WordPress/wp-admin/b2profile.php

468 lines
16 KiB
PHP
Raw Normal View History

<?php $title = "Profile";
/* <Profile | My Profile> */
function add_magic_quotes($array) {
foreach ($array as $k => $v) {
if (is_array($v)) {
$array[$k] = add_magic_quotes($v);
} else {
$array[$k] = addslashes($v);
}
}
return $array;
}
if (!get_magic_quotes_gpc()) {
$HTTP_GET_VARS = add_magic_quotes($HTTP_GET_VARS);
$HTTP_POST_VARS = add_magic_quotes($HTTP_POST_VARS);
$HTTP_COOKIE_VARS = add_magic_quotes($HTTP_COOKIE_VARS);
}
$b2varstoreset = array('action','standalone','redirect','profile','user');
for ($i=0; $i<count($b2varstoreset); $i += 1) {
$b2var = $b2varstoreset[$i];
if (!isset($$b2var)) {
if (empty($HTTP_POST_VARS["$b2var"])) {
if (empty($HTTP_GET_VARS["$b2var"])) {
$$b2var = '';
} else {
$$b2var = $HTTP_GET_VARS["$b2var"];
}
} else {
$$b2var = $HTTP_POST_VARS["$b2var"];
}
}
}
require_once("../b2config.php");
require_once("$b2inc/b2functions.php");
dbconnect();
switch($action) {
case "update":
require_once("b2verifauth.php");
get_currentuserinfo();
/* checking the nickname has been typed */
if (empty($HTTP_POST_VARS["newuser_nickname"])) {
die ("<strong>ERROR</strong>: please enter your nickname (can be the same as your login)");
return false;
}
/* if the ICQ UIN has been entered, check to see if it has only numbers */
if (!empty($HTTP_POST_VARS["newuser_icq"])) {
if ((ereg("^[0-9]+$",$HTTP_POST_VARS["newuser_icq"]))==false) {
die ("<strong>ERROR</strong>: your ICQ UIN can only be a number, no letters allowed");
return false;
}
}
/* checking e-mail address */
if (empty($HTTP_POST_VARS["newuser_email"])) {
die ("<strong>ERROR</strong>: please type your e-mail address");
return false;
} else if (!is_email($HTTP_POST_VARS["newuser_email"])) {
die ("<strong>ERROR</strong>: the email address isn't correct");
return false;
}
if ($HTTP_POST_VARS["pass1"] == "") {
if ($HTTP_POST_VARS["pass2"] != "")
die ("<strong>ERROR</strong>: you typed your new password only once. Go back to type it twice.");
$updatepassword = "";
} else {
if ($HTTP_POST_VARS["pass2"] == "")
die ("<strong>ERROR</strong>: you typed your new password only once. Go back to type it twice.");
if ($HTTP_POST_VARS["pass1"] != $HTTP_POST_VARS["pass2"])
die ("<strong>ERROR</strong>: you typed two different passwords. Go back to correct that.");
$newuser_pass = $HTTP_POST_VARS["pass1"];
$updatepassword = "user_pass='$newuser_pass', ";
setcookie("wordpresspass",md5($newuser_pass),time()+31536000);
}
$newuser_firstname=addslashes($HTTP_POST_VARS["newuser_firstname"]);
$newuser_lastname=addslashes($HTTP_POST_VARS["newuser_lastname"]);
$newuser_nickname=addslashes($HTTP_POST_VARS["newuser_nickname"]);
$newuser_icq=addslashes($HTTP_POST_VARS["newuser_icq"]);
$newuser_aim=addslashes($HTTP_POST_VARS["newuser_aim"]);
$newuser_msn=addslashes($HTTP_POST_VARS["newuser_msn"]);
$newuser_yim=addslashes($HTTP_POST_VARS["newuser_yim"]);
$newuser_email=addslashes($HTTP_POST_VARS["newuser_email"]);
$newuser_url=addslashes($HTTP_POST_VARS["newuser_url"]);
$newuser_idmode=addslashes($HTTP_POST_VARS["newuser_idmode"]);
$query = "UPDATE $tableusers SET user_firstname='$newuser_firstname', ".$updatepassword."user_lastname='$newuser_lastname', user_nickname='$newuser_nickname', user_icq='$newuser_icq', user_email='$newuser_email', user_url='$newuser_url', user_aim='$newuser_aim', user_msn='$newuser_msn', user_yim='$newuser_yim', user_idmode='$newuser_idmode' WHERE ID = $user_ID";
$result = mysql_query($query);
if ($result==false) {
die ("<strong>ERROR</strong>: couldn't update your profile... please contact the <a href=\"mailto:$admin_email\">webmaster</a> !<br /><br />$query<br /><br />".mysql_error());
}
?>
<html>
<body onload="window.close();">
Profile updated !<br />
If that window doesn't close itself, close it yourself :p
</body>
</html>
<?php
break;
