cacert-webdb/pages/wot/7-old.php

<? /*
    Copyright (C) 2004 by Duane Groth <duane_at_CAcert_dot_org>

    This file is part of CAcert.

    CAcert has been released under the CAcert Source License
    which can be found included with these source files or can
    be downloaded from the internet from the following address:
    http://www.cacert.org/src-lic.php

    CAcert is distributed WITHOUT ANY WARRANTY; without even
    the implied warranty of MERCHANTABILITY or FITNESS FOR A
    PARTICULAR PURPOSE.  See the License for more details.
*/ ?>
<?
exit;
if($_GET['action'] != "update")
{
	$total1 = mysql_num_rows(mysql_query("select * from `users`,`notary` where `listme`='1' and `users`.`id`=`notary`.`to`
						group by `notary`.`to` HAVING SUM(`points`) >= 100"));

	$town = mysql_escape_string(stripslashes($_GET['town']));
	$start = intval($_GET['start']);
	$limit = 25;

	echo "<div id='listshow'><ul class='top'>\n<li>";
	echo "<a href='wot.php?id=7'>"._("Home")." ("._("Listed").": $total1)</a>\n";

	$display = "";
	if(intval($_GET['locid']) > 0)
	{
		$total4 = mysql_num_rows(mysql_query("select * from `users`,`notary` where `listme`='1' and `locid`='".$_GET['locid']."' and
						`users`.`id`=`notary`.`to` group by `notary`.`to` HAVING SUM(`points`) >= 100"));
		$loc = mysql_fetch_assoc(mysql_query("select * from `locations` where `id`='".$_GET['locid']."'"));
		$display = "<ul class='top'>\n<li>\n".
			"<a href='wot.php?id=7&locid=".$_GET['locid']."'>$loc[name] ("._("Listed").": $total4)</a>\n".
			$display;
		$_GET['regid'] = $loc['regid'];
	}

	if(intval($_GET['regid']) > 0)
	{
		$total3 = mysql_num_rows(mysql_query("select * from `users`,`notary` where `listme`='1' and `regid`='".$_GET['regid']."' and
						`users`.`id`=`notary`.`to` group by `notary`.`to` HAVING SUM(`points`) >= 100"));
		$reg = mysql_fetch_assoc(mysql_query("select * from `regions` where `id`='".$_GET['regid']."'"));
		$display = "<ul class='top'>\n<li>\n".
			"<a href='wot.php?id=7&regid=".$_GET['regid']."'>$reg[name] ("._("Listed").": $total3)</a>\n".
			$display;
		$_GET['ccid'] = $reg['ccid'];
	}

	if(intval($_GET['ccid']) > 0)
	{
		$total2 = mysql_num_rows(mysql_query("select * from `users`,`notary` where `listme`='1' and
						`ccid`='".$_GET['ccid']."' and `users`.`id`=`notary`.`to`
						group by `notary`.`to` HAVING SUM(`points`) >= 100"));
		$cnt = mysql_fetch_assoc(mysql_query("select * from `countries` where `id`='".$_GET['ccid']."'"));
		$display = "<ul class='top'>\n<li>\n".
			"<a href='wot.php?id=7&ccid=".$_GET['ccid']."'>$cnt[name] ("._("Listed").": $total2)</a>\n".
			$display;
	}

	if($display)
		echo $display;

	if(intval($_GET['ccid']) <= 0)
	{
		echo "<ul>\n";
		$query = "select * from `countries` order by `name`";
		$res = mysql_query($query);
		while($row = mysql_fetch_assoc($res))
			echo "<li><a href='wot.php?id=7&ccid=$row[id]'>$row[name]</a></li>\n";

		echo "</ul>\n</li>\n</ul></div>\n<br>\n";
	} elseif(intval($_GET['regid']) <= 0) {
		echo "<ul>\n";
		$query = "select * from `regions` where `ccid`='".$_GET['ccid']."' order by `name`";
		$res = mysql_query($query);
		while($row = mysql_fetch_assoc($res))
			echo "<li><a href='wot.php?id=7&regid=$row[id]'>$row[name]</a></li>\n";

