Also hier schonmal die regist.php
<?php
# Copyright by: Manuel
# Support: www.ilch.de
defined ('main') or die ( 'no direct access' );
if ( !isset($_GET['step']) ) { $_GET['step'] = 1; }
if ( $allgAr['forum_regist'] == 0 ) {
# user duerfen sich nicht registrieren.
$title = $allgAr['title'].' :: Users :: Keine registrierung möglich';
$hmenu = $extented_forum_menu.'<a class="smalfont" href="?user">User</a><b> » </b>Keine Registrierung möglich'.$extented_forum_menu_sufix;
$design = new design ( $title , $hmenu, 1);
$design->header();
$tpl = new tpl ( 'user/login' );
echo '<b> Der Administrator hat festgelegt das man sich nicht registrieren kann </b>';
$tpl->set_out('WDLINK','?'.$allgAr['smodul'],0);
$design->footer();
exit ();
}
switch ( $menu->get(2) ) {
default :
$title = $allgAr['title'].' :: Users :: Registrieren :: Step 1 von 3';
$hmenu = $extented_forum_menu.'<a class="smalfont" href="?user">User</a><b> » </b><a class="smalfont" href="?user-regist">Registrieren</a><b> » </b>Step 1 von 3'.$extented_forum_menu_sufix;
$design = new design ( $title , $hmenu, 1 );
$design->header();
$tpl = new tpl ( 'user/regist' );
$tpl->set_out('regeln', bbcode($allgAr['allg_regeln']),0);
$design->footer();
break;
case 2 :
$name = '';
$email = '';
if (!empty($_POST['nutz'])) {
$name = escape($_POST['nutz'],'string');
}
if (!empty($_POST['email'])) {
$email = escape($_POST['email'],'string');
}
$ch_name = false;
$xname = escape_nickname($name);
if (!empty($name) AND $xname == $name AND 0 == db_result(db_query("SELECT COUNT(*) FROM prefix_user WHERE name = BINARY '".$name."'"),0)) {
$ch_name = true;
}
if ( empty($name) OR empty($email) OR $name != $xname OR $ch_name == false ) {
$title = $allgAr['title'].' :: Users :: Registrieren :: Step 2 von 3';
$hmenu = $extented_forum_menu.'<a class="smalfont" href="?user">User</a><b> » </b><a class="smalfont" href="?user-regist">Registrieren</a><b> » </b>Step 2 von 3'.$extented_forum_menu_sufix;
$design = new design ( $title , $hmenu, 1);
$design->header();
if (empty($name) OR empty($email)) {
$fehler = $lang['yourdata'];
} elseif ($name != $xname) {
$fehler = $lang['wrongnickname'];
} elseif ($ch_name == false) {
$fehler = $lang['namealreadyinuse'];
}
$tpl = new tpl ( 'user/regist' );
$tpl->set('name', $name);
$tpl->set('email', $email);
$tpl->set_out('FEHLER', $fehler, 1);
if ( $allgAr['forum_regist_user_pass'] == 1 ) {
$tpl->out(2);
}
$tpl->out(3);
} else {
$pass = genkey(8);
if (!empty($_POST['pass'])) {
$pass = escape($_POST['pass'], 'string');
}
user_regist ($name,$email,$pass);
$tpl = new tpl ('user/regist' );
$title = $allgAr['title'].' :: Users :: Registrieren :: Step 3 von 3';
$hmenu = $extented_forum_menu.'<a class="smalfont" href="?user">User</a><b> » </b><a class="smalfont" href="?user-regist">Registrieren</a><b> » </b>Step 3 von 3'.$extented_forum_menu_sufix;
$design = new design ( $title , $hmenu, 1);
$design->header();
$tpl->set_out ( 'NAME', $name, 4 );
}
$design->footer();
break;
}
?>
und die gbook.php
<?php
# Copyright by: Manuel Staechele
# Support: www.ilch.de
defined ('main') or die ( 'no direct access' );
$title = $allgAr['title'].' :: Gästebuch';
$hmenu = 'Gästebuch';
$design = new design ( $title , $hmenu );
$design->header();
# time sperre in sekunden
$timeSperre = $allgAr['Gsperre'];
/*
gbook
id , name , mail , page , ip , time , txt
*/
switch($menu->get(1)) {
case 1 :
$tpl = new tpl ( 'gbook.htm' );
$ar = array (
'uname' => $_SESSION['authname'],
'SMILIES' => getsmilies(),
'ANTISPAM' => get_antispam ('gbook', 1),
'TXTL' => $allgAr['Gtxtl']
);
$tpl->set_ar_out($ar,3);
if (!isset($_SESSION['klicktime_gbook'])) { $_SESSION['klicktime_gbook'] = 0; }
break;
case 2 :
$dppk_time = time();
if (($_SESSION['klicktime_gbook'] + $timeSperre) < $dppk_time
AND isset($_POST['name'])
AND isset($_POST['txt'])
AND trim($_POST['name']) != ""
AND trim($_POST['txt']) != ""
AND chk_antispam ('gbook' )
AND strlen ($_POST['txt']) <= $allgAr['Gtxtl'] ) {
$txt = escape($_POST['txt'], 'textarea');
$name = escape($_POST['name'], 'string');
$mail = escape($_POST['mail'], 'string');
$page = escape($_POST['page'], 'string');
$frei = $allgAr['eintraege_bestaetigen'];
db_query("INSERT INTO prefix_gbook VALUES (
null,
'".$name."',
'".$mail."',
'".$page."',
'".time()."',
'".getip()."',
'".$txt."',
'".$frei."'
