File Manager By 0x1949 Team
Files in the directory:
.htaccess
.user.ini
.well-known
0x19499P5S8V.php
Sklad
__MACOSX
adm
app.php
assets
bin
cache
common.php
composer.json
composer.lock
config
config.php
cron.php
docs
download
ext
faq.php
feed.php
files
forum.zonatabg.net
images
includes
indexs.php
inst_all
koawoopj.php
language
mcp.php
memberlist.php
nxinmtdu.php
phpBB-3.3.13.zip
phpBB3
phpbb
posting.php
qct.php
report.php
search.php
store
styles
ucp.php
vendor
viewforum.php
viewonline.php
viewtopic.php
web.config
wp-comments-blogs.php
xblack.php
yaepkoyy.php
yihjirpq.php
Upload a File
Upload
Edit File: memberlist.php
* @license GNU General Public License, version 2 (GPL-2.0) * * For full copyright and license information, please see * the docs/CREDITS.txt file. * */ /** * @ignore */ define('IN_PHPBB', true); $phpbb_root_path = (defined('PHPBB_ROOT_PATH')) ? PHPBB_ROOT_PATH : './'; $phpEx = substr(strrchr(__FILE__, '.'), 1); include($phpbb_root_path . 'common.' . $phpEx); include($phpbb_root_path . 'includes/functions_display.' . $phpEx); $mode = $request->variable('mode', ''); if ($mode === 'contactadmin') { define('SKIP_CHECK_BAN', true); define('SKIP_CHECK_DISABLED', true); } // Start session management $user->session_begin(); $auth->acl($user->data); $user->setup(array('memberlist', 'groups')); // Setting a variable to let the style designer know where he is... $template->assign_var('S_IN_MEMBERLIST', true); // Grab data $action = $request->variable('action', ''); $user_id = $request->variable('u', ANONYMOUS); $username = $request->variable('un', '', true); $group_id = $request->variable('g', 0); $topic_id = $request->variable('t', 0); // Redirect when old mode is used if ($mode == 'leaders') { send_status_line(301, 'Moved Permanently'); redirect(append_sid("{$phpbb_root_path}memberlist.$phpEx", 'mode=team')); } // Check our mode... if (!in_array($mode, array('', 'group', 'viewprofile', 'email', 'contact', 'contactadmin', 'searchuser', 'team', 'livesearch'))) { trigger_error('NO_MODE'); } switch ($mode) { case 'email': case 'contactadmin': break; case 'livesearch': if (!$config['allow_live_searches']) { trigger_error('LIVE_SEARCHES_NOT_ALLOWED'); } // No break default: // Can this user view profiles/memberlist? if (!$auth->acl_gets('u_viewprofile', 'a_user', 'a_useradd', 'a_userdel')) { if ($user->data['user_id'] != ANONYMOUS) { send_status_line(403, 'Forbidden'); trigger_error('NO_VIEW_USERS'); } login_box('', ((isset($user->lang['LOGIN_EXPLAIN_' . strtoupper($mode)])) ? $user->lang['LOGIN_EXPLAIN_' . strtoupper($mode)] : $user->lang['LOGIN_EXPLAIN_MEMBERLIST'])); } break; } /** @var \phpbb\group\helper $group_helper */ $group_helper = $phpbb_container->get('group_helper'); $start = $request->variable('start', 0); $submit = (isset($_POST['submit'])) ? true : false; $default_key = 'c'; $sort_key = $request->variable('sk', $default_key); $sort_dir = $request->variable('sd', 'a'); $user_types = array(USER_NORMAL, USER_FOUNDER); if ($auth->acl_get('a_user')) { $user_types[] = USER_INACTIVE; } // What do you want to do today? ... oops, I think that line is taken ... switch ($mode) { case 'team': // Display a listing of board admins, moderators if (!function_exists('user_get_id_name')) { include($phpbb_root_path . 'includes/functions_user.' . $phpEx); } $page_title = $user->lang['THE_TEAM']; $template_html = 'memberlist_team.html'; $sql = 'SELECT * FROM ' . TEAMPAGE_TABLE . ' ORDER BY teampage_position ASC'; $result = $db->sql_query($sql, 3600); $teampage_data = $db->sql_fetchrowset($result); $db->sql_freeresult($result); $sql_ary = array( 'SELECT' => 'g.group_id, g.group_name, g.group_colour, g.group_type, ug.user_id as ug_user_id, t.teampage_id', 'FROM' => array(GROUPS_TABLE => 'g'), 'LEFT_JOIN' => array( array( 'FROM' => array(TEAMPAGE_TABLE => 't'), 'ON' => 't.group_id = g.group_id', ), array( 'FROM' => array(USER_GROUP_TABLE => 'ug'), 'ON' => 'ug.group_id = g.group_id AND ug.user_pending = 0 AND ug.user_id = ' . (int) $user->data['user_id'], ), ), ); $result = $db->sql_query($db->sql_build_query('SELECT', $sql_ary)); $group_ids = $groups_ary = array(); while ($row = $db->sql_fetchrow($result)) { if ($row['group_type'] == GROUP_HIDDEN && !$auth->acl_gets('a_group', 'a_groupadd', 'a_groupdel') && $row['ug_user_id'] != $user->data['user_id']) { $row['group_name'] = $user->lang['GROUP_UNDISCLOSED']; $row['u_group'] = ''; } else { $row['group_name'] = $group_helper->get_name($row['group_name']); $row['u_group'] = append_sid("{$phpbb_root_path}memberlist.$phpEx", 'mode=group&g=' . $row['group_id']); } if ($row['teampage_id']) { // Only put groups into the array we want to display. // We are fetching all groups, to ensure we got all data for default groups. $group_ids[] = (int) $row['group_id']; } $groups_ary[(int) $row['group_id']] = $row; } $db->sql_freeresult($result); $sql_ary = array( 'SELECT' => 'u.user_id, u.group_id as default_group, u.username, u.username_clean, u.user_colour, u.user_type, u.user_rank, u.user_posts, u.user_allow_pm, g.group_id', 'FROM' => array( USER_GROUP_TABLE => 'ug', ), 'LEFT_JOIN' => array( array( 'FROM' => array(USERS_TABLE => 'u'), 'ON' => 'ug.user_id = u.user_id', ), array( 'FROM' => array(GROUPS_TABLE => 'g'), 'ON' => 'ug.group_id = g.group_id', ), ), 'WHERE' => $db->sql_in_set('g.group_id', $group_ids, false, true) . ' AND ug.user_pending = 0', 'ORDER_BY' => 'u.username_clean ASC', ); /** * Modify the query used to get the users for the team page * * @event core.memberlist_team_modify_query * @var array sql_ary Array containing the query * @var array group_ids Array of group ids * @var array teampage_data The teampage data * @since 3.1.3-RC1 */ $vars = array( 'sql_ary', 'group_ids', 'teampage_data', ); extract($phpbb_dispatcher->trigger_event('core.memberlist_team_modify_query', compact($vars))); $result = $db->sql_query($db->sql_build_query('SELECT', $sql_ary)); $user_ary = $user_ids = $group_users = array(); while ($row = $db->sql_fetchrow($result)) { $row['forums'] = ''; $row['forums_ary'] = array(); $user_ary[(int) $row['user_id']] = $row; $user_ids[] = (int) $row['user_id']; $group_users[(int) $row['group_id']][] = (int) $row['user_id']; } $db->sql_freeresult($result); $user_ids = array_unique($user_ids); if (!empty($user_ids) && $config['teampage_forums']) { $template->assign_var('S_DISPLAY_MODERATOR_FORUMS', true); // Get all moderators $perm_ary = $auth->acl_get_list($user_ids, array('m_'), false); foreach ($perm_ary as $forum_id => $forum_ary) { foreach ($forum_ary as $auth_option => $id_ary) { foreach ($id_ary as $id) { if (!$forum_id) { $user_ary[$id]['forums'] = $user->lang['ALL_FORUMS']; } else { $user_ary[$id]['forums_ary'][] = $forum_id; } } } } $sql = 'SELECT forum_id, forum_name FROM ' . FORUMS_TABLE; $result = $db->sql_query($sql); $forums = array(); while ($row = $db->sql_fetchrow($result)) { $forums[$row['forum_id']] = $row['forum_name']; } $db->sql_freeresult($result); foreach ($user_ary as $user_id => $user_data) { if (!$user_data['forums']) { foreach ($user_data['forums_ary'] as $forum_id) { $user_ary[$user_id]['forums_options'] = true; if (isset($forums[$forum_id])) { if ($auth->acl_get('f_list', $forum_id)) { $user_ary[$user_id]['forums'] .= '
