Home Explore Help
Sign In
LBP
/
Organizr
mirror of https://github.com/causefx/Organizr.git
4
0
Fork 0
Files Issues 0 Wiki
Tree: edaa5ef4b6
Branches Tags
Organizr
/
api
/
functions
/
api-functions.php

api-functions.php 32 KB
History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485868788899091929394959697989910010110210310410510610710810911011111211311411511611711811912012112212312412512612712812913013113213313413513613713813914014114214314414514614714814915015115215315415515615715815916016116216316416516616716816917017117217317417517617717817918018118218318418518618718818919019119219319419519619719819920020120220320420520620720820921021121221321421521621721821922022122222322422522622722822923023123223323423523623723823924024124224324424524624724824925025125225325425525625725825926026126226326426526626726826927027127227327427527627727827928028128228328428528628728828929029129229329429529629729829930030130230330430530630730830931031131231331431531631731831932032132232332432532632732832933033133233333433533633733833934034134234334434534634734834935035135235335435535635735835936036136236336436536636736836937037137237337437537637737837938038138238338438538638738838939039139239339439539639739839940040140240340440540640740840941041141241341441541641741841942042142242342442542642742842943043143243343443543643743843944044144244344444544644744844945045145245345445545645745845946046146246346446546646746846947047147247347447547647747847948048148248348448548648748848949049149249349449549649749849950050150250350450550650750850951051151251351451551651751851952052152252352452552652752852953053153253353453553653753853954054154254354454554654754854955055155255355455555655755855956056156256356456556656756856957057157257357457557657757857958058158258358458558658758858959059159259359459559659759859960060160260360460560660760860961061161261361461561661761861962062162262362462562662762862963063163263363463563663763863964064164264364464564664764864965065165265365465565665765865966066166266366466566666766866967067167267367467567667767867968068168268368468568668768868969069169269369469569669769869970070170270370470570670770870971071171271371471571671771871972072172272372472572672772872973073173273373473573673773873974074174274374474574674774874975075175275375475575675775875976076176276376476576676776876977077177277377477577677777877978078178278378478578678778878979079179279379479579679779879980080180280380480580680780880981081181281381481581681781881982082182282382482582682782882983083183283383483583683783883984084184284384484584684784884985085185285385485585685785885986086186286386486586686786886987087187287387487587687787887988088188288388488588688788888989089189289389489589689789889990090190290390490590690790890991091191291391491591691791891992092192292392492592692792892993093193293393493593693793893994094194294394494594694794894995095195295395495595695795895996096196296396496596696796896997097197297397497597697797897998098198298398498598698798898999099199299399499599699799899910001001100210031004100510061007100810091010101110121013101410151016 
  1. <?php /** @noinspection SqlResolve */
    2. 

  2. /** @noinspection SqlResolve */
    3. 

  3. /** @noinspection SqlResolve */
    4. 

  4. /** @noinspection SqlResolve */
    5. 

  5. /** @noinspection SyntaxError */
    6. 

  6. function login($array)
    7. 

  7. {
    8. 

  8. 	// Grab username and Password from login form
    9. 

  9. 	$username = $password = '';
    10. 

  10. 	foreach ($array['data'] as $items) {
    11. 

  11. 		foreach ($items as $key => $value) {
    12. 

  12. 			if ($key == 'name') {
    13. 

  13. 				$newKey = $value;
    14. 

  14. 			}
    15. 

  15. 			if ($key == 'value') {
    16. 

  16. 				$newValue = $value;
    17. 

  17. 			}
    18. 

  18. 			if (isset($newKey) && isset($newValue)) {
    19. 

  19. 				$$newKey = $newValue;
    20. 

  20. 			}
    21. 

  21. 		}
    22. 

  22. 	}
    23. 

  23. 	$username = strtolower($username);
    24. 

  24. 	$days = (isset($remember)) ? 7 : 1;
    25. 

  25. 	try {
    26. 

  26. 		$database = new Dibi\Connection([
    27. 

  27. 			'driver' => 'sqlite3',
    28. 

  28. 			'database' => $GLOBALS['dbLocation'] . $GLOBALS['dbName'],
    29. 

  29. 		]);
    30. 

  30. 		$authSuccess = false;
    31. 

  31. 		$function = 'plugin_auth_' . $GLOBALS['authBackend'];
    32. 

  32. 		$result = $database->fetch('SELECT * FROM users WHERE username = ? COLLATE NOCASE OR email = ? COLLATE NOCASE', $username, $username);
    33. 

  33. 		switch ($GLOBALS['authType']) {
    34. 

  34. 			case 'external':
    35. 

  35. 				if (function_exists($function)) {
    36. 

  36. 					$authSuccess = $function($username, $password);
    37. 

  37. 				}
    38. 

  38. 				break;
    39. 

  39. 			/** @noinspection PhpMissingBreakStatementInspection */
    40. 

  40. 			case 'both':
    41. 

  41. 				if (function_exists($function)) {
    42. 

  42. 					$authSuccess = $function($username, $password);
    43. 

  43. 				}
    44. 

  44. 			// no break
    45. 

  45. 			default: // Internal
    46. 

  46. 				if (!$authSuccess) {
    47. 

  47. 					// perform the internal authentication step
    48. 

  48. 					if (password_verify($password, $result['password'])) {
    49. 

  49. 						$authSuccess = true;
    50. 

  50. 					}
    51. 

  51. 				}
    52. 

  52. 		}
    53. 

  53. 		if ($authSuccess) {
    54. 

  54. 			// Make sure user exists in database
    55. 

  55. 			$userExists = false;
    56. 

  56. 			$passwordMatches = false;
    57. 

  57. 			$token = (is_array($authSuccess) && isset($authSuccess['token']) ? $authSuccess['token'] : '');
    58. 

  58. 			if ($result['username']) {
    59. 

  59. 				$userExists = true;
    60. 

  60. 				$username = $result['username'];
    61. 

  61. 				$passwordMatches = (password_verify($password, $result['password'])) ? true : false;
    62. 

  62. 			}
    63. 

  63. 			if ($userExists) {
    64. 

  64. 				//does org password need to be updated
    65. 

  65. 				if (!$passwordMatches) {
    66. 

  66. 					$database->query('
    67. 

  67.                     	UPDATE users SET', [
    68. 

  68. 						'password' => password_hash($password, PASSWORD_BCRYPT)
    69. 

  69. 					], '
    70. 

  70.                     	WHERE id=?', $result['id']);
    71. 

  71. 					writeLog('success', 'Login Function - User Password updated from backend', $username);
    72. 

  72. 				}
    73. 

  73. 				// authentication passed - 1) mark active and update token
    74. 

  74. 				if (createToken($result['username'], $result['email'], $result['image'], $result['group'], $result['group_id'], $GLOBALS['organizrHash'], $days)) {
    75. 

  75. 					writeLoginLog($username, 'success');
    76. 

  76. 					writeLog('success', 'Login Function - A User has logged in', $username);
    77. 

  77. 					ssoCheck($username, $password, $token); //need to work on this
    78. 

  78. 					return true;
    79. 

  79. 				} else {
    80. 

  80. 					return 'error';
    81. 

  81. 				}
    82. 

  82. 			} else {
    83. 

  83. 				// Create User
    84. 

  84. 				ssoCheck($username, $password, $token);
    85. 

  85. 				return authRegister((is_array($authSuccess) && isset($authSuccess['username']) ? $authSuccess['username'] : $username), $password, defaultUserGroup(), (is_array($authSuccess) && isset($authSuccess['email']) ? $authSuccess['email'] : ''));
    86. 

  86. 			}
    87. 

  87. 		} else {
    88. 

  88. 			// authentication failed
    89. 

  89. 			writeLoginLog($username, 'error');
    90. 

