1117 lines
48 KiB
PHP
1117 lines
48 KiB
PHP
<?php
|
|
|
|
/**
|
|
* Copyright (C) 2008-2012 FluxBB
|
|
* based on code by Rickard Andersson copyright (C) 2002-2008 PunBB
|
|
* License: http://www.gnu.org/licenses/gpl.html GPL version 2 or higher
|
|
*/
|
|
|
|
// Tell header.php to use the admin template
|
|
define('PUN_ADMIN_CONSOLE', 1);
|
|
|
|
define('PUN_ROOT', dirname(__FILE__).'/');
|
|
require PUN_ROOT.'include/common.php';
|
|
require PUN_ROOT.'include/common_admin.php';
|
|
|
|
|
|
if (!$pun_user['is_admmod'])
|
|
message($lang_common['No permission'], false, '403 Forbidden');
|
|
|
|
// Load the admin_users.php language file
|
|
require PUN_ROOT.'lang/'.$admin_language.'/admin_users.php';
|
|
|
|
// мод пола - Visman
|
|
// Load the Genders Integration mod language file
|
|
if (file_exists(PUN_ROOT.'lang/'.$pun_user['language'].'/genders_integration.php'))
|
|
require PUN_ROOT.'lang/'.$pun_user['language'].'/genders_integration.php';
|
|
else
|
|
require PUN_ROOT.'lang/English/genders_integration.php';
|
|
|
|
|
|
// Show IP statistics for a certain user ID
|
|
if (isset($_GET['ip_stats']))
|
|
{
|
|
$ip_stats = intval($_GET['ip_stats']);
|
|
if ($ip_stats < 1)
|
|
message($lang_common['Bad request'], false, '404 Not Found');
|
|
|
|
// Fetch ip count
|
|
$result = $db->query('SELECT COUNT(*) FROM (SELECT DISTINCT poster_ip FROM '.$db->prefix.'posts WHERE poster_id='.$ip_stats.') AS temp') or error('Unable to fetch post info', __FILE__, __LINE__, $db->error());
|
|
$num_ips = $db->result($result);
|
|
|
|
// Determine the ip offset (based on $_GET['p'])
|
|
$num_pages = ceil($num_ips / 50);
|
|
|
|
$p = ! is_numeric($_GET['p'] ?? null) || $_GET['p'] <= 1 || $_GET['p'] > $num_pages ? 1 : intval($_GET['p']);
|
|
$start_from = 50 * ($p - 1);
|
|
|
|
// Generate paging links
|
|
$paging_links = '<span class="pages-label">'.$lang_common['Pages'].' </span>'.paginate($num_pages, $p, 'admin_users.php?ip_stats='.$ip_stats );
|
|
|
|
$page_title = array(pun_htmlspecialchars($pun_config['o_board_title']), $lang_admin_common['Admin'], $lang_admin_common['Users'], $lang_admin_users['Results head']);
|
|
define('PUN_ACTIVE_PAGE', 'admin');
|
|
require PUN_ROOT.'header.php';
|
|
|
|
?>
|
|
<div class="linkst">
|
|
<div class="inbox crumbsplus">
|
|
<ul class="crumbs">
|
|
<li><a href="admin_index.php"><?php echo $lang_admin_common['Admin'].' '.$lang_admin_common['Index'] ?></a></li>
|
|
<li><span>» </span><a href="admin_users.php"><?php echo $lang_admin_common['Users'] ?></a></li>
|
|
<li><span>» </span><strong><?php echo $lang_admin_users['Results head'] ?></strong></li>
|
|
</ul>
|
|
<div class="pagepost">
|
|
<p class="pagelink"><?php echo $paging_links ?></p>
|
|
</div>
|
|
<div class="clearer"></div>
|
|
</div>
|
|
</div>
|
|
|
|
<div id="users1" class="blocktable">
|
|
<h2><span><?php echo $lang_admin_users['Results head'] ?></span></h2>
|
|
<div class="box">
|
|
<div class="inbox">
|
|
<table>
|
|
<thead>
|
|
<tr>
|
|
<th class="tcl" scope="col"><?php echo $lang_admin_users['Results IP address head'] ?></th>
|
|
<th class="tc2" scope="col"><?php echo $lang_admin_users['Results last used head'] ?></th>
|
|
<th class="tc3" scope="col"><?php echo $lang_admin_users['Results times found head'] ?></th>
|
|
<th class="tcr" scope="col"><?php echo $lang_admin_users['Results action head'] ?></th>
|
|
</tr>
|
|
</thead>
|
|
<tbody>
|
|
<?php
|
|
|
|
$result = $db->query('SELECT poster_ip, MAX(posted) AS last_used, COUNT(id) AS used_times FROM '.$db->prefix.'posts WHERE poster_id='.$ip_stats.' GROUP BY poster_ip ORDER BY last_used DESC LIMIT '.$start_from.', 50') or error('Unable to fetch post info', __FILE__, __LINE__, $db->error());
|
|
$cur_ip = $db->fetch_assoc($result);
|
|
|
|
if (is_array($cur_ip))
|
|
{
|
|
do
|
|
{
|
|
|
|
?>
|
|
<tr>
|
|
<td class="tcl"><a href="moderate.php?get_host=<?php echo pun_htmlspecialchars($cur_ip['poster_ip']) ?>"><?php echo pun_htmlspecialchars($cur_ip['poster_ip']) ?></a></td>
|
|
<td class="tc2"><?php echo format_time($cur_ip['last_used']) ?></td>
|
|
<td class="tc3"><?php echo $cur_ip['used_times'] ?></td>
|
|
<td class="tcr"><a href="admin_users.php?show_users=<?php echo pun_htmlspecialchars($cur_ip['poster_ip']) ?>"><?php echo $lang_admin_users['Results find more link'] ?></a></td>
|
|
</tr>
|
|
<?php
|
|
|
|
}
|
|
while ($cur_ip = $db->fetch_assoc($result));
|
|
}
|
|
else
|
|
echo "\t\t\t\t".'<tr><td class="tcl" colspan="4">'.$lang_admin_users['Results no posts found'].'</td></tr>'."\n";
|
|
|
|
?>
|
|
</tbody>
|
|
</table>
|
|
</div>
|
|
</div>
|
|
</div>
|
|
|
|
<div class="linksb">
|
|
<div class="inbox crumbsplus">
|
|
<div class="pagepost">
|
|
<p class="pagelink"><?php echo $paging_links ?></p>
|
|
</div>
|
|
<ul class="crumbs">
|
|
<li><a href="admin_index.php"><?php echo $lang_admin_common['Admin'].' '.$lang_admin_common['Index'] ?></a></li>
|
|
<li><span>» </span><a href="admin_users.php"><?php echo $lang_admin_common['Users'] ?></a></li>
|
|
<li><span>» </span><strong><?php echo $lang_admin_users['Results head'] ?></strong></li>
|
|
</ul>
|
|
<div class="clearer"></div>
|
|
</div>
|
|
</div>
|
|
<?php
|
|
|
|
require PUN_ROOT.'footer.php';
|
|
}
|
|
|
|
|
|
if (isset($_GET['show_users']))
|
|
{
|
|
$ip = pun_trim($_GET['show_users']);
|
|
|
|
if (!@preg_match('%^[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}$%', $ip) && !@preg_match('%^((([0-9A-Fa-f]{1,4}:){7}[0-9A-Fa-f]{1,4})|(([0-9A-Fa-f]{1,4}:){6}:[0-9A-Fa-f]{1,4})|(([0-9A-Fa-f]{1,4}:){5}:([0-9A-Fa-f]{1,4}:)?[0-9A-Fa-f]{1,4})|(([0-9A-Fa-f]{1,4}:){4}:([0-9A-Fa-f]{1,4}:){0,2}[0-9A-Fa-f]{1,4})|(([0-9A-Fa-f]{1,4}:){3}:([0-9A-Fa-f]{1,4}:){0,3}[0-9A-Fa-f]{1,4})|(([0-9A-Fa-f]{1,4}:){2}:([0-9A-Fa-f]{1,4}:){0,4}[0-9A-Fa-f]{1,4})|(([0-9A-Fa-f]{1,4}:){6}((\b((25[0-5])|(1\d{2})|(2[0-4]\d)|(\d{1,2}))\b)\.){3}(\b((25[0-5])|(1\d{2})|(2[0-4]\d)|(\d{1,2}))\b))|(([0-9A-Fa-f]{1,4}:){0,5}:((\b((25[0-5])|(1\d{2})|(2[0-4]\d)|(\d{1,2}))\b)\.){3}(\b((25[0-5])|(1\d{2})|(2[0-4]\d)|(\d{1,2}))\b))|(::([0-9A-Fa-f]{1,4}:){0,5}((\b((25[0-5])|(1\d{2})|(2[0-4]\d)|(\d{1,2}))\b)\.){3}(\b((25[0-5])|(1\d{2})|(2[0-4]\d)|(\d{1,2}))\b))|([0-9A-Fa-f]{1,4}::([0-9A-Fa-f]{1,4}:){0,5}[0-9A-Fa-f]{1,4})|(::([0-9A-Fa-f]{1,4}:){0,6}[0-9A-Fa-f]{1,4})|(([0-9A-Fa-f]{1,4}:){1,7}:))$%', $ip))
|
|
message($lang_admin_users['Bad IP message']);
|
|
|
|
// Fetch user count
|
|
