diff options
| author | Markus Warg <mw@it-sls.de> | 2010-03-29 09:54:06 +0200 |
|---|---|---|
| committer | Markus Warg <mw@it-sls.de> | 2010-03-29 09:54:06 +0200 |
| commit | 9dceece06fbdc98add6f76f0b1aec05891a394c4 (patch) | |
| tree | f7227c28ca5f79f30c2ec81ba1a09a4fe3972436 /pages/wot | |
| parent | 5b68967def224a00f54eb54946ff17301bbd3cdb (diff) | |
| download | cacert-devel-9dceece06fbdc98add6f76f0b1aec05891a394c4.tar.gz cacert-devel-9dceece06fbdc98add6f76f0b1aec05891a394c4.tar.xz cacert-devel-9dceece06fbdc98add6f76f0b1aec05891a394c4.zip | |
remove cacert/ prefix
Diffstat (limited to 'pages/wot')
| -rw-r--r-- | pages/wot/0.php | 21 | ||||
| -rw-r--r-- | pages/wot/1.php | 123 | ||||
| -rw-r--r-- | pages/wot/10.php | 124 | ||||
| -rw-r--r-- | pages/wot/11.php | 52 | ||||
| -rw-r--r-- | pages/wot/12.php | 135 | ||||
| -rw-r--r-- | pages/wot/13.php | 102 | ||||
| -rw-r--r-- | pages/wot/14.php | 47 | ||||
| -rw-r--r-- | pages/wot/2.php | 36 | ||||
| -rw-r--r-- | pages/wot/3.php | 47 | ||||
| -rw-r--r-- | pages/wot/4.php | 32 | ||||
| -rw-r--r-- | pages/wot/5.php | 83 | ||||
| -rw-r--r-- | pages/wot/6.php | 170 | ||||
| -rw-r--r-- | pages/wot/7-old.php | 183 | ||||
| -rw-r--r-- | pages/wot/8.php | 44 | ||||
| -rw-r--r-- | pages/wot/9.php | 82 | ||||
| -rw-r--r-- | pages/wot/CVS/Entries | 16 | ||||
| -rw-r--r-- | pages/wot/CVS/Repository | 1 | ||||
| -rw-r--r-- | pages/wot/CVS/Root | 1 |
18 files changed, 1299 insertions, 0 deletions
diff --git a/pages/wot/0.php b/pages/wot/0.php new file mode 100644 index 0000000..465a3ac --- /dev/null +++ b/pages/wot/0.php @@ -0,0 +1,21 @@ +<? /* + LibreSSL - CAcert web application + Copyright (C) 2004-2008 CAcert Inc. + + This program is free software; you can redistribute it and/or modify + it under the terms of the GNU General Public License as published by + the Free Software Foundation; version 2 of the License. + + This program is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for more details. + + You should have received a copy of the GNU General Public License + along with this program; if not, write to the Free Software + Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA +*/ ?> +<h3><?=_("CAcert Web of Trust")?></h3> + +<p><?=_("CAcert.org was designed to be by the community for the community, and instead of placing all the labour on a central authority and in turn increasing the cost of certificates, the idea was to get community in conjunction with this website to have trust maintained in a dispersed and automated manner!")?></p> + diff --git a/pages/wot/1.php b/pages/wot/1.php new file mode 100644 index 0000000..a45b5df --- /dev/null +++ b/pages/wot/1.php @@ -0,0 +1,123 @@ +<? /* + LibreSSL - CAcert web application + Copyright (C) 2004-2008 CAcert Inc. + + This program is free software; you can redistribute it and/or modify + it under the terms of the GNU General Public License as published by + the Free Software Foundation; version 2 of the License. + + This program is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for more details. + + You should have received a copy of the GNU General Public License + along with this program; if not, write to the Free Software + Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA +*/ ?> +<? + $res=mysql_fetch_assoc(mysql_query("select sum(acount) as summe from countries")); + $total1 =$res['summe']; + + $locid=array_key_exists('locid',$_REQUEST)?intval($_REQUEST['locid']):0; + $regid=array_key_exists('regid',$_REQUEST)?intval($_REQUEST['regid']):0; + $ccid=array_key_exists('ccid',$_REQUEST)?intval($_REQUEST['ccid']):0; + + echo "<ul class='top'>\n<li>"; + echo "<a href='wot.php?id=1'>"._("Home")." ("._("Listed").": $total1)</a>\n"; + + $display = ""; + if($locid > 0) + { + $loc = mysql_fetch_assoc(mysql_query("select * from `locations` where `id`='".$locid."'")); + $display = "<ul class='top'>\n<li>\n". + "<a href='wot.php?id=1&locid=".$locid."'>".$loc['name']." ("._("Listed").": ".$loc['acount'].")</a>\n". + $display; + $regid = $loc['regid']; + } + + if($regid > 0) + { + $reg = mysql_fetch_assoc(mysql_query("select * from `regions` where `id`='".$regid."'")); + $display = "<ul class='top'>\n<li>\n". + "<a href='wot.php?id=1®id=".$regid."'>".$reg['name']." ("._("Listed").": ".$reg['acount'].")</a>\n". + $display; + $ccid = $reg['ccid']; + } + + if($ccid > 0) + { + $cnt = mysql_fetch_assoc(mysql_query("select * from `countries` where `id`='".$ccid."'")); + $display = "<ul class='top'>\n<li>\n". + "<a href='wot.php?id=1&ccid=".$ccid."'>".$cnt['name']." ("._("Listed").": ".$cnt['acount'].")</a>\n". + $display; + } + + if($display) + echo $display; + + if($ccid <= 0) + { + echo "<ul>\n"; + $query = "select * from countries where acount>0 order by `name`"; + $res = mysql_query($query); + while($row = mysql_fetch_assoc($res)) + { + echo "<li><a href='wot.php?id=1&ccid=".$row['id']."'>".$row['name']." ("._("Listed").": ".$row['acount'].")</a></li>\n"; + } + echo "</ul>\n</li>\n</ul>\n<br>\n"; + } elseif($ccid > 0 && $regid <= 0 && $locid <= 0) { + echo "<ul>\n"; + $query = "select * from regions where ccid='".$ccid."' and acount>0 order by `name`"; + $res = mysql_query($query); + while($row = mysql_fetch_assoc($res)) + { + echo "<li><a href='wot.php?id=1®id=".$row['id']."'>".$row['name']." ("._("Listed").": ".$row['acount'].")</a></li>\n"; + } + echo "</ul>\n</li>\n</ul>\n</li>\n</ul>\n<br>\n"; + } elseif($regid > 0 && $locid <= 0) { + echo "<ul>\n"; + $query = "select * from locations where regid='".$regid."' and acount>0 order by `name`"; + $res = mysql_query($query); + while($row = mysql_fetch_assoc($res)) + { + echo "<li><a href='wot.php?id=1&locid=".$row['id']."'>".$row['name']." ("._("Listed").": ".$row['acount'].")</a></li>\n"; + } + echo "</ul>\n</li>\n</ul>\n</li>\n</ul>\n<br>\n"; + } elseif($locid > 0){ + echo "</ul>\n</li>\n</ul>\n</li>\n</ul>\n</li>\n</ul>\n<br>\n"; + } + if($locid>0 || $regid>0 || $ccid>0) + { + $query = "select *, `users`.`id` as `id` from `users`,`notary` where `listme`='1' and + `ccid`='".$ccid."' and `regid`='".$regid."' and + `locid`='".$locid."' and `users`.`id`=`notary`.`to` + group by `notary`.`to` HAVING SUM(`points`) >= 100 order by `points` desc"; + $list = mysql_query($query); + if(mysql_num_rows($list) > 0) + { +?> +<table align="center" valign="middle" border="0" cellspacing="0" cellpadding="0" class="wrapper" width="550"> + <tr> + <td class="title"><?=_("Name")?></td> + <td class="title"><?=_("Max Points")?></td> + <td class="title"><?=_("Contact Details")?></td> + <td class="title"><?=_("Email Assurer")?></td> + <td class="title"><?=_("Assurer Challenge")?></td> + + </tr> +<? while($row = mysql_fetch_assoc($list)) { ?> + <tr> + <td class="DataTD" width="100"><nobr><?=$row['fname']?> <?=substr($row['lname'], 0, 1)?></nobr></td> + <td class="DataTD"><?=maxpoints($row['id'])?></td> + <td class="DataTD"><?=$row['contactinfo']?></td> + <td class="DataTD"><a href="wot.php?id=9&userid=<?=intval($row['id'])?>"><?=_("Email Me")?></a></td> + <td class="DataTD"><?=$row['assurer']?_("Yes"):("<font color=\"#ff0000\">"._("Not yet!")."</font>")?></td> + + </tr> +<? } + } +?> +</table> +<br> +<? } ?> diff --git a/pages/wot/10.php b/pages/wot/10.php new file mode 100644 index 0000000..51ed019 --- /dev/null +++ b/pages/wot/10.php @@ -0,0 +1,124 @@ +<? /* + LibreSSL - CAcert web application + Copyright (C) 2004-2008 CAcert Inc. + + This program is free software; you can redistribute it and/or modify + it under the terms of the GNU General Public License as published by + the Free Software Foundation; version 2 of the License. + + This program is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for more details. + + You should have received a copy of the GNU General Public License + along with this program; if not, write to the Free Software + Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA +*/ ?