3 This program is free software; you can redistribute it and/or modify
4 it under the terms of the Revised BSD License.
6 This program is distributed in the hope that it will be useful,
7 but WITHOUT ANY WARRANTY; without even the implied warranty of
8 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
9 Revised BSD License for more details.
11 Copyright 2004-2008 Cool Dude 2k - http://idb.berlios.de/
12 Copyright 2004-2008 Game Maker 2k - http://intdb.sourceforge.net/
14 $FileInfo: events.php - Last Update: 12/06/2008 SVN 201 - Author: cooldude2k $
16 $File3Name = basename($_SERVER['SCRIPT_NAME']);
17 if ($File3Name=="events.php"||$File3Name=="/events.php") {
20 if(!is_numeric($_GET['id'])) { $_GET['id'] = null; }
21 if($_GET['act']=="view"||$_GET['act']==null) {
22 $query = query("SELECT * FROM `".$Settings['sqltable']."events` WHERE `id`=%i LIMIT 1", array($_GET['id']));
23 $result=mysql_query($query);
24 $num=mysql_num_rows($result);
26 if($num==0) { redirect("location",$basedir.url_maker($exfile['index'],$Settings['file_ext'],"act=view",$Settings['qstr'],$Settings['qsep'],$prexqstr['index'],$exqstr['index'],false)); @mysql_free_result($result);
27 ob_clean(); @header("Content-Type: text/plain; charset=".$Settings['charset']);
28 gzip_page($Settings['use_gzip'],$GZipEncode['Type']); @mysql_close(); die(); }
30 <div class="NavLinks"><?php echo $ThemeSet['NavLinkIcon']; ?><a href="<?php echo url_maker($exfile['index'],$Settings['file_ext'],"act=view",$Settings['qstr'],$Settings['qsep'],$prexqstr['index'],$exqstr['index']); ?>">Board index</a><?php echo $ThemeSet['NavLinkDivider']; ?><a href="<?php echo url_maker($exfile['event'],$Settings['file_ext'],"act=view&id=".$_GET['id'],$Settings['qstr'],$Settings['qsep'],$prexqstr['event'],$exqstr['event']); ?>">Viewing Event</a></div>
31 <div class="DivNavLinks"> </div>
34 $EventID=mysql_result($result,$is,"id");
35 $EventUser=mysql_result($result,$is,"UserID");
36 $EventGuest=mysql_result($result,$is,"GuestName");
37 $EventName=mysql_result($result,$is,"EventName");
38 $EventText=mysql_result($result,$is,"EventText");
39 $EventText = preg_replace("/\<br\>/", "<br />\n", nl2br($EventText));
40 $EventStart=mysql_result($result,$is,"TimeStamp");
41 $EventEnd=mysql_result($result,$is,"TimeStampEnd");
42 $EventStart = GMTimeChange("M. j Y",$EventStart,null);
43 $EventEnd = GMTimeChange("M. j Y",$EventEnd,null);
44 $requery = query("SELECT * FROM `".$Settings['sqltable']."members` WHERE `id`=%i LIMIT 1", array($EventUser));
45 $reresult=mysql_query($requery);
46 $renum=mysql_num_rows($reresult);
48 while ($rei < $renum) {
50 $User1Name=mysql_result($reresult,$rei,"Name");
51 $User1IP=mysql_result($reresult,$rei,"IP");
52 $User1Email=mysql_result($reresult,$rei,"Email");
53 $User1Title=mysql_result($reresult,$rei,"Title");
54 $User1Joined=mysql_result($reresult,$rei,"Joined");
55 $User1Joined=GMTimeChange("M j Y",$User1Joined,$_SESSION['UserTimeZone'],0,$_SESSION['UserDST']);
56 $User1GroupID=mysql_result($reresult,$rei,"GroupID");
57 $gquery = query("SELECT * FROM `".$Settings['sqltable']."groups` WHERE `id`=%i LIMIT 1", array($User1GroupID));
58 $gresult=mysql_query($gquery);
59 $User1Group=mysql_result($gresult,0,"Name");
60 $GroupNamePrefix=mysql_result($gresult,0,"NamePrefix");
61 $GroupNameSuffix=mysql_result($gresult,0,"NameSuffix");
62 @mysql_free_result($gresult);
63 $User1Signature=mysql_result($reresult,$rei,"Signature");
64 $User1Signature = preg_replace("/\<br\>/", "<br />\n", nl2br($User1Signature));
65 $User1Avatar=mysql_result($reresult,$rei,"Avatar");
66 $User1AvatarSize=mysql_result($reresult,$rei,"AvatarSize");
67 if ($User1Avatar=="http://"||$User1Avatar==null||
68 strtolower($User1Avatar)=="noavatar") {
69 $User1Avatar=$ThemeSet['NoAvatar'];
70 $User1AvatarSize=$ThemeSet['NoAvatarSize']; }
71 $AvatarSize1=explode("x", $User1AvatarSize);
72 $AvatarSize1W=$AvatarSize1[0]; $AvatarSize1H=$AvatarSize1[1];
