//js uses milliseconds
|
|
|
|
|
echo "<script type=\"text/javascript\">setTimeout(function(){window.location.replace(\"$url\");}, $ref);</script>";
|
|
|
|
|
}
|
|
|
|
|
if($class==='init'){
|
|
|
|
|
echo "<title>$I[init]</title>";
|
|
|
|
|
@ -302,6 +300,7 @@ function print_start($class='', $ref=0, $url=''){
|
|
|
|
|
|
|
|
|
|
function send_redirect($url){
|
|
|
|
|
global $I;
|
|
|
|
|
$url=htmlspecialchars_decode(rawurldecode($url));
|
|
|
|
|
preg_match('~^(.*)://~', $url, $match);
|
|
|
|
|
$url=preg_replace('~^(.*)://~', '', $url);
|
|
|
|
|
$escaped=htmlspecialchars($url);
|
|
|
|
|
@ -617,9 +616,6 @@ function send_setup(){
|
|
|
|
|
}
|
|
|
|
|
echo ">$I[enabled]</option>";
|
|
|
|
|
echo '</select></td></tr>';
|
|
|
|
|
if($setting==='enablejs' && !extension_loaded('json')){
|
|
|
|
|
echo "<tr><td colspan=\"2\">$I[jsonextrequired]</td></tr>";
|
|
|
|
|
}
|
|
|
|
|
echo '</table></td></tr>';
|
|
|
|
|
}
|
|
|
|
|
thr();
|
|
|
|
|
@ -847,7 +843,7 @@ function send_admin($arg=''){
|
|
|
|
|
print_start('admin');
|
|
|
|
|
$chlist="<select name=\"name[]\" size=\"5\" multiple><option value=\"\">$I[choose]</option>";
|
|
|
|
|
$chlist.="<option value=\"&\">$I[allguests]</option>";
|
|
|
|
|
array_multisort(array_map('strtolower', array_keys($P)), SORT_ASC, SORT_STRING, $P);
|
|
|
|
|
sort_names($P);
|
|
|
|
|
foreach($P as $user){
|
|
|
|
|
if($user[2]<$U['status']){
|
|
|
|
|
$chlist.="<option value=\"$user[0]\" style=\"$user[1]\">$user[0]</option>";
|
|
|
|
|
@ -944,20 +940,20 @@ function send_admin($arg=''){
|
|
|
|
|
frmadm('status');
|
|
|
|
|
echo "<table class=\"right-table\"><td class=\"right\"><select name=\"name\" size=\"1\"><option value=\"\">$I[choose]</option>";
|
|
|
|
|
read_members();
|
|
|
|
|
array_multisort(array_map('strtolower', array_keys($A)), SORT_ASC, SORT_STRING, $A);
|
|
|
|
|
sort_names($A);
|
|
|
|
|
foreach($A as $member){
|
|
|
|
|
echo "<option value=\"$member[0]\" style=\"$member[2]\">$member[0]";
|
|
|
|
|
if($member[1]==0){
|
|
|
|
|
echo "<option value=\"$member[0]\" style=\"$member[1]\">$member[0]";
|
|
|
|
|
if($member[2]==0){
|
|
|
|
|
echo ' (!)';
|
|
|
|
|
}elseif($member[1]==2){
|
|
|
|
|
}elseif($member[2]==2){
|
|
|
|
|
echo ' (G)';
|
|
|
|
|
}elseif($member[1]==5){
|
|
|
|
|
}elseif($member[2]==5){
|
|
|
|
|
echo ' (M)';
|
|
|
|
|
}elseif($member[1]==6){
|
|
|
|
|
}elseif($member[2]==6){
|
|
|
|
|
echo ' (SM)';
|
|
|
|
|
}elseif($member[1]==7){
|
|
|
|
|
}elseif($member[2]==7){
|
|
|
|
|
echo ' (A)';
|
|
|
|
|
}elseif($member[1]==8){
|
|
|
|
|
}elseif($member[2]==8){
|
|
|
|
|
echo ' (SA)';
|
|
|
|
|
}
|
|
|
|
|
echo '</option>';
|
|
|
|
|
@ -978,7 +974,7 @@ function send_admin($arg=''){
|
|
|
|
|
frmadm('passreset');
|
|
|
|
|
echo "<table class=\"right-table\"><td><select name=\"name\" size=\"1\"><option value=\"\">$I[choose]</option>";
|
|
|
|
|
foreach($A as $member){
|
|
|
|
|
echo "<option value=\"$member[0]\" style=\"$member[2]\">$member[0]</option>";
|
|
|
|
|
echo "<option value=\"$member[0]\" style=\"$member[1]\">$member[0]</option>";
|
|
|
|
|
}
|
|
|
|
|
echo '</select></td><td><input type="password" name="pass"></td><td>'.submit($I['change']).'</td></tr></table></form></td></tr></table></td></tr>';
|
|
|
|
|
thr();
|
|
|
|
|
@ -1291,9 +1287,8 @@ function send_frameset(){
|
|
|
|
|
exit;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
function send_messages($js){
|
|
|
|
|
function send_messages(){
|
|
|
|
|
global $H, $I, $U, $db, $language;
|
|
|
|
|
if(!$js){
|
|
|
|
|
if($U['nocache']){
|
|
|
|
|
$nocache='&nc='.substr(time(), -6);
|
|
|
|
|
}else{
|
|
|
|
|
@ -1301,17 +1296,8 @@ function send_messages($js){
|
|
|
|
|
}
|
|
|
|
|
if(isSet($_COOKIE[COOKIENAME])){
|
|
|
|
|
print_start('messages', $U['refresh'], "$_SERVER[SCRIPT_NAME]?action=view$nocache");
|
|
|
|
|
if(get_setting('enablejs')==1 && extension_loaded('json')){
|
|
|
|
|
echo "<script type=\"text/javascript\">window.location.assign('$_SERVER[SCRIPT_NAME]?action=jsview');</script>";
|
|
|
|
|
}
|
|
|
|
|
}else{
|
|
|
|
|
print_start('messages', $U['refresh'], "$_SERVER[SCRIPT_NAME]?action=view&session=$U[session]&lang=$language$nocache");
|
|
|
|
|
if(get_setting('enablejs')==1 && extension_loaded('json')){
|
|
|
|
|
echo "<script type=\"text/javascript\">window.location.assign('$_SERVER[SCRIPT_NAME]?action=jsview&session=$U[session]&lang=$language');</script>";
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}else{
|
|
|
|
|
print_start('messages');
|
|
|
|
|
}
|
|
|
|
|
echo '<div class="left">';
|
|
|
|
|
echo '<a id="top"></a>';
|
|
|
|
|
@ -1320,7 +1306,7 @@ function send_messages($js){
|
|
|
|
|
echo '</div><div id="chatters">';
|
|
|
|
|
print_chatters();
|
|
|
|
|
echo "</div><a style=\"position:fixed;top:0.5em;right:0.5em\" href=\"#bottom\">$I[bottom]</a><div id=\"messages\">";
|
|
|
|
|
if($U['status']>=2 && $U['eninbox']==1){
|
|
|
|
|
if($U['status']>=2 && $U['eninbox']!=0){
|
|
|
|
|
$stmt=$db->prepare('SELECT COUNT(*) FROM ' . PREFIX . 'inbox WHERE recipient=?;');
|
|
|
|
|
$stmt->execute(array($U['nickname']));
|
|
|
|
|
$tmp=$stmt->fetch(PDO::FETCH_NUM);
|
|
|
|
|
