+

+

+

+

+ 'post_encoding' => $user->lang['ENCODING'])

+ );

+ $sql = 'SELECT * FROM ' . POLL_OPTIONS_TABLE . '

+ WHERE topic_id = ' . $post_data['topic_id'] . '

+ ORDER BY poll_option_id';

+ $sql = 'INSERT INTO ' . POLL_OPTIONS_TABLE . " (poll_option_id, topic_id, poll_option_text)

+ VALUES ($i, " . $post_data['topic_id'] . ", '" . $db->sql_escape($poll['poll_options'][$i]) . "')";

+ WHERE poll_option_id = " . $cur_poll_options[$i]['poll_option_id'] . "

+ AND topic_id = $topic_id";

+ $sql = 'DELETE FROM ' . POLL_OPTIONS_TABLE . '

+ WHERE poll_option_id > ' . sizeof($poll['poll_options']) . '

+ AND topic_id = ' . $post_data['topic_id'];

+

+

+

+ // TODO : Paul

+

+

+

+

+ $sql = 'SELECT group_name

+ FROM ' . GROUPS_TABLE . "

+ $sql = 'SELECT disallow_username

+ FROM ' . DISALLOW_TABLE;

+ $sql = 'SELECT word

+ FROM ' . WORDS_TABLE;

+ global $config, $db, $user;

+

+ if (preg_match('#^[a-z0-9\.\-_\+]+?@(.*?\.)*?[a-z0-9\-_]+?\.[a-z]{2,4}$#i', $email))

+ $sql = 'SELECT ban_email

+ FROM ' . BANLIST_TABLE;

+ $result = $db->sql_query($sql);

+

+ while ($row = $db->sql_fetchrow($result))

+ if (preg_match('#^' . str_replace('*', '.*?', $row['ban_email']) . '$#i', $email))

+ return 'EMAIL_BANNED';

+ }

+ $db->sql_freeresult($result);

+

+ if (!$config['allow_emailreuse'])

+ {

+ $sql = 'SELECT user_email

+ FROM ' . USERS_TABLE . "

+

+ return false;

+

+

+

+

+ function update_username($old_name, $new_name)

+ {

+ global $db;

+

+ }

+

+

+

+

+ function avatar_delete()

+ {

+ global $config, $db, $user;

+

+ $avatar = explode(':', $user->data['user_avatar']);

+ $avatar_type = array_shift($avatar);

+

+ if ($avatar_type != 'upload')

+ {

+ return;

+ }

+

+ $avatar = implode('', $avatar);

+ if (@file_exists('./' . $config['avatar_path'] . '/' . $avatar))

+ {

+ @unlink('./' . $config['avatar_path'] . '/' . $avatar);

+ }

+ }

+

+ function avatar_remote(&$data)

+ global $config, $db, $user;

+

+ if (!preg_match('#^(http[s]*?)|(ftp)://#i', $data['remotelink']))

+ {

+ $data['remotelink'] = 'http://' . $data['remotelink'];

+ }

+

+ if (!preg_match('#^(http[s]?)|(ftp)://(.*?\.)*?[a-z0-9\-]+?\.[a-z]{2,4}:?([0-9]*?).*?\.(gif|jpg|jpeg|png)$#i', $data['remotelink']))

+ {

+ $this->error[] = $user->lang['AVATAR_URL_INVALID'];

+ return true;

+ }

+

+ if (!($data['width'] || $data['height']) && ($config['avatar_max_width'] || $config['avatar_max_height']))

+ {

+ list($width, $height) = @getimagesize($data['remotelink']);

+

+ if ($width > $config['avatar_max_width'] || $height > $config['avatar_max_height'])

+ {

+ $this->error[] = sprintf($user->lang['AVATAR_WRONG_SIZE'], $config['avatar_max_width'], $config['avatar_max_height']);

+ return true;

+ }

+

+ $data['width'] = &$width;

