<?
//
// H-Tracker v0.2
// http://h-tracker.org
// Based on TorrentTrader (http://www.torrenttrader.org)
//
//
require_once("backend/functions.php");
dbconn(false);
loggedinonly();
if($CURUSER["view_users"]=="no")
show_error_msg("Error","You do not have permission to view users",1);
stdhead("User CP");
$id = (int)$_GET["id"];
if (!is_valid_id($id))
show_error_msg("Can't show details", "Bad ID.",1);
$r = @mysql_query("SELECT * FROM users WHERE id=$id") or die(mysql_error());
$user = mysql_fetch_array($r) or show_error_msg("Can't show details", "No user with ID $id.",1);
//add invites check here
if (($user["enabled"] == "no" || ($user["status"] == "pending")) && $CURUSER["class"] < 4)
show_error_msg("Error", "Unable to access these details at this time, this user is not currently active<BR><BR>This user may have had their account disabled.",1);
//get all vars first
//$country
$res = mysql_query("SELECT name, flagpic FROM countries WHERE id=$user[country] LIMIT 1") or die(mysql_error());
if (mysql_num_rows($res) == 1){
$arr = mysql_fetch_assoc($res);
$country = "<img src='".$site_config["SITEURL"]."/images/flags/".htmlspecialchars($arr["flagpic"])."' alt=".sqlesc($arr["name"]).">";
}
$res = mysql_query("SELECT image, zodiactype FROM zodiac WHERE id=$user[zodiactype] LIMIT 1") or die(mysql_error());
if (mysql_num_rows($res) == 1)
{
$arr = mysql_fetch_assoc($res);
$zodiactype = "<img src='".$site_config["SITEURL"]."/images/zodiac/".htmlspecialchars($arr["image"])."' alt=".sqlesc($arr["zodiactype"]).">";
}
//Download speed
$res = mysql_query("SELECT name FROM speed WHERE id=$user[download] LIMIT 1") or die(mysql_error());
if (mysql_num_rows($res) == 1){
$arr = mysql_fetch_assoc($res);
$downloadspeed = "$arr[name]";
}
//Upload Speed
$res = mysql_query("SELECT name FROM speed WHERE id=$user[upload] LIMIT 1") or die(mysql_error());
if (mysql_num_rows($res) == 1){
$arr = mysql_fetch_assoc($res);
$uploadspeed = "$arr[name]";
}
//$ratio
if ($user["downloaded"] > 0)
{
$ratio = number_format($user["uploaded"] / $user["downloaded"], 2);
if (($user["uploaded"] / $user["downloaded"]) > 10)
$ratio = "10+";
}
else
if ($user["uploaded"] > 0)
$ratio = "Inf.";
else
$ratio = "----";
//$numtorrents
$res = mysql_query("SELECT COUNT(*) FROM torrents WHERE owner=$id") or die(mysql_error());
$arr = mysql_fetch_row($res);
$numtorrents = $arr[0];
//$numcomments
$res = mysql_query("SELECT COUNT(*) FROM comments WHERE user=$id") or die(mysql_error());
$arr = mysql_fetch_row($res);
$numcomments = $arr[0];
$avatar = htmlspecialchars($user["avatar"]);
if (!$avatar) {
$avatar = "".$site_config["SITEURL"]."/themes/$THEME/images/avatars/default_avatar.gif";
}
function peerstable($res){
$ret = "<table align=center cellpadding=\"3\" cellspacing=\"0\" class=\"table_table\" width=\"95%\" border=\"1\"><tr><td class=table_head>" . NAME . "</td><td class=table_head align=center>" . SIZE . "</td><td class=table_head align=center>" . UPLOADED . "</td>\n<td class=table_head align=center>" . DOWNLOADED . "</td><td class=table_head align=center>" . RATIO . "</td></tr>\n";
while ($arr = mysql_fetch_assoc($res)){
$res2 = mysql_query("SELECT name,size FROM torrents WHERE id=$arr[torrent] ORDER BY name");
$arr2 = mysql_fetch_assoc($res2);
if ($arr["uploaded"] > 0 && $arr["downloaded"] == 0)
$ratio = "Inf.";
elseif ($arr["downloaded"] > 0)
$ratio = $arr["uploaded"] / $arr["downloaded"];
else
$ratio = "---";
if ($ratio >= 10)
$ratio = "10+";
$ret .= "<tr><td class=table_col1><a href=torrents-details.php?id=$arr[torrent]&hit=1><b>" . htmlspecialchars($arr2[name]) . "</b></a></td><td align=center class=table_col2>" . mksize($arr2["size"]) . "</td><td align=center class=table_col1>" . mksize($arr["uploaded"]) . "</td><td align=center class=table_col2>" . mksize($arr["downloaded"]) . "</td><td align=center class=table_col1>$ratio</td></tr>\n";
}
$ret .= "</table>\n";
return $ret;
}
//Layout
stdhead("User Details for " . $user["username"]);
begin_frame("User Details for " . $user["username"] . "");
if ($user["privacy"] != "strong" || ($CURUSER["control_panel"] == "yes")) {;?>
<table align="center" border="0" cellpadding="6" cellspacing="1" width="100%">
<?