' . $forums[$forum_id] . '
'; } } } } } } $parent_team = 0; foreach ($teampage_data as $team_data) { // If this team entry has no group, it's a category if (!$team_data['group_id']) { $template->assign_block_vars('group', array( 'GROUP_NAME' => $team_data['teampage_name'], )); $parent_team = (int) $team_data['teampage_id']; continue; } $group_data = $groups_ary[(int) $team_data['group_id']]; $group_id = (int) $team_data['group_id']; if (!$team_data['teampage_parent']) { // If the group does not have a parent category, we display the groupname as category $template->assign_block_vars('group', array( 'GROUP_NAME' => $group_data['group_name'], 'GROUP_COLOR' => $group_data['group_colour'], 'U_GROUP' => $group_data['u_group'], )); } // Display group members. if (!empty($group_users[$group_id])) { foreach ($group_users[$group_id] as $user_id) { if (isset($user_ary[$user_id])) { $row = $user_ary[$user_id]; if ($config['teampage_memberships'] == 1 && ($group_id != $groups_ary[$row['default_group']]['group_id']) && $groups_ary[$row['default_group']]['teampage_id']) { // Display users in their primary group, instead of the first group, when it is displayed on the teampage. continue; } $user_rank_data = phpbb_get_user_rank($row, (($row['user_id'] == ANONYMOUS) ? false : $row['user_posts'])); $template_vars = array( 'USER_ID' => $row['user_id'], 'FORUMS' => $row['forums'], 'FORUM_OPTIONS' => (isset($row['forums_options'])) ? true : false, 'RANK_TITLE' => $user_rank_data['title'], 'GROUP_NAME' => $groups_ary[$row['default_group']]['group_name'], 'GROUP_COLOR' => $groups_ary[$row['default_group']]['group_colour'], 'U_GROUP' => $groups_ary[$row['default_group']]['u_group'], 'RANK_IMG' => $user_rank_data['img'], 'RANK_IMG_SRC' => $user_rank_data['img_src'], 'S_INACTIVE' => $row['user_type'] == USER_INACTIVE, 'U_PM' => ($config['allow_privmsg'] && $auth->acl_get('u_sendpm') && ($row['user_allow_pm'] || $auth->acl_gets('a_', 'm_') || $auth->acl_getf_global('m_'))) ? append_sid("{$phpbb_root_path}ucp.$phpEx", 'i=pm&mode=compose&u=' . $row['user_id']) : '', 'USERNAME_FULL' => get_username_string('full', $row['user_id'], $row['username'], $row['user_colour']), 'USERNAME' => get_username_string('username', $row['user_id'], $row['username'], $row['user_colour']), 'USER_COLOR' => get_username_string('colour', $row['user_id'], $row['username'], $row['user_colour']), 'U_VIEW_PROFILE' => get_username_string('profile', $row['user_id'], $row['username'], $row['user_colour']), ); /** * Modify the template vars for displaying the user in the groups on the teampage * * @event core.memberlist_team_modify_template_vars * @var array template_vars Array containing the query * @var array row Array containing the action user row * @var array groups_ary Array of groups with all users that should be displayed * @since 3.1.3-RC1 */ $vars = array( 'template_vars', 'row', 'groups_ary', ); extract($phpbb_dispatcher->trigger_event('core.memberlist_team_modify_template_vars', compact($vars))); $template->assign_block_vars('group.user', $template_vars); if ($config['teampage_memberships'] != 2) { unset($user_ary[$user_id]); } } } } } $template->assign_block_vars('navlinks', array( 'BREADCRUMB_NAME' => $page_title, 'U_BREADCRUMB' => append_sid("{$phpbb_root_path}memberlist.$phpEx", "mode=team"), )); $template->assign_vars(array( 'PM_IMG' => $user->img('icon_contact_pm', $user->lang['SEND_PRIVATE_MESSAGE'])) ); break; case 'contact': $page_title = $user->lang['IM_USER']; $template_html = 'memberlist_im.html'; if (!$auth->acl_get('u_sendim')) { send_status_line(403, 'Forbidden'); trigger_error('NOT_AUTHORISED'); } $presence_img = ''; switch ($action) { case 'jabber': $lang = 'JABBER'; $sql_field = 'user_jabber'; $s_select = (@extension_loaded('xml') && $config['jab_enable']) ? 'S_SEND_JABBER' : 'S_NO_SEND_JABBER'; $s_action = append_sid("{$phpbb_root_path}memberlist.$phpEx", "mode=contact&action=$action&u=$user_id"); break; default: trigger_error('NO_MODE', E_USER_ERROR); break; } // Grab relevant data $sql = "SELECT user_id, username, user_email, user_lang, $sql_field FROM " . USERS_TABLE . " WHERE user_id = $user_id AND user_type IN (" . USER_NORMAL . ', ' . USER_FOUNDER . ')'; $result = $db->sql_query($sql); $row = $db->sql_fetchrow($result); $db->sql_freeresult($result); if (!$row) { trigger_error('NO_USER'); } else if (empty($row[$sql_field])) { trigger_error('IM_NO_DATA'); } // Post data grab actions switch ($action) { case 'jabber': add_form_key('memberlist_messaging'); if ($submit && @extension_loaded('xml') && $config['jab_enable']) { if (check_form_key('memberlist_messaging')) { include_once($phpbb_root_path . 'includes/functions_messenger.' . $phpEx); $subject = sprintf($user->lang['IM_JABBER_SUBJECT'], $user->data['username'], $config['server_name']); $message = $request->variable('message', '', true); if (empty($message)) { trigger_error('EMPTY_MESSAGE_IM'); } $messenger = new messenger(false); $messenger->template('profile_send_im', $row['user_lang']); $messenger->subject(html_entity_decode($subject, ENT_COMPAT)); $messenger->replyto($user->data['user_email']); $messenger->set_addresses($row); $messenger->assign_vars(array( 'BOARD_CONTACT' => phpbb_get_board_contact($config, $phpEx), 'FROM_USERNAME' => html_entity_decode($user->data['username'], ENT_COMPAT), 'TO_USERNAME' => html_entity_decode($row['username'], ENT_COMPAT), 'MESSAGE' => html_entity_decode($message, ENT_COMPAT)) ); $messenger->send(NOTIFY_IM); $s_select = 'S_SENT_JABBER'; } else { trigger_error('FORM_INVALID'); } } break; } $template->assign_block_vars('navlinks', array( 'BREADCRUMB_NAME' => $page_title, 'U_BREADCRUMB' => append_sid("{$phpbb_root_path}memberlist.$phpEx", "mode=contact&action=$action&u=$user_id"), )); // Send vars to the template $template->assign_vars(array( 'IM_CONTACT' => $row[$sql_field], 'A_IM_CONTACT' => addslashes($row[$sql_field]), 'USERNAME' => $row['username'], 'CONTACT_NAME' => $row[$sql_field], 'SITENAME' => $config['sitename'], 'PRESENCE_IMG' => $presence_img, 'L_SEND_IM_EXPLAIN' => $user->lang['IM_' . $lang], 'L_IM_SENT_JABBER' => sprintf($user->lang['IM_SENT_JABBER'], $row['username']), $s_select => true, 'S_IM_ACTION' => $s_action) ); break; case 'viewprofile': // Display a profile if ($user_id == ANONYMOUS && !$username) { trigger_error('NO_USER'); } // Get user... $sql_array = array( 'SELECT' => 'u.*', 'FROM' => array( USERS_TABLE => 'u' ), 'WHERE' => (($username) ? "u.username_clean = '" . $db->sql_escape(utf8_clean_string($username)) . "'" : "u.user_id = $user_id"), ); /** * Modify user data SQL before member profile row is created * * @event core.memberlist_modify_viewprofile_sql * @var int user_id The user ID * @var string username The username * @var array sql_array Array containing the main query * @since 3.2.6-RC1 */ $vars = array( 'user_id', 'username', 'sql_array', ); extract($phpbb_dispatcher->trigger_event('core.memberlist_modify_viewprofile_sql', compact($vars))); $sql = $db->sql_build_query('SELECT', $sql_array); $result = $db->sql_query($sql); $member = $db->sql_fetchrow($result); $db->sql_freeresult($result); if (!