> +<? +?> +<table align="center" valign="middle" border="0" cellspacing="0" cellpadding="0" class="wrapper"> + <tr> + <td colspan="5" class="title"><?=_("Assurer Ranking")?></td> + </tr> + <tr> +<? + $query = "SELECT `users`. *, count(*) AS `list` FROM `users`, `notary` + WHERE `users`.`id` = `notary`.`from` AND `notary`.`from` != `notary`.`to` + AND `from`='".intval($_SESSION['profile']['id'])."' GROUP BY `notary`.`from`"; + $res = mysql_query($query); + $row = mysql_fetch_assoc($res); + $rc = intval($row['list']); +/* + $query = "SELECT `users`. *, count(*) AS `list` FROM `users`, `notary` + WHERE `users`.`id` = `notary`.`from` AND `notary`.`from` != `notary`.`to` + GROUP BY `notary`.`from` HAVING count(*) > '$rc' ORDER BY `notary`.`when` DESC"; +*/ + $query = "SELECT count(*) AS `list` FROM `users` + inner join `notary` on `users`.`id` = `notary`.`from` + GROUP BY `notary`.`from` HAVING count(*) > '$rc'"; + + $rank = mysql_num_rows(mysql_query($query)) + 1; +?> + <td class="DataTD"><?=sprintf(_("You have made %s assurances which ranks you as the #%s top assurer."), intval($rc), intval($rank))?></td> + </tr> +</table> +<br> +<table align="center" valign="middle" border="0" cellspacing="0" cellpadding="0" class="wrapper"> + <tr> + <td colspan="6" class="title"><?=_("Your Assurance Points")?></td> + </tr> + <tr> + <td class="DataTD"><b><?=_("ID")?></b></td> + <td class="DataTD"><b><?=_("Date")?></b></td> + <td class="DataTD"><b><?=_("Who")?></b></td> + <td class="DataTD"><b><?=_("Points")?></b></td> + <td class="DataTD"><b><?=_("Location")?></b></td> + <td class="DataTD"><b><?=_("Method")?></b></td> + </tr> +<? + $query = "select * from `notary` where `to`='".intval($_SESSION['profile']['id'])."'"; + $res = mysql_query($query); + while($row = mysql_fetch_assoc($res)) + { + $fromuser = mysql_fetch_assoc(mysql_query("select * from `users` where `id`='".intval($row['from'])."'")); +?> + <tr> + <td class="DataTD"><?=$row['id']?></td> + <td class="DataTD"><?=$row['date']?></td> + <td class="DataTD"><a href="wot.php?id=9&userid=<?=intval($row['from'])?>"><?=$fromuser['fname']." ".$fromuser['lname']?></td> + <td class="DataTD"><?=$row['points']?></td> + <td class="DataTD"><?=$row['location']?></td> + <td class="DataTD"><?=_(sprintf("%s", $row['method']))?></td> + </tr> +<? } ?> + <tr> + <td class="DataTD" colspan="3"><b><?=_("Total Points")?>:</b></td> + <td class="DataTD"><?=intval($_SESSION['profile']['points'])?></td> + <td class="DataTD" colspan="2"> </td> + </tr> +</table> +<br> +<table align="center" valign="middle" border="0" cellspacing="0" cellpadding="0" class="wrapper"> + <tr> + <td colspan="6" class="title"><?=_("Assurance Points You Issued")?></td> + </tr> + <tr> + <td class="DataTD"><b><?=_("ID")?></b></td> + <td class="DataTD"><b><?=_("Date")?></b></td> + <td class="DataTD"><b><?=_("Who")?></b></td> + <td class="DataTD"><b><?=_("Points")?></b></td> + <td class="DataTD"><b><?=_("Location")?></b></td> + <td class="DataTD"><b><?=_("Method")?></b></td> + </tr> +<? + $points = 0; + $query = "select * from `notary` where `from`='".intval($_SESSION['profile']['id'])."' and `to`!='".intval($_SESSION['profile']['id'])."'"; + $res = mysql_query($query); + while($row = mysql_fetch_assoc($res)) + { + $fromuser = mysql_fetch_assoc(mysql_query("select * from `users` where `id`='".intval($row['to'])."'")); + $points += $row['points']; + $name = trim($fromuser['fname']." ".$fromuser['lname']); + if($name == "") + $name = _("Deleted before Verification"); + else + $name = "<a href='wot.php?id=9&userid=".intval($row['to'])."'>$name</a>"; +?> + <tr> + <td class="DataTD"><?=intval($row['id'])?></td> + <td class="DataTD"><?=$row['date']?></td> + <td class="DataTD"><?=$name?></td> + <td class="DataTD"><?=intval($row['points'])?></td> + <td class="DataTD"><?=$row['location']?></td> + <td class="DataTD"><?=$row['method']==""?"":_(sprintf("%s", $row['method']))?></td> + </tr> +<? } ?> + <tr> + <td class="DataTD" colspan="3"><b><?=_("Total Points Issued")?>:</b></td> + <td class="DataTD"><?=$points?></td> + <td class="DataTD" colspan="2"> </td> + </tr> +</table> +<p>[ <a href='javascript:history.go(-1)'><?=_("Go Back")?></a> ]</p> + diff --git a/pages/wot/11.php b/pages/wot/11.php new file mode 100644 index 0000000..e25a862 --- /dev/null +++ b/pages/wot/11.php @@ -0,0 +1,52 @@ +<? /* + LibreSSL - CAcert web application + Copyright (C) 2004-2008 CAcert Inc. + + This program is free software; you can redistribute it and/or modify + it under the terms of the GNU General Public License as published by + the Free Software Foundation; version 2 of the License. + + This program is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for more details. + + You should have received a copy of the GNU General Public License + along with this program; if not, write to the Free Software + Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA +*/ ?> +<? if($_SESSION['profile']['admin'] == 1) { ?> +<table align="center" valign="middle" border="0" cellspacing="0" cellpadding="0" class="wrapper"> + <tr> + <td colspan="2" class="title"><?=_("Organisational Assurance")?></td> + </tr> + <tr> + <td class="DataTD"><b><?=_("Organisation Title")?>:</b></td> + <td class="DataTD"> </td> + </tr> + <tr> + <td class="DataTD"><b><?=_("Contact Email")?>:</b></td> + <td class="DataTD"> </td> + </tr> + <tr> + <td class="DataTD"><b><?=_("Town/Suburb")?>:</b></td> + <td class="DataTD"> </td> + </tr> + <tr> + <td class="DataTD"><b><?=_("State/Province")?>:</b></td> + <td class="DataTD"> </td> + </tr> + <tr> + <td class="DataTD"><b><?=_("Country")?>:</b></td> + <td class="DataTD"> </td> + </tr> + <tr> + <td class="DataTD"><b><?=_("Comments")?>:</b></td> + <td class="DataTD"> </td> + </tr> +</table> +<? } else { ?> +<p><?=_("This page is a work in Progress. Please see this")?> +<a href="http://wiki.cacert.org/wiki/OrganisationEntities"><?=_("article on the Wiki")?></a> +<?=_("for more information about Organizational Support.")?></a></p> +<? } ?> diff --git a/pages/wot/12.php b/pages/wot/12.php new file mode 100644 index 0000000..a0bbf50 --- /dev/null +++ b/pages/wot/12.php @@ -0,0 +1,135 @@ +<? /* + LibreSSL - CAcert web application + Copyright (C) 2004-2008 CAcert Inc. + + This program is free software; you can redistribute it and/or modify + it under the terms of the GNU General Public License as published by + the Free Software Foundation; version 2 of the License. + + This program is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for more details. + + You should have received a copy of the GNU General Public License + along with this program; if not, write to the Free Software + Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA +*/ ?> + +<? if(!array_key_exists('location',$_REQUEST) || $_REQUEST['location'] == "") { ?> +<script language="javascript" src="/ac.js"></script> +<script language="javascript"> +<!-- +function oncomplete() { + document.f.submit(); +} +// --> +</script> +<p><?=_("Please enter your town or suburb name, followed by region or state or province and then the country (please separate by commas)")?><br /> +<?=_("eg Sydney, New South Wales, Australia")?></p> +<p><?