+ $data['height'] = &$height;

+ }

+ else if ($data['width'] > $config['avatar_max_width'] || $data['height'] > $config['avatar_max_height'])

+ {

+ $this->error[] = sprintf($user->lang['AVATAR_WRONG_SIZE'], $config['avatar_max_width'], $config['avatar_max_height']);

+ return true;

+ }

+

+ // Set type

+ $data['filename'] = &$data['remotelink'];

+ $data['type'] = AVATAR_REMOTE;

+

+ return false;

+ }

+

+ function avatar_upload(&$data)

+ {

+ global $config, $db, $user;

+

+ if (!empty($_FILES['uploadfile']['tmp_name']))

+ {

+ $filename = $_FILES['uploadfile']['tmp_name'];

+ $filesize = $_FILES['uploadfile']['size'];

+ $realname = $_FILES['uploadfile']['name'];

+

+ if (file_exists($filename) && preg_match('#^(.*?)\.(jpg|jpeg|gif|png)$#i', $realname, $match))

+ {

+ $realname = $match[1];

+ $filetype = $match[2];

+ $php_move = 'move_uploaded_file';

+ }

+ else

+ {

+ $this->error[] = $user->lang['AVATAR_NOT_UPLOADED'];

+ return true;

+ }

+ }

+ else if (preg_match('#^(http://).*?\.(jpg|jpeg|gif|png)$#i', $data['uploadurl'], $match))

+ {

+ if (empty($match[2]))

+ {

+ $this->error[] = $user->lang['AVATAR_URL_INVALID'];

+ return true;

+ }

+

+ $url = parse_url($data['uploadurl']);

+

+ $host = $url['host'];

+ $path = dirname($url['path']);

+ $port = (!empty($url['port'])) ? $url['port'] : 80;

+ $filetype = array_pop(explode('.', $url['path']));

+ $realname = basename($url['path'], '.' . $filetype);

+ $filename = $url['path'];

+ $filesize = 0;

+

+ if (!($fsock = @fsockopen($host, $port, $errno, $errstr)))

+ {

+ $this->error[] = $user->lang['AVATAR_NOT_UPLOADED'];

+ return true;

+ }

+

+ fputs($fsock, 'GET /' . $filename . " HTTP/1.1\r\n");

+ fputs($fsock, "HOST: " . $host . "\r\n");

+ fputs($fsock, "Connection: close\r\n\r\n");

+

+ $avatar_data = '';

+ while (!feof($fsock))

+ {

+ $avatar_data .= fread($fsock, $config['avatar_filesize']);

+ }

+ @fclose($fsock);

+ $avatar_data = array_pop(explode("\r\n", $avatar_data));

+

+ if (empty($avatar_data))

+ {

+ $this->error[] = $user->lang['AVATAR_NOT_UPLOADED'];

+ return true;

+ }

+ unset($url_ary);

+

+ $tmp_path = (!@ini_get('safe_mode')) ? false : './' . $config['avatar_path'] . '/tmp';

+ $filename = tempnam($tmp_path, uniqid(rand()) . '-');

+

+ if (!($fp = @fopen($filename, 'wb')))

+ {

+ $this->error[] = $user->lang['AVATAR_NOT_UPLOADED'];

+ return true;

+ }

+ $filesize = fwrite($fp, $avatar_data);

+ fclose($fp);

+ unset($avatar_data);

+

+ if (!$filesize)

+ {

+ unlink($filename);

+ $this->error[] = $user->lang['AVATAR_NOT_UPLOADED'];

+ return true;

+ }

+

+ $php_move = 'copy';

+ }

+

+ list($width, $height) = getimagesize($filename);

+

+ if ($width > $config['avatar_max_width'] || $height > $config['avatar_max_height'] || !$width || !$height)

+ {

+ $this->error[] = sprintf($user->lang['AVATAR_WRONG_SIZE'], $config['avatar_max_width'], $config['avatar_max_height']);