73 $User1Website=mysql_result($reresult,$rei,"Website");
74 $User1PostCount=mysql_result($reresult,$rei,"PostCount");
75 $User1IP=mysql_result($reresult,$rei,"IP");
76 ++$rei; } @mysql_free_result($reresult);
77 ++$is; } @mysql_free_result($result);
78 if($User1Name=="Guest") { $User1Name=$EventGuest;
79 if($User1Name==null) { $User1Name="Guest"; } }
80 if(isset($GroupNamePrefix)&&$GroupNamePrefix!=null) {
81 $User1Name = $GroupNamePrefix.$User1Name; }
82 if(isset($GroupNameSuffix)&&$GroupNameSuffix!=null) {
83 $User1Name = $User1Name.$GroupNameSuffix; }
84 $EventText = text2icons($EventText,$Settings['sqltable']);
85 $User1Signature = text2icons($User1Signature,$Settings['sqltable']);
87 <div class="TableInfo1Border">
88 <?php if($ThemeSet['TableStyle']=="div") { ?>
89 <div class="TableInfoRow1">
90 <span style="font-weight: bold; text-align: left;"><?php echo $ThemeSet['TitleIcon'] ?><a href="<?php echo url_maker($exfile['event'],$Settings['file_ext'],"act=view&id=".$_GET['id'],$Settings['qstr'],$Settings['qsep'],$prexqstr['event'],$exqstr['event']); ?>"><?php echo $EventName; ?></a></span></div>
92 <table class="TableInfo1">
93 <?php if($ThemeSet['TableStyle']=="table") { ?>
94 <tr class="TableInfoRow1">
95 <td class="TableInfoColumn1" colspan="2"><span style="font-weight: bold; text-align: left;"><?php echo $ThemeSet['TitleIcon'] ?><a href="<?php echo url_maker($exfile['event'],$Settings['file_ext'],"act=view&id=".$_GET['id'],$Settings['qstr'],$Settings['qsep'],$prexqstr['event'],$exqstr['event']); ?>"><?php echo $EventName; ?></a></span>
98 <tr class="TableInfoRow2">
99 <td class="TableInfoColumn2" style="vertical-align: middle; width: 160px;">
103 echo url_maker($exfile['member'],$Settings['file_ext'],"act=view&id=".$User1ID,$Settings['qstr'],$Settings['qsep'],$prexqstr['member'],$exqstr['member']);
104 echo "\">".$User1Name."</a>"; }
106 echo "<span>".$User1Name."</span>"; }
108 <td class="TableInfoColumn2" style="vertical-align: middle;">
109 <div style="float: left; text-align: left;">
110 <span style="font-weight: bold;">Event Start: </span><?php echo $EventStart; ?><?php echo $ThemeSet['LineDividerTopic']; ?><span style="font-weight: bold;">Event End: </span><?php echo $EventEnd; ?>
112 <div style="text-align: right;"> </div>
115 <tr class="TableInfoRow3">
116 <td class="TableInfoColumn3" style="vertical-align: top; width: 180px;">
117 <?php /* Avatar Table Thanks For SeanJ's Help at http://seanj.jcink.com/ */ ?>
118 <table class="AvatarTable" style="width: 100px; height: 100px; text-align: center;">
119 <tr class="AvatarRow" style="width: 100%; height: 100%;">
120 <td class="AvatarRow" style="width: 100%; height: 100%; text-align: center; vertical-align: middle;">
121 <img src="<?php echo $User1Avatar; ?>" alt="<?php echo $User1Name; ?>'s Avatar" title="<?php echo $User1Name; ?>'s Avatar" style="border: 0px; width: <?php echo $AvatarSize1W; ?>px; height: <?php echo $AvatarSize1H; ?>px;" />
125 <?php echo $User1Title; ?><br />
126 Group: <?php echo $User1Group; ?><br />
128 if($User1ID!="-1") { echo $User1ID; }
129 if($User1ID=="-1") { echo 0; }
131 Posts: <?php echo $User1PostCount; ?><br />
132 Joined: <?php echo $User1Joined; ?><br />
133 <?php if($GroupInfo['HasAdminCP']=="yes") { ?>
134 User IP: <a onclick="window.open(this.href);return false;" href="http://ip-lookup.net/?<?php echo $User1IP; ?>">
135 <?php echo $User1IP; ?></a><br />
138 <td class="TableInfoColumn3" style="vertical-align: middle;">
139 <div class="eventpost"><?php echo $EventText; ?></div>
140 <?php if(isset($User1Signature)) { ?> <br />--------------------
141 <div class="signature"><?php echo $User1Signature; ?></div><?php } ?>
144 <tr class="TableInfoRow4">
145 <td class="TableInfoColumn4" colspan="2">
146 <span style="text-align: left;"> <a href="<?php
148 echo url_maker($exfile['member'],$Settings['file_ext'],"act=view&id=".$User1ID,$Settings['qstr'],$Settings['qsep'],$prexqstr['member'],$exqstr['member']); }
