2004-10-16 00:28:17 +00:00
< ? /*
2008-04-06 19:45:09 +00:00
LibreSSL - CAcert web application
Copyright ( C ) 2004 - 2008 CAcert Inc .
2004-10-16 00:28:17 +00:00
2008-04-06 19:45:09 +00:00
This program is free software ; you can redistribute it and / or modify
it under the terms of the GNU General Public License as published by
the Free Software Foundation ; version 2 of the License .
2004-10-16 00:28:17 +00:00
2008-04-06 19:45:09 +00:00
This program is distributed in the hope that it will be useful ,
but WITHOUT ANY WARRANTY ; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE . See the
GNU General Public License for more details .
2004-10-16 00:28:17 +00:00
2008-04-06 19:45:09 +00:00
You should have received a copy of the GNU General Public License
along with this program ; if not , write to the Free Software
Foundation , Inc . , 51 Franklin Street , Fifth Floor , Boston , MA 02110 - 1301 USA
2004-10-16 00:28:17 +00:00
*/ ?>
< ?
2004-11-10 06:12:43 +00:00
require_once ( " ../includes/loggedin.php " );
2004-10-16 00:28:17 +00:00
loadem ( " account " );
2008-08-27 23:07:49 +00:00
if ( array_key_exists ( 'date' , $_POST ) && $_POST [ 'date' ] != " " )
2005-03-18 16:08:22 +00:00
$_SESSION [ '_config' ][ 'date' ] = $_POST [ 'date' ];
2008-08-27 23:07:49 +00:00
if ( array_key_exists ( 'location' , $_POST ) && $_POST [ 'location' ] != " " )
2005-03-18 16:08:22 +00:00
$_SESSION [ '_config' ][ 'location' ] = $_POST [ 'location' ];
2008-09-22 15:32:03 +00:00
$oldid = array_key_exists ( 'oldid' , $_REQUEST ) ? intval ( $_REQUEST [ 'oldid' ]) : 0 ;
2005-12-04 21:04:05 +00:00
if ( $oldid == 12 )
{
$id = $oldid ;
}
2004-10-16 00:28:17 +00:00
if (( $id == 5 || $oldid == 5 || $id == 6 || $oldid == 6 ) && $_SESSION [ 'profile' ][ 'points' ] < 100 )
{
showheader ( _ ( " My CAcert.org Account! " ));
echo " <p> " . _ ( " You don't have access to view these pages. " ) . " </p> " ;
showfooter ();
exit ;
}
if ( $oldid == 6 && intval ( $_SESSION [ '_config' ][ 'notarise' ][ 'id' ]) <= 0 )
{
2008-09-22 15:32:03 +00:00
$oldid = 0 ;
2004-10-16 00:28:17 +00:00
$id = 5 ;
}
2008-09-22 15:32:03 +00:00
if ( $oldid == 5 && array_key_exists ( 'reminder' , $_POST ) && $_POST [ 'reminder' ] != " " )
2005-03-20 17:07:33 +00:00
{
2005-07-24 13:56:10 +00:00
$body = " " ;
if ( $_POST [ 'reminder-lang' ] != " " && $_POST [ 'reminder-lang' ] != " en_AU " )
{
$userlang = $_POST [ 'reminder-lang' ];
$_SESSION [ '_config' ][ 'reminder-lang' ] = $_POST [ 'reminder-lang' ];
putenv ( " LANG= " . $userlang );
setlocale ( LC_ALL , $userlang );
$body .= $_SESSION [ '_config' ][ 'translations' ][ $userlang ] . " : \n \n " ;
$body .= sprintf ( _ ( " This is a short reminder that you filled out forms to become trusted with CAcert.org, and %s has attempted to issue you points. Please create your account at %s as soon as possible and then notify %s so that the points can be issued. " ), $_SESSION [ 'profile' ][ 'fname' ] . " ( " . $_SESSION [ 'profile' ][ 'email' ] . " ) " , " http://www.cacert.org " , $_SESSION [ 'profile' ][ 'fname' ]) . " \n \n " ;
$body .= _ ( " Best regards " ) . " \n " ;
$body .= _ ( " CAcert Support Team " );
$body .= " \n \n English: \n \n " ;
}
