Gazelle/sections/tools/index.php
2013-10-16 08:01:00 +00:00

504 lines
14 KiB
PHP

<?
/*****************************************************************
Tools switch center
This page acts as a switch for the tools pages.
TODO!
-Unify all the code standards and file names (tool_list.php,tool_add.php,tool_alter.php)
*****************************************************************/
if (isset($argv[1])) {
$_REQUEST['action'] = $argv[1];
} else {
if (empty($_REQUEST['action']) || ($_REQUEST['action'] != 'public_sandbox' && $_REQUEST['action'] != 'ocelot')) {
enforce_login();
}
}
if (!isset($_REQUEST['action'])) {
include(SERVER_ROOT.'/sections/tools/tools.php');
die();
}
if (substr($_REQUEST['action'], 0, 7) == 'sandbox' && !isset($argv[1])) {
if (!check_perms('site_debug')) {
error(403);
}
}
if (substr($_REQUEST['action'], 0, 12) == 'update_geoip' && !isset($argv[1])) {
if (!check_perms('site_debug')) {
error(403);
}
}
if (substr($_REQUEST['action'],0,16) == 'rerender_gallery' && !isset($argv[1])) {
if (!check_perms('site_debug')) {
error(403);
}
}
include(SERVER_ROOT.'/classes/validate.class.php');
$Val = new VALIDATE;
include(SERVER_ROOT.'/classes/feed.class.php');
$Feed = new FEED;
switch ($_REQUEST['action']) {
case 'phpinfo':
if (!check_perms('site_debug')) {
error(403);
}
phpinfo();
break;
//Services
case 'get_host':
include(SERVER_ROOT.'/sections/tools/services/get_host.php');
break;
case 'get_cc':
include(SERVER_ROOT.'/sections/tools/services/get_cc.php');
break;
//Managers
case 'forum':
include(SERVER_ROOT.'/sections/tools/managers/forum_list.php');
break;
case 'forum_alter':
include(SERVER_ROOT.'/sections/tools/managers/forum_alter.php');
break;
case 'whitelist':
include(SERVER_ROOT.'/sections/tools/managers/whitelist_list.php');
break;
case 'whitelist_alter':
include(SERVER_ROOT.'/sections/tools/managers/whitelist_alter.php');
break;
case 'login_watch':
include(SERVER_ROOT.'/sections/tools/managers/login_watch.php');
break;
case 'recommend':
include(SERVER_ROOT.'/sections/tools/managers/recommend_list.php');
break;
case 'recommend_add':
include(SERVER_ROOT.'/sections/tools/managers/recommend_add.php');
break;
case 'recommend_alter':
include(SERVER_ROOT.'/sections/tools/managers/recommend_alter.php');
break;
case 'recommend_restore':
include(SERVER_ROOT.'/sections/tools/managers/recommend_restore.php');
break;
case 'email_blacklist':
include(SERVER_ROOT.'/sections/tools/managers/email_blacklist.php');
break;
case 'email_blacklist_alter':
include(SERVER_ROOT.'/sections/tools/managers/email_blacklist_alter.php');
break;
case 'email_blacklist_search':
include(SERVER_ROOT.'/sections/tools/managers/email_blacklist_search.php');
break;
case 'dnu':
include(SERVER_ROOT.'/sections/tools/managers/dnu_list.php');
break;
case 'dnu_alter':
include(SERVER_ROOT.'/sections/tools/managers/dnu_alter.php');
break;
case 'editnews':
case 'news':
include(SERVER_ROOT.'/sections/tools/managers/news.php');
break;
case 'takeeditnews':
if (!check_perms('admin_manage_news')) {
error(403);
}
if (is_number($_POST['newsid'])) {
$DB->query("
UPDATE news
SET Title = '".db_string($_POST['title'])."',
Body = '".db_string($_POST['body'])."'