$member) { trigger_error('NO_USER'); } // a_user admins and founder are able to view inactive users and bots to be able to manage them more easily // Normal users are able to see at least users having only changed their profile settings but not yet reactivated. if (!$auth->acl_get('a_user') && $user->data['user_type'] != USER_FOUNDER) { if ($member['user_type'] == USER_IGNORE) { trigger_error('NO_USER'); } else if ($member['user_type'] == USER_INACTIVE && $member['user_inactive_reason'] != INACTIVE_PROFILE) { trigger_error('NO_USER'); } } $user_id = (int) $member['user_id']; // Get group memberships // Also get visiting user's groups to determine hidden group memberships if necessary. $auth_hidden_groups = ($user_id === (int) $user->data['user_id'] || $auth->acl_gets('a_group', 'a_groupadd', 'a_groupdel')) ? true : false; $sql_uid_ary = ($auth_hidden_groups) ? array($user_id) : array($user_id, (int) $user->data['user_id']); // Do the SQL thang $sql_ary = [ 'SELECT' => 'g.group_id, g.group_name, g.group_type, ug.user_id', 'FROM' => [ GROUPS_TABLE => 'g', ], 'LEFT_JOIN' => [ [ 'FROM' => [USER_GROUP_TABLE => 'ug'], 'ON' => 'g.group_id = ug.group_id', ], ], 'WHERE' => $db->sql_in_set('ug.user_id', $sql_uid_ary) . ' AND ug.user_pending = 0', ]; /** * Modify the query used to get the group data * * @event core.modify_memberlist_viewprofile_group_sql * @var array sql_ary Array containing the query * @since 3.2.6-RC1 */ $vars = array( 'sql_ary', ); extract($phpbb_dispatcher->trigger_event('core.modify_memberlist_viewprofile_group_sql', compact($vars))); $result = $db->sql_query($db->sql_build_query('SELECT', $sql_ary)); // Divide data into profile data and current user data $profile_groups = $user_groups = array(); while ($row = $db->sql_fetchrow($result)) { $row['user_id'] = (int) $row['user_id']; $row['group_id'] = (int) $row['group_id']; if ($row['user_id'] == $user_id) { $profile_groups[] = $row; } else { $user_groups[$row['group_id']] = $row['group_id']; } } $db->sql_freeresult($result); // Filter out hidden groups and sort groups by name $group_data = $group_sort = array(); foreach ($profile_groups as $row) { if (!$auth_hidden_groups && $row['group_type'] == GROUP_HIDDEN && !isset($user_groups[$row['group_id']])) { // Skip over hidden groups the user cannot see continue; } $row['group_name'] = $group_helper->get_name($row['group_name']); $group_sort[$row['group_id']] = utf8_clean_string($row['group_name']); $group_data[$row['group_id']] = $row; } unset($profile_groups); unset($user_groups); asort($group_sort); /** * Modify group data before options is created and data is unset * * @event core.modify_memberlist_viewprofile_group_data * @var array group_data Array containing the group data * @var array group_sort Array containing the sorted group data * @since 3.2.6-RC1 */ $vars = array( 'group_data', 'group_sort', ); extract($phpbb_dispatcher->trigger_event('core.modify_memberlist_viewprofile_group_data', compact($vars))); $group_options = ''; foreach ($group_sort as $group_id => $null) { $row = $group_data[$group_id]; $group_options .= '
' . $row['group_name'] . '
'; } unset($group_data); unset($group_sort); // What colour is the zebra $sql = 'SELECT friend, foe FROM ' . ZEBRA_TABLE . " WHERE zebra_id = $user_id AND user_id = {$user->data['user_id']}"; $result = $db->sql_query($sql); $row = $db->sql_fetchrow($result); $foe = $row ? (bool) $row['foe'] : false; $friend = $row ? (bool) $row['friend'] : false; $db->sql_freeresult($result); if ($config['load_onlinetrack']) { $sql = 'SELECT MAX(session_time) AS session_time, MIN(session_viewonline) AS session_viewonline FROM ' . SESSIONS_TABLE . " WHERE session_user_id = $user_id"; $result = $db->sql_query($sql); $row = $db->sql_fetchrow($result); $db->sql_freeresult($result); $member['session_time'] = (isset($row['session_time'])) ? $row['session_time'] : 0; $member['session_viewonline'] = (isset($row['session_viewonline'])) ? $row['session_viewonline'] : 0; unset($row); } if ($config['load_user_activity']) { display_user_activity($member); } // Do the relevant calculations $memberdays = max(1, round((time() - $member['user_regdate']) / 86400)); $posts_per_day = $member['user_posts'] / $memberdays; $percentage = ($config['num_posts']) ? min(100, ($member['user_posts'] / $config['num_posts']) * 100) : 0; if ($member['user_sig']) { $parse_flags = ($member['user_sig_bbcode_bitfield'] ? OPTION_FLAG_BBCODE : 0) | OPTION_FLAG_SMILIES; $member['user_sig'] = generate_text_for_display($member['user_sig'], $member['user_sig_bbcode_uid'], $member['user_sig_bbcode_bitfield'], $parse_flags, true); } // We need to check if the modules 'zebra' ('friends' & 'foes' mode), 'notes' ('user_notes' mode) and 'warn' ('warn_user' mode) are accessible to decide if we can display appropriate links $zebra_enabled = $friends_enabled = $foes_enabled = $user_notes_enabled = $warn_user_enabled = false; // Only check if the user is logged in if ($user->data['is_registered']) { if (!class_exists('p_master')) { include($phpbb_root_path . 'includes/functions_module.' . $phpEx); } $module = new p_master(); $module->list_modules('ucp'); $module->list_modules('mcp'); $user_notes_enabled = ($module->loaded('mcp_notes', 'user_notes')) ? true : false; $warn_user_enabled = ($module->loaded('mcp_warn', 'warn_user')) ? true : false; $zebra_enabled = ($module->loaded('ucp_zebra')) ? true : false; $friends_enabled = ($module->loaded('ucp_zebra', 'friends')) ? true : false; $foes_enabled = ($module->loaded('ucp_zebra', 'foes')) ? true : false; unset($module); } // Custom Profile Fields $profile_fields = array(); if ($config['load_cpf_viewprofile']) { /* @var $cp \phpbb\profilefields\manager */ $cp = $phpbb_container->get('profilefields.manager'); $profile_fields = $cp->grab_profile_fields_data($user_id); $profile_fields = (isset($profile_fields[$user_id])) ? $cp->generate_profile_fields_template_data($profile_fields[$user_id]) : array(); } /** * Modify user data before we display the profile * * @event core.memberlist_view_profile * @var array member Array with user's data * @var bool user_notes_enabled Is the mcp user notes module enabled? * @var bool warn_user_enabled Is the mcp warnings module enabled? * @var bool zebra_enabled Is the ucp zebra module enabled? * @var bool friends_enabled Is the ucp friends module enabled? * @var bool foes_enabled Is the ucp foes module enabled? * @var bool friend Is the user friend? * @var bool foe Is the user foe? * @var array profile_fields Array with user's profile field data * @since 3.1.0-a1 * @changed 3.1.0-b2 Added friend and foe status * @changed 3.1.0-b3 Added profile fields data */ $vars = array( 'member', 'user_notes_enabled', 'warn_user_enabled', 'zebra_enabled', 'friends_enabled', 'foes_enabled', 'friend', 'foe', 