input->clean_array_gpc('r', array( 'avatarid' => TYPE_INT, 'userid' => TYPE_INT, )); if (is_browser('webkit') AND $vbulletin->GPC['avatarid'] AND empty($_POST['do'])) { $_POST['do'] = $_REQUEST['do'] = 'updateavatar'; } // ############################# LOG ACTION ############################### log_admin_action(!empty($vbulletin->GPC['userid']) ? 'user id = ' . $vbulletin->GPC['userid'] : ''); // ######################################################################## // ######################### START MAIN SCRIPT ############################ // ######################################################################## print_cp_header($vbphrase['user_manager']); // ###################### Start Remove User's Subscriptions ####################### if ($_REQUEST['do'] == 'removesubs') { print_delete_confirmation('user', $vbulletin->GPC['userid'], 'usertools', 'killsubs', 'subscriptions'); } // ###################### Start Remove User's Subscriptions ####################### if ($_POST['do'] == 'killsubs') { $db->query_write("DELETE FROM " . TABLE_PREFIX . "subscribethread WHERE userid = " . $vbulletin->GPC['userid']); $db->query_write("DELETE FROM " . TABLE_PREFIX . "subscribeforum WHERE userid = " . $vbulletin->GPC['userid']); $db->query_write("DELETE FROM " . TABLE_PREFIX . "subscribeevent WHERE userid = " . $vbulletin->GPC['userid']); $db->query_write("DELETE FROM " . TABLE_PREFIX . "subscribegroup WHERE userid = " . $vbulletin->GPC['userid']); $db->query_write("DELETE FROM " . TABLE_PREFIX . "subscribediscussion WHERE userid = " . $vbulletin->GPC['userid']); define('CP_REDIRECT', "user.php?do=edit&u=" . $vbulletin->GPC['userid']); print_stop_message('deleted_subscriptions_successfully'); } // ###################### Start Remove User's PMs ####################### if ($_REQUEST['do'] == 'removepms') { print_delete_confirmation('user', $vbulletin->GPC['userid'], 'usertools', 'killpms', 'private_messages_belonging_to_the_user'); } // ###################### Start Remove User's PMs ####################### if ($_POST['do'] == 'killpms') { $result = delete_user_pms($vbulletin->GPC['userid']); define('CP_REDIRECT', "user.php?do=edit&u=" . $vbulletin->GPC['userid']); print_stop_message('deleted_x_pms_y_pmtexts_and_z_receipts', $result['pms'], $result['pmtexts'], $result['receipts']); } // ###################### Start Remove PMs Sent by User ####################### if ($_REQUEST['do'] == 'removesentpms') { print_delete_confirmation('user', $vbulletin->GPC['userid'], 'usertools', 'killsentpms', 'private_messages_sent_by_the_user'); } // ###################### Start Remove User's PMs ####################### if ($_POST['do'] == 'killsentpms') { $user = $db->query_first("SELECT userid, username FROM " . TABLE_PREFIX . "user WHERE userid = " . $vbulletin->GPC['userid']); if (!$user['userid']) { print_stop_message('invalid_user_specified'); } $pmtextids = '0'; $pmtexts = $db->query_read("SELECT pmtextid FROM " . TABLE_PREFIX . "pmtext WHERE fromuserid = " . $vbulletin->GPC['userid']); while ($pmtext = $db->fetch_array($pmtexts)) { $pmtextids .= ",$pmtext[pmtextid]"; } $db->free_result($pmtexts); define('CP_REDIRECT', "user.php?do=edit&u=" . $vbulletin->GPC['userid']); if ($pmtextids == '0') { print_stop_message('no_private_messages_matched_your_query'); } else { $pmids = '0'; $pmarray = array(); $pms = $db->query_read(" SELECT pm.*, user.username FROM " . TABLE_PREFIX . "pm AS pm LEFT JOIN " . TABLE_PREFIX . "user AS user USING(userid) WHERE pm.pmtextid IN($pmtextids) "); while ($pm = $db->fetch_array($pms)) { $pmids .= ",$pm[pmid]"; $pmarray["$pm[username]"][] = $pm; } $db->free_result($pms); $users = array(); foreach($pmarray AS $username => $pms) { $pmunread = 0; foreach($pms AS $pm) { if ($pm['messageread'] == 0) { $pmunread ++; } } $pmtotal = sizeof($pms); $users["$pm[userid]"] = array('pmtotal' => $pmtotal, 'pmunread' => $pmunread); } $db->query_write("DELETE FROM " . TABLE_PREFIX . "pm WHERE pmid IN($pmids)"); if (!empty($users)) { $pmtotalsql = 'CASE userid '; $pmunreadsql = 'CASE userid '; foreach($users AS $id => $x) { $pmtotalsql .= "WHEN $id THEN pmtotal - $x[pmtotal] "; $pmunreadsql .= "WHEN $id THEN pmunread - $x[pmunread] "; } $pmtotalsql .= 'ELSE pmtotal END'; $pmunreadsql .= 'ELSE pmunread END'; $userids = implode(', ', array_keys($users)); $db->query_write(" UPDATE " . TABLE_PREFIX . "user SET pmtotal = $pmtotalsql, pmunread = $pmunreadsql WHERE userid IN($userids) "); $db->query_write(" UPDATE " . TABLE_PREFIX . "user SET pmpopup = IF(pmpopup=2 AND pmunread = 0, 1, pmpopup) WHERE userid IN($userids) "); } print_stop_message('deleted_private_messages_successfully'); } } // ###################### Start Remove VMs Sent by User ####################### if ($_REQUEST['do'] == 'removesentvms') { print_delete_confirmation('user', $vbulletin->GPC['userid'], 'usertools', 'killsentvms', 'visitor_messages_sent_by_the_user'); } // ###################### Start Remove User's VMs ####################### if ($_POST['do'] == 'killsentvms') { $user = $db->query_first("SELECT userid, username FROM " . TABLE_PREFIX . "user WHERE userid = " . $vbulletin->GPC['userid']); if (!$user['userid']) { print_stop_message('invalid_user_specified'); } $prnvmids = array(); $userids = array(); $vms = $db->query_read("SELECT vmid, userid FROM " . TABLE_PREFIX . "visitormessage WHERE postuserid = " . $vbulletin->GPC['userid']); while ($vm = $db->fetch_array($vms)) { $prnvmids[] = $vm['vmid']; $userids[] = $vm['userid']; } $db->free_result($vms); define('CP_REDIRECT', "user.php?do=edit&u=" . $vbulletin->GPC['userid']); if (empty($prnvmids)) { print_stop_message('no_visitor_messages_matched_your_query'); } else { $userids = implode(',', array_unique($userids)); $prnvmids = implode(',', $prnvmids); $usercountsarray = array(); $usercounts = $db->query_read(" SELECT user.userid, COUNT(*) AS total FROM " . TABLE_PREFIX . "visitormessage AS vm LEFT JOIN " . TABLE_PREFIX . "user AS user ON (user.userid = vm.userid) WHERE user.userid IN ($userids) AND vm.messageread = 0 AND vm.postuserid = " . $vbulletin->GPC['userid'] . " GROUP BY user.userid "); while ($usercount = $db->fetch_array($usercounts)) { $usercountsarray["$usercount[userid]"] = $usercount['total']; } $db->free_result($usercount); // actually remove the data $db->query_write("DELETE FROM " . TABLE_PREFIX . "visitormessage WHERE vmid IN($prnvmids)"); // update counters for affected users if (!empty($usercountsarray)) { $vmunreadsql = 'CASE userid '; foreach($usercountsarray AS $userid => $unreadcount) { $vmunreadsql .= "WHEN $userid THEN vmunreadcount - $unreadcount "; } $vmunreadsql .= 'ELSE vmunreadcount END'; $db->query_write(" UPDATE " . TABLE_PREFIX . "user SET vmunreadcount = $vmunreadsql WHERE userid IN($userids) "); } print_stop_message('deleted_visitor_messages_successfully'); } } // ###################### Start Merge ####################### if ($_REQUEST['do'] == 'merge') { print_form_header('usertools', 'domerge'); print_table_header($vbphrase['merge_users']); print_description_row($vbphrase['merge_allows_you_to_join_two_user_accounts']); print_input_row($vbphrase['source_username'], 'sourceuser'); print_input_row($vbphrase['destination_username'], 'destuser'); print_submit_row($vbphrase['continue']); } // ###################### Start Do Merge ####################### if ($_POST['do'] == 'domerge') { $vbulletin->input->clean_array_gpc('p', array( 'sourceuser' => TYPE_NOHTML, 'destuser' => TYPE_NOHTML )); if ($vbulletin->GPC['sourceuser'] == '' OR !$sourceinfo = $db->query_first("SELECT userid FROM " . TABLE_PREFIX . "user WHERE username = '" . $db->escape_string($vbulletin->GPC['sourceuser']) . "'")) { print_stop_message('invalid_source_username_specified'); } if ($vbulletin->GPC['destuser'] == '' OR !$destinfo = $db->query_first("SELECT userid FROM " . TABLE_PREFIX . "user WHERE username = '" . $db->escape_string($vbulletin->GPC['destuser']) . "'")) { print_stop_message('invalid_destination_username_specified'); } if ($vbulletin->GPC['destuser'] == $vbulletin->GPC['sourceuser']) { print_stop_message('source_and_destination_identical'); } if (is_unalterable_user($sourceinfo['userid']) OR is_unalterable_user($destinfo['userid'])) { print_stop_message('user_is_protected_from_alteration_by_undeletableusers_var'); } print_form_header('usertools', 'reallydomerge'); construct_hidden_code('sourceuserid', $sourceinfo['userid']); construct_hidden_code('destuserid', $destinfo['userid']); print_table_header($vbphrase['confirm_merge']); print_description_row(construct_phrase($vbphrase['are_you_sure_you_want_to_merge_x_into_y'], $vbulletin->GPC['sourceuser'], $vbulletin->GPC['destuser'])); print_submit_row($vbphrase['yes'], '', 2, $vbphrase['no']); } // ###################### Start Do Merge ####################### if ($_POST['do'] == 'reallydomerge') { // Get info on both users $vbulletin->input->clean_array_gpc('p', array( 'sourceuserid' => TYPE_INT, 'destuserid' => TYPE_INT )); if (!