$result = $db->query('SELECT COUNT(*) FROM (SELECT DISTINCT poster_id FROM '.$db->prefix.'posts WHERE poster_ip=\''.$db->escape($ip).'\') AS temp') or error('Unable to fetch post info', __FILE__, __LINE__, $db->error());
|
|
$num_users = $db->result($result);
|
|
|
|
// Determine the user offset (based on $_GET['p'])
|
|
$num_pages = ceil($num_users / 50);
|
|
|
|
$p = ! is_numeric($_GET['p'] ?? null) || $_GET['p'] <= 1 || $_GET['p'] > $num_pages ? 1 : intval($_GET['p']);
|
|
$start_from = 50 * ($p - 1);
|
|
|
|
// Generate paging links
|
|
$paging_links = '<span class="pages-label">'.$lang_common['Pages'].' </span>'.paginate($num_pages, $p, 'admin_users.php?show_users='.$ip);
|
|
|
|
$page_title = array(pun_htmlspecialchars($pun_config['o_board_title']), $lang_admin_common['Admin'], $lang_admin_common['Users'], $lang_admin_users['Results head']);
|
|
define('PUN_ACTIVE_PAGE', 'admin');
|
|
require PUN_ROOT.'header.php';
|
|
|
|
?>
|
|
<div class="linkst">
|
|
<div class="inbox crumbsplus">
|
|
<ul class="crumbs">
|
|
<li><a href="admin_index.php"><?php echo $lang_admin_common['Admin'].' '.$lang_admin_common['Index'] ?></a></li>
|
|
<li><span>» </span><a href="admin_users.php"><?php echo $lang_admin_common['Users'] ?></a></li>
|
|
<li><span>» </span><strong><?php echo $lang_admin_users['Results head'] ?></strong></li>
|
|
</ul>
|
|
<div class="pagepost">
|
|
<p class="pagelink"><?php echo $paging_links ?></p>
|
|
</div>
|
|
<div class="clearer"></div>
|
|
</div>
|
|
</div>
|
|
|
|
<div id="users2" class="blocktable">
|
|
<h2><span><?php echo $lang_admin_users['Results head'] ?></span></h2>
|
|
<div class="box">
|
|
<div class="inbox">
|
|
<table>
|
|
<thead>
|
|
<tr>
|
|
<th class="tcl" scope="col"><?php echo $lang_admin_users['Results username head'] ?></th>
|
|
<th class="tc2" scope="col"><?php echo $lang_admin_users['Results e-mail head'] ?></th>
|
|
<th class="tc3" scope="col"><?php echo $lang_admin_users['Results title head'] ?></th>
|
|
<th class="tc4" scope="col"><?php echo $lang_admin_users['Results posts head'] ?></th>
|
|
<th class="tc5" scope="col"><?php echo $lang_admin_users['Results admin note head'] ?></th>
|
|
<th class="tcr" scope="col"><?php echo $lang_admin_users['Results actions head'] ?></th>
|
|
</tr>
|
|
</thead>
|
|
<tbody>
|
|
<?php
|
|
|
|
$result = $db->query('SELECT DISTINCT poster_id, poster FROM '.$db->prefix.'posts WHERE poster_ip=\''.$db->escape($ip).'\' ORDER BY poster ASC LIMIT '.$start_from.', 50') or error('Unable to fetch post info', __FILE__, __LINE__, $db->error());
|
|
$posters = $poster_ids = array();
|
|
|
|
while ($cur_poster = $db->fetch_assoc($result))
|
|
{
|
|
$posters[] = $cur_poster;
|
|
$poster_ids[] = $cur_poster['poster_id'];
|
|
}
|
|
|
|
if (!empty($posters))
|
|
{
|
|
$result = $db->query('SELECT u.id, u.username, u.email, u.title, u.num_posts, u.admin_note, g.g_id, g.g_user_title FROM '.$db->prefix.'users AS u INNER JOIN '.$db->prefix.'groups AS g ON g.g_id=u.group_id WHERE u.id>1 AND u.id IN ('.implode(',', $poster_ids).')') or error('Unable to fetch user info', __FILE__, __LINE__, $db->error());
|
|
|
|
$user_data = array();
|
|
while ($cur_user = $db->fetch_assoc($result))
|
|
$user_data[$cur_user['id']] = $cur_user;
|
|
|
|
// Loop through users and print out some info
|
|
foreach ($posters as $cur_poster)
|
|
{
|
|
if (isset($user_data[$cur_poster['poster_id']]))
|
|
{
|
|
$user_title = get_title($user_data[$cur_poster['poster_id']]);
|
|
|
|
$actions = $pun_user['g_id'] == PUN_ADMIN ? '<a href="admin_users.php?ip_stats='.$user_data[$cur_poster['poster_id']]['id'].'">'.$lang_admin_users['Results view IP link'].'</a>' : ' ';
|
|
|
|
?>
|
|
<tr>
|
|
<td class="tcl"><?php echo '<a href="profile.php?id='.$user_data[$cur_poster['poster_id']]['id'].'">'.pun_htmlspecialchars($user_data[$cur_poster['poster_id']]['username']).'</a>' ?></td>
|
|
<td class="tc2"><a href="mailto:<?php echo pun_htmlspecialchars($user_data[$cur_poster['poster_id']]['email']) ?>"><?php echo pun_htmlspecialchars($user_data[$cur_poster['poster_id']]['email']) ?></a></td>
|
|
<td class="tc3"><?php echo $user_title ?></td>
|
|
<td class="tc4"><a href="search.php?action=show_user_posts&user_id=<?php echo $user_data[$cur_poster['poster_id']]['id'] ?>"><?php echo forum_number_format($user_data[$cur_poster['poster_id']]['num_posts']) ?></a></td>
|
|
<td class="tc5"><?php echo ($user_data[$cur_poster['poster_id']]['admin_note'] != '') ? pun_htmlspecialchars($user_data[$cur_poster['poster_id']]['admin_note']) : ' ' ?></td>
|
|
<td class="tcr"><?php echo $actions ?></td>
|
|
</tr>
|
|
<?php
|
|
|
|
}
|
|
else
|
|
{
|
|
|
|
?>
|
|
<tr>
|
|
<td class="tcl"><?php echo pun_htmlspecialchars($cur_poster['poster']) ?></td>
|
|
<td class="tc2"> </td>
|
|
<td class="tc3"><?php echo $lang_admin_users['Results guest'] ?></td>
|
|
<td class="tc4"> </td>
|
|
<td class="tc5"> </td>
|
|
<td class="tcr"> </td>
|
|
</tr>
|
|
<?php
|
|
|
|
}
|
|
}
|
|
}
|
|
else
|
|
echo "\t\t\t\t".'<tr><td class="tcl" colspan="6">'.$lang_admin_users['Results no IP found'].'</td></tr>'."\n";
|
|
|
|
?>
|
|
</tbody>
|
|
</table>
|
|
</div>
|
|
</div>
|
|
</div>
|
|
|
|
<div class="linksb">
|
|
<div class="inbox crumbsplus">
|
|
<div class="pagepost">
|
|
<p class="pagelink"><?php echo $paging_links ?></p>
|
|
</div>
|
|
<ul class="crumbs">
|
|
<li><a href="admin_index.php"><?php echo $lang_admin_common['Admin'].' '.$lang_admin_common['Index'] ?></a></li>
|
|
<li><span>» </span><a href="admin_users.php"><?php echo $lang_admin_common['Users'] ?></a></li>
|
|
<li><span>» </span><strong><?php echo $lang_admin_users['Results head'] ?></strong></li>
|
|
</ul>
|
|
<div class="clearer"></div>
|
|
</div>
|
|
</div>
|
|
<?php
|
|
require PUN_ROOT.'footer.php';
|
|
}
|
|
|
|
|
|
// Move multiple users to other user groups
|
|
else if (isset($_POST['move_users']) || isset($_POST['move_users_comply']))
|
|
{
|
|
if ($pun_user['g_id'] > PUN_ADMIN)
|
|
message($lang_common['No permission'], false, '403 Forbidden');
|
|
|
|
confirm_referrer('admin_users.php');
|
|
|
|
if (isset($_POST['users']))
|
|
{
|
|
$user_ids = is_array($_POST['users']) ? array_keys($_POST['users']) : explode(',', $_POST['users']);
|
|
$user_ids = array_map('intval', $user_ids);
|
|
|
|
// Delete invalid IDs
|
|
$user_ids = array_diff($user_ids, array(0, 1));
|
|
}
|
|
else
|
|
$user_ids = array();
|
|
|
|
if (empty($user_ids))
|
|
message($lang_admin_users['No users selected']);
|
|
|
|
// Are we trying to batch move any admins?
