Mibew/design
1
0
Fork 0
mirror of https://github.com/Mibew/design.git synced 2025-01-23 02:20:34 +03:00
Code Issues Actions Packages Projects Releases Wiki Activity

use mysqlprefix in names of session vars

Browse Source
This commit is contained in:
Evgeny Gryaznov 2011-02-26 14:43:30 +01:00
parent b18085de38
commit e160af13ef
6 changed files with 263 additions and 157 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

70
src/messenger/.idea/projectCodeStyle.xml Normal file
View File

@ -0,0 +1,70 @@
<?xml version="1.0" encoding="UTF-8"?>
<project version="4">
<component name="CodeStyleSettingsManager">
<option name="PER_PROJECT_SETTINGS">
<value>
<ADDITIONAL_INDENT_OPTIONS fileType="js">
<option name="INDENT_SIZE" value="4" />
<option name="CONTINUATION_INDENT_SIZE" value="8" />
<option name="TAB_SIZE" value="4" />
<option name="USE_TAB_CHARACTER" value="false" />
<option name="SMART_TABS" value="false" />
<option name="LABEL_INDENT_SIZE" value="0" />
<option name="LABEL_INDENT_ABSOLUTE" value="false" />
<option name="USE_RELATIVE_INDENTS" value="false" />
</ADDITIONAL_INDENT_OPTIONS>
<ADDITIONAL_INDENT_OPTIONS fileType="php">
<option name="INDENT_SIZE" value="4" />
<option name="CONTINUATION_INDENT_SIZE" value="8" />
<option name="TAB_SIZE" value="4" />
<option name="USE_TAB_CHARACTER" value="false" />
<option name="SMART_TABS" value="false" />
<option name="LABEL_INDENT_SIZE" value="0" />
<option name="LABEL_INDENT_ABSOLUTE" value="false" />
<option name="USE_RELATIVE_INDENTS" value="false" />
</ADDITIONAL_INDENT_OPTIONS>
<ADDITIONAL_INDENT_OPTIONS fileType="sass">
<option name="INDENT_SIZE" value="2" />
<option name="CONTINUATION_INDENT_SIZE" value="8" />
<option name="TAB_SIZE" value="4" />
<option name="USE_TAB_CHARACTER" value="false" />
<option name="SMART_TABS" value="false" />
<option name="LABEL_INDENT_SIZE" value="0" />
<option name="LABEL_INDENT_ABSOLUTE" value="false" />
<option name="USE_RELATIVE_INDENTS" value="false" />
</ADDITIONAL_INDENT_OPTIONS>
<ADDITIONAL_INDENT_OPTIONS fileType="sql">
<option name="INDENT_SIZE" value="2" />
<option name="CONTINUATION_INDENT_SIZE" value="8" />
<option name="TAB_SIZE" value="4" />
<option name="USE_TAB_CHARACTER" value="false" />
<option name="SMART_TABS" value="false" />
<option name="LABEL_INDENT_SIZE" value="0" />
<option name="LABEL_INDENT_ABSOLUTE" value="false" />
<option name="USE_RELATIVE_INDENTS" value="false" />
</ADDITIONAL_INDENT_OPTIONS>
<ADDITIONAL_INDENT_OPTIONS fileType="xml">
<option name="INDENT_SIZE" value="4" />
<option name="CONTINUATION_INDENT_SIZE" value="8" />
<option name="TAB_SIZE" value="4" />
<option name="USE_TAB_CHARACTER" value="false" />
<option name="SMART_TABS" value="false" />
<option name="LABEL_INDENT_SIZE" value="0" />
<option name="LABEL_INDENT_ABSOLUTE" value="false" />
<option name="USE_RELATIVE_INDENTS" value="false" />
</ADDITIONAL_INDENT_OPTIONS>
<ADDITIONAL_INDENT_OPTIONS fileType="yml">
<option name="INDENT_SIZE" value="2" />
<option name="CONTINUATION_INDENT_SIZE" value="8" />
<option name="TAB_SIZE" value="4" />
<option name="USE_TAB_CHARACTER" value="false" />
<option name="SMART_TABS" value="false" />
<option name="LABEL_INDENT_SIZE" value="0" />
<option name="LABEL_INDENT_ABSOLUTE" value="false" />
<option name="USE_RELATIVE_INDENTS" value="false" />
</ADDITIONAL_INDENT_OPTIONS>
</value>
</option>
</component>
</project>

219
src/messenger/webim/libs/operator.php
View File

@ -33,94 +33,105 @@ $permission_ids = array(
$can_modifyprofile => "modifyprofile" $can_modifyprofile => "modifyprofile"
); );
function operator_by_login($login) { function operator_by_login($login)
{
global $mysqlprefix; global $mysqlprefix;
