+ global $phpbb_avatar_manager;

+ // Setup avatar data for later

+ $avatars_enabled = false;

+ $avatar_drivers = null;

+ $avatar_data = null;

+ $avatar_error = array();

+

+ if ($config['allow_avatar'])

+ {

+ $avatar_drivers = $phpbb_avatar_manager->get_valid_drivers();

+ sort($avatar_drivers);

+

+ // This is normalised data, without the group_ prefix

+ $avatar_data = phpbb_avatar_manager::clean_row($group_row);

+ }

+

+

+ if ($config['allow_avatar']) {

+ // Handle avatar

+ $driver = request_var('avatar_driver', '');

+ if (in_array($driver, $avatar_drivers) && $config["allow_avatar_$driver"])

+ $avatar = $phpbb_avatar_manager->get_driver($driver);

+ $result = $avatar->process_form($template, $avatar_data, $avatar_error);

+ if ($result && empty($avatar_error))

+ // Success! Lets save the result

+

+ /*

+ $result = array(

+ 'avatar' => ...,

+ 'avatar_width' => ...,

+ 'avatar_height' => ...,

+ );

+ */

+

+ $submit_ary = array_merge($submit_ary, $result);

+ $submit_ary['avatar_type'] = $driver;

+ else

+ // Removing the avatar

+ $submit_ary['avatar_type'] = '';

+ $submit_ary['avatar'] = '';

+ $submit_ary['avatar_width'] = 0;

+ $submit_ary['avatar_height'] = 0;

+ 'avatar_type' => 'string',

+ // Load up stuff for avatars

+ if ($config['allow_avatar'])

+ {

+ $avatars_enabled = false;

+ $focused_driver = request_var('avatar_driver', $avatar_data['avatar_type']);

+

+ foreach ($avatar_drivers as $driver)

+ {

+ if ($config["allow_avatar_$driver"])

+ {

+ $avatars_enabled = true;

+ $template->set_filenames(array(

+ 'avatar' => "acp_avatar_options_$driver.html",

+ ));

+ $avatar = $phpbb_avatar_manager->get_driver($driver);

+ if ($avatar->prepare_form($template, $avatar_data, $avatar_error))

+ {

+ $driver_u = strtoupper($driver);

+ $template->assign_block_vars('avatar_drivers', array(

+ 'L_TITLE' => $user->lang('AVATAR_DRIVER_' . $driver_u . '_TITLE'), // @TODO add lang values

+ 'L_EXPLAIN' => $user->lang('AVATAR_DRIVER_' . $driver_u . '_EXPLAIN'),

+

+ 'DRIVER' => $driver,

+ 'SELECTED' => ($driver == $focused_driver),

+ 'OUTPUT' => $template->assign_display('avatar'),

+ ));

+ }

+ }

+ }

+ }

+

+ $avatar = get_group_avatar($group_row, 'GROUP_AVATAR', true);

+

+ // Merge any avatars errors into the primary error array

+ // Drivers use lang constants, so we need to map to the actual strings

+ foreach ($avatar_error as $e)

+ if (is_array($e))

+ {

+ $key = array_shift($e);

+ $error[] = vsprintf($user->lang($key), $e);

+ }

+ else

+ {

+ $error[] = $user->lang((string) $e);

+ }

+ 'S_AVATARS_ENABLED' => ($config['allow_avatar'] && $avatars_enabled),

+ 'AVATAR' => (empty($avatar) ? '<img src="' . $phpbb_admin_path . 'images/no_avatar.gif" alt="" />' : $avatar),

+ global $request;

+ global $phpbb_avatar_manager;

+

+ 'user_avatar_type' => '',

+ $driver = $phpbb_avatar_manager->get_driver($user_row['user_avatar_type']);

+ if ($driver)

+ $driver->delete($user_row);

+ $avatars_enabled = false;

+ if ($config['allow_avatar'])

+ $avatar_drivers = $phpbb_avatar_manager->get_valid_drivers();

+ sort($avatar_drivers);

+ // This is normalised data, without the user_ prefix

+ $avatar_data = phpbb_avatar_manager::clean_row($user_row);

+

+ if ($submit)

+ if (check_form_key($form_name))

+ {

+ $driver = request_var('avatar_driver', '');

+ if (in_array($driver, $avatar_drivers) && $config["allow_avatar_$driver"])

+ {

+ $avatar = $phpbb_avatar_manager->get_driver($driver);

+ $result = $avatar->process_form($template, $avatar_data, $error);

+

+ if ($result && empty($error))

+ {

+ // Success! Lets save the result in the database

+ $result = array(

+ 'user_avatar_type' => $driver,

+ 'user_avatar' => $result['avatar'],

+ 'user_avatar_width' => $result['avatar_width'],

+ 'user_avatar_height' => $result['avatar_height'],

+ );

+ $sql = 'UPDATE ' . USERS_TABLE . '

