"admin", $can_takeover => "takeover", $can_viewthreads => "viewthreads", $can_modifyprofile => "modifyprofile" ); function operator_by_login($login) { $link = connect(); $operator = select_one_row( "select * from chatoperator where vclogin = '".mysql_real_escape_string($login)."'", $link ); mysql_close($link); return $operator; } function operator_by_email($mail) { $link = connect(); $operator = select_one_row( "select * from chatoperator where vcemail = '".mysql_real_escape_string($mail)."'", $link ); mysql_close($link); return $operator; } function operator_by_id_($id,$link) { return select_one_row( "select * from chatoperator where operatorid = $id", $link ); } function operator_by_id($id) { $link = connect(); $operator = operator_by_id_($id,$link); mysql_close($link); return $operator; } function update_operator($operatorid,$login,$email,$password,$localename,$commonname) { $link = connect(); $query = sprintf( "update chatoperator set vclogin = '%s',%s vclocalename = '%s', vccommonname = '%s'". ", vcemail = '%s', vcjabbername= '%s'". " where operatorid = %s", mysql_real_escape_string($login), ($password ? " vcpassword='".md5($password)."'," : ""), mysql_real_escape_string($localename), mysql_real_escape_string($commonname), mysql_real_escape_string($email), '', $operatorid ); perform_query($query,$link); mysql_close($link); } function update_operator_avatar($operatorid,$avatar) { $link = connect(); $query = sprintf( "update chatoperator set vcavatar = '%s' where operatorid = %s", mysql_real_escape_string($avatar), $operatorid ); perform_query($query,$link); mysql_close($link); } function create_operator_($login,$email,$password,$localename,$commonname,$avatar,$link) { $query = sprintf( "insert into chatoperator (vclogin,vcpassword,vclocalename,vccommonname,vcavatar,vcemail,vcjabbername) values ('%s','%s','%s','%s','%s','%s','%s')", mysql_real_escape_string($login), md5($password), mysql_real_escape_string($localename), mysql_real_escape_string($commonname), mysql_real_escape_string($avatar), mysql_real_escape_string($email), ''); perform_query($query,$link); $id = mysql_insert_id($link); return select_one_row("select * from chatoperator where operatorid = $id", $link ); } function create_operator($login,$email,$password,$localename,$commonname,$avatar) { $link = connect(); $newop = create_operator_($login,$email,$password,$localename,$commonname,$avatar,$link); mysql_close($link); return $newop; } function notify_operator_alive($operatorid, $istatus) { $link = connect(); perform_query("update chatoperator set istatus = $istatus, dtmlastvisited = CURRENT_TIMESTAMP where operatorid = $operatorid",$link); mysql_close($link); } function has_online_operators($groupid="") { global $settings; loadsettings(); $link = connect(); $query = "select count(*) as total, min(unix_timestamp(CURRENT_TIMESTAMP)-unix_timestamp(dtmlastvisited)) as time from chatoperator"; if($groupid) { $query .= ", chatgroupoperator where groupid = $groupid and chatoperator.operatorid = chatgroupoperator.operatorid and istatus = 0"; } else { $query .= " where istatus = 0"; } $row = select_one_row($query,$link); mysql_close($link); return $row['time'] < $settings['online_timeout'] && $row['total'] > 0; } function get_operator_name($operator) { global $home_locale, $current_locale; if( $home_locale == $current_locale ) return $operator['vclocalename']; else return $operator['vccommonname']; } function append_query($link,$pv) { $infix = '?'; if( strstr($link,$infix) !== FALSE ) $infix = '&'; return "$link$infix$pv"; } function generate_button($title,$locale,$style,$group,$inner,$showhost,$forcesecure,$modsecurity) { $link = get_app_location($showhost,$forcesecure)."/client.php"; if($locale) $link = append_query($link, "locale=$locale"); if($style) $link = append_query($link, "style=$style"); if($group) $link = append_query($link, "group=$group"); $modsecfix = $modsecurity ? ".replace('http://','').replace('https://','')" : ""; $jslink = append_query("'".$link,"url='+escape(document.location.href$modsecfix)+'&referrer='+escape(document.referrer$modsecfix)"); $temp = get_popup($link, "$jslink", $inner, $title, "webim", "toolbar=0,scrollbars=0,location=0,status=1,menubar=0,width=640,height=480,resizable=1" ); return "".$temp.""; } function check_login($redirect=true) { global $webimroot; if( !isset( $_SESSION['operator'] ) ) { if( isset($_COOKIE['webim_lite']) ) { list($login,$pwd) = preg_split("/,/", $_COOKIE['webim_lite'], 2); $op = operator_by_login($login); if( $op && isset($pwd) && isset($op['vcpassword']) && md5($op['vcpassword']) == $pwd ) { $_SESSION['operator'] = $op; return $op; } } $requested = $_SERVER['PHP_SELF']; if($_SERVER['REQUEST_METHOD'] == 'GET' && $_SERVER['QUERY_STRING']) { $requested .= "?".$_SERVER['QUERY_STRING']; } if($redirect) { $_SESSION['backpath'] = $requested; header("Location: $webimroot/operator/login.php"); exit; } else { return null; } } return $_SESSION['operator']; } function get_logged_in() { return isset( $_SESSION['operator'] ) ? $_SESSION['operator'] : FALSE; } function login_operator($operator,$remember) { global $webimroot; $_SESSION['operator'] = $operator; if( $remember ) { $value = $operator['vclogin'].",".md5($operator['vcpassword']); setcookie('webim_lite', $value, time()+60*60*24*1000, "$webimroot/"); } else if( isset($_COOKIE['webim_lite']) ) { setcookie('webim_lite', '', time() - 3600, "$webimroot/"); } } function logout_operator() { global $webimroot; unset($_SESSION['operator']); unset($_SESSION['backpath']); if( isset($_COOKIE['webim_lite']) ) { setcookie('webim_lite', '', time() - 3600, "$webimroot/"); } } function setup_redirect_links($threadid,$token) { global $page, $webimroot, $settings; loadsettings(); $link = connect(); $operatorscount = rows_count($link, "chatoperator"); $groupscount = $settings['enablegroups'] == "1" ? rows_count($link, "chatgroup") : 0; prepare_pagination(max($operatorscount,$groupscount),8); $limit = $page['pagination']['limit']; $query = "select operatorid, vclogin, vclocalename, vccommonname, istatus, (unix_timestamp(CURRENT_TIMESTAMP)-unix_timestamp(dtmlastvisited)) as time ". "from chatoperator order by vclogin $limit"; $operators = select_multi_assoc($query, $link); if($settings['enablegroups'] == "1") { $groups = get_groups($link, true); } mysql_close($link); $agent_list = ""; $params = array('thread' => $threadid, 'token' => $token); foreach($operators as $agent) { $params['nextAgent'] = $agent['operatorid']; $status = $agent['time'] < $settings['online_timeout'] ? ($agent['istatus'] == 0 ? getlocal("char.redirect.operator.online_suff") : getlocal("char.redirect.operator.away_suff") ) : ""; $agent_list .= "