$link = connect(); $link = connect();
$operator = select_one_row( $operator = select_one_row(
"select * from ${mysqlprefix}chatoperator where vclogin = '".mysql_real_escape_string($login)."'", $link ); "select * from ${mysqlprefix}chatoperator where vclogin = '" . mysql_real_escape_string($login) . "'", $link);
mysql_close($link); mysql_close($link);
return $operator; return $operator;
} }
function operator_by_email($mail) { function operator_by_email($mail)
{
global $mysqlprefix; global $mysqlprefix;
$link = connect(); $link = connect();
$operator = select_one_row( $operator = select_one_row(
"select * from ${mysqlprefix}chatoperator where vcemail = '".mysql_real_escape_string($mail)."'", $link ); "select * from ${mysqlprefix}chatoperator where vcemail = '" . mysql_real_escape_string($mail) . "'", $link);
mysql_close($link); mysql_close($link);
return $operator; return $operator;
} }
function operator_by_id_($id,$link) { function operator_by_id_($id, $link)
{
global $mysqlprefix; global $mysqlprefix;
return select_one_row( return select_one_row(
"select * from ${mysqlprefix}chatoperator where operatorid = $id", $link ); "select * from ${mysqlprefix}chatoperator where operatorid = $id", $link);
} }
function operator_by_id($id) { function operator_by_id($id)
{
$link = connect(); $link = connect();
$operator = operator_by_id_($id,$link); $operator = operator_by_id_($id, $link);
mysql_close($link); mysql_close($link);
return $operator; return $operator;
} }
function operator_get_all() { function operator_get_all()
{
global $mysqlprefix; global $mysqlprefix;
$link = connect(); $link = connect();
$query = "select operatorid, vclogin, vclocalename, vccommonname, istatus, (unix_timestamp(CURRENT_TIMESTAMP)-unix_timestamp(dtmlastvisited)) as time ". $query = "select operatorid, vclogin, vclocalename, vccommonname, istatus, (unix_timestamp(CURRENT_TIMESTAMP)-unix_timestamp(dtmlastvisited)) as time " .
"from ${mysqlprefix}chatoperator order by vclogin"; "from ${mysqlprefix}chatoperator order by vclogin";
$operators = select_multi_assoc($query, $link); $operators = select_multi_assoc($query, $link);
mysql_close($link); mysql_close($link);
return $operators; return $operators;
} }
function operator_is_online($operator) { function operator_is_online($operator)
{
global $settings; global $settings;
return $operator['time'] < $settings['online_timeout']; return $operator['time'] < $settings['online_timeout'];
} }
function operator_is_available($operator) { function operator_is_available($operator)
{
global $settings; global $settings;
return $operator['istatus'] == 0 && $operator['time'] < $settings['online_timeout'] ? "1" : ""; return $operator['istatus'] == 0 && $operator['time'] < $settings['online_timeout'] ? "1" : "";
} }
function operator_is_away($operator) { function operator_is_away($operator)
{
global $settings; global $settings;
return $operator['istatus'] != 0 && $operator['time'] < $settings['online_timeout'] ? "1" : ""; return $operator['istatus'] != 0 && $operator['time'] < $settings['online_timeout'] ? "1" : "";
} }
function update_operator($operatorid,$login,$email,$password,$localename,$commonname) { function update_operator($operatorid, $login, $email, $password, $localename, $commonname)
{
global $mysqlprefix; global $mysqlprefix;
$link = connect(); $link = connect();
$query = sprintf( $query = sprintf(
"update ${mysqlprefix}chatoperator set vclogin = '%s',%s vclocalename = '%s', vccommonname = '%s'". "update ${mysqlprefix}chatoperator set vclogin = '%s',%s vclocalename = '%s', vccommonname = '%s'" .
", vcemail = '%s', vcjabbername= '%s'". ", vcemail = '%s', vcjabbername= '%s'" .
