2 /************************************************************************
3 * MXChange v0.2.1 Start: 05/08/2004 *
4 * ================ Last change: 08/12/2004 *
6 * -------------------------------------------------------------------- *
7 * File : what-list_payouts.php *
8 * -------------------------------------------------------------------- *
9 * Short description : List member's payout requests *
10 * -------------------------------------------------------------------- *
11 * Kurzbeschreibung : Auflistung der Auszahlungsanfragen *
12 * -------------------------------------------------------------------- *
15 * $Tag:: 0.2.1-FINAL $ *
17 * Needs to be in all Files and every File needs "svn propset *
18 * svn:keywords Date Revision" (autoprobset!) at least!!!!!! *
19 * -------------------------------------------------------------------- *
20 * Copyright (c) 2003 - 2008 by Roland Haeder *
21 * For more information visit: http://www.mxchange.org *
23 * This program is free software; you can redistribute it and/or modify *
24 * it under the terms of the GNU General Public License as published by *
25 * the Free Software Foundation; either version 2 of the License, or *
26 * (at your option) any later version. *
28 * This program is distributed in the hope that it will be useful, *
29 * but WITHOUT ANY WARRANTY; without even the implied warranty of *
30 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
31 * GNU General Public License for more details. *
33 * You should have received a copy of the GNU General Public License *
34 * along with this program; if not, write to the Free Software *
35 * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, *
37 ************************************************************************/
39 // Some security stuff...
40 if ((!defined('__SECURITY')) || (!IS_ADMIN())) {
41 $INC = substr(dirname(__FILE__), 0, strpos(dirname(__FILE__), '/inc') + 4) . '/security.php';
45 // Add description as navigation point
46 ADD_DESCR('admin', __FILE__);
48 if (REQUEST_ISSET_GET(('pid'))) {
49 // First let's get the member's ID
50 $result = SQL_QUERY_ESC("SELECT userid, target_account, payout_total, payout_timestamp, password FROM `{!_MYSQL_PREFIX!}_user_payouts` WHERE `id`=%s LIMIT 1",
51 array(REQUEST_GET('pid')), __FILE__, __LINE__);
52 list($uid, $tuid, $points, $tstamp, $tpass) = SQL_FETCHROW($result);
53 SQL_FREERESULT($result);
56 if (!REQUEST_ISSET_GET(('task')) && (!empty($uid)) && ($uid > 0)) {
57 // Get task ID from database
58 $result = SQL_QUERY_ESC("SELECT `id` FROM `{!_MYSQL_PREFIX!}_task_system` WHERE userid=%s AND `task_type`='PAYOUT_REQUEST' AND task_created='".$tstamp."' LIMIT 1",
59 array(bigintval($uid)), __FILE__, __LINE__);
60 list($task) = SQL_FETCHROW($result);
61 SQL_FREERESULT($result);
62 if (empty($task)) $task = 0;
63 } elseif ((empty($uid)) || ($uid == '0')) {
64 // Cannot obtain member ID!
