assign('_title', $_L['Settings']); $ui->assign('_system_menu', 'settings'); $action = $routes['1']; $admin = Admin::_info(); $ui->assign('_admin', $admin); switch ($action) { case 'app': if ($admin['user_type'] != 'Admin') { r2(U . "dashboard", 'e', $_L['Do_Not_Access']); } if (file_exists('system/uploads/logo.png')) { $logo = 'system/uploads/logo.png?' . time(); } else { $logo = 'system/uploads/logo.default.png'; } $ui->assign('logo', $logo); run_hook('view_app_settings'); #HOOK $ui->display('app-settings.tpl'); break; case 'localisation': if ($admin['user_type'] != 'Admin') { r2(U . "dashboard", 'e', $_L['Do_Not_Access']); } $folders = []; $files = scandir('system/lan/'); foreach ($files as $file) { if(is_dir('system/lan/'.$file) && !in_array($file,['.','..'])){ $folders[] = $file; } } $ui->assign('lan', $folders); $timezonelist = Timezone::timezoneList(); $ui->assign('tlist', $timezonelist); $ui->assign('xjq', ' $("#tzone").select2(); '); run_hook('view_localisation'); #HOOK $ui->display('app-localisation.tpl'); break; case 'users': if ($admin['user_type'] != 'Admin') { r2(U . "dashboard", 'e', $_L['Do_Not_Access']); } $ui->assign('xfooter', ''); $username = _post('username'); if ($username != '') { $paginator = Paginator::bootstrap('tbl_users', 'username', '%' . $username . '%'); $d = ORM::for_table('tbl_users')->where_like('username', '%' . $username . '%')->offset($paginator['startpoint'])->limit($paginator['limit'])->order_by_asc('id')->find_many(); } else { $paginator = Paginator::bootstrap('tbl_users'); $d = ORM::for_table('tbl_users')->offset($paginator['startpoint'])->limit($paginator['limit'])->order_by_asc('id')->find_many(); } $ui->assign('d', $d); $ui->assign('paginator', $paginator); run_hook('view_list_admin'); #HOOK $ui->display('users.tpl'); break; case 'users-add': if ($admin['user_type'] != 'Admin') { r2(U . "dashboard", 'e', $_L['Do_Not_Access']); } run_hook('view_add_admin'); #HOOK $ui->display('users-add.tpl'); break; case 'users-edit': if ($admin['user_type'] != 'Admin') { r2(U . "dashboard", 'e', $_L['Do_Not_Access']); } $id = $routes['2']; $d = ORM::for_table('tbl_users')->find_one($id); if ($d) { $ui->assign('d', $d); run_hook('view_edit_admin'); #HOOK $ui->display('users-edit.tpl'); } else { r2(U . 'settings/users', 'e', $_L['Account_Not_Found']); } break; case 'users-delete': if ($admin['user_type'] != 'Admin') { r2(U . "dashboard", 'e', $_L['Do_Not_Access']); } $id = $routes['2']; if (($admin['id']) == $id) { r2(U . 'settings/users', 'e', 'Sorry You can\'t delete yourself'); } $d = ORM::for_table('tbl_users')->find_one($id); if ($d) { run_hook('delete_admin'); #HOOK $d->delete(); r2(U . 'settings/users', 's', $_L['User_Delete_Ok']); } else { r2(U . 'settings/users', 'e', $_L['Account_Not_Found']); } break; case 'users-post': $username = _post('username'); $fullname = _post('fullname'); $password = _post('password'); $cpassword = _post('cpassword'); $user_type = _post('user_type'); $msg = ''; if (Validator::Length($username, 16, 2) == false) { $msg .= 'Username should be between 3 to 15 characters' . '
'; } if (Validator::Length($fullname, 26, 2) == false) { $msg .= 'Full Name should be between 3 to 25 characters' . '
'; } if (!Validator::Length($password, 15, 5)) { $msg .= 'Password should be between 6 to 15 characters' . '
'; } if ($password != $cpassword) { $msg .= 'Passwords does not match' . '
'; } $d = ORM::for_table('tbl_users')->where('username', $username)->find_one(); if ($d) { $msg .= $_L['account_already_exist'] . '
'; } $date_now = date("Y-m-d H:i:s"); run_hook('add_admin'); #HOOK if ($msg == '') { $password = Password::_crypt($password); $d = ORM::for_table('tbl_users')->create(); $d->username = $username; $d->fullname = $fullname; $d->password = $password; $d->user_type = $user_type; $d->status = 'Active'; $d->creationdate = $date_now; $d->save(); _log('[' . $admin['username'] . ']: ' . $_L['account_created_successfully'], 'Admin', $admin['id']); r2(U . 'settings/users', 's', $_L['account_created_successfully']); } else { r2(U . 'settings/users-add', 'e', $msg); } break; case 'users-edit-post': $username = _post('username'); $fullname = _post('fullname'); $password = _post('password'); $cpassword = _post('cpassword'); $msg = ''; if (Validator::Length($username, 16, 2) == false) { $msg .= 'Username should be between 3 to 15 characters' . '
