+ 'user_type' => (int) USER_IGNORE,

+ 'group_id' => (int) $group_row['group_id'],

+ 'username' => (string) $bot_row['bot_name'],

+ 'user_regdate' => time(),

+ 'user_password' => '',

+ 'user_colour' => (string) $group_row['group_colour'],

+ 'user_email' => '',

+ 'user_lang' => (string) $bot_row['bot_lang'],

+ 'user_style' => (int) $bot_row['bot_style'],

+ 'user_allow_massemail' => 0,

+ ));

+ include($phpbb_root_path . 'includes/functions_user.' . $phpEx);

+

+

+ $sql = 'SELECT user_id, username

+ $user_affected[$row['user_id']] = $row['username'];

+ foreach ($mark as $user_id)

+ {

+ user_delete('retain', $user_id, $user_affected[$user_id]);

+ }

+ add_log('admin', 'LOG_INACTIVE_' . strtoupper($action), implode(', ', $user_affected));

+

+ // Special case... the user is effectively banned, but we allow founders to login

+ if (defined('IN_CHECK_BAN') && $result['user_row']['user_type'] != USER_FOUNDER)

+ {

+ return;

+ }

+

+* General attachment parsing

+*

+* @param int $forum_id The forum id the attachments are displayed in (0 for private messages)

+* @param string &$message The post/private message

+* @param array &$attachments The attachments to parse for (inline) display. The attachments array will hold templated data after parsing.

+* @param array &$update_count The attachment counts to be updated - will be filled

+* @param bool $preview If set to true the attachments are parsed for preview. Within preview mode the comments are fetched from the given $attachments array and not fetched from the database.

+function parse_attachments($forum_id, &$message, &$attachments, &$update_count, $preview = false)

+ if (!sizeof($attachments))

+ {

+ return;

+ }

+

+ global $template, $cache, $user;

+ global $extensions, $config, $phpbb_root_path, $phpEx;

+

+ //

+ $force_physical = false;

+ $compiled_attachments = array();

+

+ if (!isset($template->filename['attachment_tpl']))

+ {

+ $template->set_filenames(array(

+ 'attachment_tpl' => 'attachment.html')

+ );

+ }

+

+ if (empty($extensions) || !is_array($extensions))

+ {

+ $extensions = $cache->obtain_attach_extensions();

+ }

+

+ // Look for missing attachment information...

+ $attach_ids = array();

+ foreach ($attachments as $pos => $attachment)

+ {

+ // If is_orphan is set, we need to retrieve the attachments again...

+ if (!isset($attachment['extension']) && !isset($attachment['physical_filename']))

+ {

+ $attach_ids[(int) $attachment['attach_id']] = $pos;

+ }

+ }

+

+ // Grab attachments (security precaution)

+ if (sizeof($attach_ids))

+ {

+ global $db;

+

+ $new_attachment_data = array();

+

+ $sql = 'SELECT *

+ FROM ' . ATTACHMENTS_TABLE . '

+ WHERE ' . $db->sql_in_set('attach_id', array_keys($attach_ids));

+ $result = $db->sql_query($sql);

+

+ while ($row = $db->sql_fetchrow($result))

+ {

+ if (!isset($attach_ids[$row['attach_id']]))

+ {

+ continue;

+ }

+

+ // If we preview attachments we will set some retrieved values here

+ if ($preview)

+ {

+ $row['attach_comment'] = $attachments[$attach_ids[$row['attach_id']]]['attach_comment'];

+ }

+ $new_attachment_data[$attach_ids[$row['attach_id']]] = $row;

+ }

+ $db->sql_freeresult($result);

+

+ $attachments = $new_attachment_data;

+ unset($new_attachment_data);

+ }

+

+ // Sort correctly

+ if ($config['display_order'])

+ {

+ // Ascending sort

+ krsort($attachments);

+ }

+ else

+ // Descending sort

+ ksort($attachments);

+ }

+

+ foreach ($attachments as $attachment)

+ {

+ if (!sizeof($attachment))

+ {

+ continue;

+ }

+

+ // We need to reset/empty the _file block var, because this function might be called more than once

+ $template->destroy_block_vars('_file');

+

+ $block_array = array();

+

+ // Some basics...

