Updates to newest version

admin/adduser.apnl.php

@@ -1,4 +1,29 @@
 <?php
+/**
+ * Project:   BeCast WebEngine - simple site engine
+ * File:      /admin/addusers.apnl.php
+ *
+ * This library is free software; you can redistribute it and/or
+ * modify it under the terms of the GNU Lesser General Public
+ * License as published by the Free Software Foundation; either
+ * version 2.1 of the License, or (at your option) any later version.
+ *
+ * This library is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
+ * Lesser General Public License for more details.
+ *
+ * You should have received a copy of the GNU Lesser General Public
+ * License along with this library; if not, write to the Free Software
+ * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA  02111-1307  USA
+ *
+ * @link http://www.becast.at
+ * @copyright 2009-2025 becast.at
+ * @author Bernhard Jaud <bernhard at becast dot at>
+ * @package BcWe core
+ * @license http://opensource.org/licenses/gpl-license.php GNU Public License
+ * @version $Id$
+ */
 If (!defined("in_BL_ADMIN")) {
     die("Dieses Script kann nicht ausserhalb des Frameworks laufen!");
 } 
@@ -11,17 +36,18 @@ class adduser_panel extends admin_module{
 		global $plugin,$session,$config,$db,$panel,$admin,$module,$root,$firephp,$log,$lang;
 			if(isset($_POST["send"])){
 			    if($_POST['role']==2 && $session->userdata['role']!=2){
-			        $panel->admin_message("Error","You cannot assign a role higher then yours!",True,"editusers",3);
+			        $panel->admin_message($lang->_('ERROR'),$lang->_('CANTASSIGNHIGHERRIGHT'),True,"editusers",3);
 			    }
 				if(!empty($_POST["name"]) && !empty($_POST["password"])){
 					$key=$session->generate_key(50);
+					$salt = $session->generate_Key(6);
 					$plugin->run_hook('admin_user_before_create',array('data'=>$_POST,'key'=>$key,'user_fid'=>$session->userdata['fuid']));
-					$db->query("INSERT INTO `" . $config["prefix"] . "users` (`username`,`realname`,`password`,`loginkey`,`role`,`email`,`active`) VALUES ('".$db->escape($_POST["name"])."','".$db->escape($_POST["realname"])."','".hash("sha256",$db->escape($_POST["password"]))."','".$key."','".$db->escape($_POST["role"])."','".$db->escape($_POST["email"])."','".$_POST["active"]."')");
+					$db->query("INSERT INTO `" . $config["prefix"] . "users` (`username`,`realname`,`password`,`salt`,`loginkey`,`role`,`email`,`active`) VALUES ('".$db->escape($_POST["name"])."','".$db->escape($_POST["realname"])."','".hash("sha256",$salt.$db->escape($_POST["password"]))."','".$salt."','".$key."','".$db->escape($_POST["role"])."','".$db->escape($_POST["email"])."','".$_POST["active"]."')");
 					$_POST['uid']=$db->last_id();
 					$plugin->run_hook('admin_user_after_create',array('data'=>$_POST));
-					$panel->admin_message("Daten &uuml;bernommen!","Die Daten wurden erfolgreich &uuml;bernommen.",True,"adduser",3);
+					$panel->admin_message($lang->_('DATASAVED'),$lang->_('DATASAVEDSUCCESS'),True,"adduser",3);
 				}else{
-					$panel->admin_message("Fehler!","Der Name und das Passwort m&uuml;ssen ausgef&uuml;lt werden.",True,"adduser",3);
+					$panel->admin_message($lang->_('ERROR'),$lang->_('NEEDSUSERNAMEPASS'),True,"adduser",3);
 				}
 				