'; } if (Validator::Length($fullname, 26, 2) == false) { $msg .= 'Full Name should be between 3 to 25 characters' . '
'; } if ($password != '') { if (!Validator::Length($password, 15, 5)) { $msg .= 'Password should be between 6 to 15 characters' . '
'; } if ($password != $cpassword) { $msg .= 'Passwords does not match' . '
'; } } $id = _post('id'); $d = ORM::for_table('tbl_users')->find_one($id); if ($d) { } else { $msg .= $_L['Data_Not_Found'] . '
'; } if ($d['username'] != $username) { $c = ORM::for_table('tbl_users')->where('username', $username)->find_one(); if ($c) { $msg .= $_L['account_already_exist'] . '
'; } } run_hook('edit_admin'); #HOOK if ($msg == '') { $d->username = $username; if ($password != '') { $password = Password::_crypt($password); $d->password = $password; } $d->fullname = $fullname; if (($admin['id']) != $id) { $user_type = _post('user_type'); $d->user_type = $user_type; } $d->save(); _log('[' . $admin['username'] . ']: ' . $_L['User_Updated_Successfully'], 'Admin', $admin['id']); r2(U . 'settings/users', 's', 'User Updated Successfully'); } else { r2(U . 'settings/users-edit/' . $id, 'e', $msg); } break; case 'app-post': $company = _post('company'); $footer = _post('footer'); $enable_balance = _post('enable_balance'); $allow_balance_transfer = _post('allow_balance_transfer'); $disable_voucher = _post('disable_voucher'); $telegram_bot = _post('telegram_bot'); $telegram_target_id = _post('telegram_target_id'); $sms_url = _post('sms_url'); $wa_url = _post('wa_url'); $minimum_transfer = _post('minimum_transfer'); $user_notification_expired = _post('user_notification_expired'); $user_notification_reminder = _post('user_notification_reminder'); $user_notification_payment = _post('user_notification_payment'); $address = _post('address'); $tawkto = _post('tawkto'); $http_proxy = _post('http_proxy'); $http_proxyauth = _post('http_proxyauth'); $radius_mode = _post('radius_mode') * 1; run_hook('save_settings'); #HOOK if (!empty($_FILES['logo']['name'])) { if (file_exists('system/uploads/logo.png')) unlink('system/uploads/logo.png'); File::resizeCropImage($_FILES['logo']['tmp_name'], 'system/uploads/logo.png', 1078, 200, 100); if (file_exists($_FILES['logo']['tmp_name'])) unlink($_FILES['logo']['tmp_name']); } if ($company == '') { r2(U . 'settings/app', 'e', $_L['All_field_is_required']); } else { $d = ORM::for_table('tbl_appconfig')->where('setting', 'CompanyName')->find_one(); $d->value = $company; $d->save(); $d = ORM::for_table('tbl_appconfig')->where('setting', 'address')->find_one(); $d->value = $address; $d->save(); $phone = _post('phone'); $d = ORM::for_table('tbl_appconfig')->where('setting', 'phone')->find_one(); $d->value = $phone; $d->save(); $d = ORM::for_table('tbl_appconfig')->where('setting', 'http_proxy')->find_one(); if ($d) { $d->value = $http_proxy; $d->save(); } else { $d = ORM::for_table('tbl_appconfig')->create(); $d->setting = 'http_proxy'; $d->value = $http_proxy; $d->save(); } $d = ORM::for_table('tbl_appconfig')->where('setting', 'http_proxyauth')->find_one(); if ($d) { $d->value = $http_proxyauth; $d->save(); } else { $d = ORM::for_table('tbl_appconfig')->create(); $d->setting = 'http_proxyauth'; $d->value = $http_proxyauth; $d->save(); } $d = ORM::for_table('tbl_appconfig')->where('setting', 'CompanyFooter')->find_one(); if ($d) { $d->value = $footer; $d->save(); } else { $d = ORM::for_table('tbl_appconfig')->create(); $d->setting = 'CompanyFooter'; $d->value = $footer; $d->save(); } $d = ORM::for_table('tbl_appconfig')->where('setting', 'disable_voucher')->find_one(); if ($d) { $d->value = $disable_voucher; $d->save(); } else { $d = ORM::for_table('tbl_appconfig')->create(); $d->setting = 'disable_voucher'; $d->value = $disable_voucher; $d->save(); } $d = ORM::for_table('tbl_appconfig')->where('setting', 'enable_balance')->find_one(); if ($d) { $d->value = $enable_balance; $d->save(); } else { $d = ORM::for_table('tbl_appconfig')->create(); $d->setting = 'enable_balance'; $d->value = $enable_balance; $d->save(); } $d = ORM::for_table('tbl_appconfig')->where('setting', 'allow_balance_transfer')->find_one(); if ($d) { $d->value = $allow_balance_transfer; $d->save(); } else { $d = ORM::for_table('tbl_appconfig')->create(); $d->setting = 'allow_balance_transfer'; $d->value = $allow_balance_transfer; $d->save(); } $d = ORM::for_table('tbl_appconfig')->where('setting', 'minimum_transfer')->find_one(); if ($d) { $d->value = $minimum_transfer; $d->save(); } else { $d = ORM::for_table('tbl_appconfig')->create(); $d->setting = 'minimum_transfer'; $d->value = $minimum_transfer; $d->save(); } $d = ORM::for_table('tbl_appconfig')->where('setting', 'telegram_bot')->find_one(); if ($d) { $d->value = $telegram_bot; $d->save(); } else { $d = ORM::for_table('tbl_appconfig')->create(); $d->setting = 'telegram_bot'; $d->value = $telegram_bot; $d->save(); } $d = ORM::for_table('tbl_appconfig')->where('setting', 'telegram_target_id')->find_one(); if ($d) { $d->value = $telegram_target_id; $d->save(); } else { $d = ORM::for_table('tbl_appconfig')->create(); $d->setting = 'telegram_target_id'; $d->value = $telegram_target_id; $d->save(); } $d = ORM::for_table('tbl_appconfig')->where('setting', 'sms_url')->find_one(); if ($d) { $d->value = $sms_url; $d->save(); } else { $d = ORM::for_table('tbl_appconfig')->create(); $d->setting = 'sms_url'; $d->value = $sms_url; $d->save(); } $d = ORM::for_table('tbl_appconfig')->where('setting', 'wa_url')->find_one(); if ($d) { $d->value = $wa_url; $d->save(); } else { $d = ORM::for_table('tbl_appconfig')->create(); $d->setting = 'wa_url'; $d->value = $wa_url; $d->save(); } $d = ORM::for_table('tbl_appconfig')->where('setting', 'user_notification_expired')->find_one(); if ($d) { $d->value = $user_notification_expired; $d->save(); } else { $d = ORM::for_table('tbl_appconfig')->create(); $d->setting = 'user_notification_expired'; $d->value = $user_notification_expired; $d->save(); } $d = ORM::for_table('tbl_appconfig')->where('setting', 'user_notification_reminder')->find_one(); if ($d) { $d->value = $user_notification_reminder; $d->save(); } else { $d = ORM::for_table('tbl_appconfig')->create(); $d->setting = 'user_notification_reminder'; $d->value = $user_notification_reminder; $d->save(); } $d = ORM::for_table('tbl_appconfig')->where('setting', 'user_notification_payment')->find_one(); if ($d) { $d->value = $user_notification_payment; $d->save(); } else { $d = ORM::for_table('tbl_appconfig')->create(); $d->setting = 'user_notification_payment'; $d->value = $user_notification_payment; $d->save(); } $d = ORM::for_table('tbl_appconfig')->where('setting', 'tawkto')->find_one(); if ($d) { $d->value = $tawkto; $d->save(); } else { $d = ORM::for_table('tbl_appconfig')->create(); $d->setting = 'tawkto'; $d->value = $tawkto; $d->save(); } $d = ORM::for_table('tbl_appconfig')->where('setting', 'radius_mode')->find_one(); if ($d) { $d->value = $radius_mode; $d->save(); } else { $d = ORM::for_table('tbl_appconfig')->create(); $d->setting = 'radius_mode'; $d->value = $radius_mode; $d->save(); } $note = _post('note'); $d = ORM::for_table('tbl_appconfig')->where('setting', 'note')->find_one(); $d->value = $note; $d->save(); _log('[' . $admin['username'] . ']: ' . $_L['Settings_Saved_Successfully'], 'Admin', $admin['id']); r2(U . 'settings/app', 's', $_L['Settings_Saved_Successfully']); } break; case 'localisation-post': $tzone = _post('tzone'); $date_format = _post('date_format'); $country_code_phone = _post('country_code_phone'); $lan = _post('lan'); run_hook('save_localisation'); #HOOK if ($tzone == '' or $date_format == '' or $lan == '') { r2(U . 