\n\n";
Print_Text(13);
?>
\n
\n
\n\n";
echo Get_Text('pub_einstellungen_PictureUpload')."
";
echo "\n";
}
switch( GetPicturShow( $_SESSION['UID']))
{
case 'Y':
echo Get_Text('pub_einstellungen_PictureShow'). "
";
echo displayPictur($_SESSION['UID'], 0);
echo "\n";
break;
case 'N':
echo Get_Text('pub_einstellungen_PictureNoShow'). "
";
echo displayPictur($_SESSION['UID'], 0);
echo "\n";
echo "
\n
\n
\n\n";
case '':
echo "
\n
\n
\n\n";
echo Get_Text(22). "
";
echo "\n\n";
break;
} //CASE
} else {
switch ($_POST["action"]) {
case 'set':
if ($_POST["new1"]==$_POST["new2"]){
Print_Text(25);
$sql = "SELECT * FROM `User` WHERE `UID`='".$_SESSION['UID']. "'";
$Erg = mysql_query($sql, $con);
if (PassCrypt($_POST["old"])==mysql_result($Erg, 0, "Passwort")) {
Print_Text(26);
Print_Text(27);
$usql = "UPDATE `User` SET `Passwort`='". PassCrypt($_POST["new1"]). "' ".
" WHERE `UID`='". $_SESSION['UID']. "' LIMIT 1";
$Erg = mysql_query($usql, $con);
if ($Erg==1) {
Print_Text(28);
} else {
Print_Text(29);
}
} else {
Print_Text(30);
}
} else {
Print_Text(31);
}
break;
case 'colour':
$chsql="UPDATE `User` SET ".
"`color`= '". $_POST["colourid"]. "', ".
"`Menu`= '". $_POST["eMenu"]. "' ".
"WHERE `UID`='". $_SESSION['UID']. "' LIMIT 1";
$Erg = mysql_query($chsql, $con);
echo mysql_error($con);
$_SESSION['color']=$_POST["colourid"];
$_SESSION['Menu']=$_POST["eMenu"];
if ($Erg==1) {
Print_Text(32);
} else {
Print_Text(29);
}
break;
case 'sprache':
$chsql="UPDATE `User` SET `Sprache` = '". $_POST["language"]. "' WHERE `UID`='". $_SESSION['UID']. "' LIMIT 1";
$Erg = mysql_query($chsql, $con);
$_SESSION['Sprache']=$_POST["language"];
if ($Erg==1) {
Print_Text(33);
} else {
Print_Text(29);
}
break;
case 'avatar':
$chsql="UPDATE `User` SET `Avatar`='". $_POST["eAvatar"]. "' WHERE `UID`='". $_SESSION['UID']. "' LIMIT 1";
$Erg = mysql_query($chsql, $con);
$_SESSION['Avatar']=$_POST["eAvatar"];
if ($Erg==1)
Print_Text(34);
else
Print_Text(29);
break;
case 'setUserData':
if( $_SESSION['CVS'][ "Change T_Shirt Size" ] == "Y" )
{
$chsql= "UPDATE `User` SET ".
"`Nick`='". $_POST["eNick"]. "', `Name`='". $_POST["eName"]. "', ".
"`Vorname`='". $_POST["eVorname"]. "', `Alter`='". $_POST["eAlter"]. "', ".
"`Telefon`='". $_POST["eTelefon"]. "', `Handy`='". $_POST["eHandy"]. "', ".
"`DECT`='". $_POST["eDECT"]. "', `email`='". $_POST["eemail"]. "', ".
"`ICQ`='". $_POST["eICQ"]. "', `jabber`='". $_POST["ejabber"]."', ".
"`Hometown`='". $_POST["Hometown"]. "', `Size`='". $_POST["Sizeid"]. "' ".
"WHERE `UID`='". $_SESSION['UID']. "' LIMIT 1;";
}
else
{
$chsql= "UPDATE `User` SET ".