|
|
$result = $db->query('SELECT COUNT(*) FROM '.$db->prefix.'users WHERE id IN ('.implode(',', $user_ids).') AND group_id='.PUN_ADMIN) or error('Unable to fetch user info', __FILE__, __LINE__, $db->error());
|
|
if ($db->result($result) > 0)
|
|
message($lang_admin_users['No move admins message']);
|
|
|
|
// Fetch all user groups
|
|
$all_groups = array();
|
|
$result = $db->query('SELECT g_id, g_title FROM '.$db->prefix.'groups WHERE g_id NOT IN ('.PUN_GUEST.','.PUN_ADMIN.') ORDER BY g_title ASC') or error('Unable to fetch groups', __FILE__, __LINE__, $db->error());
|
|
while ($row = $db->fetch_row($result))
|
|
$all_groups[$row[0]] = $row[1];
|
|
|
|
if (isset($_POST['move_users_comply']))
|
|
{
|
|
$new_group = intval($_POST['new_group'] ?? 0);
|
|
|
|
if (! isset($all_groups[$_POST['new_group']]))
|
|
message($lang_admin_users['Invalid group message']);
|
|
|
|
// Is the new group a moderator group?
|
|
$result = $db->query('SELECT g_moderator FROM '.$db->prefix.'groups WHERE g_id='.$new_group) or error('Unable to fetch group info', __FILE__, __LINE__, $db->error());
|
|
$new_group_mod = $db->result($result);
|
|
|
|
// Fetch user groups
|
|
$user_groups = array();
|
|
$result = $db->query('SELECT id, group_id FROM '.$db->prefix.'users WHERE id IN ('.implode(',', $user_ids).')') or error('Unable to fetch user groups', __FILE__, __LINE__, $db->error());
|
|
while ($cur_user = $db->fetch_assoc($result))
|
|
{
|
|
if (!isset($user_groups[$cur_user['group_id']]))
|
|
$user_groups[$cur_user['group_id']] = array();
|
|
|
|
$user_groups[$cur_user['group_id']][] = $cur_user['id'];
|
|
}
|
|
|
|
// Are any users moderators?
|
|
$group_ids = array_keys($user_groups);
|
|
$result = $db->query('SELECT g_id, g_moderator FROM '.$db->prefix.'groups WHERE g_id IN ('.implode(',', $group_ids).')') or error('Unable to fetch group moderators', __FILE__, __LINE__, $db->error());
|
|
while ($cur_group = $db->fetch_assoc($result))
|
|
{
|
|
if ($cur_group['g_moderator'] == '0')
|
|
unset($user_groups[$cur_group['g_id']]);
|
|
}
|
|
|
|
if (!empty($user_groups) && $new_group != PUN_ADMIN && $new_group_mod != '1')
|
|
{
|
|
// Fetch forum list and clean up their moderator list
|
|
$result = $db->query('SELECT id, moderators FROM '.$db->prefix.'forums') or error('Unable to fetch forum list', __FILE__, __LINE__, $db->error());
|
|
while ($cur_forum = $db->fetch_assoc($result))
|
|
{
|
|
$cur_moderators = $cur_forum['moderators'] != '' ? unserialize($cur_forum['moderators']) : array();
|
|
|
|
foreach ($user_groups as $group_users)
|
|
$cur_moderators = array_diff($cur_moderators, $group_users);
|
|
|
|
$cur_moderators = !empty($cur_moderators) ? '\''.$db->escape(serialize($cur_moderators)).'\'' : 'NULL';
|
|
$db->query('UPDATE '.$db->prefix.'forums SET moderators='.$cur_moderators.' WHERE id='.$cur_forum['id']) or error('Unable to update forum', __FILE__, __LINE__, $db->error());
|
|
}
|
|
}
|
|
|
|
// Change user group
|
|
$db->query('UPDATE '.$db->prefix.'users SET group_id='.$new_group.' WHERE id IN ('.implode(',', $user_ids).')') or error('Unable to change user group', __FILE__, __LINE__, $db->error());
|
|
|
|
redirect('admin_users.php', $lang_admin_users['Users move redirect']);
|
|
}
|
|
|
|
$page_title = array(pun_htmlspecialchars($pun_config['o_board_title']), $lang_admin_common['Admin'], $lang_admin_common['Users'], $lang_admin_users['Move users']);
|
|
define('PUN_ACTIVE_PAGE', 'admin');
|
|
require PUN_ROOT.'header.php';
|
|
|
|
generate_admin_menu('users');
|
|
|
|
?>
|
|
<div class="blockform">
|
|
<h2><span><?php echo $lang_admin_users['Move users'] ?></span></h2>
|
|
<div class="box">
|
|
<form method="post" action="admin_users.php">
|
|
<div class="inform">
|
|
<input type="hidden" name="users" value="<?php echo implode(',', $user_ids) ?>" />
|
|
<input type="hidden" name="csrf_hash" value="<?php echo csrf_hash() ?>" />
|
|
<fieldset>
|
|
<legend><?php echo $lang_admin_users['Move users subhead'] ?></legend>
|
|
<div class="infldset">
|
|
<table class="aligntop">
|
|
<tr>
|
|
<th scope="row"><?php echo $lang_admin_users['New group label'] ?></th>
|
|
<td>
|
|
<select name="new_group" tabindex="1">
|
|
<?php foreach ($all_groups as $gid => $group) : ?> <option value="<?php echo $gid ?>"><?php echo pun_htmlspecialchars($group) ?></option>
|
|
<?php endforeach; ?>
|
|
</select>
|
|
<span><?php echo $lang_admin_users['New group help'] ?></span>
|
|
</td>
|
|
</tr>
|
|
</table>
|
|
</div>
|
|
</fieldset>
|
|
</div>
|
|
<p class="submitend"><input type="submit" name="move_users_comply" value="<?php echo $lang_admin_common['Save'] ?>" tabindex="2" /></p>
|
|
</form>
|
|
</div>
|
|
</div>
|
|
<div class="clearer"></div>
|
|
</div>
|
|
<?php
|
|
|
|
require PUN_ROOT.'footer.php';
|
|
}
|
|
|
|
|
|
// Delete multiple users
|
|
else if (isset($_POST['delete_users']) || isset($_POST['delete_users_comply']))
|
|
{
|
|
if ($pun_user['g_id'] > PUN_ADMIN)
|
|
message($lang_common['No permission'], false, '403 Forbidden');
|
|
|
|
confirm_referrer('admin_users.php');
|
|
|
|
if (isset($_POST['users']))
|
|
{
|
|
$user_ids = is_array($_POST['users']) ? array_keys($_POST['users']) : explode(',', $_POST['users']);
|
|
$user_ids = array_map('intval', $user_ids);
|
|
|
|
// Delete invalid IDs
|
|
$user_ids = array_diff($user_ids, array(0, 1));
|
|
}
|
|
else
|
|
$user_ids = array();
|
|
|
|
if (empty($user_ids))
|
|
message($lang_admin_users['No users selected']);
|
|
|
|
// Are we trying to delete any admins?
