<?
// *************************************************************** //
// *                                                             * //
// *  XBook (XHTML Guestbook) Version 0.6                        * //
// *  http://www.drpeterjones.com/xbook/                         * //
// *  Adapted from BIG SAM (bigsam.gezzed.net)                   * //
// *                                                             * //
// *  Copyleft 2002 by Greg Reimer xbook@drpeterjones.com        * //
// *  This source is under GNU/GPL General Public License        * //
// *                                                             * //
// *************************************************************** //

/*
	XBook (XHTML Guestbook) - PHP Guestbook
	Copyright (C) By Greg Reimer
	Originally written and distributed by Georges Zadrozynski & Rimi
	Lecoupi-Grainville as BIG SAM (bigsam.gezzed.net)
	This program is free software; you can redistribute it and/or
	modify it under the terms of the GNU General Public License
	as published by the Free Software Foundation; either version 2
	of the License, or (at your option) any later version.
	This program is distributed in the hope that it will be useful,
	but WITHOUT ANY WARRANTY; without even the implied warranty of
	MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
	GNU General Public License for more details.
	You should have received a copy of the GNU General Public License
	along with this program; if not, write to the Free Software
	Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA  02111-1307, USA.
*/

$version = "0.6";

############################################################
## Configuration Step 0 : Customization 
## Variables added by Johny Bergmann                    
############################################################

# directory where guestbook data is stored
if ( $SERVER_NAME=="wizardscastle" ) {
	$data_dir    = "d:/webdesign/www/httpd/html/data/gb/";
}
elseif ($SERVER_NAME=="www.wizardscastle.lu" or $SERVER_NAME=="wizardscastle.lu" ) {
	$data_dir    = "/home/virtual/wizard/home/httpd/html/data/gb/";
}
# and directory for resource files ( smileys, javascript...)
$resource_dir  = '/guestbook';

# url base for current guestbook : used for css file
$base_dir    = "/collie-breeder/jashika";

# kennel name = guestbook name, used for display and name of data file
$kennel_name = "Jashika";

# css file
$css_file    = $base_dir . "/jashika.css";

# page title
$page_title	 = "Jashika Rough Collies, UK";

############################################################
## Configuration Step 1 : Language and wording
############################################################
## Change the wording to whatever you want or 
## whatever language you want
############################################################

$langAdminError = "Administrator Error";
$langGuestbookName = $kennel_name . " Guestbook";
$langChPassword = "Change Password";
$langWelcome = "Welcome to the " . $kennel_name . " Guestbook.";
$langSignGuestbook = "Due to the massive amount of spam messages our Guestbook is temporarily closed.";
$langPostedBy = "Posted by";
$langWebsite = "Website";
$langOptional = "Optional";
$langEmail = "E-mail";
$langEntry = "Entry";
$langGbAdmin = "Guestbook Administration";
$langMessage = "Message";
$langName = "Name";
$langnewPassword = "New Password";
$langOpenError = "Error opening file! Be sure writing is allowed in this directory.";
$langPassChanged = "The XBook password has been changed.";
$langPassError = "The new passwords don't match!";
$langPassword = "Change XBook Password";
$langRetype = "Retype new Password";
$langSubmit = "Post Your Message!";
$langSubmitModif = "Submit Modifications";
$langSystemError = "System Error";
$langSystemMessage = "System Message";
$langWrongPassword = "Wrong Admin Password";
$langColor = "color";
$langSize = "size";
$langBig = "big";
$langBigger = "bigger";
$langBiggest = "biggest";
$langHelp = "Help / More Smilies";

############################################################
## Configuration Step 2 : Carbon Copy Email
############################################################
## You can receive notifications each time somebody
## posts a new message to the guestbook. This feature
## is off by default but can be activated by customizing
## the variables $carbonCopy and $mailRecipient. Set
## $carbonCopy to 1 instead of 0, and then set $mailRecipient
## to your email address. New posts should then be echoed
## to your email address.
############################################################

$carbonCopy = 0;
$mailRecipient = "<yourname>@<yoursite>.com";
$mailSubject = "New Guestbook Entry";

############################################################
## Configuration Step 3 : Customize the HTML Header
############################################################
## You'll obviously want to make the guestbook look like
## part of your site, and that means customizing the HTML
## code for the header and footer. By header I mean all
## the HTml from the DOCTYPE and starting <html> tag to
## the point just before the guestbook content begins. By
## footer I mean all the HTML from the point just after
## the guestbook content ends to the closing </html> tag.
## Place your custom code between the appropriate comments
## below.
############################################################

function displayHeader() {
global $version,$css_file, $page_title, $resource_dir;
header ("Expires: Sat, 01 Jan 2000 00:00:00 GMT");
echo '<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">';
echo '<html xmlns="http://www.w3.org/1999/xhtml">';
echo '<head>
			<!-- XBook v. $version *XHTML Guestbook* http://www.drpeterjones.com/xbook/ -->
			<!-- Adapted from BIG SAM, http://bigsam.gezzed.net/ -->
			<script src="';
echo  $resource_dir . '/files/scripts/guestbook.js" type="text/javascript"></script>';
echo 	"<title>$page_title</title>";
include ("../inc/head.html");
echo '</head>';
echo '<body>';
include "../inc/top.html";

