Admin.php 36 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727728729730731732733734735736737738739740741742743744745746747748749750751752753754755756757758759760761762763764765766767768769770771772773774775776777778779780781782783784785786787788789790791792793794795796797798799800801802803804805806807808809810811812813814815816817818819820821822823824825826827828829830831832833834835836837838839840841842843844845846847848849850851852853854855856857858859860861862863864865866867868869870871872873874875876877878879880881882883884885886887888889890891892893894895896897898899900901902903904905906907908909910911912913914915916917918919920921922923924925926927928929930931932933934935936937938939940941942943944945946947948949950951952953954955956957958959960961962963964965966967968969970971972973974975976977978979980981982983984985986987988989990991992993
  1. <?php
  2. /**
  3. * This file, unpredictable as this might be, handles basic administration.
  4. *
  5. * Simple Machines Forum (SMF)
  6. *
  7. * @package SMF
  8. * @author Simple Machines
  9. *
  10. * @copyright 2011 Simple Machines
  11. * @license http://www.simplemachines.org/about/smf/license.php BSD
  12. *
  13. * @version 2.1 Alpha 1
  14. */
  15. if (!defined('SMF'))
  16. die('Hacking attempt...');
  17. /**
  18. * The main admin handling function.
  19. * It initialises all the basic context required for the admin center.
  20. * It passes execution onto the relevant admin section.
  21. * If the passed section is not found it shows the admin home page.
  22. */
  23. function AdminMain()
  24. {
  25. global $txt, $context, $scripturl, $sc, $modSettings, $user_info, $settings, $sourcedir, $options, $smcFunc, $boarddir;
  26. // Load the language and templates....
  27. loadLanguage('Admin');
  28. loadTemplate('Admin', 'admin');
  29. loadJavascriptFile('scripts/admin.js?fin20', array('default_theme' => true));
  30. // No indexing evil stuff.
  31. $context['robot_no_index'] = true;
  32. require_once($sourcedir . '/Subs-Menu.php');
  33. // Some preferences.
  34. $context['admin_preferences'] = !empty($options['admin_preferences']) ? unserialize($options['admin_preferences']) : array();
  35. // Define all the menu structure - see Subs-Menu.php for details!
  36. $admin_areas = array(
  37. 'forum' => array(
  38. 'title' => $txt['admin_main'],
  39. 'permission' => array('admin_forum', 'manage_permissions', 'moderate_forum', 'manage_membergroups', 'manage_bans', 'send_mail', 'edit_news', 'manage_boards', 'manage_smileys', 'manage_attachments'),
  40. 'areas' => array(
  41. 'index' => array(
  42. 'label' => $txt['admin_center'],
  43. 'function' => 'AdminHome',
  44. 'icon' => 'administration.png',
  45. ),
  46. 'credits' => array(
  47. 'label' => $txt['support_credits_title'],
  48. 'function' => 'AdminHome',
  49. 'icon' => 'support.png',
  50. ),
  51. 'news' => array(
  52. 'label' => $txt['news_title'],
  53. 'file' => 'ManageNews.php',
  54. 'function' => 'ManageNews',
  55. 'icon' => 'news.png',
  56. 'permission' => array('edit_news', 'send_mail', 'admin_forum'),
  57. 'subsections' => array(
  58. 'editnews' => array($txt['admin_edit_news'], 'edit_news'),
  59. 'mailingmembers' => array($txt['admin_newsletters'], 'send_mail'),
  60. 'settings' => array($txt['settings'], 'admin_forum'),
  61. ),
  62. ),
  63. 'packages' => array(
  64. 'label' => $txt['package'],
  65. 'file' => 'Packages.php',
  66. 'function' => 'Packages',
  67. 'permission' => array('admin_forum'),
  68. 'icon' => 'packages.png',
  69. 'subsections' => array(
  70. 'browse' => array($txt['browse_packages']),
  71. 'packageget' => array($txt['download_packages'], 'url' => $scripturl . '?action=admin;area=packages;sa=packageget;get'),
  72. 'installed' => array($txt['installed_packages']),
  73. 'perms' => array($txt['package_file_perms']),
  74. 'options' => array($txt['package_settings']),
  75. ),
  76. ),
  77. 'search' => array(
  78. 'function' => 'AdminSearch',
  79. 'permission' => array('admin_forum'),
  80. 'select' => 'index'
  81. ),
  82. 'adminlogoff' => array(
  83. 'label' => $txt['admin_logoff'],
  84. 'function' => 'AdminEndSession',
  85. 'enabled' => empty($modSettings['securityDisable']),
  86. 'icon' => 'exit.png',
  87. ),
  88. ),
  89. ),
  90. 'config' => array(
  91. 'title' => $txt['admin_config'],
  92. 'permission' => array('admin_forum'),
  93. 'areas' => array(
  94. 'corefeatures' => array(
  95. 'label' => $txt['core_settings_title'],
  96. 'file' => 'ManageSettings.php',
  97. 'function' => 'ModifyCoreFeatures',
  98. 'icon' => 'corefeatures.png',
  99. ),
  100. 'featuresettings' => array(
  101. 'label' => $txt['modSettings_title'],
  102. 'file' => 'ManageSettings.php',
  103. 'function' => 'ModifyFeatureSettings',
  104. 'icon' => 'features.png',
  105. 'subsections' => array(
  106. 'basic' => array($txt['mods_cat_features']),
  107. 'layout' => array($txt['mods_cat_layout']),
  108. 'karma' => array($txt['karma'], 'enabled' => in_array('k', $context['admin_features'])),
  109. 'sig' => array($txt['signature_settings_short']),