"`Nick`='". $_POST["eNick"]. "', `Name`='". $_POST["eName"]. "', ".
"`Vorname`='". $_POST["eVorname"]. "', `Alter`='". $_POST["eAlter"]. "', ".
"`Telefon`='". $_POST["eTelefon"]. "', `Handy`='". $_POST["eHandy"]. "', ".
"`DECT`='". $_POST["eDECT"]. "', `email`='". $_POST["eemail"]. "', ".
"`ICQ`='". $_POST["eICQ"]. "', `jabber`='". $_POST["ejabber"]."', ".
"`Hometown`='". $_POST["Hometown"]. "' ".
"WHERE `UID`='". $_SESSION['UID']. "' LIMIT 1;";
}
$Erg = mysql_query($chsql, $con);
if ($Erg==1)
{
$_SESSION['Nick'] = $_POST["eNick"];
$_SESSION['Name'] = $_POST["eName"];
$_SESSION['Vorname'] = $_POST["eVorname"];
$_SESSION['Alter'] = $_POST["eAlter"];
$_SESSION['Telefon'] = $_POST["eTelefon"];
$_SESSION['Handy'] = $_POST["eHandy"];
$_SESSION['DECT'] = $_POST["eDECT"];
$_SESSION['email'] = $_POST["eemail"];
$_SESSION['ICQ'] = $_POST["eICQ"];
$_SESSION['jabber'] = $_POST["ejabber"];
$_SESSION['Hometown'] = $_POST["Hometown"];
if( $_SESSION['CVS'][ "Change T_Shirt Size" ] == "Y" )
{
$_SESSION['Size']=$_POST["Sizeid"];
}
else if( $_SESSION['Size'] != $_POST["Sizeid"])
{
array_push($error_messages, "einstellungen.php, change t-shirt size not allowed\n");
}
Print_Text("pub_einstellungen_UserDateSaved");
}
else
{
Print_Text(29);
echo mysql_error( $con);
}
break;
case 'sendPicture':
if( $_FILES["file"]["size"] > 0)
{
if( ($_FILES["file"]["type"] == "image/jpeg") ||
($_FILES["file"]["type"] == "image/png") ||
($_FILES["file"]["type"] == "image/gif") )
{
$data = addslashes(fread(fopen($_FILES["file"]["tmp_name"], "r"), filesize($_FILES["file"]["tmp_name"])));
if( GetPicturShow( $_SESSION['UID']) == "")
$SQL = "INSERT INTO `UserPicture` ".
"( `UID`,`Bild`, `ContentType`, `show`) ".
"VALUES ('". $_SESSION['UID']. "', '$data', '". $_FILES["file"]["type"]. "', 'N')";
else
$SQL = "UPDATE `UserPicture` SET ".
"`Bild`='$data', ".
"`ContentType`='". $_FILES["file"]["type"]. "', ".
"`show`='N' ".
"WHERE `UID`='". $_SESSION['UID']. "'";
$res = mysql_query( $SQL, $con);
if( $res)
Print_Text("pub_einstellungen_send_OK");
else
Print_Text("pub_einstellungen_send_KO");
echo "('" . $_FILES["file"]["name"] . "', MIME-Type: " . $_FILES["file"]["type"]. ", " . $_FILES["file"]["size"]. " Byte)
";
}
else
Print_Text("pub_einstellungen_send_KO");
}
else
Print_Text("pub_einstellungen_send_KO");
break;
case 'delPicture':
$chsql="DELETE FROM `UserPicture` WHERE `UID`='". $_SESSION['UID']. "' LIMIT 1";
$Erg = mysql_query($chsql, $con);
if ($Erg==1)
Print_Text("pub_einstellungen_del_OK");
else
Print_Text("pub_einstellungen_del_KO");
Break;
}
}
include ("../../../27c3/includes/footer.php");
?>