}

############################################################
## Configuration Step 4 : Customize the HTML Footer
############################################################
## Place your custom code between the appropriate comments
## below.
############################################################
	
function displayFooter() {
echo '<h2>Back to the <a href="../index.html">homepage</a></h2>';
include "../inc/bottom.html";
echo '</body>';
echo '</html>';

}

############################################################
## Configuration Step 5 : Number of messages displayed
############################################################
## This variable allows you to set the number of messages
## that can be displayed at one time. 0 will cause it to
## display all messages on one page. (not recommended)
############################################################

$displayStep = 10;

############################################################
## END CONFIGURATION
############################################################

$allowAutoLink=1;

// Register_Globals improvements
// By Hubert Hanghofer (webmaster@BierIG.org)

// $absoluteScriptPath is the name of the current script (this file) and which is going to
// be modified by itself. This means that (theoretically) this file can be 
// placed anywhere on the system, with any fileName.

$absoluteScriptPath 	= $PATH_TRANSLATED; 	// $_SERVER["PATH_TRANSLATED"];
$relativeScriptPath 	= $PHP_SELF; 			// $_SERVER["PHP_SELF"];
$refererpage			= $HTTP_REFERER;		// $_SERVER["HTTP_REFERER"];

// when the php preprocessor is installed as an independant binary (as CGI).
if ($PATH_INFO!="")
	{
	$relativeScriptPath 	= $PATH_INFO;
	}

// to be used when $PHP_SELF contains virtual directory reference
// (for multi-users servers, eg : free.fr, online.fr ...)
if (($SERVER_NAME=="php.proxad.net")||(($SERVER_NAME=="php3.pro.proxad.net")))
	{
	$relativeScriptPath 	= substr($relativeScriptPath, strpos(substr($relativeScriptPath, 1), "/")+1);
	}

$theName=substr($absoluteScriptPath, 0, strrpos($absoluteScriptPath, "."));
$extension=substr($absoluteScriptPath, strrpos($absoluteScriptPath, ".")+1);

// The dataFile contains all the guestbook entries, and $adminpassword .
// $adminpassword is the password which will be asked for any administration
// actions. This password could be changed only if in admin mode (old 
// $adminpassword matches $admin).

// Defines the name of the database file where the entries are stored.
$dataFile = "${theName}.dat.${extension}";

// Multiple guestbooks, data files in one dir
// Johny Bergmann
$dataFile = $data_dir . strtolower($kennel_name) . '.' . ${extension};


//******************************************************************************
// function displayForm : Display the form which enables the client to type a
// message.

function displayForm()
	{
	global $relativeScriptPath;
	global $langName;
	global $langEmail;
	global $langWebsite;
	global $langOptional;
	global $langMessage;
	global $langSubmit;
	global $langSignGuestbook;
	global $langColor;
	global $langSize;
	global $langBig;
	global $langBigger;
	global $langBiggest;
	global $langHelp;
	global $resource_dir;
	
