array('function', 'permission')
$subActions = array(
'editnews' => array('EditNews', 'edit_news'),
'mailingmembers' => array('SelectMailingMembers', 'send_mail'),
'mailingcompose' => array('ComposeMailing', 'send_mail'),
'mailingsend' => array('SendMailing', 'send_mail'),
'settings' => array('ModifyNewsSettings', 'admin_forum'),
);
// Default to sub action 'main' or 'settings' depending on permissions.
$_REQUEST['sa'] = isset($_REQUEST['sa']) && isset($subActions[$_REQUEST['sa']]) ? $_REQUEST['sa'] : (allowedTo('edit_news') ? 'editnews' : (allowedTo('send_mail') ? 'mailingmembers' : 'settings'));
// Have you got the proper permissions?
isAllowedTo($subActions[$_REQUEST['sa']][1]);
// Create the tabs for the template.
$context[$context['admin_menu_name']]['tab_data'] = array(
'title' => $txt['news_title'],
'help' => 'edit_news',
'description' => $txt['admin_news_desc'],
'tabs' => array(
'editnews' => array(
),
'mailingmembers' => array(
'description' => $txt['news_mailing_desc'],
),
'settings' => array(
'description' => $txt['news_settings_desc'],
),
),
);
// Force the right area...
if (substr($_REQUEST['sa'], 0, 7) == 'mailing')
$context[$context['admin_menu_name']]['current_subsection'] = 'mailingmembers';
$subActions[$_REQUEST['sa']][0]();
}
// Let the administrator(s) edit the news.
function EditNews()
{
global $txt, $modSettings, $context, $sourcedir, $user_info;
global $smcFunc;
require_once($sourcedir . '/Subs-Post.php');
// The 'remove selected' button was pressed.
if (!empty($_POST['delete_selection']) && !empty($_POST['remove']))
{
checkSession();
// Store the news temporarily in this array.
$temp_news = explode("\n", $modSettings['news']);
// Remove the items that were selected.
foreach ($temp_news as $i => $news)
if (in_array($i, $_POST['remove']))
unset($temp_news[$i]);
// Update the database.
updateSettings(array('news' => implode("\n", $temp_news)));
logAction('news');
}
// The 'Save' button was pressed.
elseif (!empty($_POST['save_items']))
{
checkSession();
foreach ($_POST['news'] as $i => $news)
{
if (trim($news) == '')
unset($_POST['news'][$i]);
else
{
$_POST['news'][$i] = $smcFunc['htmlspecialchars']($_POST['news'][$i], ENT_QUOTES);
preparsecode($_POST['news'][$i]);
}
}
// Send the new news to the database.
updateSettings(array('news' => implode("\n", $_POST['news'])));
// Log this into the moderation log.
logAction('news');
}
// Ready the current news.
foreach (explode("\n", $modSettings['news']) as $id => $line)
$context['admin_current_news'][$id] = array(
'id' => $id,
'unparsed' => un_preparsecode($line),
'parsed' => preg_replace('~<([/]?)form[^>]*?[>]*>~i', '<$1form>', parse_bbc($line)),
);
$context['sub_template'] = 'edit_news';
$context['page_title'] = $txt['admin_edit_news'];
}
function SelectMailingMembers()
{
global $txt, $context, $modSettings, $smcFunc;
$context['page_title'] = $txt['admin_newsletters'];
$context['sub_template'] = 'email_members';
$context['groups'] = array();
$postGroups = array();
$normalGroups = array();
// If we have post groups disabled then we need to give a "ungrouped members" option.
if (empty($modSettings['permission_enable_postgroups']))
{
$context['groups'][0] = array(
'id' => 0,
'name' => $txt['membergroups_members'],
'member_count' => 0,
);
$normalGroups[0] = 0;
}
// Get all the extra groups as well as Administrator and Global Moderator.