$sourceinfo = $db->query_first(" SELECT * FROM " . TABLE_PREFIX . "user AS user LEFT JOIN " . TABLE_PREFIX . "usertextfield AS usertextfield USING(userid) WHERE user.userid = " . $vbulletin->GPC['sourceuserid'] . " ")) { print_stop_message('invalid_source_username_specified'); } if (!$destinfo = $db->query_first(" SELECT * FROM " . TABLE_PREFIX . "user AS user LEFT JOIN " . TABLE_PREFIX . "usertextfield AS usertextfield USING(userid) WHERE user.userid = " . $vbulletin->GPC['destuserid'] . " ")) { print_stop_message('invalid_destination_username_specified'); } // Update Subscribed Forums $insertsql = ''; $subforums = $db->query_read(" SELECT forumid FROM " . TABLE_PREFIX . "subscribeforum WHERE userid = $destinfo[userid] "); while ($forums = $db->fetch_array($subforums)) { $subscribedforums["$forums[forumid]"] = 1; } $subforums = $db->query_read(" SELECT forumid, emailupdate FROM " . TABLE_PREFIX . "subscribeforum WHERE userid = $sourceinfo[userid] "); while ($forums = $db->fetch_array($subforums)) { if (!isset($subscribedforums["$forums[forumid]"])) { if ($insertsql) { $insertsql .= ','; } $insertsql .= "($destinfo[userid], $forums[forumid], $forums[emailupdate])"; } } if ($insertsql) { /*insert sql*/ $db->query_write(" INSERT INTO " . TABLE_PREFIX . "subscribeforum (userid, forumid, emailupdate) VALUES $insertsql "); } // Update Subscribed Threads unset($insertsql); $db->query_write(" UPDATE " . TABLE_PREFIX . "subscribethread SET folderid = 0 WHERE userid = $destinfo[userid] "); $subthreads = $db->query_read(" SELECT threadid, emailupdate FROM " . TABLE_PREFIX . "subscribethread WHERE userid = $destinfo[userid] "); while ($threads = $db->fetch_array($subthreads)) { $subscribedthreads["$threads[threadid]"] = 1; $status["$threads[threadid]"] = $threads['emailupdate']; } $subthreads = $db->query_read(" SELECT threadid, emailupdate FROM " . TABLE_PREFIX . "subscribethread WHERE userid = $sourceinfo[userid] "); while ($threads = $db->fetch_array($subthreads)) { if (!isset($subscribedthreads["$threads[threadid]"])) { if ($insertsql) { $insertsql .= ','; } $insertsql .= "($destinfo[userid], 0, $threads[threadid], $threads[emailupdate])"; } else { if ($status["$threads[threadid]"] != $threads['emailupdate']) { $db->query_write(" UPDATE " . TABLE_PREFIX . "subscribethread SET emailupdate = $threads[emailupdate] WHERE userid = $destinfo[userid] AND threadid = $threads[threadid] "); } } } if ($insertsql) { /*insert query*/ $db->query_write(" INSERT " . TABLE_PREFIX . "subscribethread (userid, folderid, threadid, emailupdate) VALUES $insertsql "); } require_once(DIR . '/includes/functions_databuild.php'); update_subscriptions(array('userids' => array($destinfo['userid']))); // Update Subscribed Events $insertsql = ''; $events = $db->query_read(" SELECT eventid, reminder FROM " . TABLE_PREFIX . "subscribeevent WHERE userid = $sourceinfo[userid] "); while ($event = $db->fetch_array($events)) { if (!empty($insertsql)) { $insertsql .= ','; } $insertsql .= "($destinfo[userid], $event[eventid], $event[reminder])"; } if (!empty($insertsql)) { $db->query_write(" INSERT IGNORE INTO " . TABLE_PREFIX . "subscribeevent (userid, eventid, reminder) VALUES $insertsql "); } // Update subscribed discussions $discussions = $db->query_read(" INSERT IGNORE INTO " . TABLE_PREFIX . "subscribediscussion (userid, discussionid, emailupdate) SELECT $destinfo[userid], discussionid, emailupdate FROM " . TABLE_PREFIX . "subscribediscussion AS src WHERE src.userid = $sourceinfo[userid] "); // Update subscribed groups $discussions = $db->query_read(" INSERT IGNORE INTO " . TABLE_PREFIX . "subscribegroup (userid, groupid) SELECT $destinfo[userid], groupid FROM " . TABLE_PREFIX . "subscribegroup AS src WHERE src.userid = $sourceinfo[userid] "); /* REPLACE INTO */ // Merge relevant data in the user table // It is ok to have duplicate ids in the buddy/ignore lists $userdm =& datamanager_init('User', $vbulletin, ERRTYPE_SILENT); $userdm->set_existing($destinfo); $userdm->set('posts', "posts + $sourceinfo[posts]", false); $userdm->set_ladder_usertitle_relative($sourceinfo['posts']); $userdm->set('reputation', "reputation + $sourceinfo[reputation] - " . $vbulletin->options['reputationdefault'], false); $userdm->set('lastvisit', "IF(lastvisit < $sourceinfo[lastvisit], $sourceinfo[lastvisit], lastvisit)", false); $userdm->set('lastactivity', "IF(lastactivity < $sourceinfo[lastactivity], $sourceinfo[lastactivity], lastactivity)", false); $userdm->set('lastpost', "IF(lastpost < $sourceinfo[lastpost], $sourceinfo[lastpost], lastpost)", false); $userdm->set('pmtotal', "pmtotal + $sourceinfo[pmtotal]", false); $userdm->set('pmunread', "pmunread + $sourceinfo[pmunread]", false); $userdm->set('gmmoderatedcount', "gmmoderatedcount + $sourceinfo[gmmoderatedcount]", false); if ($sourceinfo['joindate'] > 0) { // get the older join date, but only if we actually have a date $userdm->set('joindate', "IF(joindate > $sourceinfo[joindate], $sourceinfo[joindate], joindate)", false); } $userdm->set('ipoints', "ipoints + " . intval($sourceinfo['ipoints']), false); $userdm->set('warnings', "warnings + " . intval($sourceinfo['warnings']), false); $userdm->set('infractions', "infractions + " . intval($sourceinfo['infractions']), false); $db->query_write(" INSERT IGNORE INTO " . TABLE_PREFIX . "userlist (userid, relationid, type, friend) SELECT $destinfo[userid], relationid, type, friend FROM " . TABLE_PREFIX . "userlist WHERE userid = $sourceinfo[userid] "); $db->query_write(" UPDATE IGNORE " . TABLE_PREFIX . "userlist SET relationid = $destinfo[userid] WHERE relationid = $sourceinfo[userid] AND relationid <> $destinfo[userid] "); list($myfriendcount) = $db->query_first(" SELECT COUNT(*) FROM " . TABLE_PREFIX . "userlist WHERE userid = $destinfo[userid] AND type = 'buddy' AND friend = 'yes'", DBARRAY_NUM ); $userdm->set('friendcount', $myfriendcount); $userdm->save(); unset($userdm); build_userlist($destinfo['userid']); // if the source user has infractions, then we need to update the infraction groups on the dest // easier to do it this way to make sure we get fresh info about the destination user if ($sourceinfo['ipoints']) { unset($usercache["$destinfo[userid]"]); $new_user = fetch_userinfo($destinfo['userid']); $infractiongroups = array(); $groups = $vbulletin->db->query_read(" SELECT usergroupid, orusergroupid, pointlevel, override FROM " . TABLE_PREFIX . "infractiongroup ORDER BY pointlevel "); while ($group = $vbulletin->db->fetch_array($groups)) { $infractiongroups["$group[usergroupid]"]["$group[pointlevel]"][] = array( 'orusergroupid' => $group['orusergroupid'], 'override' => $group['override'], ); } $userdm =& datamanager_init('User', $vbulletin, ERRTYPE_SILENT); $userdm->set_existing($new_user); require_once(DIR . '/includes/functions_infractions.php'); $infractioninfo = fetch_infraction_groups($infractiongroups, $new_user['userid'], $new_user['ipoints'], $new_user['usergroupid']); $userdm->set('infractiongroupids', $infractioninfo['infractiongroupids']); $userdm->set('infractiongroupid', $infractioninfo['infractiongroupid']); $userdm->save(); unset($userdm); } // Update announcements $db->query_write(" UPDATE " . TABLE_PREFIX . "announcement SET userid = $destinfo[userid] WHERE userid = $sourceinfo[userid] "); // Update Read Announcements $insertsql = array(); $announcements = $db->query_read(" SELECT announcementid FROM " . TABLE_PREFIX . "announcementread WHERE userid = $sourceinfo[userid] "); while ($announcement = $db->fetch_array($announcements)) { $insertsql[] = "($destinfo[userid], $announcement[announcementid])"; } if (!empty($insertsql)) { $db->query_write(" INSERT IGNORE INTO " . TABLE_PREFIX . "announcementread (userid, announcementid) VALUES " . implode(', ', $insertsql) . " "); } $db->query_write(" UPDATE " . TABLE_PREFIX . "attachment SET userid = $destinfo[userid] WHERE userid = $sourceinfo[userid] "); // Update Posts $db->query_write(" UPDATE " . TABLE_PREFIX . "post SET userid = $destinfo[userid], username = '" . $db->escape_string($destinfo['username']) . "' WHERE userid = $sourceinfo[userid] "); // Update Threads $db->query_write(" UPDATE " . TABLE_PREFIX . "thread SET postuserid = $destinfo[userid], postusername = '" . $db->escape_string($destinfo['username']) . "' WHERE postuserid = $sourceinfo[userid] "); // Update Deletion Log $db->query_write(" UPDATE " . TABLE_PREFIX . "deletionlog SET userid = $destinfo[userid], username = '" . $db->escape_string($destinfo['username']) . "' WHERE userid = $sourceinfo[userid] "); // Update Edit Log $db->query_write(" UPDATE " . TABLE_PREFIX . "editlog SET userid = $destinfo[userid], username = '" . $db->escape_string($destinfo['username']) . "' WHERE userid = $sourceinfo[userid] "); // Update Poll Votes - find any poll where we both voted // we need to remove the source user's vote $pollconflicts = array(); $polls = $db->query(" SELECT DISTINCT poll.