	// Writing HTML Code
	echo ("<form method=\"post\" action=\"$relativeScriptPath\" name=\"guestbook\" id=\"guestbook\">\n");
	echo ("<h1><a name=\"form\"></a>$langSignGuestbook</h1>\n");
	echo ("<div id=\"gbname\">\n");
	echo ("<span class=\"gblabel\"><label for=\"name\">$langName</label></span>\n");
	echo ("<input name=\"name\" size=\"20\" maxlength=\"50\" tabindex=\"1\" />\n");
	echo ("</div>\n");
	echo ("<div id=\"gbemail\">\n");
	echo ("<span class=\"gblabel\"><label for=\"email\">$langEmail</label></span>\n");
	echo ("<input name=\"email\" size=\"20\" maxlength=\"50\" tabindex=\"2\" />\n");
	echo ("</div>\n");
	echo ("<div id=\"gbwebsite\">\n");
	echo ("<span class=\"gblabel\"><label for=\"website\"><span class=\"gboptional\">($langOptional)</span>&nbsp;$langWebsite</label></span>\n");
	echo ("<input name=\"website\" size=\"40\" maxlength=\"80\" value=\"http://\" tabindex=\"3\" />\n");
	echo ("</div>\n");
	echo ("<div id=\"gbmessage\">\n");
	echo ("<span class=\"gblabel\"><label for=\"message\">$langMessage</label></span>\n");
	echo ("<div class=\"gbformatcontrols\">\n");
	echo ("<a href=\"javascript:addTag(' [emo-smiley] ')\"><img src=\"$resource_dir/files/smileys/smiley-smiley.gif\" alt=\"smiley\" /></a>\n");
	echo ("<a href=\"javascript:addTag(' [emo-grin] ')\"><img src=\"$resource_dir/files/smileys/smiley-grin.gif\" alt=\"grin\" /></a>\n");
	echo ("<a href=\"javascript:addTag(' [emo-rolleyes] ')\"><img src=\"$resource_dir/files/smileys/smiley-rolleyes.gif\" alt=\"rolleyes\" /></a>\n");
	echo ("<a href=\"javascript:addTag(' [emo-eek] ')\"><img src=\"$resource_dir/files/smileys/smiley-eek.gif\" alt=\"eek\" /></a>\n");
	echo ("<a href=\"javascript:addTag(' [emo-mad] ')\"><img src=\"$resource_dir/files/smileys/smiley-mad.gif\" alt=\"mad\" /></a>\n");
	echo ("<a href=\"javascript:addTag(' [emo-sad] ')\"><img src=\"$resource_dir/files/smileys/smiley-sad.gif\" alt=\"sad\" /></a>\n");
	echo ("<a href=\"javascript:addTag(' [emo-lol2] ')\"><img src=\"$resource_dir/files/smileys/smiley-lol2.gif\" alt=\"lol2\" /></a>\n");
	echo ("<a href=\"javascript:addTag(' [emo-looney] ')\"><img src=\"$resource_dir/files/smileys/smiley-looney.gif\" alt=\"looney\" /></a>\n");
	echo ("&nbsp;<a href=\"javascript:addTag('[b][/b]')\"><img src=\"$resource_dir/files/icons/icon-bold.gif\" alt=\"bold\" /></a>\n");
	echo ("<a href=\"javascript:addTag('[i][/i]')\"><img src=\"$resource_dir/files/icons/icon-italic.gif\" alt=\"italic\" /></a>\n");
	echo ("<a href=\"javascript:addTag('[u][/u]')\"><img src=\"$resource_dir/files/icons/icon-underline.gif\" alt=\"underline\" /></a>\n");
	echo ("&nbsp;<select onchange=\"addTag(this.options[this.options.selectedIndex].value)\">\n");
	echo ("<option value=\"\" selected=\"selected\">$langColor</option>\n");
	echo ("<option value=\" [red][/red] \" style=\"color:red;\">red</option>\n");
	echo ("<option value=\" [green][/green] \" style=\"color:green;\">green</option>\n");
	echo ("<option value=\" [blue][/blue] \" style=\"color:blue;\">blue</option>\n");
	echo ("<option value=\" [orange][/orange] \" style=\"color:orange;\">orange</option>\n");
	echo ("<option value=\" [purple][/purple] \" style=\"color:purple;\">purple</option>\n");
	echo ("<option value=\" [brown][/brown] \" style=\"color:brown;\">brown</option>\n");
	echo ("</select>\n");
	echo ("&nbsp;<select onchange=\"addTag(this.options[this.options.selectedIndex].value)\">\n");
	echo ("<option value=\"\" selected=\"selected\">$langSize</option>\n");
	echo ("<option value=\" [big][/big] \">$langBig</option>\n");
	echo ("<option value=\" [bigger][/bigger] \">$langBigger</option>\n");
	echo ("<option value=\" [biggest][/biggest] \">$langBiggest</option>\n");
	echo ("</select>\n");
	echo ("</div>\n");
	echo ("<textarea name=\"message\" cols=\"50\" rows=\"7\" tabindex=\"4\"></textarea>\n");
	echo ("</div>\n");
	echo ("<div id=\"gbsubmit\">\n");
	echo ("<input type=\"button\" value=\"$langHelp\" onclick=\"var helpWin = window.open('$resource_dir/files/help/help.html','helpWin','left=20,top=20,width=550,height=450,scrollbars,status,resizable')\" />\n");
	echo ("<input type=\"submit\" value=\"$langSubmit\" tabindex=\"5\" />\n");
	echo ("</div>\n");
	echo ("</form>\n");
	}

//******************************************************************************
// function displayMessage displays the $errorMessage error message.

function displayMessage($errorMessage,$msgType)
	{
	global $langAdminError;
	global $langSystemError;
	global $langSystemMessage;
	global $langGuestbookName;

	displayHeader();
	echo ("\n\n<div class=\"gberror\">\n");
	echo ("<h2>$langGuestbookName</h2>\n");
	echo ("<div class=\"gberrortype\" style=\"font-style:italic;\">\n");
	if ($msgType=="1") // Admin Message
		echo ($langAdminError);
	if ($msgType=="2") // System Error
		echo ($langSystemError);
	if ($msgType=="3") // System Message
		echo ($langSystemMessage);
	echo ("\n</div>\n");
	echo ("<div class=\"gberrormessage\" style=\"margin-top:1em;\">\n");
	echo ($errorMessage);
	echo ("\n</div>\n");
	echo ("</div>\n\n");
	displayFooter();
	exit;
	}