'profile_fields', ); extract($phpbb_dispatcher->trigger_event('core.memberlist_view_profile', compact($vars))); $template->assign_vars(phpbb_show_profile($member, $user_notes_enabled, $warn_user_enabled)); // If the user has m_approve permission or a_user permission, then list then display unapproved posts if ($auth->acl_getf_global('m_approve') || $auth->acl_get('a_user')) { $sql = 'SELECT COUNT(post_id) as posts_in_queue FROM ' . POSTS_TABLE . ' WHERE poster_id = ' . $user_id . ' AND ' . $db->sql_in_set('post_visibility', array(ITEM_UNAPPROVED, ITEM_REAPPROVE)); $result = $db->sql_query($sql); $member['posts_in_queue'] = (int) $db->sql_fetchfield('posts_in_queue'); $db->sql_freeresult($result); } else { $member['posts_in_queue'] = 0; } // Define the main array of vars to assign to memberlist_view.html $template_ary = array( 'L_POSTS_IN_QUEUE' => $user->lang('NUM_POSTS_IN_QUEUE', $member['posts_in_queue']), 'POSTS_DAY' => $user->lang('POST_DAY', $posts_per_day), 'POSTS_PCT' => $user->lang('POST_PCT', $percentage), 'SIGNATURE' => $member['user_sig'], 'POSTS_IN_QUEUE' => $member['posts_in_queue'], 'PM_IMG' => $user->img('icon_contact_pm', $user->lang['SEND_PRIVATE_MESSAGE']), 'L_SEND_EMAIL_USER' => $user->lang('SEND_EMAIL_USER', $member['username']), 'EMAIL_IMG' => $user->img('icon_contact_email', $user->lang['EMAIL']), 'JABBER_IMG' => $user->img('icon_contact_jabber', $user->lang['JABBER']), 'SEARCH_IMG' => $user->img('icon_user_search', $user->lang['SEARCH']), 'S_PROFILE_ACTION' => append_sid("{$phpbb_root_path}memberlist.$phpEx", 'mode=group'), 'S_GROUP_OPTIONS' => $group_options, 'S_CUSTOM_FIELDS' => (isset($profile_fields['row']) && count($profile_fields['row'])) ? true : false, 'U_USER_ADMIN' => ($auth->acl_get('a_user')) ? append_sid("{$phpbb_admin_path}index.$phpEx", 'i=users&mode=overview&u=' . $user_id, true, $user->session_id) : '', 'U_USER_BAN' => ($auth->acl_get('m_ban') && $user_id != $user->data['user_id']) ? append_sid("{$phpbb_root_path}mcp.$phpEx", 'i=ban&mode=user&u=' . $user_id, true, $user->session_id) : '', 'U_MCP_QUEUE' => ($auth->acl_getf_global('m_approve')) ? append_sid("{$phpbb_root_path}mcp.$phpEx", 'i=queue', true, $user->session_id) : '', 'U_SWITCH_PERMISSIONS' => ($auth->acl_get('a_switchperm') && $user->data['user_id'] != $user_id) ? append_sid("{$phpbb_root_path}ucp.$phpEx", "mode=switch_perm&u={$user_id}&hash=" . generate_link_hash('switchperm')) : '', 'U_EDIT_SELF' => ($user_id == $user->data['user_id'] && $auth->acl_get('u_chgprofileinfo')) ? append_sid("{$phpbb_root_path}ucp.$phpEx", 'i=ucp_profile&mode=profile_info') : '', 'S_USER_NOTES' => ($user_notes_enabled) ? true : false, 'S_WARN_USER' => ($warn_user_enabled) ? true : false, 'S_ZEBRA' => ($user->data['user_id'] != $user_id && $user->data['is_registered'] && $zebra_enabled) ? true : false, 'U_ADD_FRIEND' => (!$friend && !$foe && $friends_enabled) ? append_sid("{$phpbb_root_path}ucp.$phpEx", 'i=zebra&add=' . urlencode(html_entity_decode($member['username'], ENT_COMPAT))) : '', 'U_ADD_FOE' => (!$friend && !$foe && $foes_enabled) ? append_sid("{$phpbb_root_path}ucp.$phpEx", 'i=zebra&mode=foes&add=' . urlencode(html_entity_decode($member['username'], ENT_COMPAT))) : '', 'U_REMOVE_FRIEND' => ($friend && $friends_enabled) ? append_sid("{$phpbb_root_path}ucp.$phpEx", 'i=zebra&remove=1&usernames[]=' . $user_id) : '', 'U_REMOVE_FOE' => ($foe && $foes_enabled) ? append_sid("{$phpbb_root_path}ucp.$phpEx", 'i=zebra&remove=1&mode=foes&usernames[]=' . $user_id) : '', 'U_CANONICAL' => generate_board_url() . '/' . append_sid("memberlist.$phpEx", 'mode=viewprofile&u=' . $user_id, true, ''), ); /** * Modify user's template vars before we display the profile * * @event core.memberlist_modify_view_profile_template_vars * @var array template_ary Array with user's template vars * @since 3.2.6-RC1 */ $vars = array( 'template_ary', ); extract($phpbb_dispatcher->trigger_event('core.memberlist_modify_view_profile_template_vars', compact($vars))); // Assign vars to memberlist_view.html $template->assign_vars($template_ary); if (!empty($profile_fields['row'])) { $template->assign_vars($profile_fields['row']); } if (!empty($profile_fields['blockrow'])) { foreach ($profile_fields['blockrow'] as $field_data) { $template->assign_block_vars('custom_fields', $field_data); } } // Inactive reason/account? if ($member['user_type'] == USER_INACTIVE) { $user->add_lang('acp/common'); $inactive_reason = $user->lang['INACTIVE_REASON_UNKNOWN']; switch ($member['user_inactive_reason']) { case INACTIVE_REGISTER: $inactive_reason = $user->lang['INACTIVE_REASON_REGISTER']; break; case INACTIVE_PROFILE: $inactive_reason = $user->lang['INACTIVE_REASON_PROFILE']; break; case INACTIVE_MANUAL: $inactive_reason = $user->lang['INACTIVE_REASON_MANUAL']; break; case INACTIVE_REMIND: $inactive_reason = $user->lang['INACTIVE_REASON_REMIND']; break; } $template->assign_vars(array( 'S_USER_INACTIVE' => true, 'USER_INACTIVE_REASON' => $inactive_reason) ); } // Now generate page title $page_title = sprintf($user->lang['VIEWING_PROFILE'], $member['username']); $template_html = 'memberlist_view.html'; $template->assign_block_vars('navlinks', array( 'BREADCRUMB_NAME' => $user->lang('MEMBERLIST'), 'U_BREADCRUMB' => append_sid("{$phpbb_root_path}memberlist.$phpEx"), )); $template->assign_block_vars('navlinks', array( 'BREADCRUMB_NAME' => $member['username'], 'U_BREADCRUMB' => append_sid("{$phpbb_root_path}memberlist.$phpEx", "mode=viewprofile&u=$user_id"), )); break; case 'contactadmin': case 'email': if (!class_exists('messenger')) { include($phpbb_root_path . 'includes/functions_messenger.' . $phpEx); } $user_id = $request->variable('u', 0); $topic_id = $request->variable('t', 0); if ($user_id) { $form_name = 'user'; } else if ($topic_id) { $form_name = 'topic'; } else if ($mode === 'contactadmin') { $form_name = 'admin'; } else { trigger_error('NO_EMAIL'); } /** @var $form \phpbb\message\form */ $form = $phpbb_container->get('message.form.' . $form_name); $form->bind($request); $error = $form->check_allow(); if ($error) { trigger_error($error); } if ($request->is_set_post('submit')) { $messenger = new messenger(false); $form->submit($messenger); } $page_title = $form->get_page_title(); $template_html = $form->get_template_file(); $form->render($template); if ($user_id) { $navlink_name = $user->lang('SEND_EMAIL'); $navlink_url = append_sid("{$phpbb_root_path}memberlist.$phpEx", "mode=email&u=$user_id"); } else if ($topic_id) { // Generate the navlinks based on the selected topic $navlinks_sql_array = [ 'SELECT' => 'f.parent_id, f.forum_parents, f.left_id, f.right_id, f.forum_type, f.forum_name, f.forum_id, f.forum_desc, f.forum_desc_uid, f.forum_desc_bitfield, f.forum_desc_options, f.forum_options, t.topic_title', 'FROM' => [ FORUMS_TABLE => 'f', TOPICS_TABLE => 't', ], 'WHERE' => 't.forum_id = f.forum_id AND t.topic_id = ' . (int) $topic_id, ]; $sql = $db->sql_build_query('SELECT', $navlinks_sql_array); $result = $db->sql_query($sql); $topic_data = $db->sql_fetchrow($result); $db->sql_freeresult($result); generate_forum_nav($topic_data); $template->assign_block_vars('navlinks', array( 'BREADCRUMB_NAME' => $topic_data['topic_title'], 'U_BREADCRUMB' => append_sid("{$phpbb_root_path}viewtopic.