diff options
author | Starla Insigna <hatkirby@fourisland.com> | 2009-01-05 18:01:06 -0500 |
---|---|---|
committer | Starla Insigna <hatkirby@fourisland.com> | 2009-01-05 18:01:06 -0500 |
commit | 38f73720eaec5f49752589ac088b04b3fa734117 (patch) | |
tree | b1d809406de7980925223cbcbdd974a2c074d13f /pages | |
parent | 646c11fb40bdd3e80e6b2ec168eaa05eae23e68e (diff) | |
download | fourisland-38f73720eaec5f49752589ac088b04b3fa734117.tar.gz fourisland-38f73720eaec5f49752589ac088b04b3fa734117.tar.bz2 fourisland-38f73720eaec5f49752589ac088b04b3fa734117.zip |
Integreated Fourm users
Diffstat (limited to 'pages')
-rwxr-xr-x | pages/admin.php | 18 | ||||
-rwxr-xr-x | pages/login.php | 46 | ||||
-rwxr-xr-x | pages/logout.php | 28 | ||||
-rwxr-xr-x | pages/post.php | 6 |
4 files changed, 12 insertions, 86 deletions
diff --git a/pages/admin.php b/pages/admin.php index a3b1783..60bc73d 100755 --- a/pages/admin.php +++ b/pages/admin.php | |||
@@ -26,7 +26,7 @@ $pageCategory = 'panel'; | |||
26 | 26 | ||
27 | if (isLoggedIn()) | 27 | if (isLoggedIn()) |
28 | { | 28 | { |
29 | if (getUserlevel() == 1) | 29 | if (isAdmin()) |
30 | { | 30 | { |
31 | if (!isset($_GET['page'])) | 31 | if (!isset($_GET['page'])) |
32 | { | 32 | { |
@@ -41,7 +41,7 @@ if (isLoggedIn()) | |||
41 | 41 | ||
42 | if ($_POST['type'] == 'draft') | 42 | if ($_POST['type'] == 'draft') |
43 | { | 43 | { |
44 | $insdraft = "INSERT INTO drafts (title,author,text,slug) VALUES (\"" . mysql_real_escape_string($_POST['title']) . "\",\"" . sess_get('uname') . "\",\"" . mysql_real_escape_string($_POST['text']) . "\",\"" . generateSlug($_POST['title'],'updates') . "\")"; | 44 | $insdraft = "INSERT INTO drafts (title,author,text,slug) VALUES (\"" . mysql_real_escape_string($_POST['title']) . "\",\"" . getSessionUsername() . "\",\"" . mysql_real_escape_string($_POST['text']) . "\",\"" . generateSlug($_POST['title'],'updates') . "\")"; |
45 | $insdraft2 = mysql_query($insdraft); | 45 | $insdraft2 = mysql_query($insdraft); |
46 | 46 | ||
47 | $id = mysql_insert_id(); | 47 | $id = mysql_insert_id(); |
@@ -51,7 +51,7 @@ if (isLoggedIn()) | |||
51 | $template->add('ID', $id); | 51 | $template->add('ID', $id); |
52 | } else if ($_POST['type'] == 'instant') | 52 | } else if ($_POST['type'] == 'instant') |
53 | { | 53 | { |
54 | $id = postBlogPost($_POST['title'], sess_get('uname'), $tags, $_POST['text']); | 54 | $id = postBlogPost($_POST['title'], getSessionUsername(), $tags, $_POST['text']); |
55 | 55 | ||
56 | $getpost = "SELECT * FROM updates WHERE id = " . $id; | 56 | $getpost = "SELECT * FROM updates WHERE id = " . $id; |
57 | $getpost2 = mysql_query($getpost); | 57 | $getpost2 = mysql_query($getpost); |
@@ -87,7 +87,7 @@ if (isLoggedIn()) | |||
87 | generateError(404); | 87 | generateError(404); |
88 | } | 88 | } |
89 | 89 | ||
90 | $inspending = "INSERT INTO pending (id,title,author,text,slug) VALUES (" . $id . ",\"" . mysql_real_escape_string($_POST['title']) . "\",\"" . sess_get('uname') . "\",\"" . mysql_real_escape_string($_POST['text']) . "\",\"" . generateSlug($_POST['title'],'updates') . "\")"; | 90 | $inspending = "INSERT INTO pending (id,title,author,text,slug) VALUES (" . $id . ",\"" . mysql_real_escape_string($_POST['title']) . "\",\"" . getSessionUsername() . "\",\"" . mysql_real_escape_string($_POST['text']) . "\",\"" . generateSlug($_POST['title'],'updates') . "\")"; |
91 | $inspending2 = mysql_query($inspending); | 91 | $inspending2 = mysql_query($inspending); |
92 | 92 | ||
93 | addTags($id, $tags, 'pending'); | 93 | addTags($id, $tags, 'pending'); |
@@ -140,7 +140,7 @@ if (isLoggedIn()) | |||
140 | $template->add('ID', $_GET['id']); | 140 | $template->add('ID', $_GET['id']); |
141 | } else if ($_POST['type'] == 'instant') | 141 | } else if ($_POST['type'] == 'instant') |
142 | { | 142 | { |
