+ $client_ip = ( preg_match("/^[0-9]+\.[0-9]+\.[0-9]+\.[0-9]+/", $HTTP_X_FORWARDED_FOR, $ip_list) ) ? $ip_list[0] : $REMOTE_ADDR;

+ if( !file_exists($phpbb_root_path . "language/lang_" . $board_config['default_lang'] . "/lang_main.".$phpEx) )

+ $board_config['default_lang'] = "english";

+ include($phpbb_root_path . 'language/lang_' . $board_config['default_lang'] . '/lang_main.' . $phpEx);

+

+ if( !file_exists($phpbb_root_path . "language/lang_" . $board_config['default_lang'] . "/lang_admin.".$phpEx) )

+ $board_config['default_lang'] = "english";

+

+ include($phpbb_root_path . 'language/lang_' . $board_config['default_lang'] . '/lang_admin.' . $phpEx);

+ }

+

+ while( list($key, $value) = @each($images) )

+ {

+ if( strstr($value, "_lang") )

+ $new_value = str_replace("_lang", "_" . $board_config['default_lang'], $value);

+

+ $images[$key] = ( !file_exists($new_value) ) ? $new_value : str_replace("_lang", "_english", $value);

+ $template = new Template($phpbb_root_path . $template_path . $template_name, $db);

+ $current_template_path = $template_path . $template_name;

+// this does exactly what preg_quote() does in PHP 4-ish:

+// http://www.php.net/manual/en/function.preg-quote.php

+?> \ No newline at end of file

+$s_last_visit = ( $userdata['session_logged_in'] ) ? create_date($board_config['default_dateformat'], $userdata['user_lastvisit'], $board_config['board_timezone']) : "";

+ AND ( s.session_time >= ".( time() - 300 ) . "

+ OR u.user_session_time >= " . ( time() - 300 ) . " )

+ ORDER BY u.user_session_time DESC";

+

+ // Try and pull the last time stored

+ // in a cookie, if it exists

+ if( $user_id != ANONYMOUS )

+ // This is a 'work-around' since I managed to

+ // freeze the schema without re-visiting sessions,

+ // what's needed is a session timer in the user table

+ // + the user_lastvisit ... damn damn damn damn and blast

+ $sql = "SELECT user_autologin_key, user_session_time, user_email

+ FROM " . USERS_TABLE . "

+ WHERE user_id = $user_id";

+ $result = $db->sql_query($sql);

+ if( !$result )

+ message_die(CRITICAL_ERROR, "Couldn't obtain lastvisit data from user table", "", __LINE__, __FILE__, $sql);

+ }

+

+ $row = $db->sql_fetchrow($result);

+ $sessiondata['lastvisit'] = ( $row['user_session_time'] > 0 ) ? $row['user_session_time'] : $current_time;

+ if( $auto_create )

+ {

+ if( isset($sessiondata['autologinid']) )

+ if( $sessiondata['autologinid'] == $row['user_autologin_key'] )

+ $login = 1;

+ $enable_autologin = 1;

+ $login = 0;

+ $enable_autologin = 0;

+ $login = 0;

+ $enable_autologin = 0;

+ $user_id = ANONYMOUS;

+

+ $sessiondata['lastvisit'] = ( !empty($sessiondata['lastvisit']) ) ? $sessiondata['lastvisit'] : $current_time;

+ $login = 1;

+ }

+ else

+ {

+ $login = 0;

+ $enable_autologin = 0;

+ $sessiondata['lastvisit'] = ( !empty($sessiondata['lastvisit']) ) ? $sessiondata['lastvisit'] : $current_time;

+ }

+

+ //

+ // Initial ban check against user id, IP and email address

+ //

+ ereg("(..)(..)(..)(..)", $user_ip, $user_ip_parts);

+

+ $sql = "SELECT ban_ip, ban_userid, ban_email

+ FROM " . BANLIST_TABLE . "

+ WHERE ban_ip = '" . $user_ip_parts[1] . $user_ip_parts[2] . $user_ip_parts[3] . $user_ip_parts[4] . "'

+ OR ban_ip = '" . $user_ip_parts[1] . $user_ip_parts[2] . $user_ip_parts[3] . "ff'

+ OR ban_ip = '" . $user_ip_parts[1] . $user_ip_parts[2] . "ffff'