$phpEx", "t=$topic_id"), )); $navlink_name = $user->lang('EMAIL_TOPIC'); $navlink_url = append_sid("{$phpbb_root_path}memberlist.$phpEx", "mode=email&t=$topic_id"); } else if ($mode === 'contactadmin') { $navlink_name = $user->lang('CONTACT_ADMIN'); $navlink_url = append_sid("{$phpbb_root_path}memberlist.$phpEx", "mode=contactadmin"); } $template->assign_block_vars('navlinks', array( 'BREADCRUMB_NAME' => $navlink_name, 'U_BREADCRUMB' => $navlink_url, )); break; case 'livesearch': $username_chars = $request->variable('username', '', true); $sql = 'SELECT username, user_id, user_colour FROM ' . USERS_TABLE . ' WHERE ' . $db->sql_in_set('user_type', $user_types) . ' AND username_clean ' . $db->sql_like_expression(utf8_clean_string($username_chars) . $db->get_any_char()); $result = $db->sql_query_limit($sql, 10); $user_list = []; while ($row = $db->sql_fetchrow($result)) { $user_list[] = [ 'user_id' => (int) $row['user_id'], 'result' => html_entity_decode($row['username']), 'username_full' => get_username_string('full', $row['user_id'], $row['username'], $row['user_colour']), 'display' => get_username_string('no_profile', $row['user_id'], $row['username'], $row['user_colour']), ]; } $db->sql_freeresult($result); $json_response = new \phpbb\json_response(); $json_response->send([ 'keyword' => $username_chars, 'results' => $user_list, ]); break; case 'group': default: // The basic memberlist $page_title = $user->lang['MEMBERLIST']; $template_html = 'memberlist_body.html'; $template->assign_block_vars('navlinks', array( 'BREADCRUMB_NAME' => $page_title, 'U_BREADCRUMB' => append_sid("{$phpbb_root_path}memberlist.$phpEx"), )); /* @var $pagination \phpbb\pagination */ $pagination = $phpbb_container->get('pagination'); // Sorting $sort_key_text = array('a' => $user->lang['SORT_USERNAME'], 'c' => $user->lang['SORT_JOINED'], 'd' => $user->lang['SORT_POST_COUNT']); $sort_key_sql = array('a' => 'u.username_clean', 'c' => 'u.user_regdate', 'd' => 'u.user_posts'); if ($config['jab_enable'] && $auth->acl_get('u_sendim')) { $sort_key_text['k'] = $user->lang['JABBER']; $sort_key_sql['k'] = 'u.user_jabber'; } if ($auth->acl_get('a_user')) { $sort_key_text['e'] = $user->lang['SORT_EMAIL']; $sort_key_sql['e'] = 'u.user_email'; } if ($auth->acl_get('u_viewonline')) { $sort_key_text['l'] = $user->lang['SORT_LAST_ACTIVE']; $sort_key_sql['l'] = 'u.user_last_active'; } $sort_key_text['m'] = $user->lang['SORT_RANK']; $sort_key_sql['m'] = 'u.user_rank'; $sort_dir_text = array('a' => $user->lang['ASCENDING'], 'd' => $user->lang['DESCENDING']); $s_sort_key = ''; foreach ($sort_key_text as $key => $value) { $selected = ($sort_key == $key) ? ' selected="selected"' : ''; $s_sort_key .= '
' . $value . '
'; } $s_sort_dir = ''; foreach ($sort_dir_text as $key => $value) { $selected = ($sort_dir == $key) ? ' selected="selected"' : ''; $s_sort_dir .= '
' . $value . '
'; } // Additional sorting options for user search ... if search is enabled, if not // then only admins can make use of this (for ACP functionality) $sql_select = $sql_where_data = $sql_from = $sql_where = $order_by = ''; $form = $request->variable('form', ''); $field = $request->variable('field', ''); $select_single = $request->variable('select_single', false); // Search URL parameters, if any of these are in the URL we do a search $search_params = array('username', 'email', 'jabber', 'search_group_id', 'joined_select', 'active_select', 'count_select', 'joined', 'active', 'count', 'ip'); // We validate form and field here, only id/class allowed $form = (!preg_match('/^[a-z0-9_-]+$/i', $form)) ? '' : $form; $field = (!preg_match('/^[a-z0-9_-]+$/i', $field)) ? '' : $field; if ((($mode == '' || $mode == 'searchuser') || count(array_intersect($request->variable_names(\phpbb\request\request_interface::GET), $search_params)) > 0) && ($config['load_search'] || $auth->acl_get('a_'))) { $username = $request->variable('username', '', true); $email = strtolower($request->variable('email', '')); $jabber = $request->variable('jabber', ''); $search_group_id = $request->variable('search_group_id', 0); // when using these, make sure that we actually have values defined in $find_key_match $joined_select = $request->variable('joined_select', 'lt'); $active_select = $request->variable('active_select', 'lt'); $count_select = $request->variable('count_select', 'eq'); $joined = explode('-', $request->variable('joined', '')); $active = explode('-', $request->variable('active', '')); $count = ($request->variable('count', '') !== '') ? $request->variable('count', 0) : ''; $ipdomain = $request->variable('ip', ''); $find_key_match = array('lt' => '<', 'gt' => '>', 'eq' => '='); $find_count = array('lt' => $user->lang['LESS_THAN'], 'eq' => $user->lang['EQUAL_TO'], 'gt' => $user->lang['MORE_THAN']); $s_find_count = ''; foreach ($find_count as $key => $value) { $selected = ($count_select == $key) ? ' selected="selected"' : ''; $s_find_count .= '
' . $value . '
'; } $find_time = array('lt' => $user->lang['BEFORE'], 'gt' => $user->lang['AFTER']); $s_find_join_time = ''; foreach ($find_time as $key => $value) { $selected = ($joined_select == $key) ? ' selected="selected"' : ''; $s_find_join_time .= '
' . $value . '
'; } $s_find_active_time = ''; foreach ($find_time as $key => $value) { $selected = ($active_select == $key) ? ' selected="selected"' : ''; $s_find_active_time .= '
' . $value . '
'; } $sql_where .= ($username) ? ' AND u.username_clean ' . $db->sql_like_expression(str_replace('*', $db->get_any_char(), utf8_clean_string($username))) : ''; $sql_where .= ($auth->acl_get('a_user') && $email) ? ' AND u.user_email ' . $db->sql_like_expression(str_replace('*', $db->get_any_char(), $email)) . ' ' : ''; $sql_where .= ($jabber) ? ' AND u.user_jabber ' . $db->sql_like_expression(str_replace('*', $db->get_any_char(), $jabber)) . ' ' : ''; $sql_where .= (is_numeric($count) && isset($find_key_match[$count_select])) ? ' AND u.user_posts ' . $find_key_match[$count_select] . ' ' . (int) $count . ' ' : ''; if (isset($find_key_match[$joined_select]) && count($joined) == 3) { $joined_time = gmmktime(0, 0, 0, (int) $joined[1], (int) $joined[2], (int) $joined[0]); if ($joined_time !== false) { $sql_where .= " AND u.user_regdate " . $find_key_match[$joined_select] . ' ' . $joined_time; } } if (isset($find_key_match[$active_select]) && count($active) == 3 && $auth->acl_get('u_viewonline')) { $active_time = gmmktime(0, 0, 0, (int) $active[1], (int) $active[2], (int) $active[0]); if ($active_time !== false) { if ($active_select === 'lt' && (int) $active[0] == 0 && (int) $active[1] == 0 && (int) $active[2] == 0) { $sql_where .= ' AND u.user_last_active = 0'; } else if ($active_select === 'gt') { $sql_where .= ' AND u.user_last_active ' . $find_key_match[$active_select] . ' ' . $active_time; } else { $sql_where .= ' AND (u.user_last_active > 0 AND u.user_last_active < ' . $active_time . ')'; } } } $sql_where .