print("<table border=1 cellspacing=0 cellpadding=1 width=100%><tr>".
"<td class=rowtabhead align=center>Profile</td>".
"</tr>");?>
<table align="center" border="0" cellpadding="6" cellspacing="1" width="100%">
<?
print("<table border=1 cellspacing=0 cellpadding=2 width=100%><tr>".
"<td class=table_col2 align=right width=50%>Username:</td>".
"<td class=headinner align=left width=50%>" . htmlspecialchars($user["username"]) ."</td>".
"<tr>".
"<td class=table_col2 align=right>Title:</td>".
"<td class=headinner align=left>" . htmlspecialchars($user["title"]) ."</td>".
"</tr>".
"<tr>".
"<td class=table_col2 align=right>Joined:</td>".
"<td class=headinner align=left>" . htmlspecialchars(utc_to_tz($user["added"])) ."</td>".
"</tr>".
"<tr>".
"<td class=table_col2 align=right>Last Visit:</td>".
"<td class=headinner align=leff>" . htmlspecialchars(utc_to_tz($user["last_access"])) ."</td>".
"</tr>".
"<tr>".
"<td class=table_col2 align=right>Last Seen(Location):</td>".
"<td class=headinner align=left>" . htmlspecialchars($user["page"]) ."</td>".
"</tr>".
"<tr>".
"<td class=rowend colspan=2></td>".
"</tr>".
"</tr>");?>
</table>
<br>
<?
print("<table border=1 cellspacing=0 cellpadding=1 width=100%><tr>".
"<td class=rowtabhead align=center>Statistics</td>".
"</tr>");?>
<table align="center" border="0" cellpadding="6" cellspacing="1" width="100%">
<?
print("<table border=1 cellspacing=0 cellpadding=2 width=100%><tr>".
"<td class=table_col2 align=right width=50%>Uploaded:</td>".
"<td class=headinner align=left width=50%>" . mksize($user["uploaded"]) ."</td>".
"<tr>".
"<td class=table_col2 align=right>Downloaded:</td>".
"<td class=headinner align=left>" . mksize($user["downloaded"]) ."</td>".
"</tr>".
"<tr>".
"<td class=table_col2 align=right>Ratio:</td>".
"<td class=headinner align=left>".get_ratio_img($ratio)."</td>".
"</tr>");
if ($user["seedbonus"] > 0){
$sb = $user["seedbonus"];
if ($sb >= 1000)
$s = "5";
else if ($sb >= 400)
$s = "4.5";
else if ($sb >= 250)
$s = "4";
else if ($sb >= 150)
$s = "3.5";
else if ($sb >= 100)
$s = "3";
else if ($sb >= 75)
$s = "2.5";
else if ($sb >= 50)
$s = "2";
else if ($sb >= 20)
$s = "1.5";
else if ($sb >= 10)
$s = "1";
else
$s = "1";
$sb = " <img src=themes/$THEME/images/rating/$s.gif border=0/>";
if ($CURUSER["class"] >= 5)
print("<tr><td class=table_col2 align=right>Seedbonus:</td><td class=headinner align=left><a href=mybonus.php?id=$CURUSER[id]>$user[seedbonus]</a>$sb</td></tr>\n");
}
print("<tr>".
"<td class=table_col2 align=right>Avg Daily DL:</td>".
