admin.php

Go to the documentation of this file.

<?php
/***************************************************************************
 This program is free software; you can redistribute it and/or
 modify it under the terms of the GNU General Public License
 as published by the Free Software Foundation; either version 2
 of the License, or (at your option) any later version.

 This program is distributed in the hope that it will be useful,
 but WITHOUT ANY WARRANTY; without even the implied warranty of
 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 GNU General Public License for more details.

 You should have received a copy of the GNU General Public License
 along with this program; if not, write to the Free Software
 Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA  02111-1307, USA.
 ***************************************************************************/

require_once( './general.php' );
require_once( './lib/admin.php' );
require_once( './lib/pager.php' );

// initialize global variables
$strTmpl_inhalt = '';
$strMessage     = '';
$strError       = '';

// get styles
$oStyle->setTemplate( 'admin.html' );

$oAdmin = new Admin( $oMysql, $oLog );

// get variables
if(isset($_POST['action']))     $action = $_POST['action'];
elseif(isset($_GET['action']))  $action = $_GET['action'];
else $action = '';


// adding a new user or modifying an existing user
if( in_array( $action, array( 'user_add', 'user_edit' ) ) )
{
    if( !$oUser->isAdmin( $action ) )
    {
        $strError = 'Du hast keine Berechtigung für diese Aktion !';
        if( $action == 'user_edit' )
        {
            if(isset($_POST['uid']))    $strAdd = $_POST['uid'];
            elseif(isset($_GET['uid'])) $strAdd = $_GET['uid'];
            $strAdd = "(ID=$strAdd)";
        }
        else
        {
            $strAdd = '';
        }
        $oLog->write( "keine Berechtigung f&uuml;r: $action $strAdd", 10 );
    }
    else
    {
        if( $action == 'user_edit' )
        {
            _UserEdit();
        }
        else
        {
            _UserAdd();
        }
    }

}
//-----------------------------------------------------------------------------
elseif( $action == 'user_list' )
{
    if( !$oUser->isAdmin( $action ) )
    {
        $strError = 'Du hast keine Berechtigung für diese Aktion !';
        $oLog->write( "keine Berechtigung f&uuml;r: $action", 10 );
    }
    else
    {
        _UserList();
    }
}
//-----------------------------------------------------------------------------
elseif( $action == 'log_stat' )
{
    if( !$oUser->isAdmin( 'log_list' ) )
    {
        $strError = 'Du hast keine Berechtigung für diese Aktion !';
        $oLog->write( "keine Berechtigung f&uuml;r: $action", 10 );
    }
    else
    {
        _LogStat();
    }
}
//-----------------------------------------------------------------------------
elseif( $action == 'log_list' && $oUser->isAdmin( 'log_list' ) )
{
    $strMessage = '';

    if( isset( $_POST['deletelist'] ) && is_array( $_POST['deletelist'] ) && $oUser->isAdmin( 'log_del' ) )
    {
        $strMessage = $oAdmin->deleteLogs( $_POST['deletelist'] ) . ' Logeintr&auml;ge gel&ouml;scht.';
    }

    // get order
    $strSort = 'actionlog_id DESC';
    if( isset( $_GET['sortby'] ) )
    {
        switch( $_GET['sortby'] )
        {
            case 'username':
                $strSort = 'name';
                break;
            case 'time':
                $strSort = 'time DESC';
                break;
            case 'ip':
                $strSort = 'ip';
                break;
            default:
                $strSort = 'actionlog_id';
        }
    }

    $strRows = '';
    // get all log entries
    $aData = $oAdmin->getLogList( $strSort, $intPagerStart, $intPagerCount );

    $intEntries = $aData['max'];
    unset($aData['max']);
    $oPager = new Pager( $intEntries, $intPagerCount, 25, 'admin.php?action=log_list&amp;' );
    $oPager->setcurrent( $intPagerStart );