+ OR ban_ip = '" . $user_ip_parts[1] . "ffffff'

+ OR ban_userid = $user_id";

+ if( $user_id != ANONYMOUS )

+ {

+ $sql .= " OR ban_email LIKE '" . $row['user_email'] . "'

+ OR ban_email LIKE '" . substr($row['user_email'], strpos($row['user_email'], "@")) . "'";

+ }

+ $result = $db->sql_query($sql);

+ if( !$result )

+ {

+ message_die(CRITICAL_ERROR, "Couldn't obtain ban information.", "", __LINE__, __FILE__, $sql);

+ }

+

+ $ban_info = $db->sql_fetchrow($result);

+

+ if( $ban_info['ban_ip'] || $ban_info['ban_userid'] || $ban_info['ban_email'] )

+ {

+ message_die(CRITICAL_MESSAGE, 'You_been_banned');

+ }

+

+ //

+ // Create or update the session

+ //

+ if( !$auto_create )

+ {

+ if(!$result)

+ message_die(CRITICAL_ERROR, "Error updating current session : session_begin", "", __LINE__, __FILE__, $sql);

+ }

+ }

+ else

+ {

+ mt_srand( (double) microtime() * 1000000);

+ $session_id = md5(uniqid(mt_rand()));

+ $sql = "INSERT INTO " . SESSIONS_TABLE . "

+ (session_id, session_user_id, session_start, session_time, session_last_visit, session_ip, session_page, session_logged_in)

+ VALUES ('$session_id', $user_id, $current_time, $current_time, " . $sessiondata['lastvisit'] . ", '$user_ip', $page_id, $login)";

+ $result = $db->sql_query($sql);

+ if(!$result)

+ {

+ message_die(CRITICAL_ERROR, "Error creating new session : session_begin", "", __LINE__, __FILE__, $sql);

+ }

+ if( $user_id != ANONYMOUS )

+ {

+ $autologin_sql = "";

+ if( $enable_autologin && $sessionmethod == SESSION_METHOD_COOKIE )

+ mt_srand( (double) microtime() * 1000000);

+ $autologin_key = md5(uniqid(mt_rand()));

+ $sessiondata['autologinid'] = $autologin_key;

+ $autologin_sql = $autologin_key;

+ }

+ else

+ {

+ $autologin_sql = "";

+ }

+ $sql_auto = "UPDATE " . USERS_TABLE . "

+ SET user_lastvisit = " . $sessiondata['lastvisit'] . ", user_session_time = $current_time, user_session_page = $page_id, user_autologin_key ='$autologin_id'

+ WHERE user_id = $user_id";

+ $result = $db->sql_query($sql_auto);

+ if(!$result)

+ {

+ message_die(CRITICAL_ERROR, "Couldn't update users autologin key : session_begin", "", __LINE__, __FILE__, $sql);

+ }

+ $sessiondata['userid'] = $user_id;

+ $serialised_cookiedata = serialize($sessiondata);

+ setcookie($cookiename . '_data', $serialised_cookiedata, ($current_time + 31536000), $cookiepath, $cookiedomain, $cookiesecure);

+ setcookie($cookiename . '_sid', $session_id, 0, $cookiepath, $cookiedomain, $cookiesecure);

+ $SID = ( $sessionmethod == SESSION_METHOD_GET ) ? "sid=" . $session_id : "";

+ AND u.user_id = s.session_user_id

+ AND s.session_ip = '$user_ip'";

+ $last_update = ( $userdata['user_id'] == ANONYMOUS ) ? $userdata['session_time'] : $userdata['user_session_time'];

+

+ if( $current_time - $last_update > 60 )

+ if( $userdata['user_id'] == ANONYMOUS )

+ $sessiondata['lastvisit'] = $current_time;

+ $sql = "UPDATE " . SESSIONS_TABLE . "

+ SET session_time = $current_time, session_page = $thispage_id

+ WHERE session_id = '" . $userdata['session_id'] . "'

+ AND session_user_id = " . $userdata['user_id'] . "

+ AND session_ip = '$user_ip'";

+ }

+ else

+ SET user_session_time = $current_time, user_session_page = $thispage_id

+ }

+ $result = $db->sql_query($sql);

+ if( !$result )

+ {

+ message_die(CRITICAL_ERROR, "Error updating sessions table : session_pagestart", "", __LINE__, __FILE__, $sql);

