$phpbb_admin_path = (defined('PHPBB_ADMIN_PATH')) ? PHPBB_ADMIN_PATH : './';

// Some oft used variables

$module_id = request_var('i', '');

$mode = request_var('mode', '');

{

global $base_memory_usage;

$memory_usage -= $base_memory_usage;

$debug_output .= ' | Memory Usage: ' . $memory_usage;

}

}

/**

*/

function validate_config_vars($config_vars, &$cfg_array, &$error)

{

global $phpbb_root_path, $user;

foreach ($config_vars as $config_name => $config_definition)

{

if (!isset($cfg_array[$config_name]) || strpos($config_name, 'legend') !== false)

{

continue;

}

if (!isset($config_definition['validate']))

{

continue;

}

{

case 'bool':

$cfg_array[$config_name] = ($cfg_array[$config_name]) ? 1 : 0;

break;

case 'int':

$cfg_array[$config_name] = (int) $cfg_array[$config_name];

break;

// Absolute path

return;

}

?> \ No newline at end of file

{

if (newimage == 'no_image')

{

}

else

{

}

}

<dd><select name="upload_icon" id="upload_icon" onchange="update_image(this.options[selectedIndex].value);">

<option value="no_image"<!-- IF S_NO_IMAGE --> selected="selected"<!-- ENDIF -->>{L_NO_IMAGE}</option>{S_FILENAME_LIST}

</select></dd>

</dl>

<dl>

<dt><label for="extgroup_filesize">{L_MAX_EXTGROUP_FILESIZE}:</label></dt>

<td style="text-align: center;">{bbcodes.BBCODE_TAG}</td>

<td style="text-align: right; width: 40px;"><a href="{bbcodes.U_EDIT}">{ICON_EDIT}</a> <a href="{bbcodes.U_DELETE}">{ICON_DELETE}</a></td>

</tr>

<!-- END bbcodes -->

</tbody>

</table>

<p>{L_ACP_RESTORE_EXPLAIN}</p>

<form id="acp_backup" method="post" action="{U_ACTION}">

<fieldset>

<legend>{L_RESTORE_OPTIONS}</legend>

<dl>

<dd><select id="file" name="file" size="10"><!-- BEGIN files --><option value="{files.FILE}"<!-- IF files.S_LAST_ROW --> selected="selected"<!-- ENDIF -->>{files.NAME}</option><!-- END files --></select></dd>

</dl>

</fieldset>

</form>

<!-- ELSE -->

<h1>{L_ACP_BACKUP}</h1>

<option value="{tables.TABLE}">{tables.TABLE}</option>

<!-- END tables -->

</select></dd>

</dl>

<p class="submit-buttons">

<dd><select id="forum_status" name="forum_status">{S_STATUS_OPTIONS}</select></dd>

</dl>

<dl>

<dt><label for="display_on_index">{L_LIST_INDEX}:</label><br /><span>{L_LIST_INDEX_EXPLAIN}</span></dt>

<dd><label><input type="radio" class="radio" name="display_on_index" value="1"<!-- IF S_DISPLAY_ON_INDEX --> id="display_on_index" checked="checked"<!-- ENDIF --> /> {L_YES}</label>

<label><input type="radio" class="radio" name="display_on_index" value="0"<!-- IF not S_DISPLAY_ON_INDEX --> id="display_on_index" checked="checked"<!-- ENDIF --> /> {L_NO}</label></dd>

<!-- IF forums.S_FIRST_ROW && not forums.S_LAST_ROW -->

{ICON_MOVE_UP_DISABLED}

<a href="{forums.U_MOVE_DOWN}">{ICON_MOVE_DOWN}</a>

<a href="{forums.U_MOVE_UP}">{ICON_MOVE_UP}</a>

<a href="{forums.U_MOVE_DOWN}">{ICON_MOVE_DOWN}</a>

<!-- ELSEIF forums.S_LAST_ROW && not forums.S_FIRST_ROW -->

function toggle_select(icon, display, select)

{

disp.disabled = !display;

nodisp.disabled = display;

if (display)

{

nodisp.className = 'disabled-options';

disp.className = '';

}

else

{

disp.className = 'disabled-options';

nodisp.className = '';

}

<td><input class="text post" type="text" size="3" name="width[{items.IMG}]" value="{items.WIDTH}" /></td>

<td><input class="text post" type="text" size="3" name="height[{items.IMG}]" value="{items.HEIGHT}" /></td>

<td>

<!-- IF items.S_ID -->

<input type="hidden" name="id[{items.IMG}]" value="{items.ID}" />

<!-- ENDIF -->

</td>

<!-- IF ID or S_ADD -->

</select></td>

<!-- ENDIF -->

<!-- IF S_ADD -->

&nbsp;<a href="{items.U_EDIT}">{ICON_EDIT}</a> <a href="{items.U_DELETE}">{ICON_DELETE}</a>

</td>

</tr>

<!-- END items -->

</tbody>

</table>

<!--[if lt IE 8]>

<style type="text/css">

input.langvalue, textarea.langvalue {

width: 450px;

}

</style>

<![endif]-->

<p>{L_EXPLAIN}</p>

<br />

<a href="#acl">&raquo; {L_SET_ROLE_PERMISSIONS}</a>

<fieldset>

<legend>{L_ROLE_DETAILS}</legend>

<dl>

<p class="quick">

<input type="submit" class="button1" name="submit" value="{L_SUBMIT}" />

</p>

</fieldset>

<!-- ENDIF -->

<a name="acl"></a>

<a href="#maincontent">&raquo; {L_BACK_TO_TOP}</a><br />

<br /><br />

<h1>{L_ACL_TYPE}</h1>

<fieldset class="perm nolegend">

<!-- IF auth.mask.S_ROW_COUNT is even --><tr class="row4"><!-- ELSE --><tr class="row3"><!-- ENDIF -->

<th class="permissions-name<!-- IF auth.mask.S_ROW_COUNT is even --> row4<!-- ELSE --> row3<!-- ENDIF -->">{auth.mask.PERMISSION}</th>

</tr>

<!-- END mask -->

</tbody>

<p>{L_LOOK_UP_FORUMS_EXPLAIN}</p>

<dl>

<dt><label for="forum">{L_LOOK_UP_FORUM}:</label></dt>

<dd><label><input type="checkbox" class="radio" name="all_forums" value="1" /> {L_ALL_FORUMS}</label></dd>

</dl>

</dl>

<dl>

<dt><label for="copyright">{L_COPYRIGHT}:</label></dt>

</dl>

<!-- IF S_STYLE and not S_BASIS -->

<dl>

<td style="text-align: center;">{words.REPLACEMENT}</td>

<td>&nbsp;<a href="{words.U_EDIT}">{ICON_EDIT}</a>&nbsp;&nbsp;<a href="{words.U_DELETE}">{ICON_DELETE}</a>&nbsp;</td>

</tr>

<!-- END words -->

</tbody>

</table>

<title>{L_COLOUR_SWATCH}</title>

<style type="text/css">

body {

background-color: #404040;

color: #fff;

img {

border: 0;

}

</style>

</head>

</script>

<style type="text/css">

#main {

font-size: 1em;

<!-- ENDIF -->

</style>

</head>

// Redirect the user to the installer

// We have to generate a full HTTP/1.1 header here since we can't guarantee to have any of the information

// available as used by the redirect function

$server_port = (!empty($_SERVER['SERVER_PORT'])) ? (int) $_SERVER['SERVER_PORT'] : (int) getenv('SERVER_PORT');

$secure = (isset($_SERVER['HTTPS']) && $_SERVER['HTTPS'] == 'on') ? 1 : 0;

if ($server_port && (($secure && $server_port <> 443) || (!$secure && $server_port <> 80)))

{

}

$url .= $script_path;

'forum_last_poster_name'=> array('VCHAR_UNI', ''),

'forum_last_poster_colour'=> array('VCHAR:6', ''),

'forum_flags' => array('TINT:4', 32),

'display_on_index' => array('BOOL', 1),

'enable_indexing' => array('BOOL', 1),

'enable_icons' => array('BOOL', 1),

),

'PRIMARY_KEY' => 'group_id',

'KEYS' => array(

),

);

'COLUMNS' => array(

'session_id' => array('CHAR:32', ''),

'session_user_id' => array('UINT', 0),

'session_last_visit' => array('TIMESTAMP', 0),

'session_start' => array('TIMESTAMP', 0),

'session_time' => array('TIMESTAMP', 0),

'KEYS' => array(

'session_time' => array('INDEX', 'session_time'),

'session_user_id' => array('INDEX', 'session_user_id'),

),

);

<ol>

<li><a href="#changelog">Changelog</a>

<ol style="list-style-type: lower-roman;">

<li><a href="#v30rc8">Changes since RC-8</a></li>

<li><a href="#v30rc7">Changes since RC-7</a></li>

<li><a href="#v30rc6">Changes since RC-6</a></li>

<span class="corners-bottom"><span></span></span></div>

</div>

<hr />

<a name="changelog"></a><h2>1. Changelog</h2>

<div class="content">

<a name="v30rc8"></a><h3>1.i. Changes since 3.0.RC8</h3>

<ul>

<a name="update_patch"></a><h3>4.iii. Patch file</h3>

<p>A number of patch files are provided to allow you to update from previous stable releases. Select the correct patch, e.g. if your current version is 3.0.0 you need the phpBB-3.0.0_to_3.0.1.patch file. Place the correct patch in the parent directory containing the phpBB3 core files (i.e. index.php, viewforum.php, etc.). With this done you should run the following command: <strong>patch -cl -d [PHPBB DIRECTORY] -p1 &lt; [PATCH NAME]</strong> (where PHPBB DIRECTORY is the directory name your phpBB Installation resides in, for example phpBB3, and where PATCH NAME is the relevant filename of the selected patch file). This should complete quickly, hopefully without any HUNK FAILED comments.</p>

<p><strong>Password conversion</strong> Due to the utf-8 based handling of passwords in phpBB3, it is not always possible to transfer all passwords. For passwords "lost in translation" the easiest workaround is to use the "forgotten password" function.</p>

<p><strong>Missing images</strong> If your default board language's language pack does not include all images, then some images might be missing in your installation. Always use a complete language pack as default language.</p>

<p>If entered with tabs (replace the {TAB}) both equal signs need to be on the same column.</p>

<h3>Linefeeds:</h3>

<a name="fileheader"></a><h3>1.ii. File Header</h3>

<span class="comment">&lt;!-- END loopname --&gt;</span>

</pre></div>

<h4>Including files</h4>

<p>Something that existed in 2.0.x which no longer exists in 3.0.x is the ability to assign a template to a variable. This was used (for example) to output the jumpbox. Instead (perhaps better, perhaps not but certainly more flexible) we now have INCLUDE. This takes the simple form:</p>

<title>phpBB3 &bull; Hook System</title>

<style type="text/css">

/*

The original "prosilver" theme for phpBB3

margin-left: 25px;

}

</style>

</head>

exit;

}

unset($dbpasswd);

// worst-case default

$browser = (!empty($_SERVER['HTTP_USER_AGENT'])) ? htmlspecialchars((string) $_SERVER['HTTP_USER_AGENT']) : 'msie 6.0';

$avatar_group = true;

$filename = substr($filename, 1);

}

// '==' is not a bug - . as the first char is as bad as no dot at all

if (strpos($filename, '.') == false)

{

if (!empty($cache))

{

$cache->unload();

$db->sql_close();

exit;

