1: 2: 3: 4: 5: 6: 7: 8: 9: 10: 11: 12: 13: 14: 15: 16: 17: 18: 19: 20: 21: 22: 23: 24: 25: 26: 27: 28: 29: 30: 31: 32: 33: 34: 35: 36: 37: 38: 39: 40: 41: 42: 43: 44: 45: 46: 47: 48: 49: 50: 51: 52: 53: 54: 55: 56: 57: 58: 59: 60: 61: 62: 63: 64: 65: 66: 67: 68: 69: 70: 71: 72: 73: 74: 75: 76: 77: 78: 79: 80: 81: 82: 83: 84: 85: 86: 87: 88: 89: 90: 91: 92: 93: 94: 95: 96: 97: 98: 99: 100: 101: 102: 103: 104: 105: 106: 107: 108: 109: 110: 111: 112: 113: 114: 115: 116: 117: 118: 119: 120: 121: 122: 123: 124: 125: 126: 127: 128: 129: 130: 131: 132: 133: 134: 135: 136: 137: 138: 139: 140: 141: 142: 143: 144: 145: 146: 147: 148: 149: 150: 151: 152: 153: 154: 155: 156: 157: 158: 159: 160: 161: 162: 163: 164: 165: 166: 167: 168: 169: 170: 171: 172: 173: 174: 175: 176: 177: 178: 179: 180: 181: 182: 183: 184: 185: 186: 187: 188: 189: 190: 191: 192: 193: 194: 195: 196: 197: 198: 199: 200: 201: 202: 203: 204: 205: 206: 207: 208: 209: 210: 211: 212: 213: 214: 215: 216: 217: 218: 219: 220: 221: 222: 223: 224: 225: 226: 227: 228: 229: 230: 231: 232: 233: 234: 235: 236: 237: 238: 239: 240: 241: 242: 243: 244: 245: 246: 247: 248: 249: 250: 251: 252: 253: 254: 255: 256: 257: 258: 259: 260: 261: 262: 263: 264: 265: 266: 267: 268: 269: 270: 271: 272: 273: 274: 275: 276: 277: 278: 279: 280: 281: 282: 283: 284: 285: 286: 287: 288: 289: 290: 291: 292: 293: 294: 295: 296: 297: 298: 299: 300: 301: 302: 303: 304: 305: 306: 307: 308: 309: 310: 311: 312: 313: 314: 315: 316: 317: 318: 319: 320: 321: 322: 323: 324: 325: 326: 327: 328: 329: 330: 331: 332: 333: 334: 335: 336: 337: 338: 339: 340: 341: 342: 343: 344: 345: 346: 347: 348: 349: 350: 351: 352: 353: 354: 355: 356: 357: 358: 359: 360: 361: 362: 363: 364: 365: 366: 367: 368: 369: 370: 371: 372: 373: 374: 375: 376: 377: 378: 379: 380: 381: 382: 383: 384: 385: 386: 387: 388: 389: 390: 391: 392: 393: 394: 395: 396: 397: 398: 399: 400: 401: 402: 403: 404: 405: 406: 407: 408: 409: 410: 411: 412: 413: 414: 415: 416: 417: 418: 419: 420: 421: 422: 423: 424: 425: 426: 427: 428: 429: 430: 431: 432: 433: 434: 435: 436: 437: 438: 439: 440: 441: 442: 443: 444: 445: 446: 447: 448: 449: 450: 451: 452: 453: 454: 455: 456: 457: 458: 459: 460: 461: 462: 463: 464: 465: 466: 467: 468: 469: 470: 471: 472: 473: 474: 475: 476: 477: 478: 479: 480: 481: 482: 483: 484: 485: 486: 487: 488: 489: 490: 491: 492: 493: 494: 495: 496: 497: 498: 499: 500: 501: 502: 503: 504: 505: 506: 507: 508: 509: 510: 511: 512: 513: 514: 515: 516: 517: 518: 519: 520: 521: 522: 523: 524: 525: 526: 527: 528: 529: 530: 531: 532: 533: 534: 535: 536: 537: 538: 539: 540: 541: 542: 543: 544: 545: 546: 547: 548: 549: 550: 551: 552: 553: 554: 555: 556: 557: 558: 559: 560: 561: 562: 563: 564: 565: 566: 567: 568: 569: 570: 571: 572: 573: 574: 575: 576: 577: 578: 579: 580: 581: 582: 583: 584: 585: 586: 587: 588: 589: 590: 591: 592: 593: 594: 595: 596: 597: 598: 599: 600: 601: 602: 603: 604: 605: 606: 607: 608: 609: 610: 611: 612: 613: 614: 615: 616: 617: 618: 619: 620: 621: 622: 623: 624: 625: 626: 627: 628: 629: 630: 631: 632: 633: 634: 635: 636: 637: 638: 639: 640: 641: 642: 643: 644: 645: 646: 647: 648: 649: 650: 651: 652: 653: 654: 655: 656: 657: 658: 659: 660: 661: 662: 663: 664: 665: 666: 667: 668: 669: 670: 671: 672: 673: 674: 675: 676: 677: 678: 679: 680: 681: 682: 683: 684: 685: 686: 687: 688: 689: 690: 691: 692: 693: 694: 695: 696: 697: 698: 699: 700: 701: 702: 703: 704: 705: 706: 707: 708: 709: 710: 711: 712: 713: 714: 715: 716: 717: 718: 719: 720: 721: 722: 723: 724: 725: 726: 727: 728: 729: 730: 731: 732: 733: 734: 735: 736: 737: 738: 739: 740: 741: 742: 743: 744: 745: 746: 747: 748: 749: 750: 751: 752: 753: 754: 755: 756: 757: 758: 759: 760: 761: 762: 763: 764: 765: 766: 767: 768: 769: 770: 771: 772: 773: 774: 775: 776: 777: 778: 779: 780: 781: 782: 783: 784: 785: 786: 787: 788: 789: 790: 791: 792: 793: 794: 795: 796: 797: 798: 799: 800: 801: 802: 803: 804: 805: 806: 807: 808: 809: 810: 811: 812: 