############################################################################### # BizDesign ImageFolio Lite Edition 4.2 (Four-dot-Two) ############################################################################### # # ## ### VERSION : 4.2 # #### ## ## RELEASED ON : 02/15/2007 # ## ## ## LAST MODIFIED : 02/15/2007 # ########## ## # ## ### ## # ## ### ######## # ############################################################################### # Released by BizDesign, Inc. # written by Dirk Koppers and Greg Raaum of BizDesign # # Purchasing : http://imagefolio.com/purchase/ # Support : http://imagefolio.com/support/ # Phone : (214) 642-9787 # Email : sales@bizdesign.com ############################################################################### # COPYRIGHT AND LICENSE INFORMATION : # # Copyright (c) 1999-2007 BizDesign, Inc. All rights reserved. # # Selling or distributing the code for this program without prior written # consent is expressly forbidden. # # One licensed copy of the program may reside on a single server, in use by a # single domain. For each installed instance of the program, a separate # license is required. # # Licensed users may alter or modify this software, at their own risk, of # course. They may also hire others to modify their own copy of the code, as # long as the code is not transferred to or retained by the individual who is # hired (unless he/she is also a license holder). Although license-holders # may modify the code for their use, modified code may NOT be resold or # distributed. # # THIS SOFTWARE IS PROVIDED ``AS IS'' AND ANY EXPRESSED OR IMPLIED WARRANTIES, # INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND # FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL BIZDESIGN, # INC. OR ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, # SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, # PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR # BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER # IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) # ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE # POSSIBILITY OF SUCH DAMAGE. # # BizDesign, Inc. is not liable for any conduct associated with image gallery # activity, nor for any binary media posted using this program, including but # not imited to images, photographs, movies, and clipart. # # The user must assume the entire risk of using the program. Although this # program has been thoroughly tested on BizDesign's servers, BizDesign does not # warrant that it works on all servers and will not be held liable for anything, # including but not limited to, misusage, error, or loss of data. ANY # LIABILITY OF THE SELLER WILL BE LIMITED EXCLUSIVELY TO PRODUCT REPLACEMENT # OR REFUND OF PURCHASE PRICE. Use at your own risk! ############################################################################### # Do not modify below this line unless you know what you are doing. ############################################################################### $ADDNEWADMIN = "active"; #require "admin/init.pl"; if ($using_multiuser_mod) { require "$config_directory/users_config.pl"; } if (!$is_admin) { print "Content-type: text/html\n\n"; print qq||; exit; } ############################################################################### # STEP ONE # called if we haven't added a user yet ############################################################################### sub step_one { $pagetitle = "Add New Admin"; &get_header; print qq|
<$admin_big_font>Add New Admin <$admin_big_font>Step 1 of 1
<$admin_font>To Add a New Administrator please enter a username and password combination below.
 
<$admin_font>Username <$admin_small_font>Min 5 characters, no spaces
 
<$admin_font>A password is required to login. To make the administration area more secure, please use a mixed case combination of at least 6 letters and numbers.
 
<$admin_font>Password <$admin_small_font>Min 6 characters
<$admin_font>Retype Password  
 
<$admin_font>Your Name and Email Address are required to personalize your Administrator Account.
 
<$admin_font>First Name
<$admin_font>Last Name
<$admin_font>Email Address
 
<$admin_font>Please set Permissions for this administrator below:
 
<$admin_font color="#ffffff">Allow this administrator to... <$admin_font color="#ffffff">Yes <$admin_font color="#ffffff">No
<$admin_font>Add IPTC File Info ?
<$admin_font>Upload Media ?
<$admin_font>Add Categories ?
<$admin_font>Rename Categories ?
<$admin_font>Delete Categories ?
<$admin_font>Rebuild the Database/Index ?
<$admin_font>Add New Administrator/Groups/Users ?
<$admin_font>Modify Other Administrators/Groups/Users ?
<$admin_font>Delete Other Administrators/Groups/Users ?
 