@ -1331,9 +1317,6 @@ function send_messages($js){
|
|
|
|
|
}
|
|
|
|
|
print_messages();
|
|
|
|
|
echo '</div>';
|
|
|
|
|
if($js){
|
|
|
|
|
echo "<script type=\"text/javascript\">var id=$_REQUEST[id]; setInterval(function (){xmlhttp=new XMLHttpRequest(); xmlhttp.onreadystatechange=function(){if(xmlhttp.readyState==4 && xmlhttp.status==200){if(xmlhttp.responseText.match(/^</)){document.write(xmlhttp.responseText);}else{var obj=JSON.parse(xmlhttp.responseText); id=obj[0]; document.getElementById(\"messages\").innerHTML=obj[1]+document.getElementById(\"messages\").innerHTML; document.getElementById(\"chatters\").innerHTML=obj[2]; document.getElementById(\"topic\").innerHTML=obj[3];}}}; xmlhttp.open('POST','$_SERVER[SCRIPT_NAME]?action=jsrefresh&session=$U[session]&id='+id,true); xmlhttp.send();}, $U[refresh]000);</script>";
|
|
|
|
|
}
|
|
|
|
|
echo "<a id=\"bottom\"></a><a style=\"position:fixed;bottom:0.5em;right:0.5em\" href=\"#top\">$I[top]</a>";
|
|
|
|
|
echo '</div>';
|
|
|
|
|
print_end();
|
|
|
|
|
@ -1354,6 +1337,7 @@ function send_inbox(){
|
|
|
|
|
}
|
|
|
|
|
}else{
|
|
|
|
|
$injectRedirect=false;
|
|
|
|
|
$redirect='';
|
|
|
|
|
}
|
|
|
|
|
if(get_setting('imgembed') && (!$U['embed'] || !isSet($_COOKIE[COOKIENAME]))){
|
|
|
|
|
$removeEmbed=true;
|
|
|
|
|
@ -1373,23 +1357,7 @@ function send_inbox(){
|
|
|
|
|
$stmt=$db->prepare('SELECT id, postdate, text FROM ' . PREFIX . 'inbox WHERE recipient=? ORDER BY id DESC;');
|
|
|
|
|
$stmt->execute(array($U['nickname']));
|
|
|
|
|
while($message=$stmt->fetch(PDO::FETCH_ASSOC)){
|
|
|
|
|
if(MSGENCRYPTED){
|
|
|
|
|
$message['text']=openssl_decrypt($message['text'], 'aes-256-cbc', ENCRYPTKEY, 0, '1234567890123456');
|
|
|
|
|
}
|
|
|
|
|
if($injectRedirect){
|
|
|
|
|
$message['text']=preg_replace_callback('/<a href="([^"]+)" target="_blank">(.*?(?=<\/a>))<\/a>/',
|
|
|
|
|
function ($matched) use ($redirect){
|
|
|
|
|
return "<a href=\"$redirect".$matched[1]."\" target=\"_blank\">$matched[2]</a>";
|
|
|
|
|
}
|
|
|
|
|
, $message['text']);
|
|
|
|
|
}
|
|
|
|
|
if($removeEmbed){
|
|
|
|
|
$message['text']=preg_replace_callback('/<img src="([^"]+)"><\/a>/',
|
|
|
|
|
function ($matched){
|
|
|
|
|
return "$matched[1]</a>";
|
|
|
|
|
}
|
|
|
|
|
, $message['text']);
|
|
|
|
|
}
|
|
|
|
|
prepare_message_print($message, $injectRedirect, $redirect, $removeEmbed);
|
|
|
|
|
echo "<div class=\"msg\"><input type=\"checkbox\" name=\"mid[]\" id=\"$message[id]\" value=\"$message[id]\"><label for=\"$message[id]\">";
|
|
|
|
|
if($timestamps){
|
|
|
|
|
echo ' <small>'.date($dateformat, $message['postdate']+$tz).' - </small>';
|
|
|
|
|
@ -1401,21 +1369,6 @@ function send_inbox(){
|
|
|
|
|
print_end();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
function send_jsrefresh(){
|
|
|
|
|
global $I;
|
|
|
|
|
if(!extension_loaded('json')){
|
|
|
|
|
send_fatal_error($I['jsonextrequired']);
|
|
|
|
|
}
|
|
|
|
|
check_session();
|
|
|
|
|
ob_start();
|
|
|
|
|
print_messages();
|
|
|
|
|
$msgs=ob_get_clean();
|
|
|
|
|
ob_start();
|
|
|
|
|
print_chatters();
|
|
|
|
|
$chatters=ob_get_clean();
|
|
|
|
|
echo json_encode(array($_REQUEST['id'], $msgs, $chatters, get_setting('topic')));
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
function send_notes($type){
|
|
|
|
|
global $H, $I, $U, $db;
|
|
|
|
|
print_start('notes');
|
|
|
|
|
@ -1506,7 +1459,7 @@ function send_approve_waiting(){
|
|
|
|
|
echo '<table class="center-table left">';
|
|
|
|
|
echo "<tr><th class=\"padded\">$I[sessnick]</th><th class=\"padded\">$I[sessua]</th></tr>";
|
|
|
|
|
foreach($tmp as $temp){
|
|
|
|
|
echo '<tr>'.hidden('alls[]', $temp['nickname'])."<td class=\"padded\"><input type=\"checkbox\" name=\"csid[]\" id=\"$temp[nickname]]\" value=\"$temp[nickname]\"><label for=\"$temp[nickname]\"> ".style_this($temp['nickname'], $temp['style'])."</label></td><td class=\"padded\">$temp[useragent]</td></tr>";
|
|
|
|
|
echo '<tr>'.hidden('alls[]', $temp['nickname'])."<td class=\"padded\"><input type=\"checkbox\" name=\"csid[]\" id=\"$temp[nickname]\" value=\"$temp[nickname]\"><label for=\"$temp[nickname]\"> ".style_this($temp['nickname'], $temp['style'])."</label></td><td class=\"padded\">$temp[useragent]</td></tr>";
|
|
|
|
|
}
|
|
|
|
|
echo "</table><br><table class=\"center-table left\"><tr><td><input type=\"radio\" name=\"what\" value=\"allowchecked\" id=\"allowchecked\" checked><label for=\"allowchecked\">$I[allowchecked]</label></td>";
|
|
|
|
|
echo "<td><input type=\"radio\" name=\"what\" value=\"allowall\" id=\"allowall\"><label for=\"allowall\">$I[allowall]</label></td>";
|
|
|
|
|
@ -1660,28 +1613,27 @@ function send_post(){
|
|
|
|
|
$disablepm=(bool) get_setting('disablepm');
|
|
|
|
|
if(!$disablepm){
|
|
|
|
|
$ignored=array();
|
|
|
|
|
$ignore=get_ignored();
|
|
|
|
|
$ignore=get_ignored($U['nickname']);
|
|
|
|
|
foreach($ignore as $ign){
|
|
|
|
|
if($ign['ignored']===$U['nickname']){
|
|
|
|
|
$ignored[]=$ign['by'];
|
|
|
|
|
}
|
|
|
|
|
if($ign['by']===$U['nickname']){
|
|
|
|
|
}else{
|
|
|
|
|
$ignored[]=$ign['ignored'];
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
