Go to most recent revision | Blame | Last modification | View Log | Download
<?php/*************************Coppermine Photo Gallery************************Copyright (c) 2003-2005 Coppermine Dev Teamv1.1 originaly written by Gregory DEMARThis program is free software; you can redistribute it and/or modifyit under the terms of the GNU General Public License as published bythe Free Software Foundation; either version 2 of the License, or(at your option) any later version.********************************************Coppermine version: 1.3.3$Source: /cvsroot/coppermine/stable/bridge/woltlab21.inc.php,v $$Revision: 1.7 $$Author: gaugau $$Date: 2005/04/19 03:17:13 $**********************************************/// ------------------------------------------------------------------------- //// Woltlab Burning Board 2.1 Integration for Coppermine //// ------------------------------------------------------------------------- //// Modify the values below according to your Board installation //// ------------------------------------------------------------------------- //// user contribution by sugar //// (see http://coppermine.sourceforge.net/oldboard/viewtopic.php?t=2547 //// for details) //// ------------------------------------------------------------------------- //// Updated by Mr. S //// http://coppermine.sourceforge.net/board/index.php?topic=5559.0 //// ------------------------------------------------------------------------- //// In this example there are 2 subdirectories// WBB: http://yoursite_name.com/wbb2/// CPG: http://yoursite_name.com/cpg/// Setup path to your Woltlab Board directory to change this// The paths to your Woltlab Board directorydefine('RELATIVE_WBB_PATH','../wbb2/');define('WBB_WEB_PATH','/wbb2/');// database configurationrequire_once(RELATIVE_WBB_PATH."acp/lib/config.inc.php");require_once(RELATIVE_WBB_PATH."acp/lib/options.inc.php");define('WBB_DB_NAME',$sqldb);define('WBB_BD_HOST',$sqlhost);define('WBB_DB_USERNAME',$sqluser);define('WBB_DB_PASSWORD',$sqlpassword);// cookies configurationdefine('WBB_COOKIE_HASH',$cookieprefix."cookiehash");define('WBB_COOKIE_USERID',$cookieprefix."userid");define('WBB_COOKIE_USERPW',$cookieprefix."userpassword");// ------------------------------------------------------------------------- //// Nothing to edit below this line// ------------------------------------------------------------------------- //// Prefix and names for the database tablesdefine('WBB_TABLE_PREFIX','bb'.$n.'_'); // Leave empty, not supported by vBulletin 2.3define('WBB_USER_TABLE', 'users'); // The members tabledefine('WBB_SESSION_TABLE', 'sessions'); // The sessions tabledefine('WBB_GROUP_TABLE', 'groups'); // The groups table// Group definitions (default values used by the board)define('WBB_GUEST_GROUP', 5);define('WBB_MEMBERS_GROUP', 4);define('WBB_ADMIN_GROUP', 1);// Authenticate a user using cookiesfunction udb_authenticate(){global $HTTP_COOKIE_VARS, $USER_DATA, $UDB_DB_LINK_ID, $UDB_DB_NAME_PREFIX, $CONFIG;global $HTTP_SERVER_VARS, $REMOTE_ADDR, $HTTP_X_FORWARDED_FOR;global $lang_errors;// For error checking$CONFIG['TABLE_USERS'] = '**ERROR**';// Permissions for a default group$default_group = array('group_id' => WBB_GUEST_GROUP,'group_name' => 'Unknown','has_admin_access' => 0,'can_see_all_albums' => 0,'can_send_ecards' => 0,'can_rate_pictures' => 0,'can_post_comments' => 0,'can_upload_pictures' => 0,'can_create_albums' => 0,'pub_upl_need_approval' => 1,'priv_upl_need_approval' => 1,'upload_form_config' => 0,'custom_user_upload' => 0,'num_file_upload' => 0,'num_URI_upload' => 0,);$REMOTE_ADDR=$_SERVER['REMOTE_ADDR'];$HTTP_X_FORWARDED_FOR=(isset($_SERVER['HTTP_X_FORWARDED_FOR'])) ? $_SERVER['HTTP_X_FORWARDED_FOR'] : '';if($HTTP_X_FORWARDED_FOR!