149 if($User1ID=="-1"&&isset($ThemeSet['Profile'])&&$ThemeSet['Profile']!=null) {
150 echo url_maker($exfile['index'],$Settings['file_ext'],"act=view",$Settings['qstr'],$Settings['qsep'],$prexqstr['index'],$exqstr['index']); }
151 ?>"><?php echo $ThemeSet['Profile']; ?></a>
152 <?php if(isset($ThemeSet['WWW'])&&$ThemeSet['WWW']!=null) {
153 echo $ThemeSet['LineDividerTopic']; ?><a href="<?php echo $User1Website; ?>" onclick="window.open(this.href);return false;"><?php echo $ThemeSet['WWW']; ?></a><?php } echo $ThemeSet['LineDividerTopic']; ?><a href="<?php
154 if($User1ID!="-1"&&isset($ThemeSet['Profile'])&&$ThemeSet['Profile']!=null) {
155 echo url_maker($exfile['messenger'],$Settings['file_ext'],"act=create&id=".$User1ID,$Settings['qstr'],$Settings['qsep'],$prexqstr['messenger'],$exqstr['messenger']); }
156 if($User1ID=="-1"&&isset($ThemeSet['PM'])&&$ThemeSet['PM']!=null) {
157 echo url_maker($exfile['index'],$Settings['file_ext'],"act=view",$Settings['qstr'],$Settings['qsep'],$prexqstr['index'],$exqstr['index']); }
158 ?>"><?php echo $ThemeSet['PM']; ?></a></span>
162 <?php } if($_GET['act']=="create") {
163 if($GroupInfo['CanAddEvents']=="no") { redirect("location",$basedir.url_maker($exfile['index'],$Settings['file_ext'],"act=view",$Settings['qstr'],$Settings['qsep'],$prexqstr['index'],$exqstr['index'],false));
164 ob_clean(); @header("Content-Type: text/plain; charset=".$Settings['charset']);
165 gzip_page($Settings['use_gzip'],$GZipEncode['Type']); @mysql_close(); die(); }
167 <div class="NavLinks"><?php echo $ThemeSet['NavLinkIcon']; ?><a href="<?php echo url_maker($exfile['index'],$Settings['file_ext'],"act=view",$Settings['qstr'],$Settings['qsep'],$prexqstr['index'],$exqstr['index']); ?>">Board index</a><?php echo $ThemeSet['NavLinkDivider']; ?><a href="<?php echo url_maker($exfile['event'],$Settings['file_ext'],"act=create",$Settings['qstr'],$Settings['qsep'],$prexqstr['event'],$exqstr['event']); ?>">Making a Event</a></div>
168 <div class="DivNavLinks"> </div>
169 <div class="Table1Border">
170 <?php if($ThemeSet['TableStyle']=="div") { ?>
171 <div class="TableRow1">
172 <span style="text-align: left;">
173 <?php echo $ThemeSet['TitleIcon'] ?><a href="<?php echo url_maker($exfile['calendar'],$Settings['file_ext'],"act=view",$Settings['qstr'],$Settings['qsep'],$prexqstr['calendar'],$exqstr['calendar']); ?>">Making a Event</a></span></div>
175 <table class="Table1" id="MakeEvent">
176 <?php if($ThemeSet['TableStyle']=="table") { ?>
177 <tr class="TableRow1" id="EventStart">
178 <td class="TableColumn1" colspan="2"><span style="text-align: left;">
179 <?php echo $ThemeSet['TitleIcon'] ?><a href="<?php echo url_maker($exfile['calendar'],$Settings['file_ext'],"act=view",$Settings['qstr'],$Settings['qsep'],$prexqstr['calendar'],$exqstr['calendar']); ?>">Making a Event</a></span>
182 <tr id="MakeEventRow" class="TableRow2">
183 <td class="TableColumn2" colspan="2" style="width: 100%;">Making a Event</td>
185 <tr class="TableRow3" id="MkEvent">
186 <td class="TableColumn3" style="width: 15%; vertical-align: middle; text-align: center;">
187 <div style="width: 100%; height: 160px; overflow: auto;">
188 <table style="width: 100%; text-align: center;"><?php
189 $renee_query=query("SELECT * FROM `".$Settings['sqltable']."smileys` WHERE `Show`='yes'", array(null));
190 $renee_result=mysql_query($renee_query);
191 $renee_num=mysql_num_rows($renee_result);
192 $renee_s=0; $SmileRow=0; $SmileCRow=0;
193 while ($renee_s < $renee_num) { ++$SmileRow;
194 $FileName=mysql_result($renee_result,$renee_s,"FileName");
195 $SmileName=mysql_result($renee_result,$renee_s,"SmileName");
196 $SmileText=mysql_result($renee_result,$renee_s,"SmileText");
197 $SmileDirectory=mysql_result($renee_result,$renee_s,"Directory");
198 $ShowSmile=mysql_result($renee_result,$renee_s,"Show");
199 $ReplaceType=mysql_result($renee_result,$renee_s,"ReplaceCI");
200 if($SmileRow==1) { ?><tr>
201 <?php } if($SmileRow<5) { ++$SmileCRow; ?>