+ WHERE session_time < $expiry_time

+ AND session_id <> '$session_id'";

+

+ setcookie($board_config['cookie_name'] . '_data', serialize($sessiondata), ($current_time + 31536000), $board_config['cookie_path'], $board_config['cookie_domain'], $board_config['cookie_secure']);

+ setcookie($board_config['cookie_name'] . '_sid', $session_id, 0, $board_config['cookie_path'], $board_config['cookie_domain'], $board_config['cookie_secure']);

+ AND u.user_id = s.session_user_id

+ AND s.session_ip = '$user_ip'";

+while( list($key, $value) = @each($images) )

+{

+

+

+}

+

+ if( $userdata['session_logged_in'] )

+ $sql = "SELECT MAX(post_time) AS last_post

+ FROM " . POSTS_TABLE;

+ if(!$result = $db->sql_query($sql))

+ {

+ message_die(GENERAL_ERROR, "Could not query new topic information", "", __LINE__, __FILE__, $sql);

+ }

+ if( $forum_count = $db->sql_numrows($result) )

+ {

+ $mark_read_list = $db->sql_fetchrow($result);

+ $last_post_time = $mark_read_list['last_post'];

+ if( $last_post_time > $userdata['user_lastvisit'] )

+ {

+ setcookie($board_config['cookie_name'] . "_f_all", time(), 0, $board_config['cookie_path'], $board_config['cookie_domain'], $board_config['cookie_secure']);

+ }

+ if( $userdata['session_logged_in'] )

+ $sql = "SELECT f.forum_id, t.topic_id, p.post_time

+ FROM " . FORUMS_TABLE . " f, " . TOPICS_TABLE . " t, " . POSTS_TABLE . " p

+ WHERE t.forum_id = f.forum_id

+ AND p.post_id = t.topic_last_post_id

+ AND p.post_time > " . $userdata['session_last_visit'] . "

+ AND t.topic_moved_id IS NULL";

+ if(!$new_topic_ids = $db->sql_query($sql))

+ {

+ message_die(GENERAL_ERROR, "Could not query new topic information", "", __LINE__, __FILE__, $sql);

+ }

+ while( $topic_data = $db->sql_fetchrow($new_topic_ids) )

+ {

+ $new_topic_data[$topic_data['forum_id']][$topic_data['topic_id']] = $topic_data['post_time'];

+ }

+ "FORUM_IMG" => $images['forum'],

+ "FORUM_NEW_IMG" => $images['forum_new'],

+ "FORUM_LOCKED_IMG" => $images['forum_locked'],

+

+ if( $userdata['session_logged_in'] )

+ if( count($new_topic_data[$forum_id]) )

+ $forum_last_post_time = 0;

+ while( list($check_topic_id, $check_post_time) = @each($new_topic_data[$forum_id]) )

+ if( !isset($HTTP_COOKIE_VARS[$board_config['cookie_name'] . "_t_$check_topic_id"]) )

+

+ }

+ else

+ {

+ if( $HTTP_COOKIE_VARS[$board_config['cookie_name'] . "_t_$check_topic_id"] < $check_post_time )

+ {

+ $unread_topics = true;

+ $forum_last_post_time = max($check_post_time, $forum_last_post_time);

+ }

+ if( isset($HTTP_COOKIE_VARS[$board_config['cookie_name'] . "_f_$forum_id"]) )

+ if( $HTTP_COOKIE_VARS[$board_config['cookie_name'] . "_f_$forum_id"] > $forum_last_post_time )

+ {

+ $unread_topics = false;

+ }

+ if( isset($HTTP_COOKIE_VARS[$board_config['cookie_name'] . "_f_all"]) )

+ if( $HTTP_COOKIE_VARS[$board_config['cookie_name'] . "_f_all"] > $forum_last_post_time )

+ {

+ $unread_topics = false;

+ }

+ }

+ if( $forum_rows[$j]['username'] != "" && $forum_rows[$j]['post_time'] > 0 )

+ if( $userdata['session_logged_in'] )

+ {

+ $sql = "SELECT post_id

+ FROM " . POSTS_TABLE . "

+ WHERE post_time >= " . $userdata['user_lastvisit'] . "

+ ORDER BY post_time DESC";