$body .= sprintf ( " This is a short reminder that you filled out forms to become trusted with CAcert.org, and %s has attempted to issue you points. Please create your account at %s as soon as possible and then notify %s so that the points can be issued. " , $_SESSION [ 'profile' ][ 'fname' ] . " ( " . $_SESSION [ 'profile' ][ 'email' ] . " ) " , " http://www.cacert.org " , $_SESSION [ 'profile' ][ 'fname' ]) . " \n \n " ;
2005-03-20 17:07:33 +00:00
$body .= " Best regards " . " \n " ;
$body .= " CAcert Support Team " ;
2005-07-24 13:56:10 +00:00
sendmail ( $_POST [ 'email' ], " [CAcert.org] " . _ ( " Reminder Notice " ), $body , $_SESSION [ 'profile' ][ 'email' ], " " , " " , $_SESSION [ 'profile' ][ 'fname' ]);
if ( $_POST [ 'reminder-lang' ] != " " && $_POST [ 'reminder-lang' ] != " en_AU " )
{
$userlang = $_SESSION [ 'profile' ][ 'language' ];
putenv ( " LANG= " . $userlang );
setlocale ( LC_ALL , $userlang );
}
2005-03-20 17:07:33 +00:00
$_SESSION [ '_config' ][ 'remindersent' ] = 1 ;
$_SESSION [ '_config' ][ 'error' ] = _ ( " A reminder notice has been sent. " );
$id = $oldid ;
2008-09-22 15:32:03 +00:00
$oldid = 0 ;
2005-03-20 17:07:33 +00:00
}
2004-10-16 00:28:17 +00:00
if ( $oldid == 5 )
{
2005-03-20 17:07:33 +00:00
$_SESSION [ '_config' ][ 'noemailfound' ] = 0 ;
2005-07-01 13:12:14 +00:00
$query = " select * from `users` where `email`=' " . mysql_escape_string ( stripslashes ( $_POST [ 'email' ])) . " ' and `deleted`=0 " ;
2004-10-16 00:28:17 +00:00
$res = mysql_query ( $query );
if ( mysql_num_rows ( $res ) != 1 )
{
$id = $oldid ;
2008-09-22 15:32:03 +00:00
$oldid = 0 ;
2004-10-16 00:28:17 +00:00
$_SESSION [ '_config' ][ 'error' ] = _ ( " I'm sorry, there was no email matching what you entered in the system. Please double check your information. " );
2005-11-08 10:06:04 +00:00
$_SESSION [ '_config' ][ 'noemailfound' ] = 1 ;
2004-10-16 00:28:17 +00:00
} else {
$_SESSION [ '_config' ][ 'notarise' ] = mysql_fetch_assoc ( $res );
}
}
if ( $oldid == 5 || $oldid == 6 )
{
2008-09-22 15:32:03 +00:00
if ( array_key_exists ( 'cancel' , $_REQUEST ) && $_REQUEST [ 'cancel' ] != " " )
2006-08-16 19:35:58 +00:00
{
header ( " location: wot.php " );
exit ;
}
2004-10-16 00:28:17 +00:00
if ( $_SESSION [ '_config' ][ 'notarise' ][ 'id' ] == $_SESSION [ 'profile' ][ 'id' ])
{
$id = 5 ;
2008-09-22 15:32:03 +00:00
$oldid = 0 ;
2004-10-24 01:46:49 +00:00
$_SESSION [ '_config' ][ 'error' ] = _ ( " You are never allowed to Assure yourself! " );
2004-10-16 00:28:17 +00:00
}
}
if ( $oldid == 5 || $oldid == 6 )
{
$query = " select * from `notary` where `from`=' " . $_SESSION [ 'profile' ][ 'id' ] . " ' and
`to` = '".$_SESSION[' _config '][' notarise '][' id ']."' " ;
2004-11-30 23:31:18 +00:00
$_SESSION [ '_config' ][ 'alreadydone' ] = 0 ;
2004-10-16 00:28:17 +00:00
$res = mysql_query ( $query );
2005-07-01 13:12:14 +00:00
if ( mysql_num_rows ( $res ) > 0 && $_SESSION [ 'profile' ][ 'points' ] < 200 )
2004-10-16 00:28:17 +00:00
{
$id = 5 ;
2008-09-22 15:32:03 +00:00
$oldid = 0 ;
2004-10-24 01:46:49 +00:00
$_SESSION [ '_config' ][ 'error' ] = _ ( " You are only allowed to Assure someone once! " );
2004-10-16 00:28:17 +00:00
} elseif ( $oldid == 5 ) {
$id = 6 ;
}
2004-11-30 23:31:18 +00:00
if ( $id == 6 && mysql_num_rows ( $res ) > 0 )