+ SET ' . $db->sql_build_array('UPDATE', $result) . '

+ WHERE user_id = ' . $user_id;

+

+ $db->sql_query($sql);

+ trigger_error($user->lang['USER_AVATAR_UPDATED'] . adm_back_link($this->u_action . '&amp;u=' . $user_id));

+ }

+ }

+ else

+ {

+ // Removing the avatar

+ $result = array(

+ 'user_avatar' => '',

+ 'user_avatar_type' => '',

+ 'user_avatar_width' => 0,

+ 'user_avatar_height' => 0,

+ );

+

+ $sql = 'UPDATE ' . USERS_TABLE . '

+ SET ' . $db->sql_build_array('UPDATE', $result) . '

+ WHERE user_id = ' . $user_id;

+

+ $db->sql_query($sql);

+ trigger_error($user->lang['USER_AVATAR_UPDATED'] . adm_back_link($this->u_action . '&amp;u=' . $user_id));

+ }

+ }

+ else

+ {

+ }

+ $focused_driver = request_var('avatar_driver', $user_row['user_avatar_type']);

+

+ foreach ($avatar_drivers as $driver)

+ if ($config["allow_avatar_$driver"])

+ {

+ $avatars_enabled = true;

+ $template->set_filenames(array(

+ 'avatar' => "acp_avatar_options_$driver.html",

+ ));

+ $avatar = $phpbb_avatar_manager->get_driver($driver);

+ if ($avatar->prepare_form($template, $avatar_data, $error))

+ {

+ $driver_u = strtoupper($driver);

+ $template->assign_block_vars('avatar_drivers', array(

+ 'L_TITLE' => $user->lang('AVATAR_DRIVER_' . $driver_u . '_TITLE'), // @TODO add lang values

+ 'L_EXPLAIN' => $user->lang('AVATAR_DRIVER_' . $driver_u . '_EXPLAIN'),

+

+ 'DRIVER' => $driver,

+ 'SELECTED' => ($driver == $focused_driver),

+ 'OUTPUT' => $template->assign_display('avatar'),

+ ));

+ }

+ }

+ }

+ // Replace "error" strings with their real, localised form

+ $err = $error;

+ $error = array();

+ foreach ($err as $e)

+ if (is_array($e))

+ {

+ $key = array_shift($e);

+ $error[] = vsprintf($user->lang($key), $e);

+ }

+ else

+ {

+ $error[] = $user->lang((string) $e);

+ }

+

+ $avatar = get_user_avatar($user_row, 'USER_AVATAR', true);

+ 'S_AVATAR' => true,

+ 'ERROR' => (sizeof($error)) ? implode('<br />', $error) : '',

+ 'AVATAR' => (empty($avatar) ? '<img src="' . $phpbb_admin_path . 'images/no_avatar.gif" alt="" />' : $avatar),

+

+ 'S_FORM_ENCTYPE' => ' enctype="multipart/form-data"',

+

+ 'L_AVATAR_EXPLAIN' => sprintf($user->lang['AVATAR_EXPLAIN'], $config['avatar_max_width'], $config['avatar_max_height'], $config['avatar_filesize'] / 1024),

+

+ 'S_AVATARS_ENABLED' => ($config['allow_avatar'] && $avatars_enabled),

+<?php

+/**

+*

+* @package avatar

+* @copyright (c) 2011 phpBB Group

+* @license http://opensource.org/licenses/gpl-license.php GNU Public License

+*

+*/

+

+/**

+* @ignore

+*/

+if (!defined('IN_PHPBB'))

+{

+ exit;

+}

+

+/**

+* Base class for avatar drivers

+* @package avatars

+*/

+abstract class phpbb_avatar_driver implements phpbb_avatar_driver_interface

+{

+ /**

+ * Current board configuration

+ * @type phpbb_config

+ */

+ protected $config;

+

+ /**

+ * Current board configuration

+ * @type phpbb_config

+ */

+ protected $request;

+

+ /**

+ * Current $phpbb_root_path

+ * @type string

+ */

+ protected $phpbb_root_path;

+

+ /**

+ * Current $phpEx

+ * @type string

+ */

+ protected $phpEx;

+

+ /**

+ * A cache driver

+ * @type phpbb_cache_driver_interface

+ */

+ protected $cache;

+

+ /**

+ * This flag should be set to true if the avatar requires a nonstandard image

+ * tag, and will generate the html itself.

