Admin.php 36 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727728729730731732733734735736737738739740741742743744745746747748749750751752753754755756757758759760761762763764765766767768769770771772773774775776777778779780781782783784785786787788789790791792793794795796797798799800801802803804805806807808809810811812813814815816817818819820821822823824825826827828829830831832833834835836837838839840841842843844845846847848849850851852853854855856857858859860861862863864865866867868869870871872873874875876877878879880881882883884885886887888889890891892893894895896897898899900901902903904905906907908909910911912913914915916917918919920921922923924925926927928929930931932933934935936937938939940941942943944945946947948949950951952953954955956957958959960961962963964965966967968969970971972973974975976977978979980981982983984985986987988989990
  1. <?php
  2. /**
  3. * This file, unpredictable as this might be, handles basic administration.
  4. *
  5. * Simple Machines Forum (SMF)
  6. *
  7. * @package SMF
  8. * @author Simple Machines
  9. *
  10. * @copyright 2011 Simple Machines
  11. * @license http://www.simplemachines.org/about/smf/license.php BSD
  12. *
  13. * @version 2.1 Alpha 1
  14. */
  15. if (!defined('SMF'))
  16. die('Hacking attempt...');
  17. /**
  18. * The main admin handling function.
  19. * It initialises all the basic context required for the admin center.
  20. * It passes execution onto the relevant admin section.
  21. * If the passed section is not found it shows the admin home page.
  22. */
  23. function AdminMain()
  24. {
  25. global $txt, $context, $scripturl, $sc, $modSettings, $user_info, $settings, $sourcedir, $options, $smcFunc, $boarddir;
  26. // Load the language and templates....
  27. loadLanguage('Admin');
  28. loadTemplate('Admin', 'admin');
  29. loadJavascriptFile('scripts/admin.js?fin20', array('default_theme' => true));
  30. // No indexing evil stuff.
  31. $context['robot_no_index'] = true;
  32. require_once($sourcedir . '/Subs-Menu.php');
  33. // Some preferences.
  34. $context['admin_preferences'] = !empty($options['admin_preferences']) ? unserialize($options['admin_preferences']) : array();
  35. // Define all the menu structure - see Subs-Menu.php for details!
  36. $admin_areas = array(
  37. 'forum' => array(
  38. 'title' => $txt['admin_main'],
  39. 'permission' => array('admin_forum', 'manage_permissions', 'moderate_forum', 'manage_membergroups', 'manage_bans', 'send_mail', 'edit_news', 'manage_boards', 'manage_smileys', 'manage_attachments'),
  40. 'areas' => array(
  41. 'index' => array(
  42. 'label' => $txt['admin_center'],
  43. 'function' => 'AdminHome',
  44. 'icon' => 'administration.png',
  45. ),
  46. 'credits' => array(
  47. 'label' => $txt['support_credits_title'],
  48. 'function' => 'AdminHome',
  49. 'icon' => 'support.png',
  50. ),
  51. 'news' => array(
  52. 'label' => $txt['news_title'],
  53. 'file' => 'ManageNews.php',
  54. 'function' => 'ManageNews',
  55. 'icon' => 'news.png',
  56. 'permission' => array('edit_news', 'send_mail', 'admin_forum'),
  57. 'subsections' => array(
  58. 'editnews' => array($txt['admin_edit_news'], 'edit_news'),
  59. 'mailingmembers' => array($txt['admin_newsletters'], 'send_mail'),
  60. 'settings' => array($txt['settings'], 'admin_forum'),
  61. ),
  62. ),
  63. 'packages' => array(
  64. 'label' => $txt['package'],
  65. 'file' => 'Packages.php',
  66. 'function' => 'Packages',
  67. 'permission' => array('admin_forum'),
  68. 'icon' => 'packages.png',
  69. 'subsections' => array(
  70. 'browse' => array($txt['browse_packages']),
  71. 'packageget' => array($txt['download_packages'], 'url' => $scripturl . '?action=admin;area=packages;sa=packageget;get'),
  72. 'installed' => array($txt['installed_packages']),
  73. 'perms' => array($txt['package_file_perms']),
  74. 'options' => array($txt['package_settings']),
  75. ),
  76. ),
  77. 'search' => array(
  78. 'function' => 'AdminSearch',
  79. 'permission' => array('admin_forum'),
  80. 'select' => 'index'
  81. ),
  82. 'adminlogoff' => array(
  83. 'label' => $txt['admin_logoff'],
  84. 'function' => 'AdminEndSession',
  85. 'enabled' => empty($modSettings['securityDisable']),
  86. // 'icon' => 'administration.png',
  87. ),
  88. ),
  89. ),
  90. 'config' => array(
  91. 'title' => $txt['admin_config'],
  92. 'permission' => array('admin_forum'),
  93. 'areas' => array(
  94. 'corefeatures' => array(
  95. 'label' => $txt['core_settings_title'],
  96. 'file' => 'ManageSettings.php',
  97. 'function' => 'ModifyCoreFeatures',
  98. 'icon' => 'corefeatures.png',
  99. ),
  100. 'featuresettings' => array(
  101. 'label' => $txt['modSettings_title'],
  102. 'file' => 'ManageSettings.php',
  103. 'function' => 'ModifyFeatureSettings',
  104. 'icon' => 'features.png',
  105. 'subsections' => array(
  106. 'basic' => array($txt['mods_cat_features']),
  107. 'layout' => array($txt['mods_cat_layout']),
  108. 'karma' => array($txt['karma'], 'enabled' => in_array('k', $context['admin_features'])),
  109. 'sig' => array($txt['signature_settings_short']),
