ManageNews.php 27 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727728729730731732733734735736737738739740741742743744745746747748749750751752753754755756757758759760761762763764765766767768769770771772773774775776777778779780781782783784785786787788789790791792793794795796797798799800801802803804805806807808809810811812813814815816817818819820821822823824825826827828829830831832
  1. <?php
  2. /**
  3. * This file manages... the news. :P
  4. *
  5. * Simple Machines Forum (SMF)
  6. *
  7. * @package SMF
  8. * @author Simple Machines http://www.simplemachines.org
  9. * @copyright 2011 Simple Machines
  10. * @license http://www.simplemachines.org/about/smf/license.php BSD
  11. *
  12. * @version 2.1 Alpha 1
  13. */
  14. if (!defined('SMF'))
  15. die('Hacking attempt...');
  16. /**
  17. * The news dispatcher; doesn't do anything, just delegates.
  18. * This is the entrance point for all News and Newsletter screens.
  19. * Called by ?action=admin;area=news.
  20. * It does the permission checks, and calls the appropriate function
  21. * based on the requested sub-action.
  22. */
  23. function ManageNews()
  24. {
  25. global $context, $txt, $scripturl;
  26. // First, let's do a quick permissions check for the best error message possible.
  27. isAllowedTo(array('edit_news', 'send_mail', 'admin_forum'));
  28. loadTemplate('ManageNews');
  29. // Format: 'sub-action' => array('function', 'permission')
  30. $subActions = array(
  31. 'editnews' => array('EditNews', 'edit_news'),
  32. 'mailingmembers' => array('SelectMailingMembers', 'send_mail'),
  33. 'mailingcompose' => array('ComposeMailing', 'send_mail'),
  34. 'mailingsend' => array('SendMailing', 'send_mail'),
  35. 'settings' => array('ModifyNewsSettings', 'admin_forum'),
  36. );
  37. call_integration_hook('integrate_manage_news', array(&$subActions));
  38. // Default to sub action 'main' or 'settings' depending on permissions.
  39. $_REQUEST['sa'] = isset($_REQUEST['sa']) && isset($subActions[$_REQUEST['sa']]) ? $_REQUEST['sa'] : (allowedTo('edit_news') ? 'editnews' : (allowedTo('send_mail') ? 'mailingmembers' : 'settings'));
  40. // Have you got the proper permissions?
  41. isAllowedTo($subActions[$_REQUEST['sa']][1]);
  42. // Create the tabs for the template.
  43. $context[$context['admin_menu_name']]['tab_data'] = array(
  44. 'title' => $txt['news_title'],
  45. 'help' => 'edit_news',
  46. 'description' => $txt['admin_news_desc'],
  47. 'tabs' => array(
  48. 'editnews' => array(
  49. ),
  50. 'mailingmembers' => array(
  51. 'description' => $txt['news_mailing_desc'],
  52. ),
  53. 'settings' => array(
  54. 'description' => $txt['news_settings_desc'],
  55. ),
  56. ),
  57. );
  58. // Force the right area...
  59. if (substr($_REQUEST['sa'], 0, 7) == 'mailing')
  60. $context[$context['admin_menu_name']]['current_subsection'] = 'mailingmembers';
  61. $subActions[$_REQUEST['sa']][0]();
  62. }
  63. /**
  64. * Let the administrator(s) edit the news items for the forum.
  65. * It writes an entry into the moderation log.
  66. * This function uses the edit_news administration area.
  67. * Called by ?action=admin;area=news.
  68. * Requires the edit_news permission.
  69. * Can be accessed with ?action=admin;sa=editnews.
  70. *
  71. * @uses ManageNews template, edit_news sub template.
  72. */
  73. function EditNews()
  74. {
  75. global $txt, $modSettings, $context, $sourcedir, $user_info;
  76. global $smcFunc;
  77. require_once($sourcedir . '/Subs-Post.php');
  78. // The 'remove selected' button was pressed.
  79. if (!empty($_POST['delete_selection']) && !empty($_POST['remove']))
  80. {
  81. checkSession();
  82. // Store the news temporarily in this array.
  83. $temp_news = explode("\n", $modSettings['news']);
  84. // Remove the items that were selected.
  85. foreach ($temp_news as $i => $news)
  86. if (in_array($i, $_POST['remove']))
  87. unset($temp_news[$i]);
  88. // Update the database.
