source: trunk/forum/includes/mcp/mcp_warn.php

Last change on this file was 702, checked in by george, 15 years ago
  • Upraveno: Aktualizace fóra.
File size: 15.8 KB
Line 
1<?php
2/**
3*
4* @package mcp
5* @version $Id$
6* @copyright (c) 2005 phpBB Group
7* @license http://opensource.org/licenses/gpl-license.php GNU Public License
8*
9*/
10
11/**
12* @ignore
13*/
14if (!defined('IN_PHPBB'))
15{
16 exit;
17}
18
19/**
20* mcp_warn
21* Handling warning the users
22* @package mcp
23*/
24class mcp_warn
25{
26 var $p_master;
27 var $u_action;
28
29 function mcp_warn(&$p_master)
30 {
31 $this->p_master = &$p_master;
32 }
33
34 function main($id, $mode)
35 {
36 global $auth, $db, $user, $template;
37 global $config, $phpbb_root_path, $phpEx;
38
39 $action = request_var('action', array('' => ''));
40
41 if (is_array($action))
42 {
43 list($action, ) = each($action);
44 }
45
46 $this->page_title = 'MCP_WARN';
47
48 add_form_key('mcp_warn');
49
50 switch ($mode)
51 {
52 case 'front':
53 $this->mcp_warn_front_view();
54 $this->tpl_name = 'mcp_warn_front';
55 break;
56
57 case 'list':
58 $this->mcp_warn_list_view($action);
59 $this->tpl_name = 'mcp_warn_list';
60 break;
61
62 case 'warn_post':
63 $this->mcp_warn_post_view($action);
64 $this->tpl_name = 'mcp_warn_post';
65 break;
66
67 case 'warn_user':
68 $this->mcp_warn_user_view($action);
69 $this->tpl_name = 'mcp_warn_user';
70 break;
71 }
72 }
73
74 /**
75 * Generates the summary on the main page of the warning module
76 */
77 function mcp_warn_front_view()
78 {
79 global $phpEx, $phpbb_root_path, $config;
80 global $template, $db, $user, $auth;
81
82 $template->assign_vars(array(
83 'U_FIND_USERNAME' => append_sid("{$phpbb_root_path}memberlist.$phpEx", 'mode=searchuser&amp;form=mcp&amp;field=username&amp;select_single=true'),
84 'U_POST_ACTION' => append_sid("{$phpbb_root_path}mcp.$phpEx", 'i=warn&amp;mode=warn_user'),
85 ));
86
87 // Obtain a list of the 5 naughtiest users....
88 // These are the 5 users with the highest warning count
89 $highest = array();
90 $count = 0;
91
92 view_warned_users($highest, $count, 5);
93
94 foreach ($highest as $row)
95 {
96 $template->assign_block_vars('highest', array(
97 'U_NOTES' => append_sid("{$phpbb_root_path}mcp.$phpEx", 'i=notes&amp;mode=user_notes&amp;u=' . $row['user_id']),
98
99 'USERNAME_FULL' => get_username_string('full', $row['user_id'], $row['username'], $row['user_colour']),
100 'USERNAME' => $row['username'],
101 'USERNAME_COLOUR' => ($row['user_colour']) ? '#' . $row['user_colour'] : '',
102 'U_USER' => append_sid("{$phpbb_root_path}memberlist.$phpEx", 'mode=viewprofile&amp;u=' . $row['user_id']),
103
104 'WARNING_TIME' => $user->format_date($row['user_last_warning']),
105 'WARNINGS' => $row['user_warnings'],
106 ));
107 }
108
109 // And now the 5 most recent users to get in trouble
110 $sql = 'SELECT u.user_id, u.username, u.username_clean, u.user_colour, u.user_warnings, w.warning_time
111 FROM ' . USERS_TABLE . ' u, ' . WARNINGS_TABLE . ' w
112 WHERE u.user_id = w.user_id
113 ORDER BY w.warning_time DESC';
114 $result = $db->sql_query_limit($sql, 5);
115
116 while ($row = $db->sql_fetchrow($result))
117 {
118 $template->assign_block_vars('latest', array(
119 'U_NOTES' => append_sid("{$phpbb_root_path}mcp.$phpEx", 'i=notes&amp;mode=user_notes&amp;u=' . $row['user_id']),
120
121 'USERNAME_FULL' => get_username_string('full', $row['user_id'], $row['username'], $row['user_colour']),
