--- /dev/null Thu Jan 01 00:00:00 1970 +0000
+++ b/punbb/profile.php Sun Apr 06 00:28:50 2008 -0400
@@ -0,0 +1,2199 @@
+<?php
+/***********************************************************************
+
+ Copyright (C) 2002-2008 PunBB.org
+
+ This file is part of PunBB.
+
+ PunBB is free software; you can redistribute it and/or modify it
+ under the terms of the GNU General Public License as published
+ by the Free Software Foundation; either version 2 of the License,
+ or (at your option) any later version.
+
+ PunBB is distributed in the hope that it will be useful, but
+ WITHOUT ANY WARRANTY; without even the implied warranty of
+ MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+ GNU General Public License for more details.
+
+ You should have received a copy of the GNU General Public License
+ along with this program; if not, write to the Free Software
+ Foundation, Inc., 59 Temple Place, Suite 330, Boston,
+ MA 02111-1307 USA
+
+************************************************************************/
+
+
+// if (!defined('PUN_ROOT'))
+// define('PUN_ROOT', './');
+// require PUN_ROOT.'include/common.php';
+
+// import globals (I really hope this isn't dangerous)
+foreach ( $GLOBALS as $key => $_ )
+{
+ $$key =& $GLOBALS[$key];
+}
+
+($hook = get_hook('pf_start')) ? eval($hook) : null;
+
+$action = isset($_GET['action']) ? $_GET['action'] : null;
+$section = isset($_GET['section']) ? $_GET['section'] : 'about'; // Default to section "about"
+$id = isset($_GET['id']) ? intval($_GET['id']) : 0;
+if ($id < 2)
+ message($lang_common['Bad request']);
+
+if ($action != 'change_pass' || !isset($_GET['key']))
+{
+ if ($pun_user['g_read_board'] == '0')
+ message($lang_common['No view']);
+ else if ($pun_user['g_view_users'] == '0' && ($pun_user['is_guest'] || $pun_user['id'] != $id))
+ message($lang_common['No permission']);
+}
+
+// Load the profile.php language file
+require PUN_ROOT.'lang/'.$pun_user['language'].'/profile.php';
+$GLOBALS['lang_profile'] = $lang_profile;
+
+// Fetch info about the user whose profile we're viewing
+$query = array(
+ 'SELECT' => 'u.*, eu.username, g.g_id, g.g_user_title, g.g_moderator',
+ 'FROM' => $pun_db->prefix . 'users AS u',
+ 'JOINS' => array(
+ array(
+ 'LEFT JOIN' => $pun_db->prefix . 'groups AS g',
+ 'ON' => 'g.g_id=u.group_id'
+ ),
+ array(
+ 'LEFT JOIN' => table_prefix . 'users AS eu',
+ 'ON' => 'eu.user_id = u.id'
+ )
+ ),
+ 'WHERE' => 'u.id='.$id,
+ 'PARAMS' => array(
+ 'NO_PREFIX' => ''
+ )
+);
+
+($hook = get_hook('pf_qr_get_user_info')) ? eval($hook) : null;
+$result = $pun_db->query_build($query) or error(__FILE__, __LINE__);
+if (!$pun_db->num_rows($result))
+ message($lang_common['Bad request']);
+
+$user = $pun_db->fetch_assoc($result);
+
+
+if ($action == 'change_pass')
+{
+ ($hook = get_hook('pf_change_pass_selected')) ? eval($hook) : null;
+
+ // User pressed the cancel button
+ if (isset($_POST['cancel']))
+ pun_redirect(pun_link($pun_url['profile_about'], $id), $lang_common['Cancel redirect']);
+
+ if (isset($_GET['key']))
+ {
+ // If the user is already logged in we shouldn't be here :)
+ if (!$pun_user['is_guest'])
+ message($lang_profile['Pass logout']);
+
+ ($hook = get_hook('pf_change_pass_key_supplied')) ? eval($hook) : null;
+
+ $key = $_GET['key'];
+
+ if ($key == '' || $key != $user['activate_key'])
+ message(sprintf($lang_profile['Pass key bad'], '<a href="mailto:'.$pun_config['o_admin_email'].'">'.$pun_config['o_admin_email'].'</a>'));
+ else
+ {
+ if (isset($_POST['form_sent']))
+ {
+ ($hook = get_hook('pf_change_pass_key_form_submitted')) ? eval($hook) : null;
+
+ $new_password1 = trim($_POST['req_new_password1']);
+ $new_password2 = trim($_POST['req_new_password2']);
+
+ if ($new_password1 != $new_password2)
+ message($lang_profile['Pass not match']);
+ if (pun_strlen($new_password1) < 4)
+ message($lang_profile['Pass too short']);
+
+ $new_password_hash = sha1($user['salt'].sha1($new_password1));
+
+ $query = array(
+ 'UPDATE' => 'users',
+ 'SET' => 'password=\''.$new_password_hash.'\', activate_key=NULL',
+ 'WHERE' => 'id='.$id
+ );
+
+ ($hook = get_hook('pf_qr_update_password')) ? eval($hook) : null;
+ $pun_db->query_build($query) or error(__FILE__, __LINE__);
+
+ pun_redirect(pun_link($pun_url['index']), $lang_profile['Pass updated']);
+ }
+
+ // Setup form
+ $pun_page['set_count'] = $pun_page['fld_count'] = 0;
+ $pun_page['form_action'] = pun_link($pun_url['change_password_key'], array($id, $key));
+
+ // Setup breadcrumbs
+ $pun_page['crumbs'] = array(
+ array($pun_config['o_board_title'], pun_link($pun_url['index'])),
+ array(sprintf($lang_profile['Users profile'], htmlspecialchars($user['username']), $lang_profile['Section about']), pun_link($pun_url['profile_about'], $id)),
+ $lang_profile['Change password']
+ );
+
+ ($hook = get_hook('pf_change_pass_key_pre_header_load')) ? eval($hook) : null;
+
+ define('PUN_PAGE', 'profile-changepass');
+ require PUN_ROOT.'header.php';
+
+?>
+<div id="pun-main" class="main">
+
+ <h1><span><?php printf($lang_profile['Users profile'], htmlspecialchars($user['username'])) ?></span></h1>
+
+ <div class="main-head">
+ <h2><span><?php echo $lang_profile['Change password'] ?></span></h2>
+ </div>
+
+ <div class="main-content frm">
+ <div id="req-msg" class="frm-warn">
+ <p class="important"><?php printf($lang_common['Required warn'], '<em class="req-text">'.$lang_common['Required'].'</em>') ?></p>
+ </div>
+ <form id="afocus" class="frm-form" method="post" accept-charset="utf-8" action="<?php echo $pun_page['form_action'] ?>">
+ <div class="hidden">
+ <input type="hidden" name="form_sent" value="1" />
+ </div>
+<?php ($hook = get_hook('pf_change_pass_key_pre_fieldset')) ? eval($hook) : null; ?>
+ <fieldset class="frm-set set<?php echo ++$pun_page['set_count'] ?>">
+ <legend class="frm-legend"><strong><?php echo $lang_common['Required information'] ?></strong></legend>
+ <div class="frm-fld text required">
+ <label for="fld<?php echo ++$pun_page['fld_count'] ?>">
+ <span class="fld-label"><?php echo $lang_profile['New password'] ?></span><br />
+ <span class="fld-input"><input type="password" id="fld<?php echo $pun_page['fld_count'] ?>" name="req_new_password1" size="35" /></span><br />
+ <em class="req-text"><?php echo $lang_common['Required'] ?></em>
+ <span class="fld-help"><?php echo $lang_profile['Password help'] ?></span>
+ </label>
+ </div>
+ <div class="frm-fld text required">
+ <label for="fld<?php echo ++$pun_page['fld_count'] ?>">
+ <span class="fld-label"><?php echo $lang_profile['Confirm new password'] ?></span><br />
+ <span class="fld-input"><input type="password" id="fld<?php echo $pun_page['fld_count'] ?>" name="req_new_password2" size="35" /></span><br />
+ <em class="req-text"><?php echo $lang_common['Required'] ?></em>
+ <span class="fld-help"><?php echo $lang_profile['Confirm password help'] ?></span>
+ </label>
+ </div>
+ </fieldset>
+<?php ($hook = get_hook('pf_change_pass_key_post_fieldset')) ? eval($hook) : null; ?>
+ <div class="frm-buttons">
+ <span class="submit"><input type="submit" name="update" value="<?php echo $lang_common['Submit'] ?>" /></span>
+ <span class="cancel"><input type="submit" name="cancel" value="<?php echo $lang_common['Cancel'] ?>" /></span>
+ </div>
+ </form>
+ </div>
+
+</div>
+<?php
+
+ require PUN_ROOT.'footer.php';
+ }
+ }
+
+ // Make sure we are allowed to change this user's password
+ if ($pun_user['id'] != $id &&
+ $pun_user['g_id'] != PUN_ADMIN &&
+ ($pun_user['g_moderator'] != '1' || $pun_user['g_mod_edit_users'] == '0' || $pun_user['g_mod_change_passwords'] == '0' || $user['g_id'] == PUN_ADMIN || $user['g_moderator'] == '1'))
+ message($lang_common['No permission']);
+
+ if (isset($_POST['form_sent']))
+ {
+ ($hook = get_hook('pf_change_pass_normal_form_submitted')) ? eval($hook) : null;
+
+ $old_password = isset($_POST['req_old_password']) ? trim($_POST['req_old_password']) : '';
+ $new_password1 = trim($_POST['req_new_password1']);
+ $new_password2 = trim($_POST['req_new_password2']);
+
+ if ($new_password1 != $new_password2)
+ message($lang_profile['Pass not match']);
+ if (pun_strlen($new_password1) < 4)
+ message($lang_profile['Pass too short']);
+
+ $pun_page['authorized'] = false;
+ if (!empty($user['password']))
+ {
+ $old_password_hash = sha1($user['salt'].sha1($old_password));
+
+ if (($user['password'] == $old_password_hash) || $pun_user['is_admmod'])
+ $authorized = true;
+ }
+
+ if (!$authorized)
+ message($lang_profile['Wrong old password']);
+
+ $new_password_hash = sha1($user['salt'].sha1($new_password1));
+
+ $query = array(
+ 'UPDATE' => 'users',
+ 'SET' => 'password=\''.$new_password_hash.'\'',
+ 'WHERE' => 'id='.$id
+ );
+
+ ($hook = get_hook('pf_qr_update_password2')) ? eval($hook) : null;
+ $pun_db->query_build($query) or error(__FILE__, __LINE__);
+
+ if ($pun_user['id'] == $id)
+ {
+ $expire = ($user['save_pass'] == '1') ? time() + 31536000 : 0;
+ pun_setcookie($cookie_name, base64_encode($pun_user['id'].'|'.$new_password_hash), $expire);
+ }
+
+ pun_redirect(pun_link($pun_url['profile_about'], $id), $lang_profile['Pass updated redirect']);
+ }
+
+ // Setup form
+ $pun_page['set_count'] = $pun_page['fld_count'] = 0;
+ $pun_page['form_action'] = pun_link($pun_url['change_password'], $id);
+
+ $pun_page['hidden_fields'][] = '<input type="hidden" name="form_sent" value="1" />';
+ if ($pun_user['is_admmod'])
+ $pun_page['hidden_fields'][] = '<input type="hidden" name="csrf_token" value="'.generate_form_token($pun_page['form_action']).'" />';
+
+ // Setup breadcrumbs
+ $pun_page['crumbs'] = array(
+ array($pun_config['o_board_title'], pun_link($pun_url['index'])),
+ array(sprintf($lang_profile['Users profile'], htmlspecialchars($user['username']), $lang_profile['Section about']), pun_link($pun_url['profile_about'], $id)),
+ $lang_profile['Change password']
+ );
+
+ ($hook = get_hook('pf_change_pass_normal_pre_header_load')) ? eval($hook) : null;
+
+ define('PUN_PAGE', 'profile-changepass');
+ require PUN_ROOT.'header.php';
+
+?>
+<div id="pun-main" class="main sectioned">
+
+ <h1><span><?php printf($lang_profile['Users profile'], htmlspecialchars($user['username'])) ?></span></h1>
+
+ <div class="main-head">
+ <h2><span><?php echo $lang_profile['Change password'] ?></span></h2>
+ </div>
+
+ <div class="main-content frm">
+ <div id="req-msg" class="frm-warn">
+ <p class="important"><?php printf($lang_common['Required warn'], '<em class="req-text">'.$lang_common['Required'].'</em>') ?></p>
+ </div>
+ <form id="afocus" class="frm-form" method="post" accept-charset="utf-8" action="<?php echo $pun_page['form_action'] ?>">
+ <div class="hidden">
+ <?php echo implode("\n\t\t\t\t", $pun_page['hidden_fields'])."\n" ?>
+ </div>
+<?php ($hook = get_hook('pf_change_pass_normal_pre_fieldset')) ? eval($hook) : null; ?>
+ <fieldset class="frm-set set<?php echo ++$pun_page['set_count'] ?>">
+ <legend class="frm-legend"><strong><?php echo $lang_common['Required information'] ?></strong></legend>
+<?php if (!$pun_user['is_admmod']): ?> <div class="frm-fld text required">
+ <label for="fld<?php echo ++$pun_page['fld_count'] ?>">
+ <span class="fld-label"><?php echo $lang_profile['Old password'] ?></span><br />
+ <span class="fld-input"><input type="password" id="fld<?php echo $pun_page['fld_count'] ?>" name="req_old_password" size="35" /></span><br />
+ <em class="req-text"><?php echo $lang_common['Required'] ?></em>
+ <span class="fld-help"><?php echo $lang_profile['Old password help'] ?></span>
+ </label>
+ </div>
+<?php endif; ?> <div class="frm-fld text required">
+ <label for="fld<?php echo ++$pun_page['fld_count'] ?>">
+ <span class="fld-label"><?php echo $lang_profile['New password'] ?></span><br />
+ <span class="fld-input"><input type="password" id="fld<?php echo $pun_page['fld_count'] ?>" name="req_new_password1" size="35" /></span><br />
+ <em class="req-text"><?php echo $lang_common['Required'] ?></em>
+ <span class="fld-help"><?php echo $lang_profile['Password help'] ?></span>
+ </label>
+ </div>
+ <div class="frm-fld text required">
+ <label for="fld<?php echo ++$pun_page['fld_count'] ?>">
+ <span class="fld-label"><?php echo $lang_profile['Confirm new password'] ?></span><br />
+ <span class="fld-input"><input type="password" id="fld<?php echo $pun_page['fld_count'] ?>" name="req_new_password2" size="35" /></span><br />
+ <em class="req-text"><?php echo $lang_common['Required'] ?></em>
+ <span class="fld-help"><?php echo $lang_profile['Confirm password help'] ?></span>
+ </label>
+ </div>
+ </fieldset>
