2010-07-01 19:48:07 -04:00
< ? php
function profiles_post ( & $a ) {
if ( ! local_user ()) {
2010-08-19 07:59:31 -04:00
notice ( t ( 'Permission denied.' ) . EOL );
2010-07-01 19:48:07 -04:00
return ;
}
2010-08-09 00:03:08 -04:00
$namechanged = false ;
2010-07-01 19:48:07 -04:00
if (( $a -> argc > 1 ) && ( $a -> argv [ 1 ] != " new " ) && intval ( $a -> argv [ 1 ])) {
2010-08-09 00:03:08 -04:00
$orig = q ( " SELECT * FROM `profile` WHERE `id` = %d AND `uid` = %d LIMIT 1 " ,
2010-07-01 19:48:07 -04:00
intval ( $a -> argv [ 1 ]),
intval ( $_SESSION [ 'uid' ])
);
2010-08-09 00:03:08 -04:00
if ( ! count ( $orig )) {
2010-08-19 07:59:31 -04:00
notice ( t ( 'Profile not found.' ) . EOL );
2010-07-01 19:48:07 -04:00
return ;
}
2010-08-09 00:03:08 -04:00
$is_default = (( $orig [ 0 ][ 'is-default' ]) ? 1 : 0 );
2010-07-01 19:48:07 -04:00
$profile_name = notags ( trim ( $_POST [ 'profile_name' ]));
if ( ! strlen ( $profile_name )) {
2010-08-19 07:59:31 -04:00
notify ( t ( 'Profile Name is required.' ) . EOL );
2010-07-01 19:48:07 -04:00
return ;
}
2010-07-10 19:47:10 -04:00
$year = intval ( $_POST [ 'year' ]);
if ( $year < 1900 || $year > 2100 || $year < 0 )
$year = 0 ;
$month = intval ( $_POST [ 'month' ]);
if (( $month > 12 ) || ( $month < 0 ))
$month = 0 ;
$mtab = array ( 0 , 31 , 29 , 31 , 30 , 31 , 30 , 31 , 31 , 30 , 31 , 30 , 31 );
$day = intval ( $_POST [ 'day' ]);
if (( $day > $mtab [ $month ]) || ( $day < 0 ))
$day = 0 ;
$dob = '0000-00-00' ;
$dob = sprintf ( '%04d-%02d-%02d' , $year , $month , $day );
2010-07-01 19:48:07 -04:00
$name = notags ( trim ( $_POST [ 'name' ]));
2010-08-09 00:03:08 -04:00
if ( $orig [ 0 ][ 'name' ] != $name )
$namechanged = true ;
2010-07-01 19:48:07 -04:00
$gender = notags ( trim ( $_POST [ 'gender' ]));
$address = notags ( trim ( $_POST [ 'address' ]));
$locality = notags ( trim ( $_POST [ 'locality' ]));
$region = notags ( trim ( $_POST [ 'region' ]));
$postal_code = notags ( trim ( $_POST [ 'postal_code' ]));
$country_name = notags ( trim ( $_POST [ 'country_name' ]));
2010-08-10 01:58:58 -04:00
2010-08-19 08:29:43 -04:00
$marital = notags ( trim ( $_POST [ 'marital' ]));
2010-08-10 01:58:58 -04:00
if ( $marital != $orig [ 0 ][ 'marital' ])
$maritalchanged = true ;
2010-07-10 19:47:10 -04:00
$sexual = notags ( trim ( $_POST [ 'sexual' ]));
2010-07-01 19:48:07 -04:00
$homepage = notags ( trim ( $_POST [ 'homepage' ]));
2010-07-10 19:47:10 -04:00
$politic = notags ( trim ( $_POST [ 'politic' ]));
$religion = notags ( trim ( $_POST [ 'religion' ]));
$about = escape_tags ( trim ( $_POST [ 'about' ]));
$interest = escape_tags ( trim ( $_POST [ 'interest' ]));
$contact = escape_tags ( trim ( $_POST [ 'contact' ]));
$music = escape_tags ( trim ( $_POST [ 'music' ]));
$book = escape_tags ( trim ( $_POST [ 'book' ]));
$tv = escape_tags ( trim ( $_POST [ 'tv' ]));
$film = escape_tags ( trim ( $_POST [ 'film' ]));