="") {if(preg_match("/^([0-9]+\.[0-9]+\.[0-9]+\.[0-9]+)/", $HTTP_X_FORWARDED_FOR, $ip_match)) {$private_ip_list = array("/^0\./", "/^127\.0\.0\.1/", "/^192\.168\..*/", "/^172\.16\..*/", "/^10..*/", "/^224..*/", "/^240..*/");$REMOTE_ADDR = preg_replace($private_ip_list, $REMOTE_ADDR, $ip_match[1]);}}$HTTP_USER_AGENT = substr($_SERVER['HTTP_USER_AGENT'], 0, 100);$REQUEST_URI = $_SERVER['REQUEST_URI'];if(!$REQUEST_URI) {if($_SERVER['PATH_INFO']) $REQUEST_URI = $_SERVER['PATH_INFO'];else $REQUEST_URI = $_SERVER['PHP_SELF'];if($_SERVER['QUERY_STRING']) $REQUEST_URI.="?".$_SERVER['QUERY_STRING'];}$REQUEST_URI = substr(basename($REQUEST_URI), 0, 250);if(!strstr($REQUEST_URI,".")) $REQUEST_URI="index.php";$REMOTE_ADDR=htmlspecialchars($REMOTE_ADDR);$HTTP_USER_AGENT=htmlspecialchars($HTTP_USER_AGENT);if ( is_array($_COOKIE) ) {$sessionhash = isset($_COOKIE[WBB_COOKIE_HASH]) ? $_COOKIE[WBB_COOKIE_HASH] : '';$bbuserid = isset($_COOKIE[WBB_COOKIE_USERID]) ? $_COOKIE[WBB_COOKIE_USERID] : 0;$bbpassword = isset($_COOKIE[WBB_COOKIE_USERPW]) ? $_COOKIE[WBB_COOKIE_USERPW] : '';}if ($bbuserid && $bbpassword) {// If userid and password exist in cookies we use them to login$sql = "SELECT userid as user_id, username as user_name, useronlinegroupid as mgroup "."FROM ".$UDB_DB_NAME_PREFIX.WBB_TABLE_PREFIX.WBB_USER_TABLE." "."WHERE userid='".addslashes($bbuserid)."' AND password='".addslashes($bbpassword)."'";} elseif ($sessionhash) {// session hash exists// validate it:$sql = "SELECT * "."FROM ".$UDB_DB_NAME_PREFIX.WBB_TABLE_PREFIX.WBB_SESSION_TABLE." "."WHERE sessionhash = '".addslashes($sessionhash)."' "." AND ipaddress = '".addslashes($REMOTE_ADDR)."' "." AND useragent = '".addslashes($HTTP_USER_AGENT)."'";$result = db_query($sql, $UDB_DB_LINK_ID);if (mysql_num_rows($result)) {// session hash exists$session_data = mysql_fetch_array($result);mysql_free_result($result);$sql = "SELECT userid as user_id, username as user_name, useronlinegroupid as mgroup "."FROM ".$UDB_DB_NAME_PREFIX.WBB_TABLE_PREFIX.WBB_USER_TABLE." "."WHERE userid='".$session_data['userid']."'";$result = db_query($sql, $UDB_DB_LINK_ID);} else {$sql = "SELECT userid as user_id, username as user_name, useronlinegroupid as mgroup "."FROM ".$UDB_DB_NAME_PREFIX.WBB_TABLE_PREFIX.WBB_USER_TABLE." "."WHERE 0";}} else {$sql = "SELECT userid as user_id, username as user_name, useronlinegroupid as mgroup "."FROM ".$UDB_DB_NAME_PREFIX.WBB_TABLE_PREFIX.WBB_USER_TABLE." "."WHERE 0";}$result = db_query($sql, $UDB_DB_LINK_ID);if (mysql_num_rows($result)){$USER_DATA = mysql_fetch_array($result);mysql_free_result($result);define('USER_ID', (int)$USER_DATA['user_id']);define('USER_NAME', $USER_DATA['user_name']);// Retrieve group information$sql = "SELECT * "."FROM {$CONFIG['TABLE_USERGROUPS']} "."WHERE group_id = '{$USER_DATA['mgroup']}'";$result = db_query($sql);if (mysql_num_rows($result)){$USER_DATA2 = mysql_fetch_array($result);} else {$USER_DATA2 = $default_group;}$USER_DATA = array_merge($USER_DATA, $USER_DATA2);$USER_DATA['has_admin_access']= ($USER_DATA['mgroup'] == WBB_ADMIN_GROUP);$USER_DATA['can_see_all_albums'] = $USER_DATA['has_admin_access'];$USER_DATA['groups'] = array($USER_DATA['group_id']);define('USER_GROUP', $USER_DATA['group_name']);define('USER_GROUP_SET', '('.