$stmt=$db->prepare('SELECT nickname, style, status FROM ' . PREFIX . 'members WHERE eninbox=1 AND nickname NOT IN (SELECT nickname FROM ' . PREFIX . 'sessions) AND nickname NOT IN (SELECT ign FROM ' . PREFIX . 'ignored WHERE ignby=?) AND nickname NOT IN (SELECT ignby FROM ' . PREFIX . 'ignored WHERE ign=?);');
|
|
|
|
|
$stmt->execute(array($U['nickname'], $U['nickname']));
|
|
|
|
|
$stmt=$db->prepare('SELECT nickname, style, status FROM ' . PREFIX . 'members WHERE eninbox!=0 AND eninbox<=? AND nickname NOT IN (SELECT nickname FROM ' . PREFIX . 'sessions WHERE incognito=0) AND nickname NOT IN (SELECT ign FROM ' . PREFIX . 'ignored WHERE ignby=?) AND nickname NOT IN (SELECT ignby FROM ' . PREFIX . 'ignored WHERE ign=?);');
|
|
|
|
|
$stmt->execute(array($U['status'], $U['nickname'], $U['nickname']));
|
|
|
|
|
while($tmp=$stmt->fetch(PDO::FETCH_ASSOC)){
|
|
|
|
|
$P[$tmp['nickname']]=["$tmp[nickname] $I[offline]", $tmp['style'], $tmp['status']];
|
|
|
|
|
$P[$tmp['nickname']]=["$tmp[nickname] $I[offline]", $tmp['style'], $tmp['status'], $tmp['nickname']];
|
|
|
|
|
}
|
|
|
|
|
array_multisort(array_map('strtolower', array_keys($P)), SORT_ASC, SORT_STRING, $P);
|
|
|
|
|
foreach($P as $name => $user){
|
|
|
|
|
if($U['nickname']!==$user[0] && !in_array($user[0], $ignored)){
|
|
|
|
|
sort_names($P);
|
|
|
|
|
foreach($P as $user){
|
|
|
|
|
if($U['nickname']!==$user[3] && !in_array($user[3], $ignored)){
|
|
|
|
|
echo '<option ';
|
|
|
|
|
if($_REQUEST['sendto']===$name){
|
|
|
|
|
if($_REQUEST['sendto']==$user[3]){
|
|
|
|
|
echo 'selected ';
|
|
|
|
|
}
|
|
|
|
|
echo "value=\"$name\" style=\"$user[1]\">$user[0]</option>";
|
|
|
|
|
echo "value=\"$user[3]\" style=\"$user[1]\">$user[0]</option>";
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
@ -1745,9 +1697,9 @@ function send_profile($arg=''){
|
|
|
|
|
print_start('profile');
|
|
|
|
|
echo "<$H[form]>$H[commonform]".hidden('action', 'profile').hidden('do', 'save')."<h2>$I[profile]</h2><i>$arg</i><table class=\"center-table\">";
|
|
|
|
|
thr();
|
|
|
|
|
array_multisort(array_map('strtolower', array_keys($P)), SORT_ASC, SORT_STRING, $P);
|
|
|
|
|
sort_names($P);
|
|
|
|
|
$ignored=array();
|
|
|
|
|
$ignore=get_ignored();
|
|
|
|
|
$ignore=get_ignored($U['nickname']);
|
|
|
|
|
foreach($ignore as $ign){
|
|
|
|
|
if($ign['by']===$U['nickname']){
|
|
|
|
|
$ignored[]=$ign['ignored'];
|
|
|
|
|
@ -1823,15 +1775,12 @@ function send_profile($arg=''){
|
|
|
|
|
echo '<tr><td>'.style_this("$U[nickname] : $I[fontexample]", $U['style']).'</td></tr>';
|
|
|
|
|
thr();
|
|
|
|
|
$bool_settings=['timestamps', 'nocache'];
|
|
|
|
|
if(get_setting('imgembed') && isSet($_COOKIE[COOKIENAME])){
|
|
|
|
|
if(get_setting('imgembed')){
|
|
|
|
|
$bool_settings[]='embed';
|
|
|
|
|
}
|
|
|
|
|
if($U['status']>=5 && get_setting('incognito')){
|
|
|
|
|
$bool_settings[]='incognito';
|
|
|
|
|
}
|
|
|
|
|
if($U['status']>=2 && get_setting('eninbox')){
|
|
|
|
|
$bool_settings[]='eninbox';
|
|
|
|
|
}
|
|
|
|
|
foreach($bool_settings as $setting){
|
|
|
|
|
echo '<tr><td><table class="left-table"><tr><th>'.$I[$setting].'</th><td class="right">';
|
|
|
|
|
echo "<input type=\"checkbox\" name=\"$setting\" id=\"$setting\" value=\"on\"";
|
|
|
|
|
@ -1841,6 +1790,32 @@ function send_profile($arg=''){
|
|
|
|
|
echo "><label for=\"$setting\"><b>$I[enabled]</b></label></td></tr></table></td></tr>";
|
|
|
|
|
thr();
|
|
|
|
|
}
|
|
|
|
|
if($U['status']>=2 && get_setting('eninbox')){
|
|
|
|
|
echo "<tr><td><table class=\"left-table\"><tr><th>$I[eninbox]</th><td class=\"right\">";
|
|
|
|
|
echo "<select name=\"eninbox\" id=\"eninbox\">";
|
|
|
|
|
echo '<option value="0"';
|
|
|
|
|
if($U['eninbox']==0){
|
|
|
|
|
echo ' selected';
|
|
|
|
|
}
|
|
|
|
|
echo ">$I[disabled]</option>";
|
|
|
|
|
echo '<option value="1"';
|
|
|
|
|
if($U['eninbox']==1){
|
|
|
|
|
echo ' selected';
|
|
|
|
|
}
|
|
|
|
|
echo ">$I[eninall]</option>";
|
|
|
|
|
echo '<option value="3"';
|
|
|
|
|
if($U['eninbox']==3){
|
|
|
|
|
echo ' selected';
|
|
|
|
|
}
|
|
|
|
|
echo ">$I[eninmem]</option>";
|
|
|
|
|
echo '<option value="5"';
|
|
|
|
|
if($U['eninbox']==5){
|
|
|
|
|
echo ' selected';
|
|
|
|
|
}
|
|
|
|
|
echo ">$I[eninstaff]</option>";
|
|
|
|
|
echo '</select></td></tr></table></td></tr>';
|
|
|
|
|
thr();
|
|
|
|
|
}
|
|
|
|
|
echo "<tr><td><table class=\"left-table\"><tr><th>$I[tz]</th><td class=\"right\">";
|
|
|
|
|
echo "<select name=\"tz\" id=\"tz\">";
|
|
|
|
|
$tzs=[-12=>'-12', -11=>'-11', -10=>'-10', -9=>'-9', -8=>'-8', -7=>'-7', -6=>'-6', -5=>'-5', -4=>'-4', -3=>'-3', -2=>'-2', -1=>'-1', 0=>'', 1=>'+1', 2=>'+2', 3=>'+3', 4=>'+4', 5=>'+5', 6=>'+6', 7=>'+7', 8=>'+8', 9=>'+9', 10=>'+10', 11=>'+11', 12=>'+12', 13=>'+13', 14=>'+14'];
|
|
|
|
|
@ -2138,7 +2113,7 @@ function write_new_session(){
|
|
|
|
|
if($U['status']>=3 && !$U['incognito']){
|
|
|
|
|
add_system_message(sprintf(get_setting('msgenter'), style_this($U['nickname'], $U['style'])));
|
|
|
|
|
}
|
|
|
|
|
$P[$U['nickname']]=[$U['nickname'], $U['style'], $U['status']];
|
|
|
|
|
$P[$U['nickname']]=[$U['nickname'], $U['style'], $U['status'], $U['nickname']];