  89. updateSettings(array('news' => implode("\n", $temp_news)));
  90. logAction('news');
  91. }
  92. // The 'Save' button was pressed.
  93. elseif (!empty($_POST['save_items']))
  94. {
  95. checkSession();
  96. foreach ($_POST['news'] as $i => $news)
  97. {
  98. if (trim($news) == '')
  99. unset($_POST['news'][$i]);
  100. else
  101. {
  102. $_POST['news'][$i] = $smcFunc['htmlspecialchars']($_POST['news'][$i], ENT_QUOTES);
  103. preparsecode($_POST['news'][$i]);
  104. }
  105. }
  106. // Send the new news to the database.
  107. updateSettings(array('news' => implode("\n", $_POST['news'])));
  108. // Log this into the moderation log.
  109. logAction('news');
  110. }
  111. // Ready the current news.
  112. foreach (explode("\n", $modSettings['news']) as $id => $line)
  113. $context['admin_current_news'][$id] = array(
  114. 'id' => $id,
  115. 'unparsed' => un_preparsecode($line),
  116. 'parsed' => preg_replace('~<([/]?)form[^>]*?[>]*>~i', '<em class="smalltext">&lt;$1form&gt;</em>', parse_bbc($line)),
  117. );
  118. $context['sub_template'] = 'edit_news';
  119. $context['page_title'] = $txt['admin_edit_news'];
  120. }
  121. /**
  122. * This function allows a user to select the membergroups to send their
  123. * mailing to.
  124. * Called by ?action=admin;area=news;sa=mailingmembers.
  125. * Requires the send_mail permission.
  126. * Form is submitted to ?action=admin;area=news;mailingcompose.
  127. *
  128. * @uses the ManageNews template and email_members sub template.
  129. */
  130. function SelectMailingMembers()
  131. {
  132. global $txt, $context, $modSettings, $smcFunc;
  133. $context['page_title'] = $txt['admin_newsletters'];
  134. $context['sub_template'] = 'email_members';
  135. $context['groups'] = array();
  136. $postGroups = array();
  137. $normalGroups = array();
  138. // If we have post groups disabled then we need to give a "ungrouped members" option.
  139. if (empty($modSettings['permission_enable_postgroups']))
  140. {
  141. $context['groups'][0] = array(
  142. 'id' => 0,
  143. 'name' => $txt['membergroups_members'],
  144. 'member_count' => 0,
  145. );
  146. $normalGroups[0] = 0;
  147. }
  148. // Get all the extra groups as well as Administrator and Global Moderator.
  149. $request = $smcFunc['db_query']('', '
  150. SELECT mg.id_group, mg.group_name, mg.min_posts
  151. FROM {db_prefix}membergroups AS mg' . (empty($modSettings['permission_enable_postgroups']) ? '
  152. WHERE mg.min_posts = {int:min_posts}' : '') . '
  153. GROUP BY mg.id_group, mg.min_posts, mg.group_name
  154. ORDER BY mg.min_posts, CASE WHEN mg.id_group < {int:newbie_group} THEN mg.id_group ELSE 4 END, mg.group_name',
  155. array(
  156. 'min_posts' => -1,
  157. 'newbie_group' => 4,
  158. )
  159. );
  160. while ($row = $smcFunc['db_fetch_assoc']($request))
  161. {
  162. $context['groups'][$row['id_group']] = array(
  163. 'id' => $row['id_group'],
  164. 'name' => $row['group_name'],
  165. 'member_count' => 0,
  166. );
  167. if ($row['min_posts'] == -1)
  168. $normalGroups[$row['id_group']] = $row['id_group'];
  169. else
  170. $postGroups[$row['id_group']] = $row['id_group'];
  171. }
  172. $smcFunc['db_free_result']($request);
  173. // If we have post groups, let's count the number of members...
  174. if (!empty($postGroups))
  175. {
  176. $query = $smcFunc['db_query']('', '
  177. SELECT mem.id_post_group AS id_group, COUNT(*) AS member_count
  178. FROM {db_prefix}members AS mem
  179. WHERE mem.id_post_group IN ({array_int:post_group_list})
  180. GROUP BY mem.id_post_group',
  181. array(
  182. 'post_group_list' => $postGroups,
  183. )
  184. );
  185. while ($row = $smcFunc['db_fetch_assoc']($query))
  186. $context['groups'][$row['id_group']]['member_count'] += $row['member_count'];
  187. $smcFunc['db_free_result']($query);
  188. }
  189. if (!empty($normalGroups))
  190. {
  191. // Find people who are members of this group...