202 <td> <img src="<?php echo $SmileDirectory."".$FileName; ?>" style="vertical-align: middle; border: 0px; cursor: pointer;" title="<?php echo $SmileName; ?>" alt="<?php echo $SmileName; ?>" onclick="addsmiley('EventText',' <?php echo htmlspecialchars($SmileText, ENT_QUOTES, $Settings['charset']); ?> ')" /> </td>
203 <?php } if($SmileRow==5) { ++$SmileCRow; ?>
204 <td> <img src="<?php echo $SmileDirectory."".$FileName; ?>" style="vertical-align: middle; border: 0px; cursor: pointer;" title="<?php echo $SmileName; ?>" alt="<?php echo $SmileName; ?>" onclick="addsmiley('EventText',' <?php echo htmlspecialchars($SmileText, ENT_QUOTES, $Settings['charset']); ?> ')" /> </td></tr>
205 <?php $SmileCRow=0; $SmileRow=0; }
207 if($SmileCRow<5&&$SmileCRow!=0) {
208 $SmileCRowL = 5 - $SmileCRow;
209 echo "<td colspan=\"".$SmileCRowL."\"> </td></tr>"; }
211 @mysql_free_result($renee_result);
213 <td class="TableColumn3" style="width: 85%;">
214 <form style="display: inline;" method="post" id="MkEventForm" action="<?php echo url_maker($exfile['event'],$Settings['file_ext'],"act=makeevent",$Settings['qstr'],$Settings['qsep'],$prexqstr['event'],$exqstr['event']); ?>">
215 <table style="text-align: left;">
216 <tr style="text-align: left;">
217 <td style="width: 50%;"><label class="TextBoxLabel" for="EventName">Insert Event Name:</label></td>
218 <td style="width: 50%;"><input maxlength="30" type="text" name="EventName" class="TextBox" id="EventName" size="20" /></td>
219 </tr><?php if($_SESSION['UserGroup']==$Settings['GuestGroup']) { ?><tr style="text-align: left;">
220 <td style="width: 50%;"><label class="TextBoxLabel" for="GuestName">Insert Guest Name:</label></td>
221 <?php if(!isset($_SESSION['GuestName'])) { ?>
222 <td style="width: 50%;"><input maxlength="25" type="text" name="GuestName" class="TextBox" id="GuestName" size="20" /></td>
223 <?php } if(isset($_SESSION['GuestName'])) { ?>
224 <td style="width: 50%;"><input maxlength="25" type="text" name="GuestName" class="TextBox" id="GuestName" size="20" value="<?php echo $_SESSION['GuestName']; ?>" /></td>
225 <?php } ?></tr><?php } ?><tr style="text-align: left;">
226 <td style="width: 50%;"><label class="TextBoxLabel" for="EventStart">Insert Event Start:</label></td>
227 <td style="width: 50%;"><input maxlength="10" type="text" name="EventStart" class="TextBox" id="EventStart" size="20" value="MM/DD/YYYY" /></td>
228 </tr><tr style="text-align: left;">
229 <td style="width: 50%;"><label class="TextBoxLabel" for="EventEnd">Insert Event End:</label></td>
230 <td style="width: 50%;"><input maxlength="10" type="text" name="EventEnd" class="TextBox" id="EventEnd" size="20" value="MM/DD/YYYY" /></td>
233 <table style="text-align: left;">
234 <tr style="text-align: left;">
235 <td style="width: 100%;">
236 <label class="TextBoxLabel" for="EventText">Insert Event Text:</label><br />
237 <textarea rows="10" name="EventText" id="EventText" cols="40" class="TextBox"></textarea><br />
238 <?php if($_SESSION['UserGroup']==$Settings['GuestGroup']&&$Settings['captcha_guest']=="on") { ?>
239 <label class="TextBoxLabel" for="signcode"><img src="<?php echo url_maker($exfile['index'],$Settings['file_ext'],"act=MkCaptcha",$Settings['qstr'],$Settings['qsep'],$prexqstr['index'],$exqstr['index']); ?>" alt="CAPTCHA Code" title="CAPTCHA Code" /></label><br />
240 <input maxlength="25" type="text" class="TextBox" name="signcode" size="20" id="signcode" value="Enter SignCode" /><br />
242 <input type="hidden" name="act" value="makeevents" style="display: none;" />
243 <?php if($_SESSION['UserGroup']!=$Settings['GuestGroup']) { ?>
244 <input type="hidden" name="GuestName" value="null" style="display: none;" />
246 <input type="submit" class="Button" value="Make Event" name="make_event" />
247 <input type="reset" value="Reset Form" class="Button" name="Reset_Form" />
250 <tr id="MkEventEnd" class="TableRow4">
251 <td class="TableColumn4" colspan="2"> </td>
