Load.php 123 KB

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485868788899091929394959697989910010110210310410510610710810911011111211311411511611711811912012112212312412512612712812913013113213313413513613713813914014114214314414514614714814915015115215315415515615715815916016116216316416516616716816917017117217317417517617717817918018118218318418518618718818919019119219319419519619719819920020120220320420520620720820921021121221321421521621721821922022122222322422522622722822923023123223323423523623723823924024124224324424524624724824925025125225325425525625725825926026126226326426526626726826927027127227327427527627727827928028128228328428528628728828929029129229329429529629729829930030130230330430530630730830931031131231331431531631731831932032132232332432532632732832933033133233333433533633733833934034134234334434534634734834935035135235335435535635735835936036136236336436536636736836937037137237337437537637737837938038138238338438538638738838939039139239339439539639739839940040140240340440540640740840941041141241341441541641741841942042142242342442542642742842943043143243343443543643743843944044144244344444544644744844945045145245345445545645745845946046146246346446546646746846947047147247347447547647747847948048148248348448548648748848949049149249349449549649749849950050150250350450550650750850951051151251351451551651751851952052152252352452552652752852953053153253353453553653753853954054154254354454554654754854955055155255355455555655755855956056156256356456556656756856957057157257357457557657757857958058158258358458558658758858959059159259359459559659759859960060160260360460560660760860961061161261361461561661761861962062162262362462562662762862963063163263363463563663763863964064164264364464564664764864965065165265365465565665765865966066166266366466566666766866967067167267367467567667767867968068168268368468568668768868969069169269369469569669769869970070170270370470570670770870971071171271371471571671771871972072172272372472572672772872973073173273373473573673773873974074174274374474574674774874975075175275375475575675775875976076176276376476576676776876977077177277377477577677777877978078178278378478578678778878979079179279379479579679779879980080180280380480580680780880981081181281381481581681781881982082182282382482582682782882983083183283383483583683783883984084184284384484584684784884985085185285385485585685785885986086186286386486586686786886987087187287387487587687787887988088188288388488588688788888989089189289389489589689789889990090190290390490590690790890991091191291391491591691791891992092192292392492592692792892993093193293393493593693793893994094194294394494594694794894995095195295395495595695795895996096196296396496596696796896997097197297397497597697797897998098198298398498598698798898999099199299399499599699799899910001001100210031004100510061007100810091010101110121013101410151016101710181019102010211022102310241025102610271028102910301031103210331034103510361037103810391040104110421043104410451046104710481049105010511052105310541055105610571058105910601061106210631064106510661067106810691070107110721073107410751076107710781079108010811082108310841085108610871088108910901091109210931094109510961097109810991100110111021103110411051106110711081109111011111112111311141115111611171118111911201121112211231124112511261127112811291130113111321133113411351136113711381139114011411142114311441145114611471148114911501151115211531154115511561157115811591160116111621163116411651166116711681169117011711172117311741175117611771178117911801181118211831184118511861187118811891190119111921193119411951196119711981199120012011202120312041205120612071208120912101211121212131214121512161217121812191220122112221223122412251226122712281229123012311232123312341235123612371238123912401241124212431244124512461247124812491250125112521253125412551256125712581259126012611262126312641265126612671268126912701271127212731274127512761277127812791280128112821283128412851286128712881289129012911292129312941295129612971298129913001301130213031304130513061307130813091310131113121313131413151316131713181319132013211322132313241325132613271328132913301331133213331334133513361337133813391340134113421343134413451346134713481349135013511352135313541355135613571358135913601361136213631364136513661367136813691370137113721373137413751376137713781379138013811382138313841385138613871388138913901391139213931394139513961397139813991400140114021403140414051406140714081409141014111412141314141415141614171418141914201421142214231424142514261427142814291430143114321433143414351436143714381439144014411442144314441445144614471448144914501451145214531454145514561457145814591460146114621463146414651466146714681469147014711472147314741475147614771478147914801481148214831484148514861487148814891490149114921493149414951496149714981499150015011502150315041505150615071508150915101511151215131514151515161517151815191520152115221523152415251526152715281529153015311532153315341535153615371538153915401541154215431544154515461547154815491550155115521553155415551556155715581559156015611562156315641565156615671568156915701571157215731574157515761577157815791580158115821583158415851586158715881589159015911592159315941595159615971598159916001601160216031604160516061607160816091610161116121613161416151616161716181619162016211622162316241625162616271628162916301631163216331634163516361637163816391640164116421643164416451646164716481649165016511652165316541655165616571658165916601661166216631664166516661667166816691670167116721673167416751676167716781679168016811682168316841685168616871688168916901691169216931694169516961697169816991700170117021703170417051706170717081709171017111712171317141715171617171718171917201721172217231724172517261727172817291730173117321733173417351736173717381739174017411742174317441745174617471748174917501751175217531754175517561757175817591760176117621763176417651766176717681769177017711772177317741775177617771778177917801781178217831784178517861787178817891790179117921793179417951796179717981799180018011802180318041805180618071808180918101811181218131814181518161817181818191820182118221823182418251826182718281829183018311832183318341835183618371838183918401841184218431844184518461847184818491850185118521853185418551856185718581859186018611862186318641865186618671868186918701871187218731874187518761877187818791880188118821883188418851886188718881889189018911892189318941895189618971898189919001901190219031904190519061907190819091910191119121913191419151916191719181919192019211922192319241925192619271928192919301931193219331934193519361937193819391940194119421943194419451946194719481949195019511952195319541955195619571958195919601961196219631964196519661967196819691970197119721973197419751976197719781979198019811982198319841985198619871988198919901991199219931994199519961997199819992000200120022003200420052006200720082009201020112012201320142015201620172018201920202021202220232024202520262027202820292030203120322033203420352036203720382039204020412042204320442045204620472048204920502051205220532054205520562057205820592060206120622063206420652066206720682069207020712072207320742075207620772078207920802081208220832084208520862087208820892090209120922093209420952096209720982099210021012102210321042105210621072108210921102111211221132114211521162117211821192120212121222123212421252126212721282129213021312132213321342135213621372138213921402141214221432144214521462147214821492150215121522153215421552156215721582159216021612162216321642165216621672168216921702171217221732174217521762177217821792180218121822183218421852186218721882189219021912192219321942195219621972198219922002201220222032204220522062207220822092210221122122213221422152216221722182219222022212222222322242225222622272228222922302231223222332234223522362237223822392240224122422243224422452246224722482249225022512252225322542255225622572258225922602261226222632264226522662267226822692270227122722273227422752276227722782279228022812282228322842285228622872288228922902291229222932294229522962297229822992300230123022303230423052306230723082309231023112312231323142315231623172318231923202321232223232324232523262327232823292330233123322333233423352336233723382339234023412342234323442345234623472348234923502351235223532354235523562357235823592360236123622363236423652366236723682369237023712372237323742375237623772378237923802381238223832384238523862387238823892390239123922393239423952396239723982399240024012402240324042405240624072408240924102411241224132414241524162417241824192420242124222423242424252426242724282429243024312432243324342435243624372438243924402441244224432444244524462447244824492450245124522453245424552456245724582459246024612462246324642465246624672468246924702471247224732474247524762477247824792480248124822483248424852486248724882489249024912492249324942495249624972498249925002501250225032504250525062507250825092510251125122513251425152516251725182519252025212522252325242525252625272528252925302531253225332534253525362537253825392540254125422543254425452546254725482549255025512552255325542555255625572558255925602561256225632564256525662567256825692570257125722573257425752576257725782579258025812582258325842585258625872588258925902591259225932594259525962597259825992600260126022603260426052606260726082609261026112612261326142615261626172618261926202621262226232624262526262627262826292630263126322633263426352636263726382639264026412642264326442645264626472648264926502651265226532654265526562657265826592660266126622663266426652666266726682669267026712672267326742675267626772678267926802681268226832684268526862687268826892690269126922693269426952696269726982699270027012702270327042705270627072708270927102711271227132714271527162717271827192720272127222723272427252726272727282729273027312732273327342735273627372738273927402741274227432744274527462747274827492750275127522753275427552756275727582759276027612762276327642765276627672768276927702771277227732774277527762777277827792780278127822783278427852786278727882789279027912792279327942795279627972798279928002801280228032804280528062807280828092810281128122813281428152816281728182819282028212822282328242825282628272828282928302831283228332834283528362837283828392840284128422843284428452846284728482849285028512852285328542855285628572858285928602861286228632864286528662867286828692870287128722873287428752876287728782879288028812882288328842885288628872888288928902891289228932894289528962897289828992900290129022903290429052906290729082909291029112912291329142915291629172918291929202921292229232924292529262927292829292930293129322933293429352936293729382939294029412942294329442945294629472948294929502951295229532954295529562957295829592960296129622963296429652966296729682969297029712972297329742975297629772978297929802981298229832984298529862987298829892990299129922993299429952996299729982999300030013002300330043005300630073008
  1. <?php
  2. /**
  3. * This file has the hefty job of loading information for the forum.
  4. *
  5. * Simple Machines Forum (SMF)
  6. *
  7. * @package SMF
  8. * @author Simple Machines http://www.simplemachines.org
  9. * @copyright 2013 Simple Machines and individual contributors
  10. * @license http://www.simplemachines.org/about/smf/license.php BSD
  11. *
  12. * @version 2.1 Alpha 1
  13. */
  14. if (!defined('SMF'))
  15. die('No direct access...');
  16. /**
  17. * Load the $modSettings array.
  18. *
  19. * @todo okay question of the day: why a function for loading settings is called reloadSettings()
  20. *
  21. */
  22. function reloadSettings()
  23. {
  24. global $modSettings, $boarddir, $smcFunc, $txt, $db_character_set, $sourcedir;
  25. // Most database systems have not set UTF-8 as their default input charset.
  26. if (!empty($db_character_set))
  27. $smcFunc['db_query']('set_character_set', '
  28. SET NAMES ' . $db_character_set,
  29. array(
  30. )
  31. );
  32. // Try to load it from the cache first; it'll never get cached if the setting is off.
  33. if (($modSettings = cache_get_data('modSettings', 90)) == null)
  34. {
  35. $request = $smcFunc['db_query']('', '
  36. SELECT variable, value
  37. FROM {db_prefix}settings',
  38. array(
  39. )
  40. );
  41. $modSettings = array();
  42. if (!$request)
  43. display_db_error();
  44. while ($row = $smcFunc['db_fetch_row']($request))
  45. $modSettings[$row[0]] = $row[1];
  46. $smcFunc['db_free_result']($request);
  47. // Do a few things to protect against missing settings or settings with invalid values...
  48. if (empty($modSettings['defaultMaxTopics']) || $modSettings['defaultMaxTopics'] <= 0 || $modSettings['defaultMaxTopics'] > 999)
  49. $modSettings['defaultMaxTopics'] = 20;
  50. if (empty($modSettings['defaultMaxMessages']) || $modSettings['defaultMaxMessages'] <= 0 || $modSettings['defaultMaxMessages'] > 999)
  51. $modSettings['defaultMaxMessages'] = 15;
  52. if (empty($modSettings['defaultMaxMembers']) || $modSettings['defaultMaxMembers'] <= 0 || $modSettings['defaultMaxMembers'] > 999)
  53. $modSettings['defaultMaxMembers'] = 30;
  54. if (!empty($modSettings['cache_enable']))
  55. cache_put_data('modSettings', $modSettings, 90);
  56. }
  57. // UTF-8 ?
  58. $utf8 = (empty($modSettings['global_character_set']) ? $txt['lang_character_set'] : $modSettings['global_character_set']) === 'UTF-8';
  59. // Set a list of common functions.
  60. $ent_list = empty($modSettings['disableEntityCheck']) ? '&(#\d{1,7}|quot|amp|lt|gt|nbsp);' : '&(#021|quot|amp|lt|gt|nbsp);';
  61. $ent_check = empty($modSettings['disableEntityCheck']) ? array('preg_replace_callback(\'~(&#(\d{1,7}|x[0-9a-fA-F]{1,6});)~\', \'entity_fix__callback\', ', ')') : array('', '');
  62. // Preg_replace space characters depend on the character set in use
  63. $space_chars = $utf8 ? '\x{A0}\x{AD}\x{2000}-\x{200F}\x{201F}\x{202F}\x{3000}\x{FEFF}' : '\x00-\x08\x0B\x0C\x0E-\x19\xA0';
  64. // global array of anonymous helper functions, used mosly to properly handle multi byte strings
  65. $smcFunc += array(
  66. 'entity_fix' => create_function('$string', '
  67. $num = $string[0] === \'x\' ? hexdec(substr($string, 1)) : (int) $string;
  68. return $num < 0x20 || $num > 0x10FFFF || ($num >= 0xD800 && $num <= 0xDFFF) || $num === 0x202E || $num === 0x202D ? \'\' : \'&#\' . $num . \';\';'),
  69. 'htmlspecialchars' => create_function('$string, $quote_style = ENT_COMPAT, $charset = \'ISO-8859-1\'', '
  70. global $smcFunc;
  71. return ' . strtr($ent_check[0], array('&' => '&amp;')) . 'htmlspecialchars($string, $quote_style, ' . ($utf8 ? '\'UTF-8\'' : '$charset') . ')' . $ent_check[1] . ';'),
  72. 'htmltrim' => create_function('$string', '
  73. global $smcFunc;
  74. return preg_replace(\'~^(?:[ \t\n\r\x0B\x00' . $space_chars . ']|&nbsp;)+|(?:[ \t\n\r\x0B\x00' . $space_chars . ']|&nbsp;)+$~' . ($utf8 ? 'u' : '') . '\', \'\', ' . implode('$string', $ent_check) . ');'),
  75. 'strlen' => create_function('$string', '
  76. global $smcFunc;
  77. return strlen(preg_replace(\'~' . $ent_list . ($utf8 ? '|.~u' : '~') . '\', \'_\', ' . implode('$string', $ent_check) . '));'),
  78. 'strpos' => create_function('$haystack, $needle, $offset = 0', '
  79. global $smcFunc;
  80. $haystack_arr = preg_split(\'~(&#' . (empty($modSettings['disableEntityCheck']) ? '\d{1,7}' : '021') . ';|&quot;|&amp;|&lt;|&gt;|&nbsp;|.)~' . ($utf8 ? 'u' : '') . '\', ' . implode('$haystack', $ent_check) . ', -1, PREG_SPLIT_DELIM_CAPTURE | PREG_SPLIT_NO_EMPTY);
  81. $haystack_size = count($haystack_arr);
  82. if (strlen($needle) === 1)
  83. {
  84. $result = array_search($needle, array_slice($haystack_arr, $offset));
  85. return is_int($result) ? $result + $offset : false;
  86. }
  87. else
  88. {
  89. $needle_arr = preg_split(\'~(&#' . (empty($modSettings['disableEntityCheck']) ? '\d{1,7}' : '021') . ';|&quot;|&amp;|&lt;|&gt;|&nbsp;|.)~' . ($utf8 ? 'u' : '') . '\', ' . implode('$needle', $ent_check) . ', -1, PREG_SPLIT_DELIM_CAPTURE | PREG_SPLIT_NO_EMPTY);
  90. $needle_size = count($needle_arr);
  91. $result = array_search($needle_arr[0], array_slice($haystack_arr, $offset));
  92. while ((int) $result === $result)
  93. {
  94. $offset += $result;
  95. if (array_slice($haystack_arr, $offset, $needle_size) === $needle_arr)
  96. return $offset;
  97. $result = array_search($needle_arr[0], array_slice($haystack_arr, ++$offset));
  98. }
  99. return false;
  100. }'),
  101. 'substr' => create_function('$string, $start, $length = null', '
  102. global $smcFunc;
  103. $ent_arr = preg_split(\'~(&#' . (empty($modSettings['disableEntityCheck']) ? '\d{1,7}' : '021') . ';|&quot;|&amp;|&lt;|&gt;|&nbsp;|.)~' . ($utf8 ? 'u' : '') . '\', ' . implode('$string', $ent_check) . ', -1, PREG_SPLIT_DELIM_CAPTURE | PREG_SPLIT_NO_EMPTY);
  104. return $length === null ? implode(\'\', array_slice($ent_arr, $start)) : implode(\'\', array_slice($ent_arr, $start, $length));'),
  105. 'strtolower' => $utf8 ? (function_exists('mb_strtolower') ? create_function('$string', '
  106. return mb_strtolower($string, \'UTF-8\');') : create_function('$string', '
  107. global $sourcedir;
  108. require_once($sourcedir . \'/Subs-Charset.php\');
  109. return utf8_strtolower($string);')) : 'strtolower',
  110. 'strtoupper' => $utf8 ? (function_exists('mb_strtoupper') ? create_function('$string', '
  111. return mb_strtoupper($string, \'UTF-8\');') : create_function('$string', '
  112. global $sourcedir;
  113. require_once($sourcedir . \'/Subs-Charset.php\');
  114. return utf8_strtoupper($string);')) : 'strtoupper',
  115. 'truncate' => create_function('$string, $length', (empty($modSettings['disableEntityCheck']) ? '
  116. global $smcFunc;
  117. $string = ' . implode('$string', $ent_check) . ';' : '') . '
  118. preg_match(\'~^(' . $ent_list . '|.){\' . $smcFunc[\'strlen\'](substr($string, 0, $length)) . \'}~'. ($utf8 ? 'u' : '') . '\', $string, $matches);
  119. $string = $matches[0];
  120. while (strlen($string) > $length)
  121. $string = preg_replace(\'~(?:' . $ent_list . '|.)$~'. ($utf8 ? 'u' : '') . '\', \'\', $string);
  122. return $string;'),
  123. 'ucfirst' => $utf8 ? create_function('$string', '
  124. global $smcFunc;
  125. return $smcFunc[\'strtoupper\']($smcFunc[\'substr\']($string, 0, 1)) . $smcFunc[\'substr\']($string, 1);') : 'ucfirst',
  126. 'ucwords' => $utf8 ? create_function('$string', '
  127. global $smcFunc;
  128. $words = preg_split(\'~([\s\r\n\t]+)~\', $string, -1, PREG_SPLIT_DELIM_CAPTURE);
  129. for ($i = 0, $n = count($words); $i < $n; $i += 2)
  130. $words[$i] = $smcFunc[\'ucfirst\']($words[$i]);
  131. return implode(\'\', $words);') : 'ucwords',
  132. );
  133. // Setting the timezone is a requirement for some functions in PHP >= 5.1.
  134. if (isset($modSettings['default_timezone']) && function_exists('date_default_timezone_set'))
  135. date_default_timezone_set($modSettings['default_timezone']);
  136. // Check the load averages?
  137. if (!empty($modSettings['loadavg_enable']))
  138. {
  139. if (($modSettings['load_average'] = cache_get_data('loadavg', 90)) == null)
  140. {
  141. $modSettings['load_average'] = @file_get_contents('/proc/loadavg');
  142. if (!empty($modSettings['load_average']) && preg_match('~^([^ ]+?) ([^ ]+?) ([^ ]+)~', $modSettings['load_average'], $matches) != 0)
  143. $modSettings['load_average'] = (float) $matches[1];
  144. elseif (($modSettings['load_average'] = @`uptime`) != null && preg_match('~load average[s]?: (\d+\.\d+), (\d+\.\d+), (\d+\.\d+)~i', $modSettings['load_average'], $matches) != 0)
  145. $modSettings['load_average'] = (float) $matches[1];
  146. else
  147. unset($modSettings['load_average']);
  148. if (!empty($modSettings['load_average']))
  149. cache_put_data('loadavg', $modSettings['load_average'], 90);
  150. }
  151. if (!empty($modSettings['load_average']))
  152. call_integration_hook('integrate_load_average', array($modSettings['load_average']));
  153. if (!empty($modSettings['loadavg_forum']) && !empty($modSettings['load_average']) && $modSettings['load_average'] >= $modSettings['loadavg_forum'])
  154. display_loadavg_error();
  155. }
  156. // Is post moderation alive and well? Everywhere else assumes this has been defined, so let's make sure it is.
  157. $modSettings['postmod_active'] = !empty($modSettings['postmod_active']);
  158. // Here to justify the name of this function. :P
  159. // It should be added to the install and upgrade scripts.
