X-Git-Url: https://git.nubati.net/cgi-bin/gitweb.cgi?p=e-DoKo.git;a=blobdiff_plain;f=include%2Fpreferences.php;h=2e3eef2fbf53ba6c771db53747d619d4454d398c;hp=fdb6a1965875a769b621e2a70cdaa94a51e2d376;hb=993fc6fffd6c43498c756ef73f8fd27eb4fadce1;hpb=880dfb2e715a3770de56fb525f5c90d28a6ccb4c diff --git a/include/preferences.php b/include/preferences.php index fdb6a19..2e3eef2 100644 --- a/include/preferences.php +++ b/include/preferences.php @@ -1,24 +1,31 @@ $value) +{ + if(strstr($key,"delete-openid-")) + { + /* found and openid to delete */ + $DelOpenID = substr(str_replace("_",".",$key),14); + DB_DetachOpenID($DelOpenID, $myid); + $changed_openid = 1; + } +} + + +if(myisset('vacation_start','vacation_stop','vacation_comment') && + ($_REQUEST['vacation_start']!='' || $_REQUEST['vacation_stop']!='') + ) + { + $vacation_start = $_REQUEST['vacation_start'].' 00:00:00'; + $vacation_stop = $_REQUEST['vacation_stop'].' 23:59:59'; + $vacation_comment = $_REQUEST['vacation_comment']; + + /* check if everything is valid */ + if(!strtotime($vacation_start)) + $changed_vacation = -1; + if(!strtotime($vacation_stop)) + $changed_vacation = -1; + + /* test if we should delete the entry */ + if($vacation_start == '- 00:00:00') + { + $result = DB_query("DELETE FROM User_Prefs". + " WHERE user_id='$myid' AND pref_key='vacation start'" ); + $result = DB_query("DELETE FROM User_Prefs". + " WHERE user_id='$myid' AND pref_key='vacation stop'" ); + $result = DB_query("DELETE FROM User_Prefs". + " WHERE user_id='$myid' AND pref_key='vacation comment'" ); + $changed_vacation = 1; + } + /* change in database if format is ok */ + else if($changed_vacation>=0) + { + /* only change if different from current value */ + if($vacation_start!=$PREF['vacation_start']) + { + $result = DB_query("SELECT * from User_Prefs". + " WHERE user_id='$myid' AND pref_key='vacation start'" ); + if( DB_fetch_array($result)) + $result = DB_query("UPDATE User_Prefs SET value=".DB_quote_smart($vacation_start). + " WHERE user_id='$myid' AND pref_key='vacation start'" ); + else + $result = DB_query("INSERT INTO User_Prefs VALUES(NULL,'$myid','vacation start',". + DB_quote_smart($vacation_start).")"); + + $changed_vacation = 1; + } + + /* same for the stop date */ + if($vacation_stop!=$PREF['vacation_stop']) + { + $result = DB_query("SELECT * from User_Prefs". + " WHERE user_id='$myid' AND pref_key='vacation stop'" ); + if( DB_fetch_array($result)) + $result = DB_query("UPDATE User_Prefs SET value=".DB_quote_smart($vacation_stop). + " WHERE user_id='$myid' AND pref_key='vacation stop'" ); + else + $result = DB_query("INSERT INTO User_Prefs VALUES(NULL,'$myid','vacation stop',". + DB_quote_smart($vacation_stop).")"); + + $changed_vacation = 1; + } + + /* does the user want to add a comment? */ + if($vacation_comment!=$PREF['vacation_comment']) + { + $result = DB_query("SELECT * from User_Prefs". + " WHERE user_id='$myid' AND pref_key='vacation comment'" ); + if( DB_fetch_array($result)) + $result = DB_query("UPDATE User_Prefs SET value=".DB_quote_smart($vacation_comment). + " WHERE user_id='$myid' AND pref_key='vacation comment'" ); + else + $result = DB_query("INSERT INTO User_Prefs VALUES(NULL,'$myid','vacation comment',". + DB_quote_smart($vacation_comment).")"); + + $changed_vacation = 1; + } + } + } + if(myisset("timezone")) { - $newtimezone=$_REQUEST['timezone']; + $newtimezone = $_REQUEST['timezone']; if($newtimezone != $timezone) { DB_query("UPDATE User SET timezone=".DB_quote_smart($newtimezone). @@ -74,7 +173,80 @@ if(myisset("notify")) } } -if(myisset("password0") && $_REQUEST["password0"]!