diff --git a/DB/db_rewrite.sql b/DB/db_rewrite.sql
index 71b968e7..d4811235 100644
--- a/DB/db_rewrite.sql
+++ b/DB/db_rewrite.sql
@@ -3,7 +3,7 @@
-- http://www.phpmyadmin.net
--
-- Host: localhost
--- Erstellungszeit: 02. Juni 2011 um 18:17
+-- Erstellungszeit: 02. Juni 2011 um 19:37
-- Server Version: 5.1.44
-- PHP-Version: 5.3.1
@@ -71,16 +71,17 @@ CREATE TABLE IF NOT EXISTS `Counter` (
--
INSERT INTO `Counter` (`URL`, `Anz`) VALUES
-('news', 44),
-('login', 12),
-('logout', 5),
-('start', 13),
+('news', 73),
+('login', 18),
+('logout', 11),
+('start', 23),
('faq', 4),
('credits', 3),
('register', 3),
('admin_rooms', 70),
-('admin_angel_types', 68),
-('user_settings', 109);
+('admin_angel_types', 69),
+('user_settings', 111),
+('user_messages', 102);
-- --------------------------------------------------------
@@ -124,7 +125,7 @@ CREATE TABLE IF NOT EXISTS `GroupPrivileges` (
`privilege_id` int(11) NOT NULL,
PRIMARY KEY (`id`),
KEY `group_id` (`group_id`,`privilege_id`)
-) ENGINE=MyISAM DEFAULT CHARSET=utf8 AUTO_INCREMENT=9 ;
+) ENGINE=MyISAM DEFAULT CHARSET=utf8 AUTO_INCREMENT=10 ;
--
-- Daten für Tabelle `GroupPrivileges`
@@ -138,7 +139,8 @@ INSERT INTO `GroupPrivileges` (`id`, `group_id`, `privilege_id`) VALUES
(5, -1, 5),
(6, -4, 6),
(7, -4, 7),
-(8, -2, 8);
+(8, -2, 8),
+(9, -2, 9);
-- --------------------------------------------------------
@@ -170,18 +172,28 @@ INSERT INTO `Groups` (`Name`, `UID`) VALUES
--
CREATE TABLE IF NOT EXISTS `Messages` (
- `Datum` datetime NOT NULL DEFAULT '0000-00-00 00:00:00',
+ `id` int(11) NOT NULL AUTO_INCREMENT,
+ `Datum` int(11) NOT NULL,
`SUID` int(11) NOT NULL DEFAULT '0',
`RUID` int(11) NOT NULL DEFAULT '0',
`isRead` char(1) NOT NULL DEFAULT 'N',
`Text` text NOT NULL,
- PRIMARY KEY (`Datum`,`SUID`,`RUID`)
-) ENGINE=MyISAM DEFAULT CHARSET=utf8 COMMENT='Fuers interen Communikationssystem';
+ PRIMARY KEY (`id`),
+ KEY `Datum` (`Datum`),
+ KEY `SUID` (`SUID`),
+ KEY `RUID` (`RUID`)
+) ENGINE=MyISAM DEFAULT CHARSET=utf8 COMMENT='Fuers interen Communikationssystem' AUTO_INCREMENT=8 ;
--
-- Daten für Tabelle `Messages`
--
+INSERT INTO `Messages` (`id`, `Datum`, `SUID`, `RUID`, `isRead`, `Text`) VALUES
+(2, 1307042342, 1, 147, 'Y', 'asdfasdfasdfasdf'),
+(4, 1307042622, 1, 147, 'Y', 'asdfasdfasdf'),
+(5, 1307042643, 1, 147, 'Y', 'foobar'),
+(6, 1307042663, 1, 147, 'Y', 'foobar'),
+(7, 1307042692, 147, 1, 'Y', 'foobar');
-- --------------------------------------------------------
@@ -197,19 +209,16 @@ CREATE TABLE IF NOT EXISTS `News` (
`UID` int(11) NOT NULL DEFAULT '0',
`Treffen` tinyint(4) NOT NULL DEFAULT '0',
PRIMARY KEY (`ID`)
-) ENGINE=MyISAM DEFAULT CHARSET=utf8 AUTO_INCREMENT=9 ;
+) ENGINE=MyISAM DEFAULT CHARSET=utf8 AUTO_INCREMENT=4 ;
--
-- Daten für Tabelle `News`
--
INSERT INTO `News` (`ID`, `Datum`, `Betreff`, `Text`, `UID`, `Treffen`) VALUES
-(3, '2011-06-02 01:32:31', '', '', 0, 0),