//******************************************************************************

// Filters all user-submitted text prior to storage.
function standardizeStoredText($str)
	{
	$str = str_replace("\\'", "'", $str);
	$str = str_replace("\\\"", "\"", $str);
	$str = htmlspecialchars($str);
	$str = str_replace("\n", "<br />", $str);
	$str = str_replace("$", "&#036;", $str);
	return $str;
	}

// Filters all user-submitted text prior to display, after storage.
function standardizeDisplayedText($str)
	{
	return $str;
	}

// Filters all user-submitted text prior to display on admin page, after storage.
function standardizeAdminDisplayedText($str)
	{
	return $str;
	}

// Filters message body prior to display, after storage.
function standardizeMessageText($str)
	{
	global $resource_dir;
	$str = preg_replace('/\[emo-(\w*)\]/','<img src="'.$resource_dir.'/files/smileys/smiley-\1.gif" alt="smiley" />',$str);
	$str = preg_replace('/\[(\/?[biu])\]/','<\1>',$str);
	$str = preg_replace('/\[((red)|(green)|(blue)|(orange)|(purple)|(brown))\]/','<span style="color:\1;">',$str);
	$str = preg_replace('/\[\/((red)|(green)|(blue)|(orange)|(purple)|(brown))\]/','</span>',$str);
	$str = preg_replace('/\[big\]/','<span style="font-size:1.5em;">',$str);
	$str = preg_replace('/\[\/big\]/','</span>',$str);
	$str = preg_replace('/\[bigger\]/','<span style="font-size:2.3em;">',$str);
	$str = preg_replace('/\[\/bigger\]/','</span>',$str);
	$str = preg_replace('/\[biggest\]/','<span style="font-size:4em;">',$str);
	$str = preg_replace('/\[\/biggest\]/','</span>',$str);
	$str = preg_replace('/([A-Zwm_]{37})(\S)/','\1 \2',$str); // Try to prevent repetitive characters from breaking the layout
	$str = preg_replace('/(\S{70})(\S)/','\1 \2',$str); // Try to prevent repetitive characters from breaking the layout
	$str = preg_replace('/(fuck|shit|asswipe|asshole|ass hole)/i','[bleep]',$str); // Try to filter some cuss words
	return $str;
	}

// Filters email address prior to display, after storage.
function standardizeEmailText($str)
	{
	$str = mungEmail($str);
	return $str;
	}

// Scrambles an email address.
function mungEmail($str)
	{
	$str = preg_replace('/\s/','',$str);
	preg_match('/([^\.@\n]+(\.[^\.@\n]+)*)@([^\.@\n]+(\.[^\.@\n]+)+)/e',$str,$matches);
	$len = strlen($matches[1]);
	$result = $matches[1] . $matches[3] . "." . $len;
	return $result;
	}

// Filters user's website before display, after storage.
function standardizeWebsiteText($str)
	{
	if (preg_match('/^\w*script:/i',$str)) return ''; // watch out for XSS!
	if (!preg_match('/^(\w+:\/\/)?(\w+\.\w+(\.\w+)*)(\/.*)?/',$str,$matches)) return ''; // validate and break down the url
	if (!$matches[1]) $matches[1] = 'http://'; // add if missing
	$str = $matches[1] . $matches[2] . $matches[4]; // reassemble and return
	return $str;
	}

// Turns URLs into hyperlinks.
function seekHttp($rawText)
	{	
	$pattern =
	array("/http:\/\/((\w|\.|\?|\%|=|\/|-|~|#)*)/"
	     ,"/https:\/\/((\w|\.|\?|\%|=|\/|-|~|#)*)/"
	     ,"/(\w+(\.\w+)*@\w+(\.\w+)+)/"
		 );
	$replacement =
	array("<a href=\"http://\\1\" target=\"_blank\">http://\\1</a>"
	     ,"<a href=\"https://\\1\" target=\"_blank\">https://\\1</a>"
	     ,"<a href=\"mailto:\\1\">\\1</a>"
		 );
	$hyperLinkedText=preg_replace($pattern, $replacement, $rawText);	
	return $hyperLinkedText;
	}


//******************************************************************************
// function Xfopen : opens a file $fileName and locks it
function Xfopen($fileName, $openMode, $sharing)
	{
	global $langOpenError;
	$fp=@fopen($fileName, $openMode);
	if (!$fp) { displayMessage($langOpenError,2); }
	if ($sharing==true) { $op=1; }
	else { $op=2; }
	if (!@flock($fp,$op)) { @flock($fp,3); displayMessage("<i>flock</i> timeout",2); }
	return $fp;
	}