=_("This is an AJAX form which depends heavily on javascript for auto-complete functionality and while it will work without javascript the usability will be heavily degraded.")?></p> +<form name="f" action="wot.php" method="post"> +<input type='hidden' name='oldid' value='12' /> +<table> + <tr> + <td align=right valign=middle><?=_("Maximum Distance:")?></td> + <td><select name="maxdist"> +<? + $arr = array(10, 25, 50, 100, 250, 500, 1000); + foreach($arr as $val) + { + echo "<option value='$val'"; + if(array_key_exists('maxdist',$_REQUEST) && $val == $_REQUEST['maxdist']) + echo " selected"; + echo ">${val}km</option>\n"; + } +?> + </td> + </tr> + <tr> + <td align=right valign=middle><?=_("Location:")?></td> + <td><input autocomplete="off" type="text" id="location" name="location" value="" size="50" /> <input type="submit" name="process" value="Go"></td> + </tr> +</table> + +</form> +<script language="javascript"> +<!-- +var ac1 = new AC('location', 'location', oncomplete); +ac1.enable_unicode(); +document.f.location.focus(); +// --> +</script> +<? } else { + if(intval($_REQUEST['location']) == 0) + { + $bits = explode(",", $_REQUEST['location']); + + $loc = trim(mysql_escape_string($bits['0'])); + $reg = ""; if(array_key_exists('1',$bits)) $reg=trim(mysql_escape_string($bits['1'])); + $ccname = ""; if(array_key_exists('2',$bits)) $ccname=trim(mysql_escape_string($bits['2'])); + + $query = "select `locations`.`id` as `locid` from `locations`, `regions`, `countries` where + `locations`.`name` like '$loc%' and `regions`.`name` like '$reg%' and `countries`.`name` like '$ccname%' and + `locations`.`regid`=`regions`.`id` and `locations`.`ccid`=`countries`.`id` + order by `locations`.`name` limit 1"; + $res = mysql_query($query); + if($reg != "" && $ccname == "" && mysql_num_rows($res) <= 0) + { + $query = "select `locations`.`id` as `locid` from `locations`, `regions`, `countries` where + `locations`.`name` like '$loc%' and `countries`.`name` like '$reg%' and + `locations`.`regid`=`regions`.`id` and `locations`.`ccid`=`countries`.`id` + order by `locations`.`name` limit 1"; + $res = mysql_query($query); + } + if(mysql_num_rows($res) <= 0) + die(_("Unable to find suitable location")); + $row = mysql_fetch_assoc($res); + $_REQUEST['location'] = $row['locid']; + } + + $maxdist = intval($_REQUEST['maxdist']); + + $locid = intval($_REQUEST['location']); + $query = "select * from `locations` where `id`='$locid'"; + $loc = mysql_fetch_assoc(mysql_query($query)); + if($maxdist <= 10) + { + $query = "SELECT ROUND(6378.137 * ACOS(0.9999999*((SIN(PI() * $loc[lat] / 180) * SIN(PI() * `locations`.`lat` / 180)) + (COS(PI() * $loc[lat] / 180 ) * + COS(PI() * `locations`.`lat` / 180) * COS(PI() * `locations`.`long` / 180 - PI() * $loc[long] / 180)))), -1) AS `distance`, + `locations`.`name` AS `location`, concat(`users`.`fname`, ' ', LEFT(`users`.`lname`, 1)) AS `name`, `long`, `lat`, + `users`.`id` as `uid`, `contactinfo` FROM `locations`, `users` WHERE `users`.`locid` = `locations`.`id` AND + `users`.`assurer` = 1 AND `users`.`listme` = 1 HAVING `distance` <= '$maxdist' ORDER BY `distance`"; + } else { + $query = "SELECT ROUND(6378.137 * ACOS(0.9999999*((SIN(PI() * $loc[lat] / 180) * SIN(PI() * `locations`.`lat` / 180)) + (COS(PI() * $loc[lat] / 180 ) * + COS(PI() * `locations`.`lat` / 180) * COS(PI() * `locations`.`long` / 180 - PI() * $loc[long] / 180)))), -1) AS `distance`, + `locations`.`name` AS `location`, concat(`users`.`fname`, ' ', LEFT(`users`.`lname`, 1)) AS `name`, `long`, `lat`, + `users`.`id` as `uid`, `contactinfo` FROM `locations`, `users` WHERE `users`.`locid` = `locations`.`id` AND + `users`.`assurer` = 1 AND `users`.`listme` = 1 HAVING `distance` <= '$maxdist' ORDER BY `distance` LIMIT 50"; + //echo $query; + } + $res = mysql_query($query); +?><table align="center" valign="middle" border="0" cellspacing="0" cellpadding="0" class="wrapper" width="700"> + <tr> + <td class="title"><?=_("Name")?></td> + <td class="title"><?=_("Distance")?></td> + <td class="title"><?=_("Max Points")?></td> + <td class="title"><?=_("Contact Details")?></td> + <td class="title"><?=_("Email Assurer")?></td> + </tr> +<? while($row = mysql_fetch_assoc($res)) + { + $points = maxpoints($row['uid']); + if($points > 35) + $points = 35; +?> + <tr> + <td class="DataTD" width="100"><nobr><?=$row['name']?></nobr></td> + <td class="DataTD"><?=$row['distance']?>km</td> + <td class="DataTD"><?=$points?></td> + <td class="DataTD"><?=$row['contactinfo']?></td> + <td class="DataTD"><a href="wot.php?id=9&userid=<?=$row['uid']?>"><?=_("Email Me")?></a></td> + </tr> +<? } ?> +</table> +<? } ?> diff --git a/pages/wot/13.php b/pages/wot/13.php new file mode 100644 index 0000000..eac7e18 --- /dev/null +++ b/pages/wot/13.php @@ -0,0 +1,102 @@ +<? /* + LibreSSL - CAcert web application + Copyright (C) 2004-2008 CAcert Inc. + + This program is free software; you can redistribute it and/or modify + it under the terms of the GNU General Public License as published by + the Free Software Foundation; version 2 of the License. + + This program is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for more details. + + You should have received a copy of the GNU General Public License + along with this program; if not, write to the Free Software + Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA +*/ + +if(array_key_exists('location',$_REQUEST) && $_REQUEST['location'] != "") { + if(intval($_REQUEST['location']) == 0) + { + $bits = explode(",", $_REQUEST['location']); + + $loc = trim(mysql_escape_string($bits['0'])); + $reg = ''; if(array_key_exists('1',$bits)) $reg=trim(mysql_escape_string($bits['1'])); + $ccname = ''; if(array_key_exists('2',$bits)) $ccname=trim(mysql_escape_string($bits['2'])); + $query = "select `locations`.`id` as `locid` from `locations`, `regions`, `countries` where + `locations`.`name` like '$loc%' and `regions`.`name` like '$reg%' and `countries`.`name` like '$ccname%' and + `locations`.`regid`=`regions`.`id` and `locations`.`ccid`=`countries`.`id` + order by `locations`.`name` limit 1"; + $res = mysql_query($query); + if($reg != "" && $ccname == "" && mysql_num_rows($res) <= 0) + { + $query = "select `locations`.`id` as `locid` from `locations`, `regions`, `countries` where + `locations`.`name` like '$loc%' and `countries`.`name` like '$reg%' and + `locations`.`regid`=`regions`.`id` and `locations`.`ccid`=`countries`.`id` + order by `locations`.`name` limit 1"; + $res = mysql_query($query); + } + if(mysql_num_rows($res) <= 0) + die("Unable to find suitable location"); + + $row = mysql_fetch_assoc($res); + $_REQUEST['location'] = $row['locid']; + } + + $locid = intval($_REQUEST['location']); + $query = "select * from `locations` where `id`='$locid'"; + $res = mysql_query($query); + if(mysql_num_rows($res) > 0) + { + $loc = mysql_fetch_assoc($res); + $_SESSION['profile']['ccid'] = $loc['ccid']; + $_SESSION['profile']['regid'] = $loc['regid']; + $_SESSION['profile']['locid'] = $loc['id']; + $query = "update `users` set `locid`='$loc[id]', `regid`='$loc[regid]', `ccid`='$loc[ccid]' where `id`='".$_SESSION['profile']['id']."'"; + mysql_query($query); + echo "<p>"._("Your location has been updated")."</p>\n"; + } else { + echo "<p>"._("I was unable to match your location with places in my database.")."</p>\n"; + } +} + + $query = "select `name` from `locations` where `id`='".$_SESSION['profile']['locid']."'"; + $res = mysql_query($query); + $loc = mysql_fetch_assoc($res); + $query = "select `name` from `regions` where `id`='".