-(4, '2011-06-02 01:36:27', 'Darf ich News erstellen?', 'Darf ich.', 0, 0),
-(5, '2011-06-02 01:36:35', 'Darf ich News erstellen?', 'asdfasdfasdf', 1, 0),
-(6, '2011-06-02 01:38:59', '"''>', '"''>\r\n', 1, 0),
-(7, '2011-06-02 01:38:59', '"''>', '"''>\r\n', 1, 0),
-(8, '2011-06-02 01:38:59', '"''>', '"''>\r\n', 1, 0);
+(1, '2011-06-02 21:35:27', '', '', 1, 0),
+(2, '2011-06-02 21:36:57', '', '', 1, 0),
+(3, '2011-06-02 21:36:57', '', '', 1, 0);
-- --------------------------------------------------------
@@ -244,7 +253,7 @@ CREATE TABLE IF NOT EXISTS `Privileges` (
`desc` varchar(1024) NOT NULL,
PRIMARY KEY (`id`),
UNIQUE KEY `name` (`name`)
-) ENGINE=MyISAM DEFAULT CHARSET=utf8 AUTO_INCREMENT=9 ;
+) ENGINE=MyISAM DEFAULT CHARSET=utf8 AUTO_INCREMENT=10 ;
--
-- Daten für Tabelle `Privileges`
@@ -258,7 +267,8 @@ INSERT INTO `Privileges` (`id`, `name`, `desc`) VALUES
(5, 'register', 'Einen neuen Engel registerieren'),
(6, 'admin_rooms', 'Räume administrieren'),
(7, 'admin_angel_types', 'Engel Typen administrieren'),
-(8, 'user_settings', 'User profile settings');
+(8, 'user_settings', 'User profile settings'),
+(9, 'user_messages', 'Writing and reading messages from user to user');
-- --------------------------------------------------------
@@ -800,8 +810,8 @@ INSERT INTO `Sprache` (`TextID`, `Sprache`, `Text`) VALUES
('pub_einstellungen_Hometown', 'EN', 'hometown'),
('makeuser_error_Alter', 'DE', 'Fehler: Dein Alter muss eine Zahl oder leer sein'),
('makeuser_error_Alter', 'EN', 'error: your age must be a number or empty'),
-('pub_menu_messages', 'DE', 'Nachrichten'),
-('pub_menu_messages', 'EN', 'messages'),
+('user_messages', 'DE', 'Nachrichten'),
+('user_messages', 'EN', 'Messages'),
('pub_messages_Datum', 'DE', 'Datum'),
('pub_messages_Datum', 'EN', 'date'),
('pub_messages_Von', 'DE', 'Gesendet'),
@@ -983,7 +993,9 @@ INSERT INTO `Sprache` (`TextID`, `Sprache`, `Text`) VALUES
('login', 'DE', 'Login'),
('login', 'EN', 'Login'),
('credits', 'DE', 'Credits'),
-('credits', 'EN', 'Credits');
+('credits', 'EN', 'Credits'),
+('pub_messages_Neu', 'DE', 'Neu'),
+('pub_messages_Neu', 'EN', 'New');
-- --------------------------------------------------------
@@ -1026,8 +1038,8 @@ CREATE TABLE IF NOT EXISTS `User` (
--
INSERT INTO `User` (`UID`, `Nick`, `Name`, `Vorname`, `Alter`, `Telefon`, `DECT`, `Handy`, `email`, `ICQ`, `jabber`, `Size`, `Passwort`, `Gekommen`, `Aktiv`, `Tshirt`, `color`, `Sprache`, `Avatar`, `Menu`, `lastLogIn`, `CreateDate`, `Art`, `kommentar`, `Hometown`) VALUES
-(1, 'admin', '', '', 0, '', '', '', '', '', '', 'L', '21232f297a57a5a743894a0e4a801fc3', 0, 0, 0, 10, 'DE', 115, 'L', 1307038600, '0000-00-00 00:00:00', '', '', ''),
-(147, 'msquare', '', '', 23, '', '', '', 'msquare@notrademark.de', '', '', 'L', 'e10adc3949ba59abbe56e057f20f883e', 0, 0, 0, 6, 'EN', 0, 'L', 1306971362, '2011-06-02 00:55:09', '', '', '');