+ * @type boolean

+ */

+ public $custom_html = false;

+

+ /**

+ * Construct an driver object

+ *

+ * @param $config The phpBB configuration

+ * @param $request The request object

+ * @param $phpbb_root_path The path to the phpBB root

+ * @param $phpEx The php file extension

+ * @param $cache A cache driver

+ */

+ public function __construct(phpbb_config $config, phpbb_request $request, $phpbb_root_path, $phpEx, phpbb_cache_driver_interface $cache = null)

+ {

+ $this->config = $config;

+ $this->request = $request;

+ $this->phpbb_root_path = $phpbb_root_path;

+ $this->phpEx = $phpEx;

+ $this->cache = $cache;

+ }

+

+ /**

+ * @inheritdoc

+ */

+ public function get_data($row, $ignore_config = false)

+ {

+ return array(

+ 'src' => '',

+ 'width' => 0,

+ 'height' => 0,

+ );

+ }

+

+ /**

+ * @inheritdoc

+ */

+ public function get_custom_html($row, $ignore_config = false)

+ {

+ return '';

+ }

+

+ /**

+ * @inheritdoc

+ **/

+ public function prepare_form($template, $row, &$error, &$override_focus)

+ {

+ return false;

+ }

+

+ /**

+ * @inheritdoc

+ **/

+ public function process_form($template, $row, &$error)

+ {

+ return false;

+ }

+

+ /**

+ * @inheritdoc

+ **/

+ public function delete($row)

+ {

+ return true;

+ }

+}

+<?php

+/**

+*

+* @package avatar

+* @copyright (c) 2011 phpBB Group

+* @license http://opensource.org/licenses/gpl-license.php GNU Public License

+*

+*/

+

+/**

+* @ignore

+*/

+if (!defined('IN_PHPBB'))

+{

+ exit;

+}

+

+/**

+* Interface for avatar drivers

+* @package avatars

+*/

+interface phpbb_avatar_driver_interface

+{

+ /**

+ * Get the avatar url and dimensions

+ *

+ * @param $ignore_config Whether this function should respect the users prefs

+ * and board configuration configuration option, or should just render

+ * the avatar anyways. Useful for the ACP.

+ * @return array Avatar data, must have keys src, width and height, e.g.

+ * ['src' => '', 'width' => 0, 'height' => 0]

+ */

+ public function get_data($row, $ignore_config = false);

+

+ /**

+ * Returns custom html for displaying this avatar.

+ * Only called if $custom_html is true.

+ *

+ * @param $ignore_config Whether this function should respect the users prefs

+ * and board configuration configuration option, or should just render

+ * the avatar anyways. Useful for the ACP.

+ * @return string HTML

+ */

+ public function get_custom_html($row, $ignore_config = false);

+

+ /**

+ * @TODO

+ **/

+ public function prepare_form($template, $row, &$error, &$override_focus);

+

+ /**

+ * @TODO

+ **/

+ public function process_form($template, $row, &$error);

+

+ /**

+ * @TODO

+ **/

+ public function delete($row);

+}

+<?php

+/**

+*

+* @package avatar

+* @copyright (c) 2011 phpBB Group

+* @license http://opensource.org/licenses/gpl-license.php GNU Public License

+*

+*/

+

+/**

+* @ignore

+*/

+if (!defined('IN_PHPBB'))

+{

+ exit;

+}

+

+/**

+* Handles avatars selected from the board gallery

+* @package avatars

+*/

+class phpbb_avatar_driver_local extends phpbb_avatar_driver

+{

+ /**

+ * @inheritdoc

+ */

+ public function get_data($row, $ignore_config = false)

+ {

+ if ($ignore_config || $this->config['allow_avatar_local'])

+ {

+ return array(

+ 'src' => $this->phpbb_root_path . $this->config['avatar_gallery_path'] . '/' . $row['avatar'],

+ 'width' => $row['avatar_width'],

+ 'height' => $row['avatar_height'],

+ );

+ }

+ else

+ {

+ return array(

+ 'src' => '',

+ 'width' => 0,

+ 'height' => 0,

+ );

+ }

+ }

+

+ /**

+ * @inheritdoc

+ */

+ public function prepare_form($template, $row, &$error)

+ {

+ $avatar_list = $this->get_avatar_list();

+ $category = $this->request->variable('av_local_cat', '');

+

+ $categories = array_keys($avatar_list);

+

+ foreach ($categories as $cat)

+ {

+ if (!empty($avatar_list[$cat]))

+ {

+ $template->assign_block_vars('av_local_cats', array(

+ 'NAME' => $cat,

+ 'SELECTED' => ($cat == $category),

+ ));

+ }

+ }

+

+ if (!empty($avatar_list[$category]))

+ {

+ $template->assign_vars(array(

+ 'AV_LOCAL_SHOW' => true,

+ ));

+

+ $table_cols = isset($row['av_gallery_cols']) ? $row['av_gallery_cols'] : 4;

+ $row_count = $col_count = $av_pos = 0;

+ $av_count = sizeof($avatar_list[$category]);

+

+ reset($avatar_list[$category]);

+

+ while ($av_pos < $av_count)

+ {

+ $img = current($avatar_list[$category]);

+ next($avatar_list[$category]);

+

+ if ($col_count == 0)

+ {

+ ++$row_count;

+ $template->assign_block_vars('av_local_row', array(

+ ));