  160. // But since the convertors need to be updated also. This is easier.
  161. if (empty($modSettings['currentAttachmentUploadDir']))
  162. {
  163. updateSettings(array(
  164. 'attachmentUploadDir' => serialize(array(1 => $modSettings['attachmentUploadDir'])),
  165. 'currentAttachmentUploadDir' => 1,
  166. ));
  167. }
  168. // Integration is cool.
  169. if (defined('SMF_INTEGRATION_SETTINGS'))
  170. {
  171. $integration_settings = unserialize(SMF_INTEGRATION_SETTINGS);
  172. foreach ($integration_settings as $hook => $function)
  173. add_integration_function($hook, $function, '', false);
  174. }
  175. // Any files to pre include?
  176. if (!empty($modSettings['integrate_pre_include']))
  177. {
  178. $pre_includes = explode(',', $modSettings['integrate_pre_include']);
  179. foreach ($pre_includes as $include)
  180. {
  181. $include = strtr(trim($include), array('$boarddir' => $boarddir, '$sourcedir' => $sourcedir));
  182. if (file_exists($include))
  183. require_once($include);
  184. }
  185. }
  186. // Call pre load integration functions.
  187. call_integration_hook('integrate_pre_load');
  188. }
  189. /**
  190. * Load all the important user information.
  191. * What it does:
  192. * - sets up the $user_info array
  193. * - assigns $user_info['query_wanna_see_board'] for what boards the user can see.
  194. * - first checks for cookie or integration validation.
  195. * - uses the current session if no integration function or cookie is found.
  196. * - checks password length, if member is activated and the login span isn't over.
  197. * - if validation fails for the user, $id_member is set to 0.
  198. * - updates the last visit time when needed.
  199. */
  200. function loadUserSettings()
  201. {
  202. global $modSettings, $user_settings, $sourcedir, $smcFunc;
  203. global $cookiename, $user_info, $language, $context;
  204. // Check first the integration, then the cookie, and last the session.
  205. if (count($integration_ids = call_integration_hook('integrate_verify_user')) > 0)
  206. {
  207. $id_member = 0;
  208. foreach ($integration_ids as $integration_id)
  209. {
  210. $integration_id = (int) $integration_id;
  211. if ($integration_id > 0)
  212. {
  213. $id_member = $integration_id;
  214. $already_verified = true;
  215. break;
  216. }
  217. }
  218. }
  219. else
  220. $id_member = 0;
  221. if (empty($id_member) && isset($_COOKIE[$cookiename]))
  222. {
  223. // Fix a security hole in PHP 4.3.9 and below...
  224. if (preg_match('~^a:[34]:\{i:0;i:\d{1,7};i:1;s:(0|40):"([a-fA-F0-9]{40})?";i:2;[id]:\d{1,14};(i:3;i:\d;)?\}$~i', $_COOKIE[$cookiename]) == 1)
  225. {
  226. list ($id_member, $password) = @unserialize($_COOKIE[$cookiename]);
  227. $id_member = !empty($id_member) && strlen($password) > 0 ? (int) $id_member : 0;
  228. }
  229. else
  230. $id_member = 0;
  231. }
  232. elseif (empty($id_member) && isset($_SESSION['login_' . $cookiename]) && ($_SESSION['USER_AGENT'] == $_SERVER['HTTP_USER_AGENT'] || !empty($modSettings['disableCheckUA'])))
  233. {
  234. // @todo Perhaps we can do some more checking on this, such as on the first octet of the IP?
  235. list ($id_member, $password, $login_span) = @unserialize($_SESSION['login_' . $cookiename]);
  236. $id_member = !empty($id_member) && strlen($password) == 40 && $login_span > time() ? (int) $id_member : 0;
  237. }
  238. // Only load this stuff if the user isn't a guest.
  239. if ($id_member != 0)
  240. {
  241. // Is the member data cached?
  242. if (empty($modSettings['cache_enable']) || $modSettings['cache_enable'] < 2 || ($user_settings = cache_get_data('user_settings-' . $id_member, 60)) == null)
  243. {
  244. $request = $smcFunc['db_query']('', '
  245. SELECT mem.*, IFNULL(a.id_attach, 0) AS id_attach, a.filename, a.attachment_type
  246. FROM {db_prefix}members AS mem
  247. LEFT JOIN {db_prefix}attachments AS a ON (a.id_member = {int:id_member})
  248. WHERE mem.id_member = {int:id_member}
  249. LIMIT 1',
  250. array(
  251. 'id_member' => $id_member,
  252. )
  253. );
  254. $user_settings = $smcFunc['db_fetch_assoc']($request);
  255. $smcFunc['db_free_result']($request);
  256. if (!empty($modSettings['cache_enable']) && $modSettings['cache_enable'] >= 2)
  257. cache_put_data('user_settings-' . $id_member, $user_settings, 60);
  258. }
  259. // Did we find 'im? If not, junk it.
  260. if (!empty($user_settings))
  261. {
  262. // As much as the password should be right, we can assume the integration set things up.
  263. if (!empty($already_verified) && $already_verified === true)
  264. $check = true;
  265. // SHA-1 passwords should be 40 characters long.
  266. elseif (strlen($password) == 40)
  267. $check = sha1($user_settings['passwd'] . $user_settings['password_salt']) == $password;
  268. else
  269. $check = false;
  270. // Wrong password or not activated - either way, you're going nowhere.
  271. $id_member = $check && ($user_settings['is_activated'] == 1 || $user_settings['is_activated'] == 11) ? (int) $user_settings['id_member'] : 0;
  272. }
  273. else
  274. $id_member = 0;
  275. // If we no longer have the member maybe they're being all hackey, stop brute force!
  276. if (!$id_member)
  277. {
  278. require_once($sourcedir . '/LogInOut.php');
  279. validatePasswordFlood(!empty($user_settings['id_member']) ? $user_settings['id_member'] : $id_member, !empty($user_settings['passwd_flood']) ? $user_settings['passwd_flood'] : false, $id_member != 0);
  280. }
  281. }
  282. // Found 'im, let's set up the variables.
  283. if ($id_member != 0)
  284. {
  285. // Let's not update the last visit time in these cases...
  286. // 1. SSI doesn't count as visiting the forum.
  287. // 2. RSS feeds and XMLHTTP requests don't count either.
  288. // 3. If it was set within this session, no need to set it again.
  289. // 4. New session, yet updated < five hours ago? Maybe cache can help.
  290. if (SMF != 'SSI' && !isset($_REQUEST['xml']) && (!isset($_REQUEST['action']) || $_REQUEST['action'] != '.xml') && empty($_SESSION['id_msg_last_visit']) && (empty($modSettings['cache_enable']) || ($_SESSION['id_msg_last_visit'] = cache_get_data('user_last_visit-' . $id_member, 5 * 3600)) === null))
  291. {
  292. // @todo can this be cached?
  293. // Do a quick query to make sure this isn't a mistake.
  294. $result = $smcFunc['db_query']('', '
  295. SELECT poster_time
  296. FROM {db_prefix}messages
  297. WHERE id_msg = {int:id_msg}
  298. LIMIT 1',
  299. array(
  300. 'id_msg' => $user_settings['id_msg_last_visit'],
  301. )
  302. );
  303. list ($visitTime) = $smcFunc['db_fetch_row']($result);
  304. $smcFunc['db_free_result']($result);
  305. $_SESSION['id_msg_last_visit'] = $user_settings['id_msg_last_visit'];
  306. // If it was *at least* five hours ago...
  307. if ($visitTime < time() - 5 * 3600)
  308. {
  309. updateMemberData($id_member, array('id_msg_last_visit' => (int) $modSettings['maxMsgID'], 'last_login' => time(), 'member_ip' => $_SERVER['REMOTE_ADDR'], 'member_ip2' => $_SERVER['BAN_CHECK_IP']));
  310. $user_settings['last_login'] = time();
  311. if (!empty($modSettings['cache_enable']) && $modSettings['cache_enable'] >= 2)
  312. cache_put_data('user_settings-' . $id_member, $user_settings, 60);
  313. if (!empty($modSettings['cache_enable']))
  314. cache_put_data('user_last_visit-' . $id_member, $_SESSION['id_msg_last_visit'], 5 * 3600);
  315. }
  316. }
  317. elseif (empty($_SESSION['id_msg_last_visit']))
  318. $_SESSION['id_msg_last_visit'] = $user_settings['id_msg_last_visit'];
  319. $username = $user_settings['member_name'];
  320. if (empty($user_settings['additional_groups']))
  321. $user_info = array(
  322. 'groups' => array($user_settings['id_group'], $user_settings['id_post_group'])
  323. );
  324. else
  325. $user_info = array(
  326. 'groups' => array_merge(
  327. array($user_settings['id_group'], $user_settings['id_post_group']),
  328. explode(',', $user_settings['additional_groups'])
  329. )
  330. );
  331. // Because history has proven that it is possible for groups to go bad - clean up in case.
  332. foreach ($user_info['groups'] as $k => $v)
  333. $user_info['groups'][$k] = (int) $v;
  334. // This is a logged in user, so definitely not a spider.
  335. $user_info['possibly_robot'] = false;
  336. }
  337. // If the user is a guest, initialize all the critical user settings.
  338. else
  339. {
  340. // This is what a guest's variables should be.
  341. $username = '';
  342. $user_info = array('groups' => array(-1));
  343. $user_settings = array();
  344. if (isset($_COOKIE[$cookiename]))
  345. $_COOKIE[$cookiename] = '';
  346. // Create a login token if it doesn't exist yet.
  347. if (!isset($_SESSION['token']['post-login']))
  348. createToken('login');
  349. else
  350. list ($context['login_token_var'],,, $context['login_token']) = $_SESSION['token']['post-login'];
  351. // Do we perhaps think this is a search robot? Check every five minutes just in case...
  352. if ((!empty($modSettings['spider_mode']) || !empty($modSettings['spider_group'])) && (!isset($_SESSION['robot_check']) || $_SESSION['robot_check'] < time() - 300))
  353. {
  354. require_once($sourcedir . '/ManageSearchEngines.php');
  355. $user_info['possibly_robot'] = SpiderCheck();
  356. }
  357. elseif (!empty($modSettings['spider_mode']))
  358. $user_info['possibly_robot'] = isset($_SESSION['id_robot']) ? $_SESSION['id_robot'] : 0;
  359. // If we haven't turned on proper spider hunts then have a guess!
  360. else
  361. {
  362. $ci_user_agent = strtolower($_SERVER['HTTP_USER_AGENT']);
  363. $user_info['possibly_robot'] = (strpos($_SERVER['HTTP_USER_AGENT'], 'Mozilla') === false && strpos($_SERVER['HTTP_USER_AGENT'], 'Opera') === false) || strpos($ci_user_agent, 'googlebot') !== false || strpos($ci_user_agent, 'slurp') !== false || strpos($ci_user_agent, 'crawl') !== false || strpos($ci_user_agent, 'msnbot') !== false;
  364. }
  365. }
  366. // Set up the $user_info array.
  367. $user_info += array(
  368. 'id' => $id_member,
  369. 'username' => $username,
  370. 'name' => isset($user_settings['real_name']) ? $user_settings['real_name'] : '',
  371. 'email' => isset($user_settings['email_address']) ? $user_settings['email_address'] : '',
  372. 'passwd' => isset($user_settings['passwd']) ? $user_settings['passwd'] : '',
  373. 'language' => empty($user_settings['lngfile']) || empty($modSettings['userLanguage']) ? $language : $user_settings['lngfile'],
  374. 'is_guest' => $id_member == 0,
  375. 'is_admin' => in_array(1, $user_info['groups']),
  376. 'theme' => empty($user_settings['id_theme']) ? 0 : $user_settings['id_theme'],
  377. 'last_login' => empty($user_settings['last_login']) ? 0 : $user_settings['last_login'],
  378. 'ip' => $_SERVER['REMOTE_ADDR'],
  379. 'ip2' => $_SERVER['BAN_CHECK_IP'],
  380. 'posts' => empty($user_settings['posts']) ? 0 : $user_settings['posts'],
  381. 'time_format' => empty($user_settings['time_format']) ? $modSettings['time_format'] : $user_settings['time_format'],
  382. 'time_offset' => empty($user_settings['time_offset']) ? 0 : $user_settings['time_offset'],
  383. 'avatar' => array(
  384. 'url' => isset($user_settings['avatar']) ? $user_settings['avatar'] : '',
  385. 'filename' => empty($user_settings['filename']) ? '' : $user_settings['filename'],
  386. 'custom_dir' => !empty($user_settings['attachment_type']) && $user_settings['attachment_type'] == 1,
  387. 'id_attach' => isset($user_settings['id_attach']) ? $user_settings['id_attach'] : 0
  388. ),
  389. 'smiley_set' => isset($user_settings['smiley_set']) ? $user_settings['smiley_set'] : '',
  390. 'messages' => empty($user_settings['instant_messages']) ? 0 : $user_settings['instant_messages'],
  391. 'unread_messages' => empty($user_settings['unread_messages']) ? 0 : $user_settings['unread_messages'],
  392. 'total_time_logged_in' => empty($user_settings['total_time_logged_in']) ? 0 : $user_settings['total_time_logged_in'],
  393. 'buddies' => !empty($modSettings['enable_buddylist']) && !empty($user_settings['buddy_list']) ? explode(',', $user_settings['buddy_list']) : array(),
  394. 'ignoreboards' => !empty($user_settings['ignore_boards']) && !empty($modSettings['allow_ignore_boards']) ? explode(',', $user_settings['ignore_boards']) : array(),
  395. 'ignoreusers' => !empty($user_settings['pm_ignore_list']) ? explode(',', $user_settings['pm_ignore_list']) : array(),
  396. 'warning' => isset($user_settings['warning']) ? $user_settings['warning'] : 0,
  397. 'permissions' => array(),
  398. );
  399. $user_info['groups'] = array_unique($user_info['groups']);
  400. // Make sure that the last item in the ignore boards array is valid. If the list was too long it could have an ending comma that could cause problems.
  401. if (!empty($user_info['ignoreboards']) && empty($user_info['ignoreboards'][$tmp = count($user_info['ignoreboards']) - 1]))
  402. unset($user_info['ignoreboards'][$tmp]);
  403. // Do we have any languages to validate this?
  404. if (!empty($modSettings['userLanguage']) && (!empty($_GET['language']) || !empty($_SESSION['language'])))
  405. $languages = getLanguages();
  406. // Allow the user to change their language if its valid.
  407. if (!empty($modSettings['userLanguage']) && !empty($_GET['language']) && isset($languages[strtr($_GET['language'], './\\:', '____')]))
  408. {
  409. $user_info['language'] = strtr($_GET['language'], './\\:', '____');
  410. $_SESSION['language'] = $user_info['language'];
  411. }
  412. elseif (!empty($modSettings['userLanguage']) && !empty($_SESSION['language']) && isset($languages[strtr($_SESSION['language'], './\\:', '____')]))
  413. $user_info['language'] = strtr($_SESSION['language'], './\\:', '____');
  414. // Just build this here, it makes it easier to change/use - administrators can see all boards.
  415. if ($user_info['is_admin'])
  416. $user_info['query_see_board'] = '1=1';
  417. // Otherwise just the groups in $user_info['groups'].
  418. else
  419. $user_info['query_see_board'] = '((FIND_IN_SET(' . implode(', b.member_groups) != 0 OR FIND_IN_SET(', $user_info['groups']) . ', b.member_groups) != 0)' . (!empty($modSettings['deny_boards_access']) ? ' AND (FIND_IN_SET(' . implode(', b.deny_member_groups) = 0 AND FIND_IN_SET(', $user_info['groups']) . ', b.deny_member_groups) = 0)' : '') . (isset($user_info['mod_cache']) ? ' OR ' . $user_info['mod_cache']['mq'] : '') . ')';
  420. // Build the list of boards they WANT to see.
  421. // This will take the place of query_see_boards in certain spots, so it better include the boards they can see also
  422. // If they aren't ignoring any boards then they want to see all the boards they can see
  423. if (empty($user_info['ignoreboards']))
  424. $user_info['query_wanna_see_board'] = $user_info['query_see_board'];
  425. // Ok I guess they don't want to see all the boards
  426. else
  427. $user_info['query_wanna_see_board'] = '(' . $user_info['query_see_board'] . ' AND b.id_board NOT IN (' . implode(',', $user_info['ignoreboards']) . '))';
  428. call_integration_hook('integrate_user_info');
  429. }
  430. /**
  431. * Check for moderators and see if they have access to the board.
  432. * What it does:
  433. * - sets up the $board_info array for current board information.
  434. * - if cache is enabled, the $board_info array is stored in cache.
  435. * - redirects to appropriate post if only message id is requested.
  436. * - is only used when inside a topic or board.
  437. * - determines the local moderators for the board.
  438. * - adds group id 3 if the user is a local moderator for the board they are in.
  439. * - prevents access if user is not in proper group nor a local moderator of the board.
  440. */
  441. function loadBoard()
  442. {
  443. global $txt, $scripturl, $context, $modSettings;
  444. global $board_info, $board, $topic, $user_info, $smcFunc;
  445. // Assume they are not a moderator.
  446. $user_info['is_mod'] = false;
  447. $context['user']['is_mod'] = &$user_info['is_mod'];
  448. // Start the linktree off empty..
  449. $context['linktree'] = array();
  450. // Have they by chance specified a message id but nothing else?
  451. if (empty($_REQUEST['action']) && empty($topic) && empty($board) && !empty($_REQUEST['msg']))
  452. {
  453. // Make sure the message id is really an int.
  454. $_REQUEST['msg'] = (int) $_REQUEST['msg'];
  455. // Looking through the message table can be slow, so try using the cache first.
  456. if (($topic = cache_get_data('msg_topic-' . $_REQUEST['msg'], 120)) === null)
  457. {
  458. $request = $smcFunc['db_query']('', '
  459. SELECT id_topic
  460. FROM {db_prefix}messages
  461. WHERE id_msg = {int:id_msg}
  462. LIMIT 1',
  463. array(
  464. 'id_msg' => $_REQUEST['msg'],
  465. )
  466. );
  467. // So did it find anything?
  468. if ($smcFunc['db_num_rows']($request))
  469. {
  470. list ($topic) = $smcFunc['db_fetch_row']($request);
  471. $smcFunc['db_free_result']($request);
  472. // Save save save.
  473. cache_put_data('msg_topic-' . $_REQUEST['msg'], $topic, 120);
  474. }
  475. }
  476. // Remember redirection is the key to avoiding fallout from your bosses.
  477. if (!empty($topic))
  478. redirectexit('topic=' . $topic . '.msg' . $_REQUEST['msg'] . '#msg' . $_REQUEST['msg']);
  479. else
  480. {
  481. loadPermissions();
  482. loadTheme();
  483. fatal_lang_error('topic_gone', false);
  484. }
  485. }
  486. // Load this board only if it is specified.
  487. if (empty($board) && empty($topic))
  488. {
  489. $board_info = array('moderators' => array(), 'moderator_groups' => array());
  490. return;
  491. }
  492. if (!empty($modSettings['cache_enable']) && (empty($topic) || $modSettings['cache_enable'] >= 3))
  493. {
  494. // @todo SLOW?