813: 814: 815: 816: 817: 818: 819: 820: 821: 822: 823: 824: 825: 826: 827: 828: 829: 830: 831: 832: 833: 834: 835: 836: 837: 838: 839: 840: 841: 842: 843: 844: 845: 846: 847: 848: 849: 850: 851: 852: 853: 854: 855: 856: 857: 858: 859: 860: 861: 862: 863: 864: 865: 866: 867: 868: 869: 870: 871: 872: 873: 874: 875: 876: 877: 878: 879: 880: 881: 882: 883: 884: 885: 886: 887: 888: 889: 890: 891: 892: 893: 894: 895: 896: 897: 898: 899: 900: 901: 902: 903: 904: 905: 906: 907: 908: 909: 910: 911: 912: 913: 914: 915: 916: 917: 918: 919: 920: 921: 922: 923: 924: 925: 926: 927: 928: 929: 930: 931: 932: 933: 934: 935: 936: 937: 938: 939: 940: 941: 942: 943: 944: 945: 946: 947: 948: 949: 950: 951: 952: 953: 954: 955: 956: 957: 958: 959: 960: 961: 962: 963: 964: 965: 966: 967: 968: 969: 970: 971: 972: 973: 974: 975: 976: 977: 978: 979: 980: 981: 982: 983: 984: 985: 986: 987: 988: 989: 990: 991: 992: 993: 994: 995: 996: 997: 998: 999: 1000: 1001: 1002: 1003: 1004: 1005: 1006: 1007: 1008: 1009: 1010: 1011: 1012: 1013: 1014: 1015: 1016: 1017: 1018: 1019: 1020: 1021: 1022: 1023: 1024: 1025: 1026: 1027: 1028:
<?php
if (!defined('SMF'))
die('No direct access...');
function ModifyProfile($post_errors = array())
{
global $txt, $scripturl, $user_info, $context, $sourcedir, $user_profile, $cur_profile;
global $modSettings, $memberContext, $profile_vars, $post_errors, $smcFunc;
if (empty($post_errors))
loadLanguage('Profile+Drafts');
loadTemplate('Profile');
require_once($sourcedir . '/Subs-Menu.php');
if (isset($_REQUEST['user']))
$memberResult = loadMemberData($_REQUEST['user'], true, 'profile');
elseif (!empty($_REQUEST['u']))
$memberResult = loadMemberData((int) $_REQUEST['u'], false, 'profile');
else
{
is_not_guest();
$memberResult = loadMemberData($user_info['id'], false, 'profile');
}
if (!$memberResult)
fatal_lang_error('not_a_user', false, 404);
list ($memID) = $memberResult;
$memID = (int) $memID;
$context['id_member'] = $memID;
$cur_profile = $user_profile[$memID];
loadMemberContext($memID);
$context['member'] = $memberContext[$memID];
$context['user']['is_owner'] = $memID == $user_info['id'];
if ($user_info['mod_cache']['gq'] != '0=1')
$user_info['permissions'][] = 'approve_group_requests';
$context['subs_available'] = false;
if (!empty($modSettings['paid_enabled']))
{
$get_active_subs = $smcFunc['db_query']('', '
SELECT COUNT(*)
FROM {db_prefix}subscriptions
WHERE active = {int:active}', array(
'active' => 1,
)
);
list ($num_subs) = $smcFunc['db_fetch_row']($get_active_subs);
$context['subs_available'] = ($num_subs > 0);
$smcFunc['db_free_result']($get_active_subs);
}
$profile_areas = array(
'info' => array(
'title' => $txt['profileInfo'],
'areas' => array(
'summary' => array(
'label' => $txt['summary'],
'file' => 'Profile-View.php',
'function' => 'summary',
'icon' => 'administration',
'permission' => array(
'own' => 'is_not_guest',
'any' => 'profile_view',
),
),
'popup' => array(
'function' => 'profile_popup',
'permission' => array(
'own' => 'is_not_guest',
'any' => array(),
),
'select' => 'summary',
),
'alerts_popup' => array(
'function' => 'alerts_popup',
'permission' => array(
'own' => 'is_not_guest',
'any' => array(),
),
'select' => 'summary',
),
'statistics' => array(
'label' => $txt['statPanel'],
'file' => 'Profile-View.php',
'function' => 'statPanel',
'icon' => 'stats',
'permission' => array(
'own' => 'is_not_guest',
'any' => 'profile_view',
),
),
'showposts' => array(
'label' => $txt['showPosts'],
'file' => 'Profile-View.php',
'function' => 'showPosts',
'icon' => 'posts',
'subsections' => array(
'messages' => array($txt['showMessages'], array('is_not_guest', 'profile_view')),
'topics' => array($txt['showTopics'], array('is_not_guest', 'profile_view')),
'unwatchedtopics' => array($txt['showUnwatched'], array('is_not_guest', 'profile_view'), 'enabled' => $context['user']['is_owner']),
'attach' => array($txt['showAttachments'], array('is_not_guest', 'profile_view')),
),
'permission' => array(
