]> git.wh0rd.org - tt-rss.git/blob - modules/pref-prefs.php
git.wh0rd.org / tt-rss.git / blob
? search:


3584c622f96194c066f2098930bc549c3558ed0f
[tt-rss.git] / modules / pref-prefs.php
1 <?php
2 function prefs_js_redirect() {
3 print "<html><body>
4 <script type=\"text/javascript\">
5 window.location = 'prefs.php';
6 </script>
7 </body></html>";
8 }
9
10 function module_pref_prefs($link) {
11 $subop = $_REQUEST["subop"];
12
13 if ($subop == "change-password") {
14
15 $old_pw = $_POST["OLD_PASSWORD"];
16 $new_pw = $_POST["NEW_PASSWORD"];
17 $con_pw = $_POST["CONFIRM_PASSWORD"];
18
19 if ($old_pw == "") {
20 print "ERROR: ".__("Old password cannot be blank.");
21 return;
22 }
23
24 if ($new_pw == "") {
25 print "ERROR: ".__("New password cannot be blank.");
26 return;
27 }
28
29 if ($new_pw != $con_pw) {
30 print "ERROR: ".__("Entered passwords do not match.");
31 return;
32 }
33
34 $old_pw_hash = 'SHA1:' . sha1($_POST["OLD_PASSWORD"]);
35 $new_pw_hash = 'SHA1:' . sha1($_POST["NEW_PASSWORD"]);
36
37 $active_uid = $_SESSION["uid"];
38
39 if ($old_pw && $new_pw) {
40
41 $login = db_escape_string($_SERVER['PHP_AUTH_USER']);
42
43 $result = db_query($link, "SELECT id FROM ttrss_users WHERE
44 id = '$active_uid' AND (pwd_hash = '$old_pw' OR
45 pwd_hash = '$old_pw_hash')");
46
47 if (db_num_rows($result) == 1) {
48 db_query($link, "UPDATE ttrss_users SET pwd_hash = '$new_pw_hash'
49 WHERE id = '$active_uid'");
50
51 print __("Password has been changed.");
52 } else {
53 print "ERROR: ".__('Old password is incorrect.');
54 }
55 }
56
57 return;
58
59 } else if ($subop == __("Save configuration")) {
60
61 $_SESSION["prefs_op_result"] = "save-config";
62
63 $_SESSION["prefs_cache"] = false;
64
65 // print_r($_POST);
66
67 foreach (array_keys($_POST) as $pref_name) {
68
69 $pref_name = db_escape_string($pref_name);
70 $value = db_escape_string($_POST[$pref_name]);
71
72 $result = db_query($link, "SELECT type_name
73 FROM ttrss_prefs,ttrss_prefs_types
74 WHERE pref_name = '$pref_name' AND type_id = ttrss_prefs_types.id");
75
76 if (db_num_rows($result) > 0) {
77
78 $type_name = db_fetch_result($result, 0, "type_name");
79
80 // print "$pref_name : $type_name : $value<br>";
81
82 if ($type_name == "bool") {
83 if ($value == "1") {
84 $value = "true";
85 } else {
86 $value = "false";
87 }
88 } else if ($type_name == "integer") {
89 $value = sprintf("%d", $value);
90 }
91
92 // print "$pref_name : $type_name : $value<br>";
93
94 db_query($link, "UPDATE ttrss_user_prefs SET value = '$value'
95 WHERE pref_name = '$pref_name' AND owner_uid = ".$_SESSION["uid"]);
96
97 }
98
99 }
100
101 return prefs_js_redirect();
102
103 } else if ($subop == "getHelp") {
104
105 $pref_name = db_escape_string($_GET["pn"]);
106
107 $result = db_query($link, "SELECT help_text FROM ttrss_prefs
108 WHERE pref_name = '$pref_name'");
109
110 if (db_num_rows($result) > 0) {
111 $help_text = db_fetch_result($result, 0, "help_text");
112 print $help_text;
113 } else {
114 print "Unknown option: $pref_name";
115 }
116
117 } else if ($subop == "change-email") {
118
119 $email = db_escape_string($_POST["email"]);
120 $active_uid = $_SESSION["uid"];
121
122 db_query($link, "UPDATE ttrss_users SET email = '$email'
123 WHERE id = '$active_uid'");
124
125 print "E-mail has been changed.";
126
127 return;
128
129 } else if ($subop == __("Reset to defaults")) {
130
131 $_SESSION["prefs_op_result"] = "reset-to-defaults";
132
133 db_query($link, "DELETE FROM ttrss_user_prefs
134 WHERE owner_uid = ".$_SESSION["uid"]);
135 initialize_user_prefs($link, $_SESSION["uid"]);
136
137 return prefs_js_redirect();
138
139 } else if ($subop == __("Change theme")) {
140
141 $theme = db_escape_string($_POST["theme"]);
142
143 if ($theme == "Default") {
144 $theme_qpart = 'NULL';
145 } else {
146 $theme_qpart = "'$theme'";