{
$_SESSION [ '_config' ][ 'alreadydone' ] = 1 ;
}
unset ( $_SESSION [ '_config' ][ 'pointsalready' ]);
2005-03-12 19:40:24 +00:00
if ( $id == 6 && $_SESSION [ 'profile' ][ 'points' ] >= 100 )
2004-11-30 23:31:18 +00:00
{
$query = " select sum(`points`) as `total` from `notary` where `to`=' " . $_SESSION [ '_config' ][ 'notarise' ][ 'id' ] . " ' group by `to` " ;
$res = mysql_query ( $query );
$drow = mysql_fetch_assoc ( $res );
$_SESSION [ '_config' ][ 'pointsalready' ] = $drow [ 'total' ];
}
2005-03-12 19:40:24 +00:00
unset ( $_SESSION [ '_config' ][ 'verified' ]);
if ( $id == 6 && $_SESSION [ 'profile' ][ 'points' ] >= 100 )
{
$query = " select `verified` from `users` where `id`=' " . $_SESSION [ '_config' ][ 'notarise' ][ 'id' ] . " ' " ;
$res = mysql_query ( $query );
$drow = mysql_fetch_assoc ( $res );
$_SESSION [ '_config' ][ 'verified' ] = $drow [ 'verified' ];
}
2004-10-16 00:28:17 +00:00
}
if ( $oldid == 6 )
{
2008-09-22 15:32:03 +00:00
if ( ! array_key_exists ( 'assertion' , $_POST ) || $_POST [ 'assertion' ] != 1 || ! array_key_exists ( 'rules' , $_POST ) || $_POST [ 'rules' ] != 1 )
2004-10-16 16:22:33 +00:00
{
$id = $oldid ;
2008-09-22 15:32:03 +00:00
$oldid = 0 ;
2004-10-16 16:22:33 +00:00
$_SESSION [ '_config' ][ 'error' ] = _ ( " You failed to check all boxes to validate your adherence to the rules and policies of CAcert " );
}
2008-09-25 22:23:01 +00:00
if (( ! array_key_exists ( 'certify' , $_POST ) || $_POST [ 'certify' ] != 1 ) && $_SESSION [ 'profile' ][ 'ttpadmin' ] != 1 )
2004-10-16 00:28:17 +00:00
{
$id = $oldid ;
2008-09-22 15:32:03 +00:00
$oldid = 0 ;
2004-10-16 00:28:17 +00:00
$_SESSION [ '_config' ][ 'error' ] = _ ( " You failed to check all boxes to validate your adherence to the rules and policies of CAcert " );
}
}
2008-03-16 18:38:24 +00:00
if ( $oldid == 6 && $_SESSION [ 'profile' ][ 'ttpadmin' ] != 1 )
2004-10-16 00:28:17 +00:00
{
2004-12-03 23:19:04 +00:00
if ( $_POST [ 'location' ] == " " )
2004-10-16 00:28:17 +00:00
{
$id = $oldid ;
2008-09-22 15:32:03 +00:00
$oldid = 0 ;
2004-12-03 23:19:04 +00:00
$_SESSION [ '_config' ][ 'error' ] = _ ( " You failed to enter a location of your meeting. " );
2004-10-16 00:28:17 +00:00
}
}
2005-07-14 19:56:28 +00:00
if ( $oldid == 6 )
{
$query = " select * from `users` where `id`=' " . $_SESSION [ '_config' ][ 'notarise' ][ 'id' ] . " ' " ;
$res = mysql_query ( $query );
$row = mysql_fetch_assoc ( $res );
$name = $row [ 'fname' ] . " " . $row [ 'mname' ] . " " . $row [ 'lname' ] . " " . $row [ 'suffix' ];
2005-12-04 21:04:05 +00:00
if ( $_SESSION [ '_config' ][ 'wothash' ] != md5 ( $name . " - " . $row [ 'dob' ]) || $_SESSION [ '_config' ][ 'wothash' ] != $_REQUEST [ 'pagehash' ])
2005-07-14 19:56:28 +00:00
{
$id = $oldid ;
2008-09-22 15:32:03 +00:00
$oldid = 0 ;
2005-07-24 13:56:10 +00:00
$_SESSION [ '_config' ][ 'error' ] = _ ( " Race condition discovered, user altered details during assurance procedure. PLEASE MAKE SURE THE NEW DETAILS BELOW MATCH THE ID DOCUMENTS. " );
2005-07-14 19:56:28 +00:00
}
}
2006-08-14 08:26:42 +00:00
if ( $oldid == 6 && $_REQUEST [ 'points' ] == " " )
{
$id = $oldid ;
2008-09-22 15:32:03 +00:00
$oldid = 0 ;
2006-08-14 08:26:42 +00:00
