2 /************************************************************************
3 * MXChange v0.2.1 Start: 08/26/2003 *
4 * =============== Last change: 11/29/2004 *
6 * -------------------------------------------------------------------- *
7 * File : mysql-manager.php *
8 * -------------------------------------------------------------------- *
9 * Short description : All MySQL-related functions *
10 * -------------------------------------------------------------------- *
11 * Kurzbeschreibung : Alle MySQL-Relevanten Funktionen *
12 * -------------------------------------------------------------------- *
14 * -------------------------------------------------------------------- *
15 * Copyright (c) 2003 - 2008 by Roland Haeder *
16 * For more information visit: http://www.mxchange.org *
18 * This program is free software; you can redistribute it and/or modify *
19 * it under the terms of the GNU General Public License as published by *
20 * the Free Software Foundation; either version 2 of the License, or *
21 * (at your option) any later version. *
23 * This program is distributed in the hope that it will be useful, *
24 * but WITHOUT ANY WARRANTY; without even the implied warranty of *
25 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
26 * GNU General Public License for more details. *
28 * You should have received a copy of the GNU General Public License *
29 * along with this program; if not, write to the Free Software *
30 * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, *
32 ************************************************************************/
34 // Some security stuff...
35 if (!defined('__SECURITY')) {
36 $INC = substr(dirname(__FILE__), 0, strpos(dirname(__FILE__), "/inc") + 4) . "/security.php";
41 function ADD_MODULE_TITLE($mod) {
42 global $cacheArray, $_CONFIG;
43 $name = ""; $result = false;
45 // Is the script installed?
46 if (isBooleanConstantAndTrue('mxchange_installed')) {
47 // Check if cache is valid
48 if ((GET_EXT_VERSION("cache") >= "0.1.2") && (isset($cacheArray['modules']['module'])) && (in_array($mod, $cacheArray['modules']['module']))) {
50 $name = $cacheArray['modules']['title'][$mod];
53 $_CONFIG['cache_hits']++;
56 $result = SQL_QUERY_ESC("SELECT title FROM "._MYSQL_PREFIX."_mod_reg WHERE module='%s' LIMIT 1", array($mod), __FILE__, __LINE__);
57 list($name) = SQL_FETCHROW($result);
58 SQL_FREERESULT($result);
65 // Still no luck or empty title?
68 $name = LANG_UNKNOWN_MODULE." (".$mod.")";
69 if (SQL_NUMROWS($result) == 0) {
70 // Add module to database
71 $dummy = CHECK_MODULE($mod);
79 // Check validity of a given module name (no file extension)
80 function CHECK_MODULE($mod) {
81 // We need them now here...
82 global $cacheArray, $_CONFIG, $cacheInstance;
84 // Filter module name (names with low chars and underlines are fine!)
85 $mod = preg_replace("/[^a-z_]/", "", $mod);
87 // Check for prefix is a extension...
88 $modSplit = explode("_", $mod);
89 $extension = ""; $mod_chk = $mod;
90 //* DEBUG: */ echo __LINE__."*".count($modSplit)."*/".$mod."*<br />";
91 if (count($modSplit) == 2) {
92 // Okay, there is a seperator (_) in the name so is the first part a module?
93 //* DEBUG: */ echo __LINE__."*".$modSplit[0]."*<br />";
94 if (EXT_IS_ACTIVE($modSplit[0])) {
95 // The prefix is an extension's name, so let's set it
96 $extension = $modSplit[0]; $mod = $modSplit[1];
100 // Major error in module registry is the default
103 // Check if script is installed if not return a "done" to prevent some errors
104 if ((!isBooleanConstantAndTrue('mxchange_installed')) || (isBooleanConstantAndTrue('mxchange_installing')) || (!isBooleanConstantAndTrue('admin_registered'))) return "done";
106 // Check if cache is latest version
107 $locked = "Y"; $hidden = "N"; $admin = "N"; $mem = "N"; $found = false;
108 if ((GET_EXT_VERSION("cache") >= "0.1.2") && (isset($cacheArray['modules']['module'])) && (is_array($cacheArray['modules']['module']))) {
109 // Is the module cached?
110 if (isset($cacheArray['modules']['locked'][$mod_chk])) {
112 $locked = $cacheArray['modules']['locked'][$mod_chk];
113 $hidden = $cacheArray['modules']['hidden'][$mod_chk];
114 $admin = $cacheArray['modules']['admin_only'][$mod_chk];
115 $mem = $cacheArray['modules']['mem_only'][$mod_chk];
118 $_CONFIG['cache_hits']++;
121 // No, then we have to update it!
125 // Check for module in database
126 $result = SQL_QUERY_ESC("SELECT locked, hidden, admin_only, mem_only FROM "._MYSQL_PREFIX."_mod_reg WHERE module='%s' LIMIT 1", array($mod_chk), __FILE__, __LINE__);
127 if (SQL_NUMROWS($result) == 1) {
129 list($locked, $hidden, $admin, $mem) = SQL_FETCHROW($result);
130 SQL_FREERESULT($result);
135 // Check returned values against current access permissions
137 // Admin access ----- Guest access ----- --- Guest or member? ---
138 if ((IS_ADMIN()) || (($locked == "N") && ($admin == "N") && (($mem == "N") || (IS_MEMBER())))) {
139 // If you are admin you are welcome for everything!
141 } elseif ($locked == "Y") {
144 } elseif (($mem == "Y") && (!IS_MEMBER())) {
145 // You have to login first!
147 } elseif (($admin == "Y") && (!IS_ADMIN())) {
148 // Only the Admin is allowed to enter this module!
152 // Still no luck or not found?
153 if (($ret == "major") || ($ret == "cache_miss") || (!$found)) {
154 // ----- Legacy module ----- ---- Module in base folder ---- --- Module with extension's name ---
155 if ((FILE_READABLE(sprintf("%sinc/modules/%s.php", PATH, $mod))) || (FILE_READABLE(sprintf("%s%s.php", PATH, $mod))) || (FILE_READABLE(sprintf("%s%s/%s.php", PATH, $extension, $mod)))) {
156 // Data is missing so we add it
157 if (GET_EXT_VERSION("sql_patches") >= "0.3.6") {
158 // Since 0.3.6 we have a has_menu column, this took me a half hour
159 // to find a loop here... *sigh*
160 $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_mod_reg
161 (module, locked, hidden, mem_only, admin_only, has_menu) VALUES
162 ('%s','Y','N','N','N','N')", array($mod_chk), __FILE__, __LINE__);
164 // Wrong/missing sql_patches!
165 $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_mod_reg
166 (module, locked, hidden, mem_only, admin_only) VALUES
167 ('%s','Y','N','N','N')", array($mod_chk), __FILE__, __LINE__);
170 // Everthing is fine?
171 if (SQL_AFFECTEDROWS() == 0) {
172 // Something bad happend!
176 // Destroy cache here
177 REBUILD_CACHE("mod_reg", "modreg");
180 $ret = CHECK_MODULE($mod_chk);
182 // Module not found we don't add it to the database
191 // Add menu description pending on given file name (without path!)
192 function ADD_DESCR($ACC_LVL, $file, $return = false, $output = true) {
193 global $DEPTH, $_CONFIG;
194 $LINK_ADD = ""; $OUT = ""; $AND = "";
195 // First we have to do some analysis...
196 if (ereg("action-", $file)) {
197 // This is an action file!
199 $search = substr($file, 7);
203 $MOD_CHECK = "admin";
209 $MOD_CHECK = $GLOBALS['module'];
212 $AND = " AND (what='' OR what IS NULL)";
213 } elseif (ereg("what-", $file)) {
214 // This is an admin what file!
216 $search = substr($file, 5);
221 $MOD_CHECK = "admin";
226 $MOD_CHECK = $GLOBALS['module'];
228 $AND = " AND visible='Y' AND locked='N'";
232 $dummy = substr($search, 0, -4);
233 $AND .= " AND action='".GET_ACTION($ACC_LVL, $dummy)."'";
234 } elseif (($ACC_LVL == "sponsor") || ($ACC_LVL == "engine")) {
235 // Sponsor / engine menu
238 $MOD_CHECK = $GLOBALS['module'];
244 $MOD_CHECK = $GLOBALS['module'];
247 if ((!isset($DEPTH)) && (!$return)) {
249 $prefix = "<DIV class=\"you_are_here\">".YOU_ARE_HERE." <STRONG><A class=\"you_are_here\" href=\"".URL."/modules.php?module=".$GLOBALS['module'].$LINK_ADD."\">Home</A></STRONG>";
251 if (!$return) $DEPTH++;
255 $prefix .= " -> ";
257 // We need to remove .php and the end
258 if (substr($search, -4, 4) == ".php") {
260 $search = substr($search, 0, -4);
263 // Get the title from menu
264 $result = SQL_QUERY_ESC("SELECT title FROM "._MYSQL_PREFIX."_%s_menu WHERE %s='%s' ".$AND." LIMIT 1",
265 array($ACC_LVL, $type, $search), __FILE__, __LINE__);
268 if (SQL_NUMROWS($result) == 1) {
270 list($ret) = SQL_FETCHROW($result);
272 // Shall we return it?
276 } elseif (((GET_EXT_VERSION("sql_patches") >= "0.2.3") && ($_CONFIG['youre_here'] == "Y")) || ((IS_ADMIN()) && ($MOD_CHECK == "admin"))) {
278 $OUT = $prefix."<STRONG><A class=\"you_are_here\" href=\"".URL."/modules.php?module=".$MOD_CHECK."&".$type."=".$search.$LINK_ADD."\">".$ret."</A></STRONG>\n";
280 // Can we close the you-are-here navigation?