  110. 'profile' => array($txt['custom_profile_shorttitle'], 'enabled' => in_array('cp', $context['admin_features'])),
  111. ),
  112. ),
  113. 'securitysettings' => array(
  114. 'label' => $txt['admin_security_moderation'],
  115. 'file' => 'ManageSettings.php',
  116. 'function' => 'ModifySecuritySettings',
  117. 'icon' => 'security.png',
  118. 'subsections' => array(
  119. 'general' => array($txt['mods_cat_security_general']),
  120. 'spam' => array($txt['antispam_title']),
  121. 'moderation' => array($txt['moderation_settings_short'], 'enabled' => substr($modSettings['warning_settings'], 0, 1) == 1),
  122. ),
  123. ),
  124. 'languages' => array(
  125. 'label' => $txt['language_configuration'],
  126. 'file' => 'ManageLanguages.php',
  127. 'function' => 'ManageLanguages',
  128. 'icon' => 'languages.png',
  129. 'subsections' => array(
  130. 'edit' => array($txt['language_edit']),
  131. 'add' => array($txt['language_add']),
  132. 'settings' => array($txt['language_settings']),
  133. ),
  134. ),
  135. 'serversettings' => array(
  136. 'label' => $txt['admin_server_settings'],
  137. 'file' => 'ManageServer.php',
  138. 'function' => 'ModifySettings',
  139. 'icon' => 'server.png',
  140. 'subsections' => array(
  141. 'general' => array($txt['general_settings']),
  142. 'database' => array($txt['database_paths_settings']),
  143. 'cookie' => array($txt['cookies_sessions_settings']),
  144. 'cache' => array($txt['caching_settings']),
  145. 'loads' => array($txt['load_balancing_settings']),
  146. 'phpinfo' => array($txt['phpinfo_settings']),
  147. ),
  148. ),
  149. 'current_theme' => array(
  150. 'label' => $txt['theme_current_settings'],
  151. 'file' => 'Themes.php',
  152. 'function' => 'ThemesMain',
  153. 'custom_url' => $scripturl . '?action=admin;area=theme;sa=settings;th=' . $settings['theme_id'],
  154. 'icon' => 'current_theme.png',
  155. ),
  156. 'theme' => array(
  157. 'label' => $txt['theme_admin'],
  158. 'file' => 'Themes.php',
  159. 'function' => 'ThemesMain',
  160. 'custom_url' => $scripturl . '?action=admin;area=theme',
  161. 'icon' => 'themes.png',
  162. 'subsections' => array(
  163. 'admin' => array($txt['themeadmin_admin_title']),
  164. 'list' => array($txt['themeadmin_list_title']),
  165. 'reset' => array($txt['themeadmin_reset_title']),
  166. 'edit' => array($txt['themeadmin_edit_title']),
  167. ),
  168. ),
  169. 'modsettings' => array(
  170. 'label' => $txt['admin_modifications'],
  171. 'file' => 'ManageSettings.php',
  172. 'function' => 'ModifyModSettings',
  173. 'icon' => 'modifications.png',
  174. 'subsections' => array(
  175. 'hooks' => array($txt['hooks_title_list']),
  176. 'general' => array($txt['mods_cat_modifications_misc']),
  177. // Mod Authors for a "ADD AFTER" on this line. Ensure you end your change with a comma. For example:
  178. // 'shout' => array($txt['shout']),
  179. // Note the comma!! The setting with automatically appear with the first mod to be added.
  180. ),
  181. ),
  182. ),
  183. ),
  184. 'layout' => array(
  185. 'title' => $txt['layout_controls'],
  186. 'permission' => array('manage_boards', 'admin_forum', 'manage_smileys', 'manage_attachments', 'moderate_forum'),
  187. 'areas' => array(
  188. 'manageboards' => array(
  189. 'label' => $txt['admin_boards'],
  190. 'file' => 'ManageBoards.php',
  191. 'function' => 'ManageBoards',
  192. 'icon' => 'boards.png',
  193. 'permission' => array('manage_boards'),
  194. 'subsections' => array(
  195. 'main' => array($txt['boardsEdit']),
  196. 'newcat' => array($txt['mboards_new_cat']),
  197. 'settings' => array($txt['settings'], 'admin_forum'),
  198. ),
  199. ),
  200. 'postsettings' => array(
  201. 'label' => $txt['manageposts'],
  202. 'file' => 'ManagePosts.php',
  203. 'function' => 'ManagePostSettings',
  204. 'permission' => array('admin_forum'),
  205. 'icon' => 'posts.png',
  206. 'subsections' => array(
  207. 'posts' => array($txt['manageposts_settings']),
  208. 'bbc' => array($txt['manageposts_bbc_settings']),
  209. 'censor' => array($txt['admin_censored_words']),
  210. 'topics' => array($txt['manageposts_topic_settings']),
  211. ),
  212. ),
  213. 'managecalendar' => array(
  214. 'label' => $txt['manage_calendar'],
  215. 'file' => 'ManageCalendar.php',
  216. 'function' => 'ManageCalendar',
  217. 'icon' => 'calendar.png',
  218. 'permission' => array('admin_forum'),
  219. 'enabled' => in_array('cd', $context['admin_features']),
  220. 'subsections' => array(
  221. 'holidays' => array($txt['manage_holidays'], 'admin_forum', 'enabled' => !empty($modSettings['cal_enabled'])),
  222. 'settings' => array($txt['calendar_settings'], 'admin_forum'),
  223. ),
  224. ),
  225. 'managesearch' => array(
  226. 'label' => $txt['manage_search'],
  227. 'file' => 'ManageSearch.php',
  228. 'function' => 'ManageSearch',
  229. 'icon' => 'search.png',
  230. 'permission' => array('admin_forum'),
  231. 'subsections' => array(
  232. 'weights' => array($txt['search_weights']),
  233. 'method' => array($txt['search_method']),
  234. 'settings' => array($txt['settings']),
