2010-07-01 19:48:07 -04:00
|
|
|
<?php
|
|
|
|
|
|
|
|
|
|
|
|
function settings_init(&$a) {
|
2010-09-08 23:14:17 -04:00
|
|
|
if(local_user()) {
|
|
|
|
require_once("mod/profile.php");
|
|
|
|
profile_load($a,$a->user['nickname']);
|
2010-07-01 19:48:07 -04:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
function settings_post(&$a) {
|
|
|
|
|
2010-07-20 01:52:31 -04:00
|
|
|
if(! local_user()) {
|
2010-08-08 02:54:22 -04:00
|
|
|
notice( t('Permission denied.') . EOL);
|
2010-07-01 19:48:07 -04:00
|
|
|
return;
|
|
|
|
}
|
2010-09-08 23:14:17 -04:00
|
|
|
if(count($a->user) && x($a->user,'uid') && $a->user['uid'] != get_uid()) {
|
2010-08-08 02:54:22 -04:00
|
|
|
notice( t('Permission denied.') . EOL);
|
2010-07-01 19:48:07 -04:00
|
|
|
return;
|
|
|
|
}
|
2010-08-20 01:18:06 -04:00
|
|
|
if((x($_POST,'npassword')) || (x($_POST,'confirm'))) {
|
2010-07-01 19:48:07 -04:00
|
|
|
|
2010-08-20 01:18:06 -04:00
|
|
|
$newpass = trim($_POST['npassword']);
|
2010-07-01 19:48:07 -04:00
|
|
|
$confirm = trim($_POST['confirm']);
|
|
|
|
|
|
|
|
$err = false;
|
|
|
|
if($newpass != $confirm ) {
|
2010-08-08 02:54:22 -04:00
|
|
|
notice( t('Passwords do not match. Password unchanged.') . EOL);
|
2010-07-01 19:48:07 -04:00
|
|
|
$err = true;
|
|
|
|
}
|
|
|
|
|
|
|
|
if((! x($newpass)) || (! x($confirm))) {
|
2010-08-08 02:54:22 -04:00
|
|
|
notice( t('Empty passwords are not allowed. Password unchanged.') . EOL);
|
2010-07-01 19:48:07 -04:00
|
|
|
$err = true;
|
|
|
|
}
|
|
|
|
|
|
|
|
if(! $err) {
|
|
|
|
$password = hash('whirlpool',$newpass);
|
|
|
|
$r = q("UPDATE `user` SET `password` = '%s' WHERE `uid` = %d LIMIT 1",
|
|
|
|
dbesc($password),
|
2010-09-08 23:52:43 -04:00
|
|
|
intval(get_uid())
|
|
|
|
);
|
2010-07-01 19:48:07 -04:00
|
|
|
if($r)
|
2010-08-08 02:54:22 -04:00
|
|
|
notice( t('Password changed.') . EOL);
|
2010-07-01 19:48:07 -04:00
|
|
|
else
|
2010-08-08 02:54:22 -04:00
|
|
|
notice( t('Password update failed. Please try again.') . EOL);
|
2010-07-01 19:48:07 -04:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2010-09-08 23:14:17 -04:00
|
|
|
$theme = notags(trim($_POST['theme']));
|
|
|
|
$username = notags(trim($_POST['username']));
|
|
|
|
$email = notags(trim($_POST['email']));
|
|
|
|
$timezone = notags(trim($_POST['timezone']));
|
|
|
|
$defloc = notags(trim($_POST['defloc']));
|
2010-07-01 19:48:07 -04:00
|
|
|
|
2010-09-08 23:14:17 -04:00
|
|
|
$publish = (($_POST['profile_in_directory'] == 1) ? 1: 0);
|
|
|
|
$net_publish = (($_POST['profile_in_netdirectory'] == 1) ? 1: 0);
|
|
|
|
$old_visibility = ((intval($_POST['visibility']) == 1) ? 1 : 0);
|
2010-08-20 01:04:18 -04:00
|
|
|
|
2010-08-14 10:55:18 -04:00
|
|
|
$notify = 0;
|
|
|
|
|
|
|
|
if($_POST['notify1'])
|
|
|
|
$notify += intval($_POST['notify1']);
|
|
|
|
if($_POST['notify2'])
|
|
|
|
$notify += intval($_POST['notify2']);
|
|
|
|
if($_POST['notify3'])
|
|
|
|