+ return true;

+ }

+

+ // Replace any chars which may cause us problems with _

+ $bad_chars = array(' ', '/', ':', '*', '?', '"', '<', '>', '|');

+

+ $data['filename'] = $user->data['user_id'] . '_' . str_replace($bad_chars, '_', $realname) . '.' . $filetype;

+ $data['width'] = &$width;

+ $data['height'] = &$height;

+

+ if(!$php_move($filename, './' . $config['avatar_path'] . '/' . $data['filename']))

+ {

+ @unlink($filename);

+ $this->error[] = $user->lang['AVATAR_NOT_UPLOADED'];

+ return true;

+ }

+ @unlink($filename);

+

+ $filesize = filesize('./' . $config['avatar_path'] . '/' . $data['filename']);

+ if (!$filesize || $filesize > $config['avatar_filesize'])

+ {

+ $this->error[] = sprintf($user->lang['AVATAR_WRONG_FILESIZE'], $config['avatar_filesize']);

+ return true;

+ }

+

+ // Set type

+ $data['type'] = AVATAR_UPLOAD;

+

+ return;

+ $sql = "SELECT w.word_id, w.word_text, m.title_match

+z

+ $user_id = $user->data['user_id'];

+

+ // Grab all the relevant data

+ $sql = "SELECT COUNT(p.post_id) AS num_posts

+ FROM " . POSTS_TABLE . " p, " . FORUMS_TABLE . " f

+ WHERE p.poster_id = $user_id

+ AND f.forum_id = p.forum_id

+ $post_count_sql";

+ $result = $db->sql_query($sql);

+

+ $num_real_posts = min($row['user_posts'], $db->sql_fetchfield('num_posts', 0, $result));

+ $db->sql_freeresult($result);

+

+ $sql = "SELECT f.forum_id, f.forum_name, COUNT(post_id) AS num_posts

+ FROM " . POSTS_TABLE . " p, " . FORUMS_TABLE . " f

+ WHERE p.poster_id = $user_id

+ AND f.forum_id = p.forum_id

+ $post_count_sql

+ GROUP BY f.forum_id, f.forum_name

+ ORDER BY num_posts DESC";

+ $result = $db->sql_query_limit($sql, 1);

+

+ $active_f_row = $db->sql_fetchrow($result);

+ $db->sql_freeresult($result);

+

+ $sql = "SELECT t.topic_id, t.topic_title, COUNT(p.post_id) AS num_posts

+ FROM " . POSTS_TABLE . " p, " . TOPICS_TABLE . " t, " . FORUMS_TABLE . " f

+ WHERE p.poster_id = $user_id

+ AND t.topic_id = p.topic_id

+ AND f.forum_id = t.forum_id

+ $post_count_sql

+ GROUP BY t.topic_id, t.topic_title

+ ORDER BY num_posts DESC";

+ $result = $db->sql_query_limit($sql, 1);

+

+ $active_t_row = $db->sql_fetchrow($result);

+ $db->sql_freeresult($result);

+

+ // Do the relevant calculations

+ $memberdays = max(1, round((time() - $row['user_regdate']) / 86400));

+ $posts_per_day = $row['user_posts'] / $memberdays;

+ $percentage = ($config['num_posts']) ? min(100, ($num_real_posts / $config['num_posts']) * 100) : 0;

+

+ $active_f_name = $active_f_id = $active_f_count = $active_f_pct = '';

+ if (!empty($active_f_row['num_posts']))

+ {

+ $active_f_name = $active_f_row['forum_name'];

+ $active_f_id = $active_f_row['forum_id'];

+ $active_f_count = $active_f_row['num_posts'];

+ $active_f_pct = ($active_f_count / $row['user_posts']) * 100;

+ }

+ unset($active_f_row);

+

+ $active_t_name = $active_t_id = $active_t_count = $active_t_pct = '';