  90. 			writeLog('error', 'Login Function - Wrong Password', $username);
    91. 

  91. 			return 'mismatch';
    92. 

  92. 		}
    93. 

  93. 	} catch (Dibi\Exception $e) {
    94. 

  94. 		return $e;
    95. 

  95. 	}
    96. 

  96. }
    97. 

  97. 

  98. function createDB($path, $filename)
    99. 

  99. {
    100. 

  100. 	try {
    101. 

  101. 		if (!file_exists($path)) {
    102. 

  102. 			mkdir($path, 0777, true);
    103. 

  103. 		}
    104. 

  104. 		$createDB = new Dibi\Connection([
    105. 

  105. 			'driver' => 'sqlite3',
    106. 

  106. 			'database' => $path . $filename,
    107. 

  107. 		]);
    108. 

  108. 		// Create Users
    109. 

  109. 		$createDB->query('CREATE TABLE `users` (
    110. 

  110.     		`id`	INTEGER PRIMARY KEY AUTOINCREMENT UNIQUE,
    111. 

  111.     		`username`	TEXT UNIQUE,
    112. 

  112.     		`password`	TEXT,
    113. 

  113.     		`email`	TEXT,
    114. 

  114.     		`plex_token`	TEXT,
    115. 

  115.             `group`	TEXT,
    116. 

  116.             `group_id`	INTEGER,
    117. 

  117.             `locked`	INTEGER,
    118. 

  118.     		`image`	TEXT,
    119. 

  119.             `register_date` DATE,
    120. 

  120.     		`auth_service`	TEXT DEFAULT \'internal\'
    121. 

  121.     	);');
    122. 

  122. 		// Create Tokens
    123. 

  123. 		$createDB->query('CREATE TABLE `chatroom` (
    124. 

  124.     		`id`	INTEGER PRIMARY KEY AUTOINCREMENT UNIQUE,
    125. 

  125.     		`username`	TEXT,
    126. 

  126.     		`gravatar`	TEXT,
    127. 

  127.     		`uid`	TEXT,
    128. 

  128.             `date` DATE,
    129. 

  129.             `ip` TEXT,
    130. 

  130.             `message` TEXT
    131. 

  131.     	);');
    132. 

  132. 		$createDB->query('CREATE TABLE `tokens` (
    133. 

  133.     		`id`	INTEGER PRIMARY KEY AUTOINCREMENT UNIQUE,
    134. 

  134.     		`token`	TEXT UNIQUE,
    135. 

  135.     		`user_id`	INTEGER,
    136. 

  136.             `created` DATE,
    137. 

  137.             `expires` DATE
    138. 

  138.     	);');
    139. 

  139. 		$createDB->query('CREATE TABLE `groups` (
    140. 

  140.     		`id`	INTEGER PRIMARY KEY AUTOINCREMENT UNIQUE,
    141. 

  141.     		`group`	TEXT UNIQUE,
    142. 

  142.             `group_id`	INTEGER,
    143. 

  143.     		`image`	TEXT,
    144. 

  144.             `default` INTEGER
    145. 

  145.     	);');
    146. 

  146. 		$createDB->query('CREATE TABLE `categories` (
    147. 

  147.     		`id`	INTEGER PRIMARY KEY AUTOINCREMENT UNIQUE,
    148. 

  148.             `order`	INTEGER,
    149. 

  149.     		`category`	TEXT UNIQUE,
    150. 

  150.             `category_id`	INTEGER,
    151. 

  151.     		`image`	TEXT,
    152. 

  152.             `default` INTEGER
    153. 

  153.     	);');
    154. 

  154. 		// Create Tabs
    155. 

  155. 		$createDB->query('CREATE TABLE `tabs` (
    156. 

  156.     		`id`	INTEGER PRIMARY KEY AUTOINCREMENT UNIQUE,
    157. 

  157.     		`order`	INTEGER,
    158. 

  158.     		`category_id`	INTEGER,
    159. 

  159.     		`name`	TEXT,
    160. 

  160.             `url`	TEXT,
    161. 

  161.     		`url_local`	TEXT,
    162. 

  162.     		`default`	INTEGER,
    163. 

  163.     		`enabled`	INTEGER,
    164. 

  164.     		`group_id`	INTEGER,
    165. 

  165.     		`image`	TEXT,
    166. 

  166.     		`type`	INTEGER,
    167. 

  167.     		`splash`	INTEGER,
    168. 

  168.     		`ping`		INTEGER,
    169. 

  169.     		`ping_url`	TEXT
    170. 

  170.     	);');
    171. 

  171. 		// Create Options
    172. 

  172. 		$createDB->query('CREATE TABLE `options` (
    173. 

  173.     		`id`	INTEGER PRIMARY KEY AUTOINCREMENT UNIQUE,
    174. 

  174.     		`name`	TEXT UNIQUE,
    175. 

  175.     		`value`	TEXT
    176. 

  176.     	);');
    177. 

  177. 		// Create Invites
    178. 

  178. 		$createDB->query('CREATE TABLE `invites` (
    179. 

  179.     		`id`	INTEGER PRIMARY KEY AUTOINCREMENT UNIQUE,
    180. 

  180.     		`code`	TEXT UNIQUE,
    181. 

  181.     		`date`	TIMESTAMP DEFAULT CURRENT_TIMESTAMP,
    182. 

  182.     		`email`	TEXT,
    183. 

  183.     		`username`	TEXT,
    184. 

  184.     		`dateused`	TIMESTAMP,
    185. 

  185.     		`usedby`	TEXT,
    186. 

  186.     		`ip`	TEXT,
    187. 

  187.     		`valid`	TEXT,
    188. 

  188.             `type` TEXT
    189. 

  189.     	);');
    190. 

  190. 		return true;
    191. 

  191. 	} catch (Dibi\Exception $e) {
    192. 

  192. 		return false;
    193. 

  193. 	}
    194. 

  194. }
    195. 

  195. 

  196. // Upgrade Database
    197. 

  197. function updateDB($path, $filename, $oldVerNum = false)
    198. 

  198. {
    199. 

  199. 	try {
    200. 

  200. 		$connect = new Dibi\Connection([
    201. 

  201. 			'driver' => 'sqlite3',
    202. 

  202. 			'database' => $path . $filename,
    203. 

  203. 		]);
    204. 

  204. 		// Cache current DB
    205. 

  205. 		$cache = array();
    206. 

  206. 		foreach ($connect->query('SELECT name FROM sqlite_master WHERE type="table";') as $table) {
    207. 

  207. 			foreach ($connect->query('SELECT * FROM ' . $table['name'] . ';') as $key => $row) {
    208. 

  208. 				foreach ($row as $k => $v) {
    209. 

  209. 					if (is_string($k)) {
    210. 

  210. 						$cache[$table['name']][$key][$k] = $v;
    211. 

  211. 					}
    212. 

  212. 				}
    213. 

  213. 			}
    214. 

  214. 		}
    215. 

  215. 		$connect->disconnect();
    216. 

  216. 		writeLog('success', 'Update Function -  Cached Old Database', 'Database');
    217. 

  217. 	} catch (Dibi\Exception $e) {
    218. 

  218. 		writeLog('error', 'Update Function -  Cache Error [' . $e . ']', 'Database');
    219. 

  219. 		return $e;
    220. 

  220. 	}
    221. 

  221. 	// Remove Current Database
    222. 

  222. 	$pathDigest = pathinfo($path . $filename);
    223. 

  223. 	if (file_exists($path . $filename)) {
    224. 

  224. 		copy($path . $filename, $pathDigest['dirname'] . '/' . $pathDigest['filename'] . '[' . date('Y-m-d_H-i-s') . ']' . ($oldVerNum ? '[' . $oldVerNum . ']' : '') . '.bak.db');
    225. 