//******************************************************************************
// function Xfclose : unlocks the file $fp and closes it
function Xfclose($fp)
	{
	@flock($fp,3);
	@fclose($fp);
	}

//******************************************************************************
// function fullDisplay
function fullDisplay()
	{
	global $displayStep, $displayBegin, $maxDisplay ;
	global $relativeScriptPath;
	global $index;
	global $archive_name, $archive_mail, $archive_website, $archive_text, $archive_date;
	global $allowAutoLink;
	global $langSignGuestbook, $langWelcome, $langPostedBy;

	// Checks if $displayBegin is not too large (Thanks to Ahmet Sabri ALPER <salper@olympos.org>)
	if ($displayBegin>$maxDisplay)
		{
		$displayBegin=$maxDisplay-$displayStep+1;
		}
			
	displayHeader();
	#echo ($displayStep ."-". $displayBegin ."-". $maxDisplay);

	if ($index==0)
		{
		displayFooter();
		return;
		}

	echo ("<div id=\"guestbookHeader\">\n");
	echo ("<h2>$langWelcome</h2>\n");
	//no signing right now: echo ("<a href=\"#form\">$langSignGuestbook</a>\n");
	echo ("<h2>$langSignGuestbook</h2>\n");
	echo ("</div>\n");

	// Message arrays are displayed here :
		
	// Displaying all the entries.
		
	if ($displayStep==0)
		{
		$displayBegin=1;
		$displayStep=$index;
		}
		
	if ($displayBegin==1)
		{
		$startAt=$index % $displayStep;
		if ($startAt==0) $startAt=$displayStep;
		}
	else 
		{
		$startAt=$displayBegin+$displayStep-1;
		}
		
	for ($msgNumber=$startAt ; $msgNumber>=$displayBegin ; $msgNumber--)
		{
		echo ("<div class=\"gbentry\">\n");
		echo ("<div class=\"gbauthor\">\n");
		if ($archive_mail[$msgNumber])
			{
			echo ("<span class=\"gbmessagenumber\">#$msgNumber $langPostedBy</span>\n");
			echo ("<a title=\"Email Me!\" href=\"mailto:".standardizeDisplayedText(standardizeEmailText($archive_mail[$msgNumber]))."\">");
			echo (standardizeDisplayedText($archive_name[$msgNumber]));
			echo ("</a>\n");
			}
		else 
			{
			echo ("<span class=\"gbmessagenumber\">#$msgNumber $langPostedBy</span>\n");
			echo (standardizeDisplayedText($archive_name[$msgNumber]));
			}
		if (standardizeWebsiteText($archive_website[$msgNumber]))
			{
			echo (' -- ');
			echo ('<a href="'.standardizeDisplayedText(standardizeWebsiteText($archive_website[$msgNumber]))."\" target=\"_blank\" class=\"gbwebsite\">");
			echo (standardizeDisplayedText(standardizeWebsiteText($archive_website[$msgNumber])));
			echo ("</a>\n");
			}
		echo ("</div>\n");
		echo ("<div class=\"gbdate\">\n");
		echo ("$archive_date[$msgNumber]\n");
		echo ("</div>\n");
		echo ("<p class=\"gbmessage\">\n");
		if ($allowAutoLink==1) echo (seekHttp(standardizeDisplayedText(standardizeMessageText($archive_text[$msgNumber]))));
		else echo (standardizeDisplayedText(standardizeMessageText($archive_text[$msgNumber])));
		echo ("\n</p>\n");
		echo ("</div>\n");
		}
		
	echo ("\n<div class=\"gbpager\">\n");
	for($i=1;$i<=$index;$i=$nextEnd+1)
		{
		$nextBegin = $i;
		if ($i==1)
			{
			$nextEnd=$index % $displayStep;
			if ($nextEnd==0) $nextEnd=$displayStep;
			}
		else $nextEnd   = $i+$displayStep-1;
		if ($displayBegin==$nextBegin && $nextEnd!=$nextBegin) echo ("[$nextBegin-$nextEnd]\n");
		else if ($displayBegin==$nextBegin && $nextEnd==$nextBegin) echo ("[$nextBegin]\n");
		else if ($nextEnd==$nextBegin) echo ("<a href=\"$relativeScriptPath?displayBegin=$nextBegin\">[$nextBegin]</a>\n");
		else echo ("<a href=\"$relativeScriptPath?displayBegin=$nextBegin\">[$nextBegin-$nextEnd]</a>\n");	
		}
	echo ("</div>\n");

	// Displays the entry form to enable the client to type a message.
	// displayForm();
		
	displayFooter();
	}

//******************************************************************************

function readData($resetBegin)
{
	global $adminpassword;
	global $index;
	global $dataFile;
	global $archive_name, $archive_mail, $archive_website, $archive_text, $archive_date;
	global $displayBegin, $displayStep, $maxDisplay;

	// Includes automatically filled data arrays :
	$index = 0;
	$fout=Xfopen($dataFile, "r", true);
	include($dataFile);
	Xfclose($fout);
	// From now, $index will indicate the number of data entries.
	