* FROM " . TABLE_PREFIX . "pollvote AS sourcevote INNER JOIN " . TABLE_PREFIX . "poll AS poll ON (sourcevote.pollid = poll.pollid) INNER JOIN " . TABLE_PREFIX . "pollvote AS destvote ON (destvote.pollid = poll.pollid AND destvote.userid = $destinfo[userid]) WHERE sourcevote.userid = $sourceinfo[userid] "); while ($poll = $db->fetch_array($polls)) { $pollconflicts["$poll[pollid]"] = $poll; } $db->query_write(" UPDATE IGNORE " . TABLE_PREFIX . "pollvote SET userid = $destinfo[userid] WHERE userid = $sourceinfo[userid] "); if (!empty($pollconflicts)) { $db->query_write(" DELETE FROM " . TABLE_PREFIX . "pollvote WHERE userid = $sourceinfo[userid] "); // Polls that need to be rebuilt now foreach ($pollconflicts AS $pollconflict) { $votes = array(); for ($x = 1; $x <= $pollconflict['numberoptions']; $x++) { $votes["$x"] = 0; } $pollvotes = $db->query_read(" SELECT voteoption, votedate FROM " . TABLE_PREFIX . "pollvote WHERE pollid = $pollconflict[pollid] "); $lastvote = 0; while ($pollvote = $db->fetch_array($pollvotes)) { $votes["$pollvote[voteoption]"]++; if ($pollvote['votedate'] > $lastvote) { $lastvote = $pollvote['votedate']; } } // It appears that pollvote.votedate wasn't always set in the past so we could have votes with no datetime, hence the check on lastvote below $db->query_write(" UPDATE " . TABLE_PREFIX . "poll SET votes = '" . $db->escape_string(implode('|||', $votes)) . "', voters = IF(voters > 0, voters - 1, 0) " . ($lastvote ? ", lastvote = $lastvote" : "") . " WHERE pollid = $pollconflict[pollid] "); } } // Update Thread Ratings $db->query_write(" UPDATE " . TABLE_PREFIX . "threadrate SET userid = $destinfo[userid] WHERE userid = $sourceinfo[userid] "); // Update User Notes $db->query_write(" UPDATE " . TABLE_PREFIX . "usernote SET posterid = $destinfo[userid] WHERE posterid = $sourceinfo[userid] "); $db->query_write(" UPDATE " . TABLE_PREFIX . "usernote SET userid = $destinfo[userid] WHERE userid = $sourceinfo[userid] "); // Update Calendar Events $db->query_write(" UPDATE " . TABLE_PREFIX . "event SET userid = $destinfo[userid] WHERE userid = $sourceinfo[userid] "); // Update Reputation Details $db->query_write(" UPDATE " . TABLE_PREFIX . "reputation SET userid = $destinfo[userid] WHERE userid = $sourceinfo[userid] "); $db->query_write(" UPDATE IGNORE " . TABLE_PREFIX . "reputation SET whoadded = $destinfo[userid] WHERE whoadded = $sourceinfo[userid] "); // Update infractions $db->query_write(" UPDATE " . TABLE_PREFIX . "infraction SET userid = $destinfo[userid] WHERE userid = $sourceinfo[userid] "); $db->query_write(" UPDATE " . TABLE_PREFIX . "infraction SET whoadded = $destinfo[userid] WHERE whoadded = $sourceinfo[userid] "); // Update Private Messages $db->query_write(" UPDATE " . TABLE_PREFIX . "pm SET userid = $destinfo[userid] WHERE userid = $sourceinfo[userid] AND folderid = -1 "); $db->query_write(" UPDATE " . TABLE_PREFIX . "pm SET userid = $destinfo[userid], folderid = 0 WHERE userid = $sourceinfo[userid] "); $db->query_write(" UPDATE " . TABLE_PREFIX . "pmreceipt SET userid = $destinfo[userid] WHERE userid = $sourceinfo[userid] "); $db->query_write(" UPDATE " . TABLE_PREFIX . "pmreceipt SET touserid = $destinfo[userid], tousername = '" . $db->escape_string($destinfo['username']) . "' WHERE touserid = $sourceinfo[userid] "); $db->query_write(" UPDATE " . TABLE_PREFIX . "pmtext SET fromuserid = $destinfo[userid], fromusername = '" . $db->escape_string($destinfo['username']) . "' WHERE fromuserid = $sourceinfo[userid] "); // Update Visitor Messages $db->query_write(" UPDATE " . TABLE_PREFIX . "visitormessage SET postuserid = $destinfo[userid], postusername = '" . $db->escape_string($destinfo['username']) . "' WHERE postuserid = $sourceinfo[userid] "); $db->query_write(" UPDATE " . TABLE_PREFIX . "visitormessage SET userid = $destinfo[userid] WHERE userid = $sourceinfo[userid] "); // Update tags require_once('includes/class_taggablecontent.php'); vB_Taggable_Content_Item::merge_users($sourceinfo['userid'], $destinfo['userid']); // Update Group Messages $db->query_write(" UPDATE " . TABLE_PREFIX . "groupmessage SET postuserid = $destinfo[userid], postusername = '" . $db->escape_string($destinfo['username']) . "' WHERE postuserid = $sourceinfo[userid] "); // Clear Group Transfers $db->query_write(" UPDATE " . TABLE_PREFIX . "socialgroup SET transferowner = 0 WHERE transferowner = $sourceinfo[userid] "); // Delete requests if the dest user already has them $db->query_write(" DELETE FROM " . TABLE_PREFIX . "usergrouprequest WHERE userid = $sourceinfo[userid] AND (usergroupid = $destinfo[usergroupid] " . ($destinfo['membergroupids'] != '' ? "OR usergroupid IN (0,$destinfo[membergroupids])" : '') . ") "); // Convert remaining requests to dest user. $db->query_write(" UPDATE " . TABLE_PREFIX . "usergrouprequest SET userid = $destinfo[userid] WHERE userid = $sourceinfo[userid] "); $olduser = strlen($sourceinfo['username']); $newuser = strlen($destinfo['username']); $db->query_write("UPDATE " . TABLE_PREFIX . "pmtext SET touserarray = REPLACE(touserarray, 'i:$sourceinfo[userid];s:$olduser:\"" . $db->escape_string($sourceinfo['username']) . "\";','i:$destinfo[userid];s:$newuser:\"" . $db->escape_string($destinfo['username']) . "\";') "); $groups = array(); $groupids = array(); $memberships_dest = array(); $memberships_source = array(); $memberships_combined = array(); $groups_recount = array(); $groups_newowner = array(); $groupmemberships = $vbulletin->db->query_read(" SELECT * FROM " . TABLE_PREFIX . "socialgroupmember WHERE userid IN (" . $sourceinfo['userid'] . "," . $destinfo['userid'] . ") "); while ($groupmembership = $vbulletin->db->fetch_array($groupmemberships)) { if ($groupmembership['userid'] == $destinfo['userid']) { $memberships_dest["$groupmembership[groupid]"] = $groupmembership; } else if ($groupmembership['userid'] == $sourceinfo['userid']) { $memberships_source["$groupmembership[groupid]"] = $groupmembership; } $groupids["$groupmembership[groupid]"] = $groupmembership['groupid']; } if (!empty($groupids)) { $groups_result = $vbulletin->db->query_read(" SELECT * FROM " . TABLE_PREFIX . "socialgroup WHERE groupid IN (" . implode(",", $groupids) . ") "); while ($group = $vbulletin->db->fetch_array($groups_result)) { $groups["$group[groupid]"] = $group; } foreach ($groups AS $group) { if ($group['creatoruserid'] == $sourceinfo['userid']) { $groups_newowner[] = $group['groupid']; } if (!empty($memberships_source["$group[groupid]"]) AND !empty($memberships_dest["$group[groupid]"])) { /* This may look weird, but it is correct. If both users are in the same group, and their status is NOT the same, then they should be a member, as this means that either one or the other is a member, or one is moderated, and one is invited, combining these makes them a member */ if ($memberships_source["$group[groupid]"]['type'] == $memberships_dest["$group[groupid]"]['type']) { $memberships_combined[] = $memberships_dest["$group[groupid]"]; continue; } else { $memberships_dest["$group[groupid]"]['type'] = 'member'; $memberships_combined[] = $memberships_dest["$group[groupid]"]; continue; } } else if (empty($memberships_source["$group[groupid]"])) { // Only the destination user is a member of the group $memberships_combined[] = $memberships_dest["$group[groupid]"]; continue; } else { // Only the source user is a member of the group $memberships_combined[] = $memberships_source["$group[groupid]"]; continue; } } $memberships_sql = array(); foreach ($memberships_combined AS $membership) { $memberships_sql[] = "(" . intval($membership['userid']) . ", " . intval($membership['groupid']) . ", " . intval($membership['dateline']) . ", '" . $vbulletin->db->escape_string($membership['type']) . "')"; } $vbulletin->db->query_write(" DELETE FROM " . TABLE_PREFIX . "socialgroupmember WHERE userid IN (" . $sourceinfo['userid'] . "," . $destinfo['userid'] . ") "); $vbulletin->db->query_write(" INSERT INTO " . TABLE_PREFIX . "socialgroupmember (userid, groupid, dateline, type) VALUES " . implode(", ", $memberships_sql) ); if (!empty($groups_newowner)) { $vbulletin->db->query_write(" UPDATE " . TABLE_PREFIX . "socialgroup SET creatoruserid = " . $destinfo['userid'] . " WHERE groupid IN (" . implode(",", $groups_newowner) . ") "); } list($invitedgroups) = $vbulletin->db->query_first(" SELECT COUNT(*) FROM " . TABLE_PREFIX . "socialgroupmember WHERE userid = " . intval($destinfo['userid']) . " AND TYPE = 'invited' ", DBARRAY_NUM); $vbulletin->db->query_write(" UPDATE " . TABLE_PREFIX . "user SET socgroupinvitecount = " . intval($invitedgroups) . " WHERE userid = " . intval($destinfo['userid']) ); $groupdm =& datamanager_init("SocialGroup", $vbulletin, ERRTYPE_STANDARD); foreach ($groups AS $group) { $groupdm->set_existing($group); $groupdm->rebuild_membercounts(); $groupdm->rebuild_picturecount(); $groupdm->save(); list($pendingcountforowner) = $vbulletin->db->query_first(" SELECT SUM(moderatedmembers) FROM " . TABLE_PREFIX . "socialgroup WHERE creatoruserid = " . $group['creatoruserid'] , DBARRAY_NUM); $vbulletin->db->query_write(" UPDATE " . TABLE_PREFIX . "user SET socgroupreqcount = " . intval($pendingcountforowner) . " WHERE userid = " . $group['creatoruserid'] ); } } $db->query_write(" UPDATE " . TABLE_PREFIX . "album SET userid = $destinfo[userid] WHERE userid = $sourceinfo[userid] "); $db->query_write(" UPDATE " . TABLE_PREFIX . "picturecomment SET postuserid = $destinfo[userid], postusername = '" . $db->escape_string($destinfo['username']) . "' WHERE postuserid = $sourceinfo[userid] "); // Paid Subscriptions $db->query_write(" UPDATE " . TABLE_PREFIX . "paymentinfo SET userid = $destinfo[userid] WHERE userid = $sourceinfo[userid] "); // Move subscriptions over $db->query_write(" UPDATE " . TABLE_PREFIX . "subscriptionlog SET userid = $destinfo[userid] WHERE userid = $sourceinfo[userid] "); // Update change logs $db->query_write(" UPDATE " . TABLE_PREFIX . "userchangelog SET userid = $destinfo[userid] WHERE userid = $sourceinfo[userid] "); $db->query_write(" UPDATE " . TABLE_PREFIX . "userchangelog SET adminid = $destinfo[userid] WHERE adminid = $sourceinfo[userid] "); $list = $remove = $update = array(); // Combine active subscriptions $subs = $db->query_read(" SELECT subscriptionlogid, subscriptionid, expirydate FROM " . TABLE_PREFIX . "subscriptionlog WHERE userid = $destinfo[userid] AND status = 1 "); while ($sub = $db->fetch_array($subs)) { $subscriptionid = $sub['subscriptionid']; $existing = $list[$subscriptionid]; if ($existing) { if ($sub['expirydate'] > $existing['expirydate']) { $remove[] = $existing['subscriptionlogid']; unset($update[$existing['subscriptionlogid']]); $list[$subscriptionid] = $sub; $update[$sub['subscriptionlogid']] = $sub['expirydate']; } else { $remove[] = $sub['subscriptionlogid']; } } else { $list[$subscriptionid] = $sub; } } if (!empty($remove)) { $db->query_write(" DELETE FROM " . TABLE_PREFIX . "subscriptionlog WHERE subscriptionlogid IN (" . implode(', ', $remove) . ") "); } foreach ($update AS $subscriptionlogid => $expirydate) { $db->query_write(" UPDATE " . TABLE_PREFIX . "subscriptionlog SET expirydate = $expirydate WHERE subscriptionlogid = $subscriptionlogid "); } //Now any CMS content they have written. if ($vbulletin->products['vbcms']) { $db->query_write("UPDATE " . TABLE_PREFIX . "cms_article SET postauthor = '" . $db->escape_string($destinfo['username']) . "' WHERE postauthor = '" . $db->escape_string($sourceinfo['username']) . "' "); $db->query_write("UPDATE " . TABLE_PREFIX . "cms_article SET poststarter = " . $destinfo['userid'] . " WHERE poststarter = " . $sourceinfo['userid']) ; $db->query_write("UPDATE " . TABLE_PREFIX . "cms_node SET userid = " . $destinfo['userid'] . " WHERE userid = " . $sourceinfo['userid']) ; //We only want to move ratings if the target user hasn't voted. $db->query_write("UPDATE " . TABLE_PREFIX . "cms_rate AS rate LEFT JOIN " . TABLE_PREFIX . "cms_rate AS rate1 ON rate1.nodeid = rate.nodeid AND rate.userid = " . $sourceinfo['userid'] . " AND rate1.userid = " . $destinfo['userid'] . " SET rate.userid = " . $destinfo['userid'] . " WHERE rate.userid = " . $sourceinfo['userid'] . " AND rate1.userid IS NULL " ) ; //any remaining votes are orphans. Delete them $db->query_write("DELETE FROM " . TABLE_PREFIX . "cms_rate WHERE userid = " . $sourceinfo['userid']) ; } require_once(DIR . '/includes/functions_picturecomment.php'); build_picture_comment_counters($destinfo['userid']); ($hook = vBulletinHook::fetch_hook('useradmin_merge')) ? eval($hook) : false; // Remove remnants of source user $userdm =& datamanager_init('User', $vbulletin, ERRTYPE_SILENT); $userdm->set_existing($sourceinfo); $userdm->delete(); unset($userdm); define('CP_BACKURL', ''); print_stop_message('user_accounts_merged', $sourceinfo['username'], $destinfo['username']); } // ###################### Start modify Profile Pic ########### if ($_REQUEST['do'] == 'profilepic') { $userinfo = fetch_userinfo($vbulletin->GPC['userid'], FETCH_USERINFO_PROFILEPIC); if (!$userinfo) { print_stop_message('invalid_user_specified'); } if ($userinfo['profilepicwidth'] AND $userinfo['profilepicheight']) { $size = " width=\"$userinfo[profilepicwidth]\" height=\"$userinfo[profilepicheight]\" "; } print_form_header('usertools', 'updateprofilepic', 1); construct_hidden_code('userid', $userinfo['userid']); print_table_header($vbphrase['change_profile_picture'] . ": $userinfo[username]"); if ($userinfo['profilepic']) { if ($vbulletin->options['usefileavatar']) { $userinfo['profilepicurl'] = '../' . $vbulletin->options['profilepicurl'] . '/profilepic' . $userinfo['userid'] . '_' . $userinfo['profilepicrevision'] . '.gif'; } else { $userinfo['profilepicurl'] = '../image.php?' . $vbulletin->session->vars['sessionurl'] . 'u=' . $userinfo['userid'] . "&dateline=$userinfo[profilepicdateline]&type=profile"; } print_description_row("
\"\"
"); print_yes_no_row($vbphrase['use_profile_picture'], 'useprofilepic', 1); } else { construct_hidden_code('useprofilepic', 1); } cache_permissions($userinfo, false); if ($userinfo['permissions']['genericpermissions'] & $vbulletin->bf_ugp_genericpermissions['canprofilepic'] AND ($userinfo['permissions']['profilepicmaxwidth'] > 0 OR $userinfo['permissions']['profilepicmaxheight'] > 0)) { print_yes_no_row($vbphrase['resize_image_to_users_maximum_allowed_size'], 'resize'); } print_input_row($vbphrase['enter_image_url'], 'profilepicurl', 'http://www.'); print_upload_row($vbphrase['upload_image_from_computer'], 'upload'); print_submit_row($vbphrase['save']); } // ###################### Start Update Profile Pic ################ if ($_POST['do'] == 'updateprofilepic') { $vbulletin->input->clean_array_gpc('p', array( 'userid' => TYPE_UINT, 'useprofilepic' => TYPE_BOOL, 'profilepicurl' => TYPE_STR, 'resize' => TYPE_BOOL, )); $userinfo = fetch_userinfo($vbulletin->GPC['userid']); if (!$userinfo) { print_stop_message('invalid_user_specified'); } if ($vbulletin->GPC['useprofilepic']) { $vbulletin->input->clean_gpc('f', 'upload', TYPE_FILE); require_once(DIR . '/includes/class_upload.php'); require_once(DIR . '/includes/class_image.php'); $upload = new vB_Upload_Userpic($vbulletin); $upload->data =& datamanager_init('Userpic_Profilepic', $vbulletin, ERRTYPE_CP, 'userpic'); $upload->image =& vB_Image::fetch_library($vbulletin); $upload->userinfo =& $userinfo; cache_permissions($userinfo, false); // user's group doesn't have permission to use custom avatars so set override if (!($userinfo['permissions']['genericpermissions'] & $vbulletin->bf_ugp_genericpermissions['canprofilepic'])) { // init user datamanager $userdata =& datamanager_init('User', $vbulletin, ERRTYPE_CP); $userdata->set_existing($userinfo); $userdata->set_bitfield('adminoptions', 'adminprofilepic', 1); $userdata->save(); unset($userdata); } if ($vbulletin->GPC['resize']) { if ($userinfo['permissions']['genericpermissions'] & $vbulletin->bf_ugp_genericpermissions['canprofilepic']) { $upload->maxwidth = $userinfo['permissions']['profilepicmaxwidth']; $upload->maxheight = $userinfo['permissions']['profilepicmaxheight']; #$upload->maxuploadsize = $userinfo['permissions']['profilepicmaxsize']; #$upload->allowanimation = ($userinfo['permissions']['genericpermissions'] & $vbulletin->bf_ugp_genericpermissions['cananimateprofilepic']) ? true : false; } } if (!