+ if (!empty($active_t_row['num_posts']))

+ {

+ $active_t_name = $active_t_row['topic_title'];

+ $active_t_id = $active_t_row['topic_id'];

+ $active_t_count = $active_t_row['num_posts'];

+ $active_t_pct = ($active_t_count / $row['user_posts']) * 100;

+ }

+ unset($active_t_row);

+

+ $template->assign_vars(show_profile($row));

+

+ $template->assign_vars(array(

+ 'POSTS_DAY' => sprintf($user->lang['POST_DAY'], $posts_per_day),

+ 'POSTS_PCT' => sprintf($user->lang['POST_PCT'], $percentage),

+ 'ACTIVE_FORUM' => $active_f_name,

+ 'ACTIVE_FORUM_POSTS'=> ($active_f_count == 1) ? sprintf($user->lang['USER_POST'], 1) : sprintf($user->lang['USER_POSTS'], $active_f_count),

+ 'ACTIVE_FORUM_PCT' => sprintf($user->lang['POST_PCT'], $active_f_pct),

+ 'ACTIVE_TOPIC' => $active_t_name,

+ 'ACTIVE_TOPIC_POSTS'=> ($active_t_count == 1) ? sprintf($user->lang['USER_POST'], 1) : sprintf($user->lang['USER_POSTS'], $active_t_count),

+ 'ACTIVE_TOPIC_PCT' => sprintf($user->lang['POST_PCT'], $active_t_pct),

+

+ 'OCCUPATION' => (!empty($row['user_occ'])) ? $row['user_occ'] : '',

+ 'INTERESTS' => (!empty($row['user_interests'])) ? $row['user_interests'] : '',

+

+ 'S_PROFILE_ACTION' => "groupcp.$phpEx$SID",

+ 'S_GROUP_OPTIONS' => $group_options,

+

+ 'U_ACTIVE_FORUM' => "viewforum.$phpEx$SID&amp;f=$active_f_id",

+ 'U_ACTIVE_TOPIC' => "viewtopic.$phpEx$SID&amp;t=$active_t_id",)

+ );

+*/

+ 'user_allow_viewemail' => $data['viewemail'],

+ $view_email = (isset($viewemail)) ? $viewemail : $user->data['user_allow_viewemail'];

+ 'username' => $config['min_name_chars'] . ',' . $config['max_name_chars'],

+ 'password_confirm' => $config['min_pass_chars'] . ',' . $config['max_pass_chars'],

+ 'new_password' => $config['min_pass_chars'] . ',' . $config['max_pass_chars'],

+ 'cur_password' => $config['min_pass_chars'] . ',' . $config['max_pass_chars'],

+ // md5 current password for checking

+ $data['cur_password'] = md5($data['cur_password']);

+

+ 'cur_password' => ($data['new_password'] || $data['email'] != $user->data['user_email'] || $data['username'] != $user->data['username']) ? $user->data['user_password'] : '',

+ 'match' => array(

+ 'username' => ($data['username'] != $user->data['username']) ? '#^' . str_replace('\\\\', '\\', $config['allow_name_chars']) . '$#iu' : '',

+ ),

+ // Need to update config, forum, topic, posting, messages, etc.

+ if ($data['username'] != $user->data['username'] && $auth->acl_get('u_chgname') & $config['allow_namechange'])

+ {

+ $this->update_username($user->data['username'], $data['username']);

+ }

+

+ $user_char_ary = array('.*' => 'USERNAME_CHARS_ANY', '[\w]+' => 'USERNAME_ALPHA_ONLY', '[\w_\+\. \-\[\]]+' => 'USERNAME_ALPHA_SPACERS');

+

+ 'USERNAME' => (isset($username)) ? stripslashes($username) : $user->data['username'],

