general.php

Go to the documentation of this file.

<?php
/***************************************************************************
 This program is free software; you can redistribute it and/or
 modify it under the terms of the GNU General Public License
 as published by the Free Software Foundation; either version 2
 of the License, or (at your option) any later version.

 This program is distributed in the hope that it will be useful,
 but WITHOUT ANY WARRANTY; without even the implied warranty of
 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 GNU General Public License for more details.

 You should have received a copy of the GNU General Public License
 along with this program; if not, write to the Free Software
 Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA  02111-1307, USA.
 ***************************************************************************/

ini_set('display_errors', 1);
error_reporting(E_ALL);

// for php < 4.3
if( !function_exists( 'file_get_contents' ) )
{
    function file_get_contents( $file, $var )
    {
        $aFile = @file( $file );
        if( $aFile === false ) return false;
        return implode( '', $aFile );
    }
}

// for php < 4.1.0
if( !is_array( $_POST ) && is_array( $HTTP_POST_VARS ) )
{
    $_POST =& $HTTP_POST_VARS;
}
if( !is_array( $_GET ) && is_array( $HTTP_GET_VARS ) )
{
    $_GET =& $HTTP_GET_VARS;
}
if( !is_array( $_COOKIE ) && is_array( $HTTP_COOKIE_VARS ) )
{
    $_COOKIE =& $HTTP_COOKIE_VARS;
}

// if magic_quotes are off, do it yourself
if( !get_magic_quotes_gpc() )
{

    function addslashes_array( &$array )
    {
        reset( $array );
        while( list( $key, $val ) = each( $array ) )
        {
            if( is_string( $val ) ) $array[$key] = addslashes( $val );
            elseif( is_array( $val ) ) $array[$key] = addslashes_array( $val );
        }
        return $array;
    }

    $_REQUEST = addslashes_array( $_REQUEST );
    $_POST = addslashes_array( $_POST );
    $_GET = addslashes_array( $_GET );
    $_COOKIE = addslashes_array( $_COOKIE );
}

function output()
{
    global $oStyle, $oUser, $strTmpl_inhalt, $x, $y, $booMapUseLastPos;

    // create navi

    // user is logged in
    if( $oUser->booLoggedIn )
    {
        $intMap_x = $oUser->intLastX;
        $intMap_y = $oUser->intLastY;
        $strMap_url  = "?x=$intMap_x&amp;y=$intMap_y";
        $strHome_url = "?x=".$oUser->intHomeX."&amp;y=".$oUser->intHomeY;
    }
    else
    {
        $strMap_url  = '';
        $strHome_url = '';
    }

    $oStyle->setTemplate( 'navigation.html' );

    $strMenuExtra = '';

    if( $oUser->isAdmin( 'search' ) )
    {
        $strMenuExtra .=  $oStyle->get_area( 'SearchNav' );
    }
    if( !empty( $booMapUseLastPos ) && $oUser->booLoggedIn )
    {
        $oStyle->addReplacements( array( 'MAP_URL' => $strHome_url ) );
        $strHome = $oStyle->get_area( 'HomeNav' );
    }
    if( $oUser->isAdmin( 'admin_menu' ) )
    {
        $strMenuExtra .=  $oStyle->get_area( 'AdminNav' );
    }

    if( !empty ( $booMapUseLastPos ) )
    {
        $oStyle->addReplacements( array( 'MAP_URL' => $strHome_url,
                                         'HOME_URL' => $strMap_url,
                                         'MENU_EXTRA' => $strMenuExtra,
                                         'HOME' => $strHome,
                                         'X' => $x,
                                         'Y' => $y ));
    }
    else
    {
        $oStyle->addReplacements( array( 'MAP_URL' => $strMap_url,
                                         'HOME_URL' => $strHome_url,
                                         'MENU_EXTRA' => $strMenuExtra,
                                         'X' => $x,
                                         'Y' => $y ));
    }

    $strTmplNav = $oStyle->get_area( 'Navigation' );

    if( empty( $GLOBALS['booMap'] ) )
    {
        $oStyle->setTemplate( 'main.html' );
        $oStyle->addReplacements( array( 'TMPL_NAV' => $strTmplNav, 'TMPL_MAIN' => $strTmpl_inhalt ));
        $oStyle->addReplacements( array( 'MAIN_TABLE' => $oStyle->get_area( 'MainTable' ) ) );
    }
    else
    {
        $oStyle->setTemplate( 'main.html' );
        $oStyle->addReplacements( array( 'TMPL_NAV' => $strTmplNav, 'MAIN_TABLE' => $strTmpl_inhalt ));
    }
    echo trim( $oStyle->get_area( 'Main' ) );
    /*
    $debug = debug_backtrace();
    echo '<pre>';
    echo $oMysql->intQueryCount.' Queries<br>';
    print_r($oStyle->getReplacements());
    print_r(get_included_files());
    */
    die();
}

// load configs and needed classes
require_once( './conf/config.php' );
require_once( './conf/adminconfig.php' );
require_once( './lib/mysql.php' );
require_once( './lib/user.php' );
require_once( './lib/template.php' );
require_once( './lib/logdb.php' );

$oStyle = new Template( $strTmplPath );
$oStyle->addReplacements( array( 'TITLE' => $strTmplTitle,
                                 'REFRESH' => $intTmplRefresh,
                                 'PHPSELF' => $_SERVER['PHP_SELF'],
                                 'LOGIN_URL' => $_SERVER['PHP_SELF'].'?action=login',
                                 'LOGOUT_URL' => $_SERVER['PHP_SELF'].'?action=logout',
                                 'SERVER_CHANGE' => $_SERVER['PHP_SELF'].'?action=server',
                                 'SERVERNAME' => $strServerName,
                                 'SERVERID' => $intServerId,
                                 'TEMPLATES' => $oStyle->getPath(),
                                 'STYLE' => &$strStyle,
                                 'VERSION' => $strPhpMapVersion
                                ) );