$_SESSION [ '_config' ][ 'error' ] = _ ( " You must enter the number of points you wish to allocate to this person. " );
}
2004-10-16 00:28:17 +00:00
if ( $oldid == 6 )
{
$max = maxpoints ();
2006-08-14 00:32:33 +00:00
$awarded = $newpoints = intval ( $_POST [ 'points' ]);
2005-02-16 18:11:53 +00:00
if ( $newpoints > $max )
$newpoints = $max ;
2004-10-16 00:28:17 +00:00
$query = " select sum(`points`) as `total` from `notary` where `to`=' " . $_SESSION [ '_config' ][ 'notarise' ][ 'id' ] . " ' group by `to` " ;
$res = mysql_query ( $query );
$drow = mysql_fetch_assoc ( $res );
2005-01-02 03:39:11 +00:00
2005-02-16 18:11:53 +00:00
if ( $_SESSION [ 'profile' ][ 'board' ] == 1 && intval ( $_POST [ 'expire' ]) > 0 && $drow [ 'total' ] > 150 )
2005-01-02 03:39:11 +00:00
{
showheader ( _ ( " My CAcert.org Account! " ));
echo " <p> " . _ ( " You tried to give a temporary points increase to someone that already has more then 150 points. Can't continue. " ) . " </p> " ;
showfooter ();
exit ;
}
2005-02-16 18:11:53 +00:00
if ( $_SESSION [ 'profile' ][ 'board' ] == 1 && intval ( $_POST [ 'expire' ]) > 0 && intval ( $_POST [ 'sponsor' ]) <= 0 )
2005-01-03 01:03:03 +00:00
{
showheader ( _ ( " My CAcert.org Account! " ));
echo " <p> " . _ ( " Y ou didn't list a valid sponsor for this action. " ) . " </p> " ;
showfooter ();
exit ;
}
2005-02-16 18:11:53 +00:00
if ( $_SESSION [ 'profile' ][ 'board' ] == 1 && intval ( $_POST [ 'expire' ]) > 0 && intval ( $_POST [ 'sponsor' ]) > 0 )
2005-01-03 01:03:03 +00:00
{
2005-02-16 18:11:53 +00:00
$resc = mysql_query ( " select * from `users` where `id`=' " . intval ( $_POST [ 'sponsor' ]) . " ' and `board`='1' " );
2005-01-03 01:03:03 +00:00
$rc = mysql_num_rows ( $resc );
$sponsor = mysql_fetch_assoc ( $resc );
if ( $rc <= 0 )
{
showheader ( _ ( " My CAcert.org Account! " ));
echo " <p> " . _ ( " You listed an invalid sponsor for this action. " ) . " </p> " ;
showfooter ();
exit ;
}
}
2005-02-16 18:11:53 +00:00
if ( $_SESSION [ 'profile' ][ 'board' ] == 1 && intval ( $_POST [ 'expire' ]) > 0 )
2005-01-02 03:39:11 +00:00
{
$_POST [ 'method' ] == " Administrative Increase " ;
2005-02-16 18:11:53 +00:00
$newpoints = 200 - $drow [ 'total' ];
2005-01-03 01:03:03 +00:00
if ( intval ( $_POST [ 'expire' ]) > 45 )
$_POST [ 'expire' ] = 45 ;
2005-02-16 18:11:53 +00:00
if ( intval ( $_POST [ 'expire' ]) <= 7 )
$_POST [ 'expire' ] = 7 ;
2005-01-02 03:39:11 +00:00
} else {
$_POST [ 'expire' ] = 0 ;
2005-02-16 18:11:53 +00:00
if (( $drow [ 'total' ] + $newpoints ) > 100 && $max < 100 )
$newpoints = 100 - $drow [ 'total' ];
if (( $drow [ 'total' ] + $newpoints ) > $max && $max >= 100 )
$newpoints = $max - $drow [ 'total' ];
if ( $newpoints < 0 )
$newpoints = 0 ;
2005-01-02 03:39:11 +00:00
}
2004-10-31 07:08:42 +00:00
2004-11-03 01:45:21 +00:00
if ( mysql_escape_string ( stripslashes ( $_POST [ 'date' ])) == " " )
2004-10-31 07:08:42 +00:00
$_POST [ 'date' ] = date ( " Y-m-d H:i:s " );
2006-08-15 03:52:57 +00:00
$query = " select * from `notary` where `from`=' " . $_SESSION [ 'profile' ][ 'id' ] . " ' AND
2006-08-14 16:03:10 +00:00
`to` = '".$_SESSION[' _config '][' notarise '][' id ']."' AND
2006-08-15 03:52:57 +00:00
`awarded` = '$awarded' AND
2006-08-14 16:03:10 +00:00