$request = $smcFunc['db_query']('', '
SELECT mg.id_group, mg.group_name, mg.min_posts
FROM {db_prefix}membergroups AS mg' . (empty($modSettings['permission_enable_postgroups']) ? '
WHERE mg.min_posts = {int:min_posts}' : '') . '
GROUP BY mg.id_group, mg.min_posts, mg.group_name
ORDER BY mg.min_posts, CASE WHEN mg.id_group < {int:newbie_group} THEN mg.id_group ELSE 4 END, mg.group_name',
array(
'min_posts' => -1,
'newbie_group' => 4,
)
);
while ($row = $smcFunc['db_fetch_assoc']($request))
{
$context['groups'][$row['id_group']] = array(
'id' => $row['id_group'],
'name' => $row['group_name'],
'member_count' => 0,
);
if ($row['min_posts'] == -1)
$normalGroups[$row['id_group']] = $row['id_group'];
else
$postGroups[$row['id_group']] = $row['id_group'];
}
$smcFunc['db_free_result']($request);
// If we have post groups, let's count the number of members...
if (!empty($postGroups))
{
$query = $smcFunc['db_query']('', '
SELECT mem.id_post_group AS id_group, COUNT(*) AS member_count
FROM {db_prefix}members AS mem
WHERE mem.id_post_group IN ({array_int:post_group_list})
GROUP BY mem.id_post_group',
array(
'post_group_list' => $postGroups,
)
);
while ($row = $smcFunc['db_fetch_assoc']($query))
$context['groups'][$row['id_group']]['member_count'] += $row['member_count'];
$smcFunc['db_free_result']($query);
}
if (!empty($normalGroups))
{
// Find people who are members of this group...
$query = $smcFunc['db_query']('', '
SELECT id_group, COUNT(*) AS member_count
FROM {db_prefix}members
WHERE id_group IN ({array_int:normal_group_list})
GROUP BY id_group',
array(
'normal_group_list' => $normalGroups,
)
);
while ($row = $smcFunc['db_fetch_assoc']($query))
$context['groups'][$row['id_group']]['member_count'] += $row['member_count'];
$smcFunc['db_free_result']($query);
// Also do those who have it as an additional membergroup - this ones more yucky...
$query = $smcFunc['db_query']('', '
SELECT mg.id_group, COUNT(*) AS member_count
FROM {db_prefix}membergroups AS mg
INNER JOIN {db_prefix}members AS mem ON (mem.additional_groups != {string:blank_string}
AND mem.id_group != mg.id_group
AND FIND_IN_SET(mg.id_group, mem.additional_groups) != 0)
WHERE mg.id_group IN ({array_int:normal_group_list})
GROUP BY mg.id_group',
array(
'normal_group_list' => $normalGroups,
'blank_string' => '',
)
);
while ($row = $smcFunc['db_fetch_assoc']($query))
$context['groups'][$row['id_group']]['member_count'] += $row['member_count'];
$smcFunc['db_free_result']($query);
}
// Any moderators?
$request = $smcFunc['db_query']('', '
SELECT COUNT(DISTINCT id_member) AS num_distinct_mods
FROM {db_prefix}moderators
LIMIT 1',
array(
)
);
list ($context['groups'][3]['member_count']) = $smcFunc['db_fetch_row']($request);
$smcFunc['db_free_result']($request);
$context['can_send_pm'] = allowedTo('pm_send');
}
// Email your members...
function ComposeMailing()
{
global $txt, $sourcedir, $context, $smcFunc;
// Start by finding any members!
$toClean = array();
if (!empty($_POST['members']))
$toClean[] = 'members';
if (!empty($_POST['exclude_members']))
$toClean[] = 'exclude_members';
if (!empty($toClean))
{
require_once($sourcedir . '/Subs-Auth.php');
foreach ($toClean as $type)
{
// Remove the quotes.
$_POST[$type] = strtr($_POST[$type], array('\\"' => '"'));
preg_match_all('~"([^"]+)"~', $_POST[$type], $matches);
$_POST[$type] = array_unique(array_merge($matches[1], explode(',', preg_replace('~"[^"]+"~', '', $_POST[$type]))));
foreach ($_POST[$type] as $index => $member)
if (strlen(trim($member)) > 0)
$_POST[$type][$index] = $smcFunc['htmlspecialchars']($smcFunc['strtolower'](trim($member)));
else
unset($_POST[$type][$index]);
// Find the members
$_POST[$type] = implode(',', array_keys(findMembers($_POST[$type])));
}
}
if (isset($_POST['member_list']) && is_array($_POST['member_list']))
{
$members = array();
foreach ($_POST['member_list'] as $member_id)
$members[] = (int) $member_id;
$_POST['members'] = implode(',', $members);
}
if (isset($_POST['exclude_member_list']) && is_array($_POST['exclude_member_list']))
{
$members = array();
foreach ($_POST['exclude_member_list'] as $member_id)
$members[] = (int) $member_id;
$_POST['exclude_members'] = implode(',', $members);
}
// Clean the other vars.