254 <?php } if($_GET['act']=="makeevent"&&$_POST['act']=="makeevents") {
255 if($GroupInfo['CanAddEvents']=="no") { redirect("location",$basedir.url_maker($exfile['index'],$Settings['file_ext'],"act=view",$Settings['qstr'],$Settings['qsep'],$prexqstr['index'],$exqstr['index'],false));
256 ob_clean(); @header("Content-Type: text/plain; charset=".$Settings['charset']);
257 gzip_page($Settings['use_gzip'],$GZipEncode['Type']); @mysql_close(); die(); }
258 $MyUserID = $_SESSION['UserID']; if($MyUserID=="0"||$MyUserID==null) { $MyUserID = -1; }
259 $REFERERurl = parse_url($_SERVER['HTTP_REFERER']);
260 $URL['REFERER'] = $REFERERurl['host'];
261 $URL['HOST'] = $_SERVER["SERVER_NAME"];
263 if(!isset($_POST['EventName'])) { $_POST['EventName'] = null; }
264 if(!isset($_POST['EventStart'])) { $_POST['EventStart'] = null; }
265 if(!isset($_POST['EventEnd'])) { $_POST['EventEnd'] = null; }
266 if(!isset($_POST['EventText'])) { $_POST['EventText'] = null; }
267 if(!isset($_POST['GuestName'])) { $_POST['GuestName'] = null; }
268 $TimeIn = explode("/",$_POST['EventStart']);
269 $TimeOut = explode("/",$_POST['EventEnd']);
270 if($_SESSION['UserGroup']==$Settings['GuestGroup']&&
271 $Settings['captcha_guest']=="on") {
272 require($SettDir['inc']."captcha.php"); }
274 <div class="Table1Border">
275 <?php if($ThemeSet['TableStyle']=="div") { ?>
276 <div class="TableRow1">
277 <span style="text-align: left;">
278 <?php echo $ThemeSet['TitleIcon'] ?><a href="<?php echo url_maker($exfile['calendar'],$Settings['file_ext'],"act=view",$Settings['qstr'],$Settings['qsep'],$prexqstr['calendar'],$exqstr['calendar']); ?>">Making a Event</a></span></div>
280 <table class="Table1">
281 <?php if($ThemeSet['TableStyle']=="table") { ?>
282 <tr class="TableRow1">
283 <td class="TableColumn1"><span style="text-align: left;">
284 <?php echo $ThemeSet['TitleIcon'] ?><a href="<?php echo url_maker($exfile['calendar'],$Settings['file_ext'],"act=view",$Settings['qstr'],$Settings['qsep'],$prexqstr['calendar'],$exqstr['calendar']); ?>">Making a Event</a></span>
287 <tr class="TableRow2">
288 <th class="TableColumn2" style="width: 100%; text-align: left;"> Make Event Message: </th>
290 <tr class="TableRow3">
291 <td class="TableColumn3">
292 <table style="width: 100%; height: 25%; text-align: center;">
293 <?php if (pre_strlen($_POST['EventName'])>="30") { $Error="Yes"; ?>
295 <td><span class="TableMessage">
296 <br />Your Event Name is too big.<br />
299 <?php } if($_SESSION['UserGroup']==$Settings['GuestGroup']&&
300 $Settings['captcha_guest']=="on") {
301 if (PhpCaptcha::Validate($_POST['signcode'])) {
302 //echo 'Valid code entered';
303 } else { $Error="Yes"; ?>
305 <td><span class="TableMessage">
306 <br />Invalid code entered<br />
309 <?php } } if (pre_strlen($TimeIn[0])<"2") { $Error="Yes"; ?>
311 <td><span class="TableMessage">
312 <br />Event Start Month is too small.<br />
315 <?php } if (pre_strlen($TimeIn[0])>"2") { $Error="Yes"; ?>
317 <td><span class="TableMessage">
318 <br />Event Start Month is too big.<br />
321 <?php } if (pre_strlen($TimeIn[1])<"2") { $Error="Yes"; ?>
323 <td><span class="TableMessage">
324 <br />Event Start Day is too small.<br />
327 <?php } if (pre_strlen($TimeIn[1])>"2") { $Error="Yes"; ?>
329 <td><span class="TableMessage">
330 <br />Event Start Day is too big.<br />
333 <?php } if (pre_strlen($TimeIn[2])<"4") { $Error="Yes"; ?>
335 <td><span class="TableMessage">
336 <br />Event Start Year is too small.<br />
339 <?php } if (pre_strlen($TimeIn[2])>"4") { $Error="Yes"; ?>
341 <td><span class="TableMessage">
342 <br />Event Start Year is too big.<br />
345 <?php } if (pre_strlen($TimeOut[0])<"2") { $Error="Yes"; ?>
347 <td><span class="TableMessage">
348 <br />Event End Month is too small.<br />
351 <?php } if (pre_strlen($TimeOut[0])>"2") { $Error="Yes"; ?>
353 <td><span class="TableMessage">
354 <br />Event End Month is too big.<br />
357 <?php } if (pre_strlen($TimeOut[1])<"2") { $Error="Yes"; ?>