$romance = escape_tags ( trim ( $_POST [ 'romance' ]));
$work = escape_tags ( trim ( $_POST [ 'work' ]));
$education = escape_tags ( trim ( $_POST [ 'education' ]));
2010-07-09 06:10:28 -04:00
if ( x ( $_POST , 'profile_in_directory' ))
$publish = (( $_POST [ 'profile_in_directory' ] == 1 ) ? 1 : 0 );
2010-08-19 07:59:31 -04:00
if ( x ( $_POST , 'profile_in_netdirectory' ))
$net_publish = (( $_POST [ 'profile_in_netdirectory' ] == 1 ) ? 1 : 0 );
2010-07-01 19:48:07 -04:00
$r = q ( " UPDATE `profile`
SET `profile-name` = '%s' ,
`name` = '%s' ,
`gender` = '%s' ,
2010-07-10 19:47:10 -04:00
`dob` = '%s' ,
2010-07-01 19:48:07 -04:00
`address` = '%s' ,
`locality` = '%s' ,
`region` = '%s' ,
`postal-code` = '%s' ,
`country-name` = '%s' ,
`marital` = '%s' ,
2010-07-10 19:47:10 -04:00
`sexual` = '%s' ,
2010-07-01 19:48:07 -04:00
`homepage` = '%s' ,
2010-07-10 19:47:10 -04:00
`politic` = '%s' ,
`religion` = '%s' ,
`about` = '%s' ,
`interest` = '%s' ,
`contact` = '%s' ,
`music` = '%s' ,
`book` = '%s' ,
`tv` = '%s' ,
`film` = '%s' ,
`romance` = '%s' ,
`work` = '%s' ,
`education` = '%s'
2010-07-01 19:48:07 -04:00
WHERE `id` = % d AND `uid` = % d LIMIT 1 " ,
dbesc ( $profile_name ),
dbesc ( $name ),
dbesc ( $gender ),
2010-07-10 19:47:10 -04:00
dbesc ( $dob ),
2010-07-01 19:48:07 -04:00
dbesc ( $address ),
dbesc ( $locality ),
dbesc ( $region ),
dbesc ( $postal_code ),
dbesc ( $country_name ),
dbesc ( $marital ),
2010-07-10 19:47:10 -04:00
dbesc ( $sexual ),
2010-07-01 19:48:07 -04:00
dbesc ( $homepage ),
2010-07-10 19:47:10 -04:00
dbesc ( $politic ),
dbesc ( $religion ),
2010-07-01 19:48:07 -04:00
dbesc ( $about ),
2010-07-10 19:47:10 -04:00
dbesc ( $interest ),
dbesc ( $contact ),
dbesc ( $music ),
dbesc ( $book ),
dbesc ( $tv ),
dbesc ( $film ),
dbesc ( $romance ),
dbesc ( $work ),
dbesc ( $education ),
2010-07-01 19:48:07 -04:00
intval ( $a -> argv [ 1 ]),
intval ( $_SESSION [ 'uid' ])
);
if ( $r )
2010-08-19 07:59:31 -04:00
notice ( t ( 'Profile updated.' ) . EOL );
2010-07-09 06:10:28 -04:00
if ( $is_default ) {
$r = q ( " UPDATE `profile`
2010-08-19 07:59:31 -04:00
SET `publish` = % d , `net-publish` = % d
2010-07-09 06:10:28 -04:00
WHERE `id` = % d AND `uid` = % d LIMIT 1 " ,
intval ( $publish ),
2010-08-19 07:59:31 -04:00
intval ( $net_publish ),
2010-07-09 06:10:28 -04:00
intval ( $a -> argv [ 1 ]),
intval ( $_SESSION [ 'uid' ])
);
}
2010-08-09 00:03:08 -04:00
if ( $namechanged && $is_default ) {
$r = q ( " UPDATE `contact` SET `name-date` = '%s' WHERE `self` = 1 AND `uid` = %d LIMIT 1 " ,
dbesc ( datetime_convert ()),
intval ( $_SESSION [ 'uid' ])
);
}
2010-08-19 07:59:31 -04:00
if ( $is_default ) {
// Update global directory in background
$php_path = (( strlen ( $a -> config [ 'php_path' ])) ? $a -> config [ 'php_path' ] : 'php' );
$url = $_SESSION [ 'my_url' ];
if ( $url && strlen ( get_config ( 'system' , 'directory_submit_url' )))
