2 /************************************************************************
3 * MXChange v0.2.1 Start: 09/28/2003 *
4 * =============== Last change: 07/13/2004 *
6 * -------------------------------------------------------------------- *
7 * File : what-unlock_emails.php *
8 * -------------------------------------------------------------------- *
9 * Short description : Unlock ordered emails *
10 * -------------------------------------------------------------------- *
11 * Kurzbeschreibung : Werbebuchungen freigeben *
12 * -------------------------------------------------------------------- *
14 * -------------------------------------------------------------------- *
15 * Copyright (c) 2003 - 2008 by Roland Haeder *
16 * For more information visit: http://www.mxchange.org *
18 * This program is free software; you can redistribute it and/or modify *
19 * it under the terms of the GNU General Public License as published by *
20 * the Free Software Foundation; either version 2 of the License, or *
21 * (at your option) any later version. *
23 * This program is distributed in the hope that it will be useful, *
24 * but WITHOUT ANY WARRANTY; without even the implied warranty of *
25 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
26 * GNU General Public License for more details. *
28 * You should have received a copy of the GNU General Public License *
29 * along with this program; if not, write to the Free Software *
30 * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, *
32 ************************************************************************/
34 // Some security stuff...
35 if ((ereg(basename(__FILE__), $_SERVER['PHP_SELF'])) || (!IS_ADMIN())) {
36 $INC = substr(dirname(__FILE__), 0, strpos(dirname(__FILE__), "/inc") + 4) . "/security.php";
40 // Add description as navigation point
41 ADD_DESCR("admin", basename(__FILE__));
43 // Define some variables
47 $result_main = SQL_QUERY("SELECT id, sender, subject, payment_id, timestamp, url, target_send, cat_id FROM "._MYSQL_PREFIX."_pool WHERE data_type='ADMIN' ORDER BY timestamp", __FILE__, __LINE__);
49 OPEN_TABLE("100%", "admin_content admin_content_align", "");
50 if ((SQL_NUMROWS($result_main) > 0) || (isset($_POST['lock']))) {
51 // Count checked checkboxes
53 if (isset($_POST['sel'])) {
54 // Are there checked boxes?
55 if (count($_POST['sel']) > 0) {
56 // Count now... We use an own function for now
57 $SEL = SELECTION_COUNT($_POST['sel']);
61 if (isset($_POST['accept'])) {
64 foreach ($_POST['sel'] as $id => $value) {
68 // Unlock selected email
69 $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_pool SET data_type='NEW' WHERE id=%d AND data_type='ADMIN' LIMIT 1",
70 array($id), __FILE__, __LINE__);
73 if (SQL_AFFECTEDROWS($link, __FILE__, __LINE__) == 1) {
74 // Order placed in queue... 0 1 2 3
75 $result = SQL_QUERY_ESC("SELECT po.url, po.subject, po.sender, pay.payment
76 FROM "._MYSQL_PREFIX."_pool AS po
77 INNER JOIN "._MYSQL_PREFIX."_payments AS pay
78 ON po.payment_id=pay.id
81 array($id), __FILE__, __LINE__);
84 $DATA = SQL_FETCHARRAY($result);
87 SQL_FREERESULT($result);
89 // Check for bonus extension version >= 0.4.4 for the order bonus
90 if ((GET_EXT_VERSION("bonus") >= "0.4.4") && ($_CONFIG['bonus_active'] == "Y")) {
91 // Add points directly
92 $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_user_data SET bonus_order=bonus_order+".$_CONFIG['bonus_order']." WHERE userid=%d LIMIT 1",
93 array(bigintval($DATA['sender'])), __FILE__, __LINE__);
95 // Subtract bonus points from system
96 BONUS_POINTS_HANDLER($_CONFIG['bonus_order']);
99 // Check for surfbar extension
100 if (EXT_IS_ACTIVE("surfbar")) {
102 $insertId = SURFBAR_ADMIN_ADD_URL($DATA['url'], $DATA['sender'], $DATA['payment']);
104 // Load email template
105 $msg_user = LOAD_EMAIL_TEMPLATE("order_accept_sb", $insertId, $DATA['sender']);
107 // Load email template
108 $msg_user = LOAD_EMAIL_TEMPLATE("order-accept", "", $DATA['sender']);
112 SEND_EMAIL($DATA['sender'], MEMBER_ORDER_ACCEPTED, $msg_user);
117 $MSG = ADMIN_MAILS_ACTIVATED;
120 $MSG = ADMIN_MAILS_NOTHING_CHECKED;
123 // Mails unlocked for mail delivery
124 LOAD_TEMPLATE("admin_settings_saved", false, $MSG);
125 } elseif (isset($_POST['reject'])) {
127 // Reject mail orders
129 foreach ($_POST['sel'] as $id=>$value) {
131 $id = bigintval($id);
133 // Load URL and subject from pool
134 $result = SQL_QUERY_ESC("SELECT url, subject, sender FROM "._MYSQL_PREFIX."_pool WHERE id=%d LIMIT 1",
135 array($id), __FILE__, __LINE__);
138 $DATA = SQL_FETCHARRAY($result);
141 SQL_FREERESULT($result);
143 // Load email template and send it away
144 $msg_user = LOAD_EMAIL_TEMPLATE("order-reject", "", $DATA['sender']);
145 SEND_EMAIL($DATA['sender'], MEMBER_ORDER_REJECTED, $msg_user);
147 // If you do not enter an URL to redirect to, your URL will be set!
