- global $db, $user, $cache, $phpbb_root_path, $phpbb_dispatcher;

- $forum_data_sql['forum_password'] = phpbb_hash($forum_data_sql['forum_password']);

- global $request;

- include($phpbb_root_path . 'includes/functions_profile_fields.' . $phpEx);

- // Define some default values for each field type

- $default_values = array(

- FIELD_STRING => array('field_length' => 10, 'field_minlen' => 0, 'field_maxlen' => 20, 'field_validation' => '.*', 'field_novalue' => '', 'field_default_value' => ''),

- FIELD_TEXT => array('field_length' => '5|80', 'field_minlen' => 0, 'field_maxlen' => 1000, 'field_validation' => '.*', 'field_novalue' => '', 'field_default_value' => ''),

- FIELD_INT => array('field_length' => 5, 'field_minlen' => 0, 'field_maxlen' => 100, 'field_validation' => '', 'field_novalue' => 0, 'field_default_value' => 0),

- FIELD_DATE => array('field_length' => 10, 'field_minlen' => 10, 'field_maxlen' => 10, 'field_validation' => '', 'field_novalue' => ' 0- 0- 0', 'field_default_value' => ' 0- 0- 0'),

- FIELD_BOOL => array('field_length' => 1, 'field_minlen' => 0, 'field_maxlen' => 0, 'field_validation' => '', 'field_novalue' => 0, 'field_default_value' => 0),

- FIELD_DROPDOWN => array('field_length' => 0, 'field_minlen' => 0, 'field_maxlen' => 5, 'field_validation' => '', 'field_novalue' => 0, 'field_default_value' => 0),

- );

-

- $cp = new custom_profile_admin();

- foreach ($this->lang_defs['entry'] as $field_id => $field_ary)

- $this->lang_defs['diff'][$field_id] = array_diff(array_values($this->lang_defs['iso']), $field_ary);

- $field_type = request_var('field_type', 0);

- if (!$field_type)

- $field_row = array_merge($default_values[$field_type], array(

- 1 => array('field_ident', 'lang_name', 'lang_explain', 'field_option_none', 'field_show_on_reg', 'field_show_on_pm', 'field_show_on_vt', 'field_required', 'field_show_novalue', 'field_hide', 'field_show_profile', 'field_no_view'),

- // Text-based fields require the lang_default_value to be excluded

- if ($field_type == FIELD_STRING || $field_type == FIELD_TEXT)

- {

- $exclude[1][] = 'lang_default_value';

- }

-

- // option-specific fields require lang_options to be excluded

- if ($field_type == FIELD_BOOL || $field_type == FIELD_DROPDOWN)

- {

- $exclude[1][] = 'lang_options';

- }

-

- $cp->vars['field_ident'] = ($action == 'create' && $step == 1) ? utf8_clean_string(request_var('field_ident', $field_row['field_ident'], true)) : request_var('field_ident', $field_row['field_ident']);

- $cp->vars['lang_name'] = utf8_normalize_nfc(request_var('lang_name', $field_row['lang_name'], true));

- $cp->vars['lang_explain'] = utf8_normalize_nfc(request_var('lang_explain', $field_row['lang_explain'], true));

- $cp->vars['lang_default_value'] = utf8_normalize_nfc(request_var('lang_default_value', $field_row['lang_default_value'], true));

-

- // A boolean field expects an array as the lang options

- if ($field_type == FIELD_BOOL)

- {

- $options = utf8_normalize_nfc(request_var('lang_options', array(''), true));

- }

- else

- {

- $options = utf8_normalize_nfc(request_var('lang_options', '', true));

- }

-

- // Manipulate the intended variables a little bit if needed

- if ($field_type == FIELD_DROPDOWN && $key == 'field_maxlen')

- {

- // Get the number of options if this key is 'field_maxlen'

- $var = sizeof(explode("\n", utf8_normalize_nfc(request_var('lang_options', '', true))));

- }

- else if ($field_type == FIELD_TEXT && $key == 'field_length')

- {

- if (isset($_REQUEST['rows']))

- {

- $cp->vars['rows'] = request_var('rows', 0);

- $cp->vars['columns'] = request_var('columns', 0);

- $var = $cp->vars['rows'] . '|' . $cp->vars['columns'];

- }

- else

- {

- $row_col = explode('|', $var);

- $cp->vars['rows'] = $row_col[0];

- $cp->vars['columns'] = $row_col[1];

- }

- }

- else if ($field_type == FIELD_DATE && $key == 'field_default_value')

- {

- $always_now = request_var('always_now', -1);

-

- if ($always_now == 1 || ($always_now === -1 && $var == 'now'))

- {

- $now = getdate();

-

- $cp->vars['field_default_value_day'] = $now['mday'];

- $cp->vars['field_default_value_month'] = $now['mon'];

- $cp->vars['field_default_value_year'] = $now['year'];

- $var = 'now';

- $request->overwrite('field_default_value', $var, \phpbb\request\request_interface::POST);

- }

- else

- {

- if (isset($_REQUEST['field_default_value_day']))

- {

- $cp->vars['field_default_value_day'] = request_var('field_default_value_day', 0);

- $cp->vars['field_default_value_month'] = request_var('field_default_value_month', 0);

- $cp->vars['field_default_value_year'] = request_var('field_default_value_year', 0);

- $var = sprintf('%2d-%2d-%4d', $cp->vars['field_default_value_day'], $cp->vars['field_default_value_month'], $cp->vars['field_default_value_year']);

- $request->overwrite('field_default_value', $var, \phpbb\request\request_interface::POST);

- }

- else

- {

- list($cp->vars['field_default_value_day'], $cp->vars['field_default_value_month'], $cp->vars['field_default_value_year']) = explode('-', $var);

- }

- }

- }

- else if ($field_type == FIELD_BOOL && $key == 'field_default_value')

- {

- // 'field_length' == 1 defines radio buttons. Possible values are 1 or 2 only.

- // 'field_length' == 2 defines checkbox. Possible values are 0 or 1 only.

- // If we switch the type on step 2, we have to adjust field value.

- // 1 is a common value for the checkbox and radio buttons.

-

- // Adjust unchecked checkbox value.

- // If we return or save settings from 2nd/3rd page

- // and the checkbox is unchecked, set the value to 0.

- if (isset($_REQUEST['step']) && !isset($_REQUEST[$key]))

- {

- $var = 0;

- }

-

- // If we switch to the checkbox type but former radio buttons value was 2,

- // which is not the case for the checkbox, set it to 0 (unchecked).

- if ($cp->vars['field_length'] == 2 && $var == 2)

- {

- $var = 0;

- }

- // If we switch to the radio buttons but the former checkbox value was 0,

- // which is not the case for the radio buttons, set it to 0.

- else if ($cp->vars['field_length'] == 1 && $var == 0)

- {

- $var = 2;

- }

- }

- else if ($field_type == FIELD_INT && $key == 'field_default_value')

- {

- // Permit an empty string

- if ($action == 'create' && request_var('field_default_value', '') === '')

- {

- $var = '';

- }

- }

- else if ($key == 'l_lang_options' && $field_type == FIELD_BOOL)

- {

- $cp->vars[$key] = utf8_normalize_nfc(request_var($key, array(0 => array('')), true));

- }

- else if ($key == 'l_lang_options' && is_array($cp->vars[$key]))

- {

- foreach ($cp->vars[$key] as $lang_id => $options)

- {

- $cp->vars[$key][$lang_id] = explode("\n", $options);

- }

- }

- if ($field_type == FIELD_DROPDOWN && !sizeof($cp->vars['lang_options']))

- {

- $error[] = $user->lang['NO_FIELD_ENTRIES'];

- }

-

- if ($field_type == FIELD_BOOL && (empty($cp->vars['lang_options'][0]) || empty($cp->vars['lang_options'][1])))

- {

- $error[] = $user->lang['NO_FIELD_ENTRIES'];

- }

- if ($field_type == FIELD_TEXT && $key == 'field_length' && isset($_REQUEST['rows']))

- {

- $cp->vars['rows'] = request_var('rows', 0);

- $cp->vars['columns'] = request_var('columns', 0);

- $_new_key_ary[$key] = $cp->vars['rows'] . '|' . $cp->vars['columns'];

- }

- else if ($field_type == FIELD_DATE && $key == 'field_default_value')

- {

- $always_now = request_var('always_now', 0);

-

- if ($always_now)

- {

- $_new_key_ary[$key] = 'now';

- }

- else if (isset($_REQUEST['field_default_value_day']))

- {

- $cp->vars['field_default_value_day'] = request_var('field_default_value_day', 0);

- $cp->vars['field_default_value_month'] = request_var('field_default_value_month', 0);

- $cp->vars['field_default_value_year'] = request_var('field_default_value_year', 0);

- $_new_key_ary[$key] = sprintf('%2d-%2d-%4d', $cp->vars['field_default_value_day'], $cp->vars['field_default_value_month'], $cp->vars['field_default_value_year']);

- }

- }

- else if ($field_type == FIELD_BOOL && $key == 'l_lang_options' && isset($_REQUEST['l_lang_options']))

- {

- $_new_key_ary[$key] = utf8_normalize_nfc(request_var($key, array(array('')), true));

- }

- else if ($field_type == FIELD_BOOL && $key == 'field_default_value')

- {

- $_new_key_ary[$key] = request_var($key, $cp->vars[$key]);

- }

- else

- if (!isset($_REQUEST[$key]))

- {

- $var = false;

- }

- else if ($key == 'field_ident' && isset($cp->vars[$key]))

- {

- $_new_key_ary[$key]= $cp->vars[$key];

- }

- else

- {

- $_new_key_ary[$key] = ($field_type == FIELD_BOOL && $key == 'lang_options') ? utf8_normalize_nfc(request_var($key, array(''), true)) : utf8_normalize_nfc(request_var($key, '', true));

- }

-

- // Build common create options

- $template->assign_vars(array(

- 'FIELD_TYPE' => $user->lang['FIELD_' . strtoupper($cp->profile_types[$field_type])],

- 'LANG_EXPLAIN' => $cp->vars['lang_explain'])

- // String and Text needs to set default values here...