65 LOAD_TEMPLATE('admin_settings_saved', false, getMessage('PAYOUT_FAILED_OBTAIN_USERID'));
67 // Get task ID from URL
68 $task = REQUEST_GET('task');
71 if ((!empty($task)) && (!empty($uid)) && ($uid > 0)) {
73 $result = SQL_QUERY_ESC("SELECT email, gender, surname, family FROM `{!_MYSQL_PREFIX!}_user_data` WHERE userid=%s LIMIT 1",
74 array(bigintval($uid)), __FILE__, __LINE__);
75 list($email, $gender, $surname, $family) = SQL_FETCHROW($result);
76 SQL_FREERESULT($result);
79 define('PAYOUT_USERDATA_VALUE', "<a href=\"".generateMemberEmailLink($email, "user_data")."\">".translateGender($gender)." ".$surname." ".$family."</a>");
81 if ((REQUEST_GET('do') == "accept") && (!empty($email))) {
82 // Ok, now we can output the form or execute accepting
84 // Obtain payout type and other data
85 $result = SQL_QUERY_ESC("SELECT payout_id FROM `{!_MYSQL_PREFIX!}_user_payouts` WHERE `id`=%s LIMIT 1",
86 array(bigintval(REQUEST_GET('pid'))), __FILE__, __LINE__);
87 list($ptype) = SQL_FETCHROW($result);
88 SQL_FREERESULT($result);
91 // Obtain data from payout type
92 $result = SQL_QUERY_ESC("SELECT from_account, from_pass, engine_url, engine_ret_ok, engine_ret_failed, pass_enc, allow_url FROM `{!_MYSQL_PREFIX!}_payout_types` WHERE `id`=%s LIMIT 1",
93 array(bigintval($ptype)), __FILE__, __LINE__);
94 list($fuid, $fpass, $eurl, $eok, $failed, $eenc, $allow) = SQL_FETCHROW($result);
95 SQL_FREERESULT($result);
99 $eurl = COMPILE_CODE($eurl);
103 $fpass = md5($fpass);
104 $tpass = md5($tpass);
108 $fpass = base64_encode($fpass);
109 $tpass = base64_encode($tpass);
113 // Transfer variables...
114 $eval = "\$URL = \"".$eurl."\";";
115 $reason = encodeString(getMessage('PAYOUT_REASON_PAYOUT'), false);
121 $ret = sendGetRequest($URL);
127 if ($ret[0] == $eok) {
130 runFilterChain('solve_task', $task);
133 // Clear payout request
134 SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_user_payouts` SET `status`='ACCEPTED' WHERE `id`=%s LIMIT 1",
135 array(bigintval(REQUEST_GET('pid'))), __FILE__, __LINE__);
138 $msg = LOAD_EMAIL_TEMPLATE("member_payout_accepted", REQUEST_POST('text'), $uid);
142 // Banner / Textlink request
143 LOAD_TEMPLATE('admin_settings_saved', false, getMessage('PAYOUT_BANNER_ACCEPTED_NOTIFIED'));
146 LOAD_TEMPLATE('admin_settings_saved', false, getMessage('PAYOUT_ACCEPTED_NOTIFIED'));
150 sendEmail($email, getMessage('PAYOUT_ACCEPTED_SUBJECT'), $msg);
152 // Something goes wrong... :-(
153 $content = implode("<br />", $ret);
154 LOAD_TEMPLATE("admin_payout_failed_transfer", false, $content);
157 // Cannot load payout id
158 LOAD_TEMPLATE('admin_settings_saved', false, "<div class=\"admin_failed\">{--PAYOUT_FAILED_OBTAIN_PAYOUT_ID--}</div>");
164 'pid' => bigintval(REQUEST_GET('pid'))
168 LOAD_TEMPLATE("admin_payout_accept_form", false, $content);
170 } elseif ((REQUEST_GET('do') == "reject") && (!empty($email))) {
171 // Ok, now we can output the form or execute rejecting
172 if (IS_FORM_SENT()) {
175 runFilterChain('solve_task', $task);
178 // Clear payout request
179 SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_user_payouts` SET `status`='REJECTED' WHERE `id`=%s LIMIT 1",
180 array(bigintval(REQUEST_GET('pid'))), __FILE__, __LINE__);
183 $msg = LOAD_EMAIL_TEMPLATE("member_payout_rejected", REQUEST_POST('text'), $uid);
186 LOAD_TEMPLATE('admin_settings_saved', false, getMessage('PAYOUT_REJECTED_NOTIFIED'));