= ($search_group_id) ? " AND u.user_id = ug.user_id AND ug.group_id = $search_group_id AND ug.user_pending = 0 " : ''; if ($search_group_id) { $sql_from = ', ' . USER_GROUP_TABLE . ' ug '; } if ($ipdomain && $auth->acl_getf_global('m_info')) { if (strspn($ipdomain, 'abcdefghijklmnopqrstuvwxyz')) { $hostnames = gethostbynamel($ipdomain); if ($hostnames !== false) { $ips = "'" . implode('\', \'', array_map(array($db, 'sql_escape'), preg_replace('#([0-9]{1,3}\.[0-9]{1,3}[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3})#', "\\1", gethostbynamel($ipdomain)))) . "'"; } else { $ips = false; } } else { $ips = "'" . str_replace('*', '%', $db->sql_escape($ipdomain)) . "'"; } if ($ips === false) { // A minor fudge but it does the job :D $sql_where .= " AND u.user_id = 0"; } else { $ip_forums = array_keys($auth->acl_getf('m_info', true)); $sql = 'SELECT DISTINCT poster_id FROM ' . POSTS_TABLE . ' WHERE poster_ip ' . ((strpos($ips, '%') !== false) ? 'LIKE' : 'IN') . " ($ips) AND " . $db->sql_in_set('forum_id', $ip_forums); /** * Modify sql query for members search by ip address / hostname * * @event core.memberlist_modify_ip_search_sql_query * @var string ipdomain The host name * @var string ips IP address list for the given host name * @var string sql The SQL query for searching members by IP address * @since 3.1.7-RC1 */ $vars = array( 'ipdomain', 'ips', 'sql', ); extract($phpbb_dispatcher->trigger_event('core.memberlist_modify_ip_search_sql_query', compact($vars))); $result = $db->sql_query($sql); if ($row = $db->sql_fetchrow($result)) { $ip_sql = array(); do { $ip_sql[] = $row['poster_id']; } while ($row = $db->sql_fetchrow($result)); $sql_where .= ' AND ' . $db->sql_in_set('u.user_id', $ip_sql); } else { // A minor fudge but it does the job :D $sql_where .= " AND u.user_id = 0"; } unset($ip_forums); $db->sql_freeresult($result); } } } $first_char = $request->variable('first_char', ''); if ($first_char == 'other') { for ($i = 97; $i < 123; $i++) { $sql_where .= ' AND u.username_clean NOT ' . $db->sql_like_expression(chr($i) . $db->get_any_char()); } } else if ($first_char) { $sql_where .= ' AND u.username_clean ' . $db->sql_like_expression(substr($first_char, 0, 1) . $db->get_any_char()); } // Are we looking at a usergroup? If so, fetch additional info // and further restrict the user info query if ($mode == 'group') { // We JOIN here to save a query for determining membership for hidden groups. ;) $sql = 'SELECT g.*, ug.user_id, ug.group_leader FROM ' . GROUPS_TABLE . ' g LEFT JOIN ' . USER_GROUP_TABLE . ' ug ON (ug.user_pending = 0 AND ug.user_id = ' . $user->data['user_id'] . " AND ug.group_id = $group_id) WHERE g.group_id = $group_id"; $result = $db->sql_query($sql); $group_row = $db->sql_fetchrow($result); $db->sql_freeresult($result); if (!$group_row) { trigger_error('NO_GROUP'); } switch ($group_row['group_type']) { case GROUP_OPEN: $group_row['l_group_type'] = 'OPEN'; break; case GROUP_CLOSED: $group_row['l_group_type'] = 'CLOSED'; break; case GROUP_HIDDEN: $group_row['l_group_type'] = 'HIDDEN'; // Check for membership or special permissions if (!$auth->acl_gets('a_group', 'a_groupadd', 'a_groupdel') && $group_row['user_id'] != $user->data['user_id']) { trigger_error('NO_GROUP'); } break; case GROUP_SPECIAL: $group_row['l_group_type'] = 'SPECIAL'; break; case GROUP_FREE: $group_row['l_group_type'] = 'FREE'; break; } $avatar_img = phpbb_get_group_avatar($group_row); // ... same for group rank $group_rank_data = array( 'title' => null, 'img' => null, 'img_src' => null, ); if ($group_row['group_rank']) { $group_rank_data = $group_helper->get_rank($group_row); if ($group_rank_data['img']) { $group_rank_data['img'] .= '
'; } } // include modules for manage groups link display or not // need to ensure the module is active $can_manage_group = false; if ($user->data['is_registered'] && $group_row['group_leader']) { if (!class_exists('p_master')) { include($phpbb_root_path . 'includes/functions_module.' . $phpEx); } $module = new p_master; $module->list_modules('ucp'); if ($module->is_active('ucp_groups', 'manage')) { $can_manage_group = true; } unset($module); } $template->assign_block_vars('navlinks', array( 'BREADCRUMB_NAME' => $group_helper->get_name($group_row['group_name']), 'U_BREADCRUMB' => append_sid("{$phpbb_root_path}memberlist.$phpEx", "mode=group&g=$group_id"), )); $template->assign_vars(array( 'GROUP_DESC' => generate_text_for_display($group_row['group_desc'], $group_row['group_desc_uid'], $group_row['group_desc_bitfield'], $group_row['group_desc_options']), 'GROUP_NAME' => $group_helper->get_name($group_row['group_name']), 'GROUP_COLOR' => $group_row['group_colour'], 'GROUP_TYPE' => $user->lang['GROUP_IS_' . $group_row['l_group_type']], 'GROUP_RANK' => $group_rank_data['title'], 'AVATAR_IMG' => $avatar_img, 'RANK_IMG' => $group_rank_data['img'], 'RANK_IMG_SRC' => $group_rank_data['img_src'], 'U_PM' => ($auth->acl_get('u_sendpm') && $auth->acl_get('u_masspm_group') && $group_row['group_receive_pm'] && $config['allow_privmsg'] && $config['allow_mass_pm']) ? append_sid("{$phpbb_root_path}ucp.$phpEx", 'i=pm&mode=compose&g=' . $group_id) : '', 'U_MANAGE' => ($can_manage_group) ? append_sid("{$phpbb_root_path}ucp.$phpEx", 'i=ucp_groups&mode=manage') : false,) ); $sql_select = ', ug.group_leader'; $sql_from = ', ' . USER_GROUP_TABLE . ' ug '; $order_by = 'ug.group_leader DESC, '; $sql_where .= " AND ug.user_pending = 0 AND u.user_id = ug.user_id AND ug.group_id = $group_id"; $sql_where_data = " AND u.user_id = ug.user_id AND ug.group_id = $group_id"; } // Sorting and order if (!isset($sort_key_sql[$sort_key])) { $sort_key = $default_key; } $order_by .= $sort_key_sql[$sort_key] . ' ' . (($sort_dir == 'a') ? 'ASC' : 'DESC'); // Unfortunately we must do this here for sorting by rank, else the sort order is applied wrongly if ($sort_key == 'm') { $order_by .= ', u.user_posts DESC'; } /** * Modify sql query data for members search * * @event core.memberlist_modify_sql_query_data * @var string order_by SQL ORDER BY clause condition * @var string sort_dir The sorting direction * @var string sort_key The sorting key * @var array sort_key_sql Arraty with the sorting conditions data * @var string sql_from SQL FROM clause condition * @var string sql_select SQL SELECT fields list * @var string sql_where SQL WHERE clause condition * @var string sql_where_data SQL WHERE clause additional conditions data * @since 3.1.7-RC1 */ $vars = array( 'order_by', 'sort_dir', 'sort_key', 'sort_key_sql', 'sql_from', 'sql_select', 'sql_where', 'sql_where_data', ); extract($phpbb_dispatcher->trigger_event('core.memberlist_modify_sql_query_data', compact($vars))); // Count the users ... $sql = 'SELECT COUNT(u.user_id) AS total_users FROM ' . USERS_TABLE . " u$sql_from WHERE " . $db->sql_in_set('u.user_type', $user_types) . " $sql_where"; $result = $db->sql_query($sql); $total_users = (int) $db->sql_fetchfield('total_users'); $db->sql_freeresult($result); // Build a relevant pagination_url $params = $sort_params = array(); // We do not use $request->variable() here directly to save some calls (not all variables are set) $check_params = array( 'g' => array('g', 0), 'sk' => array('sk', $default_key), 'sd' => array('sd', 'a'), 'form' => array('form', ''), 'field' => array('field', ''), 'select_single' => array('select_single', $select_single), 'username' => array('username', '', true), 'email' => array('email', ''), 'jabber' => array('jabber', ''), 'search_group_id' => array('search_group_id', 0), 'joined_select' => array('joined_select', 'lt'), 'active_select' => array('active_select', 'lt'), 'count_select' => array('count_select', 'eq'), 'joined' => array('joined', ''), 'active' => array('active', ''), 'count' => ($request->variable('count', '') !