'own' => 'is_not_guest',
'any' => 'profile_view',
),
),
'showdrafts' => array(
'label' => $txt['drafts_show'],
'file' => 'Drafts.php',
'function' => 'showProfileDrafts',
'icon' => 'drafts',
'enabled' => !empty($modSettings['drafts_post_enabled']) && $context['user']['is_owner'],
'permission' => array(
'own' => 'is_not_guest',
'any' => array(),
),
),
'showalerts' => array(
'label' => $txt['alerts_show'],
'file' => 'Profile-View.php',
'function' => 'showAlerts',
'icon' => 'alerts',
'permission' => array(
'own' => 'is_not_guest',
'any' => array(),
),
),
'permissions' => array(
'label' => $txt['showPermissions'],
'file' => 'Profile-View.php',
'function' => 'showPermissions',
'icon' => 'permissions',
'permission' => array(
'own' => 'manage_permissions',
'any' => 'manage_permissions',
),
),
'tracking' => array(
'label' => $txt['trackUser'],
'file' => 'Profile-View.php',
'function' => 'tracking',
'icon' => 'logs',
'subsections' => array(
'activity' => array($txt['trackActivity'], 'moderate_forum'),
'ip' => array($txt['trackIP'], 'moderate_forum'),
'edits' => array($txt['trackEdits'], 'moderate_forum', 'enabled' => !empty($modSettings['userlog_enabled'])),
'groupreq' => array($txt['trackGroupRequests'], 'approve_group_requests', 'enabled' => !empty($modSettings['show_group_membership'])),
'logins' => array($txt['trackLogins'], 'moderate_forum', 'enabled' => !empty($modSettings['loginHistoryDays'])),
),
'permission' => array(
'own' => array('moderate_forum', 'approve_group_requests'),
'any' => array('moderate_forum', 'approve_group_requests'),
),
),
'viewwarning' => array(
'label' => $txt['profile_view_warnings'],
'enabled' => $modSettings['warning_settings'][0] == 1 && $cur_profile['warning'],
'file' => 'Profile-View.php',
'function' => 'viewWarning',
'icon' => 'warning',
'permission' => array(
'own' => array('profile_warning_own', 'profile_warning_any', 'issue_warning', 'moderate_forum'),
'any' => array('profile_warning_any', 'issue_warning', 'moderate_forum'),
),
),
),
),
'edit_profile' => array(
'title' => $txt['forumprofile'],
'areas' => array(
'account' => array(
'label' => $txt['account'],
'file' => 'Profile-Modify.php',
'function' => 'account',
'icon' => 'maintain',
'enabled' => $context['user']['is_admin'] || ($cur_profile['id_group'] != 1 && !in_array(1, explode(',', $cur_profile['additional_groups']))),
'sc' => 'post',
'token' => 'profile-ac%u',
'password' => true,
'permission' => array(
'own' => array('profile_identity_any', 'profile_identity_own', 'profile_password_any', 'profile_password_own', 'manage_membergroups'),
'any' => array('profile_identity_any', 'profile_password_any', 'manage_membergroups'),
),
),
'tfasetup' => array(
'file' => 'Profile-Modify.php',
'function' => 'tfasetup',
'token' => 'profile-tfa%u',
'enabled' => !empty($modSettings['tfa_mode']),
'permission' => array(
'own' => array('profile_password_own'),
'any' => array('profile_password_any'),
),
),
'tfadisable' => array(
'file' => 'Profile-Modify.php',
'function' => 'tfadisable',
'token' => 'profile-tfa%u',
'sc' => 'post',
'password' => true,
'enabled' => !empty($modSettings['tfa_mode']),
'hidden' => !isset($_REQUEST['area']) || $_REQUEST['area'] != 'tfadisable',
'permission' => array(
'own' => array('profile_password_own'),
'any' => array('profile_password_any'),
),
),
'forumprofile' => array(
'label' => $txt['forumprofile'],
'file' => 'Profile-Modify.php',
'function' => 'forumProfile',
'icon' => 'members',
'sc' => 'post',
'token' => 'profile-fp%u',
'permission' => array(
'own' => array('profile_forum_any', 'profile_forum_own'),
'any' => array('profile_forum_any'),
),
),
'theme' => array(
'label' => $txt['theme'],
'file' => 'Profile-Modify.php',
'function' => 'theme',
'icon' => 'features',
'sc' => 'post',
'token' => 'profile-th%u',
'permission' => array(
'own' => array('profile_extra_any', 'profile_extra_own'),
'any' => array('profile_extra_any'),
),
),
'notification' => array(
'label' => $txt['notification'],
