You are not registered.
Registration allows you to subscribe to projects, open projects, and more. Click here to register.Website Source Code
<< Back
my_profile.php
my_profile.php
<?php
function get_my_profile()
{
global $logged_user;
if ($logged_user != -1)
{
if (isset($_GET['subact']))
{
switch ($_GET['subact'])
{
case 'info':
return get_my_profile_info();
break;
case 'password':
return get_my_profile_password();
break;
case 'email':
return get_my_profile_email();
break;
}
}
else
{
$result = mysql_query('SELECT `member_of` FROM `users` WHERE `id` = ' . $logged_user . ' LIMIT 1;');
$row = mysql_fetch_row($result);
if ($row[0] == '')
{
$vars['MEMBER'] = '<div style="font-style: italic">You are not a member of any project.</div>';
}
else
{
$ex = explode(chr(1), $row[0]);
$vars['MEMBER'] = '';
foreach ($ex as $of)
{
$each = explode(chr(2), $of);
$link = create_link($each[0], $each[1], $each[2]);
$vars['MEMBER'] .= '<img src="images/arrow.png" alt="arrow" style="text-align: center" /> <span style="font-style: italic; color: black">' . escape_html($each[3]) . '</span> in <a href="' . $link . '" style="color: black">' . $each[2] . '</a><br />';
}
}
return get_template('my_profile', $vars);;
}
}
else
{
return '<div style="font-style: italic">Please log in.</div>';
}
}
function get_my_profile_info()
{
global $logged_user;
$vars['COLOR'] = 'green';
if (isset($_POST['sent']))
{
if (strlen($_POST['name']) > 30)
{
$vars['NOTE'] = 'Name is too long.';
$vars['COLOR'] = 'red';
}
else
{
mysql_query('UPDATE `users` SET `name` = \'' . db_escape($_POST['name']) . '\', `about` = \'' . db_escape($_POST['about']) . '\', `contact` = \'' . db_escape($_POST['contact']) . '\', `avatar` = \'' . db_escape($_POST['avatar']) . '\' WHERE `id` = ' . $logged_user . ' LIMIT 1;');
$vars['NOTE'] = 'Your information has been updated.';
}
}
else
{
$vars['NOTE'] = '';
}
$result = mysql_query('SELECT `name`, `avatar`, `contact`, `about` FROM `users` WHERE `id` = ' . $logged_user . ' LIMIT 1;');
$row = mysql_fetch_row($result);
$vars['NAME'] = escape_html($row[0]);
$vars['ABOUT'] = escape_html($row[3]);
$vars['CONTACT'] = escape_html($row[2]);
$vars['AVATAR'] = escape_html($row[1]);
return get_template('prf_info', $vars);
}
function get_my_profile_password()
{
global $logged_user, $path;
$vars['COLOR'] = 'green';
$vars['NOTE'] = '';
$vars['OLD_PASSWORD'] = '';
$vars['PASSWORD'] = '';
if (isset($_POST['password']))
{
$old = $_POST['old_password'];
$new = $_POST['password'];
$result = mysql_query('SELECT `password` FROM `users` WHERE `id` = ' . $logged_user . ' LIMIT 1;');
$row = mysql_fetch_row($result);
if (md5($old) == $row[0])
{
if (strlen($new) >= 8)
{
mysql_query('UPDATE `users` SET `password` = \'' . md5($new) . '\' WHERE `id` = ' . $logged_user . ' LIMIT 1;');
setcookie('login_id', $logged_user, time()+(60*60*24*30), $path);
setcookie('login_password', md5($new), time()+(60*60*24*30), $path);
$vars['NOTE'] = 'Your password has been changed.';
}
else
{
$vars['COLOR'] = 'red';
$vars['NOTE'] = 'The new password is too short.';
$vars['OLD_PASSWORD'] = escape_html($old);
$vars['PASSWORD'] = escape_html($new);
}
}
else
{
$vars['COLOR'] = 'red';
$vars['NOTE'] = 'The password is incorrect.';
$vars['OLD_PASSWORD'] = escape_html($old);
$vars['PASSWORD'] = escape_html($new);
}
}
return get_template('prf_password', $vars);
}
function get_my_profile_email()
{
global $logged_user, $url;
$vars['NEW'] = '';
$vars['NOTE'] = '';
$vars['COLOR'] = 'green';
if (isset($_POST['new']))
{
if ($_POST['hide_h'] == 'true')
{
$hide = isset($_POST['hide']);
mysql_query('UPDATE `users` SET `hide_email` = \'' . $hide . '\' WHERE `id` = ' . $logged_user . ' LIMIT 1;');
}
else
{
$new = $_POST['new'];
if (check_email_address($new))
{
srand(time());
$md5 = md5((rand() % 99) . 'conf' . $logged_user);
$body = "Your E-Mail has been changed to " . $new . ". If you didn't change it, or you don't want to, don't click on this link.\nTo change your E-Mail click here: {$url}activate/$md5";
if (mail($new, 'Your E-Mail has been changed', $body, 'From: noreply@noreplyland.com'))
{
mysql_query('UPDATE `users` SET `new_email` = \'' . db_escape($new) . '\', `activating` = \'' . $md5 . '\' WHERE `id` = ' . $logged_user . ' LIMIT 1;');
$vars['NOTE'] = 'A validation E-Mail has been sent to <span style="font-weight: bold">' . escape_html($new) . '</span> with the confirmation link.';
$vars['NEW'] = escape_html($new);
}
else
{
$vars['NOTE'] = 'An error occured!';
$vars['NEW'] = escape_html($new);
$vars['COLOR'] = '#993333';
}
}
else
{
$vars['NOTE'] = 'The E-Mail address is invalid.';
$vars['NEW'] = escape_html($new);
$vars['COLOR'] = '#993333';
}
}
}
$result = mysql_query('SELECT `email`, `hide_email` FROM `users` WHERE `id` = ' . $logged_user . ' LIMIT 1;');
$row = mysql_fetch_row($result);
$vars['CURRENT'] = escape_html($row[0]);
$vars['HIDE'] = $row[1] ? ' checked="checked"' : '';
return get_template('prf_email', $vars);
}
?>