  192. $query = $smcFunc['db_query']('', '
  193. SELECT id_group, COUNT(*) AS member_count
  194. FROM {db_prefix}members
  195. WHERE id_group IN ({array_int:normal_group_list})
  196. GROUP BY id_group',
  197. array(
  198. 'normal_group_list' => $normalGroups,
  199. )
  200. );
  201. while ($row = $smcFunc['db_fetch_assoc']($query))
  202. $context['groups'][$row['id_group']]['member_count'] += $row['member_count'];
  203. $smcFunc['db_free_result']($query);
  204. // Also do those who have it as an additional membergroup - this ones more yucky...
  205. $query = $smcFunc['db_query']('', '
  206. SELECT mg.id_group, COUNT(*) AS member_count
  207. FROM {db_prefix}membergroups AS mg
  208. INNER JOIN {db_prefix}members AS mem ON (mem.additional_groups != {string:blank_string}
  209. AND mem.id_group != mg.id_group
  210. AND FIND_IN_SET(mg.id_group, mem.additional_groups) != 0)
  211. WHERE mg.id_group IN ({array_int:normal_group_list})
  212. GROUP BY mg.id_group',
  213. array(
  214. 'normal_group_list' => $normalGroups,
  215. 'blank_string' => '',
  216. )
  217. );
  218. while ($row = $smcFunc['db_fetch_assoc']($query))
  219. $context['groups'][$row['id_group']]['member_count'] += $row['member_count'];
  220. $smcFunc['db_free_result']($query);
  221. }
  222. // Any moderators?
  223. $request = $smcFunc['db_query']('', '
  224. SELECT COUNT(DISTINCT id_member) AS num_distinct_mods
  225. FROM {db_prefix}moderators
  226. LIMIT 1',
  227. array(
  228. )
  229. );
  230. list ($context['groups'][3]['member_count']) = $smcFunc['db_fetch_row']($request);
  231. $smcFunc['db_free_result']($request);
  232. $context['can_send_pm'] = allowedTo('pm_send');
  233. }
  234. /**
  235. * Shows a form to edit a forum mailing and its recipients.
  236. * Called by ?action=admin;area=news;sa=mailingcompose.
  237. * Requires the send_mail permission.
  238. * Form is submitted to ?action=admin;area=news;sa=mailingsend.
  239. *
  240. * @uses ManageNews template, email_members_compose sub-template.
  241. */
  242. function ComposeMailing()
  243. {
  244. global $txt, $sourcedir, $context, $smcFunc;
  245. // Start by finding any members!
  246. $toClean = array();
  247. if (!empty($_POST['members']))
  248. $toClean[] = 'members';
  249. if (!empty($_POST['exclude_members']))
  250. $toClean[] = 'exclude_members';
  251. if (!empty($toClean))
  252. {
  253. require_once($sourcedir . '/Subs-Auth.php');
  254. foreach ($toClean as $type)
  255. {
  256. // Remove the quotes.
  257. $_POST[$type] = strtr($_POST[$type], array('\\"' => '"'));
  258. preg_match_all('~"([^"]+)"~', $_POST[$type], $matches);
  259. $_POST[$type] = array_unique(array_merge($matches[1], explode(',', preg_replace('~"[^"]+"~', '', $_POST[$type]))));
  260. foreach ($_POST[$type] as $index => $member)
  261. if (strlen(trim($member)) > 0)
  262. $_POST[$type][$index] = $smcFunc['htmlspecialchars']($smcFunc['strtolower'](trim($member)));
  263. else
  264. unset($_POST[$type][$index]);
  265. // Find the members
  266. $_POST[$type] = implode(',', array_keys(findMembers($_POST[$type])));
  267. }
  268. }
  269. if (isset($_POST['member_list']) && is_array($_POST['member_list']))
  270. {
  271. $members = array();
  272. foreach ($_POST['member_list'] as $member_id)
  273. $members[] = (int) $member_id;
  274. $_POST['members'] = implode(',', $members);
  275. }
  276. if (isset($_POST['exclude_member_list']) && is_array($_POST['exclude_member_list']))
  277. {
  278. $members = array();
  279. foreach ($_POST['exclude_member_list'] as $member_id)
  280. $members[] = (int) $member_id;
  281. $_POST['exclude_members'] = implode(',', $members);
  282. }
  283. // Clean the other vars.