    $i = 0;
    foreach( $aData AS $aRow )
    {
        $oStyle->addReplacements( array( 'LL_NAME' => $aRow['name'],
                                         'LL_FLAG' => $aRow['flag'],
                                         'LL_MODUL' => $aRow['modul'],
                                         'LL_TEXT' => $aRow['message'],
                                         'LL_CODE' => $aRow['code'],
                                         'LL_TIME' => date ( 'd.m.Y H:i', $aRow['time']),
                                         'LL_IP' => $aRow['ip'],
                                         'LL_IP_TITLE' => empty( $aRow['ip'] ) ? '' : gethostbyaddr( $aRow['ip'] ),
                                         'LL_DELETE' => '<input class="checkbox" type="checkbox" name="deletelist[]" value="'.$aRow['actionlog_id'].'" />',
                                         'LL_ROW' => $aRow['flag'] < 10 ? intval(($i++ % 2) == 0) : "Error" ) );
        $strRows .= $oStyle->get_area( 'LogListRow' );
    }
    $strHeader = "Seite {$oPager->intPage} von {$oPager->intMaxPage} / ".$oPager->link();
    $oStyle->addReplacements( array( 'ROWS'      => $strRows,
                                     'LL_HEADER' => $strHeader,
                                     'LL_FOOTER' => $strHeader ) );
    $strTmpl_inhalt = $oStyle->get_area( 'LogList' );
}
//-----------------------------------------------------------------------------
elseif( $action == 'deadlist' && $oUser->isAdmin( 'dead_list' ) )
{
    if( isset( $_POST['deleteplayers'] ) && is_array( $_POST['deleteplayers'] ) && $oUser->isAdmin( 'dead_del' ) )
    {
        $strMessage .= $oAdmin->deletePlayers( $_POST['deleteplayers'] ) . ' Spieler gel&ouml;scht.';
    }

    if( isset( $_POST['deleteguilds'] ) && is_array( $_POST['deleteguilds'] ) && $oUser->isAdmin( 'guild_del' ) )
    {
        require_once( './lib/guild.php' );
        $oGuild = new Guild( $oMysql, $oLog, $oUser );
        $intDel = 0;
        foreach( $_POST['deleteguilds'] AS $intGuild )
        {
            if( $oGuild->delete( intval( $intGuild ) ) )
            {
                $intDel++;
            }
        }
        if( $intDel != 1 )
            $strMessage .= $intDel. ' Gilden gel&ouml;scht.';
        else
            $strMessage = 'Eine Gilde gel&ouml;scht.';
    }

    // get all log entries
    $aData = $oAdmin->getDeadList();

    $i = 0;
    $strPlayerRows = '';
    foreach( $aData['players'] AS $aRow )
    {
        $oStyle->addReplacements( array( 'DL_PLAYERNAME' => $aRow['name'],
                                         'DL_DELETE_PLAYER' => '<input class="checkbox" type="checkbox" name="deleteplayers[]" value="'.$aRow['player_id'].'" />',
                                         'DL_ROW' => intval(($i++ % 2) == 0) ) );
        $strPlayerRows .= $oStyle->get_area( 'DeadPlayer' );
    }
    if( $strPlayerRows == '' )
    {
        $strPlayerRows = '<tr><td class="warning" colspan="2">kein Datensatz gefunden</td></tr>';
    }

    $i = 0;
    $strGuildRows = '';
    foreach( $aData['guilds'] AS $aRow )
    {
        $oStyle->addReplacements( array( 'DL_GUILDTAG' => $aRow['tag'],
                                         'DL_GUILDNAME' => $aRow['name'],
                                         'DL_DELETE_GUILD' => '<input class="checkbox" type="checkbox" name="deleteguilds[]" value="'.$aRow['guild_id'].'" />',
                                         'DL_ROW' => intval(($i++ % 2) == 0) ) );
        $strGuildRows .= $oStyle->get_area( 'DeadGuild' );
    }
    if( $strGuildRows == '' )
    {
        $strGuildRows = '<tr><td class="warning" colspan="2">kein Datensatz gefunden</td></tr>';
    }