" where operatorid = %s", " where operatorid = %s",
mysql_real_escape_string($login), mysql_real_escape_string($login),
($password ? " vcpassword='".md5($password)."'," : ""), ($password ? " vcpassword='" . md5($password) . "'," : ""),
mysql_real_escape_string($localename), mysql_real_escape_string($localename),
mysql_real_escape_string($commonname), mysql_real_escape_string($commonname),
mysql_real_escape_string($email), mysql_real_escape_string($email),
'', '',
$operatorid ); $operatorid);
perform_query($query,$link); perform_query($query, $link);
mysql_close($link); mysql_close($link);
} }
function update_operator_avatar($operatorid,$avatar) { function update_operator_avatar($operatorid, $avatar)
{
global $mysqlprefix; global $mysqlprefix;
$link = connect(); $link = connect();
$query = sprintf( $query = sprintf(
"update ${mysqlprefix}chatoperator set vcavatar = '%s' where operatorid = %s", "update ${mysqlprefix}chatoperator set vcavatar = '%s' where operatorid = %s",
mysql_real_escape_string($avatar), $operatorid ); mysql_real_escape_string($avatar), $operatorid);
perform_query($query,$link); perform_query($query, $link);
mysql_close($link); mysql_close($link);
} }
function create_operator_($login,$email,$password,$localename,$commonname,$avatar,$link) { function create_operator_($login, $email, $password, $localename, $commonname, $avatar, $link)
{
global $mysqlprefix; global $mysqlprefix;
$query = sprintf( $query = sprintf(
"insert into ${mysqlprefix}chatoperator (vclogin,vcpassword,vclocalename,vccommonname,vcavatar,vcemail,vcjabbername) values ('%s','%s','%s','%s','%s','%s','%s')", "insert into ${mysqlprefix}chatoperator (vclogin,vcpassword,vclocalename,vccommonname,vcavatar,vcemail,vcjabbername) values ('%s','%s','%s','%s','%s','%s','%s')",
@ -131,81 +142,88 @@ function create_operator_($login,$email,$password,$localename,$commonname,$avata
mysql_real_escape_string($avatar), mysql_real_escape_string($avatar),
mysql_real_escape_string($email), ''); mysql_real_escape_string($email), '');
perform_query($query,$link); perform_query($query, $link);
$id = mysql_insert_id($link); $id = mysql_insert_id($link);
return select_one_row("select * from ${mysqlprefix}chatoperator where operatorid = $id", $link ); return select_one_row("select * from ${mysqlprefix}chatoperator where operatorid = $id", $link);
} }
function create_operator($login,$email,$password,$localename,$commonname,$avatar) { function create_operator($login, $email, $password, $localename, $commonname, $avatar)
{
$link = connect(); $link = connect();
$newop = create_operator_($login,$email,$password,$localename,$commonname,$avatar,$link); $newop = create_operator_($login, $email, $password, $localename, $commonname, $avatar, $link);
mysql_close($link); mysql_close($link);
return $newop; return $newop;
} }
function notify_operator_alive($operatorid, $istatus) { function notify_operator_alive($operatorid, $istatus)
{
global $mysqlprefix; global $mysqlprefix;
$link = connect(); $link = connect();
perform_query("update ${mysqlprefix}chatoperator set istatus = $istatus, dtmlastvisited = CURRENT_TIMESTAMP where operatorid = $operatorid",$link); perform_query("update ${mysqlprefix}chatoperator set istatus = $istatus, dtmlastvisited = CURRENT_TIMESTAMP where operatorid = $operatorid", $link);
mysql_close($link); mysql_close($link);
} }
function has_online_operators($groupid="") { function has_online_operators($groupid = "")
{
global $settings, $mysqlprefix; global $settings, $mysqlprefix;
loadsettings(); loadsettings();
$link = connect(); $link = connect();
$query = "select count(*) as total, min(unix_timestamp(CURRENT_TIMESTAMP)-unix_timestamp(dtmlastvisited)) as time from ${mysqlprefix}chatoperator"; $query = "select count(*) as total, min(unix_timestamp(CURRENT_TIMESTAMP)-unix_timestamp(dtmlastvisited)) as time from ${mysqlprefix}chatoperator";
if($groupid) { if ($groupid) {
$query .= ", ${mysqlprefix}chatgroupoperator where groupid = $groupid and ${mysqlprefix}chatoperator.operatorid = ${mysqlprefix}chatgroupoperator.operatorid and istatus = 0"; $query .= ", ${mysqlprefix}chatgroupoperator where groupid = $groupid and ${mysqlprefix}chatoperator.operatorid = ${mysqlprefix}chatgroupoperator.operatorid and istatus = 0";
} else { } else {
$query .= " where istatus = 0"; $query .= " where istatus = 0";
} }
$row = select_one_row($query,$link); $row = select_one_row($query, $link);
mysql_close($link); mysql_close($link);
return $row['time'] < $settings['online_timeout'] && $row['total'] > 0; return $row['time'] < $settings['online_timeout'] && $row['total'] > 0;
} }
function is_operator_online($operatorid, $link) { function is_operator_online($operatorid, $link)
{
global $settings, $mysqlprefix; global $settings, $mysqlprefix;
loadsettings_($link); loadsettings_($link);
$query = "select count(*) as total, min(unix_timestamp(CURRENT_TIMESTAMP)-unix_timestamp(dtmlastvisited)) as time ". $query = "select count(*) as total, min(unix_timestamp(CURRENT_TIMESTAMP)-unix_timestamp(dtmlastvisited)) as time " .