WHERE ID = '".db_string($_POST['newsid'])."'");
$Cache->delete_value('news');
$Cache->delete_value('feed_news');
}
header('Location: index.php');
break;
case 'deletenews':
if (!check_perms('admin_manage_news')) {
error(403);
}
if (is_number($_GET['id'])) {
authorize();
$DB->query("
DELETE FROM news
WHERE ID = '".db_string($_GET['id'])."'");
$Cache->delete_value('news');
$Cache->delete_value('feed_news');
// Deleting latest news
$LatestNews = $Cache->get_value('news_latest_id');
if ($LatestNews !== false && $LatestNews == $_GET['id']) {
$Cache->delete_value('news_latest_id');
$Cache->delete_value('news_latest_title');
}
}
header('Location: index.php');
break;
case 'takenewnews':
if (!check_perms('admin_manage_news')) {
error(403);
}
$DB->query("
INSERT INTO news (UserID, Title, Body, Time)
VALUES ('$LoggedUser[ID]', '".db_string($_POST['title'])."', '".db_string($_POST['body'])."', '".sqltime()."')");
$Cache->delete_value('news_latest_id');
$Cache->delete_value('news_latest_title');
$Cache->delete_value('news');
header('Location: index.php');
break;
case 'tokens':
include(SERVER_ROOT.'/sections/tools/managers/tokens.php');
break;
case 'ocelot':
include(SERVER_ROOT.'/sections/tools/managers/ocelot.php');
break;
case 'official_tags':
include(SERVER_ROOT.'/sections/tools/managers/official_tags.php');
break;
case 'tag_aliases':
include(SERVER_ROOT.'/sections/tools/managers/tag_aliases.php');
break;
case 'label_aliases':
include(SERVER_ROOT.'/sections/tools/managers/label_aliases.php');
break;
case 'change_log':
include(SERVER_ROOT.'/sections/tools/managers/change_log.php');
break;
case 'global_notification':
include(SERVER_ROOT.'/sections/tools/managers/global_notification.php');
break;
case 'take_global_notification':
include(SERVER_ROOT.'/sections/tools/managers/take_global_notification.php');
break;
case 'permissions':
if (!check_perms('admin_manage_permissions')) {
error(403);
}
if (!empty($_REQUEST['id'])) {
$Val->SetFields('name', true, 'string', 'You did not enter a valid name for this permission set.');
$Val->SetFields('level', true, 'number', 'You did not enter a valid level for this permission set.');
$Val->SetFields('maxcollages', true, 'number', 'You did not enter a valid number of personal collages.');
//$Val->SetFields('test', true, 'number', 'You did not enter a valid level for this permission set.');
if (is_numeric($_REQUEST['id'])) {
$DB->query("
SELECT p.ID, p.Name, p.Level, p.Secondary, p.PermittedForums, p.Values, p.DisplayStaff, COUNT(u.ID)
FROM permissions AS p
LEFT JOIN users_main AS u ON u.PermissionID = p.ID
WHERE p.ID = '".db_string($_REQUEST['id'])."'
GROUP BY p.ID");
list($ID, $Name, $Level, $Secondary, $Forums, $Values, $DisplayStaff, $UserCount) = $DB->next_record(MYSQLI_NUM, array(5));
if ($Level > $LoggedUser['EffectiveClass'] || $_REQUEST['level'] > $LoggedUser['EffectiveClass']) {
error(403);
}
$Values = unserialize($Values);
}
if (!empty($_POST['submit'])) {
$Err = $Val->ValidateForm($_POST);
if (!is_numeric($_REQUEST['id'])) {
$DB->query("
SELECT ID
FROM permissions
WHERE Level = '".db_string($_REQUEST['level'])."'");
list($DupeCheck)=$DB->next_record();
if ($DupeCheck) {
$Err = 'There is already a permission class with that level.';
}
}
$Values = array();
foreach ($_REQUEST as $Key => $Perms) {
if (substr($Key, 0, 5) == 'perm_') {
$Values[substr($Key, 5)] = (int)$Perms;
}
}
$Name = $_REQUEST['name'];
$Level = $_REQUEST['level'];
$Secondary = empty($_REQUEST['secondary']) ? 0 : 1;
$Forums = $_REQUEST['forums'];
$DisplayStaff = $_REQUEST['displaystaff'];
$Values['MaxCollages'] = $_REQUEST['maxcollages'];
if (!$Err) {
if (!is_numeric($_REQUEST['id'])) {
$DB->query("
INSERT INTO permissions (Level, Name, Secondary, PermittedForums, `Values`, DisplayStaff)
VALUES ('".db_string($Level)."',
'".db_string($Name)."',
$Secondary,
'".db_string($Forums)."',
'".db_string(serialize($Values))."',
'".db_string($DisplayStaff)."')");
} else {
$DB->query("
UPDATE permissions
SET Level = '".db_string($Level)."',
Name = '".db_string($Name)."',
Secondary = $Secondary,
PermittedForums = '".db_string($Forums)."',
`Values` = '".db_string(serialize($Values))."',
DisplayStaff = '".db_string($DisplayStaff)."'
WHERE ID = '".db_string($_REQUEST['id'])."'");
$Cache->delete_value('perm_'.$_REQUEST['id']);
if ($Secondary) {
$DB->query("
SELECT DISTINCT UserID
FROM users_levels
WHERE PermissionID = ".db_string($_REQUEST['id']));
while ($UserID = $DB->next_record()) {
$Cache->delete_value("user_info_heavy_$UserID");
}
}
}
$Cache->delete_value('classes');
} else {
error($Err);
}
}
include(SERVER_ROOT.'/sections/tools/managers/permissions_alter.php');
} else {
if (!empty($_REQUEST['removeid'])) {
$DB->query("
DELETE FROM permissions
WHERE ID = '".db_string($_REQUEST['removeid'])."'");
$DB->query("
SELECT UserID
FROM users_levels
WHERE PermissionID = '".db_string($_REQUEST['removeid'])."'");
while (list($UserID) = $DB->next_record()) {
$Cache->delete_value("user_info_$UserID");
$Cache->delete_value("user_info_heavy_$UserID");
}
$DB->query("
DELETE FROM users_levels
WHERE PermissionID = '".db_string($_REQUEST['removeid'])."'");
$DB->query("
SELECT ID
FROM users_main
WHERE PermissionID = '".db_string($_REQUEST['removeid'])."'");
while (list($UserID) = $DB->next_record()) {
$Cache->delete_value("user_info_$UserID");
$Cache->delete_value("user_info_heavy_$UserID");
}
$DB->query("
UPDATE users_main
SET PermissionID = '".USER."'
WHERE PermissionID = '".db_string($_REQUEST['removeid'])."'");
$Cache->delete_value('classes');
}
include(SERVER_ROOT.'/sections/tools/managers/permissions_list.php');
}
break;
case 'ip_ban':
//TODO: Clean up DB table ip_bans.
include(SERVER_ROOT.'/sections/tools/managers/bans.php');
break;
case 'quick_ban':
include(SERVER_ROOT.'/sections/tools/misc/quick_ban.php');
break;
//Data
case 'registration_log':
include(SERVER_ROOT.'/sections/tools/data/registration_log.php');
break;
case 'donation_log':
include(SERVER_ROOT.'/sections/tools/finances/donation_log.php');
break;
case 'bitcoin_unproc':
include(SERVER_ROOT.'/sections/tools/finances/bitcoin_unproc.php');
break;
case 'bitcoin_balance':
include(SERVER_ROOT.'/sections/tools/finances/bitcoin_balance.php');
break;
case 'donor_rewards':
include(SERVER_ROOT.'/sections/tools/finances/donor_rewards.php');
break;
case 'upscale_pool':
include(SERVER_ROOT.'/sections/tools/data/upscale_pool.php');
break;
case 'invite_pool':
include(SERVER_ROOT.'/sections/tools/data/invite_pool.php');
break;
case 'torrent_stats':
include(SERVER_ROOT.'/sections/tools/data/torrent_stats.php');
break;
case 'user_flow':
include(SERVER_ROOT.'/sections/tools/data/user_flow.php');
break;
case 'economic_stats':
include(SERVER_ROOT.'/sections/tools/data/economic_stats.php');
break;
case 'service_stats':
include(SERVER_ROOT.'/sections/tools/development/service_stats.php');
break;
case 'database_specifics':
include(SERVER_ROOT.'/sections/tools/data/database_specifics.php');
break;
case 'special_users':
include(SERVER_ROOT.'/sections/tools/data/special_users.php');
break;
case 'browser_support':
include(SERVER_ROOT.'/sections/tools/data/browser_support.php');
break;
//END Data
//Misc
case 'update_geoip':
include(SERVER_ROOT.'/sections/tools/development/update_geoip.php');
break;
case 'dupe_ips':
include(SERVER_ROOT.'/sections/tools/misc/dupe_ip.php');
break;
case 'clear_cache':
include(SERVER_ROOT.'/sections/tools/development/clear_cache.php');
break;
case 'create_user':
include(SERVER_ROOT.'/sections/tools/misc/create_user.php');
break;
case 'manipulate_tree':
include(SERVER_ROOT.'/sections/tools/misc/manipulate_tree.php');
break;
case 'recommendations':
include(SERVER_ROOT.'/sections/tools/misc/recommendations.php');
break;
case 'analysis':
include(SERVER_ROOT.'/sections/tools/misc/analysis.php');
break;
case 'process_info':
include(SERVER_ROOT.'/sections/tools/development/process_info.php');
break;
case 'rerender_gallery':
include(SERVER_ROOT.'/sections/tools/development/rerender_gallery.php');
break;
case 'sandbox1':
include(SERVER_ROOT.'/sections/tools/sandboxes/sandbox1.php');
break;
case 'sandbox2':
include(SERVER_ROOT.'/sections/tools/sandboxes/sandbox2.php');
break;
case 'sandbox3':
include(SERVER_ROOT.'/sections/tools/sandboxes/sandbox3.php');
break;
case 'sandbox4':
include(SERVER_ROOT.'/sections/tools/sandboxes/sandbox4.php');
break;
case 'sandbox5':
include(SERVER_ROOT.'/sections/tools/sandboxes/sandbox5.php');
break;
case 'sandbox6':
include(SERVER_ROOT.'/sections/tools/sandboxes/sandbox6.php');
break;
case 'sandbox7':
include(SERVER_ROOT.'/sections/tools/sandboxes/sandbox7.php');
break;
case 'sandbox8':
include(SERVER_ROOT.'/sections/tools/sandboxes/sandbox8.php');
break;
case 'public_sandbox':
include(SERVER_ROOT.'/sections/tools/sandboxes/public_sandbox.php');
break;
case 'mod_sandbox':
if (check_perms('users_mod')) {
include(SERVER_ROOT.'/sections/tools/sandboxes/mod_sandbox.php');
} else {
error(403);
}
break;
case 'bbcode_sandbox':
include(SERVER_ROOT.'/sections/tools/sandboxes/bbcode_sandbox.php');
break;
case 'calendar':
include(SERVER_ROOT.'/sections/tools/managers/calendar.php');
break;
case 'get_calendar_event':
include(SERVER_ROOT.'/sections/tools/managers/ajax_get_calendar_event.php');
break;
case 'take_calendar_event':
include(SERVER_ROOT.'/sections/tools/managers/ajax_take_calendar_event.php');
break;
case 'mass_pm':
include(SERVER_ROOT.'/sections/tools/managers/mass_pm.php');
break;
case 'take_mass_pm':
include(SERVER_ROOT.'/sections/tools/managers/take_mass_pm.php');
break;
default:
include(SERVER_ROOT.'/sections/tools/tools.php');
}
?>