  110. 'profile' => array($txt['custom_profile_shorttitle'], 'enabled' => in_array('cp', $context['admin_features'])),
  111. ),
  112. ),
  113. 'securitysettings' => array(
  114. 'label' => $txt['admin_security_moderation'],
  115. 'file' => 'ManageSettings.php',
  116. 'function' => 'ModifySecuritySettings',
  117. 'icon' => 'security.png',
  118. 'subsections' => array(
  119. 'general' => array($txt['mods_cat_security_general']),
  120. 'spam' => array($txt['antispam_title']),
  121. 'moderation' => array($txt['moderation_settings_short'], 'enabled' => substr($modSettings['warning_settings'], 0, 1) == 1),
  122. ),
  123. ),
  124. 'languages' => array(
  125. 'label' => $txt['language_configuration'],
  126. 'file' => 'ManageLanguages.php',
  127. 'function' => 'ManageLanguages',
  128. 'icon' => 'languages.png',
  129. 'subsections' => array(
  130. 'edit' => array($txt['language_edit']),
  131. 'add' => array($txt['language_add']),
  132. 'settings' => array($txt['language_settings']),
  133. ),
  134. ),
  135. 'serversettings' => array(
  136. 'label' => $txt['admin_server_settings'],
  137. 'file' => 'ManageServer.php',
  138. 'function' => 'ModifySettings',
  139. 'icon' => 'server.png',
  140. 'subsections' => array(
  141. 'general' => array($txt['general_settings']),
  142. 'database' => array($txt['database_paths_settings']),
  143. 'cookie' => array($txt['cookies_sessions_settings']),
  144. 'cache' => array($txt['caching_settings']),
  145. 'loads' => array($txt['load_balancing_settings']),
  146. 'phpinfo' => array($txt['phpinfo_settings']),
  147. ),
  148. ),
  149. 'current_theme' => array(
  150. 'label' => $txt['theme_current_settings'],
  151. 'file' => 'Themes.php',
  152. 'function' => 'ThemesMain',
  153. 'custom_url' => $scripturl . '?action=admin;area=theme;sa=settings;th=' . $settings['theme_id'],
  154. 'icon' => 'current_theme.png',
  155. ),
  156. 'theme' => array(
  157. 'label' => $txt['theme_admin'],
  158. 'file' => 'Themes.php',
  159. 'function' => 'ThemesMain',
  160. 'custom_url' => $scripturl . '?action=admin;area=theme',
  161. 'icon' => 'themes.png',
  162. 'subsections' => array(
  163. 'admin' => array($txt['themeadmin_admin_title']),
  164. 'list' => array($txt['themeadmin_list_title']),
  165. 'reset' => array($txt['themeadmin_reset_title']),
  166. 'edit' => array($txt['themeadmin_edit_title']),
  167. ),
  168. ),
  169. 'modsettings' => array(
  170. 'label' => $txt['admin_modifications'],
  171. 'file' => 'ManageSettings.php',
  172. 'function' => 'ModifyModSettings',
  173. 'icon' => 'modifications.png',
  174. 'subsections' => array(
  175. 'general' => array($txt['mods_cat_modifications_misc']),
  176. // Mod Authors for a "ADD AFTER" on this line. Ensure you end your change with a comma. For example:
  177. // 'shout' => array($txt['shout']),
  178. // Note the comma!! The setting with automatically appear with the first mod to be added.
  179. ),
  180. ),
  181. ),
  182. ),
  183. 'layout' => array(
  184. 'title' => $txt['layout_controls'],
  185. 'permission' => array('manage_boards', 'admin_forum', 'manage_smileys', 'manage_attachments', 'moderate_forum'),
  186. 'areas' => array(
  187. 'manageboards' => array(
  188. 'label' => $txt['admin_boards'],
  189. 'file' => 'ManageBoards.php',
  190. 'function' => 'ManageBoards',
  191. 'icon' => 'boards.png',
  192. 'permission' => array('manage_boards'),
  193. 'subsections' => array(
  194. 'main' => array($txt['boardsEdit']),
  195. 'newcat' => array($txt['mboards_new_cat']),
  196. 'settings' => array($txt['settings'], 'admin_forum'),
  197. ),
  198. ),
  199. 'postsettings' => array(
  200. 'label' => $txt['manageposts'],
  201. 'file' => 'ManagePosts.php',
  202. 'function' => 'ManagePostSettings',
  203. 'permission' => array('admin_forum'),
  204. 'icon' => 'posts.png',
  205. 'subsections' => array(
  206. 'posts' => array($txt['manageposts_settings']),
  207. 'bbc' => array($txt['manageposts_bbc_settings']),
  208. 'censor' => array($txt['admin_censored_words']),
  209. 'topics' => array($txt['manageposts_topic_settings']),
  210. ),
  211. ),
  212. 'managecalendar' => array(
  213. 'label' => $txt['manage_calendar'],
  214. 'file' => 'ManageCalendar.php',
  215. 'function' => 'ManageCalendar',
  216. 'icon' => 'calendar.png',
  217. 'permission' => array('admin_forum'),
  218. 'enabled' => in_array('cd', $context['admin_features']),
  219. 'subsections' => array(
  220. 'holidays' => array($txt['manage_holidays'], 'admin_forum', 'enabled' => !empty($modSettings['cal_enabled'])),
  221. 'settings' => array($txt['calendar_settings'], 'admin_forum'),
  222. ),
  223. ),
  224. 'managesearch' => array(
  225. 'label' => $txt['manage_search'],
  226. 'file' => 'ManageSearch.php',
  227. 'function' => 'ManageSearch',
  228. 'icon' => 'search.png',
  229. 'permission' => array('admin_forum'),
  230. 'subsections' => array(
  231. 'weights' => array($txt['search_weights']),
  232. 'method' => array($txt['search_method']),
  233. 'settings' => array($txt['settings']),
  234. ),
  235. ),