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
@ -2292,7 +2267,7 @@ function logout_chatter($names){
|
|
|
|
|
$stmt1->execute(array($name));
|
|
|
|
|
$stmt2->execute(array($name));
|
|
|
|
|
$stmt3->execute(array($name, $name));
|
|
|
|
|
$stmt4->execute(array($name, $name));
|
|
|
|
|
$stmt4->execute(array($name));
|
|
|
|
|
}
|
|
|
|
|
unset($P[$name]);
|
|
|
|
|
}
|
|
|
|
|
@ -2374,7 +2349,7 @@ function parse_sessions(){
|
|
|
|
|
$stmt=$db->query('SELECT nickname, style, status, incognito FROM ' . PREFIX . 'sessions WHERE entry!=0 AND status>0 ORDER BY status DESC, lastpost DESC;');
|
|
|
|
|
while($temp=$stmt->fetch(PDO::FETCH_ASSOC)){
|
|
|
|
|
if(!$temp['incognito']){
|
|
|
|
|
$P[$temp['nickname']]=[$temp['nickname'], $temp['style'], $temp['status']];
|
|
|
|
|
$P[$temp['nickname']]=[$temp['nickname'], $temp['style'], $temp['status'], $temp['nickname']];
|
|
|
|
|
}
|
|
|
|
|
if($temp['status']>=5){
|
|
|
|
|
++$countmods;
|
|
|
|
|
@ -2406,9 +2381,7 @@ function read_members(){
|
|
|
|
|
global $A, $db;
|
|
|
|
|
$result=$db->query('SELECT * FROM ' . PREFIX . 'members;');
|
|
|
|
|
while($temp=$result->fetch(PDO::FETCH_ASSOC)){
|
|
|
|
|
$A[$temp['nickname']][0]=$temp['nickname'];
|
|
|
|
|
$A[$temp['nickname']][1]=$temp['status'];
|
|
|
|
|
$A[$temp['nickname']][2]=$temp['style'];
|
|
|
|
|
$A[$temp['nickname']]=[$temp['nickname'], $temp['style'], $temp['status'], $temp['nickname']];
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
@ -2495,33 +2468,35 @@ function change_status($nick, $status){
|
|
|
|
|
}elseif($U['status']<=$status || !preg_match('/^[023567\-]$/', $status)){
|
|
|
|
|
return sprintf($I['cantchgstat'], $nick);
|
|
|
|
|
}
|
|
|
|
|
$stmt=$db->prepare('SELECT * FROM ' . PREFIX . 'members WHERE nickname=? AND status<?;');
|
|
|
|
|
$stmt=$db->prepare('SELECT incognito FROM ' . PREFIX . 'members WHERE nickname=? AND status<?;');
|
|
|
|
|
$stmt->execute(array($nick, $U['status']));
|
|
|
|
|
if($stmt->fetch(PDO::FETCH_ASSOC)){
|
|
|
|
|
if(!$old=$stmt->fetch(PDO::FETCH_NUM)){
|
|
|
|
|
return sprintf($I['cantchgstat'], $nick);
|
|
|
|
|
}
|
|
|
|
|
if($_REQUEST['set']==='-'){
|
|
|
|
|
$stmt=$db->prepare('DELETE FROM ' . PREFIX . 'inbox WHERE receiver=?;');
|
|
|
|
|
$stmt=$db->prepare('DELETE FROM ' . PREFIX . 'inbox WHERE recipient=?;');
|
|
|
|
|
$stmt->execute(array($nick));
|
|
|
|
|
$stmt=$db->prepare('DELETE FROM ' . PREFIX . 'members WHERE nickname=?;');
|
|
|
|
|
$stmt->execute(array($nick));
|
|
|
|
|
$stmt=$db->prepare('UPDATE ' . PREFIX . 'sessions SET status=1 WHERE nickname=?;');
|
|
|
|
|
$stmt=$db->prepare('UPDATE ' . PREFIX . 'sessions SET status=1, incognito=0 WHERE nickname=?;');
|
|
|
|
|
$stmt->execute(array($nick));
|
|
|
|
|
if(isSet($P[$nick])){
|
|
|
|
|
$P[$nick][2]=1;
|
|
|
|
|
}
|
|
|
|
|
return sprintf($I['succdel'], $nick);
|
|
|
|
|
}else{
|
|
|
|
|
$stmt=$db->prepare('UPDATE ' . PREFIX . 'members SET status=? WHERE nickname=?;');
|
|
|
|
|
$stmt->execute(array($status, $nick));
|
|
|
|
|
$stmt=$db->prepare('UPDATE ' . PREFIX . 'sessions SET status=? WHERE nickname=?;');
|
|
|
|
|
$stmt->execute(array($status, $nick));
|
|
|
|
|
if($status<5){
|
|
|
|
|
$old[0]=0;
|
|
|
|
|
}
|
|
|
|
|
$stmt=$db->prepare('UPDATE ' . PREFIX . 'members SET status=?, incognito=? WHERE nickname=?;');
|
|
|
|
|
$stmt->execute(array($status, $old[0], $nick));
|
|
|
|
|
$stmt=$db->prepare('UPDATE ' . PREFIX . 'sessions SET status=?, incognito=? WHERE nickname=?;');
|
|
|
|
|
$stmt->execute(array($status, $old[0], $nick));
|
|
|
|
|
if(isSet($P[$nick])){
|
|
|
|
|
$P[$nick][2]=$status;
|
|
|
|
|
}
|
|
|
|
|
return sprintf($I['succchg'], $nick);
|
|
|
|
|
}
|
|
|
|
|
}else{
|
|
|
|
|
return sprintf($I['cantchgstat'], $nick);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
function passreset($nick, $pass){
|
|
|
|
|
@ -2613,10 +2588,8 @@ function amend_profile(){
|
|
|
|
|
$U['tz']=$_REQUEST['tz'];
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
if(isSet($_REQUEST['eninbox'])){
|
|
|
|
|
$U['eninbox']=1;
|
|
|
|
|
}else{
|
|
|
|
|
$U['eninbox']=0;
|
|
|
|
|
if(isSet($_REQUEST['eninbox']) && $_REQUEST['eninbox']>=0 && $_REQUEST['eninbox']<=5){
|
|
|
|
|
$U['eninbox']=$_REQUEST['eninbox'];
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
@ -2779,10 +2752,10 @@ function validate_input(){
|
|
|
|
|
$stmt=$db->prepare('SELECT * FROM ' . PREFIX . 'ignored WHERE (ignby=? AND ign=?) OR (ignby=? AND ign=?);');
|
|
|
|
|
$stmt->execute(array($U['nickname'], $_REQUEST['sendto'], $_REQUEST['sendto'], $U['nickname']));
|
|
|
|
|
if(!$stmt->fetch(PDO::FETCH_NUM)){
|
|
|
|
|
$stmt=$db->prepare('SELECT nickname, style, status FROM ' . PREFIX . 'members WHERE eninbox=1 AND nickname NOT IN (SELECT nickname FROM ' . PREFIX . 'sessions) AND nickname NOT IN (SELECT ign FROM ' . PREFIX . 'ignored WHERE ignby=?) AND nickname NOT IN (SELECT ignby FROM ' . PREFIX . 'ignored WHERE ign=?);');
|
|
|
|
|
$stmt->execute(array($U['nickname'], $U['nickname']));
|
|
|
|
|