'settings/app', 'e', $_L['All_field_is_required']); } else { $d = ORM::for_table('tbl_appconfig')->where('setting', 'timezone')->find_one(); $d->value = $tzone; $d->save(); $d = ORM::for_table('tbl_appconfig')->where('setting', 'date_format')->find_one(); $d->value = $date_format; $d->save(); $dec_point = $_POST['dec_point']; if (strlen($dec_point) == '1') { $d = ORM::for_table('tbl_appconfig')->where('setting', 'dec_point')->find_one(); $d->value = $dec_point; $d->save(); } $thousands_sep = $_POST['thousands_sep']; if (strlen($thousands_sep) == '1') { $d = ORM::for_table('tbl_appconfig')->where('setting', 'thousands_sep')->find_one(); $d->value = $thousands_sep; $d->save(); } $d = ORM::for_table('tbl_appconfig')->where('setting', 'country_code_phone')->find_one(); if ($d) { $d->value = $country_code_phone; $d->save(); } else { $d = ORM::for_table('tbl_appconfig')->create(); $d->setting = 'country_code_phone'; $d->value = $country_code_phone; $d->save(); } $currency_code = $_POST['currency_code']; $d = ORM::for_table('tbl_appconfig')->where('setting', 'currency_code')->find_one(); $d->value = $currency_code; $d->save(); $d = ORM::for_table('tbl_appconfig')->where('setting', 'language')->find_one(); $d->value = $lan; $d->save(); _log('[' . $admin['username'] . ']: ' . $_L['Settings_Saved_Successfully'], 'Admin', $admin['id']); r2(U . 'settings/localisation', 's', $_L['Settings_Saved_Successfully']); } break; case 'change-password': if ($admin['user_type'] != 'Admin' and $admin['user_type'] != 'Sales') { r2(U . "dashboard", 'e', $_L['Do_Not_Access']); } run_hook('view_change_password'); #HOOK $ui->display('change-password.tpl'); break; case 'change-password-post': $password = _post('password'); if ($password != '') { $d = ORM::for_table('tbl_users')->where('username', $admin['username'])->find_one(); run_hook('change_password'); #HOOK if ($d) { $d_pass = $d['password']; if (Password::_verify($password, $d_pass) == true) { $npass = _post('npass'); $cnpass = _post('cnpass'); if (!Validator::Length($npass, 15, 5)) { r2(U . 'settings/change-password', 'e', 'New Password must be 6 to 14 character'); } if ($npass != $cnpass) { r2(U . 'settings/change-password', 'e', 'Both Password should be same'); } $npass = Password::_crypt($npass); $d->password = $npass; $d->save(); _msglog('s', $_L['Password_Changed_Successfully']); _log('[' . $admin['username'] . ']: Password changed successfully', 'Admin', $admin['id']); r2(U . 'admin'); } else { r2(U . 'settings/change-password', 'e', $_L['Incorrect_Current_Password']); } } else { r2(U . 'settings/change-password', 'e', $_L['Incorrect_Current_Password']); } } else { r2(U . 'settings/change-password', 'e', $_L['Incorrect_Current_Password']); } break; case 'notifications': if ($admin['user_type'] != 'Admin' and $admin['user_type'] != 'Sales') { r2(U . "dashboard", 'e', $_L['Do_Not_Access']); } run_hook('view_notifications'); #HOOK if (file_exists("system/uploads/notifications.json")) { $ui->assign('_json', json_decode(file_get_contents('system/uploads/notifications.json'), true)); } else { $ui->assign('_json', json_decode(file_get_contents('system/uploads/notifications.default.json'), true)); } $ui->assign('_default', json_decode(file_get_contents('system/uploads/notifications.default.json'), true)); $ui->display('app-notifications.tpl'); break; case 'notifications-post': file_put_contents("system/uploads/notifications.json", json_encode($_POST)); r2(U . 