SendMailing(true);
// We need a couple strings from the email template file
loadLanguage('EmailTemplates');
// Get a list of all full banned users. Use their Username and email to find them. Only get the ones that can't login to turn off notification.
$request = $smcFunc['db_query']('', '
SELECT DISTINCT mem.id_member
FROM {db_prefix}ban_groups AS bg
INNER JOIN {db_prefix}ban_items AS bi ON (bg.id_ban_group = bi.id_ban_group)
INNER JOIN {db_prefix}members AS mem ON (bi.id_member = mem.id_member)
WHERE (bg.cannot_access = {int:cannot_access} OR bg.cannot_login = {int:cannot_login})
AND (bg.expire_time IS NULL OR bg.expire_time > {int:current_time})',
array(
'cannot_access' => 1,
'cannot_login' => 1,
'current_time' => time(),
)
);
while ($row = $smcFunc['db_fetch_assoc']($request))
$context['recipients']['exclude_members'][] = $row['id_member'];
$smcFunc['db_free_result']($request);
$request = $smcFunc['db_query']('', '
SELECT DISTINCT bi.email_address
FROM {db_prefix}ban_items AS bi
INNER JOIN {db_prefix}ban_groups AS bg ON (bg.id_ban_group = bi.id_ban_group)
WHERE (bg.cannot_access = {int:cannot_access} OR bg.cannot_login = {int:cannot_login})
AND (bg.expire_time IS NULL OR bg.expire_time > {int:current_time})
AND bi.email_address != {string:blank_string}',
array(
'cannot_access' => 1,
'cannot_login' => 1,
'current_time' => time(),
'blank_string' => '',
)
);
$condition_array = array();
$condition_array_params = array();
$count = 0;
while ($row = $smcFunc['db_fetch_assoc']($request))
{
$condition_array[] = '{string:email_' . $count . '}';
$condition_array_params['email_' . $count++] = $row['email_address'];
}
if (!empty($condition_array))
{
$request = $smcFunc['db_query']('', '
SELECT id_member
FROM {db_prefix}members
WHERE email_address IN(' . implode(', ', $condition_array) .')',
$condition_array_params
);
while ($row = $smcFunc['db_fetch_assoc']($request))
$context['recipients']['exclude_members'][] = $row['id_member'];
}
// Did they select moderators - if so add them as specific members...
if ((!empty($context['recipients']['groups']) && in_array(3, $context['recipients']['groups'])) || (!empty($context['recipients']['exclude_groups']) && in_array(3, $context['recipients']['exclude_groups'])))
{
$request = $smcFunc['db_query']('', '
SELECT DISTINCT mem.id_member AS identifier
FROM {db_prefix}members AS mem
INNER JOIN {db_prefix}moderators AS mods ON (mods.id_member = mem.id_member)
WHERE mem.is_activated = {int:is_activated}',
array(
'is_activated' => 1,
)
);
while ($row = $smcFunc['db_fetch_assoc']($request))
{
if (in_array(3, $context['recipients']))
$context['recipients']['exclude_members'][] = $row['identifier'];
else
$context['recipients']['members'][] = $row['identifier'];
}
$smcFunc['db_free_result']($request);
}
// For progress bar!
$context['total_emails'] = count($context['recipients']['emails']);
$request = $smcFunc['db_query']('', '
SELECT MAX(id_member)
FROM {db_prefix}members',
array(
)
);
list ($context['max_id_member']) = $smcFunc['db_fetch_row']($request);
$smcFunc['db_free_result']($request);
// Clean up the arrays.
$context['recipients']['members'] = array_unique($context['recipients']['members']);
$context['recipients']['exclude_members'] = array_unique($context['recipients']['exclude_members']);
// Setup the template!