<$admin_font color="#ffffff">Use demonstration/tutorial mode ? <$admin_font color="#ffffff">Yes <$admin_font color="#ffffff">No
<$admin_font>If set to "Yes" then this administrator has access to all functions above but no changes are saved. Useful for showing colleagues/friends or educating employees.




|; &get_footer; } ############################################################################### # STEP TWO # add a username and password to the database ############################################################################### sub step_two { &get_header; &load_these_values; $iflogin =~ s/ //g; $plength = length($ifpassword); $llength = length($iflogin); # WE MAKE SURE THAT THIS USERNAME IS AVAILABLE FIRST if (-e "$admindb") { open (FILE,"$admindb") or &Error("Can't Open $admindb: $!"); my(@LINES)=; close(FILE); chomp @LINES; } foreach $line (@LINES) { ($username) = split(/\|/, $line); if (lc($username) eq lc($iflogin)) { print &Error('The Username you requested is already in use by another administrator.'); exit; } } if (!$iflogin) { print &Error('You must enter a Username.'); exit; } elsif (!$ifemail) { print &Error('You must enter an Email Address.'); exit; } elsif (!$ifpassword) { print &Error('You must enter a Password.'); exit; } elsif (!$ifsec_password) { print &Error('You must enter the Password twice.'); exit; } elsif ($ifsec_password ne $ifpassword) { print &Error('The Passwords do not match.'); exit; } elsif ($plength < 6) { print &Error('The Password must be at least six characters.'); exit; } elsif ($llength < 5) { print &Error('The Username must be at least five characters.'); exit; } elsif (!$iffirstname) { print &Error('You must enter a First Name.'); exit; } elsif (!$iflastname) { print &Error('You must enter a Last Name.'); exit; } # BELOW WE CREATE A RANDOM DIGITAL ID FOR THE USER JUST IN CASE WE NEED TO USE IT LATER $ifuserid = int(rand(1234567890)) + time; # HERE WE ENCRYPT THE PLAINTEXT PASSWORD require "$libpath/crypt.pl"; $ifnewpass = &admin_encrypt($ifpassword, $secret_key); # HERE WE SAVE ALL OF THE PERSONAL INFORMATION FOR THE USER IN THE USER'S DATABASE unless ($admin_demo_mode) { open (ADMINDB,">>$admindb") or print &Error('Could not open the admin database!'); if ($useflock) { flock(ADMINDB, 2); } print ADMINDB "$iflogin|$ifnewpass|$ifuserid|$ifemail|$iffirstname|$iflastname|"; print ADMINDB "$ifdesc_per|$ifupload_per|$ifaddcat_per|$ifrencat_per|"; print ADMINDB "$ifdelcat_per|$ifbuild_per|$ifaddusr_per|$ifmodusr_per|$ifdelusr_per|$ifdemo_per\n"; if ($useflock) { flock(ADMINDB, 8); } close(ADMINDB); chmod(0666,"$admindb"); } print qq|
Administrator Added Successfully!
<$admin_font> The ImageFolio Administration Account has been added. Here is the information you provided. Please print or save this information for your records.

Administrator Authentication Information
==========================================================================
Name:               $iffirstname $iflastname
Email:              $ifemail
Username:           $iflogin
Password:           $ifpassword
Login Location:     $adminurl


Administrative Permissions
==========================================================================
Add Descriptions:   $ifdesc_per
Upload Media:       $ifupload_per
Add Categories:     $ifaddcat_per
Rename Categories:  $ifrencat_per
Delete Categories   $ifdelcat_per
Build Index:        $ifbuild_per
Add Users:          $ifaddusr_per
Modify Users:       $ifmodusr_per
Delete Users:       $ifdelusr_per
Demo Mode:          $ifdemo_per


|; &get_footer; } ############################################################################### # ERROR # shows error message if form not filled out correctly ############################################################################### sub ErrorOLD{ local ($whoops) = @_; print qq|
<$admin_font color="#ffffff">Error! <$admin_font> 
<$admin_font>$whoops

If the button below does not take you back, please use your browser's back button to go back and try again.
<$admin_font>
|; exit; } ############################################################################### # LOAD VALUES # created variables for our form information ############################################################################### sub load_these_values { $ifpassword = $FORM{'password'}; $ifsec_password = $FORM{'sec_password'}; $iffirstname = $FORM{'firstname'}; $iflastname = $FORM{'lastname'}; $ifemail = $FORM{'email'}; $iflogin = $FORM{'newlogin'}; $ifdesc_per = $FORM{'desc_per'}; $ifupload_per = $FORM{'upload_per'}; $ifaddcat_per = $FORM{'addcat_per'}; $ifrencat_per = $FORM{'rencat_per'}; $ifdelcat_per = $FORM{'delcat_per'}; $ifbuild_per = $FORM{'build_per'}; $ifaddusr_per = $FORM{'addusr_per'}; $ifmodusr_per = $FORM{'modusr_per'}; $ifdelusr_per = $FORM{'delusr_per'}; $ifdemo_per = $FORM{'demo_per'}; } 1;