  495. if (!empty($topic))
  496. $temp = cache_get_data('topic_board-' . $topic, 120);
  497. else
  498. $temp = cache_get_data('board-' . $board, 120);
  499. if (!empty($temp))
  500. {
  501. $board_info = $temp;
  502. $board = $board_info['id'];
  503. }
  504. }
  505. if (empty($temp))
  506. {
  507. $request = $smcFunc['db_query']('', '
  508. SELECT
  509. c.id_cat, b.name AS bname, b.description, b.num_topics, b.member_groups, b.deny_member_groups,
  510. b.id_parent, c.name AS cname, IFNULL(mg.id_group, 0) AS id_moderator_group, mg.group_name,
  511. IFNULL(mem.id_member, 0) AS id_moderator,
  512. mem.real_name' . (!empty($topic) ? ', b.id_board' : '') . ', b.child_level,
  513. b.id_theme, b.override_theme, b.count_posts, b.id_profile, b.redirect,
  514. b.unapproved_topics, b.unapproved_posts' . (!empty($topic) ? ', t.approved, t.id_member_started' : '') . '
  515. FROM {db_prefix}boards AS b' . (!empty($topic) ? '
  516. INNER JOIN {db_prefix}topics AS t ON (t.id_topic = {int:current_topic})' : '') . '
  517. LEFT JOIN {db_prefix}categories AS c ON (c.id_cat = b.id_cat)
  518. LEFT JOIN {db_prefix}moderator_groups AS modgs ON (modgs.id_board = {raw:board_link})
  519. LEFT JOIN {db_prefix}membergroups AS mg ON (mg.id_group = modgs.id_group)
  520. LEFT JOIN {db_prefix}moderators AS mods ON (mods.id_board = {raw:board_link})
  521. LEFT JOIN {db_prefix}members AS mem ON (mem.id_member = mods.id_member)
  522. WHERE b.id_board = {raw:board_link}',
  523. array(
  524. 'current_topic' => $topic,
  525. 'board_link' => empty($topic) ? $smcFunc['db_quote']('{int:current_board}', array('current_board' => $board)) : 't.id_board',
  526. )
  527. );
  528. // If there aren't any, skip.
  529. if ($smcFunc['db_num_rows']($request) > 0)
  530. {
  531. $row = $smcFunc['db_fetch_assoc']($request);
  532. // Set the current board.
  533. if (!empty($row['id_board']))
  534. $board = $row['id_board'];
  535. // Basic operating information. (globals... :/)
  536. $board_info = array(
  537. 'id' => $board,
  538. 'moderators' => array(),
  539. 'moderator_groups' => array(),
  540. 'cat' => array(
  541. 'id' => $row['id_cat'],
  542. 'name' => $row['cname']
  543. ),
  544. 'name' => $row['bname'],
  545. 'description' => $row['description'],
  546. 'num_topics' => $row['num_topics'],
  547. 'unapproved_topics' => $row['unapproved_topics'],
  548. 'unapproved_posts' => $row['unapproved_posts'],
  549. 'unapproved_user_topics' => 0,
  550. 'parent_boards' => getBoardParents($row['id_parent']),
  551. 'parent' => $row['id_parent'],
  552. 'child_level' => $row['child_level'],
  553. 'theme' => $row['id_theme'],
  554. 'override_theme' => !empty($row['override_theme']),
  555. 'profile' => $row['id_profile'],
  556. 'redirect' => $row['redirect'],
  557. 'posts_count' => empty($row['count_posts']),
  558. 'cur_topic_approved' => empty($topic) || $row['approved'],
  559. 'cur_topic_starter' => empty($topic) ? 0 : $row['id_member_started'],
  560. );
  561. // Load the membergroups allowed, and check permissions.
  562. $board_info['groups'] = $row['member_groups'] == '' ? array() : explode(',', $row['member_groups']);
  563. $board_info['deny_groups'] = $row['deny_member_groups'] == '' ? array() : explode(',', $row['deny_member_groups']);
  564. do
  565. {
  566. if (!empty($row['id_moderator']))
  567. $board_info['moderators'][$row['id_moderator']] = array(
  568. 'id' => $row['id_moderator'],
  569. 'name' => $row['real_name'],
  570. 'href' => $scripturl . '?action=profile;u=' . $row['id_moderator'],
  571. 'link' => '<a href="' . $scripturl . '?action=profile;u=' . $row['id_moderator'] . '">' . $row['real_name'] . '</a>'
  572. );
  573. if (!empty($row['id_moderator_group']))
  574. $board_info['moderator_groups'][$row['id_moderator_group']] = array(
  575. 'id' => $row['id_moderator_group'],
  576. 'name' => $row['group_name'],
  577. 'href' => $scripturl . '?action=groups;sa=members;group=' . $row['id_moderator_group'],
  578. 'link' => '<a href="' . $scripturl . '?action=groups;sa=members;group=' . $row['id_moderator_group'] . '">' . $row['group_name'] . '</a>'
  579. );
  580. }
  581. while ($row = $smcFunc['db_fetch_assoc']($request));
  582. // If the board only contains unapproved posts and the user isn't an approver then they can't see any topics.
  583. // If that is the case do an additional check to see if they have any topics waiting to be approved.
  584. if ($board_info['num_topics'] == 0 && $modSettings['postmod_active'] && !allowedTo('approve_posts'))
  585. {
  586. // Free the previous result
  587. $smcFunc['db_free_result']($request);
  588. // @todo why is this using id_topic?
  589. // @todo Can this get cached?
  590. $request = $smcFunc['db_query']('', '
  591. SELECT COUNT(id_topic)
  592. FROM {db_prefix}topics
  593. WHERE id_member_started={int:id_member}
  594. AND approved = {int:unapproved}
  595. AND id_board = {int:board}',
  596. array(
  597. 'id_member' => $user_info['id'],
  598. 'unapproved' => 0,
  599. 'board' => $board,
  600. )
  601. );
  602. list ($board_info['unapproved_user_topics']) = $smcFunc['db_fetch_row']($request);
  603. }
  604. if (!empty($modSettings['cache_enable']) && (empty($topic) || $modSettings['cache_enable'] >= 3))
  605. {
  606. // @todo SLOW?
  607. if (!empty($topic))
  608. cache_put_data('topic_board-' . $topic, $board_info, 120);
  609. cache_put_data('board-' . $board, $board_info, 120);
  610. }
  611. }
  612. else
  613. {
  614. // Otherwise the topic is invalid, there are no moderators, etc.
  615. $board_info = array(
  616. 'moderators' => array(),
  617. 'moderator_groups' => array(),
  618. 'error' => 'exist'
  619. );
  620. $topic = null;
  621. $board = 0;
  622. }
  623. $smcFunc['db_free_result']($request);
  624. }
  625. if (!empty($topic))
  626. $_GET['board'] = (int) $board;
  627. if (!empty($board))
  628. {
  629. // Get this into an array of keys for array_intersect
  630. $moderator_groups = array_keys($board_info['moderator_groups']);
  631. // Now check if the user is a moderator.
  632. $user_info['is_mod'] = isset($board_info['moderators'][$user_info['id']]) || count(array_intersect($user_info['groups'], $moderator_groups)) != 0;
  633. if (count(array_intersect($user_info['groups'], $board_info['groups'])) == 0 && !$user_info['is_admin'])
  634. $board_info['error'] = 'access';
  635. if (!empty($modSettings['deny_boards_access']) && count(array_intersect($user_info['groups'], $board_info['deny_groups'])) != 0 && !$user_info['is_admin'])
  636. $board_info['error'] = 'access';
  637. // Build up the linktree.
  638. $context['linktree'] = array_merge(
  639. $context['linktree'],
  640. array(array(
  641. 'url' => $scripturl . '#c' . $board_info['cat']['id'],
  642. 'name' => $board_info['cat']['name']
  643. )),
  644. array_reverse($board_info['parent_boards']),
  645. array(array(
  646. 'url' => $scripturl . '?board=' . $board . '.0',
  647. 'name' => $board_info['name']
  648. ))
  649. );
  650. }
  651. // Set the template contextual information.
  652. $context['user']['is_mod'] = &$user_info['is_mod'];
  653. $context['current_topic'] = $topic;
  654. $context['current_board'] = $board;
  655. // Hacker... you can't see this topic, I'll tell you that. (but moderators can!)
  656. if (!empty($board_info['error']) && (!empty($modSettings['deny_boards_access']) || $board_info['error'] != 'access' || !$user_info['is_mod']))
  657. {
  658. // The permissions and theme need loading, just to make sure everything goes smoothly.
  659. loadPermissions();
  660. loadTheme();
  661. $_GET['board'] = '';
  662. $_GET['topic'] = '';
  663. // The linktree should not give the game away mate!
  664. $context['linktree'] = array(
  665. array(
  666. 'url' => $scripturl,
  667. 'name' => $context['forum_name_html_safe']
  668. )
  669. );
  670. // If it's a prefetching agent or we're requesting an attachment.
  671. if ((isset($_SERVER['HTTP_X_MOZ']) && $_SERVER['HTTP_X_MOZ'] == 'prefetch') || (!empty($_REQUEST['action']) && $_REQUEST['action'] === 'dlattach'))
  672. {
  673. ob_end_clean();
  674. header('HTTP/1.1 403 Forbidden');
  675. die;
  676. }
  677. elseif ($user_info['is_guest'])
  678. {
  679. loadLanguage('Errors');
  680. is_not_guest($txt['topic_gone']);
  681. }
  682. else
  683. fatal_lang_error('topic_gone', false);
  684. }
  685. if ($user_info['is_mod'])
  686. $user_info['groups'][] = 3;
  687. }
  688. /**
  689. * Load this user's permissions.
  690. *
  691. */
  692. function loadPermissions()
  693. {
  694. global $user_info, $board, $board_info, $modSettings, $smcFunc, $sourcedir;
  695. if ($user_info['is_admin'])
  696. {
  697. banPermissions();
  698. return;
  699. }
  700. if (!empty($modSettings['cache_enable']))
  701. {
  702. $cache_groups = $user_info['groups'];
  703. asort($cache_groups);
  704. $cache_groups = implode(',', $cache_groups);
  705. // If it's a spider then cache it different.
  706. if ($user_info['possibly_robot'])
  707. $cache_groups .= '-spider';
  708. if ($modSettings['cache_enable'] >= 2 && !empty($board) && ($temp = cache_get_data('permissions:' . $cache_groups . ':' . $board, 240)) != null && time() - 240 > $modSettings['settings_updated'])
  709. {
  710. list ($user_info['permissions']) = $temp;
  711. banPermissions();
  712. return;
  713. }
  714. elseif (($temp = cache_get_data('permissions:' . $cache_groups, 240)) != null && time() - 240 > $modSettings['settings_updated'])
  715. list ($user_info['permissions'], $removals) = $temp;
  716. }
  717. // If it is detected as a robot, and we are restricting permissions as a special group - then implement this.
  718. $spider_restrict = $user_info['possibly_robot'] && !empty($modSettings['spider_group']) ? ' OR (id_group = {int:spider_group} AND add_deny = 0)' : '';
  719. if (empty($user_info['permissions']))
  720. {
  721. // Get the general permissions.
  722. $request = $smcFunc['db_query']('', '
  723. SELECT permission, add_deny
  724. FROM {db_prefix}permissions
  725. WHERE id_group IN ({array_int:member_groups})
  726. ' . $spider_restrict,
  727. array(
  728. 'member_groups' => $user_info['groups'],
  729. 'spider_group' => !empty($modSettings['spider_group']) ? $modSettings['spider_group'] : 0,
  730. )
  731. );
  732. $removals = array();
  733. while ($row = $smcFunc['db_fetch_assoc']($request))
  734. {
  735. if (empty($row['add_deny']))
  736. $removals[] = $row['permission'];
  737. else
  738. $user_info['permissions'][] = $row['permission'];
  739. }
  740. $smcFunc['db_free_result']($request);
  741. if (isset($cache_groups))
  742. cache_put_data('permissions:' . $cache_groups, array($user_info['permissions'], $removals), 240);
  743. }
  744. // Get the board permissions.
  745. if (!empty($board))
  746. {
  747. // Make sure the board (if any) has been loaded by loadBoard().
  748. if (!isset($board_info['profile']))
  749. fatal_lang_error('no_board');
  750. $request = $smcFunc['db_query']('', '
  751. SELECT permission, add_deny
  752. FROM {db_prefix}board_permissions
  753. WHERE (id_group IN ({array_int:member_groups})
  754. ' . $spider_restrict . ')
  755. AND id_profile = {int:id_profile}',
  756. array(
  757. 'member_groups' => $user_info['groups'],
  758. 'id_profile' => $board_info['profile'],
  759. 'spider_group' => !empty($modSettings['spider_group']) ? $modSettings['spider_group'] : 0,
  760. )
  761. );
  762. while ($row = $smcFunc['db_fetch_assoc']($request))
  763. {
  764. if (empty($row['add_deny']))
  765. $removals[] = $row['permission'];
  766. else
  767. $user_info['permissions'][] = $row['permission'];
  768. }
  769. $smcFunc['db_free_result']($request);
  770. }
  771. // Remove all the permissions they shouldn't have ;).
  772. if (!empty($modSettings['permission_enable_deny']))
  773. $user_info['permissions'] = array_diff($user_info['permissions'], $removals);
  774. if (isset($cache_groups) && !empty($board) && $modSettings['cache_enable'] >= 2)
  775. cache_put_data('permissions:' . $cache_groups . ':' . $board, array($user_info['permissions'], null), 240);
  776. // Banned? Watch, don't touch..
  777. banPermissions();
  778. // Load the mod cache so we can know what additional boards they should see, but no sense in doing it for guests
  779. if (!$user_info['is_guest'])
  780. {
  781. if (!isset($_SESSION['mc']) || $_SESSION['mc']['time'] <= $modSettings['settings_updated'])
  782. {
  783. require_once($sourcedir . '/Subs-Auth.php');
  784. rebuildModCache();
  785. }
  786. else
  787. $user_info['mod_cache'] = $_SESSION['mc'];
  788. // This is a useful phantom permission added to the current user, and only the current user while they are logged in.
  789. // For example this drastically simplifies certain changes to the profile area.
  790. $user_info['permissions'][] = 'is_not_guest';
  791. // And now some backwards compatibility stuff for mods and whatnot that aren't expecting the new permissions.
  792. $user_info['permissions'][] = 'profile_view_own';
  793. if (in_array('profile_view', $user_info['permissions']))
  794. $user_info['permissions'][] = 'profile_view_any';
  795. }
  796. }
  797. /**
  798. * Loads an array of users' data by ID or member_name.
  799. *
  800. * @param array|string $users An array of users by id or name or a single username/id
  801. * @param bool $is_name Whether $users contains names
  802. * @param string $set What kind of data to load (normal, profile, minimal)
  803. * @return array|bool The ids of the members loaded or false if no data was loaded
  804. */
  805. function loadMemberData($users, $is_name = false, $set = 'normal')
  806. {
  807. global $user_profile, $modSettings, $board_info, $smcFunc, $context;
  808. // Can't just look for no users :P.
  809. if (empty($users))
  810. return false;
  811. // Pass the set value
  812. $context['loadMemberContext_set'] = $set;
  813. // Make sure it's an array.
  814. $users = !is_array($users) ? array($users) : array_unique($users);
  815. $loaded_ids = array();
  816. if (!$is_name && !empty($modSettings['cache_enable']) && $modSettings['cache_enable'] >= 3)
  817. {
  818. $users = array_values($users);
  819. for ($i = 0, $n = count($users); $i < $n; $i++)
  820. {
  821. $data = cache_get_data('member_data-' . $set . '-' . $users[$i], 240);
  822. if ($data == null)
  823. continue;
  824. $loaded_ids[] = $data['id_member'];
  825. $user_profile[$data['id_member']] = $data;
  826. unset($users[$i]);
  827. }
  828. }
  829. // Used by default
  830. $select_columns = '
  831. IFNULL(lo.log_time, 0) AS is_online, IFNULL(a.id_attach, 0) AS id_attach, a.filename, a.attachment_type,
  832. mem.signature, mem.personal_text, mem.location, mem.gender, mem.avatar, mem.id_member, mem.member_name,
  833. mem.real_name, mem.email_address, mem.hide_email, mem.date_registered, mem.website_title, mem.website_url,
  834. mem.birthdate, mem.member_ip, mem.member_ip2, mem.icq, mem.aim, mem.yim, mem.skype, mem.posts, mem.last_login,
  835. mem.karma_good, mem.id_post_group, mem.karma_bad, mem.lngfile, mem.id_group, mem.time_offset, mem.show_online,
  836. mg.online_color AS member_group_color, IFNULL(mg.group_name, {string:blank_string}) AS member_group,
  837. pg.online_color AS post_group_color, IFNULL(pg.group_name, {string:blank_string}) AS post_group,
  838. mem.is_activated, mem.warning, ' . (!empty($modSettings['titlesEnable']) ? 'mem.usertitle, ' : '') . '
  839. CASE WHEN mem.id_group = 0 OR mg.icons = {string:blank_string} THEN pg.icons ELSE mg.icons END AS icons';
  840. $select_tables = '
  841. LEFT JOIN {db_prefix}log_online AS lo ON (lo.id_member = mem.id_member)
  842. LEFT JOIN {db_prefix}attachments AS a ON (a.id_member = mem.id_member)
  843. LEFT JOIN {db_prefix}membergroups AS pg ON (pg.id_group = mem.id_post_group)
  844. LEFT JOIN {db_prefix}membergroups AS mg ON (mg.id_group = mem.id_group)';
  845. // We add or replace according the the set
  846. switch ($set)
  847. {
  848. case 'normal':
  849. $select_columns .= ', mem.buddy_list, mem.additional_groups';
  850. break;
  851. case 'profile':
  852. $select_columns .= ', mem.additional_groups, mem.openid_uri, mem.id_theme, mem.pm_ignore_list, mem.pm_email_notify, mem.pm_receive_from,
  853. mem.time_format, mem.secret_question, mem.smiley_set,
  854. mem.total_time_logged_in, mem.notify_announcements, mem.notify_regularity, mem.notify_send_body,
  855. mem.notify_types, lo.url, mem.ignore_boards, mem.password_salt, mem.pm_prefs, mem.buddy_list';
  856. break;
  857. case 'minimal':
  858. $select_columns = '
  859. mem.id_member, mem.member_name, mem.real_name, mem.email_address, mem.hide_email, mem.date_registered,
  860. mem.posts, mem.last_login, mem.member_ip, mem.member_ip2, mem.lngfile, mem.id_group';
  861. $select_tables = '';
  862. break;
  863. default:
  864. trigger_error('loadMemberData(): Invalid member data set \'' . $set . '\'', E_USER_WARNING);
  865. }
  866. // Allow mods to easily add to the selected member data
  867. call_integration_hook('integrate_load_member_data', array(&$select_columns, &$select_tables, &$set));
  868. if (!empty($users))
  869. {
  870. // Load the member's data.
  871. $request = $smcFunc['db_query']('', '
  872. SELECT' . $select_columns . '
  873. FROM {db_prefix}members AS mem' . $select_tables . '
  874. WHERE mem.' . ($is_name ? 'member_name' : 'id_member') . ' IN ({' . ($is_name ? 'array_string' : 'array_int') . ':users})',
  875. array(
  876. 'blank_string' => '',
  877. 'users' => $users,
  878. )
  879. );
  880. $new_loaded_ids = array();
  881. while ($row = $smcFunc['db_fetch_assoc']($request))
  882. {
  883. $new_loaded_ids[] = $row['id_member'];
  884. $loaded_ids[] = $row['id_member'];
  885. $row['options'] = array();
  886. $user_profile[$row['id_member']] = $row;
  887. }
  888. $smcFunc['db_free_result']($request);
  889. }
  890. if (!empty($new_loaded_ids) && $set !== 'minimal')
  891. {
  892. $request = $smcFunc['db_query']('', '
  893. SELECT *
  894. FROM {db_prefix}themes
  895. WHERE id_member IN ({array_int:loaded_ids})',
  896. array(
  897. 'loaded_ids' => $new_loaded_ids,
  898. )
  899. );
  900. while ($row = $smcFunc['db_fetch_assoc']($request))
  901. $user_profile[$row['id_member']]['options'][$row['variable']] = $row['value'];
  902. $smcFunc['db_free_result']($request);
  903. }
  904. $additional_mods = array();
  905. // Are any of these users in groups assigned to moderate this board?
  906. if (!empty($loaded_ids) && !empty($board_info['moderator_groups']) && $set === 'normal')
  907. {
  908. foreach ($loaded_ids as $a_member)
  909. {
  910. if (!empty($user_profile[$a_member]['additional_groups']))
  911. $groups = array_merge(array($user_profile[$a_member]['id_group']), explode(',', $user_profile[$a_member]['additional_groups']));
  912. else
  913. $groups = array($user_profile[$a_member]['id_group']);
  914. $temp = array_intersect($groups, array_keys($board_info['moderator_groups']));
  915. if (!empty($temp))
  916. {
  917. $additional_mods[] = $a_member;
  918. }
  919. }
  920. }
  921. if (!empty($new_loaded_ids) && !empty($modSettings['cache_enable']) && $modSettings['cache_enable'] >= 3)
  922. {
  923. for ($i = 0, $n = count($new_loaded_ids); $i < $n; $i++)
  924. cache_put_data('member_data-' . $set . '-' . $new_loaded_ids[$i], $user_profile[$new_loaded_ids[$i]], 240);
  925. }
  926. // Are we loading any moderators? If so, fix their group data...