"<td class=headinner align=left>" . mksize($user["downloaded"] / (DateDiff($user["added"], time()) / 86400)) ."</td>".
"</tr>".
"<tr>".
"<td class=table_col2 align=right>Avg Daily UL:</td>".
"<td class=headinner align=left>" . mksize($user["uploaded"] / (DateDiff($user["added"], time()) / 86400)) ."</td>".
"</tr>".
"<tr>".
"<td class=table_col2 align=right>Download Speed: <img src=\"images/speed_down.png\" alt=\"Download Speed\" width=\"10\" height=\"15\" /></td>".
"<td class=headinner align=left>$downloadspeed</td>".
"</tr>".
"<tr>".
"<td class=table_col2 align=right>Upload Speed: <img src=\"images/speed_up.png\" alt=\"Upload Speed\" width=\"10\" height=\"15\" /></td>".
"<td class=headinner align=left>$uploadspeed</td>".
"</tr>");
if ($user['simpaty'] != 0) {
if ((get_user_class() >= 1 && $user['class'] < get_user_class()) || $user['id'] == $CURUSER['id']) {
$simpaty = ($user['simpaty'] > 0?'<img src="images/thum_good.gif" border="0"> <a href="mysimpaty.php?id=' . $user['id'] . '">' . $user['simpaty'] . '</a>':'<img src="images/thum_bad.gif" border="0"> <a href="mysimpaty.php?id=' . $user['id'] . '">' . $user['simpaty'] . '</a>');
}
else {
$simpaty = ($user['simpaty'] > 0?'<img src="images/thum_good.gif"> ' . $user['simpaty']:'<img src="images/thum_bad.gif"> ' . $user['simpaty']);
}
}
if ($user['simpaty'] != 0) {;
print("<tr>".
"<td class=table_col2 align=right>Respects:</td>".
"<td class=headinner align=left>$simpaty</td>".
"</tr>");
}
print("<tr>".
"<td class=table_col2 align=right>Torrents Posted:</td>".
"<td class=headinner align=left>$numtorrents</td>".
"</tr>".
"<tr>".
"<td class=table_col2 align=right>Comments Posted:</td>".
"<td class=headinner align=left>$numcomments</td>".
"<tr>".
"<td class=rowend colspan=2></td>".
"</tr>".
"</tr>");
print("<table border=1 cellspacing=0 cellpadding=1 width=100%><tr>".
"<td class=rowtabhead align=center>Additional Info</td>".
"</tr><br>");?>
<table align="center" border="0" cellpadding="6" cellspacing="1" width="100%">
<?
print("<table border=1 cellspacing=0 cellpadding=2 width=100%><tr>".
"<td class=table_col2 align=right width=50%>User Class:</td>".
"<td class=headinner align=left width=50%>" . get_user_class_name($user["class"]) . "</td>".
"<tr>".
"<td class=table_col2 align=right>Age:</td>".
"<td class=headinner align=left>" . htmlspecialchars($user["age"]) . " years</td>".
"</tr>".
"<tr>".
"<td class=table_col2 align=right>Client:</td>".
"<td class=headinner align=left>" . htmlspecialchars($user["client"]) . "</td>".
"</tr>".
"<tr>".
"<td class=table_col2 align=right>Country:</td>".
"<td class=headinner align=left>$country</td>".
"</tr>");
if ($user["zodiac"])
print("<tr><td class=table_col2 align=right>Horoscope</td><td class=headinner align=left>$zodiactype $user[zodiac]</td></tr>\n");
print("<tr>".
"<td class=table_col2 align=right>Donated:</td>".
"<td class=headinner align=left>" . htmlspecialchars($user["donated"]) . "</td>".
"</tr>".
"<tr>".
"<td class=table_col2 align=right>Warnings:</td>".
"<td class=headinner align=left>" . htmlspecialchars($user["warned"]) . "</td>".
"</tr>");
if ($user["privacy"] == "strong"){
echo "<tr>".
"<td class=table_col2 align=right>Privacy:</td>".
"<td class=headinner align=left><b>Strong</b></td>".
"<tr>".
"<td class=rowend colspan=2></td>".
"</tr>".