+(1, 'admin', '', '', 0, '', '', '', '', '', '', 'L', '21232f297a57a5a743894a0e4a801fc3', 0, 0, 0, 10, 'DE', 115, 'L', 1307043433, '0000-00-00 00:00:00', '', '', ''),
+(147, 'msquare', '', '', 23, '', '', '', 'msquare@notrademark.de', '', '', 'L', 'e10adc3949ba59abbe56e057f20f883e', 0, 0, 0, 6, 'EN', 0, 'L', 1307042703, '2011-06-02 00:55:09', '', '', '');
-- --------------------------------------------------------
diff --git a/includes/pages/user_messages.php b/includes/pages/user_messages.php
new file mode 100644
index 00000000..e3e9a469
--- /dev/null
+++ b/includes/pages/user_messages.php
@@ -0,0 +1,216 @@
+ 0)
+ return '
' . Get_Text("pub_messages_new1") . " " . $new_messages . " " . Get_Text("pub_messages_new2") . '
';
+
+ return "";
+}
+
+function user_messages() {
+ global $user;
+
+ if (!isset ($_REQUEST['action'])) {
+ $users = sql_select("SELECT * FROM `User` WHERE NOT `UID`=" . sql_escape($user['UID']) . " ORDER BY `Nick`");
+ $to_select_data = array (
+ "" => "Select receiver..."
+ );
+ foreach ($users as $u)
+ $to_select_data[$u['UID']] = $u['Nick'];
+ $to_select = html_select_key('to', $to_select_data, '');
+
+ $messages_html = "";
+ $messages = sql_select("SELECT * FROM `Messages` WHERE `SUID`=" . sql_escape($user['UID']) . " OR `RUID`=" . sql_escape($user['UID']) . " ORDER BY `isRead`,`Datum` DESC");
+ foreach ($messages as $message) {
+ $messages_html .= '';
+ $messages_html .= '' . ($message['isRead'] == 'N' ? '•' : '') . ' | ';
+ $messages_html .= '' . date("Y-m-d H:i", $message['Datum']) . ' | ';
+ $messages_html .= '' . UID2Nick($message['SUID']) . ' | ';
+ $messages_html .= '' . UID2Nick($message['RUID']) . ' | ';
+ $messages_html .= '' . str_replace("\n", ' ', $message['Text']) . ' | ';
+ $messages_html .= '';
+ if ($message['RUID'] == $user['UID']) {
+ if ($message['isRead'] == 'N')
+ $messages_html .= '' . Get_Text("pub_messages_MarkRead") . '';
+ } else {
+ $messages_html .= '' . Get_Text("pub_messages_DelMsg") . '';
+ }
+ $messages_html .= ' |
';
+ }
+
+ return template_render('../templates/user_messages.html', array (
+ 'link' => page_link_to("user_messages"),
+ 'greeting' => Get_Text("Hello") . $user['Nick'] . ",
\n" . Get_Text("pub_messages_text1") . "
\n",
+ 'messages' => $messages_html,
+ 'new_label' => Get_Text("pub_messages_Neu"),
+ 'date_label' => Get_Text("pub_messages_Datum"),
+ 'from_label' => Get_Text("pub_messages_Von"),
+ 'to_label' => Get_Text("pub_messages_An"),
+ 'text_label' => Get_Text("pub_messages_Text"),
+ 'date' => date("Y-m-d H:i"),
+ 'from' => $user['Nick'],
+ 'to_select' => $to_select,
+ 'submit_label' => Get_Text("save")
+ ));
+ } else {
+ switch ($_REQUEST['action']) {
+ case "read" :
+ if (isset ($_REQUEST['id']) && preg_match("/^[0-9]{1,11}$/", $_REQUEST['id']))
+ $id = $_REQUEST['id'];
+ else
+ return error("Incomplete call, missing Message ID.");
+
+ $message = sql_select("SELECT * FROM `Messages` WHERE `id`=" . sql_escape($id) . " LIMIT 1");
+ if (count($message) > 0 && $message[0]['RUID'] == $user['UID']) {