'file' => 'Profile-Modify.php',
'function' => 'notification',
'icon' => 'mail',
'sc' => 'post',
'subsections' => array(
'alerts' => array($txt['alert_prefs'], array('is_not_guest', 'profile_extra_any')),
'topics' => array($txt['watched_topics'], array('is_not_guest', 'profile_extra_any')),
'boards' => array($txt['watched_boards'], array('is_not_guest', 'profile_extra_any')),
),
'permission' => array(
'own' => array('is_not_guest'),
'any' => array('profile_extra_any'),
),
),
'ignoreboards' => array(
'label' => $txt['ignoreboards'],
'file' => 'Profile-Modify.php',
'function' => 'ignoreboards',
'icon' => 'boards',
'enabled' => !empty($modSettings['allow_ignore_boards']),
'sc' => 'post',
'token' => 'profile-ib%u',
'permission' => array(
'own' => array('profile_extra_any', 'profile_extra_own'),
'any' => array('profile_extra_any'),
),
),
'lists' => array(
'label' => $txt['editBuddyIgnoreLists'],
'file' => 'Profile-Modify.php',
'function' => 'editBuddyIgnoreLists',
'icon' => 'frenemy',
'enabled' => !empty($modSettings['enable_buddylist']) && $context['user']['is_owner'],
'sc' => 'post',
'subsections' => array(
'buddies' => array($txt['editBuddies']),
'ignore' => array($txt['editIgnoreList']),
),
'permission' => array(
'own' => array('profile_extra_any', 'profile_extra_own'),
'any' => array(),
),
),
'groupmembership' => array(
'label' => $txt['groupmembership'],
'file' => 'Profile-Modify.php',
'function' => 'groupMembership',
'icon' => 'people',
'enabled' => !empty($modSettings['show_group_membership']) && $context['user']['is_owner'],
'sc' => 'request',
'token' => 'profile-gm%u',
'token_type' => 'request',
'permission' => array(
'own' => array('is_not_guest'),
'any' => array('manage_membergroups'),
),
),
),
),
'profile_action' => array(
'title' => $txt['profileAction'],
'areas' => array(
'sendpm' => array(
'label' => $txt['profileSendIm'],
'custom_url' => $scripturl . '?action=pm;sa=send',
'icon' => 'personal_message',
'enabled' => allowedTo('profile_view'),
'permission' => array(
'own' => array(),
'any' => array('pm_send'),
),
),
'report' => array(
'label' => $txt['report_profile'],
'custom_url' => $scripturl . '?action=reporttm;' . $context['session_var'] . '=' . $context['session_id'],
'icon' => 'warning',
'enabled' => allowedTo('profile_view'),
'permission' => array(
'own' => array(),
'any' => array('report_user'),
),
),
'issuewarning' => array(
'label' => $txt['profile_issue_warning'],
'enabled' => $modSettings['warning_settings'][0] == 1,
'file' => 'Profile-Actions.php',
'function' => 'issueWarning',
'icon' => 'warning',
'token' => 'profile-iw%u',
'permission' => array(
'own' => array(),
'any' => array('issue_warning'),
),
),
'banuser' => array(
'label' => $txt['profileBanUser'],
'custom_url' => $scripturl . '?action=admin;area=ban;sa=add',
'icon' => 'ban',
'enabled' => $cur_profile['id_group'] != 1 && !in_array(1, explode(',', $cur_profile['additional_groups'])),
'permission' => array(
'own' => array(),
'any' => array('manage_bans'),
),
),
'subscriptions' => array(
'label' => $txt['subscriptions'],
'file' => 'Profile-Actions.php',
'function' => 'subscriptions',
'icon' => 'paid',
'enabled' => !empty($modSettings['paid_enabled']) && $context['subs_available'],
'permission' => array(
'own' => array('is_not_guest'),
'any' => array('moderate_forum'),
),
),
'deleteaccount' => array(
'label' => $txt['deleteAccount'],
'file' => 'Profile-Actions.php',
'function' => 'deleteAccount',
'icon' => 'members_delete',
'sc' => 'post',
'token' => 'profile-da%u',
'password' => true,
'permission' => array(
'own' => array('profile_remove_any', 'profile_remove_own'),
'any' => array('profile_remove_any'),
),
),
'activateaccount' => array(
'file' => 'Profile-Actions.php',
'function' => 'activateAccount',
'icon' => 'regcenter',
'sc' => 'get',
'token' => 'profile-aa%u',
'token_type' => 'get',
'permission' => array(
'own' => array(),
'any' => array('moderate_forum'),
),
),
),
),
);