281 //* DEBUG: */ echo __LINE__."*".$type."/".$GLOBALS['what']."*<br />\n";
282 //* DEBUG: */ die("<pre>".print_r($_CONFIG, true)."</pre>");
283 if (($type == "what") || (($type == "action") && ((!isset($GLOBALS['what'])) || ($GLOBALS['what'] == "overview")))) {
284 //* DEBUG: */ echo __LINE__."+".$type."+<br />\n";
285 $OUT .= "</DIV><br />\n";
288 // Handle failed logins here if not in guest
289 //* DEBUG: */ echo __FUNCTION__.":type={$type},action={$GLOBALS['action']},what={$GLOBALS['what']},lvl={$ACC_LVL}<br />\n";
290 if ((($type == "what") || ($type == "action") && ((!isset($GLOBALS['what'])) || ($GLOBALS['what'] == "overview") || ($GLOBALS['what'] == $_CONFIG['index_home']))) && ($ACC_LVL != "guest") && ((GET_EXT_VERSION("sql_patches") >= "0.4.7") || (GET_EXT_VERSION("admins") >= "0.7.0"))) {
292 $OUT .= HANDLE_LOGIN_FAILTURES($ACC_LVL);
299 SQL_FREERESULT($result);
301 // Return or output HTML code?
303 // Output HTML code here
311 function ADD_MENU($MODE, $act, $wht) {
314 // Init some variables
320 if (!VALIDATE_MENU_ACTION($MODE, $act, $wht, true)) return CODE_MENU_NOT_VALID;
322 // Non-admin shall not see all menus
324 $AND = "AND visible='Y' AND locked='N'";
327 // Load SQL data and add the menu to the output stream...
328 $result_main = SQL_QUERY_ESC("SELECT title, action FROM "._MYSQL_PREFIX."_%s_menu WHERE (what='' OR what IS NULL) ".$AND." ORDER BY sort",
329 array($MODE), __FILE__, __LINE__);
330 //* DEBUG: */ echo __LINE__."/".$main_cnt."/".$main_action."/".$sub_what.":".$GLOBALS['what']."*<br />\n";
331 if (SQL_NUMROWS($result_main) > 0) {
332 OUTPUT_HTML("<TABLE border=\"0\" cellspacing=\"0\" cellpadding=\"0\" class=\"".$MODE."_menu\">");
333 // There are menus available, so we simply display them... :)
334 while (list($main_title, $main_action) = SQL_FETCHROW($result_main)) {
335 //* DEBUG: */ echo __LINE__."/".$main_cnt."/".$main_action."/".$sub_what.":".$GLOBALS['what']."*<br />\n";
337 $BLOCK_MODE = false; $act = $main_action;
341 'action' => $main_action,
342 'title' => $main_title
345 // Load menu header template
346 LOAD_TEMPLATE($MODE."_menu_title", false, $content);
348 $result_sub = SQL_QUERY_ESC("SELECT title, what FROM "._MYSQL_PREFIX."_%s_menu WHERE action='%s' AND what != '' AND what IS NOT NULL ".$AND." ORDER BY sort",
349 array($MODE, $main_action), __FILE__, __LINE__);
350 $ctl = SQL_NUMROWS($result_sub);
353 while (list($sub_title, $sub_what) = SQL_FETCHROW($result_sub)) {
357 // Full file name for checking menu
358 //* DEBUG: */ echo __LINE__.":!!!!".$sub_what."!!!<br />\n";
359 $test_inc = sprintf("%sinc/modules/%s/what-%s.php", PATH, $MODE, $sub_what);
360 $test = (FILE_READABLE($test_inc));
362 if ((!empty($wht)) && (($wht == $sub_what))) {
363 $content = "<STRONG>";
367 $content .= "<A name=\"menu\" class=\"menu_blur\" href=\"".URL."/modules.php?module=".$GLOBALS['module']."&what=".$sub_what.ADD_URL_DATA("")."\" target=\"_self\">";
373 $content .= $_CONFIG['menu_blur_spacer'].$sub_title;
381 if ((!empty($wht)) && (($wht == $sub_what))) {
382 $content .= "</STRONG>";
384 $wht = $sub_what; $cnt++;
391 // Add regular menu row or bottom row?
393 LOAD_TEMPLATE($MODE."_menu_row", false, $content);
395 LOAD_TEMPLATE($MODE."_menu_bottom", false, $content);
399 // This is a menu block... ;-)
401 $INC_BLOCK = sprintf("%sinc/modules/%s/action-%s.php", PATH, $MODE, $main_action);
402 if (FILE_READABLE($INC_BLOCK)) {
404 if ((!EXT_IS_ACTIVE($main_action)) || ($main_action == "online")) OUTPUT_HTML("<TR>
405 <TD class=\"".$MODE."_menu_whats\">");
406 //* DEBUG: */ echo __LINE__."/".$main_cnt."/".$main_action."/".$sub_what.":".$GLOBALS['what']."*<br />\n";
407 include ($INC_BLOCK);
408 //* DEBUG: */ echo __LINE__."/".$main_cnt."/".$main_action."/".$sub_what.":".$GLOBALS['what']."*<br />\n";
409 if ((!EXT_IS_ACTIVE($main_action)) || ($main_action == "online")) OUTPUT_HTML(" </TD>
412 //* DEBUG: */ echo __LINE__."/".$main_cnt."/".$main_action."/".$sub_what.":".$GLOBALS['what']."*<br />\n";
415 //* DEBUG: */ echo __LINE__."/".$main_cnt."/".$main_action."/".$sub_what.":".$GLOBALS['what']."*<br />\n";
416 if (SQL_NUMROWS($result_main) > $main_cnt) OUTPUT_HTML("<TR><TD class=\"".$MODE."_menu_seperator\"></TD></TR>");
420 SQL_FREERESULT($result_main);
423 //* DEBUG: */ echo __LINE__."/".$main_cnt."/".$main_action."/".$sub_what.":".$GLOBALS['what']."*<br />\n";
424 OUTPUT_HTML("</TABLE>");
427 // This patched function will reduce many SELECT queries for the specified or current admin login
428 function IS_ADMIN($admin="")
430 global $cacheArray, $_CONFIG;
431 $ret = false; $passCookie = ""; $valPass = "";
432 //* DEBUG: */ echo __LINE__."ADMIN:".$admin."<br />";
434 // If admin login is not given take current from cookies...
435 if ((empty($admin)) && (isSessionVariableSet('admin_login')) && (isSessionVariableSet('admin_md5'))) {
436 // Get admin login and password from session/cookies
437 $admin = get_session('admin_login');
438 $passCookie = get_session('admin_md5');
440 //* DEBUG: */ echo __LINE__."ADMIN:".$admin."/".$passCookie."<br />";
442 // Search in array for entry
443 if (isset($cacheArray['admin_hash'])) {
445 $valPass = $cacheArray['admin_hash'];
446 } elseif ((!empty($passCookie)) && (isset($cacheArray['admins']['password'][$admin])) && (!empty($admin))) {
448 $_CONFIG['cache_hits']++;
450 // Login data is valid or not?
451 $valPass = generatePassString($cacheArray['admins']['password'][$admin]);
454 $cacheArray['admin_hash'] = $valPass;
455 } elseif (!empty($admin)) {
457 $result = SQL_QUERY_ESC("SELECT HIGH_PRIORITY password FROM "._MYSQL_PREFIX."_admins WHERE login='%s' LIMIT 1",
458 array($admin), __FILE__, __LINE__);
462 if (SQL_NUMROWS($result) == 1) {
463 // Admin login was found so let's load password from DB
464 list($passDB) = SQL_FETCHROW($result);
466 // Temporary cache it
467 $cacheArray['admins']['password'][$admin] = $passDB;
469 // Generate password hash
470 $valPass = generatePassString($passDB);
474 SQL_FREERESULT($result);
477 if (!empty($valPass)) {
478 // Check if password is valid
479 //* DEBUG: */ echo __FUNCTION__."*".$valPass."/".$passCookie."*<br />\n";
480 $ret = (($valPass == $passCookie) || ((strlen($valPass) == 32) && ($valPass == md5($passCookie))) || (($valPass == "*FAILED*") && (!EXT_IS_ACTIVE("cache"))));
483 // Return result of comparision
484 //* DEBUG: */ if (!$ret) echo __LINE__."OK!<br />";
488 function ADD_MAX_RECEIVE_LIST($MODE, $default="", $return=false)
495 // Guests (in the registration form) are not allowed to select 0 mails per day.
496 $result = SQL_QUERY("SELECT value, comment FROM "._MYSQL_PREFIX."_max_receive WHERE value > 0 ORDER BY value", __FILE__, __LINE__);
497 if (SQL_NUMROWS($result) > 0)
500 while (list($value, $comment) = SQL_FETCHROW($result))
502 $OUT .= " <OPTION value=\"".$value."\"";
503 if ($_POST['max_mails'] == $value) $OUT .= " selected=\"selected\"";
504 $OUT .= ">".$value." ".PER_DAY;
505 if (!empty($comment)) $OUT .= " (".$comment.")";
506 $OUT .= "</OPTION>\n";
508 define('__MAX_RECEIVE_OPTIONS', $OUT);
511 SQL_FREERESULT($result);
512 $OUT = LOAD_TEMPLATE("guest_receive_table", true);
516 // Maybe the admin has to setup some maximum values?
521 // Members are allowed to set to zero mails per day (we will change this soon!)
522 $result = SQL_QUERY("SELECT value, comment FROM "._MYSQL_PREFIX."_max_receive ORDER BY value", __FILE__, __LINE__);
523 if (SQL_NUMROWS($result) > 0)
526 while (list($value, $comment) = SQL_FETCHROW($result))
528 $OUT .= " <OPTION value=\"".$value."\"";
529 if ($default == $value) $OUT .= " selected=\"selected\"";
530 $OUT .= ">".$value." ".PER_DAY;
531 if (!empty($comment)) $OUT .= " (".$comment.")";
532 $OUT .= "</OPTION>\n";
534 define('__MAX_RECEIVE_OPTIONS', $OUT);
535 SQL_FREERESULT($result);
536 $OUT = LOAD_TEMPLATE("member_receive_table", true);
540 // Maybe the admin has to setup some maximum values?