}

$ext = substr(strrchr($filename, '.'), 1);

$stamp = (int) substr(stristr($filename, '_'), 1);

$filename = (int) $filename;

// let's see if we have to send the file at all

$last_load = isset($_SERVER['HTTP_IF_MODIFIED_SINCE']) ? strtotime(trim($_SERVER['HTTP_IF_MODIFIED_SINCE'])) : false;

if (strpos(strtolower($browser), 'msie 6.0') === false)

{

if ($last_load !== false && $last_load <= $stamp)

{

// seems that we need those too ... browsers

header('Pragma: public');

header('Expires: ' . gmdate('D, d M Y H:i:s \G\M\T', time() + 31536000));

exit();

else

{

header('Last-Modified: ' . gmdate('D, d M Y H:i:s', $stamp) . ' GMT');

}

}

if (!in_array($ext, array('png', 'gif', 'jpg', 'jpeg')))

{

// no way such an avatar could exist. They are not following the rules, stop the show.

if (!empty($cache))

{

$cache->unload();

$db->sql_close();

exit;

}

if (!$filename)

{

// no way such an avatar could exist. They are not following the rules, stop the show.

if (!empty($cache))

{

$cache->unload();

$row['forum_id'] = false;

if (!$auth->acl_get('u_pm_download'))

{

trigger_error('SORRY_AUTH_VIEW_ATTACH');

}

}

// disallowed?

if (!download_allowed())

{

trigger_error($user->lang['LINKAGE_FORBIDDEN']);

}

{

trigger_error($user->lang['PHYSICAL_DOWNLOAD_NOT_POSSIBLE']);

}

redirect($phpbb_root_path . $config['upload_path'] . '/' . $attachment['physical_filename']);

exit;

}

{

header('Content-Disposition: ' . ((strpos($attachment['mimetype'], 'image') === 0) ? 'inline' : 'attachment') . '; ' . header_filename(htmlspecialchars_decode($attachment['real_filename'])));

}

if ($size)

{

header("Content-Length: $size");

}

}

}

// Check for own server...

// Forcing server vars is the only way to specify/override the protocol

if ($config['force_server_vars'] || !$server_name)

{

$allowed = true;

}

// Get IP's and Hostnames

if (!$allowed)

{

}

$db->sql_freeresult($result);

}

return $allowed;

}

if ($var_name[0] == '_')

{

}

else if (isset($this->vars[$var_name]))

{

}

else if ($expired)

{

return false;

}

/**

* Removes/unlinks file

*/

{

{

// E_USER_ERROR - not using language entry - intended.

trigger_error('Unable to remove files within ' . $this->cache_dir . '. Please check directory permissions.', E_USER_ERROR);

}

}

}

{

var $u_action;

var $new_config;

function main($id, $mode)

{

global $db, $user, $auth, $template, $cache;

case 'ext_groups':

$l_title = 'ACP_EXTENSION_GROUPS';

break;

case 'orphan':

$l_title = 'ACP_ORPHAN_ATTACHMENTS';

break;

if (in_array($config_name, array('attachment_quota', 'max_filesize', 'max_filesize_pm')))

{

$size_var = request_var($config_name, '');

}

if ($submit)

}

// We strip eventually manual added convert program, we only want the patch

$supported_types = get_supported_image_types();

// Secure Download Options - Same procedure as with banning

$allow_deny = ($this->new_config['secure_allow_deny']) ? 'ALLOWED' : 'DISALLOWED';

$sql = 'SELECT *

FROM ' . SITELIST_TABLE;

$result = $db->sql_query($sql);

'CONTENT' => build_cfg_template($type, $config_key, $this->new_config, $config_key, $vars),

)

);

unset($display_vars['vars'][$config_key]);

}

FROM ' . EXTENSIONS_TABLE . '

WHERE ' . $db->sql_in_set('extension_id', $extension_id_list);

$result = $db->sql_query($sql);

$extension_list = '';

while ($row = $db->sql_fetchrow($result))

{

FROM ' . EXTENSIONS_TABLE . "

WHERE extension = '" . $db->sql_escape($add_extension) . "'";

$result = $db->sql_query($sql);

if ($row = $db->sql_fetchrow($result))

{

$error[] = sprintf($user->lang['EXTENSION_EXIST'], $add_extension);

$allowed_forums = request_var('allowed_forums', array(0));

$allow_in_pm = (isset($_POST['allow_in_pm'])) ? true : false;

$max_filesize = request_var('max_filesize', 0);

$allow_group = (isset($_POST['allow_group'])) ? true : false;

if ($max_filesize == $config['max_filesize'])

SET group_id = 0

WHERE group_id = $group_id";

$db->sql_query($sql);

add_log('admin', 'LOG_ATTACH_EXTGROUP_DEL', $group_name);

$cache->destroy('_extensions');

}

$size_format = ($ext_group_row['max_filesize'] >= 1048576) ? 'mb' : (($ext_group_row['max_filesize'] >= 1024) ? 'kb' : 'b');

$img_path = $config['upload_icons_path'];

$upload_list = array();

foreach ($add_files as $attach_id)

{

{

$upload_list[$attach_id] = $post_ids[$attach_id];

}

AND is_orphan = 1';

$result = $db->sql_query($sql);

while ($row = $db->sql_fetchrow($result))

{

$post_row = $post_info[$upload_list[$row['attach_id']]];

WHERE topic_id = ' . $post_row['topic_id'];

$db->sql_query($sql);

add_log('admin', 'LOG_ATTACH_FILEUPLOAD', $post_row['post_id'], $row['real_filename']);

}

$db->sql_freeresult($result);

}

}

while ($row = $db->sql_fetchrow($result))

{

$template->assign_block_vars('orphan', array(

'FILETIME' => $user->format_date($row['filetime']),

'REAL_FILENAME' => basename($row['real_filename']),

'PHYSICAL_FILENAME' => basename($row['physical_filename']),

ATTACHMENT_CATEGORY_FLASH => $user->lang['CAT_FLASH_FILES'],

ATTACHMENT_CATEGORY_QUICKTIME => $user->lang['CAT_QUICKTIME_FILES'],

);

if ($group_id)

{

$sql = 'SELECT cat_id

{

$cat_type = ATTACHMENT_CATEGORY_NONE;

}

$group_select = '<select name="' . $select_name . '"' . (($key) ? ' id="' . $key . '"' : '') . '>';

foreach ($types as $type => $mode)

function group_select($select_name, $default_group = false, $key = '')

{

global $db, $user;

$group_select = '<select name="' . $select_name . '"' . (($key) ? ' id="' . $key . '"' : '') . '>';

$sql = 'SELECT group_id, group_name

$row['group_id'] = 0;

$row['group_name'] = $user->lang['NOT_ASSIGNED'];

$group_name[] = $row;

for ($i = 0; $i < sizeof($group_name); $i++)

{

if ($default_group === false)

if (empty($magic_home))

{

$locations = array('C:/WINDOWS/', 'C:/WINNT/', 'C:/WINDOWS/SYSTEM/', 'C:/WINNT/SYSTEM/', 'C:/WINDOWS/SYSTEM32/', 'C:/WINNT/SYSTEM32/', '/usr/bin/', '/usr/sbin/', '/usr/local/bin/', '/usr/local/sbin/', '/opt/', '/usr/imagemagick/', '/usr/bin/imagemagick/');

$locations = array_merge($path_locations, $locations);

foreach ($locations as $location)

{

// The path might not end properly, fudge it

{

$location .= '/';

}

$db->sql_query($sql);

}

}

if (!empty($ip_list_log))

{

// Update log

{

// Determine size var and adjust the value accordingly

$size_var = ($value >= 1048576) ? 'mb' : (($value >= 1024) ? 'kb' : 'b');

return '<input type="text" id="' . $key . '" size="8" maxlength="15" name="config[' . $key . ']" value="' . $value . '" /> <select name="' . $key . '">' . size_select_options($size_var) . '</select>';

}

'!(' . str_replace(array('!', '\#'), array('\!', '#'), get_preg_expression('relative_url')) . ')!e' => "\$this->bbcode_specialchars('$1')"

),

'EMAIL' => array(

),

'TEXT' => array(

'!(.*?)!es' => "str_replace(array(\"\\r\\n\", '\\\"', '\\'', '(', ')'), array(\"\\n\", '\"', '&#39;', '&#40;', '&#41;'), trim('\$1'))"

$sp_tokens = array(

'URL' => '(?i)((?:' . str_replace(array('!', '\#'), array('\!', '#'), get_preg_expression('url')) . ')|(?:' . str_replace(array('!', '\#'), array('\!', '#'), get_preg_expression('www_url')) . '))(?-i)',

'LOCAL_URL' => '(?i)(' . str_replace(array('!', '\#'), array('\!', '#'), get_preg_expression('relative_url')) . ')(?-i)',

'TEXT' => '(.*?)',

'SIMPLETEXT' => '([a-zA-Z0-9-+.,_ ]+)',

'IDENTIFIER' => '([a-zA-Z0-9-_]+)',

'allow_avatar_local' => array('lang' => 'ALLOW_LOCAL', 'validate' => 'bool', 'type' => 'radio:yes_no', 'explain' => false),

'allow_avatar_remote' => array('lang' => 'ALLOW_REMOTE', 'validate' => 'bool', 'type' => 'radio:yes_no', 'explain' => true),

'allow_avatar_upload' => array('lang' => 'ALLOW_UPLOAD', 'validate' => 'bool', 'type' => 'radio:yes_no', 'explain' => false),

'avatar_path' => array('lang' => 'AVATAR_STORAGE_PATH', 'validate' => 'rwpath', 'type' => 'text:20:255', 'explain' => true),

'avatar_gallery_path' => array('lang' => 'AVATAR_GALLERY_PATH', 'validate' => 'rpath', 'type' => 'text:20:255', 'explain' => true)

)

'vars' => array(

'legend1' => 'GENERAL_SETTINGS',

'allow_privmsg' => array('lang' => 'BOARD_PM', 'validate' => 'bool', 'type' => 'radio:yes_no', 'explain' => true),

'full_folder_action' => array('lang' => 'FULL_FOLDER_ACTION', 'validate' => 'int', 'type' => 'select', 'method' => 'full_folder_select', 'explain' => true),

'legend2' => 'GENERAL_OPTIONS',

'allow_mass_pm' => array('lang' => 'ALLOW_MASS_PM', 'validate' => 'bool', 'type' => 'radio:yes_no', 'explain' => false),

'auth_bbcode_pm' => array('lang' => 'ALLOW_BBCODE_PM', 'validate' => 'bool', 'type' => 'radio:yes_no', 'explain' => false),

'legend2' => 'POSTING',

'bump_type' => false,

'display_last_edited' => array('lang' => 'DISPLAY_LAST_EDITED', 'validate' => 'bool', 'type' => 'radio:yes_no', 'explain' => true),

)

);

break;

'allow_sig_links' => array('lang' => 'ALLOW_SIG_LINKS', 'validate' => 'bool', 'type' => 'radio:yes_no', 'explain' => true),

'legend2' => 'GENERAL_SETTINGS',

)

);

break;

'title' => 'ACP_REGISTER_SETTINGS',

'vars' => array(

'legend1' => 'GENERAL_SETTINGS',

'require_activation' => array('lang' => 'ACC_ACTIVATION', 'validate' => 'int', 'type' => 'custom', 'method' => 'select_acc_activation', 'explain' => true),