  927. if (!empty($loaded_ids) && (!empty($board_info['moderators']) || !empty($board_info['moderator_groups'])) && $set === 'normal' && count($temp_mods = array_merge(array_intersect($loaded_ids, array_keys($board_info['moderators'])), $additional_mods)) !== 0)
  928. {
  929. if (($row = cache_get_data('moderator_group_info', 480)) == null)
  930. {
  931. $request = $smcFunc['db_query']('', '
  932. SELECT group_name AS member_group, online_color AS member_group_color, icons
  933. FROM {db_prefix}membergroups
  934. WHERE id_group = {int:moderator_group}
  935. LIMIT 1',
  936. array(
  937. 'moderator_group' => 3,
  938. )
  939. );
  940. $row = $smcFunc['db_fetch_assoc']($request);
  941. $smcFunc['db_free_result']($request);
  942. cache_put_data('moderator_group_info', $row, 480);
  943. }
  944. foreach ($temp_mods as $id)
  945. {
  946. // By popular demand, don't show admins or global moderators as moderators.
  947. if ($user_profile[$id]['id_group'] != 1 && $user_profile[$id]['id_group'] != 2)
  948. $user_profile[$id]['member_group'] = $row['member_group'];
  949. // If the Moderator group has no color or icons, but their group does... don't overwrite.
  950. if (!empty($row['icons']))
  951. $user_profile[$id]['icons'] = $row['icons'];
  952. if (!empty($row['member_group_color']))
  953. $user_profile[$id]['member_group_color'] = $row['member_group_color'];
  954. }
  955. }
  956. return empty($loaded_ids) ? false : $loaded_ids;
  957. }
  958. /**
  959. * Loads the user's basic values... meant for template/theme usage.
  960. *
  961. * @param int $user The ID of a user previously loaded by {@link loadMemberData()}
  962. * @param bool $display_custom_fields Whether or not to display custom profile fields
  963. * @return boolean Whether or not the data was loaded successfully
  964. */
  965. function loadMemberContext($user, $display_custom_fields = false)
  966. {
  967. global $memberContext, $user_profile, $txt, $scripturl, $user_info;
  968. global $context, $modSettings, $settings;
  969. global $smcFunc;
  970. static $dataLoaded = array();
  971. // If this person's data is already loaded, skip it.
  972. if (isset($dataLoaded[$user]))
  973. return true;
  974. // We can't load guests or members not loaded by loadMemberData()!
  975. if ($user == 0)
  976. return false;
  977. if (!isset($user_profile[$user]))
  978. {
  979. trigger_error('loadMemberContext(): member id ' . $user . ' not previously loaded by loadMemberData()', E_USER_WARNING);
  980. return false;
  981. }
  982. // Well, it's loaded now anyhow.
  983. $dataLoaded[$user] = true;
  984. $profile = $user_profile[$user];
  985. // Censor everything.
  986. censorText($profile['signature']);
  987. censorText($profile['personal_text']);
  988. censorText($profile['location']);
  989. // Set things up to be used before hand.
  990. $gendertxt = $profile['gender'] == 2 ? $txt['female'] : ($profile['gender'] == 1 ? $txt['male'] : '');
  991. $profile['signature'] = str_replace(array("\n", "\r"), array('<br />', ''), $profile['signature']);
  992. $profile['signature'] = parse_bbc($profile['signature'], true, 'sig' . $profile['id_member']);
  993. $profile['is_online'] = (!empty($profile['show_online']) || allowedTo('moderate_forum')) && $profile['is_online'] > 0;
  994. $profile['icons'] = empty($profile['icons']) ? array('', '') : explode('#', $profile['icons']);
  995. // Setup the buddy status here (One whole in_array call saved :P)
  996. $profile['buddy'] = in_array($profile['id_member'], $user_info['buddies']);
  997. $buddy_list = !empty($profile['buddy_list']) ? explode(',', $profile['buddy_list']) : array();
  998. // If we're always html resizing, assume it's too large.
  999. if ($modSettings['avatar_action_too_large'] == 'option_html_resize' || $modSettings['avatar_action_too_large'] == 'option_js_resize')
  1000. {
  1001. $avatar_width = !empty($modSettings['avatar_max_width_external']) ? ' width="' . $modSettings['avatar_max_width_external'] . '"' : '';
  1002. $avatar_height = !empty($modSettings['avatar_max_height_external']) ? ' height="' . $modSettings['avatar_max_height_external'] . '"' : '';
  1003. }
  1004. else
  1005. {
  1006. $avatar_width = '';
  1007. $avatar_height = '';
  1008. }
  1009. // These minimal values are always loaded
  1010. $memberContext[$user] = array(
  1011. 'username' => $profile['member_name'],
  1012. 'name' => $profile['real_name'],
  1013. 'id' => $profile['id_member'],
  1014. 'href' => $scripturl . '?action=profile;u=' . $profile['id_member'],
  1015. 'link' => '<a href="' . $scripturl . '?action=profile;u=' . $profile['id_member'] . '" title="' . $txt['profile_of'] . ' ' . $profile['real_name'] . '">' . $profile['real_name'] . '</a>',
  1016. 'email' => $profile['email_address'],
  1017. 'show_email' => showEmailAddress(!empty($profile['hide_email']), $profile['id_member']),
  1018. 'registered' => empty($profile['date_registered']) ? $txt['not_applicable'] : timeformat($profile['date_registered']),
  1019. 'registered_timestamp' => empty($profile['date_registered']) ? 0 : forum_time(true, $profile['date_registered']),
  1020. );
  1021. // If the set isn't minimal then load the monstrous array.
  1022. if ($context['loadMemberContext_set'] != 'minimal')
  1023. $memberContext[$user] += array(
  1024. 'username_color' => '<span '. (!empty($profile['member_group_color']) ? 'style="color:'. $profile['member_group_color'] .';"' : '') .'>'. $profile['member_name'] .'</span>',
  1025. 'name_color' => '<span '. (!empty($profile['member_group_color']) ? 'style="color:'. $profile['member_group_color'] .';"' : '') .'>'. $profile['real_name'] .'</span>',
  1026. 'link_color' => '<a href="' . $scripturl . '?action=profile;u=' . $profile['id_member'] . '" title="' . $txt['profile_of'] . ' ' . $profile['real_name'] . '" '. (!empty($profile['member_group_color']) ? 'style="color:'. $profile['member_group_color'] .';"' : '') .'>' . $profile['real_name'] . '</a>',
  1027. 'is_buddy' => $profile['buddy'],
  1028. 'is_reverse_buddy' => in_array($user_info['id'], $buddy_list),
  1029. 'buddies' => $buddy_list,
  1030. 'title' => !empty($modSettings['titlesEnable']) ? $profile['usertitle'] : '',
  1031. 'blurb' => $profile['personal_text'],
  1032. 'gender' => array(
  1033. 'name' => $gendertxt,
  1034. 'image' => !empty($profile['gender']) ? '<img class="gender" src="' . $settings['images_url'] . '/' . ($profile['gender'] == 1 ? 'Male' : 'Female') . '.png" alt="' . $gendertxt . '" />' : ''
  1035. ),
  1036. 'website' => array(
  1037. 'title' => $profile['website_title'],
  1038. 'url' => $profile['website_url'],
  1039. ),
  1040. 'birth_date' => empty($profile['birthdate']) || $profile['birthdate'] === '0001-01-01' ? '0000-00-00' : (substr($profile['birthdate'], 0, 4) === '0004' ? '0000' . substr($profile['birthdate'], 4) : $profile['birthdate']),
  1041. 'signature' => $profile['signature'],
  1042. 'location' => $profile['location'],
  1043. 'icq' => $profile['icq'] != '' && !$user_info['is_guest'] ? array(
  1044. 'name' => $profile['icq'],
  1045. 'href' => 'http://www.icq.com/whitepages/about_me.php?uin=' . $profile['icq'],
  1046. 'link' => '<a class="icq new_win" href="http://www.icq.com/whitepages/about_me.php?uin=' . $profile['icq'] . '" target="_blank" title="' . $txt['icq_title'] . ' - ' . $profile['icq'] . '"><img src="' . $settings['images_url'] . '/icq.png" alt="' . $txt['icq'] . ' - ' . $profile['icq'] . '" /></a>',
  1047. 'link_text' => '<a class="icq extern" href="http://www.icq.com/whitepages/about_me.php?uin=' . $profile['icq'] . '" title="' . $txt['icq_title'] . ' - ' . $profile['icq'] . '">' . $profile['icq'] . '</a>',
  1048. ) : array('name' => '', 'add' => '', 'href' => '', 'link' => '', 'link_text' => ''),
  1049. 'aim' => $profile['aim'] != '' && !$user_info['is_guest'] ? array(
  1050. 'name' => $profile['aim'],
  1051. 'href' => 'aim:goim?screenname=' . urlencode(strtr($profile['aim'], array(' ' => '%20'))) . '&amp;message=' . $txt['aim_default_message'],
  1052. 'link' => '<a class="aim" href="aim:goim?screenname=' . urlencode(strtr($profile['aim'], array(' ' => '%20'))) . '&amp;message=' . $txt['aim_default_message'] . '" title="' . $txt['aim_title'] . ' - ' . $profile['aim'] . '"><img src="' . $settings['images_url'] . '/aim.png" alt="' . $txt['aim_title'] . ' - ' . $profile['aim'] . '" /></a>',
  1053. 'link_text' => '<a class="aim" href="aim:goim?screenname=' . urlencode(strtr($profile['aim'], array(' ' => '%20'))) . '&amp;message=' . $txt['aim_default_message'] . '" title="' . $txt['aim_title'] . ' - ' . $profile['aim'] . '">' . $profile['aim'] . '</a>'
  1054. ) : array('name' => '', 'href' => '', 'link' => '', 'link_text' => ''),
  1055. 'yim' => $profile['yim'] != '' && !$user_info['is_guest'] ? array(
  1056. 'name' => $profile['yim'],
  1057. 'href' => 'http://edit.yahoo.com/config/send_webmesg?.target=' . urlencode($profile['yim']),
  1058. 'link' => '<a class="yim" href="http://edit.yahoo.com/config/send_webmesg?.target=' . urlencode($profile['yim']) . '" title="' . $txt['yim_title'] . ' - ' . $profile['yim'] . '"><img src="' . $settings['images_url'] . '/yahoo.png" alt="' . $txt['yim_title'] . ' - ' . $profile['yim'] . '" /></a>',
  1059. 'link_text' => '<a class="yim" href="http://edit.yahoo.com/config/send_webmesg?.target=' . urlencode($profile['yim']) . '" title="' . $txt['yim_title'] . ' - ' . $profile['yim'] . '">' . $profile['yim'] . '</a>'
  1060. ) : array('name' => '', 'href' => '', 'link' => '', 'link_text' => ''),
  1061. 'skype' => !empty($profile['skype']) && !$user_info['is_guest'] ? array(
  1062. 'name' => $profile['skype'],
  1063. 'href' => 'skype:' . $profile['skype'] . '?chat',
  1064. 'link' => '<a class="skype new_win" href="skype:' . $profile['skype'] . '?chat" title="' . $txt['skype'] . ' - ' . $profile['skype'] . '"><img src="' . $settings['images_url'] . '/skype.png" alt="' . $txt['skype'] . ' - ' . $profile['skype'] . '" /></a>',
  1065. 'link_text' => '<a class="skype new_win" href="skype:' . $profile['skype'] . '?chat" title="' . $txt['skype'] . ' - ' . $profile['skype'] . '">' . $profile['skype'] . '</a>',
  1066. ) : array('name' => '', 'href' => '', 'link' => '', 'link_text' => '',),
  1067. 'real_posts' => $profile['posts'],
  1068. 'posts' => $profile['posts'] > 500000 ? $txt['geek'] : comma_format($profile['posts']),
  1069. 'avatar' => array(
  1070. 'name' => $profile['avatar'],
  1071. 'image' => $profile['avatar'] == '' ? ($profile['id_attach'] > 0 ? '<img class="avatar" src="' . (empty($profile['attachment_type']) ? $scripturl . '?action=dlattach;attach=' . $profile['id_attach'] . ';type=avatar' : $modSettings['custom_avatar_url'] . '/' . $profile['filename']) . '" alt="" />' : '') : (stristr($profile['avatar'], 'http://') ? '<img class="avatar" src="' . $profile['avatar'] . '"' . $avatar_width . $avatar_height . ' alt="" />' : '<img class="avatar" src="' . $modSettings['avatar_url'] . '/' . $smcFunc['htmlspecialchars']($profile['avatar']) . '" alt="" />'),
  1072. 'href' => $profile['avatar'] == '' ? ($profile['id_attach'] > 0 ? (empty($profile['attachment_type']) ? $scripturl . '?action=dlattach;attach=' . $profile['id_attach'] . ';type=avatar' : $modSettings['custom_avatar_url'] . '/' . $profile['filename']) : '') : (stristr($profile['avatar'], 'http://') ? $profile['avatar'] : $modSettings['avatar_url'] . '/' . $profile['avatar']),
  1073. 'url' => $profile['avatar'] == '' ? '' : (stristr($profile['avatar'], 'http://') ? $profile['avatar'] : $modSettings['avatar_url'] . '/' . $profile['avatar'])
  1074. ),
  1075. 'last_login' => empty($profile['last_login']) ? $txt['never'] : timeformat($profile['last_login']),
  1076. 'last_login_timestamp' => empty($profile['last_login']) ? 0 : forum_time(0, $profile['last_login']),
  1077. 'karma' => array(
  1078. 'good' => $profile['karma_good'],
  1079. 'bad' => $profile['karma_bad'],
  1080. 'allow' => !$user_info['is_guest'] && !empty($modSettings['karmaMode']) && $user_info['id'] != $user && allowedTo('karma_edit') &&
  1081. ($user_info['posts'] >= $modSettings['karmaMinPosts'] || $user_info['is_admin']),
  1082. ),
  1083. 'ip' => $smcFunc['htmlspecialchars']($profile['member_ip']),
  1084. 'ip2' => $smcFunc['htmlspecialchars']($profile['member_ip2']),
  1085. 'online' => array(
  1086. 'is_online' => $profile['is_online'],
  1087. 'text' => $smcFunc['htmlspecialchars']($txt[$profile['is_online'] ? 'online' : 'offline']),
  1088. 'member_online_text' => sprintf($txt[$profile['is_online'] ? 'member_is_online' : 'member_is_offline'], $smcFunc['htmlspecialchars']($profile['real_name'])),
  1089. 'href' => $scripturl . '?action=pm;sa=send;u=' . $profile['id_member'],
  1090. 'link' => '<a href="' . $scripturl . '?action=pm;sa=send;u=' . $profile['id_member'] . '">' . $txt[$profile['is_online'] ? 'online' : 'offline'] . '</a>',
  1091. 'image_href' => $settings['images_url'] . '/' . ($profile['buddy'] ? 'buddy_' : '') . ($profile['is_online'] ? 'useron' : 'useroff') . '.png',
  1092. 'label' => $txt[$profile['is_online'] ? 'online' : 'offline']
  1093. ),
  1094. 'language' => $smcFunc['ucwords'](strtr($profile['lngfile'], array('_' => ' ', '-utf8' => ''))),
  1095. 'is_activated' => isset($profile['is_activated']) ? $profile['is_activated'] : 1,
  1096. 'is_banned' => isset($profile['is_activated']) ? $profile['is_activated'] >= 10 : 0,
  1097. 'options' => $profile['options'],
  1098. 'is_guest' => false,
  1099. 'group' => $profile['member_group'],
  1100. 'group_color' => $profile['member_group_color'],
  1101. 'group_id' => $profile['id_group'],
  1102. 'post_group' => $profile['post_group'],
  1103. 'post_group_color' => $profile['post_group_color'],
  1104. 'group_icons' => str_repeat('<img src="' . str_replace('$language', $context['user']['language'], isset($profile['icons'][1]) ? $settings['images_url'] . '/membericons/' . $profile['icons'][1] : '') . '" alt="*" />', empty($profile['icons'][0]) || empty($profile['icons'][1]) ? 0 : $profile['icons'][0]),
  1105. 'warning' => $profile['warning'],
  1106. 'warning_status' => !empty($modSettings['warning_mute']) && $modSettings['warning_mute'] <= $profile['warning'] ? 'mute' : (!empty($modSettings['warning_moderate']) && $modSettings['warning_moderate'] <= $profile['warning'] ? 'moderate' : (!empty($modSettings['warning_watch']) && $modSettings['warning_watch'] <= $profile['warning'] ? 'watch' : (''))),
  1107. 'local_time' => timeformat(time() + ($profile['time_offset'] - $user_info['time_offset']) * 3600, false),
  1108. );
  1109. // First do a quick run through to make sure there is something to be shown.
  1110. $memberContext[$user]['has_messenger'] = false;
  1111. foreach (array('icq', 'skype', 'aim', 'yim') as $messenger)
  1112. {
  1113. if (!isset($context['disabled_fields'][$messenger]) && !empty($memberContext[$user][$messenger]['link']))
  1114. {
  1115. $memberContext[$user]['has_messenger'] = true;
  1116. break;
  1117. }
  1118. }
  1119. // Are we also loading the members custom fields into context?
  1120. if ($display_custom_fields && !empty($modSettings['displayFields']))
  1121. {
  1122. $memberContext[$user]['custom_fields'] = array();
  1123. if (!isset($context['display_fields']))
  1124. $context['display_fields'] = unserialize($modSettings['displayFields']);
  1125. foreach ($context['display_fields'] as $custom)
  1126. {
  1127. if (!isset($custom['title']) || trim($custom['title']) == '' || empty($profile['options'][$custom['colname']]))
  1128. continue;
  1129. $value = $profile['options'][$custom['colname']];
  1130. // BBC?
  1131. if ($custom['bbc'])
  1132. $value = parse_bbc($value);
  1133. // ... or checkbox?
  1134. elseif (isset($custom['type']) && $custom['type'] == 'check')
  1135. $value = $value ? $txt['yes'] : $txt['no'];
  1136. // Enclosing the user input within some other text?
  1137. if (!empty($custom['enclose']))
  1138. $value = strtr($custom['enclose'], array(
  1139. '{SCRIPTURL}' => $scripturl,
  1140. '{IMAGES_URL}' => $settings['images_url'],
  1141. '{DEFAULT_IMAGES_URL}' => $settings['default_images_url'],
  1142. '{INPUT}' => $value,
  1143. ));
  1144. $memberContext[$user]['custom_fields'][] = array(
  1145. 'title' => $custom['title'],
  1146. 'colname' => $custom['colname'],
  1147. 'value' => $value,
  1148. 'placement' => !empty($custom['placement']) ? $custom['placement'] : 0,
  1149. );
  1150. }
  1151. }
  1152. call_integration_hook('integrate_member_context', array(&$user, $display_custom_fields));
  1153. return true;
  1154. }
  1155. /**
  1156. * Loads the user's custom profile fields
  1157. *
  1158. * @param integer|array $users A single user ID or an array of user IDs
  1159. * @param string|array $param Either a string or an array of strings with profile field names
  1160. * @return array|boolean An array of data about the fields and their values or false if nothing was loaded
  1161. */
  1162. function loadMemberCustomFields($users, $params)
  1163. {
  1164. global $smcFunc, $txt, $scripturl, $settings;
  1165. // Do not waste my time...
  1166. if (empty($users) || empty($params))
  1167. return false;
  1168. // Make sure it's an array.
