summaryrefslogtreecommitdiff
path: root/public/system
diff options
context:
space:
mode:
Diffstat (limited to 'public/system')
-rw-r--r--public/system/emotes/index.php250
-rw-r--r--public/system/emotes/verdict.php80
-rw-r--r--public/system/index.php69
3 files changed, 0 insertions, 399 deletions
diff --git a/public/system/emotes/index.php b/public/system/emotes/index.php
deleted file mode 100644
index 2a48408..0000000
--- a/public/system/emotes/index.php
+++ /dev/null
@@ -1,250 +0,0 @@
-<?php
-include_once "../../../src/partials.php";
-include_once "../../../src/accounts.php";
-include_once "../../../src/alert.php";
-include_once "../../../src/config.php";
-include_once "../../../src/utils.php";
-
-if (!MOD_EMOTES_APPROVE) {
- generate_alert("/404.php", "Manual emote approval is disabled", 405);
- exit;
-}
-
-if (!authorize_user(true) || !$_SESSION["user_role"]["permission_approve_emotes"]) {
- generate_alert("/404.php", "Not enough permissions", 403);
- exit;
-}
-
-$current_user_id = $_SESSION["user_id"] ?? "";
-
-$db = new PDO(DB_URL, DB_USER, DB_PASS);
-$emote_results = $db->prepare("SELECT e.*,
-CASE WHEN up.private_profile = FALSE OR up.id = ? THEN e.uploaded_by ELSE NULL END AS uploaded_by,
-CASE WHEN up.private_profile = FALSE OR up.id = ? THEN u.username ELSE NULL END AS uploader_name,
-r.name AS role_name,
-r.badge_id AS role_badge_id,
-ub.badge_id AS custom_badge_id
-FROM emotes e
-LEFT JOIN users u ON u.id = e.uploaded_by
-LEFT JOIN user_preferences up ON up.id = u.id
-LEFT JOIN role_assigns ra ON ra.user_id = u.id
-LEFT JOIN roles r ON r.id = ra.role_id
-LEFT JOIN user_badges ub ON ub.user_id = u.id
-WHERE e.visibility = 2
-ORDER BY e.created_at DESC
-LIMIT 25
-");
-$emote_results->execute([$current_user_id, $current_user_id]);
-
-$emote_results = $emote_results->fetchAll(PDO::FETCH_ASSOC);
-
-$emote = $emote_results[0] ?? null;
-
-if (isset($_GET["id"])) {
- $stmt = $db->prepare("SELECT e.*,
- CASE WHEN up.private_profile = FALSE OR up.id = ? THEN e.uploaded_by ELSE NULL END AS uploaded_by,
- CASE WHEN up.private_profile = FALSE OR up.id = ? THEN u.username ELSE NULL END AS uploader_name,
- r.name AS role_name,
- r.badge_id AS role_badge_id,
- ub.badge_id AS custom_badge_id
- FROM emotes e
- LEFT JOIN users u ON u.id = e.uploaded_by
- LEFT JOIN user_preferences up ON up.id = u.id
- LEFT JOIN role_assigns ra ON ra.user_id = u.id
- LEFT JOIN roles r ON r.id = ra.role_id
- LEFT JOIN user_badges ub ON ub.user_id = u.id
- WHERE e.visibility = 2 AND e.id = ?
- LIMIT 1");
-
- $stmt->execute([$current_user_id, $current_user_id, $_GET["id"]]);
- $emote = $stmt->fetch(PDO::FETCH_ASSOC) ?? null;
-}
-
-?>
-
-<html>
-
-<head>
- <title>System panel - <?php echo INSTANCE_NAME ?></title>
- <link rel="stylesheet" href="/static/style.css">
- <link rel="shortcut icon" href="/static/favicon.ico" type="image/x-icon">
-</head>
-
-<body>
- <div class="container">
- <div class="wrapper">
- <?php html_navigation_bar() ?>
- <?php display_alert() ?>
- <section class="content row">
- <section class="box">
- <div class="box navtab">System panel - Emote approval section</div>
- <div class="box content">
- <?php
- foreach ($emote_results as $row) {
- echo '<a href="/system/emotes?id=' . $row["id"] . '">';
- echo '<img src="/static/userdata/emotes/' . $row["id"] . '/1x.webp">';
- echo '<b>' . $row["code"] . '</b>';
- echo '<span style="font-size:10px;"> by ';
-
- if ($row["uploader_name"] == null) {
- echo ANONYMOUS_DEFAULT_NAME . '*';
- } else {
- echo $row["uploader_name"];
- }
-
- echo '</span></a>';
- }
-
- if (empty($emote_results)) {
- echo 'Everything is clear. Good job!';
- }
- ?>
- </div>
- </section>
- <?php if ($emote != null): ?>
- <section class="content">
- <!-- Emote showcase -->
- <section class="box">
- <div class="box navtab row">
- <?php
- echo "Emote - " . $emote["code"];
- echo '<div class="row small-gap" style="margin-left:auto">';
-
- $original_path = "/static/userdata/emotes/" . $emote["id"];
- $files = glob($_SERVER["DOCUMENT_ROOT"] . $original_path . "/original.*");
-
- if (!empty($files)) {
- $filename = basename($files[0]);
- echo "<a href='$original_path/$filename' target='_BLANK'><img src='/static/img/icons/emotes/emote.png' alt='[Show original]' title='Show original' /></a>";
- }
- echo '</div>';
- ?>
- </div>
- <div class="box content">
- <div class="emote-showcase items-bottom">
- <?php
- for ($size = 1; $size < 4; $size++) {
- echo '<div class="column items-center small-gap">';
-
- echo '<img src="/static/userdata/emotes/';
- echo $emote["id"];
- echo "/{$size}x.webp\"";
- echo 'title="' . $emote["code"] . '" />';
-
- $path = $_SERVER["DOCUMENT_ROOT"] . '/static/userdata/emotes/' . $emote["id"] . "/{$size}x.webp";
-
- echo '<div class="column items-center">';
-
- if ($file_size = filesize($path)) {
- $kb = sprintf("%.2f", $file_size / 1024);
- echo "<p class='font-small'>{$kb}KB</p>";
- }
-
- if ($image_size = getimagesize($path)) {
- echo "<p class='font-small'>$image_size[0]x$image_size[1]</p>";
- }
-
- echo '</div></div>';
- }
- ?>
- </div>
- </div>
- </section>
- <!-- Emote information -->
- <section class="box">
- <table class="vertical">
- <?php
- $stmt = $db->prepare("SELECT t.code FROM tags t
- INNER JOIN tag_assigns ta ON ta.emote_id = ?