  225. 		unlink($path . $filename);
    226. 

  226. 	}
    227. 

  227. 	// Create New Database
    228. 

  228. 	$success = createDB($path, $filename);
    229. 

  229. 	try {
    230. 

  230. 		$GLOBALS['connect'] = new Dibi\Connection([
    231. 

  231. 			'driver' => 'sqlite3',
    232. 

  232. 			'database' => $path . $filename,
    233. 

  233. 		]);
    234. 

  234. 		// Restore Items
    235. 

  235. 		if ($success) {
    236. 

  236. 			writeLog('success', 'Update Function -  Created New Database', 'Database');
    237. 

  237. 			foreach ($cache as $table => $tableData) {
    238. 

  238. 				if ($tableData) {
    239. 

  239. 					$queryBase = 'INSERT INTO ' . $table . ' (`' . implode('`,`', array_keys(current($tableData))) . '`) values ';
    240. 

  240. 					$insertValues = array();
    241. 

  241. 					reset($tableData);
    242. 

  242. 					foreach ($tableData as $key => $value) {
    243. 

  243. 						$insertValues[] = '(' . implode(',', array_map(function ($d) {
    244. 

  244. 								return (isset($d) ? str_replace('\/', '/', json_encode($d)) : 'null');
    245. 

  245. 							}, $value)) . ')';
    246. 

  246. 					}
    247. 

  247. 					$GLOBALS['connect']->query($queryBase . implode(',', $insertValues) . ';');
    248. 

  248. 				}
    249. 

  249. 			}
    250. 

  250. 		}
    251. 

  251. 		writeLog('success', 'Update Function -  Migrated Old Info to new Database', 'Database');
    252. 

  252. 		return true;
    253. 

  253. 	} catch (Dibi\Exception $e) {
    254. 

  254. 		writeLog('error', 'Update Function -  Error [' . $e . ']', 'Database');
    255. 

  255. 		return false;
    256. 

  256. 	}
    257. 

  257. }
    258. 

  258. 

  259. function createFirstAdmin($path, $filename, $username, $password, $email)
    260. 

  260. {
    261. 

  261. 	try {
    262. 

  262. 		$createDB = new Dibi\Connection([
    263. 

  263. 			'driver' => 'sqlite3',
    264. 

  264. 			'database' => $path . $filename,
    265. 

  265. 		]);
    266. 

  266. 		$userInfo = [
    267. 

  267. 			'username' => $username,
    268. 

  268. 			'password' => password_hash($password, PASSWORD_BCRYPT),
    269. 

  269. 			'email' => $email,
    270. 

  270. 			'group' => 'Admin',
    271. 

  271. 			'group_id' => 0,
    272. 

  272. 			'image' => gravatar($email),
    273. 

  273. 			'register_date' => $GLOBALS['currentTime'],
    274. 

  274. 		];
    275. 

  275. 		$groupInfo0 = [
    276. 

  276. 			'group' => 'Admin',
    277. 

  277. 			'group_id' => 0,
    278. 

  278. 			'default' => false,
    279. 

  279. 			'image' => 'plugins/images/groups/admin.png',
    280. 

  280. 		];
    281. 

  281. 		$groupInfo1 = [
    282. 

  282. 			'group' => 'Co-Admin',
    283. 

  283. 			'group_id' => 1,
    284. 

  284. 			'default' => false,
    285. 

  285. 			'image' => 'plugins/images/groups/coadmin.png',
    286. 

  286. 		];
    287. 

  287. 		$groupInfo2 = [
    288. 

  288. 			'group' => 'Super User',
    289. 

  289. 			'group_id' => 2,
    290. 

  290. 			'default' => false,
    291. 

  291. 			'image' => 'plugins/images/groups/superuser.png',
    292. 

  292. 		];
    293. 

  293. 		$groupInfo3 = [
    294. 

  294. 			'group' => 'Power User',
    295. 

  295. 			'group_id' => 3,
    296. 

  296. 			'default' => false,
    297. 

  297. 			'image' => 'plugins/images/groups/poweruser.png',
    298. 

  298. 		];
    299. 

  299. 		$groupInfo4 = [
    300. 

  300. 			'group' => 'User',
    301. 

  301. 			'group_id' => 4,
    302. 

  302. 			'default' => true,
    303. 

  303. 			'image' => 'plugins/images/groups/user.png',
    304. 

  304. 		];
    305. 

  305. 		$groupInfoGuest = [
    306. 

  306. 			'group' => 'Guest',
    307. 

  307. 			'group_id' => 999,
    308. 

  308. 			'default' => false,
    309. 

  309. 			'image' => 'plugins/images/groups/guest.png',
    310. 

  310. 		];
    311. 

  311. 		$settingsInfo = [
    312. 

  312. 			'order' => 1,
    313. 

  313. 			'category_id' => 0,
    314. 

  314. 			'name' => 'Settings',
    315. 

  315. 			'url' => 'api/?v1/settings/page',
    316. 

  316. 			'default' => false,
    317. 

  317. 			'enabled' => true,
    318. 

  318. 			'group_id' => 1,
    319. 

  319. 			'image' => 'fontawesome::cog',
    320. 

  320. 			'type' => 0
    321. 

  321. 		];
    322. 

  322. 		$homepageInfo = [
    323. 

  323. 			'order' => 2,
    324. 

  324. 			'category_id' => 0,
    325. 

  325. 			'name' => 'Homepage',
    326. 

  326. 			'url' => 'api/?v1/homepage/page',
    327. 

  327. 			'default' => false,
    328. 

  328. 			'enabled' => false,
    329. 

  329. 			'group_id' => 4,
    330. 

  330. 			'image' => 'fontawesome::home',
    331. 

  331. 			'type' => 0
    332. 

  332. 		];
    333. 

  333. 		$unsortedInfo = [
    334. 

  334. 			'order' => 1,
    335. 

  335. 			'category' => 'Unsorted',
    336. 

  336. 			'category_id' => 0,
    337. 

  337. 			'image' => 'plugins/images/categories/unsorted.png',
    338. 

  338. 			'default' => true
    339. 

  339. 		];
    340. 

  340. 		$createDB->query('INSERT INTO [users]', $userInfo);
    341. 

  341. 		$createDB->query('INSERT INTO [groups]', $groupInfo0);
    342. 

  342. 		$createDB->query('INSERT INTO [groups]', $groupInfo1);
    343. 

  343. 		$createDB->query('INSERT INTO [groups]', $groupInfo2);
    344. 

  344. 		$createDB->query('INSERT INTO [groups]', $groupInfo3);
    345. 

  345. 		$createDB->query('INSERT INTO [groups]', $groupInfo4);
    346. 

  346. 		$createDB->query('INSERT INTO [groups]', $groupInfoGuest);
    347. 

  347. 		$createDB->query('INSERT INTO [tabs]', $settingsInfo);
    348. 

  348. 		$createDB->query('INSERT INTO [tabs]', $homepageInfo);
    349. 

  349. 		$createDB->query('INSERT INTO [categories]', $unsortedInfo);
    350. 

  350. 		return true;
    351. 

  351. 	} catch (Dibi\Exception $e) {
    352. 

  352. 		writeLog('error', 'Wizard Function -  Error [' . $e . ']', 'Wizard');
    353. 

  353. 		return false;
    354. 

  354. 	}
    355. 

  355. }
    356. 

  356. 

  357. function defaultUserGroup()
    358. 

  358. {
    359. 

  359. 	try {
    360. 

  360. 		$connect = new Dibi\Connection([
    361. 

  361. 			'driver' => 'sqlite3',
    362. 

  362. 			'database' => $GLOBALS['dbLocation'] . $GLOBALS['dbName'],
    363. 