"from ${mysqlprefix}chatoperator where operatorid = $operatorid"; "from ${mysqlprefix}chatoperator where operatorid = $operatorid";
$row = select_one_row($query,$link); $row = select_one_row($query, $link);
return $row['time'] < $settings['online_timeout'] && $row['total'] == 1; return $row['time'] < $settings['online_timeout'] && $row['total'] == 1;
} }
function get_operator_name($operator) { function get_operator_name($operator)
{
global $home_locale, $current_locale; global $home_locale, $current_locale;
if( $home_locale == $current_locale ) if ($home_locale == $current_locale)
return $operator['vclocalename']; return $operator['vclocalename'];
else else
return $operator['vccommonname']; return $operator['vccommonname'];
} }
function append_query($link,$pv) { function append_query($link, $pv)
{
$infix = '?'; $infix = '?';
if( strstr($link,$infix) !== FALSE ) if (strstr($link, $infix) !== FALSE)
$infix = '&amp;'; $infix = '&amp;';
return "$link$infix$pv"; return "$link$infix$pv";
} }
function check_login($redirect=true) { function check_login($redirect = true)
global $webimroot; {
if( !isset( $_SESSION['operator'] ) ) { global $webimroot, $mysqlprefix;
if( isset($_COOKIE['webim_lite']) ) { if (!isset($_SESSION["${mysqlprefix}operator"])) {
list($login,$pwd) = preg_split("/,/", $_COOKIE['webim_lite'], 2); if (isset($_COOKIE['webim_lite'])) {
list($login, $pwd) = preg_split("/,/", $_COOKIE['webim_lite'], 2);
$op = operator_by_login($login); $op = operator_by_login($login);
if( $op && isset($pwd) && isset($op['vcpassword']) && md5($op['vcpassword']) == $pwd ) { if ($op && isset($pwd) && isset($op['vcpassword']) && md5($op['vcpassword']) == $pwd) {
$_SESSION['operator'] = $op; $_SESSION["${mysqlprefix}operator"] = $op;
return $op; return $op;
} }
} }
$requested = $_SERVER['PHP_SELF']; $requested = $_SERVER['PHP_SELF'];
if($_SERVER['REQUEST_METHOD'] == 'GET' && $_SERVER['QUERY_STRING']) { if ($_SERVER['REQUEST_METHOD'] == 'GET' && $_SERVER['QUERY_STRING']) {
$requested .= "?".$_SERVER['QUERY_STRING']; $requested .= "?" . $_SERVER['QUERY_STRING'];
} }
if($redirect) { if ($redirect) {
$_SESSION['backpath'] = $requested; $_SESSION['backpath'] = $requested;
header("Location: $webimroot/operator/login.php"); header("Location: $webimroot/operator/login.php");
exit; exit;
@ -213,35 +231,40 @@ function check_login($redirect=true) {
return null; return null;
} }
} }
return $_SESSION['operator']; return $_SESSION["${mysqlprefix}operator"];
} }
function get_logged_in() { function get_logged_in()
return isset( $_SESSION['operator'] ) ? $_SESSION['operator'] : FALSE; {
global $mysqlprefix;
return isset($_SESSION["${mysqlprefix}operator"]) ? $_SESSION["${mysqlprefix}operator"] : FALSE;
} }
function login_operator($operator,$remember) { function login_operator($operator, $remember)
global $webimroot; {
$_SESSION['operator'] = $operator; global $webimroot, $mysqlprefix;
if( $remember ) { $_SESSION["${mysqlprefix}operator"] = $operator;
$value = $operator['vclogin'].",".md5($operator['vcpassword']); if ($remember) {
setcookie('webim_lite', $value, time()+60*60*24*1000, "$webimroot/"); $value = $operator['vclogin'] . "," . md5($operator['vcpassword']);
setcookie('webim_lite', $value, time() + 60 * 60 * 24 * 1000, "$webimroot/");
} else if( isset($_COOKIE['webim_lite']) ) { } else if (isset($_COOKIE['webim_lite'])) {