	// Beginning of the data to be displayed, default = 1
     	if (!isset($displayBegin)) $displayBegin="";
	if ($displayBegin=="" || $resetBegin==1) 
		{
		$displayBegin = $index-$displayStep+1;
		if ($displayBegin<=0) $displayBegin=1;
		}
		
	// Sets the maximum that $displayBegin can reach
	$maxDisplay = $index;
}
//******************************************************************************




// If the Datafile does not exist, creates it.
if (!file_exists(${dataFile})) 
	{
	$fout = Xfopen($dataFile, "w+", false);
	fputs($fout, "<?\n");
	fputs($fout, "\$adminpassword = \"xbook\";\n");
	fputs($fout, "\$archive_name[++\$index] = \"webmaster\";\n");
	fputs($fout, "\$archive_mail[  \$index] = \"\";\n");
	fputs($fout, "\$archive_website[  \$index] = \"\";\n");
	fputs($fout, "\$archive_date[  \$index] = \"" . date( "dS F Y - h:i:s A" ) . "\";\n");
	fputs($fout, "\$archive_text[  \$index] = \"Welcome to my guestbook! Please sign my guestbook!\";\n");
	fputs($fout, "\$archive_name[++\$index] = \"The XBook Team\";\n");
	fputs($fout, "\$archive_mail[  \$index] = \"xbook@drpeterjones.com\";\n");
	fputs($fout, "\$archive_website[  \$index] = \"http://www.drpeterjones.com/xbook/\";\n");
	fputs($fout, "\$archive_date[  \$index] = \"" . date( "dS F Y - h:i:s A" ) . "\";\n");
	fputs($fout, "\$archive_text[  \$index] = \"Congradulations! If you're seeing this, then you have successfully installed XBook version $version; a free website guestbook written in PHP that utilizes standards-compliant XHTML and CSS.<br /><br />This is the auto-generated default post that gets created the first time somebody looks at the guestbook through a browser. You can <a href='adminlogin.php'>log in as administrator</a> and change the password and/or edit/delete this guestbook's messages (including this post), <a href='files/documentation/documentation.html'>view the online documentation</a>, or <a href='files/license/gpl.html'>view the license for this software</a>.<br /><br /><strong>Please be sure to <a href='adminlogin.php'>log in</a> and change the administrator password!</strong><br /><br />-The XBook Team [emo-smiley]\";\n");
	fputs($fout, "\n?>");
	Xfclose ($fout);
	}

// $admin could be set via Admin-Form by POST or via URL by GET
$admin=$HTTP_POST_VARS["admin"];
if (!isset($admin))
        $admin=$HTTP_GET_VARS["admin"];
else    // assign POST-variables from Admin-Form
        {
        $newPassword1=$HTTP_POST_VARS["newPassword1"];
        $newPassword2=$HTTP_POST_VARS["newPassword2"];
        $command=$HTTP_POST_VARS["command"];
        $index=$HTTP_POST_VARS["index"];
        }

if (!isset($admin))
	{
        // assing variables from Guestbook-From
        $name=$HTTP_POST_VARS["name"];
        $email=$HTTP_POST_VARS["email"];
		$website=$HTTP_POST_VARS["website"]; // GREG REIMER -- adding field for posting one's website
        $message=$HTTP_POST_VARS["message"];
        if (!$displayBegin=$HTTP_POST_VARS["displayBegin"]) $displayBegin=$HTTP_GET_VARS["displayBegin"];
	if (!isset($name)) { $name=""; $message=""; }
	if ($name=="" || $message=="")
		{

		/****************************************************************************************
		* Use Case no 1-A
		* 
		* This case is encountered when a client simply wants to read the
		* guestbook. (Every variable is empty);
		************************************************************************************/
		readData(0);
		fullDisplay();
		exit;
		}
	else 
		{
		
		/********************************************************************************
		* Use Case no 1-B
		* 
		* Case is encountered when a client has just filled in the appropriate fields
		* (name, mail, message).
		*	$name    = "Some Name"
		*	$email   = "Some@Email"
		*	$website   = "http://www.whatever.com"
		*	$message = "Some Message"
		*		Simply add message in the top of all previous messages.
		********************************************************************************/

		$position = filesize($dataFile) - 3;
		