+ }

+

+ $template->assign_block_vars('av_local_row.av_local_col', array(

+ 'AVATAR_IMAGE' => $this->phpbb_root_path . $this->config['avatar_gallery_path'] . '/' . $img['file'],

+ 'AVATAR_NAME' => $img['name'],

+ 'AVATAR_FILE' => $img['filename'],

+ ));

+

+ $col_count = ($col_count + 1) % $table_cols;

+

+ ++$av_pos;

+ }

+ }

+

+ return true;

+ }

+

+ /**

+ * @inheritdoc

+ */

+ public function process_form($template, $row, &$error)

+ {

+ $avatar_list = $this->get_avatar_list();

+ $category = $this->request->variable('av_local_cat', '');

+

+ $file = $this->request->variable('av_local_file', '');

+ if (!isset($avatar_list[$category][urldecode($file)]))

+ {

+ $error[] = 'AVATAR_URL_NOT_FOUND';

+ return false;

+ }

+

+ return array(

+ 'avatar' => $category . '/' . $file,

+ 'avatar_width' => $avatar_list[$category][urldecode($file)]['width'],

+ 'avatar_height' => $avatar_list[$category][urldecode($file)]['height'],

+ );

+ }

+

+ /**

+ * @TODO

+ */

+ private function get_avatar_list()

+ {

+ $avatar_list = ($this->cache == null) ? false : $this->cache->get('av_local_list');

+

+ if (!$avatar_list)

+ {

+ $avatar_list = array();

+ $path = $this->phpbb_root_path . $this->config['avatar_gallery_path'];

+

+ $dh = @opendir($path);

+

+ if ($dh)

+ {

+ while (($cat = readdir($dh)) !== false) {

+ if ($cat[0] != '.' && preg_match('#^[^&"\'<>]+$#i', $cat) && is_dir("$path/$cat"))

+ {

+ if ($ch = @opendir("$path/$cat"))

+ {

+ while (($image = readdir($ch)) !== false)

+ {

+ // Match all images in the gallery folder

+ if (preg_match('#^[^&\'"<>]+\.(?:gif|png|jpe?g)$#i', $image))

+ {

+ if (function_exists('getimagesize'))

+ {

+ $dims = getimagesize($this->phpbb_root_path . $this->config['avatar_gallery_path'] . '/' . $cat . '/' . $image);

+ }

+ else

+ {

+ $dims = array(0, 0);

+ }

+ $avatar_list[$cat][$image] = array(

+ 'file' => rawurlencode($cat) . '/' . rawurlencode($image),

+ 'filename' => rawurlencode($image),

+ 'name' => ucfirst(str_replace('_', ' ', preg_replace('#^(.*)\..*$#', '\1', $image))),

+ 'width' => $dims[0],

+ 'height' => $dims[1],

+ );

+ }

+ }

+ @closedir($ch);

+ }

+ }

+ }

+ @closedir($dh);

+ }

+

+ @ksort($avatar_list);

+

+ if ($this->cache != null)

+ {

+ $this->cache->put('av_local_list', $avatar_list);

+ }

+ }

+

+ return $avatar_list;

+ }

+}

+<?php

+/**

+*

+* @package avatar

+* @copyright (c) 2011 phpBB Group

+* @license http://opensource.org/licenses/gpl-license.php GNU Public License

+*

+*/

+

+/**

+* @ignore

+*/

+if (!defined('IN_PHPBB'))

+{

+ exit;

+}

+

+/**

+* Handles avatars hosted remotely

+* @package avatars

+*/

+class phpbb_avatar_driver_remote extends phpbb_avatar_driver

+{

+ /**

+ * @inheritdoc

+ */

+ public function get_data($row, $ignore_config = false)

+ {

+ if ($ignore_config || $this->config['allow_avatar_remote'])

+ {

+ return array(

+ 'src' => $row['avatar'],

+ 'width' => $row['avatar_width'],

+ 'height' => $row['avatar_height'],

+ );

+ }

+ else

+ {

+ return array(

+ 'src' => '',

+ 'width' => 0,

+ 'height' => 0,

+ );

+ }

+ }

+

+ /**

+ * @inheritdoc

+ */

+ public function prepare_form($template, $row, &$error)

+ {

+ $template->assign_vars(array(

+ 'AV_REMOTE_WIDTH' => (($row['avatar_type'] == AVATAR_REMOTE || $row['avatar_type'] == 'remote') && $row['avatar_width']) ? $row['avatar_width'] : $this->request->variable('av_local_width', 0),

+ 'AV_REMOTE_HEIGHT' => (($row['avatar_type'] == AVATAR_REMOTE || $row['avatar_type'] == 'remote') && $row['avatar_height']) ? $row['avatar_height'] : $this->request->variable('av_local_width', 0),

+ 'AV_REMOTE_URL' => (($row['avatar_type'] == AVATAR_REMOTE || $row['avatar_type'] == 'remote') && $row['avatar']) ? $row['avatar'] : '',

+ ));

+

+ return true;