541 $OUT = LOAD_TEMPLATE("admin_settings_saved", true, NO_MAX_VALUES);
547 // Return generated HTML code
552 // Output directly (default)
557 function SEARCH_EMAIL_USERTAB($email)
560 $result = SQL_QUERY_ESC("SELECT userid FROM "._MYSQL_PREFIX."_user_data WHERE email LIKE '{PER}%s{PER}' LIMIT 1", array($email), __FILE__, __LINE__);
561 if (SQL_NUMROWS($result) == 1) $ret = true;
562 SQL_FREERESULT($result);
566 function WHAT_IS_VALID($act, $wht, $type="guest")
570 // Everything is valid to the admin :-)
576 $result = SQL_QUERY_ESC("SELECT id FROM "._MYSQL_PREFIX."_%s_menu WHERE action='%s' AND what='%s' AND locked='N' LIMIT 1", array($type, $act, $wht), __FILE__, __LINE__);
578 if (SQL_NUMROWS($result) == 1) $ret = true;
579 SQL_FREERESULT($result);
586 global $status, $LAST, $cacheArray;
587 if (!is_array($LAST)) $LAST = array();
590 // is the cache entry there?
591 if (isset($cacheArray['is_member'])) {
593 return $cacheArray['is_member'];
596 // Fix "deleted" cookies first
597 FIX_DELETED_COOKIES(array('userid','u_hash','lifetime'));
600 if ((!empty($GLOBALS['userid'])) && (isSessionVariableSet('u_hash')) && (isSessionVariableSet('lifetime')) && (defined('COOKIE_PATH')))
602 // Cookies are set with values, but are they valid?
603 $result = SQL_QUERY_ESC("SELECT password, status, last_module, last_online FROM "._MYSQL_PREFIX."_user_data WHERE userid=%s LIMIT 1",
604 array($GLOBALS['userid']), __FILE__, __LINE__);
605 if (SQL_NUMROWS($result) == 1)
607 // Load data from cookies
608 list($password, $status, $mod, $onl) = SQL_FETCHROW($result);
610 // Validate password by created the difference of it and the secret key
611 $valPass = generatePassString($password);
613 // Transfer last module and online time
614 if ((!empty($mod)) && (empty($LAST['module']))) { $LAST['module'] = $mod; $LAST['online'] = $onl; }
616 // So did we now have valid data and an unlocked user?
617 //* DEBUG: */ echo $valPass."<br />".get_session('u_hash')."<br />";
618 if (($status == "CONFIRMED") && ($valPass == get_session('u_hash'))) {
619 // Account is confirmed and all cookie data is valid so he is definely logged in! :-)
622 // Maybe got locked etc.
623 //* DEBUG: */ echo __LINE__."!!!<br />";
624 destroy_user_session();
627 $GLOBALS['userid'] = 0;
630 // Cookie data is invalid!
631 //* DEBUG: */ echo __LINE__."***<br />";
634 $GLOBALS['userid'] = 0;
638 SQL_FREERESULT($result);
640 // Cookie data is invalid!
641 //* DEBUG: */ echo __LINE__."///<br />";
642 destroy_user_session();
645 $GLOBALS['userid'] = 0;
649 $cacheArray['is_member'] = $ret;
655 function UPDATE_LOGIN_DATA () {
656 global $LAST, $_CONFIG;
657 if (!is_array($LAST)) $LAST = array();
659 // Recheck if logged in
660 if (!IS_MEMBER()) return false;
663 $GLOBALS['userid'] = bigintval(get_session('userid'));
665 // Extract last online time (life) and how long is auto-login valid (time)
666 $newl = time() + bigintval(get_session('lifetime'));
668 // Load last module and last online time
669 $result = SQL_QUERY_ESC("SELECT last_module, last_online FROM "._MYSQL_PREFIX."_user_data WHERE userid=%s LIMIT 1", array($GLOBALS['userid']), __FILE__, __LINE__);
670 if (SQL_NUMROWS($result) == 1) {
671 // Load last module and online time
672 list($mod, $onl) = SQL_FETCHROW($result);
673 SQL_FREERESULT($result);
675 // Maybe first login time?
676 if (empty($mod)) $mod = "login";
678 if (set_session("userid", $GLOBALS['userid'], $newl, COOKIE_PATH) && set_session("u_hash", get_session('u_hash'), $newl, COOKIE_PATH) && set_session("lifetime", bigintval(get_session('lifetime')), $newl, COOKIE_PATH)) {
679 // This will be displayed on welcome page! :-)
680 if (empty($LAST['module'])) {
681 $LAST['module'] = $mod; $LAST['online'] = $onl;
685 if (empty($GLOBALS['what'])) {
687 $GLOBALS['what'] = "welcome";
688 if (!empty($_CONFIG['index_home'])) $GLOBALS['what'] = $_CONFIG['index_home'];
691 // Update last module / online time
692 $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_user_data SET last_module='%s', last_online=UNIX_TIMESTAMP() WHERE userid=%s LIMIT 1",
693 array($GLOBALS['what'], $GLOBALS['userid']), __FILE__, __LINE__);
696 // Destroy session, we cannot update!
697 destroy_user_session();
701 function VALIDATE_MENU_ACTION ($MODE, $act, $wht, $UPDATE=false)
705 if ((!IS_ADMIN()) && ($MODE != "admin")) $ADD = " AND locked='N'";
706 //* DEBUG: */ echo __LINE__.":".$MODE."/".$act."/".$wht."*<br />\n";
707 if (($MODE != "admin") && ($UPDATE))
709 // Update guest or member menu
710 $SQL = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_%s_menu SET counter=counter+1 WHERE action='%s' AND what='%s'".$ADD." LIMIT 1",
711 array($MODE, $act, $wht), __FILE__, __LINE__, false);
713 elseif ($wht != "overview")
716 $SQL = SQL_QUERY_ESC("SELECT id, what FROM "._MYSQL_PREFIX."_%s_menu WHERE action='%s'".$ADD." ORDER BY action DESC LIMIT 1",
717 array($MODE, $act), __FILE__, __LINE__, false);
721 // Admin login overview
722 $SQL = SQL_QUERY_ESC("SELECT id, what FROM "._MYSQL_PREFIX."_%s_menu WHERE action='%s' AND (what='' OR what IS NULL)".$ADD." ORDER BY action DESC LIMIT 1",
723 array($MODE, $act), __FILE__, __LINE__, false);
727 $result = SQL_QUERY($SQL, __FILE__, __LINE__);
730 if (SQL_AFFECTEDROWS() == 1) $ret = true;
731 //* DEBUG: */ debug_print_backtrace();
735 if (SQL_NUMROWS($result) == 1) {
736 list($id, $wht2) = SQL_FETCHROW($result);
737 //* DEBUG: */ echo __LINE__."+".$SQL."+<br />\n";
738 //* DEBUG: */ echo __LINE__."*".$id."/".$wht."/".$wht2."*<br />\n";
744 SQL_FREERESULT($result);
750 function GET_MOD_DESCR($MODE, $wht, $column="what")
755 if (!empty($_CONFIG['index_home'])) $wht = $_CONFIG['index_home'];
758 // Default is not found
759 $ret = "??? (".$wht.")";
762 $result = SQL_QUERY_ESC("SELECT title FROM "._MYSQL_PREFIX."_%s_menu WHERE %s='%s' LIMIT 1",
763 array($MODE, $column, $wht), __FILE__, __LINE__);
765 // Is there an entry?
766 if (SQL_NUMROWS($result) == 1) {
768 list($ret) = SQL_FETCHROW($result);
772 SQL_FREERESULT($result);
776 function SEND_MODE_MAILS($mod, $modes)
778 global $_CONFIG, $DATA;
781 $result_main = SQL_QUERY_ESC("SELECT password FROM "._MYSQL_PREFIX."_user_data WHERE userid=%s AND status='CONFIRMED' LIMIT 1",
782 array($GLOBALS['userid']), __FILE__, __LINE__);
783 if (SQL_NUMROWS($result_main) == 1) {
784 // Load hash from database
785 list($hashDB) = SQL_FETCHROW($result_main);
787 // Extract salt from cookie
788 $salt = substr(get_session('u_hash'), 0, -40);
790 // Now let's compare passwords
791 $hash = generatePassString($hashDB);
792 if (($hash == get_session('u_hash')) || ($_POST['pass1'] == $_POST['pass2'])) {
794 $result = SQL_QUERY_ESC("SELECT gender, surname, family, street_nr, country, zip, city, email FROM "._MYSQL_PREFIX."_user_data WHERE userid=%s AND password='%s' LIMIT 1",
795 array($GLOBALS['userid'], $hashDB), __FILE__, __LINE__);
796 if (SQL_NUMROWS($result) == 1) {
798 $DATA = SQL_FETCHROW($result);
801 SQL_FREERESULT($result);
804 $DATA[0] = TRANSLATE_GENDER($DATA[0]);
806 // Clear/init the content variable
813 foreach ($modes as $mode) {
816 case "normal": break; // Do not add any special lines
818 case "email": // Email was changed!