'allow_name_chars' => array('lang' => 'USERNAME_CHARS', 'validate' => 'string', 'type' => 'select', 'method' => 'select_username_chars', 'explain' => true),

'pass_complex' => array('lang' => 'PASSWORD_TYPE', 'validate' => 'string', 'type' => 'select', 'method' => 'select_password_chars', 'explain' => true),

'legend2' => 'GENERAL_OPTIONS',

'allow_namechange' => array('lang' => 'ALLOW_NAME_CHANGE', 'validate' => 'bool', 'type' => 'radio:yes_no', 'explain' => false),

'allow_emailreuse' => array('lang' => 'ALLOW_EMAIL_REUSE', 'validate' => 'bool', 'type' => 'radio:yes_no', 'explain' => true),

'enable_confirm' => array('lang' => 'VISUAL_CONFIRM_REG', 'validate' => 'bool', 'type' => 'radio:yes_no', 'explain' => true),

'legend3' => 'COPPA',

'coppa_enable' => array('lang' => 'ENABLE_COPPA', 'validate' => 'bool', 'type' => 'radio:yes_no', 'explain' => true),

'vars' => array(

'legend1' => 'GENERAL_SETTINGS',

'limit_load' => array('lang' => 'LIMIT_LOAD', 'validate' => 'string', 'type' => 'text:4:4', 'explain' => true),

'legend2' => 'GENERAL_OPTIONS',

'load_db_track' => array('lang' => 'YES_POST_MARKING', 'validate' => 'bool', 'type' => 'radio:yes_no', 'explain' => true),

'load_jumpbox' => array('lang' => 'YES_JUMPBOX', 'validate' => 'bool', 'type' => 'radio:yes_no', 'explain' => false),

'load_user_activity' => array('lang' => 'LOAD_USER_ACTIVITY', 'validate' => 'bool', 'type' => 'radio:yes_no', 'explain' => true),

'load_tplcompile' => array('lang' => 'RECOMPILE_STYLES', 'validate' => 'bool', 'type' => 'radio:yes_no', 'explain' => true),

'legend3' => 'CUSTOM_PROFILE_FIELDS',

'load_cpf_memberlist' => array('lang' => 'LOAD_CPF_MEMBERLIST', 'validate' => 'bool', 'type' => 'radio:yes_no', 'explain' => false),

'load_cpf_viewprofile' => array('lang' => 'LOAD_CPF_VIEWPROFILE', 'validate' => 'bool', 'type' => 'radio:yes_no', 'explain' => false),

'force_server_vars' => array('lang' => 'FORCE_SERVER_VARS', 'validate' => 'bool', 'type' => 'radio:yes_no', 'explain' => true),

'server_protocol' => array('lang' => 'SERVER_PROTOCOL', 'validate' => 'string', 'type' => 'text:10:10', 'explain' => true),

'server_name' => array('lang' => 'SERVER_NAME', 'validate' => 'string', 'type' => 'text:40:255', 'explain' => true),

'script_path' => array('lang' => 'SCRIPT_PATH', 'validate' => 'script_path', 'type' => 'text::255', 'explain' => true),

)

);

'vars' => array(

'legend1' => 'ACP_SECURITY_SETTINGS',

'allow_autologin' => array('lang' => 'ALLOW_AUTOLOGIN', 'validate' => 'bool', 'type' => 'radio:yes_no', 'explain' => true),

'ip_check' => array('lang' => 'IP_VALID', 'validate' => 'int', 'type' => 'custom', 'method' => 'select_ip_check', 'explain' => true),

'browser_check' => array('lang' => 'BROWSER_VALID', 'validate' => 'bool', 'type' => 'radio:yes_no', 'explain' => true),

'forwarded_for_check' => array('lang' => 'FORWARDED_FOR_VALID', 'validate' => 'bool', 'type' => 'radio:yes_no', 'explain' => true),

'check_dnsbl' => array('lang' => 'CHECK_DNSBL', 'validate' => 'bool', 'type' => 'radio:yes_no', 'explain' => true),

'email_check_mx' => array('lang' => 'EMAIL_CHECK_MX', 'validate' => 'bool', 'type' => 'radio:yes_no', 'explain' => true),

'pass_complex' => array('lang' => 'PASSWORD_TYPE', 'validate' => 'string', 'type' => 'select', 'method' => 'select_password_chars', 'explain' => true),

'tpl_allow_php' => array('lang' => 'TPL_ALLOW_PHP', 'validate' => 'bool', 'type' => 'radio:yes_no', 'explain' => true),

'form_token_sid_guests' => array('lang' => 'FORM_SID_GUESTS', 'validate' => 'bool', 'type' => 'radio:yes_no', 'explain' => true),

)

'email_enable' => array('lang' => 'ENABLE_EMAIL', 'validate' => 'bool', 'type' => 'radio:enabled_disabled', 'explain' => true),

'board_email_form' => array('lang' => 'BOARD_EMAIL_FORM', 'validate' => 'bool', 'type' => 'radio:enabled_disabled', 'explain' => true),

'email_function_name' => array('lang' => 'EMAIL_FUNCTION_NAME', 'validate' => 'string', 'type' => 'text:20:50', 'explain' => true),

'board_contact' => array('lang' => 'CONTACT_EMAIL', 'validate' => 'string', 'type' => 'text:25:100', 'explain' => true),

'board_email' => array('lang' => 'ADMIN_EMAIL', 'validate' => 'string', 'type' => 'text:25:100', 'explain' => true),

'board_email_sig' => array('lang' => 'EMAIL_SIG', 'validate' => 'string', 'type' => 'textarea:5:30', 'explain' => true),

'legend2' => 'SMTP_SETTINGS',

'smtp_delivery' => array('lang' => 'USE_SMTP', 'validate' => 'bool', 'type' => 'radio:yes_no', 'explain' => true),

'smtp_host' => array('lang' => 'SMTP_SERVER', 'validate' => 'string', 'type' => 'text:25:50', 'explain' => false),

'smtp_auth_method' => array('lang' => 'SMTP_AUTH_METHOD', 'validate' => 'string', 'type' => 'select', 'method' => 'mail_auth_select', 'explain' => true),

'smtp_username' => array('lang' => 'SMTP_USERNAME', 'validate' => 'string', 'type' => 'text:25:255', 'explain' => true),

'smtp_password' => array('lang' => 'SMTP_PASSWORD', 'validate' => 'string', 'type' => 'password:25:255', 'explain' => true)

{

$l_explain = (isset($user->lang[$vars['lang'] . '_EXPLAIN'])) ? $user->lang[$vars['lang'] . '_EXPLAIN'] : '';

}

$template->assign_block_vars('options', array(

'KEY' => $config_key,

'TITLE' => (isset($user->lang[$vars['lang']])) ? $user->lang[$vars['lang']] : $vars['lang'],

'CONTENT' => build_cfg_template($type, $config_key, $this->new_config, $config_key, $vars),

)

);

unset($display_vars['vars'][$config_key]);

}

}

$dateformat_options .= '<option value="custom"';

{

$dateformat_options .= ' selected="selected"';

}

'forum_rules_link' => request_var('forum_rules_link', ''),

'forum_image' => request_var('forum_image', ''),

'forum_style' => request_var('forum_style', 0),

'display_on_index' => request_var('display_on_index', false),

'forum_topics_per_page' => request_var('topics_per_page', 0),

'enable_indexing' => request_var('enable_indexing', true),

'forum_rules_link' => '',

'forum_image' => '',

'forum_style' => 0,

'display_on_index' => false,

'forum_topics_per_page' => 0,

'enable_indexing' => true,

'S_FORUM_CAT' => ($forum_data['forum_type'] == FORUM_CAT) ? true : false,

'S_ENABLE_INDEXING' => ($forum_data['enable_indexing']) ? true : false,

'S_TOPIC_ICONS' => ($forum_data['enable_icons']) ? true : false,

'S_DISPLAY_ON_INDEX' => ($forum_data['display_on_index']) ? true : false,

'S_PRUNE_ENABLE' => ($forum_data['enable_prune']) ? true : false,

'S_FORUM_LINK_TRACK' => ($forum_data['forum_flags'] & FORUM_FLAG_LINK_TRACK) ? true : false,

$forum_data['prune_days'] = $forum_data['prune_viewed'] = $forum_data['prune_freq'] = 0;

$errors[] = $user->lang['FORUM_DATA_NEGATIVE'];

}

// Set forum flags

// 1 = link tracking

}

$icons_updated = 0;

foreach ($images as $image)

{

{

}

else

{

default:

$suc_lang = $lang;

}

if ($action == 'modify')

{

}

else

{

}

break;

if (preg_match_all("#'(.*?)', ?#", $pak_entry, $data))

{

if ((sizeof($data[1]) != 4 && $mode == 'icons') ||

{

trigger_error($user->lang['WRONG_PAK_TYPE'] . adm_back_link($this->u_action), E_USER_WARNING);

}

$users_per_day = sprintf('%.2f', $total_users / $boarddays);

$files_per_day = sprintf('%.2f', $total_files / $boarddays);

$avatar_dir_size = 0;

if ($avatar_dir = @opendir($phpbb_root_path . $config['avatar_path']))

}

closedir($avatar_dir);

}

else

{

'DATABASE_INFO' => $db->sql_server_info(),

'BOARD_VERSION' => $config['version'],

'U_ADMIN_LOG' => append_sid("{$phpbb_admin_path}index.$phpEx", 'i=logs&amp;mode=admin'),

'U_INACTIVE_USERS' => append_sid("{$phpbb_admin_path}index.$phpEx", 'i=inactive&amp;mode=list'),

$this->tpl_name = 'permission_trace';

{

$this->page_title = sprintf($user->lang['TRACE_PERMISSION'], $user->lang['acl_' . $permission]['lang']);

$this->permission_trace($user_id, $forum_id, $permission);

$forum_id = array();

while ($row = $db->sql_fetchrow($result))

{

}

$db->sql_freeresult($result);

}

$forum_id = array();

foreach (get_forum_branch($subforum_id, 'children') as $row)

{

}

}

$ids = array();

while ($row = $db->sql_fetchrow($result))

{

}

$db->sql_freeresult($result);

}

global $db, $user;

$sql_forum_id = ($permission_scope == 'global') ? 'AND a.forum_id = 0' : ((sizeof($forum_id)) ? 'AND ' . $db->sql_in_set('a.forum_id', $forum_id) : 'AND a.forum_id <> 0');

$result = $db->sql_query($sql);

while ($row = $db->sql_fetchrow($result))

{

}

$db->sql_freeresult($result);

$sql_forum_id

$result = $db->sql_query($sql);

$s_defined_group_options = '';

$where_sql .= ($email) ? ' AND user_email ' . $db->sql_like_expression(str_replace('*', $db->any_char, $email)) . ' ' : '';

$where_sql .= (sizeof($joined)) ? " AND user_regdate " . $key_match[$joined_select] . ' ' . gmmktime(0, 0, 0, (int) $joined[1], (int) $joined[2], (int) $joined[0]) : '';

$where_sql .= ($count !== '') ? " AND user_posts " . $key_match[$count_select] . ' ' . (int) $count . ' ' : '';

}

// Protect the admin, do not prune if no options are given...

}

}

trigger_error($user->lang['CONFIG_UPDATED'] . $extra_message . adm_back_link($this->u_action));

}

unset($cfg_array);

function close_popup_js()

{

return "<script type=\"text/javascript\">\n" .

" close_waitscreen = 1;\n" .