+ sql_query("UPDATE `Messages` SET `isRead`='Y' WHERE `id`=" . sql_escape($id) . " LIMIT 1");
+ header("Location: " . page_link_to("user_messages"));
+ } else
+ return error("No Message found.");
+ break;
+
+ case "delete" :
+ if (isset ($_REQUEST['id']) && preg_match("/^[0-9]{1,11}$/", $_REQUEST['id']))
+ $id = $_REQUEST['id'];
+ else
+ return error("Incomplete call, missing Message ID.");
+
+ $message = sql_select("SELECT * FROM `Messages` WHERE `id`=" . sql_escape($id) . " LIMIT 1");
+ if (count($message) > 0 && $message[0]['SUID'] == $user['UID']) {
+ sql_query("DELETE FROM `Messages` WHERE `id`=" . sql_escape($id) . " LIMIT 1");
+ header("Location: " . page_link_to("user_messages"));
+ } else
+ return error("No Message found.");
+ break;
+
+ case "send" :
+ $text = preg_replace("/([^\p{L}\p{P}\p{Z}\p{N}\n]{1,})/ui", '', strip_tags($_REQUEST['text']));
+ $to = preg_replace("/([^0-9]{1,})/ui", '', strip_tags($_REQUEST['to']));
+ if ($text != "" && is_numeric($to) && sql_num_query("SELECT * FROM `User` WHERE `UID`=" . sql_escape($to) . " AND NOT `UID`=" . sql_escape($user['UID']) . " LIMIT 1") > 0) {
+ sql_query("INSERT INTO `Messages` SET `Datum`=" . sql_escape(time()) . ", `SUID`=" . sql_escape($user['UID']) . ", `RUID`=" . sql_escape($to) . ", `Text`='" . sql_escape($text) . "'");
+ header("Location: " . page_link_to("user_messages"));
+ } else {
+ return error(Get_Text("pub_messages_Send_Error"));
+ }
+ break;
+ }
+ return "";
+ }
+
+ if (!isset ($_GET["action"]))
+ $_GET["action"] = "start";
+
+ switch ($_GET["action"]) {
+ case "start" :
+ echo Get_Text("Hello") . $_SESSION['Nick'] . ",
\n";
+ echo Get_Text("pub_messages_text1") . "
\n";
+
+ //show exist Messages
+ $SQL = "SELECT * FROM `Messages` WHERE `SUID`='" . $_SESSION["UID"] . "' OR `RUID`='" . $_SESSION["UID"] . "'";
+ $erg = mysql_query($SQL, $con);
+
+ echo "\n";
+ echo "\n";
+ echo "" . Get_Text("pub_messages_Datum") . " | \n";
+ echo "" . Get_Text("pub_messages_Von") . " | \n";
+ echo "" . Get_Text("pub_messages_An") . " | \n";
+ echo "" . Get_Text("pub_messages_Text") . " | \n";
+ echo " | \n";
+ echo "
\n";
+
+ for ($i = 0; $i < mysql_num_rows($erg); $i++) {
+ echo "\n";
+ echo "" . mysql_result($erg, $i, "Datum") . " | \n";
+ echo "" . UID2Nick(mysql_result($erg, $i, "SUID")) . " | \n";
+ echo "" . UID2Nick(mysql_result($erg, $i, "RUID")) . " | \n";
+ echo "" . mysql_result($erg, $i, "Text") . " | \n";
+ echo "";
+
+ if (mysql_result($erg, $i, "RUID") == $_SESSION["UID"]) {
+ echo "" . Get_Text("pub_messages_DelMsg") . "";
+
+ if (mysql_result($erg, $i, "isRead") == "N")
+ echo "" . Get_Text("pub_messages_MarkRead") . "";
+ } else {
+ if (mysql_result($erg, $i, "isRead") == "N")
+ echo Get_Text("pub_messages_NotRead");
+ }
+
+ echo " | \n";
+ echo "
\n";
+ }
+
+ // send Messeges
+ echo "";
+
+ echo "
\n";
+ break;
+
+ case "SendMsg" :
+ echo Get_Text("pub_messages_Send1") . "...