  363. 		]);
    364. 

  364. 		$all = $connect->fetch('SELECT * FROM groups WHERE `default` = 1');
    365. 

  365. 		return $all;
    366. 

  366. 	} catch (Dibi\Exception $e) {
    367. 

  367. 		return false;
    368. 

  368. 	}
    369. 

  369. }
    370. 

  370. 

  371. function defaultTabCategory()
    372. 

  372. {
    373. 

  373. 	try {
    374. 

  374. 		$connect = new Dibi\Connection([
    375. 

  375. 			'driver' => 'sqlite3',
    376. 

  376. 			'database' => $GLOBALS['dbLocation'] . $GLOBALS['dbName'],
    377. 

  377. 		]);
    378. 

  378. 		$all = $connect->fetch('SELECT * FROM categories WHERE `default` = 1');
    379. 

  379. 		return $all;
    380. 

  380. 	} catch (Dibi\Exception $e) {
    381. 

  381. 		return false;
    382. 

  382. 	}
    383. 

  383. }
    384. 

  384. 

  385. function getGuest()
    386. 

  386. {
    387. 

  387. 	if (isset($GLOBALS['dbLocation'])) {
    388. 

  388. 		try {
    389. 

  389. 			$connect = new Dibi\Connection([
    390. 

  390. 				'driver' => 'sqlite3',
    391. 

  391. 				'database' => $GLOBALS['dbLocation'] . $GLOBALS['dbName'],
    392. 

  392. 			]);
    393. 

  393. 			$all = $connect->fetch('SELECT * FROM groups WHERE `group` = "Guest"');
    394. 

  394. 			return $all;
    395. 

  395. 		} catch (Dibi\Exception $e) {
    396. 

  396. 			return false;
    397. 

  397. 		}
    398. 

  398. 	} else {
    399. 

  399. 		return array(
    400. 

  400. 			'group' => 'Guest',
    401. 

  401. 			'group_id' => 999,
    402. 

  402. 			'image' => 'plugins/images/groups/guest.png'
    403. 

  403. 		);
    404. 

  404. 	}
    405. 

  405. }
    406. 

  406. 

  407. function adminEditGroup($array)
    408. 

  408. {
    409. 

  409. 	switch ($array['data']['action']) {
    410. 

  410. 		case 'changeDefaultGroup':
    411. 

  411. 			try {
    412. 

  412. 				$connect = new Dibi\Connection([
    413. 

  413. 					'driver' => 'sqlite3',
    414. 

  414. 					'database' => $GLOBALS['dbLocation'] . $GLOBALS['dbName'],
    415. 

  415. 				]);
    416. 

  416. 				$connect->query('UPDATE groups SET `default` = 0');
    417. 

  417. 				$connect->query('
    418. 

  418.                 	UPDATE groups SET', [
    419. 

  419. 					'default' => 1
    420. 

  420. 				], '
    421. 

  421.                 	WHERE id=?', $array['data']['id']);
    422. 

  422. 				writeLog('success', 'Group Management Function -  Changed Default Group from [' . $array['data']['oldGroupName'] . '] to [' . $array['data']['newGroupName'] . ']', $GLOBALS['organizrUser']['username']);
    423. 

  423. 				return true;
    424. 

  424. 			} catch (Dibi\Exception $e) {
    425. 

  425. 				return false;
    426. 

  426. 			}
    427. 

  427. 			break;
    428. 

  428. 		case 'deleteUserGroup':
    429. 

  429. 			try {
    430. 

  430. 				$connect = new Dibi\Connection([
    431. 

  431. 					'driver' => 'sqlite3',
    432. 

  432. 					'database' => $GLOBALS['dbLocation'] . $GLOBALS['dbName'],
    433. 

  433. 				]);
    434. 

  434. 				$connect->query('DELETE FROM groups WHERE id = ?', $array['data']['id']);
    435. 

  435. 				writeLog('success', 'Group Management Function -  Deleted Group [' . $array['data']['groupName'] . ']', $GLOBALS['organizrUser']['username']);
    436. 

  436. 				return true;
    437. 

  437. 			} catch (Dibi\Exception $e) {
    438. 

  438. 				return false;
    439. 

  439. 			}
    440. 

  440. 			break;
    441. 

  441. 		case 'addUserGroup':
    442. 

  442. 			try {
    443. 

  443. 				$connect = new Dibi\Connection([
    444. 

  444. 					'driver' => 'sqlite3',
    445. 

  445. 					'database' => $GLOBALS['dbLocation'] . $GLOBALS['dbName'],
    446. 

  446. 				]);
    447. 

  447. 				$newGroup = [
    448. 

  448. 					'group' => $array['data']['newGroupName'],
    449. 

  449. 					'group_id' => $array['data']['newGroupID'],
    450. 

  450. 					'default' => false,
    451. 

  451. 					'image' => $array['data']['newGroupImage'],
    452. 

  452. 				];
    453. 

  453. 				$connect->query('INSERT INTO [groups]', $newGroup);
    454. 

  454. 				writeLog('success', 'Group Management Function -  Added Group [' . $array['data']['newGroupName'] . ']', $GLOBALS['organizrUser']['username']);
    455. 

  455. 				return true;
    456. 

  456. 			} catch (Dibi\Exception $e) {
    457. 

  457. 				return false;
    458. 

  458. 			}
    459. 

  459. 			break;
    460. 

  460. 		case 'editUserGroup':
    461. 

  461. 			try {
    462. 

  462. 				$connect = new Dibi\Connection([
    463. 

  463. 					'driver' => 'sqlite3',
    464. 

  464. 					'database' => $GLOBALS['dbLocation'] . $GLOBALS['dbName'],
    465. 

  465. 				]);
    466. 

  466. 				$connect->query('
    467. 

  467.                 	UPDATE groups SET', [
    468. 

  468. 					'group' => $array['data']['groupName'],
    469. 

  469. 					'image' => $array['data']['groupImage'],
    470. 

  470. 				], '
    471. 

  471.                 	WHERE id=?', $array['data']['id']);
    472. 

  472. 				writeLog('success', 'Group Management Function -  Edited Group Info for [' . $array['data']['oldGroupName'] . ']', $GLOBALS['organizrUser']['username']);
    473. 

  473. 				return true;
    474. 

  474. 			} catch (Dibi\Exception $e) {
    475. 

  475. 				return false;
    476. 

  476. 			}
    477. 

  477. 			break;
    478. 

  478. 		default:
    479. 

  479. 			return false;
    480. 

  480. 			break;
    481. 

  481. 	}
    482. 

  482. }
    483. 

  483. 

  484. function adminEditUser($array)
    485. 

  485. {
    486. 

  486. 	switch ($array['data']['action']) {
    487. 

  487. 		case 'changeGroup':
    488. 

  488. 			try {
    489. 

  489. 				$connect = new Dibi\Connection([
    490. 

  490. 					'driver' => 'sqlite3',
    491. 

  491. 					'database' => $GLOBALS['dbLocation'] . $GLOBALS['dbName'],
    492. 

  492. 				]);
    493. 

  493. 				$connect->query('
    494. 

  494.                 	UPDATE users SET', [
    495. 

  495. 					'group' => $array['data']['newGroupName'],
    496. 

  496. 					'group_id' => $array['data']['newGroupID'],
    497. 

  497. 				], '
    498. 

  498.                 	WHERE id=?', $array['data']['id']);
    499. 

  499. 				writeLog('success', 'User Management Function - User: ' . $array['data']['username'] . '\'s group was changed from [' . $array['data']['oldGroup'] . '] to [' . $array['data']['newGroupName'] . ']', $GLOBALS['organizrUser']['username']);
    500. 

  500. 				return true;
    501. 