+ $attachment['extension'] = strtolower(trim($attachment['extension']));

+ $filename = $phpbb_root_path . $config['upload_path'] . '/' . basename($attachment['physical_filename']);

+ $thumbnail_filename = $phpbb_root_path . $config['upload_path'] . '/thumb_' . basename($attachment['physical_filename']);

+

+ $upload_icon = '';

+

+ if (isset($extensions[$attachment['extension']]))

+ {

+ if ($user->img('icon_topic_attach', '') && !$extensions[$attachment['extension']]['upload_icon'])

+ {

+ $upload_icon = $user->img('icon_topic_attach', '');

+ }

+ else if ($extensions[$attachment['extension']]['upload_icon'])

+ {

+ $upload_icon = '<img src="' . $phpbb_root_path . $config['upload_icons_path'] . '/' . trim($extensions[$attachment['extension']]['upload_icon']) . '" alt="" />';

+ }

+ }

+

+ $filesize = $attachment['filesize'];

+ $size_lang = ($filesize >= 1048576) ? $user->lang['MB'] : ( ($filesize >= 1024) ? $user->lang['KB'] : $user->lang['BYTES'] );

+ $filesize = ($filesize >= 1048576) ? round((round($filesize / 1048576 * 100) / 100), 2) : (($filesize >= 1024) ? round((round($filesize / 1024 * 100) / 100), 2) : $filesize);

+

+ $comment = str_replace("\n", '<br />', censor_text($attachment['attach_comment']));

+

+ $block_array += array(

+ 'UPLOAD_ICON' => $upload_icon,

+ 'FILESIZE' => $filesize,

+ 'SIZE_LANG' => $size_lang,

+ 'DOWNLOAD_NAME' => basename($attachment['real_filename']),

+ 'COMMENT' => $comment,

+ );

+

+ $denied = false;

+

+ if (!extension_allowed($forum_id, $attachment['extension'], $extensions))

+ {

+ $denied = true;

+

+ $block_array += array(

+ 'S_DENIED' => true,

+ 'DENIED_MESSAGE' => sprintf($user->lang['EXTENSION_DISABLED_AFTER_POSTING'], $attachment['extension'])

+ );

+ }

+

+ if (!$denied)

+ {

+ $l_downloaded_viewed = $download_link = '';

+ $display_cat = $extensions[$attachment['extension']]['display_cat'];

+

+ if ($display_cat == ATTACHMENT_CATEGORY_IMAGE)

+ {

+ if ($attachment['thumbnail'])

+ {

+ $display_cat = ATTACHMENT_CATEGORY_THUMB;

+ }

+ else

+ {

+ if ($config['img_display_inlined'])

+ {

+ if ($config['img_link_width'] || $config['img_link_height'])

+ {

+ list($width, $height) = @getimagesize($filename);

+

+ $display_cat = (!$width && !$height) ? ATTACHMENT_CATEGORY_IMAGE : (($width <= $config['img_link_width'] && $height <= $config['img_link_height']) ? ATTACHMENT_CATEGORY_IMAGE : ATTACHMENT_CATEGORY_NONE);

+ }

+ }

+ else

+ {

+ $display_cat = ATTACHMENT_CATEGORY_NONE;

+ }

+ }

+ }

+

+ $download_link = (!$force_physical && $attachment['attach_id']) ? append_sid("{$phpbb_root_path}download.$phpEx", 'id=' . $attachment['attach_id'] . '&amp;f=' . $forum_id) : $filename;

+

+ switch ($display_cat)

+ {

+ // Images

+ case ATTACHMENT_CATEGORY_IMAGE:

+ $l_downloaded_viewed = $user->lang['VIEWED'];

+

+ $block_array += array(

+ 'S_IMAGE' => true,

+ );

+

+ $update_count[] = $attachment['attach_id'];

+ break;

+

+ // Images, but display Thumbnail

+ case ATTACHMENT_CATEGORY_THUMB:

+ $l_downloaded_viewed = $user->lang['VIEWED'];

+ $thumbnail_link = (!$force_physical && $attachment['attach_id']) ? append_sid("{$phpbb_root_path}download.$phpEx", 'id=' . $attachment['attach_id'] . '&amp;t=1&amp;f=' . $forum_id) : $thumbnail_filename;

+

+ $block_array += array(

+ 'S_THUMBNAIL' => true,

+ 'THUMB_IMAGE' => $thumbnail_link,

+ );

+ break;

+

+ // Windows Media Streams

+ case ATTACHMENT_CATEGORY_WM:

+ $l_downloaded_viewed = $user->lang['VIEWED'];

+

+ // Giving the filename directly because within the wm object all variables are in local context making it impossible

+ // to validate against a valid session (all params can differ)

+ $download_link = $filename;

+

+ $block_array += array(

+ 'U_FORUM' => generate_board_url(),

+ 'S_WM_FILE' => true,

+ );

+

+ // Viewed/Heared File ... update the download count

+ $update_count[] = $attachment['attach_id'];

+ break;

+

+ // Real Media Streams

+ case ATTACHMENT_CATEGORY_RM:

+ case ATTACHMENT_CATEGORY_QUICKTIME:

+ $l_downloaded_viewed = $user->lang['VIEWED'];

+

+ $block_array += array(

+ 'S_RM_FILE' => ($display_cat == ATTACHMENT_CATEGORY_RM) ? true : false,

+ 'S_QUICKTIME_FILE' => ($display_cat == ATTACHMENT_CATEGORY_QUICKTIME) ? true : false,

+ 'U_FORUM' => generate_board_url(),

+ 'ATTACH_ID' => $attachment['attach_id'],

+ );

+

+ // Viewed/Heared File ... update the download count

+ $update_count[] = $attachment['attach_id'];

+ break;

+

+ // Macromedia Flash Files

+ case ATTACHMENT_CATEGORY_FLASH:

+ list($width, $height) = @getimagesize($filename);

+

+ $l_downloaded_viewed = $user->lang['VIEWED'];

+

+ $block_array += array(

+ 'S_FLASH_FILE' => true,

+ 'WIDTH' => $width,

+ 'HEIGHT' => $height,

+ );

+

+ // Viewed/Heared File ... update the download count

+ $update_count[] = $attachment['attach_id'];

+ break;

+

+ default:

+ $l_downloaded_viewed = $user->lang['DOWNLOADED'];

+

+ $block_array += array(

+ 'S_FILE' => true,

+ );

+ break;

+ }

+

+ $l_download_count = (!isset($attachment['download_count']) || $attachment['download_count'] == 0) ? $user->lang['DOWNLOAD_NONE'] : (($attachment['download_count'] == 1) ? sprintf($user->lang['DOWNLOAD_COUNT'], $attachment['download_count']) : sprintf($user->lang['DOWNLOAD_COUNTS'], $attachment['download_count']));

+

+ $block_array += array(

+ 'U_DOWNLOAD_LINK' => $download_link,

+ 'L_DOWNLOADED_VIEWED' => $l_downloaded_viewed,

+ 'L_DOWNLOAD_COUNT' => $l_download_count

+ );

+ }

+

+ $template->assign_block_vars('_file', $block_array);

+

+ $compiled_attachments[] = $template->assign_display('attachment_tpl');

+ $attachments = $compiled_attachments;

+ unset($compiled_attachments);