$notify += intval($_POST['notify3']);
|
|
|
|
if($_POST['notify4'])
|
|
|
|
$notify += intval($_POST['notify4']);
|
|
|
|
if($_POST['notify5'])
|
|
|
|
$notify += intval($_POST['notify5']);
|
|
|
|
|
2010-07-01 19:48:07 -04:00
|
|
|
$email_changed = false;
|
2010-09-08 23:14:17 -04:00
|
|
|
|
2010-07-01 19:48:07 -04:00
|
|
|
$err = '';
|
|
|
|
|
|
|
|
if($username != $a->user['username']) {
|
|
|
|
if(strlen($username) > 40)
|
2010-08-08 02:54:22 -04:00
|
|
|
$err .= t(' Please use a shorter name.');
|
2010-07-01 19:48:07 -04:00
|
|
|
if(strlen($username) < 3)
|
2010-08-08 02:54:22 -04:00
|
|
|
$err .= t(' Name too short.');
|
2010-07-01 19:48:07 -04:00
|
|
|
}
|
|
|
|
if($email != $a->user['email']) {
|
|
|
|
$email_changed = true;
|
|
|
|
if(!eregi('[A-Za-z0-9._%-]+@[A-Za-z0-9._%-]+\.[A-Za-z]{2,6}',$email))
|
2010-08-08 02:54:22 -04:00
|
|
|
$err .= t(' Not valid email.');
|
2010-07-01 19:48:07 -04:00
|
|
|
$r = q("SELECT `uid` FROM `user`
|
|
|
|
WHERE `email` = '%s' LIMIT 1",
|
|
|
|
dbesc($email)
|
|
|
|
);
|
|
|
|
if($r !== NULL && count($r))
|
2010-08-08 02:54:22 -04:00
|
|
|
$err .= t(' This email address is already registered.');
|
2010-07-01 19:48:07 -04:00
|
|
|
}
|
|
|
|
|
|
|
|
if(strlen($err)) {
|
2010-08-08 02:54:22 -04:00
|
|
|
notice($err . EOL);
|
2010-07-01 19:48:07 -04:00
|
|
|
return;
|
|
|
|
}
|
|
|
|
if($timezone != $a->user['timezone']) {
|
|
|
|
if(strlen($timezone))
|
|
|
|
date_default_timezone_set($timezone);
|
|
|
|
}
|
2010-08-08 02:54:22 -04:00
|
|
|
|
|
|
|
|
2010-09-08 23:14:17 -04:00
|
|
|
$str_group_allow = perms2str($_POST['group_allow']);
|
|
|
|
$str_contact_allow = perms2str($_POST['contact_allow']);
|
|
|
|
$str_group_deny = perms2str($_POST['group_deny']);
|
|
|
|
$str_contact_deny = perms2str($_POST['contact_deny']);
|
2010-08-08 02:54:22 -04:00
|
|
|
|
2010-08-21 19:31:46 -04:00
|
|
|
$r = q("UPDATE `user` SET `username` = '%s', `email` = '%s', `timezone` = '%s', `allow_cid` = '%s', `allow_gid` = '%s', `deny_cid` = '%s', `deny_gid` = '%s', `notify-flags` = %d, `default-location` = '%s', `theme` = '%s' WHERE `uid` = %d LIMIT 1",
|
2010-07-01 19:48:07 -04:00
|
|
|
dbesc($username),
|
|
|
|
dbesc($email),
|
|
|
|
dbesc($timezone),
|
2010-08-08 02:54:22 -04:00
|
|
|
dbesc($str_contact_allow),
|
|
|
|
dbesc($str_group_allow),
|
|
|
|
dbesc($str_contact_deny),
|
|
|
|
dbesc($str_group_deny),
|
2010-08-14 10:55:18 -04:00
|
|
|
intval($notify),
|
2010-08-21 19:31:46 -04:00
|
|
|
dbesc($defloc),
|
2010-08-16 08:23:26 -04:00
|
|
|
dbesc($theme),
|
2010-09-08 23:14:17 -04:00
|
|
|
intval(get_uid())
|
2010-08-08 02:54:22 -04:00
|
|
|
);
|
|
|
|
if($r)
|
|
|
|
notice( t('Settings updated.') . EOL);
|
2010-08-20 01:04:18 -04:00
|
|
|
|
|
|
|
$r = q("UPDATE `profile`
|
|
|
|
SET `publish` = %d, `net-publish` = %d
|
|
|
|
WHERE `is-default` = 1 AND `uid` = %d LIMIT 1",
|
|
|
|
intval($publish),
|
|
|
|
intval($net_publish),
|
2010-09-08 23:14:17 -04:00