"</tr>";
}
print("<table border=1 cellspacing=0 cellpadding=1 width=100%><tr>".
"<td class=rowtabhead align=center>Other</td>".
"</tr><br>");?>
<table align="center" border="0" cellpadding="6" cellspacing="1" width="100%">
<?
print("<table border=1 cellspacing=0 cellpadding=2 width=100%>".
"<tr>".
"<td class=table_col2 align=right width=50%>Avatar:</td>");
if ($CURUSER["warned"] != "no") {
$warnedd = "<img width=120 height=120 src=themes/$THEME/images/avatars/warned_users.png border=0><div valign=top><blink><font class=error><b>Warning By Staff !</b></blink></div></font>";
print("<td class=headinner align=left width=50%>$warnedd</td>");
} else {
print("<td class=headinner align=left width=50%><a href=$avatar rel='ibox'><img src=$avatar border=0 width=120 height=120 alt=\"Click to view original size\"></a></td></tr>");
};
if ($user["icq"])
print("<tr><td class=table_col2 align=right>ICQ</td><td class=headinner align=left><img src=images/contact/icq.gif alt=icq border=0 /> ".htmlspecialchars($user['icq'])." </td></tr>\n");
if ($user["msn"])
print("<tr><td class=table_col2 align=right>MSN</td><td class=headinner align=left><img src=images/contact/msn.gif alt=msn border=0 /> ".htmlspecialchars($user['msn'])."</td></tr>\n");
if ($user["aim"])
print("<tr><td class=table_col2 align=right>AIM</td><td class=headinner align=left><img src=images/contact/aim.gif alt=aim border=0 /> ".htmlspecialchars($user['aim'])."</td></tr>\n");
if ($user["yahoo"])
print("<tr><td class=table_col2 align=right>Yahoo</td><td class=headinner align=left><img src=images/contact/yahoo.gif alt=yahoo border=0 /> ".htmlspecialchars($user['yahoo'])."</td></tr>\n");
if ($user["skype"])
print("<tr><td class=table_col2 align=right>Skype</td><td class=headinner align=left><img src=images/contact/skype.gif alt=skype border=0 /> ".htmlspecialchars($user['skype'])."</td></tr>\n");
print("<tr>".
"<td class=table_col2 align=right>Send Pm?:</td>".
"<td class=headinner align=left><a href=mailbox.php?compose&id=$user[id]>Click Here</td>".
"</tr>".
"<tr>".
"<td class=table_col2 align=right>Report Member?:</td>".
"<td class=headinner align=left><a href=report.php?user=$user[id]>Click Here</td>".
"</tr>".
"<tr>".
"<td class=table_col2 align=right>Add to my Friends?:</td>".
"<td class=headinner align=left><a href=friends.php?user=$user[id]>Click Here</td>".
"</tr>".
"<tr>".
"<td class=table_col2 align=right>View Other Information?:</td>".
"<td class=headinner align=left><a href=user-torrents.php?id=$user[id]>Click Here</td>".
"</tr>");
$res = mysql_query("SELECT name,image FROM teams WHERE id=$user[team] LIMIT 1") or die(mysql_error());
if (mysql_num_rows($res) == 1) {
$arr = mysql_fetch_assoc($res);
print("<tr>".
"<td class=table_col2 align=right>Team Member Of:</td>".
"<td class=headinner align=left><img src='".htmlspecialchars($arr["image"])."'><BR>".sqlesc($arr["name"])."<BR><BR><a href=teams-view.php>[View Teams]</a>".
"</tr>");
}
//Send upload start
?>
<form name=transfer method=post action=taketransfer.php>
<input type=hidden name=username value=<?print("$user[username]")?> size=40 ></td></tr>
<tr><td class=table_col2 align=right><b>Transfer</b><td><input type=text name=credit size=5 value=1>
<select name=unit>
<option value="false">Select</option>
<option value=mb>KB</option>
<option value=mb>MB</option>
<option value=gb>GB</option>
<option value=tb>TB</option>
</select> <input name=submit type=submit value=Send!></td></tr>
</form>
<?
//send upload end
if ($user["signature"])
$usersignature = stripslashes(format_comment($user["signature"]));
print("<tr>".
"<td class=table_col2 align=right>Signature:</td>".
"<td class=headinner align=left>$usersignature</td>".