case "viewprofile":
require_once("b2verifauth.php");
/* $profile=1;
get_currentuserinfo();
*/ $profiledata=get_userdata($user);
if ($HTTP_COOKIE_VARS["wordpressuser"] == $profiledata["user_login"])
header ("Location: b2profile.php");
$profile=1; /**/
include("b2header.php");
?>
<div class="menutop" align="center">
<?php echo $profiledata["user_login"] ?>
</div>
<form name="form" action="b2profile.php" method="post">
<input type="hidden" name="action" value="update" />
<table width="100%">
<tr><td width="250">
<table cellpadding="5" cellspacing="0">
<tr>
<td align="right"><strong>login</strong></td>
<td><?php echo $profiledata["user_login"] ?></td>
</tr>
<tr>
<td align="right"><strong>first name</strong></td>
<td><?php echo $profiledata["user_firstname"] ?></td>
</tr>
<tr>
<td align="right"><strong>last name</strong></td>
<td><?php echo $profiledata["user_lastname"] ?></td>
</tr>
<tr>
<td align="right"><strong>nickname</strong></td>
<td><?php echo $profiledata["user_nickname"] ?></td>
</tr>
<tr>
<td align="right"><strong>email</strong></td>
<td><?php echo make_clickable($profiledata["user_email"]) ?></td>
</tr>
<tr>
<td align="right"><strong>URL</strong></td>
<td><?php echo $profiledata["user_url"] ?></td>
</tr>
<tr>
<td align="right"><strong>ICQ</strong></td>
<td><?php if ($profiledata["user_icq"] > 0) { echo make_clickable("icq:".$profiledata["user_icq"]); } ?></td>
</tr>
<tr>
<td align="right"><strong>AIM</strong></td>
<td><?php echo make_clickable("aim:".$profiledata["user_aim"]) ?></td>
</tr>
<tr>
<td align="right"><strong>MSN IM</strong></td>
<td><?php echo $profiledata["user_msn"] ?></td>
</tr>
<tr>
<td align="right"><strong>YahooIM</strong></td>
<td><?php echo $profiledata["user_yim"] ?></td>
</tr>
</table>
</td>
<td valign="top">
<table cellpadding="5" cellspacing="0">
<tr>
<td>
<strong>ID</strong> <?php echo $profiledata["ID"] ?></td>
</tr>
<tr>
<td>
<strong>level</strong> <?php echo $profiledata["user_level"] ?>
</td>
</tr>
<tr>
<td>
<strong>posts</strong>
<?php
$posts=get_usernumposts($user);
echo $posts;
?>
</td>
</tr>
<tr>
<td>
<strong>identity</strong><br />
<?php
switch($profiledata["user_idmode"]) {
case "nickname":
$r=$profiledata["user_nickname"];
break;
case "login":
$r=$profiledata["user_login"];
break;
case "firstname":
$r=$profiledata["user_firstname"];
break;
case "lastname":
$r=$profiledata["user_lastname"];
break;
case "namefl":
$r=$profiledata["user_firstname"]." ".$profiledata["user_lastname"];
break;
case "namelf":
$r=$profiledata["user_lastname"]." ".$profiledata["user_firstname"];
break;
}
echo $r;
?>
</td>
</tr>
</table>
</td>
</table>
</form>
<?php
break;
case 'IErightclick':
$profile = 1;
include ('b2header.php');
$bookmarklet_tbpb = ($use_trackback) ? '&trackback=1' : '';
$bookmarklet_tbpb .= ($use_pingback) ? '&pingback=1' : '';
$bookmarklet_height= ($use_trackback) ? 340 : 300;
?>
<div class="menutop">&nbsp;IE one-click bookmarklet</div>
<table width="100%" cellpadding="20">
<tr><td>
<p>To have a one-click bookmarklet, just copy and paste this<br />into a new text file:</p>
<?php
$regedit = "REGEDIT4\r\n[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\Post To &b2 : ".$blogname."]\r\n@=\"javascript:doc=external.menuArguments.document;Q=doc.selection.createRange().text;void(btw=window.open('".$pathserver."/b2bookmarklet.php?text='+escape(Q)+'".$bookmarklet_tbpb."&popupurl='+escape(doc.location.href)+'&popuptitle='+escape(doc.title),'b2bookmarklet','scrollbars=no,width=480,height=".$bookmarklet_height.",left=100,top=150,status=yes'));btw.focus();\"\r\n\"contexts\"=hex:31\"";
?>
<pre style="margin: 20px; background-color: #cccccc; border: 1px dashed #333333; padding: 5px; font-size: 12px;"><?php echo $regedit; ?></pre>
<p>Save it as b2.reg, and double-click on this file in an Explorer<br />