\n";
+
+ $SQL = "INSERT INTO `Messages` ( `Datum` , `SUID` , `RUID` , `Text` ) VALUES (" .
+ "'" . gmdate("Y-m-j H:i:s", time()) . "', " .
+ "'" . $_SESSION["UID"] . "', " .
+ "'" . $_POST["RUID"] . "', " .
+ "'" . $_POST["Text"] . "');";
+
+ $Erg = mysql_query($SQL, $con);
+
+ if ($Erg == 1)
+ echo Get_Text("pub_messages_Send_OK") . "\n";
+ else
+ echo Get_Text("pub_messages_Send_Error") . "...\n(" . mysql_error($con) . ")";
+ break;
+
+ case "MarkRead" :
+ $SQL = "UPDATE `Messages` SET `isRead` = 'Y' " .
+ "WHERE `Datum` = '" . $_GET["Datum"] . "' AND `RUID`='" . $_SESSION["UID"] . "' " .
+ "LIMIT 1 ;";
+ $Erg = mysql_query($SQL, $con);
+
+ if ($Erg == 1)
+ echo Get_Text("pub_messages_MarkRead_OK") . "\n";
+ else
+ echo Get_Text("pub_messages_MarkRead_KO") . "...\n(" . mysql_error($con) . ")";
+ break;
+
+ case "DelMsg" :
+ $SQL = "DELETE FROM `Messages` " .
+ "WHERE `Datum` = '" . $_GET["Datum"] . "' AND `RUID` ='" . $_SESSION["UID"] . "' " .
+ "LIMIT 1;";
+ $Erg = mysql_query($SQL, $con);
+
+ if ($Erg == 1)
+ echo Get_Text("pub_messages_DelMsg_OK") . "\n";
+ else
+ echo Get_Text("pub_messages_DelMsg_KO") . "...\n(" . mysql_error($con) . ")";
+ break;
+
+ default :
+ echo Get_Text("pub_messages_NoCommand");
+ }
+}
+?>
diff --git a/includes/sys_menu.php b/includes/sys_menu.php
index da9d5666..822d558f 100644
--- a/includes/sys_menu.php
+++ b/includes/sys_menu.php
@@ -22,6 +22,7 @@ function make_navigation() {
// Engel Navigation
$menu .= make_navigation_for(Get_Text('inc_schicht_engel'), array (
"news",
+ "user_messages",
"user_settings"
));
diff --git a/templates/user_messages.html b/templates/user_messages.html
new file mode 100644
index 00000000..b7bb26fb
--- /dev/null
+++ b/templates/user_messages.html
@@ -0,0 +1,50 @@
+%greeting%
+
\ No newline at end of file
diff --git a/txt/TODO b/txt/TODO
index c6d32b39..fbaf4377 100644
--- a/txt/TODO
+++ b/txt/TODO
@@ -1,6 +1,9 @@
* MD5-Passwörter mit Salt speichern
* Passwort-Mindestanforderungen stellen
- * Avatare
+ * User-Avatare
+ * user_messages schön machen
+ * Formulare weg von Tabellen
+ * user_news lässt sich nicht bedienen (POST ohne redirects...)