`location` = '".mysql_escape_string(stripslashes($_POST[' location ']))."' AND
`date` = '".mysql_escape_string(stripslashes($_POST[' date ']))."' " ;
$res = mysql_query ( $query );
2006-08-15 03:52:57 +00:00
if ( mysql_num_rows ( $res ) > 0 )
2006-08-14 16:03:10 +00:00
{
$id = $oldid ;
2008-09-22 15:32:03 +00:00
$oldid = 0 ;
2006-08-14 16:03:10 +00:00
$_SESSION [ '_config' ][ 'error' ] = _ ( " Identical Assurance attempted, will not continue. " );
}
}
if ( $oldid == 6 )
{
2004-10-16 00:28:17 +00:00
$query = " insert into `notary` set `from`=' " . $_SESSION [ 'profile' ][ 'id' ] . " ',
`to` = '".$_SESSION[' _config '][' notarise '][' id ']."' ,
2006-08-15 19:00:15 +00:00
`points` = '$newpoints' , `awarded` = '$awarded' ,
2004-11-03 01:45:21 +00:00
`location` = '".mysql_escape_string(stripslashes($_POST[' location ']))."' ,
2004-12-02 11:42:34 +00:00
`date` = '".mysql_escape_string(stripslashes($_POST[' date ']))."' ,
`when` = NOW () " ;
2005-02-16 18:11:53 +00:00
if ( $_SESSION [ 'profile' ][ 'board' ] == 1 && intval ( $_POST [ 'expire' ]) > 0 )
2005-01-02 03:39:11 +00:00
{
2005-01-03 01:03:03 +00:00
$query .= " , \n `method`='Temporary Increase' " ;
2005-01-02 03:39:11 +00:00
$query .= " , \n `expire`=DATE_ADD(NOW(), INTERVAL ' " . intval ( $_POST [ 'expire' ]) . " ' DAY) " ;
2005-01-03 01:03:03 +00:00
$query .= " , \n `sponsor`=' " . intval ( $_POST [ 'sponsor' ]) . " ' " ;
2005-02-16 18:11:53 +00:00
} else if ( $_SESSION [ 'profile' ][ 'board' ] == 1 ) {
2004-11-03 01:45:21 +00:00
$query .= " , \n `method`=' " . mysql_escape_string ( stripslashes ( $_POST [ 'method' ])) . " ' " ;
2006-04-17 12:02:09 +00:00
} else if ( $_SESSION [ 'profile' ][ 'ttpadmin' ] == 1 && ( $_POST [ 'method' ] == 'Trusted 3rd Parties' || $_POST [ 'method' ] == 'Trusted third Parties' )) {
$query .= " , \n `method`='Trusted Third Parties' " ;
2005-01-02 03:39:11 +00:00
}
2004-10-16 00:28:17 +00:00
mysql_query ( $query );
2004-10-31 07:08:42 +00:00
if ( $_SESSION [ 'profile' ][ 'points' ] < 150 )
2004-10-31 01:25:51 +00:00
{
2005-07-01 13:12:14 +00:00
$addpoints = 0 ;
if ( $_SESSION [ 'profile' ][ 'points' ] < 149 && $_SESSION [ 'profile' ][ 'points' ] >= 100 )
$addpoints = 2 ;
else if ( $_SESSION [ 'profile' ][ 'points' ] == 149 && $_SESSION [ 'profile' ][ 'points' ] >= 100 )
$addpoints = 1 ;
2004-10-31 01:25:51 +00:00
$query = " insert into `notary` set `from`=' " . $_SESSION [ 'profile' ][ 'id' ] . " ',
`to` = '".$_SESSION[' profile '][' id ']."' ,
2006-08-14 00:32:33 +00:00
`points` = '$addpoints' , `awarded` = '$addpoints' ,
2004-11-03 01:45:21 +00:00
`location` = '".mysql_escape_string(stripslashes($_POST[' location ']))."' ,
`date` = '".mysql_escape_string(stripslashes($_POST[' date ']))."' ,
2004-12-02 11:42:34 +00:00
`method` = 'Administrative Increase' ,
`when` = NOW () " ;
2004-10-31 01:25:51 +00:00
mysql_query ( $query );
2005-07-01 13:12:14 +00:00
$_SESSION [ 'profile' ][ 'points' ] += $addpoints ;
2004-10-31 01:25:51 +00:00
}
2004-10-16 00:28:17 +00:00
2004-10-16 15:41:39 +00:00
if ( $_SESSION [ '_config' ][ 'notarise' ][ 'language' ] != " " )
{
$userlang = $_SESSION [ '_config' ][ 'notarise' ][ 'language' ];
2005-01-02 03:39:11 +00:00
putenv ( " LANG= " . $userlang );