  284. SendMailing(true);
  285. // We need a couple strings from the email template file
  286. loadLanguage('EmailTemplates');
  287. // Get a list of all full banned users. Use their Username and email to find them. Only get the ones that can't login to turn off notification.
  288. $request = $smcFunc['db_query']('', '
  289. SELECT DISTINCT mem.id_member
  290. FROM {db_prefix}ban_groups AS bg
  291. INNER JOIN {db_prefix}ban_items AS bi ON (bg.id_ban_group = bi.id_ban_group)
  292. INNER JOIN {db_prefix}members AS mem ON (bi.id_member = mem.id_member)
  293. WHERE (bg.cannot_access = {int:cannot_access} OR bg.cannot_login = {int:cannot_login})
  294. AND (bg.expire_time IS NULL OR bg.expire_time > {int:current_time})',
  295. array(
  296. 'cannot_access' => 1,
  297. 'cannot_login' => 1,
  298. 'current_time' => time(),
  299. )
  300. );
  301. while ($row = $smcFunc['db_fetch_assoc']($request))
  302. $context['recipients']['exclude_members'][] = $row['id_member'];
  303. $smcFunc['db_free_result']($request);
  304. $request = $smcFunc['db_query']('', '
  305. SELECT DISTINCT bi.email_address
  306. FROM {db_prefix}ban_items AS bi
  307. INNER JOIN {db_prefix}ban_groups AS bg ON (bg.id_ban_group = bi.id_ban_group)
  308. WHERE (bg.cannot_access = {int:cannot_access} OR bg.cannot_login = {int:cannot_login})
  309. AND (COALESCE(bg.expire_time, 1=1) OR bg.expire_time > {int:current_time})
  310. AND bi.email_address != {string:blank_string}',
  311. array(
  312. 'cannot_access' => 1,
  313. 'cannot_login' => 1,
  314. 'current_time' => time(),
  315. 'blank_string' => '',
  316. )
  317. );
  318. $condition_array = array();
  319. $condition_array_params = array();
  320. $count = 0;
  321. while ($row = $smcFunc['db_fetch_assoc']($request))
  322. {
  323. $condition_array[] = '{string:email_' . $count . '}';
  324. $condition_array_params['email_' . $count++] = $row['email_address'];
  325. }
  326. $smcFunc['db_free_result']($request);
  327. if (!empty($condition_array))
  328. {
  329. $request = $smcFunc['db_query']('', '
  330. SELECT id_member
  331. FROM {db_prefix}members
  332. WHERE email_address IN(' . implode(', ', $condition_array) .')',
  333. $condition_array_params
  334. );
  335. while ($row = $smcFunc['db_fetch_assoc']($request))
  336. $context['recipients']['exclude_members'][] = $row['id_member'];
  337. $smcFunc['db_free_result']($request);
  338. }
  339. // Did they select moderators - if so add them as specific members...
  340. if ((!empty($context['recipients']['groups']) && in_array(3, $context['recipients']['groups'])) || (!empty($context['recipients']['exclude_groups']) && in_array(3, $context['recipients']['exclude_groups'])))
  341. {
  342. $request = $smcFunc['db_query']('', '
  343. SELECT DISTINCT mem.id_member AS identifier
  344. FROM {db_prefix}members AS mem
  345. INNER JOIN {db_prefix}moderators AS mods ON (mods.id_member = mem.id_member)
  346. WHERE mem.is_activated = {int:is_activated}',
  347. array(
  348. 'is_activated' => 1,
  349. )
  350. );
  351. while ($row = $smcFunc['db_fetch_assoc']($request))
  352. {
  353. if (in_array(3, $context['recipients']))
  354. $context['recipients']['exclude_members'][] = $row['identifier'];
  355. else
  356. $context['recipients']['members'][] = $row['identifier'];
  357. }
  358. $smcFunc['db_free_result']($request);
  359. }
  360. // For progress bar!
  361. $context['total_emails'] = count($context['recipients']['emails']);
  362. $request = $smcFunc['db_query']('', '
  363. SELECT MAX(id_member)
  364. FROM {db_prefix}members',
  365. array(
  366. )
  367. );
  368. list ($context['max_id_member']) = $smcFunc['db_fetch_row']($request);
  369. $smcFunc['db_free_result']($request);
  370. // Clean up the arrays.