* schichten ueber monatsgrenzen einbaue im moment werden die tage nur
diff --git a/www-ssl/css/base.css b/www-ssl/css/base.css
index 5731fec0..bfe050a5 100644
--- a/www-ssl/css/base.css
+++ b/www-ssl/css/base.css
@@ -128,3 +128,14 @@ td, th {
.success {
color: #090;
}
+
+.notice {
+ background: #f0f0f0;
+ border: 2px solid #888;
+ margin: 10px;
+ padding: 10px;
+}
+
+.new_message {
+ font-weight: bold;
+}
diff --git a/www-ssl/css/style6.css b/www-ssl/css/style6.css
index 2272f598..8dc008e7 100644
--- a/www-ssl/css/style6.css
+++ b/www-ssl/css/style6.css
@@ -71,6 +71,6 @@ h4.menu {
font-size : 6pt;
}
-h4, h1 {
+h4, h1, th {
background: #333E47;
}
diff --git a/www-ssl/index.php b/www-ssl/index.php
index 6b2e267b..48aea75c 100644
--- a/www-ssl/index.php
+++ b/www-ssl/index.php
@@ -13,6 +13,8 @@ require_once ('includes/sys_user.php');
require_once ('config/config.php');
require_once ('config/config_db.php');
+require_once ('includes/pages/user_messages.php');
+
session_start();
sql_connect($config['host'], $config['user'], $config['pw'], $config['db']);
@@ -20,7 +22,7 @@ sql_connect($config['host'], $config['user'], $config['pw'], $config['db']);
load_auth();
// Gewünschte Seite/Funktion
-$p = "start";
+$p = isset ($user) ? "news" : "start";
if (isset ($_REQUEST['p']))
$p = $_REQUEST['p'];
@@ -33,6 +35,9 @@ if (in_array($p, $privileges)) {
require_once ('includes/pages/user_news.php');
$content = user_news();
}
+ elseif ($p == "user_messages") {
+ $content = user_messages();
+ }
elseif ($p == "user_settings") {
require_once ('includes/pages/user_settings.php');
$content = user_settings();
@@ -79,6 +84,10 @@ elseif ($p == "faq") {
}
}
+// Hinweis für ungelesene Nachrichten
+if (isset ($user) && $p != "user_messages")
+ $content = user_unread_messages() . $content;
+
echo template_render('../templates/layout.html', array (
'theme' => isset ($user) ? $user['color'] : $default_theme,
'title' => $title,
diff --git a/www-ssl/nonpublic/einstellungen.php b/www-ssl/nonpublic/einstellungen.php
deleted file mode 100644
index 713425bb..00000000
--- a/www-ssl/nonpublic/einstellungen.php
+++ /dev/null
@@ -1,376 +0,0 @@
-\n\n";
- Print_Text(13);
-?>
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-\n
\n
\n\n";
- echo Get_Text('pub_einstellungen_PictureUpload') . "
";
- echo "\n";
- }
-
- switch (GetPicturShow($_SESSION['UID'])) {
- case 'Y' :
- echo Get_Text('pub_einstellungen_PictureShow') . "
";
- echo displayPictur($_SESSION['UID'], 0);
- echo "\n";
- break;
- case 'N' :
- echo Get_Text('pub_einstellungen_PictureNoShow') . "
";
- echo displayPictur($_SESSION['UID'], 0);
- echo "\n";
- echo "
\n
\n
\n\n";
- case '' :
- echo "
\n
\n
\n\n";
- echo Get_Text(22) . "
";
- echo "\n\n";
- break;
- } //CASE
-
-} else {
- switch ($_POST["action"]) {
- case 'set' :
- if ($_POST["new1"] == $_POST["new2"]) {
- Print_Text(25);
- $sql = "SELECT * FROM `User` WHERE `UID`='" . $_SESSION['UID'] . "'";
- $Erg = mysql_query($sql, $con);
-
- if (PassCrypt($_POST["old"]) == mysql_result($Erg, 0, "Passwort")) {
- Print_Text(26);
- Print_Text(27);
- $usql = "UPDATE `User` SET `Passwort`='" . PassCrypt($_POST["new1"]) . "' WHERE `UID`='" . $_SESSION['UID'] . "' LIMIT 1";
- $Erg = mysql_query($usql, $con);
-
- if ($Erg == 1) {
- Print_Text(28);
- } else {
- Print_Text(29);
- }
- } else {
- Print_Text(30);
- }
- } else {
- Print_Text(31);
- }
- break;
-
- case 'colour' :
-
- $chsql = "UPDATE `User` SET " .
