adsTable = $wpdb->prefix."AdMangler_ads"; $this->settingsTable = $wpdb->prefix."AdMangler_settings"; $this->usersTable = $wpdb->prefix."AdMangler_users"; } // End function AdMangler function AdminMenu() { add_menu_page('AdMangler Settings', 'AdMangler', 9, __FILE__, array($this, 'CreateAdminPage'), '/'. PLUGINDIR . '/admangler/images/logo.gif'); add_submenu_page(__FILE__, 'AdMangler Settings', 'Settings', 9, 'settings', array($this, 'CreateAdminPage')); add_submenu_page(__FILE__, 'AdMangler Settings', 'Banners', 9, 'banners', array($this, 'CreateAdminPage')); } // End function AdminMenu function Activate() { global $wpdb; // Plugin database table version $db_version = "0.0.2"; // 0.0.2 // You must increment this if we change the database other wise leave it alone $sql[] = "CREATE TABLE ".$wpdb->prefix."AdMangler_ads ( id INT(11) NOT NULL AUTO_INCREMENT, advertiser VARCHAR(256) COLLATE utf8_bin NOT NULL DEFAULT 'admin', width INT(11) NOT NULL, height INT(11) NOT NULL, active BOOL NOT NULL DEFAULT 0, approved BOOL NOT NULL DEFAULT 0, base BOOL NOT NULL DEFAULT 0, type VARCHAR(5) COLLATE utf8_bin NOT NULL DEFAULT 'image', code TEXT COLLATE utf8_bin, url VARCHAR(256) COLLATE utf8_bin NOT NULL DEFAULT 'http://".$_SERVER['SERVER_NAME']."', UNIQUE KEY id (id) );"; $sql[] = "CREATE TABLE ".$wpdb->prefix."AdMangler_settings ( id INT(11) NOT NULL AUTO_INCREMENT, name VARCHAR(256) COLLATE utf8_bin NOT NULL, value VARCHAR(256) COLLATE utf8_bin NOT NULL, UNIQUE KEY id (id), PRIMARY KEY name (name) );"; $sql[] = "CREATE TABLE ".$wpdb->prefix."AdMangler_users ( id INT(11) NOT NULL AUTO_INCREMENT, username VARCHAR(256) COLLATE utf8_bin NOT NULL, password VARCHAR(256) COLLATE utf8_bin NOT NULL, email VARCHAR(256) COLLATE utf8_bin NOT NULL, credits FLOAT(10,2), active BOOL DEFAULT 0, confirm VARCHAR(256) COLLATE utf8_bin, UNIQUE KEY id (id), PRIMARY KEY username (username) );"; // Installed plugin database table version $installed_ver = get_option('AdMangler_db_version'); // If the database has changed, update the structure while preserving data if (empty($installed_ver) || $db_version != $installed_ver) { require_once ABSPATH . "wp-admin/includes/upgrade.php"; foreach($sql as $temp) dbDelta($temp); if (get_option('AdMangler_db_version')) update_option('AdMangler_db_version', $db_version); else add_option('AdMangler_db_version', $db_version); } return true; } // End function Activate function ConfirmRegistration() { global $wpdb; $sql = "UPDATE $this->usersTable SET active=1 WHERE confirm=\"".$_GET['key']."\""; if ($wpdb->query($wpdb->prepare($sql))) return true; return false; } // End function ConfirmRegistration() function CreateAdminPage() { echo "

AdMangler Admin

"; switch($_GET['page']) { case 'settings': include_once "forms/settings.php"; break; case 'banners': include_once "forms/banners.php"; break; default: include_once "forms/dashboard.php"; break; } echo "
"; } // End function CreateAdminPage function FilterTheContent($content) { global $wpdb; $sql = "SELECT a.width, b.height FROM ".$wpdb->prefix."AdMangler_ads as a, ".$wpdb->prefix."AdMangler_ads as b "; $sql .= "WHERE a.height = b.height GROUP by b.height, a.width"; $results = $wpdb->get_results($sql); foreach ($results as $banner) { $content = str_replace("[AdMangler:".$banner->width."x".