    if( $strMessage != '' )
    {
        $oStyle->addReplacements( array( 'MESSAGE' => $strMessage ) );
        // format this message
        $strMessage = $oStyle->get_area( 'Message' );
        // add this message to replacements for main
        $oStyle->addReplacements( array( 'MESSAGE' => $strMessage ) );
    }
    $oStyle->addReplacements( array( 'DL_PLAYER_ROWS' => $strPlayerRows,
                                     'DL_GUILD_ROWS' => $strGuildRows ) );
    $strTmpl_inhalt = $oStyle->get_area( 'DeadList' );
}
//-----------------------------------------------------------------------------
elseif( $action == 'optimize' && $oUser->isAdmin( 'db_optimize' ) )
{
    // maybe check result of optimize later
    $oAdmin->optimizeDb();
    $strTmpl_inhalt = $oStyle->get_area( 'Optimize' );
}
//-----------------------------------------------------------------------------
elseif( $action == 'map_merge' && $oUser->isAdmin( 'db_clean' ) )
{
    if( !isset( $_GET['mergeok'] ) || !(bool)$_GET['mergeok'] )
    {
        $oStyle->addReplacements(
          array( 'MERGE_COUNT' => $oAdmin->countMapMerge() )
        );
        $strTmpl_inhalt = $oStyle->get_area( 'MergeSure' );
    }
    else
    {
        $intReturn = $oAdmin->mergeMap();
        $oStyle->addReplacements( array( 'REFRESH_MSG' => $intReturn.' Eintr&auml;ge aktualisiert. (Der Rest wurden wegen alten Daten gel&ouml;scht)',
                                         'REFRESH_URL' => 'admin.php' ) );
        echo $oStyle->get_area( 'Refresh' );
        die();
    }
}
//-----------------------------------------------------------------------------
else
{
    if( strlen( $action ) > 0 )
    {
        $strMmessge = "nicht implementiere Aktion: " . $action;
        if( $strMessage != '' )
        {
            $oStyle->addReplacements( array( 'MESSAGE' => $strMessage ) );
            // format this message
            $strMessage = $oStyle->get_area( 'Message' );
            // add this message to replacements for main
            $oStyle->addReplacements( array( 'MESSAGE' => $strMessage ) );
        }
    }
    $strAdminMenu = '';
    foreach( $aAdminMenu AS $strSubTitle => $aSubMenu )
    {
        $strSubMenu = '';
        foreach( $aSubMenu AS $aSubRow )
        {
            // check users right for this subrow
            if( !$oUser->isAdmin( $aSubRow[0] ) ) continue;
            $oStyle->addReplacements( array( 'AR_LINK' => $aSubRow[1],
                                             'AR_NAME' => $aSubRow[2],
                                             'AR_DESC' => $aSubRow[3] ) );
            $strSubMenu .= $oStyle->get_area( 'AdminRow' );
        }

        if( $strSubMenu != '' )
        {
            $oStyle->addReplacements( array( 'AS_TITLE' => $strSubTitle,
                                             'AS_ROWS' => $strSubMenu ) );
            $strAdminMenu .= $oStyle->get_area( 'AdminSub' );
        }
    }
    $oStyle->addReplacements( array( 'ADMIN_MENU' => $strAdminMenu ) );
    $strTmpl_inhalt = $oStyle->get_area( 'Admin' );
}



// if error or message is set, it will be shown. An error will get higher preference.
if( $strError != '' )
{
    $oStyle->addReplacements( array( 'MESSAGE' => $strError ) );
    $strError = $oStyle->get_area( 'Errortext' );
    $oStyle->addReplacements( array( 'MESSAGE' => $strError ) );
}
elseif( $strMessage != '' )
{
    $oStyle->addReplacements( array( 'MESSAGE' => $strMessage ) );
    $strMessage = $oStyle->get_area( 'Message' );
    $oStyle->addReplacements( array( 'MESSAGE' => $strMessage ) );
}