  371. $context['recipients']['members'] = array_unique($context['recipients']['members']);
  372. $context['recipients']['exclude_members'] = array_unique($context['recipients']['exclude_members']);
  373. // Setup the template!
  374. $context['page_title'] = $txt['admin_newsletters'];
  375. $context['sub_template'] = 'email_members_compose';
  376. $context['default_subject'] = htmlspecialchars($context['forum_name'] . ': ' . $txt['subject']);
  377. $context['default_message'] = htmlspecialchars($txt['message'] . "\n\n" . $txt['regards_team'] . "\n\n" . '{$board_url}');
  378. }
  379. /**
  380. * Handles the sending of the forum mailing in batches.
  381. * Called by ?action=admin;area=news;sa=mailingsend
  382. * Requires the send_mail permission.
  383. * Redirects to itself when more batches need to be sent.
  384. * Redirects to ?action=admin after everything has been sent.
  385. *
  386. * @param bool $clean_only = false; if set, it will only clean the variables, put them in context, then return.
  387. * @uses the ManageNews template and email_members_send sub template.
  388. */
  389. function SendMailing($clean_only = false)
  390. {
  391. global $txt, $sourcedir, $context, $smcFunc;
  392. global $scripturl, $modSettings, $user_info;
  393. // How many to send at once? Quantity depends on whether we are queueing or not.
  394. $num_at_once = empty($modSettings['mail_queue']) ? 60 : 1000;
  395. // If by PM's I suggest we half the above number.
  396. if (!empty($_POST['send_pm']))
  397. $num_at_once /= 2;
  398. checkSession();
  399. // Where are we actually to?
  400. $context['start'] = isset($_REQUEST['start']) ? $_REQUEST['start'] : 0;
  401. $context['email_force'] = !empty($_POST['email_force']) ? 1 : 0;
  402. $context['send_pm'] = !empty($_POST['send_pm']) ? 1 : 0;
  403. $context['total_emails'] = !empty($_POST['total_emails']) ? (int) $_POST['total_emails'] : 0;
  404. $context['max_id_member'] = !empty($_POST['max_id_member']) ? (int) $_POST['max_id_member'] : 0;
  405. $context['send_html'] = !empty($_POST['send_html']) ? '1' : '0';
  406. $context['parse_html'] = !empty($_POST['parse_html']) ? '1' : '0';
  407. // Create our main context.
  408. $context['recipients'] = array(
  409. 'groups' => array(),
  410. 'exclude_groups' => array(),
  411. 'members' => array(),
  412. 'exclude_members' => array(),
  413. 'emails' => array(),
  414. );
  415. // Have we any excluded members?
  416. if (!empty($_POST['exclude_members']))
  417. {
  418. $members = explode(',', $_POST['exclude_members']);
  419. foreach ($members as $member)
  420. if ($member >= $context['start'])
  421. $context['recipients']['exclude_members'][] = (int) $member;
  422. }
  423. // What about members we *must* do?
  424. if (!empty($_POST['members']))
  425. {
  426. $members = explode(',', $_POST['members']);
  427. foreach ($members as $member)
  428. if ($member >= $context['start'])
  429. $context['recipients']['members'][] = (int) $member;
  430. }
  431. // Cleaning groups is simple - although deal with both checkbox and commas.
  432. if (!empty($_POST['groups']))
  433. {
  434. if (is_array($_POST['groups']))
  435. {
  436. foreach ($_POST['groups'] as $group => $dummy)
  437. $context['recipients']['groups'][] = (int) $group;
  438. }
  439. else
  440. {
  441. $groups = explode(',', $_POST['groups']);
  442. foreach ($groups as $group)
  443. $context['recipients']['groups'][] = (int) $group;
  444. }
  445. }
  446. // Same for excluded groups
  447. if (!empty($_POST['exclude_groups']))
  448. {
  449. if (is_array($_POST['exclude_groups']))
  450. {
  451. foreach ($_POST['exclude_groups'] as $group => $dummy)
  452. $context['recipients']['exclude_groups'][] = (int) $group;
  453. }
  454. else
  455. {
  456. $groups = explode(',', $_POST['exclude_groups']);
  457. foreach ($groups as $group)
  458. $context['recipients']['exclude_groups'][] = (int) $group;
  459. }
  460. }
  461. // Finally - emails!