'settings/notifications', 's', $_L['Settings_Saved_Successfully']); break; case 'dbstatus': if ($admin['user_type'] != 'Admin') { r2(U . "dashboard", 'e', $_L['Do_Not_Access']); } $dbc = new mysqli($db_host, $db_user, $db_password, $db_name); if ($result = $dbc->query('SHOW TABLE STATUS')) { $size = 0; $decimals = 2; $tables = array(); while ($row = $result->fetch_array()) { $size += $row["Data_length"] + $row["Index_length"]; $total_size = ($row["Data_length"] + $row["Index_length"]) / 1024; $tables[$row['Name']]['size'] = number_format($total_size, '0'); $tables[$row['Name']]['rows'] = $row["Rows"]; $tables[$row['Name']]['name'] = $row["Name"]; } $mbytes = number_format($size / (1024 * 1024), $decimals, $config['dec_point'], $config['thousands_sep']); $ui->assign('tables', $tables); $ui->assign('dbsize', $mbytes); run_hook('view_database'); #HOOK $ui->display('dbstatus.tpl'); } break; case 'dbbackup': if ($admin['user_type'] != 'Admin') { r2(U . "dashboard", 'e', $_L['Do_Not_Access']); } try { run_hook('backup_database'); #HOOK $mysqli = new mysqli($db_host, $db_user, $db_password, $db_name); if ($mysqli->connect_errno) { throw new Exception("Failed to connect to MySQL: " . $mysqli->connect_error); } header('Pragma: public'); header('Expires: 0'); header('Cache-Control: must-revalidate, post-check=0, pre-check=0'); header('Content-Type: application/force-download'); header('Content-Type: application/octet-stream'); header('Content-Type: application/download'); header('Content-Disposition: attachment;filename="backup_' . date('Y-m-d_h_i_s') . '.sql"'); header('Content-Transfer-Encoding: binary'); ob_start(); $f_output = fopen("php://output", 'w'); print("-- pjl SQL Dump\n"); print("-- Server version:" . $mysqli->server_info . "\n"); print("-- Generated: " . date('Y-m-d h:i:s') . "\n"); print('-- Current PHP version: ' . phpversion() . "\n"); print('-- Host: ' . $db_host . "\n"); print('-- Database:' . $db_name . "\n"); $aTables = array(); $strSQL = 'SHOW TABLES'; if (!$res_tables = $mysqli->query($strSQL)) throw new Exception("MySQL Error: " . $mysqli->error . 'SQL: ' . $strSQL); while ($row = $res_tables->fetch_array()) { $aTables[] = $row[0]; } $res_tables->free(); foreach ($aTables as $table) { print("-- --------------------------------------------------------\n"); print("-- Structure for '" . $table . "'\n"); print("--\n\n"); $strSQL = 'SHOW CREATE TABLE ' . $table; if (!$res_create = $mysqli->query($strSQL)) throw new Exception("MySQL Error: " . $mysqli->error . 'SQL: ' . $strSQL); $row_create = $res_create->fetch_assoc(); print("\n" . $row_create['Create Table'] . ";\n"); print("-- --------------------------------------------------------\n"); print('-- Dump Data for `' . $table . "`\n"); print("--\n\n"); $res_create->free(); $strSQL = 'SELECT * FROM ' . $table; if (!$res_select = $mysqli->query($strSQL)) throw new Exception("MySQL Error: " . $mysqli->error . 'SQL: ' . $strSQL); $fields_info = $res_select->fetch_fields(); while ($values = $res_select->fetch_assoc()) { $strFields = ''; $strValues = ''; foreach ($fields_info as $field) { if ($strFields != '') $strFields .= ','; $strFields .= "`" . $field->name . "`"; if ($strValues != '') $strValues .= ','; $strValues .= '"' . preg_replace('/[^(\x20-\x7F)\x0A]*/', '', $values[$field->name] . '"'); } print("INSERT INTO " . $table . " (" . $strFields . ") VALUES (" . $strValues . ");\n"); } print("\n\n\n"); $res_select->free(); } _log('[' . $admin['username'] . ']: ' . $_L['Download_Database_Backup'], 'Admin', $admin['id']); } catch (Exception $e) { print($e->getMessage()); } fclose($f_output); print(ob_get_clean()); $mysqli->close(); break; case 'language': if ($admin['user_type'] != 'Admin') { r2(U . "dashboard", 'e', $_L['Do_Not_Access']); } run_hook('view_add_language'); #HOOK $ui->display('language-add.tpl'); break; case 'lang-post': $name = _post('name'); $folder = _post('folder'); $translator = _post('translator'); if ($name == '' or $folder == '') { $msg .= $_L['All_field_is_required'] . '
'; } $d = ORM::for_table('tbl_language')->where('name', $name)->find_one(); if ($d) { $msg .= $_L['Lang_already_exist'] . '
'; } run_hook('save_language'); #HOOK if ($msg == '') { $b = ORM::for_table('tbl_language')->create(); $b->name = $name; $b->folder = $folder; $b->author = $translator; $b->save(); r2(U . 'settings/localisation', 's', $_L['Created_Successfully']); } else { r2(U . 'settings/language', 'e', $msg); } break; default: echo 'action not defined'; }