== '') ? array('count', 0) : array('count', ''), 'ip' => array('ip', ''), 'first_char' => array('first_char', ''), ); $u_first_char_params = array(); foreach ($check_params as $key => $call) { if (!isset($_REQUEST[$key])) { continue; } $param = call_user_func_array(array($request, 'variable'), $call); // Encode strings, convert everything else to int in order to prevent empty parameters. $param = urlencode($key) . '=' . ((is_string($param)) ? urlencode($param) : (int) $param); $params[] = $param; if ($key != 'first_char') { $u_first_char_params[] = $param; } if ($key != 'sk' && $key != 'sd') { $sort_params[] = $param; } } $u_hide_find_member = append_sid("{$phpbb_root_path}memberlist.$phpEx", "start=$start" . (!empty($params) ? '&' . implode('&', $params) : '')); if ($mode) { $params[] = "mode=$mode"; $u_first_char_params[] = "mode=$mode"; } $sort_params[] = "mode=$mode"; $u_first_char_params = implode('&', $u_first_char_params); $u_first_char_params .= ($u_first_char_params) ? '&' : ''; $first_characters = array(); $first_characters[''] = $user->lang['ALL']; for ($i = 97; $i < 123; $i++) { $first_characters[chr($i)] = chr($i - 32); } $first_characters['other'] = $user->lang['OTHER']; $first_char_block_vars = []; foreach ($first_characters as $char => $desc) { $first_char_block_vars[] = [ 'DESC' => $desc, 'VALUE' => $char, 'S_SELECTED' => ($first_char == $char) ? true : false, 'U_SORT' => append_sid("{$phpbb_root_path}memberlist.$phpEx", $u_first_char_params . 'first_char=' . $char) . '#memberlist', ]; } /** * Modify memberlist sort and pagination parameters * * @event core.memberlist_modify_sort_pagination_params * @var array sort_params Array with URL parameters for sorting * @var array params Array with URL parameters for pagination * @var array first_characters Array that maps each letter in a-z, 'other' and the empty string to their display representation * @var string u_first_char_params Concatenated URL parameters for first character search links * @var array first_char_block_vars Template block variables for each first character * @var int total_users Total number of users found in this search * @since 3.2.6-RC1 */ $vars = [ 'sort_params', 'params', 'first_characters', 'u_first_char_params', 'first_char_block_vars', 'total_users', ]; extract($phpbb_dispatcher->trigger_event('core.memberlist_modify_sort_pagination_params', compact($vars))); $template->assign_block_vars_array('first_char', $first_char_block_vars); $pagination_url = append_sid("{$phpbb_root_path}memberlist.$phpEx", implode('&', $params)); $sort_url = append_sid("{$phpbb_root_path}memberlist.$phpEx", implode('&', $sort_params)); unset($search_params, $sort_params); // Some search user specific data if (($mode == '' || $mode == 'searchuser') && ($config['load_search'] || $auth->acl_get('a_'))) { $group_selected = $request->variable('search_group_id', 0); $s_group_select = '
'; $group_ids = array(); /** * @todo add this to a separate function (function is responsible for returning the groups the user is able to see based on the users group membership) */ if ($auth->acl_gets('a_group', 'a_groupadd', 'a_groupdel')) { $sql = 'SELECT group_id, group_name, group_type FROM ' . GROUPS_TABLE; if (!$config['coppa_enable']) { $sql .= " WHERE group_name <> 'REGISTERED_COPPA'"; } $sql .= ' ORDER BY group_name ASC'; } else { $sql = 'SELECT g.group_id, g.group_name, g.group_type FROM ' . GROUPS_TABLE . ' g LEFT JOIN ' . USER_GROUP_TABLE . ' ug ON ( g.group_id = ug.group_id AND ug.user_id = ' . $user->data['user_id'] . ' AND ug.user_pending = 0 ) WHERE (g.group_type <> ' . GROUP_HIDDEN . ' OR ug.user_id = ' . $user->data['user_id'] . ')'; if (!$config['coppa_enable']) { $sql .= " AND g.group_name <> 'REGISTERED_COPPA'"; } $sql .= ' ORDER BY g.group_name ASC'; } $result = $db->sql_query($sql); while ($row = $db->sql_fetchrow($result)) { $group_ids[] = $row['group_id']; $s_group_select .= '
' . $group_helper->get_name($row['group_name']) . '
'; } $db->sql_freeresult($result); if ($group_selected !== 0 && !in_array($group_selected, $group_ids)) { trigger_error('NO_GROUP'); } $template->assign_vars(array( 'USERNAME' => $username, 'EMAIL' => $email, 'JABBER' => $jabber, 'JOINED' => implode('-', $joined), 'ACTIVE' => implode('-', $active), 'COUNT' => $count, 'IP' => $ipdomain, 'S_IP_SEARCH_ALLOWED' => ($auth->acl_getf_global('m_info')) ? true : false, 'S_EMAIL_SEARCH_ALLOWED'=> ($auth->acl_get('a_user')) ? true : false, 'S_JABBER_ENABLED' => $config['jab_enable'], 'S_IN_SEARCH_POPUP' => ($form && $field) ? true : false, 'S_SEARCH_USER' => ($mode == 'searchuser' || ($mode == '' && $submit)), 'S_FORM_NAME' => $form, 'S_FIELD_NAME' => $field, 'S_SELECT_SINGLE' => $select_single, 'S_COUNT_OPTIONS' => $s_find_count, 'S_SORT_OPTIONS' => $s_sort_key, 'S_JOINED_TIME_OPTIONS' => $s_find_join_time, 'S_ACTIVE_TIME_OPTIONS' => $s_find_active_time, 'S_GROUP_SELECT' => $s_group_select, 'S_USER_SEARCH_ACTION' => append_sid("{$phpbb_root_path}memberlist.$phpEx", "mode=searchuser&form=$form&field=$field")) ); } $start = $pagination->validate_start($start, $config['topics_per_page'], $total_users); // Get us some users :D $sql = "SELECT u.user_id FROM " . USERS_TABLE . " u $sql_from WHERE " . $db->sql_in_set('u.user_type', $user_types) . " $sql_where ORDER BY $order_by"; $result = $db->sql_query_limit($sql, $config['topics_per_page'], $start); $user_list = array(); while ($row = $db->sql_fetchrow($result)) { $user_list[] = (int) $row['user_id']; } $db->sql_freeresult($result); // Load custom profile fields if ($config['load_cpf_memberlist']) { /* @var $cp \phpbb\profilefields\manager */ $cp = $phpbb_container->get('profilefields.manager'); $cp_row = $cp->generate_profile_fields_template_headlines('field_show_on_ml'); foreach ($cp_row as $profile_field) { $template->assign_block_vars('custom_fields', $profile_field); } } $leaders_set = false; // So, did we get any users? if (count($user_list)) { // Session time?! Session time... $sql = 'SELECT session_user_id, MAX(session_time) AS session_time, MIN(session_viewonline) AS session_viewonline FROM ' . SESSIONS_TABLE . ' WHERE session_time >= ' . (time() - $config['session_length']) . ' AND ' . $db->sql_in_set('session_user_id', $user_list) . ' GROUP BY session_user_id'; $result = $db->sql_query($sql); $session_ary = []; while ($row = $db->sql_fetchrow($result)) { $session_ary[$row['session_user_id']] = [ 'session_time' => $row['session_time'], 'session_viewonline' => $row['session_viewonline'], ]; } $db->sql_freeresult($result); // Do the SQL thang if ($mode == 'group') { $sql_from_ary = explode(',', $sql_from); $extra_tables = []; foreach ($sql_from_ary as $entry) { $table_data = explode(' ', trim($entry)); if (empty($table_data[0]) || empty($table_data[1])) { continue; } $extra_tables[$table_data[0]] = $table_data[1]; } $sql_array = array( 'SELECT' => 'u.