+<?php ($hook = get_hook('pf_change_pass_normal_post_fieldset')) ? eval($hook) : null; ?>
+ <div class="frm-buttons">
+ <span class="submit"><input type="submit" name="update" value="<?php echo $lang_common['Submit'] ?>" /></span>
+ <span class="cancel"><input type="submit" name="cancel" value="<?php echo $lang_common['Cancel'] ?>" /></span>
+ </div>
+ </form>
+ </div>
+
+</div>
+<?php
+
+ require PUN_ROOT.'footer.php';
+}
+
+
+else if ($action == 'change_email')
+{
+ // Make sure we are allowed to change this user's e-mail
+ if ($pun_user['id'] != $id &&
+ $pun_user['g_id'] != PUN_ADMIN &&
+ ($pun_user['g_moderator'] != '1' || $pun_user['g_mod_edit_users'] == '0' || $user['g_id'] == PUN_ADMIN || $user['g_moderator'] == '1'))
+ message($lang_common['No permission']);
+
+ ($hook = get_hook('pf_change_email_selected')) ? eval($hook) : null;
+
+ // User pressed the cancel button
+ if (isset($_POST['cancel']))
+ pun_redirect(pun_link($pun_url['profile_about'], $id), $lang_common['Cancel redirect']);
+
+ if (isset($_GET['key']))
+ {
+ $key = $_GET['key'];
+
+ ($hook = get_hook('pf_change_email_key_supplied')) ? eval($hook) : null;
+
+ if ($key == '' || $key != $user['activate_key'])
+ message(sprintf($lang_profile['E-mail key bad'], '<a href="mailto:'.$pun_config['o_admin_email'].'">'.$pun_config['o_admin_email'].'</a>'));
+ else
+ {
+ $query = array(
+ 'UPDATE' => 'users',
+ 'SET' => 'email=activate_string, activate_string=NULL, activate_key=NULL',
+ 'WHERE' => 'id='.$id
+ );
+
+ ($hook = get_hook('pf_qr_update_email')) ? eval($hook) : null;
+ $pun_db->query_build($query) or error(__FILE__, __LINE__);
+
+ message($lang_profile['E-mail updated']);
+ }
+ }
+ else if (isset($_POST['form_sent']))
+ {
+ ($hook = get_hook('pf_change_email_normal_form_submitted')) ? eval($hook) : null;
+
+ if (sha1($_POST['req_password']) !== $pun_user['password'])
+ message($lang_profile['Wrong password']);
+
+ require PUN_ROOT.'include/email.php';
+
+ // Validate the email-address
+ $new_email = strtolower(trim($_POST['req_new_email']));
+ if (!is_valid_email($new_email))
+ message($lang_common['Invalid e-mail']);
+
+ // Check it it's a banned e-mail address
+ if (is_banned_email($new_email))
+ {
+ ($hook = get_hook('pf_change_email_normal_banned_email')) ? eval($hook) : null;
+
+ if ($pun_config['p_allow_banned_email'] == '0')
+ message($lang_profile['Banned e-mail']);
+ else if ($pun_config['o_mailing_list'] != '')
+ {
+ $mail_subject = 'Alert - Banned e-mail detected';
+ $mail_message = 'User \''.$pun_user['username'].'\' changed to banned e-mail address: '.$new_email."\n\n".'User profile: '.pun_link($pun_url['user'], $id)."\n\n".'-- '."\n".'Forum Mailer'."\n".'(Do not reply to this message)';
+
+ pun_mail($pun_config['o_mailing_list'], $mail_subject, $mail_message);
+ }
+ }
+
+ // Check if someone else already has registered with that e-mail address
+ $query = array(
+ 'SELECT' => 'u.id, u.username',
+ 'FROM' => 'users AS u',
+ 'WHERE' => 'u.email=\''.$pun_db->escape($new_email).'\''
+ );
+
+ ($hook = get_hook('pf_qr_check_email_dupe')) ? eval($hook) : null;
+ $result = $pun_db->query_build($query) or error(__FILE__, __LINE__);
+ if ($pun_db->num_rows($result))
+ {
+ ($hook = get_hook('pf_change_email_normal_dupe_email')) ? eval($hook) : null;
+
+ if ($pun_config['p_allow_dupe_email'] == '0')
+ message($lang_profile['Dupe e-mail']);
+ else if ($pun_config['o_mailing_list'] != '')
+ {
+ while ($cur_dupe = $pun_db->fetch_assoc($result))
+ $dupe_list[] = $cur_dupe['username'];
+
+ $mail_subject = 'Alert - Duplicate e-mail detected';
+ $mail_message = 'User \''.$pun_user['username'].'\' changed to an e-mail address that also belongs to: '.implode(', ', $dupe_list)."\n\n".'User profile: '.pun_link($pun_url['user'], $id)."\n\n".'-- '."\n".'Forum Mailer'."\n".'(Do not reply to this message)';
+
+ pun_mail($pun_config['o_mailing_list'], $mail_subject, $mail_message);
+ }
+ }
+
+ $new_email_key = random_key(8, true);
+
+ // Save new e-mail and activation key
+ $query = array(
+ 'UPDATE' => 'users',
+ 'SET' => 'activate_string=\''.$pun_db->escape($new_email).'\', activate_key=\''.$new_email_key.'\'',
+ 'WHERE' => 'id='.$id
+ );
+
+ ($hook = get_hook('pf_qr_update_email_activation')) ? eval($hook) : null;
+ $pun_db->query_build($query) or error(__FILE__, __LINE__);
+
+ // Load the "activate e-mail" template
+ $mail_tpl = trim(file_get_contents(PUN_ROOT.'lang/'.$pun_user['language'].'/mail_templates/activate_email.tpl'));
+
+ // The first row contains the subject
+ $first_crlf = strpos($mail_tpl, "\n");
+ $mail_subject = trim(substr($mail_tpl, 8, $first_crlf-8));
+ $mail_message = trim(substr($mail_tpl, $first_crlf));
+
+ $mail_message = str_replace('<username>', $pun_user['username'], $mail_message);
+ $mail_message = str_replace('<base_url>', $base_url.'/', $mail_message);
+ $mail_message = str_replace('<activation_url>', str_replace('&', '&', pun_link($pun_url['change_email_key'], array($id, $new_email_key))), $mail_message);
+ $mail_message = str_replace('<board_mailer>', sprintf($lang_common['Forum mailer'], $pun_config['o_board_title']), $mail_message);
+
+ ($hook = get_hook('pf_change_email_normal_pre_activation_email_sent')) ? eval($hook) : null;
+
+ pun_mail($new_email, $mail_subject, $mail_message);
+
+ message(sprintf($lang_profile['Activate e-mail sent'], '<a href="mailto:'.$pun_config['o_admin_email'].'">'.$pun_config['o_admin_email'].'</a>'));
+ }
+
+ // Setup form
+ $pun_page['set_count'] = $pun_page['fld_count'] = 0;
+ $pun_page['form_action'] = pun_link($pun_url['change_email'], $id);
+
+ $pun_page['hidden_fields'][] = '<input type="hidden" name="form_sent" value="1" />';
+ if ($pun_user['is_admmod'])
+ $pun_page['hidden_fields'][] = '<input type="hidden" name="csrf_token" value="'.generate_form_token($pun_page['form_action']).'" />';
+
+ // Setup form information
+ $pun_page['frm_info'] = '<p class="important"><span>'.$lang_profile['E-mail info'].'</span></p>';
+
+ // Setup breadcrumbs
+ $pun_page['crumbs'] = array(
+ array($pun_config['o_board_title'], pun_link($pun_url['index'])),
+ array(sprintf($lang_profile['Users profile'], htmlspecialchars($user['username']), $lang_profile['Section about']), pun_link($pun_url['profile_about'], $id)),
+ $lang_profile['Change e-mail']
+ );
+
+ ($hook = get_hook('pf_change_email_normal_pre_header_load')) ? eval($hook) : null;
+
+ define('PUN_PAGE', 'profile-changemail');
+ require PUN_ROOT.'header.php';
+
+?>
+<div id="pun-main" class="main">
+
+ <h1><span><?php printf($lang_profile['Users profile'], htmlspecialchars($user['username'])) ?></span></h1>
+
+ <div class="main-head">
+ <h2><span><?php echo $lang_profile['Change e-mail'] ?></span></h2>
+ </div>
+
+ <div class="main-content frm">
+ <div class="frm-info">
+ <?php echo $pun_page['frm_info']."\n" ?>
+ </div>
+ <div id="req-msg" class="frm-warn">
+ <p class="important"><?php printf($lang_common['Required warn'], '<em class="req-text">'.$lang_common['Required'].'</em>') ?></p>
+ </div>
+ <form id="afocus" class="frm-form" method="post" accept-charset="utf-8" action="<?php echo $pun_page['form_action'] ?>">
+ <div class="hidden">
+ <?php echo implode("\n\t\t\t\t", $pun_page['hidden_fields'])."\n" ?>
+ </div>
+<?php ($hook = get_hook('pf_change_email_normal_pre_fieldset')) ? eval($hook) : null; ?>
+ <fieldset class="frm-set set<?php echo ++$pun_page['set_count'] ?>">
+ <legend class="frm-legend"><strong><?php echo $lang_common['Required information'] ?></strong></legend>
+ <div class="frm-fld text required">
+ <label for="fld<?php echo ++$pun_page['fld_count'] ?>">
+ <span class="fld-label"><?php echo $lang_profile['New e-mail'] ?></span><br />
+ <span class="fld-input"><input type="text" id="fld<?php echo $pun_page['fld_count'] ?>" name="req_new_email" size="50" maxlength="80" /></span>
+ <em class="req-text"><?php echo $lang_common['Required'] ?></em>
+ </label>
+ </div>
+ <div class="frm-fld text required">
+ <label for="fld<?php echo ++$pun_page['fld_count'] ?>">
+ <span class="fld-label"><?php echo $lang_profile['Password'] ?></span><br />
+ <span class="fld-input"><input type="text" id="fld<?php echo $pun_page['fld_count'] ?>" name="req_password" size="25" /></span>
+ <em class="req-text"><?php echo $lang_common['Required'] ?></em>
+ </label>
+ </div>
+ </fieldset>
+<?php ($hook = get_hook('pf_change_email_normal_post_fieldset')) ? eval($hook) : null; ?>
+ <div class="frm-buttons">
+ <span class="submit"><input type="submit" name="update" value="<?php echo $lang_common['Submit'] ?>" /></span>
+ <span class="cancel"><input type="submit" name="cancel" value="<?php echo $lang_common['Cancel'] ?>" /></span>
+ </div>
+ </form>
+ </div>
+
+</div>
+<?php
+
+ require PUN_ROOT.'footer.php';
+}
+
+else if ($action == 'delete_user' || isset($_POST['delete_user_comply']) || isset($_POST['cancel']))
+{
+ // User pressed the cancel button
+ if (isset($_POST['cancel']))
+ pun_redirect(pun_link($pun_url['profile_admin'], $id), $lang_common['Cancel redirect']);
+
+ ($hook = get_hook('pf_delete_user_selected')) ? eval($hook) : null;
+
+ if ($pun_user['g_id'] != PUN_ADMIN)
+ message($lang_common['No permission']);
+
+ if ($user['g_id'] == PUN_ADMIN)
+ message('Administrators cannot be deleted. In order to delete this user, you must first move him/her to a different user group.');
+
+ if (isset($_POST['delete_user_comply']))
+ {
+ ($hook = get_hook('pf_delete_user_form_submitted')) ? eval($hook) : null;
+
+ delete_user($id);
+
+ pun_redirect(pun_link($pun_url['index']), $lang_profile['User delete redirect']);
+ }
+
+ // Setup form
+ $pun_page['set_count'] = $pun_page['fld_count'] = 0;
+ $pun_page['form_action'] = pun_link($pun_url['delete_user'], $id);
+
+ // Setup form information
+ $pun_page['frm_info'] = array(
+ '<li class="warn"><span>'.$lang_profile['Delete warning'].'</span></li>',
+ '<li class="warn"><span>'.$lang_profile['Delete posts info'].'</span></li>'
+ );
+
+ // Setup breadcrumbs
+ $pun_page['crumbs'] = array(
+ array($pun_config['o_board_title'], pun_link($pun_url['index'])),
+ array(sprintf($lang_profile['Users profile'], htmlspecialchars($user['username']), $lang_profile['Section admin']), pun_link($pun_url['profile_admin'], $id)),
+ $lang_profile['Delete user']
+ );
+
+ ($hook = get_hook('pf_delete_user_pre_header_load')) ? eval($hook) : null;
+
+ define('PUN_PAGE', 'dialogue');
+ require PUN_ROOT.'header.php';
+
+?>
+<div id="pun-main" class="main">
+
+ <h1><span><?php printf($lang_profile['Users profile'], htmlspecialchars($user['username'])) ?></span></h1>
+
+ <div class="main-head">
+ <h2><span><?php echo $lang_common['Delete'].' '.htmlspecialchars($user['username']) ?></span></h2>
+ </div>
+
+ <div class="main-content frm">
+ <div class="frm-info">
+ <ul>
+ <?php echo implode("\n\t\t\t\t\t", $pun_page['frm_info'])."\n" ?>
+ </ul>
+ </div>
+ <form class="frm-form" method="post" accept-charset="utf-8" action="<?php echo $pun_page['form_action'] ?>">
+ <div class="hidden">
+ <input type="hidden" name="csrf_token" value="<?php echo generate_form_token($pun_page['form_action']) ?>" />
+ </div>
+ <fieldset class="frm-set set<?php echo ++$pun_page['set_count'] ?>">
+ <legend class="frm-legend"><strong><?php echo $lang_common['Required information'] ?></strong></legend>
+ <div class="checkbox radbox">
+ <label for="fld<?php echo ++$pun_page['fld_count'] ?>"><span class="fld-label"><?php echo $lang_profile['Delete posts'] ?></span><br /><input type="checkbox" id="fld<?php echo $pun_page['fld_count'] ?>" name="delete_posts" value="1" checked="checked" /> <?php printf($lang_profile['Delete posts label'], htmlspecialchars($user['username'])) ?></label>
+ </div>
+ </fieldset>
+ <div class="frm-buttons">
+ <span class="submit"><input type="submit" name="delete_user_comply" value="<?php echo $lang_common['Submit'] ?>" /></span>
+ <span class="cancel"><input type="submit" name="cancel" value="<?php echo $lang_common['Cancel'] ?>" /></span>
+ </div>
+ </form>
+ </div>
+
+</div>
+<?php
+
+ require PUN_ROOT.'footer.php';
+}
+
+
+else if ($action == 'delete_avatar')
+{
+ // Make sure we are allowed to delete this user's avatar
+ if ($pun_user['id'] != $id &&
+ $pun_user['g_id'] != PUN_ADMIN &&
+ ($pun_user['g_moderator'] != '1' || $pun_user['g_mod_edit_users'] == '0' || $user['g_id'] == PUN_ADMIN || $user['g_moderator'] == '1'))
+ message($lang_common['No permission']);
+
+ ($hook = get_hook('pf_delete_avatar_selected')) ? eval($hook) : null;
+
+ if (file_exists($pun_config['o_avatars_dir'].'/'.$id.'.jpg'))
+ @unlink($pun_config['o_avatars_dir'].'/'.$id.'.jpg');
