#!/usr/bin/perl
#################################################
# MeySoft Banner Manager - Version 2.60
# Last Update: 27-OCT-2000
#
# Copyright (c) 2000 MeySoft
# Author: Jeffrey L. Meyer
# WebMaster@MeySoft.com
#
# THIS HEADER MUST REMAIN INTACT
##########################################################################
# If you make ANY changes, other than the perl path, MeySoft cannot accept
# responsibilty for any adverse affects, and do not expect MeySoft to fix
# it for you. If you make any modifications at all below the perl line
# above, you are in violation of the license agreement and forfeit any
# and all rights under the license agreement, and you will lose the right
# to technical support. Do not expect our help nor any refund if you
# violate the license agreement.
##########################################################################

require "bm260fn.cgi";
&load_vars;
require "flush.pl";
require "bm260_sql.lib";
require "htmllib.pl";

alarm(180);
@slist=split(/,/,$CFG{'slist'});
$ext_msg=" ";
$ext_msg2="";
$no_error=1;
@CTRL=();

if($ENV{'REQUEST_METHOD'} eq 'POST'){
   read(STDIN,$data,$ENV{'CONTENT_LENGTH'});
}else{
 $data="$ENV{'QUERY_STRING'}";
}
@targets=();
@blocks=();

@fields = split(/&/,$data);
foreach $fields(@fields){
  ($field_name,$field_val)=split(/=/,$fields);

   $field_val=~ s/\+/ /g;
   $field_val=~ s/%([a-fA-F0-9][a-fA-F0-9])/pack("C",hex($1))/eg;
   if($field_name eq 'targets'){
     push(@targets,$field_val);
   }
   if($field_name eq 'blocks'){
     push(@blocks,$field_val);
   }

   $field_val=~ s/\,/./g;
   $field_val=~ s/\&//g;
   $field_val=~ s/\"//g;
   $field_val=~ s/\'//g;
   $field_val=~ s/\`//g;
   $field_val=~ s/\*//g;
   $field_val=~ s/\\//g;
   $field_val=~ s/<!--(.|\n)*-->//g;
   $field_val=~ s/<([^>]|\n)*>//g;

 $DATA{$field_name}=$field_val;
}

$first_load=0;

if(($data eq 'FORM')||($data eq '')){
 print "Content-type: text/html\n\n";
 $first_load=1; 
   $DATA{'style'}="$slist[0]";
   $style="$slist[0]";
   $DATA{'account'}="swap";
 &send_form;
 &end;
}

if($DATA{'style'}){
 $style="$DATA{'style'}";
}else{
  $no_error=0;
  $ext_msg .="Banner Size Not Selected,";
  &send_form;
  &end;
}
$kc=&style_index($style);

$dbp="$CFG{'acct_dir'}/$style";
&get_date;

($bw,$bh)=split(/x/,$tst);
$no_error=1;

if(!($DATA{'name'})){
 $ext_msg .="Site Name Missing, ";
 $no_error=0;
}

if(!($DATA{'password'})){
 $ext_msg .="Missing Password, ";
 $no_error=0;
}

if((!($DATA{'verify'}))||($DATA{'verify'} ne $DATA{'password'})){
 $no_error=0;
 $ext_msg .= "Verified Password does not match, please re-enter,<BR>";
}

if(!($DATA{'email'}=~ /.*\@.*\..*/)){ 
   $ext_msg .="Invalid or Missing E-mail, ";
   $no_error=0;
}

if(!($DATA{'linkurl'}=~ /.*tp:\/\/.*\..*/)){
     $ext_msg .="Invalid or Missing Link URL, ";
     $no_error=0;
}

if($CFG{'use_upload'}==0){
if($DATA{'bannerurl'}=~ /.*tp:\/\/.*\..*/){ 
    $url="$DATA{'bannerurl'}"; 
    $ext=substr($url,rindex($url,".")+1);
    if(!(($ext eq 'gif')||($ext eq 'GIF')||($ext eq 'jpg')||($ext eq 'JPG'))){ 
     $no_error=0; 
    $ext_msg .= "Invalid Banner Image URL (must end with .jpg,.JPG,.gif or .GIF)<BR>";
     }
$ban=0;
 }else{
   $ext_msg .="Invalid or Missing Banner Image URL, ";
    $no_error=0;
$ban=1;
}
}else{
 $DATA{'bannerurl'}="N/A";
}

if(!($DATA{'pageurl'}=~ /.*tp:\/\/.*\..*/)){
 $DATA{'pageurl'}="$DATA{'linkurl'}";
}

if(!($DATA{'sitetype'})){
 $site="N/A";
 $no_error=0;
 $ext_msg .="No Site Category Selected,";
}else{
 $site="$DATA{'sitetype'}";
}

