Register globals + clean d'anciens fichiers plus utile

.gitattributes

@@ -95,7 +95,6 @@ bureau/admin/bro_tgzdown.php -text
 bureau/admin/bro_view.php -text
 bureau/admin/browseforfolder.php -text
 bureau/admin/cron.php -text
-bureau/admin/direct.php -text
 bureau/admin/dom_add.php -text
 bureau/admin/dom_doadd.php -text
 bureau/admin/dom_dodel.php -text
@@ -285,7 +284,6 @@ bureau/admin/quota_show.php -text
 bureau/admin/quotas_oneuser.php -text
 bureau/admin/quotas_users.php -text
 bureau/admin/sql_add.php -text
-bureau/admin/sql_addmain.php -text
 bureau/admin/sql_admin.php -text
 bureau/admin/sql_bck.php -text
 bureau/admin/sql_del.php -text
@@ -294,8 +292,6 @@ bureau/admin/sql_dobck.php -text
 bureau/admin/sql_dorestore.php -text
 bureau/admin/sql_getparam.php -text
 bureau/admin/sql_list.php -text
-bureau/admin/sql_pass.php -text
-bureau/admin/sql_passchg.php -text
 bureau/admin/sql_restore.php -text
 bureau/admin/sql_users_add.php -text
 bureau/admin/sql_users_del.php -text

bureau/admin/adm_variables.php

@@ -57,10 +57,8 @@ include_once ("head.php");
 <tr><th><?php __("Names"); ?></th><th><?php __("Value"); ?></th><th><?php __("Comment"); ?></th></tr>
 <?php
 $col=1;
-$db->query("SELECT * FROM `variable` WHERE `comment` IS NOT NULL ORDER BY `name`");
 
-while ($db->next_record()) {
- $vars = $db->Record;
+foreach( variables_list() as $vars) {
  $col=3-$col;
  ?>
 

bureau/admin/bro_editor.php

@@ -29,6 +29,16 @@
 */
 require_once("../class/config.php");
 
+$fields = array (
+	"editfile"    		=> array ("request", "string", ""),
+	"texte"    		=> array ("post", "string", ""),
+	"save"    		=> array ("post", "string", ""),
+	"saveret"    		=> array ("post", "string", ""),
+	"cancel"    		=> array ("post", "string", ""),
+	"R"	    		=> array ("request", "string", ""),
+);
+getFields($fields);
+
 $editfile=ssla($editfile);
 $texte=ssla($texte);
 

bureau/admin/direct.php

@@ -1,54 +0,0 @@
-<?php
-/*
- $Id: direct.php,v 1.2 2003/06/10 06:45:16 root Exp $
- ----------------------------------------------------------------------
- AlternC - Web Hosting System
- Copyright (C) 2002 by the AlternC Development Team.
- http://alternc.org/
- ----------------------------------------------------------------------
- Based on:
- Valentin Lacambre's web hosting softwares: http://altern.org/
- ----------------------------------------------------------------------
- LICENSE
-
- This program is free software; you can redistribute it and/or
- modify it under the terms of the GNU General Public License (GPL)
- as published by the Free Software Foundation; either version 2
- of the License, or (at your option) any later version.
-
- This program is distributed in the hope that it will be useful,
- but WITHOUT ANY WARRANTY; without even the implied warranty of
- MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
- GNU General Public License for more details.
-
- To read the license please visit http://www.gnu.org/copyleft/gpl.html
- ----------------------------------------------------------------------
- Original Author of file: Benjamin Sonntag
- Purpose of file: Redirect the user (show the main frameset) after a
- form submit
- ----------------------------------------------------------------------
-*/
-require_once("../class/config.php");
-
-if (!$mem->checkid()) {
-        $error=$err->errstr();
-	include("index.php");
-	exit();
-}
-
-?>
-<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Frameset//EN">
-<html>
-<head>
-<title>Administration de <?php echo $host ?></title>
-<link rel="stylesheet" href="style.css" type="text/css">
-</head>
-<frameset cols="225px,*">
-	<frame src="menu.php" name="left">
-	<frame src="<?php echo $page ?>" name="right">
-<noframes>
-	Votre navigateur doit supporter les cadres.<br />
-	Your browser must support frames
-</noframes>
-</frameset>
-</html>

bureau/admin/ftp_add.php

@@ -35,18 +35,30 @@ if (!$quota->cancreate("ftp")) {
 	$fatal=1;
 }
 
+$fields = array (
+	"id" 			=> array ("post", "integer", 0),
+	"prefixe" 		=> array ("post", "string", ""),
+	"login" 		=> array ("post", "string", ""),
+	"dir" 			=> array ("post", "string", ""),
+	"pass" 			=> array ("post", "string", ""),
+	"passconf" 		=> array ("post", "string", ""),
+	"submit" 		=> array ("post", "string", ""),
+);
+getFields($fields);
+
+
 ?>
 <h3><?php __("Create a new ftp account"); ?></h3>
 <hr id="topbar"/>
 <br />
 <?php
-	if (isset($error) && $error) {
-		echo "<p class=\"error\">$error</p>";
-		if ($fatal) {
-		  include_once("foot.php");
-		  exit();
-		}
+if (isset($error) && $error) {
+	echo "<p class=\"error\">$error</p>";
+	if (isset($fatal) && $fatal) {
+	  include_once("foot.php");
+	  exit();
 	}
+}
 ?>
 <form method="post" action="ftp_doadd.php" name="main" id="main">
 <table>