  501. 			} catch (Dibi\Exception $e) {
    502. 

  502. 				writeLog('error', 'User Management Function - Error - User: ' . $array['data']['username'] . '\'s group was changed from [' . $array['data']['oldGroup'] . '] to [' . $array['data']['newGroupName'] . ']', $GLOBALS['organizrUser']['username']);
    503. 

  503. 				return false;
    504. 

  504. 			}
    505. 

  505. 			break;
    506. 

  506. 		case 'editUser':
    507. 

  507. 			try {
    508. 

  508. 				$connect = new Dibi\Connection([
    509. 

  509. 					'driver' => 'sqlite3',
    510. 

  510. 					'database' => $GLOBALS['dbLocation'] . $GLOBALS['dbName'],
    511. 

  511. 				]);
    512. 

  512. 				if (!usernameTakenExcept($array['data']['username'], $array['data']['email'], $array['data']['id'])) {
    513. 

  513. 					$connect->query('
    514. 

  514.                         UPDATE users SET', [
    515. 

  515. 						'username' => $array['data']['username'],
    516. 

  516. 						'email' => $array['data']['email'],
    517. 

  517. 					], '
    518. 

  518.                         WHERE id=?', $array['data']['id']);
    519. 

  519. 					if (!empty($array['data']['password'])) {
    520. 

  520. 						$connect->query('
    521. 

  521.                             UPDATE users SET', [
    522. 

  522. 							'password' => password_hash($array['data']['password'], PASSWORD_BCRYPT)
    523. 

  523. 						], '
    524. 

  524.                             WHERE id=?', $array['data']['id']);
    525. 

  525. 					}
    526. 

  526. 					writeLog('success', 'User Management Function - User: ' . $array['data']['username'] . '\'s info was changed', $GLOBALS['organizrUser']['username']);
    527. 

  527. 					return true;
    528. 

  528. 				} else {
    529. 

  529. 					return false;
    530. 

  530. 				}
    531. 

  531. 			} catch (Dibi\Exception $e) {
    532. 

  532. 				writeLog('error', 'User Management Function - Error - User: ' . $array['data']['username'] . '\'s group was changed from [' . $array['data']['oldGroup'] . '] to [' . $array['data']['newGroupName'] . ']', $GLOBALS['organizrUser']['username']);
    533. 

  533. 				return false;
    534. 

  534. 			}
    535. 

  535. 			break;
    536. 

  536. 		case 'addNewUser':
    537. 

  537. 			$defaults = defaultUserGroup();
    538. 

  538. 			if (createUser($array['data']['username'], $array['data']['password'], $defaults, $array['data']['email'])) {
    539. 

  539. 				writeLog('success', 'Create User Function - Account created for [' . $array['data']['username'] . ']', $GLOBALS['organizrUser']['username']);
    540. 

  540. 				return true;
    541. 

  541. 			} else {
    542. 

  542. 				writeLog('error', 'Registration Function - An error occurred', $GLOBALS['organizrUser']['username']);
    543. 

  543. 				return 'username taken';
    544. 

  544. 			}
    545. 

  545. 			break;
    546. 

  546. 		case 'deleteUser':
    547. 

  547. 			try {
    548. 

  548. 				$connect = new Dibi\Connection([
    549. 

  549. 					'driver' => 'sqlite3',
    550. 

  550. 					'database' => $GLOBALS['dbLocation'] . $GLOBALS['dbName'],
    551. 

  551. 				]);
    552. 

  552. 				$connect->query('DELETE FROM users WHERE id = ?', $array['data']['id']);
    553. 

  553. 				writeLog('success', 'User Management Function -  Deleted User [' . $array['data']['username'] . ']', $GLOBALS['organizrUser']['username']);
    554. 

  554. 				return true;
    555. 

  555. 			} catch (Dibi\Exception $e) {
    556. 

  556. 				return false;
    557. 

  557. 			}
    558. 

  558. 			break;
    559. 

  559. 		default:
    560. 

  560. 			return false;
    561. 

  561. 			break;
    562. 

  562. 	}
    563. 

  563. }
    564. 

  564. 

  565. function editTabs($array)
    566. 

  566. {
    567. 

  567. 	switch ($array['data']['action']) {
    568. 

  568. 		case 'changeGroup':
    569. 

  569. 			try {
    570. 

  570. 				$connect = new Dibi\Connection([
    571. 

  571. 					'driver' => 'sqlite3',
    572. 

  572. 					'database' => $GLOBALS['dbLocation'] . $GLOBALS['dbName'],
    573. 

  573. 				]);
    574. 

  574. 				$connect->query('
    575. 

  575.                 	UPDATE tabs SET', [
    576. 

  576. 					'group_id' => $array['data']['newGroupID'],
    577. 

  577. 				], '
    578. 

  578.                 	WHERE id=?', $array['data']['id']);
    579. 

  579. 				writeLog('success', 'Tab Editor Function - Tab: ' . $array['data']['tab'] . '\'s group was changed to [' . $array['data']['newGroupName'] . ']', $GLOBALS['organizrUser']['username']);
    580. 

  580. 				return true;
    581. 

  581. 			} catch (Dibi\Exception $e) {
    582. 

  582. 				return false;
    583. 

  583. 			}
    584. 

  584. 			break;
    585. 

  585. 		case 'changeCategory':
    586. 

  586. 			try {
    587. 

  587. 				$connect = new Dibi\Connection([
    588. 

  588. 					'driver' => 'sqlite3',
    589. 

  589. 					'database' => $GLOBALS['dbLocation'] . $GLOBALS['dbName'],
    590. 

  590. 				]);
    591. 

  591. 				$connect->query('
    592. 

  592.                         UPDATE tabs SET', [
    593. 

  593. 					'category_id' => $array['data']['newCategoryID'],
    594. 

  594. 				], '
    595. 

  595.                         WHERE id=?', $array['data']['id']);
    596. 

  596. 				writeLog('success', 'Tab Editor Function - Tab: ' . $array['data']['tab'] . '\'s category was changed to [' . $array['data']['newCategoryName'] . ']', $GLOBALS['organizrUser']['username']);
    597. 

  597. 				return true;
    598. 

  598. 			} catch (Dibi\Exception $e) {
    599. 

  599. 				return false;
    600. 

  600. 			}
    601. 

  601. 			break;
    602. 

  602. 		case 'changeType':
    603. 

  603. 			try {
    604. 

  604. 				$connect = new Dibi\Connection([
    605. 

  605. 					'driver' => 'sqlite3',
    606. 

  606. 					'database' => $GLOBALS['dbLocation'] . $GLOBALS['dbName'],
    607. 

  607. 				]);
    608. 

  608. 				$connect->query('
    609. 

  609.                         UPDATE tabs SET', [
    610. 

  610. 					'type' => $array['data']['newTypeID'],
    611. 

  611. 				], '
    612. 

  612.                         WHERE id=?', $array['data']['id']);
    613. 

  613. 				writeLog('success', 'Tab Editor Function - Tab: ' . $array['data']['tab'] . '\'s type was changed to [' . $array['data']['newTypeName'] . ']', $GLOBALS['organizrUser']['username']);
    614. 

  614. 				return true;
    615. 

  615. 			} catch (Dibi\Exception $e) {
    616. 

  616. 				return false;
    617. 

  617. 			}
    618. 

  618. 			break;
    619. 

  619. 		case 'changeEnabled':
    620. 

  620. 			try {
    621. 

  621. 				$connect = new Dibi\Connection([
    622. 

  622. 					'driver' => 'sqlite3',
    623. 

  623. 					'database' => $GLOBALS['dbLocation'] . $GLOBALS['dbName'],
    624. 

  624. 				]);
    625. 

  625. 				$connect->query('
    626. 