2005-07-24 13:56:10 +00:00
setlocale ( LC_ALL , $userlang );
2004-10-16 15:41:39 +00:00
}
2004-10-31 01:25:51 +00:00
$body = sprintf ( _ ( " You are receiving this email because you have been assured by %s %s (%s). " ), $_SESSION [ 'profile' ][ 'fname' ], $_SESSION [ 'profile' ][ 'lname' ], $_SESSION [ 'profile' ][ 'email' ]) . " \n \n " ;
2005-02-16 18:11:53 +00:00
if ( $_POST [ 'points' ] != $newpoints )
$body .= sprintf ( _ ( " You were issued %s points however the system has rounded this down to %s and you now have %s points in total. " ), $_POST [ 'points' ], $newpoints , ( $newpoints + $drow [ 'total' ])) . " \n \n " ;
else
$body .= sprintf ( _ ( " You were issued %s points and you now have %s points in total. " ), $newpoints , ( $newpoints + $drow [ 'total' ])) . " \n \n " ;
2004-10-16 00:28:17 +00:00
2005-02-16 18:11:53 +00:00
if (( $drow [ 'total' ] + $newpoints ) < 100 && ( $drow [ 'total' ] + $newpoints ) >= 50 )
2004-10-16 00:28:17 +00:00
{
$body .= _ ( " You now have over 50 points, and can now have your name added to client certificates, and issue server certificates for up to 2 years. " ) . " \n \n " ;
}
2005-02-16 18:11:53 +00:00
if (( $drow [ 'total' ] + $newpoints ) >= 100 && $newpoints > 0 )
2004-10-16 00:28:17 +00:00
{
2004-10-24 01:46:49 +00:00
$body .= _ ( " You now have over 100 points and can start assuring others. " ) . " \n \n " ;
2007-02-28 17:20:00 +00:00
$body .= _ ( " To make it easier for others in your area to find you, it's helpful to list yourself as an assurer (this is voluntary), as well as a physical location where you live or work the most. You can flag your account to be listed, and add a comment to the display by going to: " ) . " \n \n " ;
2005-05-13 15:34:39 +00:00
$body .= " https://www.cacert.org/wot.php?id=8 \n \n " ;
$body .= _ ( " You can list your location by going to: " ) . " \n \n " ;
2007-02-23 21:21:18 +00:00
$body .= " https://www.cacert.org/wot.php?id=13 \n \n " ;
2004-10-16 00:28:17 +00:00
}
2005-02-16 18:11:53 +00:00
if ( $_SESSION [ 'profile' ][ 'board' ] == 1 && intval ( $_POST [ 'expire' ]) > 0 )
2005-01-02 03:39:11 +00:00
$body .= sprintf ( _ ( " Please Note: this is a temporary increase for %s days only. After that time your points will be reduced to 150 points. " ), intval ( $_POST [ 'expire' ])) . " \n \n " ;
2004-12-30 22:16:58 +00:00
$body .= _ ( " Best regards " ) . " \n " ;
2004-10-16 00:28:17 +00:00
$body .= _ ( " CAcert Support Team " );
2005-05-23 01:53:59 +00:00
sendmail ( $_SESSION [ '_config' ][ 'notarise' ][ 'email' ], " [CAcert.org] " . _ ( " You've been Assured. " ), $body , " support@cacert.org " , " " , " " , " CAcert Website " );
2004-10-16 15:41:39 +00:00
2005-07-24 13:56:10 +00:00
putenv ( " LANG= " . $_SESSION [ 'profile' ][ 'language' ]);
setlocale ( LC_ALL , $_SESSION [ 'profile' ][ 'language' ]);
2004-10-16 00:28:17 +00:00
2004-10-31 01:25:51 +00:00
$body = sprintf ( _ ( " You are receiving this email because you have assured %s %s (%s). " ), $_SESSION [ '_config' ][ 'notarise' ][ 'fname' ], $_SESSION [ '_config' ][ 'notarise' ][ 'lname' ], $_SESSION [ '_config' ][ 'notarise' ][ 'email' ]) . " \n \n " ;
2005-02-16 18:11:53 +00:00
if ( $_POST [ 'points' ] != $newpoints )
