2 /************************************************************************
3 * MXChange v0.2.1 Start: 01/09/2005 *
4 * =============== Last change: 01/09/2005 *
6 * -------------------------------------------------------------------- *
8 * -------------------------------------------------------------------- *
9 * Short description : Beg link for members *
10 * -------------------------------------------------------------------- *
11 * Kurzbeschreibung : Bettel-Link fuer Mitglieder *
12 * -------------------------------------------------------------------- *
14 * -------------------------------------------------------------------- *
15 * Copyright (c) 2003 - 2008 by Roland Haeder *
16 * For more information visit: http://www.mxchange.org *
18 * This program is free software; you can redistribute it and/or modify *
19 * it under the terms of the GNU General Public License as published by *
20 * the Free Software Foundation; either version 2 of the License, or *
21 * (at your option) any later version. *
23 * This program is distributed in the hope that it will be useful, *
24 * but WITHOUT ANY WARRANTY; without even the implied warranty of *
25 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
26 * GNU General Public License for more details. *
28 * You should have received a copy of the GNU General Public License *
29 * along with this program; if not, write to the Free Software *
30 * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, *
32 ************************************************************************/
34 // Load security stuff here (Oh, I hope this is not unsecure? Am I paranoia??? ;-) )
35 require_once("inc/libs/security_functions.php");
37 // Init "action" and "what"
38 global $what, $action, $startTime;
39 $GLOBALS['startTime'] = microtime(true);
40 $GLOBALS['what'] = ""; $GLOBALS['action'] = "";
43 $GLOBALS['module'] = "beg";
44 $GLOBALS['refid'] = 0;
48 // Load the required file(s)
49 require ("inc/config.php");
51 // Is the script installed?
52 if (defined('mxchange_installed') && (isBooleanConstantAndTrue('mxchange_installed'))) {
54 if (!empty($_GET['uid'])) {
58 // Validate if it is not a number
59 if (bigintval($_GET['uid']) !== "".$_GET['uid']."") {
60 if (EXT_IS_ACTIVE("nickname")) {
61 // Maybe we have found a nickname?
62 $result = SQL_QUERY_ESC("SELECT userid, beg_clicks, ref_payout, status, last_online FROM "._MYSQL_PREFIX."_user_data WHERE nickname='%s' LIMIT 1",
63 array($_GET['uid']), __FILE__, __LINE__);
65 // Nickname entered but nickname is not active
66 $msg = CODE_EXTENSION_PROBLEM;
72 $result = SQL_QUERY_ESC("SELECT userid, beg_clicks, ref_payout, status, last_online FROM "._MYSQL_PREFIX."_user_data WHERE userid=%d LIMIT 1",
73 array(bigintval($_GET['uid'])), __FILE__, __LINE__);
76 // Check if locked in so don't pay points
77 $login = false; $status = "failed";
79 // Logged in user detected!
83 // Check if account was found
84 if ((SQL_NUMROWS($result) == 1) && ($result != false)) {
85 // Found an ID so we simply set it
86 list($uid, $clicks, $ref_payout, $status, $last) = SQL_FETCHROW($result);
87 if ($status == "CONFIRMED") {
89 $uid = bigintval($uid);
91 // Calculate beg points
92 srand((double)microtime() * 10000000000 / time());
94 // Multiply configured values with 100000 and divide with 100000 so we can also handle small values
95 // If we need more number behind the decimal dot then we just need to increase all these three
96 // numbers matching to the numbers behind the decimal dot. Simple! ;-)
97 $points = rand(($_CONFIG['beg_points'] * 100000), ($_CONFIG['beg_points_max'] * 100000)) / 100000;
99 // Set nickname / userid for the template(s
100 define('__BEG_UID' , $_GET['uid']);
101 define('__BEG_CLICKS', ($clicks + 1));
102 define('__BEG_BANNER', LOAD_TEMPLATE("beg_banner", true));
103 define('__BEG_POINTS', TRANSLATE_COMMA($points));
111 SQL_FREERESULT($result);
113 if (($uid > 0) && ($_CONFIG['beg_uid'] != $uid)) {
115 $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_user_data SET beg_clicks=beg_clicks+1 WHERE userid=%d AND status='CONFIRMED' LIMIT 1",
116 array($uid), __FILE__, __LINE__);
118 // Check for last entry for userid w/o IP number
119 $result = SQL_QUERY_ESC("SELECT id FROM "._MYSQL_PREFIX."_beg_ips WHERE (timeout > ".(time() - $_CONFIG['beg_timeout'])." OR (timeout > ".(time() - $_CONFIG['beg_uid_timeout'])." AND userid=%d)) AND remote_ip='%s' LIMIT 1",
120 array($uid, getenv('REMOTE_ADDR')), __FILE__, __LINE__);
121 if ((SQL_NUMROWS($result) == 0) && ($points > 0) && (!$login)) {
123 SQL_FREERESULT($result);
126 // Remember remote address, userid and timestamp for next click
127 // but only when there is no admin begging.