$stmt=$db->prepare('SELECT nickname, style, status FROM ' . PREFIX . 'members WHERE eninbox!=0 AND eninbox<=? AND nickname NOT IN (SELECT nickname FROM ' . PREFIX . 'sessions WHERE incognito=0) AND nickname NOT IN (SELECT ign FROM ' . PREFIX . 'ignored WHERE ignby=?) AND nickname NOT IN (SELECT ignby FROM ' . PREFIX . 'ignored WHERE ign=?);');
|
|
|
|
|
$stmt->execute(array($U['status'], $U['nickname'], $U['nickname']));
|
|
|
|
|
while($tmp=$stmt->fetch(PDO::FETCH_ASSOC)){
|
|
|
|
|
$P[$tmp['nickname']]=[$tmp['nickname'], $tmp['style'], $tmp['status']];
|
|
|
|
|
$P[$tmp['nickname']]=[$tmp['nickname'], $tmp['style'], $tmp['status'], $tmp['nickname']];
|
|
|
|
|
$inboxes[$tmp['nickname']]=true;
|
|
|
|
|
}
|
|
|
|
|
if(isSet($P[$_REQUEST['sendto']])){
|
|
|
|
|
@ -2845,11 +2818,11 @@ function apply_filter(){
|
|
|
|
|
}
|
|
|
|
|
read_members();
|
|
|
|
|
if(isSet($A[$matched[1]])){
|
|
|
|
|
return style_this($matched[0], $A[$matched[1]][2]);
|
|
|
|
|
return style_this($matched[0], $A[$matched[1]][1]);
|
|
|
|
|
}
|
|
|
|
|
foreach($A as $user){
|
|
|
|
|
if(strtolower($user[0])===$nick){
|
|
|
|
|
return style_this($matched[0], $user[2]);
|
|
|
|
|
return style_this($matched[0], $user[1]);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return "$matched[0]";
|
|
|
|
|
@ -2895,7 +2868,7 @@ function apply_linkfilter(){
|
|
|
|
|
if(get_setting('forceredirect')){
|
|
|
|
|
$U['message']=preg_replace_callback('/<a href="([^"]+)" target="_blank">(.*?(?=<\/a>))<\/a>/',
|
|
|
|
|
function ($matched) use($redirect){
|
|
|
|
|
return "<a href=\"$redirect".$matched[1]."\" target=\"_blank\">$matched[2]</a>";
|
|
|
|
|
return "<a href=\"$redirect".rawurlencode($matched[1])."\" target=\"_blank\">$matched[2]</a>";
|
|
|
|
|
}
|
|
|
|
|
, $U['message']);
|
|
|
|
|
}elseif(preg_match_all('/<a href="([^"]+)" target="_blank">(.*?(?=<\/a>))<\/a>/', $U['message'], $matches)){
|
|
|
|
|
@ -2903,7 +2876,7 @@ function apply_linkfilter(){
|
|
|
|
|
if(!preg_match('~^http(s)?://~', $match)){
|
|
|
|
|
$U['message']=preg_replace_callback('/<a href="('.str_replace('/', '\/', $match).')\" target=\"_blank\">(.*?(?=<\/a>))<\/a>/',
|
|
|
|
|
function ($matched) use($redirect){
|
|
|
|
|
return "<a href=\"$redirect".$matched[1]."\" target=\"_blank\">$matched[2]</a>";
|
|
|
|
|
return "<a href=\"$redirect".rawurlencode($matched[1])."\" target=\"_blank\">$matched[2]</a>";
|
|
|
|
|
}
|
|
|
|
|
, $U['message']);
|
|
|
|
|
}
|
|
|
|
|
@ -2915,7 +2888,7 @@ function create_hotlinks(){
|
|
|
|
|
global $U;
|
|
|
|
|
//Make hotlinks for URLs, redirect through dereferrer script to prevent session leakage
|
|
|
|
|
// 1. all explicit schemes with whatever xxx://yyyyyyy
|
|
|
|
|
$U['message']=preg_replace('~(\w*://[^\s<>]+)~i', "<<$1>>", $U['message']);
|
|
|
|
|
$U['message']=preg_replace('~(\w+://[^\s<>]+)~i', "<<$1>>", $U['message']);
|
|
|
|
|
// 2. valid URLs without scheme:
|
|
|
|
|
$U['message']=preg_replace('~((?:[^\s<>]*:[^\s<>]*@)?[a-z0-9\-]+(?:\.[a-z0-9\-]+)+(?::\d*)?/[^\s<>]*)(?![^<>]*>)~i', "<<$1>>", $U['message']); // server/path given
|
|
|
|
|
$U['message']=preg_replace('~((?:[^\s<>]*:[^\s<>]*@)?[a-z0-9\-]+(?:\.[a-z0-9\-]+)+:\d+)(?![^<>]*>)~i', "<<$1>>", $U['message']); // server:port given
|
|
|
|
|
@ -2962,7 +2935,7 @@ function add_system_message($mes){
|
|
|
|
|
'poster' =>'',
|
|
|
|
|
'recipient' =>'',
|
|
|
|
|
'text' =>"<span class=\"sysmsg\">$mes</span>",
|
|
|
|
|
'delstatus' =>9
|
|
|
|
|
'delstatus' =>4
|
|
|
|
|
);
|
|
|
|
|
write_message($sysmessage);
|
|
|
|
|
}
|
|
|
|
|
@ -2998,12 +2971,12 @@ function clean_room(){
|
|
|
|
|
add_system_message(sprintf($msg, get_setting('chatname')));
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
function clean_selected(){
|
|
|
|
|
function clean_selected($status){
|
|
|
|
|
global $db;
|
|
|
|
|
if(isSet($_REQUEST['mid'])){
|
|
|
|
|
$stmt=$db->prepare('DELETE FROM ' . PREFIX . 'messages WHERE id=?;');
|
|
|
|
|
$stmt=$db->prepare('DELETE FROM ' . PREFIX . 'messages WHERE id=? AND (delstatus=9 OR delstatus<?);');
|
|
|
|
|
foreach($_REQUEST['mid'] as $mid){
|
|
|
|
|
$stmt->execute(array($mid));
|
|
|
|
|
$stmt->execute(array($mid, $status));
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
@ -3060,6 +3033,7 @@ function print_messages($delstatus=''){
|
|
|
|
|
}
|
|
|
|
|
}else{
|
|
|
|
|
$injectRedirect=false;
|
|
|
|
|
$redirect='';
|
|
|
|
|
}
|
|
|
|
|
if(get_setting('imgembed') && (!$U['embed'] || !isSet($_COOKIE[COOKIENAME]))){
|
|
|
|
|
$removeEmbed=true;
|
|
|
|
|
@ -3080,27 +3054,11 @@ function print_messages($delstatus=''){
|
|
|
|
|
$db->exec('DELETE FROM ' . PREFIX . 'messages WHERE id IN (SELECT * FROM (SELECT id FROM ' . PREFIX . "messages WHERE postdate<$expire) AS t);");
|
|
|
|
|
if(!empty($delstatus)){
|
|
|
|
|
$stmt=$db->prepare('SELECT postdate, id, text FROM ' . PREFIX . 'messages WHERE '.
|
|
|
|
|
'id IN (SELECT * FROM (SELECT id FROM ' . PREFIX . "messages WHERE poststatus=1 ORDER BY id DESC LIMIT $messagelimit) AS t) ".
|
|
|
|
|
'OR (poststatus>1 AND (poststatus<? OR poster=? OR recipient=?) ) ORDER BY id DESC;');
|
|
|
|
|
$stmt->execute(array($U['status'], $U['nickname'], $U['nickname']));
|
|
|
|
|
'(id IN (SELECT * FROM (SELECT id FROM ' . PREFIX . "messages WHERE poststatus=1 ORDER BY id DESC LIMIT $messagelimit) AS t) ".