+ if (file_exists($pun_config['o_avatars_dir'].'/'.$id.'.png'))
+ @unlink($pun_config['o_avatars_dir'].'/'.$id.'.png');
+ if (file_exists($pun_config['o_avatars_dir'].'/'.$id.'.gif'))
+ @unlink($pun_config['o_avatars_dir'].'/'.$id.'.gif');
+
+ pun_redirect(pun_link($pun_url['profile_avatar'], $id), $lang_profile['Avatar deleted redirect']);
+}
+
+
+else if (isset($_POST['update_group_membership']))
+{
+ if ($pun_user['g_id'] != PUN_ADMIN)
+ message($lang_common['No permission']);
+
+ ($hook = get_hook('pf_change_group_form_submitted')) ? eval($hook) : null;
+
+ $new_group_id = intval($_POST['group_id']);
+
+ $query = array(
+ 'UPDATE' => 'users',
+ 'SET' => 'group_id='.$new_group_id,
+ 'WHERE' => 'id='.$id
+ );
+
+ ($hook = get_hook('pf_qr_update_group')) ? eval($hook) : null;
+ $pun_db->query_build($query) or error(__FILE__, __LINE__);
+
+ $query = array(
+ 'SELECT' => 'g.g_moderator',
+ 'FROM' => 'groups AS g',
+ 'WHERE' => 'g.g_id='.$new_group_id
+ );
+
+ ($hook = get_hook('pf_qr_check_new_group_mod')) ? eval($hook) : null;
+ $result = $pun_db->query_build($query) or error(__FILE__, __LINE__);
+ $new_group_mod = $pun_db->result($result);
+
+ // If the user was a moderator or an administrator (and no longer is), we remove him/her from the moderator list in all forums
+ if (($user['g_id'] == PUN_ADMIN || $user['g_moderator'] == '1') && $new_group_id != PUN_ADMIN && $new_group_mod != '1')
+ clean_forum_moderators();
+
+ pun_redirect(pun_link($pun_url['profile_admin'], $id), $lang_profile['Group membership redirect']);
+}
+
+
+else if (isset($_POST['update_forums']))
+{
+ if ($pun_user['g_id'] != PUN_ADMIN)
+ message($lang_common['No permission']);
+
+ ($hook = get_hook('pf_forum_moderators_form_submitted')) ? eval($hook) : null;
+
+ $moderator_in = (isset($_POST['moderator_in'])) ? array_keys($_POST['moderator_in']) : array();
+
+ // Loop through all forums
+ $query = array(
+ 'SELECT' => 'f.id, f.moderators',
+ 'FROM' => 'forums AS f'
+ );
+
+ ($hook = get_hook('pf_qr_get_all_forum_mods')) ? eval($hook) : null;
+ $result = $pun_db->query_build($query) or error(__FILE__, __LINE__);
+ while ($cur_forum = $pun_db->fetch_assoc($result))
+ {
+ $cur_moderators = ($cur_forum['moderators'] != '') ? unserialize($cur_forum['moderators']) : array();
+
+ // If the user should have moderator access (and he/she doesn't already have it)
+ if (in_array($cur_forum['id'], $moderator_in) && !in_array($id, $cur_moderators))
+ {
+ $cur_moderators[$user['username']] = $id;
+ ksort($cur_moderators);
+ }
+ // If the user shouldn't have moderator access (and he/she already has it)
+ else if (!in_array($cur_forum['id'], $moderator_in) && in_array($id, $cur_moderators))
+ unset($cur_moderators[$user['username']]);
+
+ $cur_moderators = (!empty($cur_moderators)) ? '\''.$pun_db->escape(serialize($cur_moderators)).'\'' : 'NULL';
+
+ $query = array(
+ 'UPDATE' => 'forums',
+ 'SET' => 'moderators='.$cur_moderators,
+ 'WHERE' => 'id='.$cur_forum['id']
+ );
+
+ ($hook = get_hook('pf_qr_update_forum_moderators')) ? eval($hook) : null;
+ $pun_db->query_build($query) or error(__FILE__, __LINE__);
+ }
+
+ pun_redirect(pun_link($pun_url['profile_admin'], $id), $lang_profile['Update forums redirect']);
+}
+
+
+else if (isset($_POST['ban']))
+{
+ if ($pun_user['g_id'] != PUN_ADMIN && ($pun_user['g_moderator'] != '1' || $pun_user['g_mod_ban_users'] == '0'))
+ message($lang_common['No permission']);
+
+ ($hook = get_hook('pf_ban_user_selected')) ? eval($hook) : null;
+
+ pun_redirect(pun_link($pun_url['admin_bans']).'&add_ban='.$id, $lang_profile['Ban redirect']);
+}
+
+
+else if (isset($_POST['form_sent']))
+{
+ // Make sure we are allowed to edit this user's profile
+ if ($pun_user['id'] != $id &&
+ $pun_user['g_id'] != PUN_ADMIN &&
+ ($pun_user['g_moderator'] != '1' || $pun_user['g_mod_edit_users'] == '0' || $user['g_id'] == PUN_ADMIN || $user['g_moderator'] == '1'))
+ message($lang_common['No permission']);
+
+ ($hook = get_hook('pf_change_details_form_submitted')) ? eval($hook) : null;
+
+ // Extract allowed elements from $_POST['form']
+ function extract_elements($allowed_elements)
+ {
+ $form = array();
+
+ while (list($key, $value) = @each($_POST['form']))
+ {
+ if (in_array($key, $allowed_elements))
+ $form[$key] = $value;
+ }
+
+ return $form;
+ }
+
+ $username_updated = false;
+
+ // Validate input depending on section
+ switch ($section)
+ {
+ case 'identity':
+ {
+ $form = extract_elements(array('realname', 'url', 'location', 'jabber', 'icq', 'msn', 'aim', 'yahoo'));
+
+ ($hook = get_hook('pf_change_details_identity_validation')) ? eval($hook) : null;
+
+ if ($pun_user['is_admmod'])
+ {
+ // Are we allowed to change usernames?
+ if ($session->user_level >= USER_LEVEL_ADMIN || ($pun_user['g_moderator'] == '1' && $pun_user['g_mod_rename_users'] == '1'))
+ {
+ $form['username'] = trim($_POST['req_username']);
+ $old_username = trim($_POST['old_username']);
+
+ // Validate the new username
+ $errors = validate_username($form['username'], $id);
+ if (!empty($errors))
+ message(current($errors));
+
+ if ($form['username'] != $old_username)
+ $username_updated = true;
+ }
+
+ // We only allow administrators to update the post count
+ if ($session->user_level >= USER_LEVEL_ADMIN)
+ $form['num_posts'] = intval($_POST['num_posts']);
+ }
+
+ if ($pun_config['o_regs_verify'] == '0' || $pun_user['is_admmod'])
+ {
+ require PUN_ROOT.'include/email.php';
+
+ // Validate the email-address
+ $form['email'] = strtolower(trim($_POST['req_email']));
+ if (!is_valid_email($form['email']))
+ message($lang_common['Invalid e-mail']);
+ }
+
+ if ($pun_user['is_admmod'])
+ $form['admin_note'] = trim($_POST['admin_note']);
+
+ if ($session->user_level >= USER_LEVEL_ADMIN)
+ $form['title'] = trim($_POST['title']);
+ else if ($pun_user['g_set_title'] == '1')
+ {
+ $form['title'] = trim($_POST['title']);
+
+ if ($form['title'] != '')
+ {
+ // A list of words that the title may not contain
+ // If the language is English, there will be some duplicates, but it's not the end of the world
+ $forbidden = array('Member', 'Moderator', 'Administrator', 'Banned', 'Guest', $lang_common['Member'], $lang_common['Moderator'], $lang_common['Administrator'], $lang_common['Banned'], $lang_common['Guest']);
+
+ if (in_array($form['title'], $forbidden))
+ message($lang_profile['Forbidden title']);
+ }
+ }
+
+ // Add http:// if the URL doesn't contain it already
+ if ($form['url'] != '' && strpos(strtolower($form['url']), 'http://') !== 0)
+ $form['url'] = 'http://'.$form['url'];
+
+ // If the ICQ UIN contains anything other than digits it's invalid
+ if ($form['icq'] != '' && !ctype_digit($form['icq']))
+ message($lang_profile['Bad ICQ']);
+
+ break;
+ }
+
+ case 'settings':
+ {
+ $form = extract_elements(array('dst', 'timezone', 'language', 'email_setting', 'save_pass', 'notify_with_post', 'auto_notify', 'time_format', 'date_format', 'disp_topics', 'disp_posts', 'show_smilies', 'show_img', 'show_img_sig', 'show_avatars', 'show_sig', 'style'));
+
+ ($hook = get_hook('pf_change_details_settings_validation')) ? eval($hook) : null;
+
+ $form['dst'] = (isset($form['dst'])) ? 1 : 0;
+ $form['time_format'] = (isset($form['time_format'])) ? intval($form['time_format']) : 0;
+ $form['date_format'] = (isset($form['date_format'])) ? intval($form['date_format']) : 0;
+
+ $form['email_setting'] = intval($form['email_setting']);
+ if ($form['email_setting'] < 0 && $form['email_setting'] > 2) $form['email_setting'] = 1;
+
+ if (!isset($form['save_pass']) || $form['save_pass'] != '1') $form['save_pass'] = '0';
+ if (!isset($form['notify_with_post']) || $form['notify_with_post'] != '1') $form['notify_with_post'] = '0';
+ if (!isset($form['auto_notify']) || $form['auto_notify'] != '1') $form['auto_notify'] = '0';
+
+ // If the save_pass setting has changed, we need to set a new cookie with the appropriate expire date
+ if ($pun_user['id'] == $id && $form['save_pass'] != $pun_user['save_pass'])
+ pun_setcookie($cookie_name, base64_encode($id.'|'.$user['password']), ($form['save_pass'] == '1') ? time() + 31536000 : 0);
+
+ // Make sure we got a valid language string
+ if (isset($form['language']))
+ {
+ $form['language'] = preg_replace('#[\.\\\/]#', '', $form['language']);
+ if (!file_exists(PUN_ROOT.'lang/'.$form['language'].'/common.php'))
+ message($lang_common['Bad request']);
+ }
+
+ if ($form['disp_topics'] != '' && intval($form['disp_topics']) < 3) $form['disp_topics'] = 3;
+ if ($form['disp_topics'] != '' && intval($form['disp_topics']) > 75) $form['disp_topics'] = 75;
+ if ($form['disp_posts'] != '' && intval($form['disp_posts']) < 3) $form['disp_posts'] = 3;
+ if ($form['disp_posts'] != '' && intval($form['disp_posts']) > 75) $form['disp_posts'] = 75;
+
+ if (!isset($form['show_smilies']) || $form['show_smilies'] != '1') $form['show_smilies'] = '0';
+ if (!isset($form['show_img']) || $form['show_img'] != '1') $form['show_img'] = '0';
+ if (!isset($form['show_img_sig']) || $form['show_img_sig'] != '1') $form['show_img_sig'] = '0';
+ if (!isset($form['show_avatars']) || $form['show_avatars'] != '1') $form['show_avatars'] = '0';
+ if (!isset($form['show_sig']) || $form['show_sig'] != '1') $form['show_sig'] = '0';
+
+ // Make sure we got a valid style string
+ if (isset($form['style']))
+ {
+ $form['style'] = preg_replace('#[\.\\\/]#', '', $form['style']);
+ if (!file_exists(PUN_ROOT.'style/'.$form['style'].'/'.$form['style'].'.css'))
+ message($lang_common['Bad request']);
+ }
+ break;
+ }
+
+ case 'signature':
+ {
+ if ($pun_config['o_signatures'] == '0')
+ message($lang_profile['Signatures disabled']);
+
+ ($hook = get_hook('pf_change_details_signature_validation')) ? eval($hook) : null;
+
+ // Clean up signature from POST
+ $form['signature'] = pun_linebreaks(trim($_POST['signature']));
+
+ // Validate signature
+ if (pun_strlen($form['signature']) > $pun_config['p_sig_length'])
+ message(sprintf($lang_profile['Sig too long'], $pun_config['p_sig_length']));
+ else if (substr_count($form['signature'], "\n") > ($pun_config['p_sig_lines'] - 1))
+ message(sprintf($lang_profile['Sig too many lines'], $pun_config['p_sig_lines']));
+ else if ($form['signature'] && $pun_config['p_sig_all_caps'] == '0' && strtoupper($form['signature']) == $form['signature'] && !$pun_user['is_admmod'])
+ $form['signature'] = ucwords(strtolower($form['signature']));
+
+ // Validate BBCode syntax
+ if ($pun_config['p_sig_bbcode'] == '1' && strpos($form['signature'], '[') !== false && strpos($form['signature'], ']') !== false)
+ {
+ require PUN_ROOT.'include/parser.php';
+ $form['signature'] = preparse_bbcode($form['signature'], $foo, true);
+ }
+
+ break;
+ }
+
+ case 'avatar':
+ {
+ if ($pun_config['o_avatars'] == '0')
+ message($lang_profile['Avatars disabled']);
+
+ ($hook = get_hook('pf_change_details_avatar_validation')) ? eval($hook) : null;
+
+ if (!isset($_FILES['req_file']))
+ message($lang_profile['No file']);
+
+ $uploaded_file = $_FILES['req_file'];
+
+ // Make sure the upload went smooth
+ if (isset($uploaded_file['error']))
+ {
+ switch ($uploaded_file['error'])
+ {
+ case 1: // UPLOAD_ERR_INI_SIZE
+ case 2: // UPLOAD_ERR_FORM_SIZE
+ message($lang_profile['Too large ini']);
+ break;
+
+ case 3: // UPLOAD_ERR_PARTIAL
+ message($lang_profile['Partial upload']);
+ break;
+
+ case 4: // UPLOAD_ERR_NO_FILE
+ message($lang_profile['No file']);
+ break;
+
+ case 6: // UPLOAD_ERR_NO_TMP_DIR
+ message($lang_profile['No tmp directory']);
+ break;
+
+ default:
+ // No error occured, but was something actually uploaded?
+ if ($uploaded_file['size'] == 0)
+ message($lang_profile['No file']);
+ break;
+ }
+ }
+
+ if (is_uploaded_file($uploaded_file['tmp_name']))
+ {
+ $allowed_types = array('image/gif', 'image/jpeg', 'image/pjpeg', 'image/png', 'image/x-png');
+ if (!in_array($uploaded_file['type'], $allowed_types))
+ message($lang_profile['Bad type']);
+
+ // Make sure the file isn't too big
+ if ($uploaded_file['size'] > $pun_config['o_avatars_size'])
+ message(sprintf($lang_profile['Too large'], $pun_config['o_avatars_size']));
+
+ // Determine type
+ $extensions = null;
+ if ($uploaded_file['type'] == 'image/gif')
+ $extensions = array('.gif', '.jpg', '.png');
+ else if ($uploaded_file['type'] == 'image/jpeg' || $uploaded_file['type'] == 'image/pjpeg')
+ $extensions = array('.jpg', '.gif', '.png');
+ else
+ $extensions = array('.png', '.gif', '.jpg');
+
+ // Move the file to the avatar directory. We do this before checking the width/height to circumvent open_basedir restrictions.