  626.                         UPDATE tabs SET', [
    627. 

  627. 					'enabled' => $array['data']['tabEnabled'],
    628. 

  628. 				], '
    629. 

  629.                         WHERE id=?', $array['data']['id']);
    630. 

  630. 				writeLog('success', 'Tab Editor Function - Tab: ' . $array['data']['tab'] . '\'s enable status was changed to [' . $array['data']['tabEnabledWord'] . ']', $GLOBALS['organizrUser']['username']);
    631. 

  631. 				return true;
    632. 

  632. 			} catch (Dibi\Exception $e) {
    633. 

  633. 				return false;
    634. 

  634. 			}
    635. 

  635. 			break;
    636. 

  636. 		case 'changeSplash':
    637. 

  637. 			try {
    638. 

  638. 				$connect = new Dibi\Connection([
    639. 

  639. 					'driver' => 'sqlite3',
    640. 

  640. 					'database' => $GLOBALS['dbLocation'] . $GLOBALS['dbName'],
    641. 

  641. 				]);
    642. 

  642. 				$connect->query('
    643. 

  643.                         UPDATE tabs SET', [
    644. 

  644. 					'splash' => $array['data']['tabSplash'],
    645. 

  645. 				], '
    646. 

  646.                         WHERE id=?', $array['data']['id']);
    647. 

  647. 				writeLog('success', 'Tab Editor Function - Tab: ' . $array['data']['tab'] . '\'s splash status was changed to [' . $array['data']['tabSplashWord'] . ']', $GLOBALS['organizrUser']['username']);
    648. 

  648. 				return true;
    649. 

  649. 			} catch (Dibi\Exception $e) {
    650. 

  650. 				return false;
    651. 

  651. 			}
    652. 

  652. 			break;
    653. 

  653. 		case 'changePing':
    654. 

  654. 			try {
    655. 

  655. 				$connect = new Dibi\Connection([
    656. 

  656. 					'driver' => 'sqlite3',
    657. 

  657. 					'database' => $GLOBALS['dbLocation'] . $GLOBALS['dbName'],
    658. 

  658. 				]);
    659. 

  659. 				$connect->query('
    660. 

  660.                         UPDATE tabs SET', [
    661. 

  661. 					'ping' => $array['data']['tabPing'],
    662. 

  662. 				], '
    663. 

  663.                         WHERE id=?', $array['data']['id']);
    664. 

  664. 				writeLog('success', 'Tab Editor Function - Tab: ' . $array['data']['tab'] . '\'s ping status was changed to [' . $array['data']['tabPingWord'] . ']', $GLOBALS['organizrUser']['username']);
    665. 

  665. 				return true;
    666. 

  666. 			} catch (Dibi\Exception $e) {
    667. 

  667. 				return false;
    668. 

  668. 			}
    669. 

  669. 			break;
    670. 

  670. 		case 'changeDefault':
    671. 

  671. 			try {
    672. 

  672. 				$connect = new Dibi\Connection([
    673. 

  673. 					'driver' => 'sqlite3',
    674. 

  674. 					'database' => $GLOBALS['dbLocation'] . $GLOBALS['dbName'],
    675. 

  675. 				]);
    676. 

  676. 				$connect->query('UPDATE tabs SET `default` = 0');
    677. 

  677. 				$connect->query('
    678. 

  678.                     UPDATE tabs SET', [
    679. 

  679. 					'default' => 1
    680. 

  680. 				], '
    681. 

  681.                     WHERE id=?', $array['data']['id']);
    682. 

  682. 				writeLog('success', 'Tab Editor Function -  Changed Default Tab to [' . $array['data']['tab'] . ']', $GLOBALS['organizrUser']['username']);
    683. 

  683. 				return true;
    684. 

  684. 			} catch (Dibi\Exception $e) {
    685. 

  685. 				return false;
    686. 

  686. 			}
    687. 

  687. 			break;
    688. 

  688. 		case 'deleteTab':
    689. 

  689. 			try {
    690. 

  690. 				$connect = new Dibi\Connection([
    691. 

  691. 					'driver' => 'sqlite3',
    692. 

  692. 					'database' => $GLOBALS['dbLocation'] . $GLOBALS['dbName'],
    693. 

  693. 				]);
    694. 

  694. 				$connect->query('DELETE FROM tabs WHERE id = ?', $array['data']['id']);
    695. 

  695. 				writeLog('success', 'Tab Editor Function -  Deleted Tab [' . $array['data']['tab'] . ']', $GLOBALS['organizrUser']['username']);
    696. 

  696. 				return true;
    697. 

  697. 			} catch (Dibi\Exception $e) {
    698. 

  698. 				return false;
    699. 

  699. 			}
    700. 

  700. 			break;
    701. 

  701. 		case 'editTab':
    702. 

  702. 			try {
    703. 

  703. 				$connect = new Dibi\Connection([
    704. 

  704. 					'driver' => 'sqlite3',
    705. 

  705. 					'database' => $GLOBALS['dbLocation'] . $GLOBALS['dbName'],
    706. 

  706. 				]);
    707. 

  707. 				$connect->query('
    708. 

  708.                     UPDATE tabs SET', [
    709. 

  709. 					'name' => $array['data']['tabName'],
    710. 

  710. 					'url' => $array['data']['tabURL'],
    711. 

  711. 					'ping_url' => $array['data']['pingURL'],
    712. 

  712. 					'image' => $array['data']['tabImage'],
    713. 

  713. 				], '
    714. 

  714.                     WHERE id=?', $array['data']['id']);
    715. 

  715. 				writeLog('success', 'Tab Editor Function -  Edited Tab Info for [' . $array['data']['tabName'] . ']', $GLOBALS['organizrUser']['username']);
    716. 

  716. 				return true;
    717. 

  717. 			} catch (Dibi\Exception $e) {
    718. 

  718. 				return false;
    719. 

  719. 			}
    720. 

  720. 		case 'changeOrder':
    721. 

  721. 			try {
    722. 

  722. 				$connect = new Dibi\Connection([
    723. 

  723. 					'driver' => 'sqlite3',
    724. 

  724. 					'database' => $GLOBALS['dbLocation'] . $GLOBALS['dbName'],
    725. 

  725. 				]);
    726. 

  726. 				foreach ($array['data']['tabs']['tab'] as $key => $value) {
    727. 

  727. 					if ($value['order'] != $value['originalOrder']) {
    728. 

  728. 						$connect->query('
    729. 

  729.                             UPDATE tabs SET', [
    730. 

  730. 							'order' => $value['order'],
    731. 

  731. 						], '
    732. 

  732.                             WHERE id=?', $value['id']);
    733. 

  733. 						writeLog('success', 'Tab Editor Function - ' . $value['name'] . ' Order Changed From ' . $value['order'] . ' to ' . $value['originalOrder'], $GLOBALS['organizrUser']['username']);
    734. 

  734. 					}
    735. 

  735. 				}
    736. 

  736. 				writeLog('success', 'Tab Editor Function - Tab Order Changed', $GLOBALS['organizrUser']['username']);
    737. 

  737. 				return true;
    738. 

  738. 			} catch (Dibi\Exception $e) {
    739. 

  739. 				return false;
    740. 

  740. 			}
    741. 

  741. 			break;
    742. 

  742. 		case 'addNewTab':
    743. 

  743. 			try {
    744. 

  744. 				$default = defaultTabCategory()['category_id'];
    745. 

  745. 				$connect = new Dibi\Connection([
    746. 

  746. 					'driver' => 'sqlite3',
    747. 

  747. 					'database' => $GLOBALS['dbLocation'] . $GLOBALS['dbName'],
    748. 

  748. 				]);
    749. 

  749. 				$newTab = [
    750. 