147 }
148
149 $result = db_query($link, "SELECT id,theme_path FROM ttrss_themes
150 WHERE theme_name = '$theme'");
151
152 if (db_num_rows($result) == 1) {
153 $theme_id = db_fetch_result($result, 0, "id");
154 $theme_path = db_fetch_result($result, 0, "theme_path");
155 } else {
156 $theme_id = "NULL";
157 $theme_path = "";
158 }
159
160 db_query($link, "UPDATE ttrss_users SET
161 theme_id = $theme_id WHERE id = " . $_SESSION["uid"]);
162
163 $_SESSION["theme"] = $theme_path;
164
165 return prefs_js_redirect();
166
167 } else {
168
169 // print check_for_update($link);
170
171 set_pref($link, "_PREFS_ACTIVE_TAB", "genConfig");
172
173 if (!SINGLE_USER_MODE) {
174
175 $result = db_query($link, "SELECT id FROM ttrss_users
176 WHERE id = ".$_SESSION["uid"]." AND pwd_hash
177 = 'SHA1:5baa61e4c9b93f3f0682250b6cf8331b7ee68fd8'");
178
179 if (db_num_rows($result) != 0) {
180 print format_warning(__("Your password is at default value,
181 please change it."), "default_pass_warning");
182 }
183
184 /* if ($_SESSION["pwd_change_result"] == "failed") {
185 print format_warning("Could not change the password.");
186 }
187
188 if ($_SESSION["pwd_change_result"] == "ok") {
189 print format_notice("Password was changed.");
190 }
191
192 $_SESSION["pwd_change_result"] = ""; */
193
194 if ($_SESSION["prefs_op_result"] == "reset-to-defaults") {
195 print format_notice(__("The configuration was reset to defaults."));
196 }
197
198 if ($_SESSION["prefs_op_result"] == "save-config") {
199 print format_notice(__("The configuration was saved."));
200 }
201
202 $_SESSION["prefs_op_result"] = "";
203
204 print "<form onsubmit='return false' id='change_email_form'>";
205
206 print "<table width=\"100%\" class=\"prefPrefsList\">";
207 print "<tr><td colspan='3'><h3>".__("Personal data")."</h3></tr></td>";
208
209 $result = db_query($link, "SELECT email FROM ttrss_users
210 WHERE id = ".$_SESSION["uid"]);
211
212 $email = db_fetch_result($result, 0, "email");
213
214 print "<tr><td width=\"40%\">E-mail</td>";
215 print "<td><input class=\"editbox\" name=\"email\"
216 onkeypress=\"return filterCR(event, changeUserEmail)\"
217 value=\"$email\"></td></tr>";
218
219 print "</table>";
220
221 print "<input type=\"hidden\" name=\"op\" value=\"pref-prefs\">";
222 print "<input type=\"hidden\" name=\"subop\" value=\"change-email\">";
223
224 print "</form>";
225
226 print "<p><input class=\"button\" type=\"submit\"
227 onclick=\"return changeUserEmail()\" value=\"".__("Change e-mail")."\">";
228
229 print "<form onsubmit=\"return false\"
230 name=\"change_pass_form\" id=\"change_pass_form\">";
231
232 print "<table width=\"100%\" class=\"prefPrefsList\">";
233 print "<tr><td colspan='3'><h3>".__("Authentication")."</h3></tr></td>";
234
235 print "<tr><td width=\"40%\">".__("Old password")."</td>";
236 print "<td><input class=\"editbox\" type=\"password\"
237 onkeypress=\"return filterCR(event, changeUserPassword)\"
238 name=\"OLD_PASSWORD\"></td></tr>";
239
240 print "<tr><td width=\"40%\">".__("New password")."</td>";
241
242 print "<td><input class=\"editbox\" type=\"password\"
243 onkeypress=\"return filterCR(event, changeUserPassword)\"
244 name=\"NEW_PASSWORD\"></td></tr>";
245
246 print "<tr><td width=\"40%\">".__("Confirm password")."</td>";
247
248 print "<td><input class=\"editbox\" type=\"password\"
249 onkeypress=\"return filterCR(event, changeUserPassword)\"
250 name=\"CONFIRM_PASSWORD\"></td></tr>";
251
252 print "</table>";
253
254 print "<input type=\"hidden\" name=\"op\" value=\"pref-prefs\">";
255 print "<input type=\"hidden\" name=\"subop\" value=\"change-password\">";
256
257 print "</form>";
258
259 print "<p><input class=\"button\" type=\"submit\"
260 onclick=\"return changeUserPassword()\"
261 value=\"".__("Change password")."\">";
262
263 }