189 sendEmail($email, getMessage('PAYOUT_REJECTED_SUBJECT'), $msg);
194 'pid' => bigintval(REQUEST_GET('pid'))
198 LOAD_TEMPLATE("admin_payout_reject_form", false, $content);
201 // Cannot load user data
202 LOAD_TEMPLATE('admin_settings_saved', false, getMessage('PAYOUT_FAILED_OBTAIN_USERDATA'));
204 } elseif ((empty($task)) || ($task == '0')) {
205 // Failed loading task ID
206 LOAD_TEMPLATE('admin_settings_saved', false, getMessage('PAYOUT_FAILED_OBTAIN_TASK_ID'));
209 if (!REQUEST_ISSET_GET('do')) REQUEST_SET_GET('do', '');
211 if (REQUEST_GET('do') == "delete") {
212 // Delete all requests
213 $result = SQL_QUERY("DELETE LOW_PRIORITY FROM `{!_MYSQL_PREFIX!}_user_payouts`", __FILE__, __LINE__);
216 // Search for payouts
217 $result = SQL_QUERY("SELECT p.id, p.userid AS uid, p.payout_total, p.target_account, p.target_bank, t.type, p.payout_timestamp, p.status, t.allow_url AS allow, p.target_url AS url, p.link_text AS alt, p.banner_url AS banner
218 FROM `{!_MYSQL_PREFIX!}_user_payouts` AS p, `{!_MYSQL_PREFIX!}_payout_types` AS t
219 WHERE p.payout_id=t.id
220 ORDER BY p.payout_timestamp DESC", __FILE__, __LINE__);
222 if (SQL_NUMROWS($result) > 0) {
223 // List found payouts
225 while ($content = SQL_FETCHARRAY($result)) {
226 if ($content['status'] == "NEW") {
227 // Generate links for direct accepting and rejecting
228 $content['status'] = "<a href=\"{!URL!}/modules.php?module=admin&what=list_payouts&do=accept&pid=".$content['id']."\">".PAYOUT_ACCEPT_PAYOUT."</a> | <a href=\"{!URL!}/modules.php?module=admin&what=list_payouts&do=reject&pid=".$content['id']."\">".PAYOUT_REJECT_PAYOUT."</a>";
231 $content['status'] = constant('PAYOUT_STATUS_'.strtoupper($content['status']).'');
232 $content['status'] = "<div class=\"admin_failed\">".$content['status']."</div>";
235 // Nothing entered must be secured in member/what-payputs.php !
236 if ($content['allow'] == 'Y') {
237 // Banner/Textlink views/clicks request
238 if (!empty($content['banner'])) {
239 // Load template for the banner
240 $content['target_account'] = LOAD_TEMPLATE("admin_list_payouts_banner", true, $content);
243 $content['target_account'] = LOAD_TEMPLATE("admin_list_payouts_txt", true, $content);
246 // Admins can addionally test the URL for framekillers
247 $content['target_bank'] = "<a href=\"".FRAMETESTER($content['url'])."\" target=\"_blank\">{--CLICK_HERE--}</a>";
249 // e-currency payout request
250 if (empty($content['target_account'])) $content['target_account'] = '---';
251 if (empty($content['target_bank'])) $content['target_bank'] = '---';
254 // Remember data in array for the template
257 'ulink' => generateUserProfileLink($content['userid']),
258 'ptype' => translateComma($content['payout_total'])." ".COMPILE_CODE($content['type']),
259 'account' => $content['target_account'],
260 'bank' => $content['target_bank'],
261 'tstamp' => generateDateTime($content['payout_timestamp'], "2"),
262 'status' => $content['status'],
265 // Add row and switch color
266 $OUT .= LOAD_TEMPLATE("admin_list_payouts_row", true, $content);
271 SQL_FREERESULT($result);
272 define('__PAYOUT_ROWS', $OUT);
274 // Load final template
275 LOAD_TEMPLATE("admin_list_payouts");
277 // No payout requests are sent so far
278 LOAD_TEMPLATE('admin_settings_saved', false, getMessage('PAYOUT_ADMIN_NO_REQUESTS_FOUND'));