call_integration_hook('integrate_pre_profile_areas', array(&$profile_areas));
$context['password_areas'] = array();
$current_area = isset($_REQUEST['area']) ? $_REQUEST['area'] : '';
foreach ($profile_areas as $section_id => $section)
{
foreach ($section['areas'] as $area_id => $area)
{
if (empty($area['permission'][$context['user']['is_owner'] ? 'own' : 'any']))
$profile_areas[$section_id]['areas'][$area_id]['enabled'] = false;
else
$profile_areas[$section_id]['areas'][$area_id]['permission'] = $area['permission'][$context['user']['is_owner'] ? 'own' : 'any'];
if (!empty($area['password']))
$context['password_areas'][] = $area_id;
}
}
if (isset($_GET['updated']))
$context['profile_updated'] = $txt['profile_updated_own'];
$menuOptions = array(
'disable_url_session_check' => true,
'current_area' => $current_area,
'extra_url_parameters' => array(
'u' => $context['id_member'],
),
);
$profile_include_data = createMenu($profile_areas, $menuOptions);
if (!$profile_include_data && (!$user_info['is_guest'] || validateSession()))
fatal_lang_error('no_access', false);
$context['profile_menu_id'] = $context['max_menu_id'];
$context['profile_menu_name'] = 'menu_data_' . $context['profile_menu_id'];
$current_area = $profile_include_data['current_area'];
$current_sa = $profile_include_data['current_subsection'];
$context['menu_item_selected'] = $current_area;
$context['completed_save'] = false;
$context['do_preview'] = isset($_REQUEST['preview_signature']);
$security_checks = array();
$found_area = false;
foreach ($profile_areas as $section_id => $section)
{
foreach ($section['areas'] as $area_id => $area)
{
if ($current_area == $area_id)
{
if ((isset($section['enabled']) && $section['enabled'] == false) || (isset($area['enabled']) && $area['enabled'] == false))
fatal_lang_error('no_access', false);
if (isset($area['sc']) && (isset($_REQUEST['save']) || $context['do_preview']))
{
$security_checks['session'] = $area['sc'];
$context['completed_save'] = true;
}
if (!empty($area['token']))
{
$security_checks[isset($_REQUEST['save']) ? 'validateToken' : 'needsToken'] = $area['token'];
$token_name = $area['token'] !== true ? str_replace('%u', $context['id_member'], $area['token']) : 'profile-u' . $context['id_member'];
$token_type = isset($area['token_type']) && in_array($area['token_type'], array('request', 'post', 'get')) ? $area['token_type'] : 'post';
}
if (!empty($area['validate']) || (isset($_REQUEST['save']) && !$context['user']['is_owner']))
$security_checks['validate'] = true;
if (!empty($profile_include_data['permission']))
$security_checks['permission'] = $profile_include_data['permission'];
$found_area = true;
}
}
}
if (!$found_area)
fatal_lang_error('no_access', false);
unset($profile_areas);
if (isset($security_checks['session']))
checkSession($security_checks['session']);
if (isset($security_checks['validate']))
validateSession();
if (isset($security_checks['validateToken']))
validateToken($token_name, $token_type);
if (isset($security_checks['permission']))
isAllowedTo($security_checks['permission']);
if (isset($security_checks['needsToken']) || isset($security_checks['validateToken']))
{
createToken($token_name, $token_type);
$context['token_check'] = $token_name;
}
if (isset($profile_include_data['file']))
require_once($sourcedir . '/' . $profile_include_data['file']);
$context['linktree'][] = array(
'url' => $scripturl . '?action=profile' . ($memID != $user_info['id'] ? ';u=' . $memID : ''),
'name' => sprintf($txt['profile_of_username'], $context['member']['name']),
);
if (!empty($profile_include_data['label']))
$context['linktree'][] = array(
'url' => $scripturl . '?action=profile' . ($memID != $user_info['id'] ? ';u=' . $memID : '') . ';area=' . $profile_include_data['current_area'],
'name' => $profile_include_data['label'],
);
if (!empty($profile_include_data['current_subsection']) && $profile_include_data['subsections'][$profile_include_data['current_subsection']][0] != $profile_include_data['label'])
