-<?php
-/* This program is free software. It comes without any warranty, to
- * the extent permitted by applicable law. You can redistribute it
- * and/or modify it under the terms of the Do What The Fuck You Want
- * To Public License, Version 2, as published by Sam Hocevar. See
- * http://sam.zoy.org/wtfpl/COPYING for more details. */
-
- function configure_node_name() {
- global $db,$error,$node;
- $node_id=$node['node_id'];
- $user_id=$_SESSION['user_id'];
-
- if ($node['node_permission']=='owner') {
-
- $node_name=addslashes($_POST['node_name']);
-
- if ($_POST['apply_on_vector']) {
- $vector=$node['node_vector'];
- if (empty($vector)) {
- $error=$error_messages['INCORRECT_VECTOR'];
- return false;
- }
- $q="update nodes set node_name='$node_name' where node_vector like '$vector%'";
- $db->query($q);
- }
-
- elseif (!empty($node_id)) {
- $q="update nodes set node_name='$node_name' where node_id='$node_id'";
- $db->query($q);
- if ($node['external_link']=='db://user') {
- $q="update users set login='$node_name' where user_id='$node_id'";
- $db->query($q);
- }
- }
- }
- return true;
-
- }
+<?php\r
+function configure_node_name() {\r
+ global $db,$error,$node;\r
+ $node_id=$node['node_id'];\r
+ $user_id=$_SESSION['user_id'];\r
+\r
+ if (($node['node_permission']=='owner') || ($node['node_permission']=='master')) {\r
+ $node_name = mysql_real_escape_string($_POST['node_name']);\r
+ $test=$node_name.'[Locked_OUT]';\r
+\r
+ if(!empty($node_id)) {\r
+ if($node_id == $user_id) {\r
+ $node_name=strip_tags($node_name);\r
+\r
+//$validation = strpos($node_name, "'"); \r
+//if ($validation) {$error="Nepouzivaj ten otrasny znak '. co si myslis ze ludi to bude bavit pisat ti takto postu?";return false;}\r
+\r
+ $node_name=strtr($node_name, "öûõü³¿ñæê\9càáäåèéìíïòóôøùú\9a\9d\9e¾ýÀÁÄÅÈÉÌÍÏÒÓÔØÙÚ\8a\8d\8e¼ÝÄ","ououlzncesraalceeidnooruustzlyRAALCEEIDNOORUUSTZLYA"); //prec z diakritikou. ldap ju nezere\r
+\r
+ if (strpos($node_name,'[Locked_OUT]')!=NULL){$error='Nemozes pouzit dany suffix';return false;}\r
+ $set=$db->query("select * from users where login='$node_name'");\r
+ if($set->getNumRows()>0) {\r
+ $error="user $node_name is already here";\r
+ return false;\r
+ }else{\r
+ $q="update users set login='$node_name' where user_id='$node_id'";\r
+ $db->query($q);\r
+ $_SESSION['user_name']=$node_name;}\r
+ }\r
+ $q="update nodes set node_name='$node_name' where node_id='$node_id'";\r
+ $db->query($q);\r
+ }\r
+ }else{\r
+ $error=$error_messages['EVENT_PERMISSION_ERROR'];\r
+ return false; \r
+ }\r
+ return true;\r
+}\r
?>
\ No newline at end of file