- "`color`= '" . $_POST["colourid"] . "', " .
- "`Menu`= '" . $_POST["eMenu"] . "' " .
- "WHERE `UID`='" . $_SESSION['UID'] . "' LIMIT 1";
- $Erg = mysql_query($chsql, $con);
- echo mysql_error($con);
- $_SESSION['color'] = $_POST["colourid"];
- $_SESSION['Menu'] = $_POST["eMenu"];
- if ($Erg == 1) {
- Print_Text(32);
- } else {
- Print_Text(29);
- }
- break;
-
- case 'sprache' :
-
- $chsql = "UPDATE `User` SET `Sprache` = '" . $_POST["language"] . "' WHERE `UID`='" . $_SESSION['UID'] . "' LIMIT 1";
- $Erg = mysql_query($chsql, $con);
- $_SESSION['Sprache'] = $_POST["language"];
- if ($Erg == 1) {
- Print_Text(33);
- } else {
- Print_Text(29);
- }
- break;
-
- case 'avatar' :
- $chsql = "UPDATE `User` SET `Avatar`='" . $_POST["eAvatar"] . "' WHERE `UID`='" . $_SESSION['UID'] . "' LIMIT 1";
- $Erg = mysql_query($chsql, $con);
- $_SESSION['Avatar'] = $_POST["eAvatar"];
- if ($Erg == 1)
- Print_Text(34);
- else
- Print_Text(29);
- break;
-
- case 'setUserData' :
- if ($_SESSION['CVS']["Change T_Shirt Size"] == "Y") {
- $chsql = "UPDATE `User` SET " .
- "`Nick`='" . $_POST["eNick"] . "', `Name`='" . $_POST["eName"] . "', " .
- "`Vorname`='" . $_POST["eVorname"] . "', `Alter`='" . $_POST["eAlter"] . "', " .
- "`Telefon`='" . $_POST["eTelefon"] . "', `Handy`='" . $_POST["eHandy"] . "', " .
- "`DECT`='" . $_POST["eDECT"] . "', `email`='" . $_POST["eemail"] . "', " .
- "`ICQ`='" . $_POST["eICQ"] . "', `jabber`='" . $_POST["ejabber"] . "', " .
- "`Hometown`='" . $_POST["Hometown"] . "', `Size`='" . $_POST["Sizeid"] . "' " .
- "WHERE `UID`='" . $_SESSION['UID'] . "' LIMIT 1;";
- } else {
- $chsql = "UPDATE `User` SET " .
- "`Nick`='" . $_POST["eNick"] . "', `Name`='" . $_POST["eName"] . "', " .
- "`Vorname`='" . $_POST["eVorname"] . "', `Alter`='" . $_POST["eAlter"] . "', " .
- "`Telefon`='" . $_POST["eTelefon"] . "', `Handy`='" . $_POST["eHandy"] . "', " .
- "`DECT`='" . $_POST["eDECT"] . "', `email`='" . $_POST["eemail"] . "', " .
- "`ICQ`='" . $_POST["eICQ"] . "', `jabber`='" . $_POST["ejabber"] . "', " .
- "`Hometown`='" . $_POST["Hometown"] . "' " .