$_SESSION['profile']['regid']."'"; + $res = mysql_query($query); + $reg = mysql_fetch_assoc($res); + $query = "select `name` from `countries` where `id`='".$_SESSION['profile']['ccid']."'"; + $res = mysql_query($query); + $cc = mysql_fetch_assoc($res); +?> +<script language="javascript" src="/ac.js"></script> +<script language="javascript"> +<!-- +function oncomplete() { + document.f.submit(); +} +// --> +</script> +<p><?=_("Please enter your town or suburb name, followed by region or state or province and then the country (please separate by commas)")?><br /> +<?=_("eg Sydney, New South Wales, Australia")?></p> +<p><?=_("This is an AJAX form which depends heavily on javascript for auto-complete functionality and while it will work without javascript the usability will be heavily degraded.")?></p> +<p><?=sprintf(_("Your current location is set as: %s"), "$loc[name], $reg[name], $cc[name]")?></p> +<form name="f" action="wot.php" method="post"> +<input type='hidden' name='id' value='13' /> +<table> + <tr> + <td align=right valign=middle><?=_("Location:")?></td> + <td><input autocomplete="off" type="text" id="location" name="location" value="" size="50" /> <?=_("(hit enter to submit)")?></td> + </tr> +</table> + +</form> +<script language="javascript"> +<!-- +var ac1 = new AC('location', 'location', oncomplete); +ac1.enable_unicode(); +document.f.location.focus(); +// --> +</script> diff --git a/pages/wot/14.php b/pages/wot/14.php new file mode 100644 index 0000000..21c5873 --- /dev/null +++ b/pages/wot/14.php @@ -0,0 +1,47 @@ +<? /* + LibreSSL - CAcert web application + Copyright (C) 2004-2008 CAcert Inc. + + This program is free software; you can redistribute it and/or modify + it under the terms of the GNU General Public License as published by + the Free Software Foundation; version 2 of the License. + + This program is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for more details. + + You should have received a copy of the GNU General Public License + along with this program; if not, write to the Free Software + Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA +*/ ?> + +<p>This is a demo page, which isn't fully functional yet.</p> + +<p><?=sprintf(_("If you have a %sSignaturecard%s (also called 'Buergerkarte'), you can digitally sign your assurance request here, and get 50 CAcert points:"),"<a href='http://www.buergerkarte.at/'>","</a>")?><br /></p> + +<p><?=sprintf(_("To get assured with your Signaturecard, you need the Software from <a href='http://www.buergerkarte.at/bku/'>http://www.buergerkarte.at/bku/</a>. To activate your E-Card, please go to <a href='https://www.sozialversicherung.at/signon2-Registrierung/'>https://www.sozialversicherung.at/signon2-Registrierung/</a>."))?></p> + + +<pre><?=sanitizeHTML($_REQUEST['XMLResponse'])?></pre> + +<h1>1. Step: Assurance form</h1> + +<form name="form" method="post" action="http://localhost:3495/http-security-layer-request"/> + <input type="submit" name="Weiter" value="Start Assurance"> + <input type="hidden" name="XMLRequest" value="<CreateXMLSignatureRequest xmlns='http://www.buergerkarte.at/namespaces/securitylayer/20020831#' xmlns:dsig='http://www.w3.org/2000/09/xmldsig#' xmlns:sl10='http://www.buergerkarte.at/namespaces/securitylayer/20020225#'><KeyboxIdentifier>CertifiedKeypair</KeyboxIdentifier><DataObjectInfo Structure='enveloping'><sl10:DataObject><sl10:XMLContent>Mit dieser Signatur beantragen Sie die Assurance ihres CAcert Accounts '<?=$_SESSION['profile']['email']?>' mit ihrer Buergerkarte.</sl10:XMLContent></sl10:DataObject><sl10:TransformsInfo><sl10:FinalDataMetaInfo><sl10:MimeType>text/plain</sl10:MimeType></sl10:FinalDataMetaInfo></sl10:TransformsInfo></DataObjectInfo></CreateXMLSignatureRequest>"/> + <input type="hidden" name="actualtest_" value="4"/> + <input type="hidden" name="DataURL" value="https://www.cacert.org/tverify/seclayer.php?id=14&user=<?=$_SESSION['profile']['email']?>"/> + <input type="hidden" name="TestResult_" value="<strong>TestResult</strong>"/> +</form> + +<h1>2. Step: Person binding (Birthday)</h1> + +<form name="form" method="post" action="http://localhost:3495/http-security-layer-request"/> + <input type="submit" name="Weiter" value="Read birthday from Card"> + <input type="hidden" name="XMLRequest" value="<InfoboxReadRequest xmlns="http://www.buergerkarte.at/namespaces/securitylayer/20020225#"><InfoboxIdentifier>IdentityLink</InfoboxIdentifier><BinaryFileParameters ContentIsXMLEntity="true"/></InfoboxReadRequest>"/> + <input type="hidden" name="actualtest_" value="4"/> + <input type="hidden" name="DataURL" value="https://www.cacert.org/tverify/seclayer.php?id=14&user=<?=$_SESSION['profile']['email']?>"/> + <input type="hidden" name="TestResult_" value="<strong>TestResult</strong>"/> +</form> + diff --git a/pages/wot/2.php b/pages/wot/2.php new file mode 100644 index 0000000..a75bc57 --- /dev/null +++ b/pages/wot/2.php @@ -0,0 +1,36 @@ +<? /* + LibreSSL - CAcert web application + Copyright (C) 2004-2008 CAcert Inc. + + This program is free software; you can redistribute it and/or modify + it under the terms of the GNU General Public License as published by + the Free Software Foundation; version 2 of the License. + + This program is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for more details. + + You should have received a copy of the GNU General Public License + along with this program; if not, write to the Free Software + Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA +*/ ?> +<span style="background-color: #FF8080; font-size: 150%"> +Note that the <strong>TTP</strong> programme is effectively <strong>Frozen</strong><br> +Until a subsidiary policy under AP is written, it is against AP rules.<br> +</span> + <br> +<h3><?=_("To become an Assurer")?></h3> + +<p><?=_("There are several ways to become a CAcert Assurer, the most common of which is face to face meetings with existing assurers, who check your ID documents (you need to show 2 government issued photo ID where possible otherwise you won't be allocated as many points!).")?></p> + +<p><?=_("You can also become a CAcert Assurer by seeking out a public notary, justice of the peace, accountant, lawyer or bank manager. You will need to download and print out a copy of the TTP.pdf and fill in your sections. You will need to produce a photo copy of your ID, which the person assuring you will inspect against the originals. Once they are satisfied the documents appear to be genuine they need to sign the back of the photo copies, and fill in their sections of the TTP document. Once you have had your ID verified by 2 different people, pop the copies + forms in an envelope and post them to:")?></p> + +<p>CAcert Inc.<br> +P.O. Box 4107<br> +Denistone East NSW 2112<br> +Australia</p> + +<p><?=_("Upon receiving your documents you will be notified, and points will be added to your account.")?></p> + +<p><?=_("Once you have received at least 100 Assurance Points you will have to pass a test called Assurer Challenge, which can be started at").' <a href="https://cats.cacert.org/">https://cats.cacert.org/</a>!'?></p> diff --git a/pages/wot/3.php b/pages/wot/3.php new file mode 100644 index 0000000..0864ffd --- /dev/null +++ b/pages/wot/3.php @@ -0,0 +1,47 @@ +<? /* + LibreSSL - CAcert web application + Copyright (C) 2004-2008 CAcert Inc. + + This program is free software; you can redistribute it and/or modify + it under the terms of the GNU General Public License as published by + the Free Software Foundation; version 2 of the License. + + This program is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for more details. + + You should have received a copy of the GNU General Public License + along with this program; if not, write to the Free Software + Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA +*/ ?