$upload->process_upload($vbulletin->GPC['profilepicurl'])) { print_stop_message('there_were_errors_encountered_with_your_upload_x', $upload->fetch_error()); } } else { $userpic =& datamanager_init('Userpic_Profilepic', $vbulletin, ERRTYPE_CP, 'userpic'); $userpic->condition = "userid = " . $userinfo['userid']; $userpic->delete(); } define('CP_REDIRECT', "user.php?do=edit&u=$userinfo[userid]"); print_stop_message('saved_profile_picture_successfully'); } // ###################### Start modify Signature Pic ########### if ($_REQUEST['do'] == 'sigpic') { $userinfo = fetch_userinfo($vbulletin->GPC['userid'], FETCH_USERINFO_SIGPIC); if (!$userinfo) { print_stop_message('invalid_user_specified'); } if ($userinfo['sigpicwidth'] AND $userinfo['sigpicheight']) { $size = " width=\"$userinfo[sigpicwidth]\" height=\"$userinfo[sigpicheight]\" "; } print_form_header('usertools', 'updatesigpic', 1); construct_hidden_code('userid', $userinfo['userid']); print_table_header($vbphrase['change_signature_picture'] . ": $userinfo[username]"); if ($userinfo['sigpic']) { if ($vbulletin->options['usefileavatar']) { $userinfo['sigpicurl'] = '../' . $vbulletin->options['sigpicurl'] . '/sigpic' . $userinfo['userid'] . '_' . $userinfo['sigpicrevision'] . '.gif'; } else { $userinfo['sigpicurl'] = '../image.php?' . $vbulletin->session->vars['sessionurl'] . 'u=' . $userinfo['userid'] . "&dateline=$userinfo[sigpicdateline]&type=sigpic"; } print_description_row("
\"\"
"); print_yes_no_row($vbphrase['use_signature_picture'], 'usesigpic', 1); } else { construct_hidden_code('usesigpic', 1); } cache_permissions($userinfo, false); if ($userinfo['permissions']['signaturepermissions'] & $vbulletin->bf_ugp_signaturepermissions['cansigpic'] AND ($userinfo['permissions']['sigpicmaxwidth'] > 0 OR $userinfo['permissions']['sigpicmaxheight'] > 0)) { print_yes_no_row($vbphrase['resize_image_to_users_maximum_allowed_size'], 'resize'); } print_input_row($vbphrase['enter_image_url'], 'sigpicurl', 'http://www.'); print_upload_row($vbphrase['upload_image_from_computer'], 'upload'); print_submit_row($vbphrase['save']); } // ###################### Start Update Profile Pic ################ if ($_POST['do'] == 'updatesigpic') { $vbulletin->input->clean_array_gpc('p', array( 'userid' => TYPE_UINT, 'usesigpic' => TYPE_BOOL, 'sigpicurl' => TYPE_STR, 'resize' => TYPE_BOOL, )); $userinfo = fetch_userinfo($vbulletin->GPC['userid']); if (!$userinfo) { print_stop_message('invalid_user_specified'); } if ($vbulletin->GPC['usesigpic']) { $vbulletin->input->clean_gpc('f', 'upload', TYPE_FILE); require_once(DIR . '/includes/class_upload.php'); require_once(DIR . '/includes/class_image.php'); $upload = new vB_Upload_Userpic($vbulletin); $upload->data =& datamanager_init('Userpic_Sigpic', $vbulletin, ERRTYPE_CP, 'userpic'); $upload->image =& vB_Image::fetch_library($vbulletin); $upload->userinfo =& $userinfo; if ($vbulletin->GPC['resize']) { cache_permissions($userinfo, false); if ($userinfo['permissions']['signaturepermissions'] & $vbulletin->bf_ugp_signaturepermissions['cansigpic']) { $upload->maxwidth = $userinfo['permissions']['sigpicmaxwidth']; $upload->maxheight = $userinfo['permissions']['sigpicmaxheight']; #$upload->maxuploadsize = $userinfo['permissions']['sigpicmaxsize']; #$upload->allowanimation = ($userinfo['permissions']['signaturepermissions'] & $vbulletin->bf_ugp_signaturepermissions['cananimatesigpic']) ? true : false; } } if (!$upload->process_upload($vbulletin->GPC['sigpicurl'])) { print_stop_message('there_were_errors_encountered_with_your_upload_x', $upload->fetch_error()); } } else { $userpic =& datamanager_init('Userpic_Sigpic', $vbulletin, ERRTYPE_CP, 'userpic'); $userpic->condition = "userid = " . $userinfo['userid']; $userpic->delete(); } define('CP_REDIRECT', "user.php?do=edit&u=$userinfo[userid]"); print_stop_message('saved_signature_picture_successfully'); } // ###################### Start modify Avatar ################ if ($_REQUEST['do'] == 'avatar') { $vbulletin->input->clean_array_gpc('r', array( 'perpage' => TYPE_INT, 'startpage' => TYPE_INT, )); $userinfo = fetch_userinfo($vbulletin->GPC['userid']); if (!$userinfo) { print_stop_message('invalid_user_specified'); } $avatarchecked["{$userinfo['avatarid']}"] = 'checked="checked"'; $nouseavatarchecked = ''; if (!$avatarinfo = $db->query_first("SELECT * FROM " . TABLE_PREFIX . "customavatar WHERE userid = " . $vbulletin->GPC['userid'])) { // no custom avatar exists if (!$userinfo['avatarid']) { // must have no avatar selected $nouseavatarchecked = 'checked="checked"'; $avatarchecked[0] = ''; } } if ($vbulletin->GPC['startpage'] < 1) { $vbulletin->GPC['startpage'] = 1; } if ($vbulletin->GPC['perpage'] < 1) { $vbulletin->GPC['perpage'] = 25; } $avatarcount = $db->query_first("SELECT COUNT(*) AS count FROM " . TABLE_PREFIX . "avatar"); $totalavatars = $avatarcount['count']; if (($vbulletin->GPC['startpage'] - 1) * $vbulletin->GPC['perpage'] > $totalavatars) { if ((($totalavatars / $vbulletin->GPC['perpage']) - intval($totalavatars / $vbulletin->GPC['perpage'])) == 0) { $vbulletin->GPC['startpage'] = $totalavatars / $vbulletin->GPC['perpage']; } else { $vbulletin->GPC['startpage'] = intval($totalavatars / $vbulletin->GPC['perpage']) + 1; } } $limitlower = ($vbulletin->GPC['startpage'] - 1) * $vbulletin->GPC['perpage'] + 1; $limitupper = $vbulletin->GPC['startpage'] * $vbulletin->GPC['perpage']; if ($limitupper > $totalavatars) { $limitupper = $totalavatars; if ($limitlower > $totalavatars) { $limitlower = $totalavatars - $vbulletin->GPC['perpage']; } } if ($limitlower <= 0) { $limitlower = 1; } $avatars = $db->query_read("SELECT * FROM " . TABLE_PREFIX . "avatar ORDER BY title LIMIT " . ($limitlower-1) . ", " . $vbulletin->GPC['perpage']); $avatarcount = 0; if ($totalavatars > 0) { print_form_header('usertools', 'avatar'); construct_hidden_code('userid', $vbulletin->GPC['userid']); print_table_header( $vbphrase['avatars_to_show_per_page'] . ': '); print_table_footer(); } print_form_header('usertools', 'updateavatar', 1); print_table_header($vbphrase['avatars']); $output = ""; while ($avatar = $db->fetch_array($avatars)) { $avatarid = $avatar['avatarid']; $avatar['avatarpath'] = resolve_cp_image_url($avatar['avatarpath']); if ($avatarcount == 0) { $output .= ''; } $output .= ""; $avatarcount++; if ($avatarcount == 5) { echo ''; $avatarcount = 0; } } if ($avatarcount != 0) { while ($avatarcount != 5) { $output .= ''; $avatarcount++; } echo ''; } if ((($totalavatars / $vbulletin->GPC['perpage']) - intval($totalavatars / $vbulletin->GPC['perpage'])) == 0) { $numpages = $totalavatars / $vbulletin->GPC['perpage']; } else { $numpages = intval($totalavatars / $vbulletin->GPC['perpage']) + 1; } if ($vbulletin->GPC['startpage'] == 1) { $starticon = 0; $endicon = $vbulletin->GPC['perpage'] - 1; } else { $starticon = ($vbulletin->GPC['startpage'] - 1) * $vbulletin->GPC['perpage']; $endicon = ($vbulletin->GPC['perpage'] * $vbulletin->GPC['startpage']) - 1 ; } if ($numpages > 1) { for ($x = 1; $x <= $numpages; $x++) { if ($x == $vbulletin->GPC['startpage']) { $pagelinks .= " [$x] "; } else { $pagelinks .= " GPC['perpage'] . "&do=avatar&u=" . $vbulletin->GPC['userid'] . "\">$x "; } } } if ($vbulletin->GPC['startpage'] != $numpages) { $nextstart = $vbulletin->GPC['startpage'] + 1; $nextpage = " GPC['perpage'] . "&do=avatar&u=" . $vbulletin->GPC['userid'] . "\">" . $vbphrase['next_page'] . ""; $eicon = $endicon + 1; } else { $eicon = $totalavatars; } if ($vbulletin->GPC['startpage'] != 1) { $prevstart = $vbulletin->GPC['startpage'] - 1; $prevpage = "GPC['perpage'] . "&do=avatar&u=" . $vbulletin->GPC['userid'] . "\">" . $vbphrase['prev_page'] . " "; } $sicon = $starticon + 1; if ($totalavatars > 0) { if ($pagelinks) { $colspan = 3; } else { $colspan = 5; } $output .= ''; if ($pagelinks) { $output .= ""; } $output .= ''; } $output .= '
 
'; $output .= construct_phrase($vbphrase['showing_avatars_x_to_y_of_z'], $sicon, $eicon, $totalavatars) . '$vbphrase[page]: $prevpage $pagelinks $nextpage