window. Answer Yes to the question, and restart Internet Explorer.<br /><br />
That's it, you can now right-click in an IE window and select <br />
'Post to b2' to make the bookmarklet appear :)</p>
<p align="center">
<form>
<input class="search" type="button" value="1" name="Close this window" />
</form>
</p>
</td></tr>
</table>
<?php
break;
default:
$profile=1;
include ("b2header.php");
$profiledata=get_userdata($user_ID);
$bookmarklet_tbpb = ($use_trackback) ? '&trackback=1' : '';
$bookmarklet_tbpb .= ($use_pingback) ? '&pingback=1' : '';
$bookmarklet_height= ($use_trackback) ? 340 : 300;
?>
<form name="form" action="b2profile.php" method="post">
<input type="hidden" name="action" value="update" />
<input type="hidden" name="checkuser_id" value="<?php echo $user_ID ?>" />
<table width="100%">
<td width="200" valign="top">
<table cellpadding="5" cellspacing="0">
<tr>
<td align="right"><strong>login</strong></td>
<td><?php echo $profiledata["user_login"] ?></td>
</tr>
<tr>
<td align="right"><strong>first name</strong></td>
<td><input type="text" name="newuser_firstname" value="<?php echo $profiledata["user_firstname"] ?>" class="postform" /></td>
</tr>
<tr>
<td align="right"><strong>last name</strong></td>
<td><input type="text" name="newuser_lastname" value="<?php echo $profiledata["user_lastname"] ?>" class="postform" /></td>
</tr>
<tr>
<td align="right"><strong>nickname</strong></td>
<td><input type="text" name="newuser_nickname" value="<?php echo $profiledata["user_nickname"] ?>" class="postform" /></td>
</tr>
<tr>
<td align="right"><strong>email</strong></td>
<td><input type="text" name="newuser_email" value="<?php echo $profiledata["user_email"] ?>" class="postform" /></td>
</tr>
<tr>
<td align="right"><strong>URL</strong></td>
<td><input type="text" name="newuser_url" value="<?php echo $profiledata["user_url"] ?>" class="postform" /></td>
</tr>
<tr>
<td align="right"><strong>ICQ</strong></td>
<td><input type="text" name="newuser_icq" value="<?php if ($profiledata["user_icq"] > 0) { echo $profiledata["user_icq"]; } ?>" class="postform" /></td>
</tr>
<tr>
<td align="right"><strong>AIM</strong></td>
<td><input type="text" name="newuser_aim" value="<?php echo $profiledata["user_aim"] ?>" class="postform" /></td>
</tr>
<tr>
<td align="right"><strong>MSN IM</strong></td>
<td><input type="text" name="newuser_msn" value="<?php echo $profiledata["user_msn"] ?>" class="postform" /></td>
</tr>
<tr>
<td align="right"><strong>YahooIM</strong></td>
<td><input type="text" name="newuser_yim" value="<?php echo $profiledata["user_yim"] ?>" class="postform" /></td>
</tr>
</table>
</td>
<td valign="top">
<table cellpadding="5" cellspacing="0">
<tr>
<td>
<strong>ID</strong> <?php echo $profiledata["ID"] ?></td>
</tr>
<tr>
<td>
<strong>level</strong> <?php echo $profiledata["user_level"] ?>
</td>
</tr>
<tr>
<td>
<strong>posts</strong>
<?php
$posts=get_usernumposts($user_ID);
echo $posts;
?>
</td>
</tr>
<tr>
<td>
<strong>identity</strong> on the blog:<br>
<select name="newuser_idmode" class="postform">
<option value="nickname"<?php
if ($profiledata["user_idmode"]=="nickname")
echo " selected"; ?>><?php echo $profiledata["user_nickname"] ?></option>
<option value="login"<?php
if ($profiledata["user_idmode"]=="login")
echo " selected"; ?>><?php echo $profiledata["user_login"] ?></option>
<option value="firstname"<?php
if ($profiledata["user_idmode"]=="firstname")
echo " selected"; ?>><?php echo $profiledata["user_firstname"] ?></option>
<option value="lastname"<?php
if ($profiledata["user_idmode"]=="lastname")
echo " selected"; ?>><?php echo $profiledata["user_lastname"] ?></option>
<option value="namefl"<?php
if ($profiledata["user_idmode"]=="namefl")
echo " selected"; ?>><?php echo $profiledata["user_firstname"]." ".$profiledata["user_lastname"] ?></option>
<option value="namelf"<?php
if ($profiledata["user_idmode"]=="namelf")