)
");
$_SESSION['klicktime_gbook'] = $dppk_time;
wd('index.php?gbook','<center><b>erfolgreich eingetragen,</b><br> nach einer Spamkontrolle wird der Eintrag freigeschaltet.</center>');
} else {
echo '- '.$lang['donotpostsofast'];
echo '<br />- '.sprintf($lang['gbooktexttolong'], $allgAr['Gtxtl']);
echo '<br />- '.$lang['plsfilloutallfields'];
}
break;
case 'show' :
if ($allgAr['gbook_koms_for_inserts'] == 1) {
$id = escape($menu->get(2), 'integer');
if (chk_antispam('gbookkom') AND isset($_POST['name']) AND isset($_POST['text'])) {
$name = escape($_POST['name'], 'string');
$text = escape($_POST['text'], 'string');
db_query("INSERT INTO prefix_koms (name,text,uid,cat) VALUES ('".$name."', '".$text."', ".$id.", 'GBOOK')");
}
if ($menu->getA(3) == 'd' AND is_numeric($menu->getE(3)) AND has_right(-7, 'gbook')) {
$did = escape($menu->getE(3), 'integer');
db_query("DELETE FROM prefix_koms WHERE uid = ".$id." AND cat = 'GBOOK' AND id = ".$did);
}
$r = db_fetch_assoc(db_query("SELECT time, name, mail, page, txt as text, id FROM prefix_gbook WHERE id = ".$id));
$r['datum'] = date('d.m.Y', $r['time']);
if ($r['page'] != '') {
$r['page'] = get_homepage($r['page']);
$r['page'] = ' <a href="'.$r['page'].'" target="_blank"><img src="include/images/icons/page.gif" border="0" alt="Homepage '.$lang['from'].' '.$r['name'].'"></a>';
}
if ($r['mail'] != '') {
$r['mail'] = ' <a href="mailto:'.escape_email_to_show($r['mail']).'"><img src="include/images/icons/mail.gif" border="0" alt="E-Mail '.$lang['from'].' '.$r['name'].'"></a>';
}
$tpl = new tpl ( 'gbook.htm' );
$r['ANTISPAM'] = get_antispam('gbookkom', 0);
$r['uname'] = $_SESSION['authname'];
$r['text'] = bbcode($r['text']);
$tpl->set_ar_out($r, 4);
$i = 1;
$erg = db_query("SELECT id, name, text FROM prefix_koms WHERE uid = ".$id." AND cat = 'GBOOK' ORDER BY id DESC");
$anz = db_num_rows($erg)+1;
while ($r1 = db_fetch_assoc($erg)) {
$r1['zahl'] = $anz - $i;
$r1['text'] = bbcode($r1['text']);
if (has_right(-7, 'gbook')) { $r1['text'] .= '<a href="index.php?gbook-show-'.$id.'-d'.$r1['id'].'"><img src="include/images/icons/del.gif" alt="'.$lang['delete'].'" border="0" title="'.$lang['delete'].'" /></a>'; }
$tpl->set_ar_out($r1, 5);
$i++;
}
$tpl->out(6);
}
break;
default :
$limit = $allgAr['gbook_posts_per_site']; // Limit
$page = ( $menu->getA(1) == 'p' ? escape($menu->getE(1), 'integer') : 1 );
$MPL = db_make_sites ($page , "" , $limit , "?gbook" , 'gbook' );
$anfang = ($page - 1) * $limit;
$tpl = new tpl ( 'gbook.htm' );
$ei = @db_query("SELECT COUNT(ID) FROM prefix_gbook ");
$ein = @db_result($ei,0);
$ei1 = @db_query("SELECT COUNT(ID) FROM prefix_gbook WHERE frei = 1");
$ein1 = @db_result($ei1,0);
$ei2 = @db_query("SELECT COUNT(ID) FROM prefix_gbook WHERE frei = 0");
$ein2 = @db_result($ei2,0);
$ar = array ('EINTRAGE' => $ein, 'GEINTRAGE' => $ein1, 'FEINTRAGE' => $ein2,);
$tpl->set_ar_out($ar,0);
$erg = db_query("SELECT * FROM prefix_gbook ORDER BY time DESC LIMIT ".$anfang.",".$limit) or die (db_error());
while ($row = db_fetch_object($erg)) {
$page = '';
$mail = '';
if ($row->page) {
$row->page = get_homepage($row->page);
$page = ' <a href="'.$row->page.'" target="_blank"><img src="include/images/icons/page.gif" border="0" alt="Homepage '.$lang['from'].' '.$row->name.'"></a>';
}
if ($row->mail) {
$mail = ' <a href="mailto:'.escape_email_to_show($row->mail).'"><img src="include/images/icons/mail.gif" border="0" alt="E-Mail '.$lang['from'].' '.$row->name.'"></a>';
}
$koms = '';
if ($allgAr['gbook_koms_for_inserts'] == 1) {
$koms = db_result(db_query("SELECT COUNT(*) FROM prefix_koms WHERE uid = ".$row->id." AND cat = 'GBOOK'"),0,0);
$koms = '<a href="index.php?gbook-show-'.$row->id.'">'.$koms.' '.$lang['comments'].'</a>';
}
$ar = array ( 'NAME' => $row->name,
'DATE' => date("d.m.Y",$row->time),
'koms' => $koms,
'MAIL' => $mail,
'ID' => $row->id,
'PAGE' => $page,
'TEXT' => BBCode($row->txt)
);
if ($row->frei == 0) {
$tpl->set_ar_out($ar,1);
}}
$tpl->set_out('SITELINK', $MPL, 2 );
break;
}
//-----------------------------------------------------------|
$design->footer();
?>
Anmerkung von GeCk0
bitte keine 4 postings auf einmal...
Zuletzt modifiziert von GeCk0 am 16.11.2009 - 16:07:23