+ if (!@move_uploaded_file($uploaded_file['tmp_name'], $pun_config['o_avatars_dir'].'/'.$id.'.tmp'))
+ message(sprintf($lang_profile['Move failed'], '<a href="mailto:'.$pun_config['o_admin_email'].'">'.$pun_config['o_admin_email'].'</a>'));
+
+ // Now check the width/height
+ list($width, $height, $type,) = getimagesize($pun_config['o_avatars_dir'].'/'.$id.'.tmp');
+ if (empty($width) || empty($height) || $width > $pun_config['o_avatars_width'] || $height > $pun_config['o_avatars_height'])
+ {
+ @unlink($pun_config['o_avatars_dir'].'/'.$id.'.tmp');
+ message(sprintf($lang_profile['Too wide or high'], $pun_config['o_avatars_width'], $pun_config['o_avatars_height']));
+ }
+ else if ($type == 1 && $uploaded_file['type'] != 'image/gif') // Prevent dodgy uploads
+ {
+ @unlink($pun_config['o_avatars_dir'].'/'.$id.'.tmp');
+ message($lang_profile['Bad type']);
+ }
+
+ // Delete any old avatars
+ if (file_exists($pun_config['o_avatars_dir'].'/'.$id.$extensions[0]))
+ @unlink($pun_config['o_avatars_dir'].'/'.$id.$extensions[0]);
+ if (file_exists($pun_config['o_avatars_dir'].'/'.$id.$extensions[1]))
+ @unlink($pun_config['o_avatars_dir'].'/'.$id.$extensions[1]);
+ if (file_exists($pun_config['o_avatars_dir'].'/'.$id.$extensions[2]))
+ @unlink($pun_config['o_avatars_dir'].'/'.$id.$extensions[2]);
+
+ // Put the new avatar in its place
+ @rename($pun_config['o_avatars_dir'].'/'.$id.'.tmp', $pun_config['o_avatars_dir'].'/'.$id.$extensions[0]);
+ @chmod($pun_config['o_avatars_dir'].'/'.$id.$extensions[0], 0644);
+ }
+ else
+ message($lang_profile['Unknown failure']);
+
+ break;
+ }
+
+ default:
+ {
+ ($hook = get_hook('pf_change_details_new_section_validation')) ? eval($hook) : null;
+ break;
+ }
+ }
+
+ // All sections apart from avatar potentially affect the database
+ if ($section != 'avatar')
+ {
+ ($hook = get_hook('pf_change_details_database_validation')) ? eval($hook) : null;
+
+ // Singlequotes around non-empty values and NULL for empty values
+ $temp = array();
+ while (list($key, $input) = @each($form))
+ {
+ $value = ($input !== '') ? '\''.$pun_db->escape($input).'\'' : 'NULL';
+
+ $temp[] = $key.'='.$value;
+ }
+
+ // Make sure we have something to update
+ if (empty($temp))
+ message($lang_common['Bad request']);
+
+ // Run the update
+ $query = array(
+ 'UPDATE' => 'users',
+ 'SET' => implode(',', $temp),
+ 'WHERE' => 'id='.$id
+ );
+
+ ($hook = get_hook('pf_qr_update_user')) ? eval($hook) : null;
+ $pun_db->query_build($query) or error(__FILE__, __LINE__);
+
+ // If we changed the username we have to update some stuff
+ if ($username_updated)
+ {
+ ($hook = get_hook('pf_change_details_username_changed')) ? eval($hook) : null;
+
+ $query = array(
+ 'UPDATE' => 'posts',
+ 'SET' => 'poster=\''.$pun_db->escape($form['username']).'\'',
+ 'WHERE' => 'poster_id='.$id
+ );
+
+ ($hook = get_hook('pf_qr_update_username1')) ? eval($hook) : null;
+ $pun_db->query_build($query) or error(__FILE__, __LINE__);
+
+ $query = array(
+ 'UPDATE' => 'topics',
+ 'SET' => 'poster=\''.$pun_db->escape($form['username']).'\'',
+ 'WHERE' => 'poster=\''.$pun_db->escape($old_username).'\''
+ );
+
+ ($hook = get_hook('pf_qr_update_username2')) ? eval($hook) : null;
+ $pun_db->query_build($query) or error(__FILE__, __LINE__);
+
+ $query = array(
+ 'UPDATE' => 'topics',
+ 'SET' => 'last_poster=\''.$pun_db->escape($form['username']).'\'',
+ 'WHERE' => 'last_poster=\''.$pun_db->escape($old_username).'\''
+ );
+
+ ($hook = get_hook('pf_qr_update_username3')) ? eval($hook) : null;
+ $pun_db->query_build($query) or error(__FILE__, __LINE__);
+
+ $query = array(
+ 'UPDATE' => 'forums',
+ 'SET' => 'last_poster=\''.$pun_db->escape($form['username']).'\'',
+ 'WHERE' => 'last_poster=\''.$pun_db->escape($old_username).'\''
+ );
+
+ ($hook = get_hook('pf_qr_update_username4')) ? eval($hook) : null;
+ $pun_db->query_build($query) or error(__FILE__, __LINE__);
+
+ $query = array(
+ 'UPDATE' => 'online',
+ 'SET' => 'ident=\''.$pun_db->escape($form['username']).'\'',
+ 'WHERE' => 'ident=\''.$pun_db->escape($old_username).'\''
+ );
+
+ ($hook = get_hook('pf_qr_update_username5')) ? eval($hook) : null;
+ $pun_db->query_build($query) or error(__FILE__, __LINE__);
+
+ // If the user is a moderator or an administrator we have to update the moderator lists and bans cache
+ if ($user['g_id'] == PUN_ADMIN || $user['g_moderator'] == '1')
+ {
+ $query = array(
+ 'SELECT' => 'f.id, f.moderators',
+ 'FROM' => 'forums AS f'
+ );
+
+ ($hook = get_hook('pf_qr_get_all_forum_mods2')) ? eval($hook) : null;
+ $result = $pun_db->query_build($query) or error(__FILE__, __LINE__);
+ while ($cur_forum = $pun_db->fetch_assoc($result))
+ {
+ $cur_moderators = ($cur_forum['moderators'] != '') ? unserialize($cur_forum['moderators']) : array();
+
+ if (in_array($id, $cur_moderators))
+ {
+ unset($cur_moderators[$old_username]);
+ $cur_moderators[$form['username']] = $id;
+ ksort($cur_moderators);
+
+ $query = array(
+ 'UPDATE' => 'forums',
+ 'SET' => 'moderators=\''.$pun_db->escape(serialize($cur_moderators)).'\'',
+ 'WHERE' => 'id='.$cur_forum['id']
+ );
+
+ ($hook = get_hook('pf_qr_update_forum_moderators2')) ? eval($hook) : null;
+ $pun_db->query_build($query) or error(__FILE__, __LINE__);
+ }
+ }
+
+ // Regenerate the bans cache
+ require_once PUN_ROOT.'include/cache.php';
+ generate_bans_cache();
+ }
+ }
+ }
+
+ pun_redirect(pun_link($pun_url['profile_'.$section], $id), $lang_profile['Profile redirect']);
+}
+
+
+if ($user['signature'] != '')
+{
+ require PUN_ROOT.'include/parser.php';
+ $parsed_signature = parse_signature($user['signature']);
+}
+
+
+// View or edit?
+if ($pun_user['id'] != $id &&
+ $pun_user['g_id'] != PUN_ADMIN &&
+ ($pun_user['g_moderator'] != '1' || $pun_user['g_mod_edit_users'] == '0' || $user['g_id'] == PUN_ADMIN || $user['g_moderator'] == '1'))
+{
+ ($hook = get_hook('pf_view_details_selected')) ? eval($hook) : null;
+
+ // Setup user identification
+ $pun_page['user_ident'] = array();
+
+ if ($pun_config['o_avatars'] == '1')
+ {
+ if ($pun_page['img_size'] = @getimagesize($pun_config['o_avatars_dir'].'/'.$id.'.gif'))
+ $pun_page['avatar_format'] = 'gif';
+ else if ($pun_page['img_size'] = @getimagesize($pun_config['o_avatars_dir'].'/'.$id.'.jpg'))
+ $pun_page['avatar_format'] = 'jpg';
+ else if ($pun_page['img_size'] = @getimagesize($pun_config['o_avatars_dir'].'/'.$id.'.png'))
+ $pun_page['avatar_format'] = 'png';
+ else
+ $pun_page['avatar_format'] = '';
+
+ if ($pun_page['avatar_format'] != '')
+ $pun_page['user_ident'][] = '<img src="'.$base_url.'/'.$pun_config['o_avatars_dir'].'/'.$id.'.'.$pun_page['avatar_format'].'" '.$pun_page['img_size'][3].' alt="'.$lang_profile['Avatar'].'" />';
+ }
+
+ $pun_page['user_ident'][] = '<strong class="username'.(($user['realname'] =='') ? ' fn nickname' : ' nickname').'">'.htmlspecialchars($user['username']).'</strong>';
+
+ // Setup user information
+ $pun_page['user_info'] = array(
+ '<li class="title"><span><strong>'.$lang_profile['Title'].'</strong> '.get_title($user).'</span></li>',
+ '<li><span><strong>'.$lang_profile['From'].'</strong> '.(($user['location'] !='') ? htmlspecialchars(($pun_config['o_censoring'] == '1') ? censor_words($user['location']) : $user['location']) : $lang_profile['Unknown']).'</span></li>',
+ '<li><span><strong>'.$lang_profile['Registered'].'</strong> '.format_time($user['registered'], true).'</span></li>'
+ );
+
+ if ($pun_config['o_show_post_count'] == '1' || $pun_user['is_admmod'])
+ $pun_page['user_info'][] = '<li><span><strong>'.$lang_profile['Posts'].'</strong> '.$user['num_posts'].'</span></li>';
+
+
+ // Setup user actions
+ $pun_page['user_actions'] = array();
+
+ if ($user['email_setting'] != '2' && !$pun_user['is_guest'])
+ $pun_page['user_actions'][] = '<li><a href="'.pun_link($pun_url['email'], $id).'">'.$lang_common['Send forum e-mail'].'</a></li>';
+
+ if ($pun_user['g_search'] == '1')
+ {
+ $pun_page['user_actions'][] = '<li><a href="'.pun_link($pun_url['search_user_posts'], $id).'">'.$lang_profile['Show posts'].'</a></li>';
+ $pun_page['user_actions'][] = '<li><a href="'.pun_link($pun_url['search_user_topics'], $id).'">'.$lang_profile['Show topics'].'</a></li>';
+ }
+
+ // Setup user data
+ $pun_page['user_data'] = array(
+ '<li><span'.(($user['realname'] !='') ? ' class="fn"' : '').'><strong>'.$lang_profile['Realname'].'</strong> '.(($user['realname'] !='') ? htmlspecialchars(($pun_config['o_censoring'] == '1') ? censor_words($user['realname']) : $user['realname']) : $lang_profile['Unknown']).'</span></li>',
+ '<li><span><strong>'.$lang_profile['Last post'].'</strong> '.format_time($user['last_post']).'</span></li>'
+ );
+
+ if ($user['email_setting'] == '0' && !$pun_user['is_guest'])
+ $pun_page['user_data'][] = '<li><strong>'.$lang_profile['E-mail'].'</strong> <span><a href="mailto:'.$user['email'].'" class="email">'.$user['email'].'</a></span></li>';
+ else
+ $pun_page['user_data'][] = '<li><strong>'.$lang_profile['E-mail'].'</strong> <span>'.$lang_profile['Private'].'</span></li>';
+
+ if ($user['url'] != '')
+ {
+ if ($pun_config['o_censoring'] == '1')
+ $user['url'] = censor_words($user['url']);
+
+ $user['url'] = htmlspecialchars($user['url']);
+ $pun_page['url'] = '<a href="'.$user['url'].'" class="external url" rel="me">'.$user['url'].'</a>';
+ }
+ else
+ $pun_page['url'] = $lang_profile['Unknown'];
+
+ array_push(
+ $pun_page['user_data'],
+ '<li><span><strong>'.$lang_profile['Website'].'</strong> '.$pun_page['url'].'</span></li>',
+ '<li><span><strong>'.$lang_profile['Jabber'].'</strong> '.(($user['jabber'] !='') ? htmlspecialchars($user['jabber']) : $lang_profile['Unknown']).'</span></li>',
+ '<li><span><strong>'.$lang_profile['ICQ'].'</strong> '.(($user['icq'] !='') ? htmlspecialchars($user['icq']) : $lang_profile['Unknown']).'</span></li>',
+ '<li><span><strong>'.$lang_profile['MSN'].'</strong> '.(($user['msn'] !='') ? htmlspecialchars(($pun_config['o_censoring'] == '1') ? censor_words($user['msn']) : $user['msn']) : $lang_profile['Unknown']).'</span></li>',
+ '<li><span><strong>'.$lang_profile['AOL IM'].'</strong> '.(($user['aim'] !='') ? htmlspecialchars(($pun_config['o_censoring'] == '1') ? censor_words($user['aim']) : $user['aim']) : $lang_profile['Unknown']).'</span></li>',
+ '<li><span><strong>'.$lang_profile['Yahoo'].'</strong> '.(($user['yahoo'] !='') ? htmlspecialchars(($pun_config['o_censoring'] == '1') ? censor_words($user['yahoo']) : $user['yahoo']) : $lang_profile['Unknown']).'</span></li>'
+ );
+
+ if ($pun_config['o_signatures'] == '1' && isset($parsed_signature))
+ $pun_page['sig_demo'] = $parsed_signature;
+
+ // Setup breadcrumbs
+ $pun_page['crumbs'] = array(
+ array($pun_config['o_board_title'], pun_link($pun_url['index'])),
+ sprintf($lang_profile['Users profile'], htmlspecialchars($user['username']))
+ );
+
+ ($hook = get_hook('pf_view_details_pre_header_load')) ? eval($hook) : null;
+
+ define('PUN_ALLOW_INDEX', 1);
+ define('PUN_PAGE', 'profile');
+ require PUN_ROOT.'header.php';
+
+?>
+<div id="pun-main" class="main">
+
+ <h1><span><?php echo end($pun_page['crumbs']) ?></span></h1>
+
+ <div class="main-head">
+ <h2><span><?php printf($lang_profile['About settings'], htmlspecialchars($user['username'])) ?></span></h2>
+ </div>
+
+ <div class="main-content frm">
+ <div class="profile vcard">
+ <h3><?php echo $lang_profile['User information'] ?></h3>
+ <div class="user">
+ <h4 class="user-ident"><?php echo implode(' ', $pun_page['user_ident']) ?></h4>
+ <ul class="user-info">
+ <?php echo implode("\n\t\t\t\t\t\t", $pun_page['user_info'])."\n" ?>
+ </ul>
+ </div>
+<?php ($hook = get_hook('pf_view_details_pre_user_data')) ? eval($hook) : null; ?>
+ <ul class="user-data">
+ <?php echo implode("\n\t\t\t\t\t\t", $pun_page['user_data'])."\n" ?>
+ </ul>
+ <h3><?php echo $lang_profile['User actions'] ?></h3>
+<?php if (!empty($pun_page['user_actions'])): ?> <ul class="user-actions">
+ <?php echo implode("\n\t\t\t\t", $pun_page['user_actions'])."\n" ?>
+ </ul>
+<?php endif; if (isset($pun_page['sig_demo'])): ?> <h3><?php echo $lang_profile['Preview signature'] ?></h3>
+ <div class="sig-demo">
+ <?php echo $pun_page['sig_demo']."\n" ?>
+ </div>
+<?php endif; ?> </div>
+<?php ($hook = get_hook('pf_view_details_end')) ? eval($hook) : null; ?>
+ </div>
+
+</div>
+<?php
+
+ require PUN_ROOT.'footer.php';
+}
+
+
+else
+{
+ // Setup breadcrumbs