  462. if (!empty($_POST['emails']))
  463. {
  464. $addressed = array_unique(explode(';', strtr($_POST['emails'], array("\n" => ';', "\r" => ';', ',' => ';'))));
  465. foreach ($addressed as $curmem)
  466. {
  467. $curmem = trim($curmem);
  468. if ($curmem != '')
  469. $context['recipients']['emails'][$curmem] = $curmem;
  470. }
  471. }
  472. // If we're only cleaning drop out here.
  473. if ($clean_only)
  474. return;
  475. require_once($sourcedir . '/Subs-Post.php');
  476. // Save the message and its subject in $context
  477. $context['subject'] = htmlspecialchars($_POST['subject']);
  478. $context['message'] = htmlspecialchars($_POST['message']);
  479. // Prepare the message for sending it as HTML
  480. if (!$context['send_pm'] && !empty($_POST['send_html']))
  481. {
  482. // Prepare the message for HTML.
  483. if (!empty($_POST['parse_html']))
  484. $_POST['message'] = str_replace(array("\n", ' '), array('<br />' . "\n", '&nbsp; '), $_POST['message']);
  485. // This is here to prevent spam filters from tagging this as spam.
  486. if (preg_match('~\<html~i', $_POST['message']) == 0)
  487. {
  488. if (preg_match('~\<body~i', $_POST['message']) == 0)
  489. $_POST['message'] = '<html><head><title>' . $_POST['subject'] . '</title></head>' . "\n" . '<body>' . $_POST['message'] . '</body></html>';
  490. else
  491. $_POST['message'] = '<html>' . $_POST['message'] . '</html>';
  492. }
  493. }
  494. // Use the default time format.
  495. $user_info['time_format'] = $modSettings['time_format'];
  496. $variables = array(
  497. '{$board_url}',
  498. '{$current_time}',
  499. '{$latest_member.link}',
  500. '{$latest_member.id}',
  501. '{$latest_member.name}'
  502. );
  503. // We might need this in a bit
  504. $cleanLatestMember = empty($_POST['send_html']) || $context['send_pm'] ? un_htmlspecialchars($modSettings['latestRealName']) : $modSettings['latestRealName'];
  505. // Replace in all the standard things.
  506. $_POST['message'] = str_replace($variables,
  507. array(
  508. !empty($_POST['send_html']) ? '<a href="' . $scripturl . '">' . $scripturl . '</a>' : $scripturl,
  509. timeformat(forum_time(), false),
  510. !empty($_POST['send_html']) ? '<a href="' . $scripturl . '?action=profile;u=' . $modSettings['latestMember'] . '">' . $cleanLatestMember . '</a>' : ($context['send_pm'] ? '[url=' . $scripturl . '?action=profile;u=' . $modSettings['latestMember'] . ']' . $cleanLatestMember . '[/url]' : $cleanLatestMember),
  511. $modSettings['latestMember'],
  512. $cleanLatestMember
  513. ), $_POST['message']);
  514. $_POST['subject'] = str_replace($variables,
  515. array(
  516. $scripturl,
  517. timeformat(forum_time(), false),
  518. $modSettings['latestRealName'],
  519. $modSettings['latestMember'],
  520. $modSettings['latestRealName']
  521. ), $_POST['subject']);
  522. $from_member = array(
  523. '{$member.email}',
  524. '{$member.link}',
  525. '{$member.id}',
  526. '{$member.name}'
  527. );
  528. // If we still have emails, do them first!
  529. $i = 0;
  530. foreach ($context['recipients']['emails'] as $k => $email)
  531. {
  532. // Done as many as we can?
  533. if ($i >= $num_at_once)
  534. break;
  535. // Don't sent it twice!
  536. unset($context['recipients']['emails'][$k]);
  537. // Dammit - can't PM emails!
  538. if ($context['send_pm'])
  539. continue;
  540. $to_member = array(
  541. $email,
  542. !empty($_POST['send_html']) ? '<a href="mailto:' . $email . '">' . $email . '</a>' : $email,
  543. '??',
  544. $email
  545. );
  546. sendmail($email, str_replace($from_member, $to_member, $_POST['subject']), str_replace($from_member, $to_member, $_POST['message']), null, null, !empty($_POST['send_html']), 5);
  547. // Done another...
  548. $i++;
  549. }
  550. // Got some more to send this batch?