="" ) +if(myisset("digest")) + { + $digest=$_REQUEST['digest']; + if($digest != $PREF['digest']) + { + /* check if we already have an entry for the user, if so change it, if not create new one */ + $result = DB_query("SELECT * from User_Prefs". + " WHERE user_id='$myid' AND pref_key='digest'" ); + if( DB_fetch_array($result)) + $result = DB_query("UPDATE User_Prefs SET value=".DB_quote_smart($digest). + " WHERE user_id='$myid' AND pref_key='digest'" ); + else + $result = DB_query("INSERT INTO User_Prefs VALUES(NULL,'$myid','digest',". + DB_quote_smart($digest).")"); + $changed_digest=1; + } + } + +if(myisset("autosetup")) + { + $autosetup = $_REQUEST['autosetup']; + if($autosetup != $PREF['autosetup']) + { + /* check if we already have an entry for the user, if so change it, if not create new one */ + $result = DB_query("SELECT * from User_Prefs". + " WHERE user_id='$myid' AND pref_key='autosetup'" ); + if( DB_fetch_array($result)) + $result = DB_query("UPDATE User_Prefs SET value=".DB_quote_smart($autosetup). + " WHERE user_id='$myid' AND pref_key='autosetup'" ); + else + $result = DB_query("INSERT INTO User_Prefs VALUES(NULL,'$myid','autosetup',". + DB_quote_smart($autosetup).")"); + $changed_autosetup=1; + } + } + +if(myisset("sorting")) + { + $sorting = $_REQUEST['sorting']; + if($sorting != $PREF['sorting']) + { + /* check if we already have an entry for the user, if so change it, if not create new one */ + $result = DB_query("SELECT * from User_Prefs". + " WHERE user_id='$myid' AND pref_key='sorting'" ); + if( DB_fetch_array($result)) + $result = DB_query("UPDATE User_Prefs SET value=".DB_quote_smart($sorting). + " WHERE user_id='$myid' AND pref_key='sorting'" ); + else + $result = DB_query("INSERT INTO User_Prefs VALUES(NULL,'$myid','sorting',". + DB_quote_smart($sorting).")"); + $changed_sorting=1; + } + } + +if(myisset("open_for_games")) + { + $openforgames = $_REQUEST['open_for_games']; + if($openforgames != $PREF['open_for_games']) + { + /* check if we already have an entry for the user, if so change it, if not create new one */ + $result = DB_query("SELECT * from User_Prefs". + " WHERE user_id='$myid' AND pref_key='open for games'" ); + if( DB_fetch_array($result)) + $result = DB_query("UPDATE User_Prefs SET value=".DB_quote_smart($openforgames). + " WHERE user_id='$myid' AND pref_key='open for games'" ); + else + $result = DB_query("INSERT INTO User_Prefs VALUES(NULL,'$myid','open for games',". + DB_quote_smart($openforgames).")"); + $changed_openforgames=1; + } + } + + +if(myisset("password0","password1","password2") && $_REQUEST["password0"]!="" && $_REQUEST["password0"]!= $_REQUEST["password1"]) { $changed_password = 1; @@ -84,10 +256,14 @@ if(myisset("password0") && $_REQUEST["password0"]!="" ) if(!( ($password == $oldpasswd) || DB_check_recovery_passwords($oldpasswd,$email) )) $changed_password = -1; - /* check if new passwords are types the same twice */ + /* check if new password has been typed in correctly */ if($_REQUEST["password1"] != $_REQUEST["password2"] ) $changed_password = -2; - + + /* check if new password is long enough */ + if(strlen($_REQUEST["password1"])<4) + $changed_password = -3; + if($changed_password==1) { DB_query("UPDATE User SET password='".md5($_REQUEST["password1"]). @@ -96,57 +272,184 @@ if(myisset("password0") && $_REQUEST["password0"]!="" ) /* error output below */ } +if(myisset("openid_url") && $_REQUEST['openid_url']!='') + { + $openid_url = OpenIDUrlEncode($_REQUEST['openid_url']); + DB_AttachOpenID($openid_url, $myid); + } + /* get infos again in case they have changed */ $PREF = DB_get_PREF($myid); $timezone = DB_get_user_timezone($myid); -/* output settings */ +/* + * output settings + */ echo "