 			}else{
@@ -40,27 +66,20 @@ class adduser_panel extends admin_module{
 			$panel->content.="<h3>".$lang->_('LOCATION').":</h3>";
 			$panel->field(array("name"=>"from","value"=>$data["from"],"typ"=>"text"));
 			$panel->content.="<h3>".$lang->_('GENDER').":</h3>";
-			$panel->select(array("N/A"=>"u", "weiblich"=>"f","m&auml;nnlich"=>"m"),$data["gender"],"gender");
+			$panel->select(array($lang->_('DIV')=>"u", $lang->_('FEMALE')=>"f",$lang->_('MALE')=>"m"),$data["gender"],"gender");
-			
-			$panel->content.="<h3>".$lang->_('BANREASON').":</h3>";
-			$panel->textarea(array("name"=>"bio","value"=>$data["bio"],"typ"=>"text"));
 			$panel->content.="<h3>".$lang->_('HOMEPAGE').":</h3>";
 			$panel->field(array("name"=>"homepage","value"=>$data["homepage"],"typ"=>"text"));
-			$panel->content.="<h3>ICQ:</h3>";
+			$panel->content.="<h3>".$lang->_('BANREASON').":</h3>";
-			$panel->field(array("name"=>"icq","value"=>$data["icq"],"typ"=>"text"));
+			$panel->textarea(array("name"=>"bio","value"=>$data["bio"],"typ"=>"text"));
-			$panel->content.="<h3>AIM:</h3>";
-			$panel->field(array("name"=>"aim","value"=>$data["aim"],"typ"=>"text"));
-			$panel->content.="<h3>Skype:</h3>";
-			$panel->field(array("name"=>"skype","value"=>$data["skype"],"typ"=>"text"));
-
 			$panel->content.="<h3>".$lang->_('ROLE').":</h3>";
 			$result=$db->query("SELECT `id`,`role_name` FROM `" . $config["prefix"] . "role`");
-			while($data = $db->fetch_array($result)){
+			while($rdata = $db->fetch_array($result)){
-				$dd[$data["role_name"]]=$data["id"];			
+				$dd[$rdata["role_name"]]=$rdata["id"];
 			}
-			$panel->select($dd,"1","role");
+			$panel->select($dd,$data["role"],"role");
-			$panel->content.="<h3>".$lang->_('ACTIVE').":</h3>";
+			$panel->content.="<br />";
-			$panel->select(array($lang->_('YES')=>1,$lang->_('NO')=>0),"0","active");
+			$panel->content.="<h3>".$lang->_('STATUS').":</h3>";
+			$panel->select(array($lang->_('ACTIVE')=>1,$lang->_('INACTIVE')=>0,$lang->_('BANNED')=>2),$data["active"],"active");
 			$panel->field(array("name"=>"send","typ"=>"hidden","value"=>"1"));
 			$panel->content.="<br />";
 			$panel->content.="<br />";