  236. 'smileys' => array(
  237. 'label' => $txt['smileys_manage'],
  238. 'file' => 'ManageSmileys.php',
  239. 'function' => 'ManageSmileys',
  240. 'icon' => 'smiley.png',
  241. 'permission' => array('manage_smileys'),
  242. 'subsections' => array(
  243. 'editsets' => array($txt['smiley_sets']),
  244. 'addsmiley' => array($txt['smileys_add'], 'enabled' => !empty($modSettings['smiley_enable'])),
  245. 'editsmileys' => array($txt['smileys_edit'], 'enabled' => !empty($modSettings['smiley_enable'])),
  246. 'setorder' => array($txt['smileys_set_order'], 'enabled' => !empty($modSettings['smiley_enable'])),
  247. 'editicons' => array($txt['icons_edit_message_icons'], 'enabled' => !empty($modSettings['messageIcons_enable'])),
  248. 'settings' => array($txt['settings']),
  249. ),
  250. ),
  251. 'manageattachments' => array(
  252. 'label' => $txt['attachments_avatars'],
  253. 'file' => 'ManageAttachments.php',
  254. 'function' => 'ManageAttachments',
  255. 'icon' => 'attachment.png',
  256. 'permission' => array('manage_attachments'),
  257. 'subsections' => array(
  258. 'browse' => array($txt['attachment_manager_browse']),
  259. 'attachments' => array($txt['attachment_manager_settings']),
  260. 'avatars' => array($txt['attachment_manager_avatar_settings']),
  261. 'maintenance' => array($txt['attachment_manager_maintenance']),
  262. ),
  263. ),
  264. ),
  265. ),
  266. 'members' => array(
  267. 'title' => $txt['admin_manage_members'],
  268. 'permission' => array('moderate_forum', 'manage_membergroups', 'manage_bans', 'manage_permissions', 'admin_forum'),
  269. 'areas' => array(
  270. 'viewmembers' => array(
  271. 'label' => $txt['admin_users'],
  272. 'file' => 'ManageMembers.php',
  273. 'function' => 'ViewMembers',
  274. 'icon' => 'members.png',
  275. 'permission' => array('moderate_forum'),
  276. 'subsections' => array(
  277. 'all' => array($txt['view_all_members']),
  278. 'search' => array($txt['mlist_search']),
  279. ),
  280. ),
  281. 'membergroups' => array(
  282. 'label' => $txt['admin_groups'],
  283. 'file' => 'ManageMembergroups.php',
  284. 'function' => 'ModifyMembergroups',
  285. 'icon' => 'membergroups.png',
  286. 'permission' => array('manage_membergroups'),
  287. 'subsections' => array(
  288. 'index' => array($txt['membergroups_edit_groups'], 'manage_membergroups'),
  289. 'add' => array($txt['membergroups_new_group'], 'manage_membergroups'),
  290. 'settings' => array($txt['settings'], 'admin_forum'),
  291. ),
  292. ),
  293. 'permissions' => array(
  294. 'label' => $txt['edit_permissions'],
  295. 'file' => 'ManagePermissions.php',
  296. 'function' => 'ModifyPermissions',
  297. 'icon' => 'permissions.png',
  298. 'permission' => array('manage_permissions'),
  299. 'subsections' => array(
  300. 'index' => array($txt['permissions_groups'], 'manage_permissions'),
  301. 'board' => array($txt['permissions_boards'], 'manage_permissions'),
  302. 'profiles' => array($txt['permissions_profiles'], 'manage_permissions'),
  303. 'postmod' => array($txt['permissions_post_moderation'], 'manage_permissions', 'enabled' => $modSettings['postmod_active']),
  304. 'settings' => array($txt['settings'], 'admin_forum'),
  305. ),
  306. ),
  307. 'regcenter' => array(
  308. 'label' => $txt['registration_center'],
  309. 'file' => 'ManageRegistration.php',
  310. 'function' => 'RegCenter',
  311. 'icon' => 'regcenter.png',
  312. 'permission' => array('admin_forum', 'moderate_forum'),
  313. 'subsections' => array(
  314. 'register' => array($txt['admin_browse_register_new'], 'moderate_forum'),
  315. 'agreement' => array($txt['registration_agreement'], 'admin_forum'),
  316. 'reservednames' => array($txt['admin_reserved_set'], 'admin_forum'),
  317. 'settings' => array($txt['settings'], 'admin_forum'),
  318. ),
  319. ),
  320. 'ban' => array(
  321. 'label' => $txt['ban_title'],
  322. 'file' => 'ManageBans.php',
  323. 'function' => 'Ban',
  324. 'icon' => 'ban.png',
  325. 'permission' => 'manage_bans',
  326. 'subsections' => array(
  327. 'list' => array($txt['ban_edit_list']),
  328. 'add' => array($txt['ban_add_new']),
  329. 'browse' => array($txt['ban_trigger_browse']),
  330. 'log' => array($txt['ban_log']),
  331. ),
  332. ),
  333. 'paidsubscribe' => array(
  334. 'label' => $txt['paid_subscriptions'],
  335. 'enabled' => in_array('ps', $context['admin_features']),
  336. 'file' => 'ManagePaid.php',
  337. 'icon' => 'paid.png',
  338. 'function' => 'ManagePaidSubscriptions',
  339. 'permission' => 'admin_forum',
  340. 'subsections' => array(
  341. 'view' => array($txt['paid_subs_view']),
  342. 'settings' => array($txt['settings']),
  343. ),
  344. ),
  345. 'sengines' => array(
  346. 'label' => $txt['search_engines'],
  347. 'enabled' => in_array('sp', $context['admin_features']),
  348. 'file' => 'ManageSearchEngines.php',
  349. 'icon' => 'engines.png',
  350. 'function' => 'SearchEngines',
  351. 'permission' => 'admin_forum',
  352. 'subsections' => array(
  353. 'stats' => array($txt['spider_stats']),
  354. 'logs' => array($txt['spider_logs']),