143 | $id = postBlogPost($_POST['title'], sess_get('uname'), $tags, $_POST['text']); | 143 | $id = postBlogPost($_POST['title'], getSessionUsername(), $tags, $_POST['text']); |
144 | 144 | ||
145 | $deldraft = "DELETE FROM drafts WHERE id = " . $_GET['id']; | 145 | $deldraft = "DELETE FROM drafts WHERE id = " . $_GET['id']; |
146 | $deldraft2 = mysql_query($deldraft); | 146 | $deldraft2 = mysql_query($deldraft); |
@@ -179,7 +179,7 @@ if (isLoggedIn()) | |||
179 | generateError(404); | 179 | generateError(404); |
180 | } | 180 | } |
181 | 181 | ||
182 | $inspending = "INSERT INTO pending (id,title,author,text,slug) VALUES (" . $id . ",\"" . mysql_real_escape_string($_POST['title']) . "\",\"" . sess_get('uname') . "\",\"" . mysql_real_escape_string($_POST['text']) . "\",\"" . generateSlug($_POST['title'],'updates') . "\")"; | 182 | $inspending = "INSERT INTO pending (id,title,author,text,slug) VALUES (" . $id . ",\"" . mysql_real_escape_string($_POST['title']) . "\",\"" . getSessionUsername() . "\",\"" . mysql_real_escape_string($_POST['text']) . "\",\"" . generateSlug($_POST['title'],'updates') . "\")"; |
183 | $inspending2 = mysql_query($inspending); | 183 | $inspending2 = mysql_query($inspending); |
184 | 184 | ||
185 | addTags($id, $tags, 'pending'); | 185 | addTags($id, $tags, 'pending'); |
@@ -539,14 +539,14 @@ if (isLoggedIn()) | |||
539 | 539 | ||
540 | if ($getcomment3['id'] == $_GET['id']) | 540 | if ($getcomment3['id'] == $_GET['id']) |
541 | { | 541 | { |
542 | $getuser = "SELECT * FROM users WHERE username = \"" . $getcomment3['author'] . "\""; | 542 | $getuser = "SELECT * FROM phpbb_users WHERE username = \"" . $getcomment3['author'] . "\""; |
543 | $getuser2 = mysql_query($getuser); | 543 | $getuser2 = mysql_query($getuser); |
544 | $getuser3 = mysql_fetch_array($getuser2); | 544 | $getuser3 = mysql_fetch_array($getuser2); |
545 | 545 | ||
546 | $template = new FITemplate('admin/viewComment'); | 546 | $template = new FITemplate('admin/viewComment'); |
547 | $template->add('ID', $_GET['id']); | 547 | $template->add('ID', $_GET['id']); |
548 | $template->add('USERNAME', $getcomment3['author']); | 548 | $template->add('USERNAME', $getcomment3['author']); |
549 | $template->add('CODEDEMAIL', md5(strtolower($getuser3['email']))); | 549 | $template->add('CODEDEMAIL', md5(strtolower($getuser3['user_email']))); |
550 | $template->add('TEXT', parseText($getcomment3['comment'])); | 550 | $template->add('TEXT', parseText($getcomment3['comment'])); |
551 | $template->add('DATE', date("F dS Y \a\\t g:i:s a",strtotime($getcomment3['pubDate']))); | 551 | $template->add('DATE', date("F dS Y \a\\t g:i:s a",strtotime($getcomment3['pubDate']))); |
552 | } else { | 552 | } else { |
@@ -601,7 +601,7 @@ if (isLoggedIn()) | |||
601 | $template = new FITemplate('admin/pollrss'); | 601 | $template = new FITemplate('admin/pollrss'); |
602 | } else if ($_GET['step'] == 2) | 602 | } else if ($_GET['step'] == 2) |
603 | { | 603 | { |
604 | $insrss = "INSERT INTO pollrss (author,rss) VALUES (\"" . sess_get('uname') . "\",\"" . mysql_real_escape_string($_POST['text']) . "\")"; | 604 | $insrss = "INSERT INTO pollrss (author,rss) VALUES (\"" . getSessionUsername() . "\",\"" . mysql_real_escape_string($_POST['text']) . "\")"; |
605 | $insrss2 = mysql_query($insrss); | 605 | $insrss2 = mysql_query($insrss); |
606 | 606 | ||
607 | $template = new FITemplate('admin/newPoll'); | 607 | $template = new FITemplate('admin/newPoll'); |
diff --git a/pages/login.php b/pages/login.php deleted file mode 100755 index a787729..0000000 --- a/pages/login.php +++ /dev/null | |||
@@ -1,46 +0,0 @@ | |||
1 | <?php | ||
2 | /* | ||
3 | 444444444 | ||
4 | 4::::::::4 | ||
5 | 4:::::::::4 | ||
6 | 4::::44::::4 | ||
7 | 4::::4 4::::4 Four Island | ||
8 | 4::::4 4::::4 | ||
9 | 4::::4 4::::4 Written and maintained by Starla Insigna | ||
10 | 4::::444444::::444 | ||
11 | 4::::::::::::::::4 pages/login.php | ||