|
|
|
|
|
'OR (poststatus>1 AND (poststatus<? OR poster=? OR recipient=?) ) ) AND (poster=? OR recipient=? OR delstatus<?) ORDER BY id DESC;');
|
|
|
|
|
$stmt->execute(array($U['status'], $U['nickname'], $U['nickname'], $U['nickname'], $U['nickname'], $delstatus));
|
|
|
|
|
while($message=$stmt->fetch(PDO::FETCH_ASSOC)){
|
|
|
|
|
if(MSGENCRYPTED){
|
|
|
|
|
$message['text']=openssl_decrypt($message['text'], 'aes-256-cbc', ENCRYPTKEY, 0, '1234567890123456');
|
|
|
|
|
}
|
|
|
|
|
if($injectRedirect){
|
|
|
|
|
$message['text']=preg_replace_callback('/<a href="([^"]+)" target="_blank">(.*?(?=<\/a>))<\/a>/',
|
|
|
|
|
function ($matched) use ($redirect){
|
|
|
|
|
return "<a href=\"$redirect".$matched[1]."\" target=\"_blank\">$matched[2]</a>";
|
|
|
|
|
}
|
|
|
|
|
, $message['text']);
|
|
|
|
|
}
|
|
|
|
|
if($removeEmbed){
|
|
|
|
|
$message['text']=preg_replace_callback('/<img src="([^"]+)"><\/a>/',
|
|
|
|
|
function ($matched){
|
|
|
|
|
return "$matched[1]</a>";
|
|
|
|
|
}
|
|
|
|
|
, $message['text']);
|
|
|
|
|
}
|
|
|
|
|
prepare_message_print($message, $injectRedirect, $redirect, $removeEmbed);
|
|
|
|
|
echo "<div class=\"msg\"><input type=\"checkbox\" name=\"mid[]\" id=\"$message[id]\" value=\"$message[id]\"><label for=\"$message[id]\">";
|
|
|
|
|
if($timestamps){
|
|
|
|
|
echo ' <small>'.date($dateformat, $message['postdate']+$tz).' - </small>';
|
|
|
|
|
@ -3118,23 +3076,7 @@ function print_messages($delstatus=''){
|
|
|
|
|
') AND poster NOT IN (SELECT ign FROM ' . PREFIX . 'ignored WHERE ignby=?) AND id>? ORDER BY id DESC;');
|
|
|
|
|
$stmt->execute(array($U['status'], $U['nickname'], $U['nickname'], $U['nickname'], $U['nickname'], $_REQUEST['id']));
|
|
|
|
|
while($message=$stmt->fetch(PDO::FETCH_ASSOC)){
|
|
|
|
|
if(MSGENCRYPTED){
|
|
|
|
|
$message['text']=openssl_decrypt($message['text'], 'aes-256-cbc', ENCRYPTKEY, 0, '1234567890123456');
|
|
|
|
|
}
|
|
|
|
|
if($injectRedirect){
|
|
|
|
|
$message['text']=preg_replace_callback('/<a href="([^"]+)" target="_blank">(.*?(?=<\/a>))<\/a>/',
|
|
|
|
|
function ($matched) use($redirect) {
|
|
|
|
|
return "<a href=\"$redirect".$matched[1]."\" target=\"_blank\">$matched[2]</a>";
|
|
|
|
|
}
|
|
|
|
|
, $message['text']);
|
|
|
|
|
}
|
|
|
|
|
if($removeEmbed){
|
|
|
|
|
$message['text']=preg_replace_callback('/<img src="([^"]+)"><\/a>/',
|
|
|
|
|
function ($matched){
|
|
|
|
|
return "$matched[1]</a>";
|
|
|
|
|
}
|
|
|
|
|
, $message['text']);
|
|
|
|
|
}
|
|
|
|
|
prepare_message_print($message, $injectRedirect, $redirect, $removeEmbed);
|
|
|
|
|
echo '<div class="msg">';
|
|
|
|
|
if($timestamps){
|
|
|
|
|
echo '<small>'.date($dateformat, $message['postdate']+$tz).' - </small>';
|
|
|
|
|
@ -3147,8 +3089,36 @@ function print_messages($delstatus=''){
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
function prepare_message_print(&$message, $injectRedirect, $redirect, $removeEmbed){
|
|
|
|
|
if(MSGENCRYPTED){
|
|
|
|
|
$message['text']=openssl_decrypt($message['text'], 'aes-256-cbc', ENCRYPTKEY, 0, '1234567890123456');
|
|
|
|
|
}
|
|
|
|
|
if($injectRedirect){
|
|
|
|
|
$message['text']=preg_replace_callback('/<a href="([^"]+)" target="_blank">(.*?(?=<\/a>))<\/a>/',
|
|
|
|
|
function ($matched) use($redirect) {
|
|
|
|
|
return "<a href=\"$redirect".rawurlencode($matched[1])."\" target=\"_blank\">$matched[2]</a>";
|
|
|
|
|
}
|
|
|
|
|
, $message['text']);
|
|
|
|
|
}
|
|
|
|
|
if($removeEmbed){
|
|
|
|
|
$message['text']=preg_replace_callback('/<img src="([^"]+)"><\/a>/',
|
|
|
|
|
function ($matched){
|
|
|
|
|
return "$matched[1]</a>";
|
|
|
|
|
}
|
|
|
|
|
, $message['text']);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// this and that
|
|
|
|
|
|
|
|
|
|
function sort_names(&$names){
|
|
|
|
|
$keys=[];
|
|
|
|
|
foreach($names as $v){
|
|
|
|
|
$keys[]=$v[3];
|
|
|
|
|
}
|
|
|
|
|
array_multisort(array_map('strtolower', $keys), SORT_ASC, SORT_STRING, $names);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
function send_headers(){
|
|
|
|
|
header('Content-Type: text/html; charset=UTF-8');
|
|
|
|
|
header('Pragma: no-cache');
|
|
|
|
|
@ -3222,12 +3192,13 @@ function save_setup(){
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
function get_ignored(){
|
|
|
|
|
function get_ignored($name){
|
|
|
|
|
global $db;
|
|
|
|
|
$ignored=array();
|
|
|
|
|
$result=$db->query('SELECT ign, ignby FROM ' . PREFIX . 'ignored;');
|
|
|
|
|
while($tmp=$result->fetch(PDO::FETCH_ASSOC)){
|
|
|
|
|
$ignored[]=array('ignored'=>$tmp['ign'], 'by'=>$tmp['ignby']);
|
|
|
|
|
$stmt=$db->prepare('SELECT ign, ignby FROM ' . PREFIX . 'ignored WHERE ign=? OR ignby=?;');
|
|
|
|
|
$stmt->execute([$name, $name]);
|
|
|
|
|
while($tmp=$stmt->fetch(PDO::FETCH_ASSOC)){
|
|
|
|
|
$ignored[]=['ignored'=>$tmp['ign'], 'by'=>$tmp['ignby']];
|
|
|
|
|
}
|
|
|
|
|
return $ignored;
|
|
|
|
|
}
|
|
|
|
|
@ -3380,7 +3351,7 @@ function init_chat(){
|
|
|
|
|
$db->exec('CREATE TABLE ' . PREFIX . "members (id integer unsigned NOT NULL PRIMARY KEY AUTO_INCREMENT, nickname varchar(50) NOT NULL UNIQUE, passhash char(32) CHARACTER SET latin1 COLLATE latin1_bin NOT NULL, status smallint unsigned NOT NULL, refresh smallint unsigned NOT NULL, bgcolour char(6) CHARACTER SET latin1 COLLATE latin1_bin NOT NULL, boxwidth smallint unsigned NOT NULL DEFAULT 40, boxheight smallint unsigned NOT NULL DEFAULT 3, notesboxheight smallint unsigned NOT NULL DEFAULT 30, notesboxwidth smallint unsigned NOT NULL DEFAULT 80, regedby varchar(50) NOT NULL, lastlogin integer unsigned NOT NULL, timestamps smallint NOT NULL, embed smallint NOT NULL, incognito smallint NOT NULL, style varchar(255) CHARACTER SET latin1 COLLATE latin1_bin NOT NULL, nocache smallint NOT NULL, tz smallint NOT NULL, eninbox smallint NOT NULL) ENGINE=InnoDB DEFAULT CHARSET=utf8 COLLATE=utf8_bin;");
|
|
|
|
|
$db->exec('CREATE TABLE ' . PREFIX . "messages (id integer unsigned NOT NULL PRIMARY KEY AUTO_INCREMENT, postdate integer unsigned NOT NULL, poststatus smallint unsigned NOT NULL, poster varchar(50) NOT NULL, recipient varchar(50) NOT NULL, text varchar(20000) NOT NULL, delstatus smallint unsigned NOT NULL, INDEX(poster), INDEX(recipient), INDEX(postdate), INDEX(poststatus)) ENGINE=InnoDB DEFAULT CHARSET=utf8 COLLATE=utf8_bin;");