"</script>\n";

}

'CACHED' => $user->format_date(filemtime("{$phpbb_root_path}cache/$filename")),

'FILENAME' => $file,

'MODIFIED' => $user->format_date((!$template_row['template_storedb']) ? filemtime("{$phpbb_root_path}styles/{$template_row['template_path']}/template/$tpl_file.html") : $filemtime[$file . '.html']))

);

}

$sql = 'UPDATE ' . USERS_TABLE . ' SET ' . $db->sql_build_array('UPDATE', $sql_ary) . "

WHERE user_id = $user_id";

$db->sql_query($sql);

add_log('admin', 'LOG_USER_DEL_SIG', $user_row['username']);

add_log('user', $user_id, 'LOG_USER_DEL_SIG_USER');

'update' => true))

);

}

break;

case 'moveposts':

if (!check_form_key($form_name))

}

$forum_id_ary = array_unique($forum_id_ary);

if (sizeof($topic_id_ary))

{

{

$quick_tool_ary += array('active' => (($user_row['user_type'] == USER_INACTIVE) ? 'ACTIVATE' : 'DEACTIVATE'));

}

$quick_tool_ary += array('delsig' => 'DEL_SIG', 'delavatar' => 'DEL_AVATAR', 'moveposts' => 'MOVE_POSTS', 'delposts' => 'DEL_POSTS', 'delattach' => 'DEL_ATTACH');

if ($config['email_enable'] && ($user_row['user_type'] == USER_NORMAL || $user_row['user_type'] == USER_INACTIVE))

{

$quick_tool_ary['reactivate'] = 'FORCE';

case 'feedback':

$user->add_lang('mcp');

// Set up general vars

$start = request_var('start', 0);

$deletemark = (isset($_POST['delmarked'])) ? true : false;

trigger_error($user->lang['USER_FEEDBACK_ADDED'] . adm_back_link($this->u_action . '&amp;u=' . $user_id));

}

// Sorting

$limit_days = array(0 => $user->lang['ALL_ENTRIES'], 1 => $user->lang['1_DAY'], 7 => $user->lang['7_DAYS'], 14 => $user->lang['2_WEEKS'], 30 => $user->lang['1_MONTH'], 90 => $user->lang['3_MONTHS'], 180 => $user->lang['6_MONTHS'], 365 => $user->lang['1_YEAR']);

$sort_by_text = array('u' => $user->lang['SORT_USERNAME'], 't' => $user->lang['SORT_DATE'], 'i' => $user->lang['SORT_IP'], 'o' => $user->lang['SORT_ACTION']);

list($data['bday_day'], $data['bday_month'], $data['bday_year']) = explode('-', $user_row['user_birthday']);

}

if ($submit)

{

'bday_day' => array('num', true, 1, 31),

'bday_month' => array('num', true, 1, 12),

'bday_year' => array('num', true, 1901, gmdate('Y', time())),

));

// validate custom profile fields

'user_from' => $data['location'],

'user_occ' => $data['occupation'],

'user_interests'=> $data['interests'],

);

$sql = 'UPDATE ' . USERS_TABLE . '

'S_BIRTHDAY_DAY_OPTIONS' => $s_birthday_day_options,

'S_BIRTHDAY_MONTH_OPTIONS' => $s_birthday_month_options,

'S_BIRTHDAY_YEAR_OPTIONS' => $s_birthday_year_options,

'S_PROFILE' => true)

);

$s_custom = false;

$dateformat_options .= '<option value="custom"';

{

$dateformat_options .= ' selected="selected"';

$s_custom = true;

$template->assign_vars(array(

'S_PREFS' => true,

'S_JABBER_DISABLED' => ($config['jab_enable'] && $user_row['user_jabber'] && @extension_loaded('xml')) ? false : true,

'VIEW_EMAIL' => $data['viewemail'],

'MASS_EMAIL' => $data['massemail'],

'ALLOW_PM' => $data['allowpm'],

'VIEW_SIGS' => $data['view_sigs'],

'VIEW_AVATARS' => $data['view_avatars'],

'VIEW_WORDCENSOR' => $data['view_wordcensor'],

'S_TOPIC_SORT_DAYS' => $s_limit_topic_days,

'S_TOPIC_SORT_KEY' => $s_sort_topic_key,

'S_TOPIC_SORT_DIR' => $s_sort_topic_dir,

trigger_error($user->lang['USER_RANK_UPDATED'] . adm_back_link($this->u_action . '&amp;u=' . $user_id));

}

$sql = 'SELECT *

FROM ' . RANKS_TABLE . '

WHERE rank_special = 1

);

break;

case 'sig':

include_once($phpbb_root_path . 'includes/functions_posting.' . $phpEx);

include_once($phpbb_root_path . 'includes/functions_display.' . $phpEx);

// Allowing Quote BBCode

$message_parser->parse($enable_bbcode, $enable_urls, $enable_smilies, $config['allow_sig_img'], $config['allow_sig_flash'], true, $config['allow_sig_links'], true, 'sig');

if (sizeof($message_parser->warn_msg))

{

$error[] = implode('<br />', $message_parser->warn_msg);

trigger_error($user->lang['USER_SIG_UPDATED'] . adm_back_link($this->u_action . '&amp;u=' . $user_id));

}

// Replace "error" strings with their real, localised form

$error = preg_replace('#^([A-Z_]+)$#e', "(!empty(\$user->lang['\\1'])) ? \$user->lang['\\1'] : '\\1'", $error);

}

$signature_preview = '';

if ($preview)

{

// Now parse it for displaying

'REAL_FILENAME' => $row['real_filename'],

'COMMENT' => nl2br($row['attach_comment']),

'EXTENSION' => $row['extension'],

'DOWNLOAD_COUNT' => $row['download_count'],

'POST_TIME' => $user->format_date($row['filetime']),

'TOPIC_TITLE' => ($row['in_message']) ? $row['message_title'] : $row['topic_title'],

'ATTACH_ID' => $row['attach_id'],

'POST_ID' => $row['post_msg_id'],

'TOPIC_ID' => $row['topic_id'],

'S_IN_MESSAGE' => $row['in_message'],

'U_DOWNLOAD' => append_sid("{$phpbb_root_path}download/file.$phpEx", 'mode=view&amp;id=' . $row['attach_id']),

);

}

$db->sql_freeresult($result);

$template->assign_vars(array(

'S_ATTACHMENTS' => true,

'S_ON_PAGE' => on_page($num_attachments, $config['topics_per_page'], $start),

);

break;

case 'groups':

include($phpbb_root_path . 'includes/functions_user.' . $phpEx);

$user->add_lang(array('groups', 'acp/groups'));

$group_id = request_var('g', 0);

if ($group_id)

{

// Check the founder only entry for this group to make sure everything is well

$result = $db->sql_query($sql);

$founder_manage = (int) $db->sql_fetchfield('group_founder_manage');

$db->sql_freeresult($result);

if ($user->data['user_type'] != USER_FOUNDER && $founder_manage)

{

trigger_error($user->lang['NOT_ALLOWED_MANAGE_GROUP'] . adm_back_link($this->u_action . '&amp;u=' . $user_id), E_USER_WARNING);

{

$founder_manage = 0;

}

switch ($action)

{

case 'demote':

{

trigger_error($user->lang[$error] . adm_back_link($this->u_action . '&amp;u=' . $user_id), E_USER_WARNING);

}

$error = array();

}

else

'g' => $group_id))

);

}

break;

}

$result = $db->sql_query($sql);

$hold_ary = array();

while ($row = $db->sql_fetchrow($result))

{

$hold_ary = $auth_admin->get_mask('view', $user_id, false, false, $row['auth_option'], 'global', ACL_NEVER);

'U_USER_PERMISSIONS' => append_sid("{$phpbb_admin_path}index.$phpEx" ,'i=permissions&amp;mode=setting_user_global&amp;user_id[]=' . $user_id),

'U_USER_FORUM_PERMISSIONS' => append_sid("{$phpbb_admin_path}index.$phpEx", 'i=permissions&amp;mode=setting_user_local&amp;user_id[]=' . $user_id))

);

break;

}

*/

class auth_admin extends auth

{

/**

* Init auth settings

*/

if (($this->acl_options = $cache->get('_acl_options')) === false)

{

FROM ' . ACL_OPTIONS_TABLE . '

ORDER BY auth_option_id';

$result = $db->sql_query($sql);

{

$this->acl_options['local'][$row['auth_option']] = $local++;

}

}

$db->sql_freeresult($result);

$cache->put('_acl_options', $this->acl_options);

}

}

/**

while ($row = $db->sql_fetchrow($result))

{

}

$db->sql_freeresult($result);

}

$cache->destroy('_acl_options');

$this->acl_clear_prefetch();

return true;

}

$flag = substr($flag, 0, strpos($flag, '_') + 1);

// This ID (the any-flag) is set if one or more permissions are true...

// Remove any-flag from auth ary

if (isset($auth[$flag]))

$auth_option_ids = array((int)$any_option_id);

foreach ($auth as $auth_option => $auth_setting)

{

}

$sql = "DELETE FROM $table

{

foreach ($auth as $auth_option => $setting)

{

if ($setting != ACL_NO)

{

$sql_ary = array();

foreach ($auth as $auth_option => $setting)

{

if ($setting != ACL_NO)

{

{

$sql_ary[] = array(

'role_id' => (int) $role_id,

'auth_setting' => ACL_NEVER

);

}

return false;

}

// Key 0 in $hold_ary are global options, all others are forum_ids

// We disallow copying admin permissions

{

if (strpos($opt, 'a_') === 0)

{

}

}

// Force a_switchperm to be allowed

$user_permissions = $this->build_bitstring($hold_ary);

if (($this->acl_options = $cache->get('_acl_options')) === false)

{

FROM ' . ACL_OPTIONS_TABLE . '

ORDER BY auth_option_id';

$result = $db->sql_query($sql);

{

$this->acl_options['local'][$row['auth_option']] = $local++;

}

}

$db->sql_freeresult($result);

*/

function acl_get_list($user_id = false, $opts = false, $forum_id = false)

{

$auth_ary = array();

foreach ($hold_ary as $user_id => $forum_ary)

// Empty user_permissions

$userdata['user_permissions'] = '';

// Key 0 in $hold_ary are global options, all others are forum_ids

{

if (strpos($opt, 'a_') === 0)

{

}

}

}

$hold_str = $this->build_bitstring($hold_ary);

if ($hold_str)

$bitstring = array();

foreach ($this->acl_options[$ary_key] as $opt => $id)

{

{

$option_key = substr($opt, 0, strpos($opt, '_') + 1);

// If one option is allowed, the global permission for this option has to be allowed too

// example: if the user has the a_ permission this means he has one or more a_* permissions

{

$bitstring[$this->acl_options[$ary_key][$option_key]] = ACL_YES;

}

*/

function acl_clear_prefetch($user_id = false)

{

$where_sql = '';

if ($user_id !== false)

$sql_user = ($user_id !== false) ? ((!is_array($user_id)) ? 'user_id = ' . (int) $user_id : $db->sql_in_set('user_id', array_map('intval', $user_id))) : '';

$sql_forum = ($forum_id !== false) ? ((!is_array($forum_id)) ? 'AND a.forum_id = ' . (int) $forum_id : 'AND ' . $db->sql_in_set('a.forum_id', array_map('intval', $forum_id))) : '';

if ($opts !== false)

{

$this->build_auth_option_statement('ao.auth_option', $opts, $sql_opts);

