mirror of
https://github.com/phpbb/phpbb.git
synced 2025-08-06 16:56:44 +02:00
- added confirm box to ucp zebra (adding fried/foe)
- permission fixes for conversions - use more appropiate error message within convertor if source tables could not be found - other tiny fixes git-svn-id: file:///svn/phpbb/trunk@6925 89ea8834-ac86-4346-8a33-228a782c2dd0
This commit is contained in:
@@ -40,159 +40,174 @@ class ucp_zebra
|
||||
$data[$var] = request_var($var, $default, true);
|
||||
}
|
||||
|
||||
if ($data['add'])
|
||||
if (!empty($data['add']) || sizeof($data['usernames']))
|
||||
{
|
||||
$data['add'] = array_map('trim', array_map('utf8_clean_string', explode("\n", $data['add'])));
|
||||
|
||||
// Do these name/s exist on a list already? If so, ignore ... we could be
|
||||
// 'nice' and automatically handle names added to one list present on
|
||||
// the other (by removing the existing one) ... but I have a feeling this
|
||||
// may lead to complaints
|
||||
$sql = 'SELECT z.*, u.username, u.username_clean
|
||||
FROM ' . ZEBRA_TABLE . ' z, ' . USERS_TABLE . ' u
|
||||
WHERE z.user_id = ' . $user->data['user_id'] . '
|
||||
AND u.user_id = z.zebra_id';
|
||||
$result = $db->sql_query($sql);
|
||||
|
||||
$friends = $foes = array();
|
||||
while ($row = $db->sql_fetchrow($result))
|
||||
if (confirm_box(true))
|
||||
{
|
||||
if ($row['friend'])
|
||||
if ($data['add'])
|
||||
{
|
||||
$friends[] = utf8_clean_string($row['username']);
|
||||
$data['add'] = array_map('trim', array_map('utf8_clean_string', explode("\n", $data['add'])));
|
||||
|
||||
// Do these name/s exist on a list already? If so, ignore ... we could be
|
||||
// 'nice' and automatically handle names added to one list present on
|
||||
// the other (by removing the existing one) ... but I have a feeling this
|
||||
// may lead to complaints
|
||||
$sql = 'SELECT z.*, u.username, u.username_clean
|
||||
FROM ' . ZEBRA_TABLE . ' z, ' . USERS_TABLE . ' u
|
||||
WHERE z.user_id = ' . $user->data['user_id'] . '
|
||||
AND u.user_id = z.zebra_id';
|
||||
$result = $db->sql_query($sql);
|
||||
|
||||
$friends = $foes = array();
|
||||
while ($row = $db->sql_fetchrow($result))
|
||||
{
|
||||
if ($row['friend'])
|
||||
{
|
||||
$friends[] = utf8_clean_string($row['username']);
|
||||
}
|
||||
else
|
||||
{
|
||||
$foes[] = utf8_clean_string($row['username']);
|
||||
}
|
||||
}
|
||||
$db->sql_freeresult($result);
|
||||
|
||||
// remove friends from the username array
|
||||
$n = sizeof($data['add']);
|
||||
$data['add'] = array_diff($data['add'], $friends);
|
||||
|
||||
if (sizeof($data['add']) < $n && $mode == 'foes')
|
||||
{
|
||||
$error[] = $user->lang['NOT_ADDED_FOES_FRIENDS'];
|
||||
}
|
||||
|
||||
// remove foes from the username array
|
||||
$n = sizeof($data['add']);
|
||||
$data['add'] = array_diff($data['add'], $foes);
|
||||
|
||||
if (sizeof($data['add']) < $n && $mode == 'friends')
|
||||
{
|
||||
$error[] = $user->lang['NOT_ADDED_FRIENDS_FOES'];
|
||||
}
|
||||
|
||||
// remove the user himself from the username array
|
||||
$n = sizeof($data['add']);
|
||||
$data['add'] = array_diff($data['add'], array(utf8_clean_string($user->data['username'])));
|
||||
|
||||
if (sizeof($data['add']) < $n)
|
||||
{
|
||||
$error[] = $user->lang['NOT_ADDED_' . $l_mode . '_SELF'];
|
||||
}
|
||||
|
||||
unset($friends, $foes, $n);
|
||||
|
||||
if (sizeof($data['add']))
|
||||
{
|
||||
$sql = 'SELECT user_id, user_type
|
||||