- if ($field_type == FIELD_STRING || $field_type == FIELD_TEXT)

- {

- $template->assign_vars(array(

- 'S_TEXT' => ($field_type == FIELD_TEXT) ? true : false,

- 'S_STRING' => ($field_type == FIELD_STRING) ? true : false,

-

- 'L_DEFAULT_VALUE_EXPLAIN' => $user->lang[strtoupper($cp->profile_types[$field_type]) . '_DEFAULT_VALUE_EXPLAIN'],

- 'LANG_DEFAULT_VALUE' => $cp->vars['lang_default_value'])

- );

- }

-

- if ($field_type == FIELD_BOOL || $field_type == FIELD_DROPDOWN)

- {

- // Initialize these array elements if we are creating a new field

- if (!sizeof($cp->vars['lang_options']))

- {

- if ($field_type == FIELD_BOOL)

- {

- // No options have been defined for a boolean field.

- $cp->vars['lang_options'][0] = '';

- $cp->vars['lang_options'][1] = '';

- }

- else

- {

- // No options have been defined for the dropdown menu

- $cp->vars['lang_options'] = array();

- }

- }

-

- $template->assign_vars(array(

- 'S_BOOL' => ($field_type == FIELD_BOOL) ? true : false,

- 'S_DROPDOWN' => ($field_type == FIELD_DROPDOWN) ? true : false,

-

- 'L_LANG_OPTIONS_EXPLAIN' => $user->lang[strtoupper($cp->profile_types[$field_type]) . '_ENTRIES_EXPLAIN'],

- 'LANG_OPTIONS' => ($field_type == FIELD_DROPDOWN) ? implode("\n", $cp->vars['lang_options']) : '',

- 'FIRST_LANG_OPTION' => ($field_type == FIELD_BOOL) ? $cp->vars['lang_options'][0] : '',

- 'SECOND_LANG_OPTION' => ($field_type == FIELD_BOOL) ? $cp->vars['lang_options'][1] : '')

- );

- }

- $function = 'get_' . $cp->profile_types[$field_type] . '_options';

- $options = $cp->$function();

- 'FIELD_TYPE' => $user->lang['FIELD_' . strtoupper($cp->profile_types[$row['field_type']])],

- foreach ($cp->profile_types as $key => $value)

- $s_select_type .= '<option value="' . $key . '">' . $user->lang['FIELD_' . strtoupper($value)] . '</option>';

- 'S_TYPE_OPTIONS' => $s_select_type)

- );

- global $user, $config, $db;

- $options = array();

- $options['lang_name'] = 'string';

- if ($cp->vars['lang_explain'])

- {

- $options['lang_explain'] = 'text';

- }

-

- switch ($field_type)

- {

- case FIELD_BOOL:

- $options['lang_options'] = 'two_options';

- break;

-

- case FIELD_DROPDOWN:

- $options['lang_options'] = 'optionfield';

- break;

-

- case FIELD_TEXT:

- case FIELD_STRING:

- if (strlen($cp->vars['lang_default_value']))

- {

- $options['lang_default_value'] = ($field_type == FIELD_STRING) ? 'string' : 'text';

- }

- break;

- }

- global $db, $config, $user;

- $profile_sql[] = $this->add_field_ident($field_ident, $field_type);

- // These are always arrays because the key is the language id...

- $cp->vars['l_lang_name'] = utf8_normalize_nfc(request_var('l_lang_name', array(0 => ''), true));

- $cp->vars['l_lang_explain'] = utf8_normalize_nfc(request_var('l_lang_explain', array(0 => ''), true));

- $cp->vars['l_lang_default_value'] = utf8_normalize_nfc(request_var('l_lang_default_value', array(0 => ''), true));

-

- if ($field_type != FIELD_BOOL)

- {

- $cp->vars['l_lang_options'] = utf8_normalize_nfc(request_var('l_lang_options', array(0 => ''), true));

- }

- else

- {

- /**

- * @todo check if this line is correct...

- $cp->vars['l_lang_default_value'] = request_var('l_lang_default_value', array(0 => array('')), true);

- */

- $cp->vars['l_lang_options'] = utf8_normalize_nfc(request_var('l_lang_options', array(0 => array('')), true));

- }

- 'field_type' => (int) $field_type,

- 'field_type' => (int) $field_type,

- function add_field_ident($field_ident, $field_type)

-

- // We are defining the biggest common value, because of the possibility to edit the min/max values of each field.

- $sql = 'ALTER TABLE ' . PROFILE_FIELDS_DATA_TABLE . " ADD `$field_ident` ";

-

- switch ($field_type)

- {

- case FIELD_STRING:

- $sql .= ' VARCHAR(255) ';

- break;

-

- case FIELD_DATE:

- $sql .= 'VARCHAR(10) ';

- break;

-

- case FIELD_TEXT:

- $sql .= "TEXT";

- // ADD {$field_ident}_bbcode_uid VARCHAR(5) NOT NULL,

- // ADD {$field_ident}_bbcode_bitfield INT(11) UNSIGNED";

- break;

-

- case FIELD_BOOL:

- $sql .= 'TINYINT(2) ';

- break;

-

- case FIELD_DROPDOWN:

- $sql .= 'MEDIUMINT(8) ';

- break;

-

- case FIELD_INT:

- $sql .= 'BIGINT(20) ';

- break;

- }

-

- switch ($field_type)

- {

- case FIELD_STRING:

- $type = ' VARCHAR(255) ';

- break;

-

- case FIELD_DATE:

- $type = 'VARCHAR(10) ';

- break;

-

- case FIELD_TEXT:

- $type = "TEXT(65535)";

- // ADD {$field_ident}_bbcode_uid VARCHAR(5) NOT NULL,

- // ADD {$field_ident}_bbcode_bitfield INT(11) UNSIGNED";

- break;

-

- case FIELD_BOOL:

- $type = 'TINYINT(2) ';

- break;

-

- case FIELD_DROPDOWN:

- $type = 'MEDIUMINT(8) ';

- break;

-

- case FIELD_INT:

- $type = 'BIGINT(20) ';

- break;

- }

-

- // We are defining the biggest common value, because of the possibility to edit the min/max values of each field.

- $new_table_cols = $field_ident . ' ' . $type . ',' . $new_table_cols;

- $sql = 'ALTER TABLE ' . PROFILE_FIELDS_DATA_TABLE . " ADD $field_ident [$type]";

-

- // We are defining the biggest common value, because of the possibility to edit the min/max values of each field.

- $sql = 'ALTER TABLE [' . PROFILE_FIELDS_DATA_TABLE . "] ADD [$field_ident] ";

-

- switch ($field_type)

- {

- case FIELD_STRING:

- $sql .= ' [VARCHAR] (255) ';

- break;

-

- case FIELD_DATE:

- $sql .= '[VARCHAR] (10) ';

- break;

-

- case FIELD_TEXT:

- $sql .= "[TEXT]";

- // ADD {$field_ident}_bbcode_uid [VARCHAR] (5) NOT NULL,

- // ADD {$field_ident}_bbcode_bitfield [INT] UNSIGNED";

- break;

-

- case FIELD_BOOL:

- case FIELD_DROPDOWN:

- $sql .= '[INT] ';

- break;

-

- case FIELD_INT:

- $sql .= '[FLOAT] ';

- break;

- }

-

- // We are defining the biggest common value, because of the possibility to edit the min/max values of each field.

