Go to most recent revision | Blame | Last modification | View Log | Download
<?php/*************************Coppermine Photo Gallery************************Copyright (c) 2003-2005 Coppermine Dev Teamv1.1 originaly written by Gregory DEMARThis program is free software; you can redistribute it and/or modifyit under the terms of the GNU General Public License as published bythe Free Software Foundation; either version 2 of the License, or(at your option) any later version.********************************************Coppermine version: 1.3.3$Source: /cvsroot/coppermine/stable/bridge/vbulletin.inc.php,v $$Revision: 1.7 $$Author: gaugau $$Date: 2005/04/19 03:17:13 $**********************************************/// ------------------------------------------------------------------------- //// vBulletin 2.3 Integration for Coppermine// ------------------------------------------------------------------------- //// ------------------------------------------------------------------------- //// Modify the values below according to your Board installation// ------------------------------------------------------------------------- //// database configurationdefine('VB_DB_NAME', 'vbulletin23'); // The name of the database used by the boarddefine('VB_BD_HOST', 'localhost'); // The name of the database serverdefine('VB_DB_USERNAME', 'root'); // The username to use to connect to the databasedefine('VB_DB_PASSWORD', ''); // The password to use to connect to the database// The web path to your vBulletin Board directory// In this example http://yoursite_name.com/vbulletin23/define('VB_WEB_PATH', '/vbulletin23/');// ------------------------------------------------------------------------- //// Nothing to edit below this line// ------------------------------------------------------------------------- //// Prefix and names for the database tablesdefine('VB_TABLE_PREFIX', ''); // Leave empty, not supported by vBulletin 2.3define('VB_USER_TABLE', 'user'); // The members tabledefine('VB_SESSION_TABLE', 'session'); // The sessions tabledefine('VB_GROUP_TABLE', 'usergroup'); // The groups table// Group definitions (default values used by the board)define('VB_VALIDATING_GROUP', 3);define('VB_GUEST_GROUP', 1);define('VB_MEMBERS_GROUP', 2);define('VB_ADMIN_GROUP', 6);// Authenticate a user using cookiesfunction udb_authenticate(){global $HTTP_COOKIE_VARS, $USER_DATA, $UDB_DB_LINK_ID, $UDB_DB_NAME_PREFIX, $CONFIG;global $HTTP_SERVER_VARS, $HTTP_X_FORWARDED_FOR, $HTTP_PROXY_USER, $REMOTE_ADDR;// For error checking$CONFIG['TABLE_USERS'] = '**ERROR**';// Permissions for a default group$default_group = array('group_id' => VB_GUEST_GROUP,'group_name' => 'Unknown','has_admin_access' => 0,'can_send_ecards' => 0,'can_rate_pictures' => 0,'can_post_comments' => 0,'can_upload_pictures' => 0,'can_create_albums' => 0,'pub_upl_need_approval' => 1,'priv_upl_need_approval' => 1,);// get first 50 chars$HTTP_USER_AGENT = substr($HTTP_SERVER_VARS['HTTP_USER_AGENT'], 0, 50);$REMOTE_ADDR = substr($HTTP_SERVER_VARS['REMOTE_ADDR'], 0, 50);if (is_array($HTTP_COOKIE_VARS)) {$sessionhash = isset($HTTP_COOKIE_VARS['sessionhash']) ? $HTTP_COOKIE_VARS['sessionhash'] : '';$bbuserid = isset($HTTP_COOKIE_VARS['bbuserid']) ? $HTTP_COOKIE_VARS['bbuserid'] : 0;$bbpassword = isset($HTTP_COOKIE_VARS['bbpassword']) ? $HTTP_COOKIE_VARS['bbpassword'] : '';$bbalthash = isset($HTTP_COOKIE_VARS['bbalthash']) ? $HTTP_COOKIE_VARS['bbalthash'] : '';}if ($bbuserid && $bbpassword) {// If userid and