$body .= sprintf ( _ ( " You issued %s points however the system has rounded this down to %s and they now have %s points in total. " ), $_POST [ 'points' ], $newpoints , ( $newpoints + $drow [ 'total' ])) . " \n \n " ;
else
$body .= sprintf ( _ ( " You issued %s points and they now have %s points in total. " ), $newpoints , ( $newpoints + $drow [ 'total' ])) . " \n \n " ;
if ( $_SESSION [ 'profile' ][ 'board' ] == 1 && intval ( $_POST [ 'expire' ]) > 0 )
2005-01-02 03:39:11 +00:00
$body .= sprintf ( _ ( " Please Note: this is a temporary increase for %s days only. After that time their points will be reduced to 150 points. " ), intval ( $_POST [ 'expire' ])) . " \n \n " ;
2004-12-30 22:16:58 +00:00
$body .= _ ( " Best regards " ) . " \n " ;
2004-10-16 00:28:17 +00:00
$body .= _ ( " CAcert Support Team " );
2005-05-23 01:53:59 +00:00
sendmail ( $_SESSION [ 'profile' ][ 'email' ], " [CAcert.org] " . _ ( " You've Assured Another Member. " ), $body , " support@cacert.org " , " " , " " , " CAcert Support " );
2004-10-16 00:28:17 +00:00
2005-02-16 18:11:53 +00:00
if ( $_SESSION [ 'profile' ][ 'board' ] == 1 && intval ( $_POST [ 'expire' ]) > 0 )
2005-01-02 03:39:11 +00:00
{
2005-01-03 01:03:03 +00:00
$body = sprintf ( " %s %s (%s) has issued a temporary increase to 200 points for %s %s (%s) for %s days. This action was sponsored by %s %s (%s). " , $_SESSION [ 'profile' ][ 'fname' ], $_SESSION [ 'profile' ][ 'lname' ], $_SESSION [ 'profile' ][ 'email' ], $_SESSION [ '_config' ][ 'notarise' ][ 'fname' ], $_SESSION [ '_config' ][ 'notarise' ][ 'lname' ], $_SESSION [ '_config' ][ 'notarise' ][ 'email' ], intval ( $_POST [ 'expire' ]), $sponsor [ 'fname' ], $sponsor [ 'lname' ], $sponsor [ 'email' ]) . " \n \n " ;
2005-01-02 03:39:11 +00:00
2005-05-23 01:53:59 +00:00
sendmail ( " cacert-board@lists.cacert.org " , " [CAcert.org] Temporary Increase Issued. " , $body , " website@cacert.org " , " " , " " , " CAcert Website " );
2005-01-02 03:39:11 +00:00
}
2004-10-16 00:28:17 +00:00
showheader ( _ ( " My CAcert.org Account! " ));
2004-10-24 01:46:49 +00:00
echo " <p> " . _ ( " Shortly you and the person you were assuring will receive an email confirmation. There is no action on your behalf required to complete this. " ) . " </p> " ;
2005-11-08 10:06:04 +00:00
?> <form method="post" action="wot.php">
< table align = " center " valign = " middle " border = " 0 " cellspacing = " 0 " cellpadding = " 0 " class = " wrapper " >
< tr >
< td colspan = " 2 " class = " title " >< ? = _ ( " Assure Someone " ) ?> </td>
</ tr >
< tr >
< td class = " DataTD " >< ? = _ ( " Email " ) ?> :</td>
2006-11-23 22:22:31 +00:00
< td class = " DataTD " >< input type = " text " name = " email " id = " email " value = " " ></ td >
2005-11-08 10:06:04 +00:00
</ tr >
< tr >
< td class = " DataTD " colspan = " 2 " >< input type = " submit " name = " process " value = " <?=_( " Next " )?> " ></ td >
</ tr >
</ table >
< input type = " hidden " name = " oldid " value = " 5 " >
</ form >
2006-11-23 22:22:31 +00:00
< SCRIPT LANGUAGE = " JavaScript " >
//<![CDATA[
function my_init ()
{
document . getElementById ( " email " ) . focus ();
}
window . onload = my_init ();
//]]>
</ script >
2005-11-08 10:06:04 +00:00
< ?