+ $pun_page['crumbs'] = array(
+ array($pun_config['o_board_title'], pun_link($pun_url['index'])),
+ sprintf($lang_profile['Users profile'], htmlspecialchars($user['username']))
+ );
+
+ if ($section == 'about')
+ {
+ // Setup user identification
+ $pun_page['user_ident'] = array();
+
+ if ($pun_config['o_avatars'] == '1')
+ {
+ if ($pun_page['img_size'] = @getimagesize($pun_config['o_avatars_dir'].'/'.$id.'.gif'))
+ $pun_page['avatar_format'] = 'gif';
+ else if ($pun_page['img_size'] = @getimagesize($pun_config['o_avatars_dir'].'/'.$id.'.jpg'))
+ $pun_page['avatar_format'] = 'jpg';
+ else if ($pun_page['img_size'] = @getimagesize($pun_config['o_avatars_dir'].'/'.$id.'.png'))
+ $pun_page['avatar_format'] = 'png';
+ else
+ $pun_page['avatar_format'] = '';
+
+ if ($pun_page['avatar_format'] != '')
+ $pun_page['user_ident'][] = '<img src="'.$base_url.'/'.$pun_config['o_avatars_dir'].'/'.$id.'.'.$pun_page['avatar_format'].'" '.$pun_page['img_size'][3].' alt="'.$lang_profile['Avatar'].'" />';
+ }
+
+ $pun_page['user_ident'][] = '<strong class="username'.(($user['realname'] =='') ? ' fn nickname' : ' nickname').'">'.htmlspecialchars($user['username']).'</strong>';
+
+ // Setup user information
+ $pun_page['user_info'] = array(
+ '<li class="title"><span><strong>'.$lang_profile['Title'].'</strong> '.get_title($user).'</span></li>',
+ '<li><span><strong>'.$lang_profile['From'].'</strong> '.(($user['location'] !='') ? htmlspecialchars(($pun_config['o_censoring'] == '1') ? censor_words($user['location']) : $user['location']) : $lang_profile['Unknown']).'</span></li>',
+ '<li><span><strong>'.$lang_profile['Registered'].'</strong> '.format_time($user['registered'], true).'</span></li>'
+ );
+
+ if ($pun_config['o_show_post_count'] == '1' || $pun_user['is_admmod'])
+ $pun_page['user_info'][] = '<li><span><strong>'.$lang_profile['Posts'].'</strong> '.$user['num_posts'].'</span></li>';
+
+ if ($pun_user['is_admmod'])
+ $pun_page['user_info'][]= '<li><span><strong>'.$lang_profile['IP'].'</strong> <a href="'.pun_link($pun_url['get_host'], htmlspecialchars($user['registration_ip'])).'">'.htmlspecialchars($user['registration_ip']).'</a></span></li>';
+
+ if ($pun_user['is_admmod'] && $user['admin_note'] != '')
+ $pun_page['user_info'][] = '<li><span><strong>'.$lang_profile['Note'].'</strong> '.htmlspecialchars($user['admin_note']).'</span></li>';
+
+
+ // Setup user actions
+ $pun_page['user_actions'] = array();
+
+ if ($pun_user['id'] == $id || $session->user_level >= USER_LEVEL_ADMIN || ($pun_user['g_moderator'] == '1' && $pun_user['g_mod_change_passwords'] == '1'))
+ $pun_page['user_actions'][] = '<li><a href="'.pun_link($pun_url['change_password'], $id).'">'.$lang_profile['Change password'].'</a></li>';
+
+ if (!$pun_user['is_admmod'] && $pun_config['o_regs_verify'] == '1')
+ $pun_page['user_actions'][] = '<li><a href="'.pun_link($pun_url['change_email'], $id).'">'.$lang_profile['Change e-mail'].'</a></li>';
+
+ if ($user['email_setting'] != '2' || $pun_user['is_admmod'])
+ $pun_page['user_actions'][] = '<li><a href="'.pun_link($pun_url['email'], $id).'">'.$lang_profile['Send forum e-mail'].'</a></li>';
+
+ if ($pun_user['g_search'] == '1' || $pun_user['is_admmod'])
+ {
+ $pun_page['user_actions'][] = '<li><a href="'.pun_link($pun_url['search_user_posts'], $id).'">'.$lang_profile['Show posts'].'</a></li>';
+ $pun_page['user_actions'][] = '<li><a href="'.pun_link($pun_url['search_user_topics'], $id).'">'.$lang_profile['Show topics'].'</a></li>';
+ }
+
+
+ // Setup user data
+ $pun_page['user_data'] = array(
+ '<li><strong>'.$lang_profile['Realname'].'</strong> <span'.(($user['realname'] !='') ? ' class="fn"' : '').'>'.(($user['realname'] !='') ? htmlspecialchars(($pun_config['o_censoring'] == '1') ? censor_words($user['realname']) : $user['realname']) : $lang_profile['Unknown']).'</span></li>',
+ '<li><strong>'.$lang_profile['Last post'].'</strong> <span>'.format_time($user['last_post']).'</span></li>'
+ );
+
+ if ($user['email_setting'] == '0' && !$pun_user['is_guest'])
+ $pun_page['user_data'][] = '<li><strong>'.$lang_profile['E-mail'].'</strong> <a href="mailto:'.$user['email'].'" class="email"><span>'.$user['email'].'</span></a></li>';
+ else
+ $pun_page['user_data'][] = '<li><strong>'.$lang_profile['E-mail'].'</strong> <span>'.$lang_profile['Private'].'</span></li>';
+
+ if ($user['url'] != '')
+ {
+ $user['url'] = htmlspecialchars($user['url']);
+
+ if ($pun_config['o_censoring'] == '1')
+ $user['url'] = censor_words($user['url']);
+
+ $pun_page['url'] = '<a href="'.$user['url'].'" class="external url" rel="me">'.$user['url'].'</a>';
+ }
+ else
+ $pun_page['url'] = $lang_profile['Unknown'];
+
+ array_push(
+ $pun_page['user_data'],
+ '<li><span><strong>'.$lang_profile['Website'].'</strong> '.$pun_page['url'].'</span></li>',
+ '<li><span><strong>'.$lang_profile['Jabber'].'</strong> '.(($user['jabber'] !='') ? htmlspecialchars($user['jabber']) : $lang_profile['Unknown']).'</span></li>',
+ '<li><span><strong>'.$lang_profile['ICQ'].'</strong> '.(($user['icq'] !='') ? htmlspecialchars($user['icq']) : $lang_profile['Unknown']).'</span></li>',
+ '<li><span><strong>'.$lang_profile['MSN'].'</strong> '.(($user['msn'] !='') ? htmlspecialchars(($pun_config['o_censoring'] == '1') ? censor_words($user['msn']) : $user['msn']) : $lang_profile['Unknown']).'</span></li>',
+ '<li><span><strong>'.$lang_profile['AOL IM'].'</strong> '.(($user['aim'] !='') ? htmlspecialchars(($pun_config['o_censoring'] == '1') ? censor_words($user['aim']) : $user['aim']) : $lang_profile['Unknown']).'</span></li>',
+ '<li><span><strong>'.$lang_profile['Yahoo'].'</strong> '.(($user['yahoo'] !='') ? htmlspecialchars(($pun_config['o_censoring'] == '1') ? censor_words($user['yahoo']) : $user['yahoo']) : $lang_profile['Unknown']).'</span></li>'
+ );
+
+ if ($pun_config['o_signatures'] == '1' && isset($parsed_signature))
+ $pun_page['sig_demo'] = $parsed_signature;
+
+ ($hook = get_hook('pf_change_details_about_pre_header_load')) ? eval($hook) : null;
+
+ define('PUN_PAGE', 'profile-about');
+ require PUN_ROOT.'header.php';
+
+?>
+<div id="pun-main" class="main sectioned">
+
+ <h1><span><?php echo end($pun_page['crumbs']) ?></span></h1>
+
+<?php generate_profile_menu(); ?>
+
+ <div class="main-head">
+ <h2><span><?php printf($lang_profile['About settings'], htmlspecialchars($user['username'])) ?></span></h2>
+ </div>
+
+ <div class="main-content frm">
+<?php if ($id == $pun_user['id']): ?> <div class="frm-info">
+ <p><?php echo $lang_profile['Profile welcome'] ?></p>
+ </div>
+<?php endif; ($hook = get_hook('pf_change_details_about_pre_user_info')) ? eval($hook) : null; ?>
+ <div class="profile vcard">
+ <h3><?php echo $lang_profile['Preview profile'] ?></h3>
+ <div class="user">
+ <h4 class="user-ident"><?php echo implode(' ', $pun_page['user_ident']) ?></h4>
+ <ul class="user-info">
+ <?php echo implode("\n\t\t\t\t\t", $pun_page['user_info'])."\n" ?>
+ </ul>
+ </div>
+ <ul class="user-data">
+ <?php echo implode("\n\t\t\t\t", $pun_page['user_data'])."\n" ?>
+ </ul>
+ <h3><?php echo $lang_profile['User actions'] ?></h3>
+<?php if (!empty($pun_page['user_actions'])): ?> <ul class="user-actions">
+ <?php echo implode("\n\t\t\t\t", $pun_page['user_actions'])."\n" ?>
+ </ul>
+<?php endif; if (isset($pun_page['sig_demo'])): ?> <h3><?php echo $lang_profile['Preview signature'] ?></h3>
+ <div class="sig-demo">
+ <?php echo $pun_page['sig_demo']."\n" ?>
+ </div>
+<?php endif; ?> </div>
+<?php ($hook = get_hook('pf_change_details_about_end')) ? eval($hook) : null; ?>
+ </div>
+</div>
+<?php
+
+ require PUN_ROOT.'footer.php';
+ }
+
+ else if ($section == 'identity')
+ {
+ // Setup the form
+ $pun_page['set_count'] = $pun_page['fld_count'] = 0;
+ $pun_page['form_action'] = pun_link($pun_url['profile_identity'], $id);
+
+ $pun_page['hidden_fields'][] = '<input type="hidden" name="form_sent" value="1" />';
+ if ($pun_user['is_admmod'])
+ $pun_page['hidden_fields'][] = '<input type="hidden" name="csrf_token" value="'.generate_form_token($pun_page['form_action']).'" />';
+ if ($pun_user['is_admmod'] && ($session->user_level >= USER_LEVEL_ADMIN || $pun_user['g_mod_rename_users'] == '1'))
+ $pun_page['hidden_fields'][] = '<input type="hidden" name="old_username" value="'.htmlspecialchars($user['username']).'" />';
+
+ // Does the form have required fields
+ $pun_page['has_required'] = ((($pun_user['is_admmod'] && ($session->user_level >= USER_LEVEL_ADMIN || $pun_user['g_mod_rename_users'] == '1')) || ($pun_user['is_admmod'] || $pun_config['o_regs_verify'] != '1')) ? true : false);
+
+ ($hook = get_hook('pf_change_details_identity_pre_header_load')) ? eval($hook) : null;
+
+ define('PUN_PAGE', 'profile-identity');
+ require PUN_ROOT.'header.php';
+
+?>
+<div id="pun-main" class="main sectioned">
+
+ <h1><span><?php echo end($pun_page['crumbs']) ?></span></h1>
+
+<?php generate_profile_menu(); ?>
+
+ <div class="main-head">
+ <h2><span><span><?php echo $lang_profile['Section identity'] ?>:</span> <?php printf($lang_profile['Identity settings'], strtolower($lang_profile['Section identity'])) ?></span></h2>
+ </div>
+
+ <div class="main-content frm">
+<?php if ($pun_page['has_required']): ?> <div id="req-msg" class="frm-warn">
+ <p class="important"><?php printf($lang_common['Required warn'], '<em class="req-text">'.$lang_common['Required'].'</em>') ?></p>
+ </div>
+<?php endif; ?> <form class="frm-form" method="post" accept-charset="utf-8" action="<?php echo $pun_page['form_action'] ?>">
+ <div class="hidden">
+ <?php echo implode("\n\t\t\t\t", $pun_page['hidden_fields'])."\n" ?>
+ </div>
+<?php if ($pun_page['has_required']): ?> <fieldset class="frm-set set<?php echo ++$pun_page['set_count'] ?>">
+ <legend class="frm-legend"><strong><?php echo $lang_common['Required information'] ?></strong></legend>
+<?php if ($pun_user['is_admmod'] && ($session->user_level >= USER_LEVEL_ADMIN || $pun_user['g_mod_rename_users'] == '1')): ?>
+ <div class="frm-fld text required">
+ <label for="fld<?php echo ++$pun_page['fld_count'] ?>">
+ <span class="fld-label"><?php echo $lang_profile['Username'] ?></span><br />
+ <span class="fld-input"><input type="text" id="fld<?php echo $pun_page['fld_count'] ?>" name="req_username" value="<?php echo htmlspecialchars($user['username']) ?>" size="35" maxlength="25" /></span><br />
+ <em class="req-text"><?php echo $lang_common['Required'] ?></em>
+ <span class="fld-help"><?php echo $lang_profile['Username help'] ?></span>
+ </label>
+ </div>
+<?php endif; if ($pun_user['is_admmod'] || $pun_config['o_regs_verify'] != '1'): ?> <div class="frm-fld text required">
+ <label for="fld<?php echo ++$pun_page['fld_count'] ?>">
+ <span class="fld-label"><?php echo $lang_profile['E-mail'] ?></span><br />
+ <span class="fld-input"><input type="text" id="fld<?php echo $pun_page['fld_count'] ?>" name="req_email" value="<?php echo $user['email'] ?>" size="35" maxlength="80" /></span>
+ <em class="req-text"><?php echo $lang_common['Required'] ?></em>
+ </label>
+ </div>
+<?php endif; ($hook = get_hook('pf_change_details_identity_req_info_end')) ? eval($hook) : null; ?> </fieldset>
+<?php endif; ($hook = get_hook('pf_change_details_identity_post_req_info_fieldset')) ? eval($hook) : null; ?> <fieldset class="frm-set set<?php echo ++$pun_page['set_count'] ?>">
+ <legend class="frm-legend"><strong><?php echo $lang_profile['Personal legend'] ?></strong></legend>
+ <div class="frm-fld text">
+ <label for="fld<?php echo ++$pun_page['fld_count'] ?>">
+ <span class="fld-label"><?php echo $lang_profile['Realname'] ?></span><br />
+ <span class="fld-input"><input type="text" id="fld<?php echo $pun_page['fld_count'] ?>" name="form[realname]" value="<?php echo htmlspecialchars($user['realname']) ?>" size="35" maxlength="40" /></span>
+ </label>
+ </div>
+<?php if ($pun_user['g_set_title'] == '1'): ?> <div class="frm-fld text">
+ <label for="fld<?php echo ++$pun_page['fld_count'] ?>">
+ <span class="fld-label"><?php echo $lang_profile['Title'] ?></span><br />
+ <span class="fld-input"><input type="text" id="fld<?php echo $pun_page['fld_count'] ?>" name="title" value="<?php echo htmlspecialchars($user['title']) ?>" size="35" maxlength="50" /></span><br />
+ <span class="fld-help"><?php echo $lang_profile['Leave blank'] ?></span>
+ </label>
+ </div>
+<?php endif; ?> <div class="frm-fld text">
