<?php
# Copyright by: Manuel
# Support: www.ilch.de
defined (
'main'
)
or
die
(
'no direct access'
);
defined (
'admin'
)
or
die
(
'only admin access'
);
$design
=
new
design (
'Admins Area'
,
'Admins Area'
, 2 );
$design
->header();
$tpl
=
new
tpl (
'puser'
, 1);
# add pending user
if
(
$menu
->get(1) ==
"confirm"
AND isset(
$_GET
[
'check'
])){
$erg
= db_query(
"SELECT * FROM prefix_usercheck WHERE `check` = '"
.escape(
$_GET
['check
'], '
string
')."'
");
if
( db_num_rows(
$erg
) == 1 ) {
$row
= db_fetch_assoc(
$erg
);
switch
(
$row
[
'ak'
] ) {
# confirm regist
case
1 :
if
( 0 == db_count_query(
"SELECT COUNT(*) FROM prefix_user WHERE name = BINARY '"
.
$row
['name
']."'
") ) {
db_query("INSERT INTO prefix_user (name,pass,recht,regist,llogin,email,status,opt_mail,opt_pm)
VALUES(
'".$row['
name
']."'
,
'".$row['
pass
']."'
,-1,
'".time()."'
,
'".time()."'
,
'".$row['
email
']."'
,1,1,1)");
db_query(
"DELETE FROM prefix_usercheck WHERE `check` = '"
.escape(
$_GET
['check
'], '
string
')."'
");
}
else
{
$tpl
->set_out(
'error'
,
'Username existiert bereits'
,3);
}
break
;
# confirm
new
pass
case
2 :
db_query(
"UPDATE prefix_user SET pass = '"
.
$row
['pass
']."'
WHERE name = BINARY
'".$row['
name
']."'
");
db_query(
"DELETE FROM prefix_usercheck WHERE `check` = '"
.escape(
$_GET
['check
'], '
string
')."'
");
break
;
# confirm
new
email
case
3 :
list (
$id
,
$check
) =
explode
(
'||'
,
$row
[
'check'
]);
db_query(
"UPDATE prefix_user SET email = '"
.
$row
['email
']."'
WHERE id = ". escape(
$id
,
'integer'
));
db_query(
"DELETE FROM prefix_usercheck WHERE `check` = '"
.escape(
$_GET
['check
'], '
string
')."'
");
break
;
# join us
case
4 :
break
;
}
}
else
{
$tpl
->set_out(
'error'
,
'User nicht auffindbar'
,3);
}
}
#remove pending user
if
(
$menu
->get(1) ==
"del"
AND isset(
$_GET
[
'check'
])){
db_query(
"DELETE FROM prefix_usercheck WHERE `check` = '"
.escape(
$_GET
['check
'], '
string
')."'
");
}
$tpl
->out(0);
$ak
=
array
(
''
,
'neuer User'
,
'neues Passwort'
,
'neue Emailadresse'
,
'Join us'
);
$c
= 0;
$erg
= db_query(
"SELECT `check`, `name`, `email`, `ak`, date_format(datime,'%k:%i Uhr %e.%c.%Y') as time FROM `prefix_usercheck` ORDER by datime DESC"
);
while
(
$row
= db_fetch_assoc(
$erg
)) {
if
(
$class
==
'Cmite'
) {
$class
=
'Cnorm'
; }
else
{
$class
=
'Cmite'
; }
$c
++;
$row
[
'c'
]=
$c
;
$row
[
'class'
]=
$class
;
if
(
$row
[
'ak'
]==3){
list (
$id
,
$check
) =
explode
(
'||'
,
$row
[
'check'
]);
$row
[
'name'
]= @db_result(db_query(
"SELECT name FROM prefix_user WHERE id = "
.
$id
),0);
}
$row
[
'aktion'
] =
$ak
[
$row
[
'ak'
]];
$tpl
->set_ar_out(
$row
, 1);
}
$tpl
->out(2);
$design
->footer();
?>