  355. 'spiders' => array($txt['spiders']),
  356. 'settings' => array($txt['settings']),
  357. ),
  358. ),
  359. ),
  360. ),
  361. 'maintenance' => array(
  362. 'title' => $txt['admin_maintenance'],
  363. 'permission' => array('admin_forum'),
  364. 'areas' => array(
  365. 'maintain' => array(
  366. 'label' => $txt['maintain_title'],
  367. 'file' => 'ManageMaintenance.php',
  368. 'icon' => 'maintain.png',
  369. 'function' => 'ManageMaintenance',
  370. 'subsections' => array(
  371. 'routine' => array($txt['maintain_sub_routine'], 'admin_forum'),
  372. 'database' => array($txt['maintain_sub_database'], 'admin_forum'),
  373. 'members' => array($txt['maintain_sub_members'], 'admin_forum'),
  374. 'topics' => array($txt['maintain_sub_topics'], 'admin_forum'),
  375. ),
  376. ),
  377. 'scheduledtasks' => array(
  378. 'label' => $txt['maintain_tasks'],
  379. 'file' => 'ManageScheduledTasks.php',
  380. 'icon' => 'scheduled.png',
  381. 'function' => 'ManageScheduledTasks',
  382. 'subsections' => array(
  383. 'tasks' => array($txt['maintain_tasks'], 'admin_forum'),
  384. 'tasklog' => array($txt['scheduled_log'], 'admin_forum'),
  385. ),
  386. ),
  387. 'mailqueue' => array(
  388. 'label' => $txt['mailqueue_title'],
  389. 'file' => 'ManageMail.php',
  390. 'function' => 'ManageMail',
  391. 'icon' => 'mail.png',
  392. 'subsections' => array(
  393. 'browse' => array($txt['mailqueue_browse'], 'admin_forum'),
  394. 'settings' => array($txt['mailqueue_settings'], 'admin_forum'),
  395. ),
  396. ),
  397. 'reports' => array(
  398. 'enabled' => in_array('rg', $context['admin_features']),
  399. 'label' => $txt['generate_reports'],
  400. 'file' => 'Reports.php',
  401. 'function' => 'ReportsMain',
  402. 'icon' => 'reports.png',
  403. ),
  404. 'logs' => array(
  405. 'label' => $txt['logs'],
  406. 'function' => 'AdminLogs',
  407. 'icon' => 'logs.png',
  408. 'subsections' => array(
  409. 'errorlog' => array($txt['errlog'], 'admin_forum', 'enabled' => !empty($modSettings['enableErrorLogging']), 'url' => $scripturl . '?action=admin;area=logs;sa=errorlog;desc'),
  410. 'adminlog' => array($txt['admin_log'], 'admin_forum', 'enabled' => in_array('ml', $context['admin_features'])),
  411. 'modlog' => array($txt['moderation_log'], 'admin_forum', 'enabled' => in_array('ml', $context['admin_features'])),
  412. 'banlog' => array($txt['ban_log'], 'manage_bans'),
  413. 'spiderlog' => array($txt['spider_logs'], 'admin_forum', 'enabled' => in_array('sp', $context['admin_features'])),
  414. 'tasklog' => array($txt['scheduled_log'], 'admin_forum'),
  415. 'pruning' => array($txt['pruning_title'], 'admin_forum'),
  416. ),
  417. ),
  418. 'repairboards' => array(
  419. 'label' => $txt['admin_repair'],
  420. 'file' => 'RepairBoards.php',
  421. 'function' => 'RepairBoards',
  422. 'select' => 'maintain',
  423. 'hidden' => true,
  424. ),
  425. ),
  426. ),
  427. );
  428. // Any files to include for administration?
  429. if (!empty($modSettings['integrate_admin_include']))
  430. {
  431. $admin_includes = explode(',', $modSettings['integrate_admin_include']);
  432. foreach ($admin_includes as $include)
  433. {
  434. $include = strtr(trim($include), array('$boarddir' => $boarddir, '$sourcedir' => $sourcedir, '$themedir' => $settings['theme_dir']));
  435. if (file_exists($include))
  436. require_once($include);
  437. }
  438. }
  439. // Let them modify admin areas easily.
  440. call_integration_hook('integrate_admin_areas', array(&$admin_areas));
  441. // Make sure the administrator has a valid session...
  442. validateSession();
  443. // Actually create the menu!
  444. $admin_include_data = createMenu($admin_areas);
  445. unset($admin_areas);
  446. // Nothing valid?
  447. if ($admin_include_data == false)
  448. fatal_lang_error('no_access', false);
  449. // Build the link tree.
  450. $context['linktree'][] = array(
  451. 'url' => $scripturl . '?action=admin',
  452. 'name' => $txt['admin_center'],
  453. );
  454. if (isset($admin_include_data['current_area']) && $admin_include_data['current_area'] != 'index')
  455. $context['linktree'][] = array(
  456. 'url' => $scripturl . '?action=admin;area=' . $admin_include_data['current_area'] . ';' . $context['session_var'] . '=' . $context['session_id'],
  457. 'name' => $admin_include_data['label'],
  458. );
  459. if (!empty($admin_include_data['current_subsection']) && $admin_include_data['subsections'][$admin_include_data['current_subsection']][0] != $admin_include_data['label'])
  460. $context['linktree'][] = array(
  461. 'url' => $scripturl . '?action=admin;area=' . $admin_include_data['current_area'] . ';sa=' . $admin_include_data['current_subsection'] . ';' . $context['session_var'] . '=' . $context['session_id'],
  462. 'name' => $admin_include_data['subsections'][$admin_include_data['current_subsection']][0],
  463. );
  464. // Make a note of the Unique ID for this menu.
  465. $context['admin_menu_id'] = $context['max_menu_id'];
  466. $context['admin_menu_name'] = 'menu_data_' . $context['admin_menu_id'];
  467. // Where in the admin are we?