+ }

+

+ /**

+ * @inheritdoc

+ */

+ public function process_form($template, $row, &$error)

+ {

+ $url = $this->request->variable('av_remote_url', '');

+ $width = $this->request->variable('av_remote_width', 0);

+ $height = $this->request->variable('av_remote_height', 0);

+

+ if (!preg_match('#^(http|https|ftp)://#i', $url))

+ {

+ $url = 'http://' . $url;

+ }

+

+ require_once($this->phpbb_root_path . 'includes/functions_user.' . $this->phpEx);

+

+ $error = array_merge($error, validate_data(array(

+ 'url' => $url,

+ ), array(

+ 'url' => array('string', true, 5, 255),

+ )));

+

+ if (!empty($error))

+ {

+ return false;

+ }

+

+ // Check if this url looks alright

+ // This isn't perfect, but it's what phpBB 3.0 did, and might as well make sure everything is compatible

+ if (!preg_match('#^(http|https|ftp)://(?:(.*?\.)*?[a-z0-9\-]+?\.[a-z]{2,4}|(?:\d{1,3}\.){3,5}\d{1,3}):?([0-9]*?).*?\.(gif|jpg|jpeg|png)$#i', $url))

+ {

+ $error[] = 'AVATAR_URL_INVALID';

+ return false;

+ }

+

+ // Make sure getimagesize works...

+ if (function_exists('getimagesize'))

+ {

+ if (($width <= 0 || $height <= 0) && (($image_data = @getimagesize($url)) === false))

+ {

+ $error[] = 'UNABLE_GET_IMAGE_SIZE';

+ return false;

+ }

+

+ if (!empty($image_data) && ($image_data[0] <= 0 || $image_data[1] <= 0))

+ {

+ $error[] = 'AVATAR_NO_SIZE';

+ return false;

+ }

+

+ $width = ($width && $height) ? $width : $image_data[0];

+ $height = ($width && $height) ? $height : $image_data[1];

+ }

+

+ if ($width <= 0 || $height <= 0)

+ {

+ $error[] = 'AVATAR_NO_SIZE';

+ return false;

+ }

+

+ include_once($this->phpbb_root_path . 'includes/functions_upload.' . $this->phpEx);

+ $types = fileupload::image_types();

+ $extension = strtolower(filespec::get_extension($url));

+

+ if (!empty($image_data) && (!isset($types[$image_data[2]]) || !in_array($extension, $types[$image_data[2]])))

+ {

+ if (!isset($types[$image_data[2]]))

+ {

+ $error[] = 'UNABLE_GET_IMAGE_SIZE';

+ }

+ else

+ {

+ $error[] = array('IMAGE_FILETYPE_MISMATCH', $types[$image_data[2]][0], $extension);

+ }

+

+ return false;

+ }

+

+ if ($this->config['avatar_max_width'] || $this->config['avatar_max_height'])

+ {

+ if ($width > $this->config['avatar_max_width'] || $height > $this->config['avatar_max_height'])

+ {

+ $error[] = array('AVATAR_WRONG_SIZE', $this->config['avatar_min_width'], $this->config['avatar_min_height'], $this->config['avatar_max_width'], $this->config['avatar_max_height'], $width, $height);

+ return false;

+ }

+ }

+

+ if ($this->config['avatar_min_width'] || $this->config['avatar_min_height'])

+ {

+ if ($width < $this->config['avatar_min_width'] || $height < $this->config['avatar_min_height'])

+ {

+ $error[] = array('AVATAR_WRONG_SIZE', $this->config['avatar_min_width'], $this->config['avatar_min_height'], $this->config['avatar_max_width'], $this->config['avatar_max_height'], $width, $height);

+ return false;

+ }

+ }

+

+ return array(

+ 'avatar' => $url,

+ 'avatar_width' => $width,

+ 'avatar_height' => $height,

+ );

+ }

+}

+<?php

+/**

+*

+* @package avatar

+* @copyright (c) 2011 phpBB Group

+* @license http://opensource.org/licenses/gpl-license.php GNU Public License

+*

+*/

+

+/**

+* @ignore

+*/

+if (!defined('IN_PHPBB'))

+{

+ exit;

+}

+

+/**

+* Handles avatars uploaded to the board

+* @package avatars

+*/

+class phpbb_avatar_driver_upload extends phpbb_avatar_driver

+{

+ /**

+ * @inheritdoc

+ */

+ public function get_data($row, $ignore_config = false)

+ {

+ if ($ignore_config || $this->config['allow_avatar_upload'])

+ {

+ return array(

+ 'src' => $this->phpbb_root_path . 'download/file.' . $this->phpEx . '?avatar=' . $row['avatar'],

+ 'width' => $row['avatar_width'],

+ 'height' => $row['avatar_height'],

+ );

+ }

+ else

+ {

+ return array(

+ 'src' => '',

+ 'width' => 0,

+ 'height' => 0,

+ );