$blks=@blocks;
if($blks == 0){
 push(@blocks,"NONE");
}


if(($DATA{'create'})||($no_error==1)){
 $dt="$data";
  print "Location: $CFG{'cgi_bin_path'}/submitb.cgi?$dt\n\n";
  &end;
}

&bad_boy;

print "Content-type: text/html\n\n";
&send_form;
&end;

################
sub send_error {
 print "Content-type: text/plain\n\n";
 print "Could not create $dbp/$acct_num\n";
 print "Error; $!\n";
&end;
}
##############
sub send_form{

open(SPAGE,"<$CFG{'form_dir'}/submit.html") or die "$!";
flock(SPAGE,1);
seek(SPAGE,0,0);

while($pline=<SPAGE>){
$pline=~  s/NAME=\"name\" value/NAME=\"name\" value=\"$DATA{'name'}\"/g;
$pline=~  s/NAME=\"email\" value/NAME=\"email\" value=\"$DATA{'email'}\"/g;
$pline=~  s/NAME=\"linkurl\" value/NAME=\"linkurl\" value=\"$DATA{'linkurl'}\"/g;
$pline=~  s/NAME=\"pageurl\" value/NAME=\"pageurl\" value=\"$DATA{'pageurl'}\"/g;
$pline=~  s/NAME=\"bannerurl\" value/NAME=\"bannerurl\" value=\"$DATA{'bannerurl'}\"/g;
$pline=~  s/NAME=\"password\" value/NAME=\"password\" value=\"$DATA{'password'}\"/g;
$pline=~  s/NAME=\"verify\" value/NAME=\"verify\" value=\"$DATA{'verify'}\"/g;

if($no_error==0){
$ermtab=qq~
<center><table bgcolor="$CFG{'headers'}" border=1 width=600>
<tr>
<td align=middle><font color="$CFG{'header_text'}">$ext_msg</font></td>
</tr>
</table>
</center>
<BR>
~;
$pline=~ s/<FORM/$ermtab<FORM/g;
$pline=~ s/<form/$ermtab<FORM/g;
}

$pline=~ s/<input checked/<input /g;

if($DATA{'account'} eq 'swap'){
 $pline=~ s/value=\"swap\"/value=\"swap\" checked/g;
}
if($DATA{'account'} eq 'paid'){
 $pline=~ s/value=\"paid\"/value=\"paid\" checked/g;
}
if($DATA{'account'} eq 'click'){
 $pline=~ s/value=\"click\"/value=\"click\" checked/g;
}

foreach $sty(@slist){
 $str="value=\"$sty\"";
  if($DATA{'style'} eq $sty){
   $pline=~ s/$str/$str checked/g;
  }
}

###########
# CATEGORY
@CATS=();
if($CFG{'use_targeting'}==1){
$htmlcode=qq~<SELECT NAME="sitetype" SIZE=1>~;

$site=~ s/(\n|\r)//g; 
if($firstload==1){
 $htmlcode .=qq~<OPTION SELECTED VALUE="">(Please Select Category)~;
}else{
 $htmlcode .=qq~<OPTION VALUE="">(Please Select Category)~;
}
 open(LST,"bm260cats.txt");
 flock(LST,1); seek(LST,0,0);
 while($line=<LST>){
  $line=~ s/(\n|\r)//g;
  push(@CATS,"$line");
 }
 flock(LST,8);
 close(LST);
 foreach(@CATS){
  ($line,$desc)=split(/\=/,$_);
  if("$line" eq "$site"){
   $htmlcode .=qq~<OPTION SELECTED value="$line">$desc\n~;
  }else{
   $htmlcode .=qq~<OPTION value="$line">$desc\n~;
  }
 }

$htmlcode .="</SELECT>\n";
}else{
$htmlcode="<input type=hidden name=sitetype value=\"N/A\">\n";
}