  468. $context['admin_area'] = $admin_include_data['current_area'];
  469. // Now - finally - call the right place!
  470. if (isset($admin_include_data['file']))
  471. require_once($sourcedir . '/' . $admin_include_data['file']);
  472. $admin_include_data['function']();
  473. }
  474. /**
  475. * The main administration section.
  476. * It prepares all the data necessary for the administration front page.
  477. * It uses the Admin template along with the admin sub template.
  478. * It requires the moderate_forum, manage_membergroups, manage_bans,
  479. * admin_forum, manage_permissions, manage_attachments, manage_smileys,
  480. * manage_boards, edit_news, or send_mail permission.
  481. * It uses the index administrative area.
  482. * It can be found by going to ?action=admin.
  483. */
  484. function AdminHome()
  485. {
  486. global $sourcedir, $forum_version, $txt, $scripturl, $context, $user_info, $boardurl, $modSettings, $smcFunc;
  487. // You have to be able to do at least one of the below to see this page.
  488. isAllowedTo(array('admin_forum', 'manage_permissions', 'moderate_forum', 'manage_membergroups', 'manage_bans', 'send_mail', 'edit_news', 'manage_boards', 'manage_smileys', 'manage_attachments'));
  489. // Find all of this forum's administrators...
  490. require_once($sourcedir . '/Subs-Membergroups.php');
  491. if (listMembergroupMembers_Href($context['administrators'], 1, 32) && allowedTo('manage_membergroups'))
  492. {
  493. // Add a 'more'-link if there are more than 32.
  494. $context['more_admins_link'] = '<a href="' . $scripturl . '?action=moderate;area=viewgroups;sa=members;group=1">' . $txt['more'] . '</a>';
  495. }
  496. // Load the credits stuff.
  497. require_once($sourcedir . '/Who.php');
  498. Credits(true);
  499. // This makes it easier to get the latest news with your time format.
  500. $context['time_format'] = urlencode($user_info['time_format']);
  501. $context['forum_version'] = $forum_version;
  502. // Get a list of current server versions.
  503. require_once($sourcedir . '/Subs-Admin.php');
  504. $checkFor = array(
  505. 'gd',
  506. 'db_server',
  507. 'mmcache',
  508. 'eaccelerator',
  509. 'phpa',
  510. 'apc',
  511. 'memcache',
  512. 'xcache',
  513. 'php',
  514. 'server',
  515. );
  516. $context['current_versions'] = getServerVersions($checkFor);
  517. $context['can_admin'] = allowedTo('admin_forum');
  518. $context['sub_template'] = $context['admin_area'] == 'credits' ? 'credits' : 'admin';
  519. $context['page_title'] = $context['admin_area'] == 'credits' ? $txt['support_credits_title'] : $txt['admin_center'];
  520. // The format of this array is: permission, action, title, description, icon.
  521. $quick_admin_tasks = array(
  522. array('', 'credits', 'support_credits_title', 'support_credits_info', 'support_and_credits.png'),
  523. array('admin_forum', 'featuresettings', 'modSettings_title', 'modSettings_info', 'features_and_options.png'),
  524. array('admin_forum', 'maintain', 'maintain_title', 'maintain_info', 'forum_maintenance.png'),
  525. array('manage_permissions', 'permissions', 'edit_permissions', 'edit_permissions_info', 'permissions_lg.png'),
  526. array('admin_forum', 'theme;sa=admin;' . $context['session_var'] . '=' . $context['session_id'], 'theme_admin', 'theme_admin_info', 'themes_and_layout.png'),
  527. array('admin_forum', 'packages', 'package', 'package_info', 'packages_lg.png'),
  528. array('manage_smileys', 'smileys', 'smileys_manage', 'smileys_manage_info', 'smilies_and_messageicons.png'),
  529. array('moderate_forum', 'viewmembers', 'admin_users', 'member_center_info', 'members_lg.png'),
  530. );
  531. $context['quick_admin_tasks'] = array();
  532. foreach ($quick_admin_tasks as $task)
  533. {
  534. if (!empty($task[0]) && !allowedTo($task[0]))
  535. continue;
  536. $context['quick_admin_tasks'][] = array(
  537. 'href' => $scripturl . '?action=admin;area=' . $task[1],
  538. 'link' => '<a href="' . $scripturl . '?action=admin;area=' . $task[1] . '">' . $txt[$task[2]] . '</a>',
  539. 'title' => $txt[$task[2]],
  540. 'description' => $txt[$task[3]],
  541. 'icon' => $task[4],
  542. 'is_last' => false
  543. );
  544. }
  545. if (count($context['quick_admin_tasks']) % 2 == 1)
  546. {
  547. $context['quick_admin_tasks'][] = array(
  548. 'href' => '',
  549. 'link' => '',
  550. 'title' => '',
  551. 'description' => '',
  552. 'is_last' => true
  553. );
  554. $context['quick_admin_tasks'][count($context['quick_admin_tasks']) - 2]['is_last'] = true;
  555. }
  556. elseif (count($context['quick_admin_tasks']) != 0)
  557. {
  558. $context['quick_admin_tasks'][count($context['quick_admin_tasks']) - 1]['is_last'] = true;
  559. $context['quick_admin_tasks'][count($context['quick_admin_tasks']) - 2]['is_last'] = true;
  560. }
  561. // Lastly, fill in the blanks in the support resources paragraphs.