}

$sql_forum

{

AND a.group_id = ug.group_id

AND ug.user_pending = 0

' . (($sql_user) ? 'AND ug.' . $sql_user : '') . "

$sql_forum

' . (($sql_user) ? 'AND ug.' . $sql_user : '') . "

$sql_forum

foreach ($sql_ary as $sql)

{

while ($row = $db->sql_fetchrow($result))

{

{

{

if (isset($hold_ary[$row['user_id']][$row['forum_id']][$flag]) && $hold_ary[$row['user_id']][$row['forum_id']][$flag] == ACL_YES)

{

unset($hold_ary[$row['user_id']][$row['forum_id']][$flag]);

{

$hold_ary[$row['user_id']][$row['forum_id']][$flag] = ACL_YES;

}

}

}

}

$sql_forum = ($forum_id !== false) ? ((!is_array($forum_id)) ? 'AND a.forum_id = ' . (int) $forum_id : 'AND ' . $db->sql_in_set('a.forum_id', array_map('intval', $forum_id))) : '';

$sql_opts = '';

if ($opts !== false)

{

$this->build_auth_option_statement('ao.auth_option', $opts, $sql_opts);

}

$sql_forum

{

}

return $hold_ary;

}

$sql_forum = ($forum_id !== false) ? ((!is_array($forum_id)) ? 'AND a.forum_id = ' . (int) $forum_id : 'AND ' . $db->sql_in_set('a.forum_id', array_map('intval', $forum_id))) : '';

$sql_opts = '';

if ($opts !== false)

{

$this->build_auth_option_statement('ao.auth_option', $opts, $sql_opts);

}

$result = $db->sql_query($sql);

while ($row = $db->sql_fetchrow($result))

{

}

$db->sql_freeresult($result);

}

/**

* Authentication plug-ins is largely down to Sergey Kanareykin, our thanks to him.

*/

function login($username, $password, $autologin = false, $viewonline = 1, $admin = 0)

if (!$password)

{

return array(

'error_msg' => 'NO_PASSWORD_SUPPLIED',

);

}

if (!$password)

{

return array(

'error_msg' => 'NO_PASSWORD_SUPPLIED',

);

}

if (!$password)

{

return array(

'error_msg' => 'NO_PASSWORD_SUPPLIED',

);

}

// Additional constants

// Table names

define('ACL_GROUPS_TABLE', $table_prefix . 'acl_groups');

// Holding the last sql query on sql error

var $sql_error_sql = '';

// Holding transaction count

var $transactions = 0;

return true;

}

$result = $this->_sql_transaction('commit');

if (!$result)

$this->sql_error_triggered = true;

$this->sql_error_sql = $sql;

if (!$this->return_on_error)

{

// Show complete SQL error and path to administrators only

// Additionally show complete error on installation or if extended debug mode is enabled

$this->sql_transaction('rollback');

}

}

/**

{

return '<pre class="diff context">' . htmlspecialchars($this->_lines($lines, ' ')) . '<br /></pre>';

}

function _added($lines)

{

return '<pre class="diff added">' . htmlspecialchars($this->_lines($lines, '+')) . '<br /></pre>';

// Therefore we split on words, but include all blocks of whitespace in the wordlist.

$splitted_text_1 = $this->_split_on_words($text1, $nl);

$splitted_text_2 = $this->_split_on_words($text2, $nl);

$diff = &new diff($splitted_text_1, $splitted_text_2);

unset($splitted_text_1, $splitted_text_2);

{

// Ignore \0; otherwise the while loop will never finish.

$string = str_replace("\0", '', $string);

$words = array();

$length = strlen($string);

$pos = 0;

{

return $this->_lines($lines, ' ');

}

function _added($lines)

{

return $this->_lines($lines, '+');

// Iterate through every header block of changes

foreach ($this->lines as $header)

{

// Each header block consists of a number of changes (add, remove, change).

$current_context = '';

}

/**

* Determine whether we are approaching the maximum execution time. Should be called once

* at the beginning of the script in which it's used.

* @return bool Either true if the maximum execution time is nearly reached, or false

}

$random = substr($random, 0, $count);

}

$hash = _hash_crypt_private($password, _hash_gensalt_private($random, $itoa64), $itoa64);

if (strlen($hash) == 34)

}

$output .= $itoa64[($value >> 12) & 0x3f];

if ($i++ >= $count)

{

break;

}

}

{

{

$absolute = true;

{

}

else

{

}

}

else

{

}

{

{

{

}

}

}

{

{

}

}

{

}

}

}

{

/**

* A wrapper for realpath

*/

function phpbb_realpath($path)

{

// Check for DIRECTORY_SEPARATOR at the end (and remove it!)

{

}

}

}

unset($tracking_topics['t']);

unset($tracking_topics['f']);

$tracking_topics['l'] = base_convert(time() - $config['board_startdate'], 10, 36);

$user->set_cookie('track', tracking_serialize($tracking_topics), time() + 31536000);

$_COOKIE[$config['cookie_name'] . '_track'] = (STRIP) ? addslashes(tracking_serialize($tracking_topics)) : tracking_serialize($tracking_topics);

{

$mark_time[$forum_id] = $forum_mark_time[$forum_id];

}

$user_lastmark = (isset($mark_time[$forum_id])) ? $mark_time[$forum_id] : $user->data['user_lastmark'];

foreach ($topic_ids as $topic_id)

$last_read[$row['topic_id']] = $row['mark_time'];

}

$db->sql_freeresult($result);

$topic_ids = array_diff($topic_ids, array_keys($last_read));

if (sizeof($topic_ids))

AND forum_id " .

(($global_announce_list && sizeof($global_announce_list)) ? "IN (0, $forum_id)" : "= $forum_id");

$result = $db->sql_query($sql);

$mark_time = array();

while ($row = $db->sql_fetchrow($result))

{

while ($row = $db->sql_fetchrow($result))

{

{

$unread = true;

break;

break;

}

break;

case 2:

switch ($string[$i])

{

break;

}

break;

case 3:

switch ($string[$i])

{

{

die('Invalid data supplied');

}

return $level;

}

{

global $config, $user;

$server_port = (!empty($_SERVER['SERVER_PORT'])) ? (int) $_SERVER['SERVER_PORT'] : (int) getenv('SERVER_PORT');

// Forcing server vars is the only way to specify/override the protocol

if ($server_port && (($config['cookie_secure'] && $server_port <> 443) || (!$config['cookie_secure'] && $server_port <> 80)))

{

}

if (!$without_script_path)

unset($query[$strip]);

}

}

// Glue the remaining parts together... already urlencoded

foreach ($query as $key => $value)

{

* @param int $timespan The maximum acceptable age for a submitted form in seconds. Defaults to the config setting.

* @param string $return_page The address for the return link

* @param bool $trigger If true, the function will triger an error when encountering an invalid form

*/

{

global $config, $user;

// we enforce a minimum value of half a minute here.

$timespan = ($config['form_token_lifetime'] == -1) ? -1 : max(30, $config['form_token_lifetime']);

}

if (isset($_POST['creation_time']) && isset($_POST['form_token']))

{

$creation_time = abs(request_var('creation_time', 0));

$diff = (time() - $creation_time);

{

$token_sid = ($user->data['user_id'] == ANONYMOUS && !empty($config['form_token_sid_guests'])) ? $user->session_id : '';

$key = sha1($creation_time . $user->data['user_form_salt'] . $form_name . $token_sid);

if ($key === $token)

{

// Something failed, determine what...

if ($result['status'] == LOGIN_BREAK)

{

}

// Special cases... determine

{

$err = (!$config['board_contact']) ? sprintf($user->lang[$result['error_msg']], '', '') : sprintf($user->lang[$result['error_msg']], '<a href="mailto:' . htmlspecialchars($config['board_contact']) . '">', '</a>');

}

break;

}

}

'PASSWORD_CREDENTIAL' => ($admin) ? 'password_' . $credential : 'password',

));

$template->set_filenames(array(

'body' => 'login_body.html')

$template->set_filenames(array(

'body' => 'login_forum.html')

);

page_footer();

}

{

$value = substr($value, 1, sizeof($value)-2);

}

$parsed_items[$key] = $value;

}

return $parsed_items;

}

'log_operation' => $action,

'log_data' => $data,

);

switch ($mode)

{

case 'admin':

$sql_ary['log_type'] = LOG_ADMIN;

break;

case 'mod':

$sql_ary += array(

'log_type' => LOG_MOD,

case 'critical':

$sql_ary['log_type'] = LOG_CRITICAL;

break;

default:

return false;

}

switch ($mode)

{

case 'email':

break;

case 'bbcode_htm':

echo '<head>';

echo '<meta http-equiv="content-type" content="text/html; charset=utf-8" />';

echo '<title>' . $msg_title . '</title>';

echo '* { margin: 0; padding: 0; } html { font-size: 100%; height: 100%; margin-bottom: 1px; background-color: #E4EDF0; } body { font-family: "Lucida Grande", Verdana, Helvetica, Arial, sans-serif; color: #536482; background: #E4EDF0; font-size: 62.5%; margin: 0; } ';

echo 'a:link, a:active, a:visited { color: #006699; text-decoration: none; } a:hover { color: #DD6900; text-decoration: underline; } ';

echo '#wrap { padding: 0 20px 15px 20px; min-width: 615px; } #page-header { text-align: right; height: 40px; } #page-footer { clear: both; font-size: 1em; text-align: center; } ';

echo '.panel { margin: 4px 0; background-color: #FFFFFF; border: solid 1px #A9B8C2; } ';

echo '#errorpage #page-header a { font-weight: bold; line-height: 6em; } #errorpage #content { padding: 10px; } #errorpage #content h1 { line-height: 1.2em; margin-bottom: 0; color: #DF075C; } ';

echo '#errorpage #content div { margin-top: 20px; margin-bottom: 5px; border-bottom: 1px solid #CCCCCC; padding-bottom: 5px; color: #333333; font: bold 1.2em "Lucida Grande", Arial, Helvetica, sans-serif; text-decoration: none; line-height: 120%; text-align: left; } ';

echo '</style>';

echo '</head>';

echo '<body id="errorpage">';

echo ' <div class="panel">';

echo ' <div id="content">';

echo ' <h1>' . $msg_title . '</h1>';

echo ' <div>' . $msg_text . '</div>';

echo $l_notify;

echo ' </div>';

echo '</div>';

echo '</body>';

echo '</html>';

exit_handler();

break;

// We do not want the cron script to be called on error messages

define('IN_CRON', true);

if (defined('IN_ADMIN') && isset($user->data['session_admin']) && $user->data['session_admin'])

{

adm_page_footer();

}

/**

*/

{

{

}

{

}

else

{

}

{

{

{

}

else

{

}

}

$result = $db->sql_query($sql);

while ($row = $db->sql_fetchrow($result))

// User is logged in and therefore not a guest

if ($row['user_id'] != ANONYMOUS)

{

{

}

{

}

}

}

$db->sql_freeresult($result);

{

}

{

}

$l_online_record = sprintf($user->lang['RECORD_ONLINE_USERS'], $config['record_online_users'], $user->format_date($config['record_online_date']));

// Which timezone?

$tz = ($user->data['user_id'] != ANONYMOUS) ? strval(doubleval($user->data['user_timezone'])) : strval(doubleval($config['board_timezone']));

// The following assigns all _common_ variables that may be used at any point in a template.