+ <label for="fld<?php echo ++$pun_page['fld_count'] ?>">
+ <span class="fld-label"><?php echo $lang_profile['Location'] ?></span><br />
+ <span class="fld-input"><input type="text" id="fld<?php echo $pun_page['fld_count'] ?>" name="form[location]" value="<?php echo htmlspecialchars($user['location']) ?>" size="35" maxlength="30" /></span>
+ </label>
+ </div>
+<?php if ($session->user_level >= USER_LEVEL_ADMIN): ?> <div class="frm-fld text">
+ <label for="fld<?php echo ++$pun_page['fld_count'] ?>">
+ <span class="fld-label"><?php echo $lang_profile['Edit count'] ?></span><br />
+ <span class="fld-input"><input type="text" id="fld<?php echo $pun_page['fld_count'] ?>" name="num_posts" value="<?php echo $user['num_posts'] ?>" size="8" maxlength="8" /></span>
+ </label>
+ </div>
+<?php endif; if ($pun_user['is_admmod']): ?> <div class="frm-fld text">
+ <label for="fld<?php echo ++$pun_page['fld_count'] ?>">
+ <span class="fld-label"><?php echo $lang_profile['Admin note'] ?></span><br />
+ <span class="fld-input"><input id="fld<?php echo $pun_page['fld_count'] ?>" type="text" name="admin_note" value="<?php echo htmlspecialchars($user['admin_note']) ?>" size="35" maxlength="30" /></span>
+ </label>
+ </div>
+<?php endif; ($hook = get_hook('pf_change_details_identity_personal_end')) ? eval($hook) : null; ?> </fieldset>
+<?php ($hook = get_hook('pf_change_details_identity_post_personal_fieldset')) ? eval($hook) : null; ?> <fieldset class="frm-set set<?php echo ++$pun_page['set_count'] ?>">
+ <legend class="frm-legend"><strong><?php echo $lang_profile['Contact legend'] ?></strong></legend>
+ <div class="frm-fld text">
+ <label for="fld<?php echo ++$pun_page['fld_count'] ?>">
+ <span class="fld-label"><?php echo $lang_profile['Website'] ?></span><br />
+ <span class="fld-input"><input type="text" id="fld<?php echo $pun_page['fld_count'] ?>" name="form[url]" value="<?php echo htmlspecialchars($user['url']) ?>" size="50" maxlength="80" /></span>
+ </label>
+ </div>
+ <div class="frm-fld text">
+ <label for="fld<?php echo ++$pun_page['fld_count'] ?>">
+ <span class="fld-label"><?php echo $lang_profile['Jabber'] ?></span><br />
+ <span class="fld-input"><input id="fld<?php echo $pun_page['fld_count'] ?>" type="text" name="form[jabber]" value="<?php echo htmlspecialchars($user['jabber']) ?>" size="40" maxlength="80" /></span>
+ </label>
+ </div>
+ <div class="frm-fld text">
+ <label for="fld<?php echo ++$pun_page['fld_count'] ?>">
+ <span class="fld-label"><?php echo $lang_profile['ICQ'] ?></span><br />
+ <span class="fld-input"><input id="fld<?php echo $pun_page['fld_count'] ?>" type="text" name="form[icq]" value="<?php echo $user['icq'] ?>" size="12" maxlength="12" /></span>
+ </label>
+ </div>
+ <div class="frm-fld text">
+ <label for="fld<?php echo ++$pun_page['fld_count'] ?>">
+ <span class="fld-label"><?php echo $lang_profile['MSN'] ?></span><br />
+ <span class="fld-input"><input id="fld<?php echo $pun_page['fld_count'] ?>" type="text" name="form[msn]" value="<?php echo htmlspecialchars($user['msn']) ?>" size="40" maxlength="80" /></span>
+ </label>
+ </div>
+ <div class="frm-fld text">
+ <label for="fld<?php echo ++$pun_page['fld_count'] ?>">
+ <span class="fld-label"><?php echo $lang_profile['AOL IM'] ?></span><br />
+ <span class="fld-input"><input id="fld<?php echo $pun_page['fld_count'] ?>" type="text" name="form[aim]" value="<?php echo htmlspecialchars($user['aim']) ?>" size="20" maxlength="30" /></span>
+ </label>
+ </div>
+ <div class="frm-fld text">
+ <label for="fld<?php echo ++$pun_page['fld_count'] ?>">
+ <span class="fld-label"><?php echo $lang_profile['Yahoo'] ?></span><br />
+ <span class="fld-input"><input id="fld<?php echo $pun_page['fld_count'] ?>" type="text" name="form[yahoo]" value="<?php echo htmlspecialchars($user['yahoo']) ?>" size="20" maxlength="30" /></span>
+ </label>
+ </div>
+<?php ($hook = get_hook('pf_change_details_identity_contact_end')) ? eval($hook) : null; ?>
+ </fieldset>
+<?php ($hook = get_hook('pf_change_details_identity_post_contact_fieldset')) ? eval($hook) : null; ?>
+ <div class="frm-buttons">
+ <span class="submit"><input type="submit" name="update" value="<?php echo $lang_profile['Update profile'] ?>" /> <?php echo $lang_profile['Instructions'] ?></span>
+ </div>
+ </form>
+ </div>
+
+</div>
+<?php
+
+ require PUN_ROOT.'footer.php';
+ }
+
+ else if ($section == 'settings')
+ {
+ $pun_page['styles'] = array();
+ $pun_page['d'] = dir(PUN_ROOT.'style');
+ while (($pun_page['entry'] = $pun_page['d']->read()) !== false)
+ {
+ if ($pun_page['entry'] != '.' && $pun_page['entry'] != '..' && is_dir(PUN_ROOT.'style/'.$pun_page['entry']) && file_exists(PUN_ROOT.'style/'.$pun_page['entry'].'/'.$pun_page['entry'].'.css'))
+ $pun_page['styles'][] = $pun_page['entry'];
+ }
+ $pun_page['d']->close();
+
+ // Setup the form
+ $pun_page['set_count'] = $pun_page['fld_count'] = 0;
+ $pun_page['form_action'] = pun_link($pun_url['profile_settings'], $id);
+
+ $pun_page['hidden_fields'][] = '<input type="hidden" name="form_sent" value="1" />';
+ if ($pun_user['is_admmod'])
+ $pun_page['hidden_fields'][] = '<input type="hidden" name="csrf_token" value="'.generate_form_token($pun_page['form_action']).'" />';
+
+ ($hook = get_hook('pf_change_details_settings_pre_header_load')) ? eval($hook) : null;
+
+ define('PUN_PAGE', 'profile-settings');
+ require PUN_ROOT.'header.php';
+
+?>
+<div id="pun-main" class="main sectioned">
+
+ <h1 class="pun main-title"><span><?php echo end($pun_page['crumbs']) ?></span></h1>
+
+<?php generate_profile_menu(); ?>
+
+ <div class="main-head">
+ <h2><span><span><?php echo $lang_profile['Section settings'] ?>:</span> <?php printf($lang_profile['Settings settings'], strtolower($lang_profile['Section settings'])) ?></span></h2>
+ </div>
+
+ <div class="main-content frm">
+ <form class="frm-form" method="post" accept-charset="utf-8" action="<?php echo $pun_page['form_action'] ?>">
+ <div class="hidden">
+ <?php echo implode("\n\t\t\t\t", $pun_page['hidden_fields'])."\n" ?>
+ </div>
+<?php ($hook = get_hook('pf_change_details_settings_pre_local_fieldset')) ? eval($hook) : null; ?>
+ <fieldset class="frm-set set<?php echo ++$pun_page['set_count'] ?>">
+ <legend class="frm-legend"><strong><?php echo $lang_profile['Local legend'] ?></strong></legend>
+<?php
+
+ $pun_page['languages'] = array();
+ $pun_page['d'] = dir(PUN_ROOT.'lang');
+ while (($pun_page['entry'] = $pun_page['d']->read()) !== false)
+ {
+ if ($pun_page['entry'] != '.' && $pun_page['entry'] != '..' && is_dir(PUN_ROOT.'lang/'.$pun_page['entry']) && file_exists(PUN_ROOT.'lang/'.$pun_page['entry'].'/common.php'))
+ $pun_page['languages'][] = $pun_page['entry'];
+ }
+ $pun_page['d']->close();
+
+ // Only display the language selection box if there's more than one language available
+ if (count($pun_page['languages']) > 1)
+ {
+ natcasesort($pun_page['languages']);
+
+?>
+ <div class="frm-fld select">
+ <label for="fld<?php echo ++$pun_page['fld_count'] ?>">
+ <span class="fld-label"><?php echo $lang_profile['Language'] ?></span><br />
+ <span class="fld-input"><select id="fld<?php echo $pun_page['fld_count'] ?>" name="form[language]">
+<?php
+
+ while (list(, $temp) = @each($pun_page['languages']))
+ {
+ if ($pun_user['language'] == $temp)
+ echo "\t\t\t\t\t\t".'<option value="'.$temp.'" selected="selected">'.$temp.'</option>'."\n";
+ else
+ echo "\t\t\t\t\t\t".'<option value="'.$temp.'">'.$temp.'</option>'."\n";
+ }
+
+?>
+ </select></span>
+ </label>
+ </div>
+<?php
+
+ }
+
+?>
+ <div class="frm-fld select">
+ <label for="fld<?php echo ++$pun_page['fld_count'] ?>">
+ <span class="fld-label"><?php echo $lang_profile['Timezone'] ?></span><br />
+ <span class="fld-input"><select id="fld<?php echo $pun_page['fld_count'] ?>" name="form[timezone]">
+ <option value="-12"<?php if ($user['timezone'] == -12) echo ' selected="selected"' ?>>-12</option>
+ <option value="-11"<?php if ($user['timezone'] == -11) echo ' selected="selected"' ?>>-11</option>
+ <option value="-10"<?php if ($user['timezone'] == -10) echo ' selected="selected"' ?>>-10</option>
+ <option value="-9.5"<?php if ($user['timezone'] == -9.5) echo ' selected="selected"' ?>>-09.5</option>
+ <option value="-9"<?php if ($user['timezone'] == -9) echo ' selected="selected"' ?>>-09</option>
+ <option value="-8.5"<?php if ($user['timezone'] == -8.5) echo ' selected="selected"' ?>>-08.5</option>
+ <option value="-8"<?php if ($user['timezone'] == -8) echo ' selected="selected"' ?>>-08 PST</option>
+ <option value="-7"<?php if ($user['timezone'] == -7) echo ' selected="selected"' ?>>-07 MST</option>
+ <option value="-6"<?php if ($user['timezone'] == -6) echo ' selected="selected"' ?>>-06 CST</option>
+ <option value="-5"<?php if ($user['timezone'] == -5) echo ' selected="selected"' ?>>-05 EST</option>
+ <option value="-4"<?php if ($user['timezone'] == -4) echo ' selected="selected"' ?>>-04 AST</option>
+ <option value="-3.5"<?php if ($user['timezone'] == -3.5) echo ' selected="selected"' ?>>-03.5</option>
+ <option value="-3"<?php if ($user['timezone'] == -3) echo ' selected="selected"' ?>>-03 ADT</option>
+ <option value="-2"<?php if ($user['timezone'] == -2) echo ' selected="selected"' ?>>-02</option>
+ <option value="-1"<?php if ($user['timezone'] == -1) echo ' selected="selected"' ?>>-01</option>
+ <option value="0"<?php if ($user['timezone'] == 0) echo ' selected="selected"' ?>>00 GMT</option>
+ <option value="1"<?php if ($user['timezone'] == 1) echo ' selected="selected"' ?>>+01 CET</option>
+ <option value="2"<?php if ($user['timezone'] == 2) echo ' selected="selected"' ?>>+02</option>
+ <option value="3"<?php if ($user['timezone'] == 3) echo ' selected="selected"' ?>>+03</option>
+ <option value="3.5"<?php if ($user['timezone'] == 3.5) echo ' selected="selected"' ?>>+03.5</option>
+ <option value="4"<?php if ($user['timezone'] == 4) echo ' selected="selected"' ?>>+04</option>
+ <option value="4.5"<?php if ($user['timezone'] == 4.5) echo ' selected="selected"' ?>>+04.5</option>
+ <option value="5"<?php if ($user['timezone'] == 5) echo ' selected="selected"' ?>>+05</option>
+ <option value="5.5"<?php if ($user['timezone'] == 5.5) echo ' selected="selected"' ?>>+05.5</option>
+ <option value="6"<?php if ($user['timezone'] == 6) echo ' selected="selected"' ?>>+06</option>
+ <option value="6.5"<?php if ($user['timezone'] == 6.5) echo ' selected="selected"' ?>>+06.5</option>
+ <option value="7"<?php if ($user['timezone'] == 7) echo ' selected="selected"' ?>>+07</option>
+ <option value="8"<?php if ($user['timezone'] == 8) echo ' selected="selected"' ?>>+08</option>
+ <option value="9"<?php if ($user['timezone'] == 9) echo ' selected="selected"' ?>>+09</option>
+ <option value="9.5"<?php if ($user['timezone'] == 9.5) echo ' selected="selected"' ?>>+09.5</option>
+ <option value="10"<?php if ($user['timezone'] == 10) echo ' selected="selected"' ?>>+10</option>
+ <option value="10.5"<?php if ($user['timezone'] == 10.5) echo ' selected="selected"' ?>>+10.5</option>
+ <option value="11"<?php if ($user['timezone'] == 11) echo ' selected="selected"' ?>>+11</option>
+ <option value="11.5"<?php if ($user['timezone'] == 11.5) echo ' selected="selected"' ?>>+11.5</option>
+ <option value="12"<?php if ($user['timezone'] == 12) echo ' selected="selected"' ?>>+12</option>
+ <option value="13"<?php if ($user['timezone'] == 13) echo ' selected="selected"' ?>>+13</option>
+ <option value="14"<?php if ($user['timezone'] == 14) echo ' selected="selected"' ?>>+14</option>
+ </select></span><br />
+ <span class="fld-extra"><?php echo $lang_profile['Timezone info'] ?></span>
+ </label>
+ </div>
+ <div class="checkbox radbox">
+ <label for="fld<?php echo ++$pun_page['fld_count'] ?>"><span class="fld-label"><?php echo $lang_profile['Adjust for DST'] ?></span><br /><input type="checkbox" id="fld<?php echo $pun_page['fld_count'] ?>" name="form[dst]" value="1" <?php if ($user['dst'] == 1) echo ' checked="checked"' ?> /> <?php echo $lang_profile['DST label'] ?></label>
+ </div>
+ <div class="frm-fld select">
+ <label for="fld<?php echo ++$pun_page['fld_count'] ?>">
+ <span class="fld-label"><?php echo $lang_profile['Time format'] ?></span><br />
+ <span class="fld-input"><select id="fld<?php echo $pun_page['fld_count'] ?>" name="form[time_format]">
+<?php
+