819 $content = MEMBER_CHANGED_EMAIL.": ".$_POST['old_addy']."\n";
822 case "pass": // Password was changed
823 $content = MEMBER_CHANGED_PASS."\n";
827 $content = MEMBER_UNKNOWN_MODE.": ".$mode."\n\n";
832 if (EXT_IS_ACTIVE("country")) {
833 // Replace code with description
834 $DATA[4] = COUNTRY_GENERATE_INFO($_POST['country_code']);
838 $msg = LOAD_EMAIL_TEMPLATE("member_mydata_notify", $content, $GLOBALS['userid']);
840 if ($_CONFIG['admin_notify'] == "Y") {
841 // The admin needs to be notified about a profile change
842 $msg_admin = "admin_mydata_notify";
843 $sub_adm = ADMIN_CHANGED_DATA;
851 $sub_mem = MEMBER_CHANGED_DATA;
853 // Output success message
854 $content = "<STRONG><SPAN class=\"member_done\">".MYDATA_MAIL_SENT."</SPAN></STRONG>";
858 $content = "<STRONG><SPAN class=\"member_failed\">".UNKNOWN_MODULE."</SPAN></STRONG>";
862 // Could not load profile data
863 $content = "<STRONG><SPAN class=\"member_failed\">".MEMBER_CANNOT_LOAD_PROFILE."</SPAN></STRONG>";
866 // Passwords mismatch
867 $content = "<STRONG><SPAN class=\"member_failed\">".MEMBER_PASSWORD_ERROR."</SPAN></STRONG>";
870 // Could not load profile
871 $content = "<STRONG><SPAN class=\"member_failed\">".MEMBER_CANNOT_LOAD_PROFILE."</SPAN></STRONG>";
874 // Send email to user if required
875 if ((!empty($sub_mem)) && (!empty($msg))) {
877 SEND_EMAIL($DATA[7], $sub_mem, $msg);
880 // Send only if no other error has occured
881 if (empty($content)) {
882 if ((!empty($sub_adm)) && (!empty($msg_admin))) {
884 SEND_ADMIN_NOTIFICATION($sub_adm, $msg_admin, $content, $GLOBALS['userid']);
885 } elseif ($_CONFIG['admin_notify'] == "Y") {
886 // Cannot send mails to admin!
887 $content = CANNOT_SEND_ADMIN_MAILS;
890 $content = "<STRONG><SPAN class=\"member_done\">".MYDATA_MAIL_SENT."</SPAN></STRONG>";
895 LOAD_TEMPLATE("admin_settings_saved", false, $content);
897 // Update module counter
898 function COUNT_MODULE($mod)
902 // Do count all other modules but not accesses on CSS file css.php!
903 $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_mod_reg SET clicks=clicks+1 WHERE module='%s' LIMIT 1",
904 array($mod), __FILE__, __LINE__);
907 // Get action value from mode (admin/guest/member) and what-value
908 function GET_ACTION ($MODE, &$wht)
910 global $ret, $_CONFIG;
911 // @DEPRECATED Init status
914 //* DEBUG: */ echo __LINE__."=".$MODE."/".$wht."/".$GLOBALS['action']."=<br />";
915 if ((empty($wht)) && ($MODE != "admin")) {
917 if (!empty($_CONFIG['index_home'])) $wht = $_CONFIG['index_home'];
920 if ($MODE == "admin") {
921 // Action value for admin area
922 if (!empty($GLOBALS['action'])) {
923 // Get it directly from URL
924 return $GLOBALS['action'];
925 } elseif (($wht == "overview") || (empty($GLOBALS['what']))) {
926 // Default value for admin area
929 } elseif (!empty($GLOBALS['action'])) {
930 // Get it directly from URL
931 return $GLOBALS['action'];
933 //* DEBUG: */ echo __LINE__."*".$ret."*<br />\n";
935 if (MODULE_HAS_MENU($MODE)) {
936 // Rewriting modules to menu
938 case "index": $MODE = "guest"; break;
939 case "login": $MODE = "member"; break;
942 // Guest and member menu is "main" as the default
943 if (empty($ret)) $ret = "main";
945 // Load from database
946 $result = SQL_QUERY_ESC("SELECT action FROM "._MYSQL_PREFIX."_%s_menu WHERE what='%s' LIMIT 1",
947 array($MODE, $wht), __FILE__, __LINE__);
948 if (SQL_NUMROWS($result) == 1) {
949 // Load action value and pray that this one is the right you want... ;-)
950 list($ret) = SQL_FETCHROW($result);
954 SQL_FREERESULT($result);
957 // Return action value
961 function GET_CATEGORY ($cid) {
962 // Default is not found
963 $ret = _CATEGORY_404;
965 // Is the category id set?
968 $ret = _CATEGORY_NONE;
969 } elseif ($cid > 0) {
970 // Lookup the category in database
971 $result = SQL_QUERY_ESC("SELECT cat FROM "._MYSQL_PREFIX."_cats WHERE id=%s LIMIT 1",
972 array(bigintval($cid)), __FILE__, __LINE__);
973 if (SQL_NUMROWS($result) == 1) {
974 // Category found... :-)
975 list($ret) = SQL_FETCHROW($result);
979 SQL_FREERESULT($result);
986 function GET_PAYMENT ($pid, $full=false) {
987 // Default is not found
991 $result = SQL_QUERY_ESC("SELECT mail_title, price FROM "._MYSQL_PREFIX."_payments WHERE id=%s LIMIT 1",
992 array(bigintval($pid)), __FILE__, __LINE__);
993 if (SQL_NUMROWS($result) == 1) {
994 // Payment type found... :-)
997 list($ret) = SQL_FETCHROW($result);
999 // Return title and price
1000 list($t, $p) = SQL_FETCHROW($result);
1001 $ret = $t." / ".TRANSLATE_COMMA($p)." ".POINTS;
1006 SQL_FREERESULT($result);
1012 function GET_PAY_POINTS($pid, $lookFor="price")
1015 $result = SQL_QUERY_ESC("SELECT %s FROM "._MYSQL_PREFIX."_payments WHERE id=%s LIMIT 1",
1016 array($lookFor, $pid), __FILE__, __LINE__);
1017 if (SQL_NUMROWS($result) == 1)
1019 // Payment type found... :-)
1020 list($ret) = SQL_FETCHROW($result);
1021 SQL_FREERESULT($result);
1025 // Remove a receiver's ID from $ARRAY and add a link for him to confirm
1026 function REMOVE_RECEIVER(&$ARRAY, $key, $uid, $pool_id, $stats_id="", $bonus=false)
1031 // Remove entry from array
1032 unset($ARRAY[$key]);
1034 // Is there already a line for this user available?
1037 // Only when we got a real stats ID continue searching for the entry
1038 $type = "NORMAL"; $rowName = "stats_id";
1039 if ($bonus) { $type = "BONUS"; $rowName = "bonus_id"; }
1040 $result = SQL_QUERY_ESC("SELECT id FROM "._MYSQL_PREFIX."_user_links WHERE %s='%s' AND userid=%s AND link_type='%s' LIMIT 1",
1041 array($rowName, $stats_id, bigintval($uid), $type), __FILE__, __LINE__);
1042 if (SQL_NUMROWS($result) == 0)
1044 // No, so we add one!
1045 $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_user_links (%s, userid, link_type) VALUES ('%s','%s','%s')",
1046 array($rowName, $stats_id, bigintval($uid), $type), __FILE__, __LINE__);
1056 SQL_FREERESULT($result);
1059 // Return status for sending routine
1063 function GET_TOTAL_DATA($search, $tableName, $lookFor, $whereStatement="userid", $onlyRows=false) {
1067 $result = SQL_QUERY_ESC("SELECT COUNT(%s) FROM "._MYSQL_PREFIX."_%s WHERE %s='%s'",
1068 array($lookFor, $tableName, $whereStatement, $search), __FILE__, __LINE__);
1071 $result = SQL_QUERY_ESC("SELECT SUM(%s) FROM "._MYSQL_PREFIX."_%s WHERE %s='%s'",
1072 array($lookFor, $tableName, $whereStatement, $search), __FILE__, __LINE__);
1076 list($ret) = SQL_FETCHROW($result);
1079 SQL_FREERESULT($result);
1082 if ((empty($ret)) && ($lookFor != "counter") && ($lookFor != "id") && ($lookFor != "userid")) {
1089 // "Getter fro ref level percents
1090 function GET_REF_LEVEL_PERCENTS ($level) {
1091 global $cacheInstance, $_CONFIG, $cacheArray;
1096 // Do we have cache?
1097 if ((isset($cacheArray['ref_depths']['level'])) && (EXT_IS_ACTIVE("cache"))) {
1098 // First look for level
1099 $key = array_search($level, $cacheArray['ref_depths']['level']);
1100 if ($key !== false) {
1102 $per = $cacheArray['ref_depths']['percents'][$key];
1105 $_CONFIG['cache_hits']++;
1109 $result_lvl = SQL_QUERY_ESC("SELECT percents FROM "._MYSQL_PREFIX."_refdepths WHERE level='%s' LIMIT 1",
1110 array(bigintval($level)), __FILE__, __LINE__);
1113 if (SQL_NUMROWS($result_lvl) == 1) {
1115 list($per) = SQL_FETCHROW($result_lvl);
1119 SQL_FREERESULT($result_lvl);
1127 * Dynamic referral system, can also send mails!
1129 * uid = Referral ID wich should receive...
1130 * points = ... xxx points
1131 * send_notify = shall I send the referral an email or not?
1132 * rid = inc/modules/guest/what-confirm.php need this
1133 * locked = Shall I pay it to normal (false) or locked (true) points ammount?
1134 * add_mode = Add points only to $uid or also refs? (WARNING! Changing "ref" to "direct"
1135 * for default value will cause no referral will get points ever!!!)
1137 function ADD_POINTS_REFSYSTEM($uid, $points, $send_notify=false, $rid="0", $locked=false, $add_mode="ref") {
1138 global $DEPTH, $_CONFIG, $DATA, $cacheArray;
1140 // Convert mode to lower-case
1141 $add_mode = strtolower($add_mode);
1144 //DEBUG_LOG(__FUNCTION__.": uid={$uid},points={$points}");
1146 // When $uid = 0 add points to jackpot
1148 // Add points to jackpot
1149 ADD_JACKPOT($points);
1153 // Count up referral depth
1154 if (!isset($DEPTH)) {
1155 // Initialialize referral system
1158 // Increase referral level
1162 // Default is "normal" points
1165 // Which points, locked or normal?
