Home Explore Help
Register Sign In
NSHkD
/
Gazelle
forked from Oppaitime/Gazelle
Watch 1
Star 0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
Oppaitime's version of Gazelle
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
212 Commits
1 Branch
Tree: 268f9f3627
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '268f9f3627'
${ noResults }
Gazelle/sections/userhistory/ip_history.php

ip_history.php 8.4KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272 
  1. <?php

  2. /************************************************************************

  3. ||------------|| User IP history page ||---------------------------||

  4. 

  5. This page lists previous IPs a user has connected to the site with. It

  6. gets called if $_GET['action'] == 'ips'.

  7. 

  8. It also requires $_GET['userid'] in order to get the data for the correct

  9. user.

  10. 

  11. ************************************************************************/

  12. 

  13. define('IPS_PER_PAGE', 25);

  14. 

  15. $UserID = $_GET['userid'];

  16. if (!is_number($UserID)) {

  17.   error(404);

  18. }

  19. 

  20. $DB->query("

  21.   SELECT

  22.     um.Username,

  23.     p.Level AS Class

  24.   FROM users_main AS um

  25.     LEFT JOIN permissions AS p ON p.ID = um.PermissionID

  26.   WHERE um.ID = $UserID");

  27. list($Username, $Class) = $DB->next_record();

  28. 

  29. if (!check_perms('users_view_ips', $Class)) {

  30.   error(403);

  31. }

  32. 

  33. $UsersOnly = isset($_GET['usersonly']) ? $_GET['usersonly'] : 0;

  34. 

  35. if (isset($_POST['ip'])) {

  36.   $SearchIP = db_string(str_replace("*", "%", trim($_POST['ip'])));

  37.   $SearchIPQuery = " AND h1.IP LIKE '$SearchIP' ";

  38. } else {

  39.   $SearchIPQuery = "";

  40. }

  41. 

  42. View::show_header("IP address history for $Username");

  43. ?>

  44. <script type="text/javascript">//<![CDATA[

  45. function ShowIPs(rowname) {

  46.   $('tr[name="' + rowname + '"]').gtoggle();

  47. 

  48. }

  49. function Ban(ip, id, elemID) {

  50.   var notes = prompt("Enter notes for this ban");

  51.   if (notes != null && notes.length > 0) {

  52.     var xmlhttp;

  53.     if (window.XMLHttpRequest) {

  54.       xmlhttp = new XMLHttpRequest();

  55.     } else {

  56.       xmlhttp = new ActiveXObject("Microsoft.XMLHTTP");

  57.     }

  58.     xmlhttp.onreadystatechange=function() {

  59.       if (xmlhttp.readyState == 4 && xmlhttp.status == 200) {

  60.         document.getElementById(elemID).innerHTML = "<strong>[Banned]</strong>";

  61.       }

  62.     }

  63.     xmlhttp.open("GET", "tools.php?action=quick_ban&perform=create&ip=" + ip + "&notes=" + notes, true);

  64.     xmlhttp.send();

  65.   }

  66. 

  67. }

  68. /*

  69. function UnBan(ip, id, elemID) {

  70.     var xmlhttp;

  71.     if (window.XMLHttpRequest) {

  72.       xmlhttp = new XMLHttpRequest();

  73.     } else {

  74.       xmlhttp = new ActiveXObject("Microsoft.XMLHTTP");

  75.     }

  76.     xmlhttp.onreadystatechange = function() {

  77.       if (xmlhttp.readyState == 4 && xmlhttp.status == 200) {

  78.         document.getElementById(elemID).innerHTML = "Ban";

  79.         document.getElementById(elemID).onclick = function() { Ban(ip, id, elemID); return false; };

  80.       }

  81.     }

  82.     xmlhttp.open("GET","tools.php?action=quick_ban&perform=delete&id=" + id + "&ip=" + ip, true);

  83.     xmlhttp.send();

  84. }

  85. */

  86. //]]>

  87. </script>

  88. <?

  89. list($Page, $Limit) = Format::page_limit(IPS_PER_PAGE);

  90. 

