<%
'#################################################################################
'## Snitz Forums 2000 v3.4.05
'#################################################################################
'## Copyright (C) 2000-05 Michael Anderson, Pierre Gorissen,
'## Huw Reddick and Richard Kinser
'##
'## This program is free software; you can redistribute it and/or
'## modify it under the terms of the GNU General Public License
'## as published by the Free Software Foundation; either version 2
'## of the License, or (at your option) any later version.
'##
'## All copyright notices regarding Snitz Forums 2000
'## must remain intact in the scripts and in the outputted HTML
'## The "powered by" text/logo with a link back to
'## http://forum.snitz.com in the footer of the pages MUST
'## remain visible when the pages are viewed on the internet or intranet.
'##
'## This program is distributed in the hope that it will be useful,
'## but WITHOUT ANY WARRANTY; without even the implied warranty of
'## MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
'## GNU General Public License for more details.
'##
'## You should have received a copy of the GNU General Public License
'## along with this program; if not, write to the Free Software
'## Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA.
'##
'## Support can be obtained from our support forums at:
'## http://forum.snitz.com
'##
'## Correspondence and Marketing Questions can be sent to:
'## manderson@snitz.com
'##
'#################################################################################
function getMemberName(fUser_Number)
dim strSql
dim rsGetmemberName
'## Forum_SQL
if isNull(fUser_Number) then exit function
strSql = "SELECT M_NAME "
strSql = strSql & " FROM " & strMemberTablePrefix & "MEMBERS "
strSql = strSql & " WHERE MEMBER_ID = " & cLng(fUser_Number)
set rsGetMemberName = Server.CreateObject("ADODB.Recordset")
rsGetMemberName.open strSql, my_Conn
if rsGetMemberName.EOF or rsGetMemberName.BOF then
getMemberName = ""
else
getMemberName = chkString(rsGetMemberName("M_NAME"),"display")
end if
rsGetMemberName.close
set rsGetMemberName = nothing
end function
function getMemberID(fUser_Name)
dim strSql
dim rsGetMemberID
'## Forum_SQL
strSql = "SELECT MEMBER_ID "
strSql = strSql & " FROM " & strMemberTablePrefix & "MEMBERS "
strSql = strSql & " WHERE " & strDBNTSQLName & " = '" & ChkString(fUser_Name, "SQLString") & "'"
set rsGetMemberID = Server.CreateObject("ADODB.Recordset")
rsGetMemberID.open strSql, my_Conn
if rsGetMemberID.EOF then
getMemberID = 0
else
getMemberID = cLng(rsGetMemberID("MEMBER_ID"))
end if
rsGetMemberID.close
set rsGetMemberID = nothing
end function
function chkDisplayForum(fPrivateForums,fFPasswordNew,fForum_ID,UserNum)
dim strSql
dim rsAccess
chkDisplayForum = false
if (mLev = 4) or (mLev = 3 and ModerateAllowed = "Y") then
chkDisplayForum = true
exit function
end if
select case cLng(fPrivateForums)
case 0, 1, 2, 3, 4, 7, 9
chkDisplayForum = true
exit function
case 5
if UserNum = -1 then
chkDisplayForum = false
exit function
else
chkDisplayForum = true
exit function
end if
case 6
if UserNum = -1 then
chkDisplayForum = false
exit function
end if
if isAllowedMember(fForum_ID,UserNum) = 1 then
chkDisplayForum = true
else
chkDisplayForum = false
end if
case 8
chkDisplayForum = false
if strAuthType ="nt" THEN
NTGroupSTR = Split(Session(strCookieURL & "strNTGroupsSTR"), ", ")
for j = 0 to ubound(NTGroupSTR)
NTGroupDBSTR = Split(fFPasswordNew, ", ")
for i = 0 to ubound(NTGroupDBSTR)
if NTGroupDBSTR(i) = NTGroupSTR(j) then
chkDisplayForum = true
exit function
end if
next
next
end if
case else
chkDisplayForum = true
end select
end function
function chkForumAccess(fForum, UserNum, Display)
if MemberID = UserNum then
if mLev < 1 then
chkForumAccess = false
elseif mLev = 3 then
chkForumAccess = true
elseif mLev = 4 then
chkForumAccess = true
exit function
end if
end if
'## Forum_SQL
strSql = "SELECT F_PRIVATEFORUMS, F_SUBJECT, F_PASSWORD_NEW "
strSql = strSql & " FROM " & strTablePrefix & "FORUM "
strSql = strSql & " WHERE FORUM_ID = " & cLng(fForum)
Set rsStatus = Server.CreateObject("ADODB.Recordset")
rsStatus.open strSql, my_Conn
if rsStatus.EOF or rsStatus.BOF then
rsStatus.close
set rsStatus = nothing
Response.Redirect("default.asp")
else
dim Users
dim MatchFound
If rsStatus("F_PRIVATEFORUMS") <> 0 then
Select case rsStatus("F_PRIVATEFORUMS")
case 0
chkForumAccess = true
case 1, 6 '## Allowed Users
if isAllowedMember(fForum,UserNum) = 1 then
chkForumAccess = true
else
if Display then
doNotAllowed
Response.end
else
chkForumAccess = false
end if
end if
case 2 '## password
select case Request.Cookies(strUniqueID & "Forum")("PRIVATE_" & rsStatus("F_SUBJECT"))
case rsStatus("F_PASSWORD_NEW")
chkForumAccess = true
case else
if Request("pass") = "" then
if Display then
doPasswordForm
Response.End
else
chkForumAccess = false
end if
else
if Request("pass") <> rsStatus("F_PASSWORD_NEW") then
if Display then
Response.Write "