- $sql = 'ALTER TABLE ' . PROFILE_FIELDS_DATA_TABLE . " ADD COLUMN \"$field_ident\" ";

-

- switch ($field_type)

- {

- case FIELD_STRING:

- $sql .= ' VARCHAR(255) ';

- break;

-

- case FIELD_DATE:

- $sql .= 'VARCHAR(10) ';

- break;

-

- case FIELD_TEXT:

- $sql .= "TEXT";

- // ADD {$field_ident}_bbcode_uid VARCHAR(5) NOT NULL,

- // ADD {$field_ident}_bbcode_bitfield INT4 UNSIGNED";

- break;

-

- case FIELD_BOOL:

- $sql .= 'INT2 ';

- break;

-

- case FIELD_DROPDOWN:

- $sql .= 'INT4 ';

- break;

-

- case FIELD_INT:

- $sql .= 'INT8 ';

- break;

- }

-

- // We are defining the biggest common value, because of the possibility to edit the min/max values of each field.

- $sql = 'ALTER TABLE ' . PROFILE_FIELDS_DATA_TABLE . ' ADD "' . strtoupper($field_ident) . '" ';

-

- switch ($field_type)

- {

- case FIELD_STRING:

- $sql .= ' VARCHAR(255) ';

- break;

-

- case FIELD_DATE:

- $sql .= 'VARCHAR(10) ';

- break;

-

- case FIELD_TEXT:

- $sql .= "BLOB SUB_TYPE TEXT";

- // ADD {$field_ident}_bbcode_uid VARCHAR(5) NOT NULL,

- // ADD {$field_ident}_bbcode_bitfield INTEGER UNSIGNED";

- break;

-

- case FIELD_BOOL:

- case FIELD_DROPDOWN:

- $sql .= 'INTEGER ';

- break;

-

- case FIELD_INT:

- $sql .= 'DOUBLE PRECISION ';

- break;

- }

-

- // We are defining the biggest common value, because of the possibility to edit the min/max values of each field.

- $sql = 'ALTER TABLE ' . PROFILE_FIELDS_DATA_TABLE . " ADD $field_ident ";

-

- switch ($field_type)

- {

- case FIELD_STRING:

- $sql .= ' VARCHAR2(255) ';

- break;

-

- case FIELD_DATE:

- $sql .= 'VARCHAR2(10) ';

- break;

-

- case FIELD_TEXT:

- $sql .= "CLOB";

- // ADD {$field_ident}_bbcode_uid VARCHAR2(5) NOT NULL,

- // ADD {$field_ident}_bbcode_bitfield NUMBER(11) UNSIGNED";

- break;

-

- case FIELD_BOOL:

- $sql .= 'NUMBER(2) ';

- break;

-

- case FIELD_DROPDOWN:

- $sql .= 'NUMBER(8) ';

- break;

-

- case FIELD_INT:

- $sql .= 'NUMBER(20) ';

- break;

- }

- $update_password = ($data['new_password'] && !phpbb_check_hash($data['new_password'], $user_row['user_password'])) ? true : false;

- 'user_password' => phpbb_hash($data['new_password']),

- include($phpbb_root_path . 'includes/functions_profile_fields.' . $phpEx);

- $cp = new custom_profile();

- 'location' => utf8_normalize_nfc(request_var('location', $user_row['user_from'], true)),

- 'occupation' => utf8_normalize_nfc(request_var('occupation', $user_row['user_occ'], true)),

- 'interests' => utf8_normalize_nfc(request_var('interests', $user_row['user_interests'], true)),

- 'location' => array('string', true, 2, 100),

- 'occupation' => array('string', true, 2, 500),

- 'interests' => array('string', true, 2, 500),

- 'user_from' => $data['location'],

- 'user_occ' => $data['occupation'],

- 'user_interests'=> $data['interests'],

- 'LOCATION' => $data['location'],

- 'OCCUPATION' => $data['occupation'],

- 'INTERESTS' => $data['interests'],

-define('PHPBB_VERSION', '3.1.0-a3-dev');

-

- 'forum_password' => array('VCHAR_UNI:40', ''),

- 'field_type' => array('TINT:4', 0),

- 'field_type' => array('TINT:4', 0),

- 'user_password' => array('VCHAR_UNI:40', ''),

- 'user_from' => array('VCHAR_UNI:100', ''),

- 'user_occ' => array('TEXT_UNI', ''),

- 'user_interests' => array('TEXT_UNI', ''),

-* @version Version 0.1 / slightly modified for phpBB 3.1.x (using $H$ as hash type identifier)

-*

-* Portable PHP password hashing framework.

-*

-* Written by Solar Designer <solar at openwall.com> in 2004-2006 and placed in

-* the public domain.

-*

-* There's absolutely no warranty.

-*

-* The homepage URL for this framework is:

-*

-* http://www.openwall.com/phpass/

-*

-* Please be sure to update the Version line if you edit this file in any way.

-* It is suggested that you leave the main version number intact, but indicate

-* your project name (after the slash) and add your own revision information.

-*

-* Please do not change the "private" password hashing method implemented in

-* here, thereby making your hashes incompatible. However, if you must, please

-* change the hash type identifier (the "$P$") to something different.

-*

-* Obviously, since this code is in the public domain, the above are not

-* requirements (there can be none), but merely suggestions.

-* Hash the password

- $itoa64 = './0123456789ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz';

-

- $random_state = unique_id();

- $random = '';

- $count = 6;

-

- if (($fh = @fopen('/dev/urandom', 'rb')))

- {

- $random = fread($fh, $count);

- fclose($fh);

- }

-

- if (strlen($random) < $count)

- {

- $random = '';

-

- for ($i = 0; $i < $count; $i += 16)

- {

- $random_state = md5(unique_id() . $random_state);

- $random .= pack('H*', md5($random_state));

- }

- $random = substr($random, 0, $count);

- }

-

- $hash = _hash_crypt_private($password, _hash_gensalt_private($random, $itoa64), $itoa64);

-

- if (strlen($hash) == 34)

- {

- return $hash;

- }

- return md5($password);

- if (strlen($password) > 4096)

- {

- // If the password is too huge, we will simply reject it

- // and not let the server try to hash it.

- return false;

- }

-

- $itoa64 = './0123456789ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz';

- if (strlen($hash) == 34)

- {

- return (_hash_crypt_private($password, $hash, $itoa64) === $hash) ? true : false;

- }

- return (md5($password) === $hash) ? true : false;

-}

-

-/**

-* Generate salt for hash generation

-*/

-function _hash_gensalt_private($input, &$itoa64, $iteration_count_log2 = 6)

-{

- if ($iteration_count_log2 < 4 || $iteration_count_log2 > 31)

- {

- $iteration_count_log2 = 8;

- }

-

- $output = '$H$';

- $output .= $itoa64[min($iteration_count_log2 + 5, 30)];

- $output .= _hash_encode64($input, 6, $itoa64);

-

- return $output;

-}

-

-/**

-* Encode hash

-*/

-function _hash_encode64($input, $count, &$itoa64)

-{

- $output = '';

- $i = 0;

-

- do

- {

- $value = ord($input[$i++]);

- $output .= $itoa64[$value & 0x3f];

-

- if ($i < $count)

- {

- $value |= ord($input[$i]) << 8;

- }

-

- $output .= $itoa64[($value >> 6) & 0x3f];

-

- if ($i++ >= $count)

- {

- break;

- }

-

- if ($i < $count)

- {

- $value |= ord($input[$i]) << 16;

- }

-

- $output .= $itoa64[($value >> 12) & 0x3f];

-

- if ($i++ >= $count)

- {

- break;

- }

-

- $output .= $itoa64[($value >> 18) & 0x3f];

- }

- while ($i < $count);

-

- return $output;

-}

-

-/**

-* The crypt function/replacement

-*/

-function _hash_crypt_private($password, $setting, &$itoa64)

-{

- $output = '*';

-

- // Check for correct hash

- if (substr($setting, 0, 3) != '$H$' && substr($setting, 0, 3) != '$P$')

- {

- return $output;

- }

-

- $count_log2 = strpos($itoa64, $setting[3]);

-

- if ($count_log2 < 7 || $count_log2 > 30)

- {

- return $output;

- }

-

- $count = 1 << $count_log2;

- $salt = substr($setting, 4, 8);

-

- if (strlen($salt) != 8)

- {

- return $output;

- }

-

- /**

- * We're kind of forced to use MD5 here since it's the only

- * cryptographic primitive available in all versions of PHP

- * currently in use. To implement our own low-level crypto

- * in PHP would result in much worse performance and

- * consequently in lower iteration counts and hashes that are

- * quicker to crack (by non-PHP code).