+ foreach (array_unique($pun_time_formats) as $key => $time_format)
+ {
+ echo "\t\t\t\t\t\t".'<option value="'.$key.'"';
+ if ($user['time_format'] == $key)
+ echo ' selected="selected"';
+ echo '>'. gmdate($time_format);
+ if ($key == 0)
+ echo ' ('.$lang_profile['Default'].')';
+ echo "</option>\n";
+ }
+
+?>
+ </select></span>
+ </label>
+ </div>
+ <div class="frm-fld select">
+ <label for="fld<?php echo ++$pun_page['fld_count'] ?>">
+ <span class="fld-label"><?php echo $lang_profile['Date format'] ?></span><br />
+ <span class="fld-input"><select id="fld<?php echo $pun_page['fld_count'] ?>" name="form[date_format]">
+<?php
+
+ foreach (array_unique($pun_date_formats) as $key => $date_format)
+ {
+ echo "\t\t\t\t\t\t\t".'<option value="'.$key.'"';
+ if ($user['date_format'] == $key)
+ echo ' selected="selected"';
+ echo '>'. gmdate($date_format);
+ if ($key == 0)
+ echo ' ('.$lang_profile['Default'].')';
+ echo "</option>\n";
+ }
+
+?>
+ </select></span>
+ </label>
+ </div>
+<?php ($hook = get_hook('pf_change_details_settings_local_end')) ? eval($hook) : null; ?>
+ </fieldset>
+<?php ($hook = get_hook('pf_change_details_settings_pre_display_fieldset')) ? eval($hook) : null; ?>
+ <fieldset class="frm-set set<?php echo ++$pun_page['set_count'] ?>">
+ <legend class="frm-legend"><strong><?php echo $lang_profile['Display settings'] ?></strong></legend>
+<?php
+
+ // Only display the style selection box if there's more than one style available
+ if (count($pun_page['styles']) == 1)
+ echo "\t\t\t\t".'<input type="hidden" name="form[style]" value="'.$pun_page['styles'][0].'" />'."\n";
+ else if (count($pun_page['styles']) > 1)
+ {
+ natcasesort($pun_page['styles']);
+
+?>
+ <div class="frm-fld select">
+ <label for="fld<?php echo ++$pun_page['fld_count'] ?>">
+ <span class="fld-label"><?php echo $lang_profile['Styles'] ?></span><br />
+ <span class="fld-input"><select id="fld<?php echo $pun_page['fld_count'] ?>" name="form[style]">
+<?php
+
+ while (list(, $temp) = @each($pun_page['styles']))
+ {
+ if ($user['style'] == $temp)
+ echo "\t\t\t\t\t\t\t".'<option value="'.$temp.'" selected="selected">'.str_replace('_', ' ', $temp).'</option>'."\n";
+ else
+ echo "\t\t\t\t\t\t\t".'<option value="'.$temp.'">'.str_replace('_', ' ', $temp).'</option>'."\n";
+ }
+
+?>
+ </select></span>
+ </label>
+ </div>
+<?php
+
+ }
+
+?>
+ <fieldset class="frm-group">
+ <legend><span><?php echo $lang_profile['Image display'] ?></span></legend>
+ <div class="radbox"><label for="fld<?php echo ++$pun_page['fld_count'] ?>"><input type="checkbox" id="fld<?php echo $pun_page['fld_count'] ?>" name="form[show_smilies]" value="1"<?php if ($user['show_smilies'] == '1') echo ' checked="checked"' ?> /> <?php echo $lang_profile['Show smilies'] ?></label></div>
+<?php if ($pun_config['o_avatars'] == '1'): ?> <div class="radbox"><label for="fld<?php echo ++$pun_page['fld_count'] ?>"><input type="checkbox" id="fld<?php echo $pun_page['fld_count'] ?>" name="form[show_avatars]" value="1"<?php if ($user['show_avatars'] == '1') echo ' checked="checked"' ?> /> <?php echo $lang_profile['Show avatars'] ?></label></div>
+<?php endif; ?> <div class="radbox"><label for="fld<?php echo ++$pun_page['fld_count'] ?>"><input type="checkbox" id="fld<?php echo $pun_page['fld_count'] ?>" name="form[show_img]" value="1"<?php if ($user['show_img'] == '1') echo ' checked="checked"' ?> /> <?php echo $lang_profile['Show images'] ?></label></div>
+ <div class="radbox"><label for="fld<?php echo ++$pun_page['fld_count'] ?>"><input type="checkbox" id="fld<?php echo $pun_page['fld_count'] ?>" name="form[show_img_sig]" value="1"<?php if ($user['show_img_sig'] == '1') echo ' checked="checked"' ?> /> <?php echo $lang_profile['Show images sigs'] ?></label></div>
+ </fieldset>
+<?php if ($pun_config['o_signatures'] == '1'): ?> <fieldset class="frm-group">
+ <legend><span><?php echo $lang_profile['Signature display'] ?></span></legend>
+ <div class="radbox"><label for="fld<?php echo ++$pun_page['fld_count'] ?>"><input type="checkbox" id="fld<?php echo $pun_page['fld_count'] ?>" name="form[show_sig]" value="1"<?php if ($user['show_sig'] == '1') echo ' checked="checked"' ?> /> <?php echo $lang_profile['Show sigs'] ?></label></div>
+ </fieldset>
+<?php ($hook = get_hook('pf_change_details_settings_display_end')) ? eval($hook) : null; ?>
+<?php endif; ?> </fieldset>
+<?php ($hook = get_hook('pf_change_details_settings_pre_pagination_fieldset')) ? eval($hook) : null; ?>
+ <fieldset class="frm-set set<?php echo ++$pun_page['set_count'] ?>">
+ <legend class="frm-legend"><strong><?php echo $lang_profile['Pagination settings'] ?></strong></legend>
+ <div class="frm-fld text">
+ <label for="fld<?php echo ++$pun_page['fld_count'] ?>">
+ <span class="fld-label"><?php echo $lang_profile['Topics per page'] ?></span><br />
+ <span class="fld-input"><input type="text" id="fld<?php echo $pun_page['fld_count'] ?>" name="form[disp_topics]" value="<?php echo $user['disp_topics'] ?>" size="6" maxlength="3" /></span>
+ <span class="fld-extra"><?php echo $lang_profile['Leave blank'] ?></span>
+ </label>
+ </div>
+ <div class="frm-fld text">
+ <label for="fld<?php echo ++$pun_page['fld_count'] ?>">
+ <span class="fld-label"><?php echo $lang_profile['Posts per page'] ?></span><br />
+ <span class="fld-input"><input type="text" id="fld<?php echo $pun_page['fld_count'] ?>" name="form[disp_posts]" value="<?php echo $user['disp_posts'] ?>" size="6" maxlength="3" /></span>
+ <span class="fld-extra"><?php echo $lang_profile['Leave blank'] ?></span>
+ </label>
+ </div>
+<?php ($hook = get_hook('pf_change_details_settings_pagination_end')) ? eval($hook) : null; ?>
+ </fieldset>
+<?php ($hook = get_hook('pf_change_details_settings_pre_other_fieldset')) ? eval($hook) : null; ?>
+ <fieldset class="frm-set set<?php echo ++$pun_page['set_count'] ?>">
+ <legend class="frm-legend"><strong><?php echo $lang_profile['Other settings'] ?></strong></legend>
+ <fieldset class="frm-group">
+ <legend><span><?php echo $lang_profile['E-mail settings'] ?></span></legend>
+ <div class="radbox"><label for="fld<?php echo ++$pun_page['fld_count'] ?>"><input type="radio" id="fld<?php echo $pun_page['fld_count'] ?>" name="form[email_setting]" value="0"<?php if ($user['email_setting'] == '0') echo ' checked="checked"' ?> /> <?php echo $lang_profile['E-mail setting 1'] ?></label></div>
+ <div class="radbox"><label for="fld<?php echo ++$pun_page['fld_count'] ?>"><input type="radio" id="fld<?php echo $pun_page['fld_count'] ?>" name="form[email_setting]" value="1"<?php if ($user['email_setting'] == '1') echo ' checked="checked"' ?> /> <?php echo $lang_profile['E-mail setting 2'] ?></label></div>
+ <div class="radbox"><label for="fld<?php echo ++$pun_page['fld_count'] ?>"><input type="radio" id="fld<?php echo $pun_page['fld_count'] ?>" name="form[email_setting]" value="2"<?php if ($user['email_setting'] == '2') echo ' checked="checked"' ?> /> <?php echo $lang_profile['E-mail setting 3'] ?></label></div>
+ </fieldset>
+ <fieldset class="frm-group">
+ <legend><span><?php echo $lang_profile['Subscription settings'] ?></span></legend>
+ <div class="radbox"><label for="fld<?php echo ++$pun_page['fld_count'] ?>"><input type="checkbox" id="fld<?php echo $pun_page['fld_count'] ?>" name="form[notify_with_post]" value="1"<?php if ($user['notify_with_post'] == '1') echo ' checked="checked"' ?> /> <?php echo $lang_profile['Notify full'] ?></label></div>
+ <div class="radbox"><label for="fld<?php echo ++$pun_page['fld_count'] ?>"><input type="checkbox" id="fld<?php echo $pun_page['fld_count'] ?>" name="form[auto_notify]" value="1"<?php if ($user['auto_notify'] == '1') echo ' checked="checked"' ?> /> <?php echo $lang_profile['Subscribe by default'] ?></label></div>
+ </fieldset>
+ <div class="checkbox radbox">
+ <label for="fld<?php echo ++$pun_page['fld_count'] ?>"><span class="fld-label"><?php echo $lang_profile['Persistent login'] ?></span><br /><input type="checkbox" id="fld<?php echo $pun_page['fld_count'] ?>" name="form[save_pass]" value="1"<?php if ($user['save_pass'] == '1') echo ' checked="checked"' ?> /> <?php echo $lang_profile['Save user/pass'] ?></label>
+ </div>
+<?php ($hook = get_hook('pf_change_details_settings_other_end')) ? eval($hook) : null; ?>
+ </fieldset>
+<?php ($hook = get_hook('pf_change_details_settings_post_other_fieldset')) ? eval($hook) : null; ?>
+ <div class="frm-buttons">
+ <span class="submit"><input type="submit" name="update" value="<?php echo $lang_profile['Update profile'] ?>" /> <?php echo $lang_profile['Instructions'] ?></span>
+ </div>
+ </form>
+ </div>
+
+</div>
+<?php
+
+ require PUN_ROOT.'footer.php';
+ }
+
+ else if ($section == 'signature')
+ {
+ $pun_page['sig_info'][] = '<li>'.$lang_profile['Signature info'].'</li>';
+
+ if ($user['signature'] != '')
+ $pun_page['sig_demo'] = $parsed_signature;
+
+ // Setup the form
+ $pun_page['set_count'] = $pun_page['fld_count'] = 0;
+ $pun_page['form_action'] = pun_link($pun_url['profile_signature'], $id);
+
+ $pun_page['hidden_fields'][] = '<input type="hidden" name="form_sent" value="1" />';
+ if ($pun_user['is_admmod'])
+ $pun_page['hidden_fields'][] = '<input type="hidden" name="csrf_token" value="'.generate_form_token($pun_page['form_action']).'" />';
+
+ // Setup help
+ $pun_page['main_head_options'] = array();
+ if ($pun_config['p_message_bbcode'] == '1')
+ $pun_page['main_head_options'][] = '<a class="exthelp" href="'.pun_link($pun_url['help'], 'bbcode').'" title="'.sprintf($lang_common['Help page'], $lang_common['BBCode']).'"><span>'.$lang_common['BBCode'].'</span></a>';
+ if ($pun_config['p_message_img_tag'] == '1')
+ $pun_page['main_head_options'][] = '<a class="exthelp" href="'.pun_link($pun_url['help'], 'img').'" title="'.sprintf($lang_common['Help page'], $lang_common['Images']).'"><span>'.$lang_common['Images'].'</span></a>';
+ if ($pun_config['o_smilies'] == '1')
+ $pun_page['main_head_options'][] = '<a class="exthelp" href="'.pun_link($pun_url['help'], 'smilies').'" title="'.sprintf($lang_common['Help page'], $lang_common['Smilies']).'"><span>'.$lang_common['Smilies'].'</span></a>';
+
+ ($hook = get_hook('pf_change_details_signature_pre_header_load')) ? eval($hook) : null;
+
+ define('PUN_PAGE', 'profile-signature');
+ require PUN_ROOT.'header.php';
+
+?>
+<div id="pun-main" class="main sectioned">
+
+ <h1><span><?php echo end($pun_page['crumbs']) ?></span></h1>
+
+<?php generate_profile_menu(); ?>
+
+ <div class="main-head">
+ <h2><span><span><?php echo $lang_profile['Section signature'] ?>:</span> <?php printf($lang_profile['Sig settings'], strtolower($lang_profile['Section signature'])) ?></span></h2>
+<?php if (!empty($pun_page['main_head_options'])) echo "\t\t\t".'<p class="main-options">'.sprintf($lang_common['You may use'], implode(' ', $pun_page['main_head_options'])).'</p>'."\n" ?>
+ </div>
+
+ <div class="main-content frm">
+ <form class="frm-form" method="post" accept-charset="utf-8" action="<?php echo $pun_page['form_action'] ?>">
+ <div class="hidden">
+ <?php echo implode("\n\t\t\t\t", $pun_page['hidden_fields'])."\n" ?>
+ </div>
+<?php ($hook = get_hook('pf_change_details_signature_pre_fieldset')) ? eval($hook) : null; ?>
+ <fieldset class="frm-set set<?php echo ++$pun_page['set_count'] ?>">
+ <legend class="frm-legend"><strong><?php echo $lang_profile['Signature'] ?></strong></legend>
+<?php ($hook = get_hook('pf_change_details_signature_fieldset_start')) ? eval($hook) : null; ?>
+ <div class="frm-fld text textarea">
+ <label for="fld<?php echo ++$pun_page['fld_count'] ?>">
+ <span class="fld-label"><?php echo $lang_profile['Compose signature'] ?></span><br />
+ <span class="fld-input">
+ <textarea id="fld<?php echo $pun_page['fld_count'] ?>" name="signature" rows="4" cols="65"><?php echo htmlspecialchars($user['signature']) ?></textarea></span><br />
+ <span class="fld-help"><?php printf($lang_profile['Sig max size'], $pun_config['p_sig_length'], $pun_config['p_sig_lines']) ?></span>
+ </label>
+ </div>
+ </fieldset>
+<?php if (isset($pun_page['sig_demo'])): ?> <div class="sig-demo">
+ <?php echo $pun_page['sig_demo']."\n" ?>
+ </div>
+<?php endif; ($hook = get_hook('pf_change_details_signature_pre_buttons')) ? eval($hook) : null; ?> <div class="frm-buttons">
+ <span class="submit"><input type="submit" name="update" value="<?php echo $lang_profile['Update profile'] ?>" /> <?php echo $lang_profile['Instructions'] ?></span>