359 <td><span class="TableMessage">
360 <br />Event End Day is too small.<br />
363 <?php } if (pre_strlen($TimeOut[1])>"2") { $Error="Yes"; ?>
365 <td><span class="TableMessage">
366 <br />Event End Day is too big.<br />
369 <?php } if (pre_strlen($TimeOut[2])<"4") { $Error="Yes"; ?>
371 <td><span class="TableMessage">
372 <br />Event End Year is too small.<br />
375 <?php } if (pre_strlen($TimeOut[2])>"4") { $Error="Yes"; ?>
377 <td><span class="TableMessage">
378 <br />Event End Year is too big.<br />
381 <?php } if (checkdate($TimeIn[0],$TimeIn[1],$TimeIn[2])===false) { $Error="Yes"; ?>
383 <td><span class="TableMessage">
384 <br />Sorry the event start date is not valid.<br />
387 <?php } if (checkdate($TimeOut[0],$TimeOut[1],$TimeOut[2])===false) { $Error="Yes"; ?>
389 <td><span class="TableMessage">
390 <br />Sorry the event end date is not valid.<br />
393 <?php } if($_SESSION['UserGroup']==$Settings['GuestGroup']&&
394 pre_strlen($_POST['GuestName'])>="25") { $Error="Yes"; ?>
396 <td><span class="TableMessage">
397 <br />You Guest Name is too big.<br />
400 <?php } if ($Settings['TestReferer']===true) {
401 if ($URL['HOST']!=$URL['REFERER']) { $Error="Yes"; ?>
403 <td><span class="TableMessage">
404 <br />Sorry the referering url dose not match our host name.<br />
408 $_POST['EventName'] = stripcslashes(htmlspecialchars($_POST['EventName'], ENT_QUOTES, $Settings['charset']));
409 //$_POST['EventName'] = preg_replace("/&#(x[a-f0-9]+|[0-9]+);/i", "&#$1;", $_POST['EventName']);
410 $_POST['EventName'] = @remove_spaces($_POST['EventName']);
411 $_POST['GuestName'] = stripcslashes(htmlspecialchars($_POST['GuestName'], ENT_QUOTES, $Settings['charset']));
412 //$_POST['GuestName'] = preg_replace("/&#(x[a-f0-9]+|[0-9]+);/i", "&#$1;", $_POST['GuestName']);
413 $_POST['GuestName'] = @remove_spaces($_POST['GuestName']);
414 $_POST['EventText'] = stripcslashes(htmlspecialchars($_POST['EventText'], ENT_QUOTES, $Settings['charset']));
415 //$_POST['EventText'] = preg_replace("/&#(x[a-f0-9]+|[0-9]+);/i", "&#$1;", $_POST['EventText']);
416 $_POST['EventText'] = remove_bad_entities($_POST['EventText']);
417 //$_POST['EventText'] = @remove_spaces($_POST['EventText']);
418 if($_SESSION['UserGroup']==$Settings['GuestGroup']) {
419 if(isset($_POST['GuestName'])&&$_POST['GuestName']!=null) {
420 @setcookie("GuestName", $_POST['GuestName'], time() + (7 * 86400), $cbasedir);
421 $_SESSION['GuestName']=$_POST['GuestName']; } }
422 /* <_< iWordFilter >_>
423 by Kazuki Przyborowski - Cool Dude 2k */
424 $katarzynaqy=query("SELECT * FROM `".$Settings['sqltable']."wordfilter`", array(null));
425 $katarzynart=mysql_query($katarzynaqy);
426 $katarzynanm=mysql_num_rows($katarzynart);
428 while ($katarzynas < $katarzynanm) {
429 $Filter=mysql_result($katarzynart,$katarzynas,"Filter");
430 $Replace=mysql_result($katarzynart,$katarzynas,"Replace");
431 $CaseInsensitive=mysql_result($katarzynart,$katarzynas,"CaseInsensitive");
432 if($CaseInsensitive=="on") { $CaseInsensitive = "yes"; }
433 if($CaseInsensitive=="off") { $CaseInsensitive = "no"; }
434 if($CaseInsensitive!="yes"||$CaseInsensitive!="no") { $CaseInsensitive = "no"; }
435 $WholeWord=mysql_result($katarzynart,$katarzynas,"WholeWord");
436 if($WholeWord=="on") { $WholeWord = "yes"; }
437 if($WholeWord=="off") { $WholeWord = "no"; }
438 if($WholeWord!="yes"&&$WholeWord!="no") { $WholeWord = "no"; }
439 $Filter = preg_quote($Filter, "/");
440 if($CaseInsensitive!="yes"&&$WholeWord=="yes") {
441 $_POST['EventText'] = preg_replace("/\b(".$Filter.")\b/", $Replace, $_POST['EventText']); }
442 if($CaseInsensitive=="yes"&&$WholeWord=="yes") {
443 $_POST['EventText'] = preg_replace("/\b(".$Filter.")\b/i", $Replace, $_POST['EventText']); }
444 if($CaseInsensitive!="yes"&&$WholeWord!="yes") {
445 $_POST['EventText'] = preg_replace("/".$Filter."/", $Replace, $_POST['EventText']); }
446 if($CaseInsensitive=="yes"&&$WholeWord!="yes") {