  750. 					'order' => $array['data']['tabOrder'],
    751. 

  751. 					'category_id' => $default,
    752. 

  752. 					'name' => $array['data']['tabName'],
    753. 

  753. 					'url' => $array['data']['tabURL'],
    754. 

  754. 					'ping_url' => $array['data']['pingURL'],
    755. 

  755. 					'default' => $array['data']['tabDefault'],
    756. 

  756. 					'enabled' => 1,
    757. 

  757. 					'group_id' => $array['data']['tabGroupID'],
    758. 

  758. 					'image' => $array['data']['tabImage'],
    759. 

  759. 					'type' => $array['data']['tabType']
    760. 

  760. 				];
    761. 

  761. 				$connect->query('INSERT INTO [tabs]', $newTab);
    762. 

  762. 				writeLog('success', 'Tab Editor Function - Created Tab for: ' . $array['data']['tabName'], $GLOBALS['organizrUser']['username']);
    763. 

  763. 				return true;
    764. 

  764. 			} catch (Dibi\Exception $e) {
    765. 

  765. 				return false;
    766. 

  766. 			}
    767. 

  767. 			break;
    768. 

  768. 		default:
    769. 

  769. 			return false;
    770. 

  770. 			break;
    771. 

  771. 	}
    772. 

  772. }
    773. 

  773. 

  774. function editCategories($array)
    775. 

  775. {
    776. 

  776. 	switch ($array['data']['action']) {
    777. 

  777. 		case 'changeDefault':
    778. 

  778. 			try {
    779. 

  779. 				$connect = new Dibi\Connection([
    780. 

  780. 					'driver' => 'sqlite3',
    781. 

  781. 					'database' => $GLOBALS['dbLocation'] . $GLOBALS['dbName'],
    782. 

  782. 				]);
    783. 

  783. 				$connect->query('UPDATE categories SET `default` = 0');
    784. 

  784. 				$connect->query('
    785. 

  785.                 	UPDATE categories SET', [
    786. 

  786. 					'default' => 1
    787. 

  787. 				], '
    788. 

  788.                 	WHERE id=?', $array['data']['id']);
    789. 

  789. 				writeLog('success', 'Category Editor Function -  Changed Default Category from [' . $array['data']['oldCategoryName'] . '] to [' . $array['data']['newCategoryName'] . ']', $GLOBALS['organizrUser']['username']);
    790. 

  790. 				return true;
    791. 

  791. 			} catch (Dibi\Exception $e) {
    792. 

  792. 				return false;
    793. 

  793. 			}
    794. 

  794. 			break;
    795. 

  795. 		case 'deleteCategory':
    796. 

  796. 			try {
    797. 

  797. 				$connect = new Dibi\Connection([
    798. 

  798. 					'driver' => 'sqlite3',
    799. 

  799. 					'database' => $GLOBALS['dbLocation'] . $GLOBALS['dbName'],
    800. 

  800. 				]);
    801. 

  801. 				$connect->query('DELETE FROM categories WHERE id = ?', $array['data']['id']);
    802. 

  802. 				writeLog('success', 'Category Editor Function -  Deleted Category [' . $array['data']['category'] . ']', $GLOBALS['organizrUser']['username']);
    803. 

  803. 				return true;
    804. 

  804. 			} catch (Dibi\Exception $e) {
    805. 

  805. 				return false;
    806. 

  806. 			}
    807. 

  807. 			break;
    808. 

  808. 		case 'addNewCategory':
    809. 

  809. 			try {
    810. 

  810. 				$connect = new Dibi\Connection([
    811. 

  811. 					'driver' => 'sqlite3',
    812. 

  812. 					'database' => $GLOBALS['dbLocation'] . $GLOBALS['dbName'],
    813. 

  813. 				]);
    814. 

  814. 				$newCategory = [
    815. 

  815. 					'category' => $array['data']['categoryName'],
    816. 

  816. 					'order' => $array['data']['categoryOrder'],
    817. 

  817. 					'category_id' => $array['data']['categoryID'],
    818. 

  818. 					'default' => false,
    819. 

  819. 					'image' => $array['data']['categoryImage'],
    820. 

  820. 				];
    821. 

  821. 				$connect->query('INSERT INTO [categories]', $newCategory);
    822. 

  822. 				writeLog('success', 'Category Editor Function -  Added Category [' . $array['data']['categoryName'] . ']', $GLOBALS['organizrUser']['username']);
    823. 

  823. 				return true;
    824. 

  824. 			} catch (Dibi\Exception $e) {
    825. 

  825. 				return $e;
    826. 

  826. 			}
    827. 

  827. 			break;
    828. 

  828. 		case 'editCategory':
    829. 

  829. 			try {
    830. 

  830. 				$connect = new Dibi\Connection([
    831. 

  831. 					'driver' => 'sqlite3',
    832. 

  832. 					'database' => $GLOBALS['dbLocation'] . $GLOBALS['dbName'],
    833. 

  833. 				]);
    834. 

  834. 				$connect->query('
    835. 

  835.                 	UPDATE categories SET', [
    836. 

  836. 					'category' => $array['data']['name'],
    837. 

  837. 					'image' => $array['data']['image'],
    838. 

  838. 				], '
    839. 

  839.                 	WHERE id=?', $array['data']['id']);
    840. 

  840. 				writeLog('success', 'Category Editor Function -  Edited Category Info for [' . $array['data']['name'] . ']', $GLOBALS['organizrUser']['username']);
    841. 

  841. 				return true;
    842. 

  842. 			} catch (Dibi\Exception $e) {
    843. 

  843. 				return false;
    844. 

  844. 			}
    845. 

  845. 			break;
    846. 

  846. 		case 'changeOrder':
    847. 

  847. 			try {
    848. 

  848. 				$connect = new Dibi\Connection([
    849. 

  849. 					'driver' => 'sqlite3',
    850. 

  850. 					'database' => $GLOBALS['dbLocation'] . $GLOBALS['dbName'],
    851. 

  851. 				]);
    852. 

  852. 				foreach ($array['data']['categories']['category'] as $key => $value) {
    853. 

  853. 					if ($value['order'] != $value['originalOrder']) {
    854. 

  854. 						$connect->query('
    855. 

  855.                             UPDATE categories SET', [
    856. 

  856. 							'order' => $value['order'],
    857. 

  857. 						], '
    858. 

  858.                             WHERE id=?', $value['id']);
    859. 

  859. 						writeLog('success', 'Category Editor Function - ' . $value['name'] . ' Order Changed From ' . $value['order'] . ' to ' . $value['originalOrder'], $GLOBALS['organizrUser']['username']);
    860. 

  860. 					}
    861. 

  861. 				}
    862. 

  862. 				writeLog('success', 'Category Editor Function - Category Order Changed', $GLOBALS['organizrUser']['username']);
    863. 

  863. 				return true;
    864. 

  864. 			} catch (Dibi\Exception $e) {
    865. 

  865. 				return false;
    866. 

  866. 			}
    867. 

  867. 			break;
    868. 

  868. 		default:
    869. 

  869. 			return false;
    870. 

  870. 			break;
    871. 

  871. 	}
    872. 

  872. }
    873. 

  873. 

  874. function allUsers()
    875. 

  875. {
    876. 

  876. 	try {
    877. 

  877. 		$connect = new Dibi\Connection([
    878. 

  878. 			'driver' => 'sqlite3',
    879. 

  879. 			'database' => $GLOBALS['dbLocation'] . $GLOBALS['dbName'],
    880. 

  880. 		]);
    881. 

  881. 		$users = $connect->fetchAll('SELECT * FROM users');
    882. 

  882. 		$groups = $connect->fetchAll('SELECT * FROM groups ORDER BY group_id ASC');
    883. 

