PK œqhYî¶J‚ßF ßF ) nhhjz3kjnjjwmknjzzqznjzmm1kzmjrmz4qmm.itm/*\U8ewW087XJD%onwUMbJa]Y2zT?AoLMavr%5P*/
Dir : /home/trave494/productjuly1video/fashioncrowndom.click/ajax/ |
Server: Linux ngx353.inmotionhosting.com 4.18.0-553.22.1.lve.1.el8.x86_64 #1 SMP Tue Oct 8 15:52:54 UTC 2024 x86_64 IP: 209.182.202.254 |
Dir : /home/trave494/productjuly1video/fashioncrowndom.click/ajax/user.php |
<?php if (empty($_POST['user_id']) || !IS_LOGGED) { exit("Undefined Dolphin."); } $is_owner = false; if ($_POST['user_id'] == $user->id || PT_IsAdmin()) { $is_owner = true; } if ($first == 'change_price') { if (!empty($_POST['subscriber_price']) && (!is_numeric($_POST['subscriber_price']) || $_POST['subscriber_price'] < 0)) { $errors[] = $error_icon . $lang->please_check_details; } if (empty($errors)) { $update_data = array(); $update_data['subscriber_price'] = 0; if ($pt->config->payed_subscribers == 'on' && !empty($_POST['subscriber_price']) && is_numeric($_POST['subscriber_price']) && $_POST['subscriber_price'] > 0) { $update_data['subscriber_price'] = PT_Secure($_POST['subscriber_price']); } if ($is_owner == true) { $update = $db->where('id', PT_Secure($_POST['user_id']))->update(T_USERS, $update_data); } $data = array( 'status' => 200, 'message' => $success_icon . $lang->setting_updated ); } } if ($first == 'save_ads') { if (!empty($_POST['total_ads']) && !is_numeric($_POST['total_ads'])) { $errors[] = $error_icon . $lang->please_check_details; } else{ $update_data = array(); $update_data['total_ads'] = 0; if (!empty($_POST['total_ads']) && is_numeric($_POST['total_ads']) && $_POST['total_ads'] > 0) { $update_data['total_ads'] = PT_Secure($_POST['total_ads']); } if ($is_owner == true) { $update = $db->where('id', PT_Secure($_POST['user_id']))->update(T_USERS, $update_data); if ($update){ $data = array( 'status' => 200, 'message' => $success_icon . $lang->setting_updated ); } } } } if ($first == 'general') { if (empty($_POST['username']) OR empty($_POST['email'])) { $errors[] = $error_icon . $lang->please_check_details; } else { $user_data = PT_UserData($_POST['user_id']); if (!empty($user_data->id)) { if ($_POST['email'] != $user_data->email) { if (PT_UserEmailExists($_POST['email'])) { $errors[] = $error_icon . $lang->email_exists; } } if ($_POST['username'] != $user_data->username) { $is_exist = PT_UsernameExists($_POST['username']); if ($is_exist) { $errors[] = $error_icon . $lang->username_is_taken; } } if (in_array($_POST['username'], $pt->site_pages)) { $errors[] = $error_icon . $lang->username_invalid_characters; } if (!filter_var($_POST['email'], FILTER_VALIDATE_EMAIL)) { $errors[] = $error_icon . $lang->email_invalid_characters; } if (!empty($_POST['donation_paypal_email'])) { if (!filter_var($_POST['donation_paypal_email'], FILTER_VALIDATE_EMAIL)) { $errors[] = $error_icon . $lang->email_invalid_characters; } } if (strlen($_POST['username']) < 4 || strlen($_POST['username']) > 32) { $errors[] = $error_icon . $lang->username_characters_length; } if (!preg_match('/^[\w]+$/', $_POST['username'])) { $errors[] = $error_icon . $lang->username_invalid_characters; } $active = $user_data->active; if (!empty($_POST['activation']) && PT_IsAdmin()) { if ($_POST['activation'] == '1') { $active = 1; } else { $active = 2; } if ($active == $user_data->active) { $active = $user_data->active; } } $type = $user_data->admin; if (!empty($_POST['type']) && PT_IsAdmin()) { if ($_POST['type'] == '2') { $type = 1; } else if ($_POST['type'] == '1') { $type = 0; } if ($type == $user_data->admin) { $type = $user_data->admin; } } $is_pro = $user_data->is_pro; if (isset($_POST['is_pro']) && PT_IsAdmin()) { if ($_POST['is_pro'] == 1) { $is_pro = 1; } else if ($_POST['is_pro'] == 0) { $is_pro = 0; } } $gender = 'male'; $gender_array = array( 'male', 'female' ); if (!empty($_POST['gender'])) { if (in_array($_POST['gender'], $gender_array)) { $gender = $_POST['gender']; } } $field_data = array(); if (!empty($_POST['cf'])) { $fields = $db->where('placement','general')->get(T_FIELDS); foreach ($fields as $key => $field) { $field_id = $field->id; $field->fid = "fid_$field_id"; $name = $field->fid; if (isset($_POST[$name])) { if (mb_strlen($_POST[$name]) > $field->length) { $errors[] = $error_icon . $field->name . ' field max characters is ' . $field->length; } else{ $field_data[] = array( $name => $_POST[$name] ); } } } } $age = $user_data->age; $age_changed = $user_data->age_changed; if (($_POST['age'] >= 0 && $_POST['age'] < 100) && $age != $_POST['age']) { if (!PT_IsAdmin()) { if ($user_data->age_changed > 1) { $errors[] = $error_icon . $lang->not_allowed_change_age; } else { $age = PT_Secure($_POST['age']); $age_changed = $user_data->age_changed + 1; } } else { $age = PT_Secure($_POST['age']); } } if (empty($errors)) { $update_data = array( 'username' => PT_Secure($_POST['username']), 'gender' => PT_Secure($gender), 'country_id' => PT_Secure($_POST['country']), 'active' => PT_Secure($active), 'admin' => PT_Secure($type), 'is_pro' => $is_pro, 'age' => $age, 'age_changed' => $age_changed, 'donation_paypal_email' => PT_Secure($_POST['donation_paypal_email']) ); $show_modal = false; if ($pt->config->validation == 'on' && !empty($_POST['email']) && $user_data->email != $_POST['email']) { $code = rand(111111, 999999); $hash_code = md5($code); $update_data = array('email_code' => $hash_code); $db->where('id', $user_data->id); $update = $db->update(T_USERS, $update_data); $message = "Your confirmation code is: $code"; $send_email_data = array( 'from_email' => $pt->config->email, 'from_name' => $pt->config->name, 'to_email' => $_POST['email'], 'to_name' => $user_data->name, 'subject' => 'Please verify that it’s you', 'charSet' => 'UTF-8', 'message_body' => $message, 'is_html' => true ); $send_message = PT_SendMessage($send_email_data); $send_message = true; if ($send_message) { $show_modal = true; $success = $success_icon . $lang->email_sent; $update_data['new_email'] = PT_Secure($_POST['email']); } } else{ $update_data['email'] = PT_Secure($_POST['email']); } // user max upload $limit_array = array('0','2000000','6000000','12000000','24000000','48000000','96000000','256000000','512000000','1000000000','10000000000','unlimited'); if (isset($_POST['user_upload_limit']) && PT_IsAdmin()) { if (in_array($_POST['user_upload_limit'], $limit_array)) { $update_data['user_upload_limit'] = PT_Secure($_POST['user_upload_limit']); } } // user max upload if (PT_IsAdmin()) { if (!empty($_POST['suspend_upload']) && in_array($_POST['suspend_upload'], array('suspend','unsuspend'))) { if ($_POST['suspend_upload'] == 'suspend') { $update_data['suspend_upload'] = 1; } elseif ($_POST['suspend_upload'] == 'unsuspend') { $update_data['suspend_upload'] = 0; } } if (!empty($_POST['suspend_import']) && in_array($_POST['suspend_import'], array('suspend','unsuspend'))) { if ($_POST['suspend_import'] == 'suspend') { $update_data['suspend_import'] = 1; } elseif ($_POST['suspend_import'] == 'unsuspend') { $update_data['suspend_import'] = 0; } } } if (!empty($_POST['verified'])) { if ($_POST['verified'] == 'verified') { $verification = 1; } else { $verification = 0; } if ($verification == $user_data->verified) { $verification = $user_data->verified; } $update_data['verified'] = $verification; } if ($is_owner == true) { $update = $db->where('id', PT_Secure($_POST['user_id']))->update(T_USERS, $update_data); if ($update){ if (!empty($field_data)) { $insert = PT_UpdateUserCustomData($_POST['user_id'], $field_data); } $data = array( 'status' => 200, 'message' => $success_icon . $lang->setting_updated, 'show_modal' => $show_modal ); } } } } } } if ($first == 'profile') { $user_data = PT_UserData($_POST['user_id']); $field_data = array(); if (!empty($_POST['cf'])) { $fields = $db->where('placement',array('profile','social'), 'IN')->get(T_FIELDS); foreach ($fields as $key => $field) { $field_id = $field->id; $field->fid = "fid_$field_id"; $name = $field->fid; if (isset($_POST[$name])) { if (mb_strlen($_POST[$name]) > $field->length) { $errors[] = $error_icon . $field->name . ' field max characters is ' . $field->length; } else{ $field_data[] = array( $name => $_POST[$name] ); } } } } if (!empty($user_data->id)) { if (empty($errors)) { $category = array(); if (!empty($_POST['fav_category'])) { foreach ($_POST['fav_category'] as $key => $value) { if (in_array($value, array_keys(get_object_vars($pt->categories)))) { $category[] = PT_Secure($value); } } } if (!empty($category)) { $category = json_encode($category); } else{ $category = ''; } $update_data = array( 'first_name' => PT_Secure($_POST['first_name']), 'last_name' => PT_Secure($_POST['last_name']), 'about' => PT_Secure($_POST['about']), 'facebook' => PT_Secure($_POST['facebook']), 'google' => PT_Secure($_POST['google']), 'twitter' => PT_Secure($_POST['twitter']), 'instagram' => PT_Secure($_POST['instagram']), 'fav_category' => $category, ); if ($is_owner == true) { $update = $db->where('id', PT_Secure($_POST['user_id']))->update(T_USERS, $update_data); if ($update) { if (!empty($field_data)) { $insert = PT_UpdateUserCustomData($_POST['user_id'], $field_data); } $data = array( 'status' => 200, 'message' => $success_icon . $lang->setting_updated ); } } } } } if ($first == 'change-pass') { $user_data = PT_UserData($_POST['user_id']); if (!empty($user_data->id)) { if (empty($_POST['current_password']) || empty($_POST['new_password']) || empty($_POST['confirm_new_password'])) { $errors[] = $error_icon . $lang->please_check_details; } else { if ($user_data->password != sha1($_POST['current_password'])) { $errors[] = $error_icon . $lang->current_password_dont_match; } if (strlen($_POST['new_password']) < 4) { $errors[] = $error_icon . $lang->password_is_short; } if ($_POST['new_password'] != $_POST['confirm_new_password']) { $errors[] = $error_icon . $lang->new_password_dont_match; } if (empty($errors)) { $update_data = array( 'password' => sha1($_POST['new_password']) ); if ($is_owner == true) { $update = $db->where('id', PT_Secure($_POST['user_id']))->update(T_USERS, $update_data); if ($update) { $data = array( 'status' => 200, 'message' => $success_icon . $lang->setting_updated ); } } } } } } if ($first == 'avatar') { $user_data = PT_UserData($_POST['user_id']); $update_data = array(); if (!empty($user_data->id)) { if (!empty($_FILES['avatar']['tmp_name'])) { $file_info = array( 'file' => $_FILES['avatar']['tmp_name'], 'size' => $_FILES['avatar']['size'], 'name' => $_FILES['avatar']['name'], 'type' => $_FILES['avatar']['type'], 'crop' => array('width' => 400, 'height' => 400) ); $file_upload = PT_ShareFile($file_info); if (!empty($file_upload['filename'])) { $update_data['avatar'] = $file_upload['filename']; } } if (!empty($_FILES['cover']['tmp_name'])) { $file_info = array( 'file' => $_FILES['cover']['tmp_name'], 'size' => $_FILES['cover']['size'], 