- */

- $hash = md5($salt . $password, true);

- do

- {

- $hash = md5($hash . $password, true);

- }

- while (--$count);

-

- $output = substr($setting, 0, 12);

- $output .= _hash_encode64($hash, 16, $itoa64);

-

- return $output;

- global $db, $config, $user, $template, $phpEx;

- $password = request_var('password', '', true);

- if (phpbb_check_hash($password, $forum_data['forum_password']))

-<?php

-/**

-*

-* @package phpBB3

-* @copyright (c) 2005 phpBB Group

-* @license http://opensource.org/licenses/gpl-2.0.php GNU General Public License v2

-*

-*/

-

-/**

-* @ignore

-*/

-if (!defined('IN_PHPBB'))

-{

- exit;

-}

-

-/**

-* Custom Profile Fields

-* @package phpBB3

-*/

-class custom_profile

-{

- var $profile_types = array(FIELD_INT => 'int', FIELD_STRING => 'string', FIELD_TEXT => 'text', FIELD_BOOL => 'bool', FIELD_DROPDOWN => 'dropdown', FIELD_DATE => 'date');

- var $profile_cache = array();

- var $options_lang = array();

-

- /**

- * Assign editable fields to template, mode can be profile (for profile change) or register (for registration)

- * Called by ucp_profile and ucp_register

- * @access public

- */

- function generate_profile_fields($mode, $lang_id)

- {

- global $db, $template, $auth;

-

- $sql_where = '';

- switch ($mode)

- {

- case 'register':

- // If the field is required we show it on the registration page

- $sql_where .= ' AND f.field_show_on_reg = 1';

- break;

-

- case 'profile':

- // Show hidden fields to moderators/admins

- if (!$auth->acl_gets('a_', 'm_') && !$auth->acl_getf_global('m_'))

- {

- $sql_where .= ' AND f.field_show_profile = 1';

- }

- break;

-

- default:

- trigger_error('Wrong profile mode specified', E_USER_ERROR);

- break;

- }

-

- $sql = 'SELECT l.*, f.*

- FROM ' . PROFILE_LANG_TABLE . ' l, ' . PROFILE_FIELDS_TABLE . " f

- WHERE f.field_active = 1

- $sql_where

- AND l.lang_id = $lang_id

- AND l.field_id = f.field_id

- ORDER BY f.field_order";

- $result = $db->sql_query($sql);

-

- while ($row = $db->sql_fetchrow($result))

- {

- // Return templated field

- $tpl_snippet = $this->process_field_row('change', $row);

-

- // Some types are multivalue, we can't give them a field_id as we would not know which to pick

- $type = (int) $row['field_type'];

-

- $template->assign_block_vars('profile_fields', array(

- 'LANG_NAME' => $row['lang_name'],

- 'LANG_EXPLAIN' => $row['lang_explain'],

- 'FIELD' => $tpl_snippet,

- 'FIELD_ID' => ($type == FIELD_DATE || ($type == FIELD_BOOL && $row['field_length'] == '1')) ? '' : 'pf_' . $row['field_ident'],

- 'S_REQUIRED' => ($row['field_required']) ? true : false)

- );

- }

- $db->sql_freeresult($result);

- }

-

- /**

- * Validate entered profile field data

- * @access public

- */

- function validate_profile_field($field_type, &$field_value, $field_data)

- {

- switch ($field_type)

- {

- case FIELD_DATE:

- $field_validate = explode('-', $field_value);

-

- $day = (isset($field_validate[0])) ? (int) $field_validate[0] : 0;

- $month = (isset($field_validate[1])) ? (int) $field_validate[1] : 0;

- $year = (isset($field_validate[2])) ? (int) $field_validate[2] : 0;

-

- if ((!$day || !$month || !$year) && !$field_data['field_required'])

- {

- return false;

- }

-

- if ((!$day || !$month || !$year) && $field_data['field_required'])

- {

- return 'FIELD_REQUIRED';

- }

-

- if ($day < 0 || $day > 31 || $month < 0 || $month > 12 || ($year < 1901 && $year > 0) || $year > gmdate('Y', time()) + 50)

- {

- return 'FIELD_INVALID_DATE';

- }

-

- if (checkdate($month, $day, $year) === false)

- {

- return 'FIELD_INVALID_DATE';

- }

- break;

-

- case FIELD_BOOL:

- $field_value = (bool) $field_value;

-

- if (!$field_value && $field_data['field_required'])

- {

- return 'FIELD_REQUIRED';

- }

- break;

-

- case FIELD_INT:

- if (trim($field_value) === '' && !$field_data['field_required'])

- {

- return false;

- }

-

- $field_value = (int) $field_value;

-

- if ($field_value < $field_data['field_minlen'])

- {

- return 'FIELD_TOO_SMALL';

- }

- else if ($field_value > $field_data['field_maxlen'])

- {

- return 'FIELD_TOO_LARGE';

- }

- break;

-

- case FIELD_DROPDOWN:

- $field_value = (int) $field_value;

-

- // retrieve option lang data if necessary

- if (!isset($this->options_lang[$field_data['field_id']]) || !isset($this->options_lang[$field_data['field_id']][$field_data['lang_id']]) || !sizeof($this->options_lang[$file_data['field_id']][$field_data['lang_id']]))

- {

- $this->get_option_lang($field_data['field_id'], $field_data['lang_id'], FIELD_DROPDOWN, false);

- }

-

- if (!isset($this->options_lang[$field_data['field_id']][$field_data['lang_id']][$field_value]))

- {

- return 'FIELD_INVALID_VALUE';

- }

-

- if ($field_value == $field_data['field_novalue'] && $field_data['field_required'])

- {

- return 'FIELD_REQUIRED';

- }

- break;

-

- case FIELD_STRING:

- case FIELD_TEXT:

- if (trim($field_value) === '' && !$field_data['field_required'])

- {

- return false;

- }

- else if (trim($field_value) === '' && $field_data['field_required'])

- {

- return 'FIELD_REQUIRED';

- }

-

- if ($field_data['field_minlen'] && utf8_strlen($field_value) < $field_data['field_minlen'])

- {

- return 'FIELD_TOO_SHORT';

- }

- else if ($field_data['field_maxlen'] && utf8_strlen($field_value) > $field_data['field_maxlen'])

- {

- return 'FIELD_TOO_LONG';

- }

-

- if (!empty($field_data['field_validation']) && $field_data['field_validation'] != '.*')

- {

- $field_validate = ($field_type == FIELD_STRING) ? $field_value : bbcode_nl2br($field_value);

- if (!preg_match('#^' . str_replace('\\\\', '\\', $field_data['field_validation']) . '$#i', $field_validate))

- {

- return 'FIELD_INVALID_CHARS';

- }

- }

- break;

- }

-

- return false;

- }

-

- /**

- * Build profile cache, used for display

- * @access private

- */

- function build_cache()

- {

- global $db, $user, $auth;

-

- $this->profile_cache = array();

-

- // Display hidden/no_view fields for admin/moderator

- $sql = 'SELECT l.*, f.*

- FROM ' . PROFILE_LANG_TABLE . ' l, ' . PROFILE_FIELDS_TABLE . ' f

- WHERE l.lang_id = ' . $user->get_iso_lang_id() . '

- AND f.field_active = 1 ' .

- ((!$auth->acl_gets('a_', 'm_') && !$auth->acl_getf_global('m_')) ? ' AND f.field_hide = 0 ' : '') . '

- AND f.field_no_view = 0

- AND l.field_id = f.field_id

- ORDER BY f.field_order';

- $result = $db->sql_query($sql);

-

- while ($row = $db->sql_fetchrow($result))

- {

- $this->profile_cache[$row['field_ident']] = $row;

- }

- $db->sql_freeresult($result);

- }

-

- /**

- * Get language entries for options and store them here for later use

- */

- function get_option_lang($field_id, $lang_id, $field_type, $preview)

- {

- global $db;

-

- if ($preview)

- {

- $lang_options = (!is_array($this->vars['lang_options'])) ? explode("\n", $this->vars['lang_options']) : $this->vars['lang_options'];

-

- foreach ($lang_options as $num => $var)

- {

- $this->options_lang[$field_id][$lang_id][($num + 1)] = $var;

- }

- }

- else

- {

- $sql = 'SELECT option_id, lang_value

- FROM ' . PROFILE_FIELDS_LANG_TABLE . "

- WHERE field_id = $field_id

- AND lang_id = $lang_id

- AND field_type = $field_type

- ORDER BY option_id";

- $result = $db->sql_query($sql);

-

- while ($row = $db->sql_fetchrow($result))

- {

- $this->options_lang[$field_id][$lang_id][($row['option_id'] + 1)] = $row['lang_value'];

- }

- $db->sql_freeresult($result);

- }

- }

-

- /**

- * Submit profile field for validation

- * @access public

- */

- function submit_cp_field($mode, $lang_id, &$cp_data, &$cp_error)

- {

- global $auth, $db, $user;

-

- $sql_where = '';

- switch ($mode)

- {

- case 'register':

- // If the field is required we show it on the registration page

- $sql_where .= ' AND f.field_show_on_reg = 1';

- break;

-

- case 'profile':

- // Show hidden fields to moderators/admins

- if (!$auth->acl_gets('a_', 'm_') && !$auth->acl_getf_global('m_'))