setcookie('webim_lite', '', time() - 3600, "$webimroot/"); setcookie('webim_lite', '', time() - 3600, "$webimroot/");
} }
} }
function logout_operator() { function logout_operator()
global $webimroot; {
unset($_SESSION['operator']); global $webimroot, $mysqlprefix;
unset($_SESSION["${mysqlprefix}operator"]);
unset($_SESSION['backpath']); unset($_SESSION['backpath']);
if( isset($_COOKIE['webim_lite']) ) { if (isset($_COOKIE['webim_lite'])) {
setcookie('webim_lite', '', time() - 3600, "$webimroot/"); setcookie('webim_lite', '', time() - 3600, "$webimroot/");
} }
} }
function setup_redirect_links($threadid,$token) { function setup_redirect_links($threadid, $token)
{
global $page, $webimroot, $settings, $mysqlprefix; global $page, $webimroot, $settings, $mysqlprefix;
loadsettings(); loadsettings();
$link = connect(); $link = connect();
@ -250,9 +273,9 @@ function setup_redirect_links($threadid,$token) {
$groupscount = 0; $groupscount = 0;
$groups = array(); $groups = array();
if($settings['enablegroups'] == "1") { if ($settings['enablegroups'] == "1") {
foreach(get_groups($link, true) as $group) { foreach (get_groups($link, true) as $group) {
if($group['inumofagents'] == 0) { if ($group['inumofagents'] == 0) {
continue; continue;
} }
$groups[] = $group; $groups[] = $group;
@ -260,7 +283,7 @@ function setup_redirect_links($threadid,$token) {
$groupscount = count($groups); $groupscount = count($groups);
} }
prepare_pagination(max($operatorscount,$groupscount),8); prepare_pagination(max($operatorscount, $groupscount), 8);
$p = $page['pagination']; $p = $page['pagination'];
$limit = $p['limit']; $limit = $p['limit'];
@ -268,12 +291,12 @@ function setup_redirect_links($threadid,$token) {
"operatorid, vclogin, vclocalename, vccommonname, istatus, (unix_timestamp(CURRENT_TIMESTAMP)-unix_timestamp(dtmlastvisited)) as time", "operatorid, vclogin, vclocalename, vccommonname, istatus, (unix_timestamp(CURRENT_TIMESTAMP)-unix_timestamp(dtmlastvisited)) as time",
"${mysqlprefix}chatoperator", array(), "order by vclogin $limit"), $link); "${mysqlprefix}chatoperator", array(), "order by vclogin $limit"), $link);
$groups = array_slice($groups, $p['start'], $p['end']-$p['start']); $groups = array_slice($groups, $p['start'], $p['end'] - $p['start']);
mysql_close($link); mysql_close($link);
$agent_list = ""; $agent_list = "";
$params = array('thread' => $threadid, 'token' => $token); $params = array('thread' => $threadid, 'token' => $token);
foreach($operators as $agent) { foreach ($operators as $agent) {
$params['nextAgent'] = $agent['operatorid']; $params['nextAgent'] = $agent['operatorid'];
$status = $agent['time'] < $settings['online_timeout'] $status = $agent['time'] < $settings['online_timeout']
? ($agent['istatus'] == 0 ? ($agent['istatus'] == 0
@ -281,26 +304,26 @@ function setup_redirect_links($threadid,$token) {
: getlocal("char.redirect.operator.away_suff") : getlocal("char.redirect.operator.away_suff")
) )
: ""; : "";
$agent_list .= "<li><a href=\"".add_params($webimroot."/operator/redirect.php",$params). $agent_list .= "<li><a href=\"" . add_params($webimroot . "/operator/redirect.php", $params) .
"\" title=\"".topage(get_operator_name($agent))."\">". "\" title=\"" . topage(get_operator_name($agent)) . "\">" .
topage(get_operator_name($agent)). topage(get_operator_name($agent)) .