  235. ),
  236. ),
  237. 'smileys' => array(
  238. 'label' => $txt['smileys_manage'],
  239. 'file' => 'ManageSmileys.php',
  240. 'function' => 'ManageSmileys',
  241. 'icon' => 'smiley.png',
  242. 'permission' => array('manage_smileys'),
  243. 'subsections' => array(
  244. 'editsets' => array($txt['smiley_sets']),
  245. 'addsmiley' => array($txt['smileys_add'], 'enabled' => !empty($modSettings['smiley_enable'])),
  246. 'editsmileys' => array($txt['smileys_edit'], 'enabled' => !empty($modSettings['smiley_enable'])),
  247. 'setorder' => array($txt['smileys_set_order'], 'enabled' => !empty($modSettings['smiley_enable'])),
  248. 'editicons' => array($txt['icons_edit_message_icons'], 'enabled' => !empty($modSettings['messageIcons_enable'])),
  249. 'settings' => array($txt['settings']),
  250. ),
  251. ),
  252. 'manageattachments' => array(
  253. 'label' => $txt['attachments_avatars'],
  254. 'file' => 'ManageAttachments.php',
  255. 'function' => 'ManageAttachments',
  256. 'icon' => 'attachment.png',
  257. 'permission' => array('manage_attachments'),
  258. 'subsections' => array(
  259. 'browse' => array($txt['attachment_manager_browse']),
  260. 'attachments' => array($txt['attachment_manager_settings']),
  261. 'avatars' => array($txt['attachment_manager_avatar_settings']),
  262. 'maintenance' => array($txt['attachment_manager_maintenance']),
  263. ),
  264. ),
  265. ),
  266. ),
  267. 'members' => array(
  268. 'title' => $txt['admin_manage_members'],
  269. 'permission' => array('moderate_forum', 'manage_membergroups', 'manage_bans', 'manage_permissions', 'admin_forum'),
  270. 'areas' => array(
  271. 'viewmembers' => array(
  272. 'label' => $txt['admin_users'],
  273. 'file' => 'ManageMembers.php',
  274. 'function' => 'ViewMembers',
  275. 'icon' => 'members.png',
  276. 'permission' => array('moderate_forum'),
  277. 'subsections' => array(
  278. 'all' => array($txt['view_all_members']),
  279. 'search' => array($txt['mlist_search']),
  280. ),
  281. ),
  282. 'membergroups' => array(
  283. 'label' => $txt['admin_groups'],
  284. 'file' => 'ManageMembergroups.php',
  285. 'function' => 'ModifyMembergroups',
  286. 'icon' => 'membergroups.png',
  287. 'permission' => array('manage_membergroups'),
  288. 'subsections' => array(
  289. 'index' => array($txt['membergroups_edit_groups'], 'manage_membergroups'),
  290. 'add' => array($txt['membergroups_new_group'], 'manage_membergroups'),
  291. 'settings' => array($txt['settings'], 'admin_forum'),
  292. ),
  293. ),
  294. 'permissions' => array(
  295. 'label' => $txt['edit_permissions'],
  296. 'file' => 'ManagePermissions.php',
  297. 'function' => 'ModifyPermissions',
  298. 'icon' => 'permissions.png',
  299. 'permission' => array('manage_permissions'),
  300. 'subsections' => array(
  301. 'index' => array($txt['permissions_groups'], 'manage_permissions'),
  302. 'board' => array($txt['permissions_boards'], 'manage_permissions'),
  303. 'profiles' => array($txt['permissions_profiles'], 'manage_permissions'),
  304. 'postmod' => array($txt['permissions_post_moderation'], 'manage_permissions', 'enabled' => $modSettings['postmod_active']),
  305. 'settings' => array($txt['settings'], 'admin_forum'),
  306. ),
  307. ),
  308. 'regcenter' => array(
  309. 'label' => $txt['registration_center'],
  310. 'file' => 'ManageRegistration.php',
  311. 'function' => 'RegCenter',
  312. 'icon' => 'regcenter.png',
  313. 'permission' => array('admin_forum', 'moderate_forum'),
  314. 'subsections' => array(
  315. 'register' => array($txt['admin_browse_register_new'], 'moderate_forum'),
  316. 'agreement' => array($txt['registration_agreement'], 'admin_forum'),
  317. 'reservednames' => array($txt['admin_reserved_set'], 'admin_forum'),
  318. 'settings' => array($txt['settings'], 'admin_forum'),
  319. ),
  320. ),
  321. 'ban' => array(
  322. 'label' => $txt['ban_title'],
  323. 'file' => 'ManageBans.php',
  324. 'function' => 'Ban',
  325. 'icon' => 'ban.png',
  326. 'permission' => 'manage_bans',
  327. 'subsections' => array(
  328. 'list' => array($txt['ban_edit_list']),
  329. 'add' => array($txt['ban_add_new']),
  330. 'browse' => array($txt['ban_trigger_browse']),
  331. 'log' => array($txt['ban_log']),
  332. ),
  333. ),
  334. 'paidsubscribe' => array(
  335. 'label' => $txt['paid_subscriptions'],
  336. 'enabled' => in_array('ps', $context['admin_features']),
  337. 'file' => 'ManagePaid.php',
  338. 'icon' => 'paid.png',
  339. 'function' => 'ManagePaidSubscriptions',
  340. 'permission' => 'admin_forum',
  341. 'subsections' => array(
  342. 'view' => array($txt['paid_subs_view']),
  343. 'settings' => array($txt['settings']),
  344. ),
  345. ),
  346. 'sengines' => array(
  347. 'label' => $txt['search_engines'],
  348. 'enabled' => in_array('sp', $context['admin_features']),
  349. 'file' => 'ManageSearchEngines.php',
  350. 'icon' => 'engines.png',
  351. 'function' => 'SearchEngines',
  352. 'permission' => 'admin_forum',
  353. 'subsections' => array(
  354. 'stats' => array($txt['spider_stats']),
  355. 'logs' => array($txt['spider_logs']),