|
|
$result = $db->query('SELECT COUNT(*) FROM '.$db->prefix.'users WHERE id IN ('.implode(',', $user_ids).') AND group_id='.PUN_ADMIN) or error('Unable to fetch user info', __FILE__, __LINE__, $db->error());
|
|
if ($db->result($result) > 0)
|
|
message($lang_admin_users['No delete admins message']);
|
|
|
|
if (isset($_POST['delete_users_comply']))
|
|
{
|
|
// Fetch user groups
|
|
$user_groups = array();
|
|
$result = $db->query('SELECT id, group_id FROM '.$db->prefix.'users WHERE id IN ('.implode(',', $user_ids).')') or error('Unable to fetch user groups', __FILE__, __LINE__, $db->error());
|
|
while ($cur_user = $db->fetch_assoc($result))
|
|
{
|
|
if (!isset($user_groups[$cur_user['group_id']]))
|
|
$user_groups[$cur_user['group_id']] = array();
|
|
|
|
$user_groups[$cur_user['group_id']][] = $cur_user['id'];
|
|
}
|
|
|
|
// Are any users moderators?
|
|
$group_ids = array_keys($user_groups);
|
|
$result = $db->query('SELECT g_id, g_moderator FROM '.$db->prefix.'groups WHERE g_id IN ('.implode(',', $group_ids).')') or error('Unable to fetch group moderators', __FILE__, __LINE__, $db->error());
|
|
while ($cur_group = $db->fetch_assoc($result))
|
|
{
|
|
if ($cur_group['g_moderator'] == '0')
|
|
unset($user_groups[$cur_group['g_id']]);
|
|
}
|
|
|
|
// Fetch forum list and clean up their moderator list
|
|
$result = $db->query('SELECT id, moderators FROM '.$db->prefix.'forums') or error('Unable to fetch forum list', __FILE__, __LINE__, $db->error());
|
|
while ($cur_forum = $db->fetch_assoc($result))
|
|
{
|
|
$cur_moderators = $cur_forum['moderators'] != '' ? unserialize($cur_forum['moderators']) : array();
|
|
|
|
foreach ($user_groups as $group_users)
|
|
$cur_moderators = array_diff($cur_moderators, $group_users);
|
|
|
|
$cur_moderators = !empty($cur_moderators) ? '\''.$db->escape(serialize($cur_moderators)).'\'' : 'NULL';
|
|
$db->query('UPDATE '.$db->prefix.'forums SET moderators='.$cur_moderators.' WHERE id='.$cur_forum['id']) or error('Unable to update forum', __FILE__, __LINE__, $db->error());
|
|
}
|
|
|
|
// Delete any subscriptions
|
|
$db->query('DELETE FROM '.$db->prefix.'topic_subscriptions WHERE user_id IN ('.implode(',', $user_ids).')') or error('Unable to delete topic subscriptions', __FILE__, __LINE__, $db->error());
|
|
$db->query('DELETE FROM '.$db->prefix.'forum_subscriptions WHERE user_id IN ('.implode(',', $user_ids).')') or error('Unable to delete forum subscriptions', __FILE__, __LINE__, $db->error());
|
|
|
|
// Remove them from the online list (if they happen to be logged in)
|
|
$db->query('DELETE FROM '.$db->prefix.'online WHERE user_id IN ('.implode(',', $user_ids).')') or error('Unable to remove users from online list', __FILE__, __LINE__, $db->error());
|
|
|
|
// Should we delete all posts made by these users?
|
|
if (isset($_POST['delete_posts']))
|
|
{
|
|
require PUN_ROOT.'include/search_idx.php';
|
|
@set_time_limit(0);
|
|
|
|
// Find all posts made by this user
|
|
$result = $db->query('SELECT p.id, p.topic_id, t.forum_id FROM '.$db->prefix.'posts AS p INNER JOIN '.$db->prefix.'topics AS t ON t.id=p.topic_id INNER JOIN '.$db->prefix.'forums AS f ON f.id=t.forum_id WHERE p.poster_id IN ('.implode(',', $user_ids).')') or error('Unable to fetch posts', __FILE__, __LINE__, $db->error());
|
|
|
|
while ($cur_post = $db->fetch_assoc($result))
|
|
{
|
|
// Determine whether this post is the "topic post" or not
|
|
$result2 = $db->query('SELECT id FROM '.$db->prefix.'posts WHERE topic_id='.$cur_post['topic_id'].' ORDER BY posted LIMIT 1') or error('Unable to fetch post info', __FILE__, __LINE__, $db->error());
|
|
|
|
if ($db->result($result2) == $cur_post['id'])
|
|
delete_topic($cur_post['topic_id']);
|
|
else
|
|
delete_post($cur_post['id'], $cur_post['topic_id']);
|
|
|
|
update_forum($cur_post['forum_id']);
|
|
}
|
|
}
|
|
else
|
|
// Set all their posts to guest
|
|
$db->query('UPDATE '.$db->prefix.'posts SET poster_id=1 WHERE poster_id IN ('.implode(',', $user_ids).')') or error('Unable to update posts', __FILE__, __LINE__, $db->error());
|
|
|
|
// Delete the users
|
|
$db->query('DELETE FROM '.$db->prefix.'users WHERE id IN ('.implode(',', $user_ids).')') or error('Unable to delete users', __FILE__, __LINE__, $db->error());
|
|
|
|
// Delete user avatars
|
|
foreach ($user_ids as $user_id)
|
|
delete_avatar($user_id);
|
|
|
|
// Regenerate the users info cache
|
|
if (!defined('FORUM_CACHE_FUNCTIONS_LOADED'))
|
|
require PUN_ROOT.'include/cache.php';
|
|
|
|
generate_users_info_cache();
|
|
|
|
// New PMS - Visman
|
|
require PUN_ROOT.'include/pms_new/common_pmsn.php';
|
|
|
|
foreach ($user_ids as $user_id)
|
|
pmsn_user_delete($user_id, 2);
|
|
// New PMS - Visman
|
|
|
|
redirect('admin_users.php', $lang_admin_users['Users delete redirect']);
|
|
}
|
|
|
|
$page_title = array(pun_htmlspecialchars($pun_config['o_board_title']), $lang_admin_common['Admin'], $lang_admin_common['Users'], $lang_admin_users['Delete users']);
|
|
define('PUN_ACTIVE_PAGE', 'admin');
|
|
require PUN_ROOT.'header.php';
|
|
|
|
generate_admin_menu('users');
|
|
|
|
?>
|
|
<div class="blockform">
|
|
<h2><span><?php echo $lang_admin_users['Delete users'] ?></span></h2>
|
|
<div class="box">
|
|
<form method="post" action="admin_users.php">
|
|
<div class="inform">
|
|
<input type="hidden" name="users" value="<?php echo implode(',', $user_ids) ?>" />
|
|
<input type="hidden" name="csrf_hash" value="<?php echo csrf_hash() ?>" />
|
|
<fieldset>
|
|
<legend><?php echo $lang_admin_users['Confirm delete legend'] ?></legend>
|
|
<div class="infldset">
|
|
<p><?php echo $lang_admin_users['Confirm delete info'] ?></p>
|
|
<div class="rbox">
|
|
<label><input type="checkbox" name="delete_posts" value="1" checked="checked" /><?php echo $lang_admin_users['Delete posts'] ?><br /></label>
|
|
</div>
|
|
<p class="warntext"><strong><?php echo $lang_admin_users['Delete warning'] ?></strong></p>
|
|
</div>
|
|
</fieldset>
|
|
</div>
|
|
<p class="buttons"><input type="submit" name="delete_users_comply" value="<?php echo $lang_admin_users['Delete'] ?>" /> <a href="javascript:history.go(-1)"><?php echo $lang_admin_common['Go back'] ?></a></p>
|
|
</form>
|
|
</div>
|
|
</div>
|
|
<div class="clearer"></div>
|
|
</div>
|
|
<?php
|
|
|
|
require PUN_ROOT.'footer.php';
|
|
}
|
|
|
|
|
|
// Ban multiple users
|
|
else if (isset($_POST['ban_users']) || isset($_POST['ban_users_comply']))
|
|
{
|
|
if ($pun_user['g_id'] != PUN_ADMIN && ($pun_user['g_moderator'] != '1' || $pun_user['g_mod_ban_users'] == '0'))
|
|
message($lang_common['No permission'], false, '403 Forbidden');
|
|
|
|
confirm_referrer('admin_users.php');
|
|
|
|
if (isset($_POST['users']))
|
|
{
|
|
$user_ids = is_array($_POST['users']) ? array_keys($_POST['users']) : explode(',', $_POST['users']);
|
|
$user_ids = array_map('intval', $user_ids);
|
|
|
|
// Delete invalid IDs
|
|
$user_ids = array_diff($user_ids, array(0, 1));
|
|
}
|
|
else
|
|
$user_ids = array();
|
|
|
|
if (empty($user_ids))
|
|
message($lang_admin_users['No users selected']);
|
|
|
|
// Are we trying to ban any admins?