|
|
|
|
|
$db->exec('CREATE TABLE ' . PREFIX . "notes (id integer unsigned NOT NULL PRIMARY KEY AUTO_INCREMENT, type char(5) CHARACTER SET latin1 COLLATE latin1_bin NOT NULL, lastedited integer unsigned NOT NULL, editedby varchar(50) NOT NULL, text varchar(20000) NOT NULL) ENGINE=InnoDB DEFAULT CHARSET=utf8 COLLATE=utf8_bin;");
|
|
|
|
|
$db->exec('CREATE TABLE ' . PREFIX . "sessions (id integer unsigned NOT NULL PRIMARY KEY AUTO_INCREMENT, session char(32) CHARACTER SET latin1 COLLATE latin1_bin NOT NULL UNIQUE, nickname varchar(50) NOT NULL UNIQUE, status smallint unsigned NOT NULL, refresh smallint unsigned NOT NULL, style varchar(255) CHARACTER SET latin1 COLLATE latin1_bin NOT NULL, lastpost integer unsigned NOT NULL, passhash char(32) CHARACTER SET latin1 COLLATE latin1_bin NOT NULL, postid char(6) CHARACTER SET latin1 COLLATE latin1_bin NOT NULL DEFAULT '000000', boxwidth smallint unsigned NOT NULL DEFAULT 40, boxheight smallint unsigned NOT NULL DEFAULT 3, useragent varchar(255) NOT NULL, kickmessage varchar(255) NOT NULL, bgcolour char(6) CHARACTER SET latin1 COLLATE latin1_bin NOT NULL, notesboxheight smallint unsigned NOT NULL DEFAULT 30, notesboxwidth smallint unsigned NOT NULL DEFAULT 80, entry integer NOT NULL, timestamps smallint NOT NULL, embed smallint NOT NULL, incognito smallint NOT NULL DEFAULT 0, ip varchar(45) CHARACTER SET latin1 COLLATE latin1_bin NOT NULL, nocache smallint NOT NULL, tz smallint NOT NULL, eninbox smallint NOT NULL, INDEX(status) USING BTREE, INDEX(lastpost) USING BTREE) ENGINE=MEMORY DEFAULT CHARSET=utf8 COLLATE=utf8_bin;");
|
|
|
|
|
$db->exec('CREATE TABLE ' . PREFIX . "sessions (id integer unsigned NOT NULL PRIMARY KEY AUTO_INCREMENT, session char(32) CHARACTER SET latin1 COLLATE latin1_bin NOT NULL UNIQUE, nickname varchar(50) NOT NULL UNIQUE, status smallint unsigned NOT NULL, refresh smallint unsigned NOT NULL, style varchar(255) CHARACTER SET latin1 COLLATE latin1_bin NOT NULL, lastpost integer unsigned NOT NULL, passhash char(32) CHARACTER SET latin1 COLLATE latin1_bin NOT NULL, postid char(6) CHARACTER SET latin1 COLLATE latin1_bin NOT NULL DEFAULT '000000', boxwidth smallint unsigned NOT NULL DEFAULT 40, boxheight smallint unsigned NOT NULL DEFAULT 3, useragent varchar(255) NOT NULL, kickmessage varchar(255) NOT NULL, bgcolour char(6) CHARACTER SET latin1 COLLATE latin1_bin NOT NULL, notesboxheight smallint unsigned NOT NULL DEFAULT 30, notesboxwidth smallint unsigned NOT NULL DEFAULT 80, entry integer NOT NULL, timestamps smallint NOT NULL, embed smallint NOT NULL, incognito smallint NOT NULL DEFAULT 0, ip varchar(45) CHARACTER SET latin1 COLLATE latin1_bin NOT NULL, nocache smallint NOT NULL, tz smallint NOT NULL, eninbox smallint NOT NULL, INDEX(status) USING BTREE, INDEX(lastpost) USING BTREE, INDEX(incognito) USING BTREE) ENGINE=MEMORY DEFAULT CHARSET=utf8 COLLATE=utf8_bin;");
|
|
|
|
|
$db->exec('CREATE TABLE ' . PREFIX . "settings (setting varchar(50) CHARACTER SET latin1 COLLATE latin1_bin NOT NULL PRIMARY KEY, value varchar(20000) NOT NULL) ENGINE=InnoDB DEFAULT CHARSET=utf8 COLLATE=utf8_bin;");
|
|
|
|
|
}else{
|
|
|
|
|
if(DBDRIVER===1){//PostgreSQL
|
|
|
|
|
@ -3408,9 +3379,10 @@ function init_chat(){
|
|
|
|
|
$db->exec('CREATE TABLE ' . PREFIX . "sessions (id $primary, session char(32) NOT NULL UNIQUE, nickname varchar(50) NOT NULL UNIQUE, status smallint NOT NULL, refresh smallint NOT NULL, style varchar(255) NOT NULL, lastpost integer NOT NULL, passhash char(32) NOT NULL, postid char(6) NOT NULL DEFAULT '000000', boxwidth smallint NOT NULL DEFAULT 40, boxheight smallint NOT NULL DEFAULT 3, useragent varchar(255) NOT NULL, kickmessage varchar(255) DEFAULT '', bgcolour char(6) NOT NULL, notesboxheight smallint NOT NULL DEFAULT 30, notesboxwidth smallint NOT NULL DEFAULT 80, entry integer NOT NULL, timestamps smallint NOT NULL, embed smallint NOT NULL, incognito smallint NOT NULL, ip varchar(45) NOT NULL, nocache smallint NOT NULL, tz smallint NOT NULL, eninbox smallint NOT NULL);");
|
|
|
|
|
$db->exec('CREATE INDEX ' . PREFIX . 'status ON ' . PREFIX . 'sessions(status);');
|
|
|
|
|
$db->exec('CREATE INDEX ' . PREFIX . 'lastpost ON ' . PREFIX . 'sessions(lastpost);');
|
|
|
|
|
$db->exec('CREATE INDEX ' . PREFIX . 'incognito ON ' . PREFIX . 'sessions(incognito);');
|
|
|
|
|
$db->exec('CREATE TABLE ' . PREFIX . "settings (setting varchar(50) NOT NULL PRIMARY KEY, value varchar(20000) NOT NULL);");
|
|
|
|
|
}
|
|
|
|
|
$settings=array(array('guestaccess', '0'), array('globalpass', ''), array('englobalpass', '0'), array('captcha', '0'), array('dateformat', 'm-d H:i:s'), array('rulestxt', ''), array('msgencrypted', '0'), array('dbversion', DBVERSION), array('css', 'a:visited{color:#B33CB4;} a:active{color:#FF0033;} a:link{color:#0000FF;} input,select,textarea{color:#FFFFFF;background-color:#000000;} a img{width:15%} a:hover img{width:35%} .error{color:#FF0033;} .delbutton{background-color:#660000;} .backbutton{background-color:#004400;} #exitbutton{background-color:#AA0000;} .center-table{margin-left:auto;margin-right:auto;} body{text-align:center;} .left-table{width:100%;text-align:left;} .right{text-align:right;} .left{text-align:left;} .right-table{border-spacing:0px;margin-left:auto;} .padded{padding:5px;} #chatters{max-height:100px;overflow-y:auto;} .center{text-align:center;}'), array('memberexpire', '60'), array('guestexpire', '15'), array('kickpenalty', '10'), array('entrywait', '120'), array('messageexpire', '14400'), array('messagelimit', '150'), array('maxmessage', 2000), array('captchatime', '600'), array('colbg', '000000'), array('coltxt', 'FFFFFF'), array('maxname', '20'), array('minpass', '5'), array('defaultrefresh', '20'), array('dismemcaptcha', '0'), array('suguests', '0'), array('imgembed', '1'), array('timestamps', '1'), array('trackip', '0'), array('captchachars', '0123456789abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ'), array('memkick', '1'), array('forceredirect', '0'), array('redirect', ''), array('incognito', '1'), array('enablejs', '0'), array('chatname', 'My Chat'), array('topic', ''), array('msgsendall', $I['sendallmsg']), array('msgsendmem', $I['sendmemmsg']), array('msgsendmod', $I['sendmodmsg']), array('msgsendadm', $I['sendadmmsg']), array('msgsendprv', $I['sendprvmsg']), array('msgenter', $I['entermsg']), array('msgexit', $I['exitmsg']), array('msgmemreg', $I['memregmsg']), array('msgsureg', $I['suregmsg']), array('msgkick', $I['kickmsg']), array('msgmultikick', $I['multikickmsg']), array('msgallkick', $I['allkickmsg']), array('msgclean', $I['cleanmsg']), array('numnotes', '3'), array('keeplimit', '3'), array('mailsender', 'www-data <www-data@localhost>'), array('mailreceiver', 'Webmaster <webmaster@localhost>'), array('sendmail', '0'), array('modfallback', '1'), array('guestreg', '0'), array('disablepm', '0'), array('disabletext', "<h1>$I[disabledtext]</h1>"), array('defaulttz', '0'), array('eninbox', '0'));