FROM ' . USERS_TABLE . '
|
||||
WHERE ' . $db->sql_in_set('username_clean', $data['add']) . '
|
||||
AND user_type <> ' . USER_INACTIVE;
|
||||
$result = $db->sql_query($sql);
|
||||
|
||||
$user_id_ary = array();
|
||||
while ($row = $db->sql_fetchrow($result))
|
||||
{
|
||||
if ($row['user_id'] != ANONYMOUS && $row['user_type'] != USER_IGNORE)
|
||||
{
|
||||
$user_id_ary[] = $row['user_id'];
|
||||
}
|
||||
else
|
||||
{
|
||||
$error[] = $user->lang['NOT_ADDED_' . $l_mode . '_ANONYMOUS'];
|
||||
}
|
||||
}
|
||||
$db->sql_freeresult($result);
|
||||
|
||||
if (sizeof($user_id_ary))
|
||||
{
|
||||
// Remove users from foe list if they are admins or moderators
|
||||
if ($mode == 'foes')
|
||||
{
|
||||
$perms = array();
|
||||
foreach ($auth->acl_get_list($user_id_ary, array('a_', 'm_')) as $forum_id => $forum_ary)
|
||||
{
|
||||
foreach ($forum_ary as $auth_option => $user_ary)
|
||||
{
|
||||
$perms = array_merge($perms, $user_ary);
|
||||
}
|
||||
}
|
||||
|
||||
$perms = array_unique($perms);
|
||||
|
||||
if (sizeof($perms))
|
||||
{
|
||||
$error[] = $user->lang['NOT_ADDED_FOES_MOD_ADMIN'];
|
||||
}
|
||||
|
||||
// This may not be right ... it may yield true when perms equate to deny
|
||||
$user_id_ary = array_diff($user_id_ary, $perms);
|
||||
unset($perms);
|
||||
}
|
||||
|
||||
if (sizeof($user_id_ary))
|
||||
{
|
||||
$sql_mode = ($mode == 'friends') ? 'friend' : 'foe';
|
||||
|
||||
$sql_ary = array();
|
||||
foreach ($user_id_ary as $zebra_id)
|
||||
{
|
||||
$sql_ary[] = array(
|
||||
'user_id' => $user->data['user_id'],
|
||||
'zebra_id' => (int) $zebra_id,
|
||||
$sql_mode => 1
|
||||
);
|
||||
}
|
||||
|
||||
$db->sql_multi_insert(ZEBRA_TABLE, $sql_ary);
|
||||
|
||||
$updated = true;
|
||||
}
|
||||
unset($user_id_ary);
|
||||
}
|
||||
else if (!sizeof($error))
|
||||
{
|
||||
$error[] = $user->lang['USER_NOT_FOUND_OR_INACTIVE'];
|
||||
}
|
||||
}
|
||||
}
|
||||
else if (sizeof($data['usernames']))
|
||||
{
|
||||
// Force integer values
|
||||
$data['usernames'] = array_map('intval', $data['usernames']);
|
||||
|
||||
$sql = 'DELETE FROM ' . ZEBRA_TABLE . '
|
||||
WHERE user_id = ' . $user->data['user_id'] . '
|
||||
AND ' . $db->sql_in_set('zebra_id', $data['usernames']);
|
||||
$db->sql_query($sql);
|
||||
|
||||
$updated = true;
|
||||
}
|
||||
|
||||
if ($updated)
|
||||
{
|
||||
meta_refresh(3, $this->u_action);
|
||||
$message = $user->lang[$l_mode . '_UPDATED'] . '<br />' . implode('<br />', $error) . ((sizeof($error)) ? '<br />' : '') . '<br />' . sprintf($user->lang['RETURN_UCP'], '<a href="' . $this->u_action . '">', '</a>');
|
||||
trigger_error($message);
|
||||
}
|
||||
else
|
||||
{
|
||||
$foes[] = utf8_clean_string($row['username']);
|
||||
$template->assign_var('ERROR', implode('<br />', $error));
|
||||
}
|
||||
}
|
||||
$db->sql_freeresult($result);
|
||||
|
||||
// remove friends from the username array
|
||||
$n = sizeof($data['add']);
|
||||
$data['add'] = array_diff($data['add'], $friends);
|
||||
|
||||
if (sizeof($data['add']) < $n && $mode == 'foes')
|
||||
else
|
||||
{
|
||||
$error[] = $user->lang['NOT_ADDED_FOES_FRIENDS'];
|
||||
confirm_box(false, $user->lang['CONFIRM_OPERATION'], build_hidden_fields(array(
|
||||
'mode' => $mode,
|
||||
'submit' => true,
|
||||
'usernames' => $data['usernames'],
|
||||
'add' => $data['add']))
|
||||
);
|
||||
}
|
||||
|
||||
// remove foes from the username array
|
||||
$n = sizeof($data['add']);
|
||||