+ }

+ else

+ {

+ message_die(GENERAL_MESSAGE, $lang['No_search_match']);

+ }

+ $sql_fields = ( $show_results == "posts") ? "pt.post_text, pt.bbcode_uid, pt.post_subject, p.post_id, p.post_time, p.post_username, p.enable_bbcode, p.enable_html, p.enable_smilies, p.enable_sig, f.forum_name, t.topic_id, t.topic_title, t.topic_poster, t.topic_time, t.topic_views, t.topic_replies, u.username, u.user_id, u.user_sig, u.user_sig_bbcode_uid" : "f.forum_id, f.forum_name, t.topic_id, t.topic_title, t.topic_poster, t.topic_time, t.topic_views, t.topic_replies, t.topic_last_post_id, u.username, u.user_id, u2.username as user2, u2.user_id as id2, p.post_time, p.post_username" ;

+ if( $return_chars )

+

+ if( count($search_string) )

+ {

+ $message = preg_replace($search_string, $replace_string, $message);

+ }

+

+ if( $userdata['session_logged_in'] )

+ $sql = "SELECT MAX(post_time) AS last_post

+ FROM " . POSTS_TABLE . "

+ WHERE forum_id = $forum_id";

+ if( !$result = $db->sql_query($sql) )

+ {

+ message_die(GENERAL_ERROR, "Couldn't obtain forums information.", "", __LINE__, __FILE__, $sql);

+ }

+ if( $db->sql_numrows($result) )

+ $row = $db->sql_fetchrow($result);

+

+ if( $row['last_post'] > $userdata['user_lastvisit'] )

+ {

+ setcookie($board_config['cookie_name'] . "_f_$forum_id", time(), 0, $board_config['cookie_path'], $board_config['cookie_domain'], $board_config['cookie_secure']);

+ }

+ $template->assign_vars(array(

+ "META" => '<meta http-equiv="refresh" content="3;url=' . append_sid("viewforum.$phpEx?" . POST_FORUM_URL . "=$forum_id") . '">')

+ );

+ }

+ "FOLDER_IMG" => $images['folder'],

+ "FOLDER_NEW_IMG" => $images['folder_new'],

+ "FOLDER_HOT_IMG" => $images['folder_hot'],

+ "FOLDER_HOT_NEW_IMG" => $images['folder_hot_new'],

+ "FOLDER_LOCKED_IMG" => $images['folder_locked'],

+ "FOLDER_LOCKED_NEW_IMG" => $images['folder_locked_new'],

+ "FOLDER_STICKY_IMG" => $images['folder_sticky'],

+ "FOLDER_STICKY_NEW_IMG" => $images['folder_sticky_new'],

+ "FOLDER_ANNOUNCE_IMG" => $images['folder_announce'],

+ "FOLDER_ANNOUNCE_NEW_IMG" => $images['folder_announce_new'],

+

+ if( $userdata['session_logged_in'] )

+ if( isset($HTTP_COOKIE_VARS[$board_config['cookie_name'] . "_t_$topic_id"]) ||

+ isset($HTTP_COOKIE_VARS[$board_config['cookie_name'] . "_f_$forum_id"]) ||

+ isset($HTTP_COOKIE_VARS[$board_config['cookie_name'] . "_f_all"]) )

+ {

+ $unread_topics = true;

+ if( isset($HTTP_COOKIE_VARS[$board_config['cookie_name'] . "_t_$topic_id"]) )

+ if( $HTTP_COOKIE_VARS[$board_config['cookie_name'] . "_t_$topic_id"] > $topic_rowset[$i]['post_time'] )

+ {

+ $unread_topics = false;

+ }

+ if( isset($HTTP_COOKIE_VARS[$board_config['cookie_name'] . "_f_$forum_id"]) )

+ if( $HTTP_COOKIE_VARS[$board_config['cookie_name'] . "_f_$forum_id"] > $topic_rowset[$i]['post_time'] )

+ {

+ $unread_topics = false;

+ }

+ if( isset($HTTP_COOKIE_VARS[$board_config['cookie_name'] . "_f_all"]) )

+ if( $HTTP_COOKIE_VARS[$board_config['cookie_name'] . "_f_all"] > $topic_rowset[$i]['post_time'] )

+ {

+ $unread_topics = false;

+ }

+ if( $unread_topics )