|
|
$result = $db->query('SELECT COUNT(*) FROM '.$db->prefix.'users WHERE id IN ('.implode(',', $user_ids).') AND group_id='.PUN_ADMIN) or error('Unable to fetch group info', __FILE__, __LINE__, $db->error());
|
|
if ($db->result($result) > 0)
|
|
message($lang_admin_users['No ban admins message']);
|
|
|
|
// Also, we cannot ban moderators
|
|
$result = $db->query('SELECT COUNT(*) FROM '.$db->prefix.'users AS u INNER JOIN '.$db->prefix.'groups AS g ON u.group_id=g.g_id WHERE g.g_moderator=1 AND u.id IN ('.implode(',', $user_ids).')') or error('Unable to fetch moderator group info', __FILE__, __LINE__, $db->error());
|
|
if ($db->result($result) > 0)
|
|
message($lang_admin_users['No ban mods message']);
|
|
|
|
if (isset($_POST['ban_users_comply']))
|
|
{
|
|
$ban_message = pun_trim($_POST['ban_message'] ?? '');
|
|
$ban_expire = pun_trim($_POST['ban_expire'] ?? '');
|
|
$ban_the_ip = isset($_POST['ban_the_ip']) ? intval($_POST['ban_the_ip']) : 0;
|
|
|
|
if ($ban_expire != '' && $ban_expire != 'Never')
|
|
{
|
|
$ban_expire = strtotime($ban_expire.' GMT');
|
|
|
|
if ($ban_expire == -1 || !$ban_expire)
|
|
message($lang_admin_users['Invalid date message'].' '.$lang_admin_users['Invalid date reasons']);
|
|
|
|
$diff = ($pun_user['timezone'] + $pun_user['dst']) * 3600;
|
|
$ban_expire -= $diff;
|
|
|
|
if ($ban_expire <= time())
|
|
message($lang_admin_users['Invalid date message'].' '.$lang_admin_users['Invalid date reasons']);
|
|
}
|
|
else
|
|
$ban_expire = 'NULL';
|
|
|
|
$ban_message = $ban_message != '' ? '\''.$db->escape($ban_message).'\'' : 'NULL';
|
|
|
|
// Fetch user information
|
|
$user_info = array();
|
|
$result = $db->query('SELECT id, username, email, registration_ip FROM '.$db->prefix.'users WHERE id IN ('.implode(',', $user_ids).')') or error('Unable to fetch user info', __FILE__, __LINE__, $db->error());
|
|
while ($cur_user = $db->fetch_assoc($result))
|
|
$user_info[$cur_user['id']] = array('username' => $cur_user['username'], 'email' => $cur_user['email'], 'ip' => $cur_user['registration_ip']);
|
|
|
|
// Overwrite the registration IP with one from the last post (if it exists)
|
|
if ($ban_the_ip != 0)
|
|
{
|
|
$result = $db->query('SELECT p.poster_id, p.poster_ip FROM '.$db->prefix.'posts AS p INNER JOIN (SELECT MAX(id) AS id FROM '.$db->prefix.'posts WHERE poster_id IN ('.implode(',', $user_ids).') GROUP BY poster_id) AS i ON p.id=i.id') or error('Unable to fetch post info', __FILE__, __LINE__, $db->error());
|
|
while ($cur_address = $db->fetch_assoc($result))
|
|
$user_info[$cur_address['poster_id']]['ip'] = $cur_address['poster_ip'];
|
|
}
|
|
|
|
// And insert the bans!
|
|
foreach ($user_ids as $user_id)
|
|
{
|
|
$ban_username = '\''.$db->escape($user_info[$user_id]['username']).'\'';
|
|
$ban_email = '\''.$db->escape($user_info[$user_id]['email']).'\'';
|
|
$ban_ip = $ban_the_ip != 0 ? '\''.$db->escape($user_info[$user_id]['ip']).'\'' : 'NULL';
|
|
|
|
$db->query('INSERT INTO '.$db->prefix.'bans (username, ip, email, message, expire, ban_creator) VALUES ('.$ban_username.', '.$ban_ip.', '.$ban_email.', '.$ban_message.', '.$ban_expire.', '.$pun_user['id'].')') or error('Unable to add ban', __FILE__, __LINE__, $db->error());
|
|
}
|
|
|
|
// Regenerate the bans cache
|
|
if (!defined('FORUM_CACHE_FUNCTIONS_LOADED'))
|
|
require PUN_ROOT.'include/cache.php';
|
|
|
|
generate_bans_cache();
|
|
|
|
redirect('admin_users.php', $lang_admin_users['Users banned redirect']);
|
|
}
|
|
|
|
$page_title = array(pun_htmlspecialchars($pun_config['o_board_title']), $lang_admin_common['Admin'], $lang_admin_common['Bans']);
|
|
$focus_element = array('bans2', 'ban_message');
|
|
define('PUN_ACTIVE_PAGE', 'admin');
|
|
require PUN_ROOT.'header.php';
|
|
|
|
generate_admin_menu('users');
|
|
|
|
?>
|
|
<div class="blockform">
|
|
<h2><span><?php echo $lang_admin_users['Ban users'] ?></span></h2>
|
|
<div class="box">
|
|
<form id="bans2" method="post" action="admin_users.php">
|
|
<div class="inform">
|
|
<input type="hidden" name="users" value="<?php echo implode(',', $user_ids) ?>" />
|
|
<input type="hidden" name="csrf_hash" value="<?php echo csrf_hash() ?>" />
|
|
<fieldset>
|
|
<legend><?php echo $lang_admin_users['Message expiry subhead'] ?></legend>
|
|
<div class="infldset">
|
|
<table class="aligntop">
|
|
<tr>
|
|
<th scope="row"><?php echo $lang_admin_users['Ban message label'] ?></th>
|
|
<td>
|
|
<input type="text" name="ban_message" size="50" maxlength="255" tabindex="1" />
|
|
<span><?php echo $lang_admin_users['Ban message help'] ?></span>
|
|
</td>
|
|
</tr>
|
|
<tr>
|
|
<th scope="row"><?php echo $lang_admin_users['Expire date label'] ?></th>
|
|
<td>
|
|
<input type="text" name="ban_expire" size="17" maxlength="10" tabindex="2" />
|
|
<span><?php echo $lang_admin_users['Expire date help'] ?></span>
|
|
</td>
|
|
</tr>
|
|
<tr>
|
|
<th scope="row"><?php echo $lang_admin_users['Ban IP label'] ?></th>
|
|
<td>
|
|
<label class="conl"><input type="radio" name="ban_the_ip" tabindex="3" value="1" checked="checked" /> <strong><?php echo $lang_admin_common['Yes'] ?></strong></label>
|
|
<label class="conl"><input type="radio" name="ban_the_ip" tabindex="4" value="0" checked="checked" /> <strong><?php echo $lang_admin_common['No'] ?></strong></label>
|
|
<span class="clearb"><?php echo $lang_admin_users['Ban IP help'] ?></span>
|
|
</td>
|
|
</tr>
|
|
</table>
|
|
</div>
|
|
</fieldset>
|
|
</div>
|
|
<p class="submitend"><input type="submit" name="ban_users_comply" value="<?php echo $lang_admin_common['Save'] ?>" tabindex="3" /></p>
|
|
</form>
|
|
</div>
|
|
</div>
|
|
<div class="clearer"></div>
|
|
</div>
|
|
<?php
|
|
|
|
require PUN_ROOT.'footer.php';
|
|
}
|
|
|
|
|
|
else if (isset($_GET['find_user']))
|
|
{
|
|
$form = is_array($_GET['form'] ?? null) ? $_GET['form'] : array();
|
|
|
|
// trim() all elements in $form
|
|
$form = array_map('pun_trim', $form);
|
|
$conditions = $query_str = array();
|
|
|
|
$posts_greater = isset($_GET['posts_greater']) ? pun_trim($_GET['posts_greater']) : '';
|
|
$posts_less = isset($_GET['posts_less']) ? pun_trim($_GET['posts_less']) : '';
|
|
$last_post_after = isset($_GET['last_post_after']) ? pun_trim($_GET['last_post_after']) : '';
|
|