+ 'EMAIL' => (isset($email)) ? stripslashes($email) : $user->data['user_email'],

+ 'NEW_PASSWORD' => (isset($new_password)) ? stripslashes($new_password) : '',

+ 'PASSWORD_CONFIRM' => (isset($password_confirm)) ? stripslashes($password_confirm) : '',

+

+ 'L_USERNAME_EXPLAIN' => sprintf($user->lang[$user_char_ary[str_replace('\\\\', '\\', $config['allow_name_chars'])] . '_EXPLAIN'], $config['min_name_chars'], $config['max_name_chars']),

+ 'L_CHANGE_PASSWORD_EXPLAIN' => sprintf($user->lang['CHANGE_PASSWORD_EXPLAIN'], $config['min_pass_chars'], $config['max_pass_chars']),

+ if (isset($_POST['submit']))

+ $data = array();

+ if (!empty($_FILES['uploadfile']['tmp_name']))

+ $this->avatar_upload($data);

+ }

+ else if (!empty($_POST['uploadurl']))

+ {

+ $normalise = array(

+ 'string' => array(

+ 'uploadurl' => '1,255',

+ )

+ );

+ $data = $this->normalise_data($_POST, $normalise);

+ $this->avatar_upload($data);

+ }

+ else if (!empty($_POST['remotelink']))

+ {

+ $normalise = array(

+ 'string' => array(

+ 'remotelink' => '1,255',

+ 'width' => '1,3',

+ 'height' => '1,3',

+ )

+ );

+ $data = $this->normalise_data($_POST, $normalise);

+ $this->avatar_remote($data);

+ }

+ else if (!empty($_POST['delete']))

+ {

+ $data['filename'] = $data['width'] = $data['height'] = '';

+ $this->avatar_delete();

+ if (!sizeof($this->error))

+ {

+ $sql_ary = array(

+ 'user_avatar' => $data['filename'],

+ 'user_avatar_type' => $data['type'],

+ 'user_avatar_width' => $data['width'],

+ 'user_avatar_height' => $data['height'],

+ );

+ $sql = 'UPDATE ' . USERS_TABLE . '

+ SET ' . $db->sql_build_array('UPDATE', $sql_ary) . '

+ WHERE user_id = ' . $user->data['user_id'];

+ $db->sql_query($sql);

+ // Delete an existing avatar if present

+ $this->avatar_delete();

+ meta_refresh(3, "ucp.$phpEx$SID&amp;i=$id&amp;mode=$submode");

+ $message = $user->lang['PROFILE_UPDATED'] . '<br /><br />' . sprintf($user->lang['RETURN_UCP'], "<a href=\"ucp.$phpEx$SID&amp;i=$id&amp;mode=$submode\">", '</a>');

+ trigger_error($message);

+

+ //

+ extract($data);

+ unset($data);

+/*

+ for ($i = 0; $i < count($avatar_images[$category]); $i++)

+ for ($j = 0; $j < count($avatar_images[$category][$i]); $j++)

+ 'AVATAR_IMAGE' => $config['avatar_gallery_path'] . '/' . $avatar_images[$category][$i][$j],

+ 'AVATAR_NAME' => $avatar_name[$category][$i][$j])

+ 'S_OPTIONS_AVATAR' => $avatar_images[$category][$i][$j])

+*/

+

+ $avatar_img = '';

+ if ($user->data['user_avatar'])

+ {

+ switch ($user->data['user_avatar_type'])

+ {

+ case AVATAR_UPLOAD:

+ $avatar_img = $config['avatar_path'] . '/';

+ break;

+ case AVATAR_GALLERY:

+ $avatar_img = $config['avatar_gallery_path'] . '/';

+ break;

+ }

+ $avatar_img .= $user->data['user_avatar'];

+

+ $avatar_img = '<img src="' . $avatar_img . '" width="' . $user->data['user_avatar_width'] . '" height="' . $user->data['user_avatar_height'] . '" border="0" alt="" />';

