GIT.Harvie.CZ / mirrors / Kyberia-bloodline.git / blob
? search:


3f08d4d01cf9e0bd5bc26413e8ca025fb47ba620
[mirrors/Kyberia-bloodline.git] / wwwroot / inc / eventz / banlist.inc
1 <?php
2
3 function banlist() {
4 global $db,$error,$node;
5 $node_id=$node['node_id'];
6
7 if ($node['node_permission']!=('owner' || 'master' || 'op')) {
8 $error=$error_messages['EVENT_PERMISSION_ERROR'];
9 return false;
10 }
11 $bans = explode(";",$_POST['bans']); // XXX sqli?
12 $bans = array_map('mysql_real_escape_string', $bans);
13
14 $db->query("update node_access set node_permission='' where node_id=$node_id and node_permission='ban'");
15 foreach ($bans as $ban) {
16 $set=$db->query("select user_id from users where login='$ban'");
17 $set->next();
18 if ($set->getString('user_id')) {
19 $q="update node_access set node_permission='ban' where node_id=$node_id and user_id='".$set->getString('user_id')."'";
20 echo $q;
21 $changed=$db->update($q);
22 if (!$changed) {
23 $q="insert into node_access set node_permission='ban',node_id=$node_id,user_id=".$set->getString('user_id');
24 $db->query($q);
25 }
26 logger::log('add ban',$node_id,'ok',$ban);
27 }
28 else { $error .= "$ban does not exist..."; }
29 }
30 }
31 ?>
https://github.com/Kyberia/Kyberia-bloodline.git (mirrored @ Fri, 17 May 2024 14:10:09 +0200)
This page took 0.242026 seconds and 3 git commands to generate.