echo " selected"; ?>><?php echo $profiledata["user_lastname"]." ".$profiledata["user_firstname"] ?></option>
</select>
</td>
</tr>
<tr>
<td>
<br />
new <strong>password</strong> (twice)<br>
<input type="password" name="pass1" size="16" value="" class="postform" /><br>
<input type="password" name="pass2" size="16" value="" class="postform" />
</td>
</tr>
<?php
if ($user_level > 0) {
?> <tr>
<td><br /><strong>bookmarklet</strong><br />add the link to your Favorites/Bookmarks<br />
<?php
if ($is_NS4 || $is_gecko) {
?>
<a href="javascript:Q=document.selection?document.selection.createRange().text:document.getSelection();void(window.open('<?php echo $path ?>/b2bookmarklet.php?text='+escape(Q)+'<?php echo $bookmarklet_tbpb ?>&popupurl='+escape(location.href)+'&popuptitle='+escape(document.title),'b2 bookmarklet','scrollbars=no,width=480,height=<?php echo $bookmarklet_height ?>,left=100,top=150,status=yes'));">b2 - <?php echo $blogname ?></a>
<?php
} else if ($is_winIE) {
?>
<a href="javascript:Q='';if(top.frames.length==0)Q=document.selection.createRange().text;void(btw=window.open('<?php echo $path ?>/b2bookmarklet.php?text='+escape(Q)+'<?php echo $bookmarklet_tbpb ?>&popupurl='+escape(location.href)+'&popuptitle='+escape(document.title),'b2bookmarklet','scrollbars=no,width=480,height=<?php echo $bookmarklet_height ?>,left=100,top=150,status=yes'));btw.focus();">b2 - <?php echo $blogname ?></a>
<script type="text/javascript" language="javascript">
<!--
function oneclickbookmarklet(blah) {
window.open ("b2profile.php?action=IErightclick", "oneclickbookmarklet", "width=500, height=450, location=0, menubar=0, resizable=0, scrollbars=1, status=1, titlebar=0, toolbar=0, screenX=120, left=120, screenY=120, top=120");
}
// -->
</script>
<br /><br />
One-click bookmarklet:<br />
<a href="javascript:oneclickbookmarklet(0);">click here</a>
<?php
} else if ($is_opera) {
?>
<a href="javascript:void(window.open('<?php echo $path ?>/b2bookmarklet.php?popupurl='+escape(location.href)+'&popuptitle='+escape(document.title)+'<?php echo $bookmarklet_tbpb ?>','b2bookmarklet','scrollbars=no,width=480,height=<?php echo $bookmarklet_height ?>,left=100,top=150,status=yes'));">b2 - <?php echo $blogname ?></a>
<?php
} else if ($is_macIE) {
?>
<a href="javascript:Q='';if(top.frames.length==0);void(btw=window.open('<?php echo $path ?>/b2bookmarklet.php?text='+escape(document.getSelection())+'&popupurl='+escape(location.href)+'&popuptitle='+escape(document.title)+'<?php echo $bookmarklet_tbpb ?>','b2bookmarklet','scrollbars=no,width=480,height=<?php echo $bookmarklet_height ?>,left=100,top=150,status=yes'));btw.focus();">b2 - <?php echo $blogname ?></a> <?php
}
?>
<?php if ($is_gecko) { ?>
<br /><br />
<script language="JavaScript">
function addPanel()
{
if ((typeof window.sidebar == "object") && (typeof window.sidebar.addPanel == "function"))
window.sidebar.addPanel("b2 post: <?php echo $blogname ?>","<?php echo $pathserver ?>/b2sidebar.php","");
else
alert('No Sidebar found! You must use Mozilla 0.9.4 or later!');
}
</script>
<strong>SideBar</strong><br />
Add the <a href="#" onClick="addPanel()">b2 Sidebar</a> !
<?php } elseif (($is_winIE) || ($is_macIE)) { ?>
<br /><br />
<strong>SideBar</strong><br />
Add this link to your favorites:<br /><a href="javascript:Q='';if(top.frames.length==0)Q=document.selection.createRange().text;void(_search=open('<?php echo $pathserver ?>/b2sidebar.php?text='+escape(Q)+'&popupurl='+escape(location.href)+'&popuptitle='+escape(document.title),'_search'))">b2 Sidebar</a>.
<?php } ?>
</td>
</tr>
<?php
}
?> </table>
</td></tr>
<tr>
<td colspan="2" align="center"><br /><input class="search" type="submit" value="Update" name="submit"><br />Note: closes the popup window.</td>
</tr>
</table>
</form>
<?php
break;
}
/* </Profile | My Profile> */
include("b2footer.php") ?>