2 /************************************************************************
\r
3 * MXChange v0.2.1 Start: 11/14/2003 *
\r
4 * =============== Last change: 11/25/2004 *
\r
6 * -------------------------------------------------------------------- *
\r
7 * File : mailid.php *
\r
8 * -------------------------------------------------------------------- *
\r
9 * Short description : Confirmation file for emails *
\r
10 * -------------------------------------------------------------------- *
\r
11 * Kurzbeschreibung : Bestaetigung von Mails *
\r
12 * -------------------------------------------------------------------- *
\r
14 * -------------------------------------------------------------------- *
\r
15 * Copyright (c) 2003 - 2008 by Roland Haeder *
\r
16 * For more information visit: http://www.mxchange.org *
\r
18 * This program is free software; you can redistribute it and/or modify *
\r
19 * it under the terms of the GNU General Public License as published by *
\r
20 * the Free Software Foundation; either version 2 of the License, or *
\r
21 * (at your option) any later version. *
\r
23 * This program is distributed in the hope that it will be useful, *
\r
24 * but WITHOUT ANY WARRANTY; without even the implied warranty of *
\r
25 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
\r
26 * GNU General Public License for more details. *
\r
28 * You should have received a copy of the GNU General Public License *
\r
29 * along with this program; if not, write to the Free Software *
\r
30 * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, *
\r
31 * MA 02110-1301 USA *
\r
32 ************************************************************************/
\r
34 // Load security stuff here (Oh, I hope this is not unsecure? Am I paranoia??? ;-) )
\r
35 require_once("inc/libs/security_functions.php");
\r
37 // Init "action" and "what"
\r
38 global $what, $action;
\r
39 $GLOBALS['what'] = ""; $GLOBALS['action'] = "";
\r
40 if (!empty($_GET['action'])) $GLOBALS['action'] = secureString($_GET['action']);
\r
41 if (!empty($_GET['what'])) $GLOBALS['what'] = secureString($_GET['what']);
\r
43 // Tell everyone we are in this module
\r
44 $GLOBALS['module'] = "mailid"; $CSS = -1;
\r
46 // Load the required file(s)
\r
47 require ("inc/config.php");
\r
49 if (defined('mxchange_installed') && (mxchange_installed))
\r
51 // Is the extension active
\r
52 if (!EXT_IS_ACTIVE("mailid", true)) {
\r
53 // Is not activated/installed yet!
\r
54 ADD_FATAL(sprintf(EXTENSION_PROBLEM_NOT_INSTALLED, "register"));
\r
58 require_once(PATH."inc/header.php");
\r
61 $url_uid = "0"; $url_bid = "0"; $url_mid = "0";
\r
62 if (!empty($_GET['uid'])) $url_uid = bigintval($_GET['uid']);
\r
63 if (!empty($_GET['mailid'])) $url_mid = bigintval($_GET['mailid']);
\r
64 if (!empty($_GET['bonusid'])) $url_bid = bigintval($_GET['bonusid']);
\r
66 // 01 1 12 3 32 21 1 2 2 10
\r
67 if (($url_uid) > 0 && (($url_mid > 0) || ($url_bid > 0)) && (count($FATAL) == 0))
\r
69 // Maybe he wants to confirm an email?
\r
73 $result = SQL_QUERY_ESC("SELECT link_type FROM "._MYSQL_PREFIX."_user_links WHERE stats_id=%d AND userid=%d LIMIT 1",
\r
74 array($url_mid, $url_uid), __FILE__, __LINE__);
\r
75 $TYPE = "mailid"; $DATA = $url_mid;
\r
77 elseif ($url_bid > 0)
\r
80 $result = SQL_QUERY_ESC("SELECT link_type FROM "._MYSQL_PREFIX."_user_links WHERE bonus_id=%d AND userid=%d LIMIT 1",
\r
81 array($url_bid, $url_uid), __FILE__, __LINE__);
\r
82 $TYPE = "bonusid"; $DATA = $url_bid;
\r
86 // Problem: No ID entered
\r
87 LOAD_URL("index.php");
\r
89 if (SQL_NUMROWS($result) == 1)
\r
91 list($ltype) = SQL_FETCHROW($result);
\r
92 SQL_FREERESULT($result);
\r
96 // Is the stats ID valid?