$pline=~ s/\{SITETYPE\}/$htmlcode/g;

############
# TARGETS

if($CFG{'use_targeting'}==1){
$htmlcode="<SELECT MULTIPLE NAME=\"targets\" SIZE=10>\n";

if(($first_load==1)||($targets[0] eq 'ALL')){
$htmlcode .= "<OPTION SELECTED VALUE=\"ALL\">ALL\n";
}else{
$htmlcode .= "<OPTION VALUE=\"ALL\">ALL\n";
}
 foreach(@CATS){
 ($line,$desc)=split(/\=/,$_);
  $line=~ s/(\n|\r)//g;
  $in_list=0;
    foreach $targ(@targets){
      $targ=~ s/(\n|\r)//g;
        if("$line" eq "$targ"){
          $in_list=1;
        }
    }
  if($in_list==1){
   $htmlcode .= qq~<OPTION SELECTED value="$line">$desc\n~;
  }else{
   $htmlcode .= qq~<OPTION value="$line">$desc\n~;
  }
 }


$htmlcode .= "</SELECT><BR><BR>\n";

}else{
$htmlcode = "<input type=hidden name=targets value=\"ALL\">\n";
}

$pline=~ s/\{TARGETS\}/$htmlcode/g;

###########
# BLOCKS

if($CFG{'use_targeting'}==1){
$htmlcode ="<SELECT MULTIPLE NAME=\"blocks\" SIZE=10>\n";

if(($first_load==1)||($blocks[0] eq 'NONE')){
$htmlcode .= "<OPTION SELECTED VALUE=\"NONE\">NONE\n";
}else{
$htmlcode .= "<OPTION VALUE=\"NONE\">NONE\n";
}
 foreach(@CATS){
  ($line,$desc)=split(/\=/,$_);
  $line=~ s/(\n|\r)//g;
  $in_list=0;
    foreach $block(@blocks){
      $block=~ s/(\n|\r)//g;
        if(("$line" eq "$block")&&($block ne 'NONE')){
          $in_list=1;
        }
    }
  if($in_list==1){
    $htmlcode .= qq~<OPTION SELECTED value="$line">$desc\n~;
  }else{
    $htmlcode .= qq~<OPTION value="$line">$desc\n~;
  }
 }
 $htmlcode .= "</SELECT><BR>";
}else{
$htmlcode = "<input type=hidden name=blocks value=\"NONE\">";
}

$pline=~ s/\{BLOCKS\}/$htmlcode/g;

if(($no_error==1)&&($first_load==0)){
$pline=~ s/<\/form>/<input type=hidden name=\"create\" value=\"create\"><\/form>/g;
}
print $pline;
}
flock(SPAGE,8);
close(SPAGE);
&end;
}

####################
sub bad_boy{
$bad_boy=0;
if(!(-e "badboys.dat")){
 open(NEW,">badboys.dat")||&send_error;
 print NEW "noone\@nowhere.com";
 close(NEW);
}
open(BB,"<badboys.dat")||&send_error;
while($boy=<BB>){
 push(@badboys,$boy);
}
close(BB);
$his_addr="$ENV{'REMOTE_HOST'}";
$her_addr="$ENV{'REMOTE_ADDR'}";

if($DATA{'email'} ne ''){
 $that_guy="$DATA{'email'}";
}else{
 $that_guy='nobody@domain.com';
}
if($DATA{'linkurl'} ne ''){
  $ano_guy="$DATA{'linkurl'}";
}else{
 $ano_guy='http://www.nowhere.com';
}
if($DATA{'name'} ne ''){
 $his_name="$DATA{'name'}";
}else{
 $his_name="John Doe";
}

foreach $guy(@badboys){
$guy=~ s/(\n|\r)//g;
 if(($his_addr eq $guy)||
    ($her_addr eq $guy)||
    ($his_name eq $guy)||
    ($that_guy eq $guy)||
    ($ano_guy eq $guy)){
 $bad_guy="$guy";
  $bad_boy=1;
  }
}
$items="$his_addr $her_addr $his_name $that_guy $ano_guy matches a bad item in our lockout list ($bad_guy)";
$items=~ s/ /+/g;
if($bad_boy==1){
 print "Location: $CFG{'cgi_bin_path'}/sorry.cgi?$items\n\n";
&end;
}
}
### EOS