proc_close ( proc_open ( " \" $php_path\ " \ " include/directory.php \" \" $url\ " & " ,
array (), $foo ));
}
2010-07-01 19:48:07 -04:00
}
}
function profiles_content ( & $a ) {
if ( ! local_user ()) {
2010-08-19 07:59:31 -04:00
notice ( t ( 'Permission denied.' ) . EOL );
2010-07-01 19:48:07 -04:00
return ;
}
2010-07-10 19:47:10 -04:00
if (( $a -> argc > 2 ) && ( $a -> argv [ 1 ] == " drop " ) && intval ( $a -> argv [ 2 ])) {
$r = q ( " SELECT * FROM `profile` WHERE `id` = %d AND `uid` = %d AND `is-default` = 0 LIMIT 1 " ,
intval ( $a -> argv [ 2 ]),
intval ( $_SESSION [ 'uid' ])
);
if ( ! count ( $r )) {
2010-08-19 07:59:31 -04:00
notice ( t ( 'Profile not found.' ) . EOL );
2010-07-10 19:47:10 -04:00
goaway ( $a -> get_baseurl () . '/profiles' );
return ; // NOTREACHED
}
// move every contact using this profile as their default to the user default
$r = q ( " UPDATE `contact` SET `profile-id` = (SELECT `profile`.`id` AS `profile-id` FROM `profile` WHERE `profile`.`is-default` = 1 AND `profile`.`uid` = %d LIMIT 1) WHERE `profile-id` = %d AND `uid` = %d " ,
intval ( $_SESSION [ 'uid' ]),
intval ( $a -> argv [ 2 ]),
intval ( $_SESSION [ 'uid' ])
);
$r = q ( " DELETE FROM `profile` WHERE `id` = %d LIMIT 1 " ,
intval ( $a -> argv [ 2 ])
);
if ( $r )
2010-08-19 07:59:31 -04:00
notice ( t ( 'Profile deleted.' ) . EOL );
2010-07-10 19:47:10 -04:00
goaway ( $a -> get_baseurl () . '/profiles' );
return ; // NOTREACHED
}
2010-07-01 19:48:07 -04:00
if (( $a -> argc > 1 ) && ( $a -> argv [ 1 ] == 'new' )) {
$r0 = q ( " SELECT `id` FROM `profile` WHERE `uid` = %d " ,
intval ( $_SESSION [ 'uid' ]));
$num_profiles = count ( $r0 );
2010-08-19 07:59:31 -04:00
$name = t ( 'Profile-' ) . ( $num_profiles + 1 );
2010-07-01 19:48:07 -04:00
$r1 = q ( " SELECT `name`, `photo`, `thumb` FROM `profile` WHERE `uid` = %d AND `is-default` = 1 LIMIT 1 " ,
intval ( $_SESSION [ 'uid' ]));
$r2 = q ( " INSERT INTO `profile` (`uid` , `profile-name` , `name`, `photo`, `thumb`)
VALUES ( % d , '%s' , '%s' , '%s' , '%s' ) " ,
intval ( $_SESSION [ 'uid' ]),
dbesc ( $name ),
dbesc ( $r1 [ 0 ][ 'name' ]),
dbesc ( $r1 [ 0 ][ 'photo' ]),
dbesc ( $ra [ 0 ][ 'thumb' ])
);
$r3 = q ( " SELECT `id` FROM `profile` WHERE `uid` = %d AND `profile-name` = '%s' LIMIT 1 " ,
intval ( $_SESSION [ 'uid' ]),
dbesc ( $name )
);
2010-08-19 07:59:31 -04:00
notice ( t ( 'New profile created.' ) . EOL );
2010-07-01 19:48:07 -04:00
if ( count ( $r3 ) == 1 )
goaway ( $a -> get_baseurl () . '/profiles/' . $r3 [ 0 ][ 'id' ]);
goaway ( $a -> get_baseurl () . '/profiles' );
}
2010-07-09 19:28:50 -04:00
if (( $a -> argc > 2 ) && ( $a -> argv [ 1 ] == 'clone' )) {
$r0 = q ( " SELECT `id` FROM `profile` WHERE `uid` = %d " ,
intval ( $_SESSION [ 'uid' ]));
$num_profiles = count ( $r0 );
2010-08-19 07:59:31 -04:00
$name = t ( 'Profile-' ) . ( $num_profiles + 1 );
2010-07-09 19:28:50 -04:00
$r1 = q ( " SELECT * FROM `profile` WHERE `uid` = %d AND `id` = %d LIMIT 1 " ,