$template->assign_vars(array(

'SITENAME' => $config['sitename'],

'U_POPUP_PM' => append_sid("{$phpbb_root_path}ucp.$phpEx", 'i=pm&amp;mode=popup'),

'UA_POPUP_PM' => addslashes(append_sid("{$phpbb_root_path}ucp.$phpEx", 'i=pm&amp;mode=popup')),

'U_MEMBERLIST' => append_sid("{$phpbb_root_path}memberlist.$phpEx"),

'U_VIEWONLINE' => ($auth->acl_gets('u_viewprofile', 'a_user', 'a_useradd', 'a_userdel')) ? append_sid("{$phpbb_root_path}viewonline.$phpEx") : '',

'U_LOGIN_LOGOUT' => $u_login_logout,

'U_INDEX' => append_sid("{$phpbb_root_path}index.$phpEx"),

'S_REGISTERED_USER' => $user->data['is_registered'],

'S_IS_BOT' => $user->data['is_bot'],

'S_USER_PM_POPUP' => $user->optionget('popuppm'),

'S_USER_BROWSER' => (isset($user->data['session_browser'])) ? $user->data['session_browser'] : $user->lang['UNKNOWN_BROWSER'],

'S_USERNAME' => $user->data['username'],

'S_CONTENT_DIRECTION' => $user->lang['DIRECTION'],

'S_DISPLAY_PM' => ($config['allow_privmsg'] && $user->data['is_registered'] && ($auth->acl_get('u_readpm') || $auth->acl_get('u_sendpm'))) ? true : false,

'S_DISPLAY_MEMBERLIST' => (isset($auth)) ? $auth->acl_get('u_viewprofile') : 0,

'S_NEW_PM' => ($s_privmsg_new) ? 1 : 0,

'T_THEME_PATH' => "{$phpbb_root_path}styles/" . $user->theme['theme_path'] . '/theme',

'T_TEMPLATE_PATH' => "{$phpbb_root_path}styles/" . $user->theme['template_path'] . '/template',

{

global $base_memory_usage;

$memory_usage -= $base_memory_usage;

$debug_output .= ' | Memory Usage: ' . $memory_usage;

}

if (!defined('IN_CRON') && $run_cron && !$config['board_disable'])

{

$cron_type = '';

if (time() - $config['queue_interval'] > $config['last_queue_run'] && !defined('IN_ADMIN') && file_exists($phpbb_root_path . 'cache/queue.' . $phpEx))

{

// Process email queue

{

global $user;

$size_types = array('b', 'kb', 'mb');

$s_size_options = '';

break;

}

return $database_size;

}

{

global $db;

set_config('database_last_gc', time(), true);

}

$sort_dir = key($sort_dir_text);

}

foreach ($limit_days as $day => $text)

{

$selected = ($sort_days == $day) ? ' selected="selected"' : '';

}

$s_limit_days .= '</select>';

foreach ($sort_by_text as $key => $text)

{

$selected = ($sort_key == $key) ? ' selected="selected"' : '';

}

$s_sort_key .= '</select>';

foreach ($sort_dir_text as $key => $value)

{

$selected = ($sort_dir == $key) ? ' selected="selected"' : '';

$match = get_preg_expression('bbcode_htm');

$replace = array('\1', '\1', '\2', '\1', '', '');

$text = preg_replace($match, $replace, $text);

}

{

$bbcode->bbcode($bitfield);

}

$bbcode->bbcode_second_pass($text, $uid);

}

*/

function make_clickable_callback($type, $whitespace, $url, $relative_url, $class)

{

$append = '';

$url = htmlspecialchars_decode($url);

$relative_url = htmlspecialchars_decode($relative_url);

break;

}

switch ($type)

{

case MAGIC_URL_LOCAL:

$tag = 'l';

$relative_url = preg_replace('/[&?]sid=[0-9a-f]{32}$/', '', preg_replace('/([&?])sid=[0-9a-f]{32}&/', '$1', $relative_url));

$url = $url . '/' . $relative_url;

break;

case MAGIC_URL_FULL:

$tag = 'm';

break;

case MAGIC_URL_WWW:

$tag = 'w';

$url = 'http://' . $url;

break;

case MAGIC_URL_EMAIL:

$tag = 'e';

$url = 'mailto:' . $url;

break;

}

function censor_text($text)

{

static $censors;

if (!isset($censors) || !is_array($censors))

{

}

if (sizeof($censors))

$template->destroy_block_vars('_file');

$block_array = array();

// Some basics...

$attachment['extension'] = strtolower(trim($attachment['extension']));

$filename = $phpbb_root_path . $config['upload_path'] . '/' . basename($attachment['physical_filename']);

}

$filesize = $attachment['filesize'];

$comment = bbcode_nl2br(censor_text($attachment['attach_comment']));

{

$string = 'Re: ' . $string;

}

if ($append != '' && $stripped)

{

$string = $string . $append;

if (strlen($this->data) >= $byte + 1)

{

$c = $this->data[$byte];

// Lookup the ($n % 8)th bit of the byte

$bit = 7 - ($n & 7);

return (bool) (ord($c) & (1 << $bit));

// Most are...

if (is_string($config_value))

{

}

set_config($config_name, $config_value);

$forum_rows = $subforums = $forum_ids = $forum_ids_moderator = $forum_moderators = $active_forum_ary = array();

$parent_id = $visible_forums = 0;

$sql_from = '';

// Mark forums read?

$mark_read = request_var('mark', '');

$s_subforums_list = array();

foreach ($subforums_list as $subforum)

{

}

$s_subforums_list = (string) implode(', ', $s_subforums_list);

$catless = ($row['parent_id'] == $root_data['forum_id']) ? true : false;

'S_IS_LINK' => ($row['forum_type'] == FORUM_LINK) ? true : false,

'S_UNREAD_FORUM' => $forum_unread,

'S_LOCKED_FORUM' => ($row['forum_status'] == ITEM_LOCKED) ? true : false,

'S_SUBFORUMS' => (sizeof($subforums_list)) ? true : false,

'FORUM_ID' => $row['forum_id'],

$l_post_click_count => $post_click_count,

'FORUM_FOLDER_IMG' => $user->img($folder_image, $folder_alt),

'FORUM_FOLDER_IMG_SRC' => $user->img($folder_image, $folder_alt, false, '', 'src'),

'FORUM_IMAGE' => ($row['forum_image']) ? '<img src="' . $phpbb_root_path . $row['forum_image'] . '" alt="' . $user->lang[$folder_alt] . '" />' : '',

'FORUM_IMAGE_SRC' => ($row['forum_image']) ? $phpbb_root_path . $row['forum_image'] : '',

'LAST_POST_SUBJECT' => censor_text($last_post_subject),

'S_UNREAD' => $subforum['unread'])

);

}

$last_catless = $catless;

}

/**

* Topic and forum watching common code

*/

{

global $template, $db, $user, $phpEx, $start, $phpbb_root_path;

*/

function get_user_rank($user_rank, $user_posts, &$rank_title, &$rank_img, &$rank_img_src)

{

if (empty($ranks))

{

if (!empty($user_rank))

{

$rank_title = (isset($ranks['special'][$user_rank]['rank_title'])) ? $ranks['special'][$user_rank]['rank_title'] : '';

}

else

{

if ($user_posts >= $rank['rank_min'])

{

$rank_title = $rank['rank_title'];

break;

}

}

*

* Jabber class from Flyspray project

*

* @copyright 2006 Flyspray.org

* @author Florian Schmitz (floele)

*

*

* @package phpBB3

*/

$read = trim(fread($this->connection, 4096));

$data .= $read;

}

if ($data != '')

{

{

case 'stream:stream':

// Connection initialised (or after authentication). Not much to do here...

if (isset($xml['stream:stream'][0]['#']['stream:features']))

{

$this->features = $this->listen();

}

// go on with authentication?

if (isset($this->features['stream:features'][0]['#']['bind']) || !empty($this->session['tls']))

{

'response' => $this->encrypt_password(array_merge($decoded, array('nc' => '00000001'))),

'charset' => 'utf-8',

'nc' => '00000001',

);

{

if (isset($decoded[$key]))

{

global $user;

$err_msg = '';

// If we are authenticating through pop-before-smtp, we

// have to login ones before we get authenticated

// Realm

if (empty($tokens['realm']))

{

}

// Maxbuf

WHERE module_class = '" . $db->sql_escape($this->p_class) . "'

ORDER BY left_id ASC";

$result = $db->sql_query($sql);

$rows = array();

while ($row = $db->sql_fetchrow($result))

{

unset($this->module_cache['modules'][$key]);

continue;

}

$right_id = false;

}

{

continue;

}

$right_id = false;

}

$custom_func = '_module_' . $row['module_basename'];

$names[$row['module_basename'] . '_' . $row['module_mode']][] = true;

$module_row = array(

'depth' => $depth,

'display' => (int) $row['module_display'],

'url_extra' => (function_exists($url_func)) ? $url_func($row['module_mode'], $row) : '',

'lang' => ($row['module_basename'] && function_exists($lang_func)) ? $lang_func($row['module_mode'], $row['module_langname']) : ((!empty($user->lang[$row['module_langname']])) ? $user->lang[$row['module_langname']] : $row['module_langname']),

'langname' => $row['module_langname'],

break;

default:

{

$token = '';

}

$forum_id = ($forum_id === false) ? $this->acl_forum_id : $forum_id;

$is_auth = false;

return $is_auth;

}

}

// Select first id we can get

{

$current_id = $item_ary['id'];

}

$tpl_ary = array(

'L_TITLE' => $item_ary['lang'],

'U_TITLE' => $u_title

);

$tpl_ary = array(

'L_TITLE' => $item_ary['lang'],

'U_TITLE' => $u_title

);

'ICON_IMG' => $phpbb_root_path . $config['icons_path'] . '/' . $data['img'],

'ICON_WIDTH' => $data['width'],

'ICON_HEIGHT' => $data['height'],

'S_CHECKED' => ($id == $icon_id) ? true : false,

'S_ICON_CHECKED' => ($id == $icon_id) ? ' checked="checked"' : '')

);

$topic_type_array

);

foreach ($topic_type_array as $array)

{

$template->assign_block_vars('topic_type', $array);

// Only use imagemagick if defined and the passthru function not disabled

if ($config['img_imagick'] && function_exists('passthru'))

{

@passthru(escapeshellcmd($config['img_imagick']) . 'convert' . ((defined('PHP_OS') && preg_match('#^win#i', PHP_OS)) ? '.exe' : '') . ' -quality 85 -antialias -sample ' . $new_width . 'x' . $new_height . ' "' . str_replace('\\', '/', $source) . '" +profile "*" "' . str_replace('\\', '/', $destination) . '"');

if (file_exists($destination))

WHERE p.topic_id = $topic_id

" . ((!$auth->acl_get('m_approve', $forum_id)) ? 'AND p.post_approved = 1' : '') . '

' . (($mode == 'post_review') ? " AND p.post_id > $cur_post_id" : '') . '

$result = $db->sql_query_limit($sql, $config['posts_per_page']);

$post_list = array();

trigger_error('WRONG_NOTIFICATION_MODE');

}

{

return;

}

// Get banned User ID's

$sql = 'SELECT ban_userid

$result = $db->sql_query($sql);

$sql_ignore_users = ANONYMOUS . ', ' . $user->data['user_id'];

while ($row = $db->sql_fetchrow($result))

{

}

$db->sql_freeresult($result);

global $config, $phpEx, $phpbb_root_path;

// Specify our post mode

$sql_data = array();

include_once($phpbb_root_path . 'includes/functions_admin.' . $phpEx);