  1169. $users = !is_array($users) ? array($users) : array_unique($users);
  1170. $params = !is_array($params) ? array($params) : array_unique($params);
  1171. $return = array();
  1172. $request = $smcFunc['db_query']('', '
  1173. SELECT c.id_field, c.col_name, c.field_name, c.field_desc, c.field_type, c.field_length, c.field_options, c.mask, show_reg,
  1174. c.show_display, c.show_profile, c.private, c.active, c.bbc, c.can_search, c.default_value, c.enclose, c.placement, t.variable, t.value, t.id_member
  1175. FROM {db_prefix}themes AS t
  1176. LEFT JOIN {db_prefix}custom_fields AS c ON (c.col_name = t.variable)
  1177. WHERE id_member IN ({array_int:loaded_ids})
  1178. AND variable IN ({array_string:params})',
  1179. array(
  1180. 'loaded_ids' => $users,
  1181. 'params' => $params,
  1182. )
  1183. );
  1184. while ($row = $smcFunc['db_fetch_assoc']($request))
  1185. {
  1186. // BBC?
  1187. if (!empty($row['bbc']))
  1188. $row['value'] = parse_bbc($row['value']);
  1189. // ... or checkbox?
  1190. elseif (isset($row['type']) && $row['type'] == 'check')
  1191. $row['value'] = !empty($row['value']) ? $txt['yes'] : $txt['no'];
  1192. // Enclosing the user input within some other text?
  1193. if (!empty($row['enclose']))
  1194. $row['value'] = strtr($row['enclose'], array(
  1195. '{SCRIPTURL}' => $scripturl,
  1196. '{IMAGES_URL}' => $settings['images_url'],
  1197. '{DEFAULT_IMAGES_URL}' => $settings['default_images_url'],
  1198. '{INPUT}' => $row['value'],
  1199. ));
  1200. // Send a simple array if there is just 1 param
  1201. if (count($params) == 1)
  1202. $return[$row['id_member']] = $row;
  1203. // More than 1? knock yourself out...
  1204. else
  1205. $return[$row['id_member']][$row['id_field']] = $row;
  1206. }
  1207. $smcFunc['db_free_result']($request);
  1208. return !empty($return) ? $return : false;
  1209. }
  1210. /**
  1211. * Loads information about what browser the user is viewing with and places it in $context
  1212. * - uses the class from Class-BrowerDetect.php
  1213. *
  1214. */
  1215. function detectBrowser()
  1216. {
  1217. // Load the current user's browser of choice
  1218. $detector = new browser_detector;
  1219. $detector->detectBrowser();
  1220. }
  1221. /**
  1222. * Are we using this browser?
  1223. *
  1224. * Wrapper function for detectBrowser
  1225. * @param string $browser The browser we are checking for.
  1226. */
  1227. function isBrowser($browser)
  1228. {
  1229. global $context;
  1230. // @todo REMOVE THIS BEFORE BETA 1 RELEASE.
  1231. if (in_array($browser, array('ie7', 'ie6', 'ie5.5', 'ie5', 'ie5', 'ie4', 'mac_ie', 'firefox1')))
  1232. {
  1233. $line = $file = null;
  1234. foreach (debug_backtrace() as $step)
  1235. {
  1236. // Found it?
  1237. if (strpos($step['function'], 'query') === false && !in_array(substr($step['function'], 0, 7), array('smf_db_', 'preg_re', 'db_erro', 'call_us')) && strpos($step['function'], '__') !== 0)
  1238. {
  1239. $function = '<br />Function: ' . $step['function'];
  1240. break;
  1241. }
  1242. if (isset($step['line']))
  1243. {
  1244. $file = $step['file'];
  1245. $line = $step['line'];
  1246. }
  1247. }
  1248. log_error('Old browser support' . $function, 'debug', $file, $line);
  1249. }
  1250. // Don't know any browser!
  1251. if (empty($context['browser']))
  1252. detectBrowser();
  1253. return !empty($context['browser'][$browser]) || !empty($context['browser']['is_' . $browser]) ? true : false;
  1254. }
  1255. /**
  1256. * Load a theme, by ID.
  1257. *
  1258. * @param int $id_theme The ID of the theme to load
  1259. * @param bool $initialize Whether or not to initialize a bunch of theme-related variables/settings
  1260. */
  1261. function loadTheme($id_theme = 0, $initialize = true)
  1262. {
  1263. global $user_info, $user_settings, $board_info, $boarddir;
  1264. global $txt, $boardurl, $scripturl, $mbname, $modSettings;
  1265. global $context, $settings, $options, $sourcedir, $ssi_theme, $smcFunc;
  1266. // The theme was specified by parameter.
  1267. if (!empty($id_theme))
  1268. $id_theme = (int) $id_theme;
  1269. // The theme was specified by REQUEST.
  1270. elseif (!empty($_REQUEST['theme']) && (!empty($modSettings['theme_allow']) || allowedTo('admin_forum')))
  1271. {
  1272. $id_theme = (int) $_REQUEST['theme'];
  1273. $_SESSION['id_theme'] = $id_theme;
  1274. }
  1275. // The theme was specified by REQUEST... previously.
  1276. elseif (!empty($_SESSION['id_theme']) && (!empty($modSettings['theme_allow']) || allowedTo('admin_forum')))
  1277. $id_theme = (int) $_SESSION['id_theme'];
  1278. // The theme is just the user's choice. (might use ?board=1;theme=0 to force board theme.)
  1279. elseif (!empty($user_info['theme']) && !isset($_REQUEST['theme']) && (!empty($modSettings['theme_allow']) || allowedTo('admin_forum')))
  1280. $id_theme = $user_info['theme'];
  1281. // The theme was specified by the board.
  1282. elseif (!empty($board_info['theme']))
  1283. $id_theme = $board_info['theme'];
  1284. // The theme is the forum's default.
  1285. else
  1286. $id_theme = $modSettings['theme_guests'];
  1287. // Verify the id_theme... no foul play.
  1288. // Always allow the board specific theme, if they are overriding.
  1289. if (!empty($board_info['theme']) && $board_info['override_theme'])
  1290. $id_theme = $board_info['theme'];
  1291. // If they have specified a particular theme to use with SSI allow it to be used.
  1292. elseif (!empty($ssi_theme) && $id_theme == $ssi_theme)
  1293. $id_theme = (int) $id_theme;
  1294. elseif (!empty($modSettings['knownThemes']) && !allowedTo('admin_forum'))
  1295. {
  1296. $themes = explode(',', $modSettings['knownThemes']);
  1297. if (!in_array($id_theme, $themes))
  1298. $id_theme = $modSettings['theme_guests'];
  1299. else
  1300. $id_theme = (int) $id_theme;
  1301. }
  1302. else
  1303. $id_theme = (int) $id_theme;
  1304. $member = empty($user_info['id']) ? -1 : $user_info['id'];
  1305. if (!empty($modSettings['cache_enable']) && $modSettings['cache_enable'] >= 2 && ($temp = cache_get_data('theme_settings-' . $id_theme . ':' . $member, 60)) != null && time() - 60 > $modSettings['settings_updated'])
  1306. {
  1307. $themeData = $temp;
  1308. $flag = true;
  1309. }
  1310. elseif (($temp = cache_get_data('theme_settings-' . $id_theme, 90)) != null && time() - 60 > $modSettings['settings_updated'])
  1311. $themeData = $temp + array($member => array());
  1312. else
  1313. $themeData = array(-1 => array(), 0 => array(), $member => array());
  1314. if (empty($flag))
  1315. {
  1316. // Load variables from the current or default theme, global or this user's.
  1317. $result = $smcFunc['db_query']('', '
  1318. SELECT variable, value, id_member, id_theme
  1319. FROM {db_prefix}themes
  1320. WHERE id_member' . (empty($themeData[0]) ? ' IN (-1, 0, {int:id_member})' : ' = {int:id_member}') . '
  1321. AND id_theme' . ($id_theme == 1 ? ' = {int:id_theme}' : ' IN ({int:id_theme}, 1)'),
  1322. array(
  1323. 'id_theme' => $id_theme,
  1324. 'id_member' => $member,
  1325. )
  1326. );
  1327. // Pick between $settings and $options depending on whose data it is.
  1328. while ($row = $smcFunc['db_fetch_assoc']($result))
  1329. {
  1330. // There are just things we shouldn't be able to change as members.
  1331. if ($row['id_member'] != 0 && in_array($row['variable'], array('actual_theme_url', 'actual_images_url', 'base_theme_dir', 'base_theme_url', 'default_images_url', 'default_theme_dir', 'default_theme_url', 'default_template', 'images_url', 'number_recent_posts', 'smiley_sets_default', 'theme_dir', 'theme_id', 'theme_layers', 'theme_templates', 'theme_url')))
  1332. continue;
  1333. // If this is the theme_dir of the default theme, store it.
  1334. if (in_array($row['variable'], array('theme_dir', 'theme_url', 'images_url')) && $row['id_theme'] == '1' && empty($row['id_member']))
  1335. $themeData[0]['default_' . $row['variable']] = $row['value'];
  1336. // If this isn't set yet, is a theme option, or is not the default theme..
  1337. if (!isset($themeData[$row['id_member']][$row['variable']]) || $row['id_theme'] != '1')
  1338. $themeData[$row['id_member']][$row['variable']] = substr($row['variable'], 0, 5) == 'show_' ? $row['value'] == '1' : $row['value'];
  1339. }
  1340. $smcFunc['db_free_result']($result);
  1341. if (!empty($themeData[-1]))
  1342. foreach ($themeData[-1] as $k => $v)
  1343. {
  1344. if (!isset($themeData[$member][$k]))
  1345. $themeData[$member][$k] = $v;
  1346. }
  1347. if (!empty($modSettings['cache_enable']) && $modSettings['cache_enable'] >= 2)
  1348. cache_put_data('theme_settings-' . $id_theme . ':' . $member, $themeData, 60);
  1349. // Only if we didn't already load that part of the cache...
  1350. elseif (!isset($temp))
  1351. cache_put_data('theme_settings-' . $id_theme, array(-1 => $themeData[-1], 0 => $themeData[0]), 90);
  1352. }
  1353. $settings = $themeData[0];
  1354. $options = $themeData[$member];
  1355. $settings['theme_id'] = $id_theme;
  1356. $settings['actual_theme_url'] = $settings['theme_url'];
  1357. $settings['actual_images_url'] = $settings['images_url'];
  1358. $settings['actual_theme_dir'] = $settings['theme_dir'];
  1359. $settings['template_dirs'] = array();
  1360. // This theme first.
  1361. $settings['template_dirs'][] = $settings['theme_dir'];
  1362. // Based on theme (if there is one).
  1363. if (!empty($settings['base_theme_dir']))
  1364. $settings['template_dirs'][] = $settings['base_theme_dir'];
  1365. // Lastly the default theme.
  1366. if ($settings['theme_dir'] != $settings['default_theme_dir'])
  1367. $settings['template_dirs'][] = $settings['default_theme_dir'];
  1368. if (!$initialize)
  1369. return;
  1370. // Check to see if they're accessing it from the wrong place.
  1371. if (isset($_SERVER['HTTP_HOST']) || isset($_SERVER['SERVER_NAME']))
  1372. {
  1373. $detected_url = isset($_SERVER['HTTPS']) && strtolower($_SERVER['HTTPS']) == 'on' ? 'https://' : 'http://';
  1374. $detected_url .= empty($_SERVER['HTTP_HOST']) ? $_SERVER['SERVER_NAME'] . (empty($_SERVER['SERVER_PORT']) || $_SERVER['SERVER_PORT'] == '80' ? '' : ':' . $_SERVER['SERVER_PORT']) : $_SERVER['HTTP_HOST'];
  1375. $temp = preg_replace('~/' . basename($scripturl) . '(/.+)?$~', '', strtr(dirname($_SERVER['PHP_SELF']), '\\', '/'));
  1376. if ($temp != '/')
  1377. $detected_url .= $temp;
  1378. }
  1379. if (isset($detected_url) && $detected_url != $boardurl)
  1380. {
  1381. // Try #1 - check if it's in a list of alias addresses.
  1382. if (!empty($modSettings['forum_alias_urls']))
  1383. {
  1384. $aliases = explode(',', $modSettings['forum_alias_urls']);
  1385. foreach ($aliases as $alias)
  1386. {
  1387. // Rip off all the boring parts, spaces, etc.
  1388. if ($detected_url == trim($alias) || strtr($detected_url, array('http://' => '', 'https://' => '')) == trim($alias))
  1389. $do_fix = true;
  1390. }
  1391. }
  1392. // Hmm... check #2 - is it just different by a www? Send them to the correct place!!
  1393. if (empty($do_fix) && strtr($detected_url, array('://' => '://www.')) == $boardurl && (empty($_GET) || count($_GET) == 1) && SMF != 'SSI')
  1394. {
  1395. // Okay, this seems weird, but we don't want an endless loop - this will make $_GET not empty ;).
  1396. if (empty($_GET))
  1397. redirectexit('wwwRedirect');
  1398. else
  1399. {
  1400. list ($k, $v) = each($_GET);
  1401. if ($k != 'wwwRedirect')
  1402. redirectexit('wwwRedirect;' . $k . '=' . $v);
  1403. }
  1404. }
  1405. // #3 is just a check for SSL...
  1406. if (strtr($detected_url, array('https://' => 'http://')) == $boardurl)
  1407. $do_fix = true;
  1408. // Okay, #4 - perhaps it's an IP address? We're gonna want to use that one, then. (assuming it's the IP or something...)
  1409. if (!empty($do_fix) || preg_match('~^http[s]?://(?:[\d\.:]+|\[[\d:]+\](?::\d+)?)(?:$|/)~', $detected_url) == 1)
  1410. {
  1411. // Caching is good ;).
  1412. $oldurl = $boardurl;
  1413. // Fix $boardurl and $scripturl.
  1414. $boardurl = $detected_url;
  1415. $scripturl = strtr($scripturl, array($oldurl => $boardurl));
  1416. $_SERVER['REQUEST_URL'] = strtr($_SERVER['REQUEST_URL'], array($oldurl => $boardurl));
  1417. // Fix the theme urls...
  1418. $settings['theme_url'] = strtr($settings['theme_url'], array($oldurl => $boardurl));
  1419. $settings['default_theme_url'] = strtr($settings['default_theme_url'], array($oldurl => $boardurl));
  1420. $settings['actual_theme_url'] = strtr($settings['actual_theme_url'], array($oldurl => $boardurl));
  1421. $settings['images_url'] = strtr($settings['images_url'], array($oldurl => $boardurl));
  1422. $settings['default_images_url'] = strtr($settings['default_images_url'], array($oldurl => $boardurl));
  1423. $settings['actual_images_url'] = strtr($settings['actual_images_url'], array($oldurl => $boardurl));
  1424. // And just a few mod settings :).
  1425. $modSettings['smileys_url'] = strtr($modSettings['smileys_url'], array($oldurl => $boardurl));
  1426. $modSettings['avatar_url'] = strtr($modSettings['avatar_url'], array($oldurl => $boardurl));
  1427. // Clean up after loadBoard().
  1428. if (isset($board_info['moderators']))
  1429. {
  1430. foreach ($board_info['moderators'] as $k => $dummy)
  1431. {
  1432. $board_info['moderators'][$k]['href'] = strtr($dummy['href'], array($oldurl => $boardurl));
  1433. $board_info['moderators'][$k]['link'] = strtr($dummy['link'], array('"' . $oldurl => '"' . $boardurl));
  1434. }
  1435. }
  1436. foreach ($context['linktree'] as $k => $dummy)
  1437. $context['linktree'][$k]['url'] = strtr($dummy['url'], array($oldurl => $boardurl));
  1438. }
  1439. }
  1440. // Set up the contextual user array.
  1441. $context['user'] = array(
  1442. 'id' => $user_info['id'],
  1443. 'is_logged' => !$user_info['is_guest'],
  1444. 'is_guest' => &$user_info['is_guest'],
  1445. 'is_admin' => &$user_info['is_admin'],
  1446. 'is_mod' => &$user_info['is_mod'],
  1447. // A user can mod if they have permission to see the mod center, or they are a board/group/approval moderator.
  1448. 'can_mod' => allowedTo('access_mod_center') || (!$user_info['is_guest'] && ($user_info['mod_cache']['gq'] != '0=1' || $user_info['mod_cache']['bq'] != '0=1' || ($modSettings['postmod_active'] && !empty($user_info['mod_cache']['ap'])))),
  1449. 'username' => $user_info['username'],
  1450. 'language' => $user_info['language'],
  1451. 'email' => $user_info['email'],
  1452. 'ignoreusers' => $user_info['ignoreusers'],
  1453. );
  1454. if (!$context['user']['is_guest'])
  1455. $context['user']['name'] = $user_info['name'];
  1456. elseif ($context['user']['is_guest'] && !empty($txt['guest_title']))
  1457. $context['user']['name'] = $txt['guest_title'];
  1458. // Determine the current smiley set.
  1459. $user_info['smiley_set'] = (!in_array($user_info['smiley_set'], explode(',', $modSettings['smiley_sets_known'])) && $user_info['smiley_set'] != 'none') || empty($modSettings['smiley_sets_enable']) ? (!empty($settings['smiley_sets_default']) ? $settings['smiley_sets_default'] : $modSettings['smiley_sets_default']) : $user_info['smiley_set'];
  1460. $context['user']['smiley_set'] = $user_info['smiley_set'];
  1461. // Some basic information...
  1462. if (!isset($context['html_headers']))
  1463. $context['html_headers'] = '';
  1464. if (!isset($context['javascript_files']))
  1465. $context['javascript_files'] = array();
  1466. if (!isset($context['css_files']))
  1467. $context['css_files'] = array();
  1468. if (!isset($context['javascript_inline']))
  1469. $context['javascript_inline'] = array('standard' => array(), 'defer' => array());
  1470. if (!isset($context['javascript_vars']))
  1471. $context['javascript_vars'] = array();
  1472. $context['menu_separator'] = !empty($settings['use_image_buttons']) ? ' ' : ' | ';
  1473. $context['session_var'] = $_SESSION['session_var'];
  1474. $context['session_id'] = $_SESSION['session_value'];
  1475. $context['forum_name'] = $mbname;
  1476. $context['forum_name_html_safe'] = $smcFunc['htmlspecialchars']($context['forum_name']);
  1477. $context['header_logo_url_html_safe'] = empty($settings['header_logo_url']) ? '' : $smcFunc['htmlspecialchars']($settings['header_logo_url']);
  1478. $context['current_action'] = isset($_REQUEST['action']) ? $smcFunc['htmlspecialchars']($_REQUEST['action']) : null;
  1479. $context['current_subaction'] = isset($_REQUEST['sa']) ? $_REQUEST['sa'] : null;
  1480. $context['can_register'] = empty($modSettings['registration_method']) || $modSettings['registration_method'] != 3;
  1481. if (isset($modSettings['load_average']))
  1482. $context['load_average'] = $modSettings['load_average'];
  1483. // Set some permission related settings.
  1484. $context['show_login_bar'] = $user_info['is_guest'] && !empty($modSettings['enableVBStyleLogin']);
  1485. // This determines the server... not used in many places, except for login fixing.
  1486. $context['server'] = array(
  1487. 'is_iis' => isset($_SERVER['SERVER_SOFTWARE']) && strpos($_SERVER['SERVER_SOFTWARE'], 'Microsoft-IIS') !== false,
  1488. 'is_apache' => isset($_SERVER['SERVER_SOFTWARE']) && strpos($_SERVER['SERVER_SOFTWARE'], 'Apache') !== false,
  1489. 'is_litespeed' => isset($_SERVER['SERVER_SOFTWARE']) && strpos($_SERVER['SERVER_SOFTWARE'], 'LiteSpeed') !== false,
  1490. 'is_lighttpd' => isset($_SERVER['SERVER_SOFTWARE']) && strpos($_SERVER['SERVER_SOFTWARE'], 'lighttpd') !== false,
  1491. 'is_nginx' => isset($_SERVER['SERVER_SOFTWARE']) && strpos($_SERVER['SERVER_SOFTWARE'], 'nginx') !== false,
  1492. 'is_cgi' => isset($_SERVER['SERVER_SOFTWARE']) && strpos(php_sapi_name(), 'cgi') !== false,
  1493. 'is_windows' => strpos(PHP_OS, 'WIN') === 0,
  1494. 'iso_case_folding' => ord(strtolower(chr(138))) === 154,
  1495. );
  1496. // A bug in some versions of IIS under CGI (older ones) makes cookie setting not work with Location: headers.