1166 if ($locked) $data = "locked_points";
1168 // Check user account
1169 $result_user = SQL_QUERY_ESC("SELECT refid, email FROM "._MYSQL_PREFIX."_user_data WHERE userid=%s AND status='CONFIRMED' LIMIT 1",
1170 array(bigintval($uid)), __FILE__, __LINE__);
1172 //* DEBUG */ echo "+".SQL_NUMROWS($result_user).":".$points."+<br />\n";
1173 if (SQL_NUMROWS($result_user) == 1) {
1174 // This is the user and his ref
1175 list($ref, $email) = SQL_FETCHROW($result_user);
1176 $cacheArray['add_uid'][$ref] = $uid;
1179 //DEBUG_LOG(__FUNCTION__.": ref={$ref},email={$email},DEPTH={$DEPTH}");
1182 $per = GET_REF_LEVEL_PERCENTS($DEPTH);
1183 //* DEBUG: */ echo __FUNCTION__.":uid={$uid},points={$points},depth={$DEPTH},per={$per},mode={$add_mode}<br />\n";
1185 // Some percents found?
1187 // Calculate new points
1188 $ref_points = $points * $per / 100;
1190 // Pay refback here if level > 0 and in ref-mode
1191 if (($DEPTH > 0) && ($per < 100) && ($add_mode == "ref")) {
1192 //* DEBUG: */ echo __FUNCTION__.":uid={$uid},data={$cacheArray['add_uid'][$uid]},ref_points={$ref_points},depth={$DEPTH} - BEFORE!<br />\n";
1193 $ref_points = ADD_REFBACK_POINTS($cacheArray['add_uid'][$uid], $uid, $ref_points, $DEPTH);
1194 //* DEBUG: */ echo __FUNCTION__.":uid={$uid},data={$cacheArray['add_uid'][$uid]},ref_points={$ref_points},depth={$DEPTH} - AFTER!<br />\n";
1198 //DEBUG_LOG(__FUNCTION__.": percent={$per},ref_points={$ref_points}");
1201 //* DEBUG: */ echo __FUNCTION__.":data={$data},ref_points={$ref_points},uid={$uid},depth={$DEPTH} - UPDATE!<br />\n";
1202 SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_user_points SET %s=%s+%s WHERE userid=%s AND ref_depth=%d LIMIT 1",
1203 array($data, $data, $ref_points, bigintval($uid), bigintval($DEPTH)), __FILE__, __LINE__);
1206 //DEBUG_LOG(__FUNCTION__.": affectedRows=".SQL_AFFECTEDROWS().",DEPTH={$DEPTH}");
1208 // No entry updated?
1209 if (SQL_AFFECTEDROWS() == 0) {
1210 // First ref in this level! :-)
1211 $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_user_points (userid, ref_depth, %s) VALUES (%s, %d, %s)",
1212 array($data, bigintval($uid), bigintval($DEPTH), $ref_points), __FILE__, __LINE__);
1215 //DEBUG_LOG(__FUNCTION__.": insertedRows=".SQL_AFFECTEDROWS()."");
1218 // Update mediadata as well
1219 if (GET_EXT_VERSION("mediadata") >= "0.0.4") {
1221 MEDIA_UPDATE_ENTRY(array("total_points"), "add", $ref_points);
1224 // Points updated, maybe I shall send him an email?
1225 if (($send_notify) && ($ref > 0) && (!$locked)) {
1229 'level' => bigintval($DEPTH),
1230 'points' => $ref_points,
1231 'refid' => bigintval($ref)
1234 // Load email template
1235 $msg = LOAD_EMAIL_TEMPLATE("confirm-referral", $content, bigintval($uid));
1237 SEND_EMAIL($email, THANX_REFERRAL_ONE, $msg);
1238 } elseif (($send_notify) && ($ref == 0) && (!$locked) && ($add_mode == "direct") && (!defined('__POINTS_VALUE'))) {
1239 // Direct payment shall be notified about
1240 define('__POINTS_VALUE', $ref_points);
1244 'text' => REASON_DIRECT_PAYMENT,
1245 'points' => TRANSLATE_COMMA($ref_points)
1249 $msg = LOAD_EMAIL_TEMPLATE("add-points", $content, $uid);
1252 SEND_EMAIL($email, SUBJECT_DIRECT_PAYMENT, $msg);
1253 if (!isset($_GET['mid'])) LOAD_TEMPLATE("admin_settings_saved", false, ADMIN_POINTS_ADDED);
1256 // Maybe there's another ref?
1257 if (($ref > 0) && ($points > 0) && ($ref != $uid) && ($add_mode == "ref")) {
1258 // Then let's credit him here...
1259 ADD_POINTS_REFSYSTEM($ref, $points, $send_notify, $ref, $locked);
1265 SQL_FREERESULT($result_user);
1267 // Payback refback for refid and reduce it for current user
1268 function ADD_REFBACK_POINTS ($uid, $ref, $points) {
1269 global $DEPTH, $cacheArray;
1274 // "Walk through all refids
1275 //* DEBUG: */ echo __FUNCTION__.":uid={$uid},ref={$ref},points={$points}<br />\n";
1276 foreach (GET_REFBACK_USERID_ARRAY($uid) as $refid) {
1277 // Skip level zero or if both are the same
1278 if ($uid == $refid) continue;
1280 // Get refback percents
1281 $percents = GET_REFBACK_PERCENTS($uid, $refid);
1282 //* DEBUG: */ echo __FUNCTION__.":uid={$uid},ref={$ref},refid={$refid},points={$points},percents={$percents}<br />\n";
1284 // Some percents given?
1285 if ($percents > 0) {
1286 // Get points for refback
1287 $refback = $points * $percents / 100;
1289 // Add points again, but only directly
1290 //* DEBUG: */ echo __FUNCTION__.":refback={$refback},depth={$DEPTH}<br />\n";
1291 $cacheArray['depth'][$uid][$ref] = $DEPTH; $DEPTH = -1;
1292 ADD_POINTS_REFSYSTEM($uid, $refback, false, "0", false, "direct");
1293 $DEPTH = $cacheArray['depth'][$uid][$ref];
1294 //* DEBUG: */ echo __FUNCTION__.":depth={$DEPTH} - RESTORE!<br />\n";
1296 // Reduce points if refid is found
1297 if ($refid == $ref) {
1298 // Reduce points here!
1299 $return = $points - $refback;
1300 //* DEBUG: */ echo __FUNCTION__.":points={$return} - REDUCED<br />\n";
1308 // "Getter" for refback percents
1309 function GET_REFBACK_PERCENTS ($uid, $ref) {
1310 //* DEBUG: */ echo __FUNCTION__.":uid={$uid},ref={$ref}<br />\n";
1311 // Skip identical ids
1312 if ($uid == $ref) return 0;
1317 // Get percents from database
1318 $result = SQL_QUERY_ESC("SELECT refback FROM "._MYSQL_PREFIX."_user_refs WHERE userid=%s AND refid=%s LIMIT 1",
1319 array($ref, $uid), __FILE__, __LINE__);
1321 // Entry found? (Should be!)
1322 if (SQL_NUMROWS($result) == 1) {
1324 list($percents) = SQL_FETCHROW($result);
1327 DEBUG_LOG(__FUNCTION__.": uid={$uid},ref={$ref} - No entry found! :-(");
1331 SQL_FREERESULT($result);
1336 // "Getter" for userid array
1337 function GET_REFBACK_USERID_ARRAY ($rid) {
1338 //* DEBUG: */ echo __FUNCTION__.":rid={$rid}<br />\n";
1343 $result = SQL_QUERY_ESC("SELECT userid
1344 FROM "._MYSQL_PREFIX."_user_refs
1347 ORDER BY userid ASC",
1348 array($rid), __FILE__, __LINE__);
1351 if (SQL_NUMROWS($result) > 0) {
1353 while (list($userid) = SQL_FETCHROW($result)) {
1354 //* DEBUG: */ echo __FUNCTION__.":rid={$rid},userid={$userid}<br />\n";
1355 $userIds[] = $userid;
1360 SQL_FREERESULT($result);
1363 //* DEBUG: */ echo __FUNCTION__.":rid={$rid},count()=".count($userIds)."<br />\n";
1367 function UPDATE_REF_COUNTER ($uid) {
1368 global $cacheArray, $cacheInstance;
1370 // Make it sure referral level zero (member him-/herself) is at least selected
1371 if (empty($cacheArray['ref_level'][$uid])) $cacheArray['ref_level'][$uid] = 1;
1372 //* DEBUG: */ echo __FUNCTION__.":uid={$uid},level={$cacheArray['ref_level'][$uid]}<br />\n";
1375 $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_refsystem SET counter=counter+1 WHERE userid=%s AND level='%s' LIMIT 1",
1376 array(bigintval($uid), $cacheArray['ref_level'][$uid]), __FILE__, __LINE__);
1378 // When no entry was updated then we have to create it here
1379 //* DEBUG: */ echo __FUNCTION__.":updated=".SQL_AFFECTEDROWS()."<br />\n";
1380 if (SQL_AFFECTEDROWS() == 0) {
1382 $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_refsystem (userid, level, counter) VALUES (%s,%s,1)",
1383 array(bigintval($uid), $cacheArray['ref_level'][$uid]), __FILE__, __LINE__);
1384 //* DEBUG: */ echo __FUNCTION__.":uid={$uid}<br />\n";
1387 // Check for his referral
1388 $result = SQL_QUERY_ESC("SELECT refid FROM "._MYSQL_PREFIX."_user_data WHERE userid=%s LIMIT 1",
1389 array(bigintval($uid)), __FILE__, __LINE__);
1392 list($ref) = SQL_FETCHROW($result);
1395 SQL_FREERESULT($result);
1396 //* DEBUG: */ echo __FUNCTION__.":uid={$uid},ref={$ref}<br />\n";
1398 // When he has a referral...