264
265 $result = db_query($link, "SELECT
266 theme_id FROM ttrss_users WHERE id = " . $_SESSION["uid"]);
267
268 $user_theme_id = db_fetch_result($result, 0, "theme_id");
269
270 $result = db_query($link, "SELECT
271 id,theme_name FROM ttrss_themes ORDER BY theme_name");
272
273 if (db_num_rows($result) > 0) {
274
275 print "<form action=\"backend.php\" method=\"POST\">";
276 print "<table width=\"100%\" class=\"prefPrefsList\">";
277 print "<tr><td colspan='3'><h3>".__("Themes")."</h3></tr></td>";
278 print "<tr><td width=\"40%\">".__("Select theme")."</td>";
279 print "<td><select name=\"theme\">";
280 print "<option value='Default'>".__('Default')."</option>";
281 print "<option disabled>--------</option>";
282
283 while ($line = db_fetch_assoc($result)) {
284 if ($line["id"] == $user_theme_id) {
285 $selected = "selected";
286 } else {
287 $selected = "";
288 }
289 print "<option $selected>" . $line["theme_name"] . "</option>";
290 }
291 print "</select></td></tr>";
292 print "</table>";
293 print "<input type=\"hidden\" name=\"op\" value=\"pref-prefs\">";
294 print "<input type=\"hidden\" name=\"subop\" value=\"Change theme\">";
295 print "<p><input class=\"button\" type=\"submit\"
296 value=\"".__('Change theme')."\">";
297 print "</form>";
298 }
299
300 initialize_user_prefs($link, $_SESSION["uid"]);
301
302 $result = db_query($link, "SELECT
303 ttrss_user_prefs.pref_name,short_desc,help_text,value,type_name,
304 section_name,def_value
305 FROM ttrss_prefs,ttrss_prefs_types,ttrss_prefs_sections,ttrss_user_prefs
306 WHERE type_id = ttrss_prefs_types.id AND
307 section_id = ttrss_prefs_sections.id AND
308 ttrss_user_prefs.pref_name = ttrss_prefs.pref_name AND
309 short_desc != '' AND
310 owner_uid = ".$_SESSION["uid"]."
311 ORDER BY section_id,short_desc");
312
313 print "<form action=\"backend.php\" method=\"POST\">";
314
315 $lnum = 0;
316
317 $active_section = "";
318
319 while ($line = db_fetch_assoc($result)) {
320
321 if ($active_section != $line["section_name"]) {
322
323 if ($active_section != "") {
324 print "</table>";
325 }
326
327 print "<p><table width=\"100%\" class=\"prefPrefsList\">";
328
329 $active_section = $line["section_name"];
330
331 print "<tr><td colspan=\"3\"><h3>".__($active_section)."</h3></td></tr>";
332 // print "<tr class=\"title\">
333 // <td width=\"25%\">Option</td><td>Value</td></tr>";
334
335 $lnum = 0;
336 }
337
338 // $class = ($lnum % 2) ? "even" : "odd";
339
340 print "<tr>";
341
342 $type_name = $line["type_name"];
343 $pref_name = $line["pref_name"];
344 $value = $line["value"];
345 $def_value = $line["def_value"];
346 $help_text = $line["help_text"];
347
348 print "<td width=\"40%\" id=\"$pref_name\">" . __($line["short_desc"]);
349
350 if ($help_text) print "<div class=\"prefHelp\">".__($help_text)."</div>";
351
352 print "</td>";
353
354 print "<td>";
355
356 if ($type_name == "bool") {
357 // print_select($pref_name, $value, array("true", "false"));
358
359 if ($value == "true") {
360 $value = __("Yes");
361 } else {
362 $value = __("No");
363 }
364
365 print_radio($pref_name, $value, __("Yes"), array(__("Yes"), __("No")));
366
367 } else {
368 print "<input class=\"editbox\" name=\"$pref_name\" value=\"$value\">";
369 }
370
371 print "</td>";
372
373 print "</tr>";
374
375 $lnum++;
376 }
377
378 print "</table>";
379
380 print "<input type=\"hidden\" name=\"op\" value=\"pref-prefs\">";
381
382 print "<p><input class=\"button\" type=\"submit\"
383 name=\"subop\" value=\"".__('Save configuration')."\">";
384
385 print "&nbsp;<input class=\"button\" type=\"submit\"
386 name=\"subop\" onclick=\"return validatePrefsReset()\"
387 value=\"".__('Reset to defaults')."\"></p>";
388
389 print "</form>";
390
391 }
392 }
393 ?>
web-based news feed (RSS/Atom) reader and aggregator; see https://tt-rss.org/