+ }

+ }

+

+ /**

+ * @inheritdoc

+ */

+ public function prepare_form($template, $row, &$error)

+ {

+ if (!$this->can_upload())

+ {

+ return false;

+ }

+

+ $template->assign_vars(array(

+ 'S_UPLOAD_AVATAR_URL' => ($this->config['allow_avatar_remote_upload']) ? true : false,

+ 'AV_UPLOAD_SIZE' => $this->config['avatar_filesize'],

+ ));

+

+ return true;

+ }

+

+ /**

+ * @inheritdoc

+ */

+ public function process_form($template, $row, &$error)

+ {

+ if (!$this->can_upload())

+ {

+ return false;

+ }

+

+ include_once($this->phpbb_root_path . 'includes/functions_upload.' . $this->phpEx);

+

+ $upload = new fileupload('AVATAR_', array('jpg', 'jpeg', 'gif', 'png'), $this->config['avatar_filesize'], $this->config['avatar_min_width'], $this->config['avatar_min_height'], $this->config['avatar_max_width'], $this->config['avatar_max_height'], (isset($this->config['mime_triggers']) ? explode('|', $this->config['mime_triggers']) : false));

+

+ $url = $this->request->variable('av_upload_url', '');

+

+ if (!empty($_FILES['av_upload_file']['name']))

+ {

+ $file = $upload->form_upload('av_upload_file');

+ }

+ else

+ {

+ $file = $upload->remote_upload($url);

+ }

+

+ $prefix = $this->config['avatar_salt'] . '_';

+ $file->clean_filename('avatar', $prefix, $row['id']);

+

+ $destination = $this->config['avatar_path'];

+

+ // Adjust destination path (no trailing slash)

+ if (substr($destination, -1, 1) == '/' || substr($destination, -1, 1) == '\\')

+ {

+ $destination = substr($destination, 0, -1);

+ }

+

+ $destination = str_replace(array('../', '..\\', './', '.\\'), '', $destination);

+ if ($destination && ($destination[0] == '/' || $destination[0] == "\\"))

+ {

+ $destination = '';

+ }

+

+ // Move file and overwrite any existing image

+ $file->move_file($destination, true);

+

+ if (sizeof($file->error))

+ {

+ $file->remove();

+ $error = array_merge($error, $file->error);

+ return false;

+ }

+

+ return array(

+ 'avatar' => $row['id'] . '_' . time() . '.' . $file->get('extension'),

+ 'avatar_width' => $file->get('width'),

+ 'avatar_height' => $file->get('height'),

+ );

+ }

+

+ /**

+ * @inheritdoc

+ */

+ public function delete($row)

+ {

+ $ext = substr(strrchr($row['avatar'], '.'), 1);

+ $filename = $this->phpbb_root_path . $this->config['avatar_path'] . '/' . $this->config['avatar_salt'] . '_' . $row['id'] . '.' . $ext;

+

+ if (file_exists($filename))

+ {

+ @unlink($filename);

+ }

+

+ return true;

+ }

+

+ /**

+ * @TODO

+ */

+ private function can_upload()

+ {

+ return (file_exists($this->phpbb_root_path . $this->config['avatar_path']) && phpbb_is_writable($this->phpbb_root_path . $this->config['avatar_path']) && (@ini_get('file_uploads') || strtolower(@ini_get('file_uploads')) == 'on'));

+ }

+}

+<?php

+/**

+*

+* @package avatar

+* @copyright (c) 2011 phpBB Group

+* @license http://opensource.org/licenses/gpl-license.php GNU Public License

+*

+*/

+

+/**

+* @ignore

+*/

+if (!defined('IN_PHPBB'))

+{

+ exit;

+}

+

+/**

+* @package avatar

+*/

+class phpbb_avatar_manager

+{

+ private $phpbb_root_path;

+ private $phpEx;

+ private $config;

+ private $request;

+ private $cache;

+ private static $valid_drivers = false;

+

+ /**

+ * @TODO

+ **/

+ public function __construct($phpbb_root_path, $phpEx, phpbb_config $config, phpbb_request $request, phpbb_cache_driver_interface $cache = null)

+ {

+ $this->phpbb_root_path = $phpbb_root_path;

+ $this->phpEx = $phpEx;

+ $this->config = $config;

+ $this->request = $request;

+ $this->cache = $cache;

+ }

+

+ /**

+ * @TODO

+ **/

+ public function get_driver($avatar_type, $new = false)

+ {

+ if (self::$valid_drivers === false)

+ {

+ $this->load_valid_drivers();

+ }

+

+ // Legacy stuff...