		$fout = Xfopen($dataFile, "r+", false);
		fseek($fout,$position);
		$insert_msgdate = date( "dS F Y - h:i:s A" );
		$name=standardizeStoredText($name);
		$email=standardizeStoredText($email);
		$website=standardizeStoredText($website);
		$message=standardizeStoredText($message);
		fputs ($fout,"\$archive_name[++\$index] = \"$name\";\n");
		fputs ($fout,"\$archive_mail[  \$index] = \"$email\";\n");
		fputs ($fout,"\$archive_website[  \$index] = \"$website\";\n");
		fputs ($fout,"\$archive_date[  \$index] = \"$insert_msgdate\";\n");
		fputs ($fout,"\$archive_text[  \$index] = \"$message\";\n");
		fputs ($fout,"\n?>");
		Xfclose($fout);
		
		// Sending a mail to $mailRecipient if $carbonCopy=1, with the subject $mailSubject.
		if ($carbonCopy==1)
			{
			$message = str_replace("<br />", "\n", $message);
			$mailBody = "From: $name <$email>\n$insert_msgdate\n\n$message";
			@mail($mailRecipient,$mailSubject,$mailBody,"From: $email\nReply-to: $name <$email>");
			}
		if (strpos($refererpage, "?")==false) $page=$refererpage;
		else $page=substr($refererpage, 0, strpos($refererpage, "?"));
		header("Location: $page?");
		exit;
		}
	}
else
	{
	readData(0);
	if ($admin==$adminpassword) 
		{
		if ($command=="") 
			{
	
			displayHeader();
			
			/************************************************************************
			* Use Case no 2-A
			* 
			* Admin mode (The administrator can modify password, fields, or remove
			* messages).
			*	$admin   = $adminpassword
			*		Shows a password modification form.
			*		Shows all messages and enables to modify/delete them.
			************************************************************************/
			
			echo("<h1>XBook</h1><h2>$langGbAdmin</h2>\n");
			
			// Display the form which enables the admin to change his password
			echo ("<form method=\"post\" action=\"$relativeScriptPath\" name=\"changepass\" id=\"gbchangepass\">\n");
			echo ("<h3>$langPassword.</h3>\n");
			echo ("<div id=\"gbnewPassword1\"><label for=\"newPassword1\">$langnewPassword</label> <input type=\"password\" name=\"newPassword1\" /></div>\n");
			echo ("<div id=\"gbnewPassword2\"><label for=\"newPassword2\">$langRetype</label> <input type=\"password\" name=\"newPassword2\" /></div>\n");
			echo ("<div id=\"gbchangepasssubmit\">\n");
			echo ("<input type=\"hidden\" name=\"admin\" value=\"$admin\" />\n");
			echo ("<input type=\"hidden\" name=\"command\" value=\"passwd\" />\n");
			echo ("<input type=\"submit\" value=\"$langChPassword\" />\n");
			echo ("</div>\n");
			echo ("</form>\n");
			
			// Message arrays are displayed here in forms in order to modify them :
			
			echo ("<form method=\"post\" action=\"$relativeScriptPath\">\n");
			
			for ($i=1 ; $i<=$index ; $i++)
				{
				$msgNumber = $index - $i + 1;
				$str = str_replace("<br />", "\n", $archive_text[$msgNumber]);
				echo ("<table class=\"gbeditableentry\">\n");
				echo ("<tr>\n");
				echo ("<th colspan=\"5\">$langEntry #$msgNumber</th>\n");
				echo ("</tr>\n");
				echo ("<tr>\n");
		        echo ("<td class=\"gbkeep\"><input type=\"checkbox\" name=\"keep${msgNumber}\" checked=\"checked\" />&nbsp;</td>\n"); 
				echo ("<td class=\"gbname\"><input type=\"text\" size=\"13\" name=\"name${msgNumber}\" value=\"".standardizeAdminDisplayedText($archive_name[$msgNumber])."\" /></td>\n");
				echo ("<td class=\"gbemail\"><input type=\"text\" size=\"13\" name=\"email${msgNumber}\" value=\"".standardizeAdminDisplayedText($archive_mail[$msgNumber])."\" /></td>\n");
				echo ("<td class=\"gbwebsite\"><input type=\"text\" size=\"13\" name=\"website${msgNumber}\" value=\"".standardizeAdminDisplayedText($archive_website[$msgNumber])."\" /></td>\n");
				echo ("<td class=\"gbdate\"><input type=\"text\" size=\"13\" name=\"date${msgNumber}\" value=\"".standardizeAdminDisplayedText($archive_date[$msgNumber])."\" /></td>\n");
				echo ("<tr>\n");
				echo ("<td colspan=\"5\" class=\"gbmessage\">\n");
				echo ("<textarea cols=\"40\" rows=\"2\" name=\"message${msgNumber}\">".standardizeAdminDisplayedText($str)."</textarea>\n");
				echo ("</td>\n");
				echo ("</tr>\n");
				echo ("</table>\n\n");
				}
			echo ("<input type=\"hidden\" name=\"admin\" value=\"$admin\" />\n");
			echo ("<input type=\"hidden\" name=\"index\" value=\"$index\" />\n");
			echo ("<input type=\"hidden\" name=\"command\" value=\"modify\" />\n");
			echo ("<div id=\"gbeditsubmit\"><input type=\"submit\" value=\"$langSubmitModif\" /></div>\n");
			echo ("</form>\n");
			displayFooter();
			exit;
			