  551. $last_id_member = 0;
  552. if ($i < $num_at_once)
  553. {
  554. // Need to build quite a query!
  555. $sendQuery = '(';
  556. $sendParams = array();
  557. if (!empty($context['recipients']['groups']))
  558. {
  559. // Take the long route...
  560. $queryBuild = array();
  561. foreach ($context['recipients']['groups'] as $group)
  562. {
  563. $sendParams['group_' . $group] = $group;
  564. $queryBuild[] = 'mem.id_group = {int:group_' . $group . '}';
  565. if (!empty($group))
  566. {
  567. $queryBuild[] = 'FIND_IN_SET({int:group_' . $group . '}, mem.additional_groups) != 0';
  568. $queryBuild[] = 'mem.id_post_group = {int:group_' . $group . '}';
  569. }
  570. }
  571. if (!empty($queryBuild))
  572. $sendQuery .= implode(' OR ', $queryBuild);
  573. }
  574. if (!empty($context['recipients']['members']))
  575. {
  576. $sendQuery .= ($sendQuery == '(' ? '' : ' OR ') . 'mem.id_member IN ({array_int:members})';
  577. $sendParams['members'] = $context['recipients']['members'];
  578. }
  579. $sendQuery .= ')';
  580. // If we've not got a query then we must be done!
  581. if ($sendQuery == '()')
  582. redirectexit('action=admin');
  583. // Anything to exclude?
  584. if (!empty($context['recipients']['exclude_groups']) && in_array(0, $context['recipients']['exclude_groups']))
  585. $sendQuery .= ' AND mem.id_group != {int:regular_group}';
  586. if (!empty($context['recipients']['exclude_members']))
  587. {
  588. $sendQuery .= ' AND mem.id_member NOT IN ({array_int:exclude_members})';
  589. $sendParams['exclude_members'] = $context['recipients']['exclude_members'];
  590. }
  591. // Force them to have it?
  592. if (empty($context['email_force']))
  593. $sendQuery .= ' AND mem.notify_announcements = {int:notify_announcements}';
  594. // Get the smelly people - note we respect the id_member range as it gives us a quicker query.
  595. $result = $smcFunc['db_query']('', '
  596. SELECT mem.id_member, mem.email_address, mem.real_name, mem.id_group, mem.additional_groups, mem.id_post_group
  597. FROM {db_prefix}members AS mem
  598. WHERE mem.id_member > {int:min_id_member}
  599. AND mem.id_member < {int:max_id_member}
  600. AND ' . $sendQuery . '
  601. AND mem.is_activated = {int:is_activated}
  602. ORDER BY mem.id_member ASC
  603. LIMIT {int:atonce}',
  604. array_merge($sendParams, array(
  605. 'min_id_member' => $context['start'],
  606. 'max_id_member' => $context['start'] + $num_at_once - $i,
  607. 'atonce' => $num_at_once - $i,
  608. 'regular_group' => 0,
  609. 'notify_announcements' => 1,
  610. 'is_activated' => 1,
  611. ))
  612. );
  613. while ($row = $smcFunc['db_fetch_assoc']($result))
  614. {
  615. $last_id_member = $row['id_member'];
  616. // What groups are we looking at here?
  617. if (empty($row['additional_groups']))
  618. $groups = array($row['id_group'], $row['id_post_group']);
  619. else
  620. $groups = array_merge(
  621. array($row['id_group'], $row['id_post_group']),
  622. explode(',', $row['additional_groups'])
  623. );
  624. // Excluded groups?
  625. if (array_intersect($groups, $context['recipients']['exclude_groups']))
  626. continue;
  627. // We might need this
  628. $cleanMemberName = empty($_POST['send_html']) || $context['send_pm'] ? un_htmlspecialchars($row['real_name']) : $row['real_name'];
  629. // Replace the member-dependant variables
  630. $message = str_replace($from_member,
  631. array(
  632. $row['email_address'],
  633. !empty($_POST['send_html']) ? '<a href="' . $scripturl . '?action=profile;u=' . $row['id_member'] . '">' . $cleanMemberName . '</a>' : ($context['send_pm'] ? '[url=' . $scripturl . '?action=profile;u=' . $row['id_member'] . ']' . $cleanMemberName . '[/url]' : $cleanMemberName),
  634. $row['id_member'],
  635. $cleanMemberName,
  636. ), $_POST['message']);
  637. $subject = str_replace($from_member,
  638. array(
  639. $row['email_address'],
  640. $row['real_name'],
  641. $row['id_member'],
  642. $row['real_name'],
  643. ), $_POST['subject']);
  644. // Send the actual email - or a PM!