password exist in cookies we use them to login$sql = "SELECT userid as user_id, username as user_name, usergroupid as mgroup " . "FROM " . $UDB_DB_NAME_PREFIX . VB_TABLE_PREFIX . VB_USER_TABLE . " " . "WHERE userid='" . addslashes($bbuserid) . "' AND password='" . addslashes($bbpassword) . "'";} elseif ($sessionhash) {// session hash exists// validate it:$sql = "SELECT sessionhash,userid,host,useragent,styleid " . "FROM " . $UDB_DB_NAME_PREFIX . VB_TABLE_PREFIX . VB_SESSION_TABLE . " " . "WHERE sessionhash='" . addslashes($sessionhash) . "' " . " AND (host='" . addslashes($REMOTE_ADDR) . "' " . " OR (althash='" . addslashes($bbalthash) . "' AND althash<>'')) " . " AND useragent='" . addslashes($HTTP_USER_AGENT) . "'";$result = db_query($sql, $UDB_DB_LINK_ID);if (mysql_num_rows($result)) {// session hash exists$session_data = mysql_fetch_array($result);mysql_free_result($result);$sql = "SELECT userid as user_id, username as user_name, usergroupid as mgroup " . "FROM " . $UDB_DB_NAME_PREFIX . VB_TABLE_PREFIX . VB_USER_TABLE . " " . "WHERE userid='" . $session_data['userid'] . "'";$result = db_query($sql, $UDB_DB_LINK_ID);} else {$sql = "SELECT userid as user_id, username as user_name, usergroupid as mgroup " . "FROM " . $UDB_DB_NAME_PREFIX . VB_TABLE_PREFIX . VB_USER_TABLE . " " . "WHERE 0";}} else {$sql = "SELECT userid as user_id, username as user_name, usergroupid as mgroup " . "FROM " . $UDB_DB_NAME_PREFIX . VB_TABLE_PREFIX . VB_USER_TABLE . " " . "WHERE 0";}$result = db_query($sql, $UDB_DB_LINK_ID);if (mysql_num_rows($result)) {$USER_DATA = mysql_fetch_array($result);mysql_free_result($result);define('USER_ID', (int)$USER_DATA['user_id']);define('USER_NAME', $USER_DATA['user_name']);// Retrieve group information$sql = "SELECT * " . "FROM {$CONFIG['TABLE_USERGROUPS']} " . "WHERE group_id = '{$USER_DATA['mgroup']}'";$result = db_query($sql);if (mysql_num_rows($result)) {$USER_DATA2 = mysql_fetch_array($result);} else {$USER_DATA2 = $default_group;}$USER_DATA = array_merge($USER_DATA, $USER_DATA2);define('USER_GROUP', $USER_DATA['group_name']);define('USER_GROUP_SET', '(' . $USER_DATA['group_id'] . ')');define('USER_IS_ADMIN', ($USER_DATA['mgroup'] == VB_ADMIN_GROUP));define('USER_CAN_SEND_ECARDS', (int)$USER_DATA['can_send_ecards']);define('USER_CAN_RATE_PICTURES', (int)$USER_DATA['can_rate_pictures']);define('USER_CAN_POST_COMMENTS', (int)$USER_DATA['can_post_comments']);define('USER_CAN_UPLOAD_PICTURES', (int)$USER_DATA['can_upload_pictures']);define('USER_CAN_CREATE_ALBUMS', (int)$USER_DATA['can_create_albums']);mysql_free_result($result);} else {$result = db_query("SELECT * FROM {$CONFIG['TABLE_USERGROUPS']} WHERE group_id = " . VB_GUEST_GROUP);if (!mysql_num_rows($result)) {$USER_DATA = $default_group;} else {$USER_DATA = mysql_fetch_array($result);}define('USER_ID', 0);define('USER_NAME', 'Anonymous');define('USER_GROUP_SET', '(' . VB_GUEST_GROUP . ')');define('USER_IS_ADMIN', 0);define('USER_CAN_SEND_ECARDS', (int)$USER_DATA['can_send_ecards']);define('USER_CAN_RATE_PICTURES', (int)$USER_DATA['can_rate_pictures']);define('USER_CAN_POST_COMMENTS', (int)$USER_DATA['can_post_comments']);define('USER_CAN_UPLOAD_PICTURES', (int)$USER_DATA['can_upload_pictures']);define('USER_CAN_CREATE_ALBUMS', 0);mysql_free_result($result);}}// Retrieve the name of a userfunction udb_get_user_name($uid){global $UDB_DB_LINK_ID, $UDB_DB_NAME_PREFIX, $CONFIG;$sql = "SELECT username as user_name " . "FROM " . $UDB_DB_NAME_PREFIX . VB_TABLE_PREFIX . VB_USER_TABLE . " " . "WHERE userid = '$uid'";$result = db_query($sql, $UDB_DB_LINK_ID);if (mysql_num_rows($result)) {$row = mysql_fetch_array($result);mysql_free_result($result);return $row['user_name'];} else {return '';}}// Redirectfunction udb_redirect($target){header('Location: ' . VB_WEB_PATH . $target);exit;}// Registerfunction udb_register_page(){$target = 'register.php';udb_redirect($target);}// Loginfunction udb_login_page(){$target = 'index.php';udb_redirect($target);}// Logoutfunction udb_logout_page(){$target = 'member.php?&action=logout';udb_redirect($target);}// Edit usersfunction udb_edit_users(){$target = 'admin/index.php';udb_redirect($target);}// Get user informationfunction udb_get_user_infos($uid){global $CONFIG, $UDB_DB_NAME_PREFIX, $UDB_DB_LINK_ID;global $lang_register_php;$sql = "SELECT username as user_name, usergroupid as mgroup, email as user_email, joindate as user_regdate, " . "homepage as user_website " . "FROM " . $UDB_DB_NAME_PREFIX . VB_TABLE_PREFIX . VB_USER_TABLE . " " . "WHERE userid = '$uid'";$result = db_query($sql, $UDB_DB_LINK_ID);if (!mysql_num_rows($result)) cpg_die(ERROR, $lang_register_php['err_unk_user'], __FILE__, __LINE__);$user_data = mysql_fetch_array($result);mysql_free_result($result);$user_data['group_name'] = '';$user_data['user_occupation'] = '';$user_data['user_location'] = '';$user_data['user_interests'] = '';$sql = "SELECT group_name " . "FROM {$CONFIG['TABLE_USERGROUPS']} " . "WHERE group_id = {$user_data['mgroup']} ";$result = db_query($sql);if (mysql_num_rows($result)) {$row = mysql_fetch_array($result);$user_data['group_name'] = $row['group_name'];}mysql_free_result($result);return $user_data;}// Edit user profilefunction udb_edit_profile($uid){$target = 'usercp.php';udb_redirect($target);}// Query used to list usersfunction udb_list_users_query(&$user_count){global $CONFIG, $FORBIDDEN_SET;if ($FORBIDDEN_SET != "") $forbidden = "AND $FORBIDDEN_SET";$sql = "SELECT (category - " . FIRST_USER_CAT . ") as user_id," . " '???' as user_name," . " COUNT(DISTINCT a.aid) as alb_count," . " COUNT(DISTINCT pid) as pic_count," . " MAX(pid) as thumb_pid " . "FROM {$CONFIG['TABLE_ALBUMS']} AS a " . "INNER JOIN {$CONFIG['TABLE_PICTURES']} AS p ON p.aid = a.aid " . "WHERE approved = 'YES' AND category > " . FIRST_USER_CAT . " $forbidden GROUP BY category " . "ORDER BY category ";$result = db_query($sql);$user_count = mysql_num_rows($result);return $result;}function udb_list_users_retrieve_data($result, $lower_limit, $count){global $CONFIG, $UDB_DB_NAME_PREFIX, $UDB_DB_LINK_ID;mysql_data_seek($result, $lower_limit);$rowset = array();$i = 0;$user_id_set = '';while (($row = mysql_fetch_array($result)) && ($i++ < $count)) {$user_id_set .= $row['user_id'] . ',';$rowset[] = $row;}mysql_free_result($result);$user_id_set = '(' . substr($user_id_set, 0, -1) . ')';$sql = "SELECT userid as user_id, username as user_name " . "FROM " . $UDB_DB_NAME_PREFIX . VB_TABLE_PREFIX . VB_USER_TABLE . " " . "WHERE userid IN $user_id_set";$result = db_query($sql, $UDB_DB_LINK_ID);while ($row = mysql_fetch_array($result)) {$name[$row['user_id']] = $row['user_name'];}for($i = 0; $i < count($rowset); $i++) {$rowset[$i]['user_name'] = empty($name[$rowset[$i]['user_id']]) ? '???' : $name[$rowset[$i]['user_id']];}return $rowset;}// Group table synchronisationfunction udb_synchronize_groups(){global $CONFIG, $UDB_DB_NAME_PREFIX, $UDB_DB_LINK_ID;$result = db_query("SELECT usergroupid, title FROM " . $UDB_DB_NAME_PREFIX . VB_TABLE_PREFIX . VB_GROUP_TABLE . " WHERE 1", $UDB_DB_LINK_ID);while ($row = mysql_fetch_array($result)) {$VB_groups[$row['usergroupid']] = $row['title'];}mysql_free_result($result);$result = db_query("SELECT group_id, group_name FROM {$CONFIG['TABLE_USERGROUPS']} WHERE 1");while ($row = mysql_fetch_array($result)) {$cpg_groups[$row['group_id']] = $row['group_name'];}mysql_free_result($result);// Scan Coppermine groups that need to be deletedforeach($cpg_groups as $c_group_id => $c_group_name) {if ((!isset($VB_groups[$c_group_id]))) {db_query("DELETE FROM {$CONFIG['TABLE_USERGROUPS']} WHERE group_id = '" . $c_group_id . "' LIMIT 1");unset($cpg_groups[$c_group_id]);}}// Scan vBulletin Board groups that need to be created inside Coppermine tableforeach($VB_groups as $i_group_id => $i_group_name) {if ((!isset($cpg_groups[$i_group_id]))) {db_query("INSERT INTO {$CONFIG['TABLE_USERGROUPS']} (group_id, group_name) VALUES ('$i_group_id', '" . addslashes($i_group_name) . "')");$cpg_groups[$i_group_id] = $i_group_name;}}// Update Group namesforeach($VB_groups as $i_group_id => $i_group_name) {if ($cpg_groups[$i_group_id] != $i_group_name) {db_query("UPDATE {$CONFIG['TABLE_USERGROUPS']} SET group_name = '" . addslashes($i_group_name) . "' WHERE group_id = '$i_group_id' LIMIT 1");}}}// Retrieve the album list used in gallery admin modefunction udb_get_admin_album_list(){global $CONFIG, $UDB_DB_NAME_PREFIX, $UDB_DB_LINK_ID, $FORBIDDEN_SET;if (UDB_CAN_JOIN_TABLES) {$sql = "SELECT aid, CONCAT('(', username, ') ', a.title) AS title " . "FROM {$CONFIG['TABLE_ALBUMS']} AS a " . "INNER JOIN " . $UDB_DB_NAME_PREFIX . VB_TABLE_PREFIX . VB_USER_TABLE . " AS u ON category = (" . FIRST_USER_CAT . " + userid) " . "ORDER BY title";return $sql;} else {$sql = "SELECT aid, IF(category > " . FIRST_USER_CAT . ", CONCAT('* ', title), CONCAT(' ', title)) AS title " . "FROM {$CONFIG['TABLE_ALBUMS']} " . "ORDER BY title";return $sql;}}function udb_util_filloptions(){global $albumtbl, $picturetbl, $categorytbl, $lang_util_php, $CONFIG, $UDB_DB_NAME_PREFIX, $UDB_DB_LINK_ID;$usertbl = $UDB_DB_NAME_PREFIX.VB_TABLE_PREFIX.VB_USER_TABLE;if (UDB_CAN_JOIN_TABLES) {$query = "SELECT aid, category, IF(username IS NOT NULL, CONCAT('(', username, ') ', a.title), CONCAT(' - ', a.title)) AS title " . "FROM $albumtbl AS a " . "LEFT JOIN $usertbl AS u ON category = (" . FIRST_USER_CAT . " + userid) " . "ORDER BY category, title";$result = db_query($query, $UDB_DB_LINK_ID);// $num=mysql_numrows($result);echo '<select size="1" name="albumid">';while ($row = mysql_fetch_array($result)) {$sql = "SELECT name FROM $categorytbl WHERE cid = " . $row["category"];$result2 = db_query($sql);$row2 = mysql_fetch_array($result2);print "<option value=\"" . $row["aid"] . "\">" . $row2["name"] . $row["title"] . "</option>\n";}print '</select> (3)';print ' <input type="submit" value="'.$lang_util_php['submit_form'].'" class="submit" /> (4)';print '</form>';} else {// Query for list of public albums$public_albums = db_query("SELECT aid, title, category FROM {$CONFIG['TABLE_ALBUMS']} WHERE category < " . FIRST_USER_CAT . " ORDER BY title");if (mysql_num_rows($public_albums)) {$public_result = db_fetch_rowset($public_albums);} else {$public_result = array();}// Initialize $merged_array$merged_array = array();// Count the number of albums returned.$end = count($public_result);// Cylce through the User albums.for($i=0;$i<$end;$i++) {//Create a new array sow we may sort the final results.