1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
|
<?php
session_start();
if(!isset($_SESSION["loggedin"]) || $_SESSION["loggedin"] !== true){
header("location: /login.php");
exit;
}
$username = $_SESSION["username"];
$type = $_SESSION["type"];
$id = $_SESSION["id"];
if ($type != "admin") die("Permission denied.");
require_once "config.php";
// Get users
$sql = "SELECT id, username, type, email FROM users";
$stmt = mysqli_prepare($link, $sql);
mysqli_stmt_execute($stmt);
$result = mysqli_stmt_get_result($stmt);
$users = $result->fetch_all(MYSQLI_ASSOC);
/*
* Announce to
* - mailing list (hereby the announcement archive at lists.arf20.com)
* - discord webhook
* - irc (bridged) announcement notice
* - NNTP?
* - phpBB?
* - another, custom, archive ARFNET-ly
*/
// POST actions
if ($_SERVER["REQUEST_METHOD"] == "POST") {
// Send email
$mailer->addAddress(ANNOUNCE_MAIL);
$mailer->addReplyTo(getuserbyid($id)["email"]);
$mailer->Subject = "[ARFNET Announcement] ".$_POST["subject"];
$mailer->Body = $_POST["body"];
if (!$mailer->send()) {
echo 'Mailer Error [ask arf20]: ' . $mailer->ErrorInfo;
}
// Send discord message
if (defined("ANNOUNCE_DISCORD")) {
echo "discord ";
$json_data = json_encode([
"content" => "@everyone \nSubject: ".$_POST["subject"]."\n".$_POST["body"]
], JSON_UNESCAPED_SLASHES | JSON_UNESCAPED_UNICODE);
$ch = curl_init(ANNOUNCE_DISCORD);
curl_setopt($ch, CURLOPT_HTTPHEADER, array('Content-type: application/json'));
curl_setopt($ch, CURLOPT_POST, 1);
curl_setopt($ch, CURLOPT_POSTFIELDS, $json_data);
curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
curl_setopt($ch, CURLOPT_HEADER, 0);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
$response = curl_exec($ch);
curl_close($ch);
if ($response == false) {
echo 'Curl Error [ask arf20]: ' . $response;
} else echo "ok<br>";
}
die();
}
function getuserbyid($id) {
global $users;
foreach ($users as $user) {
if ($user["id"] == $id) {
return $user;
}
}
}
?>
<!doctype html>
<html>
<head>
<meta charset="UTF-8">
<link rel="stylesheet" type="text/css" href="/style.css">
<title>ARFNET CSTIMS</title>
</head>
<body>
<header><a href="https://arf20.com/">
<img src="arfnet_logo.png" width="64"><span class="title"><strong>ARFNET</strong></span>
</a></header>
<hr>
<main>
<div class="row">
<div class="col8">
<h2 class="center">ARFNET Client Service Ticket and Invoice Management System</h2>
<h3><?php echo strtoupper($type[0]).substr($type, 1); ?> panel</h3>
<h3>Publish announcement</h3>
<form action="<?php echo $_SERVER["SCRIPT_NAME"]; ?>" method="post">
<label><b>Subject</b></label><br>
<input type="text" name="subject"><br>
<br><label><b>Body</b></label><br>
<textarea name="body" rows="10" cols="80"></textarea><br>
<br><input type="submit" value="Publish">
</form>
</div>
<div class="col2">
<h3>Logged as <?php echo $username; ?></h3>
<h3><a href="/logout.php">Logout</a></h2>
<h3><a href="/admin.php">Back to admin panel</a></h2>
</div>
</div>
</main>
</body>
</html>
|