1399 if (($ref > 0) && ($ref != $uid)) {
1400 // Move to next referral level and count his counter one up!
1401 //* DEBUG: */ echo __FUNCTION__.":ref={$ref} - ADVANCE!<br />\n";
1402 $cacheArray['ref_level'][$uid]++; UPDATE_REF_COUNTER($ref);
1403 } elseif ((($ref == $uid) || ($ref == 0)) && (GET_EXT_VERSION("cache") >= "0.1.2")) {
1404 // Remove cache here
1405 //* DEBUG: */ echo __FUNCTION__.":ref={$ref} - CACHE!<br />\n";
1406 if ($cacheInstance->cache_file("refsystem", true)) $cacheInstance->cache_destroy();
1410 $cacheArray['ref_level'][$uid]--;
1412 // Handle refback here
1413 UPDATE_REFBACK_TABLE($uid);
1415 // Update "refback table"
1416 function UPDATE_REFBACK_TABLE($uid)
1418 global $cacheArray, $cacheInstance;
1420 // Make it sure referral level zero (member him-/herself) is at least selected
1421 if (empty($cacheArray['back_level'])) $cacheArray['back_level'] = 1;
1422 //* DEBUG: */ echo __FUNCTION__.":uid={$uid},level={$cacheArray['back_level']}<br />\n";
1425 $cacheArray['up_refid'][$cacheArray['back_level']] = 0;
1426 $old = 0; $minus = 0;
1428 // Check for his referral
1429 $result_refid = SQL_QUERY_ESC("SELECT userid FROM "._MYSQL_PREFIX."_user_data WHERE refid=%s ORDER BY userid ASC",
1430 array(bigintval($uid)), __FILE__, __LINE__);
1432 // When no entry was updated then we have to create it here
1433 //* DEBUG: */ echo __FUNCTION__.":found=".SQL_NUMROWS($result_refid)."<br />\n";
1434 if (SQL_NUMROWS($result_refid) > 0) {
1436 while(list($cacheArray['up_refid'][$cacheArray['back_level']]) = SQL_FETCHROW($result_refid)) {
1438 $cacheArray['up_userid'][$cacheArray['up_refid'][$cacheArray['back_level']]] = $uid;
1440 //* DEBUG: */ echo __FUNCTION__.":uid={$uid},ref={$cacheArray['up_refid'][$cacheArray['back_level']]}<br />\n";
1442 if (($cacheArray['up_refid'][$cacheArray['back_level']] > 0) && ($cacheArray['up_refid'][$cacheArray['back_level']] != $uid) && (!empty($cacheArray['up_refid'][$cacheArray['back_level']]))) {
1444 if ((isset($cacheArray['up_refid'][$cacheArray['back_level']-1])) && (isset($cacheArray['up_userid'][$cacheArray['up_refid'][$cacheArray['back_level']-1]]))) {
1447 $uid = $cacheArray['up_userid'][$cacheArray['up_refid'][$cacheArray['back_level']-1]];
1449 //* DEBUG: */ echo __FUNCTION__.":uid={$uid},old={$old},level={$cacheArray['back_level']},ref={$cacheArray['up_refid'][$cacheArray['back_level']]} - NEW UID!<br />\n";
1453 $result = SQL_QUERY_ESC("SELECT id FROM "._MYSQL_PREFIX."_user_refs WHERE userid=%s AND level='%s' AND refid=%s LIMIT 1",
1454 array(bigintval($uid), $cacheArray['back_level'], bigintval($cacheArray['up_refid'][$cacheArray['back_level']])), __FILE__, __LINE__);
1456 // Do we have no entry?
1457 //* DEBUG: */ echo __FUNCTION__.":uid={$uid},level={$cacheArray['back_level']},ref={$cacheArray['up_refid'][$cacheArray['back_level']]},minus={$minus},numRows=".SQL_NUMROWS($result)." - FOUND!<br />\n";
1458 if (SQL_NUMROWS($result) == 0) {
1459 // Insert this level
1460 //* DEBUG: */ echo __FUNCTION__.":uid={$uid},level={$cacheArray['back_level']},ref={$cacheArray['up_refid'][$cacheArray['back_level']]} - ADD!<br />\n";
1461 $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_user_refs (userid, level, refid) VALUES (%s,%s,%s)",
1462 array(bigintval($uid), $cacheArray['back_level'], bigintval($cacheArray['up_refid'][$cacheArray['back_level']])), __FILE__, __LINE__);
1464 // Move to next referral level and count his counter one up!
1465 $cacheArray['back_level']++; UPDATE_REFBACK_TABLE($cacheArray['up_refid'][($cacheArray['back_level'] - 1)]);
1468 // Do we have another level here?
1469 if ((($cacheArray['back_level']-$minus) > 0) && ($old > 0)) {
1473 // Shall we add this as well?
1474 $result = SQL_QUERY_ESC("SELECT id FROM "._MYSQL_PREFIX."_user_refs WHERE userid=%s AND level='%s' AND refid=%s LIMIT 1",
1475 array(bigintval($uid), ($cacheArray['back_level']-$minus), bigintval($cacheArray['up_refid'][$cacheArray['back_level']])), __FILE__, __LINE__);
1477 // Do we have no entry?
1478 //* DEBUG: */ echo __FUNCTION__.":uid={$uid},level=".($cacheArray['back_level']-$minus).",ref={$cacheArray['up_refid'][$cacheArray['back_level']]},numRows=".SQL_NUMROWS($result)." - BACK!<br />\n";
1479 if (SQL_NUMROWS($result) == 0) {
1480 // Insert this level
1481 $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_user_refs (userid, level, refid) VALUES (%s,%s,%s)",
1482 array(bigintval($uid), ($cacheArray['back_level']-$minus), bigintval($cacheArray['up_refid'][$cacheArray['back_level']])), __FILE__, __LINE__);
1483 //* DEBUG: */ echo __FUNCTION__.":uid={$uid},level=".($cacheArray['back_level']-$minus).",ref={$cacheArray['up_refid'][$cacheArray['back_level']]} - RETURNED!<br />\n";
1490 SQL_FREERESULT($result_refid);
1493 // When he has a referral...
1494 if ((($cacheArray['up_refid'][$cacheArray['back_level']] == $uid) || ($cacheArray['up_refid'][$cacheArray['back_level']] == 0)) && (GET_EXT_VERSION("cache") >= "0.1.2") && (!isset($cacheArray['back_cached']))) {
1495 // Remove cache here
1496 //* DEBUG: */ echo __FUNCTION__.":uid={$uid},ref={$cacheArray['up_refid'][$cacheArray['back_level']]} - CACHE!<br />\n";
1497 if ($cacheInstance->cache_file("refback", true)) $cacheInstance->cache_destroy();
1498 $cacheArray['back_cached'] = 1;
1502 $cacheArray['back_level']--;
1503 //* DEBUG: */ echo __FUNCTION__.":uid={$uid},level={$cacheArray['back_level']} - LEVEL!<br />\n";
1506 if (!isset($cacheArray['up_refid'][$cacheArray['back_level']-1])) $cacheArray['up_refid'][$cacheArray['back_level']-1] = 0;
1507 //* DEBUG: */ echo __FUNCTION__.":uid={$uid},level={$cacheArray['back_level']},ref={$cacheArray['up_refid'][$cacheArray['back_level']-1]} - BACK!<br />\n";
1509 // Updates/extends the online list
1510 function UPDATE_ONLINE_LIST($SID, $mod, $act, $wht) {
1513 // Do not update online list when extension is deactivated
1514 if (!EXT_IS_ACTIVE("online", true)) return;
1518 // This is invalid here!
1519 print "Invalid session. Backtrace:<pre>";
1520 debug_print_backtrace();
1524 // Initialize variables
1525 $uid = 0; $rid = 0; $MEM = "N"; $ADMIN = "N";
1528 if ((!empty($GLOBALS['userid'])) && ($GLOBALS['userid'] > 0) && (IS_MEMBER())) {
1530 $uid = bigintval($GLOBALS['userid']);
1539 if (isSessionVariableSet('up_refid')) {
1541 if (get_session('refid') > 0) $rid = bigintval($GLOBALS['refid']);
1544 // Now search for the user
1545 $result = SQL_QUERY_ESC("SELECT timestamp FROM "._MYSQL_PREFIX."_online
1546 WHERE sid='%s' LIMIT 1",
1547 array($SID), __FILE__, __LINE__);
1550 if (SQL_NUMROWS($result) == 1) {
1552 SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_online SET
1560 timestamp=UNIX_TIMESTAMP()
1561 WHERE sid='%s' LIMIT 1",
1562 array($mod, $act, $wht, $uid, $rid, $MEM, $ADMIN, $SID), __FILE__, __LINE__
1565 // No entry does exists so we simply add it!