$USER_DATA['group_id'].')');define('USER_IS_ADMIN', ($USER_DATA['mgroup'] == WBB_ADMIN_GROUP));define('USER_CAN_SEND_ECARDS', (int)$USER_DATA['can_send_ecards']);define('USER_CAN_RATE_PICTURES', (int)$USER_DATA['can_rate_pictures']);define('USER_CAN_POST_COMMENTS', (int)$USER_DATA['can_post_comments']);define('USER_CAN_UPLOAD_PICTURES', (int)$USER_DATA['can_upload_pictures']);define('USER_CAN_CREATE_ALBUMS', (int)$USER_DATA['can_create_albums']);define('USER_UPLOAD_FORM', (int)$USER_DATA['upload_form_config']);define('CUSTOMIZE_UPLOAD_FORM', (int)$USER_DATA['custom_user_upload']);define('NUM_FILE_BOXES', (int)$USER_DATA['num_file_upload']);define('NUM_URI_BOXES', (int)$USER_DATA['num_URI_upload']);mysql_free_result($result);} else {$result = db_query("SELECT * FROM {$CONFIG['TABLE_USERGROUPS']} WHERE group_id = ".WBB_GUEST_GROUP);if (!mysql_num_rows($result)) {$USER_DATA = $default_group;} else {$USER_DATA = mysql_fetch_array($result);}$USER_DATA['groups'] = array(WBB_GUEST_GROUP);define('USER_ID', 0);define('USER_NAME', 'Anonymous');define('USER_GROUP_SET', '('.WBB_GUEST_GROUP.')');define('USER_IS_ADMIN', 0);define('USER_CAN_SEND_ECARDS', (int)$USER_DATA['can_send_ecards']);define('USER_CAN_RATE_PICTURES', (int)$USER_DATA['can_rate_pictures']);define('USER_CAN_POST_COMMENTS', (int)$USER_DATA['can_post_comments']);define('USER_CAN_UPLOAD_PICTURES', (int)$USER_DATA['can_upload_pictures']);define('USER_CAN_CREATE_ALBUMS', 0);define('USER_UPLOAD_FORM', (int)$USER_DATA['upload_form_config']);define('CUSTOMIZE_UPLOAD_FORM', (int)$USER_DATA['custom_user_upload']);define('NUM_FILE_BOXES', (int)$USER_DATA['num_file_upload']);define('NUM_URI_BOXES', (int)$USER_DATA['num_URI_upload']);mysql_free_result($result);}}// Retrieve the name of a userfunction udb_get_user_name($uid){global $UDB_DB_LINK_ID, $UDB_DB_NAME_PREFIX, $CONFIG;$sql = "SELECT username as user_name "."FROM ".$UDB_DB_NAME_PREFIX.WBB_TABLE_PREFIX.WBB_USER_TABLE." "."WHERE userid = '$uid'";$result = db_query($sql, $UDB_DB_LINK_ID);if (mysql_num_rows($result)) {$row = mysql_fetch_array($result);mysql_free_result($result);return $row['user_name'];} else {return '';}}// Retrieve the name of a user (Added to fix banning w/ bb integration - Nibbler)function udb_get_user_id($username){global $UDB_DB_LINK_ID, $UDB_DB_NAME_PREFIX, $CONFIG;$username = addslashes($username);$sql = "SELECT userid as user_id "."FROM ".