Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- /////////// ADMINNAVI \\\\\\\\\
- // Typ: settingsmenu
- // Rechte: permission('editusers')
- ///////////////////////////////
- if(_adminMenu != 'true') exit;
- $where = $where.': '._config_useradd_head;
- if(!permission("editusers"))
- {
- $show = error(_error_wrong_permissions, 1);
- } else {
- $dropdown_age = show(_dropdown_date, array("day" => dropdown("day",$bdayday,1),
- "month" => dropdown("month",$bdaymonth,1),
- "year" => dropdown("year",$bdayyear,1)));
- $gmaps_key = settings('gmaps_key');
- if(!empty($gmaps_key))
- {
- $gmaps = "
- <script language=\"javascript\" src=\"http://maps.google.com/maps?file=api&v=2&key=".$gmaps_key."\" type=\"text/javascript\"></script>
- <script language=\"javascript\" type=\"text/javascript\">
- <!--
- function getCord()
- {
- var address = $('#city').attr('value') + ', ' + $('#land').attr('value');
- var geocoder = new GClientGeocoder();
- geocoder.setCache(null);
- geocoder.getLatLng(address,
- function(point)
- {
- if(point)
- {
- $('#gmaps_koord').attr('value', point);
- }
- $('form#adduser').submit();
- }
- );
- DZCP.submitButton();
- return false;
- }
- //-->
- </script>";
- } else {
- $gmaps = "
- <script language=\"javascript\" type=\"text/javascript\">
- <!--
- function getCord()
- {
- return true;
- }
- //-->
- </script>";
- }
- $qrysq = db("SELECT id,name FROM ".$db['squads']."
- ORDER BY pos");
- while($getsq = _fetch($qrysq))
- {
- $qrypos = db("SELECT id,position FROM ".$db['pos']."
- ORDER BY pid");
- $posi = "";
- while($getpos = _fetch($qrypos))
- {
- $check = db("SELECT * FROM ".$db['userpos']."
- WHERE posi = '".$getpos['id']."'
- AND squad = '".$getsq['id']."'
- AND user = '".intval($_GET['edit'])."'");
- if(_rows($check)) $sel = "selected=\"selected\"";
- else $sel = "";
- $posi .= show(_select_field_posis, array("value" => $getpos['id'],
- "sel" => $sel,
- "what" => re($getpos['position'])));
- }
- $qrysquser = db("SELECT squad FROM ".$db['squaduser']."
- WHERE user = '".intval($_GET['edit'])."'
- AND squad = '".$getsq['id']."'");
- if(_rows($qrysquser))$check = "checked=\"checked\"";
- else $check = "";
- $esquads .= show(_checkfield_squads, array("id" => $getsq['id'],
- "check" => $check,
- "eposi" => $posi,
- "noposi" => _user_noposi,
- "squad" => re($getsq['name'])));
- }
- $show = show($dir."/register", array("registerhead" => _useradd_head,
- "pname" => _loginname,
- "pnick" => _nick,
- "pemail" => _email,
- "pbild" => _config_c_upicsize,
- "ppwd" => _pwd,
- "squadhead" => _admin_user_squadhead,
- "squad" => _member_admin_squad,
- "posi" => _profil_position,
- "esquad" => $esquads,
- "about" => _useradd_about,
- "level_info" => _level_info,
- "rechte" => _config_positions_rights,
- "getpermissions" => getPermissions(),
- "getboardpermissions" => getBoardPermissions(),
- "forenrechte" => _config_positions_boardrights,
- "preal" => _profil_real,
- "psex" => _profil_sex,
- "sex" => _pedit_male,
- "pbday" => _profil_bday,
- "dropdown_age" => $dropdown_age,
- "pwohn" => _useradd_wohn,
- "pcity" => _profil_city,
- "pcountry" => _profil_country,
- "country" => show_countrys($get['country']),
- "gmaps" => $gmaps,
- "level" => _admin_user_level,
- "ruser" => _status_user,
- "trial" => _status_trial,
- "alvl" => "",
- "member" => _status_member,
- "admin" => _status_admin,
- "banned" => _admin_level_banned,
- "value" => _button_value_reg));
- if($_GET['do'] == "add")
- {
- $check_user = db("SELECT id FROM ".$db['users']."
- WHERE user = '".$_POST['user']."'");
- $check_nick = db("SELECT id FROM ".$db['users']."
- WHERE nick = '".$_POST['nick']."'");
- $check_email = db("SELECT id FROM ".$db['users']."