447 $_POST['EventText'] = preg_replace("/".$Filter."/i", $Replace, $_POST['EventText']); }
448 ++$katarzynas; } @mysql_free_result($katarzynart);
449 $lonewolfqy=query("SELECT * FROM `".$Settings['sqltable']."restrictedwords` WHERE `RestrictedEventName`='yes' or `RestrictedUserName`='yes'", array(null));
450 $lonewolfrt=mysql_query($lonewolfqy);
451 $lonewolfnm=mysql_num_rows($lonewolfrt);
452 $lonewolfs=0; $RMatches = null; $RGMatches = null;
453 while ($lonewolfs < $lonewolfnm) {
454 $RWord=mysql_result($lonewolfrt,$lonewolfs,"Word");
455 $RCaseInsensitive=mysql_result($lonewolfrt,$lonewolfs,"CaseInsensitive");
456 if($RCaseInsensitive=="on") { $RCaseInsensitive = "yes"; }
457 if($RCaseInsensitive=="off") { $RCaseInsensitive = "no"; }
458 if($RCaseInsensitive!="yes"||$RCaseInsensitive!="no") { $RCaseInsensitive = "no"; }
459 $RWholeWord=mysql_result($lonewolfrt,$lonewolfs,"WholeWord");
460 if($RWholeWord=="on") { $RWholeWord = "yes"; }
461 if($RWholeWord=="off") { $RWholeWord = "no"; }
462 if($RWholeWord!="yes"||$RWholeWord!="no") { $RWholeWord = "no"; }
463 $RestrictedEventName=mysql_result($lonewolfrt,$lonewolfs,"RestrictedEventName");
464 if($RestrictedEventName=="on") { $RestrictedEventName = "yes"; }
465 if($RestrictedEventName=="off") { $RestrictedEventName = "no"; }
466 if($RestrictedEventName!="yes"||$RestrictedEventName!="no") { $RestrictedEventName = "no"; }
467 $RestrictedUserName=mysql_result($lonewolfrt,$lonewolfs,"RestrictedUserName");
468 if($RestrictedUserName=="on") { $RestrictedUserName = "yes"; }
469 if($RestrictedUserName=="off") { $RestrictedUserName = "no"; }
470 if($RestrictedUserName!="yes"||$RestrictedUserName!="no") { $RestrictedUserName = "no"; }
471 $RWord = preg_quote($RWord, "/");
472 if($RCaseInsensitive!="yes"&&$RWholeWord=="yes") {
473 if($RestrictedEventName=="yes") {
474 $RMatches = preg_match("/\b(".$RWord.")\b/", $_POST['EventName']);
475 if($RMatches==true) { break 1; } }
476 if($RestrictedUserName=="yes") {
477 $RGMatches = preg_match("/\b(".$RWord.")\b/", $_POST['GuestName']);
478 if($RGMatches==true) { break 1; } } }
479 if($RCaseInsensitive=="yes"&&$RWholeWord=="yes") {
480 if($RestrictedEventName=="yes") {
481 $RMatches = preg_match("/\b(".$RWord.")\b/i", $_POST['EventName']);
482 if($RMatches==true) { break 1; } }
483 if($RestrictedUserName=="yes") {
484 $RGMatches = preg_match("/\b(".$RWord.")\b/i", $_POST['GuestName']);
485 if($RGMatches==true) { break 1; } } }
486 if($RCaseInsensitive!="yes"&&$RWholeWord!="yes") {
487 if($RestrictedEventName=="yes") {
488 $RMatches = preg_match("/".$RWord."/", $_POST['EventName']);
489 if($RMatches==true) { break 1; } }
490 if($RestrictedUserName=="yes") {
491 $RGMatches = preg_match("/".$RWord."/", $_POST['GuestName']);
492 if($RGMatches==true) { break 1; } } }
493 if($RCaseInsensitive=="yes"&&$RWholeWord!="yes") {
494 if($RestrictedEventName=="yes") {
495 $RMatches = preg_match("/".$RWord."/i", $_POST['EventName']);
496 if($RMatches==true) { break 1; } }
497 if($RestrictedUserName=="yes") {
498 $RGMatches = preg_match("/".$RWord."/i", $_POST['GuestName']);
499 if($RGMatches==true) { break 1; } } }
500 ++$lonewolfs; } @mysql_free_result($lonewolfrt);
501 if ($_POST['EventName']==null) { $Error="Yes"; ?>
503 <td><span class="TableMessage">
504 <br />You need to enter a Event Name.<br />
507 <?php } if ($_POST['EventText']==null) { $Error="Yes"; ?>
509 <td><span class="TableMessage">
510 <br />You need to enter a Event Text.<br />
513 <?php } if ($_POST['EventStart']==null) { $Error="Yes"; ?>
515 <td><span class="TableMessage">
516 <br />You need to enter date for event to start in MM/DD/YYYY format.<br />
519 <?php } if ($_POST['EventEnd']==null) { $Error="Yes"; ?>
521 <td><span class="TableMessage">
522 <br />You need to enter date for event to end in MM/DD/YYYY format.<br />
525 <?php } if (count($TimeIn)!="3") { $Error="Yes"; ?>
527 <td><span class="TableMessage">