+

+ preg_match_all('#<!\-\- ia([0-9]+) \-\->(.*?)<!\-\- ia\1 \-\->#', $message, $matches, PREG_PATTERN_ORDER);

+ $message = str_replace($replace['from'], $replace['to'], $message);

+ $unset_tpl = array_unique($unset_tpl);

+

+ // Needed to let not display the inlined attachments at the end of the post again

+ foreach ($unset_tpl as $index)

+ {

+ unset($attachments[$index]);

+ }

+ global $config;

+

+

+

+ // If empty sendmail_path on windows, PHP changes the to line

+ if (!$config['smtp_delivery'] && strpos(strtolower(PHP_OS), 'win') === 0)

+ {

+ $this->addresses['to'][$pos]['name'] = '';

+ }

+ else

+ {

+ $this->addresses['to'][$pos]['name'] = trim($realname);

+ }

+ if (empty($this->module_cache))

+ {

+ $this->module_cache = array('modules' => array(), 'parents' => array());

+ }

+

+ $this->module->u_action = append_sid("{$phpbb_admin_path}index.$phpEx", "i={$this->p_name}") . (($icat) ? '&amp;icat=' . $icat : '') . "&amp;mode={$this->p_mode}";

+ $this->module->u_action = append_sid($this->module->u_action, "i={$this->p_name}") . (($icat) ? '&amp;icat=' . $icat : '') . "&amp;mode={$this->p_mode}";

+ $this->module->main($this->p_name, $this->p_mode);

+ $sql = 'SELECT *

+ FROM ' . USERS_TABLE . '

+ WHERE user_id = ' . $user_id;

+ $result = $db->sql_query($sql);

+ $user_row = $db->sql_fetchrow($result);

+ $db->sql_freeresult($result);

+

+ if (!$user_row)

+ {

+ return false;

+ }

+

+ if ($user_row['user_posts'])

+ SET user_posts = user_posts + ' . $user_row['user_posts'] . '

+ include($phpbb_root_path . 'includes/functions_admin.' . $phpEx);

+ // Decrement number of users if this user is active

+ if ($user_row['user_type'] != USER_INACTIVE && $user_row['user_type'] != USER_IGNORE)

+ {

+ set_config('num_users', $config['num_users'] - 1, true);

+ }

+ if (phpbb_checkdnsrr($domain, 'A') === false && phpbb_checkdnsrr($domain, 'MX') === false)

+ $db->sql_query($sql);

+

+ // Since we may update the name too, we need to do this on other tables too...

+ $sql = 'UPDATE ' . MODERATOR_CACHE_TABLE . "

+ SET group_name = '" . $db->sql_escape($sql_ary['group_name']) . "'

+ WHERE group_id = $group_id";

+ $db->sql_query($sql);

+ $db->sql_query($sql);

+ approve_post($post_id_list, 'queue', $mode);

+ disapprove_post($post_id_list, 'queue', $mode);

+function approve_post($post_id_list, $id, $mode)

+ 'i' => $id,

+function disapprove_post($post_id_list, $id, $mode)

+ 'i' => $id,

+ // Approve posts?

+ if ($action == 'approve' && $auth->acl_get('m_approve', $topic_info['forum_id']))

+ {

+ include($phpbb_root_path . 'includes/mcp/mcp_queue.' . $phpEx);

+ include_once($phpbb_root_path . 'includes/functions_posting.' . $phpEx);

+ include_once($phpbb_root_path . 'includes/functions_messenger.' . $phpEx);

+

+ if (!sizeof($post_id_list))

+ {

+ trigger_error('NO_POST_SELECTED');

+ }

+

+ approve_post($post_id_list, $id, $mode);

+ }

+

+

+ // First of all adjust comments if changed

+ $actual_comment_list = utf8_normalize_nfc(request_var('comment_list', array(''), true));

+

+ foreach ($actual_comment_list as $comment_key => $comment)

+ {

+ if (!isset($this->attachment_data[$comment_key]))