+ switch ($avatar_type)

+ {

+ case AVATAR_GALLERY:

+ $avatar_type = 'local';

+ break;

+ case AVATAR_UPLOAD:

+ $avatar_type = 'upload';

+ break;

+ case AVATAR_REMOTE:

+ $avatar_type = 'remote';

+ break;

+ }

+

+ if (isset(self::$valid_drivers[$avatar_type]))

+ {

+ if ($new || !is_object(self::$valid_drivers[$avatar_type]))

+ {

+ $class_name = 'phpbb_avatar_driver_' . $avatar_type;

+ self::$valid_drivers[$avatar_type] = new $class_name($this->config, $this->request, $this->phpbb_root_path, $this->phpEx, $this->cache);

+ }

+

+ return self::$valid_drivers[$avatar_type];

+ }

+ else

+ {

+ return null;

+ }

+ }

+

+ /**

+ * @TODO

+ **/

+ private function load_valid_drivers()

+ {

+ if ($this->cache)

+ {

+ self::$valid_drivers = $this->cache->get('avatar_drivers');

+ }

+

+ if (empty($this->valid_drivers))

+ {

+ self::$valid_drivers = array();

+

+ $iterator = new DirectoryIterator($this->phpbb_root_path . 'includes/avatar/driver');

+

+ foreach ($iterator as $file)

+ {

+ // Match all files that appear to be php files

+ if (preg_match("/^(.*)\.{$this->phpEx}$/", $file, $match))

+ {

+ self::$valid_drivers[] = $match[1];

+ }

+ }

+

+ self::$valid_drivers = array_flip(self::$valid_drivers);

+

+ if ($this->cache)

+ {

+ $this->cache->put('avatar_drivers', self::$valid_drivers);

+ }

+ }

+ }

+

+ /**

+ * @TODO

+ **/

+ public function get_valid_drivers()

+ {

+ if (self::$valid_drivers === false)

+ {

+ $this->load_valid_drivers();

+ }

+

+ return array_keys(self::$valid_drivers);

+ }

+

+ /**

+ * Strip out user_ and group_ prefixes from keys

+ **/

+ public static function clean_row($row)

+ {

+ $keys = array_keys($row);

+ $values = array_values($row);

+

+ $keys = array_map(

+ function ($key)

+ {

+ return preg_replace('#^(?:user_|group_)#', '', $key);

+ },

+ $row

+ );

+

+ return array_combine($keys, $values);

+ }

+}

+* @param array $user_row Row from the users table

+* @return string Avatar html

+function get_user_avatar($user_row, $alt = 'USER_AVATAR', $ignore_config = false)

+ $row = phpbb_avatar_manager::clean_row($user_row);

+ return get_avatar($row, $alt, $ignore_config);

+}

+

+/**

+* Get group avatar

+*

+* @param array $group_row Row from the groups table

+* @param string $alt Optional language string for alt tag within image, can be a language key or text

+* @param bool $ignore_config Ignores the config-setting, to be still able to view the avatar in the UCP

+*

+* @return string Avatar html

+*/

+function get_group_avatar($user_row, $alt = 'GROUP_AVATAR', $ignore_config = false)

+{

+ $row = phpbb_avatar_manager::clean_row($user_row);

+ return get_avatar($row, $alt, $ignore_config);

+}

+/**

+* Get avatar

+*

+* @param array $row Row cleaned by phpbb_avatar_driver::clean_row

+* @param string $alt Optional language string for alt tag within image, can be a language key or text

+* @param bool $ignore_config Ignores the config-setting, to be still able to view the avatar in the UCP

+*

+* @return string Avatar html

+*/

+function get_avatar($row, $alt, $ignore_config = false)

+{

+ global $user, $config, $cache, $phpbb_root_path, $phpEx;

+ global $request;

+ global $phpbb_avatar_manager;

+

+ if (!$config['allow_avatar'] && !$ignore_config)

+ $avatar_data = array(

+ 'src' => $row['avatar'],

+ 'width' => $row['avatar_width'],

+ 'height' => $row['avatar_height'],

+ );

+

+ $avatar = $phpbb_avatar_manager->get_driver($row['avatar_type']);

+ if ($avatar)

+ if ($avatar->custom_html)

+ {

+ return $avatar->get_html($row, $ignore_config);

+ }

+ $avatar_data = $avatar->get_data($row, $ignore_config);

+ }

+ else

+ {

+ $avatar_data['src'] = '';

+ }

+ $html = '';

+

+ if (!empty($avatar_data['src']))

+ {

+ $html = '<img src="' . $avatar_data['src'] . '" ' .

+ ($avatar_data['width'] ? ('width="' . $avatar_data['width'] . '" ') : '') .

+ ($avatar_data['height'] ? ('height="' . $avatar_data['height'] . '" ') : '') .