$context['page_title'] = $txt['admin_newsletters'];
$context['sub_template'] = 'email_members_compose';
$context['default_subject'] = htmlspecialchars($context['forum_name'] . ': ' . $txt['subject']);
$context['default_message'] = htmlspecialchars($txt['message'] . "\n\n" . $txt['regards_team'] . "\n\n" . '{$board_url}');
}
// Send out the mailing!
function SendMailing($clean_only = false)
{
global $txt, $sourcedir, $context, $smcFunc;
global $scripturl, $modSettings, $user_info;
// How many to send at once? Quantity depends on whether we are queueing or not.
$num_at_once = empty($modSettings['mail_queue']) ? 60 : 1000;
// If by PM's I suggest we half the above number.
if (!empty($_POST['send_pm']))
$num_at_once /= 2;
checkSession();
// Where are we actually to?
$context['start'] = isset($_REQUEST['start']) ? $_REQUEST['start'] : 0;
$context['email_force'] = !empty($_POST['email_force']) ? 1 : 0;
$context['send_pm'] = !empty($_POST['send_pm']) ? 1 : 0;
$context['total_emails'] = !empty($_POST['total_emails']) ? (int) $_POST['total_emails'] : 0;
$context['max_id_member'] = !empty($_POST['max_id_member']) ? (int) $_POST['max_id_member'] : 0;
$context['send_html'] = !empty($_POST['send_html']) ? '1' : '0';
$context['parse_html'] = !empty($_POST['parse_html']) ? '1' : '0';
// Create our main context.
$context['recipients'] = array(
'groups' => array(),
'exclude_groups' => array(),
'members' => array(),
'exclude_members' => array(),
'emails' => array(),
);
// Have we any excluded members?
if (!empty($_POST['exclude_members']))
{
$members = explode(',', $_POST['exclude_members']);
foreach ($members as $member)
if ($member >= $context['start'])
$context['recipients']['exclude_members'][] = (int) $member;
}
// What about members we *must* do?
if (!empty($_POST['members']))
{
$members = explode(',', $_POST['members']);
foreach ($members as $member)
if ($member >= $context['start'])
$context['recipients']['members'][] = (int) $member;
}
// Cleaning groups is simple - although deal with both checkbox and commas.
if (!empty($_POST['groups']))
{
if (is_array($_POST['groups']))
{
foreach ($_POST['groups'] as $group => $dummy)
$context['recipients']['groups'][] = (int) $group;
}
else
{
$groups = explode(',', $_POST['groups']);
foreach ($groups as $group)
$context['recipients']['groups'][] = (int) $group;
}
}
// Same for excluded groups
if (!empty($_POST['exclude_groups']))
{
if (is_array($_POST['exclude_groups']))
{
foreach ($_POST['exclude_groups'] as $group => $dummy)
$context['recipients']['exclude_groups'][] = (int) $group;
}
else
{
$groups = explode(',', $_POST['exclude_groups']);
foreach ($groups as $group)
$context['recipients']['exclude_groups'][] = (int) $group;
}
}
// Finally - emails!
if (!empty($_POST['emails']))
{
$addressed = array_unique(explode(';', strtr($_POST['emails'], array("\n" => ';', "\r" => ';', ',' => ';'))));
foreach ($addressed as $curmem)
{
$curmem = trim($curmem);
if ($curmem != '' && preg_match('~^[0-9A-Za-z=_\'+\-/\.]*@[\w\-]+(\.[\w\-]+)*(\.[\w]{2,6})$~', $curmem) !== 0)
$context['recipients']['emails'][$curmem] = $curmem;
}
}
// If we're only cleaning drop out here.
if ($clean_only)
return;
require_once($sourcedir . '/Subs-Post.php');
// Save the message and its subject in $context
$context['subject'] = htmlspecialchars($_POST['subject']);
$context['message'] = htmlspecialchars($_POST['message']);
// Prepare the message for sending it as HTML
if (!$context['send_pm'] && !empty($_POST['send_html']))
{
// Prepare the message for HTML.
if (!empty($_POST['parse_html']))
$_POST['message'] = str_replace(array("\n", ' '), array('
' . "\n", ' '), $_POST['message']);
// This is here to prevent spam filters from tagging this as spam.
if (preg_match('~\