"</a> $status</li>"; "</a> $status</li>";
} }
$page['redirectToAgent'] = $agent_list; $page['redirectToAgent'] = $agent_list;
$group_list = ""; $group_list = "";
if($settings['enablegroups'] == "1") { if ($settings['enablegroups'] == "1") {
$params = array('thread' => $threadid, 'token' => $token); $params = array('thread' => $threadid, 'token' => $token);
foreach($groups as $group) { foreach ($groups as $group) {
$params['nextGroup'] = $group['groupid']; $params['nextGroup'] = $group['groupid'];
$status = $group['ilastseen'] !== NULL && $group['ilastseen'] < $settings['online_timeout'] $status = $group['ilastseen'] !== NULL && $group['ilastseen'] < $settings['online_timeout']
? getlocal("char.redirect.operator.online_suff") ? getlocal("char.redirect.operator.online_suff")
: ($group['ilastseenaway'] !== NULL && $group['ilastseenaway'] < $settings['online_timeout'] : ($group['ilastseenaway'] !== NULL && $group['ilastseenaway'] < $settings['online_timeout']
? getlocal("char.redirect.operator.away_suff") ? getlocal("char.redirect.operator.away_suff")
: ""); : "");
$group_list .= "<li><a href=\"".add_params($webimroot."/operator/redirect.php",$params). $group_list .= "<li><a href=\"" . add_params($webimroot . "/operator/redirect.php", $params) .
"\" title=\"".topage(get_group_name($group))."\">". "\" title=\"" . topage(get_group_name($group)) . "\">" .
topage(get_group_name($group)). topage(get_group_name($group)) .
"</a> $status</li>"; "</a> $status</li>";
} }
} }
@ -309,10 +332,11 @@ function setup_redirect_links($threadid,$token) {
$permission_list = array(); $permission_list = array();
function get_permission_list() { function get_permission_list()
{
global $permission_list, $permission_ids; global $permission_list, $permission_ids;
if(count($permission_list) == 0) { if (count($permission_list) == 0) {
foreach($permission_ids as $permid) { foreach ($permission_ids as $permid) {
$permission_list[] = array( $permission_list[] = array(
'id' => $permid, 'id' => $permid,
'descr' => getlocal("permission.$permid") 'descr' => getlocal("permission.$permid")
@ -322,15 +346,17 @@ function get_permission_list() {
return $permission_list; return $permission_list;
} }
function is_capable($perm,$operator) { function is_capable($perm, $operator)
{
$permissions = $operator && isset($operator['iperm']) ? $operator['iperm'] : 0; $permissions = $operator && isset($operator['iperm']) ? $operator['iperm'] : 0;
return $perm >= 0 && $perm < 32 && ($permissions & (1 << $perm)) != 0; return $perm >= 0 && $perm < 32 && ($permissions & (1 << $perm)) != 0;
} }
function prepare_menu($operator,$hasright=true) { function prepare_menu($operator, $hasright = true)
{
global $page, $settings, $can_administrate; global $page, $settings, $can_administrate;
$page['operator'] = topage(get_operator_name($operator)); $page['operator'] = topage(get_operator_name($operator));
if($hasright) { if ($hasright) {
loadsettings(); loadsettings();
$page['showban'] = $settings['enableban'] == "1"; $page['showban'] = $settings['enableban'] == "1";
$page['showgroups'] = $settings['enablegroups'] == "1"; $page['showgroups'] = $settings['enablegroups'] == "1";
@ -340,30 +366,33 @@ function prepare_menu($operator,$hasright=true) {
} }
} }
function get_all_groups($link) { function get_all_groups($link)
{
global $mysqlprefix; global $mysqlprefix;
$query = "select ${mysqlprefix}chatgroup.groupid as groupid, vclocalname, vclocaldescription from ${mysqlprefix}chatgroup order by vclocalname"; $query = "select ${mysqlprefix}chatgroup.groupid as groupid, vclocalname, vclocaldescription from ${mysqlprefix}chatgroup order by vclocalname";
return select_multi_assoc($query, $link); return select_multi_assoc($query, $link);
} }
function get_groups($link,$checkaway) { function get_groups($link, $checkaway)
{
global $mysqlprefix; global $mysqlprefix;
$query = "select ${mysqlprefix}chatgroup.groupid as groupid, vclocalname, vclocaldescription". $query = "select ${mysqlprefix}chatgroup.groupid as groupid, vclocalname, vclocaldescription" .
", (SELECT count(*) from ${mysqlprefix}chatgroupoperator where ${mysqlprefix}chatgroup.groupid = ${mysqlprefix}chatgroupoperator.groupid) as inumofagents". ", (SELECT count(*) from ${mysqlprefix}chatgroupoperator where ${mysqlprefix}chatgroup.groupid = ${mysqlprefix}chatgroupoperator.groupid) as inumofagents" .
", (SELECT min(unix_timestamp(CURRENT_TIMESTAMP)-unix_timestamp(dtmlastvisited)) as time ". ", (SELECT min(unix_timestamp(CURRENT_TIMESTAMP)-unix_timestamp(dtmlastvisited)) as time " .