// Read Login Design & Style
$oStyle->setTemplate( 'login.html' );
// split default areas, which are used by other scripts
$oStyle->split_area( 'Refresh' );
$oStyle->split_area( 'Message' );
$oStyle->split_area( 'Errortext' );
$oStyle->split_area( 'Option' );
$oStyle->split_area( 'Select' );
$oStyle->split_area( 'NoDbMsg' );

$oMysql = new Mysql( $strMysqlHost, $strMysqlUser, $strMysqlPwd, $strMysqlDb );
$oMysql->setPrefix( $strMysqlPrefix );
unset( $strMysqlHost, $strMysqlUser, $strMysqlPwd, $strMysqlDb, $strMysqlPrefix ); // aren't used anymore

// Diplo Color Replacements
$aReplacements = array();
foreach( $aDiploFgColor AS $intKey => $strColor )
{
    $aReplacements['DIPLO_FG_'.$intKey] = $strColor;
}
foreach( $aDiploBgColor AS $intKey => $strColor )
{
    $aReplacements['DIPLO_BG_'.$intKey] = $strColor;
}
$oStyle->addReplacements( $aReplacements );

// user object
$oUser = new User( $oMysql, $oLog, $aAdmin, $aAdminArrays, $strCookiePrefix );

// logfile object
$oLog = new LogDB( $oMysql, $oUser );

// check if cookies are set
$strArea = $oUser->checklogin() ? 'UserPanel' : 'LoginForm';

// Login
if( isset( $_GET['action'] ) && $_GET['action']=='login' )
{
    if( $oUser->login( $_POST['f_name'], $_POST['f_pass'] ) )
    {
        $strTmplMessage = 'Sie sind jetzt Angemeldet!';
    $oLog->write( 'Login ok', 3 );
        $strArea = 'Refresh';
    }
    else
    {
        $strTmplMessage = 'User existiert nicht oder falsches Passwort!';
    $oLog->write( 'Login failed for: "'.$_POST['f_name'].'"', 3 );
        $strArea = 'Refresh';
    }
}
// Logout
elseif( isset( $_GET['action'] ) && $_GET['action']=='logout' )
{
    $oUser->logout();
    $strTmplMessage = 'Sie sind jetzt Abgemeldet!';
    $strArea = 'Refresh';
}

if( $strArea == 'Refresh' )
{
    $oStyle->addReplacements( array( 'REFRESH_URL' => $_SERVER['PHP_SELF'], 'REFRESH_MSG' => $strTmplMessage ) );
    echo trim( $oStyle->get_area( 'Refresh' ) );
    die();
}

$oStyle->addReplacements( array( 'USERNAME' => $oUser->strUser ) );
$strLoginArea = $oStyle->get_area( $strArea );
$oStyle->addReplacements( array( 'LOGIN' => $strLoginArea ) );

// settings
if( isset( $_GET['x'] ) && is_numeric( $_GET['x'] ) && isset( $_GET['y'] ) && is_numeric( $_GET['y'] ) )
{
    // no negative values, no values bigger than the map
    $x = max( 1, min( $_GET['x'], $intMapSize ) );
    $y = max( 1, min( $_GET['y'], $intMapSize ) );
    // write back for other classes
    $_GET['x'] = $x;
    $_GET['y'] = $y;

    // save current position as last used
    $booUpdate = true;
}
else
{
    $x = $oUser->intLastX;
    $y = $oUser->intLastY;
    $booUpdate = false;
}

$intZoom = ( isset( $_GET['zoom'] ) && is_numeric( $_GET['zoom'] ) ) ? $_GET['zoom'] : $oUser->intZoom;

if( $booUpdate && $oUser->booLoggedIn )
{
    $oMysql->query( "UPDATE ".$oMysql->tblUser." SET last_x=$x, last_y=$y, zoom_last=$intZoom WHERE user_id='".$oUser->intUserID."';" );
    $oUser->intLastX = $x;
    $oUser->intLastY = $y;
    $oUser->intZoom = $intZoom;
}


if( $oUser->isAdmin( 'banned' ) )
{
    // user is banned
    $strTmpl_inhalt = '<br /><b>Der Account ist gesperrt.</b>';
    output();
}

if( !$oUser->booLoggedIn )
{
    $strTmpl_inhalt = '<br><div align="center">Bitte logge dich erst mal ein :-)</div>';
    output();
}

// get some variables
if(isset($_POST['p_start']))     $intPagerStart = intval( $_POST['p_start'] );
elseif(isset($_GET['p_start']))  $intPagerStart = intval( $_GET['p_start'] );
else $intPagerStart = 0;

if(isset($_POST['p_count']))     $intPagerCount = intval( $_POST['p_count'] );
elseif(isset($_GET['p_count']))  $intPagerCount = intval( $_GET['p_count'] );
else $intPagerCount = 25;


// Update string for DB fields
// if a user wants a smaller Database, he can set these to empty strings and delete the fields in the db
$strUpdateString  = ", `last_update`='".time()."', `last_update_by`='".$oUser->intUserID."'";
$strCreatedString = ", `created`='".time()."', `created_by`='".$oUser->intUserID."'";
$strUpdateFields  = ',last_update,last_update_by';
$strUpdateValues  = ','.time().','.$oUser->intUserID;

---