$context['linktree'][] = array(
'url' => $scripturl . '?action=profile' . ($memID != $user_info['id'] ? ';u=' . $memID : '') . ';area=' . $profile_include_data['current_area'] . ';sa=' . $profile_include_data['current_subsection'],
'name' => $profile_include_data['subsections'][$profile_include_data['current_subsection']][0],
);
$context['sub_template'] = $profile_include_data['function'];
$context['template_layers'][] = 'profile';
$check_password = $context['user']['is_owner'] && in_array($profile_include_data['current_area'], $context['password_areas']);
$context['require_password'] = $check_password;
loadJavaScriptFile('profile.js', array('defer' => false, 'minimize' => true), 'smf_profile');
$post_errors = array();
$profile_vars = array();
if ($context['completed_save'])
{
$_POST = htmltrim__recursive($_POST);
$_POST = htmlspecialchars__recursive($_POST);
if ($check_password)
{
if (!empty($modSettings['force_ssl']) && empty($maintenance) && !httpsOn())
fatal_lang_error('login_ssl_required', false);
if (trim($_POST['oldpasswrd']) == '')
$post_errors[] = 'no_password';
$_POST['oldpasswrd'] = un_htmlspecialchars($_POST['oldpasswrd']);
$good_password = in_array(true, call_integration_hook('integrate_verify_password', array($cur_profile['member_name'], $_POST['oldpasswrd'], false)), true);
if (!$good_password && !hash_verify_password($user_profile[$memID]['member_name'], un_htmlspecialchars(stripslashes($_POST['oldpasswrd'])), $user_info['passwd']))
$post_errors[] = 'bad_password';
if (in_array('bad_password', $post_errors))
$context['password_auth_failed'] = true;
}
if ($context['user']['is_owner'])
$profile_vars['member_ip'] = $user_info['ip'];
if ($current_area == 'activateaccount')
{
if (empty($post_errors))
activateAccount($memID);
}
elseif ($current_area == 'deleteaccount')
{
if (empty($post_errors))
{
deleteAccount2($memID);
redirectexit();
}
}
elseif ($current_area == 'tfadisable')
{
$profile_vars += array(
'tfa_secret' => '',
'tfa_backup' => '',
);
}
elseif ($current_area == 'groupmembership' && empty($post_errors))
{
$msg = groupMembership2($profile_vars, $post_errors, $memID);
redirectexit('action=profile' . ($context['user']['is_owner'] ? '' : ';u=' . $memID) . ';area=groupmembership' . (!empty($msg) ? ';msg=' . $msg : ''));
}
elseif (in_array($current_area, array('account', 'forumprofile', 'theme')))
saveProfileFields();
else
{
$force_redirect = true;
require_once($sourcedir . '/Profile-Modify.php');
saveProfileChanges($profile_vars, $post_errors, $memID);
}
call_integration_hook('integrate_profile_save', array(&$profile_vars, &$post_errors, $memID, $cur_profile, $current_area));
if (!empty($post_errors))
{
loadLanguage('Errors');
$context['post_errors'] = $post_errors;
}
elseif (!empty($profile_vars))
{
if (isset($profile_vars['passwd']))
call_integration_hook('integrate_reset_pass', array($cur_profile['member_name'], $cur_profile['member_name'], $_POST['passwrd2']));
updateMemberData($memID, $profile_vars);
if ($modSettings['latestMember'] == $memID)
updateStats('member');
elseif (isset($profile_vars['real_name']))
updateSettings(array('memberlist_updated' => time()));
if (isset($profile_vars['birthdate']) || isset($profile_vars['real_name']))
updateSettings(array(
'calendar_updated' => time(),
));
if (!empty($context['log_changes']) && !empty($modSettings['modlog_enabled']))
{
$log_changes = array();
require_once($sourcedir . '/Logging.php');
foreach ($context['log_changes'] as $k => $v)
$log_changes[] = array(
'action' => $k,
'log_type' => 'user',
'extra' => array_merge($v, array(
'applicator' => $user_info['id'],
'member_affected' => $memID,
)),
);
logActions($log_changes);
}
if (!empty($context['profile_execute_on_save']))
foreach ($context['profile_execute_on_save'] as $saveFunc)
$saveFunc();
$context['profile_updated'] = $context['user']['is_owner'] ? $txt['profile_updated_own'] : sprintf($txt['profile_updated_else'], $cur_profile['member_name']);