122 'USERNAME' => $row['username'],
123 'USERNAME_COLOUR' => ($row['user_colour']) ? '#' . $row['user_colour'] : '',
124 'U_USER' => append_sid("{$phpbb_root_path}memberlist.$phpEx", 'mode=viewprofile&amp;u=' . $row['user_id']),
125
126 'WARNING_TIME' => $user->format_date($row['warning_time']),
127 'WARNINGS' => $row['user_warnings'],
128 ));
129 }
130 $db->sql_freeresult($result);
131 }
132
133 /**
134 * Lists all users with warnings
135 */
136 function mcp_warn_list_view($action)
137 {
138 global $phpEx, $phpbb_root_path, $config;
139 global $template, $db, $user, $auth;
140
141 $user->add_lang('memberlist');
142
143 $start = request_var('start', 0);
144 $st = request_var('st', 0);
145 $sk = request_var('sk', 'b');
146 $sd = request_var('sd', 'd');
147
148 $limit_days = array(0 => $user->lang['ALL_ENTRIES'], 1 => $user->lang['1_DAY'], 7 => $user->lang['7_DAYS'], 14 => $user->lang['2_WEEKS'], 30 => $user->lang['1_MONTH'], 90 => $user->lang['3_MONTHS'], 180 => $user->lang['6_MONTHS'], 365 => $user->lang['1_YEAR']);
149 $sort_by_text = array('a' => $user->lang['SORT_USERNAME'], 'b' => $user->lang['SORT_DATE'], 'c' => $user->lang['SORT_WARNINGS']);
150 $sort_by_sql = array('a' => 'username_clean', 'b' => 'user_last_warning', 'c' => 'user_warnings');
151
152 $s_limit_days = $s_sort_key = $s_sort_dir = $u_sort_param = '';
153 gen_sort_selects($limit_days, $sort_by_text, $st, $sk, $sd, $s_limit_days, $s_sort_key, $s_sort_dir, $u_sort_param);
154
155 // Define where and sort sql for use in displaying logs
156 $sql_where = ($st) ? (time() - ($st * 86400)) : 0;
157 $sql_sort = $sort_by_sql[$sk] . ' ' . (($sd == 'd') ? 'DESC' : 'ASC');
158
159 $users = array();
160 $user_count = 0;
161
162 view_warned_users($users, $user_count, $config['topics_per_page'], $start, $sql_where, $sql_sort);
163
164 foreach ($users as $row)
165 {
166 $template->assign_block_vars('user', array(
167 'U_NOTES' => append_sid("{$phpbb_root_path}mcp.$phpEx", 'i=notes&amp;mode=user_notes&amp;u=' . $row['user_id']),
168
169 'USERNAME_FULL' => get_username_string('full', $row['user_id'], $row['username'], $row['user_colour']),
170 'USERNAME' => $row['username'],
171 'USERNAME_COLOUR' => ($row['user_colour']) ? '#' . $row['user_colour'] : '',
172 'U_USER' => append_sid("{$phpbb_root_path}memberlist.$phpEx", 'mode=viewprofile&amp;u=' . $row['user_id']),
173
174 'WARNING_TIME' => $user->format_date($row['user_last_warning']),
175 'WARNINGS' => $row['user_warnings'],
176 ));
177 }
178
179 $template->assign_vars(array(
180 'U_POST_ACTION' => $this->u_action,
181 'S_CLEAR_ALLOWED' => ($auth->acl_get('a_clearlogs')) ? true : false,
182 'S_SELECT_SORT_DIR' => $s_sort_dir,
183 'S_SELECT_SORT_KEY' => $s_sort_key,
184 'S_SELECT_SORT_DAYS' => $s_limit_days,
185
186 'PAGE_NUMBER' => on_page($user_count, $config['topics_per_page'], $start),
187 'PAGINATION' => generate_pagination(append_sid("{$phpbb_root_path}mcp.$phpEx", "i=warn&amp;mode=list&amp;st=$st&amp;sk=$sk&amp;sd=$sd"), $user_count, $config['topics_per_page'], $start),
188 'TOTAL_USERS' => ($user_count == 1) ? $user->lang['LIST_USER'] : sprintf($user->lang['LIST_USERS'], $user_count),
189 ));
190 }
191
192 /**
193 * Handles warning the user when the warning is for a specific post
194 */
195 function mcp_warn_post_view($action)
196 {
197 global $phpEx, $phpbb_root_path, $config;
198 global $template, $db, $user, $auth;
199
200 $post_id = request_var('p', 0);
201 $forum_id = request_var('f', 0);