> +<h3><?=_("CAcert Web of Trust Rules")?></h3> + +<p><?=_("It is essential that CAcert Assurers understand and follow the rules below to ensure that applicants for assurance are suitably identified, which, in turn, maintains trust in the system.")?></p> + +<p><?=_("Contact")?><br> +<br> +* <?=_("You must meet the applicant in person;")?><br> +* <?=_("You must sight at least one form of government issued photo identification. It's preferable if 2 forms of Government issued photo ID are presented, as less points may be issued if there is any doubt on the person by the person issuing points;")?><br> +* <?=_("Complete the assurance form if the applicant has not already done so. Ensure that all information matches.")?><br> +</p> + +<p><?=_("Processing")?><br> +<?=_("After the meeting, visit the CAcert Web site's make an Assurance page and:")?><br> +<br> +* <?=_("Enter the applicant's email address;")?><br> +* <?=_("Compare the online information to the information recorded on the paper form;")?><br> +* <?=_("If, and only if, the two match completely - you may award trust points up to the maximum points you are able to allocate;")?><br> +</p> + +<p><?=_("Privacy")?><br> +<?=_("It is imperative that you maintain the confidentiality and privacy of the applicant, and never disclose the information obtained without the applicant's consent.")?></p> + +<p><?=_("Fees")?><br> +<?=_("You may charge a fee for your expenses if the applicant has been advised of the amount prior to the meeting.")?></p> + +<p><?=_("Liability")?><br> +<?=_("A CAcert Assurer who knowingly, or reasonably ought to have known, assures an applicant contrary to this policy may be held liable.")?></p> + +<p><?=_("Assurance Points")?><br> +<?=_("CAcert may, from time to time, alter the amount of Assurance Points that a class of assurer may assign as is necessary to effect a policy or rule change. We may also alter the amount of Assurance Points available to an individual, or new class of assurer, should another policy of CAcert require this.")?></p> diff --git a/pages/wot/4.php b/pages/wot/4.php new file mode 100644 index 0000000..0da72da --- /dev/null +++ b/pages/wot/4.php @@ -0,0 +1,32 @@ +<? /* + LibreSSL - CAcert web application + Copyright (C) 2004-2008 CAcert Inc. + + This program is free software; you can redistribute it and/or modify + it under the terms of the GNU General Public License as published by + the Free Software Foundation; version 2 of the License. + + This program is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for more details. + + You should have received a copy of the GNU General Public License + along with this program; if not, write to the Free Software + Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA +*/ ?> +<span style="background-color: #FF8080; font-size: 150%"> +Note that the <strong>TTP</strong> programme is effectively <strong>Frozen</strong><br> +Until a subsidiary policy under AP is written, it is against AP rules.<br> +</span> + <br> +<h3><?=_("Trusted Third Parties")?></h3> + +<p><?=_("A trusted 3rd party is simply someone in your country that is responsible for witnessing signatures and ID documents. This role is covered by many different titles such as public notary, justice of the peace and so on. Other people are allowed to be authoritative in this area as well, such as bank managers, accountants and lawyers.")?></p> + +<p><?=_("You can become a CAcert Assurer by seeking out trusted 3rd parties. You will also need to download and print out a copy of the TTP Form (found under 'CAP/TTP Forms') and fill in your sections. You will need to produce a photo copy of your ID, which the person assuring you will inspect against the originals. Once they are satisfied the documents appear to be genuine they need to sign the back of the photo copies, and fill in their sections of the TTP document. Once you have had your ID verified by 2 different people, pop the copies + forms in an envelope and post them to:")?></p> + +<p>CAcert Inc.<br> +P.O. Box 4107<br> +Denistone East NSW 2112<br> +Australia</p> diff --git a/pages/wot/5.php b/pages/wot/5.php new file mode 100644 index 0000000..6c53d00 --- /dev/null +++ b/pages/wot/5.php @@ -0,0 +1,83 @@ +<? /* + LibreSSL - CAcert web application + Copyright (C) 2004-2008 CAcert Inc. + + This program is free software; you can redistribute it and/or modify + it under the terms of the GNU General Public License as published by + the Free Software Foundation; version 2 of the License. + + This program is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for more details. + + You should have received a copy of the GNU General Public License + along with this program; if not, write to the Free Software + Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA +*/ + include_once("../includes/shutdown.php"); +?> +<? + if(array_key_exists('error',$_SESSION['_config']) && $_SESSION['_config']['error'] != "") + { + if(array_key_exists('reminderset',$_SESSION['_config']) && $_SESSION['_config']['remindersent'] == 1) + { + ?><font color="orange" size="+1"><? + } + else + { + ?><font color="orange" size="+1"><?=_("ERROR")?>: <? + } + echo $_SESSION['_config']['error']."</font>"; + unset($_SESSION['_config']['error']); + } +?> +<? if(array_key_exists('noemailfound',$_SESSION['_config']) && $_SESSION['_config']['noemailfound'] == 1) { ?> +<form method="post" action="wot.php"> +<input type="hidden" name="email" value="<?=sanitizeHTML($_POST['email'])?>"><br> +<select name="reminder-lang"> +<? + if($_SESSION['_config']['reminder-lang'] == "") + $_SESSION['_config']['reminder-lang'] = $_SESSION['profile']['language']; + foreach($_SESSION['_config']['translations'] as $key => $val) + { + echo "<option value='$key'"; + if($key == $_SESSION['_config']['reminder-lang']) + echo " selected"; + echo ">$val</option>\n"; + } +?> + </select><br> +<input type="hidden" name="oldid" value="<?=$id?>"> +<input type="submit" name="reminder" value="<?=_("Send reminder notice")?>"> +</form> +<? unset($_SESSION['_config']['noemailfound']); } ?> +<form method="post" action="wot.php" name="form1"> +<table align="center" valign="middle" border="0" cellspacing="0" cellpadding="0" class="wrapper"> + <tr> + <td colspan="2" class="title"><?=_("Assure Someone")?></td> + </tr> + <tr> + <td class="DataTD"><?=_("Email")?>:</td> +<? if(array_key_exists('remindersent',$_SESSION['_config']) && $_SESSION['_config']['remindersent'] == 1) { unset($_SESSION['_config']['remindersent']) ?> + <td class="DataTD"><input type="text" name="email" id="email" value=""></td> +<? } else { ?> + <td class="DataTD"><input type="text" name="email" id="email" value="<?=array_key_exists('email',$_POST)?sanitizeHTML($_POST['email']):""?>"></td> +<? } ?> + </tr> + <tr> + <td class="DataTD" colspan="2"><input type="submit" name="process" value="<?=_("Next")?>"></td> + </tr> +</table> +<input type="hidden" name="oldid" value="<?=$id?