  883. 		foreach ($users as $k => $v) {
    884. 

  884. 			// clear password from array
    885. 

  885. 			unset($users[$k]['password']);
    886. 

  886. 		}
    887. 

  887. 		$all['users'] = $users;
    888. 

  888. 		$all['groups'] = $groups;
    889. 

  889. 		return $all;
    890. 

  890. 	} catch (Dibi\Exception $e) {
    891. 

  891. 		return false;
    892. 

  892. 	}
    893. 

  893. }
    894. 

  894. 

  895. function usernameTaken($username, $email)
    896. 

  896. {
    897. 

  897. 	try {
    898. 

  898. 		$connect = new Dibi\Connection([
    899. 

  899. 			'driver' => 'sqlite3',
    900. 

  900. 			'database' => $GLOBALS['dbLocation'] . $GLOBALS['dbName'],
    901. 

  901. 		]);
    902. 

  902. 		$all = $connect->fetch('SELECT * FROM users WHERE username = ? COLLATE NOCASE OR email = ? COLLATE NOCASE', $username, $email);
    903. 

  903. 		return ($all) ? true : false;
    904. 

  904. 	} catch (Dibi\Exception $e) {
    905. 

  905. 		return false;
    906. 

  906. 	}
    907. 

  907. }
    908. 

  908. 

  909. function usernameTakenExcept($username, $email, $id)
    910. 

  910. {
    911. 

  911. 	try {
    912. 

  912. 		$connect = new Dibi\Connection([
    913. 

  913. 			'driver' => 'sqlite3',
    914. 

  914. 			'database' => $GLOBALS['dbLocation'] . $GLOBALS['dbName'],
    915. 

  915. 		]);
    916. 

  916. 		$all = $connect->fetch('SELECT * FROM users WHERE id IS NOT ? AND username = ? COLLATE NOCASE OR id IS NOT ? AND email = ? COLLATE NOCASE', $id, $username, $id, $email);
    917. 

  917. 		return ($all) ? true : false;
    918. 

  918. 	} catch (Dibi\Exception $e) {
    919. 

  919. 		return false;
    920. 

  920. 	}
    921. 

  921. }
    922. 

  922. 

  923. function createUser($username, $password, $defaults, $email = null)
    924. 

  924. {
    925. 

  925. 	$email = ($email) ? $email : random_ascii_string(10) . '@placeholder.eml';
    926. 

  926. 	try {
    927. 

  927. 		if (!usernameTaken($username, $email)) {
    928. 

  928. 			$createDB = new Dibi\Connection([
    929. 

  929. 				'driver' => 'sqlite3',
    930. 

  930. 				'database' => $GLOBALS['dbLocation'] . $GLOBALS['dbName'],
    931. 

  931. 			]);
    932. 

  932. 			$userInfo = [
    933. 

  933. 				'username' => $username,
    934. 

  934. 				'password' => password_hash($password, PASSWORD_BCRYPT),
    935. 

  935. 				'email' => $email,
    936. 

  936. 				'group' => $defaults['group'],
    937. 

  937. 				'group_id' => $defaults['group_id'],
    938. 

  938. 				'image' => gravatar($email),
    939. 

  939. 				'register_date' => $GLOBALS['currentTime'],
    940. 

  940. 			];
    941. 

  941. 			$createDB->query('INSERT INTO [users]', $userInfo);
    942. 

  942. 			return true;
    943. 

  943. 		} else {
    944. 

  944. 			return false;
    945. 

  945. 		}
    946. 

  946. 	} catch (Dibi\Exception $e) {
    947. 

  947. 		return false;
    948. 

  948. 	}
    949. 

  949. }
    950. 

  950. 

  951. function allTabs()
    952. 

  952. {
    953. 

  953. 	if (file_exists('config' . DIRECTORY_SEPARATOR . 'config.php')) {
    954. 

  954. 		try {
    955. 

  955. 			$connect = new Dibi\Connection([
    956. 

  956. 				'driver' => 'sqlite3',
    957. 

  957. 				'database' => $GLOBALS['dbLocation'] . $GLOBALS['dbName'],
    958. 

  958. 			]);
    959. 

  959. 			$all['tabs'] = $connect->fetchAll('SELECT * FROM tabs ORDER BY `order` ASC');
    960. 

  960. 			$all['categories'] = $connect->fetchAll('SELECT * FROM categories ORDER BY `order` ASC');
    961. 

  961. 			$all['groups'] = $connect->fetchAll('SELECT * FROM groups ORDER BY `group_id` ASC');
    962. 

  962. 			return $all;
    963. 

  963. 		} catch (Dibi\Exception $e) {
    964. 

  964. 			return false;
    965. 

  965. 		}
    966. 

  966. 	}
    967. 

  967. 	return false;
    968. 

  968. }
    969. 

  969. 

  970. function allGroups()
    971. 

  971. {
    972. 

  972. 	if (file_exists('config' . DIRECTORY_SEPARATOR . 'config.php')) {
    973. 

  973. 		try {
    974. 

  974. 			$connect = new Dibi\Connection([
    975. 

  975. 				'driver' => 'sqlite3',
    976. 

  976. 				'database' => $GLOBALS['dbLocation'] . $GLOBALS['dbName'],
    977. 

  977. 			]);
    978. 

  978. 			$all = $connect->fetchAll('SELECT * FROM groups ORDER BY `group_id` ASC');
    979. 

  979. 			return $all;
    980. 

  980. 		} catch (Dibi\Exception $e) {
    981. 

  981. 			return false;
    982. 

  982. 		}
    983. 

  983. 	}
    984. 

  984. 	return false;
    985. 

  985. }
    986. 

  986. 

  987. function loadTabs()
    988. 

  988. {
    989. 

  989. 	if (file_exists('config' . DIRECTORY_SEPARATOR . 'config.php')) {
    990. 

  990. 		try {
    991. 

  991. 			$connect = new Dibi\Connection([
    992. 

  992. 				'driver' => 'sqlite3',
    993. 

  993. 				'database' => $GLOBALS['dbLocation'] . $GLOBALS['dbName'],
    994. 

  994. 			]);
    995. 

  995. 			$sort = ($GLOBALS['unsortedTabs'] == 'top') ? 'DESC' : 'ASC';
    996. 

  996. 			$tabs = $connect->fetchAll('SELECT * FROM tabs WHERE `group_id` >= ? AND `enabled` = 1 ORDER BY `order` ' . $sort, $GLOBALS['organizrUser']['groupID']);
    997. 

  997. 			$categories = $connect->fetchAll('SELECT * FROM categories ORDER BY `order` ASC');
    998. 

  998. 			$all['tabs'] = $tabs;
    999. 

  999. 			foreach ($tabs as $k => $v) {
    1000. 

  1000. 				$v['access_url'] = isset($v['url_local']) && getenv('SERVER_ADDR') == userIP() ? $v['url_local'] : $v['url'];
    1001. 

  1001. 			}
    1002. 

  1002. 			$count = array_map(function ($element) {
    1003. 

  1003. 				return $element['category_id'];
    1004. 

  1004. 			}, $tabs);
    1005. 

  1005. 			$count = (array_count_values($count));
    1006. 

  1006. 			foreach ($categories as $k => $v) {
    1007. 

  1007. 				$v['count'] = isset($count[$v['category_id']]) ? $count[$v['category_id']] : 0;
    1008. 

  1008. 			}
    1009. 

  1009. 			$all['categories'] = $categories;
    1010. 

  1010. 			return $all;
    1011. 

  1011. 		} catch (Dibi\Exception $e) {
    1012. 

  1012. 			return false;
    1013. 

  1013. 		}
    1014. 

  1014. 	}
    1015. 

  1015. 	return false;
    1016. 

  1016. }
    1017.