+ {

+ continue;

+ }

+

+ if ($this->attachment_data[$comment_key]['attach_comment'] != $actual_comment_list[$comment_key])

+ {

+ $this->attachment_data[$comment_key]['attach_comment'] = $actual_comment_list[$comment_key];

+ }

+ }

+ else if (($add_file || $preview) && $upload_file)

+ if ($num_attachments < $cfg['max_attachments'] || $auth->acl_gets('m_', 'a_', $forum_id))

+ $filedata = upload_attachment($form_name, $forum_id, false, '', $is_message);

+ $error = array_merge($error, $filedata['error']);

+ if (!sizeof($error))

+ $sql_ary = array(

+ 'physical_filename' => $filedata['physical_filename'],

+ 'attach_comment' => $this->filename_data['filecomment'],

+ 'real_filename' => $filedata['real_filename'],

+ 'extension' => $filedata['extension'],

+ 'mimetype' => $filedata['mimetype'],

+ 'filesize' => $filedata['filesize'],

+ 'filetime' => $filedata['filetime'],

+ 'thumbnail' => $filedata['thumbnail'],

+ 'is_orphan' => 1,

+ 'in_message' => ($is_message) ? 1 : 0,

+ 'poster_id' => $user->data['user_id'],

+ );

+

+ $db->sql_query('INSERT INTO ' . ATTACHMENTS_TABLE . ' ' . $db->sql_build_array('INSERT', $sql_ary));

+

+ $new_entry = array(

+ 'attach_id' => $db->sql_nextid(),

+ 'is_orphan' => 1,

+ 'real_filename' => $filedata['real_filename'],

+ 'attach_comment'=> $this->filename_data['filecomment'],

+ );

+

+ $this->attachment_data = array_merge(array(0 => $new_entry), $this->attachment_data);

+ $this->message = preg_replace('#\[attachment=([0-9]+)\](.*?)\[\/attachment\]#e', "'[attachment='.(\\1 + 1).']\\2[/attachment]'", $this->message);

+ $this->filename_data['filecomment'] = '';

+ else

+ {

+ $error[] = sprintf($user->lang['TOO_MANY_ATTACHMENTS'], $cfg['max_attachments']);

+ }

+ function session_kill($new_session = true)

+ if ($new_session)

+ {

+ $this->session_create(ANONYMOUS);

+ }

+ if (defined('IN_CHECK_BAN'))

+ {

+ return;

+ }

+

+ // We show a login box here to allow founders accessing the board if banned by IP

+ if (defined('IN_LOGIN') && $this->data['user_id'] == ANONYMOUS)

+ {

+ global $phpEx;

+

+ // Set as a precaution to allow login_box() handling this case correctly as well as this function not being executed again.

+ define('IN_CHECK_BAN', 1);

+

+ $this->setup('ucp');

+ $this->data['is_registered'] = $this->data['is_bot'] = false;

+

+ login_box("index.$phpEx");

+

+ // The false here is needed, else the user is able to circumvent the ban.

+ $this->session_kill(false);

+ }

+

+ $refresh = isset($_POST['add_file']) || isset($_POST['delete_file']) || $save || $load

+ if ($submit)

+ if (!$subject)

+ {

+ $error[] = $user->lang['EMPTY_SUBJECT'];

+ }

+ if (!sizeof($address_list))

+ {

+ $error[] = $user->lang['NO_RECIPIENT'];

+ }

+

+ $update_count = array();

+ $attachment_data = $message_parser->attachment_data;

+

+ parse_attachments(0, $preview_message, $attachment_data, $update_count, true);

+

+ foreach ($attachment_data as $i => $attachment)

+ {

+ $template->assign_block_vars('attachment', array(

+ 'DISPLAY_ATTACHMENT' => $attachment)

+ );

+ }

+ unset($attachment_data);

+ if (!empty($attachments))

+ parse_attachments(0, $message, $attachments, $update_count);