$UDB_DB_NAME_PREFIX.WBB_TABLE_PREFIX.WBB_USER_TABLE." "."WHERE username = '$username'";$result = db_query($sql, $UDB_DB_LINK_ID);if (mysql_num_rows($result)) {$row = mysql_fetch_array($result);mysql_free_result($result);return $row['user_id'];} else {return '';}}// Redirectfunction udb_redirect($target){header('Location: http://' . $_SERVER['HTTP_HOST'] . WBB_WEB_PATH . $target);exit;}// Registerfunction udb_register_page(){$target = 'register.php';udb_redirect($target);}// Loginfunction udb_login_page(){$target = 'index.php';udb_redirect($target);}// Logoutfunction udb_logout_page(){$target = 'logout.php';udb_redirect($target);}// Edit usersfunction udb_edit_users(){$target = 'acp/users.php';udb_redirect($target);}// Get user informationfunction udb_get_user_infos($uid){global $CONFIG, $UDB_DB_NAME_PREFIX, $UDB_DB_LINK_ID;global $lang_register_php;$sql = "SELECT username as user_name, useronlinegroupid as mgroup, email as user_email, regdate as user_regdate, "."homepage as user_website "."FROM ".$UDB_DB_NAME_PREFIX.WBB_TABLE_PREFIX.WBB_USER_TABLE." "."WHERE userid = '$uid'";$result = db_query($sql, $UDB_DB_LINK_ID);if(!mysql_num_rows($result)) cpg_die(ERROR, $lang_register_php['err_unk_user'], __FILE__, __LINE__);$user_data = mysql_fetch_array($result);mysql_free_result($result);$user_data['group_name'] = '';$user_data['user_occupation'] = '';$user_data['user_location'] = '';$user_data['user_interests'] = '';$sql = "SELECT group_name "."FROM {$CONFIG['TABLE_USERGROUPS']} "."WHERE group_id = {$user_data['mgroup']} ";$result = db_query($sql);if(mysql_num_rows($result)){$row = mysql_fetch_array($result);$user_data['group_name'] = $row['group_name'];}mysql_free_result($result);return $user_data;}// Edit user profilefunction udb_edit_profile($uid){$target = 'usercp.php';udb_redirect($target);}// Query used to list usersfunction udb_list_users_query(&$user_count){global $CONFIG, $FORBIDDEN_SET;if ($FORBIDDEN_SET != "") $forbidden = "AND $FORBIDDEN_SET";$sql = "SELECT (category - ".FIRST_USER_CAT.") as user_id,"." '???' as user_name,"." COUNT(DISTINCT a.aid) as alb_count,"." COUNT(DISTINCT pid) as pic_count,"." MAX(pid) as thumb_pid "."FROM {$CONFIG['TABLE_ALBUMS']} AS a "."INNER JOIN {$CONFIG['TABLE_PICTURES']} AS p ON p.aid = a.aid "."WHERE approved = 'YES' AND category > ".FIRST_USER_CAT." "."$forbidden "."GROUP BY category "."ORDER BY category ";$result = db_query($sql);$user_count = mysql_num_rows($result);return $result;}function udb_list_users_retrieve_data($result, $lower_limit, $count){global $CONFIG, $UDB_DB_NAME_PREFIX, $UDB_DB_LINK_ID;mysql_data_seek($result, $lower_limit);$rowset = array();$i=0;$user_id_set='';while (($row = mysql_fetch_array($result)) && ($i++ < $count)){$user_id_set .= $row['user_id'].',';$rowset[] = $row;}mysql_free_result($result);$user_id_set = '('.substr($user_id_set, 0, -1).')';$sql = "SELECT userid as user_id, username as user_name "."FROM ".$UDB_DB_NAME_PREFIX.WBB_TABLE_PREFIX.WBB_USER_TABLE." "."WHERE userid IN $user_id_set";$result = db_query($sql, $UDB_DB_LINK_ID);while ($row = mysql_fetch_array($result)){$name[$row['user_id']] = $row['user_name'];}for($i=0; $i<count($rowset); $i++){$rowset[$i]['user_name'] = empty($name[$rowset[$i]['user_id']]) ? '???' : $name[$rowset[$i]['user_id']];}return $rowset;}// Group table synchronisationfunction udb_synchronize_groups(){global $CONFIG, $UDB_DB_NAME_PREFIX, $UDB_DB_LINK_ID;$result = db_query("SELECT groupid, title FROM ".$UDB_DB_NAME_PREFIX.WBB_TABLE_PREFIX.WBB_GROUP_TABLE." WHERE 1", $UDB_DB_LINK_ID);while ($row = mysql_fetch_array($result)){$WBB_groups[$row['groupid']] = $row['title'];}mysql_free_result($result);$result=db_query("SELECT group_id, group_name FROM {$CONFIG['TABLE_USERGROUPS']} WHERE 1");while ($row = mysql_fetch_array($result)){$cpg_groups[$row['group_id']] = $row['group_name'];}mysql_free_result($result);// Scan Coppermine groups that need to be deletedforeach($cpg_groups as $c_group_id => $c_group_name){if ((!isset($WBB_groups[$c_group_id]))) {db_query("DELETE FROM {$CONFIG['TABLE_USERGROUPS']} WHERE group_id = '".