+ {

+ $folder_image = "<img src=\"$folder_new\" alt=\"" . $lang['New_posts'] . "\" title=\"" . $lang['New_posts'] . "\" />";

+

+ $newest_post_img = "<a href=\"viewtopic.$phpEx?" . POST_TOPIC_URL . "=$topic_id&amp;view=newest\"><img src=\"" . $images['icon_newest_reply'] . "\" alt=\"" . $lang['View_newest_post'] . "\" title=\"" . $lang['View_newest_post'] . "\" border=\"0\" /></a> ";

+ }

+ else

+ {

+ $folder_alt = ( $topic_rowset[$i]['topic_status'] == TOPIC_LOCKED ) ? $lang['Topic_locked'] : $lang['No_new_posts'];

+

+ $folder_image = "<img src=\"$folder\" alt=\"$folder_alt\" title=\"$folder_alt\" border=\"0\" />";

+ $newest_post_img = "";

+ }

+

+ }

+ else if( $topic_rowset[$i]['post_time'] > $userdata['session_last_visit'] )

+ else

+ else

+?> \ No newline at end of file

+$sql = "SELECT u.user_id, u.username, u.user_session_time, u.user_session_page, u.user_allow_viewonline, s.session_logged_in

+ WHERE s.session_logged_in = " . TRUE . "

+ AND u.user_id = s.session_user_id

+ AND u.user_id <> " . ANONYMOUS . "

+ AND u.user_session_time >= " . ( time() - 300 ) . "

+$sql = "SELECT session_page, session_logged_in, session_time

+ if( $onlinerow_reg[$i]['user_session_page'] < 1 || !$is_auth_ary[$onlinerow_reg[$i]['user_session_page']]['auth_view'] )

+ switch($onlinerow_reg[$i]['user_session_page'])

+ $location_url = append_sid("viewforum.$phpEx?" . POST_FORUM_URL . "=" . $onlinerow_reg[$i]['user_session_page']);

+ $location = $forum_data[$onlinerow_reg[$i]['user_session_page']];

+ "LASTUPDATE" => create_date($board_config['default_dateformat'], $onlinerow_reg[$i]['user_session_time'], $board_config['board_timezone']),

+$sql = "SELECT u.username, u.user_id, u.user_posts, u.user_from, u.user_website, u.user_email, u.user_icq, u.user_aim, u.user_yim, u.user_regdate, u.user_msnm, u.user_viewemail, u.user_rank, u.user_sig, u.user_sig_bbcode_uid, u.user_avatar, u.user_avatar_type, u.user_allowavatar, p.*, pt.post_text, pt.post_subject, pt.bbcode_uid

+ $poster_posts = ( $postrow[$i]['user_id'] != ANONYMOUS ) ? $lang['Posts'] . ": " . $postrow[$i]['user_posts'] : "";

+ $poster_from = ( $postrow[$i]['user_from'] && $postrow[$i]['user_id'] != ANONYMOUS ) ? $lang['Location'] . ": " . $postrow[$i]['user_from'] : "";

+ $poster_joined = ( $postrow[$i]['user_id'] != ANONYMOUS ) ? $lang['Joined'] . ": " . create_date($lang['DATE_FORMAT'], $postrow[$i]['user_regdate'], $board_config['board_timezone']) : "";

+ if( $postrow[$i]['user_avatar_type'] && $poster_id != ANONYMOUS && $postrow[$i]['user_allowavatar'] )

+ $poster_avatar = ( $board_config['avatar_upload_db'] ) ? "<img src=\"avatar.$phpEx?p=" . $postrow[$i]['post_id'] . "\" alt=\"\" />" : "<img src=\"" . $board_config['avatar_path'] . "/" . $postrow[$i]['user_avatar'] . "\" alt=\"\" border=\"0\" />";

+ $poster_avatar = "<img src=\"" . $postrow[$i]['user_avatar'] . "\" alt=\"\" border=\"0\" />";

+ $poster_avatar = "<img src=\"" . $board_config['avatar_gallery_path'] . "/" . $postrow[$i]['user_avatar'] . "\" alt=\"\" border=\"0\" />";

+

+ //

+ // Highlight active words (primarily for search)

+ //

+ if( $highlight_active )

+ {

+ $message = preg_replace($highlight_match, $highlight_replace, $message);

+ }

+