'; if ($totalavatars > 0) { print_description_row($output); } if ($nouseavatarchecked) { print_description_row($vbphrase['user_has_no_avatar']); } else { print_yes_row($vbphrase['delete_avatar'], 'avatarid', $vbphrase['yes'], '', -1); } print_table_break(); print_table_header($vbphrase['custom_avatar']); require_once(DIR . '/includes/functions_user.php'); $userinfo['avatarurl'] = fetch_avatar_url($userinfo['userid']); if (empty($userinfo['avatarurl']) OR $userinfo['avatarid'] != 0) { $userinfo['avatarurl'] = ''; } else { $userinfo['avatarurl'] = "\"\""; } if (!empty($avatarchecked[0])) { print_label_row($vbphrase['custom_avatar'], $userinfo['avatarurl']); } print_yes_row((!empty($avatarchecked[0]) ? $vbphrase['use_current_avatar'] : $vbphrase['add_new_custom_avatar']), 'avatarid', $vbphrase['yes'], $avatarchecked[0], 0); cache_permissions($userinfo, false); if ($userinfo['permissions']['genericpermissions'] & $vbulletin->bf_ugp_genericpermissions['canuseavatar'] AND ($userinfo['permissions']['avatarmaxwidth'] > 0 OR $userinfo['permissions']['avatarmaxheight'] > 0)) { print_yes_no_row($vbphrase['resize_image_to_users_maximum_allowed_size'], 'resize'); } print_input_row($vbphrase['enter_image_url'], 'avatarurl', 'http://www.'); print_upload_row($vbphrase['upload_image_from_computer'], 'upload'); construct_hidden_code('userid', $vbulletin->GPC['userid']); print_submit_row($vbphrase['save']); } // ###################### Start Update Avatar ################ if ($_POST['do'] == 'updateavatar') { $vbulletin->input->clean_array_gpc('p', array( 'userid' => TYPE_UINT, 'avatarid' => TYPE_INT, 'avatarurl' => TYPE_STR, 'resize' => TYPE_BOOL, )); $useavatar = iif($vbulletin->GPC['avatarid'] == -1, 0, 1); $userinfo = fetch_userinfo($vbulletin->GPC['userid']); if (!$userinfo) { print_stop_message('invalid_user_specified'); } // init user datamanager $userdata =& datamanager_init('User', $vbulletin, ERRTYPE_CP); $userdata->set_existing($userinfo); if ($useavatar) { if (!$vbulletin->GPC['avatarid']) { // custom avatar $vbulletin->input->clean_gpc('f', 'upload', TYPE_FILE); require_once(DIR . '/includes/class_upload.php'); require_once(DIR . '/includes/class_image.php'); $upload = new vB_Upload_Userpic($vbulletin); $upload->data =& datamanager_init('Userpic_Avatar', $vbulletin, ERRTYPE_CP, 'userpic'); $upload->image =& vB_Image::fetch_library($vbulletin); $upload->userinfo =& $userinfo; cache_permissions($userinfo, false); // user's group doesn't have permission to use custom avatars so set override if (!($userinfo['permissions']['genericpermissions'] & $vbulletin->bf_ugp_genericpermissions['canuseavatar'])) { $userdata->set_bitfield('adminoptions', 'adminavatar', 1); } if ($vbulletin->GPC['resize']) { if ($userinfo['permissions']['genericpermissions'] & $vbulletin->bf_ugp_genericpermissions['canuseavatar']) { $upload->maxwidth = $userinfo['permissions']['avatarmaxwidth']; $upload->maxheight = $userinfo['permissions']['avatarmaxheight']; #$upload->maxuploadsize = $userinfo['permissions']['avatarmaxsize']; #$upload->allowanimation = ($userinfo['permissions']['genericpermissions'] & $vbulletin->bf_ugp_genericpermissions['cananimateavatar']) ? true : false; } } if (!$upload->process_upload($vbulletin->GPC['avatarurl'])) { print_stop_message('there_were_errors_encountered_with_your_upload_x', $upload->fetch_error()); } } else { // predefined avatar $userpic =& datamanager_init('Userpic_Avatar', $vbulletin, ERRTYPE_CP, 'userpic'); $userpic->condition = "userid = " . $userinfo['userid']; $userpic->delete(); } } else { // not using an avatar $vbulletin->GPC['avatarid'] = 0; $userpic =& datamanager_init('Userpic_Avatar', $vbulletin, ERRTYPE_CP, 'userpic'); $userpic->condition = "userid = " . $userinfo['userid']; $userpic->delete(); } $userdata->set('avatarid', $vbulletin->GPC['avatarid']); $userdata->save(); define('CP_REDIRECT', "user.php?do=edit&u=" . $vbulletin->GPC['userid']); print_stop_message('saved_avatar_successfully'); } // ############################# start user pm stats ######################### if ($_REQUEST['do'] == 'pmfolderstats') { $user = $db->query_first(" SELECT user.*, usertextfield.* FROM " . TABLE_PREFIX . "user AS user INNER JOIN " . TABLE_PREFIX . "usertextfield AS usertextfield USING(userid) WHERE user.userid = " . $vbulletin->GPC['userid'] . " "); if (!$user['userid']) { print_stop_message('invalid_user_specified'); } $foldernames = array('0' => $vbulletin->options['inboxname'], '-1' => $vbulletin->options['sentitemsname']); $foldernames = unserialize($user['pmfolders']); $foldernames['-1'] = $vbphrase['sent_items']; $foldernames['0'] = $vbphrase['inbox']; $folders = array(); $pms = $db->query_read(" SELECT COUNT(*) AS messages, folderid FROM " . TABLE_PREFIX . "pm WHERE userid = $user[userid] GROUP BY folderid "); if (!$db->num_rows($pms)) { print_stop_message('no_matches_found'); } while ($pm = $db->fetch_array($pms)) { $pmtotal += $pm['messages']; $folders[$foldernames[$pm['folderid']]] = $pm['messages']; } print_form_header('user', 'edit'); construct_hidden_code('userid', $user['userid']); print_table_header(construct_phrase($vbphrase['private_messages_for_x'], $user['username']) . " (userid: $user[userid])"); print_cells_row(array($vbphrase['folder'], $vbphrase['number_of_messages']), 1); foreach($folders AS $foldername => $messages) { print_cells_row(array($foldername, $messages)); } print_cells_row(array('' . $vbphrase['total'] . '', "$pmtotal")); print_description_row('
' . construct_link_code($vbphrase['delete_private_messages'], "usertools.php?" . $vbulletin->session->vars['sessionurl'] . "do=removepms&u=" . $vbulletin->GPC['userid']) . '
', 0, 2, 'thead'); print_submit_row($vbphrase['edit_user'], 0); } // ############################# start PM stats ######################### if ($_REQUEST['do'] == 'pmstats') { $pms = $db->query_read(" SELECT COUNT(*) AS total, userid FROM " . TABLE_PREFIX . "pm GROUP BY userid ORDER BY total DESC "); print_form_header('usertools', 'viewpmstats'); print_table_header($vbphrase['private_message_statistics'], 3); print_cells_row(array($vbphrase['number_of_messages'], $vbphrase['number_of_users'], $vbphrase['controls']), 1); $groups = array(); while ($pm = $db->fetch_array($pms)) { $groups["$pm[total]"]++; } foreach ($groups AS $key => $total) { $cell = array(); $cell[] = $key . iif($vbulletin->options['pmquota'], '/' . $vbulletin->options['pmquota']); $cell[] = $total; $cell[] = construct_link_code(construct_phrase($vbphrase['list_users_with_x_messages'], $key), "usertools.php?" . $vbulletin->session->vars['sessionurl'] . "do=pmuserstats&total=$key"); print_cells_row($cell); } print_table_footer(); } // ############################# start PM stats ######################### if ($_REQUEST['do'] == 'pmuserstats') { $vbulletin->input->clean_array_gpc('r', array( 'total' => TYPE_UINT )); $users = $db->query_read(" SELECT COUNT( * ) AS total, pm.userid, user.username, user.lastactivity, user.email FROM " . TABLE_PREFIX . "pm AS pm INNER JOIN " . TABLE_PREFIX . "user AS user ON (pm.userid = user.userid) GROUP BY pm.userid HAVING total = " . $vbulletin->GPC['total'] . " ORDER BY user.username DESC "); if (!$db->num_rows($users)) { print_stop_message('no_users_matched_your_query'); } // a little javascript for the options menus ?> GPC['pms']), 3); print_cells_row(array($vbphrase['username'], $vbphrase['last_activity'], $vbphrase['options']), 1); while($user = $db->fetch_array($users)) { $cell = array(); $cell[] = "$user[username]"; $cell[] = vbdate($vbulletin->options['dateformat'] . ', ' . $vbulletin->options['timeformat'], $user['lastactivity']); $cell[] = " \n\t"; print_cells_row($cell); } print_table_footer(); } // ############################# start do ips ######################### if ($_REQUEST['do'] == 'doips') { if (function_exists('set_time_limit') AND !SAFEMODE) { @set_time_limit(0); } $vbulletin->input->clean_array_gpc('r', array( 'depth' => TYPE_INT, 'username' => TYPE_STR, 'ipaddress' => TYPE_NOHTML, )); if (($vbulletin->GPC['username'] OR $vbulletin->GPC['userid'] OR $vbulletin->GPC['ipaddress']) AND $_POST['do'] != 'doips') { // we're doing a search of some type, that's not submitted via post, // so we need to verify the CP sessionhash verify_cp_sessionhash(); } if (empty($vbulletin->GPC['depth'])) { $vbulletin->GPC['depth'] = 1; } if ($vbulletin->GPC['username']) { $getuserid = $db->query_first(" SELECT userid FROM " . TABLE_PREFIX . "user WHERE username = '" . $db->escape_string(htmlspecialchars_uni($vbulletin->GPC['username'])) . "' "); $userid = intval($getuserid['userid']); $userinfo = fetch_userinfo($userid); if (!$userinfo) { print_stop_message('invalid_user_specified'); } } else if ($vbulletin->GPC['userid']) { $userid = $vbulletin->GPC['userid']; $userinfo = fetch_userinfo($userid); if (!$userinfo) { print_stop_message('invalid_user_specified'); } $vbulletin->GPC['username'] = unhtmlspecialchars($userinfo['username']); } else { $userid = 0; } if ($vbulletin->GPC['ipaddress'] OR $userid) { if ($vbulletin->GPC['ipaddress']) { print_form_header('', ''); print_table_header(construct_phrase($vbphrase['ip_address_search_for_ip_address_x'], $vbulletin->GPC['ipaddress'])); $hostname = @gethostbyaddr($vbulletin->GPC['ipaddress']); if (!$hostname OR $hostname == $vbulletin->GPC['ipaddress']) { $hostname = $vbphrase['could_not_resolve_hostname']; } print_description_row("