$last_post_before = isset($_GET['last_post_before']) ? pun_trim($_GET['last_post_before']) : '';
|
|
$last_visit_after = isset($_GET['last_visit_after']) ? pun_trim($_GET['last_visit_after']) : '';
|
|
$last_visit_before = isset($_GET['last_visit_before']) ? pun_trim($_GET['last_visit_before']) : '';
|
|
$registered_after = isset($_GET['registered_after']) ? pun_trim($_GET['registered_after']) : '';
|
|
$registered_before = isset($_GET['registered_before']) ? pun_trim($_GET['registered_before']) : '';
|
|
$order_by = isset($_GET['order_by']) && in_array($_GET['order_by'], array('username', 'email', 'num_posts', 'last_post', 'last_visit', 'registered')) ? $_GET['order_by'] : 'username';
|
|
$direction = isset($_GET['direction']) && $_GET['direction'] == 'DESC' ? 'DESC' : 'ASC';
|
|
$user_group = isset($_GET['user_group']) ? intval($_GET['user_group']) : -1;
|
|
|
|
$query_str[] = 'order_by='.$order_by;
|
|
$query_str[] = 'direction='.$direction;
|
|
$query_str[] = 'user_group='.$user_group;
|
|
|
|
if (preg_match('%[^0-9]%', $posts_greater.$posts_less))
|
|
message($lang_admin_users['Non numeric message']);
|
|
|
|
// Try to convert date/time to timestamps
|
|
if ($last_post_after != '')
|
|
{
|
|
$query_str[] = 'last_post_after='.$last_post_after;
|
|
|
|
$last_post_after = strtotime($last_post_after);
|
|
if ($last_post_after === false || $last_post_after == -1)
|
|
message($lang_admin_users['Invalid date time message']);
|
|
|
|
$conditions[] = 'u.last_post>'.$last_post_after;
|
|
}
|
|
if ($last_post_before != '')
|
|
{
|
|
$query_str[] = 'last_post_before='.$last_post_before;
|
|
|
|
$last_post_before = strtotime($last_post_before);
|
|
if ($last_post_before === false || $last_post_before == -1)
|
|
message($lang_admin_users['Invalid date time message']);
|
|
|
|
$conditions[] = 'u.last_post<'.$last_post_before;
|
|
}
|
|
if ($last_visit_after != '')
|
|
{
|
|
$query_str[] = 'last_visit_after='.$last_visit_after;
|
|
|
|
$last_visit_after = strtotime($last_visit_after);
|
|
if ($last_visit_after === false || $last_visit_after == -1)
|
|
message($lang_admin_users['Invalid date time message']);
|
|
|
|
$conditions[] = 'u.last_visit>'.$last_visit_after;
|
|
}
|
|
if ($last_visit_before != '')
|
|
{
|
|
$query_str[] = 'last_visit_before='.$last_visit_before;
|
|
|
|
$last_visit_before = strtotime($last_visit_before);
|
|
if ($last_visit_before === false || $last_visit_before == -1)
|
|
message($lang_admin_users['Invalid date time message']);
|
|
|
|
$conditions[] = 'u.last_visit<'.$last_visit_before;
|
|
}
|
|
if ($registered_after != '')
|
|
{
|
|
$query_str[] = 'registered_after='.$registered_after;
|
|
|
|
$registered_after = strtotime($registered_after);
|
|
if ($registered_after === false || $registered_after == -1)
|
|
message($lang_admin_users['Invalid date time message']);
|
|
|
|
$conditions[] = 'u.registered>'.$registered_after;
|
|
}
|
|
if ($registered_before != '')
|
|
{
|
|
$query_str[] = 'registered_before='.$registered_before;
|
|
|
|
$registered_before = strtotime($registered_before);
|
|
if ($registered_before === false || $registered_before == -1)
|
|
message($lang_admin_users['Invalid date time message']);
|
|
|
|
$conditions[] = 'u.registered<'.$registered_before;
|
|
}
|
|
|
|
$like_command = $db_type == 'pgsql' ? 'ILIKE' : 'LIKE';
|
|
foreach ($form as $key => $input)
|
|
{
|
|
if ($input != '' && in_array($key, array('username', 'email', 'title', 'realname', 'gender', 'url', 'jabber', 'icq', 'location', 'signature', 'admin_note'))) // мод пола - Visman
|
|
{
|
|
$conditions[] = 'u.'.$db->escape($key).' '.$like_command.' \''.$db->escape(str_replace(array('*', '_'), array('%', '\\_'), $input)).'\'';
|
|
$query_str[] = 'form%5B'.$key.'%5D='.urlencode($input);
|
|
}
|
|
}
|
|
|
|
if ($posts_greater != '')
|
|
{
|
|
$query_str[] = 'posts_greater='.$posts_greater;
|
|
$conditions[] = 'u.num_posts>'.$posts_greater;
|
|
}
|
|
if ($posts_less != '')
|
|
{
|
|
$query_str[] = 'posts_less='.$posts_less;
|
|
$conditions[] = 'u.num_posts<'.$posts_less;
|
|
}
|
|
|
|
if ($user_group > -1)
|
|
$conditions[] = 'u.group_id='.$user_group;
|
|
|
|
// Fetch user count
|
|
$result = $db->query('SELECT COUNT(id) FROM '.$db->prefix.'users AS u LEFT JOIN '.$db->prefix.'groups AS g ON g.g_id=u.group_id WHERE u.id>1'.(!empty($conditions) ? ' AND '.implode(' AND ', $conditions) : '')) or error('Unable to fetch user info', __FILE__, __LINE__, $db->error());
|
|
$num_users = $db->result($result);
|
|
|
|
// Determine the user offset (based on $_GET['p'])
|
|
$num_pages = ceil($num_users / 50);
|
|
|
|
$p = ! is_numeric($_GET['p'] ?? null) || $_GET['p'] <= 1 || $_GET['p'] > $num_pages ? 1 : intval($_GET['p']);
|
|
$start_from = 50 * ($p - 1);
|
|
|
|
// Generate paging links
|
|
$paging_links = '<span class="pages-label">'.$lang_common['Pages'].' </span>'.paginate($num_pages, $p, 'admin_users.php?find_user=&'.implode('&', $query_str));
|
|
|
|
// Some helper variables for permissions
|
|
$can_delete = $can_move = $pun_user['g_id'] == PUN_ADMIN;
|
|
$can_ban = $pun_user['g_id'] == PUN_ADMIN || ($pun_user['g_moderator'] == '1' && $pun_user['g_mod_ban_users'] == '1');
|
|
$can_action = ($can_delete || $can_ban || $can_move) && $num_users > 0;
|
|
|
|
$page_title = array(pun_htmlspecialchars($pun_config['o_board_title']), $lang_admin_common['Admin'], $lang_admin_common['Users'], $lang_admin_users['Results head']);
|
|
$page_js['f']['js'] = 'js/common.js';
|
|
define('PUN_ACTIVE_PAGE', 'admin');
|
|
require PUN_ROOT.'header.php';
|
|
|
|
?>
|
|
<div class="linkst">
|
|
<div class="inbox crumbsplus">
|
|
<ul class="crumbs">
|
|
<li><a href="admin_index.php"><?php echo $lang_admin_common['Admin'].' '.$lang_admin_common['Index'] ?></a></li>
|
|
<li><span>» </span><a href="admin_users.php"><?php echo $lang_admin_common['Users'] ?></a></li>
|
|
<li><span>» </span><strong><?php echo $lang_admin_users['Results head'] ?></strong></li>
|
|
</ul>
|
|
<div class="pagepost">
|
|
<p class="pagelink"><?php echo $paging_links ?></p>
|
|
</div>
|
|
<div class="clearer"></div>
|
|
</div>
|
|
</div>
|
|
|
|
|
|
<form id="search-users-form" action="admin_users.php" method="post">
|
|
<div id="users2" class="blocktable">
|
|
<h2><span><?php echo $lang_admin_users['Results head'] ?></span></h2>
|
|
<div class="box">