$merged_array[$i]['id'] = $public_result[$i]['aid'];$merged_array[$i]['album_name'] = $public_result[$i]['title'];// Query the database to get the category name.$vQuery = "SELECT name, parent FROM " . $CONFIG['TABLE_CATEGORIES'] . " WHERE cid='" . $public_result[$i]['category'] . "'";$vRes = mysql_query($vQuery);$vRes = mysql_fetch_array($vRes);if (isset($merged_array[$i]['username_category'])) {$merged_array[$i]['username_category'] = (($vRes['name']) ? '(' . $vRes['name'] . ') ' : '').$merged_array[$i]['username_category'];} else {$merged_array[$i]['username_category'] = (($vRes['name']) ? '(' . $vRes['name'] . ') ' : '');}}// We transpose and divide the matrix into columns to prepare it for use in array_multisort().foreach ($merged_array as $key => $row) {$aid[$key] = $row['id'];$title[$key] = $row['album_name'];$album_lineage[$key] = $row['username_category'];}// We sort all columns in descending order and plug in $album_menu at the end so it is sorted by the common key.array_multisort($album_lineage, SORT_ASC, $title, SORT_ASC, $aid, SORT_ASC, $merged_array);// Query for list of user albums$user_albums = db_query("SELECT aid, title, category FROM {$CONFIG['TABLE_ALBUMS']} WHERE category >= " . FIRST_USER_CAT . " ORDER BY aid");if (mysql_num_rows($user_albums)) {$user_albums_list = db_fetch_rowset($user_albums);} else {$user_albums_list = array();}// Query for list of user IDs and names$user_album_ids_and_names = db_query("SELECT (userid + ".FIRST_USER_CAT.") as id, CONCAT('(', username, ') ') as name FROM $usertbl ORDER BY name ASC",$UDB_DB_LINK_ID);if (mysql_num_rows($user_album_ids_and_names)) {$user_album_ids_and_names_list = db_fetch_rowset($user_album_ids_and_names);} else {$user_album_ids_and_names_list = array();}// Glue what we've got together.// Initialize $udb_i as a counter.if (count($merged_array)) {$udb_i = count($merged_array);} else {$udb_i = 0;}//Begin a set of nested loops to merge the various query results.foreach ($user_albums_list as $aq) {foreach ($user_album_ids_and_names_list as $uq) {if ($aq['category'] == $uq['id']) {$merged_array[$udb_i]['id']= $aq['category'];$merged_array[$udb_i]['album_name']= $aq['title'];$merged_array[$udb_i]['username_category']= $uq['name'];$udb_i++;}}}// The user albums and public albums have been merged into one list. Print the dropdown.echo '<select size="1" name="albumid">';foreach ($merged_array as $menu_item) {echo "<option value=\"" . $menu_item['id'] . "\">" . (isset($menu_item['username_category']) ? $menu_item['username_category'] : '') . $menu_item['album_name'] . "</option>\n";}// Close list, etc.print '</select> (3)';print ' <input type="submit" value="'.$lang_util_php['submit_form'].'" class="submit" /> (4)';print '</form>';}}// ------------------------------------------------------------------------- //// Define wheter we can join tables or not in SQL queries (same host & same db or user)define('UDB_CAN_JOIN_TABLES', (VB_BD_HOST == $CONFIG['dbserver'] && (VB_DB_NAME == $CONFIG['dbname'] || VB_DB_USERNAME == $CONFIG['dbuser'])));// Connect to vBulletin Board Database if necessary$UDB_DB_LINK_ID = 0;$UDB_DB_NAME_PREFIX = VB_DB_NAME ? '`' . VB_DB_NAME . '`.' : '';if (!UDB_CAN_JOIN_TABLES) {$UDB_DB_LINK_ID = @mysql_connect(VB_BD_HOST, VB_DB_USERNAME, VB_DB_PASSWORD);if (!$UDB_DB_LINK_ID) die("<b>Coppermine critical error</b>:<br />Unable to connect to vBulletin Board database !<br /><br />MySQL said: <b>" . mysql_error() . "</b>");}?>