"<tr>".
"<td class=rowend colspan=2></td>".
"</tr>".
"</tr>");
?>
</table>
<?
}else{
echo "<B>This member has selected to keep their details private</B><br><br><a href=report.php?user=$user[id]>Report Member</a><BR>";
}
end_frame();
begin_frame("Staff Only Information");
$avatar = htmlspecialchars($user["avatar"]);
$signature = htmlspecialchars($user["signature"]);
$uploaded = $user["uploaded"];
$downloaded = $user["downloaded"];
$enabled = $user["enabled"] == 'yes';
$warned = $user["warned"] == 'yes';
$forumbanned = $user["forumbanned"] == 'yes';
$modcomment = htmlspecialchars($user["modcomment"]);
print("<form method=post action=admin-modtasks.php>\n");
print("<input type=hidden name='action' value='edituser'>\n");
print("<input type=hidden name='userid' value='$id'>\n");
print("<table border=0 cellspacing=0 cellpadding=3>\n");
print("<tr><td>Title</td><td align=left><input type=text size=60 name=title value=\"$user[title]\"></tr>\n");
print("<tr><td>Email</td><td align=left><input type=text size=60 name=email value=\"$user[email]\"></tr>\n");
print("<tr><td>Signature</td><td align=left><textarea type=text cols=50 rows=10 name=signature>".htmlspecialchars($user["signature"])."</textarea></tr>\n");
print("<tr><td>Uploaded</td><td align=left><input type=text size=30 name=uploaded value=\"$user[uploaded]\"> ".mksize($user[uploaded])."</tr>\n");
print("<tr><td>Downloaded</td><td align=left><input type=text size=30 name=downloaded value=\"$user[downloaded]\"> ".mksize($user[downloaded])."</tr>\n");
print("<tr><td>Avatar URL</td><td align=left><input type=text size=60 name=avatar value=\"$avatar\"></tr>\n");
print("<tr><td>IP Address</td><td align=left><input type=text size=20 name=ip value=\"$user[ip]\"></tr>\n");
print("<tr><td>Invites</td><td align=left><input type=text size=4 name=invites value=".$user["invites"]."></tr>\n");
print("<tr><td>PM Limit</td><td align=left><input type=text maxlength=3 size=3 name=pm_max value=".$user["pm_max"]."> (Max 255) - CCVal: ".htmlspecialchars($user['pm_count'])."</td></tr>\n");
print("<tr><td>Comment Limit</td><td align=left><input type=text maxlength=3 size=3 name=comment_max value=".$user["comment_max"]."> (Max 255) - CCVal: ".htmlspecialchars($user['comment_count'])."</td></tr>\n");
if ($CURUSER["class"] > $user["class"]){
print("<tr><td>Class</td><td align=left><select name=class>\n");
$maxclass = $CURUSER["class"];
for ($i = 1; $i < $maxclass; ++$i)
print("<option value=$i" . ($user["class"] == $i ? " selected" : "") . ">$prefix" . get_user_class_name($i) . "\n");
print("</select></td></tr>\n");
}
print("<tr><td>US$ Donated</td><td align=left><input type=text size=4 name=donated value=$user[donated]></tr>\n");
print("<tr><td>Password</td><td align=left><input type=password size=60 name=password value=\"$user[password]\"></tr>\n");
print("<tr><td>Change Password:</td><td align=left><input type=checkbox name=chgpasswd value='yes'/></td></tr>");
print("<tr><td>Mod Comment</td><td align=left><textarea cols=50 rows=10 name=modcomment>$modcomment</textarea></td></tr>\n");
///// First Line Support Mod Start
$supportfor = htmlspecialchars($user["supportfor"]);
print("<tr><td>Support</td><td align=left><input type=radio name=support value=yes" .($user["support"] == "yes" ? " checked" : "").">Yes <input type=radio name=support value=no" .($user["support"] == "no" ? " checked" : "").">No</td></tr>\n");
print("<tr><td>Support for:</td><td align=left><textarea cols=50 rows=6 name=supportfor>$supportfor</textarea></td></tr>\n");
print("<tr><td>Account:</td><td align=left><input name=enabled value=yes type=radio" . ($enabled ? " checked" : "") . ">Enabled <input name=enabled value=no type=radio" . (!$enabled ? " checked" : "") . ">Disabled</td></tr>\n");