- {

- $sql_where .= ' AND f.field_show_profile = 1';

- }

- break;

-

- default:

- trigger_error('Wrong profile mode specified', E_USER_ERROR);

- break;

- }

-

- $sql = 'SELECT l.*, f.*

- FROM ' . PROFILE_LANG_TABLE . ' l, ' . PROFILE_FIELDS_TABLE . " f

- WHERE l.lang_id = $lang_id

- AND f.field_active = 1

- $sql_where

- AND l.field_id = f.field_id

- ORDER BY f.field_order";

- $result = $db->sql_query($sql);

-

- while ($row = $db->sql_fetchrow($result))

- {

- $cp_data['pf_' . $row['field_ident']] = $this->get_profile_field($row);

- $check_value = $cp_data['pf_' . $row['field_ident']];

-

- if (($cp_result = $this->validate_profile_field($row['field_type'], $check_value, $row)) !== false)

- {

- // If not and only showing common error messages, use this one

- $error = '';

- switch ($cp_result)

- {

- case 'FIELD_INVALID_DATE':

- case 'FIELD_INVALID_VALUE':

- case 'FIELD_REQUIRED':

- $error = $user->lang($cp_result, $row['lang_name']);

- break;

-

- case 'FIELD_TOO_SHORT':

- case 'FIELD_TOO_SMALL':

- $error = $user->lang($cp_result, (int) $row['field_minlen'], $row['lang_name']);

- break;

-

- case 'FIELD_TOO_LONG':

- case 'FIELD_TOO_LARGE':

- $error = $user->lang($cp_result, (int) $row['field_maxlen'], $row['lang_name']);

- break;

-

- case 'FIELD_INVALID_CHARS':

- switch ($row['field_validation'])

- {

- case '[0-9]+':

- $error = $user->lang($cp_result . '_NUMBERS_ONLY', $row['lang_name']);

- break;

-

- case '[\w]+':

- $error = $user->lang($cp_result . '_ALPHA_ONLY', $row['lang_name']);

- break;

-

- case '[\w_\+\. \-\[\]]+':

- $error = $user->lang($cp_result . '_SPACERS_ONLY', $row['lang_name']);

- break;

- }

- break;

- }

-

- if ($error != '')

- {

- $cp_error[] = $error;

- }

- }

- }

- $db->sql_freeresult($result);

- }

-

- /**

- * Update profile field data directly

- */

- function update_profile_field_data($user_id, &$cp_data)

- {

- global $db;

-

- if (!sizeof($cp_data))

- {

- return;

- }

-

- switch ($db->sql_layer)

- {

- case 'oracle':

- case 'firebird':

- case 'postgres':

- $right_delim = $left_delim = '"';

- break;

-

- case 'sqlite':

- case 'mssql':

- case 'mssql_odbc':

- case 'mssqlnative':

- $right_delim = ']';

- $left_delim = '[';

- break;

-

- case 'mysql':

- case 'mysql4':

- case 'mysqli':

- $right_delim = $left_delim = '`';

- break;

- }

-

- // use new array for the UPDATE; changes in the key do not affect the original array

- $cp_data_sql = array();

- foreach ($cp_data as $key => $value)

- {

- // Firebird is case sensitive with delimiter

- $cp_data_sql[$left_delim . (($db->sql_layer == 'firebird' || $db->sql_layer == 'oracle') ? strtoupper($key) : $key) . $right_delim] = $value;

- }

-

- $sql = 'UPDATE ' . PROFILE_FIELDS_DATA_TABLE . '

- SET ' . $db->sql_build_array('UPDATE', $cp_data_sql) . "

- WHERE user_id = $user_id";

- $db->sql_query($sql);

-

- if (!$db->sql_affectedrows())

- {

- $cp_data_sql['user_id'] = (int) $user_id;

-

- $db->sql_return_on_error(true);

-

- $sql = 'INSERT INTO ' . PROFILE_FIELDS_DATA_TABLE . ' ' . $db->sql_build_array('INSERT', $cp_data_sql);

- $db->sql_query($sql);

-

- $db->sql_return_on_error(false);

- }

- }

-

- /**

- * Assign fields to template, used for viewprofile, viewtopic and memberlist (if load setting is enabled)

- * This is directly connected to the user -> mode == grab is to grab the user specific fields, mode == show is for assigning the row to the template

- * @access public

- */

- function generate_profile_fields_template($mode, $user_id = 0, $profile_row = false)

- {

- global $db;

-

- if ($mode == 'grab')

- {

- if (!is_array($user_id))

- {

- $user_id = array($user_id);

- }

-

- if (!sizeof($this->profile_cache))

- {

- $this->build_cache();

- }

-

- if (!sizeof($user_id))

- {

- return array();

- }

-

- $sql = 'SELECT *

- FROM ' . PROFILE_FIELDS_DATA_TABLE . '

- WHERE ' . $db->sql_in_set('user_id', array_map('intval', $user_id));

- $result = $db->sql_query($sql);

-

- $field_data = array();

- while ($row = $db->sql_fetchrow($result))

- {

- $field_data[$row['user_id']] = $row;

- }

- $db->sql_freeresult($result);

-

- $user_fields = array();

-

- $user_ids = $user_id;

-

- // Go through the fields in correct order

- foreach (array_keys($this->profile_cache) as $used_ident)

- {

- foreach ($field_data as $user_id => $row)

- {

- $user_fields[$user_id][$used_ident]['value'] = $row['pf_' . $used_ident];

- $user_fields[$user_id][$used_ident]['data'] = $this->profile_cache[$used_ident];

- }

-

- foreach ($user_ids as $user_id)

- {

- if (!isset($user_fields[$user_id][$used_ident]) && $this->profile_cache[$used_ident]['field_show_novalue'])

- {

- $user_fields[$user_id][$used_ident]['value'] = '';

- $user_fields[$user_id][$used_ident]['data'] = $this->profile_cache[$used_ident];

- }

- }

- }

-

- return $user_fields;

- }

- else if ($mode == 'show')

- {

- // $profile_row == $user_fields[$row['user_id']];

- $tpl_fields = array();

- $tpl_fields['row'] = $tpl_fields['blockrow'] = array();

-

- foreach ($profile_row as $ident => $ident_ary)

- {

- $value = $this->get_profile_value($ident_ary);

-

- if ($value === NULL)

- {

- continue;

- }

-

- $tpl_fields['row'] += array(

- 'PROFILE_' . strtoupper($ident) . '_VALUE' => $value,

- 'PROFILE_' . strtoupper($ident) . '_TYPE' => $ident_ary['data']['field_type'],

- 'PROFILE_' . strtoupper($ident) . '_NAME' => $ident_ary['data']['lang_name'],

- 'PROFILE_' . strtoupper($ident) . '_EXPLAIN'=> $ident_ary['data']['lang_explain'],

-

- 'S_PROFILE_' . strtoupper($ident) => true

- );

-

- $tpl_fields['blockrow'][] = array(

- 'PROFILE_FIELD_VALUE' => $value,

- 'PROFILE_FIELD_TYPE' => $ident_ary['data']['field_type'],

- 'PROFILE_FIELD_NAME' => $ident_ary['data']['lang_name'],

- 'PROFILE_FIELD_EXPLAIN' => $ident_ary['data']['lang_explain'],

-

- 'S_PROFILE_' . strtoupper($ident) => true

- );

- }

-

- return $tpl_fields;

- }

- else

- {

- trigger_error('Wrong mode for custom profile', E_USER_ERROR);

- }

- }

-

- /**

- * Get Profile Value for display

- */

- function get_profile_value($ident_ary)

- {

- $value = $ident_ary['value'];

- $field_type = $ident_ary['data']['field_type'];

-

- switch ($this->profile_types[$field_type])

- {

- case 'int':

- if ($value === '' && !$ident_ary['data']['field_show_novalue'])

- {

- return NULL;

- }

- return (int) $value;

- break;

-

- case 'string':

- case 'text':

- if (!$value && !$ident_ary['data']['field_show_novalue'])

- {

- return NULL;

- }

-

- $value = make_clickable($value);

- $value = censor_text($value);

- $value = bbcode_nl2br($value);

- return $value;

- break;

-

- // case 'datetime':

- case 'date':

- $date = explode('-', $value);

- $day = (isset($date[0])) ? (int) $date[0] : 0;

- $month = (isset($date[1])) ? (int) $date[1] : 0;

- $year = (isset($date[2])) ? (int) $date[2] : 0;

-

- if (!$day && !$month && !$year && !$ident_ary['data']['field_show_novalue'])

- {

- return NULL;

- }

- else if ($day && $month && $year)

- {

- global $user;

- // Date should display as the same date for every user regardless of timezone

-

- return $user->create_datetime()

- ->setDate($year, $month, $day)

- ->setTime(0, 0, 0)