  356. 'spiders' => array($txt['spiders']),
  357. 'settings' => array($txt['settings']),
  358. ),
  359. ),
  360. ),
  361. ),
  362. 'maintenance' => array(
  363. 'title' => $txt['admin_maintenance'],
  364. 'permission' => array('admin_forum'),
  365. 'areas' => array(
  366. 'maintain' => array(
  367. 'label' => $txt['maintain_title'],
  368. 'file' => 'ManageMaintenance.php',
  369. 'icon' => 'maintain.png',
  370. 'function' => 'ManageMaintenance',
  371. 'subsections' => array(
  372. 'routine' => array($txt['maintain_sub_routine'], 'admin_forum'),
  373. 'database' => array($txt['maintain_sub_database'], 'admin_forum'),
  374. 'members' => array($txt['maintain_sub_members'], 'admin_forum'),
  375. 'topics' => array($txt['maintain_sub_topics'], 'admin_forum'),
  376. ),
  377. ),
  378. 'scheduledtasks' => array(
  379. 'label' => $txt['maintain_tasks'],
  380. 'file' => 'ManageScheduledTasks.php',
  381. 'icon' => 'scheduled.png',
  382. 'function' => 'ManageScheduledTasks',
  383. 'subsections' => array(
  384. 'tasks' => array($txt['maintain_tasks'], 'admin_forum'),
  385. 'tasklog' => array($txt['scheduled_log'], 'admin_forum'),
  386. ),
  387. ),
  388. 'mailqueue' => array(
  389. 'label' => $txt['mailqueue_title'],
  390. 'file' => 'ManageMail.php',
  391. 'function' => 'ManageMail',
  392. 'icon' => 'mail.png',
  393. 'subsections' => array(
  394. 'browse' => array($txt['mailqueue_browse'], 'admin_forum'),
  395. 'settings' => array($txt['mailqueue_settings'], 'admin_forum'),
  396. ),
  397. ),
  398. 'reports' => array(
  399. 'enabled' => in_array('rg', $context['admin_features']),
  400. 'label' => $txt['generate_reports'],
  401. 'file' => 'Reports.php',
  402. 'function' => 'ReportsMain',
  403. 'icon' => 'reports.png',
  404. ),
  405. 'logs' => array(
  406. 'label' => $txt['logs'],
  407. 'function' => 'AdminLogs',
  408. 'icon' => 'logs.png',
  409. 'subsections' => array(
  410. 'errorlog' => array($txt['errlog'], 'admin_forum', 'enabled' => !empty($modSettings['enableErrorLogging']), 'url' => $scripturl . '?action=admin;area=logs;sa=errorlog;desc'),
  411. 'adminlog' => array($txt['admin_log'], 'admin_forum', 'enabled' => in_array('ml', $context['admin_features'])),
  412. 'modlog' => array($txt['moderation_log'], 'admin_forum', 'enabled' => in_array('ml', $context['admin_features'])),
  413. 'banlog' => array($txt['ban_log'], 'manage_bans'),
  414. 'spiderlog' => array($txt['spider_logs'], 'admin_forum', 'enabled' => in_array('sp', $context['admin_features'])),
  415. 'tasklog' => array($txt['scheduled_log'], 'admin_forum'),
  416. 'pruning' => array($txt['pruning_title'], 'admin_forum'),
  417. ),
  418. ),
  419. 'repairboards' => array(
  420. 'label' => $txt['admin_repair'],
  421. 'file' => 'RepairBoards.php',
  422. 'function' => 'RepairBoards',
  423. 'select' => 'maintain',
  424. 'hidden' => true,
  425. ),
  426. ),
  427. ),
  428. );
  429. // Any files to include for administration?
  430. if (!empty($modSettings['integrate_admin_include']))
  431. {
  432. $admin_includes = explode(',', $modSettings['integrate_admin_include']);
  433. foreach ($admin_includes as $include)
  434. {
  435. $include = strtr(trim($include), array('$boarddir' => $boarddir, '$sourcedir' => $sourcedir, '$themedir' => $settings['theme_dir']));
  436. if (file_exists($include))
  437. require_once($include);
  438. }
  439. }
  440. // Let them modify admin areas easily.
  441. call_integration_hook('integrate_admin_areas', array(&$admin_areas));
  442. // Make sure the administrator has a valid session...
  443. validateSession();
  444. // Actually create the menu!
  445. $admin_include_data = createMenu($admin_areas);
  446. unset($admin_areas);
  447. // Nothing valid?
  448. if ($admin_include_data == false)
  449. fatal_lang_error('no_access', false);
  450. // Build the link tree.
  451. $context['linktree'][] = array(
  452. 'url' => $scripturl . '?action=admin',
  453. 'name' => $txt['admin_center'],
  454. );
  455. if (isset($admin_include_data['current_area']) && $admin_include_data['current_area'] != 'index')
  456. $context['linktree'][] = array(
  457. 'url' => $scripturl . '?action=admin;area=' . $admin_include_data['current_area'] . ';' . $context['session_var'] . '=' . $context['session_id'],
  458. 'name' => $admin_include_data['label'],
  459. );
  460. if (!empty($admin_include_data['current_subsection']) && $admin_include_data['subsections'][$admin_include_data['current_subsection']][0] != $admin_include_data['label'])
  461. $context['linktree'][] = array(
  462. 'url' => $scripturl . '?action=admin;area=' . $admin_include_data['current_area'] . ';sa=' . $admin_include_data['current_subsection'] . ';' . $context['session_var'] . '=' . $context['session_id'],
  463. 'name' => $admin_include_data['subsections'][$admin_include_data['current_subsection']][0],
  464. );
  465. // Make a note of the Unique ID for this menu.
  466. $context['admin_menu_id'] = $context['max_menu_id'];
  467. $context['admin_menu_name'] = 'menu_data_' . $context['admin_menu_id'];
  468. // Where in the admin are we?