- "WHERE `UID`='" . $_SESSION['UID'] . "' LIMIT 1;";
- }
- $Erg = mysql_query($chsql, $con);
-
- if ($Erg == 1) {
- $_SESSION['Nick'] = $_POST["eNick"];
- $_SESSION['Name'] = $_POST["eName"];
- $_SESSION['Vorname'] = $_POST["eVorname"];
- $_SESSION['Alter'] = $_POST["eAlter"];
- $_SESSION['Telefon'] = $_POST["eTelefon"];
- $_SESSION['Handy'] = $_POST["eHandy"];
- $_SESSION['DECT'] = $_POST["eDECT"];
- $_SESSION['email'] = $_POST["eemail"];
- $_SESSION['ICQ'] = $_POST["eICQ"];
- $_SESSION['jabber'] = $_POST["ejabber"];
- $_SESSION['Hometown'] = $_POST["Hometown"];
- if ($_SESSION['CVS']["Change T_Shirt Size"] == "Y") {
- $_SESSION['Size'] = $_POST["Sizeid"];
- } else
- if ($_SESSION['Size'] != $_POST["Sizeid"]) {
- array_push($error_messages, "einstellungen.php, change t-shirt size not allowed\n");
- }
-
- Print_Text("pub_einstellungen_UserDateSaved");
- } else {
- Print_Text(29);
- echo mysql_error($con);
- }
- break;
-
- case 'sendPicture' :
- if ($_FILES["file"]["size"] > 0) {
- if (($_FILES["file"]["type"] == "image/jpeg") || ($_FILES["file"]["type"] == "image/png") || ($_FILES["file"]["type"] == "image/gif")) {
- $data = addslashes(fread(fopen($_FILES["file"]["tmp_name"], "r"), filesize($_FILES["file"]["tmp_name"])));
-
- if (GetPicturShow($_SESSION['UID']) == "")
- $SQL = "INSERT INTO `UserPicture` " .
- "( `UID`,`Bild`, `ContentType`, `show`) " .
- "VALUES ('" . $_SESSION['UID'] . "', '$data', '" . $_FILES["file"]["type"] . "', 'N')";
- else
- $SQL = "UPDATE `UserPicture` SET " .
- "`Bild`='$data', " .
- "`ContentType`='" . $_FILES["file"]["type"] . "', " .
- "`show`='N' " .
- "WHERE `UID`='" . $_SESSION['UID'] . "'";
-
- $res = mysql_query($SQL, $con);
- if ($res)
- Print_Text("pub_einstellungen_send_OK");
- else
- Print_Text("pub_einstellungen_send_KO");
-
- echo "('" . $_FILES["file"]["name"] . "', MIME-Type: " . $_FILES["file"]["type"] . ", " . $_FILES["file"]["size"] . " Byte)
";
- } else
- Print_Text("pub_einstellungen_send_KO");
- } else
- Print_Text("pub_einstellungen_send_KO");
- break;
-
- case 'delPicture' :
- $chsql = "DELETE FROM `UserPicture` WHERE `UID`='" . $_SESSION['UID'] . "' LIMIT 1";
- $Erg = mysql_query($chsql, $con);
- if ($Erg == 1)
- Print_Text("pub_einstellungen_del_OK");
- else
- Print_Text("pub_einstellungen_del_KO");
- Break;
- }
-}
-include ("includes/footer.php");
-?>
diff --git a/www-ssl/nonpublic/index.php b/www-ssl/nonpublic/index.php
deleted file mode 100644
index b53f8088..00000000
--- a/www-ssl/nonpublic/index.php
+++ /dev/null
@@ -1,77 +0,0 @@
- 1 --> keine Anmeldung
- if ($user_anz == 0)
- $ErrorText = "pub_index_User_unset";
- else
- $ErrorText = "pub_index_User_more_as_one";
- } // Ende Check, ob User angemeldet wurde
-}
-include ("includes/header.php");
-if (isset ($ErrorText))
- echo "" . Get_Text($ErrorText) . "
\n";
-include ("includes/login_eingabefeld.php");
-include ("includes/footer.php");
-?>
-
-