2 /************************************************************************
3 * MXChange v0.2.1 Start: 11/23/2003 *
4 * =============== Last change: 09/23/2004 *
6 * -------------------------------------------------------------------- *
7 * File : what-add_points.php *
8 * -------------------------------------------------------------------- *
9 * Short description : Add manually points to a user *
10 * -------------------------------------------------------------------- *
11 * Kurzbeschreibung : Manuell einem Mitglied Punkte gutschreiben *
12 * -------------------------------------------------------------------- *
14 * -------------------------------------------------------------------- *
15 * Copyright (c) 2003 - 2008 by Roland Haeder *
16 * For more information visit: http://www.mxchange.org *
18 * This program is free software; you can redistribute it and/or modify *
19 * it under the terms of the GNU General Public License as published by *
20 * the Free Software Foundation; either version 2 of the License, or *
21 * (at your option) any later version. *
23 * This program is distributed in the hope that it will be useful, *
24 * but WITHOUT ANY WARRANTY; without even the implied warranty of *
25 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
26 * GNU General Public License for more details. *
28 * You should have received a copy of the GNU General Public License *
29 * along with this program; if not, write to the Free Software *
30 * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, *
32 ************************************************************************/
34 // Some security stuff...
35 if ((!defined('__SECURITY')) || (!IS_ADMIN())) {
36 $INC = substr(dirname(__FILE__), 0, strpos(dirname(__FILE__), "/inc") + 4) . "/security.php";
40 // Add description as navigation point
41 ADD_DESCR("admin", __FILE__);
44 if (!REQUEST_ISSET_GET(('uid'))) REQUEST_SET_GET('uid', "");
46 if (REQUEST_GET('uid') == "all") {
47 // Add points to all accounts
48 if ((IS_FORM_SENT()) && (REQUEST_POST('points') > 0)) {
49 // @TODO Rewrite this constant
50 define('__POINTS_VALUE', REQUEST_POST('points'));
53 $result_main = SQL_QUERY("SELECT userid FROM `{!_MYSQL_PREFIX!}_user_data` WHERE `status`='CONFIRMED' ORDER BY userid",
56 // Process all entries
57 while ($content = SQL_FETCHROW($result_main)) {
58 // Remove depth to prevent booking errors. This is a bad coding
59 // practice, thats also why we need to write this project from
61 $GLOBALS['ref_level'] = -1;
63 // Ok, add points and send an email to him...
64 ADD_POINTS_REFSYSTEM("admin_all", $content['userid'], bigintval(REQUEST_POST('points')), false, "0", false, "direct");
67 $content['text'] = SQL_ESCAPE(REQUEST_POST('reason'));
68 $content['points'] = bigintval(REQUEST_POST('points'));
70 // Load email template and send email away
71 $msg = LOAD_EMAIL_TEMPLATE("add-points", $content, bigintval($content['userid']));
72 SEND_EMAIL(bigintval($content['userid']), getMessage('ADMIN_ADD_SUBJ'), $msg);
76 SQL_FREERESULT($result_main);
79 LOAD_TEMPLATE("admin_settings_saved", false, getMessage('ADMIN_ALL_POINTS_ADDED'));
81 // Display form add points
82 LOAD_TEMPLATE("admin_add_points_all");
84 } elseif (REQUEST_ISSET_GET(('uid'))) {
85 // User ID found in URL so we use this give him some credits
86 $result = SQL_QUERY_ESC("SELECT surname, family, email FROM `{!_MYSQL_PREFIX!}_user_data` WHERE userid=%s AND `status`='CONFIRMED' LIMIT 1",
87 array(bigintval(REQUEST_GET('uid'))), __FILE__, __LINE__);
88 if (SQL_NUMROWS($result) == 1) {
89 // Selected user does exist
90 list($sname, $fname, $email) = SQL_FETCHROW($result);
91 SQL_FREERESULT($result);
93 if ((IS_FORM_SENT()) && (REQUEST_ISSET_POST(('points')))) {
94 // Remove depth to prevent booking errors. This is a bad coding
95 // practice, thats also why we need to write this project from
97 unset($GLOBALS['ref_level']);
99 // Ok, add points and send an email to him...
100 ADD_POINTS_REFSYSTEM("admin_single", bigintval(REQUEST_GET('uid')), bigintval(REQUEST_POST('points')), false, "0", false, "direct");
104 'text' => SQL_ESCAPE(REQUEST_POST('reason')),
105 'points' => bigintval(REQUEST_POST('points'))
109 $msg = LOAD_EMAIL_TEMPLATE("add-points", $content, bigintval(REQUEST_GET('uid')));
111 SEND_EMAIL(bigintval(REQUEST_GET('uid')), getMessage('ADMIN_ADD_SUBJ'), $msg);
112 LOAD_TEMPLATE("admin_settings_saved", false, getMessage('ADMIN_POINTS_ADDED'));
114 // Opps, missing form here
115 // @TODO Rewrite these both constants
116 define('__USER_VALUE', "<a href=\"".CREATE_EMAIL_LINK($email, "user_data")."\">".$sname." ".$fname."</a>");
117 define('__UID' , bigintval(REQUEST_GET('uid')));
118 LOAD_TEMPLATE("admin_add_points");
122 LOAD_TEMPLATE("admin_settings_saved", false, "<div class=\"admin_failed\">".sprintf(getMessage('ADMIN_MEMBER_404'), REQUEST_GET('uid'))."</div>");
125 // Output selection form with all confirmed user accounts listed
126 ADD_MEMBER_SELECTION_BOX("0", true);