  645. if (!$context['send_pm'])
  646. sendmail($row['email_address'], $subject, $message, null, null, !empty($_POST['send_html']), 5);
  647. else
  648. sendpm(array('to' => array($row['id_member']), 'bcc' => array()), $subject, $message);
  649. }
  650. $smcFunc['db_free_result']($result);
  651. }
  652. // If used our batch assume we still have a member.
  653. if ($i >= $num_at_once)
  654. $last_id_member = $context['start'];
  655. // Or we didn't have one in range?
  656. elseif (empty($last_id_member) && $context['start'] + $num_at_once < $context['max_id_member'])
  657. $last_id_member = $context['start'] + $num_at_once;
  658. // If we have no id_member then we're done.
  659. elseif (empty($last_id_member) && empty($context['recipients']['emails']))
  660. {
  661. // Log this into the admin log.
  662. logAction('newsletter', array(), 'admin');
  663. redirectexit('action=admin');
  664. }
  665. $context['start'] = $last_id_member;
  666. // Working out progress is a black art of sorts.
  667. $percentEmails = $context['total_emails'] == 0 ? 0 : ((count($context['recipients']['emails']) / $context['total_emails']) * ($context['total_emails'] / ($context['total_emails'] + $context['max_id_member'])));
  668. $percentMembers = ($context['start'] / $context['max_id_member']) * ($context['max_id_member'] / ($context['total_emails'] + $context['max_id_member']));
  669. $context['percentage_done'] = round(($percentEmails + $percentMembers) * 100, 2);
  670. $context['page_title'] = $txt['admin_newsletters'];
  671. $context['sub_template'] = 'email_members_send';
  672. }
  673. /**
  674. * Set general news and newsletter settings and permissions.
  675. * Called by ?action=admin;area=news;sa=settings.
  676. * Requires the forum_admin permission.
  677. *
  678. * @uses ManageNews template, news_settings sub-template.
  679. * @param bool $return_config = false
  680. */
  681. function ModifyNewsSettings($return_config = false)
  682. {
  683. global $context, $sourcedir, $modSettings, $txt, $scripturl;
  684. $config_vars = array(
  685. array('title', 'settings'),
  686. // Inline permissions.
  687. array('permissions', 'edit_news', 'help' => ''),
  688. array('permissions', 'send_mail'),
  689. '',
  690. // Just the remaining settings.
  691. array('check', 'xmlnews_enable', 'onclick' => 'document.getElementById(\'xmlnews_maxlen\').disabled = !this.checked;'),
  692. array('text', 'xmlnews_maxlen', 'subtext' => $txt['xmlnews_maxlen_note'], 10),
  693. );
  694. call_integration_hook('integrate_modify_news_settings', array(&$config_vars));
  695. if ($return_config)
  696. return $config_vars;
  697. $context['page_title'] = $txt['admin_edit_news'] . ' - ' . $txt['settings'];
  698. $context['sub_template'] = 'show_settings';
  699. // Needed for the inline permission functions, and the settings template.
  700. // @todo is this really needed?
  701. require_once($sourcedir . '/ManagePermissions.php');
  702. require_once($sourcedir . '/ManageServer.php');
  703. // Wrap it all up nice and warm...
  704. $context['post_url'] = $scripturl . '?action=admin;area=news;save;sa=settings';
  705. $context['permissions_excluded'] = array(-1);
  706. // Add some javascript at the bottom...
  707. $context['settings_insert_below'] = '
  708. <script type="text/javascript"><!-- // --><![CDATA[
  709. document.getElementById("xmlnews_maxlen").disabled = !document.getElementById("xmlnews_enable").checked;
  710. // ]]></script>';
  711. // Saving the settings?
  712. if (isset($_GET['save']))
  713. {
  714. checkSession();
  715. call_integration_hook('integrate_save_news_settings');
  716. saveDBSettings($config_vars);
  717. redirectexit('action=admin;area=news;sa=settings');
  718. }
  719. // We need this for the in-line permissions
  720. createToken('admin-mp');
  721. prepareDBSettingContext($config_vars);
  722. }
  723. ?>