+ }

+ 'ERROR' => (sizeof($this->error)) ? implode('<br />', $this->error) : '',

+

+ 'AVATAR' => $avatar_img,

+ 'AVATAR_SIZE' => $config['avatar_filesize'],

+ 'AVATAR_URL' => (isset($uploadurl)) ? $uploadurl : '',

+ 'AVATAR_REMOTE' => (isset($remotelink)) ? $remotelink : (($user->data['user_avatar_type'] == AVATAR_REMOTE) ? $avatar_img : ''),

+ 'WIDTH' => (isset($width)) ? $width : $user->data['user_avatar_width'],

+ 'HEIGHT' => (isset($height)) ? $height : $user->data['user_avatar_height'],

+ 'L_AVATAR_EXPLAIN' => sprintf($user->lang['AVATAR_EXPLAIN'], $config['avatar_max_width'], $config['avatar_max_height'], round($config['avatar_filesize'] / 1024)),

+

+ 'S_FORM_ENCTYPE' => ' enctype="multipart/form-data"',

+ 'S_GALLERY_AVATAR' => false,

+ 'S_AVATAR_CAT_OPTIONS' => $s_categories,

+ 'S_AVATAR_PAGE_OPTIONS' => $s_pages,)

+ 'username' => $config['min_name_chars'] . ',' . $config['max_name_chars'],

+ 'password_confirm' => $config['min_pass_chars'] . ',' . $config['max_pass_chars'],

+ 'new_password' => $config['min_pass_chars'] . ',' . $config['max_pass_chars'],

+ 'lang' => '1,50',

+ 'confirm_code' => '6,6',

+ 'match' => array(

+ 'username' => '#^' . str_replace('\\\\', '\\', $config['allow_name_chars']) . '$#iu',

+ ),

+ if (($coppa ||

+ $config['require_activation'] == USER_ACTIVATION_SELF ||

+ $config['require_activation'] == USER_ACTIVATION_ADMIN) && $config['email_enable'])

+ 'user_password' => md5($data['new_password']),

+ // Place into appropriate group, either REGISTERED(_COPPA) or INACTIVE(_COPPA) depending on config

+ $group_reg = ($coppa) ? 'REGISTERED_COPPA' : 'REGISTERED';

+ $group_inactive = ($coppa) ? 'INACTIVE_COPPA' : 'INACTIVE';

+ $group_name = ($config['require_activation'] == USER_ACTIVATION_NONE) ? $group_reg : $group_inactive;

+ if ($coppa && $config['email_enable'])

+ else if ($config['require_activation'] == USER_ACTIVATION_SELF && $config['email_enable'])

+ else if ($config['require_activation'] == USER_ACTIVATION_ADMIN && $config['email_enable'])

+

+ if ($config['require_activation'] == USER_ACTIVATION_NONE || !$config['email_enable'])

+ if ($row['attempts'] > 3)

+ $user_char_ary = array('.*' => 'USERNAME_CHARS_ANY', '[\w]+' => 'USERNAME_ALPHA_ONLY', '[\w_\+\. \-\[\]]+' => 'USERNAME_ALPHA_SPACERS');

+

+ 'L_CONFIRM_EXPLAIN' => sprintf($user->lang['CONFIRM_EXPLAIN'], '<a href="mailto:' . htmlentities($config['board_contact']) . '">', '</a>'),

+ 'L_ITEMS_REQUIRED' => $l_reg_cond,

+ 'L_USERNAME_EXPLAIN' => sprintf($user->lang[$user_char_ary[str_replace('\\\\', '\\', $config['allow_name_chars'])] . '_EXPLAIN'], $config['min_name_chars'], $config['max_name_chars']),

+ 'L_NEW_PASSWORD_EXPLAIN'=> sprintf($user->lang['NEW_PASSWORD_EXPLAIN'], $config['min_pass_chars'], $config['max_pass_chars']),