*' . $sql_select, 'FROM' => array_merge([USERS_TABLE => 'u'], $extra_tables), 'WHERE' => $db->sql_in_set('u.user_id', $user_list) . $sql_where_data . '', ); } else { $sql_array = array( 'SELECT' => 'u.*', 'FROM' => array( USERS_TABLE => 'u' ), 'WHERE' => $db->sql_in_set('u.user_id', $user_list), ); } /** * Modify user data SQL before member row is created * * @event core.memberlist_modify_memberrow_sql * @var string mode Memberlist mode * @var string sql_select Additional select statement * @var string sql_from Additional from statement * @var array sql_array Array containing the main query * @var array user_list Array containing list of users * @since 3.2.6-RC1 */ $vars = array( 'mode', 'sql_select', 'sql_from', 'sql_array', 'user_list', ); extract($phpbb_dispatcher->trigger_event('core.memberlist_modify_memberrow_sql', compact($vars))); $sql = $db->sql_build_query('SELECT', $sql_array); $result = $db->sql_query($sql); $id_cache = array(); while ($row = $db->sql_fetchrow($result)) { $row['session_time'] = $session_ary[$row['user_id']]['session_time'] ?? 0; $row['session_viewonline'] = $session_ary[$row['user_id']]['session_viewonline'] ?? 0; $row['last_visit'] = $row['user_last_active'] ?: $row['session_time']; $id_cache[$row['user_id']] = $row; } $db->sql_freeresult($result); // Load custom profile fields if required if ($config['load_cpf_memberlist']) { // Grab all profile fields from users in id cache for later use - similar to the poster cache $profile_fields_cache = $cp->grab_profile_fields_data($user_list); // Filter the fields we don't want to show foreach ($profile_fields_cache as $user_id => $user_profile_fields) { foreach ($user_profile_fields as $field_ident => $profile_field) { if (!$profile_field['data']['field_show_on_ml']) { unset($profile_fields_cache[$user_id][$field_ident]); } } } } // If we sort by last active date we need to adjust the id cache due to user_lastvisit not being the last active date... if ($sort_key == 'l') { // uasort($id_cache, create_function('$first, $second', "return (\$first['last_visit'] == \$second['last_visit']) ? 0 : ((\$first['last_visit'] < \$second['last_visit']) ? $lesser_than : ($lesser_than * -1));")); usort($user_list, 'phpbb_sort_last_active'); } // do we need to display contact fields as such $use_contact_fields = true; /** * Modify list of users before member row is created * * @event core.memberlist_memberrow_before * @var array user_list Array containing list of users * @var bool use_contact_fields Should we display contact fields as such? * @since 3.1.7-RC1 */ $vars = array('user_list', 'use_contact_fields'); extract($phpbb_dispatcher->trigger_event('core.memberlist_memberrow_before', compact($vars))); for ($i = 0, $end = count($user_list); $i < $end; ++$i) { $user_id = $user_list[$i]; $row = $id_cache[$user_id]; $is_leader = (isset($row['group_leader']) && $row['group_leader']) ? true : false; $leaders_set = ($leaders_set || $is_leader); $cp_row = array(); if ($config['load_cpf_memberlist']) { $cp_row = (isset($profile_fields_cache[$user_id])) ? $cp->generate_profile_fields_template_data($profile_fields_cache[$user_id], $use_contact_fields) : array(); } $memberrow = array_merge(phpbb_show_profile($row, false, false, false), array( 'ROW_NUMBER' => $i + ($start + 1), 'S_CUSTOM_PROFILE' => (isset($cp_row['row']) && count($cp_row['row'])) ? true : false, 'S_GROUP_LEADER' => $is_leader, 'S_INACTIVE' => $row['user_type'] == USER_INACTIVE, 'U_VIEW_PROFILE' => get_username_string('profile', $user_id, $row['username']), )); if (isset($cp_row['row']) && count($cp_row['row'])) { $memberrow = array_merge($memberrow, $cp_row['row']); } $template->assign_block_vars('memberrow', $memberrow); if (isset($cp_row['blockrow']) && count($cp_row['blockrow'])) { foreach ($cp_row['blockrow'] as $field_data) { $template->assign_block_vars('memberrow.custom_fields', $field_data); } } unset($id_cache[$user_id]); } } $pagination->generate_template_pagination($pagination_url, 'pagination', 'start', $total_users, $config['topics_per_page'], $start); // Generate page $template_vars = array( 'TOTAL_USERS' => $user->lang('LIST_USERS', (int) $total_users), 'PROFILE_IMG' => $user->img('icon_user_profile', $user->lang['PROFILE']), 'PM_IMG' => $user->img('icon_contact_pm', $user->lang['SEND_PRIVATE_MESSAGE']), 'EMAIL_IMG' => $user->img('icon_contact_email', $user->lang['EMAIL']), 'JABBER_IMG' => $user->img('icon_contact_jabber', $user->lang['JABBER']), 'SEARCH_IMG' => $user->img('icon_user_search', $user->lang['SEARCH']), 'U_FIND_MEMBER' => ($config['load_search'] || $auth->acl_get('a_')) ? append_sid("{$phpbb_root_path}memberlist.$phpEx", 'mode=searchuser' . (($start) ? "&start=$start" : '') . (!empty($params) ? '&' . implode('&', $params) : '')) : '', 'U_HIDE_FIND_MEMBER' => ($mode == 'searchuser' || ($mode == '' && $submit)) ? $u_hide_find_member : '', 'U_LIVE_SEARCH' => ($config['allow_live_searches']) ? append_sid("{$phpbb_root_path}memberlist.$phpEx", 'mode=livesearch') : false, 'U_SORT_USERNAME' => $sort_url . '&sk=a&sd=' . (($sort_key == 'a' && $sort_dir == 'a') ? 'd' : 'a'), 'U_SORT_JOINED' => $sort_url . '&sk=c&sd=' . (($sort_key == 'c' && $sort_dir == 'd') ? 'a' : 'd'), 'U_SORT_POSTS' => $sort_url . '&sk=d&sd=' . (($sort_key == 'd' && $sort_dir == 'd') ? 'a' : 'd'), 'U_SORT_EMAIL' => $sort_url . '&sk=e&sd=' . (($sort_key == 'e' && $sort_dir == 'd') ? 'a' : 'd'), 'U_SORT_ACTIVE' => ($auth->acl_get('u_viewonline')) ? $sort_url . '&sk=l&sd=' . (($sort_key == 'l' && $sort_dir == 'd') ? 'a' : 'd') : '', 'U_SORT_RANK' => $sort_url . '&sk=m&sd=' . (($sort_key == 'm' && $sort_dir == 'd') ? 'a' : 'd'), 'U_LIST_CHAR' => $sort_url . '&sk=a&sd=' . (($sort_key == 'l' && $sort_dir == 'd') ? 'a' : 'd'), 'S_SHOW_GROUP' => ($mode == 'group') ? true : false, 'S_VIEWONLINE' => $auth->acl_get('u_viewonline'), 'S_LEADERS_SET' => $leaders_set, 'S_MODE_SELECT' => $s_sort_key, 'S_ORDER_SELECT' => $s_sort_dir, 'S_MODE_ACTION' => $pagination_url, ); /** * Modify memberlist page template vars * * @event core.memberlist_modify_template_vars * @var array params Array containing URL parameters * @var string sort_url Sorting URL base * @var array template_vars Array containing template vars * @since 3.2.2-RC1 */ $vars = array('params', 'sort_url', 'template_vars'); extract($phpbb_dispatcher->trigger_event('core.memberlist_modify_template_vars', compact($vars))); $template->assign_vars($template_vars); } // Output the page page_header($page_title); $template->set_filenames(array( 'body' => $template_html) ); make_jumpbox(append_sid("{$phpbb_root_path}viewforum.$phpEx")); page_footer();
Save
Download
Delete