  469. $context['admin_area'] = $admin_include_data['current_area'];
  470. // Now - finally - call the right place!
  471. if (isset($admin_include_data['file']))
  472. require_once($sourcedir . '/' . $admin_include_data['file']);
  473. $admin_include_data['function']();
  474. }
  475. /**
  476. * The main administration section.
  477. * It prepares all the data necessary for the administration front page.
  478. * It uses the Admin template along with the admin sub template.
  479. * It requires the moderate_forum, manage_membergroups, manage_bans,
  480. * admin_forum, manage_permissions, manage_attachments, manage_smileys,
  481. * manage_boards, edit_news, or send_mail permission.
  482. * It uses the index administrative area.
  483. * It can be found by going to ?action=admin.
  484. */
  485. function AdminHome()
  486. {
  487. global $sourcedir, $forum_version, $txt, $scripturl, $context, $user_info, $boardurl, $modSettings, $smcFunc;
  488. // You have to be able to do at least one of the below to see this page.
  489. isAllowedTo(array('admin_forum', 'manage_permissions', 'moderate_forum', 'manage_membergroups', 'manage_bans', 'send_mail', 'edit_news', 'manage_boards', 'manage_smileys', 'manage_attachments'));
  490. // Find all of this forum's administrators...
  491. require_once($sourcedir . '/Subs-Membergroups.php');
  492. if (listMembergroupMembers_Href($context['administrators'], 1, 32) && allowedTo('manage_membergroups'))
  493. {
  494. // Add a 'more'-link if there are more than 32.
  495. $context['more_admins_link'] = '<a href="' . $scripturl . '?action=moderate;area=viewgroups;sa=members;group=1">' . $txt['more'] . '</a>';
  496. }
  497. // Load the credits stuff.
  498. require_once($sourcedir . '/Who.php');
  499. Credits(true);
  500. // This makes it easier to get the latest news with your time format.
  501. $context['time_format'] = urlencode($user_info['time_format']);
  502. $context['forum_version'] = $forum_version;
  503. // Get a list of current server versions.
  504. require_once($sourcedir . '/Subs-Admin.php');
  505. $checkFor = array(
  506. 'gd',
  507. 'db_server',
  508. 'mmcache',
  509. 'eaccelerator',
  510. 'phpa',
  511. 'apc',
  512. 'memcache',
  513. 'xcache',
  514. 'php',
  515. 'server',
  516. );
  517. $context['current_versions'] = getServerVersions($checkFor);
  518. $context['can_admin'] = allowedTo('admin_forum');
  519. $context['sub_template'] = $context['admin_area'] == 'credits' ? 'credits' : 'admin';
  520. $context['page_title'] = $context['admin_area'] == 'credits' ? $txt['support_credits_title'] : $txt['admin_center'];
  521. // The format of this array is: permission, action, title, description, icon.
  522. $quick_admin_tasks = array(
  523. array('', 'credits', 'support_credits_title', 'support_credits_info', 'support_and_credits.png'),
  524. array('admin_forum', 'featuresettings', 'modSettings_title', 'modSettings_info', 'features_and_options.png'),
  525. array('admin_forum', 'maintain', 'maintain_title', 'maintain_info', 'forum_maintenance.png'),
  526. array('manage_permissions', 'permissions', 'edit_permissions', 'edit_permissions_info', 'permissions_lg.png'),
  527. array('admin_forum', 'theme;sa=admin;' . $context['session_var'] . '=' . $context['session_id'], 'theme_admin', 'theme_admin_info', 'themes_and_layout.png'),
  528. array('admin_forum', 'packages', 'package', 'package_info', 'packages_lg.png'),
  529. array('manage_smileys', 'smileys', 'smileys_manage', 'smileys_manage_info', 'smilies_and_messageicons.png'),
  530. array('moderate_forum', 'viewmembers', 'admin_users', 'member_center_info', 'members_lg.png'),
  531. );
  532. $context['quick_admin_tasks'] = array();
  533. foreach ($quick_admin_tasks as $task)
  534. {
  535. if (!empty($task[0]) && !allowedTo($task[0]))
  536. continue;
  537. $context['quick_admin_tasks'][] = array(
  538. 'href' => $scripturl . '?action=admin;area=' . $task[1],
  539. 'link' => '<a href="' . $scripturl . '?action=admin;area=' . $task[1] . '">' . $txt[$task[2]] . '</a>',
  540. 'title' => $txt[$task[2]],
  541. 'description' => $txt[$task[3]],
  542. 'icon' => $task[4],
  543. 'is_last' => false
  544. );
  545. }
  546. if (count($context['quick_admin_tasks']) % 2 == 1)
  547. {
  548. $context['quick_admin_tasks'][] = array(
  549. 'href' => '',
  550. 'link' => '',
  551. 'title' => '',
  552. 'description' => '',
  553. 'is_last' => true
  554. );
  555. $context['quick_admin_tasks'][count($context['quick_admin_tasks']) - 2]['is_last'] = true;
  556. }
  557. elseif (count($context['quick_admin_tasks']) != 0)
  558. {
  559. $context['quick_admin_tasks'][count($context['quick_admin_tasks']) - 1]['is_last'] = true;
  560. $context['quick_admin_tasks'][count($context['quick_admin_tasks']) - 2]['is_last'] = true;
  561. }
  562. // Lastly, fill in the blanks in the support resources paragraphs.