$data['add'] = array_diff($data['add'], $foes);
|
||||
|
||||
if (sizeof($data['add']) < $n && $mode == 'friends')
|
||||
{
|
||||
$error[] = $user->lang['NOT_ADDED_FRIENDS_FOES'];
|
||||
}
|
||||
|
||||
// remove the user himself from the username array
|
||||
$n = sizeof($data['add']);
|
||||
$data['add'] = array_diff($data['add'], array(utf8_clean_string($user->data['username'])));
|
||||
|
||||
if (sizeof($data['add']) < $n)
|
||||
{
|
||||
$error[] = $user->lang['NOT_ADDED_' . $l_mode . '_SELF'];
|
||||
}
|
||||
|
||||
unset($friends, $foes, $n);
|
||||
|
||||
if (sizeof($data['add']))
|
||||
{
|
||||
$sql = 'SELECT user_id, user_type
|
||||
FROM ' . USERS_TABLE . '
|
||||
WHERE ' . $db->sql_in_set('username_clean', $data['add']) . '
|
||||
AND user_type <> ' . USER_INACTIVE;
|
||||
$result = $db->sql_query($sql);
|
||||
|
||||
$user_id_ary = array();
|
||||
while ($row = $db->sql_fetchrow($result))
|
||||
{
|
||||
if ($row['user_id'] != ANONYMOUS && $row['user_type'] != USER_IGNORE)
|
||||
{
|
||||
$user_id_ary[] = $row['user_id'];
|
||||
}
|
||||
else
|
||||
{
|
||||
$error[] = $user->lang['NOT_ADDED_' . $l_mode . '_ANONYMOUS'];
|
||||
}
|
||||
}
|
||||
$db->sql_freeresult($result);
|
||||
|
||||
if (sizeof($user_id_ary))
|
||||
{
|
||||
// Remove users from foe list if they are admins or moderators
|
||||
if ($mode == 'foes')
|
||||
{
|
||||
$perms = array();
|
||||
foreach ($auth->acl_get_list($user_id_ary, array('a_', 'm_')) as $forum_id => $forum_ary)
|
||||
{
|
||||
foreach ($forum_ary as $auth_option => $user_ary)
|
||||
{
|
||||
$perms = array_merge($perms, $user_ary);
|
||||
}
|
||||
}
|
||||
|
||||
$perms = array_unique($perms);
|
||||
|
||||
if (sizeof($perms))
|
||||
{
|
||||
$error[] = $user->lang['NOT_ADDED_FOES_MOD_ADMIN'];
|
||||
}
|
||||
|
||||
// This may not be right ... it may yield true when perms equate to deny
|
||||
$user_id_ary = array_diff($user_id_ary, $perms);
|
||||
unset($perms);
|
||||
}
|
||||
|
||||
if (sizeof($user_id_ary))
|
||||
{
|
||||
$sql_mode = ($mode == 'friends') ? 'friend' : 'foe';
|
||||
|
||||
$sql_ary = array();
|
||||
foreach ($user_id_ary as $zebra_id)
|
||||
{
|
||||
$sql_ary[] = array(
|
||||
'user_id' => $user->data['user_id'],
|
||||
'zebra_id' => (int) $zebra_id,
|
||||
$sql_mode => 1
|
||||
);
|
||||
}
|
||||
|
||||
$db->sql_multi_insert(ZEBRA_TABLE, $sql_ary);
|
||||
|
||||
$updated = true;
|
||||
}
|
||||
unset($user_id_ary);
|
||||
}
|
||||
else if (!sizeof($error))
|
||||
{
|
||||
$error[] = $user->lang['USER_NOT_FOUND_OR_INACTIVE'];
|
||||
}
|
||||
}
|
||||
}
|
||||
else if (sizeof($data['usernames']))
|
||||
{
|
||||
// Force integer values
|
||||
$data['usernames'] = array_map('intval', $data['usernames']);
|
||||
|
||||
$sql = 'DELETE FROM ' . ZEBRA_TABLE . '
|
||||
WHERE user_id = ' . $user->data['user_id'] . '
|
||||
AND ' . $db->sql_in_set('zebra_id', $data['usernames']);
|
||||
$db->sql_query($sql);
|
||||
|
||||
$updated = true;
|
||||
}
|
||||
|
||||
if ($updated)
|
||||
{
|
||||
meta_refresh(3, $this->u_action);
|
||||
$message = $user->lang[$l_mode . '_UPDATED'] . '<br />' . implode('<br />', $error) . ((sizeof($error)) ? '<br />' : '') . '<br />' . sprintf($user->lang['RETURN_UCP'], '<a href="' . $this->u_action . '">', '</a>');
|
||||
trigger_error($message);
|
||||
}
|
||||
else
|
||||
{
|
||||
$template->assign_var('ERROR', implode('<br />', $error));
|
||||
}
|
||||
}
|
||||
|
||||
|
Reference in New Issue
Block a user