admin/editusers.apnl.php

@@ -1,7 +1,7 @@
 <?php
 /**
- * Project:   astat - simple site engine
+ * Project:   BeCast WebEngine - simple site engine
- * File:        /admin/editusers.apnl.php
+ * File:      /admin/editusers.apnl.php
  * 
  * This library is free software; you can redistribute it and/or
  * modify it under the terms of the GNU Lesser General Public
@@ -17,10 +17,10 @@
  * License along with this library; if not, write to the Free Software
  * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA  02111-1307  USA
  *
- * @link http://www.astat.org SVN: $URL$
+ * @link http://www.becast.at
- * @copyright 2009 becast.at
+ * @copyright 2009-2025 becast.at
  * @author Bernhard Jaud <bernhard at becast dot at>
- * @package astat core
+ * @package BcWe core
  * @license http://opensource.org/licenses/gpl-license.php GNU Public License
  * @version $Id$
 */
@@ -39,14 +39,15 @@ class editusers_panel extends admin_module{
 				if(isset($_POST["send"]) && !empty($_POST["name"]) && !empty($_POST["uid"])){
 					$pwd="";
 					if($_POST['role']==2 && $session->userdata['role']!=2){
-					    $panel->admin_message("Error","You cannot assign a role higher then yours!",True,"editusers",3);
+					    $panel->admin_message($lang->_('ERROR'),$lang->_('CANTASSIGNHIGHERRIGHT'),True,"editusers",3);
 					}
 					$_POST['key']=$session->generate_key(50);
+					$salt = $session->generate_Key(6);
 					if($_POST["password"]!=""){
-						$pwd=", `password`='".hash("sha256",$db->escape($_POST["password"]))."', `loginkey`='".$_POST['key']."'";
+						$pwd=", `password`='".hash("sha256",$salt.$db->escape($_POST["password"]))."', `loginkey`='".$_POST['key']."',`salt` = '".$salt."'";
 					}
 					$plugin->run_hook('admin_user_before_update',array('data'=>$_POST,'key'=>$key,'user_fid'=>$session->userdata['fuid']));
-					$db->query("UPDATE `" . $config["prefix"] . "users` SET `username`='".$db->escape($_POST["name"])."',`realname`='".$db->escape($_POST["realname"])."',`email`='".$db->escape($_POST["email"])."',`from`='".$db->escape($_POST["from"])."',`gender`='".$db->escape($_POST["gender"])."',`bio`='".$db->escape($_POST["bio"])."',`homepage`='".$db->escape($_POST["homepage"])."',`icq`='".$db->escape($_POST["icq"])."',`aim`='".$db->escape($_POST["aim"])."',`skype`='".$db->escape($_POST["skype"])."',`role`='".$db->escape($_POST["role"])."',`active`='".$db->escape($_POST["active"])."',`char_suspended`='".$db->escape($_POST["char_suspended"])."'".$pwd." WHERE `uid`='".intval($_POST["uid"])."'");
+					$db->query("UPDATE `" . $config["prefix"] . "users` SET `username`='".$db->escape($_POST["name"])."',`realname`='".$db->escape($_POST["realname"])."',`email`='".$db->escape($_POST["email"])."',`from`='".$db->escape($_POST["from"])."',`gender`='".$db->escape($_POST["gender"])."',`bio`='".$db->escape($_POST["bio"])."',`homepage`='".$db->escape($_POST["homepage"])."',`role`='".$db->escape($_POST["role"])."',`active`='".$db->escape($_POST["active"])."',".$pwd." WHERE `uid`='".intval($_POST["uid"])."'");
 					$_POST['user_fid']=$session->userdata['fuid'];
 					$plugin->run_hook('admin_user_after_update',array('data'=>$_POST));
 					$panel->admin_message($lang->_('SUCCESS'),$lang->_('DATASAVED'),True,"editusers",3);
@@ -66,15 +67,9 @@ class editusers_panel extends admin_module{
 					$panel->content.="<h3>".$lang->_('LOCATION').":</h3>";
 					$panel->field(array("name"=>"from","value"=>$data["from"],"typ"=>"text"));
 					$panel->content.="<h3>".$lang->_('GENDER').":</h3>";
-					$panel->select(array($lang->_('N/A')=>"u", $lang->_('FEMALE')=>"f",$lang->_('MALE')=>"m"),$data["gender"],"gender");
+					$panel->select(array($lang->_('DIV')=>"u", $lang->_('FEMALE')=>"f",$lang->_('MALE')=>"m"),$data["gender"],"gender");
 					$panel->content.="<h3>".$lang->_('HOMEPAGE').":</h3>";
 					$panel->field(array("name"=>"homepage","value"=>$data["homepage"],"typ"=>"text"));
-					$panel->content.="<h3>".$lang->_('ICQ').":</h3>";
-					$panel->field(array("name"=>"icq","value"=>$data["icq"],"typ"=>"text"));
-					$panel->content.="<h3>".$lang->_('AIM').":</h3>";
-					$panel->field(array("name"=>"aim","value"=>$data["aim"],"typ"=>"text"));
-					$panel->content.="<h3>".$lang->_('SKYPE').":</h3>";
-					$panel->field(array("name"=>"skype","value"=>$data["skype"],"typ"=>"text"));
 					$panel->content.="<h3>".$lang->_('BANREASON').":</h3>";
 					$panel->textarea(array("name"=>"bio","value"=>$data["bio"],"typ"=>"text"));
 					$panel->content.="<br />";
@@ -88,8 +83,6 @@ class editusers_panel extends admin_module{
 					$panel->content.="<h3>".$lang->_('STATUS').":</h3>";
 					$panel->select(array($lang->_('ACTIVE')=>1,$lang->_('INACTIVE')=>0,$lang->_('BANNED')=>2),$data["active"],"active");
 					$panel->content.="<br />";
-					$panel->content.="<h3>Char Creation supended?</h3>";
-					$panel->select(array($lang->_('YES')=>1,$lang->_('NO')=>0),$data["char_suspended"],"char_suspended");	
 					$panel->field(array("name"=>"send","typ"=>"hidden","value"=>"1"));
 					$panel->field(array("name"=>"uid","typ"=>"hidden","value"=>$data["uid"]));
 					$panel->content.="<br />";
@@ -103,7 +96,7 @@ class editusers_panel extends admin_module{
 				$plugin->run_hook('admin_user_before_delete',array('data'=>$data));
 				$db->query("DELETE FROM `" . $config["prefix"] . "users`  WHERE `uid`='".intval($_GET["user"])."'");
 				$plugin->run_hook('admin_user_after_delete',array('data'=>$data));
-				$panel->admin_message("User gel&ouml;scht!","Der User wurde erfolgreich gel&ouml;scht.",True,"editusers",3);
+				$panel->admin_message($lang->_('USERDELETED'),$lang->_('USERDELETEDSUCCESS'),True,"editusers",3);
 			}else{
 			