"from ${mysqlprefix}chatgroupoperator, ${mysqlprefix}chatoperator where istatus = 0 and ${mysqlprefix}chatgroup.groupid = ${mysqlprefix}chatgroupoperator.groupid ". "from ${mysqlprefix}chatgroupoperator, ${mysqlprefix}chatoperator where istatus = 0 and ${mysqlprefix}chatgroup.groupid = ${mysqlprefix}chatgroupoperator.groupid " .
"and ${mysqlprefix}chatgroupoperator.operatorid = ${mysqlprefix}chatoperator.operatorid) as ilastseen". "and ${mysqlprefix}chatgroupoperator.operatorid = ${mysqlprefix}chatoperator.operatorid) as ilastseen" .
($checkaway ($checkaway
? ", (SELECT min(unix_timestamp(CURRENT_TIMESTAMP)-unix_timestamp(dtmlastvisited)) as time ". ? ", (SELECT min(unix_timestamp(CURRENT_TIMESTAMP)-unix_timestamp(dtmlastvisited)) as time " .
"from ${mysqlprefix}chatgroupoperator, ${mysqlprefix}chatoperator where istatus <> 0 and ${mysqlprefix}chatgroup.groupid = ${mysqlprefix}chatgroupoperator.groupid ". "from ${mysqlprefix}chatgroupoperator, ${mysqlprefix}chatoperator where istatus <> 0 and ${mysqlprefix}chatgroup.groupid = ${mysqlprefix}chatgroupoperator.groupid " .
"and ${mysqlprefix}chatgroupoperator.operatorid = ${mysqlprefix}chatoperator.operatorid) as ilastseenaway" "and ${mysqlprefix}chatgroupoperator.operatorid = ${mysqlprefix}chatoperator.operatorid) as ilastseenaway"
: "" : ""
). ) .
" from ${mysqlprefix}chatgroup order by vclocalname"; " from ${mysqlprefix}chatgroup order by vclocalname";
return select_multi_assoc($query, $link); return select_multi_assoc($query, $link);
} }
function get_operator_groupids($operatorid) { function get_operator_groupids($operatorid)
{
global $mysqlprefix; global $mysqlprefix;
$link = connect(); $link = connect();
$query = "select groupid from ${mysqlprefix}chatgroupoperator where operatorid = $operatorid"; $query = "select groupid from ${mysqlprefix}chatgroupoperator where operatorid = $operatorid";

4
src/messenger/webim/operator/avatar.php
View File

@ -77,8 +77,8 @@ if( !$op ) {
if(count($errors) == 0) { if(count($errors) == 0) {
update_operator_avatar($op['operatorid'],$avatar); update_operator_avatar($op['operatorid'],$avatar);
if ($opId && $avatar && $_SESSION['operator'] && $operator['operatorid'] == $opId) { if ($opId && $avatar && $_SESSION["${mysqlprefix}operator"] && $operator['operatorid'] == $opId) {
$_SESSION['operator']['vcavatar'] = $avatar; $_SESSION["${mysqlprefix}operator"]['vcavatar'] = $avatar;
} }
header("Location: $webimroot/operator/avatar.php?op=$opId"); header("Location: $webimroot/operator/avatar.php?op=$opId");
exit; exit;

37
src/messenger/webim/operator/permissions.php
View File

@ -25,45 +25,46 @@ require_once('../libs/operator_settings.php');
$operator = check_login(); $operator = check_login();
function update_operator_permissions($operatorid,$newvalue) { function update_operator_permissions($operatorid, $newvalue)
{
global $mysqlprefix; global $mysqlprefix;
$link = connect(); $link = connect();
$query = "update ${mysqlprefix}chatoperator set iperm = $newvalue where operatorid = $operatorid"; $query = "update ${mysqlprefix}chatoperator set iperm = $newvalue where operatorid = $operatorid";
perform_query($query,$link); perform_query($query, $link);
mysql_close($link); mysql_close($link);
} }
$opId = verifyparam( "op","/^\d{1,9}$/"); $opId = verifyparam("op", "/^\d{1,9}$/");
$page = array('opid' => $opId, 'canmodify' => is_capable($can_administrate, $operator) ? "1" : ""); $page = array('opid' => $opId, 'canmodify' => is_capable($can_administrate, $operator) ? "1" : "");
$errors = array(); $errors = array();
$op = operator_by_id($opId); $op = operator_by_id($opId);
if( !$op ) { if (!$op) {
$errors[] = getlocal("no_such_operator"); $errors[] = getlocal("no_such_operator");
} else if( isset($_POST['op']) ) { } else if (isset($_POST['op'])) {
if(!is_capable($can_administrate, $operator)) { if (!is_capable($can_administrate, $operator)) {
