2 /************************************************************************
3 * MXChange v0.2.1 Start: 01/09/2005 *
4 * =============== Last change: 01/09/2005 *
6 * -------------------------------------------------------------------- *
8 * -------------------------------------------------------------------- *
9 * Short description : Beg link for members *
10 * -------------------------------------------------------------------- *
11 * Kurzbeschreibung : Bettel-Link fuer Mitglieder *
12 * -------------------------------------------------------------------- *
14 * -------------------------------------------------------------------- *
15 * Copyright (c) 2003 - 2008 by Roland Haeder *
16 * For more information visit: http://www.mxchange.org *
18 * This program is free software; you can redistribute it and/or modify *
19 * it under the terms of the GNU General Public License as published by *
20 * the Free Software Foundation; either version 2 of the License, or *
21 * (at your option) any later version. *
23 * This program is distributed in the hope that it will be useful, *
24 * but WITHOUT ANY WARRANTY; without even the implied warranty of *
25 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
26 * GNU General Public License for more details. *
28 * You should have received a copy of the GNU General Public License *
29 * along with this program; if not, write to the Free Software *
30 * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, *
32 ************************************************************************/
34 // Load security stuff here (Oh, I hope this is not unsecure? Am I paranoia??? ;-) )
35 require("inc/libs/security_functions.php");
37 // Init "action" and "what"
38 global $what, $action, $startTime;
39 $GLOBALS['startTime'] = microtime(true);
40 $GLOBALS['what'] = ""; $GLOBALS['action'] = "";
43 $GLOBALS['module'] = "beg";
44 $GLOBALS['refid'] = 0;
48 // Load the required file(s)
49 require("inc/config.php");
51 // Is the "beg" extension active?
52 if (!EXT_IS_ACTIVE("beg")) {
54 LOAD_URL("modules.php?module=index&msg=".constant('CODE_EXTENSION_PROBLEM')."&ext=beg");
57 // Is the script installed?
58 if (isBooleanConstantAndTrue('mxchange_installed')) {
60 if (!empty($_GET['uid'])) {
66 // Don't pay is the default...
69 // Validate if it is not a number
70 if ("".($_GET['uid'] + 0)."" !== "".$_GET['uid']."") {
71 if (EXT_IS_ACTIVE("nickname")) {
72 // Maybe we have found a nickname?
73 $result = SQL_QUERY_ESC("SELECT userid, beg_clicks, ref_payout, status, last_online FROM `{!_MYSQL_PREFIX!}_user_data` WHERE nickname='%s' LIMIT 1",
74 array($_GET['uid']), __FILE__, __LINE__);
76 // Nickname entered but nickname is not active
77 $msg = constant('CODE_EXTENSION_PROBLEM');
82 $result = SQL_QUERY_ESC("SELECT userid, beg_clicks, ref_payout, status, last_online FROM `{!_MYSQL_PREFIX!}_user_data` WHERE userid=%s LIMIT 1",
83 array(bigintval($_GET['uid'])), __FILE__, __LINE__);
86 // Check if locked in so don't pay points
89 // Check if account was found
90 if (SQL_NUMROWS($result) == 1) {
91 // Found an ID so we simply set it
92 list($uid, $clicks, $ref_payout, $status, $last) = SQL_FETCHROW($result);
95 if ($status == "CONFIRMED") {
97 $uid = bigintval($uid);
99 // Multiply configured values with 100000 and divide with 100000 so we can also handle small values
100 // If we need more number behind the decimal dot then we just need to increase all these three
101 // numbers matching to the numbers behind the decimal dot. Simple! ;-)
102 $points = mt_rand((getConfig('beg_points') * 100000), (getConfig('beg_points_max') * 100000)) / 100000;
104 // Set nickname / userid for the template(s
105 define('__BEG_UID' , SQL_ESCAPE($_GET['uid']));
106 define('__BEG_CLICKS', ($clicks + 1));
107 define('__BEG_BANNER', LOAD_TEMPLATE("beg_banner", true));
108 define('__BEG_POINTS', TRANSLATE_COMMA($points));
116 SQL_FREERESULT($result);
118 // User id valid and not webmaster's id?