1566 SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_online (module, action, what, userid, refid, is_member, is_admin, timestamp, sid, ip) VALUES ('%s','%s','%s', %s, %s, '%s','%s', UNIX_TIMESTAMP(), '%s','%s')",
1567 array($mod, $act, $wht, $uid, $rid, $MEM, $ADMIN, $SID, getenv('REMOTE_ADDR')), __FILE__, __LINE__
1572 SQL_FREERESULT($result);
1574 // Purge old entries
1575 $result = SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM "._MYSQL_PREFIX."_online WHERE timestamp <= (UNIX_TIMESTAMP() - %s)",
1576 array($_CONFIG['online_timeout']), __FILE__, __LINE__);
1578 // OBSULETE: Sends out mail to all administrators
1579 function SEND_ADMIN_EMAILS($subj, $msg) {
1580 // Load all admin email addresses
1581 $result = SQL_QUERY("SELECT email FROM "._MYSQL_PREFIX."_admins ORDER BY id ASC", __FILE__, __LINE__);
1582 while (list($email) = SQL_FETCHROW($result)) {
1583 // Send the email out
1584 SEND_EMAIL($email, $subj, $msg);
1588 SQL_FREERESULT($result);
1590 // Really simple... ;-)
1592 // Get ID number from administrator's login name
1593 function GET_ADMIN_ID($login) {
1594 global $cacheArray, $_CONFIG;
1596 if (!empty($cacheArray['admins']['aid'][$login])) {
1598 $ret = $cacheArray['admins']['aid'][$login];
1600 // Update cache hits
1601 $_CONFIG['cache_hits']++;
1602 } elseif (!EXT_IS_ACTIVE("cache")) {
1603 // Load from database
1604 $result = SQL_QUERY_ESC("SELECT id FROM "._MYSQL_PREFIX."_admins WHERE login='%s' LIMIT 1",
1605 array($login), __FILE__, __LINE__);
1606 if (SQL_NUMROWS($result) == 1) {
1607 list($ret) = SQL_FETCHROW($result);
1611 SQL_FREERESULT($result);
1616 // Get password hash from administrator's login name
1617 function GET_ADMIN_HASH($login)
1619 global $cacheArray, $_CONFIG;
1621 if (!empty($cacheArray['admins']['password'][$login])) {
1623 $ret = $cacheArray['admins']['password'][$login];
1625 // Update cache hits
1626 $_CONFIG['cache_hits']++;
1627 } elseif (!EXT_IS_ACTIVE("cache")) {
1628 // Load from database
1629 $result = SQL_QUERY_ESC("SELECT password FROM "._MYSQL_PREFIX."_admins WHERE login='%s' LIMIT 1",
1630 array($login), __FILE__, __LINE__);
1631 if (SQL_NUMROWS($result) == 1) {
1633 list($ret) = SQL_FETCHROW($result);
1636 $cacheArray['admins']['password'][$login] = $ret;
1640 SQL_FREERESULT($result);
1645 function GET_ADMIN_LOGIN ($aid) {
1646 global $cacheArray, $_CONFIG;
1648 if (!empty($cacheArray['admins']['login'][$aid])) {
1650 $ret = $cacheArray['admins']['login'][$aid];
1652 // Update cache hits
1653 $_CONFIG['cache_hits']++;
1654 } elseif (!EXT_IS_ACTIVE("cache")) {
1655 // Load from database
1656 $result = SQL_QUERY_ESC("SELECT login FROM "._MYSQL_PREFIX."_admins WHERE id=%s LIMIT 1",
1657 array(bigintval($aid)), __FILE__, __LINE__);
1658 if (SQL_NUMROWS($result) == 1) {
1660 list($ret) = SQL_FETCHROW($result);
1663 $cacheArray['admins']['login'][$aid] = $ret;
1667 SQL_FREERESULT($result);
1671 // Get email address of admin id
1672 function GET_ADMIN_EMAIL ($aid) {
1673 global $cacheArray, $_CONFIG;
1676 if (!empty($cacheArray['admins']['email'])) {
1678 $ret = $cacheArray['admins']['email'][$aid];
1680 // Update cache hits
1681 $_CONFIG['cache_hits']++;
1682 } elseif (!EXT_IS_ACTIVE("cache")) {
1683 // Load from database
1684 $result_aid = SQL_QUERY_ESC("SELECT email FROM "._MYSQL_PREFIX."_admins WHERE id=%s LIMIT 1",
1685 array(bigintval($ret)), __FILE__, __LINE__);
1686 if (SQL_NUMROWS($result) == 1) {
1688 list($ret) = SQL_FETCHROW($result_aid);
1691 $cacheArray['admins']['email'][$aid] = $ret;
1695 SQL_FREERESULT($result_aid);
1701 // Get default ACL of admin id
1702 function GET_ADMIN_DEFAULT_ACL ($aid) {
1703 global $cacheArray, $_CONFIG;
1706 if (!empty($cacheArray['admins']['def_acl'])) {
1708 $ret = $cacheArray['admins']['def_acl'][$aid];
1710 // Update cache hits
1711 $_CONFIG['cache_hits']++;
1713 // Load from database
1714 $result_aid = SQL_QUERY_ESC("SELECT default_acl FROM "._MYSQL_PREFIX."_admins WHERE id=%s LIMIT 1",
1715 array(bigintval($ret)), __FILE__, __LINE__);
1716 if (SQL_NUMROWS($result) == 1) {
1718 list($ret) = SQL_FETCHROW($result_aid);
1721 $cacheArray['admins']['def_acl'][$aid] = $ret;
1725 SQL_FREERESULT($result_aid);
1732 function ADD_OPTION_LINES($table, $id, $name, $default="",$special="",$where="") {
1734 if ($table == "/ARRAY/") {
1735 // Selection from array
1736 if (is_array($id) && is_array($name) && sizeof($id) == sizeof($name)) {
1738 foreach ($id as $idx => $value) {
1739 $ret .= "<OPTION value=\"".$value."\"";
1740 if ($default == $value) $ret .= " selected checked";
1741 $ret .= ">".$name[$idx]."</OPTION>\n";
1745 // Data from database
1747 if (!empty($special)) $SPEC = ", ".$special;
1748 $ORDER = $name.$SPEC;
1749 if ($table == "country") $ORDER = $special;
1750 $result = SQL_QUERY_ESC("SELECT %s, %s".$SPEC." FROM "._MYSQL_PREFIX."_%s ".$where." ORDER BY %s",
1751 array($id, $ORDER, $table, $name), __FILE__, __LINE__);
1752 if (SQL_NUMROWS($result) > 0) {
1753 // Found data so add them as OPTION lines: $id is the value and $name is the "name" of the option
1754 while (list($value, $title, $add) = SQL_FETCHROW($result)) {
1755 if (empty($special)) $add = "";
1756 $ret .= "<OPTION value=\"".$value."\"";
1757 if ($default == $value) $ret .= " selected checked";
1758 if (!empty($add)) $add = " (".$add.")";
1759 $ret .= ">".$title.$add."</OPTION>\n";
1763 SQL_FREERESULT($result);
1766 $ret = "<OPTION value=\"x\">".SELECT_NONE."</OPTION>\n";
1770 // Return - hopefully - the requested data
1773 // Activate exchange (DEPERECATED???)
1774 function activateExchange() {
1776 $result = SQL_QUERY("SELECT userid FROM "._MYSQL_PREFIX."_user_data WHERE status='CONFIRMED' AND max_mails > 0", __FILE__, __LINE__);
1777 if (SQL_NUMROWS($result) >= $_CONFIG['activate_xchange'])
1780 SQL_FREERESULT($result);
1784 "UPDATE "._MYSQL_PREFIX."_mod_reg SET locked='N', hidden='N', mem_only='Y' WHERE module='order' LIMIT 1",
1785 "UPDATE "._MYSQL_PREFIX."_member_menu SET visible='Y', locked='N' WHERE what='order' OR what='unconfirmed' LIMIT 2",
1786 "UPDATE "._MYSQL_PREFIX."_config SET activate_xchange='0' WHERE config=0 LIMIT 1"
1790 foreach ($SQLs as $sql) {
1791 $result = SQL_QUERY($sql, __FILE__, __LINE__);
1794 // @TODO Destroy cache
1798 function DELETE_USER_ACCOUNT($uid, $reason)
1801 $result = SQL_QUERY_ESC("SELECT (SUM(p.points) - d.used_points) AS points
1802 FROM "._MYSQL_PREFIX."_user_points AS p
1803 LEFT JOIN "._MYSQL_PREFIX."_user_data AS d
1804 ON p.userid=d.userid
1805 WHERE p.userid=%s", array(bigintval($uid)), __FILE__, __LINE__);
1806 if (SQL_NUMROWS($result) == 1) {
1807 // Save his points to add them to the jackpot
1808 list($points) = SQL_FETCHROW($result);
1809 SQL_FREERESULT($result);
1811 // Delete points entries as well
1812 $result = SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM "._MYSQL_PREFIX."_user_points WHERE userid=%s", array(bigintval($uid)), __FILE__, __LINE__);
1814 // Update mediadata as well
1815 if (GET_EXT_VERSION("mediadata") >= "0.0.4") {
1817 MEDIA_UPDATE_ENTRY(array("total_points"), "sub", $points);
1820 // Now, when we have all his points adds them do the jackpot!
1821 ADD_JACKPOT($points);
1824 // Delete category selections as well...
1825 $result = SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM "._MYSQL_PREFIX."_user_cats WHERE userid=%s",
1826 array(bigintval($uid)), __FILE__, __LINE__);
1828 // Remove from rallye if found
1829 if (EXT_IS_ACTIVE("rallye")) {
1830 $result = SQL_QUERY("DELETE LOW_PRIORITY FROM "._MYSQL_PREFIX."_rallye_users WHERE userid=%s",
1831 array(bigintval($uid)), __FILE__, __LINE__);
1834 // Now a mail to the user and that's all...
1835 $msg = LOAD_EMAIL_TEMPLATE("del-user", array('text' => $reason), $uid);
1836 SEND_EMAIL($uid, ADMIN_DEL_ACCOUNT, $msg);
1838 // Ok, delete the account!