202 $notify = (isset($_REQUEST['notify_user'])) ? true : false;
203 $warning = utf8_normalize_nfc(request_var('warning', '', true));
204
205 $sql = 'SELECT u.*, p.*
206 FROM ' . POSTS_TABLE . ' p, ' . USERS_TABLE . " u
207 WHERE p.post_id = $post_id
208 AND u.user_id = p.poster_id";
209 $result = $db->sql_query($sql);
210 $user_row = $db->sql_fetchrow($result);
211 $db->sql_freeresult($result);
212
213 if (!$user_row)
214 {
215 trigger_error('NO_POST');
216 }
217
218 // There is no point issuing a warning to ignored users (ie anonymous and bots)
219 if ($user_row['user_type'] == USER_IGNORE)
220 {
221 trigger_error('CANNOT_WARN_ANONYMOUS');
222 }
223
224 // Prevent someone from warning themselves
225 if ($user_row['user_id'] == $user->data['user_id'])
226 {
227 trigger_error('CANNOT_WARN_SELF');
228 }
229
230 // Check if there is already a warning for this post to prevent multiple
231 // warnings for the same offence
232 $sql = 'SELECT post_id
233 FROM ' . WARNINGS_TABLE . "
234 WHERE post_id = $post_id";
235 $result = $db->sql_query($sql);
236 $row = $db->sql_fetchrow($result);
237 $db->sql_freeresult($result);
238
239 if ($row)
240 {
241 trigger_error('ALREADY_WARNED');
242 }
243
244 $user_id = $user_row['user_id'];
245
246 if (strpos($this->u_action, "&amp;f=$forum_id&amp;p=$post_id") === false)
247 {
248 $this->p_master->adjust_url("&amp;f=$forum_id&amp;p=$post_id");
249 $this->u_action .= "&amp;f=$forum_id&amp;p=$post_id";
250 }
251
252 // Check if can send a notification
253 if ($config['allow_privmsg'])
254 {
255 $auth2 = new auth();
256 $auth2->acl($user_row);
257 $s_can_notify = ($auth2->acl_get('u_readpm')) ? true : false;
258 unset($auth2);
259 }
260 else
261 {
262 $s_can_notify = false;
263 }
264
265 // Prevent against clever people
266 if ($notify && !$s_can_notify)
267 {
268 $notify = false;
269 }
270
271 if ($warning && $action == 'add_warning')
272 {
273 if (check_form_key('mcp_warn'))
274 {
275 add_warning($user_row, $warning, $notify, $post_id);
276 $msg = $user->lang['USER_WARNING_ADDED'];
277 }
278 else
279 {
280 $msg = $user->lang['FORM_INVALID'];
281 }
282 $redirect = append_sid("{$phpbb_root_path}mcp.$phpEx", "i=notes&amp;mode=user_notes&amp;u=$user_id");
283 meta_refresh(2, $redirect);
284 trigger_error($msg . '<br /><br />' . sprintf($user->lang['RETURN_PAGE'], '<a href="' . $redirect . '">', '</a>'));
285 }
286
287 // OK, they didn't submit a warning so lets build the page for them to do so
288
289 // We want to make the message available here as a reminder
290 // Parse the message and subject
291 $message = censor_text($user_row['post_text']);
292
293 // Second parse bbcode here
294 if ($user_row['bbcode_bitfield'])
295 {
296 include_once($phpbb_root_path . 'includes/bbcode.' . $phpEx);
297
298 $bbcode = new bbcode($user_row['bbcode_bitfield']);
299 $bbcode->bbcode_second_pass($message, $user_row['bbcode_uid'], $user_row['bbcode_bitfield']);
300 }
301
302 $message = bbcode_nl2br($message);
303 $message = smiley_text($message);
304
305 // Generate the appropriate user information for the user we are looking at
306 if (!function_exists('get_user_avatar'))
307 {
308 include($phpbb_root_path . 'includes/functions_display.' . $phpEx);
309 }
310
311 $rank_title = $rank_img = '';
312 $avatar_img = get_user_avatar($user_row['user_avatar'], $user_row['user_avatar_type'], $user_row['user_avatar_width'], $user_row['user_avatar_height']);
313