  91. if ($UsersOnly == 1) {

  92.   $RS = $DB->query("

  93.     SELECT

  94.       SQL_CALC_FOUND_ROWS

  95.       h1.IP,

  96.       h1.StartTime,

  97.       h1.EndTime,

  98.       GROUP_CONCAT(h2.UserID SEPARATOR '|'),

  99.       GROUP_CONCAT(h2.StartTime SEPARATOR '|'),

  100.       GROUP_CONCAT(IFNULL(h2.EndTime,0) SEPARATOR '|'),

  101.       GROUP_CONCAT(um2.Username SEPARATOR '|'),

  102.       GROUP_CONCAT(um2.Enabled SEPARATOR '|'),

  103.       GROUP_CONCAT(ui2.Donor SEPARATOR '|'),

  104.       GROUP_CONCAT(ui2.Warned SEPARATOR '|')

  105.     FROM users_history_ips AS h1

  106.       LEFT JOIN users_history_ips AS h2 ON h2.IP = h1.IP AND h2.UserID != $UserID

  107.       LEFT JOIN users_main AS um2 ON um2.ID = h2.UserID

  108.       LEFT JOIN users_info AS ui2 ON ui2.UserID = h2.UserID

  109.     WHERE h1.UserID = '$UserID'

  110.       AND h2.UserID > 0 $SearchIPQuery

  111.     GROUP BY h1.IP, h1.StartTime

  112.     ORDER BY h1.StartTime DESC

  113.     LIMIT $Limit");

  114. } else {

  115.   $RS = $DB->query("

  116.     SELECT

  117.       SQL_CALC_FOUND_ROWS

  118.       h1.IP,

  119.       h1.StartTime,

  120.       h1.EndTime,

  121.       GROUP_CONCAT(h2.UserID SEPARATOR '|'),

  122.       GROUP_CONCAT(h2.StartTime SEPARATOR '|'),

  123.       GROUP_CONCAT(IFNULL(h2.EndTime,0) SEPARATOR '|'),

  124.       GROUP_CONCAT(um2.Username SEPARATOR '|'),

  125.       GROUP_CONCAT(um2.Enabled SEPARATOR '|'),

  126.       GROUP_CONCAT(ui2.Donor SEPARATOR '|'),

  127.       GROUP_CONCAT(ui2.Warned SEPARATOR '|')

  128.     FROM users_history_ips AS h1

  129.       LEFT JOIN users_history_ips AS h2 ON h2.IP = h1.IP AND h2.UserID != $UserID

  130.       LEFT JOIN users_main AS um2 ON um2.ID = h2.UserID

  131.       LEFT JOIN users_info AS ui2 ON ui2.UserID = h2.UserID

  132.     WHERE h1.UserID = '$UserID' $SearchIPQuery

  133.     GROUP BY h1.IP, h1.StartTime

  134.     ORDER BY h1.StartTime DESC

  135.     LIMIT $Limit");

  136. }

  137. $DB->query('SELECT FOUND_ROWS()');

  138. list($NumResults) = $DB->next_record();

  139. $DB->set_query_id($RS);

  140. 

  141. $Pages = Format::get_pages($Page, $NumResults, IPS_PER_PAGE, 9);

  142. 

  143. ?>

  144. <div class="thin">

  145.   <div class="header">

  146.     <h2>IP address history for <a href="user.php?id=<?=$UserID?>"><?=$Username?></a></h2>

  147.     <div class="linkbox">

  148. <?  if ($UsersOnly) { ?>

  149.       <a href="userhistory.php?action=ips&amp;userid=<?=$UserID?>" class="brackets">View all IP addresses</a>

  150. <?  } else { ?>

  151.       <a href="userhistory.php?action=ips&amp;userid=<?=$UserID?>&amp;usersonly=1" class="brackets">View IP addresses with users</a>

  152. <?  } ?>

  153.     </div>

  154. <?  if ($Pages) { ?>

  155.     <div class="linkbox pager"><?=$Pages?></div>

  156. <?  } ?>

  157.   </div>

  158.   <table>

  159.     <tr class="colhead">

  160.       <td>IP address search</td>

  161.     </tr>

  162. 

  163.     <tr><td>

  164.       <form class="search_form" name="ip_log" method="post" action="">

  165.         <input type="text" name="ip" />

  166.         <input type="submit" value="Search" />

  167.         Wildcard (*) search examples: 127.0.* or 1*2.0.*.1 or *.*.*.*

  168.       </form>

  169.     </td></tr>

  170.   </table>

  171. 

  172.   <table id="iphistory">

  173.     <tr class="colhead">

  174.       <td>IP address</td>

  175.       <td>Started <a href="#" onclick="$('#iphistory td:nth-child(2), #iphistory td:nth-child(4)').ghide(); $('#iphistory td:nth-child(3), #iphistory td:nth-child(5)').gshow(); return false;" class="brackets">Toggle</a></td>

  176.       <td class="hidden">Started <a href="#" onclick="$('#iphistory td:nth-child(2), #iphistory td:nth-child(4)').gshow(); $('#iphistory td:nth-child(3), #iphistory td:nth-child(5)').ghide(); return false;" class="brackets">Toggle</a></td>

  177.       <td>Ended</td>

  178.       <td class="hidden">Ended</td>

  179.       <td>Elapsed</td>

  180.     </tr>

  181. <?