  562. $txt['support_resources_p1'] = sprintf($txt['support_resources_p1'],
  563. 'http://wiki.simplemachines.org/',
  564. 'http://wiki.simplemachines.org/smf/features2',
  565. 'http://wiki.simplemachines.org/smf/options2',
  566. 'http://wiki.simplemachines.org/smf/themes2',
  567. 'http://wiki.simplemachines.org/smf/packages2'
  568. );
  569. $txt['support_resources_p2'] = sprintf($txt['support_resources_p2'],
  570. 'http://www.simplemachines.org/community/',
  571. 'http://www.simplemachines.org/redirect/english_support',
  572. 'http://www.simplemachines.org/redirect/international_support_boards',
  573. 'http://www.simplemachines.org/redirect/smf_support',
  574. 'http://www.simplemachines.org/redirect/customize_support'
  575. );
  576. }
  577. /**
  578. * Get one of the admin information files from Simple Machines.
  579. */
  580. function DisplayAdminFile()
  581. {
  582. global $context, $modSettings, $smcFunc;
  583. setMemoryLimit('32M');
  584. if (empty($_REQUEST['filename']) || !is_string($_REQUEST['filename']))
  585. fatal_lang_error('no_access', false);
  586. $request = $smcFunc['db_query']('', '
  587. SELECT data, filetype
  588. FROM {db_prefix}admin_info_files
  589. WHERE filename = {string:current_filename}
  590. LIMIT 1',
  591. array(
  592. 'current_filename' => $_REQUEST['filename'],
  593. )
  594. );
  595. if ($smcFunc['db_num_rows']($request) == 0)
  596. fatal_lang_error('admin_file_not_found', true, array($_REQUEST['filename']));
  597. list ($file_data, $filetype) = $smcFunc['db_fetch_row']($request);
  598. $smcFunc['db_free_result']($request);
  599. // @todo Temp
  600. // Figure out if sesc is still being used.
  601. if (strpos($file_data, ';sesc=') !== false)
  602. $file_data = '
  603. if (!(\'smfForum_sessionvar\' in window))
  604. window.smfForum_sessionvar = \'sesc\';
  605. ' . strtr($file_data, array(';sesc=' => ';\' + window.smfForum_sessionvar + \'='));
  606. $context['template_layers'] = array();
  607. // Lets make sure we aren't going to output anything nasty.
  608. @ob_end_clean();
  609. if (!empty($modSettings['enableCompressedOutput']))
  610. @ob_start('ob_gzhandler');
  611. else
  612. @ob_start();
  613. // Make sure they know what type of file we are.
  614. header('Content-Type: ' . $filetype);
  615. echo $file_data;
  616. obExit(false);
  617. }
  618. /**
  619. * This function allocates out all the search stuff.
  620. */
  621. function AdminSearch()
  622. {
  623. global $txt, $context, $smcFunc, $sourcedir;
  624. isAllowedTo('admin_forum');
  625. // What can we search for?
  626. $subactions = array(
  627. 'internal' => 'AdminSearchInternal',
  628. 'online' => 'AdminSearchOM',
  629. 'member' => 'AdminSearchMember',
  630. );
  631. $context['search_type'] = !isset($_REQUEST['search_type']) || !isset($subactions[$_REQUEST['search_type']]) ? 'internal' : $_REQUEST['search_type'];
  632. $context['search_term'] = isset($_REQUEST['search_term']) ? $smcFunc['htmlspecialchars']($_REQUEST['search_term'], ENT_QUOTES) : '';
  633. $context['sub_template'] = 'admin_search_results';
  634. $context['page_title'] = $txt['admin_search_results'];
  635. // Keep track of what the admin wants.
  636. if (empty($context['admin_preferences']['sb']) || $context['admin_preferences']['sb'] != $context['search_type'])
  637. {
  638. $context['admin_preferences']['sb'] = $context['search_type'];
  639. // Update the preferences.
  640. require_once($sourcedir . '/Subs-Admin.php');
  641. updateAdminPreferences();
  642. }
  643. if (trim($context['search_term']) == '')
  644. $context['search_results'] = array();
  645. else
  646. $subactions[$context['search_type']]();
  647. }
  648. /**
  649. * A complicated but relatively quick internal search.
  650. */
  651. function AdminSearchInternal()
  652. {
  653. global $context, $txt, $helptxt, $scripturl, $sourcedir;
  654. // Try to get some more memory.
  655. setMemoryLimit('128M');
  656. // Load a lot of language files.
  657. $language_files = array(
  658. 'Help', 'ManageMail', 'ManageSettings', 'ManageCalendar', 'ManageBoards', 'ManagePaid', 'ManagePermissions', 'Search',
  659. 'Login', 'ManageSmileys',
  660. );
  661. loadLanguage(implode('+', $language_files));
  662. // All the files we need to include.
  663. $include_files = array(
  664. 'ManageSettings', 'ManageBoards', 'ManageNews', 'ManageAttachments', 'ManageCalendar', 'ManageMail', 'ManagePaid', 'ManagePermissions',
  665. 'ManagePosts', 'ManageRegistration', 'ManageSearch', 'ManageSearchEngines', 'ManageServer', 'ManageSmileys', 'ManageLanguages',
  666. );
  667. // @todo add hook to add more include_files here
  668. foreach ($include_files as $file)
  669. require_once($sourcedir . '/' . $file . '.php');
  670. /* This is the huge array that defines everything... it's a huge array of items formatted as follows:
  671. 0 = Language index (Can be array of indexes) to search through for this setting.
  672. 1 = URL for this indexes page.
  673. 2 = Help index for help associated with this item (If different from 0)
  674. */
  675. $search_data = array(
  676. // All the major sections of the forum.
  677. 'sections' => array(
  678. ),
  679. 'settings' => array(
  680. array('COPPA', 'area=regcenter;sa=settings'),
  681. array('CAPTCHA', 'area=securitysettings;sa=spam'),
  682. ),
  683. );
  684. // Go through the admin menu structure trying to find suitably named areas!