  563. $txt['support_resources_p1'] = sprintf($txt['support_resources_p1'],
  564. 'http://wiki.simplemachines.org/',
  565. 'http://wiki.simplemachines.org/smf/features2',
  566. 'http://wiki.simplemachines.org/smf/options2',
  567. 'http://wiki.simplemachines.org/smf/themes2',
  568. 'http://wiki.simplemachines.org/smf/packages2'
  569. );
  570. $txt['support_resources_p2'] = sprintf($txt['support_resources_p2'],
  571. 'http://www.simplemachines.org/community/',
  572. 'http://www.simplemachines.org/redirect/english_support',
  573. 'http://www.simplemachines.org/redirect/international_support_boards',
  574. 'http://www.simplemachines.org/redirect/smf_support',
  575. 'http://www.simplemachines.org/redirect/customize_support'
  576. );
  577. }
  578. /**
  579. * Get one of the admin information files from Simple Machines.
  580. */
  581. function DisplayAdminFile()
  582. {
  583. global $context, $modSettings, $smcFunc;
  584. setMemoryLimit('32M');
  585. if (empty($_REQUEST['filename']) || !is_string($_REQUEST['filename']))
  586. fatal_lang_error('no_access', false);
  587. $request = $smcFunc['db_query']('', '
  588. SELECT data, filetype
  589. FROM {db_prefix}admin_info_files
  590. WHERE filename = {string:current_filename}
  591. LIMIT 1',
  592. array(
  593. 'current_filename' => $_REQUEST['filename'],
  594. )
  595. );
  596. if ($smcFunc['db_num_rows']($request) == 0)
  597. fatal_lang_error('admin_file_not_found', true, array($_REQUEST['filename']));
  598. list ($file_data, $filetype) = $smcFunc['db_fetch_row']($request);
  599. $smcFunc['db_free_result']($request);
  600. // @todo Temp
  601. // Figure out if sesc is still being used.
  602. if (strpos($file_data, ';sesc=') !== false)
  603. $file_data = '
  604. if (!(\'smfForum_sessionvar\' in window))
  605. window.smfForum_sessionvar = \'sesc\';
  606. ' . strtr($file_data, array(';sesc=' => ';\' + window.smfForum_sessionvar + \'='));
  607. $context['template_layers'] = array();
  608. // Lets make sure we aren't going to output anything nasty.
  609. @ob_end_clean();
  610. if (!empty($modSettings['enableCompressedOutput']))
  611. @ob_start('ob_gzhandler');
  612. else
  613. @ob_start();
  614. // Make sure they know what type of file we are.
  615. header('Content-Type: ' . $filetype);
  616. echo $file_data;
  617. obExit(false);
  618. }
  619. /**
  620. * This function allocates out all the search stuff.
  621. */
  622. function AdminSearch()
  623. {
  624. global $txt, $context, $smcFunc, $sourcedir;
  625. isAllowedTo('admin_forum');
  626. // What can we search for?
  627. $subactions = array(
  628. 'internal' => 'AdminSearchInternal',
  629. 'online' => 'AdminSearchOM',
  630. 'member' => 'AdminSearchMember',
  631. );
  632. $context['search_type'] = !isset($_REQUEST['search_type']) || !isset($subactions[$_REQUEST['search_type']]) ? 'internal' : $_REQUEST['search_type'];
  633. $context['search_term'] = isset($_REQUEST['search_term']) ? $smcFunc['htmlspecialchars']($_REQUEST['search_term'], ENT_QUOTES) : '';
  634. $context['sub_template'] = 'admin_search_results';
  635. $context['page_title'] = $txt['admin_search_results'];
  636. // Keep track of what the admin wants.
  637. if (empty($context['admin_preferences']['sb']) || $context['admin_preferences']['sb'] != $context['search_type'])
  638. {
  639. $context['admin_preferences']['sb'] = $context['search_type'];
  640. // Update the preferences.
  641. require_once($sourcedir . '/Subs-Admin.php');
  642. updateAdminPreferences();
  643. }
  644. if (trim($context['search_term']) == '')
  645. $context['search_results'] = array();
  646. else
  647. $subactions[$context['search_type']]();
  648. }
  649. /**
  650. * A complicated but relatively quick internal search.
  651. */
  652. function AdminSearchInternal()
  653. {
  654. global $context, $txt, $helptxt, $scripturl, $sourcedir;
  655. // Try to get some more memory.
  656. setMemoryLimit('128M');
  657. // Load a lot of language files.
  658. $language_files = array(
  659. 'Help', 'ManageMail', 'ManageSettings', 'ManageCalendar', 'ManageBoards', 'ManagePaid', 'ManagePermissions', 'Search',
  660. 'Login', 'ManageSmileys',
  661. );
  662. // All the files we need to include.
  663. $include_files = array(
  664. 'ManageSettings', 'ManageBoards', 'ManageNews', 'ManageAttachments', 'ManageCalendar', 'ManageMail', 'ManagePaid', 'ManagePermissions',
  665. 'ManagePosts', 'ManageRegistration', 'ManageSearch', 'ManageSearchEngines', 'ManageServer', 'ManageSmileys', 'ManageLanguages',
  666. );
  667. // This is a special array of functions that contain setting data - we query all these to simply pull all setting bits!
  668. $settings_search = array(
  669. array('ModifyCoreFeatures', 'area=corefeatures'),
  670. array('ModifyBasicSettings', 'area=featuresettings;sa=basic'),
  671. array('ModifyLayoutSettings', 'area=featuresettings;sa=layout'),
  672. array('ModifyKarmaSettings', 'area=featuresettings;sa=karma'),
  673. array('ModifySignatureSettings', 'area=featuresettings;sa=sig'),
  674. array('ModifyGeneralSecuritySettings', 'area=securitysettings;sa=general'),
  675. array('ModifySpamSettings', 'area=securitysettings;sa=spam'),
  676. array('ModifyModerationSettings', 'area=securitysettings;sa=moderation'),
  677. array('ModifyGeneralModSettings', 'area=modsettings;sa=general'),
  678. // Mod authors if you want to be "real freaking good" then add any setting pages for your mod BELOW this line!