- WHERE t.id = ta.tag_id
- ");
- $stmt->execute([$emote["id"]]);
-
- $tags = $stmt->fetchAll(PDO::FETCH_ASSOC);
- $tags = array_column($tags, "code");
-
- if (!empty($tags)) {
- echo '<tr><th>Tags</th><td>';
- foreach ($tags as $tag) {
- echo "<a href='/emotes/?q=$tag'>$tag</a> ";
- }
- echo '</td></tr>';
- }
- ?>
- <tr>
- <th>Uploader</th>
- <td><?php
- $username = ANONYMOUS_DEFAULT_NAME;
- $link = "#";
-
- if ($emote["uploader_name"] != null) {
- $username = $emote["uploader_name"];
- $link = '/users.php?id=' . $emote["uploaded_by"];
- }
-
- echo "<a href=\"$link\">";
- echo $username;
- echo "</a>";
-
- if ($emote["role_badge_id"]) {
- echo ' <img src="/static/userdata/badges/' . $emote["role_badge_id"] . '/1x.webp" alt="## ' . $emote["role_name"] . '" title="' . $emote["role_name"] . '" />';
- }
-
- if ($emote["custom_badge_id"]) {
- echo ' <img src="/static/userdata/badges/' . $emote["custom_badge_id"] . '/1x.webp" alt="" title="Personal badge" />';
- }
-
- echo ', <span title="';
- echo date("M d, Y H:i:s", strtotime($emote["created_at"]));
- echo ' UTC">about ' . format_timestamp(time() - strtotime($emote["created_at"])) . " ago</span>";
- ?></td>
- </tr>
- <tr>
- <th>Notes</th>
- <td><?php echo isset($emote["notes"]) == true ? $emote["notes"] : '<i>Empty</i>' ?></td>
- </tr>
- <?php if ($emote["source"]): ?>
- <tr>
- <th>Source</th>
- <td>
- <a href="<?php echo $emote["source"] ?>"
- target="_blank"><?php echo $emote["source"] ?></a>
- </td>
- </tr>
- <?php endif; ?>
- </table>
- </section>
- <!-- Emote actions -->
- <form action="/system/emotes/verdict.php" method="post">
- <input type="text" name="id" value="<?php echo $emote["id"] ?>" style="display: none;">
- <input type="text" name="action" value="none" id="form-action" style="display: none;">
- <div class="column small-gap">
- <noscript>JavaScript is required!!!</noscript>
- <div class="box row small-gap">
- <button type="submit" class="grow green big" onclick="set_verdict('approve')">Make it
- public</button>
- <button type="submit" class="grow red big" onclick="set_verdict('reject')">Make it
- unlisted</button>
- </div>
- <div class="box">
- <div class="box navtab">Comment</div>
- <div class="box content">
- <textarea name="comment" id="form-comment"></textarea>
- </div>
- </div>
- </div>
- </form>
- </section>
- <?php endif; ?>
- </section>
- </div>
- </div>
-</body>
-
-<script>
- function set_verdict(verdict) {
- document.getElementById("form-action").setAttribute("value", verdict);
- }
-</script>
-
-</html> \ No newline at end of file
diff --git a/public/system/emotes/verdict.php b/public/system/emotes/verdict.php
deleted file mode 100644
index df2f5ba..0000000
--- a/public/system/emotes/verdict.php
+++ /dev/null
@@ -1,80 +0,0 @@
-<?php
-include_once "../../../src/alert.php";
-include_once "../../../src/accounts.php";
-include_once "../../../src/config.php";
-include_once "../../../src/utils.php";
-
-if (!MOD_EMOTES_APPROVE) {
- generate_alert("/404.php", "Manual emote approval is disabled", 405);
- exit;
-}
-
-if (!authorize_user(true) || !$_SESSION["user_role"]["permission_approve_emotes"]) {
- generate_alert("/404.php", "Not enough permissions", 403);
- exit;
-}
-
-if (!isset($_POST["id"], $_POST["action"])) {
- generate_alert("/system/emotes", "Not enough POST fields");
- exit;
-}
-
-$id = str_safe($_POST["id"], 32);
-$action = $_POST["action"];
-
-$db = new PDO(DB_URL, DB_USER, DB_PASS);
-
-$stmt = $db->prepare("SELECT id, code, uploaded_by FROM emotes WHERE id = ? AND visibility = 2 LIMIT 1");
-$stmt->execute([$id]);
-
-if ($row = $stmt->fetch(PDO::FETCH_ASSOC)) {
- $verdict = 2;
-
- switch ($action) {
- case "approve": {
- $db->prepare("UPDATE emotes SET visibility = 1 WHERE id = ?")