>"> +</form> +<SCRIPT LANGUAGE="JavaScript"> +//<![CDATA[ + function my_init() + { + document.getElementById("email").focus(); + } + + window.onload = my_init(); +//]]> +</script> diff --git a/pages/wot/6.php b/pages/wot/6.php new file mode 100644 index 0000000..bc37aa2 --- /dev/null +++ b/pages/wot/6.php @@ -0,0 +1,170 @@ +<? /* + LibreSSL - CAcert web application + Copyright (C) 2004-2008 CAcert Inc. + + This program is free software; you can redistribute it and/or modify + it under the terms of the GNU General Public License as published by + the Free Software Foundation; version 2 of the License. + + This program is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for more details. + + You should have received a copy of the GNU General Public License + along with this program; if not, write to the Free Software + Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA +*/ ?> +<? + if(!array_key_exists('notarise',$_SESSION['_config'])) + { + echo "Error: No user data found."; + exit; + } + + $row = $_SESSION['_config']['notarise']; + + if(!array_key_exists('pointsalready',$_SESSION['_config'])) $_SESSION['_config']['pointsalready']=0; + + + if($_SESSION['profile']['ttpadmin'] == 1 && $_SESSION['profile']['board'] == 1) + { + $methods = array("Face to Face Meeting", "Trusted 3rd Parties", "Thawte Points Transfer", "Administrative Increase", "CT Magazine - Germany"); + } else if($_SESSION['profile']['ttpadmin'] == 1) { + $methods = array("Face to Face Meeting", "Trusted 3rd Parties"); + } + + $cap = "/cap.php?"; + $name = $row['fname']." ".$row['mname']." ".$row['lname']." ".$row['suffix']; + $_SESSION['_config']['wothash'] = md5($name."-".$row['dob']); + while(strstr($name, " ")) + $name = str_replace(" ", " ", $name); + $cap .= "name=".urlencode($name); + $cap .= "&dob=".urlencode($row['dob']); + $cap .= "&email=".urlencode($row['email']); + $name = $_SESSION['profile']['fname']." ".$_SESSION['profile']['mname']." ".$_SESSION['profile']['lname']." ".$_SESSION['profile']['suffix']; + while(strstr($name, " ")) + $name = str_replace(" ", " ", $name); + $cap .= "&assurer=".urlencode($name); + $cap .= "&date=now"; + $cap .= "&maxpoints=".maxpoints(); + + $maxpoints = maxpoints(); + if($maxpoints > 100) + $maxpoints = 100; + + if(array_key_exists('error',$_SESSION['_config']) && $_SESSION['_config']['error'] != "") { ?><font color="#ff0000" size="+1">ERROR: <?=$_SESSION['_config']['error']?></font><? unset($_SESSION['_config']['error']); } ?> +<form method="post" action="wot.php"> +<table align="center" valign="middle" border="0" cellspacing="0" cellpadding="0" class="wrapper" width="600"> + <tr> + <td colspan="2" class="title"><?=_("Assurance Confirmation")?></td> + </tr> +<? if(array_key_exists('alreadydone',$_SESSION['_config']) && $_SESSION['_config']['alreadydone'] == 1) { ?> + <tr> + <td class="DataTD" colspan="2" align="left" style="color: red;"><b><?=_("PLEASE NOTE: You have already assured this person before! If this is unintentional please DO NOT CONTINUE with this assurance.")?></b></td> + </tr> +<? + } if(100 - $_SESSION['_config']['pointsalready'] - $maxpoints < 0) { + ?> + <tr> + <td class="DataTD" colspan="2" align="left" style="color: red;"><b><? printf(_("This person already has %s assurance points. Any points you give this person may be rounded down, or they may not even get any points. If you have less then 150 points you will still receive 2 points for assuring them."), $_SESSION['_config']['pointsalready']); ?></b></td> + </tr> +<? } + + $query = "select `verified` from `users` where `id`='".$row['id']."'"; + $res = mysql_query($query); + $drow = mysql_fetch_assoc($res); + //if($_SESSION['_config']['verified'] <= 0) + if($drow['verified']<=0) + { ?> + <tr> + <td class="DataTD" colspan="2" align="left" style="color: red;"><b><?=_("You are about to assure a person that isn't currently verified. If you continue and they do not verify their account within 48 hours the account could automatically be removed by the system.")?></b></td> + </tr> +<? } ?> + <tr> + <td class="DataTD" colspan="2" align="left"><? printf(_("Please check the following details match against what you witnessed when you met %s in person. You MUST NOT proceed unless you are sure the details are correct. You may be held responsible by the CAcert Arbitrator for any issues with this Assurance."), $row['fname']); ?></td> + </tr> + <tr> + <td class="DataTD"><?=_("Name")?>:</td> + <td class="DataTD"><?=$row['fname']?> <?=$row['mname']?> <?=$row['lname']?> <?=$row['suffix']?></td> + </tr> + <tr> + <td class="DataTD"><?=_("Date of Birth")?>:</td> + <td class="DataTD"><?=$row['dob']?> (<?=_("YYYY-MM-DD")?>)</td> + </tr> +<? if($_SESSION['profile']['ttpadmin'] == 1) { ?> + <tr> + <td class="DataTD"><?=_("Method")?>:</td> + <td class="DataTD"><select name="method"> +<? foreach($methods as $val) { ?> + <option value="<?=$val?>"<? if(array_key_exists('method',$_POST) && $val == $_POST['method']) echo " selected"; ?>><?=$val?></option> +<? } ?> + </select> + </td> + </tr> + <tr> + <td class="DataTD" colspan="2"><?=_("Only tick the next box if the Assurance was face to face.")?></td> + </tr> +<? } ?> + <tr> + <td class="DataTD"><input type="checkbox" name="certify" value="1"<? if(array_key_exists('certify',$_POST) && $_POST['certify'] == 1) echo " checked"; ?>></td> + <td class="DataTD"><? printf(_("I certify that %s %s %s has appeared in person"), $row['fname'], $row['mname'], $row['lname']); ?></td> + </tr> + <tr> + <td class="DataTD"><?=_("Location")?>:</td> + <td class="DataTD"><input type="text" name="location" value="<?=array_key_exists('location',$_SESSION['_config'])?$_SESSION['_config']['location']:""?>"></td> + </tr> + <tr> + <td class="DataTD"><?=_("Date")?>:</td> + <td class="DataTD"><input type="text" name="date" value="<?=array_key_exists('date',$_SESSION['_config'])?$_SESSION['_config']['date']:""?>"><br><?=_("Only fill this in if you assured the person on a different day")?></td> + </tr> +<? if($_SESSION['profile']['board'] == 1 && $_SESSION['_config']['pointsalready'] <= 150) { ?> + <tr> + <td class="DataTD" colspan="2"><?=_("Issuing a temporary increase will automatically boost their points to 200 points for a nomindated amount of days, after which the person will be reduced to 150 points regardless of the amount of points they had previously. Regardless of method chosen above it will be recorded in the system as an Administrative Increase and there is a maximum amount of 45 days that points can be issued for.")?></td> + </tr> + <tr> + <td class="DataTD"><nobr><?=_("Temporary Increase")?>:</nobr><br><nobr><?=_("Number of days")?></nobr></td> + <td class="DataTD"><input type="text" name="expire" value="<?=intval(array_key_exists('expire',$_POST)?$_POST['expire']:0)?>"></td> + </tr> + <tr> + <td class="DataTD"><nobr><?=_("Sponsoring Member")?>:</td> + <td class="DataTD"><select name="sponsor"> +<? + $query = "select * from `users` where `board`='1' and `id`!='".intval($_SESSION['profile']['id'])."'"; + $res = mysql_query($query); + while($row = mysql_fetch_assoc($res)) + { +?> + <option value="<?=$row['id']?>"<? if(array_key_exists('sponsor',$_POST) && $row['id'] == $_POST['sponsor']) echo " selected='selected'"; ?>><?=$row['fname']." ".$row['lname']?></option> +<? } ?> + </select> + </td> + </tr> +<? } ?> + <tr> + <td class="DataTD"><input type="checkbox" name="assertion" value="1"<? if(array_key_exists('assertion',$_POST) && $_POST['assertion'] == 1) echo " checked='checked'"; ?>></td> + <td class="DataTD"><?=_("I believe that the assertion of identity I am making is correct, complete and verifiable. I have seen original documentation attesting to this identity. I accept that the CAcert Arbitrator may call upon me to provide evidence in any dispute, and I may be held responsible.")?></td> + </tr> + <tr> + <td class="DataTD"><input type="checkbox" name="rules" value="1"<? if(array_key_exists('rules',$_POST) && $_POST['rules'] == 1) echo " checked='checked'"; ?