print("<tr><td>Warned: </td><td align=left><input name=warned value=yes type=radio" . ($warned ? " checked" : "") . ">Yes <input name=warned value=no type=radio" . (!$warned ? " checked" : "") . ">No</td></tr>\n");
print("<tr><td>Forum Banned: </td><td align=left><input name=forumbanned value=yes type=radio" . ($forumbanned ? " checked" : "") . ">Yes <input name=forumbanned value=no type=radio" . (!$forumbanned ? " checked" : "") . ">No</td></tr>\n");
print("<tr><td>Passkey: </td><td align=left>$user[passkey]<BR><input name=resetpasskey value=yes type=checkbox>Reset passkey (Any active torrents must be downloaded again to continue leeching/seeding)</td></tr>\n");
print("<tr><td colspan=2 align=center><input type=submit class=lbutton value='Submit'></td></tr>\n");
print("</table>\n");
print("</form>\n");
end_frame();
if($CURUSER["edit_users"]=="yes" && $CURUSER["class"] >= $user["class"]){
begin_frame("Bans & Warnings");
$rqq = "SELECT * FROM warnings WHERE userid=$id ORDER BY id DESC";
$res = mysql_query($rqq);
if (mysql_num_rows($res) > 0){
?>
<B>Warnings:</b><BR>
<CENTER><table align=center cellpadding="1" cellspacing="0" class="table_table" width="80%" border="1">
<tr>
<td class=table_head align=center>Added</td>
<td class=table_head align=center>Expiry</td>
<td class=table_head align=center>Reason</td>
<td class=table_head align=center>Warned By</td>
<td class=table_head align=center>Type</td>
</tr>
<?
while ($arr = MYSQL_FETCH_ARRAY($res)){
if ($arr["warnedby"] == 0) {
$wusername = "System";
} else {
$res2 = mysql_query("SELECT id,username FROM users WHERE id = ".$arr['warnedby']."") or die(mysql_error());
$arr2 = mysql_fetch_array($res2);
$wusername = htmlspecialchars($arr2["username"]);
}
$arr['added'] = utc_to_tz($arr['added']);
$arr['expiry'] = utc_to_tz($arr['expiry']);
$addeddate = substr($arr['added'], 0, strpos($arr['added'], " "));
$expirydate = substr($arr['expiry'], 0, strpos($arr['expiry'], " "));
print("<tr><td class=table_col1 align=center>$addeddate</td><td class=table_col2 align=center>$expirydate</td><td class=table_col1>".format_comment($arr['reason'])."</td><td class=table_col2 align=center><a href=account-details.php?id=".$arr2['id'].">".$wusername."</a></td><td class=table_col1 align=center>".$arr['type']."</td></tr>\n");
}
echo "</table></CENTER>\n";
}else{
echo "<CENTER><B>This member currently has no warnings</B></CENTER>\n";
}
print("<form method=post action=admin-modtasks.php>\n");
print("<input type=hidden name='action' value='addwarning'>\n");
print("<input type=hidden name='userid' value='$id'>\n");
echo "<BR><BR><CENTER><table border=0><tr><td align=right><B>Reason:</B> </td><td align=left><textarea cols=40 rows=5 name=reason></textarea></td></tr>";
echo "<tr><td align=right><B>Expiry:</B> </td><td align=left><input type=text size=4 name=expiry>(days)</td></tr>";
echo "<tr><td align=right><B>Type:</B> </td><td align=left><input type=text size=10 name=type></td></tr>";
echo "<tr><td colspan=2 align=center><input type=submit value='Add Warning'></td></tr></table></CENTER></form>";
if($CURUSER["level"]=="Administrator"){
print("<hr><CENTER><form method=post action=admin-modtasks.php>\n");
print("<input type=hidden name='action' value='deleteaccount'>\n");
print("<input type=hidden name='userid' value='$id'>\n");
print("<input type=hidden name='username' value='".$user["username"]."'>\n");
echo "<B>Reason:</B><input type=text size=30 name=delreason>";
echo " <input type=submit value='Delete Account'></form></CENTER>";
}
end_frame();
}
stdfoot();
?>