$banner->height."]", $this->GetAds($banner->width, $banner->height), $content); } $content = str_replace('[AdMangler:Panel]', $this->Panel(), $content); return $content; } // End function FilterTheContent function FormatAd($type,$code) { switch($type) { case 'html': $code = $code; } return $code; } //End function FormatAd function GetAdById($id, $return) { global $wpdb; $sql = "SELECT * FROM $this->adsTable WHERE id=".intval($id); $row = $wpdb->get_row($sql); $str = $this->FormatAd($row->type, $row->code); if ($return) return $str; else echo $str; } // End function GetAdById function GetAds($width=468, $height=60, $return=true) { global $wpdb; $str = ""; if (!isset($this->banners[$width."x".$height])) { $sql = "SELECT type,code FROM $this->adsTable WHERE width=$width and height=$height and active and approved and NOT base ORDER BY RAND()"; $results = $wpdb->get_results($sql); if ($results) $this->banners[$width."x".$height] = $results; else { $sql = "SELECT type,code FROM $this->adsTable WHERE width=$width and height=$height and active and approved and base ORDER BY RAND()"; $results = $wpdb->get_results($sql); if ($results) $this->banners[$width."x".$height] = $results; } } if (is_array($this->banners[$width."x".$height])) { $banner = array_shift($this->banners[$width."x".$height]); array_push($this->banners[$width."x".$height], $banner); $str = $this->FormatAd($banner->type, $banner->code); } if ($return) return $str; else echo $str; } // End function GetAds function Login() { global $wpdb; $sql = "SELECT id FROM $this->usersTable WHERE username='".$_POST['username']."' AND password='".sha1($_POST['password'])."' AND active"; $login = $wpdb->get_row($sql); if (1 == $wpdb->num_rows) { $_SESSION['AdMangler']['loggedin'] = true; $_SESSION['AdMangler']['username'] = $_POST['username']; $_SESSION['AdMangler']['password'] = $_POST['password']; return true; } return false; } // End function Login() function Logout() { unset($_SESSION['AdMangler']); return true; } // End function Logout function Panel() { $action = (isset($_GET['action'])) ? $_GET['action'] : 'login'; ob_start(); include_once "panel/$action.php"; $contents = ob_get_contents(); ob_end_clean(); return $contents; } // End PublicForm function Register() { global $wpdb; $sql = "SELECT id FROM $this->usersTable WHERE username=\"".$_POST['username']."\""; if($wpdb->query($wpdb->prepare($sql))) { if (0 == $wpdb->num_rows) { $sql = " INSERT INTO $this->usersTable (username, password, credits, email, active) VALUES (\"".$_POST['username']."\", \"".sha1($_POST['password'])."\", 0, \"".$_POST['email']."\", 0) "; if($wpdb->query($wpdb->prepare($sql))) return true; } } return false; } // End function Login() function RegisterWidgets() { register_widget('AdManglerWidget'); // This adds the Widget to the backend } function ResetPassword() { global $wpdb; $sql = "UPDATE $this->usersTable SET password = \"".sha1($_POST['password'])."\" WHERE confirm=\"".$_GET['key']."\""; if ($wpdb->query($wpdb->prepare($sql))) return true; return false; } // End function ResetPassword() function SetConfirmationKey() { global $wpdb; srand(time()); $key = md5(rand(1000,10000). $_GET['username'] .rand(10000,100000)); $sql = "UPDATE $this->usersTable SET confirm = \"$key\" WHERE username=\"".$_POST['username']."\""; if ($wpdb->query($wpdb->prepare($sql))) { $sql = "SELECT email FROM $this->usersTable WHERE username=\"".$_POST['username']."\""; if ($row = $wpdb->get_row($wpdb->prepare($sql))) return array("key" => $key, "email" => $row->email); } return false; } // End function SetConfirmationKey() function ValidConfirmationKey() { global $wpdb; $sql = "SELECT * FROM $this->usersTable WHERE confirm=\"".$_GET['key']."\""; if ($row = $wpdb->get_row($wpdb->prepare($sql))) return true; return false; } // End function ValidConfirmationKey() } // End class AdMangler ?>