2 /************************************************************************
3 * MXChange v0.2.1 Start: 11/23/2003 *
4 * =============== Last change: 09/23/2004 *
6 * -------------------------------------------------------------------- *
7 * File : what-add_points.php *
8 * -------------------------------------------------------------------- *
9 * Short description : Add manually points to a user *
10 * -------------------------------------------------------------------- *
11 * Kurzbeschreibung : Manuell einem Mitglied Punkte gutschreiben *
12 * -------------------------------------------------------------------- *
14 * -------------------------------------------------------------------- *
15 * Copyright (c) 2003 - 2008 by Roland Haeder *
16 * For more information visit: http://www.mxchange.org *
18 * This program is free software; you can redistribute it and/or modify *
19 * it under the terms of the GNU General Public License as published by *
20 * the Free Software Foundation; either version 2 of the License, or *
21 * (at your option) any later version. *
23 * This program is distributed in the hope that it will be useful, *
24 * but WITHOUT ANY WARRANTY; without even the implied warranty of *
25 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
26 * GNU General Public License for more details. *
28 * You should have received a copy of the GNU General Public License *
29 * along with this program; if not, write to the Free Software *
30 * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, *
32 ************************************************************************/
34 // Some security stuff...
35 if ((!defined('__SECURITY')) || (!IS_ADMIN())) {
36 $INC = substr(dirname(__FILE__), 0, strpos(dirname(__FILE__), "/inc") + 4) . "/security.php";
40 // Add description as navigation point
41 ADD_DESCR("admin", basename(__FILE__));
44 if (!isset($_GET['u_id'])) $_GET['u_id'] = "";
46 if ($_GET['u_id'] == "all") {
47 // Add points to all accounts
48 if ((isset($_POST['ok'])) && ($_POST['points'] > 0)) {
49 define('__POINTS_VALUE', $_POST['points']);
50 $result_main = SQL_QUERY("SELECT userid FROM "._MYSQL_PREFIX."_user_data WHERE status='CONFIRMED' ORDER BY userid", __FILE__, __LINE__);
51 while (list($uid) = SQL_FETCHROW($result_main)) {
52 // User ID found in URL so we use this give him some credits
53 $result = SQL_QUERY_ESC("SELECT surname, family, email FROM "._MYSQL_PREFIX."_user_data WHERE userid=%s AND status='CONFIRMED' LIMIT 1",
54 array(bigintval($uid)), __FILE__, __LINE__);
55 if (SQL_NUMROWS($result) == 1) {
56 // Selected user does exist
57 list($sname, $fname, $email) = SQL_FETCHROW($result);
58 SQL_FREERESULT($result);
60 if ((isset($_POST['ok'])) && (!empty($_POST['points']))) {
61 // Ok, add points and send an email to him...
62 $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_user_points SET points=points+(%s) WHERE userid=%s AND ref_depth=0 LIMIT 1",
63 array($_POST['points'], bigintval($uid)), __FILE__, __LINE__);
65 // Update mediadata as well
66 if (GET_EXT_VERSION("mediadata") >= "0.0.4") {
68 MEDIA_UPDATE_ENTRY(array("total_points"), "add", $_POST['points']);
73 'text' => SQL_ESCAPE($_POST['reason']),
74 'points' => bigintval($_POST['points'])
77 // Load email template and send email away
78 $msg = LOAD_EMAIL_TEMPLATE("add-points", $content, bigintval($uid));
79 SEND_EMAIL(bigintval($uid), ADMIN_ADD_SUBJ, $msg);
85 SQL_FREERESULT($result_main);
88 LOAD_TEMPLATE("admin_settings_saved", false, ADMIN_ALL_POINTS_ADDED);
90 // Display form add points
91 LOAD_TEMPLATE("admin_add_points_all");
93 } elseif (!empty($_GET['u_id'])) {
94 // User ID found in URL so we use this give him some credits
95 $result = SQL_QUERY_ESC("SELECT surname, family, email FROM "._MYSQL_PREFIX."_user_data WHERE userid=%s AND status='CONFIRMED' LIMIT 1",
96 array(bigintval($_GET['u_id'])), __FILE__, __LINE__);
97 if (SQL_NUMROWS($result) == 1) {
98 // Selected user does exist
99 list($sname, $fname, $email) = SQL_FETCHROW($result);
100 SQL_FREERESULT($result);
102 if ((isset($_POST['ok'])) && (!empty($_POST['points']))) {
103 // Ok, add points and send an email to him...
104 $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_user_points SET points=points+(%s) WHERE userid=%s AND ref_depth=0 LIMIT 1",
105 array($_POST['points'], bigintval($_GET['u_id'])), __FILE__, __LINE__);
109 'text' => SQL_ESCAPE($_POST['reason']),
110 'points' => bigintval($_POST['points'])
114 $msg = LOAD_EMAIL_TEMPLATE("add-points", $content, bigintval($_GET['u_id']));
116 SEND_EMAIL(bigintval($_GET['u_id']), ADMIN_ADD_SUBJ, $msg);
117 LOAD_TEMPLATE("admin_settings_saved", false, ADMIN_POINTS_ADDED);
119 // Opps, missing form here
120 define('__USER_VALUE', "<A href=\"".CREATE_EMAIL_LINK($email, "user_data")."\">".$sname." ".$fname."</A>");
121 define('__UID_VALUE', $_GET['u_id']);
122 LOAD_TEMPLATE("admin_add_points");
126 OUTPUT_HTML("<STRONG class=\"admin_failed\">".ADMIN_MEMBER_404_1.$_GET['u_id'].ADMIN_MEMBER_404_2."</STRONG>");
129 // Output selection form with all confirmed user accounts listed
130 ADD_MEMBER_SELECTION_BOX("0", true);