314 $template->assign_vars(array(
315 'U_POST_ACTION' => $this->u_action,
316
317 'POST' => $message,
318 'USERNAME' => $user_row['username'],
319 'USER_COLOR' => (!empty($user_row['user_colour'])) ? $user_row['user_colour'] : '',
320 'RANK_TITLE' => $rank_title,
321 'JOINED' => $user->format_date($user_row['user_regdate']),
322 'POSTS' => ($user_row['user_posts']) ? $user_row['user_posts'] : 0,
323 'WARNINGS' => ($user_row['user_warnings']) ? $user_row['user_warnings'] : 0,
324
325 'AVATAR_IMG' => $avatar_img,
326 'RANK_IMG' => $rank_img,
327
328 'L_WARNING_POST_DEFAULT' => sprintf($user->lang['WARNING_POST_DEFAULT'], generate_board_url() . "/viewtopic.$phpEx?f=$forum_id&amp;p=$post_id#p$post_id"),
329
330 'S_CAN_NOTIFY' => $s_can_notify,
331 ));
332 }
333
334 /**
335 * Handles warning the user
336 */
337 function mcp_warn_user_view($action)
338 {
339 global $phpEx, $phpbb_root_path, $config, $module;
340 global $template, $db, $user, $auth;
341
342 $user_id = request_var('u', 0);
343 $username = request_var('username', '', true);
344 $notify = (isset($_REQUEST['notify_user'])) ? true : false;
345 $warning = utf8_normalize_nfc(request_var('warning', '', true));
346
347 $sql_where = ($user_id) ? "user_id = $user_id" : "username_clean = '" . $db->sql_escape(utf8_clean_string($username)) . "'";
348
349 $sql = 'SELECT *
350 FROM ' . USERS_TABLE . '
351 WHERE ' . $sql_where;
352 $result = $db->sql_query($sql);
353 $user_row = $db->sql_fetchrow($result);
354 $db->sql_freeresult($result);
355
356 if (!$user_row)
357 {
358 trigger_error('NO_USER');
359 }
360
361 // Prevent someone from warning themselves
362 if ($user_row['user_id'] == $user->data['user_id'])
363 {
364 trigger_error('CANNOT_WARN_SELF');
365 }
366
367 $user_id = $user_row['user_id'];
368
369 if (strpos($this->u_action, "&amp;u=$user_id") === false)
370 {
371 $this->p_master->adjust_url('&amp;u=' . $user_id);
372 $this->u_action .= "&amp;u=$user_id";
373 }
374
375 // Check if can send a notification
376 if ($config['allow_privmsg'])
377 {
378 $auth2 = new auth();
379 $auth2->acl($user_row);
380 $s_can_notify = ($auth2->acl_get('u_readpm')) ? true : false;
381 unset($auth2);
382 }
383 else
384 {
385 $s_can_notify = false;
386 }
387
388 // Prevent against clever people
389 if ($notify && !$s_can_notify)
390 {
391 $notify = false;
392 }
393
394 if ($warning && $action == 'add_warning')
395 {
396 if (check_form_key('mcp_warn'))
397 {
398 add_warning($user_row, $warning, $notify);
399 $msg = $user->lang['USER_WARNING_ADDED'];
400 }
401 else
402 {
403 $msg = $user->lang['FORM_INVALID'];
404 }
405 $redirect = append_sid("{$phpbb_root_path}mcp.$phpEx", "i=notes&amp;mode=user_notes&amp;u=$user_id");
406 meta_refresh(2, $redirect);
407 trigger_error($msg . '<br /><br />' . sprintf($user->lang['RETURN_PAGE'], '<a href="' . $redirect . '">', '</a>'));
408 }
409
410 // Generate the appropriate user information for the user we are looking at
411 if (!function_exists('get_user_avatar'))
412 {
413 include($phpbb_root_path . 'includes/functions_display.' . $phpEx);
414 }
415
416 $rank_title = $rank_img = '';
417 $avatar_img = get_user_avatar($user_row['user_avatar'], $user_row['user_avatar_type'], $user_row['user_avatar_width'], $user_row['user_avatar_height']);
418
419 // OK, they didn't submit a warning so lets build the page for them to do so
420 $template->assign_vars(array(
421 'U_POST_ACTION' => $this->u_action,
422
423 'RANK_TITLE' => $rank_title,