bureau/admin/ftp_edit.php

@@ -51,7 +51,6 @@ if (isset($error) && $error) {
 	include_once("foot.php");
 	exit();
 }
-printVar($r);
 ?>
 <form method="post" action="ftp_doedit.php" name="main" id="main">
 <table border="1" cellspacing="0" cellpadding="4">

bureau/admin/index.php

@@ -75,7 +75,7 @@ if (!$_SERVER[HTTPS]) {
 <?php __("To connect to the hosting control panel, enter your AlternC's login and password in the following form and click 'Enter'"); ?>
 <?php if (!empty($authip_token)) { echo "<p style='color:red;'>";__("You are attemping to connect without IP restriction."); echo "</p>"; } ?>
 </td><td>
-<form action="login.php" method="post" target="_top">
+<form action="login.php" method="post" name="loginform" target="_top">
 <table border="0" style="border: 1px solid #202020;" cellspacing="0" cellpadding="3" width="300px" >
 <tr><th colspan="2" align="center"><?php __("AlternC access"); ?></th></tr>
 <tr><th align="right"><label for="username"><?php echo _("Username"); ?></label></th><td><input type="text" class="int" name="username" id="username" value="" maxlength="128" size="15" /></td></tr>
@@ -133,6 +133,11 @@ if (!$_SERVER[HTTPS]) {
 
 
 </div>
+<script>
+//FIXME
+// set focus to textbox
+document.forms['loginform'].username.focus();
+</script>
 
 </body>
 </html>

bureau/admin/mem_param.php

@@ -31,7 +31,14 @@ require_once("../class/config.php");
 
 include_once("head.php");
 
-if (isset($help_setting) && $help_setting) {
+$fields = array (
+	"help_setting" 	=> array ("request", "string", ""),
+	"showhelp" 	=> array ("request", "integer", ""),
+);
+getFields($fields);
+
+
+if (!empty($help_setting)) {
 	$mem->set_help_param($showhelp);
 	$error=_("Your help setting has been updated.");
 }

bureau/admin/menu.php

@@ -44,7 +44,7 @@ foreach($file as $v) {
   if ( file_exists($MENUPATH.$v)) include($MENUPATH.$v);
 }
 ?>
-<p class="center"><a href="http://www.alternc.org" target="_blank"><img src="logo2.png" border="0" alt="AlternC" /></a>
+<p class="center"><a href="http://www.alternc.com" target="_blank"><img src="logo2.png" border="0" alt="AlternC" /></a>
 <br />
 <?php 
 echo "$L_VERSION";

bureau/admin/sql_addmain.php

@@ -1,39 +0,0 @@
-<?php
-/*
- $Id: sql_addmain.php,v 1.2 2003/03/27 23:30:35 root Exp $
- ----------------------------------------------------------------------
- AlternC - Web Hosting System
- Copyright (C) 2002 by the AlternC Development Team.
- http://alternc.org/
- ----------------------------------------------------------------------
- Based on:
- Valentin Lacambre's web hosting softwares: http://altern.org/
- ----------------------------------------------------------------------
- LICENSE
-
- This program is free software; you can redistribute it and/or
- modify it under the terms of the GNU General Public License (GPL)
- as published by the Free Software Foundation; either version 2
- of the License, or (at your option) any later version.
-
- This program is distributed in the hope that it will be useful,
- but WITHOUT ANY WARRANTY; without even the implied warranty of
- MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
- GNU General Public License for more details.
-
- To read the license please visit http://www.gnu.org/copyleft/gpl.html
- ----------------------------------------------------------------------
- Original Author of file:
- Purpose of file:
- ----------------------------------------------------------------------
-*/
-require_once("../class/config.php");
-
-if (!$mysql->new_mysql($pass)) {
-    $error=$err->errstr();
-} else {
-  $error=_("Your database has been successfully created");
-}
-include("sql_list.php");
-exit();
-?>

bureau/admin/sql_list.php

@@ -70,7 +70,7 @@ for($i=0;$i<count($rdb);$i++) {
 ?>
 	<tr  class="lst<?php echo $col; ?>">
 		<td align="center"><input type="checkbox" class="inc" id="del_<?php echo $val["name"]; ?>" name="del_<?php echo $val["name"]; ?>" value="<?php echo ($val["name"])?$val["name"]:"_"; ?>" /></td>
-	   <td><label for="del_<?php echo $val["name"]; ?>"><?php echo $val["db"]; ?></label></td>
+	   	<td><label for="del_<?php echo $val["name"]; ?>"><?php echo $val["db"]; ?></label></td>
 		<td><div class="ina"><a href="sql_bck.php?id=<?php echo $val["name"] ?>"><?php __("Backup"); ?></a></div></td>
 		<td><div class="ina"><a href="sql_restore.php?id=<?php echo $val["name"] ?>"><?php __("Restore"); ?></a></div></td>
 		<td><code><?php echo format_size($val["size"]); ?></code></td>