intval ( $_SESSION [ 'uid' ]),
intval ( $a -> argv [ 2 ])
);
if ( ! count ( $r1 )) {
2010-08-19 07:59:31 -04:00
notice ( t ( 'Profile unavailable to clone.' ) . EOL );
2010-07-09 19:28:50 -04:00
return ;
}
unset ( $r1 [ 0 ][ 'id' ]);
$r1 [ 0 ][ 'is-default' ] = 0 ;
$r1 [ 0 ][ 'publish' ] = 0 ;
$r1 [ 0 ][ 'profile-name' ] = dbesc ( $name );
2010-07-09 19:45:43 -04:00
dbesc_array ( $r1 [ 0 ]);
2010-07-09 19:28:50 -04:00
$r2 = q ( " INSERT INTO `profile` (` "
. implode ( " `, ` " , array_keys ( $r1 [ 0 ]))
. " `) VALUES (' "
. implode ( " ', ' " , array_values ( $r1 [ 0 ]))
. " ') " );
$r3 = q ( " SELECT `id` FROM `profile` WHERE `uid` = %d AND `profile-name` = '%s' LIMIT 1 " ,
intval ( $_SESSION [ 'uid' ]),
dbesc ( $name )
);
2010-08-19 07:59:31 -04:00
notice ( t ( 'New profile created.' ) . EOL );
2010-07-09 19:28:50 -04:00
if ( count ( $r3 ) == 1 )
goaway ( $a -> get_baseurl () . '/profiles/' . $r3 [ 0 ][ 'id' ]);
goaway ( $a -> get_baseurl () . '/profiles' );
return ; // NOTREACHED
}
2010-07-01 19:48:07 -04:00
if ( intval ( $a -> argv [ 1 ])) {
$r = q ( " SELECT * FROM `profile` WHERE `id` = %d AND `uid` = %d LIMIT 1 " ,
intval ( $a -> argv [ 1 ]),
intval ( $_SESSION [ 'uid' ])
);
if ( ! count ( $r )) {
2010-08-19 07:59:31 -04:00
notice ( t ( 'Profile not found.' ) . EOL );
2010-07-01 19:48:07 -04:00
return ;
}
require_once ( 'mod/profile.php' );
2010-07-19 22:09:58 -04:00
profile_load ( $a , $a -> user [ 'nickname' ], $r [ 0 ][ 'id' ]);
2010-07-01 19:48:07 -04:00
require_once ( 'view/profile_selectors.php' );
2010-07-10 10:09:57 -04:00
$tpl = file_get_contents ( 'view/profed_head.tpl' );
2010-07-09 06:10:28 -04:00
$opt_tpl = file_get_contents ( " view/profile-in-directory.tpl " );
$profile_in_dir = replace_macros ( $opt_tpl , array (
'$yes_selected' => (( $r [ 0 ][ 'publish' ]) ? " checked= \" checked \" " : " " ),
'$no_selected' => (( $r [ 0 ][ 'publish' ] == 0 ) ? " checked= \" checked \" " : " " )
));
2010-08-19 07:59:31 -04:00
if ( strlen ( get_config ( 'system' , 'directory_submit_url' ))) {
$opt_tpl = file_get_contents ( " view/profile-in-netdir.tpl " );
$profile_in_net_dir = replace_macros ( $opt_tpl , array (
'$yes_selected' => (( $r [ 0 ][ 'net-publish' ]) ? " checked= \" checked \" " : " " ),
'$no_selected' => (( $r [ 0 ][ 'net-publish' ] == 0 ) ? " checked= \" checked \" " : " " )
));
}
else
$profile_in_net_dir = '' ;
2010-07-11 05:52:47 -04:00
$opt_tpl = file_get_contents ( " view/profile-hide-friends.tpl " );
$hide_friends = replace_macros ( $opt_tpl , array (
'$yes_selected' => (( $r [ 0 ][ 'hide-friends' ]) ? " checked= \" checked \" " : " " ),
'$no_selected' => (( $r [ 0 ][ 'hide-friends' ] == 0 ) ? " checked= \" checked \" " : " " )
));
2010-07-01 19:48:07 -04:00
$a -> page [ 'htmlhead' ] .= replace_macros ( $tpl , array ( '$baseurl' => $a -> get_baseurl ()));
2010-07-09 10:02:22 -04:00