  1497. $context['server']['needs_login_fix'] = $context['server']['is_cgi'] && $context['server']['is_iis'];
  1498. // Detect the browser. This is separated out because it's also used in attachment downloads
  1499. detectBrowser();
  1500. // Set the top level linktree up.
  1501. array_unshift($context['linktree'], array(
  1502. 'url' => $scripturl,
  1503. 'name' => $context['forum_name_html_safe']
  1504. ));
  1505. // This allows sticking some HTML on the page output - useful for controls.
  1506. $context['insert_after_template'] = '';
  1507. if (!isset($txt))
  1508. $txt = array();
  1509. $simpleActions = array(
  1510. 'findmember',
  1511. 'helpadmin',
  1512. 'printpage',
  1513. 'quotefast',
  1514. 'spellcheck',
  1515. );
  1516. // Wireless mode? Load up the wireless stuff.
  1517. if (WIRELESS)
  1518. {
  1519. $context['template_layers'] = array(WIRELESS_PROTOCOL);
  1520. loadTemplate('Wireless');
  1521. loadLanguage('Wireless+index+Modifications');
  1522. }
  1523. // Output is fully XML, so no need for the index template.
  1524. elseif (isset($_REQUEST['xml']))
  1525. {
  1526. loadLanguage('index+Modifications');
  1527. loadTemplate('Xml');
  1528. $context['template_layers'] = array();
  1529. }
  1530. // These actions don't require the index template at all.
  1531. elseif (!empty($_REQUEST['action']) && in_array($_REQUEST['action'], $simpleActions))
  1532. {
  1533. loadLanguage('index+Modifications');
  1534. $context['template_layers'] = array();
  1535. }
  1536. else
  1537. {
  1538. // Custom templates to load, or just default?
  1539. if (isset($settings['theme_templates']))
  1540. $templates = explode(',', $settings['theme_templates']);
  1541. else
  1542. $templates = array('index');
  1543. // Load each template...
  1544. foreach ($templates as $template)
  1545. loadTemplate($template);
  1546. // ...and attempt to load their associated language files.
  1547. $required_files = implode('+', array_merge($templates, array('Modifications')));
  1548. loadLanguage($required_files, '', false);
  1549. // Custom template layers?
  1550. if (isset($settings['theme_layers']))
  1551. $context['template_layers'] = explode(',', $settings['theme_layers']);
  1552. else
  1553. $context['template_layers'] = array('html', 'body');
  1554. }
  1555. // Initialize the theme.
  1556. loadSubTemplate('init', 'ignore');
  1557. // Guests may still need a name.
  1558. if ($context['user']['is_guest'] && empty($context['user']['name']))
  1559. $context['user']['name'] = $txt['guest_title'];
  1560. // Any theme-related strings that need to be loaded?
  1561. if (!empty($settings['require_theme_strings']))
  1562. loadLanguage('ThemeStrings', '', false);
  1563. // We allow theme variants, because we're cool.
  1564. $context['theme_variant'] = '';
  1565. $context['theme_variant_url'] = '';
  1566. if (!empty($settings['theme_variants']))
  1567. {
  1568. // Overriding - for previews and that ilk.
  1569. if (!empty($_REQUEST['variant']))
  1570. $_SESSION['id_variant'] = $_REQUEST['variant'];
  1571. // User selection?
  1572. if (empty($settings['disable_user_variant']) || allowedTo('admin_forum'))
  1573. $context['theme_variant'] = !empty($_SESSION['id_variant']) ? $_SESSION['id_variant'] : (!empty($options['theme_variant']) ? $options['theme_variant'] : '');
  1574. // If not a user variant, select the default.
  1575. if ($context['theme_variant'] == '' || !in_array($context['theme_variant'], $settings['theme_variants']))
  1576. $context['theme_variant'] = !empty($settings['default_variant']) && in_array($settings['default_variant'], $settings['theme_variants']) ? $settings['default_variant'] : $settings['theme_variants'][0];
  1577. // Do this to keep things easier in the templates.
  1578. $context['theme_variant'] = '_' . $context['theme_variant'];
  1579. $context['theme_variant_url'] = $context['theme_variant'] . '/';
  1580. }
  1581. // Let's be compatible with old themes!
  1582. if (!function_exists('template_html_above') && in_array('html', $context['template_layers']))
  1583. $context['template_layers'] = array('main');
  1584. // Allow overriding the board wide time/number formats.
  1585. if (empty($user_settings['time_format']) && !empty($txt['time_format']))
  1586. $user_info['time_format'] = $txt['time_format'];
  1587. if (isset($settings['use_default_images']) && $settings['use_default_images'] == 'always')
  1588. {
  1589. $settings['theme_url'] = $settings['default_theme_url'];
  1590. $settings['images_url'] = $settings['default_images_url'];
  1591. $settings['theme_dir'] = $settings['default_theme_dir'];
  1592. }
  1593. // Make a special URL for the language.
  1594. $settings['lang_images_url'] = $settings['images_url'] . '/' . (!empty($txt['image_lang']) ? $txt['image_lang'] : $user_info['language']);
  1595. // Set the character set from the template.
  1596. $context['character_set'] = empty($modSettings['global_character_set']) ? $txt['lang_character_set'] : $modSettings['global_character_set'];
  1597. $context['utf8'] = $context['character_set'] === 'UTF-8';
  1598. $context['right_to_left'] = !empty($txt['lang_rtl']);
  1599. $context['tabindex'] = 1;
  1600. // Compatibility.
  1601. if (!isset($settings['theme_version']))
  1602. $modSettings['memberCount'] = $modSettings['totalMembers'];
  1603. // Default JS variables for use in every theme
  1604. $context['javascript_vars'] = array(
  1605. 'smf_theme_url' => '"' . $settings['theme_url'] . '"',
  1606. 'smf_default_theme_url' => '"' . $settings['default_theme_url'] . '"',
  1607. 'smf_images_url' => '"' . $settings['images_url'] . '"',
  1608. 'smf_scripturl' => '"' . $scripturl . '"',
  1609. 'smf_iso_case_folding' => $context['server']['iso_case_folding'] ? 'true' : 'false',
  1610. 'smf_charset' => '"' . $context['character_set'] . '"',
  1611. 'smf_session_id' => '"' . $context['session_id'] . '"',
  1612. 'smf_session_var' => '"' . $context['session_var'] . '"',
  1613. 'smf_member_id' => $context['user']['id'],
  1614. 'ajax_notification_text' => JavaScriptEscape($txt['ajax_in_progress']),
  1615. 'help_popup_heading_text' => JavaScriptEscape($txt['help_popup']),
  1616. );
  1617. // Add the JQuery library to the list of files to load.
  1618. if (isset($modSettings['jquery_source']) && $modSettings['jquery_source'] == 'cdn')
  1619. loadJavascriptFile('https://ajax.googleapis.com/ajax/libs/jquery/1.7.1/jquery.min.js', array(), 'jquery');
  1620. elseif (isset($modSettings['jquery_source']) && $modSettings['jquery_source'] == 'local')
  1621. loadJavascriptFile('jquery-1.7.1.min.js', array('default_theme' => true, 'seed' => false), 'jquery');
  1622. elseif (isset($modSettings['jquery_source'], $modSettings['jquery_custom']) && $modSettings['jquery_source'] == 'custom')
  1623. loadJavascriptFile($modSettings['jquery_custom'], array(), 'jquery');
  1624. // Auto loading? template_javascript() will take care of the local half of this.
  1625. else
  1626. loadJavascriptFile('https://ajax.googleapis.com/ajax/libs/jquery/1.7.1/jquery.min.js', array(), 'jquery');
  1627. // Queue our JQuery plugins!
  1628. loadJavascriptFile('smf_jquery_plugins.js', array('default_theme' => true));
  1629. // script.js and theme.js, always required, so always add them! Makes index.template.php cleaner and all.
  1630. loadJavascriptFile('script.js', array('default_theme' => true), 'smf_scripts');
  1631. loadJavascriptFile('theme.js', array(), 'theme_scripts');
  1632. // If we think we have mail to send, let's offer up some possibilities... robots get pain (Now with scheduled task support!)
  1633. if ((!empty($modSettings['mail_next_send']) && $modSettings['mail_next_send'] < time() && empty($modSettings['mail_queue_use_cron'])) || empty($modSettings['next_task_time']) || $modSettings['next_task_time'] < time())
  1634. {
  1635. if (isBrowser('possibly_robot'))
  1636. {
  1637. // @todo Maybe move this somewhere better?!
  1638. require_once($sourcedir . '/ScheduledTasks.php');
  1639. // What to do, what to do?!
  1640. if (empty($modSettings['next_task_time']) || $modSettings['next_task_time'] < time())
  1641. AutoTask();
  1642. else
  1643. ReduceMailQueue();
  1644. }
  1645. else
  1646. {
  1647. $type = empty($modSettings['next_task_time']) || $modSettings['next_task_time'] < time() ? 'task' : 'mailq';
  1648. $ts = $type == 'mailq' ? $modSettings['mail_next_send'] : $modSettings['next_task_time'];
  1649. addInlineJavascript('
  1650. function smfAutoTask()
  1651. {
  1652. var tempImage = new Image();
  1653. tempImage.src = smf_scripturl + "?scheduled=' . $type . ';ts=' . $ts . '";
  1654. }
  1655. window.setTimeout("smfAutoTask();", 1);');
  1656. }
  1657. }
  1658. // Any files to include at this point?
  1659. if (!empty($modSettings['integrate_theme_include']))
  1660. {
  1661. $theme_includes = explode(',', $modSettings['integrate_theme_include']);
  1662. foreach ($theme_includes as $include)
  1663. {
  1664. $include = strtr(trim($include), array('$boarddir' => $boarddir, '$sourcedir' => $sourcedir, '$themedir' => $settings['theme_dir']));
  1665. if (file_exists($include))
  1666. require_once($include);
  1667. }
  1668. }
  1669. // Call load theme integration functions.
  1670. call_integration_hook('integrate_load_theme');
  1671. // We are ready to go.
  1672. $context['theme_loaded'] = true;
  1673. }
  1674. /**
  1675. * Load a template - if the theme doesn't include it, use the default.
  1676. * What this function does:
  1677. * - loads a template file with the name template_name from the current, default, or base theme.
  1678. * - detects a wrong default theme directory and tries to work around it.
  1679. *
  1680. * @uses the template_include() function to include the file.
  1681. * @param string $template_name The name of the template to load
  1682. * @param array|string $style_sheets The name of a single stylesheet or an array of names of stylesheets to load
  1683. * @param bool $fatal If true, dies with an error message if the template cannot be found
  1684. * @return boolean True if the template was loaded, false otherwise
  1685. */
  1686. function loadTemplate($template_name, $style_sheets = array(), $fatal = true)
  1687. {
  1688. global $context, $settings, $txt, $scripturl, $boarddir, $db_show_debug;
  1689. // Do any style sheets first, cause we're easy with those.
  1690. if (!empty($style_sheets))
  1691. {
  1692. if (!is_array($style_sheets))
  1693. $style_sheets = array($style_sheets);
  1694. foreach ($style_sheets as $sheet)
  1695. loadCSSFile($sheet . '.css', array(), $sheet);
  1696. }
  1697. // No template to load?
  1698. if ($template_name === false)
  1699. return true;
  1700. $loaded = false;
  1701. foreach ($settings['template_dirs'] as $template_dir)
  1702. {
  1703. if (file_exists($template_dir . '/' . $template_name . '.template.php'))
  1704. {
  1705. $loaded = true;
  1706. template_include($template_dir . '/' . $template_name . '.template.php', true);
  1707. break;
  1708. }
  1709. }
  1710. if ($loaded)
  1711. {
  1712. // For compatibility reasons, if this is the index template without new functions, include compatible stuff.
  1713. if (substr($template_name, 0, 5) == 'index' && !function_exists('template_button_strip'))
  1714. loadTemplate('Compat');
  1715. if ($db_show_debug === true)
  1716. $context['debug']['templates'][] = $template_name . ' (' . basename($template_dir) . ')';
  1717. // If they have specified an initialization function for this template, go ahead and call it now.
  1718. if (function_exists('template_' . $template_name . '_init'))
  1719. call_user_func('template_' . $template_name . '_init');
  1720. }
  1721. // Hmmm... doesn't exist?! I don't suppose the directory is wrong, is it?
  1722. elseif (!file_exists($settings['default_theme_dir']) && file_exists($boarddir . '/Themes/default'))
  1723. {
  1724. $settings['default_theme_dir'] = $boarddir . '/Themes/default';
  1725. $settings['template_dirs'][] = $settings['default_theme_dir'];
  1726. if (!empty($context['user']['is_admin']) && !isset($_GET['th']))
  1727. {
  1728. loadLanguage('Errors');
  1729. echo '
  1730. <div class="alert errorbox">
  1731. <a href="', $scripturl . '?action=admin;area=theme;sa=list;th=1;' . $context['session_var'] . '=' . $context['session_id'], '" class="alert">', $txt['theme_dir_wrong'], '</a>
  1732. </div>';
  1733. }
  1734. loadTemplate($template_name);
  1735. }
  1736. // Cause an error otherwise.
  1737. elseif ($template_name != 'Errors' && $template_name != 'index' && $fatal)
  1738. fatal_lang_error('theme_template_error', 'template', array((string) $template_name));
  1739. elseif ($fatal)
  1740. die(log_error(sprintf(isset($txt['theme_template_error']) ? $txt['theme_template_error'] : 'Unable to load Themes/default/%s.template.php!', (string) $template_name), 'template'));
  1741. else
  1742. return false;
  1743. }
  1744. /**
  1745. * Load a sub-template.
  1746. * What it does:
  1747. * - loads the sub template specified by sub_template_name, which must be in an already-loaded template.
  1748. * - if ?debug is in the query string, shows administrators a marker after every sub template
  1749. * for debugging purposes.
  1750. *
  1751. * @todo get rid of reading $_REQUEST directly
  1752. *
  1753. * @param string $sub_template_name The name of the sub-template to load
  1754. * @param bool Whether to die with an error if the sub-template can't be loaded
  1755. */
  1756. function loadSubTemplate($sub_template_name, $fatal = false)
  1757. {
  1758. global $context, $txt, $db_show_debug;
  1759. if ($db_show_debug === true)
  1760. $context['debug']['sub_templates'][] = $sub_template_name;
  1761. // Figure out what the template function is named.
  1762. $theme_function = 'template_' . $sub_template_name;
  1763. if (function_exists($theme_function))
  1764. $theme_function();
  1765. elseif ($fatal === false)
  1766. fatal_lang_error('theme_template_error', 'template', array((string) $sub_template_name));
  1767. elseif ($fatal !== 'ignore')
  1768. die(log_error(sprintf(isset($txt['theme_template_error']) ? $txt['theme_template_error'] : 'Unable to load the %s sub template!', (string) $sub_template_name), 'template'));
  1769. // Are we showing debugging for templates? Just make sure not to do it before the doctype...
  1770. if (allowedTo('admin_forum') && isset($_REQUEST['debug']) && !in_array($sub_template_name, array('init', 'main_below')) && ob_get_length() > 0 && !isset($_REQUEST['xml']))
  1771. {
  1772. echo '
  1773. <div style="font-size: 8pt; border: 1px dashed red; background: orange; text-align: center; font-weight: bold;">---- ', $sub_template_name, ' ends ----</div>';
  1774. }
  1775. }
  1776. /**
  1777. * Add a CSS file for output later
  1778. *
  1779. * @param string $filename THe name of the file to load
  1780. * @param array $params An array of parameters
  1781. * Keys are the following:
  1782. * - ['local'] (true/false): define if the file is local
  1783. * - ['default_theme'] (true/false): force use of default theme url
  1784. * - ['force_current'] (true/false): if this is false, we will attempt to load the file from the default theme if not found in the current theme
  1785. * - ['validate'] (true/false): if true script will validate the local file exists
  1786. * - ['seed'] (true/false/string): if true or null, use cache stale, false do not, or used a supplied string
  1787. * @param string $id An ID to stick on the end of the filename for caching purposes
  1788. */
  1789. function loadCSSFile($filename, $params = array(), $id = '')
  1790. {
  1791. global $settings, $context;
  1792. $params['seed'] = (!isset($params['seed']) || $params['seed'] === true) ? '?alph21' : (is_string($params['seed']) ? ($params['seed'] = $params['seed'][0] === '?' ? $params['seed'] : '?' . $params['seed']) : '');
  1793. $params['force_current'] = !empty($params['force_current']) ? $params['force_current'] : false;
  1794. $theme = !empty($params['default_theme']) ? 'default_theme' : 'theme';
  1795. // account for shorthand like admin.css?alp21 filenames
  1796. $has_seed = strpos($filename, '.css?');
  1797. $id = empty($id) ? strtr(basename($filename), '?', '_') : $id;
  1798. // Is this a local file?
  1799. if (strpos($filename, 'http') === false || !empty($params['local']))
  1800. {
  1801. // Are we validating the the file exists?
  1802. if (!empty($params['validate']) && !file_exists($settings[$theme . '_dir'] . '/css/' . $filename))
  1803. {
  1804. // Maybe the default theme has it?
  1805. if ($theme === 'theme' && !$params['force_current'] && file_exists($settings['default_theme_dir'] . '/css/' . $filename))
  1806. $filename = $settings['default_theme_url'] . '/css/' . $filename . ($has_seed ? '' : $params['seed']);
  1807. else
  1808. $filename = false;
  1809. }
  1810. else
  1811. $filename = $settings[$theme . '_url'] . '/css/' . $filename . ($has_seed ? '' : $params['seed']);
  1812. }
  1813. // Add it to the array for use in the template
  1814. if (!empty($filename))
  1815. $context['css_files'][$id] = array('filename' => $filename, 'options' => $params);
  1816. }
  1817. /**
  1818. * Add a Javascript file for output later
  1819. * @param string $filename The name of the file to load
  1820. * @param array $params An array of parameter info
  1821. * Keys are the following:
  1822. * - ['local'] (true/false): define if the file is local
  1823. * - ['default_theme'] (true/false): force use of default theme url
  1824. * - ['defer'] (true/false): define if the file should load in <head> or before the closing <html> tag
  1825. * - ['force_current'] (true/false): if this is false, we will attempt to load the file from the
  1826. * default theme if not found in the current theme
  1827. * - ['async'] (true/false): if the script should be loaded asynchronously (HTML5)
  1828. * - ['validate'] (true/false): if true script will validate the local file exists
  1829. * - ['seed'] (true/false/string): if true or null, use cache stale, false do not, or used a supplied string
  1830. *
  1831. * @param string $id An ID to stik on the end of the filename
  1832. */
  1833. function loadJavascriptFile($filename, $params = array(), $id = '')
  1834. {
  1835. global $settings, $context;
  1836. $params['seed'] = (!isset($params['seed']) || $params['seed'] === true) ? '?alph21' : (is_string($params['seed']) ? ($params['seed'] = $params['seed'][0] === '?' ? $params['seed'] : '?' . $params['seed']) : '');
  1837. $params['force_current'] = !empty($params['force_current']) ? $params['force_current'] : false;
  1838. $theme = !empty($params['default_theme']) ? 'default_theme' : 'theme';
  1839. // account for shorthand like admin.js?alp21 filenames
  1840. $has_seed = strpos($filename, '.js?');
  1841. $id = empty($id) ? strtr(basename($filename), '?', '_') : $id;
  1842. // Is this a local file?
  1843. if (strpos($filename, 'http') === false || !empty($params['local']))
  1844. {
  1845. // Are we validating it exists on disk?
  1846. if (!empty($params['validate']) && !file_exists($settings[$theme . '_dir'] . '/scripts/' . $filename))
  1847. {
  1848. // can't find it in this theme, how about the default?