|
|
|
intval(get_uid())
|
2010-08-20 01:04:18 -04:00
|
|
|
);
|
|
|
|
|
|
|
|
if($old_visibility != $net_publish) {
|
|
|
|
// Update global directory in background
|
|
|
|
$php_path = ((strlen($a->config['php_path'])) ? $a->config['php_path'] : 'php');
|
|
|
|
$url = $_SESSION['my_url'];
|
|
|
|
if($url && strlen(get_config('system','directory_submit_url')))
|
|
|
|
proc_close(proc_open("\"$php_path\" \"include/directory.php\" \"$url\" &",
|
|
|
|
array(),$foo));
|
|
|
|
}
|
|
|
|
|
2010-08-16 08:23:26 -04:00
|
|
|
$_SESSION['theme'] = $theme;
|
2010-07-01 19:48:07 -04:00
|
|
|
if($email_changed && $a->config['register_policy'] == REGISTER_VERIFY) {
|
|
|
|
|
|
|
|
// FIXME - set to un-verified, blocked and redirect to logout
|
|
|
|
|
|
|
|
}
|
2010-07-06 00:39:55 -04:00
|
|
|
|
2010-08-16 08:23:26 -04:00
|
|
|
goaway($a->get_baseurl() . '/settings' );
|
2010-09-08 23:14:17 -04:00
|
|
|
return; // NOTREACHED
|
2010-07-01 19:48:07 -04:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
if(! function_exists('settings_content')) {
|
|
|
|
function settings_content(&$a) {
|
|
|
|
|
2010-07-30 09:09:20 -04:00
|
|
|
if(! local_user()) {
|
|
|
|
notice( t('Permission denied.') . EOL );
|
2010-07-01 19:48:07 -04:00
|
|
|
return;
|
|
|
|
}
|
|
|
|
|
2010-07-30 09:09:20 -04:00
|
|
|
require_once('view/acl_selectors.php');
|
2010-07-01 19:48:07 -04:00
|
|
|
|
2010-08-20 01:04:18 -04:00
|
|
|
$p = q("SELECT * FROM `profile` WHERE `is-default` = 1 AND `uid` = %d LIMIT 1",
|
|
|
|
intval($_SESSION['uid'])
|
|
|
|
);
|
|
|
|
if(count($p))
|
|
|
|
$profile = $p[0];
|
|
|
|
|
2010-07-01 19:48:07 -04:00
|
|
|
$username = $a->user['username'];
|
|
|
|
$email = $a->user['email'];
|
|
|
|
$nickname = $a->user['nickname'];
|
|
|
|
$timezone = $a->user['timezone'];
|
2010-08-14 10:55:18 -04:00
|
|
|
$notify = $a->user['notify-flags'];
|
2010-08-21 19:31:46 -04:00
|
|
|
$defloc = $a->user['default-location'];
|
2010-07-01 19:48:07 -04:00
|
|
|
|
2010-08-16 08:23:26 -04:00
|
|
|
if(! strlen($a->user['timezone']))
|
|
|
|
$timezone = date_default_timezone_get();
|
2010-07-20 01:52:31 -04:00
|
|
|
|
2010-08-20 01:04:18 -04:00
|
|
|
|
|
|
|
$opt_tpl = file_get_contents("view/profile-in-directory.tpl");
|
|
|
|
$profile_in_dir = replace_macros($opt_tpl,array(
|
2010-09-08 23:14:17 -04:00
|
|
|
'$yes_selected' => (($profile['publish']) ? " checked=\"checked\" " : ""),
|
|
|
|
'$no_selected' => (($profile['publish'] == 0) ? " checked=\"checked\" " : "")
|
2010-08-20 01:04:18 -04:00
|
|
|
));
|
|
|
|
|
|
|
|
if(strlen(get_config('system','directory_submit_url'))) {
|
|
|
|
$opt_tpl = file_get_contents("view/profile-in-netdir.tpl");
|
|
|
|
|
|
|
|
$profile_in_net_dir = replace_macros($opt_tpl,array(
|
2010-09-08 23:14:17 -04:00
|
|
|
'$yes_selected' => (($profile['net-publish']) ? " checked=\"checked\" " : ""),
|
|
|
|
'$no_selected' => (($profile['net-publish'] == 0) ? " checked=\"checked\" " : "")