+ 'alt="' . ((!empty($user->lang[$alt])) ? $user->lang[$alt] : $alt) . '" />';

+ return $html;

+

+ $avatar_img = get_user_avatar($userrow);

+ $avatar_img = get_user_avatar($user_row);

+ $avatar_img = get_user_avatar($user_row);

+ $avatar_img = (!empty($group_row['group_avatar'])) ? get_group_avatar($group_row) : '<img src="' . $phpbb_root_path . 'adm/images/no_avatar.gif" alt="" />';

+ $user_row['avatar'] = ($user->optionget('viewavatars')) ? get_user_avatar($user_row) : '';

+ global $cache, $config, $db, $user, $auth, $template, $phpbb_root_path, $phpEx;

+ global $phpbb_avatar_manager;

+ include_once($phpbb_root_path . 'includes/functions_display.' . $phpEx);

+ add_form_key('ucp_avatar');

+ $avatars_enabled = false;

+ if ($config['allow_avatar'] && $auth->acl_get('u_chgavatar'))

+ {

+ $avatar_drivers = $phpbb_avatar_manager->get_valid_drivers();

+ sort($avatar_drivers);

+ // This is normalised data, without the user_ prefix

+ $avatar_data = phpbb_avatar_manager::clean_row($user->data);

+ if ($submit)

+ if (check_form_key('ucp_avatar'))

+ $driver = request_var('avatar_driver', '');

+ if (in_array($driver, $avatar_drivers) && $config["allow_avatar_$driver"])

+ {

+ $avatar = $phpbb_avatar_manager->get_driver($driver);

+ $result = $avatar->process_form($template, $avatar_data, $error);

+

+ if ($result && empty($error))

+ {

+ // Success! Lets save the result in the database

+ $result = array(

+ 'user_avatar_type' => $driver,

+ 'user_avatar' => $result['avatar'],

+ 'user_avatar_width' => $result['avatar_width'],

+ 'user_avatar_height' => $result['avatar_height'],

+ );

+

+ $sql = 'UPDATE ' . USERS_TABLE . '

+ SET ' . $db->sql_build_array('UPDATE', $result) . '

+ WHERE user_id = ' . $user->data['user_id'];

+

+ $db->sql_query($sql);

+

+ meta_refresh(3, $this->u_action);

+ $message = $user->lang['PROFILE_UPDATED'] . '<br /><br />' . sprintf($user->lang['RETURN_UCP'], '<a href="' . $this->u_action . '">', '</a>');

+ trigger_error($message);

+ }

+ }

+ else

+ {

+ // They are removing their avatar or are trying to play games with us

+ if ($avatar = $phpbb_avatar_manager->get_driver($user->data['user_avatar_type']))

+ {

+ $avatar->delete($avatar_data);

+ }

+

+ $result = array(

+ 'user_avatar' => '',

+ 'user_avatar_type' => '',

+ 'user_avatar_width' => 0,

+ 'user_avatar_height' => 0,

+ );

+

+ $sql = 'UPDATE ' . USERS_TABLE . '

+ SET ' . $db->sql_build_array('UPDATE', $result) . '

+ WHERE user_id = ' . $user->data['user_id'];

+

+ $db->sql_query($sql);

+

+ meta_refresh(3, $this->u_action);

+ $message = $user->lang['PROFILE_UPDATED'] . '<br /><br />' . sprintf($user->lang['RETURN_UCP'], '<a href="' . $this->u_action . '">', '</a>');

+ trigger_error($message);

+ }

+ }

+ else

+ {

+ $error[] = 'FORM_INVALID';

+

+ $focused_driver = request_var('avatar_driver', $user->data['user_avatar_type']);

+

+ foreach ($avatar_drivers as $driver)

+ if ($config["allow_avatar_$driver"])

+ {

+ $avatars_enabled = true;

+ $template->set_filenames(array(

+ 'avatar' => "ucp_avatar_options_$driver.html",

+ ));

+

+ $avatar = $phpbb_avatar_manager->get_driver($driver);

+

+ if ($avatar->prepare_form($template, $avatar_data, $error))

+ {

+ $driver_u = strtoupper($driver);

+

+ $template->assign_block_vars('avatar_drivers', array(

+ 'L_TITLE' => $user->lang('AVATAR_DRIVER_' . $driver_u . '_TITLE'), // @TODO add lang values

+ 'L_EXPLAIN' => $user->lang('AVATAR_DRIVER_' . $driver_u . '_EXPLAIN'),

+

+ 'DRIVER' => $driver,

+ 'SELECTED' => ($driver == $focused_driver),

+ 'OUTPUT' => $template->assign_display('avatar'),

+ ));

+ }

+ }

+ // Replace "error" strings with their real, localised form

+ $err = $error;

+ $error = array();

+ foreach ($err as $e)

+ if (is_array($e))

+ {

+ $key = array_shift($e);

+ $error[] = vsprintf($user->lang($key), $e);

+ }

+ else

+ {

+ $error[] = $user->lang((string) $e);

+ }

+

+ $avatar = get_user_avatar($user->data, 'USER_AVATAR', true);

+ 'AVATAR' => $avatar,

+ 'S_FORM_ENCTYPE' => ' enctype="multipart/form-data"',

+

+ 'S_AVATARS_ENABLED' => ($config['allow_avatar'] && $avatars_enabled),