2004-10-16 00:28:17 +00:00
showfooter ();
exit ;
}
if ( $oldid == 8 )
{
2008-09-07 02:46:35 +00:00
csrf_check ( " chgcontact " );
2004-11-03 01:45:21 +00:00
$info = mysql_escape_string ( strip_tags ( stripslashes ( $_POST [ 'contactinfo' ])));
2004-10-16 00:28:17 +00:00
$listme = intval ( $_POST [ 'listme' ]);
if ( $listme < 0 || $listme > 1 )
$listme = 0 ;
$_SESSION [ 'profile' ][ 'listme' ] = $listme ;
$_SESSION [ 'profile' ][ 'contactinfo' ] = $info ;
$query = " update `users` set `listme`=' $listme ',`contactinfo`=' $info ' where `id`=' " . $_SESSION [ 'profile' ][ 'id' ] . " ' " ;
mysql_query ( $query );
showheader ( _ ( " My CAcert.org Account! " ));
echo " <p> " . _ ( " Your account information has been updated. " ) . " </p> " ;
showfooter ();
exit ;
}
2006-08-16 03:33:47 +00:00
if ( $oldid == 9 && $_REQUEST [ 'userid' ] > 0 && $_SESSION [ 'profile' ][ 'id' ] > 0 )
2004-10-16 00:28:17 +00:00
{
2006-02-03 18:45:23 +00:00
if ( $_SESSION [ '_config' ][ 'pagehash' ] != $_REQUEST [ 'pageid' ])
{
2008-09-22 15:32:03 +00:00
$oldid = 0 ;
2006-02-03 18:45:23 +00:00
$id = 9 ;
$error = _ ( " It looks like you were trying to contact multiple people, this isn't allowed due to data security reasons. " );
} else {
2006-08-16 03:33:47 +00:00
$body = $_REQUEST [ 'message' ];
$subject = $_REQUEST [ 'subject' ];
$userid = intval ( $_REQUEST [ 'userid' ]);
$user = mysql_fetch_assoc ( mysql_query ( " select * from `users` where `id`=' $userid ' and `listme`=1 " ));
$points = mysql_num_rows ( mysql_query ( " select sum(`points`) as `total` from `notary`
where `to` = '".$user[' id ']."' group by `to` HAVING SUM ( `points` ) > 0 " ));
if ( $points > 0 )
{
sendmail ( $user [ 'email' ], " [CAcert.org] " . $_REQUEST [ 'subject' ], $_REQUEST [ 'message' ],
$_SESSION [ 'profile' ][ 'email' ], " " , " " , $_SESSION [ 'profile' ][ 'fname' ] . " " . $_SESSION [ 'profile' ][ 'lname' ]);
showheader ( _ ( " My CAcert.org Account! " ));
echo " <p> " . _ ( " Your email has been sent to " ) . $user [ 'fname' ] . " .</p> " ;
echo " <p>[ <a href='javascript:history.go(-2)'>Go Back</a> ]</p> \n " ;
showfooter ();
exit ;
} else {
showheader ( _ ( " My CAcert.org Account! " ));
echo _ ( " Sorry, I was unable to locate that user. " );
showfooter ();
exit ;
}
2006-02-03 18:45:23 +00:00
}
2004-10-16 00:28:17 +00:00
} elseif ( $oldid == 9 ) {
2008-09-22 15:32:03 +00:00
$oldid = 0 ;
2004-10-16 00:28:17 +00:00
$error = _ ( " There was an error and I couldn't proceed " );
$id = 9 ;
}
showheader ( _ ( " My CAcert.org Account! " ));
includeit ( $id , " wot " );
showfooter ();
?>