		echo "</ul>\n</li>\n</ul>\n</li>\n</ul></div>\n<br>\n";
	} elseif(intval($_GET['locid']) <= 0) {
		echo "<ul>\n";
		if($town != "")
		{
			$query = "select * from `locations` where `regid`='".$_GET['regid']."' and `name` < '$town'";
			$start = mysql_num_rows(mysql_query($query));
		}
		$query = "select * from `locations` where `regid`='".$_GET['regid']."' order by `name` limit $start, $limit";
		$res = mysql_query($query);
		while($row = mysql_fetch_assoc($res))
			echo "<li><a href='wot.php?id=7&locid=$row[id]'>$row[name]</a></li>\n";

		echo "</ul>\n</li>\n</ul>\n</li>\n</ul></div>\n<br>\n";
		$rc = mysql_num_rows(mysql_query("select * from `locations` where `regid`='".$_GET['regid']."'"));
		if($start > 0)
		{
			$prev = $start - $limit;
			if($prev < 0)
				$prev = 0;

			$st = "[ <a href='wot.php?id=7&regid=".$_GET['regid']."'><< Start</a> ] ";
			$prev = "[ <a href='wot.php?id=7&regid=".$_GET['regid']."&start=$prev'>< Previous $limit</a> ] ";
		}
		if($start < $rc - $limit)
		{
			$next = $start + $limit;
			$last = $rc - $limit;

			$next = "[ <a href='wot.php?id=7&regid=".$_GET['regid']."&start=$next'>Next $limit ></a> ] ";
			$end = "[ <a href='wot.php?id=7&regid=".$_GET['regid']."&start=$last'>End >></a> ]";
		}
		echo "<div id='search1'>$st</div><div id='search3'>$end</div>\n";
		echo "<div id='search2'>$prev</div><div id='search4'>$next</div>\n";
?>
<div align="left">
<form method="get" action="wot.php">
<table align="center" valign="middle" border="0" cellspacing="0" cellpadding="0" class="wrapper" width="200">
  <tr>
    <td colspan="2" class="title"><?=_("Search this region")?></td>
  </tr>
  <tr>
    <td class="DataTD" width="125"><?=_("Location Name")?>: </td>
    <td class="DataTD" width="125"><input type="text" name="town" value="<?=$_GET['town']?>" size="10"></td>
  </tr>
  <tr>
    <td class="DataTD" colspan="2"><input type="submit" name="process" value="<?=_("Search")?>"></td>
  </tr>
</table>
<input type="hidden" name="regid" value="<?=$_GET['regid']?>">
<input type="hidden" name="id" value="7">
</form>
</div>
<?
	} else {
		echo "</ul>\n</li>\n</ul>\n</li>\n</ul>\n</li>\n</ul>\n<br>\n";
		echo "<p><a href='wot.php?id=7&action=update&locid=".$_GET['locid']."'>";
		echo _("Make my location here");
		echo "</a></p>\n";
		echo "<p>"._("If you are happy with this location, click 'Make my location here' to update your location details.")."</p><br>\n";
	}
} else {
	$total1 = mysql_num_rows(mysql_query("select * from `users`,`notary` where `listme`='1' and `users`.`id`=`notary`.`to`
						group by `notary`.`to` HAVING SUM(`points`) >= 100"));

	if(intval($_GET['locid']) > 0)
	{
		$total4 = mysql_num_rows(mysql_query("select * from `users`,`notary` where `listme`='1' and `locid`='".$_GET['locid']."' and
						`users`.`id`=`notary`.`to` group by `notary`.`to` HAVING SUM(`points`) >= 100"));
		$loc = mysql_fetch_assoc(mysql_query("select * from `locations` where `id`='".$_GET['locid']."'"));
		$_GET['regid'] = $loc['regid'];
	}

	if(intval($_GET['regid']) > 0)
	{
		$total3 = mysql_num_rows(mysql_query("select * from `users`,`notary` where `listme`='1' and `regid`='".$_GET['regid']."' and
						`users`.`id`=`notary`.`to` group by `notary`.`to` HAVING SUM(`points`) >= 100"));
		$reg = mysql_fetch_assoc(mysql_query("select * from `regions` where `id`='".$_GET['regid']."'"));
		$_GET['ccid'] = $reg['ccid'];
	}