12 | 4444444444:::::444 | ||
13 | 4::::4 Please do not use, reproduce or steal the | ||
14 | 4::::4 contents of this file without explicit | ||
15 | 4::::4 permission from Hatkirby. | ||
16 | 44::::::44 | ||
17 | 4::::::::4 | ||
18 | 4444444444 | ||
19 | */ | ||
20 | |||
21 | if (!defined('S_INCLUDE_FILE')) {define('S_INCLUDE_FILE',1);} | ||
22 | |||
23 | require('headerproc.php'); | ||
24 | |||
25 | $pageCategory = 'log'; | ||
26 | |||
27 | if (!isset($_GET['submit'])) | ||
28 | { | ||
29 | $template = new FITemplate('login'); | ||
30 | $template->add('REDIRECT',$_GET['redirect']); | ||
31 | } else { | ||
32 | if (verifyUser($_POST['username'], $_POST['password'])) | ||
33 | { | ||
34 | sess_set('uname',$_POST['username']); | ||
35 | header('Location: ' . rawurldecode($_POST['redirect'])); | ||
36 | exit; | ||
37 | } else { | ||
38 | $template = new FITemplate('login'); | ||
39 | $template->add('REDIRECT',$_POST['redirect']); | ||
40 | $template->adds_block('ERROR',array('MSG' => "The username/password pair didn't resolve to a real user. Try logging on again, spelling the password right, or making sure you actually have an a account.")); | ||
41 | } | ||
42 | } | ||
43 | |||
44 | $template->display(); | ||
45 | |||
46 | ?> | ||
diff --git a/pages/logout.php b/pages/logout.php deleted file mode 100755 index 69b9386..0000000 --- a/pages/logout.php +++ /dev/null | |||
@@ -1,28 +0,0 @@ | |||
1 | <?php | ||
2 | /* | ||
3 | 444444444 | ||
4 | 4::::::::4 | ||
5 | 4:::::::::4 | ||
6 | 4::::44::::4 | ||
7 | 4::::4 4::::4 Four Island | ||
8 | 4::::4 4::::4 | ||
9 | 4::::4 4::::4 Written and maintained by Starla Insigna | ||
10 | 4::::444444::::444 | ||
11 | 4::::::::::::::::4 pages/logout.php | ||
12 | 4444444444:::::444 | ||
13 | 4::::4 Please do not use, reproduce or steal the | ||
14 | 4::::4 contents of this file without explicit | ||
15 | 4::::4 permission from Hatkirby. | ||
16 | 44::::::44 | ||
17 | 4::::::::4 | ||
18 | 4444444444 | ||
19 | */ | ||
20 | |||
21 | if (!defined('S_INCLUDE_FILE')) {define('S_INCLUDE_FILE',1);} | ||
22 | |||
23 | require('headerproc.php'); | ||
24 | |||
25 | sess_delete('uname'); | ||
26 | header('Location: ' . rawurldecode($_GET['redirect'])); | ||
27 | |||
28 | ?> | ||
diff --git a/pages/post.php b/pages/post.php index 1b89fa4..48239cf 100755 --- a/pages/post.php +++ b/pages/post.php | |||
@@ -84,10 +84,10 @@ if (!isset($_GET['id'])) | |||
84 | } | 84 | } |
85 | } | 85 | } |
86 | } else { | 86 | } else { |
87 | $setcomment = "INSERT INTO comments SET page_id = \"" . $_GET['id'] . "\", username = \"" . sess_get('uname') . "\", comment = \"" . $_POST['comment'] . "\""; | 87 | $setcomment = "INSERT INTO comments SET page_id = \"" . $_GET['id'] . "\", username = \"" . getSessionUsername() . "\", comment = \"" . $_POST['comment'] . "\""; |
88 | $setcomment2 = mysql_query($setcomment); | 88 | $setcomment2 = mysql_query($setcomment); |
89 | 89 | ||
90 | mail('hatkirby@fourisland.com', 'New comment on Four Island!', sess_get('uname') . ' has posted a comment on Four Island under the "page id" ' . $_GET['id']); | 90 | mail('hatkirby@fourisland.com', 'New comment on Four Island!', getSessionUsername() . ' has posted a comment on Four Island under the "page id" ' . $_GET['id']); |
91 | 91 | ||
92 | $page_id = $_GET['id']; | 92 | $page_id = $_GET['id']; |
93 | $comType = substr($page_id,0,strpos($page_id,'-')); | 93 | $comType = substr($page_id,0,strpos($page_id,'-')); |
@@ -97,7 +97,7 @@ if (!isset($_GET['id'])) | |||
97 | recalcPop($comID); | 97 | recalcPop($comID); |
98 | } | 98 | } |
99 | 99 | ||
100 | $template->add('MSG',"Thank you, " . sess_get('uname') . ", for posting your valuable comment!"); | 100 | $template->add('MSG',"Thank you, " . getSessionUsername() . ", for posting your valuable comment!"); |
101 | } | 101 | } |
102 | } | 102 | } |
103 | } | 103 | } |