>></td> + <td class="DataTD"><?=_("I have read and understood the Assurance Policy and the Assurance Handbook and am making this Assurance subject to and in compliance with the policy and handbook.")?></td> + </tr> + <tr> + <td class="DataTD"><?=_("Policy")?>:</td> + <td class="DataTD"><a href="/policy/AssurancePolicy.php" target="_NEW"><?=_("Assurance Policy")?></a> - <a href="http://wiki.cacert.org/AssuranceHandbook2" target="_NEW"><?=_("Assurance Handbook")?></a></td> + </tr> + <tr> + <td class="DataTD"><?=_("Points")?>:<br><nobr>(Max <?=maxpoints()?>)</nobr></td> + <td class="DataTD"><input type="text" name="points" value=""></td> + </tr> + <tr> + <td class="DataTD"><?=_("WoT Form")?>:</td> + <td class="DataTD"><a href="<?=$cap?>" target="_NEW">A4 - <?=_("WoT Form")?></a> <a href="<?=$cap?>&format=letter" target="_NEW">US - <?=_("WoT Form")?></a></td> + </tr> + <tr> + <td class="DataTD" colspan="2"><input type="submit" name="process" value="<?=_("I confirm this Assurance")?>"> <input type="submit" name="cancel" value="<?=_("Cancel")?>"></td> + </tr> +</table> +<input type="hidden" name="pagehash" value="<?=$_SESSION['_config']['wothash']?>"> +<input type="hidden" name="oldid" value="<?=$id?>"> +</form> diff --git a/pages/wot/7-old.php b/pages/wot/7-old.php new file mode 100644 index 0000000..af167a0 --- /dev/null +++ b/pages/wot/7-old.php @@ -0,0 +1,183 @@ +<? /* + LibreSSL - CAcert web application + Copyright (C) 2004-2008 CAcert Inc. + + This program is free software; you can redistribute it and/or modify + it under the terms of the GNU General Public License as published by + the Free Software Foundation; version 2 of the License. + + This program is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for more details. + + You should have received a copy of the GNU General Public License + along with this program; if not, write to the Free Software + Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA +*/ ?> +<? +exit; +if($_GET['action'] != "update") +{ + $total1 = mysql_num_rows(mysql_query("select * from `users`,`notary` where `listme`='1' and `users`.`id`=`notary`.`to` + group by `notary`.`to` HAVING SUM(`points`) >= 100")); + + $town = mysql_escape_string(stripslashes($_GET['town'])); + $start = intval($_GET['start']); + $limit = 25; + + echo "<div id='listshow'><ul class='top'>\n<li>"; + echo "<a href='wot.php?id=7'>"._("Home")." ("._("Listed").": $total1)</a>\n"; + + $display = ""; + $ccid=intval($_GET['ccid']); + $locid=intval($_GET['locid']); + $regid=intval($_GET['regid']); + + if($locid > 0) + { + $total4 = mysql_num_rows(mysql_query("select * from `users`,`notary` where `listme`='1' and `locid`='".$locid."' and + `users`.`id`=`notary`.`to` group by `notary`.`to` HAVING SUM(`points`) >= 100")); + $loc = mysql_fetch_assoc(mysql_query("select * from `locations` where `id`='".$locid."'")); + $display = "<ul class='top'>\n<li>\n". + "<a href='wot.php?id=7&locid=".$locid."'>$loc[name] ("._("Listed").": $total4)</a>\n". + $display; + $regid = $loc['regid']; + } + + if($regid > 0) + { + $total3 = mysql_num_rows(mysql_query("select * from `users`,`notary` where `listme`='1' and `regid`='".$regid."' and + `users`.`id`=`notary`.`to` group by `notary`.`to` HAVING SUM(`points`) >= 100")); + $reg = mysql_fetch_assoc(mysql_query("select * from `regions` where `id`='".$regid."'")); + $display = "<ul class='top'>\n<li>\n". + "<a href='wot.php?id=7®id=".$regid."'>$reg[name] ("._("Listed").": $total3)</a>\n". + $display; + $ccid = $reg['ccid']; + } + + if($ccid > 0) + { + $total2 = mysql_num_rows(mysql_query("select * from `users`,`notary` where `listme`='1' and + `ccid`='".$ccid."' and `users`.`id`=`notary`.`to` + group by `notary`.`to` HAVING SUM(`points`) >= 100")); + $cnt = mysql_fetch_assoc(mysql_query("select * from `countries` where `id`='".$ccid."'")); + $display = "<ul class='top'>\n<li>\n". + "<a href='wot.php?id=7&ccid=".$ccid."'>$cnt[name] ("._("Listed").": $total2)</a>\n". + $display; + } + + if($display) + echo $display; + + if($ccid <= 0) + { + echo "<ul>\n"; + $query = "select * from `countries` order by `name`"; + $res = mysql_query($query); + while($row = mysql_fetch_assoc($res)) + echo "<li><a href='wot.php?id=7&ccid=$row[id]'>$row[name]</a></li>\n"; + + echo "</ul>\n</li>\n</ul></div>\n<br>\n"; + } elseif($regid <= 0) { + echo "<ul>\n"; + $query = "select * from `regions` where `ccid`='".$ccid."' order by `name`"; + $res = mysql_query($query); + while($row = mysql_fetch_assoc($res)) + echo "<li><a href='wot.php?id=7®id=$row[id]'>$row[name]</a></li>\n"; + + echo "</ul>\n</li>\n</ul>\n</li>\n</ul></div>\n<br>\n"; + } elseif($locid <= 0) { + echo "<ul>\n"; + if($town != "") + { + $query = "select * from `locations` where `regid`='".$regid."' and `name` < '$town'"; + $start = mysql_num_rows(mysql_query($query)); + } + $query = "select * from `locations` where `regid`='".$regid."' order by `name` limit $start, $limit"; + $res = mysql_query($query); + while($row = mysql_fetch_assoc($res)) + echo "<li><a href='wot.php?id=7&locid=$row[id]'>$row[name]</a></li>\n"; + + echo "</ul>\n</li>\n</ul>\n</li>\n</ul></div>\n<br>\n"; + $rc = mysql_num_rows(mysql_query("select * from `locations` where `regid`='".$regid."'")); + if($start > 0) + { + $prev = $start - $limit; + if($prev < 0) + $prev = 0; + + $st = "[ <a href='wot.php?id=7®id=".$regid."'><< Start</a> ] "; + $prev = "[ <a href='wot.php?id=7®id=".$regid."&start=$prev'>< Previous $limit</a> ] "; + } + if($start < $rc - $limit) + { + $next = $start + $limit; + $last = $rc - $limit; + + $next = "[ <a href='wot.php?id=7®id=".$regid."&start=$next'>Next $limit ></a> ] "; + $end = "[ <a href='wot.php?id=7®id=".$regid."&start=$last'>End >></a> ]"; + } + echo "<div id='search1'>$st</div><div id='search3'>$end</div>\n"; + echo "<div id='search2'>$prev</div><div id='search4'>$next</div>\n"; +?> +<div align="left"> +<form method="get" action="wot.php"> +<table align="center" valign="middle" border="0" cellspacing="0" cellpadding="0" class="wrapper" width="200"> + <tr> + <td colspan="2" class="title"><?=_("Search this region")?></td> + </tr> + <tr> + <td class="DataTD" width="125"><?=_("Location Name")?>: </td> + <td class="DataTD" width="125"><input type="text" name="town" value="<?=sanitizeHTML($_GET['town'])?>" size="10"></td> + </tr> + <tr> + <td class="DataTD" colspan="2"><input type="submit" name="process" value="<?=_("Search")?>"></td> + </tr> +</table> +<input type="hidden" name="regid" value="<?=$regid?>"> +<input type="hidden" name="id" value="7"> +</form> +</div> +<? + } else { + echo "</ul>\n</li>\n</ul>\n</li>\n</ul>\n</li>\n</ul>\n<br>\n"; + echo "<p><a href='wot.php?id=7&action=update&locid=".$locid."'>"; + echo _("Make my location here"); + echo "</a></p>\n"; + echo "<p>"._("If you are happy with this location, click 'Make my location here' to update your location details.")."</p><br>\n"; + } +} else { + $total1 = mysql_num_rows(mysql_query("select * from `users`,`notary` where `listme`='1' and `users`.`id`=`notary`.`to` + group by `notary`.`to` HAVING SUM(`points`) >= 100")); + + if($locid > 0) + { + $total4 = mysql_num_rows(mysql_query("select * from `users`,`notary` where `listme`='1' and `locid`='".$locid."' and + `users`.`id`=`notary`.`to` group by `notary`.`to` HAVING SUM(`points`) >= 100")); + $loc = mysql_fetch_assoc(mysql_query("select * from `locations` where `id`='".$locid."'")); + $regid = $loc['regid']; + } + + if($regid) > 0) + { + $total3 = mysql_num_rows(mysql_query("select * from `users`,`notary` where `listme`='1' and `regid`='".