bureau/admin/sql_pass.php

@@ -1,42 +0,0 @@
-<?php
-/*
- $Id: sql_pass.php,v 1.1.1.1 2003/03/26 17:41:29 root Exp $
- ----------------------------------------------------------------------
- AlternC - Web Hosting System
- Copyright (C) 2002 by the AlternC Development Team.
- http://alternc.org/
- ----------------------------------------------------------------------
- Based on:
- Valentin Lacambre's web hosting softwares: http://altern.org/
- ----------------------------------------------------------------------
- LICENSE
-
- This program is free software; you can redistribute it and/or
- modify it under the terms of the GNU General Public License (GPL)
- as published by the Free Software Foundation; either version 2
- of the License, or (at your option) any later version.
-
- This program is distributed in the hope that it will be useful,
- but WITHOUT ANY WARRANTY; without even the implied warranty of
- MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
- GNU General Public License for more details.
-
- To read the license please visit http://www.gnu.org/copyleft/gpl.html
- ----------------------------------------------------------------------
- Original Author of file:
- Purpose of file:
- ----------------------------------------------------------------------
-*/
-require_once("../class/config.php");
-
-
-if (!$mysql->put_mysql_details($pass)) {
-	$error=$err->errstr();
-	include("sql_passchg.php");
-	exit();
-} else {
-	$error=_("Your password has been successfully changed.");
-	include("sql_list.php");
-	exit();
-}
-?>

bureau/admin/sql_passchg.php

@@ -1,65 +0,0 @@
-<?php
-/*
- $Id: sql_passchg.php,v 1.5 2006/01/12 01:10:48 anarcat Exp $
- ----------------------------------------------------------------------
- AlternC - Web Hosting System
- Copyright (C) 2002 by the AlternC Development Team.
- http://alternc.org/
- ----------------------------------------------------------------------
- Based on:
- Valentin Lacambre's web hosting softwares: http://altern.org/
- ----------------------------------------------------------------------
- LICENSE
-
- This program is free software; you can redistribute it and/or
- modify it under the terms of the GNU General Public License (GPL)
- as published by the Free Software Foundation; either version 2
- of the License, or (at your option) any later version.
-
- This program is distributed in the hope that it will be useful,
- but WITHOUT ANY WARRANTY; without even the implied warranty of
- MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
- GNU General Public License for more details.
-
- To read the license please visit http://www.gnu.org/copyleft/gpl.html
- ----------------------------------------------------------------------
- Original Author of file: Benjamin Sonntag
- Purpose of file: Change the MySQL password of a member
- ----------------------------------------------------------------------
-*/
-require_once("../class/config.php");
-include_once("head.php");
-
-if (!$r=$mysql->get_dblist()) {
-	$error=$err->errstr();
-}
-
-?>
-<h3><?php __("MySQL Databases"); ?></h3>
-<hr id="topbar"/>
-<br />
-<?php
-	if ($error) {
-		echo "<p class=\"error\">$error</p>";
-	}
-
-echo "<p>"._("Enter the new password of your MySQL database and click 'change the password' to change it")."</p>";
-?>
-
-<form method="post" action="sql_pass.php" name="main" id="main">
-<table class="tedit">
-		<tr><th><?php __("Username"); ?></th><td><code><?php echo $mem->user["login"]; ?></code></td></tr>
-		<tr><th><label for="pass"><?php __("Password"); ?></label></th><td><code><input class="int" type="password" name="pass" id="pass" value="" /></code></td></tr>
-		<tr><th><?php __("SQL Server"); ?></th><td><code><?php echo $mysql->server; ?></code></td></tr>
-		<tr><th><?php __("Database"); ?></th><td><code><?php echo $r[0]["db"]; ?></code></td></tr>
-	<tr class="trbtn"><td colspan="2">
-  <input type="submit" class="inb" name="submit" value="<?php __("Change the password"); ?>" />
-  <input type="button" class="inb" name="cancel" value="<?php __("Cancel"); ?>" onclick="document.location='sql_list.php'"/>
-  </td></tr>
-</table>
-</form>
-<script type="text/javascript">
-document.forms['main'].pass.focus();
-document.forms['main'].setAttribute('autocomplete', 'off');
-</script>
-<?php include_once("foot.php"); ?>

bureau/class/variables.php

@@ -132,4 +132,15 @@ function variable_del($name) {
 
   unset($conf[$name]);
 }
+
+function variables_list() {
+  global $db;
+  $t=array();
+  $db->query("SELECT * FROM `variable` WHERE `comment` IS NOT NULL ORDER BY `name`");
+  while ($db->next_record()) {
+    $t[]=$db->Record;
+  }
+  return $t;
+}
+
 ?>