  1849. if ($theme === 'theme' && !$params['force_current'] && file_exists($settings['default_theme_dir'] . '/' . $filename))
  1850. $filename = $settings['default_theme_url'] . '/scripts/' . $filename . ($has_seed ? '' : $params['seed']);
  1851. else
  1852. $filename = false;
  1853. }
  1854. else
  1855. $filename = $settings[$theme . '_url'] . '/scripts/' . $filename . ($has_seed ? '' : $params['seed']);
  1856. }
  1857. // Add it to the array for use in the template
  1858. if (!empty($filename))
  1859. $context['javascript_files'][$id] = array('filename' => $filename, 'options' => $params);
  1860. }
  1861. /**
  1862. * Add a Javascript variable for output later (for feeding text strings and similar to JS)
  1863. * Cleaner and easier (for modders) than to use the function below.
  1864. *
  1865. * @param string $key The key for this variable
  1866. * @param string $value The value
  1867. * @param bool $escape Whether or not to escape the value
  1868. */
  1869. function addJavascriptVar($key, $value, $escape = false)
  1870. {
  1871. global $context;
  1872. if (!empty($key) && !empty($value))
  1873. $context['javascript_vars'][$key] = !empty($escape) ? JavaScriptEscape($value) : $value;
  1874. }
  1875. /**
  1876. * Add a block of inline Javascript code to be executed later
  1877. *
  1878. * - only use this if you have to, generally external JS files are better, but for very small scripts
  1879. * or for scripts that require help from PHP/whatever, this can be useful.
  1880. * - all code added with this function is added to the same <script> tag so do make sure your JS is clean!
  1881. *
  1882. * @param string $javascript Some JS code
  1883. * @param bool Whether the script should load in <head> or before the closing <html> tag
  1884. */
  1885. function addInlineJavascript($javascript, $defer = false)
  1886. {
  1887. global $context;
  1888. $context['javascript_inline'][($defer === true ? 'defer' : 'standard')][] = $javascript;
  1889. }
  1890. /**
  1891. * Load a language file. Tries the current and default themes as well as the user and global languages.
  1892. *
  1893. * @param string $template_name The name of a template file
  1894. * @param string $lang A specific language to load this file from
  1895. * @param bool $fatal Whether to die with an error if it can't be loaded
  1896. * @param bool $force_reload Whether to load the file again if it's already loaded
  1897. * @return string The language actually loaded.
  1898. */
  1899. function loadLanguage($template_name, $lang = '', $fatal = true, $force_reload = false)
  1900. {
  1901. global $user_info, $language, $settings, $context, $modSettings;
  1902. global $db_show_debug, $sourcedir, $txt, $birthdayEmails, $txtBirthdayEmails;
  1903. static $already_loaded = array();
  1904. // Default to the user's language.
  1905. if ($lang == '')
  1906. $lang = isset($user_info['language']) ? $user_info['language'] : $language;
  1907. // Do we want the English version of language file as fallback?
  1908. if (empty($modSettings['disable_language_fallback']) && $lang != 'english')
  1909. loadLanguage($template_name, 'english', false);
  1910. if (!$force_reload && isset($already_loaded[$template_name]) && $already_loaded[$template_name] == $lang)
  1911. return $lang;
  1912. // Make sure we have $settings - if not we're in trouble and need to find it!
  1913. if (empty($settings['default_theme_dir']))
  1914. {
  1915. require_once($sourcedir . '/ScheduledTasks.php');
  1916. loadEssentialThemeData();
  1917. }
  1918. // What theme are we in?
  1919. $theme_name = basename($settings['theme_url']);
  1920. if (empty($theme_name))
  1921. $theme_name = 'unknown';
  1922. // For each file open it up and write it out!
  1923. foreach (explode('+', $template_name) as $template)
  1924. {
  1925. // Obviously, the current theme is most important to check.
  1926. $attempts = array(
  1927. array($settings['theme_dir'], $template, $lang, $settings['theme_url']),
  1928. array($settings['theme_dir'], $template, $language, $settings['theme_url']),
  1929. );
  1930. // Do we have a base theme to worry about?
  1931. if (isset($settings['base_theme_dir']))
  1932. {
  1933. $attempts[] = array($settings['base_theme_dir'], $template, $lang, $settings['base_theme_url']);
  1934. $attempts[] = array($settings['base_theme_dir'], $template, $language, $settings['base_theme_url']);
  1935. }
  1936. // Fall back on the default theme if necessary.
  1937. $attempts[] = array($settings['default_theme_dir'], $template, $lang, $settings['default_theme_url']);
  1938. $attempts[] = array($settings['default_theme_dir'], $template, $language, $settings['default_theme_url']);
  1939. // Fall back on the English language if none of the preferred languages can be found.
  1940. if (!in_array('english', array($lang, $language)))
  1941. {
  1942. $attempts[] = array($settings['theme_dir'], $template, 'english', $settings['theme_url']);
  1943. $attempts[] = array($settings['default_theme_dir'], $template, 'english', $settings['default_theme_url']);
  1944. }
  1945. // Try to find the language file.
  1946. $found = false;
  1947. foreach ($attempts as $k => $file)
  1948. {
  1949. if (file_exists($file[0] . '/languages/' . $file[1] . '.' . $file[2] . '.php'))
  1950. {
  1951. // Include it!
  1952. template_include($file[0] . '/languages/' . $file[1] . '.' . $file[2] . '.php');
  1953. // Note that we found it.
  1954. $found = true;
  1955. break;
  1956. }
  1957. }
  1958. // That couldn't be found! Log the error, but *try* to continue normally.
  1959. if (!$found && $fatal)
  1960. {
  1961. log_error(sprintf($txt['theme_language_error'], $template_name . '.' . $lang, 'template'));
  1962. break;
  1963. }
  1964. // For the sake of backward compatibility
  1965. if (!empty($txt['emails']))
  1966. {
  1967. foreach ($txt['emails'] as $key => $value)
  1968. {
  1969. $txt[$key . '_subject'] = $value['subject'];
  1970. $txt[$key . '_body'] = $value['body'];
  1971. }
  1972. $txt['emails'] = array();
  1973. }
  1974. // For sake of backward compatibility: $birthdayEmails is supposed to be
  1975. // empty in a normal install. If it isn't it means the forum is using
  1976. // something "old" (it may be the translation, it may be a mod) and this
  1977. // code (like the piece above) takes care of converting it to the new format
  1978. if (!empty($birthdayEmails))
  1979. {
  1980. foreach ($birthdayEmails as $key => $value)
  1981. {
  1982. $txtBirthdayEmails[$key . '_subject'] = $value['subject'];
  1983. $txtBirthdayEmails[$key . '_body'] = $value['body'];
  1984. $txtBirthdayEmails[$key . '_author'] = $value['author'];
  1985. }
  1986. $birthdayEmails = array();
  1987. }
  1988. }
  1989. // Keep track of what we're up to soldier.
  1990. if ($db_show_debug === true)
  1991. $context['debug']['language_files'][] = $template_name . '.' . $lang . ' (' . $theme_name . ')';
  1992. // Remember what we have loaded, and in which language.
  1993. $already_loaded[$template_name] = $lang;
  1994. // Return the language actually loaded.
  1995. return $lang;
  1996. }
  1997. /**
  1998. * Get all parent boards (requires first parent as parameter)
  1999. * It finds all the parents of id_parent, and that board itself.
  2000. * Additionally, it detects the moderators of said boards.
  2001. *
  2002. * @param int $id_parent The ID of the parent board
  2003. * @return array An array of information about the boards found.
  2004. */
  2005. function getBoardParents($id_parent)
  2006. {
  2007. global $scripturl, $smcFunc;
  2008. // First check if we have this cached already.
  2009. if (($boards = cache_get_data('board_parents-' . $id_parent, 480)) === null)
  2010. {
  2011. $boards = array();
  2012. $original_parent = $id_parent;
  2013. // Loop while the parent is non-zero.
  2014. while ($id_parent != 0)
  2015. {
  2016. $result = $smcFunc['db_query']('', '
  2017. SELECT
  2018. b.id_parent, b.name, {int:board_parent} AS id_board, IFNULL(mem.id_member, 0) AS id_moderator,
  2019. mem.real_name, b.child_level, IFNULL(mg.id_group, 0) AS id_moderator_group, mg.group_name
  2020. FROM {db_prefix}boards AS b
  2021. LEFT JOIN {db_prefix}moderators AS mods ON (mods.id_board = b.id_board)
  2022. LEFT JOIN {db_prefix}members AS mem ON (mem.id_member = mods.id_member)
  2023. LEFT JOIN {db_prefix}moderator_groups AS modgs ON (modgs.id_board = b.id_board)
  2024. LEFT JOIN {db_prefix}membergroups AS mg ON (mg.id_group = modgs.id_group)
  2025. WHERE b.id_board = {int:board_parent}',
  2026. array(
  2027. 'board_parent' => $id_parent,
  2028. )
  2029. );
  2030. // In the EXTREMELY unlikely event this happens, give an error message.
  2031. if ($smcFunc['db_num_rows']($result) == 0)
  2032. fatal_lang_error('parent_not_found', 'critical');
  2033. while ($row = $smcFunc['db_fetch_assoc']($result))
  2034. {
  2035. if (!isset($boards[$row['id_board']]))
  2036. {
  2037. $id_parent = $row['id_parent'];
  2038. $boards[$row['id_board']] = array(
  2039. 'url' => $scripturl . '?board=' . $row['id_board'] . '.0',
  2040. 'name' => $row['name'],
  2041. 'level' => $row['child_level'],
  2042. 'moderators' => array(),
  2043. 'moderator_groups' => array()
  2044. );
  2045. }
  2046. // If a moderator exists for this board, add that moderator for all children too.
  2047. if (!empty($row['id_moderator']))
  2048. foreach ($boards as $id => $dummy)
  2049. {
  2050. $boards[$id]['moderators'][$row['id_moderator']] = array(
  2051. 'id' => $row['id_moderator'],
  2052. 'name' => $row['real_name'],
  2053. 'href' => $scripturl . '?action=profile;u=' . $row['id_moderator'],
  2054. 'link' => '<a href="' . $scripturl . '?action=profile;u=' . $row['id_moderator'] . '">' . $row['real_name'] . '</a>'
  2055. );
  2056. }
  2057. // If a moderator group exists for this board, add that moderator group for all children too
  2058. if (!empty($row['id_moderator_group']))
  2059. foreach ($boards as $id => $dummy)
  2060. {
  2061. $boards[$id]['moderator_groups'][$row['id_moderator_group']] = array(
  2062. 'id' => $row['id_moderator_group'],
  2063. 'name' => $row['group_name'],
  2064. 'href' => $scripturl . '?action=groups;sa=members;group=' . $row['id_moderator_group'],
  2065. 'link' => '<a href="' . $scripturl . '?action=groups;sa=members;group=' . $row['id_moderator_group'] . '">' . $row['group_name'] . '</a>'
  2066. );
  2067. }
  2068. }
  2069. $smcFunc['db_free_result']($result);
  2070. }
  2071. cache_put_data('board_parents-' . $original_parent, $boards, 480);
  2072. }
  2073. return $boards;
  2074. }
  2075. /**
  2076. * Attempt to reload our known languages.
  2077. * It will try to choose only utf8 or non-utf8 languages.
  2078. *
  2079. * @param bool $use_cache Whether or not to use the cache
  2080. * @param bool $favor_utf8 Whether or not to favor UTF-8 files
  2081. * @return array An array of information about available languages
  2082. */
  2083. function getLanguages($use_cache = true, $favor_utf8 = true)
  2084. {
  2085. global $context, $smcFunc, $settings, $modSettings;
  2086. // Either we don't use the cache, or its expired.
  2087. if (!$use_cache || ($context['languages'] = cache_get_data('known_languages' . ($favor_utf8 ? '' : '_all'), !empty($modSettings['cache_enable']) && $modSettings['cache_enable'] < 1 ? 86400 : 3600)) == null)
  2088. {
  2089. // If we don't have our theme information yet, lets get it.
  2090. if (empty($settings['default_theme_dir']))
  2091. loadTheme(0, false);
  2092. // Default language directories to try.
  2093. $language_directories = array(
  2094. $settings['default_theme_dir'] . '/languages',
  2095. $settings['actual_theme_dir'] . '/languages',
  2096. );
  2097. // We possibly have a base theme directory.
  2098. if (!empty($settings['base_theme_dir']))
  2099. $language_directories[] = $settings['base_theme_dir'] . '/languages';
  2100. // Remove any duplicates.
  2101. $language_directories = array_unique($language_directories);
  2102. foreach ($language_directories as $language_dir)
  2103. {
  2104. // Can't look in here... doesn't exist!
  2105. if (!file_exists($language_dir))
  2106. continue;
  2107. $dir = dir($language_dir);
  2108. while ($entry = $dir->read())
  2109. {
  2110. // Look for the index language file....
  2111. if (!preg_match('~^index\.(.+)\.php$~', $entry, $matches))
  2112. continue;
  2113. $context['languages'][$matches[1]] = array(
  2114. 'name' => $smcFunc['ucwords'](strtr($matches[1], array('_' => ' '))),
  2115. 'selected' => false,
  2116. 'filename' => $matches[1],
  2117. 'location' => $language_dir . '/index.' . $matches[1] . '.php',
  2118. );
  2119. }
  2120. $dir->close();
  2121. }
  2122. // Favoring UTF8? Then prevent us from selecting non-UTF8 versions.
  2123. if ($favor_utf8)
  2124. {
  2125. foreach ($context['languages'] as $lang)
  2126. if (substr($lang['filename'], strlen($lang['filename']) - 5, 5) != '-utf8' && isset($context['languages'][$lang['filename'] . '-utf8']))
  2127. unset($context['languages'][$lang['filename']]);
  2128. }
  2129. // Lets cash in on this deal.
  2130. if (!empty($modSettings['cache_enable']))
  2131. cache_put_data('known_languages' . ($favor_utf8 ? '' : '_all'), $context['languages'], !empty($modSettings['cache_enable']) && $modSettings['cache_enable'] < 1 ? 86400 : 3600);
  2132. }
  2133. return $context['languages'];
  2134. }
  2135. /**
  2136. * Replace all vulgar words with respective proper words. (substring or whole words..)
  2137. * What this function does:
  2138. * - it censors the passed string.
  2139. * - if the theme setting allow_no_censored is on, and the theme option
  2140. * show_no_censored is enabled, does not censor, unless force is also set.
  2141. * - it caches the list of censored words to reduce parsing.
  2142. *
  2143. * @param string &$text The text to censor
  2144. * @param bool $force Whether to censor the text regardless of settings
  2145. * @return string The censored text
  2146. */
  2147. function censorText(&$text, $force = false)
  2148. {
  2149. global $modSettings, $options, $settings, $txt;
  2150. static $censor_vulgar = null, $censor_proper;
  2151. if ((!empty($options['show_no_censored']) && !empty($modSettings['allow_no_censored']) && !$force) || empty($modSettings['censor_vulgar']) || trim($text) === '')
  2152. return $text;
  2153. // If they haven't yet been loaded, load them.
  2154. if ($censor_vulgar == null)
  2155. {
  2156. $censor_vulgar = explode("\n", $modSettings['censor_vulgar']);
  2157. $censor_proper = explode("\n", $modSettings['censor_proper']);
  2158. // Quote them for use in regular expressions.
  2159. if (!empty($modSettings['censorWholeWord']))
  2160. {
  2161. for ($i = 0, $n = count($censor_vulgar); $i < $n; $i++)
  2162. {
  2163. $censor_vulgar[$i] = str_replace(array('\\\\\\*', '\\*', '&', '\''), array('[*]', '[^\s]*?', '&amp;', '&#039;'), preg_quote($censor_vulgar[$i], '/'));
  2164. $censor_vulgar[$i] = '/(?<=^|\W)' . $censor_vulgar[$i] . '(?=$|\W)/' . (empty($modSettings['censorIgnoreCase']) ? '' : 'i') . ((empty($modSettings['global_character_set']) ? $txt['lang_character_set'] : $modSettings['global_character_set']) === 'UTF-8' ? 'u' : '');
  2165. // @todo I'm thinking the old way is some kind of bug and this is actually fixing it.
  2166. //if (strpos($censor_vulgar[$i], '\'') !== false)
  2167. //$censor_vulgar[$i] = str_replace('\'', '&#039;', $censor_vulgar[$i]);
  2168. }
  2169. }
  2170. }
  2171. // Censoring isn't so very complicated :P.
  2172. if (empty($modSettings['censorWholeWord']))
  2173. $text = empty($modSettings['censorIgnoreCase']) ? str_ireplace($censor_vulgar, $censor_proper, $text) : str_replace($censor_vulgar, $censor_proper, $text);
  2174. else
  2175. $text = preg_replace($censor_vulgar, $censor_proper, $text);
  2176. return $text;
  2177. }
  2178. /**
  2179. * Load the template/language file using eval or require? (with eval we can show an error message!)
  2180. * - loads the template or language file specified by filename.
  2181. * - uses eval unless disableTemplateEval is enabled.
  2182. * - outputs a parse error if the file did not exist or contained errors.
  2183. * - attempts to detect the error and line, and show detailed information.
  2184. *
  2185. * @param string $filename The name of the file to include
  2186. * @param bool $once If true only includes the file once (like include_once)
  2187. */
  2188. function template_include($filename, $once = false)
  2189. {
  2190. global $context, $settings, $txt, $scripturl, $modSettings;
  2191. global $boardurl, $boarddir, $sourcedir;
  2192. global $maintenance, $mtitle, $mmessage;
  2193. static $templates = array();
  2194. // We want to be able to figure out any errors...
  2195. @ini_set('track_errors', '1');
  2196. // Don't include the file more than once, if $once is true.
  2197. if ($once && in_array($filename, $templates))
  2198. return;
  2199. // Add this file to the include list, whether $once is true or not.
  2200. else
  2201. $templates[] = $filename;
  2202. // Are we going to use eval?
  2203. if (empty($modSettings['disableTemplateEval']))
  2204. {
  2205. $file_found = file_exists($filename) && eval('?' . '>' . rtrim(file_get_contents($filename))) !== false;
  2206. $settings['current_include_filename'] = $filename;
  2207. }
  2208. else
  2209. {
  2210. $file_found = file_exists($filename);
  2211. if ($once && $file_found)
  2212. require_once($filename);
  2213. elseif ($file_found)
  2214. require($filename);
  2215. }
  2216. if ($file_found !== true)
  2217. {
  2218. ob_end_clean();
  2219. if (!empty($modSettings['enableCompressedOutput']))
  2220. @ob_start('ob_gzhandler');
  2221. else
  2222. ob_start();
  2223. if (isset($_GET['debug']) && !WIRELESS)
  2224. header('Content-Type: application/xhtml+xml; charset=' . (empty($context['character_set']) ? 'ISO-8859-1' : $context['character_set']));
  2225. // Don't cache error pages!!
  2226. header('Expires: Mon, 26 Jul 1997 05:00:00 GMT');
  2227. header('Last-Modified: ' . gmdate('D, d M Y H:i:s') . ' GMT');
  2228. header('Cache-Control: no-cache');
  2229. if (!isset($txt['template_parse_error']))
  2230. {
  2231. $txt['template_parse_error'] = 'Template Parse Error!';
  2232. $txt['template_parse_error_message'] = 'It seems something has gone sour on the forum with the template system. This problem should only be temporary, so please come back later and try again. If you continue to see this message, please contact the administrator.<br /><br />You can also try <a href="javascript:location.reload();">refreshing this page</a>.';
  2233. $txt['template_parse_error_details'] = 'There was a problem loading the <tt><strong>%1$s</strong></tt> template or language file. Please check the syntax and try again - remember, single quotes (<tt>\'</tt>) often have to be escaped with a slash (<tt>\\</tt>). To see more specific error information from PHP, try <a href="' . $boardurl . '%1$s" class="extern">accessing the file directly</a>.<br /><br />You may want to try to <a href="javascript:location.reload();">refresh this page</a> or <a href="' . $scripturl . '?theme=1">use the default theme</a>.';
  2234. }
  2235. // First, let's get the doctype and language information out of the way.