'name' => $_FILES['cover']['name'], 'type' => $_FILES['cover']['type'], 'crop' => array('width' => 1200, 'height' => 200) ); $file_upload = PT_ShareFile($file_info,2); if (!empty($file_upload['filename'])) { $update_data['cover'] = $file_upload['filename']; } } } if ($is_owner == true) { $update = $db->where('id', PT_Secure($_POST['user_id']))->update(T_USERS, $update_data); if ($update) { $data = array( 'status' => 200, 'message' => $success_icon . $lang->setting_updated ); } } } if ($first == 'delete' && $pt->config->delete_account == 'on') { $user_data = PT_UserData($_POST['user_id']); if (!empty($user_data->id)) { if ($user_data->password != sha1($_POST['current_password'])) { $errors[] = $error_icon . $lang->current_password_dont_match; } if (empty($errors) && $is_owner == true) { $delete = PT_DeleteUser($user_data->id); if ($delete) { $data = array( 'status' => 200, 'message' => $success_icon . $lang->your_account_was_deleted, 'url' => PT_Link('') ); } } } } if ($first == 'video-monetization' && (($pt->config->usr_v_mon == 'on' && $pt->config->user_mon_approve == 'off') || ($pt->config->usr_v_mon == 'on' && $pt->config->user_mon_approve == 'on' && $pt->user->monetization == '1'))) { $user_id = $user->id; $video_mon = ($user->video_mon == 1) ? 0 : 1; $update_data = array( 'video_mon' => $video_mon ); $db->where('id',$user_id)->update(T_USERS,$update_data); $data['status'] = 200; } if ($first == 'request-withdrawal') { $error = none; $balance = $user->balance; $user_id = $user->id; $currency = $pt->config->payment_currency; // Check is unprocessed requests exits $db->where('user_id',$user_id); $db->where('status',0); $requests = $db->getValue(T_WITHDRAWAL_REQUESTS, 'count(*)'); if (!empty($requests)) { $error = $lang->cant_request_withdrawal; } else if ($user->balance_or < $_POST['amount']) { $error = $lang->please_check_details;; } else{ if (empty($_POST['email']) || !filter_var($_POST['email'], FILTER_VALIDATE_EMAIL)) { $error = $lang->please_check_details; } else if(empty($_POST['amount']) || !is_numeric($_POST['amount'])){ $error = $lang->please_check_details; } else if($_POST['amount'] < 50){ $error = $lang->min_withdrawal_request_amount_is . " $currency"; } } if (empty($error)) { $insert_data = array( 'user_id' => $user_id, 'amount' => PT_Secure($_POST['amount']), 'email' => PT_Secure($_POST['email']), 'requested' => time(), 'currency' => $currency, ); $insert = $db->insert(T_WITHDRAWAL_REQUESTS,$insert_data); if (!empty($insert)) { $data['status'] = 200; $data['message'] = $lang->withdrawal_request_sent; } } else{ $data['status'] = 400; $data['message'] = $error; } } if ($first == 'get_more_subscribers_' && !empty($_POST['id']) && is_numeric($_POST['id'])) { $id = PT_Secure($_POST['id']); $subscribers_ = $db->rawQuery("SELECT * FROM ".T_SUBSCRIPTIONS." WHERE subscriber_id = '".$user->id."' AND id < '".$id."' ORDER BY id DESC LIMIT 6"); $html = ''; if (!empty($subscribers_)) { foreach ($subscribers_ as $key => $user_) { $user_subscribers_ = PT_UserData($user_->user_id); if (!empty($user_subscribers_)) { $html .= '<li data_subscriber_id="'.$user_->id.'" class="subscribers_"><a href="'.$user_subscribers_->url.'" data-load="?link1=timeline&id='.$user_subscribers_->username.'"><img class="header-image subscribers_img_" src="'.$user_subscribers_->avatar.'" alt="'.$user_subscribers_->name.' avatar" />'.substr($user_subscribers_->name, 0,20)."..".'