|
2010-08-20 01:04:18 -04:00
|
|
|
));
|
|
|
|
}
|
|
|
|
else
|
|
|
|
$profile_in_net_dir = '';
|
|
|
|
|
2010-07-20 01:52:31 -04:00
|
|
|
$nickname_block = file_get_contents("view/settings_nick_set.tpl");
|
|
|
|
|
|
|
|
$nickname_subdir = '';
|
|
|
|
if(strlen($a->get_path())) {
|
|
|
|
$subdir_tpl = file_get_contents('view/settings_nick_subdir.tpl');
|
|
|
|
$nickname_subdir = replace_macros($subdir_tpl, array(
|
|
|
|
'$baseurl' => $a->get_baseurl(),
|
|
|
|
'$nickname' => $nickname,
|
|
|
|
'$hostname' => $a->get_hostname()
|
|
|
|
));
|
|
|
|
}
|
|
|
|
|
2010-08-16 08:23:26 -04:00
|
|
|
$theme_selector = '<select name="theme" id="theme-select" >';
|
|
|
|
$files = glob('view/theme/*');
|
|
|
|
if($files) {
|
|
|
|
foreach($files as $file) {
|
|
|
|
$f = basename($file);
|
|
|
|
$selected = (($f == $_SESSION['theme']) || ($f == 'default' && (! x($_SESSION,'theme')))
|
|
|
|
? ' selected="selected" ' : '' );
|
|
|
|
$theme_selector .= '<option val="' . basename($file) . '"' . $selected . '>' . basename($file) . '</option>';
|
|
|
|
}
|
|
|
|
}
|
|
|
|
$theme_selector .= '</select>';
|
|
|
|
|
2010-07-01 19:48:07 -04:00
|
|
|
|
|
|
|
$nickname_block = replace_macros($nickname_block,array(
|
|
|
|
'$nickname' => $nickname,
|
2010-07-08 23:25:05 -04:00
|
|
|
'$uid' => $_SESSION['uid'],
|
2010-07-20 01:52:31 -04:00
|
|
|
'$subdir' => $nickname_subdir,
|
|
|
|
'$basepath' => $a->get_hostname(),
|
2010-07-01 19:48:07 -04:00
|
|
|
'$baseurl' => $a->get_baseurl()));
|
|
|
|
|
|
|
|
$o = file_get_contents('view/settings.tpl');
|
|
|
|
|
|
|
|
$o = replace_macros($o,array(
|
|
|
|
'$baseurl' => $a->get_baseurl(),
|
|
|
|
'$uid' => $_SESSION['uid'],
|
|
|
|
'$username' => $username,
|
|
|
|
'$email' => $email,
|
|
|
|
'$nickname_block' => $nickname_block,
|
|
|
|
'$timezone' => $timezone,
|
2010-07-30 09:09:20 -04:00
|
|
|
'$zoneselect' => select_timezone($timezone),
|
2010-08-21 19:31:46 -04:00
|
|
|
'$defloc' => $defloc,
|
2010-08-20 01:04:18 -04:00
|
|
|
'$profile_in_dir' => $profile_in_dir,
|
|
|
|
'$profile_in_net_dir' => $profile_in_net_dir,
|
2010-08-08 02:54:22 -04:00
|
|
|
'$permissions' => t('Default Post Permissions'),
|
2010-08-20 01:04:18 -04:00
|
|
|
'$visibility' => $profile['net-publish'],
|
2010-08-14 10:55:18 -04:00
|
|
|
'$aclselect' => populate_acl($a->user),
|
|
|
|
'$sel_notify1' => (($notify & NOTIFY_INTRO) ? ' checked="checked" ' : ''),
|
|
|
|
'$sel_notify2' => (($notify & NOTIFY_CONFIRM) ? ' checked="checked" ' : ''),
|
|
|
|
'$sel_notify3' => (($notify & NOTIFY_WALL) ? ' checked="checked" ' : ''),
|
|
|
|
'$sel_notify4' => (($notify & NOTIFY_COMMENT) ? ' checked="checked" ' : ''),
|
2010-08-16 08:23:26 -04:00
|
|
|
'$sel_notify5' => (($notify & NOTIFY_MAIL) ? ' checked="checked" ' : ''),
|
|
|
|
'$theme' => $theme_selector
|
2010-07-30 09:09:20 -04:00
|
|
|
));
|
2010-07-01 19:48:07 -04:00
|
|
|
|
|
|
|
return $o;
|
|
|
|
|
|
|
|
}}
|