cache_put_data('member_data-profile-' . $memID, null, 0);
}
}
if (!empty($post_errors))
{
foreach ($post_errors as $error_type)
$context['modify_error'][$error_type] = true;
}
elseif (!empty($profile_vars) && $context['user']['is_owner'] && !$context['do_preview'])
redirectexit('action=profile;area=' . $current_area . (!empty($current_sa) ? ';sa=' . $current_sa : '') . ';updated');
elseif (!empty($force_redirect))
redirectexit('action=profile' . ($context['user']['is_owner'] ? '' : ';u=' . $memID) . ';area=' . $current_area);
$call = call_helper($profile_include_data['function'], true);
if (!empty($call))
call_user_func($call, $memID);
if (!isset($context['page_title']))
$context['page_title'] = $txt['profile'] . (isset($txt[$current_area]) ? ' - ' . $txt[$current_area] : '');
}
function profile_popup($memID)
{
global $context, $scripturl, $txt, $db_show_debug;
$db_show_debug = false;
$context['template_layers'] = array();
$profile_items = array(
array(
'menu' => 'info',
'area' => 'summary',
'title' => $txt['popup_summary'],
),
array(
'menu' => 'edit_profile',
'area' => 'account',
),
array(
'menu' => 'info',
'area' => 'showposts',
'title' => $txt['popup_showposts'],
),
array(
'menu' => 'edit_profile',
'area' => 'forumprofile',
'title' => $txt['forumprofile'],
),
array(
'menu' => 'edit_profile',
'area' => 'notification',
),
array(
'menu' => 'edit_profile',
'area' => 'theme',
'title' => $txt['theme'],
),
array(
'menu' => 'edit_profile',
'area' => 'ignoreboards',
),
array(
'menu' => 'edit_profile',
'area' => 'lists',
'url' => $scripturl . '?action=profile;area=lists;sa=ignore',
'title' => $txt['popup_ignore'],
),
array(
'menu' => 'edit_profile',
'area' => 'groupmembership',
),
array(
'menu' => 'profile_action',
'area' => 'subscriptions',
),
);
call_integration_hook('integrate_profile_popup', array(&$profile_items));
$context['profile_items'] = array();
$menu_context = &$context[$context['profile_menu_name']]['sections'];
foreach ($profile_items as $item)
{
if (isset($menu_context[$item['menu']]['areas'][$item['area']]))
{
$context['profile_items'][] = $item;
}
}
}
function alerts_popup($memID)
{
global $context, $sourcedir, $db_show_debug, $cur_profile;
loadLanguage('Alerts');
$db_show_debug = false;
$context['template_layers'] = array();
$fetch_all = !isset($_REQUEST['counter']);
$_REQUEST['counter'] = isset($_REQUEST['counter']) ? max(0, (int) $_REQUEST['counter']) : 0;
$context['unread_alerts'] = array();
if ($fetch_all || $_REQUEST['counter'] < $cur_profile['alerts'])
{
require_once($sourcedir . '/Profile-View.php');
$context['unread_alerts'] = fetch_alerts($memID, false, $fetch_all ? null : $cur_profile['alerts'] - $_REQUEST['counter']);
if ($fetch_all && $cur_profile['alerts'] != count($context['unread_alerts']))
updateMemberData($memID, array('alerts' => count($context['unread_alerts'])));
}
}
function loadCustomFields($memID, $area = 'summary')
{
global $context, $txt, $user_profile, $smcFunc, $user_info, $settings, $scripturl;
$where = 'active = 1';
if (!allowedTo('admin_forum') && $area != 'register')
{
if ($memID == $user_info['id'])
$where .= $area == 'summary' ? ' AND private < 3' : ' AND (private = 0 OR private = 2)';
else
$where .= $area == 'summary' ? ' AND private < 2' : ' AND private = 0';
}
if ($area == 'register')
$where .= ' AND show_reg != 0';
elseif ($area != 'summary')
$where .= ' AND show_profile = {string:area}';
$request = $smcFunc['db_query']('', '
SELECT
col_name, field_name, field_desc, field_type, field_order, show_reg, field_length, field_options,
default_value, bbc, enclose, placement
FROM {db_prefix}custom_fields
WHERE ' . $where . '
ORDER BY field_order',
array(
'area' => $area,
)
);
$context['custom_fields'] = array();
$context['custom_fields_required'] = false;
while ($row = $smcFunc['db_fetch_assoc']($request))
{
$exists = $memID && isset($user_profile[$memID], $user_profile[$memID]['options'][$row['col_name']]);
$value = $exists ? $user_profile[$memID]['options'][$row['col_name']] : '';