  679. array('ManageAttachmentSettings', 'area=manageattachments;sa=attachments'),
  680. array('ManageAvatarSettings', 'area=manageattachments;sa=avatars'),
  681. array('ModifyCalendarSettings', 'area=managecalendar;sa=settings'),
  682. array('EditBoardSettings', 'area=manageboards;sa=settings'),
  683. array('ModifyMailSettings', 'area=mailqueue;sa=settings'),
  684. array('ModifyNewsSettings', 'area=news;sa=settings'),
  685. array('GeneralPermissionSettings', 'area=permissions;sa=settings'),
  686. array('ModifyPostSettings', 'area=postsettings;sa=posts'),
  687. array('ModifyBBCSettings', 'area=postsettings;sa=bbc'),
  688. array('ModifyTopicSettings', 'area=postsettings;sa=topics'),
  689. array('EditSearchSettings', 'area=managesearch;sa=settings'),
  690. array('EditSmileySettings', 'area=smileys;sa=settings'),
  691. array('ModifyGeneralSettings', 'area=serversettings;sa=general'),
  692. array('ModifyDatabaseSettings', 'area=serversettings;sa=database'),
  693. array('ModifyCookieSettings', 'area=serversettings;sa=cookie'),
  694. array('ModifyCacheSettings', 'area=serversettings;sa=cache'),
  695. array('ModifyLanguageSettings', 'area=languages;sa=settings'),
  696. array('ModifyRegistrationSettings', 'area=regcenter;sa=settings'),
  697. array('ManageSearchEngineSettings', 'area=sengines;sa=settings'),
  698. array('ModifySubscriptionSettings', 'area=paidsubscribe;sa=settings'),
  699. array('ModifyPruningSettings', 'area=logs;sa=pruning'),
  700. );
  701. call_integration_hook('integrate_admin_search', array(&$language_files, &$include_files, &$settings_search));
  702. loadLanguage(implode('+', $language_files));
  703. foreach ($include_files as $file)
  704. require_once($sourcedir . '/' . $file . '.php');
  705. /* This is the huge array that defines everything... it's a huge array of items formatted as follows:
  706. 0 = Language index (Can be array of indexes) to search through for this setting.
  707. 1 = URL for this indexes page.
  708. 2 = Help index for help associated with this item (If different from 0)
  709. */
  710. $search_data = array(
  711. // All the major sections of the forum.
  712. 'sections' => array(
  713. ),
  714. 'settings' => array(
  715. array('COPPA', 'area=regcenter;sa=settings'),
  716. array('CAPTCHA', 'area=securitysettings;sa=spam'),
  717. ),
  718. );
  719. // Go through the admin menu structure trying to find suitably named areas!
  720. foreach ($context[$context['admin_menu_name']]['sections'] as $section)
  721. {
  722. foreach ($section['areas'] as $menu_key => $menu_item)
  723. {
  724. $search_data['sections'][] = array($menu_item['label'], 'area=' . $menu_key);
  725. if (!empty($menu_item['subsections']))
  726. foreach ($menu_item['subsections'] as $key => $sublabel)
  727. {
  728. if (isset($sublabel['label']))
  729. $search_data['sections'][] = array($sublabel['label'], 'area=' . $menu_key . ';sa=' . $key);
  730. }
  731. }
  732. }
  733. foreach ($settings_search as $setting_area)
  734. {
  735. // Get a list of their variables.
  736. $config_vars = $setting_area[0](true);
  737. foreach ($config_vars as $var)
  738. if (!empty($var[1]) && !in_array($var[0], array('permissions', 'switch')))
  739. $search_data['settings'][] = array($var[(isset($var[2]) && in_array($var[2], array('file', 'db'))) ? 0 : 1], $setting_area[1]);
  740. }
  741. $context['page_title'] = $txt['admin_search_results'];
  742. $context['search_results'] = array();
  743. $search_term = strtolower(un_htmlspecialchars($context['search_term']));
  744. // Go through all the search data trying to find this text!
  745. foreach ($search_data as $section => $data)
  746. {
  747. foreach ($data as $item)
  748. {
  749. $found = false;
  750. if (!is_array($item[0]))
  751. $item[0] = array($item[0]);
  752. foreach ($item[0] as $term)
  753. {
  754. if (stripos($term, $search_term) !== false || (isset($txt[$term]) && stripos($txt[$term], $search_term) !== false) || (isset($txt['setting_' . $term]) && stripos($txt['setting_' . $term], $search_term) !== false))
  755. {
  756. $found = $term;
  757. break;
  758. }
  759. }
  760. if ($found)
  761. {
  762. // Format the name - and remove any descriptions the entry may have.
  763. $name = isset($txt[$found]) ? $txt[$found] : (isset($txt['setting_' . $found]) ? $txt['setting_' . $found] : $found);
  764. $name = preg_replace('~<(?:div|span)\sclass="smalltext">.+?</(?:div|span)>~', '', $name);
  765. $context['search_results'][] = array(
  766. 'url' => (substr($item[1], 0, 4) == 'area' ? $scripturl . '?action=admin;' . $item[1] : $item[1]) . ';' . $context['session_var'] . '=' . $context['session_id'] . ((substr($item[1], 0, 4) == 'area' && $section == 'settings' ? '#' . $item[0][0] : '')),
  767. 'name' => $name,
  768. 'type' => $section,
  769. 'help' => shorten_subject(isset($item[2]) ? strip_tags($helptxt[$item[2]]) : (isset($helptxt[$found]) ? strip_tags($helptxt[$found]) : ''), 255),
  770. );
  771. }
  772. }
  773. }
  774. }
  775. /**
  776. * All this does is pass through to manage members.
  777. */
  778. function AdminSearchMember()
  779. {
  780. global $context, $sourcedir;
  781. require_once($sourcedir . '/ManageMembers.php');
  782. $_REQUEST['sa'] = 'query';
  783. $_POST['membername'] = un_htmlspecialchars($context['search_term']);
  784. $_POST['types'] = '';
  785. ViewMembers();
  786. }
  787. /**
  788. * This file allows the user to search the SM online manual for a little of help.