- ->format($user->lang['DATE_FORMAT'], true);

- }

-

- return $value;

- break;

-

- case 'dropdown':

- $field_id = $ident_ary['data']['field_id'];

- $lang_id = $ident_ary['data']['lang_id'];

- if (!isset($this->options_lang[$field_id][$lang_id]))

- {

- $this->get_option_lang($field_id, $lang_id, FIELD_DROPDOWN, false);

- }

-

- if ($value == $ident_ary['data']['field_novalue'] && !$ident_ary['data']['field_show_novalue'])

- {

- return NULL;

- }

-

- $value = (int) $value;

-

- // User not having a value assigned

- if (!isset($this->options_lang[$field_id][$lang_id][$value]))

- {

- if ($ident_ary['data']['field_show_novalue'])

- {

- $value = $ident_ary['data']['field_novalue'];

- }

- else

- {

- return NULL;

- }

- }

-

- return $this->options_lang[$field_id][$lang_id][$value];

- break;

-

- case 'bool':

- $field_id = $ident_ary['data']['field_id'];

- $lang_id = $ident_ary['data']['lang_id'];

- if (!isset($this->options_lang[$field_id][$lang_id]))

- {

- $this->get_option_lang($field_id, $lang_id, FIELD_BOOL, false);

- }

-

- if (!$value && $ident_ary['data']['field_show_novalue'])

- {

- $value = $ident_ary['data']['field_default_value'];

- }

-

- if ($ident_ary['data']['field_length'] == 1)

- {

- return (isset($this->options_lang[$field_id][$lang_id][(int) $value])) ? $this->options_lang[$field_id][$lang_id][(int) $value] : NULL;

- }

- else if (!$value)

- {

- return NULL;

- }

- else

- {

- return $this->options_lang[$field_id][$lang_id][(int) ($value) + 1];

- }

- break;

-

- default:

- trigger_error('Unknown profile type', E_USER_ERROR);

- break;

- }

- }

-

- /**

- * Get field value for registration/profile

- * @access private

- */

- function get_var($field_validation, &$profile_row, $default_value, $preview)

- {

- global $user;

- global $request;

-

- $profile_row['field_ident'] = (isset($profile_row['var_name'])) ? $profile_row['var_name'] : 'pf_' . $profile_row['field_ident'];

- $user_ident = $profile_row['field_ident'];

- // checkbox - set the value to "true" if it has been set to 1

- if ($profile_row['field_type'] == FIELD_BOOL && $profile_row['field_length'] == 2)

- {

- $value = (isset($_REQUEST[$profile_row['field_ident']]) && request_var($profile_row['field_ident'], $default_value) == 1) ? true : ((!isset($user->profile_fields[$user_ident]) || $preview) ? $default_value : $user->profile_fields[$user_ident]);

- }

- else if ($profile_row['field_type'] == FIELD_INT)

- {

- if (isset($_REQUEST[$profile_row['field_ident']]))

- {

- $value = ($request->variable($profile_row['field_ident'], '') === '') ? NULL : $request->variable($profile_row['field_ident'], $default_value);

- }

- else

- {

- if (!$preview && array_key_exists($user_ident, $user->profile_fields) && is_null($user->profile_fields[$user_ident]))

- {

- $value = NULL;

- }

- else if (!isset($user->profile_fields[$user_ident]) || $preview)

- {

- $value = $default_value;

- }

- else

- {

- $value = $user->profile_fields[$user_ident];

- }

- }

-

- return (is_null($value) || $value === '') ? '' : (int) $value;

- }

- else

- {

- $value = (isset($_REQUEST[$profile_row['field_ident']])) ? request_var($profile_row['field_ident'], $default_value, true) : ((!isset($user->profile_fields[$user_ident]) || $preview) ? $default_value : $user->profile_fields[$user_ident]);

-

- if (gettype($value) == 'string')

- {

- $value = utf8_normalize_nfc($value);

- }

- }

-

- switch ($field_validation)

- {

- case 'int':

- return (int) $value;

- break;

- }

-

- return $value;

- }

-

- /**

- * Process int-type

- * @access private

- */

- function generate_int($profile_row, $preview = false)

- {

- global $template;

-

- $profile_row['field_value'] = $this->get_var('int', $profile_row, $profile_row['field_default_value'], $preview);

- $template->assign_block_vars($this->profile_types[$profile_row['field_type']], array_change_key_case($profile_row, CASE_UPPER));

- }

-

- /**

- * Process date-type

- * @access private

- */

- function generate_date($profile_row, $preview = false)

- {

- global $user, $template;

-

- $profile_row['field_ident'] = (isset($profile_row['var_name'])) ? $profile_row['var_name'] : 'pf_' . $profile_row['field_ident'];

- $user_ident = $profile_row['field_ident'];

-

- $now = getdate();

-

- if (!isset($_REQUEST[$profile_row['field_ident'] . '_day']))

- {

- if ($profile_row['field_default_value'] == 'now')

- {

- $profile_row['field_default_value'] = sprintf('%2d-%2d-%4d', $now['mday'], $now['mon'], $now['year']);

- }

- list($day, $month, $year) = explode('-', ((!isset($user->profile_fields[$user_ident]) || $preview) ? $profile_row['field_default_value'] : $user->profile_fields[$user_ident]));

- }

- else

- {

- if ($preview && $profile_row['field_default_value'] == 'now')

- {

- $profile_row['field_default_value'] = sprintf('%2d-%2d-%4d', $now['mday'], $now['mon'], $now['year']);

- list($day, $month, $year) = explode('-', ((!isset($user->profile_fields[$user_ident]) || $preview) ? $profile_row['field_default_value'] : $user->profile_fields[$user_ident]));

- }

- else

- {

- $day = request_var($profile_row['field_ident'] . '_day', 0);

- $month = request_var($profile_row['field_ident'] . '_month', 0);

- $year = request_var($profile_row['field_ident'] . '_year', 0);

- }

- }

-

- $profile_row['s_day_options'] = '<option value="0"' . ((!$day) ? ' selected="selected"' : '') . '>--</option>';

- for ($i = 1; $i < 32; $i++)

- {

- $profile_row['s_day_options'] .= '<option value="' . $i . '"' . (($i == $day) ? ' selected="selected"' : '') . ">$i</option>";

- }

-

- $profile_row['s_month_options'] = '<option value="0"' . ((!$month) ? ' selected="selected"' : '') . '>--</option>';

- for ($i = 1; $i < 13; $i++)

- {

- $profile_row['s_month_options'] .= '<option value="' . $i . '"' . (($i == $month) ? ' selected="selected"' : '') . ">$i</option>";

- }

-

- $profile_row['s_year_options'] = '<option value="0"' . ((!$year) ? ' selected="selected"' : '') . '>--</option>';

- for ($i = $now['year'] - 100; $i <= $now['year'] + 100; $i++)

- {

- $profile_row['s_year_options'] .= '<option value="' . $i . '"' . (($i == $year) ? ' selected="selected"' : '') . ">$i</option>";

- }

- unset($now);

-

- $profile_row['field_value'] = 0;

- $template->assign_block_vars($this->profile_types[$profile_row['field_type']], array_change_key_case($profile_row, CASE_UPPER));

- }

-

- /**

- * Process bool-type

- * @access private

- */

- function generate_bool($profile_row, $preview = false)

- {

- global $template;

-

- $value = $this->get_var('int', $profile_row, $profile_row['field_default_value'], $preview);

-

- $profile_row['field_value'] = $value;

- $template->assign_block_vars($this->profile_types[$profile_row['field_type']], array_change_key_case($profile_row, CASE_UPPER));

-

- if ($profile_row['field_length'] == 1)

- {

- if (!isset($this->options_lang[$profile_row['field_id']][$profile_row['lang_id']]) || !sizeof($this->options_lang[$profile_row['field_id']][$profile_row['lang_id']]))

- {

- $this->get_option_lang($profile_row['field_id'], $profile_row['lang_id'], FIELD_BOOL, $preview);

- }

-

- foreach ($this->options_lang[$profile_row['field_id']][$profile_row['lang_id']] as $option_id => $option_value)

- {

- $template->assign_block_vars('bool.options', array(

- 'OPTION_ID' => $option_id,

- 'CHECKED' => ($value == $option_id) ? ' checked="checked"' : '',

- 'VALUE' => $option_value)

- );

- }

- }

- }

-

- /**

- * Process string-type

- * @access private

- */

- function generate_string($profile_row, $preview = false)

- {

- global $template;

-

- $profile_row['field_value'] = $this->get_var('string', $profile_row, $profile_row['lang_default_value'], $preview);

- $template->assign_block_vars($this->profile_types[$profile_row['field_type']], array_change_key_case($profile_row, CASE_UPPER));

- }

-

- /**

- * Process text-type

- * @access private

- */

- function generate_text($profile_row, $preview = false)

- {

- global $template;

- global $user, $phpEx, $phpbb_root_path;