$regid."' and + `users`.`id`=`notary`.`to` group by `notary`.`to` HAVING SUM(`points`) >= 100")); + $reg = mysql_fetch_assoc(mysql_query("select * from `regions` where `id`='".$regid."'")); + $ccid = $reg['ccid']; + } + + $total2 = mysql_num_rows(mysql_query("select * from `users`,`notary` where `listme`='1' and + `ccid`='".$ccid."' and `users`.`id`=`notary`.`to` + group by `notary`.`to` HAVING SUM(`points`) >= 100")); + + $_SESSION['profile']['ccid'] = $ccid; + $_SESSION['profile']['regid'] = $regid; + $_SESSION['profile']['locid'] = $locid; + + mysql_query("update `users` set `ccid`='".$ccid."',`regid`='".$regid."',`locid`='".$locid."' + where `id`='".$_SESSION['profile']['id']."'"); + + echo _("Your details have been updated."); +} +?> diff --git a/pages/wot/8.php b/pages/wot/8.php new file mode 100644 index 0000000..af67d0b --- /dev/null +++ b/pages/wot/8.php @@ -0,0 +1,44 @@ +<? /* + LibreSSL - CAcert web application + Copyright (C) 2004-2008 CAcert Inc. + + This program is free software; you can redistribute it and/or modify + it under the terms of the GNU General Public License as published by + the Free Software Foundation; version 2 of the License. + + This program is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for more details. + + You should have received a copy of the GNU General Public License + along with this program; if not, write to the Free Software + Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA +*/ ?> +<? if(array_key_exists('error',$_SESSION['_config']) && $_SESSION['_config']['error'] != "") { ?><font color="#ff0000">ERROR: <?=$_SESSION['_config']['error']?></font><? unset($_SESSION['_config']['error']); } ?> +<form method="post" action="wot.php"> +<table align="center" valign="middle" border="0" cellspacing="0" cellpadding="0" class="wrapper"> + <tr> + <td colspan="2" class="title"><?=_("My Listing")?></td> + </tr> + <tr> + <td class="DataTD"><?=_("Directory Listing")?>:</td> + <td class="DataTD" align="left"> + <select name="listme"> + <option value="0"><?=_("I don't want to be listed")?></option> + <option value="1"<? if($_SESSION['profile']['listme'] == 1) echo " selected"; ?>><?=_("I want to be listed")?></option> + </select> + </td> + </tr> + <tr> + <td class="DataTD"><?=_("Contact information")?>:</td> + <td class="DataTD"><textarea name="contactinfo" cols="40" rows="5" wrap="virtual"><?=$_SESSION['profile']['contactinfo']?></textarea></td> + </tr> + <tr> + <td class="DataTD" colspan="2"><input type="submit" name="process" value="<?=_("Update")?>"></td> + </tr> +</table> +<input type="hidden" name="oldid" value="<?=$id?>"> +<input type="hidden" name="csrf" value="<?=make_csrf('chgcontact')?>" /> +</form> +<p><?=_("Please note: All html will be stripped from the contact information box, a link to an email form will automatically be inserted to ensure your privacy.")?></p> diff --git a/pages/wot/9.php b/pages/wot/9.php new file mode 100644 index 0000000..b974c5d --- /dev/null +++ b/pages/wot/9.php @@ -0,0 +1,82 @@ +<? /* + LibreSSL - CAcert web application + Copyright (C) 2004-2008 CAcert Inc. + + This program is free software; you can redistribute it and/or modify + it under the terms of the GNU General Public License as published by + the Free Software Foundation; version 2 of the License. + + This program is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for more details. + + You should have received a copy of the GNU General Public License + along with this program; if not, write to the Free Software + Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA +*/ ?> +<? + $res = mysql_query("select * from `users` where `id`='".intval($_REQUEST['userid'])."' and `listme`='1'"); + if(mysql_num_rows($res) <= 0) + { + echo _("Sorry, I was unable to locate that user, the person doesn't wish to be contacted, or isn't an assurer."); + } else { + + $user = mysql_fetch_array($res); + $userlang = $user['language']; + $points = mysql_num_rows(mysql_query("select sum(`points`) as `total` from `notary` + where `to`='".$user['id']."' group by `to` HAVING SUM(`points`) > 0")); + if($points <= 0) + { + echo _("Sorry, I was unable to locate that user."); + } else { + + $_SESSION['_config']['pagehash'] = md5(date("U")); +?> +<? if($_SESSION['_config']['error'] != "") { ?><font color="#ff0000" size="+1">ERROR: <?=$_SESSION['_config']['error']?></font><? unset($_SESSION['_config']['error']); } ?> +<form method="post" action="wot.php"> +<input type="hidden" name="userid" value="<?=$user['id']?>"> +<table align="center" valign="middle" border="0" cellspacing="0" cellpadding="0" class="wrapper"> + <tr> + <td colspan="2" class="title"><?=_("Contact Assurer")?></td> + </tr> + <tr> + <td class="DataTD"><?=_("To")?>:</td> + <td class="DataTD" align="left"><?=$user['fname']?> <?=substr($user['lname'], 0, 1)?></td> + </tr> +<? if($userlang != "") { ?> + <tr> + <td class="DataTD"><?=_("Language")?>:</td> + <td class="DataTD" align="left"><? printf(_("%s prefers to be contacted in %s"), $user['fname'], $_SESSION['_config']['translations'][$userlang]) ?></td> + </tr> +<? } ?> +<? + $query = "select * from `addlang` where `userid`='".$user['id']."'"; + $res = mysql_query($query); + while($row = mysql_fetch_assoc($res)) + { + $lang = mysql_fetch_assoc(mysql_query("select * from `languages` where `locale`='${row['lang']}'")); +?> + <tr> + <td class="DataTD"><?=_("Additional Language")?>:</td> + <td class="DataTD" align="left"><? printf(_("%s will also accept email in %s - %s"), $user['fname'], $lang['lang'], $lang['country']) ?></td> + </tr> +<? } ?> + <tr> + <td class="DataTD"><?=_("Subject")?>:</td> + <td class="DataTD" align="left"><input type="text" name="subject" value="<?=sanitizeHTML($_POST['subject'])?>"></td> + </tr> + <tr> + <td class="DataTD"><?=_("Message")?>:</td> + <td class="DataTD"><textarea name="message" cols="40" rows="5" wrap="virtual"><?=sanitizeHTML($_POST['message'])?></textarea></td> + </tr> + <tr> + <td class="DataTD" colspan="2"><input type="submit" name="process" value="<?=_("Send")?>"></td> + </tr> +</table> +<input type="hidden" name="pageid" value="<?=$_SESSION['_config']['pagehash']?>"> +<input type="hidden" name="userid" value="<?=intval($_REQUEST['userid'])?>"> +<input type="hidden" name="oldid" value="<?=$id?>"> +</form> +<p>[ <a href='javascript:history.go(-1)'><?=_("Go Back")?></a> ]</p> +<? } } ?> diff --git a/pages/wot/CVS/Entries b/pages/wot/CVS/Entries new file mode 100644 index 0000000..f79738c --- /dev/null +++ b/pages/wot/CVS/Entries @@ -0,0 +1,16 @@ +/0.php/1.2/Sun Apr 6 19:45:25 2008// +/3.php/1.4/Sun Apr 6 19:45:25 2008// +/4.php/1.7/Sun Apr 6 19:45:25 2008// +/7-old.php/1.4/Sun Apr 6 19:45:25 2008// +/13.php/1.6/Mon Sep 1 22:28:14 2008// +/14.php/1.4/Wed Sep 3 18:44:17 2008// +/6.php/1.32/Mon Oct 6 21:29:20 2008// +/8.php/1.5/Mon Oct 6 21:29:20 2008// +/5.php/1.15/Fri Nov 14 23:40:25 2008// +/12.php/1.10/Sun Apr 5 00:44:04 2009// +/1.php/1.14/Sat Apr 25 23:23:02 2009// +/9.php/1.16/Sun May 31 16:50:59 2009// +/2.php/1.8/Sat Jun 6 02:40:22 2009// +/10.php/1.16/Thu Jun 25 20:09:33 2009// +/11.php/1.8/Thu Jun 25 20:09:33 2009// +D diff --git a/pages/wot/CVS/Repository b/pages/wot/CVS/Repository new file mode 100644 index 0000000..a2bab37 --- /dev/null +++ b/pages/wot/CVS/Repository @@ -0,0 +1 @@ +cacert/pages/wot diff --git a/pages/wot/CVS/Root b/pages/wot/CVS/Root new file mode 100644 index 0000000..a363882 --- /dev/null +++ b/pages/wot/CVS/Root @@ -0,0 +1 @@ +/var/lib/cvs |