$c_group_id."' LIMIT 1");unset($cpg_groups[$c_group_id]);}}// Scan Woltlab Board groups that need to be created inside Coppermine tableforeach($WBB_groups as $i_group_id => $i_group_name){if ((!isset($cpg_groups[$i_group_id]))) {db_query("INSERT INTO {$CONFIG['TABLE_USERGROUPS']} (group_id, group_name) VALUES ('$i_group_id', '".addslashes($i_group_name)."')");$cpg_groups[$i_group_id] = $i_group_name;}}// Update Group namesforeach($WBB_groups as $i_group_id => $i_group_name){if ($cpg_groups[$i_group_id] != $i_group_name) {db_query("UPDATE {$CONFIG['TABLE_USERGROUPS']} SET group_name = '".addslashes($i_group_name)."' WHERE group_id = '$i_group_id' LIMIT 1");}}}// Retrieve the album list used in gallery admin modefunction udb_get_admin_album_list(){global $CONFIG, $UDB_DB_NAME_PREFIX, $UDB_DB_LINK_ID, $FORBIDDEN_SET;if (UDB_CAN_JOIN_TABLES) {$sql = "SELECT aid, CONCAT('(', username, ') ', a.title) AS title "."FROM {$CONFIG['TABLE_ALBUMS']} AS a "."INNER JOIN ".$UDB_DB_NAME_PREFIX.WBB_TABLE_PREFIX.WBB_USER_TABLE." AS u ON category = (".FIRST_USER_CAT." + userid) "."ORDER BY title";return $sql;} else {$sql = "SELECT aid, IF(category > ".FIRST_USER_CAT.", CONCAT('* ', title), CONCAT(' ', title)) AS title "."FROM {$CONFIG['TABLE_ALBUMS']} "."ORDER BY title";return $sql;}}function udb_util_filloptions(){global $albumtbl, $picturetbl, $categorytbl, $lang_util_php, $CONFIG, $UDB_DB_NAME_PREFIX, $UDB_DB_LINK_ID;$usertbl = $UDB_DB_NAME_PREFIX.WBB_TABLE_PREFIX.WBB_USER_TABLE;if (UDB_CAN_JOIN_TABLES) {$query = "SELECT aid, category, IF(username IS NOT NULL, CONCAT('(', username, ') ', a.title), CONCAT(' - ', a.title)) AS title " . "FROM $albumtbl AS a " . "LEFT JOIN $usertbl AS u ON category = (" . FIRST_USER_CAT . " + userid) " . "ORDER BY category, title";$result = db_query($query, $UDB_DB_LINK_ID);// $num=mysql_numrows($result);echo '<select size="1" name="albumid">';while ($row = mysql_fetch_array($result)) {$sql = "SELECT name FROM $categorytbl WHERE cid = " . $row["category"];$result2 = db_query($sql);$row2 = mysql_fetch_array($result2);print "<option value=\"" . $row["aid"] . "\">" . $row2["name"] . $row["title"] . "</option>\n";}print '</select> (3)';print ' <input type="submit" value="'.$lang_util_php['submit_form'].'" class="submit" /> (4)';print '</form>';} else {// Query for list of public albums$public_albums = db_query("SELECT aid, title, category FROM {$CONFIG['TABLE_ALBUMS']} WHERE category < " . FIRST_USER_CAT . " ORDER BY title");if (mysql_num_rows($public_albums)) {$public_result = db_fetch_rowset($public_albums);} else {$public_result = array();}// Initialize $merged_array$merged_array = array();// Count the number of albums returned.$end = count($public_result);// Cylce through the User albums.for($i=0;$i<$end;$i++) {//Create a new array sow we may sort the final results.$merged_array[$i]['id'] = $public_result[$i]['aid'];$merged_array[$i]['album_name'] = $public_result[$i]['title'];// Query the database to get the category name.