 			$left="";
@@ -118,9 +111,9 @@ class editusers_panel extends admin_module{
 			$panel->content.="<table id=\"users\" width=\"90%\" cellspacing=\"2\">
 						<thead>						
 						<tr>
-						    <th align=\"center\">".$lang->_('ID')."</th>
+						<th align=\"center\">".$lang->_('ID')."</th>
-						    <th align=\"center\">".$lang->_('USERNAME')."</th>
+						<th align=\"center\">".$lang->_('USERNAME')."</th>
-						 <th align=\"center\">".$lang->_('REALNAME')."</th>
+						<th align=\"center\">".$lang->_('REALNAME')."</th>
 						<th align=\"center\">".$lang->_('ROLE')."</th>
 						<th align=\"center\">".$lang->_('STATUS')."</th>
 						<th align=\"center\">".$lang->_('ACTION')."</th>
@@ -144,16 +137,16 @@ class editusers_panel extends admin_module{
 					<td align=\"center\">".$u["role_name"]."</td>
 					<td align=\"center\">".$u['activetext']."</td>";
 					if($u["uid"]==$session->userdata["uid"]){
-						$panel->content.="<td align=\"center\"><a onclick=\"return confirmLink(this,'Das bist du selbst. Und das ist in 99% aller Fälle eine sehr dumme Idee. Wirklich sicher? Du wirst dann sofort ausgeloggt!')\" href=\"".$config["path"]."/admin/index.php?panel=editusers&amp;action=delete&amp;user=".$u["uid"]."\"><img src=\"".$config["path"]."/admin/images/icons/delete.png\" /></a> <a href=\"".$config["path"]."/admin/index.php?panel=editusers&amp;edituser=".$u["uid"]."\"><img src=\"".$config["path"]."/admin/images/icons/wrench.png\" /></a></td>
+						$panel->content.="<td align=\"center\"><a onclick=\"return confirmLink(this,'".$lang->_('BADIDEA')."')\" href=\"".$config["path"]."/admin/index.php?panel=editusers&amp;action=delete&amp;user=".$u["uid"]."\"><img src=\"".$config["path"]."/admin/images/icons/delete.png\" /></a> <a href=\"".$config["path"]."/admin/index.php?panel=editusers&amp;edituser=".$u["uid"]."\"><img src=\"".$config["path"]."/admin/images/icons/wrench.png\" /></a></td>
 					</tr>";
 					}else{
-						$panel->content.="<td align=\"center\"><a onclick=\"return confirmLink(this, 'Willst du wirklich den User ".$u["username"]." l&ouml;schen? Alle Daten diese Users werden gel&ouml;scht!')\" href=\"".$config["path"]."/admin/index.php?panel=editusers&amp;action=delete&amp;user=".$u["uid"]."\"><img src=\"".$config["path"]."/admin/images/icons/delete.png\" /></a> <a href=\"".$config["path"]."/admin/index.php?panel=editusers&amp;edituser=".$u["uid"]."\"><img src=\"".$config["path"]."/admin/images/icons/wrench.png\" /></a></td>
+						$panel->content.="<td align=\"center\"><a onclick=\"return confirmLink(this, '".sprintf($lang->_('DELETEUSER'),$u["username"])."')\" href=\"".$config["path"]."/admin/index.php?panel=editusers&amp;action=delete&amp;user=".$u["uid"]."\"><img src=\"".$config["path"]."/admin/images/icons/delete.png\" /></a> <a href=\"".$config["path"]."/admin/index.php?panel=editusers&amp;edituser=".$u["uid"]."\"><img src=\"".$config["path"]."/admin/images/icons/wrench.png\" /></a></td>
 					</tr>";
 					}
 				}
 			}else{
 			$panel->content.="<tr>
-					<td align=\"center\" colspan=\"5\">Keine User verf&uuml;gbar.</td>
+					<td align=\"center\" colspan=\"5\">".$lang->_('NOUSERS')."</td>
 					</tr>";
 			}
 			$panel->content.="</tbody></table><br />";
@@ -167,19 +160,6 @@ class editusers_panel extends admin_module{
 				<script src="'.$config["path"].'/js/datatables/js/jquery.dataTables.min.js" type="text/javascript">
 				</script>
 				<link type="text/css" rel="stylesheet" media="screen" href="'.$config["path"].'/js/datatables/css/jquery.dataTables.css" />
-				<script type="text/javascript">
-				function deleteItem(item) {
-					if(confirmLink(this, "Willst du wirklich dieses Modul deinstallieren? Alle Daten diese Moduls werden gel&ouml;scht!")==true){
-					name="id_"+item;
-					Effect.SwitchOff(name);
-					new Ajax.Request(\'index.php?panel=navigation\' , {
-					method: "post",
-					parameters: {delete:name}});
-					}
-					return false;
-				}
-				
-				</script>
 			<style type="text/css">
 				.loadlayer {
 					position: absolute;

languages/de.lang.php

@@ -30,12 +30,9 @@
 	$lf['GENDER']='Geschlecht';
 	$lf['MALE']='Männlich';
 	$lf['FEMALE']='Weiblich';
-	$lf['N/A']='N/A';
+	$lf['DIV']='Divers';
 	$lf['BANREASON']='Ban-Grund';
 	$lf['HOMEPAGE']='Homepage';
-	$lf['ICQ']='ICQ';
-	$lf['AIM']='AIM';
-	$lf['SKYPE']='Skype';
 	$lf['ROLE']='Rolle';
 	$lf['BIRTHDAY']='Geburtstag';
 	$lf['LANGUAGE']='Sprache';
@@ -58,7 +55,7 @@
 	
 ## ADMINCENTER
 	$lf['ADMINCENTER']='Admincenter';
-	$lf['STARTTEXT']='Dies ist das Gehirn deiner ASTAT Installation.';
+	$lf['STARTTEXT']='Dies ist das Gehirn deiner BeCast WebEngine Installation.';
 	$lf['ADDUSERTEXT']='Hier kann man Benutzer anlegen.';
 	$lf['BACKTOPAGE']='Zurück zur Seite';
 	$lf['ADMININDEX']='Admin-Hauptseite';
@@ -93,6 +90,16 @@
 	$lf['IP']='IP';
 	$lf['DATE']='Datum';
 	$lf['NOBANNEDIPS']='Keine gebannten IPs';
+	$lf['DATASAVED']='Daten übernommen!';
+	$lf['DATASAVEDSUCCESS']='Die Daten wurden erfolgreich übernommen.';
+	$lf['ERROR']='Fehler!';
+	$lf['CANTASSIGNHIGHERRIGHT']='Du kannst keine Rolle vergeben die höher als deine eigene ist!';
+	$lf['NEEDSUSERNAMEPASS']='Der Name und das Passwort müssen ausgefült werden.';
+	$lf['USERDELETED']='User gelöscht!';
+	$lf['USERDELETEDSUCCESS']='Der User wurde erfolgreich gelöscht.';
+	$lf['BADIDEA']='Das bist du selbst. Und das ist in 99% aller Fälle eine sehr dumme Idee. Wirklich sicher? Du wirst dann sofort ausgeloggt!';
+	$lf['DELETEUSER']='Willst du wirklich den User %s löschen? Alle Daten diese Users werden gelöscht!';
+	$lf['NOUSERS']='Keine User verfügbar.';
 
 ## LOST PASSWORD
 

languages/en.lang.php

@@ -30,12 +30,9 @@
 	$lf['GENDER']='Gender';
 	$lf['MALE']='Male';
 	$lf['FEMALE']='Female';
-	$lf['N/A']='N/A';
+	$lf['DIV']='Other';
 	$lf['BANREASON']='Ban-Reason';
 	$lf['HOMEPAGE']='Homepage';
-	$lf['ICQ']='ICQ';
-	$lf['AIM']='AIM';
-	$lf['SKYPE']='Skype';
 	$lf['ROLE']='Role';
 	$lf['BIRTHDAY']='Birthday';
 	$lf['LANGUAGE']='Language';
@@ -93,6 +90,16 @@
 	$lf['IP']='IP';
 	$lf['DATE']='Date';
 	$lf['NOBANNEDIPS']='No Banned IPs';
+	$lf['DATASAVED']='Data saved!';
+	$lf['DATASAVEDSUCCESS']='The data was successfully saved.';
+	$lf['ERROR']='Error!';
+	$lf['CANTASSIGNHIGHERRIGHT']='You cannot assign a role higher then yours!';
+	$lf['NEEDSUSERNAMEPASS']='You need to provide a username and password.';
+	$lf['USERDELETED']='User deleted!';
+	$lf['USERDELETEDSUCCESS']='The User was susccessfully deleted.';
+	$lf['BADIDEA']='This is yourself. In 99% of all cases deleting your own account is a bad idea. Really sure? You\'ll be logged out immediately after this!';
+	$lf['DELETEUSER']='Do you really want to delete all data of the User %s ?';
+	$lf['NOUSERS']='No Users.';
 
 ## LOST PASSWORD