1839 $result = SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM "._MYSQL_PREFIX."_user_data WHERE userid=%s LIMIT 1", array(bigintval($uid)), __FILE__, __LINE__);
1842 function META_DESCRIPTION($mod, $wht)
1844 global $_CONFIG, $DEPTH;
1845 if (($mod != "admin") && ($mod != "login"))
1847 // Exclude admin and member's area
1848 $DESCR = MAIN_TITLE." ".trim($_CONFIG['title_middle'])." ".ADD_DESCR("guest", "what-".$wht, true);
1850 OUTPUT_HTML("<META name=\"description\" content=\"".$DESCR."\">");
1854 function ADD_JACKPOT($points)
1856 $result = SQL_QUERY("SELECT points FROM "._MYSQL_PREFIX."_jackpot WHERE ok='ok' LIMIT 1", __FILE__, __LINE__);
1857 if (SQL_NUMROWS($result) == 0)
1860 $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_jackpot (ok, points) VALUES ('ok','%s')", array($points), __FILE__, __LINE__);
1865 SQL_FREERESULT($result);
1868 $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_jackpot SET points=points+%s WHERE ok='ok' LIMIT 1",
1869 array($points), __FILE__, __LINE__);
1873 function SUB_JACKPOT($points)
1878 // Get current points
1879 $result = SQL_QUERY("SELECT points FROM "._MYSQL_PREFIX."_jackpot WHERE ok='ok' LIMIT 1", __FILE__, __LINE__);
1880 if (SQL_NUMROWS($result) == 0)
1883 $result = SQL_QUERY("INSERT INTO "._MYSQL_PREFIX."_jackpot (ok, points) VALUES ('ok', 0.00000)", __FILE__, __LINE__);
1888 SQL_FREERESULT($result);
1891 list($jackpot) = SQL_FETCHROW($result);
1892 if ($jackpot >= $points)
1894 // Update points when there are enougth points in jackpot
1895 $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_jackpot SET points=points-%s WHERE ok='ok' LIMIT 1",
1896 array($points), __FILE__, __LINE__);
1897 $ret = $jackpot - $points;
1902 function IS_DEMO() {
1903 return ((EXT_IS_ACTIVE("demo")) && (get_session('admin_login') == "demo"));
1906 function LOAD_CONFIG($no="0") {
1908 $CFG_DUMMY = array();
1910 // Check for cache extension, cache-array and if the requested configuration is in cache
1911 if ((is_array($cacheArray)) && (isset($cacheArray['config'][$no])) && (is_array($cacheArray['config'][$no]))) {
1912 // Load config from cache
1913 //* DEBUG: */ echo gettype($cacheArray['config'][$no])."<br />\n";
1914 foreach ($cacheArray['config'][$no] as $key => $value) {
1915 $CFG_DUMMY[$key] = $value;
1918 // Count cache hits if exists
1919 if ((isset($CFG_DUMMY['cache_hits'])) && (EXT_IS_ACTIVE("cache"))) {
1920 $CFG_DUMMY['cache_hits']++;
1923 // Load config from DB
1924 $result_config = SQL_QUERY_ESC("SELECT * FROM "._MYSQL_PREFIX."_config WHERE config=%d LIMIT 1",
1925 array(bigintval($no)), __FILE__, __LINE__);
1927 // Get config from database
1928 $CFG_DUMMY = SQL_FETCHARRAY($result_config);
1931 SQL_FREERESULT($result_config);
1933 // Remember this config in the array
1934 $cacheArray['config'][$no] = $CFG_DUMMY;
1937 // Return config array
1940 // Gets the matching what name from module
1941 function GET_WHAT($MOD_CHECK) {
1945 //* DEBUG: */ echo __LINE__."!".$MOD_CHECK."!<br />\n";
1955 if (($MOD_CHECK == "index") && (!empty($_CONFIG['index_home']))) $wht = $_CONFIG['index_home'];
1963 // Return what value
1967 function MODULE_HAS_MENU($mod, $forceDb = false)
1969 global $cacheArray, $_CONFIG;
1971 // All is false by default
1973 //* DEBUG: */ echo __FUNCTION__.":mod={$mod},cache=".GET_EXT_VERSION("cache")."<br />\n";
1974 if (GET_EXT_VERSION("cache") >= "0.1.2") {
1975 // Cache version is okay, so let's check the cache!
1976 if (isset($cacheArray['modules']['has_menu'][$mod])) {
1977 // Check module cache and count hit
1978 $ret = ($cacheArray['modules']['has_menu'][$mod] == "Y");
1979 $_CONFIG['cache_hits']++;
1980 } elseif (isset($cacheArray['extensions']['ext_menu'][$mod])) {
1981 // Check cache and count hit
1982 $ret = ($cacheArray['extensions']['ext_menu'][$mod] == "Y");
1983 $_CONFIG['cache_hits']++;
1985 } elseif ((GET_EXT_VERSION("sql_patches") >= "0.3.6") && ((!EXT_IS_ACTIVE("cache")) || ($forceDb === true))) {
1986 // Check database for entry
1987 $result = SQL_QUERY_ESC("SELECT has_menu FROM "._MYSQL_PREFIX."_mod_reg WHERE module='%s' LIMIT 1",
1988 array($mod), __FILE__, __LINE__);
1989 if (SQL_NUMROWS($result) == 1) {
1990 list($has_menu) = SQL_FETCHROW($result);
1992 // Fake cache... ;-)
1993 $cacheArray['extensions']['ext_menu'][$mod] = $has_menu;
1995 // Does it have a menu?
1996 $ret = ($has_menu == "Y");
2000 SQL_FREERESULT($result);
2001 } elseif (GET_EXT_VERSION("sql_patches") == "") {
2002 // No sql_patches installed, so maybe in admin area?
2003 $ret = ((IS_ADMIN()) && ($mod == "admin")); // Then there is a menu!
2009 // Subtract points from database and mediadata cache
2010 function SUB_POINTS ($uid, $points) {
2011 // Add points to used points
2012 $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_user_data SET `used_points`=`used_points`+%s WHERE userid=%s LIMIT 1",
2013 array($points, bigintval($uid)), __FILE__, __LINE__);
2015 // Update mediadata as well
2016 if (GET_EXT_VERSION("mediadata") >= "0.0.4") {
2018 MEDIA_UPDATE_ENTRY(array("total_points"), "sub", $points);
2021 // Update config entries
2022 function UPDATE_CONFIG ($entries, $values, $updateMode="") {
2023 // Do we have multiple entries?
2024 if (is_array($entries)) {
2027 foreach ($entries as $idx => $entry) {
2029 if (!empty($updateMode)) {
2031 $all .= sprintf("%s=%s%s%s,", $entry, $entry, $updateMode, (float)$values[$idx]);
2033 // Check if string or number
2034 if (($values[$idx] + 0) === $values[$idx]) {
2036 $all .= sprintf("%s=%s,", $entry, (float)$values[$idx]);
2039 $all .= sprintf("%s='%s',", $entry, SQL_ESCAPE($values[$idx]));
2044 // Remove last comma
2045 $entries = substr($all, 0, -1);
2046 } elseif (!empty($updateMode)) {
2048 $entries .= sprintf("=%s%s%s", $entries, $updateMode, (float)$value);
2050 // Regular entry to update
2051 $entries .= sprintf("='%s'", SQL_ESCAPE($values));
2054 // Run database update
2055 //DEBUG_LOG(__FUNCTION__.":entries={$entries}");
2056 SQL_QUERY("UPDATE "._MYSQL_PREFIX."_config SET ".$entries." WHERE config=0 LIMIT 1", __FILE__, __LINE__);
2058 // Get affected rows
2059 $affectedRows = SQL_AFFECTEDROWS();
2060 //* DEBUG: */ echo __FUNCTION__.":entries={$entries},affectedRows={$affectedRows}<br />\n";
2063 REBUILD_CACHE("config", "config");
2065 // Creates a new task for updated extension
2066 function CREATE_EXTENSION_UPDATE_TASK ($admin_id, $subject, $notes) {
2067 // Check if task is not there
2068 $result = SQL_QUERY_ESC("SELECT id FROM "._MYSQL_PREFIX."_task_system WHERE subject='%s' LIMIT 1",
2069 array($subject), __FILE__, __LINE__);
2070 if (SQL_NUMROWS($result) == 0) {
2071 // Task not created so it's a brand-new extension which we need to register and create a task for!
2072 $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_task_system (assigned_admin, userid, status, task_type, subject, text, task_created) VALUES ('%s','0','NEW','EXTENSION_UPDATE','%s','%s', UNIX_TIMESTAMP())",
2073 array($admin_id, $subject, $notes), __FILE__, __LINE__);
2077 SQL_FREERESULT($result);
2079 // Creates a new task for newly installed extension
2080 function CREATE_NEW_EXTENSION_TASK ($admin_id, $subject, $ext) {
2081 // Not installed and do we have created a task for the admin?
2082 $result = SQL_QUERY_ESC("SELECT `id` FROM `"._MYSQL_PREFIX."_task_system` WHERE `subject` LIKE '%s%%' LIMIT 1",
2083 array($subject), __FILE__, __LINE__);
2084 if ((SQL_NUMROWS($result) == 0) && (GET_EXT_VERSION($ext) == "")) {
2086 $tpl = sprintf("%stemplates/%s/html/ext/ext_%s.tpl",
2092 // Load text for task
2093 if (FILE_READABLE($tpl)) {
2094 // Load extension's own text template (HTML!)
2095 $msg = LOAD_TEMPLATE("ext_".$ext, true);
2097 // Load default message
2098 $msg = LOAD_TEMPLATE("admin_new_ext", "", 0);
2101 // Task not created so it's a brand-new extension which we need to register and create a task for!
2102 $result_insert = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_task_system (assigned_admin, userid, status, task_type, subject, text, task_created)
2103 VALUES (%s,0,'NEW','EXTENSION','%s','%s',UNIX_TIMESTAMP())",
2108 ), __FILE__, __LINE__, true, false
2113 SQL_FREERESULT($result);