|
|
<input type="hidden" name="csrf_hash" value="<?php echo csrf_hash() ?>" />
|
|
<div class="inbox">
|
|
<table>
|
|
<thead>
|
|
<tr>
|
|
<th class="tcl" scope="col"><?php echo $lang_admin_users['Results username head'] ?></th>
|
|
<th class="tc2" scope="col"><?php echo $lang_admin_users['Results e-mail head'] ?></th>
|
|
<th class="tc3" scope="col"><?php echo $lang_admin_users['Results title head'] ?></th>
|
|
<th class="tc4" scope="col"><?php echo $lang_admin_users['Results posts head'] ?></th>
|
|
<th class="tc5" scope="col"><?php echo $lang_admin_users['Results admin note head'] ?></th>
|
|
<th class="tcr" scope="col"><?php echo $lang_admin_users['Results actions head'] ?></th>
|
|
<?php if ($can_action): ?> <th class="tcmod" scope="col"><?php echo $lang_admin_users['Select'] ?></th>
|
|
<?php endif; ?>
|
|
</tr>
|
|
</thead>
|
|
<tbody>
|
|
<?php
|
|
|
|
$result = $db->query('SELECT u.id, u.username, u.email, u.title, u.num_posts, u.admin_note, g.g_id, g.g_user_title FROM '.$db->prefix.'users AS u LEFT JOIN '.$db->prefix.'groups AS g ON g.g_id=u.group_id WHERE u.id>1'.(!empty($conditions) ? ' AND '.implode(' AND ', $conditions) : '').' ORDER BY '.$db->escape($order_by).' '.$db->escape($direction).' LIMIT '.$start_from.', 50') or error('Unable to fetch user info', __FILE__, __LINE__, $db->error());
|
|
$user_data = $db->fetch_assoc($result);
|
|
|
|
if (is_array($user_data))
|
|
{
|
|
do
|
|
{
|
|
$user_title = get_title($user_data);
|
|
|
|
// This script is a special case in that we want to display "Not verified" for non-verified users
|
|
if (($user_data['g_id'] == '' || $user_data['g_id'] == PUN_UNVERIFIED) && $user_title != $lang_common['Banned'])
|
|
$user_title = '<span class="warntext">'.$lang_admin_users['Not verified'].'</span>';
|
|
|
|
$actions = $pun_user['g_id'] == PUN_ADMIN ? '<a href="admin_users.php?ip_stats='.$user_data['id'].'">'.$lang_admin_users['Results view IP link'].'</a>' : ' ';
|
|
|
|
?>
|
|
<tr>
|
|
<td class="tcl"><?php echo '<a href="profile.php?id='.$user_data['id'].'">'.pun_htmlspecialchars($user_data['username']).'</a>' ?></td>
|
|
<td class="tc2"><a href="mailto:<?php echo pun_htmlspecialchars($user_data['email']) ?>"><?php echo pun_htmlspecialchars($user_data['email']) ?></a></td>
|
|
<td class="tc3"><?php echo $user_title ?></td>
|
|
<td class="tc4"><a href="search.php?action=show_user_posts&user_id=<?php echo $user_data['id'] ?>"><?php echo forum_number_format($user_data['num_posts']) ?></a></td>
|
|
<td class="tc5"><?php echo ($user_data['admin_note'] != '') ? pun_htmlspecialchars($user_data['admin_note']) : ' ' ?></td>
|
|
<td class="tcr"><?php echo $actions ?></td>
|
|
<?php if ($can_action): ?> <td class="tcmod"><input type="checkbox" name="users[<?php echo $user_data['id'] ?>]" value="1" /></td>
|
|
<?php endif; ?>
|
|
</tr>
|
|
<?php
|
|
|
|
}
|
|
while ($user_data = $db->fetch_assoc($result));
|
|
}
|
|
else
|
|
echo "\t\t\t\t".'<tr><td class="tcl" colspan="6">'.$lang_admin_users['No match'].'</td></tr>'."\n";
|
|
|
|
?>
|
|
</tbody>
|
|
</table>
|
|
</div>
|
|
</div>
|
|
</div>
|
|
|
|
<div class="linksb">
|
|
<div class="inbox crumbsplus">
|
|
<div class="pagepost">
|
|
<p class="pagelink"><?php echo $paging_links ?></p>
|
|
<?php if ($can_action): ?> <p class="conr modbuttons"><a href="#" onclick="return select_checkboxes('search-users-form', this, '<?php echo $lang_admin_users['Unselect all'] ?>')"><?php echo $lang_admin_users['Select all'] ?></a> <?php if ($can_ban) : ?><input type="submit" name="ban_users" value="<?php echo $lang_admin_users['Ban'] ?>" /><?php endif; if ($can_delete) : ?><input type="submit" name="delete_users" value="<?php echo $lang_admin_users['Delete'] ?>" /><?php endif; if ($can_move) : ?><input type="submit" name="move_users" value="<?php echo $lang_admin_users['Change group'] ?>" /><?php endif; ?></p>
|
|
<?php endif; ?>
|
|
</div>
|
|
<ul class="crumbs">
|
|
<li><a href="admin_index.php"><?php echo $lang_admin_common['Admin'].' '.$lang_admin_common['Index'] ?></a></li>
|
|
<li><span>» </span><a href="admin_users.php"><?php echo $lang_admin_common['Users'] ?></a></li>
|
|
<li><span>» </span><strong><?php echo $lang_admin_users['Results head'] ?></strong></li>
|
|
</ul>
|
|
<div class="clearer"></div>
|
|
</div>
|
|
</div>
|
|
</form>
|
|
<?php
|
|
|
|
require PUN_ROOT.'footer.php';
|
|
}
|
|
|
|
|
|
else
|
|
{
|
|
$page_title = array(pun_htmlspecialchars($pun_config['o_board_title']), $lang_admin_common['Admin'], $lang_admin_common['Users']);
|
|
$focus_element = array('find_user', 'form[username]');
|
|
define('PUN_ACTIVE_PAGE', 'admin');
|
|
require PUN_ROOT.'header.php';
|
|
|
|
generate_admin_menu('users');
|
|
|
|
?>
|
|
<div class="blockform">
|
|
<h2><span><?php echo $lang_admin_users['User search head'] ?></span></h2>
|
|
<div class="box">
|
|
<form id="find_user" method="get" action="admin_users.php">
|
|
<p class="submittop"><input type="submit" name="find_user" value="<?php echo $lang_admin_users['Submit search'] ?>" tabindex="1" /></p>
|
|
<div class="inform">
|
|
<fieldset>
|
|
<legend><?php echo $lang_admin_users['User search subhead'] ?></legend>
|
|
<div class="infldset">
|
|
<p><?php echo $lang_admin_users['User search info'] ?></p>
|
|
<table class="aligntop">
|
|
<tr>
|
|
<th scope="row"><?php echo $lang_admin_users['Username label'] ?></th>
|
|
<td><input type="text" name="form[username]" size="25" maxlength="25" tabindex="2" /></td>
|
|
</tr>
|
|
<tr>
|
|
<th scope="row"><?php echo $lang_admin_users['E-mail address label'] ?></th>
|
|
<td><input type="text" name="form[email]" size="30" maxlength="80" tabindex="3" /></td>
|
|
</tr>
|
|
<tr>
|
|
<th scope="row"><?php echo $lang_admin_users['Title label'] ?></th>
|
|
<td><input type="text" name="form[title]" size="30" maxlength="50" tabindex="4" /></td>
|
|
</tr>
|
|
<tr>
|
|
<th scope="row"><?php echo $lang_admin_users['Real name label'] ?></th>
|
|
<td><input type="text" name="form[realname]" size="30" maxlength="40" tabindex="5" /></td>
|
|
</tr>
|
|
<tr>
|
|
<th scope="row"><?php echo $lang_genders_integration['Gender'] ?></th>
|
|
<td>
|
|
<label class="conl"><input type="radio" name="form[gender]" value="1" /><?php echo $lang_genders_integration['Male'] ?></label>
|
|