-

- $field_length = explode('|', $profile_row['field_length']);

- $profile_row['field_rows'] = $field_length[0];

- $profile_row['field_cols'] = $field_length[1];

-

- $profile_row['field_value'] = $this->get_var('string', $profile_row, $profile_row['lang_default_value'], $preview);

- $template->assign_block_vars($this->profile_types[$profile_row['field_type']], array_change_key_case($profile_row, CASE_UPPER));

- }

-

- /**

- * Process dropdown-type

- * @access private

- */

- function generate_dropdown($profile_row, $preview = false)

- {

- global $user, $template;

-

- $value = $this->get_var('int', $profile_row, $profile_row['field_default_value'], $preview);

-

- if (!isset($this->options_lang[$profile_row['field_id']]) || !isset($this->options_lang[$profile_row['field_id']][$profile_row['lang_id']]) || !sizeof($this->options_lang[$profile_row['field_id']][$profile_row['lang_id']]))

- {

- $this->get_option_lang($profile_row['field_id'], $profile_row['lang_id'], FIELD_DROPDOWN, $preview);

- }

-

- $profile_row['field_value'] = $value;

- $template->assign_block_vars($this->profile_types[$profile_row['field_type']], array_change_key_case($profile_row, CASE_UPPER));

-

- foreach ($this->options_lang[$profile_row['field_id']][$profile_row['lang_id']] as $option_id => $option_value)

- {

- $template->assign_block_vars('dropdown.options', array(

- 'OPTION_ID' => $option_id,

- 'SELECTED' => ($value == $option_id) ? ' selected="selected"' : '',

- 'VALUE' => $option_value)

- );

- }

- }

-

- /**

- * Return Templated value/field. Possible values for $mode are:

- * change == user is able to set/enter profile values; preview == just show the value

- * @access private

- */

- function process_field_row($mode, $profile_row)

- {

- global $template;

-

- $preview = ($mode == 'preview') ? true : false;

-

- // set template filename

- $template->set_filenames(array(

- 'cp_body' => 'custom_profile_fields.html')

- );

-

- // empty previously filled blockvars

- foreach ($this->profile_types as $field_case => $field_type)

- {

- $template->destroy_block_vars($field_type);

- }

-

- // Assign template variables

- $type_func = 'generate_' . $this->profile_types[$profile_row['field_type']];

- $this->$type_func($profile_row, $preview);

-

- // Return templated data

- return $template->assign_display('cp_body');

- }

-

- /**

- * Build Array for user insertion into custom profile fields table

- */

- function build_insert_sql_array($cp_data)

- {

- global $db, $user, $auth;

-

- $sql_not_in = array();

- foreach ($cp_data as $key => $null)

- {

- $sql_not_in[] = (strncmp($key, 'pf_', 3) === 0) ? substr($key, 3) : $key;

- }

-

- $sql = 'SELECT f.field_type, f.field_ident, f.field_default_value, l.lang_default_value

- FROM ' . PROFILE_LANG_TABLE . ' l, ' . PROFILE_FIELDS_TABLE . ' f

- WHERE l.lang_id = ' . $user->get_iso_lang_id() . '

- ' . ((sizeof($sql_not_in)) ? ' AND ' . $db->sql_in_set('f.field_ident', $sql_not_in, true) : '') . '

- AND l.field_id = f.field_id';

- $result = $db->sql_query($sql);

-

- while ($row = $db->sql_fetchrow($result))

- {

- if ($row['field_default_value'] == 'now' && $row['field_type'] == FIELD_DATE)

- {

- $now = getdate();

- $row['field_default_value'] = sprintf('%2d-%2d-%4d', $now['mday'], $now['mon'], $now['year']);

- }

- else if ($row['field_default_value'] === '' && $row['field_type'] == FIELD_INT)

- {

- // We cannot insert an empty string into an integer column.

- $row['field_default_value'] = NULL;

- }

-

- $cp_data['pf_' . $row['field_ident']] = (in_array($row['field_type'], array(FIELD_TEXT, FIELD_STRING))) ? $row['lang_default_value'] : $row['field_default_value'];

- }

- $db->sql_freeresult($result);

-

- return $cp_data;

- }

-

- /**

- * Get profile field value on submit

- * @access private

- */

- function get_profile_field($profile_row)

- {

- global $phpbb_root_path, $phpEx;

- global $config;

- global $request;

-

- $var_name = 'pf_' . $profile_row['field_ident'];

-

- switch ($profile_row['field_type'])

- {

- case FIELD_DATE:

-

- if (!isset($_REQUEST[$var_name . '_day']))

- {

- if ($profile_row['field_default_value'] == 'now')

- {

- $now = getdate();

- $profile_row['field_default_value'] = sprintf('%2d-%2d-%4d', $now['mday'], $now['mon'], $now['year']);

- }

- list($day, $month, $year) = explode('-', $profile_row['field_default_value']);

- }

- else

- {

- $day = request_var($var_name . '_day', 0);

- $month = request_var($var_name . '_month', 0);

- $year = request_var($var_name . '_year', 0);

- }

-

- $var = sprintf('%2d-%2d-%4d', $day, $month, $year);

- break;

-

- case FIELD_BOOL:

- // Checkbox

- if ($profile_row['field_length'] == 2)

- {

- $var = (isset($_REQUEST[$var_name])) ? 1 : 0;

- }

- else

- {

- $var = request_var($var_name, (int) $profile_row['field_default_value']);

- }

- break;

-

- case FIELD_STRING:

- case FIELD_TEXT:

- $var = utf8_normalize_nfc(request_var($var_name, (string) $profile_row['field_default_value'], true));

- break;

-

- case FIELD_INT:

- if (isset($_REQUEST[$var_name]) && $request->variable($var_name, '') === '')

- {

- $var = NULL;

- }

- else

- {

- $var = request_var($var_name, (int) $profile_row['field_default_value']);

- }

- break;

-

- case FIELD_DROPDOWN:

- $var = request_var($var_name, (int) $profile_row['field_default_value']);

- break;

-

- default:

- $var = request_var($var_name, $profile_row['field_default_value']);

- break;

- }

-

- return $var;

- }

-}

-

-/**

-* Custom Profile Fields ACP

-* @package phpBB3

-*/

-class custom_profile_admin extends custom_profile

-{

- var $vars = array();

-

- /**

- * Return possible validation options

- */

- function validate_options()

- {

- global $user;

-

- $validate_ary = array('CHARS_ANY' => '.*', 'NUMBERS_ONLY' => '[0-9]+', 'ALPHA_ONLY' => '[\w]+', 'ALPHA_SPACERS' => '[\w_\+\. \-\[\]]+');

-

- $validate_options = '';

- foreach ($validate_ary as $lang => $value)

- {

- $selected = ($this->vars['field_validation'] == $value) ? ' selected="selected"' : '';

- $validate_options .= '<option value="' . $value . '"' . $selected . '>' . $user->lang[$lang] . '</option>';

- }

-

- return $validate_options;

- }

-

- /**

- * Get string options for second step in ACP

- */

- function get_string_options()

- {

- global $user;

-

- $options = array(

- 0 => array('TITLE' => $user->lang['FIELD_LENGTH'], 'FIELD' => '<input type="number" min="0" name="field_length" size="5" value="' . $this->vars['field_length'] . '" />'),

- 1 => array('TITLE' => $user->lang['MIN_FIELD_CHARS'], 'FIELD' => '<input type="number" min="0" name="field_minlen" size="5" value="' . $this->vars['field_minlen'] . '" />'),

- 2 => array('TITLE' => $user->lang['MAX_FIELD_CHARS'], 'FIELD' => '<input type="number" min="0" size="5" value="' . $this->vars['field_maxlen'] . '" />'),

- 3 => array('TITLE' => $user->lang['FIELD_VALIDATION'], 'FIELD' => '<select name="field_validation">' . $this->validate_options() . '</select>')

- );

-

- return $options;

- }

-

- /**

- * Get text options for second step in ACP

- */

- function get_text_options()

- {

- global $user;

-

- $options = array(

- 0 => array('TITLE' => $user->lang['FIELD_LENGTH'], 'FIELD' => '<input type="number" min="0" max="99999" name="rows" size="5" value="' . $this->vars['rows'] . '" /> ' . $user->lang['ROWS'] . '</dd><dd><input type="number" min="0" max="99999" name="columns" size="5" value="' . $this->vars['columns'] . '" /> ' . $user->lang['COLUMNS'] . ' <input type="hidden" name="field_length" value="' . $this->vars['field_length'] . '" />'),

- 1 => array('TITLE' => $user->lang['MIN_FIELD_CHARS'], 'FIELD' => '<input type="number" min="0" max="9999999999" name="field_minlen" size="10" value="' . $this->vars['field_minlen'] . '" />'),

