PHP Classes

File: upload/plugins/bulletinboard/api.php

Recommend this page to a friend!
  Classes of James Brows   PHP Bulletin Board   upload/plugins/bulletinboard/api.php   Download  
File: upload/plugins/bulletinboard/api.php
Role: Example script
Content type: text/plain
Description: Example script
Class: PHP Bulletin Board
Manage and post messages in multi-user forums
Author: By
Last change:
Date: 2 years ago
Size: 79,976 bytes
 

Contents

Class file image Download
<?php require_once(PLUGINS_PATH.'bulletinboard/core.php'); function frontend_api() { $api_nm=addslashes(getGet('api_nm')); $apiLibsPath=PLUGINS_PATH.'bulletinboard/api_libs/'.$api_nm.'.php'; if(!file_exists($apiLibsPath)) { return $apiLibsPath; } $result=''; require_once($apiLibsPath); if(function_exists($api_nm)) { $result=$api_nm(); } return $result; } function bb_add_new_forum() { $username=isset(Configs::$_['user_data']['user_id'])?Configs::$_['user_data']['user_id']:''; // print_r(Configs::$_['user_data']);die(); try { isValidAccessAPI(); } catch (\Exception $e) { return 'ERROR_01'; } $forum_id=newID(12); $parent_id=addslashes(getPost('parent_id')); $forum_type=strtoupper(addslashes(getPost('forum_type'))); $external_url=''; $short_content=addslashes(getPost('short_content')); if($forum_type=='URL') { $external_url=$short_content; $short_content=''; } $insertData=array( 'forum_id'=>$forum_id, 'title'=>addslashes(getPost('title')), 'parent_id'=>$parent_id, 'friendly_url'=>friendlyString(getPost('title'),'_')."_".$forum_id, 'descriptions'=>addslashes(getPost('descriptions')), 'thumbnail'=>addslashes(getPost('thumbnail')), 'forum_type'=>addslashes(getPost('forum_type')), 'external_url'=>$external_url, 'short_content'=>$short_content, 'allow_create_thread'=>addslashes(getPost('allow_create_thread')), 'keywords'=>addslashes(getPost('keywords')), 'status'=>addslashes(getPost('status')), 'user_id'=>$username ); $db=new Database(); $loadData=$db->query("select MAX(sort_order) as sort_order from bb_forum_data where ifnull(parent_id,'')='".$parent_id."'"); $sort_order=0; if(count($loadData)) { $sort_order=(int)$loadData[0]['sort_order']+1; $insertData['sort_order']=$sort_order; } // $queryStr=arrayToInsertStr('post_data_'.$tableNumber,$insertData); $queryStr=arrayToInsertStr('bb_forum_data',$insertData); // $db->nonquery("update bb_forum_data set sort_order=sort_order+1 where ifnull(parent_id,'')='".$parent_id."'"); $db->nonquery($queryStr); $queryStr=" insert into bb_forum_usergroup_permission_data"; $queryStr.=" SELECT '".$forum_id."',group_c,'BB10001',NOW()"; $queryStr.=" FROM user_group_mst"; $db->nonquery($queryStr); if($forum_type=='PRIVATE') { $queryStr=" insert into bb_forum_usergroup_permission_data"; $queryStr.=" SELECT '".$forum_id."',group_c,'BB20001',NOW()"; $queryStr.=" FROM user_group_mst where group_c<>'11016011';"; $queryStr.=" insert into bb_forum_usergroup_permission_data"; $queryStr.=" SELECT '".$forum_id."',group_c,'BB20003',NOW()"; $queryStr.=" FROM user_group_mst where group_c<>'11016011';"; $queryStr.=" insert into bb_forum_usergroup_permission_data"; $queryStr.=" SELECT '".$forum_id."',group_c,'BB20004',NOW()"; $queryStr.=" FROM user_group_mst where group_c<>'11016011';"; $queryStr.=" insert into bb_forum_usergroup_permission_data"; $queryStr.=" SELECT '".$forum_id."',group_c,'BB20006',NOW()"; $queryStr.=" FROM user_group_mst where group_c<>'11016011';"; $queryStr.=" insert into bb_forum_usergroup_permission_data"; $queryStr.=" SELECT '".$forum_id."',group_c,'BB20014',NOW()"; $queryStr.=" FROM user_group_mst where group_c<>'11016011';"; $db->nonquery($queryStr); } if(file_exists(BB_CACHES_PATH.'forums.php')) { unlink(BB_CACHES_PATH.'forums.php'); } saveActivities('bb_forum_add','Add new forum '.$insertData['title'],$username); return 'OK'; } function bb_add_ranks() { $username=isset(Configs::$_['user_data']['user_id'])?Configs::$_['user_data']['user_id']:''; // print_r(Configs::$_['user_data']);die(); try { isValidAccessAPI(); } catch (\Exception $e) { return 'ERROR_01'; } $rank_id=newID(12); $img=addslashes(getPost('img')); $img=str_replace(SITE_URL,'',$img); $splitIMG=explode('.',$img); $newImgPath='public/bb_contents/'.newID(10).'.'.$splitIMG[count($splitIMG)-1]; if(file_exists(ROOT_PATH.$img)) { copy(ROOT_PATH.$img,ROOT_PATH.$newImgPath); unlink(ROOT_PATH.$img); } $insertData=array( 'rank_id'=>$rank_id, 'title'=>addslashes(getPost('title')), 'bg_color_c'=>addslashes(getPost('color')), 'status'=>addslashes(getPost('status')), 'left_str'=>addslashes(getPost('left_str')), 'right_str'=>addslashes(getPost('right_str')), 'image'=>$newImgPath, 'user_id'=>$username ); $db=new Database(); // $queryStr=arrayToInsertStr('post_data_'.$tableNumber,$insertData); $queryStr=arrayToInsertStr('bb_ranks_data',$insertData); $db->nonquery($queryStr); saveActivities('bb_ranks_add','Add new rank '.$insertData['title'],$username); return 'OK'; } function bb_add_new_annoucement() { $username=isset(Configs::$_['user_data']['user_id'])?Configs::$_['user_data']['user_id']:''; // print_r(Configs::$_['user_data']);die(); try { isValidAccessAPI(); } catch (\Exception $e) { return 'ERROR_01'; } $id=newID(12); $insertData=array( 'a_id'=>$id, 'title'=>addslashes(getPost('title')), 'forum_id'=>addslashes(getPost('forum_id')), 'group_id'=>addslashes(getPost('usergroup_id')), 'content'=>addslashes(getPost('content')), 'user_id'=>$username ); $db=new Database(); // $queryStr=arrayToInsertStr('post_data_'.$tableNumber,$insertData); $queryStr=arrayToInsertStr('bb_annoucement_data',$insertData); $db->nonquery($queryStr); $savePath=BB_CACHES_PATH.'annoucement.php'; if(file_exists($savePath)) { unlink($savePath); } saveActivities('bb_annoucement_add','Add new annoucement '.$insertData['title'],$username); return 'OK'; } function bb_add_new_htmlglobal() { $username=isset(Configs::$_['user_data']['user_id'])?Configs::$_['user_data']['user_id']:''; // print_r(Configs::$_['user_data']);die(); try { isValidAccessAPI(); } catch (\Exception $e) { return 'ERROR_01'; } $forum_id=newID(12); $html_c=addslashes(getPost('code')); $insertData=array( 'html_c'=>$html_c, 'title'=>addslashes(getPost('title')), 'content'=>addslashes(getPost('content')), 'user_id'=>$username ); $db=new Database(); // $queryStr=arrayToInsertStr('post_data_'.$tableNumber,$insertData); $queryStr=arrayToInsertStr('bb_html_global_data',$insertData); $db->nonquery("delete from bb_html_global_data where html_c='".$html_c."'"); $db->nonquery($queryStr); saveActivities('bb_html_global_add','Add new html global '.$insertData['title'],$username); return 'OK'; } function bb_add_post_prefix() { $username=isset(Configs::$_['user_data']['user_id'])?Configs::$_['user_data']['user_id']:''; // print_r(Configs::$_['user_data']);die(); try { isValidAccessAPI(); } catch (\Exception $e) { return 'ERROR_01'; } $prefix_id=newID(6); $insertData=array( 'prefix_id'=>$prefix_id, 'title'=>addslashes(getPost('title')), 'bg_color_c'=>addslashes(getPost('color')), 'status'=>addslashes(getPost('status')), 'user_id'=>$username ); $db=new Database(); // $queryStr=arrayToInsertStr('post_data_'.$tableNumber,$insertData); $queryStr=arrayToInsertStr('bb_post_prefix_data',$insertData); $db->nonquery($queryStr); if(file_exists(BB_CACHES_PATH.'post_prefix.php')) { unlink(BB_CACHES_PATH.'post_prefix.php'); } saveActivities('bb_post_prefix_add','Add new post prefix '.$insertData['title'],$username); return 'OK'; } function bb_forum_sort_up() { $forum_id=addslashes(getPost('forum_id')); $parent_id=addslashes(getPost('parent_id')); $sort_order=addslashes(getPost('sort_order')); $db=new Database(); $loadTargetData=$db->query("select * from bb_forum_data where ifnull(parent_id,'')='".$parent_id."' AND sort_order<'".$sort_order."' order by parent_id,sort_order desc limit 0,1 "); if(is_array($loadTargetData) && count($loadTargetData) > 0) { $db->nonquery("update bb_forum_data set sort_order='".$sort_order."' where forum_id='".$loadTargetData[0]['forum_id']."'"); $db->nonquery("update bb_forum_data set sort_order='".$loadTargetData[0]['sort_order']."' where forum_id='".$forum_id."'"); } if(file_exists(BB_CACHES_PATH.'forums.php')) { unlink(BB_CACHES_PATH.'forums.php'); } if(file_exists(BB_CACHES_PATH.'forum_id_'.$forum_id.'.php')) { unlink(BB_CACHES_PATH.'forum_id_'.$forum_id.'.php'); } } function bb_forum_sort_down() { $forum_id=addslashes(getPost('forum_id')); $parent_id=addslashes(getPost('parent_id')); $sort_order=addslashes(getPost('sort_order')); $db=new Database(); $loadTargetData=$db->query("select * from bb_forum_data where ifnull(parent_id,'')='".$parent_id."' AND sort_order>'".$sort_order."' order by parent_id,sort_order asc limit 0,1 "); if(is_array($loadTargetData) && count($loadTargetData) > 0) { $db->nonquery("update bb_forum_data set sort_order='".$sort_order."' where forum_id='".$loadTargetData[0]['forum_id']."'"); $db->nonquery("update bb_forum_data set sort_order='".$loadTargetData[0]['sort_order']."' where forum_id='".$forum_id."'"); } if(file_exists(BB_CACHES_PATH.'forums.php')) { unlink(BB_CACHES_PATH.'forums.php'); } if(file_exists(BB_CACHES_PATH.'forum_id_'.$forum_id.'.php')) { unlink(BB_CACHES_PATH.'forum_id_'.$forum_id.'.php'); } } function bb_smile_category_sort_up() { $category_id=addslashes(getPost('category_id')); $sort_order=addslashes(getPost('sort_order')); $db=new Database(); $loadTargetData=$db->query("select * from bb_smiles_category_data where sort_order<'".$sort_order."' order by sort_order desc limit 0,1 "); if(is_array($loadTargetData) && count($loadTargetData) > 0) { $db->nonquery("update bb_smiles_category_data set sort_order='".$sort_order."' where category_id='".$loadTargetData[0]['category_id']."'"); $db->nonquery("update bb_smiles_category_data set sort_order='".$loadTargetData[0]['sort_order']."' where category_id='".$category_id."'"); } BB_Smiles::clearCache(); } function bb_smile_category_sort_down() { $category_id=addslashes(getPost('category_id')); $sort_order=addslashes(getPost('sort_order')); $db=new Database(); $loadTargetData=$db->query("select * from bb_smiles_category_data where sort_order>'".$sort_order."' order by sort_order asc limit 0,1 "); if(is_array($loadTargetData) && count($loadTargetData) > 0) { $db->nonquery("update bb_smiles_category_data set sort_order='".$sort_order."' where category_id='".$loadTargetData[0]['category_id']."'"); $db->nonquery("update bb_smiles_category_data set sort_order='".$loadTargetData[0]['sort_order']."' where category_id='".$category_id."'"); } BB_Smiles::clearCache(); } function bb_update_usergroup_permission() { $group_id=getPost('group_id',''); $forum_id=getPost('forum_id',''); $permission_list=getPost('permission_list',''); $queryStrPer=''; if(isset($permission_list[1])) { $split=explode(',', $permission_list); $total=count($split); $insertPerQuery=''; for ($i=0; $i < $total; $i++) { if(!isset($split[$i][1])) { continue; } $insertPerQuery=array( 'forum_id'=>$forum_id, 'group_id'=>$group_id, 'permission_c'=>$split[$i] ); $queryStrPer.=arrayToInsertStr('bb_forum_usergroup_permission_data',$insertPerQuery); } $db=new Database(); $db->nonquery("delete from bb_forum_usergroup_permission_data where group_id='".$group_id."' AND forum_id='".$forum_id."'"); $db->nonquery($queryStrPer); $childData=$db->query("select forum_id from bb_forum_data where parent_id='".$forum_id."'"); $totalChild=count($childData); $queryStrPer=''; for ($k=0; $k < $totalChild; $k++) { $db->nonquery("delete from bb_forum_usergroup_permission_data where group_id='".$group_id."' AND forum_id='".$childData[$k]['forum_id']."'"); for ($i=0; $i < $total; $i++) { if(!isset($split[$i][1])) { continue; } $insertPerQuery=array( 'forum_id'=>$childData[$k]['forum_id'], 'group_id'=>$group_id, 'permission_c'=>$split[$i] ); $queryStrPer.=arrayToInsertStr('bb_forum_usergroup_permission_data',$insertPerQuery); } } $db->nonquery($queryStrPer); } return 'OK'; } function bb_update_user_permission() { $user_id=getPost('user_id',''); $forum_id=getPost('forum_id',''); $permission_list=getPost('permission_list',''); $queryStrPer=''; if(isset($permission_list[1])) { $split=explode(',', $permission_list); $total=count($split); $insertPerQuery=''; for ($i=0; $i < $total; $i++) { if(!isset($split[$i][1])) { continue; } $insertPerQuery=array( 'forum_id'=>$forum_id, 'user_id'=>$user_id, 'permission_c'=>$split[$i] ); $queryStrPer.=arrayToInsertStr('bb_forum_user_permission_data',$insertPerQuery); } $db=new Database(); $db->nonquery("delete from bb_forum_user_permission_data where user_id='".$user_id."' AND forum_id='".$forum_id."'"); $db->nonquery($queryStrPer); } else { $db=new Database(); $db->nonquery("delete from bb_forum_user_permission_data where user_id='".$user_id."' AND forum_id='".$forum_id."'"); } return 'OK'; } function bb_add_user_permission() { $username=getPost('username',''); $forum_id=getPost('forum_id',''); $permission_list=getPost('permission_list',''); $queryStrPer=''; if(isset($permission_list[1])) { $db=new Database(); $userData=$db->query("select * from user_mst where username='".$username."' OR email='".$username."'"); $user_id=$userData[0]['user_id']; $split=explode(',', $permission_list); $total=count($split); $insertPerQuery=''; for ($i=0; $i < $total; $i++) { if(!isset($split[$i][1])) { continue; } $insertPerQuery=array( 'forum_id'=>$forum_id, 'user_id'=>$user_id, 'permission_c'=>$split[$i] ); $queryStrPer.=arrayToInsertStr('bb_forum_user_permission_data',$insertPerQuery); } $db->nonquery("delete from bb_forum_user_permission_data where user_id='".$user_id."' AND forum_id='".$forum_id."'"); $db->nonquery($queryStrPer); $childData=$db->query("select forum_id from bb_forum_data where parent_id='".$forum_id."'"); $totalChild=count($childData); $queryStrPer=''; for ($k=0; $k < $totalChild; $k++) { $db->nonquery("delete from bb_forum_user_permission_data where user_id='".$user_id."' AND forum_id='".$childData[$k]['forum_id']."'"); for ($i=0; $i < $total; $i++) { if(!isset($split[$i][1])) { continue; } $insertPerQuery=array( 'forum_id'=>$childData[$k]['forum_id'], 'user_id'=>$user_id, 'permission_c'=>$split[$i] ); $queryStrPer.=arrayToInsertStr('bb_forum_user_permission_data',$insertPerQuery); } } $db->nonquery($queryStrPer); } return 'OK'; } function bb_add_banned_email() { $username=isset(Configs::$_['user_data']['user_id'])?Configs::$_['user_data']['user_id']:''; // print_r(Configs::$_['user_data']);die(); try { isValidAccessAPI(); } catch (\Exception $e) { return 'ERROR_01'; } $email=addslashes(strtolower(getPost('email'))); $insertData=array( 'data_method'=>'email', 'username'=>$email, 'user_id'=>$username ); $db=new Database(); // $queryStr=arrayToInsertStr('post_data_'.$tableNumber,$insertData); $queryStr=arrayToInsertStr('bb_banned_user_data',$insertData); $db->nonquery("delete from bb_banned_user_data where username='".$email."'"); $db->nonquery($queryStr); $hash=md5($email); $savePath=PUBLIC_PATH.'bb_contents/firewall/email/'.$hash; if(!is_dir($savePath)) { mkdir($savePath); } saveActivities('bb_banned_email_add','Banned email '.$insertData['username'],$username); return 'OK'; } function bb_add_banned_browser() { $username=isset(Configs::$_['user_data']['user_id'])?Configs::$_['user_data']['user_id']:''; // print_r(Configs::$_['user_data']);die(); try { isValidAccessAPI(); } catch (\Exception $e) { return 'ERROR_01'; } $browser=addslashes(strtoupper(getPost('browser'))); $insertData=array( 'browser_name'=>$browser, 'user_id'=>$username ); $db=new Database(); // $queryStr=arrayToInsertStr('post_data_'.$tableNumber,$insertData); $queryStr=arrayToInsertStr('bb_banned_browser_data',$insertData); $db->nonquery("delete from bb_banned_browser_data where browser_name='".$browser."'"); $db->nonquery($queryStr); $savePath=PUBLIC_PATH.'bb_contents/firewall/browser/'.strtoupper($browser); if(!is_dir($savePath)) { mkdir($savePath); } saveActivities('bb_banned_browser_add','Banned browser '.$insertData['browser_name'],$username); return 'OK'; } function bb_add_captcha_question() { $username=isset(Configs::$_['user_data']['user_id'])?Configs::$_['user_data']['user_id']:''; // print_r(Configs::$_['user_data']);die(); try { isValidAccessAPI(); } catch (\Exception $e) { return 'ERROR_01'; } $insertData=array( 'title'=>addslashes(getPost('title')), 'answer'=>addslashes(getPost('answer')), 'status'=>addslashes(getPost('status')), 'user_id'=>$username ); $db=new Database(); // $queryStr=arrayToInsertStr('post_data_'.$tableNumber,$insertData); $queryStr=arrayToInsertStr('bb_capcha_questions_data',$insertData); $db->nonquery($queryStr); saveActivities('bb_capcha_questions_add','Add captcha question '.$insertData['title'],$username); return 'OK'; } function bb_add_banned_username() { $username=isset(Configs::$_['user_data']['user_id'])?Configs::$_['user_data']['user_id']:''; // print_r(Configs::$_['user_data']);die(); try { isValidAccessAPI(); } catch (\Exception $e) { return 'ERROR_01'; } $email=addslashes(getPost('email')); $insertData=array( 'data_method'=>'username', 'username'=>$email, 'user_id'=>$username ); $db=new Database(); // $queryStr=arrayToInsertStr('post_data_'.$tableNumber,$insertData); $queryStr=arrayToInsertStr('bb_banned_user_data',$insertData); $db->nonquery("delete from bb_banned_user_data where username='".$email."'"); $db->nonquery($queryStr); // $db->nonquery("update user_mst set group_c='".Configs::$_['default_member_banned_groupid']."' where username='".$email."'"); $savePath=PUBLIC_PATH.'bb_contents/firewall/username/'.md5(strtoupper($email)); if(!is_dir($savePath)) { mkdir($savePath); } saveActivities('bb_banned_username_add','Banned username '.$insertData['username'],$username); return 'OK'; } function bb_check_license() { $bb_renew_license=trim(getPost('bb_renew_license','')); $response=file_get_contents("http://localhost/lioncms/api/plugin_api?plugin=plugin_notify&plugin_nm=bulletinboard&func=verify_license&key=".$bb_renew_license."&url=".urlencode(SITE_URL)); // $response=file_get_contents("http://coffeecms.net/api/plugin_api?plugin=plugin_notify&plugin_nm=bulletinboard&func=verify_license&key=".$key."&url=".urlencode(SITE_URL)); $responseData=json_decode($response); if($responseData->error=='yes') { echo responseData('NOTVALID','yes');die(); } else { if($responseData->data=='EXPIRED' || $responseData->data=='NOTFOUND') { echo responseData('NOTVALID','yes');die(); } $db=new Database(); $expires_dt=$responseData->data; $db->nonquery("update setting_data set key_value='".$bb_renew_license."' where key_c='bb_license_key'"); $db->nonquery("update setting_data set key_value='".$expires_dt."' where key_c='bb_license_end_dt'"); $savePath=PUBLIC_PATH.'caches/system_setting.php'; if(file_exists($savePath)) { unlink($savePath); } echo responseData('OK','no');die(); } } function bb_add_smile_category() { $username=isset(Configs::$_['user_data']['user_id'])?Configs::$_['user_data']['user_id']:''; // print_r(Configs::$_['user_data']);die(); try { isValidAccessAPI(); } catch (\Exception $e) { return 'ERROR_01'; } $title=addslashes(getPost('title')); $id=newID(12); $insertData=array( 'category_id'=>$id, 'friendly_url'=>friendlyString(getPost('title')), 'title'=>$title, 'status'=>'1', 'sort_order'=>'0', 'user_id'=>$username ); $db=new Database(); // $queryStr=arrayToInsertStr('post_data_'.$tableNumber,$insertData); $queryStr=arrayToInsertStr('bb_smiles_category_data',$insertData); $db->nonquery("update bb_smiles_category_data set sort_order=sort_order+1 "); $db->nonquery($queryStr); $newPath=ROOT_PATH.'public/bb_contents/smiles/'.$insertData['friendly_url']; if(!is_dir($newPath)) { mkdir($newPath); } BB_Smiles::clearCache(); saveActivities('bb_smiles_add_category_data','Add smile category '.$insertData['title'],$username); return 'OK'; } function bb_add_banned_ipaddress() { $username=isset(Configs::$_['user_data']['user_id'])?Configs::$_['user_data']['user_id']:''; // print_r(Configs::$_['user_data']);die(); try { isValidAccessAPI(); } catch (\Exception $e) { return 'ERROR_01'; } $ip=addslashes(getPost('ip')); $insertData=array( 'ip_address'=>$ip, 'user_id'=>$username ); $db=new Database(); // $queryStr=arrayToInsertStr('post_data_'.$tableNumber,$insertData); $queryStr=arrayToInsertStr('bb_banned_ip_data',$insertData); $db->nonquery("delete from bb_banned_ip_data where ip_address='".$ip."'"); $db->nonquery($queryStr); $savePath=PUBLIC_PATH.'bb_contents/firewall/ip/'.md5($ip); if(!is_dir($savePath)) { mkdir($savePath); } saveActivities('bb_banned_ip_add','Banned ip '.$insertData['ip_address'],$username); return 'OK'; } function bb_add_banned_os() { $username=isset(Configs::$_['user_data']['user_id'])?Configs::$_['user_data']['user_id']:''; // print_r(Configs::$_['user_data']);die(); try { isValidAccessAPI(); } catch (\Exception $e) { return 'ERROR_01'; } $os=addslashes(strtoupper(getPost('os'))); $insertData=array( 'os_name'=>$os, 'user_id'=>$username ); $db=new Database(); // $queryStr=arrayToInsertStr('post_data_'.$tableNumber,$insertData); $queryStr=arrayToInsertStr('bb_banned_os_data',$insertData); $db->nonquery("delete from bb_banned_os_data where os_name='".$os."'"); $db->nonquery($queryStr); $savePath=PUBLIC_PATH.'bb_contents/firewall/os/'.strtoupper($os); if(!is_dir($savePath)) { mkdir($savePath); } saveActivities('bb_banned_os_add','Banned operating system '.$insertData['os_name'],$username); return 'OK'; } function bb_reaction_add() { $username=isset(Configs::$_['user_data']['user_id'])?Configs::$_['user_data']['user_id']:''; // print_r(Configs::$_['user_data']);die(); try { isValidAccessAPI(); } catch (\Exception $e) { return 'ERROR_01'; } $images=addslashes(getPost('images')); $title=addslashes(getPost('title')); $textcolor=addslashes(getPost('textcolor')); $sortorder=addslashes(getPost('sortorder')); $splitImages=explode("||",$images); $splitTitle=explode("||",$title); $splitTextcolor=explode("||",$textcolor); $splitSortOrder=explode("||",$sortorder); $total=count($splitImages); $queryStr=''; $db=new Database(); $imgPath='public/bb_contents/reactions/'; for ($i=0; $i < $total; $i++) { $reaction_id= newID(8); if(strlen($splitImages[$i]) > 2) { copy(ROOT_PATH.str_replace(SITE_URL,"",$splitImages[$i]),ROOT_PATH.$imgPath.basename($splitImages[$i])); unlink(ROOT_PATH.str_replace(SITE_URL,"",$splitImages[$i])); $insertData=array( 'reaction_id'=>$reaction_id, 'title'=>$splitTitle[$i], 'text_color'=>$splitTextcolor[$i], 'image_path'=>$imgPath.basename($splitImages[$i]), 'sort_order'=>$splitSortOrder[$i], 'user_id'=>$username ); $queryStr.=arrayToInsertStr('bb_reaction_data',$insertData); } } $db->nonquery($queryStr); BB_Reactions::clearCache(); saveActivities('bb_reaction_add','Add new reaction',$username); return 'OK'; } function bb_smile_add() { $username=isset(Configs::$_['user_data']['user_id'])?Configs::$_['user_data']['user_id']:''; // print_r(Configs::$_['user_data']);die(); try { isValidAccessAPI(); } catch (\Exception $e) { return 'ERROR_01'; } $images=addslashes(getPost('images')); $textreplace=addslashes(getPost('textreplace')); $sortorder=addslashes(getPost('sortorder')); $category_id=addslashes(getPost('category_id','')); if(!isset($category_id[2])) { return 'ERROR_05'; } $splitImages=explode("||",$images); $splitTitle=explode("||",$textreplace); $splitSortOrder=explode("||",$sortorder); $total=count($splitImages); $queryStr=''; $text_replace=''; $db=new Database(); $categoryData=$db->query("select * from bb_smiles_category_data where category_id='".$category_id."'"); $imgPath='public/bb_contents/smiles/'.$categoryData[0]['friendly_url'].'/'; if(!is_dir(ROOT_PATH.'public/bb_contents/smiles/'.$categoryData[0]['friendly_url'])) { mkdir(ROOT_PATH.'public/bb_contents/smiles/'.$categoryData[0]['friendly_url']); } for ($i=0; $i < $total; $i++) { $smile_id= newID(8); if(strlen($splitImages[$i]) > 2) { copy(ROOT_PATH.str_replace(SITE_URL,"",$splitImages[$i]),ROOT_PATH.$imgPath.basename($splitImages[$i])); unlink(ROOT_PATH.str_replace(SITE_URL,"",$splitImages[$i])); $text_replace=trim($splitTitle[$i]); if(strlen($text_replace)==0) { $text_replace=":".$smile_id.":"; } $insertData=array( 'smile_id'=>$smile_id, 'category_id'=>$category_id, 'text_replace'=>$text_replace, 'image_path'=>$imgPath.basename($splitImages[$i]), 'sort_order'=>$splitSortOrder[$i], ); $queryStr.=arrayToInsertStr('bb_smiles_data',$insertData); } } $db->nonquery($queryStr); BB_Smiles::clearCache(); saveActivities('bb_smiles_add','Add new smile',$username); return 'OK'; } function bb_edit_forum() { $username=isset(Configs::$_['user_data']['user_id'])?Configs::$_['user_data']['user_id']:''; // print_r(Configs::$_['user_data']);die(); try { isValidAccessAPI(); } catch (\Exception $e) { return 'ERROR_01'; } $forum_id=getPost('forum_id'); $updateData=array( 'title'=>addslashes(getPost('title')), 'parent_id'=>addslashes(getPost('parent_id')), 'friendly_url'=>friendlyString(getPost('title'),'_')."_".$forum_id, 'descriptions'=>addslashes(getPost('descriptions')), 'thumbnail'=>addslashes(getPost('thumbnail')), 'forum_type'=>addslashes(getPost('forum_type')), 'short_content'=>addslashes(getPost('short_content')), 'allow_create_thread'=>addslashes(getPost('allow_create_thread')), 'keywords'=>addslashes(getPost('keywords')), 'status'=>addslashes(getPost('status')), 'user_id'=>$username ); $insertData=array( 'update'=>$updateData, 'where'=>array( 'forum_id'=>"='".$forum_id."'", ) ); $db=new Database(); // $queryStr=arrayToInsertStr('post_data_'.$tableNumber,$insertData); $queryStr=arrayToUpdateStr('bb_forum_data',$insertData); $db->nonquery($queryStr); saveActivities('bb_forum_edit','Update forum '.$updateData['title'],$username); if(file_exists(BB_CACHES_PATH.'forums.php')) { unlink(BB_CACHES_PATH.'forums.php'); } if(file_exists(BB_CACHES_PATH.'forum_id_'.$forum_id.'.php')) { unlink(BB_CACHES_PATH.'forum_id_'.$forum_id.'.php'); } return 'OK'; } function bb_edit_annoucement() { $username=isset(Configs::$_['user_data']['user_id'])?Configs::$_['user_data']['user_id']:''; // print_r(Configs::$_['user_data']);die(); try { isValidAccessAPI(); } catch (\Exception $e) { return 'ERROR_01'; } $a_id=getPost('a_id'); $updateData=array( 'title'=>addslashes(getPost('title')), 'forum_id'=>addslashes(getPost('forum_id')), 'group_id'=>addslashes(getPost('usergroup_id')), 'content'=>addslashes(getPost('content')), 'user_id'=>$username ); $insertData=array( 'update'=>$updateData, 'where'=>array( 'a_id'=>"='".$a_id."'", ) ); $db=new Database(); // $queryStr=arrayToInsertStr('post_data_'.$tableNumber,$insertData); $queryStr=arrayToUpdateStr('bb_annoucement_data',$insertData); $db->nonquery($queryStr); $savePath=BB_CACHES_PATH.'annoucement.php'; if(file_exists($savePath)) { unlink($savePath); } saveActivities('bb_annoucement_edit','Update annoucement '.$updateData['title'],$username); $savePath=BB_CACHES_PATH.'annoucement.php'; if(file_exists($savePath)) { unlink($savePath); } return 'OK'; } function bb_edit_bbcode() { $username=isset(Configs::$_['user_data']['user_id'])?Configs::$_['user_data']['user_id']:''; // print_r(Configs::$_['user_data']);die(); try { isValidAccessAPI(); } catch (\Exception $e) { return 'ERROR_01'; } $bbcode_id=getPost('bbcode_id'); $updateData=array( 'title'=>addslashes(getPost('title')), 'tagname'=>addslashes(getPost('tagname')), 'replace_data'=>addslashes(getPost('replace_data')), 'example_str'=>addslashes(getPost('example_str')), 'descriptions'=>addslashes(getPost('descriptions')), 'status'=>addslashes(getPost('status')), 'user_id'=>$username ); $insertData=array( 'update'=>$updateData, 'where'=>array( 'bbcode_id'=>"='".$bbcode_id."'", ) ); $db=new Database(); // $queryStr=arrayToInsertStr('post_data_'.$tableNumber,$insertData); $queryStr=arrayToUpdateStr('bb_bbcode_data',$insertData); $db->nonquery($queryStr); saveActivities('bb_bbcode_edit','Update bbcode '.$updateData['title'],$username); return 'OK'; } function bb_edit_user() { //Ki?m tra Cookie, n?u ko ??ng nh?p thì tr? v? false $username=isset(Configs::$_['user_data']['user_id'])?Configs::$_['user_data']['user_id']:''; try { isValidAccessAPI(); } catch (\Exception $e) { echo responseData($e->getMessage(),'yes');die(); } useClass('EmailSystem'); $user_id=newID(16); $user_c=getPost('user_c'); $password=getPost('password',''); $newpassword=getPost('newpassword',''); $newrepassword=getPost('newrepassword',''); $rank_id=getPost('rank_id',''); $updateData=array( 'fullname'=>addslashes(getPost('fullname','')), 'email'=>addslashes(getPost('email','')), 'group_c'=>addslashes(getPost('group_c','')), 'level_c'=>addslashes(getPost('level_c','')), ); $insertData=array( 'update'=>$updateData, 'where'=>array( 'user_id'=>"='".$user_c."'", ) ); if(isset($newpassword[1]) && $newpassword<>$newrepassword) { echo responseData('Your new password not match Confirm password','yes');die(); } // if(!isset(Configs::$_['user_permissions']['menu07'])) // { // echo responseData('You not have permission do this action','yes');die(); // } if(isset($newpassword[1]) && $newpassword==$newrepassword) { $insertData['update']['password']=md5(addslashes(getPost('newpassword',''))); } $queryStr=arrayToUpdateStr('user_mst',$insertData); $db=new Database(); $db->nonquery($queryStr); $updateData=array( 'website'=>addslashes(getPost('website','')), 'signature'=>addslashes(getPost('signature','')), 'about'=>addslashes(getPost('about','')), 'max_message'=>addslashes(getPost('max_message','')), 'created_message'=>addslashes(getPost('created_message','')), 'total_points'=>addslashes(getPost('total_points','')), 'balance'=>addslashes(getPost('balance','')), ); $insertData=array( 'update'=>$updateData, 'where'=>array( 'user_id'=>"='".$user_c."'", ) ); $queryStr=arrayToUpdateStr('bb_user_data',$insertData); $db->nonquery($queryStr); if(isset($rank_id[5])) { $db->nonquery("delete from bb_users_rank_data where user_id='".$user_c."'"); $splitRanks=explode(',',$rank_id); $total=count($splitRanks); for ($i=0; $i < $total; $i++) { if(strlen(trim($splitRanks[$i]))==0) { continue; } $insertData=array( 'user_id'=>$user_c, 'rank_id'=>$splitRanks[$i], ); $queryStr=arrayToInsertStr('bb_users_rank_data',$insertData); $db->nonquery($queryStr); } BB_UserRanks::clear_by_userid($user_c); } load_hook('after_update_user',$updateData); saveActivities('user_update','Update user '.$user_c,$username); if(isset($newpassword[1]) && $newpassword==$newrepassword) { EmailSystem::prepare_send_change_password($user_c,$newpassword); } return 'OK'; } function bb_get_list_user() { //Ki?m tra Cookie, n?u ko ??ng nh?p thì tr? v? false $cookie_username=isset(Configs::$_['user_data']['user_id'])?Configs::$_['user_data']['user_id']:''; try { isValidAccessAPI(); } catch (\Exception $e) { echo responseData($e->getMessage(),'yes');return false; } $start_date=addslashes(getPost('start_date','')); $end_date=addslashes(getPost('end_date','')); $user_id=addslashes(getPost('user_id','')); $email=addslashes(getPost('email','')); $username=addslashes(getPost('username','')); $user_id=addslashes(getPost('author_id','')); $username=addslashes(getPost('username','')); $group_c=addslashes(getPost('group_c','')); $level_c=addslashes(getPost('level_c','')); $limit=addslashes(getPost('limit','30')); $page_no=addslashes(getPost('page_no','1')); $ip=addslashes(getPost('ip','')); $useragent=addslashes(getPost('useragent','')); if((int)$page_no<=0) { $page_no=1; } if((int)$page_no > 0) { $page_no=(int)$page_no-1; } $offset=(int)$page_no*30; if($user_id=='all') { $user_id=''; } if($group_c=='all') { $group_c=''; } if($level_c=='all') { $level_c=''; } $queryStr=''; $queryStr=" SELECT a.*,b.title as group_title, c.title as level_title,"; $queryStr.=" d.max_message,d.created_message,d.bio,d.website,d.skills,d.job,d.signature"; $queryStr.=" FROM user_mst a left join user_group_mst b ON a.group_c=b.group_c"; $queryStr.=" left join user_level_mst c ON a.level_c=c.level_id "; $queryStr.=" left join bb_user_data d ON a.user_id=d.user_id WHERE a.user_id<>'' AND CAST(a.ent_dt as date) BETWEEN '".$start_date."' AND '".$end_date."' "; if(isset($user_id[5])) { $queryStr.=" AND a.user_id='".$user_id."' "; } if(isset($useragent[5])) { $queryStr.=" AND d.last_user_user_agent LIKE '%".$useragent."%' "; } if(isset($ip[5])) { $queryStr.=" AND d.last_user_ip_address='".$ip."' "; } if(isset($username[1])) { $queryStr.=" AND a.username='".$username."' "; } if(isset($group_c[5])) { $queryStr.=" AND a.group_c='".$group_c."' "; } if(isset($level_c[5])) { $queryStr.=" AND a.level_c='".$level_c."' "; } if(isset($email[5])) { $queryStr.=" AND a.email='".$email."' "; } $queryStr.=" order by a.upd_dt desc limit ".$offset.",".$limit; $db=new Database(); $result=$db->query($queryStr); echo responseData($result,'no');die(); } function bb_get_list_resources() { //Ki?m tra Cookie, n?u ko ??ng nh?p thì tr? v? false $cookie_username=isset(Configs::$_['user_data']['user_id'])?Configs::$_['user_data']['user_id']:''; try { isValidAccessAPI(); } catch (\Exception $e) { echo responseData($e->getMessage(),'yes');return false; } $start_date=addslashes(getPost('start_date','')); $end_date=addslashes(getPost('end_date','')); $sizesmall=addslashes(getPost('sizesmall','')); $sizelarge=addslashes(getPost('sizelarge','')); $file_type=addslashes(getPost('file_type','')); $limit=addslashes(getPost('limit','100')); $page_no=addslashes(getPost('page_no','1')); if((int)$page_no > 0) { $page_no=(int)$page_no-1; } if((int)$page_no<=0) { $page_no=0; } if(strlen($sizesmall) > 0 && strlen($sizelarge) > 0) { $sizelarge=''; } $offset=(int)$page_no*30; $queryStr=''; $queryStr=" select * from bb_attach_files_data "; $queryStr.=" WHERE file_id<>'' AND CAST(ent_dt as date) BETWEEN '".$start_date."' AND '".$end_date."'"; if(isset($file_type[1])) { $queryStr.=" AND file_type ='".$file_type."' "; } if(isset($sizesmall[1])) { $queryStr.=" AND file_size <= '".$sizesmall."' "; } if(isset($sizelarge[1])) { $queryStr.=" AND file_size >= '".$sizelarge."' "; } $queryStr.=" order by ent_dt desc limit ".$offset.",".$limit; $db=new Database(); $result=$db->query($queryStr); echo responseData($result,'no');die(); } function bb_add_new_user() { //Ki?m tra Cookie, n?u ko ??ng nh?p thì tr? v? false $username=isset(Configs::$_['user_data']['user_id'])?Configs::$_['user_data']['user_id']:''; try { isValidAccessAPI(); } catch (\Exception $e) { echo responseData($e->getMessage(),'yes');return false; } // useClass('EmailSystem'); $user_id=newID(12); $insertData=array( 'user_id'=>$user_id , 'group_c'=>addslashes(getPost('group_c')), 'level_c'=>addslashes(getPost('level_c')), 'email'=>addslashes(getPost('email')), 'password'=>md5(addslashes(getPost('password'))), 'username'=>addslashes(getPost('username')), 'fullname'=>addslashes(getPost('fullname','')), 'status'=>'1', ); $queryStr=arrayToInsertStr('user_mst',$insertData); $db=new Database(); $db->nonquery($queryStr); $queryStr="insert into bb_user_data(user_id)"; $queryStr.="select user_id from user_mst where user_id NOT IN (select user_id from bb_user_data);"; $db->nonquery($queryStr); load_hook('after_insert_user',$insertData); saveActivities('user_add','Add new user '.$insertData['username'],$username); // EmailSystem::prepare_send_newuser($insertData); echo responseData('OK'); } function bb_edit_rank() { $username=isset(Configs::$_['user_data']['user_id'])?Configs::$_['user_data']['user_id']:''; // print_r(Configs::$_['user_data']);die(); try { isValidAccessAPI(); } catch (\Exception $e) { return 'ERROR_01'; } $rank_id=getPost('rank_id'); $img=addslashes(getPost('img')); $newImgPath=''; if(isset($img[5])) { $img=str_replace(SITE_URL,'',$img); $splitIMG=explode('.',$img); $newImgPath='public/bb_contents/'.newID(10).'.'.$splitIMG[count($splitIMG)-1]; if(file_exists(ROOT_PATH.$img)) { copy(ROOT_PATH.$img,ROOT_PATH.$newImgPath); unlink(ROOT_PATH.$img); } } $updateData=array( 'title'=>addslashes(getPost('title')), 'status'=>addslashes(getPost('status')), 'left_str'=>addslashes(getPost('left_str')), 'right_str'=>addslashes(getPost('right_str')), 'bg_color_c'=>addslashes(getPost('color')), 'image'=>$newImgPath, 'user_id'=>$username ); $insertData=array( 'update'=>$updateData, 'where'=>array( 'rank_id'=>"='".$rank_id."'", ) ); $db=new Database(); // $queryStr=arrayToInsertStr('post_data_'.$tableNumber,$insertData); $queryStr=arrayToUpdateStr('bb_ranks_data',$insertData); $db->nonquery($queryStr); saveActivities('bb_ranks_edit','Update rank '.$updateData['title'],$username); return 'OK'; } function bb_edit_captcha_question() { $username=isset(Configs::$_['user_data']['user_id'])?Configs::$_['user_data']['user_id']:''; // print_r(Configs::$_['user_data']);die(); try { isValidAccessAPI(); } catch (\Exception $e) { return 'ERROR_01'; } $question_id=getPost('question_id'); $updateData=array( 'title'=>addslashes(getPost('title')), 'answer'=>addslashes(getPost('answer')), 'status'=>addslashes(getPost('status')), 'user_id'=>$username ); $insertData=array( 'update'=>$updateData, 'where'=>array( 'question_id'=>"='".$question_id."'", ) ); $db=new Database(); // $queryStr=arrayToInsertStr('post_data_'.$tableNumber,$insertData); $queryStr=arrayToUpdateStr('bb_capcha_questions_data',$insertData); $db->nonquery($queryStr); saveActivities('bb_capcha_questions_edit','Update question '.$updateData['title'],$username); return 'OK'; } function bb_edit_post_prefix() { $username=isset(Configs::$_['user_data']['user_id'])?Configs::$_['user_data']['user_id']:''; // print_r(Configs::$_['user_data']);die(); try { isValidAccessAPI(); } catch (\Exception $e) { return 'ERROR_01'; } $prefix_id=getPost('prefix_id'); $updateData=array( 'title'=>addslashes(getPost('title')), 'bg_color_c'=>addslashes(getPost('color')), 'status'=>addslashes(getPost('status')), 'user_id'=>$username ); $insertData=array( 'update'=>$updateData, 'where'=>array( 'prefix_id'=>"='".$prefix_id."'", ) ); $db=new Database(); // $queryStr=arrayToInsertStr('post_data_'.$tableNumber,$insertData); $queryStr=arrayToUpdateStr('bb_post_prefix_data',$insertData); $db->nonquery($queryStr); if(file_exists(BB_CACHES_PATH.'post_prefix.php')) { unlink(BB_CACHES_PATH.'post_prefix.php'); } saveActivities('bb_post_prefix_edit','Update post prefix '.$updateData['title'],$username); return 'OK'; } function bb_edit_htmlglobal() { $username=isset(Configs::$_['user_data']['user_id'])?Configs::$_['user_data']['user_id']:''; // print_r(Configs::$_['user_data']);die(); try { isValidAccessAPI(); } catch (\Exception $e) { return 'ERROR_01'; } $html_c=getPost('code'); $updateData=array( 'title'=>addslashes(getPost('title')), 'content'=>addslashes(getPost('content')), 'user_id'=>$username ); $insertData=array( 'update'=>$updateData, 'where'=>array( 'html_c'=>"='".$html_c."'", ) ); $db=new Database(); // $queryStr=arrayToInsertStr('post_data_'.$tableNumber,$insertData); $queryStr=arrayToUpdateStr('bb_html_global_data',$insertData); $db->nonquery($queryStr); $savePath=BB_CACHES_PATH.'php_hook_'.$html_c.'.php'; if(file_exists($savePath)) { unlink($savePath); } saveActivities('bb_html_global_edit','Update html global '.$updateData['title'],$username); return 'OK'; } function bb_reaction_edit() { $username=isset(Configs::$_['user_data']['user_id'])?Configs::$_['user_data']['user_id']:''; // print_r(Configs::$_['user_data']);die(); try { isValidAccessAPI(); } catch (\Exception $e) { return 'ERROR_01'; } $reaction_id=getPost('reaction_id'); $updateData=array( 'title'=>addslashes(getPost('title')), 'sort_order'=>addslashes(getPost('sortorder')), ); $insertData=array( 'update'=>$updateData, 'where'=>array( 'reaction_id'=>"='".$reaction_id."'", ) ); $db=new Database(); // $queryStr=arrayToInsertStr('post_data_'.$tableNumber,$insertData); $queryStr=arrayToUpdateStr('bb_reaction_data',$insertData); $db->nonquery($queryStr); BB_Reactions::clearCache(); saveActivities('bb_reaction_edit','Update reaction '.$updateData['title'],$username); return 'OK'; } function bb_smiles_item_edit() { $username=isset(Configs::$_['user_data']['user_id'])?Configs::$_['user_data']['user_id']:''; // print_r(Configs::$_['user_data']);die(); try { isValidAccessAPI(); } catch (\Exception $e) { return 'ERROR_01'; } $category_id=getPost('category_id'); $smile_id=getPost('smile_id'); $updateData=array( 'text_replace'=>addslashes(getPost('textreplace')), 'sort_order'=>addslashes(getPost('sortorder')), ); $insertData=array( 'update'=>$updateData, 'where'=>array( 'smile_id'=>"='".$smile_id."'", 'category_id'=>"='".$category_id."'", ) ); $db=new Database(); // $queryStr=arrayToInsertStr('post_data_'.$tableNumber,$insertData); $queryStr=arrayToUpdateStr('bb_smiles_data',$insertData); $db->nonquery($queryStr); BB_Smiles::clearCache(); saveActivities('bb_smiles_edit','Update smile item',$username); return 'OK'; } function bb_update_smile_category() { $username=isset(Configs::$_['user_data']['user_id'])?Configs::$_['user_data']['user_id']:''; // print_r(Configs::$_['user_data']);die(); try { isValidAccessAPI(); } catch (\Exception $e) { return 'ERROR_01'; } $category_id=getPost('category_id'); $updateData=array( 'title'=>addslashes(getPost('title')), 'user_id'=>$username ); $insertData=array( 'update'=>$updateData, 'where'=>array( 'category_id'=>"='".$category_id."'", ) ); $db=new Database(); // $queryStr=arrayToInsertStr('post_data_'.$tableNumber,$insertData); $queryStr=arrayToUpdateStr('bb_smiles_category_data',$insertData); $db->nonquery($queryStr); BB_Smiles::clearCache(); saveActivities('bb_smiles_edit_category_data','Update smile category '.$updateData['title'],$username); return 'OK'; } function bb_action_apply() { //Ki?m tra Cookie, n?u ko ??ng nh?p thì tr? v? false $username=isset(Configs::$_['user_data']['user_id'])?Configs::$_['user_data']['user_id']:''; try { isValidAccessAPI(); } catch (\Exception $e) { echo responseData($e->getMessage(),'yes');return false; } $list_forum_id=addslashes(getPost('list_forum_id','')); $action=addslashes(getPost('action','')); $split_post_c=explode(',', $list_forum_id); $reformat_post_c=''; $total=count($split_post_c); for ($i=0; $i < $total; $i++) { if(strlen($split_post_c[$i]) > 3) { $reformat_post_c.="'".$split_post_c[$i]."',"; BB_Forum::updateStats($split_post_c[$i]); } } $reformat_post_c=substr($reformat_post_c, 0,strlen($reformat_post_c)-1); $queryStr=''; if($action=='delete') { // if(!isset(Configs::$_['user_permissions']['post09'])) // { // echo responseData('ERROR_01','yes'); return false; // } $queryStr="delete from bb_forum_data where forum_id IN (".$reformat_post_c.")"; } elseif($action=='deactivate') { // if(!isset(Configs::$_['user_permissions']['post06'])) // { // echo responseData('ERROR_02','yes'); return false; // } $queryStr="update bb_forum_data set status='0' where forum_id IN (".$reformat_post_c.")"; } elseif($action=='activate') { // if(!isset(Configs::$_['user_permissions']['post06'])) // { // echo responseData('ERROR_02','yes'); return false; // } $queryStr="update bb_forum_data set status='1' where forum_id IN (".$reformat_post_c.")"; } $db=new Database(); $db->nonquery($queryStr); if(file_exists(BB_CACHES_PATH.'forums.php')) { unlink(BB_CACHES_PATH.'forums.php'); } BB_System::updateStats(); return 'OK'; } function bb_annoucement_action_apply() { //Ki?m tra Cookie, n?u ko ??ng nh?p thì tr? v? false $username=isset(Configs::$_['user_data']['user_id'])?Configs::$_['user_data']['user_id']:''; try { isValidAccessAPI(); } catch (\Exception $e) { echo responseData($e->getMessage(),'yes');return false; } $list_id=addslashes(getPost('list_id','')); $action=addslashes(getPost('action','')); $split_post_c=explode(',', $list_id); $reformat_post_c=''; $total=count($split_post_c); for ($i=0; $i < $total; $i++) { $reformat_post_c.="'".$split_post_c[$i]."',"; } $reformat_post_c=substr($reformat_post_c, 0,strlen($reformat_post_c)-1); $queryStr=''; if($action=='delete') { // if(!isset(Configs::$_['user_permissions']['post09'])) // { // echo responseData('ERROR_01','yes'); return false; // } $queryStr="delete from bb_annoucement_data where a_id IN (".$reformat_post_c.")"; } $db=new Database(); $db->nonquery($queryStr); $savePath=BB_CACHES_PATH.'annoucement.php'; if(file_exists($savePath)) { unlink($savePath); } return 'OK'; } function bb_resources_action_apply() { //Ki?m tra Cookie, n?u ko ??ng nh?p thì tr? v? false $username=isset(Configs::$_['user_data']['user_id'])?Configs::$_['user_data']['user_id']:''; try { isValidAccessAPI(); } catch (\Exception $e) { echo responseData($e->getMessage(),'yes');return false; } $list_id=addslashes(getPost('list_id','')); $action=addslashes(getPost('action','')); $split_post_c=explode(',', $list_id); $reformat_post_c=''; $total=count($split_post_c); for ($i=0; $i < $total; $i++) { $reformat_post_c.="'".$split_post_c[$i]."',"; } $reformat_post_c=substr($reformat_post_c, 0,strlen($reformat_post_c)-1); $queryStr=''; if($action=='delete') { // if(!isset(Configs::$_['user_permissions']['post09'])) // { // echo responseData('ERROR_01','yes'); return false; // } $queryStr="delete from bb_attach_files_data where file_id IN (".$reformat_post_c.")"; } $db=new Database(); $db->nonquery($queryStr); return 'OK'; } function bb_rank_action_apply() { //Ki?m tra Cookie, n?u ko ??ng nh?p thì tr? v? false $username=isset(Configs::$_['user_data']['user_id'])?Configs::$_['user_data']['user_id']:''; try { isValidAccessAPI(); } catch (\Exception $e) { echo responseData($e->getMessage(),'yes');return false; } $list_id=addslashes(getPost('list_id','')); $action=addslashes(getPost('action','')); $split_post_c=explode(',', $list_id); $reformat_post_c=''; $total=count($split_post_c); for ($i=0; $i < $total; $i++) { $reformat_post_c.="'".$split_post_c[$i]."',"; } $reformat_post_c=substr($reformat_post_c, 0,strlen($reformat_post_c)-1); $queryStr=''; if($action=='delete') { // if(!isset(Configs::$_['user_permissions']['post09'])) // { // echo responseData('ERROR_01','yes'); return false; // } $queryStr="delete from bb_ranks_data where rank_id IN (".$reformat_post_c.")"; } elseif($action=='deactivate') { // if(!isset(Configs::$_['user_permissions']['post06'])) // { // echo responseData('ERROR_02','yes'); return false; // } $queryStr="update bb_ranks_data set status='0' where rank_id IN (".$reformat_post_c.")"; } elseif($action=='activate') { // if(!isset(Configs::$_['user_permissions']['post06'])) // { // echo responseData('ERROR_02','yes'); return false; // } $queryStr="update bb_ranks_data set status='1' where rank_id IN (".$reformat_post_c.")"; } $db=new Database(); $db->nonquery($queryStr); return 'OK'; } function bb_get_list_threads() { //Ki?m tra Cookie, n?u ko ??ng nh?p thì tr? v? false $cookie_username=isset(Configs::$_['user_data']['user_id'])?Configs::$_['user_data']['user_id']:''; // try { // isValidAccessAPI(); // } catch (\Exception $e) { // echo responseData($e->getMessage(),'yes');return false; // } $forum_id=addslashes(getPost('forum_id','')); $post_prefix=addslashes(getPost('post_prefix','')); $tags=addslashes(getPost('tags','')); $status=addslashes(getPost('status','')); $username=addslashes(getPost('username','')); $title=addslashes(getPost('title','')); $content=addslashes(getPost('content','')); $limit=addslashes(getPost('limit','30')); $page_no=addslashes(getPost('page_no','1')); $order_by=addslashes(getPost('order_by','upd_dt')); $order_type=addslashes(getPost('order_type','desc')); if((int)$page_no > 0) { $page_no=(int)$page_no-1; } if((int)$page_no<=0) { $page_no=0; } $offset=(int)$page_no*50; if($status=='all') { $status=''; } if($post_prefix=='all') { $post_prefix=''; } $queryStr=''; $addFields=' title,friendly_url,views,status,ent_dt,upd_dt,author '; $queryStr=" select ".$addFields; // if(isset($content[5])) // { // $queryStr.=" content,"; // } // $queryStr.=" views,category_c,user_id as author_id,ent_dt,upd_dt,b.username as author_username,b.avatar as author_avatar"; $queryStr.=" from bb_threads_data a"; $queryStr.=" where title<>'' "; if(isset($forum_id[5])) { $queryStr.=" AND forum_id='".$forum_id."' "; } if(isset($status[0])) { $queryStr.=" AND status='".$status."' "; } if(isset($prefix_id[0])) { $queryStr.=" AND prefix_id='".$prefix_id."' "; } if(isset($username[1])) { $queryStr.=" AND author='".$username."' "; } if(isset($title[0])) { $queryStr.=" AND title LIKE N'%".$title."%' "; } if(isset($content[0])) { $queryStr.=" AND content LIKE N'%".$content."%' "; } // if(isset($tags[0])) // { // $queryStr.=" AND tags LIKE N'%".$tags."%' "; // } // if(!isset(Configs::$_['user_permissions']['menu08'])) // { // $queryStr.=" AND user_id='".$cookie_username."' "; // } $queryStr.=" order by ".$order_by." ".$order_type." limit ".$offset.",".$limit; $db=new Database(); $result=$db->query($queryStr); echo responseData($result,'no');die(); } function bb_edit_group_ranks() { //Ki?m tra Cookie, n?u ko ??ng nh?p thì tr? v? false $username=isset(Configs::$_['user_data']['user_id'])?Configs::$_['user_data']['user_id']:''; try { isValidAccessAPI(); } catch (\Exception $e) { echo responseData($e->getMessage(),'yes');return false; } $group_id=getPost('group_id'); $ranks_list=getPost('ranks_list',''); $title=getPost('title',''); $queryStr=''; $queryStrPer=''; if(isset($ranks_list[1])) { $split=explode(',', $ranks_list); $total=count($split); $insertPerQuery=''; for ($i=0; $i < $total; $i++) { if(!isset($split[$i][1])) { continue; } $insertPerQuery=array( 'group_id'=>$group_id, 'rank_id'=>$split[$i] ); $queryStrPer.=arrayToInsertStr('bb_usergroup_ranks_data',$insertPerQuery); } } $db=new Database(); $db->nonquery("delete from bb_usergroup_ranks_data where group_id='".$group_id."'"); $db->nonquery($queryStr.$queryStrPer); // clear_hook(); saveActivities('bb_usergroup_ranks_edit','Update user group ranks '.$title,$username); // self::system_cache_clear();return; return 'OK'; } function bb_captcha_question_action_apply() { //Ki?m tra Cookie, n?u ko ??ng nh?p thì tr? v? false $username=isset(Configs::$_['user_data']['user_id'])?Configs::$_['user_data']['user_id']:''; try { isValidAccessAPI(); } catch (\Exception $e) { echo responseData($e->getMessage(),'yes');return false; } $list_id=addslashes(getPost('list_id','')); $action=addslashes(getPost('action','')); $split_post_c=explode(',', $list_id); $reformat_post_c=''; $total=count($split_post_c); for ($i=0; $i < $total; $i++) { $reformat_post_c.="'".$split_post_c[$i]."',"; } $reformat_post_c=substr($reformat_post_c, 0,strlen($reformat_post_c)-1); $queryStr=''; if($action=='delete') { // if(!isset(Configs::$_['user_permissions']['post09'])) // { // echo responseData('ERROR_01','yes'); return false; // } $queryStr="delete from bb_capcha_questions_data where question_id IN (".$reformat_post_c.")"; } elseif($action=='deactivate') { // if(!isset(Configs::$_['user_permissions']['post06'])) // { // echo responseData('ERROR_02','yes'); return false; // } $queryStr="update bb_capcha_questions_data set status='0' where question_id IN (".$reformat_post_c.")"; } elseif($action=='activate') { // if(!isset(Configs::$_['user_permissions']['post06'])) // { // echo responseData('ERROR_02','yes'); return false; // } $queryStr="update bb_capcha_questions_data set status='1' where question_id IN (".$reformat_post_c.")"; } $db=new Database(); $db->nonquery($queryStr); return 'OK'; } function bb_thread_action_apply() { //Ki?m tra Cookie, n?u ko ??ng nh?p thì tr? v? false $username=isset(Configs::$_['user_data']['user_id'])?Configs::$_['user_data']['user_id']:''; try { isValidAccessAPI(); } catch (\Exception $e) { echo responseData($e->getMessage(),'yes');return false; } $list_thread_id=addslashes(getPost('list_thread_id','')); $action=addslashes(getPost('action','')); $split_post_c=explode(',', $list_thread_id); $reformat_post_c=''; $total=count($split_post_c); $totalThread=0; for ($i=0; $i < $total; $i++) { $reformat_post_c.="'".$split_post_c[$i]."',"; BB_Threads::clearCacheByID($split_post_c[$i]); } $reformat_post_c=substr($reformat_post_c, 0,strlen($reformat_post_c)-1); $queryStr=''; $queryStr="select forum_id from bb_threads_data where thread_id IN (".$reformat_post_c.")"; $loadThreadData=$db->query($queryStr); $totalThread=count($loadThreadData); for ($k=0; $k < $totalThread; $k++) { BB_Forum::updateStats($loadThreadData[$k]['forum_id']); } if($action=='delete') { // if(!isset(Configs::$_['user_permissions']['post09'])) // { // echo responseData('ERROR_01','yes'); return false; // } $queryStr="delete from bb_threads_data where thread_id IN (".$reformat_post_c.")"; BB_System::updateStats(); } elseif($action=='deactivate') { // if(!isset(Configs::$_['user_permissions']['post06'])) // { // echo responseData('ERROR_02','yes'); return false; // } $queryStr="update bb_threads_data set status='0' where thread_id IN (".$reformat_post_c.")"; } elseif($action=='activate') { // if(!isset(Configs::$_['user_permissions']['post06'])) // { // echo responseData('ERROR_02','yes'); return false; // } $queryStr="update bb_threads_data set status='1' where thread_id IN (".$reformat_post_c.")"; } $db=new Database(); $db->nonquery($queryStr); return 'OK'; } function bb_post_prefix_action_apply() { //Ki?m tra Cookie, n?u ko ??ng nh?p thì tr? v? false $username=isset(Configs::$_['user_data']['user_id'])?Configs::$_['user_data']['user_id']:''; try { isValidAccessAPI(); } catch (\Exception $e) { echo responseData($e->getMessage(),'yes');return false; } $list_id=addslashes(getPost('list_id','')); $action=addslashes(getPost('action','')); $split_post_c=explode(',', $list_id); $reformat_post_c=''; $total=count($split_post_c); for ($i=0; $i < $total; $i++) { $reformat_post_c.="'".$split_post_c[$i]."',"; } $reformat_post_c=substr($reformat_post_c, 0,strlen($reformat_post_c)-1); $queryStr=''; if($action=='delete') { // if(!isset(Configs::$_['user_permissions']['post09'])) // { // echo responseData('ERROR_01','yes'); return false; // } $queryStr="delete from bb_post_prefix_data where prefix_id IN (".$reformat_post_c.")"; } elseif($action=='deactivate') { // if(!isset(Configs::$_['user_permissions']['post06'])) // { // echo responseData('ERROR_02','yes'); return false; // } $queryStr="update bb_post_prefix_data set status='0' where prefix_id IN (".$reformat_post_c.")"; } elseif($action=='activate') { // if(!isset(Configs::$_['user_permissions']['post06'])) // { // echo responseData('ERROR_02','yes'); return false; // } $queryStr="update bb_post_prefix_data set status='1' where prefix_id IN (".$reformat_post_c.")"; } $db=new Database(); $db->nonquery($queryStr); if(file_exists(BB_CACHES_PATH.'post_prefix.php')) { unlink(BB_CACHES_PATH.'post_prefix.php'); } return 'OK'; } function bb_html_global_action_apply() { //Ki?m tra Cookie, n?u ko ??ng nh?p thì tr? v? false $username=isset(Configs::$_['user_data']['user_id'])?Configs::$_['user_data']['user_id']:''; try { isValidAccessAPI(); } catch (\Exception $e) { echo responseData($e->getMessage(),'yes');return false; } $list_html_c=addslashes(getPost('list_html_c','')); $action=addslashes(getPost('action','')); $split_post_c=explode(',', $list_html_c); $reformat_post_c=''; $total=count($split_post_c); for ($i=0; $i < $total; $i++) { $reformat_post_c.="'".$split_post_c[$i]."',"; } $reformat_post_c=substr($reformat_post_c, 0,strlen($reformat_post_c)-1); $queryStr=''; if($action=='delete') { // if(!isset(Configs::$_['user_permissions']['post09'])) // { // echo responseData('ERROR_01','yes'); return false; // } $queryStr="delete from bb_html_global_data where html_c IN (".$reformat_post_c.")"; } $db=new Database(); $db->nonquery($queryStr); return 'OK'; } function bb_reaction_action_apply() { //Ki?m tra Cookie, n?u ko ??ng nh?p thì tr? v? false $username=isset(Configs::$_['user_data']['user_id'])?Configs::$_['user_data']['user_id']:''; try { isValidAccessAPI(); } catch (\Exception $e) { echo responseData($e->getMessage(),'yes');return false; } $list_id=addslashes(getPost('list_id','')); $action=addslashes(getPost('action','')); $split_post_c=explode(',', $list_id); $reformat_post_c=''; $total=count($split_post_c); for ($i=0; $i < $total; $i++) { $reformat_post_c.="'".$split_post_c[$i]."',"; } $reformat_post_c=substr($reformat_post_c, 0,strlen($reformat_post_c)-1); $queryStr=''; if($action=='delete') { // if(!isset(Configs::$_['user_permissions']['post09'])) // { // echo responseData('ERROR_01','yes'); return false; // } $queryStr="delete from bb_reaction_data where reaction_id IN (".$reformat_post_c.")"; } $db=new Database(); $loadData=$db->query("select * from bb_reaction_data where reaction_id IN (".$reformat_post_c.")"); $total=count($loadData); for ($i=0; $i < $total; $i++) { if(file_exists(ROOT_PATH.$loadData[$i]['image_path'])) { unlink(ROOT_PATH.$loadData[$i]['image_path']); } } $db->nonquery($queryStr); BB_Reactions::clearCache(); return 'OK'; } function bb_smiles_item_action_apply() { //Ki?m tra Cookie, n?u ko ??ng nh?p thì tr? v? false $username=isset(Configs::$_['user_data']['user_id'])?Configs::$_['user_data']['user_id']:''; try { isValidAccessAPI(); } catch (\Exception $e) { echo responseData($e->getMessage(),'yes');return false; } $list_id=addslashes(getPost('list_id','')); $action=addslashes(getPost('action','')); $split_post_c=explode(',', $list_id); $reformat_post_c=''; $total=count($split_post_c); for ($i=0; $i < $total; $i++) { $reformat_post_c.="'".$split_post_c[$i]."',"; } $reformat_post_c=substr($reformat_post_c, 0,strlen($reformat_post_c)-1); $queryStr=''; if($action=='delete') { // if(!isset(Configs::$_['user_permissions']['post09'])) // { // echo responseData('ERROR_01','yes'); return false; // } $queryStr="delete from bb_smiles_data where smile_id IN (".$reformat_post_c.")"; } $db=new Database(); $loadData=$db->query("select * from bb_smiles_data where smile_id IN (".$reformat_post_c.")"); $total=count($loadData); for ($i=0; $i < $total; $i++) { if(file_exists(ROOT_PATH.$loadData[$i]['image_path'])) { unlink(ROOT_PATH.$loadData[$i]['image_path']); } } $db->nonquery($queryStr); BB_Smiles::clearCache(); return 'OK'; } function bb_banned_email_action_apply() { //Ki?m tra Cookie, n?u ko ??ng nh?p thì tr? v? false $username=isset(Configs::$_['user_data']['user_id'])?Configs::$_['user_data']['user_id']:''; try { isValidAccessAPI(); } catch (\Exception $e) { echo responseData($e->getMessage(),'yes');return false; } $list_email=addslashes(getPost('list_email','')); $action=addslashes(getPost('action','')); $split_post_c=explode(',', $list_email); $reformat_post_c=''; $total=count($split_post_c); for ($i=0; $i < $total; $i++) { $reformat_post_c.="'".$split_post_c[$i]."',"; if(is_dir(BB_FIREWALL_PATH.'email/'.md5(strtoupper($split_post_c[$i])))) { unlink(BB_FIREWALL_PATH.'email/'.md5(strtoupper($split_post_c[$i]))); } } $reformat_post_c=substr($reformat_post_c, 0,strlen($reformat_post_c)-1); $queryStr=''; if($action=='delete') { // if(!isset(Configs::$_['user_permissions']['post09'])) // { // echo responseData('ERROR_01','yes'); return false; // } $queryStr="delete from bb_banned_user_data where username IN (".$reformat_post_c.") AND data_method='email'"; } $db=new Database(); $db->nonquery($queryStr); return 'OK'; } function bb_banned_username_action_apply() { //Ki?m tra Cookie, n?u ko ??ng nh?p thì tr? v? false $username=isset(Configs::$_['user_data']['user_id'])?Configs::$_['user_data']['user_id']:''; try { isValidAccessAPI(); } catch (\Exception $e) { echo responseData($e->getMessage(),'yes');return false; } $list_email=addslashes(getPost('list_email','')); $action=addslashes(getPost('action','')); $split_post_c=explode(',', $list_email); $reformat_post_c=''; $total=count($split_post_c); for ($i=0; $i < $total; $i++) { $reformat_post_c.="'".$split_post_c[$i]."',"; if(strlen($split_post_c[$i]) > 2) { if(is_dir(BB_FIREWALL_PATH.'username/'.strtoupper($split_post_c[$i]))) { unlink(BB_FIREWALL_PATH.'username/'.strtoupper($split_post_c[$i])); } } } $reformat_post_c=substr($reformat_post_c, 0,strlen($reformat_post_c)-1); $queryStr=''; if($action=='delete') { // if(!isset(Configs::$_['user_permissions']['post09'])) // { // echo responseData('ERROR_01','yes'); return false; // } $queryStr.="delete from bb_banned_user_data where username IN (".$reformat_post_c.") AND data_method='username';"; // $queryStr.="update bb_banned_user_data set group_c='".Configs::$_['default_member_groupid']."' where username IN (".$reformat_post_c.") AND data_method='username';"; } $db=new Database(); $db->nonquery($queryStr); return 'OK'; } function bb_smile_category_action_apply() { //Ki?m tra Cookie, n?u ko ??ng nh?p thì tr? v? false $username=isset(Configs::$_['user_data']['user_id'])?Configs::$_['user_data']['user_id']:''; try { isValidAccessAPI(); } catch (\Exception $e) { echo responseData($e->getMessage(),'yes');return false; } $list_category_id=addslashes(getPost('list_category_id','')); $action=addslashes(getPost('action','')); $split_post_c=explode(',', $list_category_id); $reformat_post_c=''; $total=count($split_post_c); for ($i=0; $i < $total; $i++) { $reformat_post_c.="'".$split_post_c[$i]."',"; } $reformat_post_c=substr($reformat_post_c, 0,strlen($reformat_post_c)-1); $queryStr=''; if($action=='delete') { // if(!isset(Configs::$_['user_permissions']['post09'])) // { // echo responseData('ERROR_01','yes'); return false; // } $queryStr="delete from bb_smiles_category_data where category_id IN (".$reformat_post_c.");"; $queryStr.="delete from bb_smiles_data where category_id IN (".$reformat_post_c.");"; } if($action=='activate') { // if(!isset(Configs::$_['user_permissions']['post09'])) // { // echo responseData('ERROR_01','yes'); return false; // } $queryStr="update bb_smiles_category_data set status='1' where category_id IN (".$reformat_post_c.")"; } if($action=='deactivate') { // if(!isset(Configs::$_['user_permissions']['post09'])) // { // echo responseData('ERROR_01','yes'); return false; // } $queryStr="update bb_smiles_category_data set status='0' where category_id IN (".$reformat_post_c.")"; } $db=new Database(); $db->nonquery($queryStr); BB_Smiles::clearCache(); return 'OK'; } function bb_banned_ip_action_apply() { //Ki?m tra Cookie, n?u ko ??ng nh?p thì tr? v? false $username=isset(Configs::$_['user_data']['user_id'])?Configs::$_['user_data']['user_id']:''; try { isValidAccessAPI(); } catch (\Exception $e) { echo responseData($e->getMessage(),'yes');return false; } $list_ip=addslashes(getPost('list_ip','')); $action=addslashes(getPost('action','')); $split_post_c=explode(',', $list_ip); $reformat_post_c=''; $total=count($split_post_c); for ($i=0; $i < $total; $i++) { $reformat_post_c.="'".$split_post_c[$i]."',"; if(is_dir(BB_FIREWALL_PATH.'ip/'.md5($split_post_c[$i]))) { unlink(BB_FIREWALL_PATH.'ip/'.md5($split_post_c[$i])); } } $reformat_post_c=substr($reformat_post_c, 0,strlen($reformat_post_c)-1); $queryStr=''; if($action=='delete') { // if(!isset(Configs::$_['user_permissions']['post09'])) // { // echo responseData('ERROR_01','yes'); return false; // } $queryStr="delete from bb_banned_ip_data where ip_address IN (".$reformat_post_c.")"; } $db=new Database(); $db->nonquery($queryStr); return 'OK'; } function bb_banned_os_action_apply() { //Ki?m tra Cookie, n?u ko ??ng nh?p thì tr? v? false $username=isset(Configs::$_['user_data']['user_id'])?Configs::$_['user_data']['user_id']:''; try { isValidAccessAPI(); } catch (\Exception $e) { echo responseData($e->getMessage(),'yes');return false; } $list_os=addslashes(getPost('list_os','')); $action=addslashes(getPost('action','')); $split_post_c=explode(',', $list_os); $reformat_post_c=''; $total=count($split_post_c); for ($i=0; $i < $total; $i++) { $reformat_post_c.="'".$split_post_c[$i]."',"; if(is_dir(BB_FIREWALL_PATH.'os/'.strtoupper($split_post_c[$i]))) { unlink(BB_FIREWALL_PATH.'os/'.strtoupper($split_post_c[$i])); } } $reformat_post_c=substr($reformat_post_c, 0,strlen($reformat_post_c)-1); $queryStr=''; if($action=='delete') { // if(!isset(Configs::$_['user_permissions']['post09'])) // { // echo responseData('ERROR_01','yes'); return false; // } $queryStr="delete from bb_banned_os_data where os_name IN (".$reformat_post_c.")"; } $db=new Database(); $db->nonquery($queryStr); return 'OK'; } function bb_banned_browser_action_apply() { //Ki?m tra Cookie, n?u ko ??ng nh?p thì tr? v? false $username=isset(Configs::$_['user_data']['user_id'])?Configs::$_['user_data']['user_id']:''; try { isValidAccessAPI(); } catch (\Exception $e) { echo responseData($e->getMessage(),'yes');return false; } $list_browser=addslashes(getPost('list_browser','')); $action=addslashes(getPost('action','')); $split_post_c=explode(',', $list_browser); $reformat_post_c=''; $total=count($split_post_c); for ($i=0; $i < $total; $i++) { $reformat_post_c.="'".$split_post_c[$i]."',"; if(is_dir(BB_FIREWALL_PATH.'browser/'.strtoupper($split_pbrowsert_c[$i]))) { unlink(BB_FIREWALL_PATH.'browser/'.strtoupper($split_post_c[$i])); } } $reformat_post_c=substr($reformat_post_c, 0,strlen($reformat_post_c)-1); $queryStr=''; if($action=='delete') { // if(!isset(Configs::$_['user_permissions']['post09'])) // { // echo responseData('ERROR_01','yes'); return false; // } $queryStr="delete from bb_banned_browser_data where browser_name IN (".$reformat_post_c.")"; } $db=new Database(); $db->nonquery($queryStr); return 'OK'; } function bb_forum_user_permission_apply() { //Ki?m tra Cookie, n?u ko ??ng nh?p thì tr? v? false $username=isset(Configs::$_['user_data']['user_id'])?Configs::$_['user_data']['user_id']:''; try { isValidAccessAPI(); } catch (\Exception $e) { echo responseData($e->getMessage(),'yes');return false; } $list_user_id=addslashes(getPost('list_user_id','')); $forum_id=addslashes(getPost('forum_id','')); $action=addslashes(getPost('action','')); $split_post_c=explode(',', $list_user_id); $reformat_post_c=''; $total=count($split_post_c); for ($i=0; $i < $total; $i++) { $reformat_post_c.="'".$split_post_c[$i]."',"; } $reformat_post_c=substr($reformat_post_c, 0,strlen($reformat_post_c)-1); $queryStr=''; if($action=='delete') { // if(!isset(Configs::$_['user_permissions']['post09'])) // { // echo responseData('ERROR_01','yes'); return false; // } $queryStr="delete from bb_forum_user_permission_data where forum_id='".$forum_id."' AND user_id IN (".$reformat_post_c.")"; } $db=new Database(); $db->nonquery($queryStr); return 'OK'; }