128 // Admins shall be able to test it!
129 $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_beg_ips (userid, remote_ip, timeout) VALUES('%s', '%s', UNIX_TIMESTAMP())",
130 array($uid, getenv('REMOTE_ADDR')), __FILE__, __LINE__);
133 // Set mode depending on how many mails the member has to confirm
135 if (($ref_payout > 0) && ($_CONFIG['allow_direct_pay'] == "N")) $locked = true;
137 // Is begging rallye active?
138 if ($_CONFIG['beg_rallye'] == "Y") {
139 // Add points to rallye account
140 $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_user_data SET beg_points=beg_points+%s WHERE userid=%d LIMIT 1",
141 array($points, $uid), __FILE__, __LINE__);
143 // Add points to account
145 ADD_POINTS_REFSYSTEM($uid, $points, false, "0", $locked, strtolower($_CONFIG['beg_mode']));
148 // Subtract begged points from member account if the admin has selected one
149 if ($_CONFIG['beg_uid'] > 0) {
150 // Subtract from this account
151 $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_user_data SET used_points=used_points+%s WHERE userid=%d LIMIT 1",
152 array($points, bigintval($_CONFIG['beg_uid'])), __FILE__, __LINE__);
154 // Update mediadata as well
155 if (GET_EXT_VERSION("mediadata") >= "0.0.4") {
157 MEDIA_UPDATE_ENTRY(array("total_points"), "sub", $points);
162 define('__BEG_MSG', LOAD_TEMPLATE("beg_done", true));
164 // Logged in user found!
165 define('__BEG_MSG', LOAD_TEMPLATE("beg_login", true));
168 SQL_FREERESULT($result);
171 SQL_FREERESULT($result);
173 // Clicked received while reload lock is active
174 define('__BEG_MSG', LOAD_TEMPLATE("beg_failed", true));
178 require_once(PATH."inc/header.php");
180 // Load final template
181 LOAD_TEMPLATE("beg_link");
184 require_once(PATH."inc/footer.php");
185 } elseif (($status != "CONFIRMED") && ($status != "failed")) {
186 // Maybe locked/unconfirmed account?
188 case "LOCKED" : $msg = CODE_ID_LOCKED ; break; // Locked account
189 case "UNCONFIRMED": $msg = CODE_ID_UNCONFIRMED; break; // Unconfirmed account
191 } elseif (($uid == "0") || ($status == "failed")) {
192 // Inalid or locked account, so let's find out
193 $result = SQL_QUERY_ESC("SELECT userid FROM "._MYSQL_PREFIX."_user_data WHERE nickname='%s' LIMIT 1",
194 array($_GET['uid']), __FILE__, __LINE__);
195 if (SQL_NUMROWS($result) == 1) {
197 $msg = CODE_ACCOUNT_LOCKED;
199 // Invalid nickname! (404)
200 $msg = CODE_USER_404;
204 SQL_FREERESULT($result);
205 } elseif ($uid == $_CONFIG['beg_uid']) {
206 // Webmaster's ID cannot beg for points!
207 $msg = CODE_BEG_SAME_AS_OWN;
210 // Reload to index module
212 if ((!empty($msg)) && (!empty($msg))) LOAD_URL("modules.php?module=index&msg=".$msg);
215 LOAD_URL("modules.php?module=index");
218 // You have to configure first!
219 LOAD_URL("install.php");
222 // Really all done here... ;-)