$value) { if(strstr($key,"delete-openid-")) { /* found and openid to delete */ $DelOpenID = substr(str_replace("_",".",$key),14); DB_DetachOpenID($DelOpenID, $myid); $changed_openid = 1; } } if(myisset('vacation_start','vacation_stop','vacation_comment') && ($_REQUEST['vacation_start']!='' || $_REQUEST['vacation_stop']!='') ) { $vacation_start = $_REQUEST['vacation_start'].' 00:00:00'; $vacation_stop = $_REQUEST['vacation_stop'].' 23:59:59'; $vacation_comment = $_REQUEST['vacation_comment']; /* check if everything is valid */ if(!strtotime($vacation_start)) $changed_vacation = -1; if(!strtotime($vacation_stop)) $changed_vacation = -1; /* test if we should delete the entry */ if($vacation_start == '- 00:00:00') { $result = DB_query("DELETE FROM User_Prefs". " WHERE user_id='$myid' AND pref_key='vacation start'" ); $result = DB_query("DELETE FROM User_Prefs". " WHERE user_id='$myid' AND pref_key='vacation stop'" ); $result = DB_query("DELETE FROM User_Prefs". " WHERE user_id='$myid' AND pref_key='vacation comment'" ); $changed_vacation = 1; } /* change in database if format is ok */ else if($changed_vacation>=0) { /* only change if different from current value */ if($vacation_start!=$PREF['vacation_start']) { $result = DB_query("SELECT * from User_Prefs". " WHERE user_id='$myid' AND pref_key='vacation start'" ); if( DB_fetch_array($result)) $result = DB_query("UPDATE User_Prefs SET value=".DB_quote_smart($vacation_start). " WHERE user_id='$myid' AND pref_key='vacation start'" ); else $result = DB_query("INSERT INTO User_Prefs VALUES(NULL,'$myid','vacation start',". DB_quote_smart($vacation_start).")"); $changed_vacation = 1; } /* same for the stop date */ if($vacation_stop!=$PREF['vacation_stop']) { $result = DB_query("SELECT * from User_Prefs". " WHERE user_id='$myid' AND pref_key='vacation stop'" ); if( DB_fetch_array($result)) $result = DB_query("UPDATE User_Prefs SET value=".DB_quote_smart($vacation_stop). " WHERE user_id='$myid' AND pref_key='vacation stop'" ); else $result = DB_query("INSERT INTO User_Prefs VALUES(NULL,'$myid','vacation stop',". DB_quote_smart($vacation_stop).")"); $changed_vacation = 1; } /* does the user want to add a comment? */ if($vacation_comment!=$PREF['vacation_comment']) { $result = DB_query("SELECT * from User_Prefs". " WHERE user_id='$myid' AND pref_key='vacation comment'" ); if( DB_fetch_array($result)) $result = DB_query("UPDATE User_Prefs SET value=".DB_quote_smart($vacation_comment). " WHERE user_id='$myid' AND pref_key='vacation comment'" ); else $result = DB_query("INSERT INTO User_Prefs VALUES(NULL,'$myid','vacation comment',". DB_quote_smart($vacation_comment).")"); $changed_vacation = 1; } } } if(myisset("timezone")) { $newtimezone = $_REQUEST['timezone']; if($newtimezone != $timezone) { DB_query("UPDATE User SET timezone=".DB_quote_smart($newtimezone). " WHERE id=".DB_quote_smart($myid)); $changed_timezone = 1; } } if(myisset("cards")) { $cards=$_REQUEST['cards']; if($cards != $PREF['cardset']) { /* check if we already have an entry for the user, if so change it, if not create new one */ $result = DB_query("SELECT * from User_Prefs". " WHERE user_id='$myid' AND pref_key='cardset'" ); if( DB_fetch_array($result)) $result = DB_query("UPDATE User_Prefs SET value=".DB_quote_smart($cards). " WHERE user_id='$myid' AND pref_key='cardset'" ); else $result = DB_query("INSERT INTO User_Prefs VALUES(NULL,'$myid','cardset',". DB_quote_smart($cards).")"); $changed_cards = 1; } } if(myisset("notify")) { $notify=$_REQUEST['notify']; if($notify != $PREF['email']) { /* check if we already have an entry for the user, if so change it, if not create new one */ $result = DB_query("SELECT * from User_Prefs". " WHERE user_id='$myid' AND pref_key='email'" ); if( DB_fetch_array($result)) $result = DB_query("UPDATE User_Prefs SET value=".DB_quote_smart($notify). " WHERE user_id='$myid' AND pref_key='email'" ); else $result = DB_query("INSERT INTO User_Prefs VALUES(NULL,'$myid','email',". DB_quote_smart($notify).")"); $changed_notify=1; } } if(myisset("autosetup")) { $autosetup = $_REQUEST['autosetup']; if($autosetup != $PREF['autosetup']) { /* check if we already have an entry for the user, if so change it, if not create new one */ $result = DB_query("SELECT * from User_Prefs". " WHERE user_id='$myid' AND pref_key='autosetup'" ); if( DB_fetch_array($result)) $result = DB_query("UPDATE User_Prefs SET value=".DB_quote_smart($autosetup). " WHERE user_id='$myid' AND pref_key='autosetup'" ); else $result = DB_query("INSERT INTO User_Prefs VALUES(NULL,'$myid','autosetup',". DB_quote_smart($autosetup).")"); $changed_autosetup=1; } } if(myisset("sorting")) { $sorting = $_REQUEST['sorting']; if($sorting != $PREF['sorting']) { /* check if we already have an entry for the user, if so change it, if not create new one */ $result = DB_query("SELECT * from User_Prefs". " WHERE user_id='$myid' AND pref_key='sorting'" ); if( DB_fetch_array($result)) $result = DB_query("UPDATE User_Prefs SET value=".DB_quote_smart($sorting). " WHERE user_id='$myid' AND pref_key='sorting'" ); else $result = DB_query("INSERT INTO User_Prefs VALUES(NULL,'$myid','sorting',". DB_quote_smart($sorting).")"); $changed_sorting=1; } } if(myisset("open_for_games")) { $openforgames = $_REQUEST['open_for_games']; if($openforgames != $PREF['open_for_games']) { /* check if we already have an entry for the user, if so change it, if not create new one */ $result = DB_query("SELECT * from User_Prefs". " WHERE user_id='$myid' AND pref_key='open for games'" ); if( DB_fetch_array($result)) $result = DB_query("UPDATE User_Prefs SET value=".DB_quote_smart($openforgames). " WHERE user_id='$myid' AND pref_key='open for games'" ); else $result = DB_query("INSERT INTO User_Prefs VALUES(NULL,'$myid','open for games',". DB_quote_smart($openforgames).")"); $changed_openforgames=1; } } if(myisset("password0") && $_REQUEST["password0"]!="" ) { $changed_password = 1; /* check if old password matches */ $oldpasswd = md5($_REQUEST["password0"]); $password = DB_get_passwd_by_userid($myid); if(!( ($password == $oldpasswd) || DB_check_recovery_passwords($oldpasswd,$email) )) $changed_password = -1; /* check if new password has been typed in correctly */ if($_REQUEST["password1"] != $_REQUEST["password2"] ) $changed_password = -2; /* check if new password is long enough */ if(strlen($_REQUEST["password1"])<4) $changed_password = -3; if($changed_password==1) { DB_query("UPDATE User SET password='".md5($_REQUEST["password1"]). "' WHERE id=".DB_quote_smart($myid)); } /* error output below */ } if(myisset("openid_url") && $_REQUEST['openid_url']!='') { $openid_url = OpenIDUrlEncode($_REQUEST['openid_url']); DB_AttachOpenID($openid_url, $myid); } /* get infos again in case they have changed */ $PREF = DB_get_PREF($myid); $timezone = DB_get_user_timezone($myid); /* * output settings */ echo "