  789. * @todo wiki search
  790. */
  791. function AdminSearchOM()
  792. {
  793. global $context, $sourcedir;
  794. $context['doc_apiurl'] = 'http://wiki.simplemachines.org/api.php';
  795. $context['doc_scripturl'] = 'http://wiki.simplemachines.org/smf/';
  796. // Set all the parameters search might expect.
  797. $postVars = explode(' ', $context['search_term']);
  798. // Encode the search data.
  799. foreach ($postVars as $k => $v)
  800. $postVars[$k] = urlencode($v);
  801. // This is what we will send.
  802. $postVars = implode('+', $postVars);
  803. // Get the results from the doc site.
  804. require_once($sourcedir . '/Subs-Package.php');
  805. // Demo URL:
  806. // http://wiki.simplemachines.org/api.php?action=query&list=search&srprop=timestamp|snippet&format=xml&srwhat=text&srsearch=template+eval
  807. $search_results = fetch_web_data($context['doc_apiurl'] . '?action=query&list=search&srprop=timestamp|snippet&format=xml&srwhat=text&srsearch=' . $postVars);
  808. // If we didn't get any xml back we are in trouble - perhaps the doc site is overloaded?
  809. if (!$search_results || preg_match('~<' . '\?xml\sversion="\d+\.\d+"\?>\s*(<api>.+?</api>)~is', $search_results, $matches) != true)
  810. fatal_lang_error('cannot_connect_doc_site');
  811. $search_results = $matches[1];
  812. // Otherwise we simply walk through the XML and stick it in context for display.
  813. $context['search_results'] = array();
  814. require_once($sourcedir . '/Class-Package.php');
  815. // Get the results loaded into an array for processing!
  816. $results = new xmlArray($search_results, false);
  817. // Move through the api layer.
  818. if (!$results->exists('api'))
  819. fatal_lang_error('cannot_connect_doc_site');
  820. // Are there actually some results?
  821. if ($results->exists('api/query/search/p'))
  822. {
  823. $relevance = 0;
  824. foreach ($results->set('api/query/search/p') as $result)
  825. {
  826. $context['search_results'][$result->fetch('@title')] = array(
  827. 'title' => $result->fetch('@title'),
  828. 'relevance' => $relevance++,
  829. 'snippet' => str_replace('class=\'searchmatch\'', 'class="highlight"', un_htmlspecialchars($result->fetch('@snippet'))),
  830. );
  831. }
  832. }
  833. }
  834. /**
  835. * This function decides which log to load.
  836. */
  837. function AdminLogs()
  838. {
  839. global $sourcedir, $context, $txt, $scripturl;
  840. // These are the logs they can load.
  841. $log_functions = array(
  842. 'errorlog' => array('ManageErrors.php', 'ViewErrorLog'),
  843. 'adminlog' => array('Modlog.php', 'ViewModlog'),
  844. 'modlog' => array('Modlog.php', 'ViewModlog', 'disabled' => !in_array('ml', $context['admin_features'])),
  845. 'banlog' => array('ManageBans.php', 'BanLog'),
  846. 'spiderlog' => array('ManageSearchEngines.php', 'SpiderLogs'),
  847. 'tasklog' => array('ManageScheduledTasks.php', 'TaskLog'),
  848. 'pruning' => array('ManageSettings.php', 'ModifyPruningSettings'),
  849. );
  850. call_integration_hook('integrate_manage_logs', array(&$log_functions));
  851. $sub_action = isset($_REQUEST['sa']) && isset($log_functions[$_REQUEST['sa']]) && empty($log_functions[$_REQUEST['sa']]['disabled']) ? $_REQUEST['sa'] : 'errorlog';
  852. // If it's not got a sa set it must have come here for first time, pretend error log should be reversed.
  853. if (!isset($_REQUEST['sa']))
  854. $_REQUEST['desc'] = true;
  855. // Setup some tab stuff.
  856. $context[$context['admin_menu_name']]['tab_data'] = array(
  857. 'title' => $txt['logs'],
  858. 'help' => '',
  859. 'description' => $txt['maintain_info'],
  860. 'tabs' => array(
  861. 'errorlog' => array(
  862. 'url' => $scripturl . '?action=admin;area=logs;sa=errorlog;desc',
  863. 'description' => sprintf($txt['errlog_desc'], $txt['remove']),
  864. ),
  865. 'adminlog' => array(
  866. 'description' => $txt['admin_log_desc'],
  867. ),
  868. 'modlog' => array(
  869. 'description' => $txt['moderation_log_desc'],
  870. ),
  871. 'banlog' => array(
  872. 'description' => $txt['ban_log_description'],
  873. ),
  874. 'spiderlog' => array(
  875. 'description' => $txt['spider_log_desc'],
  876. ),
  877. 'tasklog' => array(
  878. 'description' => $txt['scheduled_log_desc'],
  879. ),
  880. 'pruning' => array(
  881. 'description' => $txt['pruning_log_desc'],
  882. ),
  883. ),
  884. );
  885. require_once($sourcedir . '/' . $log_functions[$sub_action][0]);
  886. $log_functions[$sub_action][1]();
  887. }
  888. /**
  889. * This ends a admin session, requiring authentication to access the ACP again.
  890. */
  891. function AdminEndSession()
  892. {
  893. // This is so easy!
  894. unset($_SESSION['admin_time']);
  895. // Clean any admin tokens as well.
  896. foreach ($_SESSION['token'] as $key => $token)
  897. if (strpos($key, '-admin') !== false)
  898. unset($_SESSION['token'][$key]);
  899. redirectexit('?action=admin');
  900. }
  901. ?>