|
|
|
|
|
$settings=array(array('guestaccess', '0'), array('globalpass', ''), array('englobalpass', '0'), array('captcha', '0'), array('dateformat', 'm-d H:i:s'), array('rulestxt', ''), array('msgencrypted', '0'), array('dbversion', DBVERSION), array('css', 'a:visited{color:#B33CB4;} a:active{color:#FF0033;} a:link{color:#0000FF;} input,select,textarea{color:#FFFFFF;background-color:#000000;} a img{width:15%} a:hover img{width:35%} .error{color:#FF0033;} .delbutton{background-color:#660000;} .backbutton{background-color:#004400;} #exitbutton{background-color:#AA0000;} .center-table{margin-left:auto;margin-right:auto;} body{text-align:center;} .left-table{width:100%;text-align:left;} .right{text-align:right;} .left{text-align:left;} .right-table{border-spacing:0px;margin-left:auto;} .padded{padding:5px;} #chatters{max-height:100px;overflow-y:auto;} .center{text-align:center;}'), array('memberexpire', '60'), array('guestexpire', '15'), array('kickpenalty', '10'), array('entrywait', '120'), array('messageexpire', '14400'), array('messagelimit', '150'), array('maxmessage', 2000), array('captchatime', '600'), array('colbg', '000000'), array('coltxt', 'FFFFFF'), array('maxname', '20'), array('minpass', '5'), array('defaultrefresh', '20'), array('dismemcaptcha', '0'), array('suguests', '0'), array('imgembed', '1'), array('timestamps', '1'), array('trackip', '0'), array('captchachars', '0123456789abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ'), array('memkick', '1'), array('forceredirect', '0'), array('redirect', ''), array('incognito', '1'), array('chatname', 'My Chat'), array('topic', ''), array('msgsendall', $I['sendallmsg']), array('msgsendmem', $I['sendmemmsg']), array('msgsendmod', $I['sendmodmsg']), array('msgsendadm', $I['sendadmmsg']), array('msgsendprv', $I['sendprvmsg']), array('msgenter', $I['entermsg']), array('msgexit', $I['exitmsg']), array('msgmemreg', $I['memregmsg']), array('msgsureg', $I['suregmsg']), array('msgkick', $I['kickmsg']), array('msgmultikick', $I['multikickmsg']), array('msgallkick', $I['allkickmsg']), array('msgclean', $I['cleanmsg']), array('numnotes', '3'), array('keeplimit', '3'), array('mailsender', 'www-data <www-data@localhost>'), array('mailreceiver', 'Webmaster <webmaster@localhost>'), array('sendmail', '0'), array('modfallback', '1'), array('guestreg', '0'), array('disablepm', '0'), array('disabletext', "<h1>$I[disabledtext]</h1>"), array('defaulttz', '0'), array('eninbox', '0'));
|
|
|
|
|
$stmt=$db->prepare('INSERT INTO ' . PREFIX . 'settings (setting, value) VALUES (?, ?);');
|
|
|
|
|
foreach($settings as $pair){
|
|
|
|
|
$stmt->execute($pair);
|
|
|
|
|
@ -3526,7 +3498,7 @@ function update_db(){
|
|
|
|
|
$db->exec('ALTER TABLE ' . PREFIX . 'sessions ENGINE=MEMORY;');
|
|
|
|
|
$db->exec('ALTER TABLE ' . PREFIX . 'settings MODIFY id integer unsigned NOT NULL, MODIFY setting varchar(50) CHARACTER SET latin1 COLLATE latin1_bin NOT NULL, MODIFY value varchar(20000) NOT NULL;');
|
|
|
|
|
$db->exec('ALTER TABLE ' . PREFIX . 'settings DROP PRIMARY KEY, DROP id, ADD PRIMARY KEY(setting);');
|
|
|
|
|
$db->exec('INSERT INTO ' . PREFIX . "settings (setting, value) VALUES ('enablejs', '0'), ('chatname', 'My Chat'), ('topic', ''), ('msgsendall', '$I[sendallmsg]'), ('msgsendmem', '$I[sendmemmsg]'), ('msgsendmod', '$I[sendmodmsg]'), ('msgsendadm', '$I[sendadmmsg]'), ('msgsendprv', '$I[sendprvmsg]'), ('numnotes', '3');");
|
|
|
|
|
$db->exec('INSERT INTO ' . PREFIX . "settings (setting, value) VALUES ('chatname', 'My Chat'), ('topic', ''), ('msgsendall', '$I[sendallmsg]'), ('msgsendmem', '$I[sendmemmsg]'), ('msgsendmod', '$I[sendmodmsg]'), ('msgsendadm', '$I[sendadmmsg]'), ('msgsendprv', '$I[sendprvmsg]'), ('numnotes', '3');");
|
|
|
|
|
}
|
|
|
|
|
if($dbversion<13){
|
|
|
|
|
$db->exec('ALTER TABLE ' . PREFIX . 'filter CHANGE `match` filtermatch varchar(255) NOT NULL, CHANGE `replace` filterreplace varchar(20000) NOT NULL;');
|
|
|
|
|
@ -3579,6 +3551,15 @@ function update_db(){
|
|
|
|
|
$db->exec('CREATE INDEX ' . PREFIX . 'inbox_recipient ON ' . PREFIX . 'inbox(recipient);');
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
if($dbversion<22){
|
|
|
|
|
$db->exec('CREATE INDEX ' . PREFIX . 'incognito ON ' . PREFIX . 'sessions(incognito);');
|
|
|
|
|
}
|
|
|
|
|
if($dbversion<23){
|
|
|
|
|
$db->exec('DELETE FROM ' . PREFIX . "settings WHERE setting='enablejs';");
|
|
|
|
|
if(MEMCACHED){
|
|
|
|
|
$memcached->delete(DBNAME . '-' . PREFIX . "settings-enablejs");
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
update_setting('dbversion', DBVERSION);
|
|
|
|
|
if(get_setting('msgencrypted')!=MSGENCRYPTED){
|
|
|
|
|
if(!extension_loaded('openssl')){
|
|
|
|
|
@ -3767,8 +3748,8 @@ function load_lang(){
|
|
|
|
|
|
|
|
|
|
function load_config(){
|
|
|
|
|
date_default_timezone_set('UTC');
|
|
|
|
|
define('VERSION', '1.19'); // Script version
|
|
|
|
|
define('DBVERSION', 21); // Database version
|
|
|
|
|
define('VERSION', '1.20.5'); // Script version
|
|
|
|
|
define('DBVERSION', 23); // Database version
|
|
|
|
|
define('MSGENCRYPTED', false); // Store messages encrypted in the database to prevent other database users from reading them - true/false - visit the setup page after editing!
|
|
|
|
|
define('ENCRYPTKEY', 'MY_KEY'); // Encryption key for messages
|
|
|
|
|
define('DBHOST', 'localhost'); // Database host
|
|
|
|
|
|