  685. foreach ($context[$context['admin_menu_name']]['sections'] as $section)
  686. {
  687. foreach ($section['areas'] as $menu_key => $menu_item)
  688. {
  689. $search_data['sections'][] = array($menu_item['label'], 'area=' . $menu_key);
  690. if (!empty($menu_item['subsections']))
  691. foreach ($menu_item['subsections'] as $key => $sublabel)
  692. {
  693. if (isset($sublabel['label']))
  694. $search_data['sections'][] = array($sublabel['label'], 'area=' . $menu_key . ';sa=' . $key);
  695. }
  696. }
  697. }
  698. // This is a special array of functions that contain setting data - we query all these to simply pull all setting bits!
  699. $settings_search = array(
  700. array('ModifyCoreFeatures', 'area=corefeatures'),
  701. array('ModifyBasicSettings', 'area=featuresettings;sa=basic'),
  702. array('ModifyLayoutSettings', 'area=featuresettings;sa=layout'),
  703. array('ModifyKarmaSettings', 'area=featuresettings;sa=karma'),
  704. array('ModifySignatureSettings', 'area=featuresettings;sa=sig'),
  705. array('ModifyGeneralSecuritySettings', 'area=securitysettings;sa=general'),
  706. array('ModifySpamSettings', 'area=securitysettings;sa=spam'),
  707. array('ModifyModerationSettings', 'area=securitysettings;sa=moderation'),
  708. array('ModifyGeneralModSettings', 'area=modsettings;sa=general'),
  709. // Mod authors if you want to be "real freaking good" then add any setting pages for your mod BELOW this line!
  710. array('ManageAttachmentSettings', 'area=manageattachments;sa=attachments'),
  711. array('ManageAvatarSettings', 'area=manageattachments;sa=avatars'),
  712. array('ModifyCalendarSettings', 'area=managecalendar;sa=settings'),
  713. array('EditBoardSettings', 'area=manageboards;sa=settings'),
  714. array('ModifyMailSettings', 'area=mailqueue;sa=settings'),
  715. array('ModifyNewsSettings', 'area=news;sa=settings'),
  716. array('GeneralPermissionSettings', 'area=permissions;sa=settings'),
  717. array('ModifyPostSettings', 'area=postsettings;sa=posts'),
  718. array('ModifyBBCSettings', 'area=postsettings;sa=bbc'),
  719. array('ModifyTopicSettings', 'area=postsettings;sa=topics'),
  720. array('EditSearchSettings', 'area=managesearch;sa=settings'),
  721. array('EditSmileySettings', 'area=smileys;sa=settings'),
  722. array('ModifyGeneralSettings', 'area=serversettings;sa=general'),
  723. array('ModifyDatabaseSettings', 'area=serversettings;sa=database'),
  724. array('ModifyCookieSettings', 'area=serversettings;sa=cookie'),
  725. array('ModifyCacheSettings', 'area=serversettings;sa=cache'),
  726. array('ModifyLanguageSettings', 'area=languages;sa=settings'),
  727. array('ModifyRegistrationSettings', 'area=regcenter;sa=settings'),
  728. array('ManageSearchEngineSettings', 'area=sengines;sa=settings'),
  729. array('ModifySubscriptionSettings', 'area=paidsubscribe;sa=settings'),
  730. array('ModifyPruningSettings', 'area=logs;sa=pruning'),
  731. );
  732. // @todo add hook to add more $settings search
  733. foreach ($settings_search as $setting_area)
  734. {
  735. // Get a list of their variables.
  736. $config_vars = $setting_area[0](true);
  737. foreach ($config_vars as $var)
  738. if (!empty($var[1]) && !in_array($var[0], array('permissions', 'switch')))
  739. $search_data['settings'][] = array($var[(isset($var[2]) && in_array($var[2], array('file', 'db'))) ? 0 : 1], $setting_area[1]);
  740. }
  741. $context['page_title'] = $txt['admin_search_results'];
  742. $context['search_results'] = array();
  743. $search_term = strtolower(un_htmlspecialchars($context['search_term']));
  744. // Go through all the search data trying to find this text!
  745. foreach ($search_data as $section => $data)
  746. {
  747. foreach ($data as $item)
  748. {
  749. $found = false;
  750. if (!is_array($item[0]))
  751. $item[0] = array($item[0]);
  752. foreach ($item[0] as $term)
  753. {
  754. if (stripos($term, $search_term) !== false || (isset($txt[$term]) && stripos($txt[$term], $search_term) !== false) || (isset($txt['setting_' . $term]) && stripos($txt['setting_' . $term], $search_term) !== false))
  755. {
  756. $found = $term;
  757. break;
  758. }
  759. }
  760. if ($found)
  761. {
  762. // Format the name - and remove any descriptions the entry may have.
  763. $name = isset($txt[$found]) ? $txt[$found] : (isset($txt['setting_' . $found]) ? $txt['setting_' . $found] : $found);
  764. $name = preg_replace('~<(?:div|span)\sclass="smalltext">.+?</(?:div|span)>~', '', $name);
  765. $context['search_results'][] = array(
  766. 'url' => (substr($item[1], 0, 4) == 'area' ? $scripturl . '?action=admin;' . $item[1] : $item[1]) . ';' . $context['session_var'] . '=' . $context['session_id'] . ((substr($item[1], 0, 4) == 'area' && $section == 'settings' ? '#' . $item[0][0] : '')),
  767. 'name' => $name,
  768. 'type' => $section,
  769. 'help' => shorten_subject(isset($item[2]) ? strip_tags($helptxt[$item[2]]) : (isset($helptxt[$found]) ? strip_tags($helptxt[$found]) : ''), 255),
  770. );
  771. }
  772. }
  773. }
  774. }
  775. /**
  776. * All this does is pass through to manage members.
  777. */
  778. function AdminSearchMember()
  779. {
  780. global $context, $sourcedir;
  781. require_once($sourcedir . '/ManageMembers.php');
  782. $_REQUEST['sa'] = 'query';
  783. $_POST['membername'] = un_htmlspecialchars($context['search_term']);
  784. $_POST['types'] = '';
  785. ViewMembers();
  786. }
  787. /**
  788. * This file allows the user to search the SM online manual for a little of help.