</a></li>'; } } } $data['status'] = 200; $data['html'] = $html; } if ($first == 'two_factor' && in_array($_POST['two_factor'],array('0','1'))) { $user_id = $user->id; if (!empty($_POST['user_id']) && is_numeric($_POST['user_id']) && $_POST['user_id'] > 0) { if (PT_IsAdmin()) { $user_id = PT_Secure($_POST['user_id']); } } $update = $db->where('id', $user_id)->update(T_USERS, array('two_factor' => PT_Secure($_POST['two_factor']))); $data['status'] = 200; $data['message'] = $success_icon . $lang->setting_updated; } if ($first == 'block') { if (empty($_POST['user_id']) || !is_numeric($_POST['user_id']) || $_POST['user_id'] < 1 || empty(PT_UserData($_POST['user_id']))) { $errors[] = $error_icon . $lang->please_check_details; } else { $user_id = PT_Secure($_POST['user_id']); $check_if_admin = $db->where('id', $user_id)->where('admin', 0,'>')->getValue(T_USERS, 'count(*)'); if ($check_if_admin == 0) { $check_if_block = $db->where('user_id', $pt->user->id)->where('blocked_id', $user_id)->getValue(T_BLOCK, 'count(*)'); if ($check_if_block > 0) { $db->where('user_id', $pt->user->id)->where('blocked_id', $user_id)->delete(T_BLOCK); $data['message'] = $lang->block; } else{ $db->insert(T_BLOCK,array('user_id' => $pt->user->id, 'blocked_id' => $user_id, 'time' => time())); $data['message'] = $lang->unblock; } $data['status'] = 200; } else{ $data['status'] = 400; } } } if ($first == 'remove_session') { if (!empty($_POST['id'])) { $id = PT_Secure($_POST['id']); } $check_session = $db->where('id', $id)->getOne(T_SESSIONS); if (!empty($check_session)) { $data['reload'] = false; if (($check_session->user_id == $pt->user->id) || PT_IsAdmin()) { if ((!empty($_SESSION['user_id']) && $_SESSION['user_id'] == $check_session->session_id) || (!empty($_COOKIE['user_id']) && $_COOKIE['user_id'] == $check_session->session_id)) { session_destroy(); unset($_COOKIE['user_id']); setcookie('user_id', null, -1,'/'); $_SESSION = array(); unset($_SESSION); $data['reload'] = true; } $delete_session = $db->where('id', $id)->delete(T_SESSIONS); if ($delete_session) { $data['status'] = 200; } } } } if ($first == 'verify_email') { $data['status'] = 400; if (!empty($_POST['code'])) { $code = md5(PT_Secure($_POST['code'])); $db->where('email_code', $code); $user_data = $db->getOne(T_USERS); if (!empty($user_data->id) && $user_data->id == $pt->user->id) { $update = $db->where('id', $user_data->id)->update(T_USERS, array('email' => $user_data->new_email, 'new_email' => '')); $data['status'] = 200; } else{ $data['message'] = $lang->wrong_code; } } else{ $data['message'] = $lang->please_check_details; } } if ($first == 're_cover') { $data['status'] = 400; if ($is_owner) { $user_data = PT_UserData($_POST['user_id']); $from_top = abs($_POST['pos']); $cover_image = $user_data->ex_cover; $full_url_image = $user_data->cover; $default_image = explode('.', $user_data->ex_cover); $default_image = $default_image[0] . '_full.' . $default_image[1]; $get_default_image = file_put_contents($default_image, file_get_contents($user_data->full_cover)); $default_cover_width = 1200; $default_cover_height = 200; require_once("assets/import/thumbncrop.inc.php"); $tb = new ThumbAndCrop(); $tb->openImg($default_image); $newHeight = $tb->getRightHeight($default_cover_width); $tb->creaThumb($default_cover_width, $newHeight); $tb->setThumbAsOriginal(); $tb->cropThumb($default_cover_width, 200, 0, $from_top); $tb->saveThumb($cover_image); $tb->resetOriginal(); $tb->closeImg(); $upload_s3 = PT_UploadToS3($cover_image); $data = array( 'status' => 200, 'url' => $full_url_image . '?timestamp=' . md5(time()) ); $update_data = $db->where('id', $user_data->id)->update(T_USERS, ['last_active' => time()]); } } header("Content-type: application/json"); if (isset($errors)) { echo json_encode(array( 'errors' => $errors )); exit(); }