+ </div>
+ </form>
+ </div>
+
+</div>
+<?php
+
+ require PUN_ROOT.'footer.php';
+ }
+
+ else if ($section == 'avatar' && $pun_config['o_avatars'] == '1')
+ {
+ if ($pun_page['img_size'] = @getimagesize($pun_config['o_avatars_dir'].'/'.$id.'.gif'))
+ $pun_page['avatar_format'] = 'gif';
+ else if ($pun_page['img_size'] = @getimagesize($pun_config['o_avatars_dir'].'/'.$id.'.jpg'))
+ $pun_page['avatar_format'] = 'jpg';
+ else if ($pun_page['img_size'] = @getimagesize($pun_config['o_avatars_dir'].'/'.$id.'.png'))
+ $pun_page['avatar_format'] = 'png';
+ else
+ $pun_page['avatar_format'] = '';
+
+ // Setup the form
+ $pun_page['set_count'] = $pun_page['fld_count'] = 0;
+ $pun_page['form_action'] = pun_link($pun_url['profile_avatar'], $id);
+
+ $pun_page['hidden_fields'] = array(
+ '<input type="hidden" name="form_sent" value="1" />',
+ '<input type="hidden" name="MAX_FILE_SIZE" value="'.$pun_config['o_avatars_size'].'" />'
+ );
+ if ($pun_user['is_admmod'])
+ $pun_page['hidden_fields'][] = '<input type="hidden" name="csrf_token" value="'.generate_form_token($pun_page['form_action']).'" />';
+
+ // Setup form information
+ $pun_page['frm_info'] = array();
+
+ if ($pun_page['avatar_format'] != '')
+ {
+ $pun_page['frm_info'][] = '<li><span>'.$lang_profile['Avatar info change'].'</span></li>';
+ $pun_page['frm_info'][] = '<li><span>'.$lang_profile['Avatar info type'].'</span></li>';
+ $pun_page['frm_info'][] = '<li><span>'.sprintf($lang_profile['Avatar info size'], $pun_config['o_avatars_width'], $pun_config['o_avatars_height'], $pun_config['o_avatars_size'], ceil($pun_config['o_avatars_size'] / 1024)).'</span></li>';
+ $pun_page['avatar_demo'] = '<img src="'.$base_url.'/'.$pun_config['o_avatars_dir'].'/'.$id.'.'.$pun_page['avatar_format'].'" '.$pun_page['img_size'][3].' alt="'.$lang_profile['Avatar'].'" />';
+ }
+ else
+ {
+ $pun_page['frm_info'][] = '<li><span>'.$lang_profile['Avatar info none'].'</span></li>';
+ $pun_page['frm_info'][] = '<li><span>'.sprintf($lang_profile['Avatar info size'], $pun_config['o_avatars_width'], $pun_config['o_avatars_height'], $pun_config['o_avatars_size'], ceil($pun_config['o_avatars_size'] / 1024)).'</span></li>';
+ }
+
+ ($hook = get_hook('pf_change_details_avatar_pre_header_load')) ? eval($hook) : null;
+
+ define('PUN_PAGE', 'profile-avatar');
+ require PUN_ROOT.'header.php';
+
+?>
+<div id="pun-main" class="main sectioned">
+
+ <h1><span><?php echo end($pun_page['crumbs']) ?></span></h1>
+
+<?php generate_profile_menu(); ?>
+
+ <div class="main-head">
+ <h2><span><span><?php echo $lang_profile['Section avatar'] ?>:</span> <?php printf($lang_profile['Avatar settings'], strtolower($lang_profile['Section avatar'])) ?></span></h2>
+ </div>
+
+ <div class="main-content frm">
+ <div class="frm-info<?php echo ($pun_page['avatar_format'] != '') ? ' av-preview' : '' ?>">
+ <?php echo (isset($pun_page['avatar_demo'])) ? $pun_page['avatar_demo']."\n" : ''."\n" ?>
+ <ul>
+ <?php echo implode("\n\t\t\t\t", $pun_page['frm_info'])."\n\t\t\t" ?>
+ </ul>
+ </div>
+ <div id="req-msg" class="frm-warn">
+ <p class="important"><?php printf($lang_common['Required warn'], '<em class="req-text">'.$lang_common['Required'].'</em>') ?></p>
+ </div>
+ <form class="frm-form" method="post" accept-charset="utf-8" action="<?php echo $pun_page['form_action'] ?>" enctype="multipart/form-data">
+ <div class="hidden">
+ <?php echo implode("\n\t\t\t\t", $pun_page['hidden_fields'])."\n" ?>
+ </div>
+<?php if ($pun_page['avatar_format'] != ''): ?> <div class="frm-set set<?php echo ++$pun_page['set_count'] ?>">
+ <p class="frm-fld link"><span class="fld-label"><a href="<?php echo pun_link($pun_url['delete_avatar'], $id) ?>"><?php echo $lang_profile['Delete avatar'] ?></a>:</span> <span class="fm-input"><?php echo $lang_profile['Avatar info remove'] ?></span></p>
+ </div>
+<?php endif; ?> <fieldset class="frm-set set<?php echo ++$pun_page['set_count'] ?>">
+ <legend class="frm-legend"><strong><?php echo $lang_profile['Avatar'] ?></strong></legend>
+<?php ($hook = get_hook('pf_change_details_avatar_fieldset_start')) ? eval($hook) : null; ?>
+ <div class="frm-fld text required">
+ <label for="fld<?php echo ++$pun_page['fld_count'] ?>">
+ <span class="fld-label"><?php echo $lang_profile['Upload avatar file'] ?></span><br />
+ <span class="fld-input"><input id="fld<?php echo $pun_page['fld_count'] ?>" name="req_file" type="file" size="40" /></span>
+ <em class="req-text"><?php echo $lang_common['Required'] ?></em>
+ </label>
+ </div>
+<?php ($hook = get_hook('pf_change_details_avatar_fieldset_end')) ? eval($hook) : null; ?>
+ </fieldset>
+<?php ($hook = get_hook('pf_change_details_avatar_post_fieldset')) ? eval($hook) : null; ?>
+ <div class="frm-buttons">
+ <span class="submit"><input type="submit" name="update" value="<?php echo $lang_profile['Update profile'] ?>" /> <?php echo $lang_profile['Instructions'] ?></span>
+ </div>
+ </form>
+ </div>
+
+</div>
+<?php
+
+ require PUN_ROOT.'footer.php';
+ }
+
+ else if ($section == 'admin')
+ {
+ if ($pun_user['g_id'] != PUN_ADMIN && ($pun_user['g_moderator'] != '1' || $pun_user['g_mod_ban_users'] == '0'))
+ message($lang_common['Bad request']);
+
+ $pun_page['user_actions'] = array();
+ $pun_page['user_management'] = array();
+
+ if ($pun_user['g_moderator'] == '1')
+ {
+ $pun_page['user_actions'][] = '<li class="frm-fld link"><span class="fld-label"><a href="'.pun_link($pun_url['admin_bans']).'&add_ban='.$id.'">'.$lang_profile['Ban user'].'</a>:</span> <span class="fld-input">'.$lang_profile['Ban user info'].'</span></li>';
+ $pun_page['user_management'][] = '<li><span>'.$lang_profile['Manage ban'].'</span></li>';
+ }
+ else if ($pun_user['g_moderator'] != '1' && $user['g_id'] != PUN_ADMIN )
+ {
+ $pun_page['user_actions'][] = '<li class="frm-fld link"><span class="fld-label"><a href="'.pun_link($pun_url['admin_bans']).'&add_ban='.$id.'">'.$lang_profile['Ban user'].'</a>:</span> <span class="fld-input">'.$lang_profile['Ban user info'].'</span></li>';
+ $pun_page['user_actions'][] = '<li class="frm-fld link"><span class="fld-label"><a href="'.pun_link($pun_url['delete_user'], $id).'">'.$lang_profile['Delete user'].'</a>:</span> <span class="fld-input">'.$lang_profile['Delete user info'].'</span></li>';
+ $pun_page['user_management'][] = '<li><span>'.$lang_profile['Manage ban'].'</span></li>';
+ $pun_page['user_management'][] = '<li><span>'.$lang_profile['Manage delete'].'</span></li>';
+ }
+
+ if ($pun_user['g_moderator'] != '1' && $pun_user['id'] != $id && $user['g_id'] == PUN_ADMIN )
+ $pun_page['user_management'][] = '<li><span>'.$lang_profile['Manage groups'].'</span></li>';
+
+ // Setup form
+ $pun_page['fld_count'] = $pun_page['set_count'] = 0;
+ $pun_page['form_action'] = pun_link($pun_url['profile_admin'], $id);
+
+ $pun_page['hidden_fields'][] = '<input type="hidden" name="form_sent" value="1" />';
+ if ($pun_user['is_admmod'])
+ $pun_page['hidden_fields'][] = '<input type="hidden" name="csrf_token" value="'.generate_form_token($pun_page['form_action']).'" />';
+
+ ($hook = get_hook('pf_change_details_admin_pre_header_load')) ? eval($hook) : null;
+
+ define('PUN_PAGE', 'profile-admin');
+ require PUN_ROOT.'header.php';
+
+?>
+<div id="pun-main" class="main sectioned">
+
+ <h1><span><?php echo end($pun_page['crumbs']) ?></span></h1>
+
+<?php generate_profile_menu(); ?>
+
+ <div class="main-head">
+ <h2><span><span><?php echo $lang_profile['Section admin'] ?>:</span> <?php printf($lang_profile['Admin settings'], strtolower($lang_profile['Section admin'])) ?></span></h2>
+ </div>
+
+ <div class="main-content frm">
+<?php if (!empty($pun_page['user_management'])): ?> <div class="frm-info">
+ <h3><?php echo $lang_profile['User management'] ?></h3>
+ <ul>
+ <?php echo implode("\n\t\t\t\t", $pun_page['user_management'])."\n" ?>
+ </ul>
+ </div>
+<?php endif; ?> <form class="frm-form" method="post" accept-charset="utf-8" action="<?php echo $pun_page['form_action'] ?>">
+ <div class="hidden">
+ <?php echo implode("\n\t\t\t\t", $pun_page['hidden_fields'])."\n" ?>
+ </div>
+<?php if (!empty($pun_page['user_actions'])): ?> <ul class="frm-set set<?php echo ++$pun_page['set_count'] ?>">
+ <?php echo implode("\n\t\t\t\t", $pun_page['user_actions'])."\n" ?>
+ </ul>
+<?php endif;
+
+ ($hook = get_hook('pf_change_details_admin_pre_group_membership')) ? eval($hook) : null;
+
+ if ($pun_user['g_moderator'] != '1')
+ {
+ if ($pun_user['id'] != $id)
+ {
+
+?>
+ <fieldset class="frm-set set<?php echo ++$pun_page['set_count'] ?>">
+ <legend class="frm-legend"><strong><?php echo $lang_profile['Group membership'] ?></strong></legend>
+ <div class="frm-fld select">
+ <label for="fld<?php echo ++$pun_page['fld_count'] ?>">
+ <span class="fld-label"><?php echo $lang_profile['User group'] ?></span><br />
+ <span class="fld-input"><select id="fld<?php echo $pun_page['fld_count'] ?>" name="group_id">
+<?php
+
+ $query = array(
+ 'SELECT' => 'g.g_id, g.g_title',
+ 'FROM' => 'groups AS g',
+ 'WHERE' => 'g.g_id!='.PUN_GUEST,
+ 'ORDER BY' => 'g.g_title'
+ );
+
+ ($hook = get_hook('pf_qr_get_groups')) ? eval($hook) : null;
+ $result = $pun_db->query_build($query) or error(__FILE__, __LINE__);
+ while ($cur_group = $pun_db->fetch_assoc($result))
+ {
+ if ($cur_group['g_id'] == $user['g_id'] || ($cur_group['g_id'] == $pun_config['o_default_user_group'] && $user['g_id'] == ''))
+ echo "\t\t\t\t\t\t\t".'<option value="'.$cur_group['g_id'].'" selected="selected">'.htmlspecialchars($cur_group['g_title']).'</option>'."\n";
+ else
+ echo "\t\t\t\t\t\t\t".'<option value="'.$cur_group['g_id'].'">'.htmlspecialchars($cur_group['g_title']).'</option>'."\n";
+ }
+
+?>
+ </select></span>
+ </label>
+ <input type="submit" name="update_group_membership" value="<?php echo $lang_profile['Save'] ?>" />
+ </div>
+ </fieldset>
+<?php if ($user['g_id'] != PUN_ADMIN && $user['g_moderator'] != '1'): ?> <div class="frm-buttons">
+ <span><?php echo $lang_profile['Instructions'] ?></span>
+ </div>
+<?php endif;
+
+ }
+
+ if ($user['g_id'] == PUN_ADMIN || $user['g_moderator'] == '1')
+ {
+ $pun_page['set_count'] = 0;
+
+?>
+ <div class="frm-info">
+ <h3><?php echo $lang_profile['Moderator assignment'] ?></h3>
+ <ul>
+ <li><span><?php echo $lang_profile['Moderator in info'] ?></span></li>
+ <li><span><?php echo $lang_profile['Moderator in info 2'] ?></span></li>
+ </ul>
+ </div>
+ <fieldset class="frm-set set<?php echo ++$pun_page['set_count'] ?>">
+<?php
+
+ $query = array(
+ 'SELECT' => 'c.id AS cid, c.cat_name, f.id AS fid, f.forum_name, f.moderators',
+ 'FROM' => 'categories AS c',
+ 'JOINS' => array(
+ array(
+ 'INNER JOIN' => 'forums AS f',
+ 'ON' => 'c.id=f.cat_id'
+ )
+ ),
+ 'WHERE' => 'f.redirect_url IS NULL',
+ 'ORDER BY' => 'c.disp_position, c.id, f.disp_position'
+ );
+
+ ($hook = get_hook('pf_qr_get_cats_and_forums')) ? eval($hook) : null;
+ $result = $pun_db->query_build($query) or error(__FILE__, __LINE__);
+
+ $cur_category = 0;
+ while ($cur_forum = $pun_db->fetch_assoc($result))
+ {
+ if ($cur_forum['cid'] != $cur_category) // A new category since last iteration?
+ {
+ if ($cur_category)
+ echo "\n\t\t\t\t\t".'</fieldset>'."\n";
+
+ echo "\t\t\t\t".'<fieldset class="frm-group">'."\n\t\t\t\t\t".'<legend><span>'.$cur_forum['cat_name'].':</span></legend>'."\n";
+ $cur_category = $cur_forum['cid'];
+ }
+
+ $moderators = ($cur_forum['moderators'] != '') ? unserialize($cur_forum['moderators']) : array();
+
+ echo "\t\t\t\t\t".'<div class="radbox"><label for="fld'.(++$pun_page['fld_count']).'"><input type="checkbox" id="fld'.$pun_page['fld_count'].'" name="moderator_in['.$cur_forum['fid'].']" value="1"'.((in_array($id, $moderators)) ? ' checked="checked"' : '').' /> '.htmlspecialchars($cur_forum['forum_name']).'</label></div>'."\n";
+ }
+
+?>
+ </fieldset>
+ </fieldset>
+ <div class="frm-buttons">
+ <span class="submit"><input type="submit" name="update_forums" value="<?php echo $lang_profile['Update forums'] ?>" /> <?php echo $lang_profile['Instructions'] ?></span>
+ </div>
+<?php
+
+ }
+ }
+
+ ($hook = get_hook('pf_change_details_admin_form_end')) ? eval($hook) : null;
+
+?>
+ </form>
+ </div>
+
+</div>
+<?php
+
+ require PUN_ROOT.'footer.php';
+ }
+
+ ($hook = get_hook('pf_change_details_new_section')) ? eval($hook) : null;
+
+ message($lang_common['Bad request']);
+}