}

$sql_data[USERS_TABLE]['stat'][] = "user_lastpost_time = $current_time" . (($auth->acl_get('f_postcount', $data['forum_id'])) ? ', user_posts = user_posts + 1' : '');

if ($topic_type != POST_GLOBAL)

{

if ($auth->acl_get('f_noapprove', $data['forum_id']) || $auth->acl_get('m_approve', $data['forum_id']))

}

$sql_insert_ary = array();

for ($i = 0, $size = sizeof($poll['poll_options']); $i < $size; $i++)

{

if (strlen(trim($poll['poll_options'][$i])))

foreach ($data['attachment_data'] as $pos => $attach_row)

{

{

continue;

}

case ACTION_PLACE_INTO_FOLDER:

return array('action' => $rule_row['rule_action'], 'folder_id' => $rule_row['rule_folder_id']);

break;

case ACTION_MARK_AS_READ:

case ACTION_MARK_AS_IMPORTANT:

return array('action' => $rule_row['rule_action'], 'pm_unread' => $message_row['pm_unread'], 'pm_marked' => $message_row['pm_marked']);

return false;

break;

default:

return false;

}

unset($sql_folder);

{

$sql = 'SELECT COUNT(msg_id) as num_messages

FROM ' . PRIVMSGS_TO_TABLE . "

if (confirm_box(true))

{

delete_pm($user_id, $msg_ids, $cur_folder_id);

$success_msg = (sizeof($msg_ids) == 1) ? 'MESSAGE_DELETED' : 'MESSAGES_DELETED';

$redirect = append_sid("{$phpbb_root_path}ucp.$phpEx", 'i=pm&amp;folder=' . $cur_folder_id);

$user->data['user_new_privmsg'] -= $num_new;

$user->data['user_unread_privmsg'] -= $num_unread;

}

$sql = 'SELECT msg_id

FROM ' . PRIVMSGS_TO_TABLE . '

WHERE ' . $db->sql_in_set('msg_id', array_keys($delete_rows));

FROM ' . GROUPS_TABLE . '

WHERE ' . $db->sql_in_set('group_id', $g);

$result = $db->sql_query($sql);

while ($row = $db->sql_fetchrow($result))

{

if ($check_type == 'to' || $author_id == $user->data['user_id'] || $row['user_id'] == $user->data['user_id'])

AND g.group_id = ug.group_id

AND ug.user_pending = 0';

$result = $db->sql_query($sql);

while ($row = $db->sql_fetchrow($result))

{

if (!isset($address['group'][$row['group_id']]))

AND u.user_id = ug.user_id

AND u.user_type IN (' . USER_NORMAL . ', ' . USER_FOUNDER . ')';

$result = $db->sql_query($sql);

while ($row = $db->sql_fetchrow($result))

{

$field = ($data['address_list']['g'][$row['group_id']] == 'to') ? 'to' : 'bcc';

foreach ($data['attachment_data'] as $pos => $attach_row)

{

{

continue;

}

else if ($day && $month && $year)

{

global $user;

}

return $value;

}

$profile_row['s_year_options'] = '<option value="0"' . ((!$year) ? ' selected="selected"' : '') . '>--</option>';

{

$profile_row['s_year_options'] .= '<option value="' . $i . '"' . (($i == $year) ? ' selected="selected"' : '') . ">$i</option>";

}

}

else

{

}

break;

case FIELD_STRING:

case FIELD_TEXT:

break;

case FIELD_INT:

}

else

{

}

break;

default:

$var = request_var($var_name, $profile_row['field_default_value']);

break;

// Filesize is too big or it's 0 if it was larger than the maxsize in the upload form

if ($this->upload->max_filesize && ($this->get('filesize') > $this->upload->max_filesize || $this->filesize == 0))

{

$this->error[] = sprintf($user->lang[$this->upload->error_prefix . 'WRONG_FILESIZE'], $max_filesize, $size_lang);

break;

case 2:

$error = sprintf($user->lang[$this->error_prefix . 'WRONG_FILESIZE'], $max_filesize, $size_lang);

break;

// Filesize is too big or it's 0 if it was larger than the maxsize in the upload form

if ($this->max_filesize && ($file->get('filesize') > $this->max_filesize || $file->get('filesize') == 0))

{

$file->error[] = sprintf($user->lang[$this->error_prefix . 'WRONG_FILESIZE'], $max_filesize, $size_lang);

}

{

set_config('newest_username', $new_name, true);

}

}

/**

*/

function user_add($user_row, $cp_data = false)

{

'user_sig' => '',

'user_sig_bbcode_uid' => '',

'user_sig_bbcode_bitfield' => '',

'user_form_salt' => unique_id(),

);

$sql = 'SELECT group_colour

FROM ' . GROUPS_TABLE . '

$result = $db->sql_query_limit($sql, 1);

$row = $db->sql_fetchrow($result);

$db->sql_freeresult($result);

{

avatar_delete('user', $user_row);

}

switch ($mode)

{

case 'retain':

'ban_give_reason' => (string) $ban_give_reason,

);

}

$db->sql_multi_insert(BANLIST_TABLE, $sql_ary);

// If we are banning we want to logout anyone matching the ban

}

/**

* Validate Match

*

* @return boolean|string Either false if validation succeeded or a string which will be used as the error message (with the variable name appended)

}

}

return false;

}

return false;

}

}

if ($clean_db)

{

avatar_remove_db($row[$mode . '_avatar']);

{

$file = $upload->remote_upload($data['uploadurl']);

}

$prefix = $config['avatar_salt'] . '_';

$file->clean_filename('avatar', $prefix, $data['user_id']);

{

global $config;

if ($avatar_entry[0] === 'g')

{

$avatar_group = true;

if ($file[0] != '.' && preg_match('#^[^&"\'<>]+$#i', $file) && is_dir("$path/$file"))

{

$avatar_row_count = $avatar_col_count = 0;

if ($dp2 = @opendir("$path/$file"))

{

while (($sub_file = readdir($dp2)) !== false)

function avatar_get_dimensions($avatar, $avatar_type, &$error, $current_x = 0, $current_y = 0)

{

global $config, $phpbb_root_path, $user;

switch ($avatar_type)

{

case AVATAR_REMOTE :

case AVATAR_UPLOAD :

$avatar = $phpbb_root_path . $config['avatar_path'] . '/' . get_avatar_filename($avatar);

break;

case AVATAR_GALLERY :

$avatar = $phpbb_root_path . $config['avatar_gallery_path'] . '/' . $avatar ;

break;

$error[] = $user->lang['AVATAR_NO_SIZE'];

return false;

}

// try to maintain ratio

if (!(empty($current_x) && empty($current_y)))

{

else if (!empty($userdata['user_avatar']))

{

// Only update the dimensions

if (empty($data['width']) || empty($data['height']))

{

if ($dims = avatar_get_dimensions($userdata['user_avatar'], $userdata['user_avatar_type'], $error, $data['width'], $data['height']))

{

$error[] = (!utf8_strlen($name)) ? $user->lang['GROUP_ERR_USERNAME'] : $user->lang['GROUP_ERR_USER_LONG'];

}

$err = group_validate_groupname($group_id, $name);

if (!empty($err))

{

$error[] = $user->lang[$err];

}

if (!in_array($type, array(GROUP_OPEN, GROUP_CLOSED, GROUP_HIDDEN, GROUP_SPECIAL, GROUP_FREE)))

{

$error[] = $user->lang['GROUP_ERR_TYPE'];

$old_filename = get_avatar_filename($old_entry);

$new_filename = $config['avatar_salt'] . "_g$group_id.$ext";

$new_entry = 'g' . $group_id . '_' . substr(time(), -5) . ".$ext";

$avatar_path = $phpbb_root_path . $config['avatar_path'];

if (@rename($avatar_path . '/'. $old_filename, $avatar_path . '/' . $new_filename))

{

function avatar_remove_db($avatar_name)

{

global $config, $db;

$sql = 'UPDATE ' . USERS_TABLE . "

SET user_avatar = '',

user_avatar_type = 0

return false;

}

$db->sql_freeresult($result);

$sql = 'UPDATE ' . USERS_TABLE . "

SET user_avatar = '',

user_avatar_type = 0,

WHERE group_id = " . (int) $group_id . "

AND user_avatar = '" . $db->sql_escape($row['group_avatar']) . "'

AND " . $db->sql_in_set('user_id', $user_ids);

$db->sql_query($sql);

}

$result = $db->sql_query($sql);

$row = $db->sql_fetchrow($result);

$db->sql_freeresult($result);

if ($row)

{

return 'GROUP_NAME_TAKEN';

}

// Before we update the user attributes, we will make a list of those having now the group avatar assigned

{

// Ok, get the original avatar data from users having an uploaded one (we need to remove these from the filesystem)

$sql = 'SELECT user_id, group_id, user_avatar

WHERE ' . $db->sql_in_set('user_id', $user_id_ary);

$db->sql_query($sql);

{

// Update any cached colour information for these users

$sql = 'UPDATE ' . FORUMS_TABLE . " SET forum_last_poster_colour = '" . $db->sql_escape($sql_ary['user_colour']) . "'

$read_tracking_join = $read_tracking_select = '';

}

WHERE t.forum_id IN($forum_id, 0)

" . (($auth->acl_get('m_approve', $forum_id)) ? '' : 'AND t.topic_approved = 1') . "

$limit_time_sql

$result = $db->sql_query_limit($sql, $topics_per_page, $start);

$topic_list = $topic_tracking_info = array();

while ($row = $db->sql_fetchrow($result))

{

$topic_list[] = $row['topic_id'];

}

$db->sql_freeresult($result);

// If there is more than one page, but we have no topic list, then the start parameter is... erm... out of sync

if (!sizeof($topic_list) && $forum_topics && $start > 0)

{

}

}

{

$topic_title = '';

$replies = ($auth->acl_get('m_approve', $forum_id)) ? $row['topic_replies_real'] : $row['topic_replies'];

if ($row['topic_status'] == ITEM_MOVED)

$template->assign_vars(array(

'S_MCP_REPORT' => true,

'S_CAN_VIEWIP' => $auth->acl_get('m_info', $post_info['forum_id']),

'S_POST_REPORTED' => $post_info['post_reported'],

'S_POST_UNAPPROVED' => !$post_info['post_approved'],

if (!$this->check_bbcode('size', $in))

{

}

if ($config['max_' . $this->mode . '_font_size'] && $config['max_' . $this->mode . '_font_size'] < $stx)

{

if (!$this->check_bbcode('color', $in))

{

}

return '[color=' . $stx . ':' . $this->bbcode_uid . ']' . $in . '[/color:' . $this->bbcode_uid . ']';

{

if (!$this->check_bbcode('u', $in))

{

}

return '[u:' . $this->bbcode_uid . ']' . $in . '[/u:' . $this->bbcode_uid . ']';

{

if (!$this->check_bbcode('b', $in))

{

}

return '[b:' . $this->bbcode_uid . ']' . $in . '[/b:' . $this->bbcode_uid . ']';

{

if (!$this->check_bbcode('i', $in))

{

}

return '[i:' . $this->bbcode_uid . ']' . $in . '[/i:' . $this->bbcode_uid . ']';

if (!$this->check_bbcode('img', $in))

{

}

$in = trim($in);

if (!$this->check_bbcode('flash', $in))

{

}

$in = trim($in);

{

if (!$this->check_bbcode('attachment', $in))