		$total2 = mysql_num_rows(mysql_query("select * from `users`,`notary` where `listme`='1' and
						`ccid`='".$_GET['ccid']."' and `users`.`id`=`notary`.`to`
						group by `notary`.`to` HAVING SUM(`points`) >= 100"));

	$_SESSION['profile']['ccid'] = $_GET['ccid'];
	$_SESSION['profile']['regid'] = $_GET['regid'];
	$_SESSION['profile']['locid'] = $_GET['locid'];

	mysql_query("update `users` set `ccid`='".$_GET['ccid']."',`regid`='".$_GET['regid']."',`locid`='".$_GET['locid']."'
			where `id`='".$_SESSION['profile']['id']."'");

	echo _("Your details have been updated.");
}
?>
* empty log message * 2004-10-16 00:28:17 +00:00			`<? /*`
			`Copyright (C) 2004 by Duane Groth <duane_at_CAcert_dot_org>`

			`This file is part of CAcert.`

			`CAcert has been released under the CAcert Source License`
			`which can be found included with these source files or can`
			`be downloaded from the internet from the following address:`
			`http://www.cacert.org/src-lic.php`

			`CAcert is distributed WITHOUT ANY WARRANTY; without even`
			`the implied warranty of MERCHANTABILITY or FITNESS FOR A`
			`PARTICULAR PURPOSE. See the License for more details.`
			`*/ ?>`
			`<?`
updates/bug fixes 2006-03-05 11:18:16 +00:00			`exit;`
* empty log message * 2004-10-16 00:28:17 +00:00			`if($_GET['action'] != "update")`
			`{`
			$total1 = mysql_num_rows(mysql_query("select * from `users`,`notary` where `listme`='1' and `users`.`id`=`notary`.`to`
			group by `notary`.`to` HAVING SUM(`points`) >= 100"));

updates + change password admin function 2004-11-03 01:45:21 +00:00			`$town = mysql_escape_string(stripslashes($_GET['town']));`
* empty log message * 2004-10-16 00:28:17 +00:00			`$start = intval($_GET['start']);`
			`$limit = 25;`

			`echo "<div id='listshow'><ul class='top'>\n<li>";`
			`echo "<a href='wot.php?id=7'>"._("Home")." ("._("Listed").": $total1)</a>\n";`

			`$display = "";`
			`if(intval($_GET['locid']) > 0)`
			`{`
			$total4 = mysql_num_rows(mysql_query("select * from `users`,`notary` where `listme`='1' and `locid`='".$_GET['locid']."' and
			`users`.`id`=`notary`.`to` group by `notary`.`to` HAVING SUM(`points`) >= 100"));
			$loc = mysql_fetch_assoc(mysql_query("select * from `locations` where `id`='".$_GET['locid']."'"));
			`$display = "<ul class='top'>\n<li>\n".`
updates + added api 2005-11-08 10:06:04 +00:00			`"<a href='wot.php?id=7&locid=".$_GET['locid']."'>$loc[name] ("._("Listed").": $total4)</a>\n".`
* empty log message * 2004-10-16 00:28:17 +00:00			`$display;`
			`$_GET['regid'] = $loc['regid'];`
			`}`

			`if(intval($_GET['regid']) > 0)`
			`{`
			$total3 = mysql_num_rows(mysql_query("select * from `users`,`notary` where `listme`='1' and `regid`='".$_GET['regid']."' and
			`users`.`id`=`notary`.`to` group by `notary`.`to` HAVING SUM(`points`) >= 100"));
			$reg = mysql_fetch_assoc(mysql_query("select * from `regions` where `id`='".$_GET['regid']."'"));
			`$display = "<ul class='top'>\n<li>\n".`
updates + added api 2005-11-08 10:06:04 +00:00			`"<a href='wot.php?id=7&regid=".$_GET['regid']."'>$reg[name] ("._("Listed").": $total3)</a>\n".`
* empty log message * 2004-10-16 00:28:17 +00:00			`$display;`
			`$_GET['ccid'] = $reg['ccid'];`
			`}`