119 if (($uid > 0) && (getConfig('beg_uid') != $uid)) {
121 SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_user_data` SET beg_clicks=beg_clicks+1 WHERE userid=%s AND `status`='CONFIRMED' LIMIT 1",
122 array($uid), __FILE__, __LINE__);
124 // Check for last entry for userid w/o IP number
125 $result = SQL_QUERY_ESC("SELECT id FROM `{!_MYSQL_PREFIX!}_beg_ips` WHERE (timeout > (UNIX_TIMESTAMP() - ".getConfig('beg_timeout').") OR (timeout > (UNIX_TIMESTAMP() - ".getConfig('beg_uid_timeout').") AND userid=%s)) AND (remote_ip='%s' OR sid='%s') LIMIT 1",
126 array($uid, GET_REMOTE_ADDR(), session_id()), __FILE__, __LINE__);
128 // Entry not found, points set and not logged in?
129 if (((SQL_NUMROWS($result) == 0) || (IS_ADMIN())) && ($points > 0) && (!IS_MEMBER()) && (getConfig('beg_pay_mode') == "NONE")) {
133 // Remember remote address, userid and timestamp for next click
134 // but only when there is no admin begging.
135 // Admins shall be able to test it!
136 SQL_QUERY_ESC("INSERT INTO `{!_MYSQL_PREFIX!}_beg_ips` (userid, remote_ip,sid, timeout) VALUES ('%s','%s','%s', UNIX_TIMESTAMP())",
137 array($uid, GET_REMOTE_ADDR(), session_id()), __FILE__, __LINE__);
139 // Was is successfull?
140 if (SQL_AFFECTEDROWS() == 1) {
151 // Add points to user or begging rallye account
152 if (BEG_ADD_POINTS($uid, $points)) {
153 // Set "done" message
154 define('__BEG_MSG', LOAD_TEMPLATE("beg_done", true));
157 define('__BEG_MSG', LOAD_TEMPLATE("beg_failed", true));
161 define('__BEG_MSG', LOAD_TEMPLATE("beg_failed", true));
163 } elseif (IS_MEMBER()) {
164 // Logged in user found!
165 define('__BEG_MSG', LOAD_TEMPLATE("beg_login", true));
166 } elseif (getConfig('beg_pay_mode') != "NONE") { // Other pay-mode active!
167 // Prepare content for template
169 'clicks' => constant('__BEG_CLICKS'),
170 'points' => constant('__BEG_POINTS'),
171 'uid' => constant('__BEG_UID')
174 // Load message template depending on pay-mode
175 define('__BEG_MSG', LOAD_TEMPLATE("beg_pay_mode_".strtolower(getConfig('beg_pay_mode')), true, $content));
178 // Clicked received while reload lock is active
179 define('__BEG_MSG', LOAD_TEMPLATE("beg_failed", true));
183 SQL_FREERESULT($result);
186 LOAD_INC_ONCE("inc/header.php");
188 // Load final template
189 LOAD_TEMPLATE("beg_link");
191 // Tracker code enabled? (We don't track users here!
192 if ((getConfig('beg_pay_mode') != "NONE") && ($pay)) {
193 // Prepare content for template
194 // @TODO Opps, what is missing here???
198 // Include config-depending template
199 LOAD_TEMPLATE("beg_pay_code_".strtolower(getConfig('beg_pay_mode')), false, $content);
200 } elseif ((!$pay) && (!defined('__BEG_MSG'))) {
202 define('__BEG_MSG', LOAD_TEMPLATE("beg_failed", true));
206 LOAD_INC_ONCE("inc/footer.php");
207 } elseif (($status != "CONFIRMED") && ($status != "failed")) {
208 // Maybe locked/unconfirmed account?
209 $msg = GEN_ERROR_CODE_FROM_ACCOUNT_STATUS($status);
210 } elseif (($uid == "0") || ($status == "failed")) {
211 // Inalid or locked account, so let's find out
212 $result = SQL_QUERY_ESC("SELECT userid FROM `{!_MYSQL_PREFIX!}_user_data` WHERE nickname='%s' LIMIT 1",
213 array($_GET['uid']), __FILE__, __LINE__);
214 if (SQL_NUMROWS($result) == 1) {
216 $msg = constant('CODE_ACCOUNT_LOCKED');
218 // Invalid nickname! (404)
219 $msg = constant('CODE_USER_404');
223 SQL_FREERESULT($result);
224 } elseif ($uid == getConfig('beg_uid')) {
225 // Webmaster's ID cannot beg for points!
226 $msg = constant('CODE_BEG_SAME_AS_OWN');
229 // Reload to index module
230 if ((!empty($msg)) && (!empty($msg))) LOAD_URL("modules.php?module=index&msg=".$msg."&ext=beg");
233 LOAD_URL("modules.php?module=index");
236 // You have to install first!
237 LOAD_URL("install.php");
240 // Really all done here... ;-)