  182. $counter = 0;

  183. $IPs = array();

  184. $Results = $DB->to_array();

  185. $CanManageIPBans = check_perms('admin_manage_ipbans');

  186. 

  187. foreach ($Results as $Index => $Result) {

  188.   list($IP, $StartTime, $EndTime, $UserIDs, $UserStartTimes, $UserEndTimes, $Usernames, $UsersEnabled, $UsersDonor, $UsersWarned) = $Result;

  189. 

  190.   $IP = apc_exists('DBKEY') ? DBCrypt::decrypt($IP) : '[Encrypted]';

  191. 

  192.   $HasDupe = false;

  193.   $UserIDs = explode('|', $UserIDs);

  194.   if (!$EndTime) {

  195.     $EndTime = sqltime();

  196.   }

  197.   if ($UserIDs[0] != 0) {

  198.     $HasDupe = true;

  199.     $UserStartTimes = explode('|', $UserStartTimes);

  200.     $UserEndTimes = explode('|', $UserEndTimes);

  201.     $Usernames = explode('|', $Usernames);

  202.     $UsersEnabled = explode('|', $UsersEnabled);

  203.     $UsersDonor = explode('|', $UsersDonor);

  204.     $UsersWarned = explode('|', $UsersWarned);

  205.   }

  206. ?>

  207.     <tr class="row">

  208.       <td>

  209.         <?=$IP?> (<?=Tools::get_country_code_by_ajax($IP)?>)<?

  210.   if ($CanManageIPBans) {

  211.     if (!isset($IPs[$IP])) {

  212.       $sql = "

  213.         SELECT ID, FromIP, ToIP

  214.         FROM ip_bans

  215.         WHERE '".Tools::ip_to_unsigned($IP)."' BETWEEN FromIP AND ToIP

  216.         LIMIT 1";

  217.       $DB->query($sql);

  218. 

  219.       if ($DB->has_results()) {

  220.         $IPs[$IP] = true;

  221. ?>

  222.         <strong>[Banned]</strong>

  223. <?

  224.       } else {

  225.         $IPs[$IP] = false;

  226. ?>

  227.         <a id="<?=$counter?>" href="#" onclick="Ban('<?=$IP?>', '', '<?=$counter?>'); this.onclick = null; return false;" class="brackets">Ban</a>

  228. <?

  229.       }

  230.       $counter++;

  231.     }

  232.   }

  233. ?>

  234.         <br />

  235.         <?=Tools::get_host_by_ajax($IP)?>

  236.         <?=($HasDupe ? '<a href="#" onclick="ShowIPs('.$Index.'); return false;">('.count($UserIDs).')</a>' : '(0)')?>

  237.       </td>

  238.       <td><?=time_diff($StartTime)?></td>

  239.       <td class="hidden"><?=$StartTime?></td>

  240.       <td><?=time_diff($EndTime)?></td>

  241.       <td class="hidden"><?=$EndTime?></td>

  242.       <td><?//time_diff(strtotime($StartTime), strtotime($EndTime)); ?></td>

  243.     </tr>

  244. <?

  245.   if ($HasDupe) {

  246.     $HideMe = (count($UserIDs) > 10);

  247.     foreach ($UserIDs as $Key => $Val) {

  248.       if (!$UserEndTimes[$Key]) {

  249.         $UserEndTimes[$Key] = sqltime();

  250.       }

  251. ?>

  252.     <tr class="row<?=($HideMe ? ' hidden' : '')?>" name="<?=$Index?>">

  253.       <td>&nbsp;&nbsp;&#187;&nbsp;<?=Users::format_username($Val, true, true, true)?></td>

  254.       <td><?=time_diff($UserStartTimes[$Key])?></td>

  255.       <td class="hidden"><?=$UserStartTimes[$Key]?></td>

  256.       <td><?=time_diff($UserEndTimes[$Key])?></td>

  257.       <td class="hidden"><?=$UserEndTimes[$Key]?></td>

  258.       <td><?//time_diff(strtotime($UserStartTimes[$Key]), strtotime($UserEndTimes[$Key])); ?></td>

  259.     </tr>

  260. <?

  261. 

  262.     }

  263.   }

  264. }

  265. ?>

  266.   </table>

  267.   <div class="linkbox">

  268.     <?=$Pages?>

  269.   </div>

  270. </div>

  271. <?

  272. View::show_footer();