\r
97 $result = SQL_QUERY_ESC("SELECT pool_id, url FROM "._MYSQL_PREFIX."_user_stats WHERE id=%d LIMIT 1",
\r
98 array($url_mid), __FILE__, __LINE__);
\r
103 $result = SQL_QUERY_ESC("SELECT id, url FROM "._MYSQL_PREFIX."_bonus WHERE id=%d LIMIT 1",
\r
104 array($url_bid), __FILE__, __LINE__);
\r
108 if (SQL_NUMROWS($result) == 1)
\r
111 list($pool, $URL) = SQL_FETCHROW($result);
\r
112 SQL_FREERESULT($result);
\r
114 // Is the user's ID unlocked?
\r
115 $result = SQL_QUERY_ESC("SELECT status, sex, surname, family FROM "._MYSQL_PREFIX."_user_data WHERE userid=%d LIMIT 1",
\r
116 array($url_uid), __FILE__, __LINE__);
\r
117 if (SQL_NUMROWS($result) == 1)
\r
119 list($status, $sex, $sname, $fname) = SQL_FETCHROW($result);
\r
120 SQL_FREERESULT($result);
\r
121 if ($status == "CONFIRMED")
\r
123 // User has confirmed his account so we can procede...
\r
127 $result = SQL_QUERY_ESC("SELECT payment_id FROM "._MYSQL_PREFIX."_user_stats WHERE pool_id=%d LIMIT 1",
\r
128 array(bigintval($pool)), __FILE__, __LINE__);
\r
129 if (SQL_NUMROWS($result) == 1)
\r
131 list($pay) = SQL_FETCHROW($result);
\r
132 $time = GET_PAY_POINTS($pay, "time");
\r
133 $payment = GET_PAY_POINTS($pay, "payment");
\r
138 SQL_FREERESULT($result);
\r
142 $result = SQL_QUERY_ESC("SELECT points, time FROM "._MYSQL_PREFIX."_bonus WHERE id=%d LIMIT 1",
\r
143 array($url_bid), __FILE__, __LINE__);
\r
144 if (SQL_NUMROWS($result) == 1)
\r
146 list($points, $time) = SQL_FETCHROW($result);
\r
147 $payment = "0.00000";
\r
152 SQL_FREERESULT($result);
\r
158 // If time is zero seconds we have a sponsor mail. 1 Second shall be set to avoid problems
\r
159 if (($time == "0") && ($payment > 0)) { $URL = URL; $time = "1"; }
\r
160 if (($time > 0) && (($payment > 0) || ($points > 0)))
\r
162 // He can confirm this mail!
\r
163 // Export data into constants for the template
\r
164 define('_UID_VALUE' , $url_uid);
\r
165 define('_TYPE_VALUE', $TYPE);
\r
166 define('_DATA_VALUE', $DATA);
\r
167 define('_URL_VALUE' , DEREFERER($URL));
\r
170 LOAD_TEMPLATE("mailid_frames");
\r
174 $msg = CODE_DATA_INVALID;
\r
179 $msg = CODE_POSSIBLE_INVALID;
\r
184 $msg = CODE_ACCOUNT_LOCKED;
\r
189 SQL_FREERESULT($result);
\r
190 $msg = CODE_USER_404;
\r
195 SQL_FREERESULT($result);
\r
196 $msg = CODE_STATS_404;
\r
201 SQL_FREERESULT($result);
\r
202 $msg = CODE_ALREADY_CONFIRMED;
\r
208 $msg = CODE_ERROR_MAILID;
\r
212 LOAD_URL(URL."/modules.php?module=index&msg=".$msg);
\r
215 require_once(PATH."inc/footer.php");
\r
219 // You have to configure first!
\r
220 LOAD_URL("install.php");
\r
222 // Really all done here... ;-)
\r