- 2 => array('TITLE' => $user->lang['MAX_FIELD_CHARS'], 'FIELD' => '<input type="number" min="0" max="9999999999" name="field_maxlen" size="10" value="' . $this->vars['field_maxlen'] . '" />'),

- 3 => array('TITLE' => $user->lang['FIELD_VALIDATION'], 'FIELD' => '<select name="field_validation">' . $this->validate_options() . '</select>')

- );

-

- return $options;

- }

-

- /**

- * Get int options for second step in ACP

- */

- function get_int_options()

- {

- global $user;

-

- $options = array(

- 0 => array('TITLE' => $user->lang['FIELD_LENGTH'], 'FIELD' => '<input type="number" min="0" max="99999" name="field_length" size="5" value="' . $this->vars['field_length'] . '" />'),

- 1 => array('TITLE' => $user->lang['MIN_FIELD_NUMBER'], 'FIELD' => '<input type="number" min="0" max="99999" name="field_minlen" size="5" value="' . $this->vars['field_minlen'] . '" />'),

- 2 => array('TITLE' => $user->lang['MAX_FIELD_NUMBER'], 'FIELD' => '<input type="number" min="0" max="99999" name="field_maxlen" size="5" value="' . $this->vars['field_maxlen'] . '" />'),

- 3 => array('TITLE' => $user->lang['DEFAULT_VALUE'], 'FIELD' => '<input type="post" name="field_default_value" value="' . $this->vars['field_default_value'] . '" />')

- );

-

- return $options;

- }

-

- /**

- * Get bool options for second step in ACP

- */

- function get_bool_options()

- {

- global $user, $config, $lang_defs;

-

- $default_lang_id = $lang_defs['iso'][$config['default_lang']];

-

- $profile_row = array(

- 'var_name' => 'field_default_value',

- 'field_id' => 1,

- 'lang_name' => $this->vars['lang_name'],

- 'lang_explain' => $this->vars['lang_explain'],

- 'lang_id' => $default_lang_id,

- 'field_default_value' => $this->vars['field_default_value'],

- 'field_ident' => 'field_default_value',

- 'field_type' => FIELD_BOOL,

- 'field_length' => $this->vars['field_length'],

- 'lang_options' => $this->vars['lang_options']

- );

-

- $options = array(

- 0 => array('TITLE' => $user->lang['FIELD_TYPE'], 'EXPLAIN' => $user->lang['BOOL_TYPE_EXPLAIN'], 'FIELD' => '<label><input type="radio" class="radio" name="field_length" value="1"' . (($this->vars['field_length'] == 1) ? ' checked="checked"' : '') . ' onchange="document.getElementById(\'add_profile_field\').submit();" /> ' . $user->lang['RADIO_BUTTONS'] . '</label><label><input type="radio" class="radio" name="field_length" value="2"' . (($this->vars['field_length'] == 2) ? ' checked="checked"' : '') . ' onchange="document.getElementById(\'add_profile_field\').submit();" /> ' . $user->lang['CHECKBOX'] . '</label>'),

- 1 => array('TITLE' => $user->lang['DEFAULT_VALUE'], 'FIELD' => $this->process_field_row('preview', $profile_row))

- );

-

- return $options;

- }

-

- /**

- * Get dropdown options for second step in ACP

- */

- function get_dropdown_options()

- {

- global $user, $config, $lang_defs;

-

- $default_lang_id = $lang_defs['iso'][$config['default_lang']];

-

- $profile_row[0] = array(

- 'var_name' => 'field_default_value',

- 'field_id' => 1,

- 'lang_name' => $this->vars['lang_name'],

- 'lang_explain' => $this->vars['lang_explain'],

- 'lang_id' => $default_lang_id,

- 'field_default_value' => $this->vars['field_default_value'],

- 'field_ident' => 'field_default_value',

- 'field_type' => FIELD_DROPDOWN,

- 'lang_options' => $this->vars['lang_options']

- );

-

- $profile_row[1] = $profile_row[0];

- $profile_row[1]['var_name'] = 'field_novalue';

- $profile_row[1]['field_ident'] = 'field_novalue';

- $profile_row[1]['field_default_value'] = $this->vars['field_novalue'];

-

- $options = array(

- 0 => array('TITLE' => $user->lang['DEFAULT_VALUE'], 'FIELD' => $this->process_field_row('preview', $profile_row[0])),

- 1 => array('TITLE' => $user->lang['NO_VALUE_OPTION'], 'EXPLAIN' => $user->lang['NO_VALUE_OPTION_EXPLAIN'], 'FIELD' => $this->process_field_row('preview', $profile_row[1]))

- );

-

- return $options;

- }

-

- /**

- * Get date options for second step in ACP

- */

- function get_date_options()

- {

- global $user, $config, $lang_defs;

-

- $default_lang_id = $lang_defs['iso'][$config['default_lang']];

-

- $profile_row = array(

- 'var_name' => 'field_default_value',

- 'lang_name' => $this->vars['lang_name'],

- 'lang_explain' => $this->vars['lang_explain'],

- 'lang_id' => $default_lang_id,

- 'field_default_value' => $this->vars['field_default_value'],

- 'field_ident' => 'field_default_value',

- 'field_type' => FIELD_DATE,

- 'field_length' => $this->vars['field_length']

- );

-

- $always_now = request_var('always_now', -1);

- if ($always_now == -1)

- {

- $s_checked = ($this->vars['field_default_value'] == 'now') ? true : false;

- }

- else

- {

- $s_checked = ($always_now) ? true : false;

- }

-

- $options = array(

- 0 => array('TITLE' => $user->lang['DEFAULT_VALUE'], 'FIELD' => $this->process_field_row('preview', $profile_row)),

- 1 => array('TITLE' => $user->lang['ALWAYS_TODAY'], 'FIELD' => '<label><input type="radio" class="radio" name="always_now" value="1"' . (($s_checked) ? ' checked="checked"' : '') . ' onchange="document.getElementById(\'add_profile_field\').submit();" /> ' . $user->lang['YES'] . '</label><label><input type="radio" class="radio" name="always_now" value="0"' . ((!$s_checked) ? ' checked="checked"' : '') . ' onchange="document.getElementById(\'add_profile_field\').submit();" /> ' . $user->lang['NO'] . '</label>'),

- );

-

- return $options;

- }

-}

- global $phpbb_dispatcher;

- 'user_occ' => '',

- 'user_interests' => '',

- if (!class_exists('custom_profile'))

- {

- include_once($phpbb_root_path . 'includes/functions_profile_fields.' . $phpEx);

- }

-

- $cp = new custom_profile();

- 'OCCUPATION' => (!empty($row['user_occ'])) ? $row['user_occ'] : '',

- 'INTERESTS' => (!empty($row['user_interests'])) ? $row['user_interests'] : '',

-

- global $user, $template, $auth, $db, $cache;

- if (!class_exists('custom_profile'))

- {

- include($phpbb_root_path . 'includes/functions_profile_fields.' . $phpEx);

- }

- $cp = new custom_profile();

- 'AUTHOR_FROM' => (!empty($user_info['user_from'])) ? $user_info['user_from'] : '',

- global $request;

- global $phpbb_container;

- if (!sizeof($error) && $auth->acl_get('u_chgpasswd') && $data['new_password'] && phpbb_check_hash($data['new_password'], $user->data['user_password']))

- if (!phpbb_check_hash($data['cur_password'], $user->data['user_password']))

- 'user_password' => ($auth->acl_get('u_chgpasswd') && $data['new_password']) ? phpbb_hash($data['new_password']) : $user->data['user_password'],

- if ($auth->acl_get('u_chgpasswd') && $data['new_password'] && !phpbb_check_hash($data['new_password'], $user->data['user_password']))

- include($phpbb_root_path . 'includes/functions_profile_fields.' . $phpEx);

-

- $cp = new custom_profile();

- 'location' => utf8_normalize_nfc(request_var('location', $user->data['user_from'], true)),

- 'occupation' => utf8_normalize_nfc(request_var('occupation', $user->data['user_occ'], true)),

- 'interests' => utf8_normalize_nfc(request_var('interests', $user->data['user_interests'], true)),

- 'location' => array('string', true, 2, 100),

- 'occupation' => array('string', true, 2, 500),

- 'interests' => array('string', true, 2, 500),

- 'user_from' => $data['location'],

- 'user_occ' => $data['occupation'],

- 'user_interests'=> $data['interests'],

- 'LOCATION' => $data['location'],

- 'OCCUPATION'=> $data['occupation'],

- 'INTERESTS' => $data['interests'],

- include($phpbb_root_path . 'includes/functions_profile_fields.' . $phpEx);

-

- $cp = new custom_profile();

- 'user_password' => phpbb_hash($data['new_password']),

- global $db, $user, $auth, $template;

- SET user_newpasswd = '" . $db->sql_escape(phpbb_hash($user_password)) . "', user_actkey = '" . $db->sql_escape($user_actkey) . "'