session->vars['sessionurl'] . "do=gethost&ip=" . $vbulletin->GPC['ipaddress'] . "\">" . $vbulletin->GPC['ipaddress'] . " : $hostname
"); $results = construct_ip_usage_table($vbulletin->GPC['ipaddress'], 0, $vbulletin->GPC['depth']); print_description_row($vbphrase['post_ip_addresses'], false, 2, 'thead'); print_description_row($results ? $results : $vbphrase['no_matches_found']); $results = construct_ip_register_table($vbulletin->GPC['ipaddress'], 0, $vbulletin->GPC['depth']); print_description_row($vbphrase['registration_ip_addresses'], false, 2, 'thead'); print_description_row($results ? $results : $vbphrase['no_matches_found']); print_table_footer(); } if ($userid) { print_form_header('', ''); print_table_header(construct_phrase($vbphrase['ip_address_search_for_user_x'], htmlspecialchars_uni($vbulletin->GPC['username']))); print_label_row($vbphrase['registration_ip_address'], ($userinfo['ipaddress'] ? $userinfo['ipaddress'] : $vbphrase['n_a'])); $results = construct_user_ip_table($userid, 0, $vbulletin->GPC['depth']); print_description_row($vbphrase['post_ip_addresses'], false, 2, 'thead'); print_description_row($results ? $results : $vbphrase['no_matches_found']); if ($userinfo['ipaddress']) { $results = construct_ip_register_table($userinfo['ipaddress'], $userid, $vbulletin->GPC['depth']); } else { $results = ''; } print_description_row($vbphrase['registration_ip_addresses'], false, 2, 'thead'); print_description_row($results ? $results : $vbphrase['no_matches_found']); print_table_footer(); } } print_form_header('usertools', 'doips'); print_table_header($vbphrase['search_ip_addresses']); print_input_row($vbphrase['find_users_by_ip_address'], 'ipaddress', $vbulletin->GPC['ipaddress'], 0); print_input_row($vbphrase['find_ip_addresses_for_user'], 'username', $vbulletin->GPC['username']); print_select_row($vbphrase['depth_to_search'], 'depth', array(1 => 1, 2 => 2), $vbulletin->GPC['depth']); print_submit_row($vbphrase['find']); } // ############################# start gethost ######################### if ($_REQUEST['do'] == 'gethost') { $vbulletin->input->clean_array_gpc('r', array( 'ip' => TYPE_NOHTML, )); print_form_header('', ''); print_table_header($vbphrase['ip_address']); print_label_row($vbphrase['ip_address'], $vbulletin->GPC['ip']); $resolvedip = @gethostbyaddr($vbulletin->GPC['ip']); if ($resolvedip == $vbulletin->GPC['ip']) { print_label_row($vbphrase['host_name'], '' . $vbphrase['n_a'] . ''); } else { print_label_row($vbphrase['host_name'], "$resolvedip"); } ($hook = vBulletinHook::fetch_hook('useradmin_gethost')) ? eval($hook) : false; print_table_footer(); } // ############################# start referrers ######################### if ($_REQUEST['do'] == 'referrers') { print_form_header('usertools', 'showreferrers'); print_table_header($vbphrase['referrals']); print_description_row($vbphrase['please_input_referral_dates']); print_time_row($vbphrase['start_date'], 'startdate', TIMENOW - 24 * 60 * 60 * 31, 1, 0, 'middle'); print_time_row($vbphrase['end_date'], 'enddate', TIMENOW, 1, 0, 'middle'); print_submit_row($vbphrase['find']); } // ############################# start show referrers ######################### if ($_POST['do'] == 'showreferrers') { $vbulletin->input->clean_array_gpc('p', array( 'startdate' => TYPE_ARRAY_INT, 'enddate' => TYPE_ARRAY_INT )); require_once(DIR . '/includes/functions_misc.php'); if ($vbulletin->GPC['startdate']['month']) { $vbulletin->GPC['startdate'] = vbmktime(intval($vbulletin->GPC['startdate']['hour']), intval($vbulletin->GPC['startdate']['minute']), 0, intval($vbulletin->GPC['startdate']['month']), intval($vbulletin->GPC['startdate']['day']), intval($vbulletin->GPC['startdate']['year'])); $datequery = " AND users.joindate >= " . $vbulletin->GPC['startdate']; $datestart = vbdate($vbulletin->options['dateformat'] . ' ' . $vbulletin->options['timeformat'], $vbulletin->GPC['startdate']); } else { $vbulletin->GPC['startdate'] = 0; } if ($vbulletin->GPC['enddate']['month']) { $vbulletin->GPC['enddate'] = vbmktime(intval($vbulletin->GPC['enddate']['hour']), intval($vbulletin->GPC['enddate']['minute']), 0, intval($vbulletin->GPC['enddate']['month']), intval($vbulletin->GPC['enddate']['day']), intval($vbulletin->GPC['enddate']['year'])); $datequery .= " AND users.joindate <= " . $vbulletin->GPC['enddate']; $dateend = vbdate($vbulletin->options['dateformat'] . ' ' . $vbulletin->options['timeformat'], $vbulletin->GPC['enddate']); } else { $vbulletin->GPC['enddate'] = 0; } if ($datestart OR $dateend) { $refperiod = construct_phrase($vbphrase['x_to_y'], $datestart, $dateend); } else { $refperiod = $vbphrase['all_time']; } $users = $db->query_read(" SELECT COUNT(*) AS count, user.username, user.userid FROM " . TABLE_PREFIX . "user AS users INNER JOIN " . TABLE_PREFIX . "user AS user ON(users.referrerid = user.userid) WHERE users.referrerid <> 0 AND users.usergroupid NOT IN (3,4) $datequery GROUP BY users.referrerid ORDER BY count DESC, username ASC "); if (!$db->num_rows($users)) { define('CP_REDIRECT', 'usertools.php?do=referrers'); print_stop_message('no_referrals_matched_your_query'); } else { print_form_header('', ''); print_table_header($vbphrase['referrals'] . ' - ' . $refperiod); print_cells_row(array($vbphrase['username'], $vbphrase['total']), 1); while ($user=$db->fetch_array($users)) { print_cells_row(array("session->vars['sessionurl'] . "do=showreferrals&referrerid=$user[userid]&startdate=" . $vbulletin->GPC['startdate'] . "&enddate=" . $vbulletin->GPC['enddate'] . "\">$user[username]", vb_number_format($user['count']))); } print_table_footer(); } } // ############################# start show referrals ######################### if ($_REQUEST['do'] == 'showreferrals') { $vbulletin->input->clean_array_gpc('r', array( 'startdate' => TYPE_INT, 'enddate' => TYPE_INT, 'referrerid' => TYPE_INT )); if ($vbulletin->GPC['startdate']) { $datequery = " AND joindate >= " . $vbulletin->GPC['startdate']; $datestart = vbdate($vbulletin->options['dateformat'] . ' ' . $vbulletin->options['timeformat'], $vbulletin->GPC['startdate']); } if ($vbulletin->GPC['enddate']) { $datequery .= " AND joindate <= " . $vbulletin->GPC['enddate']; $dateend = vbdate($vbulletin->options['dateformat'] . ' ' . $vbulletin->options['timeformat'], $vbulletin->GPC['enddate']); } if ($datestart OR $dateend) { $refperiod = construct_phrase($vbphrase['x_to_y'], $datestart, $dateend); } else { $refperiod = $vbphrase['all_time']; } $username = $db->query_first("SELECT username FROM " . TABLE_PREFIX . "user WHERE userid = " . $vbulletin->GPC['referrerid']); $users = $db->query_read(" SELECT username, posts, userid, joindate, lastvisit, email FROM " . TABLE_PREFIX . "user WHERE referrerid = " . $vbulletin->GPC['referrerid'] . " AND usergroupid NOT IN (3,4) $datequery ORDER BY joindate DESC "); print_form_header('', ''); print_table_header(construct_phrase($vbphrase['referrals_for_x'], $username['username']) . ' - ' . $refperiod, 5); print_cells_row(array( $vbphrase['username'], $vbphrase['post_count'], $vbphrase['email'], $vbphrase['join_date'], $vbphrase['last_visit'] ), 1); while($user = $db->fetch_array($users)) { $cell = array(); $cell[] = "session->vars['sessionurl'] . "do=edit&u=$user[userid]\">$user[username]"; $cell[] = vb_number_format($user['posts']); $cell[] = "$user[email]"; $cell[] = '' . vbdate($vbulletin->options['dateformat'] . ', ' . $vbulletin->options['timeformat'], $user['joindate']) . ''; $cell[] = '' . vbdate($vbulletin->options['dateformat'] . ', ' . $vbulletin->options['timeformat'], $user['lastvisit']) . ''; print_cells_row($cell); } print_table_footer(); } // ######################################################################## if ($_REQUEST['do'] == 'usercss' OR $_POST['do'] == 'updateusercss') { $vbulletin->input->clean_array_gpc('r', array( 'userid' => TYPE_UINT )); $userinfo = fetch_userinfo($vbulletin->GPC['userid']); if (!