// call main page
output();


/* ======================================================================================
 * ======================================================================================
 * ======================================================================================
 *
 * subfunctions for the modules
 *
 * ======================================================================================
 * ======================================================================================
 * ======================================================================================
 */


function _UserAdd()
{
    // global declaration
    global $oStyle, $strMessage, $strError, $strTmpl_inhalt, $oAdmin, $oLog;

    $strName = (isset($_POST['newuser'])) ? $_POST['newuser'] : '';
    $strPass = (isset($_POST['newpass'])) ? $_POST['newpass'] : '';
    $intHomeX = (isset($_POST['newpos_x'])) ? intval( $_POST['newpos_x'] ) : 0;
    $intHomeY = (isset($_POST['newpos_y'])) ? intval( $_POST['newpos_y'] ) : 0;
    $intGroup = (isset($_POST['usergroup'])) ? intval( $_POST['usergroup'] ) : 0;

    if( $strName != '' && $strPass != '' )
    {
        if( $oAdmin->addUser( $strName, $strPass, $intHomeX, $intHomeY, $intGroup ) > 0 )
        {
            $strMessage = "Der User $strName wurde angelegt.";
            $oLog->write( 'User angelegt: '.$strName, 3 );
            $strName = '';
            $strPass = '';
            $intHomeX = 0;
            $intHomeY = 0;
        }
        else
        {
            $strError = 'Fehler beim erstellen des Users.';
            $oLog->write( 'User konnte nicht angelegt werden: '.$strName, 10 );
        }
    }

    $aGroups = $oAdmin->getGroups();
    // build group select box
    $strOptions = '';
    foreach( $aGroups AS $aGroupInfo )
    {
        $oStyle->addReplacements( array( 'OPT_ID' => $aGroupInfo['usergroup_id'],
                                         'OPT_SEL' =>$aGroupInfo['usergroup_id']==2 ? ' selected="selected"' : '',
                                         'OPT_NAME' => $aGroupInfo['name'] ) );
        $strOptions .= $oStyle->get_area( 'Option' );
    }

    $oStyle->addReplacements( array( 'SEL_NAME' => 'usergroup',
                                     'SEL_OPTIONS' => $strOptions ) );
    $strGroups = $oStyle->get_area( 'Select' );

    $oStyle->addReplacements( array( 'NEWNAME' => $strName,
                                     'NEWPASS' => $strPass,
                                     'NEWX' => $intHomeX,
                                     'NEWY' => $intHomeY,
                                     'GROUP' => $strGroups ) );
    $strTmpl_inhalt = $oStyle->get_area( 'NewUser' );
}

function _UserEdit()
{
    // global declaration
    global $oStyle, $strMessage, $strError, $strTmpl_inhalt, $oAdmin, $oUser, $oLog;

    $intUser = isset( $_REQUEST['uid'] ) ? intval( $_REQUEST['uid'] ) : 0;
    $booSubmit = isset( $_REQUEST['submit'] );

    if( $booSubmit )
    {
        $intHomeX = isset( $_POST['newpos_x'] )  ? intval( $_POST['newpos_x'] )  : 0;
        $intHomeY = isset( $_POST['newpos_y'] )  ? intval( $_POST['newpos_y'] )  : 0;
        $intGroup = isset( $_POST['usergroup'] ) ? intval( $_POST['usergroup'] ) : 0;
        $strPlayer = isset( $_POST['player'] )   ? trim( $_POST['player'] ) : '';

        if( $oAdmin->editUser( $intUser, $strPlayer, $intHomeX, $intHomeY, $intGroup ) )
        {
            $strMessage = "Der User wurde ge&auml;ndert.";
            $oLog->write( "User geaendert: uid=$intUser", 3 );
            if( $intUser == $oUser->intUserID )
            {
                $oUser->intHomeX = $intHomeX;
                $oUser->intHomeY = $intHomeY;
            }
        }
        else
        {
            $strError = 'Fehler beim &Auml;ndern des Users.';
            $oLog->write( "Fehler beim User aendern: uid=$intUser", 10 );
        }
    }