			`if(intval($_GET['ccid']) > 0)`
			`{`
			$total2 = mysql_num_rows(mysql_query("select * from `users`,`notary` where `listme`='1' and
			`ccid`='".$_GET['ccid']."' and `users`.`id`=`notary`.`to`
			group by `notary`.`to` HAVING SUM(`points`) >= 100"));
			$cnt = mysql_fetch_assoc(mysql_query("select * from `countries` where `id`='".$_GET['ccid']."'"));
			`$display = "<ul class='top'>\n<li>\n".`
updates + added api 2005-11-08 10:06:04 +00:00			`"<a href='wot.php?id=7&ccid=".$_GET['ccid']."'>$cnt[name] ("._("Listed").": $total2)</a>\n".`
* empty log message * 2004-10-16 00:28:17 +00:00			`$display;`
			`}`

			`if($display)`
			`echo $display;`

			`if(intval($_GET['ccid']) <= 0)`
			`{`
			`echo "<ul>\n";`
updates + added api 2005-11-08 10:06:04 +00:00			$query = "select * from `countries` order by `name`";
* empty log message * 2004-10-16 00:28:17 +00:00			`$res = mysql_query($query);`
			`while($row = mysql_fetch_assoc($res))`
updates + added api 2005-11-08 10:06:04 +00:00			`echo "<li><a href='wot.php?id=7&ccid=$row[id]'>$row[name]</a></li>\n";`
* empty log message * 2004-10-16 00:28:17 +00:00
			`echo "</ul>\n</li>\n</ul></div>\n<br>\n";`
			`} elseif(intval($_GET['regid']) <= 0) {`
			`echo "<ul>\n";`
updates + added api 2005-11-08 10:06:04 +00:00			$query = "select * from `regions` where `ccid`='".$_GET['ccid']."' order by `name`";
* empty log message * 2004-10-16 00:28:17 +00:00			`$res = mysql_query($query);`
			`while($row = mysql_fetch_assoc($res))`
updates + added api 2005-11-08 10:06:04 +00:00			`echo "<li><a href='wot.php?id=7&regid=$row[id]'>$row[name]</a></li>\n";`
* empty log message * 2004-10-16 00:28:17 +00:00
			`echo "</ul>\n</li>\n</ul>\n</li>\n</ul></div>\n<br>\n";`
			`} elseif(intval($_GET['locid']) <= 0) {`
			`echo "<ul>\n";`
			`if($town != "")`
			`{`
updates + added api 2005-11-08 10:06:04 +00:00			$query = "select * from `locations` where `regid`='".$_GET['regid']."' and `name` < '$town'";
* empty log message * 2004-10-16 00:28:17 +00:00			`$start = mysql_num_rows(mysql_query($query));`
			`}`
updates + added api 2005-11-08 10:06:04 +00:00			$query = "select * from `locations` where `regid`='".$_GET['regid']."' order by `name` limit $start, $limit";
* empty log message * 2004-10-16 00:28:17 +00:00			`$res = mysql_query($query);`
			`while($row = mysql_fetch_assoc($res))`
updates + added api 2005-11-08 10:06:04 +00:00			`echo "<li><a href='wot.php?id=7&locid=$row[id]'>$row[name]</a></li>\n";`
* empty log message * 2004-10-16 00:28:17 +00:00
			`echo "</ul>\n</li>\n</ul>\n</li>\n</ul></div>\n<br>\n";`
			$rc = mysql_num_rows(mysql_query("select * from `locations` where `regid`='".$_GET['regid']."'"));
			`if($start > 0)`
			`{`
			`$prev = $start - $limit;`
			`if($prev < 0)`
			`$prev = 0;`

			`$st = "[ <a href='wot.php?id=7&regid=".$_GET['regid']."'><< Start</a> ] ";`
			`$prev = "[ <a href='wot.php?id=7&regid=".$_GET['regid']."&start=$prev'>< Previous $limit</a> ] ";`
			`}`
			`if($start < $rc - $limit)`
			`{`
			`$next = $start + $limit;`
			`$last = $rc - $limit;`