148 if ((empty($_POST['redirect'])) || ($_POST['redirect'] == "http://")) $_POST['redirect'] = URL;
151 $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_pool SET url='%s', data_type='NEW' WHERE id=%d LIMIT 1",
152 array($_POST['redirect'], $id),__FILE__, __LINE__);
154 // Prepare data for the row template
158 'url' => $_POST['url'][$id],
161 // Load row template and switch colors
162 $OUT .= LOAD_TEMPLATE("admin_unlock_emails_redir_row", true, $content);
165 define('__URL_ROWS', $OUT);
167 // Load main template
168 LOAD_TEMPLATE("admin_unlock_emails_redir");
171 LOAD_TEMPLATE("admin_settings_saved", false, ADMIN_MAILS_NOTHING_CHECKED);
173 } elseif ((isset($_POST['lock'])) || ($SEL > 0)) {
176 foreach ($_POST['sel'] as $id=>$url) {
177 // Lookup in blacklist
178 $result = SQL_QUERY_ESC("SELECT id FROM "._MYSQL_PREFIX."_url_blist WHERE url='%s' LIMIT 1",
179 array($url), __FILE__, __LINE__);
180 if (SQL_NUMROWS($result) == 0) {
181 // Did not find a record so we can add it... :)
182 $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_url_blist (url, timestamp) VALUES ('%s', UNIX_TIMESTAMP())",
183 array($url), __FILE__, __LINE__);
186 SQL_FREERESULT($result);
191 $MSG = ADMIN_URLS_BLOCKED;
194 $MSG = ADMIN_MAILS_NOTHING_CHECKED;
196 LOAD_TEMPLATE("admin_settings_saved", false, $MSG);
197 } elseif ((empty($_POST['lock'])) && (empty($_POST['accept'])) && (empty($_POST['reject']))) {
198 // Mail orders are in pool so we can display them
200 while (list($id, $sender, $subj, $pay, $time, $url, $tsend, $cat) = SQL_FETCHROW($result_main))
202 // Prepare data for the template
207 'u_link' => ADMIN_USER_PROFILE_LINK($sender),
208 'subj' => COMPILE_CODE($subj),
209 'tester' => FRAMETESTER($url),
211 'cat_title' => str_replace("\"", """, GET_CATEGORY($cat)),
213 'pay_title' => str_replace("\"", """, GET_PAYMENT($pay, true)),
215 'ordered' => MAKE_DATETIME($time, "2"),
219 // Load row template and switch colors
220 $OUT .= LOAD_TEMPLATE("admin_unlock_emails_row", true, $content);
225 SQL_FREERESULT($result);
226 define('__UNLOCK_ROWS', $OUT);
228 // Prepare rejection URL
230 if (GET_EXT_VERSION("other") >= "0.1.6") $REJECT = $_CONFIG['reject_url'];
231 define('__REJECT_URL', $REJECT);
233 // Load main template
234 LOAD_TEMPLATE("admin_unlock_emails");
237 LOAD_TEMPLATE("admin_settings_saved", false, ADMIN_WRONG_CALL);
240 // No mail orders fond
241 LOAD_TEMPLATE("admin_settings_saved", false, ADMIN_NO_MAILS_IN_POOL);