{

}

return '[attachment=' . $stx . ':' . $this->bbcode_uid . ']<!-- ia' . $stx . ' -->' . trim($in) . '<!-- ia' . $stx . ' -->[/attachment:' . $this->bbcode_uid . ']';

{

if (!$this->check_bbcode('code', $in))

{

}

// We remove the hardcoded elements from the code block here because it is not used in code blocks

{

if (!$this->check_bbcode('list', $in))

{

}

// $tok holds characters to stop at. Since the string starts with a '[' we'll get everything up to the first ']' which should be the opening [list] tag

* #14667 - [quote]test[/quote] test ] and [ test [quote]test[/quote] (correct: parsed)

* #14770 - [quote="["]test[/quote] (correct: parsed)

* [quote="[i]test[/i]"]test[/quote] (correct: parsed)

*/

$in = str_replace("\r\n", "\n", str_replace('\"', '"', trim($in)));

$out .= ' ';

}*/

}

{

$this->parsed_items['quote']++;

$url = ($var1) ? $var1 : $var2;

{

}

$valid = false;

// Is the user trying to link to a php file in this domain and script path?

if (strpos($url, ".{$phpEx}") !== false && strpos($url, $check_path) !== false)

{

// Forcing server vars is the only way to specify/override the protocol

if ($config['force_server_vars'] || !$server_name)

if ($config['max_' . $mode . '_chars'] > 0)

{

$msg_len = ($mode == 'post') ? utf8_strlen($this->message) : utf8_strlen(preg_replace('#\[\/?[a-z\*\+\-]+(=[\S]+)?\]#ius', ' ', $this->message));

if ((!$msg_len && $mode !== 'sig') || $config['max_' . $mode . '_chars'] && $msg_len > $config['max_' . $mode . '_chars'])

{

$this->warn_msg[] = (!$msg_len) ? $user->lang['TOO_FEW_CHARS'] : sprintf($user->lang['TOO_MANY_CHARS_' . strtoupper($mode)], $msg_len, $config['max_' . $mode . '_chars']);

}

}

// Check for "empty" message

{

$this->warn_msg[] = $user->lang['TOO_FEW_CHARS'];

}

// Prepare BBcode (just prepares some tags for better parsing)

if ($config['max_' . $mode . '_urls'] && $num_urls > $config['max_' . $mode . '_urls'])

{

$this->warn_msg[] = sprintf($user->lang['TOO_MANY_URLS'], $config['max_' . $mode . '_urls']);

}

if (!$update_this_message)

$match = $replace = array();

// NOTE: obtain_* function? chaching the table contents?

// For now setting the ttl to 10 minutes

switch ($db->sql_layer)

{

FROM ' . SMILIES_TABLE . '

ORDER BY LEN(code) DESC';

break;

case 'firebird':

$sql = 'SELECT *

FROM ' . SMILIES_TABLE . '

$this->message = $poll['poll_option_text'];

$bbcode_bitfield = $this->bbcode_bitfield;

$poll['poll_option_text'] = $this->parse($poll['enable_bbcode'], ($config['allow_post_links']) ? $poll['enable_urls'] : false, $poll['enable_smilies'], $poll['img_status'], false, false, $config['allow_post_links'], false);

$bbcode_bitfield = base64_encode(base64_decode($bbcode_bitfield) | base64_decode($this->bbcode_bitfield));

'script_path' => str_replace(' ', '%20', htmlspecialchars($script_path)),

'root_script_path' => str_replace(' ', '%20', htmlspecialchars($root_script_path)),

);

return $page_array;

$this->update_session_page = $update_session_page;

$this->browser = (!empty($_SERVER['HTTP_USER_AGENT'])) ? htmlspecialchars((string) $_SERVER['HTTP_USER_AGENT']) : '';

$this->forwarded_for = (!empty($_SERVER['HTTP_X_FORWARDED_FOR'])) ? (string) $_SERVER['HTTP_X_FORWARDED_FOR'] : '';

$this->page = $this->extract_current_page($phpbb_root_path);

// if the forwarded for header shall be checked we have to validate its contents

}

}

}

if (isset($_COOKIE[$config['cookie_name'] . '_sid']) || isset($_COOKIE[$config['cookie_name'] . '_u']))

{

$u_ip = implode('.', array_slice(explode('.', $this->ip), 0, $config['ip_check']));

}

$s_forwarded_for = ($config['forwarded_for_check']) ? substr($this->data['session_forwarded_for'], 0, 254) : '';

$u_forwarded_for = ($config['forwarded_for_check']) ? substr($this->forwarded_for, 0, 254) : '';

if ($this->update_session_page)

{

$sql_ary['session_page'] = substr($this->page['page'], 0, 199);

}

$sql = 'UPDATE ' . SESSIONS_TABLE . ' SET ' . $db->sql_build_array('UPDATE', $sql_ary) . "

$u_ip = implode('.', array_slice(explode('.', $this->ip), 0, $config['ip_check']));

}

$s_forwarded_for = ($config['forwarded_for_check']) ? substr($this->data['session_forwarded_for'], 0, 254) : '';

$u_forwarded_for = ($config['forwarded_for_check']) ? substr($this->forwarded_for, 0, 254) : '';

if ($this->update_session_page)

{

$sql_ary['session_page'] = substr($this->page['page'], 0, 199);

}

$sql = 'UPDATE ' . SESSIONS_TABLE . ' SET ' . $db->sql_build_array('UPDATE', $sql_ary) . "

'session_start' => (int) $this->time_now,

'session_last_visit' => (int) $this->data['session_last_visit'],

'session_time' => (int) $this->time_now,

'session_forwarded_for' => (string) $this->forwarded_for,

'session_ip' => (string) $this->ip,

'session_autologin' => ($session_autologin) ? 1 : 0,

if ($this->update_session_page)

{

$sql_ary['session_page'] = (string) substr($this->page['page'], 0, 199);

}

$db->sql_return_on_error(true);

// Limit new sessions in 1 minute period (if required)

if (empty($this->data['session_time']) && $config['active_sessions'])

{

$sql = 'SELECT COUNT(session_id) AS sessions

FROM ' . SESSIONS_TABLE . '

WHERE session_time >= ' . ($this->time_now - 60);

}

}

$this->session_id = $this->data['session_id'] = md5(unique_id());

$sql_ary['session_id'] = (string) $this->session_id;

$sql_ary['session_page'] = (string) substr($this->page['page'], 0, 199);

$sql = 'INSERT INTO ' . SESSIONS_TABLE . ' ' . $db->sql_build_array('INSERT', $sql_ary);

$db->sql_query($sql);

$this->set_cookie('sid', $this->session_id, $cookie_expire);

unset($cookie_expire);

$sql = 'SELECT COUNT(session_id) AS sessions

FROM ' . SESSIONS_TABLE . '

WHERE session_user_id = ' . (int) $this->data['user_id'] . '

$result = $db->sql_query($sql);

$row = $db->sql_fetchrow($result);

$db->sql_freeresult($result);

global $db, $config;

$batch_size = 10;

if (!$this->time_now)

{

$this->time_now = time();

// Less than 10 users, update gc timer ... else we want gc

// called again to delete other sessions

set_config('session_last_gc', $this->time_now, true);

if ($config['max_autologin_time'])

{

$sql = 'DELETE FROM ' . SESSIONS_KEYS_TABLE . '

}

$this->confirm_gc();

}

return;

}

function confirm_gc($type = 0)

{

global $db, $config;

$sql = 'SELECT DISTINCT c.session_id

FROM ' . CONFIRM_TABLE . ' c

LEFT JOIN ' . SESSIONS_TABLE . ' s ON (c.session_id = s.session_id)

}

$db->sql_freeresult($result);

}

/**

* Sets a cookie

*

*/

function set_cookie($name, $cookiedata, $cookietime)

{

$expire = gmdate('D, d-M-Y H:i:s \\G\\M\\T', $cookietime);

$domain = (!$config['cookie_domain'] || $config['cookie_domain'] == 'localhost' || $config['cookie_domain'] == '127.0.0.1') ? '' : '; domain=' . $config['cookie_domain'];

}

/**

$sql = 'SELECT image_name, image_filename, image_lang, image_height, image_width

FROM ' . STYLES_IMAGESET_DATA_TABLE . '

WHERE imageset_id = ' . $this->theme['imageset_id'] . "

AND image_lang IN ('" . $db->sql_escape($this->img_lang) . "', '')";

$result = $db->sql_query($sql, 3600);

'FILENAME' => $row['real_filename'],

'COMMENT' => bbcode_nl2br($row['attach_comment']),

'EXTENSION' => $row['extension'],

'DOWNLOAD_COUNT' => $row['download_count'],

'POST_TIME' => $user->format_date($row['filetime']),

'TOPIC_TITLE' => ($row['in_message']) ? $row['message_title'] : $row['topic_title'],

}

list(, $row) = each($row);

if (confirm_box(true))

{

group_user_del($group_id, $user->data['user_id']);

'U_SWATCH' => append_sid("{$phpbb_root_path}adm/swatch.$phpEx", 'form=ucp&amp;name=group_colour'),

'S_UCP_ACTION' => $this->u_action . "&amp;action=$action&amp;g=$group_id",

break;

{

trigger_error($user->lang[$error] . $return_page);

}

}

else

{

confirm_box(false, sprintf($user->lang['GROUP_CONFIRM_ADD_USER' . ((sizeof($name_ary) == 1) ? '' : 'S')], implode(', ', $name_ary)), build_hidden_fields($s_hidden_fields));

}

break;

{

if ($user->data['user_new_privmsg'])

{

}

else

{

'forum_id' => 0,

'save_time' => $current_time,

'draft_subject' => $subject,

);

$db->sql_query($sql);

'g' => $to_group_id,

'p' => $msg_id)

);

confirm_box(false, 'SAVE_DRAFT', $s_hidden_fields);

}

}

else

{

{

$error[] = $user->lang['EMPTY_MESSAGE_SUBJECT'];

}

{

$error[] = $user->lang['TOO_FEW_CHARS'];

}

if ($submit || $preview || $refresh)

{

{

$error[] = $user->lang['FORM_INVALID'];

}

// Subject defined

if ($submit)

{

{

$error[] = $user->lang['EMPTY_MESSAGE_SUBJECT'];

}

}

// Build hidden address list

$bbcode_checked = (isset($enable_bbcode)) ? !$enable_bbcode : (($config['allow_bbcode'] && $auth->acl_get('u_pm_bbcode')) ? !$user->optionget('bbcode') : 1);

$smilies_checked = (isset($enable_smilies)) ? !$enable_smilies : (($config['allow_smilies'] && $auth->acl_get('u_pm_smilies')) ? !$user->optionget('smilies') : 1);

$urls_checked = (isset($enable_urls)) ? !$enable_urls : 0;

}

}

/**

* Return number of private message recipients

*/

$s_custom = false;

$dateformat_options .= '<option value="custom"';

{

$dateformat_options .= ' selected="selected"';

$s_custom = true;

$data['bday_day'] = request_var('bday_day', $data['bday_day']);

$data['bday_month'] = request_var('bday_month', $data['bday_month']);

$data['bday_year'] = request_var('bday_year', $data['bday_year']);

}

add_form_key('ucp_profile_info');

'bday_day' => array('num', true, 1, 31),

'bday_month' => array('num', true, 1, 12),

'bday_year' => array('num', true, 1901, gmdate('Y', time()) + 50),

));

}

if ($config['allow_birthdays'])

{