$currentKey = 0;
if (!empty($row['field_options']))
{
$fieldOptions = explode(',', $row['field_options']);
foreach ($fieldOptions as $k => $v)
{
if (empty($currentKey))
$currentKey = $v === $value ? $k : 0;
}
}
if (isset($_POST['customfield']) && isset($_POST['customfield'][$row['col_name']]))
{
$value = $smcFunc['htmlspecialchars']($_POST['customfield'][$row['col_name']]);
if (in_array($row['field_type'], array('select', 'radio')))
$value = ($options = explode(',', $row['field_options'])) && isset($options[$value]) ? $options[$value] : '';
}
if ($area == 'summary' && $row['col_name'] == 'cust_gender' && $value == 'None')
continue;
$output_html = $value;
if ($row['field_type'] == 'check')
{
$true = (!$exists && $row['default_value']) || $value;
$input_html = '<input type="checkbox" name="customfield[' . $row['col_name'] . ']" id="customfield[' . $row['col_name'] . ']"' . ($true ? ' checked' : '') . '>';
$output_html = $true ? $txt['yes'] : $txt['no'];
}
elseif ($row['field_type'] == 'select')
{
$input_html = '<select name="customfield[' . $row['col_name'] . ']" id="customfield[' . $row['col_name'] . ']"><option value="-1"></option>';
$options = explode(',', $row['field_options']);
foreach ($options as $k => $v)
{
$true = (!$exists && $row['default_value'] == $v) || $value == $v;
$input_html .= '<option value="' . $k . '"' . ($true ? ' selected' : '') . '>' . $v . '</option>';
if ($true)
$output_html = $v;
}
$input_html .= '</select>';
}
elseif ($row['field_type'] == 'radio')
{
$input_html = '<fieldset>';
$options = explode(',', $row['field_options']);
foreach ($options as $k => $v)
{
$true = (!$exists && $row['default_value'] == $v) || $value == $v;
$input_html .= '<label for="customfield_' . $row['col_name'] . '_' . $k . '"><input type="radio" name="customfield[' . $row['col_name'] . ']" id="customfield_' . $row['col_name'] . '_' . $k . '" value="' . $k . '"' . ($true ? ' checked' : '') . '>' . $v . '</label><br>';
if ($true)
$output_html = $v;
}
$input_html .= '</fieldset>';
}
elseif ($row['field_type'] == 'text')
{
$input_html = '<input type="text" name="customfield[' . $row['col_name'] . ']" id="customfield[' . $row['col_name'] . ']"' . ($row['field_length'] != 0 ? ' maxlength="' . $row['field_length'] . '"' : '') . ' size="' . ($row['field_length'] == 0 || $row['field_length'] >= 50 ? 50 : ($row['field_length'] > 30 ? 30 : ($row['field_length'] > 10 ? 20 : 10))) . '" value="' . un_htmlspecialchars($value) . '"' . ($row['show_reg'] == 2 ? ' required' : '') . '>';
}
else
{
@list ($rows, $cols) = @explode(',', $row['default_value']);
$input_html = '<textarea name="customfield[' . $row['col_name'] . ']" id="customfield[' . $row['col_name'] . ']"' . (!empty($rows) ? ' rows="' . $rows . '"' : '') . (!empty($cols) ? ' cols="' . $cols . '"' : '') . ($row['show_reg'] == 2 ? ' required' : '') . '>' . un_htmlspecialchars($value) . '</textarea>';
}
if ($row['bbc'])
$output_html = parse_bbc($output_html);
elseif ($row['field_type'] == 'textarea')
$output_html = strtr($output_html, array("\n" => '<br>'));
if (!empty($row['enclose']) && !empty($output_html))
$output_html = strtr($row['enclose'], array(
'{SCRIPTURL}' => $scripturl,
'{IMAGES_URL}' => $settings['images_url'],
'{DEFAULT_IMAGES_URL}' => $settings['default_images_url'],
'{INPUT}' => un_htmlspecialchars($output_html),
'{KEY}' => $currentKey
));
$context['custom_fields'][] = array(
'name' => $row['field_name'],
'desc' => $row['field_desc'],
'type' => $row['field_type'],
'order' => $row['field_order'],
'input_html' => $input_html,
'output_html' => $output_html,
'placement' => $row['placement'],
'colname' => $row['col_name'],
'value' => $value,
'show_reg' => $row['show_reg'],
);
$context['custom_fields_required'] = $context['custom_fields_required'] || $row['show_reg'] == 2;
}
$smcFunc['db_free_result']($request);
call_integration_hook('integrate_load_custom_profile_fields', array($memID, $area));
}
?>