  789. * @todo wiki search
  790. */
  791. function AdminSearchOM()
  792. {
  793. global $context, $sourcedir;
  794. $context['doc_apiurl'] = 'http://wiki.simplemachines.org/api.php';
  795. $context['doc_scripturl'] = 'http://wiki.simplemachines.org/smf/';
  796. // Set all the parameters search might expect.
  797. $postVars = explode(' ', $context['search_term']);
  798. // Encode the search data.
  799. foreach ($postVars as $k => $v)
  800. $postVars[$k] = urlencode($v);
  801. // This is what we will send.
  802. $postVars = implode('+', $postVars);
  803. // Get the results from the doc site.
  804. require_once($sourcedir . '/Subs-Package.php');
  805. // Demo URL:
  806. // http://wiki.simplemachines.org/api.php?action=query&list=search&srprop=timestamp|snippet&format=xml&srwhat=text&srsearch=template+eval
  807. $search_results = fetch_web_data($context['doc_apiurl'] . '?action=query&list=search&srprop=timestamp|snippet&format=xml&srwhat=text&srsearch=' . $postVars);
  808. // If we didn't get any xml back we are in trouble - perhaps the doc site is overloaded?
  809. if (!$search_results || preg_match('~<' . '\?xml\sversion="\d+\.\d+"\?>\s*(<api>.+?</api>)~is', $search_results, $matches) != true)
  810. fatal_lang_error('cannot_connect_doc_site');
  811. $search_results = $matches[1];
  812. // Otherwise we simply walk through the XML and stick it in context for display.
  813. $context['search_results'] = array();
  814. require_once($sourcedir . '/Class-Package.php');
  815. // Get the results loaded into an array for processing!
  816. $results = new xmlArray($search_results, false);
  817. // Move through the api layer.
  818. if (!$results->exists('api'))
  819. fatal_lang_error('cannot_connect_doc_site');
  820. // Are there actually some results?
  821. if ($results->exists('api/query/search/p'))
  822. {
  823. $relevance = 0;
  824. foreach ($results->set('api/query/search/p') as $result)
  825. {
  826. $context['search_results'][$result->fetch('@title')] = array(
  827. 'title' => $result->fetch('@title'),
  828. 'relevance' => $relevance++,
  829. 'snippet' => str_replace('class=\'searchmatch\'', 'class="highlight"', un_htmlspecialchars($result->fetch('@snippet'))),
  830. );
  831. }
  832. }
  833. }
  834. /**
  835. * This function decides which log to load.
  836. */
  837. function AdminLogs()
  838. {
  839. global $sourcedir, $context, $txt, $scripturl;
  840. // These are the logs they can load.
  841. $log_functions = array(
  842. 'errorlog' => array('ManageErrors.php', 'ViewErrorLog'),
  843. 'adminlog' => array('Modlog.php', 'ViewModlog'),
  844. 'modlog' => array('Modlog.php', 'ViewModlog', 'disabled' => !in_array('ml', $context['admin_features'])),
  845. 'banlog' => array('ManageBans.php', 'BanLog'),
  846. 'spiderlog' => array('ManageSearchEngines.php', 'SpiderLogs'),
  847. 'tasklog' => array('ManageScheduledTasks.php', 'TaskLog'),
  848. 'pruning' => array('ManageSettings.php', 'ModifyPruningSettings'),
  849. );
  850. call_integration_hook('integrate_manage_logs', array(&$log_functions));
  851. $sub_action = isset($_REQUEST['sa']) && isset($log_functions[$_REQUEST['sa']]) && empty($log_functions[$_REQUEST['sa']]['disabled']) ? $_REQUEST['sa'] : 'errorlog';
  852. // If it's not got a sa set it must have come here for first time, pretend error log should be reversed.
  853. if (!isset($_REQUEST['sa']))
  854. $_REQUEST['desc'] = true;
  855. // Setup some tab stuff.
  856. $context[$context['admin_menu_name']]['tab_data'] = array(
  857. 'title' => $txt['logs'],
  858. 'help' => '',
  859. 'description' => $txt['maintain_info'],
  860. 'tabs' => array(
  861. 'errorlog' => array(
  862. 'url' => $scripturl . '?action=admin;area=logs;sa=errorlog;desc',
  863. 'description' => sprintf($txt['errlog_desc'], $txt['remove']),
  864. ),
  865. 'adminlog' => array(
  866. 'description' => $txt['admin_log_desc'],
  867. ),
  868. 'modlog' => array(
  869. 'description' => $txt['moderation_log_desc'],
  870. ),
  871. 'banlog' => array(
  872. 'description' => $txt['ban_log_description'],
  873. ),
  874. 'spiderlog' => array(
  875. 'description' => $txt['spider_log_desc'],
  876. ),
  877. 'tasklog' => array(
  878. 'description' => $txt['scheduled_log_desc'],
  879. ),
  880. 'pruning' => array(
  881. 'description' => $txt['pruning_log_desc'],
  882. ),
  883. ),
  884. );
  885. require_once($sourcedir . '/' . $log_functions[$sub_action][0]);
  886. $log_functions[$sub_action][1]();
  887. }
  888. /**
  889. * This ends a admin session, requiring authentication to access the ACP again.
  890. */
  891. function AdminEndSession()
  892. {
  893. // This is so easy!
  894. unset($_SESSION['admin_time']);
  895. // Clean any admin tokens as well.
  896. foreach ($_SESSION['token'] as $key => $token)
  897. if (strpos($key, '-admin') !== false)
  898. unset($_SESSION['token'][$key]);
  899. redirectexit('?action=admin');
  900. }
  901. ?>