    $aUser = $oAdmin->getUser( $intUser );
    if( $aUser === false || empty( $aUser ) )
    {
        $strError = 'Der User existiert nicht.';
        return;
    }

    $aGroups = $oAdmin->getGroups();
    // build group select box
    $strOptions = '';
    foreach( $aGroups AS $aGroupInfo )
    {
        $oStyle->addReplacements( array( 'OPT_ID' => $aGroupInfo['usergroup_id'],
                                         'OPT_SEL' => $aUser['usergroup_id']==$aGroupInfo['usergroup_id'] ? ' selected="selected"' : '',
                                         'OPT_NAME' => $aGroupInfo['name'] ) );
        $strOptions .= $oStyle->get_area( 'Option' );
    }

    $oStyle->addReplacements( array( 'SEL_NAME' => 'usergroup',
                                     'SEL_OPTIONS' => $strOptions ) );
    $strGroups = $oStyle->get_area( 'Select' );

    $oStyle->addReplacements( array( 'NEWNAME' => $aUser['name'],
                                     'PLAYER' => $aUser['pname'],
                                     'NEWX' => $aUser['home_x'],
                                     'NEWY' => $aUser['home_y'],
                                     'USER_ID' => $intUser,
                                     'GROUP' => $strGroups ) );
    $strTmpl_inhalt = $oStyle->get_area( 'EditUser' );
}


function _UserList()
{
    // global declaration
    global $oStyle, $strMessage, $strError, $strTmpl_inhalt, $oUser, $oAdmin, $oLog;

    // check if admin wants to delete a user
    if( isset( $_GET['delete'] ) && $oUser->isAdmin( 'user_del' ) )
    {
        if( $oAdmin->delUser( intval( $_GET['delete'] ) ) )
        {
            $strMessage =  'User gel&ouml;scht';
            $oLog->write( 'User geloescht: uid='.$_GET['delete'], 3 );
        }
        else
        {
            $strError = 'Fehler beim l&ouml;schen';
            $oLog->write( 'Fehler beim loeschen des Users: uid='.$_GET['delete'], 10 );
        }
    }

    // get order
    $strSort = 'user_id';
    $strOrder = '';
    if( isset( $_GET['sortby'] ) )
    {
        switch( $_GET['sortby'] )
        {
            case 'username':
                $strSort = 'name';
                break;
            case 'group':
                $strSort = 'usergroup_id';
                break;
            case 'lastlogin':
                $strSort = 'lastlogin';
                break;
            default:
                $strSort = 'user_id';
        }
    }
    if( isset( $_GET['order'] ) )
    {
        $strOrder = $_GET['order'] == 'd' ? ' DESC' : ' ASC';
    }

    $strRows = '';
    // get all users
    $aData = $oAdmin->getUsers( $strSort.$strOrder );
    $aGroups = $oAdmin->getGroups( 'usergroup_id' );
    $i = 0;
    foreach( $aData AS $aRow )
    {
        $strLogin = ( $aRow['lastlogin'] == 0 ? 'never' : date( 'd.m.Y H:i',$aRow['lastlogin']) );

        // build delete link
        $oStyle->addReplacements( array( 'UL_ID' => $aRow['user_id'],
                                         'UL_NAME' => $aRow['name'] ) );
        $strDelete = $oUser->isAdmin( 'user_del' ) ? $oStyle->get_area( 'UserDelete' ) : '';
        $strName  = $oUser->isAdmin( 'user_edit' ) ? $oStyle->get_area( 'UserEdit' ) : $aRow['name'];