- ->execute([$row["id"]]);
- $verdict = 1;
- break;
- }
- case "reject": {
- $db->prepare("UPDATE emotes SET visibility = 0 WHERE id = ?")
- ->execute([$row["id"]]);
- $verdict = 0;
- break;
- }
- default: {
- generate_alert("/system/emotes", "Unknown action");
- exit;
- }
- }
-
- $comment = str_safe($_POST["comment"] ?? "", null, false);
-
- if ($comment == "") {
- $comment = null;
- }
-
- $db->prepare("INSERT INTO mod_actions(user_id, emote_id, verdict, comment) VALUES (?, ?, ?, ?)")
- ->execute([$_SESSION["user_id"], $row["id"], $verdict, $comment]);
-
- if ($row["uploaded_by"] != null) {
- $contents = match ($verdict) {
- 0 => 'Your emote "' . $row["code"] . '" has been unlisted! Anyone can add it via a direct link.',
- 1 => 'Your emote "' . $row["code"] . '" has been approved! Enjoy!',
- default => 'We did something with your emote "' . $row["code"] . '"'
- };
-
- if ($comment != null) {
- $contents .= " Mod's comment: $comment";
- }
-
- $db->prepare("INSERT INTO inbox_messages(recipient_id, message_type, contents, link) VALUES (?, ?, ?, ?)")
- ->execute([$row["uploaded_by"], "1", $contents, "/emotes?id=" . $row["id"]]);
- }
-
- generate_alert("/system/emotes", 'Emote "' . $row["code"] . '" has been ' . ($verdict == 0 ? 'unlisted' : 'set to public') . '!', 200);
- exit;
-}
-
-generate_alert("system/emotes", "Emote ID $id not found", 404); \ No newline at end of file
diff --git a/public/system/index.php b/public/system/index.php
deleted file mode 100644
index 95b17a5..0000000
--- a/public/system/index.php
+++ /dev/null
@@ -1,69 +0,0 @@
-<?php
-include_once "../../src/partials.php";
-include_once "../../src/accounts.php";
-include_once "../../src/alert.php";
-include_once "../../src/config.php";
-
-if (!MOD_SYSTEM_DASHBOARD) {
- generate_alert("/404.php", "System dashboard is disabled", 405);
- exit;
-}
-
-if (!authorize_user(true) || (!$_SESSION["user_role"]["permission_approve_emotes"] && !$_SESSION["user_role"]["permission_report_review"])) {
- generate_alert("/404.php", "Not enough permissions", 403);
- exit;
-}
-
-$db = new PDO(DB_URL, DB_USER, DB_PASS);
-
-?>
-
-<html>
-
-<head>
- <title>System panel - <?php echo INSTANCE_NAME ?></title>
- <link rel="stylesheet" href="/static/style.css">
- <link rel="shortcut icon" href="/static/favicon.ico" type="image/x-icon">
-</head>
-
-<body>
- <div class="container">
- <div class="wrapper">
- <?php html_navigation_bar() ?>
- <section class="content">
- <section class="box">
- <div class="box navtab">System panel</div>
- <div class="box content">
- <?php
- if (MOD_EMOTES_APPROVE && $_SESSION["user_role"]["permission_approve_emotes"]) {
- echo '<a href="/system/emotes">Emotes';
-
- $results = $db->query("SELECT COUNT(*) FROM emotes WHERE visibility = 2")->fetch()[0];
-
- if ($results > 0) {
- echo " ($results pending)";
- }
-
- echo '</a>';
- }
-
- if (REPORTS_ENABLE && $_SESSION["user_role"]["permission_report_review"]) {
- echo '<a href="/system/reports">Reports';
-
- $results = $db->query("SELECT COUNT(*) FROM reports WHERE resolved_by IS NULL")->fetch()[0];
-
- if ($results > 0) {
- echo " ($results pending)";
- }
-
- echo '</a>';
- }
- ?>
- </div>
- </section>
- </section>
- </div>
- </div>
-</body>
-
-</html> \ No newline at end of file
generated by cgit v1.2.3 (git 2.39.1) at 2025-12-12 19:15:50 +0000