  2236. echo '<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
  2237. <html xmlns="http://www.w3.org/1999/xhtml"', !empty($context['right_to_left']) ? ' dir="rtl"' : '', '>
  2238. <head>';
  2239. if (isset($context['character_set']))
  2240. echo '
  2241. <meta http-equiv="Content-Type" content="text/html; charset=', $context['character_set'], '" />';
  2242. if (!empty($maintenance) && !allowedTo('admin_forum'))
  2243. echo '
  2244. <title>', $mtitle, '</title>
  2245. </head>
  2246. <body>
  2247. <h3>', $mtitle, '</h3>
  2248. ', $mmessage, '
  2249. </body>
  2250. </html>';
  2251. elseif (!allowedTo('admin_forum'))
  2252. echo '
  2253. <title>', $txt['template_parse_error'], '</title>
  2254. </head>
  2255. <body>
  2256. <h3>', $txt['template_parse_error'], '</h3>
  2257. ', $txt['template_parse_error_message'], '
  2258. </body>
  2259. </html>';
  2260. else
  2261. {
  2262. require_once($sourcedir . '/Subs-Package.php');
  2263. $error = fetch_web_data($boardurl . strtr($filename, array($boarddir => '', strtr($boarddir, '\\', '/') => '')));
  2264. if (empty($error) && ini_get('track_errors'))
  2265. $error = $php_errormsg;
  2266. $error = strtr($error, array('<b>' => '<strong>', '</b>' => '</strong>'));
  2267. echo '
  2268. <title>', $txt['template_parse_error'], '</title>
  2269. </head>
  2270. <body>
  2271. <h3>', $txt['template_parse_error'], '</h3>
  2272. ', sprintf($txt['template_parse_error_details'], strtr($filename, array($boarddir => '', strtr($boarddir, '\\', '/') => '')));
  2273. if (!empty($error))
  2274. echo '
  2275. <hr />
  2276. <div style="margin: 0 20px;"><tt>', strtr(strtr($error, array('<strong>' . $boarddir => '<strong>...', '<strong>' . strtr($boarddir, '\\', '/') => '<strong>...')), '\\', '/'), '</tt></div>';
  2277. // I know, I know... this is VERY COMPLICATED. Still, it's good.
  2278. if (preg_match('~ <strong>(\d+)</strong><br( /)?' . '>$~i', $error, $match) != 0)
  2279. {
  2280. $data = file($filename);
  2281. $data2 = highlight_php_code(implode('', $data));
  2282. $data2 = preg_split('~\<br( /)?\>~', $data2);
  2283. // Fix the PHP code stuff...
  2284. if (!isBrowser('gecko'))
  2285. $data2 = str_replace("\t", '<span style="white-space: pre;">' . "\t" . '</span>', $data2);
  2286. else
  2287. $data2 = str_replace('<pre style="display: inline;">' . "\t" . '</pre>', "\t", $data2);
  2288. // Now we get to work around a bug in PHP where it doesn't escape <br />s!
  2289. $j = -1;
  2290. foreach ($data as $line)
  2291. {
  2292. $j++;
  2293. if (substr_count($line, '<br />') == 0)
  2294. continue;
  2295. $n = substr_count($line, '<br />');
  2296. for ($i = 0; $i < $n; $i++)
  2297. {
  2298. $data2[$j] .= '&lt;br /&gt;' . $data2[$j + $i + 1];
  2299. unset($data2[$j + $i + 1]);
  2300. }
  2301. $j += $n;
  2302. }
  2303. $data2 = array_values($data2);
  2304. array_unshift($data2, '');
  2305. echo '
  2306. <div style="margin: 2ex 20px; width: 96%; overflow: auto;"><pre style="margin: 0;">';
  2307. // Figure out what the color coding was before...
  2308. $line = max($match[1] - 9, 1);
  2309. $last_line = '';
  2310. for ($line2 = $line - 1; $line2 > 1; $line2--)
  2311. if (strpos($data2[$line2], '<') !== false)
  2312. {
  2313. if (preg_match('~(<[^/>]+>)[^<]*$~', $data2[$line2], $color_match) != 0)
  2314. $last_line = $color_match[1];
  2315. break;
  2316. }
  2317. // Show the relevant lines...
  2318. for ($n = min($match[1] + 4, count($data2) + 1); $line <= $n; $line++)
  2319. {
  2320. if ($line == $match[1])
  2321. echo '</pre><div style="background-color: #ffb0b5;"><pre style="margin: 0;">';
  2322. echo '<span style="color: black;">', sprintf('%' . strlen($n) . 's', $line), ':</span> ';
  2323. if (isset($data2[$line]) && $data2[$line] != '')
  2324. echo substr($data2[$line], 0, 2) == '</' ? preg_replace('~^</[^>]+>~', '', $data2[$line]) : $last_line . $data2[$line];
  2325. if (isset($data2[$line]) && preg_match('~(<[^/>]+>)[^<]*$~', $data2[$line], $color_match) != 0)
  2326. {
  2327. $last_line = $color_match[1];
  2328. echo '</', substr($last_line, 1, 4), '>';
  2329. }
  2330. elseif ($last_line != '' && strpos($data2[$line], '<') !== false)
  2331. $last_line = '';
  2332. elseif ($last_line != '' && $data2[$line] != '')
  2333. echo '</', substr($last_line, 1, 4), '>';
  2334. if ($line == $match[1])
  2335. echo '</pre></div><pre style="margin: 0;">';
  2336. else
  2337. echo "\n";
  2338. }
  2339. echo '</pre></div>';
  2340. }
  2341. echo '
  2342. </body>
  2343. </html>';
  2344. }
  2345. die;
  2346. }
  2347. }
  2348. /**
  2349. * Initialize a database connection.
  2350. */
  2351. function loadDatabase()
  2352. {
  2353. global $db_persist, $db_connection, $db_server, $db_user, $db_passwd;
  2354. global $db_type, $db_name, $ssi_db_user, $ssi_db_passwd, $sourcedir, $db_prefix;
  2355. // Figure out what type of database we are using.
  2356. if (empty($db_type) || !file_exists($sourcedir . '/Subs-Db-' . $db_type . '.php'))
  2357. $db_type = 'mysql';
  2358. // Load the file for the database.
  2359. require_once($sourcedir . '/Subs-Db-' . $db_type . '.php');
  2360. // If we are in SSI try them first, but don't worry if it doesn't work, we have the normal username and password we can use.
  2361. if (SMF == 'SSI' && !empty($ssi_db_user) && !empty($ssi_db_passwd))
  2362. $db_connection = smf_db_initiate($db_server, $db_name, $ssi_db_user, $ssi_db_passwd, $db_prefix, array('persist' => $db_persist, 'non_fatal' => true, 'dont_select_db' => true));
  2363. // Either we aren't in SSI mode, or it failed.
  2364. if (empty($db_connection))
  2365. $db_connection = smf_db_initiate($db_server, $db_name, $db_user, $db_passwd, $db_prefix, array('persist' => $db_persist, 'dont_select_db' => SMF == 'SSI'));
  2366. // Safe guard here, if there isn't a valid connection lets put a stop to it.
  2367. if (!$db_connection)
  2368. display_db_error();
  2369. // If in SSI mode fix up the prefix.
  2370. if (SMF == 'SSI')
  2371. db_fix_prefix($db_prefix, $db_name);
  2372. }
  2373. /**
  2374. * Try to retrieve a cache entry. On failure, call the appropriate function.
  2375. *
  2376. * @param string $key The key for this entry
  2377. * @param string $file The file associated with this entry
  2378. * @param string $function The function to call
  2379. * @param array $params Parameters to be passed to the specified function
  2380. * @param int $level The cache level
  2381. * @return string The cached data
  2382. */
  2383. function cache_quick_get($key, $file, $function, $params, $level = 1)
  2384. {
  2385. global $modSettings, $sourcedir;
  2386. // @todo Why are we doing this if caching is disabled?
  2387. if (function_exists('call_integration_hook'))
  2388. call_integration_hook('pre_cache_quick_get', array(&$key, &$file, &$function, &$params, &$level));
  2389. /* Refresh the cache if either:
  2390. 1. Caching is disabled.
  2391. 2. The cache level isn't high enough.
  2392. 3. The item has not been cached or the cached item expired.
  2393. 4. The cached item has a custom expiration condition evaluating to true.
  2394. 5. The expire time set in the cache item has passed (needed for Zend).
  2395. */
  2396. if (empty($modSettings['cache_enable']) || $modSettings['cache_enable'] < $level || !is_array($cache_block = cache_get_data($key, 3600)) || (!empty($cache_block['refresh_eval']) && eval($cache_block['refresh_eval'])) || (!empty($cache_block['expires']) && $cache_block['expires'] < time()))
  2397. {
  2398. require_once($sourcedir . '/' . $file);
  2399. $cache_block = call_user_func_array($function, $params);
  2400. if (!empty($modSettings['cache_enable']) && $modSettings['cache_enable'] >= $level)
  2401. cache_put_data($key, $cache_block, $cache_block['expires'] - time());
  2402. }
  2403. // Some cached data may need a freshening up after retrieval.
  2404. if (!empty($cache_block['post_retri_eval']))
  2405. eval($cache_block['post_retri_eval']);
  2406. if (function_exists('call_integration_hook'))
  2407. call_integration_hook('post_cache_quick_get', array(&$cache_block));
  2408. return $cache_block['data'];
  2409. }
  2410. /**
  2411. * Puts value in the cache under key for ttl seconds.
  2412. *
  2413. * - It may "miss" so shouldn't be depended on
  2414. * - Uses the cache engine chosen in the ACP and saved in settings.php
  2415. * - It supports:
  2416. * Turck MMCache: http://turck-mmcache.sourceforge.net/index_old.html#api
  2417. * Xcache: http://xcache.lighttpd.net/wiki/XcacheApi
  2418. * memcache: http://www.php.net/memcache
  2419. * APC: http://www.php.net/apc
  2420. * eAccelerator: http://bart.eaccelerator.net/doc/phpdoc/
  2421. * Zend: http://files.zend.com/help/Zend-Platform/output_cache_functions.htm
  2422. * Zend: http://files.zend.com/help/Zend-Platform/zend_cache_functions.htm
  2423. *
  2424. * @param string $key A key for this value
  2425. * @param mixed $value The data to cache
  2426. * @param int $ttl How long (in seconds) the data should be cached for
  2427. */
  2428. function cache_put_data($key, $value, $ttl = 120)
  2429. {
  2430. global $boardurl, $sourcedir, $modSettings, $memcached;
  2431. global $cache_hits, $cache_count, $db_show_debug, $cachedir;
  2432. global $cache_accelerator, $cache_enable;
  2433. if (empty($cache_enable))
  2434. return;
  2435. $cache_count = isset($cache_count) ? $cache_count + 1 : 1;
  2436. if (isset($db_show_debug) && $db_show_debug === true)
  2437. {
  2438. $cache_hits[$cache_count] = array('k' => $key, 'd' => 'put', 's' => $value === null ? 0 : strlen(serialize($value)));
  2439. $st = microtime();
  2440. }
  2441. $key = md5($boardurl . filemtime($sourcedir . '/Load.php')) . '-SMF-' . strtr($key, ':/', '-_');
  2442. $value = $value === null ? null : serialize($value);
  2443. switch ($cache_accelerator)
  2444. {
  2445. case 'memcached':
  2446. // The simple yet efficient memcached.
  2447. if (function_exists('memcached_set') || function_exists('memcache_set') && isset($modSettings['cache_memcached']) && trim($modSettings['cache_memcached']) != '')
  2448. {
  2449. // Not connected yet?
  2450. if (empty($memcached))
  2451. get_memcached_server();
  2452. if (!$memcached)
  2453. return;
  2454. memcache_set($memcached, $key, $value, 0, $ttl);
  2455. }
  2456. break;
  2457. case 'eaccelerator':
  2458. // eAccelerator...
  2459. if (function_exists('eaccelerator_put'))
  2460. {
  2461. if (mt_rand(0, 10) == 1)
  2462. eaccelerator_gc();
  2463. if ($value === null)
  2464. @eaccelerator_rm($key);
  2465. else
  2466. eaccelerator_put($key, $value, $ttl);
  2467. }
  2468. break;
  2469. case 'mmcache':
  2470. // Turck MMCache?
  2471. if (function_exists('mmcache_put'))
  2472. {
  2473. if (mt_rand(0, 10) == 1)
  2474. mmcache_gc();
  2475. if ($value === null)
  2476. @mmcache_rm($key);
  2477. else
  2478. {
  2479. mmcache_lock($key);
  2480. mmcache_put($key, $value, $ttl);
  2481. mmcache_unlock($key);
  2482. }
  2483. }
  2484. break;
  2485. case 'apc':
  2486. // Alternative PHP Cache, ahoy!
  2487. if (function_exists('apc_store'))
  2488. {
  2489. // An extended key is needed to counteract a bug in APC.
  2490. if ($value === null)
  2491. apc_delete($key . 'smf');
  2492. else
  2493. apc_store($key . 'smf', $value, $ttl);
  2494. }
  2495. break;
  2496. case 'zend':
  2497. // Zend Platform/ZPS/etc.
  2498. if (function_exists('zend_shm_cache_store'))
  2499. zend_shm_cache_store('SMF::' . $key, $value, $ttl);
  2500. elseif (function_exists('output_cache_put'))
  2501. output_cache_put($key, $value);
  2502. break;
  2503. case 'xcache':
  2504. if (function_exists('xcache_set') && ini_get('xcache.var_size') > 0)
  2505. {
  2506. if ($value === null)
  2507. xcache_unset($key);
  2508. else
  2509. xcache_set($key, $value, $ttl);
  2510. }
  2511. break;
  2512. default:
  2513. // Otherwise custom cache?
  2514. if ($value === null)
  2515. @unlink($cachedir . '/data_' . $key . '.php');
  2516. else
  2517. {
  2518. $cache_data = '<' . '?' . 'php if (!defined(\'SMF\')) die; if (' . (time() + $ttl) . ' < time()) $expired = true; else{$expired = false; $value = \'' . addcslashes($value, '\\\'') . '\';}' . '?' . '>';
  2519. // Write out the cache file, check that the cache write was successful; all the data must be written
  2520. // If it fails due to low diskspace, or other, remove the cache file
  2521. if (file_put_contents($cachedir . '/data_' . $key . '.php', $cache_data, LOCK_EX) !== strlen($cache_data))
  2522. @unlink($cachedir . '/data_' . $key . '.php');
  2523. }
  2524. break;
  2525. }
  2526. if (function_exists('call_integration_hook'))
  2527. call_integration_hook('cache_put_data', array(&$key, &$value, &$ttl));
  2528. if (isset($db_show_debug) && $db_show_debug === true)
  2529. $cache_hits[$cache_count]['t'] = array_sum(explode(' ', microtime())) - array_sum(explode(' ', $st));
  2530. }
  2531. /**
  2532. * Gets the value from the cache specified by key, so long as it is not older than ttl seconds.
  2533. * - It may often "miss", so shouldn't be depended on.
  2534. * - It supports the same as cache_put_data().
  2535. *
  2536. * @param string $key The key for the value to retrieve
  2537. * @param int $ttl The maximum age of the cached data
  2538. * @return string The cached data or null if nothing was loaded
  2539. */
  2540. function cache_get_data($key, $ttl = 120)
  2541. {
  2542. global $boardurl, $sourcedir, $modSettings, $memcached;
  2543. global $cache_hits, $cache_count, $db_show_debug, $cachedir;
  2544. global $cache_accelerator, $cache_enable;
  2545. if (empty($cache_enable))
  2546. return;
  2547. $cache_count = isset($cache_count) ? $cache_count + 1 : 1;
  2548. if (isset($db_show_debug) && $db_show_debug === true)
  2549. {
  2550. $cache_hits[$cache_count] = array('k' => $key, 'd' => 'get');
  2551. $st = microtime();
  2552. }
  2553. $key = md5($boardurl . filemtime($sourcedir . '/Load.php')) . '-SMF-' . strtr($key, ':/', '-_');
  2554. switch ($cache_accelerator)
  2555. {
  2556. case 'memcache':
  2557. // Okay, let's go for it memcached!
  2558. if ((function_exists('memcache_get') || function_exists('memcached_get')) && isset($modSettings['cache_memcached']) && trim($modSettings['cache_memcached']) != '')
  2559. {
  2560. // Not connected yet?
  2561. if (empty($memcached))
  2562. get_memcached_server();
  2563. if (!$memcached)
  2564. return null;
  2565. $value = (function_exists('memcache_get')) ? memcache_get($cache['connection'], $key) : memcached_get($cache['connection'], $key);
  2566. }
  2567. break;
  2568. case 'eaccelerator':
  2569. // Again, eAccelerator.
  2570. if (function_exists('eaccelerator_get'))
  2571. $value = eaccelerator_get($key);
  2572. break;
  2573. case 'mmcache':
  2574. // The older, but ever-stable, Turck MMCache...
  2575. if (function_exists('mmcache_get'))
  2576. $value = mmcache_get($key);
  2577. break;
  2578. case 'apc':
  2579. // This is the free APC from PECL.
  2580. if (function_exists('apc_fetch'))
  2581. $value = apc_fetch($key . 'smf');
  2582. break;
  2583. case 'zend':
  2584. // Zend's pricey stuff.
  2585. if (function_exists('zend_shm_cache_fetch'))
  2586. $value = zend_shm_cache_fetch('SMF::' . $key);
  2587. elseif (function_exists('output_cache_get'))
  2588. $value = output_cache_get($key, $ttl);
  2589. break;
  2590. case 'xcache':
  2591. if (function_exists('xcache_get') && ini_get('xcache.var_size') > 0)
  2592. $value = xcache_get($key);
  2593. break;
  2594. default:
  2595. // Otherwise it's SMF data!
  2596. if (file_exists($cachedir . '/data_' . $key . '.php') && filesize($cachedir . '/data_' . $key . '.php') > 10)
  2597. {
  2598. // php will cache file_exists et all, we can't 100% depend on its results so proceed with caution
  2599. @include($cachedir . '/data_' . $key . '.php');
  2600. if (!empty($expired) && isset($value))
  2601. {
  2602. @unlink($cachedir . '/data_' . $key . '.php');
  2603. unset($value);
  2604. }
  2605. }
  2606. break;
  2607. }
  2608. if (isset($db_show_debug) && $db_show_debug === true)
  2609. {
  2610. $cache_hits[$cache_count]['t'] = array_sum(explode(' ', microtime())) - array_sum(explode(' ', $st));
  2611. $cache_hits[$cache_count]['s'] = isset($value) ? strlen($value) : 0;
  2612. }
  2613. if (function_exists('call_integration_hook') && isset($value))
  2614. call_integration_hook('cache_get_data', array(&$key, &$ttl, &$value));
  2615. return empty($value) ? null : @unserialize($value);
  2616. }
  2617. /**
  2618. * Get memcache servers.
  2619. *
  2620. * - This function is used by cache_get_data() and cache_put_data().
  2621. * - It attempts to connect to a random server in the cache_memcached setting.
  2622. * - It recursively calls itself up to $level times.
  2623. *
  2624. * @param int $level The maximum number of times to call this function recursively
  2625. */
  2626. function get_memcached_server($level = 3)
  2627. {
  2628. global $memcached, $db_persist, $cache_memcached;
  2629. $servers = explode(',', $cache_memcached);
  2630. $server = explode(':', trim($servers[array_rand($servers)]));
  2631. $cache = (function_exists('memcache_get')) ? 'memcache' : ((function_exists('memcached_get') ? 'memcached' : ''));
  2632. // Don't try more times than we have servers!
  2633. $level = min(count($servers), $level);
  2634. // Don't wait too long: yes, we want the server, but we might be able to run the query faster!
  2635. if (empty($db_persist))
  2636. {
  2637. if ($cache === 'memcached')
  2638. $memcached = memcached_connect($server[0], empty($server[1]) ? 11211 : $server[1]);
  2639. if ($cache === 'memcache')
  2640. $memcached = memcache_connect($server[0], empty($server[1]) ? 11211 : $server[1]);
  2641. }
  2642. else
  2643. {
  2644. if ($cache === 'memcached')
  2645. $memcached = memcached_pconnect($server[0], empty($server[1]) ? 11211 : $server[1]);
  2646. if ($cache === 'memcache')
  2647. $memcached = memcache_pconnect($server[0], empty($server[1]) ? 11211 : $server[1]);
  2648. }
  2649. if (!$memcached && $level > 0)
  2650. get_memcached_server($level - 1);
  2651. }
  2652. ?>