        $oStyle->addReplacements( array( 'UL_NAME'      => $strName,
                                         'UL_DELETE'    => $strDelete,
                                         'UL_HOMEX'     => $aRow['home_x'],
                                         'UL_HOMEY'     => $aRow['home_y'],
                                         'UL_LASTX'     => $aRow['last_x'],
                                         'UL_LASTY'     => $aRow['last_y'],
                                         'UL_LASTLOGIN' => $strLogin,
                                         'UL_GROUP'     => $aGroups[$aRow['usergroup_id']]['name'],
                                         'UL_ROW'       => intval(($i++ % 2) == 0) ) );
        $strRows .= $oStyle->get_area( 'UserListRow' );
    }

    $oStyle->addReplacements( array( 'ROWS' => $strRows,
                                     'ORDER_ID' => ( $strSort=='user_id' && $strOrder==' ASC' ) ? 'd' : 'a',
                                     'ORDER_NAME' => ( $strSort=='name' && $strOrder==' ASC' ) ? 'd' : 'a',
                                     'ORDER_GROUP' => ( $strSort=='usergroup_id' && $strOrder==' ASC' ) ? 'd' : 'a',
                                     'ORDER_LOGIN' => ( $strSort=='lastlogin' && $strOrder==' DESC' ) ? 'a' : 'd',
                                     'UL_ADD' => ( $oUser->isAdmin( 'user_add' ) ? $oStyle->get_area( 'UserListAdd' ) : '' ) ) );
    $strTmpl_inhalt = $oStyle->get_area( 'UserList' );
}


function _LogStat()
{
    // global declaration
    global $oStyle, $strMessage, $strError, $strTmpl_inhalt, $oUser, $oAdmin, $intPagerStart, $intPagerCount;

    // local variables
    $strSort   = 'aktionen DESC';
    $strSeen   = '';
    $strRows   = '';
    $strHeader = '';

    // sort order
    if( isset( $_GET['sortby'] ) )
    {
        switch( $_GET['sortby'] )
        {
            case 'name':
                $strSort = $_GET['sortby'];
                break;
            case 'lastseen':
                $strSort = $_GET['sortby']. " DESC";
                break;
            case 'aktionen':
                $strSort = $_GET['sortby']. " DESC";
                break;
        }
    }

    // get entries
    $aData = $oAdmin->getLogStat( $strSort, $intPagerStart, $intPagerCount );

    $intEntries = $aData['max'];
    unset($aData['max']);
    $oPager = new Pager( $intEntries, $intPagerCount, 25, 'admin.php?action=log_stat&amp;' );
    $oPager->setcurrent( $intPagerStart );

    // format entries
    $i = 0;
    foreach( $aData AS $aRow )
    {
        $strSeen = ($aRow['lastseen'] == 0 ? "" : round((( time() - $aRow['lastseen'] ) / 86400 ),0) );

        $oStyle->addReplacements( array( 'LS_SEEN' => $strSeen,
                                         'LS_LASTLOGIN' => ( $aRow['lastseen'] == 0 ? 'never' : date ( 'd.m.Y H:i',$aRow['lastseen']) ),
                                         'LS_ACTION' => $aRow['aktionen'],
                                         'LS_NAME' => $aRow['name'],
                                         'LS_ROW' => intval(($i++ % 2) == 0) ) );
        $strRows .= $oStyle->get_area( 'LogStatRow' );
    }
    if( $oPager->intMaxPage > 1 )
    {
        $strHeader = "Seite {$oPager->intPage} von {$oPager->intMaxPage} / ".$oPager->link();
    }
    $oStyle->addReplacements( array( 'ROWS'      => $strRows,
                                     'LL_HEADER' => $strHeader,
                                     'LL_FOOTER' => $strHeader ) );
    // generate template
    $strTmpl_inhalt = $oStyle->get_area( 'LogStat' );
}

---