$errors[] = getlocal('page_agent.cannot_modify'); $errors[] = getlocal('page_agent.cannot_modify');
} }
$new_permissions = isset($op['iperm']) ? $op['iperm'] : 0; $new_permissions = isset($op['iperm']) ? $op['iperm'] : 0;
foreach($permission_ids as $perm => $id) { foreach ($permission_ids as $perm => $id) {
if( verifyparam("permissions$id","/^on$/", "") == "on") { if (verifyparam("permissions$id", "/^on$/", "") == "on") {
$new_permissions |= (1 << $perm); $new_permissions |= (1 << $perm);
} else { } else {
$new_permissions &= ~ (1 << $perm); $new_permissions &= ~(1 << $perm);
} }
} }
if(count($errors) == 0) { if (count($errors) == 0) {
update_operator_permissions($op['operatorid'],$new_permissions); update_operator_permissions($op['operatorid'], $new_permissions);
if ($opId && $_SESSION['operator'] && $operator['operatorid'] == $opId) { if ($opId && $_SESSION["${mysqlprefix}operator"] && $operator['operatorid'] == $opId) {
$_SESSION['operator']['iperm'] = $new_permissions; $_SESSION["${mysqlprefix}operator"]['iperm'] = $new_permissions;
} }
header("Location: $webimroot/operator/permissions.php?op=$opId&stored"); header("Location: $webimroot/operator/permissions.php?op=$opId&stored");
exit; exit;
@ -73,11 +74,11 @@ if( !$op ) {
$page['permissionsList'] = get_permission_list(); $page['permissionsList'] = get_permission_list();
$page['formpermissions'] = array(""); $page['formpermissions'] = array("");
$page['currentop'] = $op ? topage(get_operator_name($op))." (".$op['vclogin'].")" : "-not found-"; $page['currentop'] = $op ? topage(get_operator_name($op)) . " (" . $op['vclogin'] . ")" : "-not found-";
if($op) { if ($op) {
foreach($permission_ids as $perm => $id) { foreach ($permission_ids as $perm => $id) {
if(is_capable($perm,$op)) { if (is_capable($perm, $op)) {
$page['formpermissions'][] = $id; $page['formpermissions'][] = $id;
} }
} }
@ -85,7 +86,7 @@ if($op) {
$page['stored'] = isset($_GET['stored']); $page['stored'] = isset($_GET['stored']);
prepare_menu($operator); prepare_menu($operator);
setup_operator_settings_tabs($opId,3); setup_operator_settings_tabs($opId, 3);
start_html_output(); start_html_output();
require('../view/permissions.php'); require('../view/permissions.php');
?> ?>

10
src/messenger/webim/operator/update.php
View File

@ -23,6 +23,7 @@ require_once('../libs/common.php');
require_once('../libs/chat.php'); require_once('../libs/chat.php');
require_once('../libs/userinfo.php'); require_once('../libs/userinfo.php');
require_once('../libs/operator.php'); require_once('../libs/operator.php');
require_once('../libs/groups.php');
$operator = get_logged_in(); $operator = get_logged_in();
if( !$operator ) { if( !$operator ) {
@ -167,8 +168,13 @@ $since = verifyparam( "since", "/^\d{1,9}$/", 0);
$status = verifyparam( "status", "/^\d{1,2}$/", 0); $status = verifyparam( "status", "/^\d{1,2}$/", 0);
$showonline = verifyparam( "showonline", "/^1$/", 0); $showonline = verifyparam( "showonline", "/^1$/", 0);
loadsettings(); $link = connect();
$groupids = $_SESSION['operatorgroups']; loadsettings_($link);
if(!isset($_SESSION['operatorgroups'])) {
$_SESSION["${mysqlprefix}operatorgroups"] = get_operator_groupslist($operator['operatorid'], $link);
}
mysql_close($link);
$groupids = $_SESSION["${mysqlprefix}operatorgroups"];
start_xml_output(); start_xml_output();
echo '<update>'; echo '<update>';

2
src/messenger/webim/operator/users.php
View File

@ -30,7 +30,7 @@ notify_operator_alive($operator['operatorid'], $status);
$link = connect(); $link = connect();
loadsettings_($link); loadsettings_($link);
$_SESSION['operatorgroups'] = get_operator_groupslist($operator['operatorid'], $link); $_SESSION["${mysqlprefix}operatorgroups"] = get_operator_groupslist($operator['operatorid'], $link);
mysql_close($link); mysql_close($link);
$page = array(); $page = array();