424 'JOINED' => $user->format_date($user_row['user_regdate']),
425 'POSTS' => ($user_row['user_posts']) ? $user_row['user_posts'] : 0,
426 'WARNINGS' => ($user_row['user_warnings']) ? $user_row['user_warnings'] : 0,
427
428 'USERNAME_FULL' => get_username_string('full', $user_row['user_id'], $user_row['username'], $user_row['user_colour']),
429 'USERNAME_COLOUR' => get_username_string('colour', $user_row['user_id'], $user_row['username'], $user_row['user_colour']),
430 'USERNAME' => get_username_string('username', $user_row['user_id'], $user_row['username'], $user_row['user_colour']),
431 'U_PROFILE' => get_username_string('profile', $user_row['user_id'], $user_row['username'], $user_row['user_colour']),
432
433 'AVATAR_IMG' => $avatar_img,
434 'RANK_IMG' => $rank_img,
435
436 'S_CAN_NOTIFY' => $s_can_notify,
437 ));
438
439 return $user_id;
440 }
441}
442
443/**
444* Insert the warning into the database
445*/
446function add_warning($user_row, $warning, $send_pm = true, $post_id = 0)
447{
448 global $phpEx, $phpbb_root_path, $config;
449 global $template, $db, $user, $auth;
450
451 if ($send_pm)
452 {
453 include_once($phpbb_root_path . 'includes/functions_privmsgs.' . $phpEx);
454 include_once($phpbb_root_path . 'includes/message_parser.' . $phpEx);
455
456 $user_row['user_lang'] = (file_exists($phpbb_root_path . 'language/' . $user_row['user_lang'] . "/mcp.$phpEx")) ? $user_row['user_lang'] : $config['default_lang'];
457 include($phpbb_root_path . 'language/' . basename($user_row['user_lang']) . "/mcp.$phpEx");
458
459 $message_parser = new parse_message();
460
461 $message_parser->message = sprintf($lang['WARNING_PM_BODY'], $warning);
462 $message_parser->parse(true, true, true, false, false, true, true);
463
464 $pm_data = array(
465 'from_user_id' => $user->data['user_id'],
466 'from_user_ip' => $user->ip,
467 'from_username' => $user->data['username'],
468 'enable_sig' => false,
469 'enable_bbcode' => true,
470 'enable_smilies' => true,
471 'enable_urls' => false,
472 'icon_id' => 0,
473 'bbcode_bitfield' => $message_parser->bbcode_bitfield,
474 'bbcode_uid' => $message_parser->bbcode_uid,
475 'message' => $message_parser->message,
476 'address_list' => array('u' => array($user_row['user_id'] => 'to')),
477 );
478
479 submit_pm('post', $lang['WARNING_PM_SUBJECT'], $pm_data, false);
480 }
481
482 add_log('admin', 'LOG_USER_WARNING', $user_row['username']);
483 $log_id = add_log('user', $user_row['user_id'], 'LOG_USER_WARNING_BODY', $warning);
484
485 $sql_ary = array(
486 'user_id' => $user_row['user_id'],
487 'post_id' => $post_id,
488 'log_id' => $log_id,
489 'warning_time' => time(),
490 );
491
492 $db->sql_query('INSERT INTO ' . WARNINGS_TABLE . ' ' . $db->sql_build_array('INSERT', $sql_ary));
493
494 $sql = 'UPDATE ' . USERS_TABLE . '
495 SET user_warnings = user_warnings + 1,
496 user_last_warning = ' . time() . '
497 WHERE user_id = ' . $user_row['user_id'];
498 $db->sql_query($sql);
499
500 // We add this to the mod log too for moderators to see that a specific user got warned.
501 $sql = 'SELECT forum_id, topic_id
502 FROM ' . POSTS_TABLE . '
503 WHERE post_id = ' . $post_id;
504 $result = $db->sql_query($sql);
505 $row = $db->sql_fetchrow($result);
506 $db->sql_freeresult($result);
507
508 add_log('mod', $row['forum_id'], $row['topic_id'], 'LOG_USER_WARNING', $user_row['username']);
509}
510
511?>
Note: See TracBrowser for help on using the repository browser.