- WHERE email = '".$_POST['email']."'");
- if(empty($_POST['user']))
- {
- $show = error(_empty_user, 1);
- } elseif(empty($_POST['nick'])) {
- $show = error(_empty_nick, 1);
- } elseif(empty($_POST['email'])) {
- $show = error(_empty_email, 1);
- } elseif(!check_email($_POST['email'])) {
- $show = error(_error_invalid_email, 1);
- } elseif(_rows($check_user)) {
- $show = error(_error_user_exists, 1);
- } elseif(_rows($check_nick)) {
- $show = error(_error_nick_exists, 1);
- } elseif(_rows($check_email)) {
- $show = error(_error_email_exists, 1);
- } else {
- if(empty($_POST['pwd'])) $mkpwd = mkpwd();
- else $mkpwd = $_POST['pwd'];
- $pwd = md5($mkpwd);
- if($_POST['t'] && $_POST['m'] && $_POST['j']) $bday = cal($_POST['t']).".".cal($_POST['m']).".".$_POST['j'];
- $qry = db("INSERT INTO ".$db['users']."
- SET `user` = '".$_POST['user']."',
- `nick` = '".$_POST['nick']."',
- `email` = '".$_POST['email']."',
- `pwd` = '".$pwd."',
- `rlname` = '".$_POST['rlname']."',
- `sex` = '".((int)$_POST['sex'])."',
- `bday` = '".$bday."',
- `city` = '".$_POST['city']."',
- `country` = '".$_POST['land']."',
- `regdatum` = '".((int)time())."',
- `level` = '".((int)$_POST['level'])."',
- `time` = '".time()."',
- `gmaps_koord` = '".up($_POST['gmaps_koord'])."',
- `status` = '1'");
- $insert_id = mysql_insert_id();
- /* <!-- ActivityPoints Mod Start by my-STARMEDIA --> */
- userPoints('register', $insert_id);
- $getp = _fetch(db("SELECT register_points FROM ".$sql_prefix."points"));
- db("UPDATE ".$db['users']." SET `max_points` = '".intval($getp['register_points'])."' WHERE id = '".intval($insert_id)."'");
- /* <!-- ActivityPoints Mod Stop by my-STARMEDIA --> */
- $protocol = "createuser(".$_SESSION['id']."_".$insert_id.")";
- $upd = db("INSERT INTO ".$db['ipcheck']."
- SET `ip` = '".$userip."',
- `what` = '".$protocol."',
- `time` = '".((int)time())."'");
- // permissions
- if(!empty($_POST['perm']))
- {
- foreach($_POST['perm'] AS $v => $k) $p .= "`".substr($v, 2)."` = '".intval($k)."',";
- if(!empty($p)) $p = ', '.substr($p, 0, strlen($p) - 1);
- db("INSERT INTO ".$db['permissions']." SET `user` = '".intval($insert_id)."'".$p);
- }
- ////////////////////
- // internal boardpermissions
- if(!empty($_POST['board']))
- {
- foreach($_POST['board'] AS $v)
- db("INSERT INTO ".$db['f_access']." SET `user` = '".intval($insert_id)."', `forum` = '".$v."'");
- }
- ////////////////////
- $sq = db("SELECT * FROM ".$db['squads']."");
- while($getsq = _fetch($sq))
- {
- if(isset($_POST['squad'.$getsq['id']]))
- {
- $qry = db("INSERT INTO ".$db['squaduser']."
- SET `user` = '".((int)$insert_id)."',
- `squad` = '".((int)$_POST['squad'.$getsq['id']])."'");
- }
- if(isset($_POST['squad'.$getsq['id']]))
- {
- $qry = db("INSERT INTO ".$db['userpos']."
- SET `user` = '".((int)$insert_id)."',
- `posi` = '".((int)$_POST['sqpos'.$getsq['id']])."',
- `squad` = '".((int)$getsq['id'])."'");
- }
- }
- $tmpname = $_FILES['file']['tmp_name'];
- $name = $_FILES['file']['name'];
- $type = $_FILES['file']['type'];
- $size = $_FILES['file']['size'];
- $endung = explode(".", $_FILES['file']['name']);
- $endung = strtolower($endung[count($endung)-1]);
- if($tmpname)
- {
- $imageinfo = getimagesize($tmpname);
- foreach($picformat as $tmpendung)
- {
- if(file_exists(basePath."/inc/images/uploads/userpics/".$insert_id.".".$tmpendung))
- {
- @unlink(basePath."/inc/images/uploads/userpics/".$insert_id.".".$tmpendung);
- }
- }
- copy($tmpname, basePath."/inc/images/uploads/userpics/".$insert_id.".".strtolower($endung)."");
- @unlink($_FILES['file']['tmp_name']);
- }
- $qry = db("INSERT INTO ".$db['userstats']."
- SET `user` = '".((int)$insert_id)."',
- `lastvisit` = '".((int)time())."'");
- $show = info(_uderadd_info, "../admin/");
- }
- }
- }
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement