This commit is contained in:
Philip Häusler 2011-06-02 01:18:08 +02:00
parent 10683c4759
commit 06497b3a53
15 changed files with 17 additions and 614 deletions

View File

@ -1,18 +0,0 @@
</article>
</div>
</div>
<footer>
<p>
&copy; copyleft | <a href="mailto:erzengel@lists.ccc.de">Contact</a> | <a href="<?php echo $ENGEL_ROOT; ?>credits.php">Credits</a><br />
This is hell. Temporarily.
</p>
</footer>
<?php
include ("funktion_counter.php");
mysql_close($con);
?>
</body>
</html>

View File

@ -1,34 +0,0 @@
<?php
// Funktionen gibt es nicht auf allen Rechnern
echo "<h4>Engel online</h4>";
$SQL = "SELECT UID, Nick, lastLogIn " .
"FROM User " .
"WHERE (`lastLogIn` > '" . (time() - 60 * 60) . "' AND NOT (UID=" . $_SESSION['UID'] . ")) " .
"ORDER BY lastLogIn DESC;";
$Erg = mysql_query($SQL, $con);
echo "<ul class=\"content\">";
for ($i = 0; $i < mysql_num_rows($Erg); $i++) {
echo "<li>";
if ($_SESSION['UID'] > 0)
echo DisplayAvatar(mysql_result($Erg, $i, "UID"));
// Show Admin Page
echo funktion_isLinkAllowed_addLink_OrLinkText("admin/userChangeNormal.php?enterUID=" . mysql_result($Erg, $i, "UID") . "&Type=Normal", mysql_result($Erg, $i, "Nick"));
$timestamp = mktime($hour, $minute, $second, $month, $day, $year);
$Tlog = time() - mysql_result($Erg, $i, "lastLogIn");
echo " " . date("i:s", $Tlog);
echo "</li>\n";
}
echo "</ul>";
?>

View File

@ -1,10 +0,0 @@
<?php
function noAnswer() {
global $con;
$SQL = "SELECT UID FROM Questions WHERE `AID`='0'";
$Res = mysql_query($SQL, $con);
return mysql_num_rows($Res);
}
?>

View File

@ -1,9 +0,0 @@
<?php
if (strpos($_SERVER["REQUEST_URI"], "?") > 0)
$URL = $_SERVER["REQUEST_URI"] . "&SetLanguage=";
else
$URL = $_SERVER["REQUEST_URI"] . "?SetLanguage=";
echo '<p class="content"><a class="sprache" href="' . $URL . 'DE"><img src="' . $ENGEL_ROOT . 'pic/flag/de.png" alt="DE" title="Deutsch"></a>';
echo '<a class="sprache" href="' . $URL . 'EN"><img src="' . $ENGEL_ROOT . 'pic/flag/en.png" alt="EN" title="English"></a></p>';
?>

View File

@ -1,40 +0,0 @@
<?php
ini_set("session.gc_maxlifetime", "65535");
include "config/config.php";
include "error_handler.php";
include "config/config_db.php";
include "funktion_lang.php";
include "funktion_faq.php"; // fuer noAnswer() im menu
include "funktion_menu.php";
include "funktion_user.php";
if (isset ($SystemDisableMessage) && (strlen($SystemDisableMessage) > 0)) {
echo "<html><head><title>" . $SystemDisableMessage . "</title></head>";
echo "<body>" . $SystemDisableMessage . "</body></html>\n";
die();
}
if (!isset ($_SESSION))
session_start();
include "secure.php";
if (!isset ($_SESSION['IP']))
$_SESSION['IP'] = $_SERVER['REMOTE_ADDR'];
if (isset ($_SESSION['UID']) && ($_SESSION['IP'] <> $_SERVER['REMOTE_ADDR'])) {
session_destroy();
header("Location: " . $url . $ENGEL_ROOT);
}
include "UserCVS.php";
// update LASTlogin
if (isset ($_SESSION['UID'])) {
$SQLlastLogIn = "UPDATE `User` SET " .
"`lastLogIn` = '" . time() . "'" .
" WHERE `UID` = '" . $_SESSION['UID'] . "' LIMIT 1;";
mysql_query($SQLlastLogIn, $con);
}
?>

View File

@ -1,17 +0,0 @@
<?php
include "config/config.php";
?>
<form action="<?php echo $url . $ENGEL_ROOT; ?>nonpublic/index.php" method="post">
<table>
<tr>
<td align="right"><?php echo Get_Text("index_lang_nick"); ?></td>
<td><input type="text" name="user" size="23" /></td>
</tr>
<tr>
<td align="right"><?php echo Get_Text("index_lang_pass"); ?></td>
<td><input type="password" name="password" size="23"></td>
</tr>
</table>
<br /><input type="submit" value="<?php echo Get_Text("index_lang_send"); ?>">
</form>

View File

@ -18,4 +18,13 @@ function guest_faq() {
} }
return $html; return $html;
} }
function noAnswer() {
global $con;
$SQL = "SELECT UID FROM Questions WHERE `AID`='0'";
$Res = mysql_query($SQL, $con);
return mysql_num_rows($Res);
}
?> ?>

View File

@ -1,25 +0,0 @@
<?php
if($debug)
echo "secure.php START<br />\n";
foreach ($_GET as $k => $v) {
$v = htmlentities($v, ENT_QUOTES);
preg_replace('/([\'"`\'])/', '', $v);
$_GET[$k] = $v;
if($debug)
echo "GET $k=\"$v\"<br />";
}
foreach ($_POST as $k => $v) {
$v = htmlentities($v, ENT_QUOTES);
preg_replace('/([\'"`\'])/', '', $v);
$_POST[$k] = $v;
if($debug)
echo "POST $k=\"$v\"<br />";
}
if($debug)
echo "secure.php END<br />\n";
?>

View File

@ -5,6 +5,14 @@
function load_auth() { function load_auth() {
global $user; global $user;
if (!isset ($_SESSION['IP']))
$_SESSION['IP'] = $_SERVER['REMOTE_ADDR'];
if ($_SESSION['IP'] != $_SERVER['REMOTE_ADDR']) {
session_destroy();
header("Location: " . link_to_page($start));
}
$user = null; $user = null;
if (isset ($_SESSION['uid'])) { if (isset ($_SESSION['uid'])) {
$user = sql_select("SELECT * FROM `User` WHERE `UID`=" . sql_escape($_SESSION['uid']) . " LIMIT 1"); $user = sql_select("SELECT * FROM `User` WHERE `UID`=" . sql_escape($_SESSION['uid']) . " LIMIT 1");

View File

@ -1,53 +0,0 @@
H1 {
font-family : Helvetica,Arial,Verdana;
font-size : 25pt;
}
H4 {
font-family : Arial,Verdana;
}
A {
font-family : Arial;
font-size : small;
text-decoration : none;
color : #0000a0;
}
A:Visited {
font-family : Arial;
font-size : small;
color : #0000a0;
text-decoration : none;
}
A:Active {
text-decoration : none;
font-family : Arial;
font-size : small;
}
A:Hover {
font-family : Arial;
font-size : small;
color : #0000a0;
text-decoration : underline;
font-weight : bold;
}
B {
font-weight : bold;
font-family : Arial;
font-size : small;
}
TD {
font-size : small;
font-family : Arial;
padding-left : 1cm;
}
BODY {
font-size : small;
font-family : Arial;
background-color : #f3b115;
color : navy;
}
a.title {
color:#ffa000;
}

View File

@ -1,69 +0,0 @@
H1 {
font-family : Helvetica,Arial,Verdana;
font-size : 25pt;
}
H4 {
font-family : Arial,Verdana;
}
A {
font-family : Arial;
font-size : small;
text-decoration : none;
color : #778899;
}
A:Visited {
font-family : Arial;
font-size : small;
color : #778899;
text-decoration : none;
}
A:Active {
text-decoration : none;
font-family : Arial;
font-size : small;
}
A:Hover {
font-family : Arial;
font-size : small;
color : #778899;
text-decoration : underline;
font-weight : bold;
}
B {
font-weight : bold;
font-family : Arial;
font-size : small;
}
TD {
font-size : small;
font-family : Arial;
}
BODY {
font-size : small;
font-family : Arial;
background-color : #f3b115;
color : navy;
}
a.title {
color:#ffa000;
}
p.question {
font-weight: bold;
}
p.answer {
margin-left: 30px;
margin-right: 30px;
}

View File

@ -1,79 +0,0 @@
body {
font-family: Arial;
background-color: #3e9fef;
color: #000000;
font-size: small
}
a {
text-decoration: none;
color: #304930
}
td {
font-size: small
}
a:active, a:hover {
font-weight: bold
}
li {
font-size: small
}
.content {
background-color: #bdd9ef;
color: #000000
}
.contenttopic {
font-weight: bold;
font-size: small;
color: #fe961e;
background-color: #157cc1
}
.border {
background-color: #050509
}
.menu {
background-color: #bdd9ef;
color: #000022;
font-size: small
}
h4.menu {
font-weight: bold;
font-size: small;
color: #3e9fef
}
.linkbox {
background-color: #ffffff
}
.linkboxtitle {
font-weight: bold;
background-color: #000000;
color: #bdd9ef
}
.question {
font-weight: bold;
font-size: 9pt
}
.engeltreffen {
font-weight: bold;
font-size: 9pt;
color: #ff0000;
}
.answer {
font-size: 9pt;
}
.comment {
font-size : 6pt;
}

View File

@ -1,31 +0,0 @@
<?php
require_once ('bootstrap.php');
$title = "FAQ";
$header = "FAQ";
include "includes/header.php";
$SQL = "SELECT * FROM `FAQ`";
$Erg = mysql_query($SQL, $con);
// anzahl Zeilen
$Zeilen = mysql_num_rows($Erg);
for ($n = 0; $n < $Zeilen; $n++) {
if (mysql_result($Erg, $n, "Antwort") != "") {
list ($frage_de, $frage_en) = split('<br />', mysql_result($Erg, $n, "Frage"));
list ($antwort_de, $antwort_en) = split('<br />', mysql_result($Erg, $n, "Antwort"));
echo "<dl>";
if ($_SESSION['Sprache'] == "DE") {
echo "<dt>" . $frage_de . "</dt>";
echo "<dd>" . $antwort_de . "</dd>";
} else {
echo "<dt>" . $frage_en . "</dt>";
echo "<dd>" . $antwort_en . "</dd>";
}
echo "</dl>";
}
}
include "includes/footer.php";
?>

View File

@ -1,15 +0,0 @@
<?php
// Die Session zerstoeren usw
require_once ('bootstrap.php');
include "config/config.php";
session_start();
session_destroy();
// und eine neue erstellen, damit kein Erzengelmenue angezeigt wird (falls sich ein Erzengel abmeldet...)
session_start();
header("HTTP/1.1 302 Moved Temporarily");
header("Location: " . $url . $ENGEL_ROOT);
?>

View File

@ -1,214 +0,0 @@
<?php
require_once ('bootstrap.php');
$title = "Anmeldung zum Chaos-Engel";
$header = "";
$success = "none";
include "config/config.php";
include "includes/header.php";
include "config/config_db.php";
include "includes/crypt.php";
if (isset ($_POST["send"])) {
$eNick = trim($_POST["Nick"]);
if ($_POST["Alter"] == "")
$_POST["Alter"] = 0;
// user vorhanden?
$SQLans = "SELECT UID FROM `User` WHERE `Nick`='" . $_POST["Nick"] . "'";
$Ergans = mysql_query($SQLans, $con);
if (strlen($_POST["Nick"]) < 2)
$error = Get_Text("makeuser_error_nick1") . $_POST["Nick"] . Get_Text("makeuser_error_nick2");
elseif (mysql_num_rows($Ergans) > 0) $error = Get_Text("makeuser_error_nick1") . $_POST["Nick"] . Get_Text("makeuser_error_nick3");
elseif (strlen($_POST["email"]) <= 6 && strstr($_POST["email"], "@") == FALSE && strstr($_POST["email"], ".") == false) $error = Get_Text("makeuser_error_mail");
elseif (!is_numeric($_POST["Alter"])) $error = Get_Text("makeuser_error_Alter");
elseif ($_POST["Passwort"] != $_POST["Passwort2"]) $error = Get_Text("makeuser_error_password1");
elseif (strlen($_POST["Passwort"]) < 6) $error = Get_Text("makeuser_error_password2");
else {
$_POST["Passwort"] = PassCrypt($_POST["Passwort"]);
unset ($_POST["Passwort2"]);
$SQL = "INSERT INTO `User` (" .
"`Nick` , " . "`Name` , " .
"`Vorname`, " . "`Alter` , " .
"`Telefon`, " . "`DECT`, " .
"`Handy`, " . "`email`, " .
"`ICQ`, " . "`jabber`, " .
"`Size`, " . "`Passwort`, " .
"`Art` , " . "`kommentar`, " .
"`Hometown`," . "`CreateDate` ) " .
"VALUES ( " .
"'" . $_POST["Nick"] . "', " . "'" . $_POST["Name"] . "', " .
"'" . $_POST["Vorname"] . "', " . "'" . $_POST["Alter"] . "', " .
"'" . $_POST["Telefon"] . "', " . "'" . $_POST["DECT"] . "', " .
"'" . $_POST["Handy"] . "', " . "'" . $_POST["email"] . "', " .
"'" . $_POST["ICQ"] . "', " . "'" . $_POST["jabber"] . "', " .
"'" . $_POST["Size"] . "', " . "'" . $_POST["Passwort"] . "', " .
"'" . $_POST["Art"] . "', " . "'" . $_POST["kommentar"] . "', " .
"'" . $_POST["Hometown"] . "'," . "NOW());";
$Erg = mysql_query($SQL, $con);
if ($Erg != 1) {
echo Get_Text("makeuser_error_write1") . "<br />\n";
$error = mysql_error($con);
} else {
echo "<p class=\"important\">" . Get_Text("makeuser_writeOK") . "\n";
$SQL2 = "SELECT `UID` FROM `User` WHERE `Nick`='" . $_POST["Nick"] . "';";
$Erg2 = mysql_query($SQL2, $con);
$Data = mysql_fetch_array($Erg2);
$SQL3 = "INSERT INTO `UserCVS` (`UID`) VALUES ('" . $Data["UID"] . "');";
$Erg3 = mysql_query($SQL3, $con);
if ($Erg3 != 1) {
echo "<h1>" . Get_Text("makeuser_error_write2") . "<br />\n";
$error = mysql_error($con);
} else {
echo Get_Text("makeuser_writeOK2") . "<br />\n";
echo "<h1>" . Get_Text("makeuser_writeOK3") . "</h1>\n";
}
echo Get_Text("makeuser_writeOK4") . "</p><p></p>\n<br /><br />\n";
$success = "any";
if (isset ($SubscribeMailinglist)) {
if ($_POST["subscribe-mailinglist"] == "") {
$headers = "From: " . $_POST["email"] . "\r\n" .
"X-Mailer: PHP/" . phpversion();
mail($SubscribeMailinglist, "subject", "message", $headers);
}
}
}
}
if (isset ($error))
echo "<p class=\"warning\">\n" . $error . "\n</p>\n\n";
} else {
// init vars
$_POST["Nick"] = "";
$_POST["Name"] = "";
$_POST["Vorname"] = "";
$_POST["Alter"] = "";
$_POST["Telefon"] = "";
$_POST["DECT"] = "";
$_POST["Handy"] = "";
$_POST["email"] = "";
$_POST["subscribe-mailinglist"] = "";
$_POST["ICQ"] = "";
$_POST["jabber"] = "";
$_POST["Size"] = "L";
$_POST["Art"] = "";
$_POST["kommentar"] = "";
$_POST["Hometown"] = "";
}
if ($success == "none") {
echo "<h1>" . Get_Text("makeuser_text0") . "</h1>\n";
echo "<h2>" . Get_Text("makeuser_text1") . "</h2>\n";
echo "<form action=\"\" method=\"post\">\n";
echo "<table>\n";
echo "<tr><td>" . Get_Text("makeuser_Nickname") . "*</td><td><input type=\"text\" size=\"40\" name=\"Nick\" value=\"" . $_POST["Nick"] . "\" /></td></tr>\n";
echo "<tr><td>" . Get_Text("makeuser_Nachname") . "</td><td><input type=\"text\" size=\"40\" name=\"Name\" value=\"" . $_POST["Name"] . "\" /></td></tr>\n";
echo "<tr><td>" . Get_Text("makeuser_Vorname") . "</td><td><input type=\"text\" size=\"40\" name=\"Vorname\" value=\"" . $_POST["Vorname"] . "\" /></td></tr>\n";
echo "<tr><td>" . Get_Text("makeuser_Alter") . "</td><td><input type=\"text\" size=\"40\" name=\"Alter\" value=\"" . $_POST["Alter"] . "\"></td></tr>\n";
echo "<tr><td>" . Get_Text("makeuser_Telefon") . "</td><td><input type=\"text\" size=\"40\" name=\"Telefon\" value=\"" . $_POST["Telefon"] . "\"></td></tr>\n";
echo "<tr><td>" . Get_Text("makeuser_DECT") . "</td><td><input type=\"text\" size=\"40\" name=\"DECT\" value=\"" . $_POST["DECT"] . "\"></td><td>\n";
echo "<!--a href=\"https://21c3.ccc.de/wiki/index.php/POC\"><img src=\"./pic/external.png\" alt=\"external: \">DECT</a--></td></tr>\n";
echo "<tr><td>" . Get_Text("makeuser_Handy") . "</td><td><input type=\"text\" size=\"40\" name=\"Handy\" value=\"" . $_POST["Handy"] . "\"></td></tr>\n";
echo "<tr><td>" . Get_Text("makeuser_E-Mail") . "*</td><td><input type=\"text\" size=\"40\" name=\"email\" value=\"" . $_POST["email"] . "\"></td></tr>\n";
if (isset ($SubscribeMailinglist))
echo "<tr><td>" . Get_Text("makeuser_subscribe-mailinglist") . "</td><td><input type=\"checkbox\" name=\"subscribe-mailinglist\" value=\"" . $_POST["subscribe-mailinglist"] . "\">($SubscribeMailinglist)</td></tr>\n";
echo "<tr><td>ICQ</td><td><input type=\"text\" size=\"40\" name=\"ICQ\" value=\"" . $_POST["ICQ"] . "\"></td></tr>\n";
echo "<tr><td>jabber</td><td><input type=\"text\" size=\"40\" name=\"jabber\" value=\"" . $_POST["jabber"] . "\"></td></tr>\n";
echo "<tr><td>" . Get_Text("makeuser_T-Shirt") . " Gr&ouml;sse*</td><td align=\"left\">\n";
echo "<select name=\"Size\">\n";
echo "<option value=\"S\"";
if ($_POST["Size"] == "S")
echo " selected";
echo ">S</option>\n";
echo "<option value=\"M\"";
if ($_POST["Size"] == "M")
echo " selected";
echo ">M</option>\n";
echo "<option value=\"L\"";
if ($_POST["Size"] == "L")
echo " selected";
echo ">L</option>\n";
echo "<option value=\"XL\"";
if ($_POST["Size"] == "XL")
echo " selected";
echo ">XL</option>\n";
echo "<option value=\"2XL\"";
if ($_POST["Size"] == "2XL")
echo " selected";
echo ">2XL</option>\n";
echo "<option value=\"3XL\"";
if ($_POST["Size"] == "3XL")
echo " selected";
echo ">3XL</option>\n";
echo "<option value=\"4XL\"";
if ($_POST["Size"] == "4XL")
echo " selected";
echo ">4XL</option>\n";
echo "<option value=\"5XL\"";
if ($_POST["Size"] == "5XL")
echo " selected";
echo ">5XL</option>\n";
echo "<option value=\"S-G\"";
if ($_POST["Size"] == "S-G")
echo " selected";
echo ">S Girl</option>\n";
echo "<option value=\"M-G\"";
if ($_POST["Size"] == "M-G")
echo " selected";
echo ">M Girl</option>\n";
echo "<option value=\"L-G\"";
if ($_POST["Size"] == "L-G")
echo " selected";
echo ">L Girl</option>\n";
echo "<option value=\"XL-G\"";
if ($_POST["Size"] == "XL-G")
echo " selected";
echo ">XL Girl</option>\n";
echo "</select>\n";
echo "</td></tr>\n";
echo "<tr><td>" . Get_Text("makeuser_Engelart") . "</td><td align=\"left\">\n";
echo "<select name=\"Art\">\n";
$Sql = "SELECT * FROM `EngelType` ORDER BY `NAME`";
$Erg = mysql_query($Sql, $con);
for ($t = 0; $t < mysql_num_rows($Erg); $t++) {
$Name = mysql_result($Erg, $t, "Name") . Get_Text("inc_schicht_engel");
echo "<option value=\"" . $Name . "\"";
if ($_POST["Art"] == $Name)
echo " selected";
echo ">$Name</option>\n";
}
echo "</select>\n";
echo "</td>\n";
echo "</tr>\n";
echo "<tr>\n";
echo "<td>" . Get_Text("makeuser_text2") . "</td>\n";
echo "<td><textarea rows=\"5\" cols=\"40\" name=\"kommentar\">" . $_POST["kommentar"] . "</textarea></td>\n";
echo "</tr>\n";
echo "<tr><td>" . Get_Text("makeuser_Hometown") . "</td><td><input type=\"text\" size=\"40\" name=\"Hometown\" value=\"" . $_POST["Hometown"] . "\"></td></tr>\n";
echo "<tr><td>" . Get_Text("makeuser_Passwort") . "*</td><td><input type=\"password\" size=\"40\" name=\"Passwort\"/></td></tr>\n";
echo "<tr><td>" . Get_Text("makeuser_Passwort2") . "*</td><td><input type=\"password\" size=\"40\" name=\"Passwort2\"/></td></tr>\n";
echo "<tr><td>&nbsp;</td><td><input type=\"submit\" name=\"send\" value=\"" . Get_Text("makeuser_Anmelden") . "\"/></td></tr>\n";
echo "</table>\n";
echo "</form>\n";
Print_Text("makeuser_text3");
}
include "includes/footer.php";
?>