528 <br />You need to enter valid date for event to start in MM/DD/YYYY format.<br />
531 <?php } if (count($TimeOut)!="3") { $Error="Yes"; ?>
533 <td><span class="TableMessage">
534 <br />You need to enter valid date for event to end in MM/DD/YYYY format.<br />
537 <?php } if (!is_numeric($TimeIn[0])||!is_numeric($TimeIn[1])||!is_numeric($TimeIn[2])) { $Error="Yes"; ?>
539 <td><span class="TableMessage">
540 <br />You need to enter valid date for event to start in MM/DD/YYYY format.<br />
543 <?php } if (!is_numeric($TimeOut[0])||!is_numeric($TimeOut[1])||!is_numeric($TimeOut[2])) { $Error="Yes"; ?>
545 <td><span class="TableMessage">
546 <br />You need to enter valid date for event to end in MM/DD/YYYY format.<br />
549 <?php } if (!isset($TimeIn[0])||!isset($TimeIn[1])||!isset($TimeIn[2])) { $Error="Yes"; ?>
551 <td><span class="TableMessage">
552 <br />You need to enter valid date for event to start in MM/DD/YYYY format.<br />
555 <?php } if (!isset($TimeOut[0])||!isset($TimeOut[1])||!isset($TimeOut[2])) { $Error="Yes"; ?>
557 <td><span class="TableMessage">
558 <br />You need to enter valid date for event to end in MM/DD/YYYY format.<br />
561 <?php } if($_SESSION['UserGroup']==$Settings['GuestGroup']&&
562 $_POST['GuestName']==null) { $Error="Yes"; ?>
564 <td><span class="TableMessage">
565 <br />You need to enter a Guest Name.<br />
568 <?php } if($_SESSION['UserGroup']==$Settings['GuestGroup']&&
569 $RGMatches==true) { $Error="Yes"; ?>
571 <td><span class="TableMessage">
572 <br />This Guest Name is restricted to use.<br />
575 <?php } if($GroupInfo['CanAddEvents']=="no") { $Error="Yes"; ?>
577 <td><span class="TableMessage">
578 <br />You do not have permission to make a event here.<br />
581 <?php } if($RMatches==true) { $Error="Yes"; ?>
583 <td><span class="TableMessage">
584 <br />This User Name is restricted to use.<br />
587 <?php } if ($Error=="Yes") {
588 @redirect("refresh",$basedir.url_maker($exfile['index'],$Settings['file_ext'],"act=view",$Settings['qstr'],$Settings['qsep'],$prexqstr['index'],$exqstr['index'],false),"4"); ?>
590 <td><span class="TableMessage">
591 <br />Click <a href="<?php echo url_maker($exfile['index'],$Settings['file_ext'],"act=view",$Settings['qstr'],$Settings['qsep'],$prexqstr['index'],$exqstr['index']); ?>">here</a> to goto index page.<br />
594 <?php } if ($Error!="Yes") {
595 $TimeSIn = mktime(0,0,0,$TimeIn[0],$TimeIn[1],$TimeIn[2]);
596 $TimeSOut = mktime(23,59,59,$TimeOut[0],$TimeOut[1],$TimeOut[2]);
597 $EventMonth=GMTimeChange("m",$TimeSIn,0,0,"off");
598 $EventMonthEnd=GMTimeChange("m",$TimeSOut,0,0,"off");
599 $EventDay=GMTimeChange("d",$TimeSIn,0,0,"off");
600 $EventDayEnd=GMTimeChange("d",$TimeSOut,0,0,"off");
601 $EventYear=GMTimeChange("Y",$TimeSIn,0,0,"off");
602 $EventYearEnd=GMTimeChange("Y",$TimeSOut,0,0,"off");
603 $eventid = getnextid($Settings['sqltable'],"events");
605 if($_SESSION['UserGroup']==$Settings['GuestGroup']) { $User1Name = $_POST['GuestName']; }
606 if($_SESSION['UserGroup']!=$Settings['GuestGroup']) { $User1Name = $_SESSION['MemberName']; }
607 $query = query("INSERT INTO ".$Settings['sqltable']."events VALUES (%i, %i, '%s', '%s', '%s', %i, %i, %i, %i, %i, %i, %i, %i)", array($eventid,$User1ID,$User1Name,$_POST['EventName'],$_POST['EventText'],$TimeSIn,$TimeSOut,$EventMonth,$EventMonthEnd,$EventDay,$EventDayEnd,$EventYear,$EventYearEnd));
609 @redirect("refresh",$basedir.url_maker($exfile['event'],$Settings['file_ext'],"act=event&id=".$eventid,$Settings['qstr'],$Settings['qsep'],$prexqstr['event'],$exqstr['event'],FALSE),"3");
611 <td><span class="TableMessage"><br />
612 Event <?php echo $_POST['EventName']; ?> was started.<br />
613 Click <a href="<?php echo url_maker($exfile['event'],$Settings['file_ext'],"act=event&id=".$eventid,$Settings['qstr'],$Settings['qsep'],$prexqstr['event'],$exqstr['event']); ?>">here</a> to continue to event.<br />
619 <tr class="TableRow4">
620 <td class="TableColumn4"> </td>
624 <div class="DivEvents"> </div>