			} 
		else if ($command=="passwd")
			{
			// Use Case no 2-B
			// Admin mode (The administrator is modifying his password.).
			//	$admin        = $adminpassword
			//	$newPassword1 = "New Password 1"
			//	$newPassword2 = "New Password 2"
			// 		Check if $newPassword1 matches $newPassword2
			// 		Set the $adminpassword line to :
			// 		$adminpassword = "$newPassword1" in the dataFile
			
			if($newPassword1!=$newPassword2)
				{
				// The passwords doesn't match
				displayMessage("$langPassError",1);
				}
			else
				{
				// Rewrites the whole Datafile with the new password, and all the entries.
				$fout = Xfopen($dataFile, "w", false);
				fputs ($fout,"<?\n");
				fputs ($fout,"\$adminpassword = \"$newPassword1\";\n");
				for ($i=1 ; $i<=$index ; ++$i)
					{
					fputs ($fout,"\$archive_name[++\$index] = \"${archive_name[$i]}\";\n");
					fputs ($fout,"\$archive_mail[  \$index] = \"${archive_mail[$i]}\";\n");
					fputs ($fout,"\$archive_website[  \$index] = \"${archive_website[$i]}\";\n");
					fputs ($fout,"\$archive_date[  \$index] = \"${archive_date[$i]}\";\n");
					fputs ($fout,"\$archive_text[  \$index] = \"${archive_text[$i]}\";\n");
					}
				fputs ($fout,"?>");
				Xfclose($fout);
				displayMessage("$langPassChanged",3);
				exit;
				}
			}
		else if ($command=="modify") 
			{

			/********************************************************************************
			* Use Case no 2-C								*
			*										*
			* Admin mode (The administrator is updating entries).				*
			*	$admin      = $adminpassword						*
			*	$nameXXX    = "Modified name (no XXX)"					*
			*	$emailXXX   = "Modified email (no XXX)"					*
			*	$messageXXX = "Modified message (no XXX)"				*
			*	$keep       = "on" or ""						*
			* 	Check if $admin matches $adminpassword.					*
			* 	Rewrites ALL the fields except when $keepXXX = ""			*
			*	Rewrites the whole Datafile with the new password, and all the entries.	*
			********************************************************************************/

			$fout = Xfopen($dataFile, "w", false);
			fputs ($fout,"<?\n");
			fputs ($fout,"\$adminpassword = \"$adminpassword\";\n");	
				for ($i=1 ; $i<=$index ; $i++)
				{
				// Get values from the form, and standardize them
				$variable=$HTTP_POST_VARS["name$i"];
				$name=standardizeStoredText("$variable");
				$variable=$HTTP_POST_VARS["email$i"];
				$email=standardizeStoredText("$variable");
				$variable=$HTTP_POST_VARS["website$i"];
				$website=standardizeStoredText("$variable");
				$variable=$HTTP_POST_VARS["date$i"];
				$insert_msgdate=standardizeStoredText("$variable");
				$variable=$HTTP_POST_VARS["message$i"];
				$message=standardizeStoredText("$variable");

				$variable=$HTTP_POST_VARS["keep$i"];
				if (${variable}!="")
					{
					fputs ($fout,"\$archive_name[++\$index] = \"$name\";\n");
					fputs ($fout,"\$archive_mail[  \$index] = \"$email\";\n");
					fputs ($fout,"\$archive_website[  \$index] = \"$website\";\n");
					fputs ($fout,"\$archive_date[  \$index] = \"$insert_msgdate\";\n");
					fputs ($fout,"\$archive_text[  \$index] = \"$message\";\n");
					}
				}	
			fputs ($fout,"?>");
			Xfclose($fout);
			
			if (strpos($refererpage, "?")==false) $page=$refererpage;
			else $page=substr($refererpage, 0, strpos($refererpage, "?"));
			header("Location: $page?");
			exit;
			}
		} 
	else 
		{
		
		/************************************************
		* Use Case no 2-Z
		* 
		* If $admin does NOT match $adminpassword.
		*	$admin   != $adminpassword 
		*	Error message : "Wrong Admin Password" 
		************************************************/

		displayMessage("$langWrongPassword",1);
		}
	}
?>