$vQuery = "SELECT name, parent FROM " . $CONFIG['TABLE_CATEGORIES'] . " WHERE cid='" . $public_result[$i]['category'] . "'";$vRes = mysql_query($vQuery);$vRes = mysql_fetch_array($vRes);if (isset($merged_array[$i]['username_category'])) {$merged_array[$i]['username_category'] = (($vRes['name']) ? '(' . $vRes['name'] . ') ' : '').$merged_array[$i]['username_category'];} else {$merged_array[$i]['username_category'] = (($vRes['name']) ? '(' . $vRes['name'] . ') ' : '');}}// We transpose and divide the matrix into columns to prepare it for use in array_multisort().foreach ($merged_array as $key => $row) {$aid[$key] = $row['id'];$title[$key] = $row['album_name'];$album_lineage[$key] = $row['username_category'];}// We sort all columns in descending order and plug in $album_menu at the end so it is sorted by the common key.array_multisort($album_lineage, SORT_ASC, $title, SORT_ASC, $aid, SORT_ASC, $merged_array);// Query for list of user albums$user_albums = db_query("SELECT aid, title, category FROM {$CONFIG['TABLE_ALBUMS']} WHERE category >= " . FIRST_USER_CAT . " ORDER BY aid");if (mysql_num_rows($user_albums)) {$user_albums_list = db_fetch_rowset($user_albums);} else {$user_albums_list = array();}// Query for list of user IDs and names$user_album_ids_and_names = db_query("SELECT (userid + ".FIRST_USER_CAT.") as id, CONCAT('(', username, ') ') as name FROM $usertbl ORDER BY name ASC",$UDB_DB_LINK_ID);if (mysql_num_rows($user_album_ids_and_names)) {$user_album_ids_and_names_list = db_fetch_rowset($user_album_ids_and_names);} else {$user_album_ids_and_names_list = array();}// Glue what we've got together.// Initialize $udb_i as a counter.if (count($merged_array)) {$udb_i = count($merged_array);} else {$udb_i = 0;}//Begin a set of nested loops to merge the various query results.foreach ($user_albums_list as $aq) {foreach ($user_album_ids_and_names_list as $uq) {if ($aq['category'] == $uq['id']) {$merged_array[$udb_i]['id']= $aq['category'];$merged_array[$udb_i]['album_name']= $aq['title'];$merged_array[$udb_i]['username_category']= $uq['name'];$udb_i++;}}}// The user albums and public albums have been merged into one list. Print the dropdown.echo '<select size="1" name="albumid">';foreach ($merged_array as $menu_item) {echo "<option value=\"" . $menu_item['id'] . "\">" . (isset($menu_item['username_category']) ? $menu_item['username_category'] : '') . $menu_item['album_name'] . "</option>\n";}// Close list, etc.print '</select> (3)';print ' <input type="submit" value="'.$lang_util_php['submit_form'].'" class="submit" /> (4)';print '</form>';}}// ------------------------------------------------------------------------- //// Define wheter we can join tables or not in SQL queries (same host & same db or user)define('UDB_CAN_JOIN_TABLES', (WBB_BD_HOST == $CONFIG['dbserver'] && (WBB_DB_NAME == $CONFIG['dbname'] || WBB_DB_USERNAME == $CONFIG['dbuser'])));// Connect to Woltlab Board Database if necessary$UDB_DB_LINK_ID = 0;$UDB_DB_NAME_PREFIX = WBB_DB_NAME ? '`'.WBB_DB_NAME.'`.' : '';if (!UDB_CAN_JOIN_TABLES) {$UDB_DB_LINK_ID = @mysql_connect(WBB_BD_HOST, WBB_DB_USERNAME, WBB_DB_PASSWORD);if (!$UDB_DB_LINK_ID) die("<b>Coppermine critical error</b>:<br />Unable to connect to Woltlab Board database !<br /><br />MySQL said: <b>".mysql_error()."</b>");}?>