			`$next = "[ <a href='wot.php?id=7&regid=".$_GET['regid']."&start=$next'>Next $limit ></a> ] ";`
			`$end = "[ <a href='wot.php?id=7&regid=".$_GET['regid']."&start=$last'>End >></a> ]";`
			`}`
			`echo "<div id='search1'>$st</div><div id='search3'>$end</div>\n";`
			`echo "<div id='search2'>$prev</div><div id='search4'>$next</div>\n";`
			`?>`
			`<div align="left">`
			`<form method="get" action="wot.php">`
			`<table align="center" valign="middle" border="0" cellspacing="0" cellpadding="0" class="wrapper" width="200">`
			`<tr>`
			`<td colspan="2" class="title"><?=_("Search this region")?></td>`
			`</tr>`
			`<tr>`
			`<td class="DataTD" width="125"><?=_("Location Name")?>: </td>`
			`<td class="DataTD" width="125"><input type="text" name="town" value="<?=$_GET['town']?>" size="10"></td>`
			`</tr>`
			`<tr>`
			`<td class="DataTD" colspan="2"><input type="submit" name="process" value="<?=_("Search")?>"></td>`
			`</tr>`
			`</table>`
			`<input type="hidden" name="regid" value="<?=$_GET['regid']?>">`
			`<input type="hidden" name="id" value="7">`
			`</form>`
			`</div>`
			`<?`
			`} else {`
			`echo "</ul>\n</li>\n</ul>\n</li>\n</ul>\n</li>\n</ul>\n<br>\n";`
			`echo "<p><a href='wot.php?id=7&action=update&locid=".$_GET['locid']."'>";`
			`echo _("Make my location here");`
			`echo "</a></p>\n";`
			`echo "<p>"._("If you are happy with this location, click 'Make my location here' to update your location details.")."</p><br>\n";`
			`}`
			`} else {`
			$total1 = mysql_num_rows(mysql_query("select * from `users`,`notary` where `listme`='1' and `users`.`id`=`notary`.`to`
			group by `notary`.`to` HAVING SUM(`points`) >= 100"));

			`if(intval($_GET['locid']) > 0)`
			`{`
			$total4 = mysql_num_rows(mysql_query("select * from `users`,`notary` where `listme`='1' and `locid`='".$_GET['locid']."' and
			`users`.`id`=`notary`.`to` group by `notary`.`to` HAVING SUM(`points`) >= 100"));
			$loc = mysql_fetch_assoc(mysql_query("select * from `locations` where `id`='".$_GET['locid']."'"));
			`$_GET['regid'] = $loc['regid'];`
			`}`

			`if(intval($_GET['regid']) > 0)`
			`{`
			$total3 = mysql_num_rows(mysql_query("select * from `users`,`notary` where `listme`='1' and `regid`='".$_GET['regid']."' and
			`users`.`id`=`notary`.`to` group by `notary`.`to` HAVING SUM(`points`) >= 100"));
			$reg = mysql_fetch_assoc(mysql_query("select * from `regions` where `id`='".$_GET['regid']."'"));
			`$_GET['ccid'] = $reg['ccid'];`
			`}`

			$total2 = mysql_num_rows(mysql_query("select * from `users`,`notary` where `listme`='1' and
			`ccid`='".$_GET['ccid']."' and `users`.`id`=`notary`.`to`
			group by `notary`.`to` HAVING SUM(`points`) >= 100"));

			`$_SESSION['profile']['ccid'] = $_GET['ccid'];`
			`$_SESSION['profile']['regid'] = $_GET['regid'];`
			`$_SESSION['profile']['locid'] = $_GET['locid'];`

			mysql_query("update `users` set `ccid`='".$_GET['ccid']."',`regid`='".$_GET['regid']."',`locid`='".$_GET['locid']."'
			where `id`='".$_SESSION['profile']['id']."'");

			`echo _("Your details have been updated.");`
			`}`
			`?>`