$a -> page [ 'htmlhead' ] .= " <script type= \" text/javascript \" src= \" include/country.js \" ></script> " ;
2010-07-10 10:09:57 -04:00
2010-07-01 19:48:07 -04:00
2010-07-10 10:09:57 -04:00
2010-07-01 19:48:07 -04:00
$is_default = (( $r [ 0 ][ 'is-default' ]) ? 1 : 0 );
$tpl = file_get_contents ( " view/profile_edit.tpl " );
$o .= replace_macros ( $tpl , array (
2010-07-19 22:09:58 -04:00
'$disabled' => (( $is_default ) ? 'onclick="return false;" style="color: #BBBBFF;"' : '' ),
2010-07-01 19:48:07 -04:00
'$baseurl' => $a -> get_baseurl (),
'$profile_id' => $r [ 0 ][ 'id' ],
'$profile_name' => $r [ 0 ][ 'profile-name' ],
2010-08-19 07:59:31 -04:00
'$default' => (( $is_default ) ? '<p id="profile-edit-default-desc">' . t ( 'This is your <strong>public</strong> profile.<br />It <strong>may</strong> be visible to anybody using the internet.' ) . '</p>' : " " ),
2010-07-01 19:48:07 -04:00
'$name' => $r [ 0 ][ 'name' ],
2010-07-10 10:09:57 -04:00
'$dob' => dob ( $r [ 0 ][ 'dob' ]),
2010-07-11 05:52:47 -04:00
'$hide_friends' => $hide_friends ,
2010-07-01 19:48:07 -04:00
'$address' => $r [ 0 ][ 'address' ],
'$locality' => $r [ 0 ][ 'locality' ],
'$region' => $r [ 0 ][ 'region' ],
'$postal_code' => $r [ 0 ][ 'postal-code' ],
'$country_name' => $r [ 0 ][ 'country-name' ],
2010-08-19 07:59:31 -04:00
'$age' => (( intval ( $r [ 0 ][ 'dob' ])) ? '(' . t ( 'Age: ' ) . age ( $r [ 0 ][ 'dob' ], $a -> user [ 'timezone' ], $a -> user [ 'timezone' ]) . ')' : '' ),
2010-07-01 19:48:07 -04:00
'$gender' => gender_selector ( $r [ 0 ][ 'gender' ]),
'$marital' => marital_selector ( $r [ 0 ][ 'marital' ]),
2010-07-10 10:09:57 -04:00
'$sexual' => sexpref_selector ( $r [ 0 ][ 'sexual' ]),
2010-07-01 19:48:07 -04:00
'$about' => $r [ 0 ][ 'about' ],
'$homepage' => $r [ 0 ][ 'homepage' ],
2010-07-10 11:18:58 -04:00
'$politic' => $r [ 0 ][ 'politic' ],
'$religion' => $r [ 0 ][ 'religion' ],
'$music' => $r [ 0 ][ 'music' ],
'$book' => $r [ 0 ][ 'book' ],
'$tv' => $r [ 0 ][ 'tv' ],
'$film' => $r [ 0 ][ 'film' ],
'$interest' => $r [ 0 ][ 'interest' ],
'$romance' => $r [ 0 ][ 'romance' ],
'$work' => $r [ 0 ][ 'work' ],
'$education' => $r [ 0 ][ 'education' ],
'$contact' => $r [ 0 ][ 'contact' ],
2010-08-19 07:59:31 -04:00
'$profile_in_dir' => (( $is_default ) ? $profile_in_dir : '' ),
'$profile_in_net_dir' => (( $is_default ) ? $profile_in_net_dir : '' )
2010-07-01 19:48:07 -04:00
));
return $o ;
}
else {
$r = q ( " SELECT * FROM `profile` WHERE `uid` = %d " ,
$_SESSION [ 'uid' ]);
if ( count ( $r )) {
$o .= file_get_contents ( 'view/profile_listing_header.tpl' );
$tpl_default = file_get_contents ( 'view/profile_entry_default.tpl' );
$tpl = file_get_contents ( 'view/profile_entry.tpl' );
foreach ( $r as $rr ) {
$template = (( $rr [ 'is-default' ]) ? $tpl_default : $tpl );
$o .= replace_macros ( $template , array (
'$photo' => $rr [ 'thumb' ],
'$id' => $rr [ 'id' ],
'$profile_name' => $rr [ 'profile-name' ]
));
}
}
return $o ;
}
}