<label class="conl"><input type="radio" name="form[gender]" value="2" /><?php echo $lang_genders_integration['Female'] ?></label>
|
|
<label class="conl"><input type="radio" name="form[gender]" value="0" /><?php echo $lang_genders_integration['Unknown'] ?></label>
|
|
</td>
|
|
</tr>
|
|
<tr>
|
|
<th scope="row"><?php echo $lang_admin_users['Website label'] ?></th>
|
|
<td><input type="text" name="form[url]" size="35" maxlength="100" tabindex="6" /></td>
|
|
</tr>
|
|
<tr>
|
|
<th scope="row"><?php echo $lang_admin_users['Jabber label'] ?></th>
|
|
<td><input type="text" name="form[jabber]" size="30" maxlength="75" tabindex="7" /></td>
|
|
</tr>
|
|
<tr>
|
|
<th scope="row"><?php echo $lang_admin_users['ICQ label'] ?></th>
|
|
<td><input type="text" name="form[icq]" size="12" maxlength="12" tabindex="8" /></td>
|
|
</tr>
|
|
<tr>
|
|
<th scope="row"><?php echo $lang_admin_users['Location label'] ?></th>
|
|
<td><input type="text" name="form[location]" size="30" maxlength="30" tabindex="12" /></td>
|
|
</tr>
|
|
<tr>
|
|
<th scope="row"><?php echo $lang_admin_users['Signature label'] ?></th>
|
|
<td><input type="text" name="form[signature]" size="35" maxlength="512" tabindex="13" /></td>
|
|
</tr>
|
|
<tr>
|
|
<th scope="row"><?php echo $lang_admin_users['Admin note label'] ?></th>
|
|
<td><input type="text" name="form[admin_note]" size="30" maxlength="30" tabindex="14" /></td>
|
|
</tr>
|
|
<tr>
|
|
<th scope="row"><?php echo $lang_admin_users['Posts more than label'] ?></th>
|
|
<td><input type="text" name="posts_greater" size="5" maxlength="8" tabindex="15" /></td>
|
|
</tr>
|
|
<tr>
|
|
<th scope="row"><?php echo $lang_admin_users['Posts less than label'] ?></th>
|
|
<td><input type="text" name="posts_less" size="5" maxlength="8" tabindex="16" /></td>
|
|
</tr>
|
|
<tr>
|
|
<th scope="row"><?php echo $lang_admin_users['Last post after label'] ?></th>
|
|
<td><input type="text" name="last_post_after" size="24" maxlength="19" tabindex="17" />
|
|
<span><?php echo $lang_admin_users['Date help'] ?></span></td>
|
|
</tr>
|
|
<tr>
|
|
<th scope="row"><?php echo $lang_admin_users['Last post before label'] ?></th>
|
|
<td><input type="text" name="last_post_before" size="24" maxlength="19" tabindex="18" />
|
|
<span><?php echo $lang_admin_users['Date help'] ?></span></td>
|
|
</tr>
|
|
<tr>
|
|
<th scope="row"><?php echo $lang_admin_users['Last visit after label'] ?></th>
|
|
<td><input type="text" name="last_visit_after" size="24" maxlength="19" tabindex="17" />
|
|
<span><?php echo $lang_admin_users['Date help'] ?></span></td>
|
|
</tr>
|
|
<tr>
|
|
<th scope="row"><?php echo $lang_admin_users['Last visit before label'] ?></th>
|
|
<td><input type="text" name="last_visit_before" size="24" maxlength="19" tabindex="18" />
|
|
<span><?php echo $lang_admin_users['Date help'] ?></span></td>
|
|
</tr>
|
|
<tr>
|
|
<th scope="row"><?php echo $lang_admin_users['Registered after label'] ?></th>
|
|
<td><input type="text" name="registered_after" size="24" maxlength="19" tabindex="19" />
|
|
<span><?php echo $lang_admin_users['Date help'] ?></span></td>
|
|
</tr>
|
|
<tr>
|
|
<th scope="row"><?php echo $lang_admin_users['Registered before label'] ?></th>
|
|
<td><input type="text" name="registered_before" size="24" maxlength="19" tabindex="20" />
|
|
<span><?php echo $lang_admin_users['Date help'] ?></span></td>
|
|
</tr>
|
|
<tr>
|
|
<th scope="row"><?php echo $lang_admin_users['Order by label'] ?></th>
|
|
<td>
|
|
<select name="order_by" tabindex="21">
|
|
<option value="username" selected="selected"><?php echo $lang_admin_users['Order by username'] ?></option>
|
|
<option value="email"><?php echo $lang_admin_users['Order by e-mail'] ?></option>
|
|
<option value="num_posts"><?php echo $lang_admin_users['Order by posts'] ?></option>
|
|
<option value="last_post"><?php echo $lang_admin_users['Order by last post'] ?></option>
|
|
<option value="last_visit"><?php echo $lang_admin_users['Order by last visit'] ?></option>
|
|
<option value="registered"><?php echo $lang_admin_users['Order by registered'] ?></option>
|
|
</select>   <select name="direction" tabindex="22">
|
|
<option value="ASC" selected="selected"><?php echo $lang_admin_users['Ascending'] ?></option>
|
|
<option value="DESC"><?php echo $lang_admin_users['Descending'] ?></option>
|
|
</select>
|
|
</td>
|
|
</tr>
|
|
<tr>
|
|
<th scope="row"><?php echo $lang_admin_users['User group label'] ?></th>
|
|
<td>
|
|
<select name="user_group" tabindex="23">
|
|
<option value="-1" selected="selected"><?php echo $lang_admin_users['All groups'] ?></option>
|
|
<option value="0"><?php echo $lang_admin_users['Unverified users'] ?></option>
|
|
<?php
|
|
|
|
$result = $db->query('SELECT g_id, g_title FROM '.$db->prefix.'groups WHERE g_id!='.PUN_GUEST.' ORDER BY g_title') or error('Unable to fetch user group list', __FILE__, __LINE__, $db->error());
|
|
|
|
while ($cur_group = $db->fetch_assoc($result))
|
|
echo "\t\t\t\t\t\t\t\t\t\t\t".'<option value="'.$cur_group['g_id'].'">'.pun_htmlspecialchars($cur_group['g_title']).'</option>'."\n";
|
|
|
|
?>
|
|
</select>
|
|
</td>
|
|
</tr>
|
|
</table>
|
|
</div>
|
|
</fieldset>
|
|
</div>
|
|
<p class="submitend"><input type="submit" name="find_user" value="<?php echo $lang_admin_users['Submit search'] ?>" tabindex="25" /></p>
|
|
</form>
|
|
</div>
|
|
<?php if ($pun_user['g_id'] == PUN_ADMIN): ?>
|
|
<h2 class="block2"><span><?php echo $lang_admin_users['IP search head'] ?></span></h2>
|
|
<div class="box">
|
|
<form method="get" action="admin_users.php">
|
|
<div class="inform">
|
|
<fieldset>
|
|
<legend><?php echo $lang_admin_users['IP search subhead'] ?></legend>
|
|
<div class="infldset">
|
|
<table class="aligntop">
|
|
<tr>
|
|
<th scope="row"><?php echo $lang_admin_users['IP address label'] ?><div><input type="submit" value="<?php echo $lang_admin_users['Find IP address'] ?>" tabindex="26" /></div></th>
|
|
<td><input type="text" name="show_users" size="18" maxlength="15" tabindex="24" />
|
|
<span><?php echo $lang_admin_users['IP address help'] ?></span></td>
|
|
</tr>
|
|
</table>
|
|
</div>
|
|
</fieldset>
|
|
</div>
|
|
</form>
|
|
</div>
|
|
<?php endif; ?>
|
|
</div>
|
|
<div class="clearer"></div>
|
|
</div>
|
|
<?php
|
|
|
|
require PUN_ROOT.'footer.php';
|
|
}
|