$userinfo) { print_stop_message('invalid_user_specified'); } cache_permissions($userinfo, false); $usercsspermissions = array( 'caneditfontfamily' => $userinfo['permissions']['usercsspermissions'] & $vbulletin->bf_ugp_usercsspermissions['caneditfontfamily'] ? true : false, 'caneditfontsize' => $userinfo['permissions']['usercsspermissions'] & $vbulletin->bf_ugp_usercsspermissions['caneditfontsize'] ? true : false, 'caneditcolors' => $userinfo['permissions']['usercsspermissions'] & $vbulletin->bf_ugp_usercsspermissions['caneditcolors'] ? true : false, 'caneditbgimage' => $userinfo['permissions']['usercsspermissions'] & $vbulletin->bf_ugp_usercsspermissions['caneditbgimage'] ? true : false, 'caneditborders' => $userinfo['permissions']['usercsspermissions'] & $vbulletin->bf_ugp_usercsspermissions['caneditborders'] ? true : false, 'canusetheme' => $userinfo['permissions']['usercsspermissions'] & $vbulletin->bf_ugp_usercsspermissions['canusetheme'] ? true : false, 'cancustomize' => $userinfo['permissions']['usercsspermissions'] & $vbulletin->bf_ugp_usercsspermissions['cancustomize'] ? true : false ); require_once(DIR . '/includes/class_usercss.php'); $usercss = new vB_UserCSS($vbulletin, $userinfo['userid']); } // ######################################################################## if ($_POST['do'] == 'updateusercss') { $vbulletin->input->clean_array_gpc('p', array( 'usercss' => TYPE_ARRAY )); $allowedfonts = $usercss->build_select_option($vbulletin->options['usercss_allowed_fonts']); $allowedfontsizes = $usercss->build_select_option($vbulletin->options['usercss_allowed_font_sizes']); $allowedborderwidths = $usercss->build_select_option($vbulletin->options['usercss_allowed_border_widths']); $allowedpaddings = $usercss->build_select_option($vbulletin->options['usercss_allowed_padding']); foreach ($vbulletin->GPC['usercss'] AS $selectorname => $selector) { if (!isset($usercss->cssedit["$selectorname"]) OR !empty($usercss->cssedit["$selectorname"]['noinputset'])) { $usercss->error[] = fetch_error('invalid_selector_name_x', htmlspecialchars_uni($selectorname)); continue; } if (!is_array($selector)) { continue; } foreach ($selector AS $property => $value) { $prop_perms = $usercss->properties["$property"]['permission']; if (empty($usercsspermissions["$prop_perms"]) OR !in_array($property, $usercss->cssedit["$selectorname"]['properties'])) { $usercss->error[] = fetch_error('no_permission_edit_selector_x_property_y', htmlspecialchars_uni($selectorname), $property); continue; } unset($allowedlist); switch ($property) { case 'font_size': $allowedlist = $allowedfontsizes; break; case 'font_family': $allowedlist = $allowedfonts; break; case 'border_width': $allowedlist = $allowedborderwidths; break; case 'padding': $allowedlist = $allowedpaddings; break; } if (isset($allowedlist)) { if (!in_array($value, $allowedlist) AND $value != '') { $usercss->invalid["$selectorname"]["$property"] = ' usercsserror '; continue; } } $usercss->parse($selectorname, $property, $value); } } if (!empty($usercss->error)) { print_cp_message(implode("
", $usercss->error)); } else if (!empty($usercss->invalid)) { print_stop_message('invalid_values_customize_profile'); } $usercss->save(); define('CP_REDIRECT', "user.php?do=edit&u=$userinfo[userid]"); print_stop_message('saved_profile_customizations_successfully'); } // ######################################################################## if ($_REQUEST['do'] == 'usercss') { require_once(DIR . '/includes/adminfunctions_template.php'); ?> build_admin_select_option($vbulletin->options['usercss_allowed_fonts'], 'usercss_font_'); $allowedfontsizes = $usercss->build_admin_select_option($vbulletin->options['usercss_allowed_font_sizes'], 'usercss_fontsize_'); $allowedborderwidths = $usercss->build_admin_select_option($vbulletin->options['usercss_allowed_border_widths'], 'usercss_borderwidth_'); $allowedpaddings = $usercss->build_admin_select_option($vbulletin->options['usercss_allowed_padding'], 'usercss_padding_'); $allowedborderstyles = array( '' => '', 'none' => $vbphrase['usercss_borderstyle_none'], 'hidden' => $vbphrase['usercss_borderstyle_hidden'], 'dotted' => $vbphrase['usercss_borderstyle_dotted'], 'dashed' => $vbphrase['usercss_borderstyle_dashed'], 'solid' => $vbphrase['usercss_borderstyle_solid'], 'double' => $vbphrase['usercss_borderstyle_double'], 'groove' => $vbphrase['usercss_borderstyle_groove'], 'ridge' => $vbphrase['usercss_borderstyle_ridge'], 'inset' => $vbphrase['usercss_borderstyle_inset'], 'outset' => $vbphrase['usercss_borderstyle_outset'] ); $allowedbackgroundrepeats = array( '' => '', 'repeat' => $vbphrase['usercss_repeat_repeat'], 'repeat-x' => $vbphrase['usercss_repeat_repeat_x'], 'repeat-y' => $vbphrase['usercss_repeat_repeat_y'], 'no-repeat' => $vbphrase['usercss_repeat_no_repeat'] ); $cssdisplayinfo = $usercss->build_display_array(); print_form_header('usertools', 'updateusercss'); print_table_header(construct_phrase($vbphrase['edit_profile_style_customizations_for_x'], $userinfo['username'])); construct_hidden_code('userid', $userinfo['userid']); $have_output = false; foreach ($cssdisplayinfo AS $selectorname => $selectorinfo) { if (empty($selectorinfo['properties'])) { $selectorinfo['properties'] = $usercss->cssedit["$selectorname"]['properties']; } if (!is_array($selectorinfo['properties'])) { continue; } $field_names = array(); $selector = array(); foreach ($selectorinfo['properties'] AS $key => $value) { if (is_numeric($key)) { $this_property = $value; $this_selector = $selectorname; } else { $this_property = $key; $this_selector = $value; } if (!$usercsspermissions[$usercss->properties["$this_property"]['permission']]) { continue; } $field_names["$this_property"] = "usercss[$this_selector][$this_property]"; $selector["$this_property"] = $usercss->existing["$this_selector"]["$this_property"]; } if (!$field_names) { continue; } $have_output = true; print_description_row($vbphrase["$selectorinfo[phrasename]"], false, 2, 'thead', 'center'); if ($field_names['font_family']) { print_select_row($vbphrase['usercss_font_family'], $field_names['font_family'], $allowedfonts, $selector['font_family']); } if ($field_names['font_size']) { print_select_row($vbphrase['usercss_font_size'], $field_names['font_size'], $allowedfontsizes, $selector['font_size']); } if ($field_names['color']) { print_color_input_row($vbphrase['usercss_color'], $field_names['color'], $selector['color'], true, 10); } if ($field_names['shadecolor']) { print_color_input_row($vbphrase['usercss_shadecolor'], $field_names['shadecolor'], $selector['shadecolor'], true, 10); } if ($field_names['linkcolor']) { print_color_input_row($vbphrase['usercss_linkcolor'], $field_names['linkcolor'], $selector['linkcolor'], true, 10); } if ($field_names['border_color']) { print_color_input_row($vbphrase['usercss_border_color'], $field_names['border_color'], $selector['border_color'], true, 10); } if ($field_names['border_style']) { print_select_row($vbphrase['usercss_border_style'], $field_names['border_style'], $allowedborderstyles, $selector['border_style']); } if ($field_names['border_width']) { print_select_row($vbphrase['usercss_border_width'], $field_names['border_width'], $allowedborderwidths, $selector['border_width']); } if ($field_names['padding']) { print_select_row($vbphrase['usercss_padding'], $field_names['padding'], $allowedpaddings, $selector['padding']); } if ($field_names['background_color']) { print_color_input_row($vbphrase['usercss_background_color'], $field_names['background_color'], $selector['background_color'], true, 10); } if ($field_names['background_image']) { if (preg_match("/^([0-9]+),([0-9]+)$/", $selector['background_image'], $picture)) { $selector['background_image'] = "attachment.php?albumid=" . $picture[1] . "&attachmentid=" . $picture[2]; } else { $selector['background_image'] = ''; } print_input_row($vbphrase['usercss_background_image'], $field_names['background_image'], $selector['background_image']); } if ($field_names['background_repeat']) { print_select_row($vbphrase['usercss_background_repeat'], $field_names['background_repeat'], $allowedbackgroundrepeats, $selector['background_repeat']); } } if ($have_output == false) { print_description_row($vbphrase['user_no_permission_customize_profile']); print_table_footer(); } else { print_submit_row(); echo $colorPicker; ?>