2 /************************************************************************
3 * MXChange v0.2.1 Start: 08/26/2003 *
4 * =============== Last change: 11/29/2004 *
6 * -------------------------------------------------------------------- *
7 * File : mysql-manager.php *
8 * -------------------------------------------------------------------- *
9 * Short description : All MySQL-related functions *
10 * -------------------------------------------------------------------- *
11 * Kurzbeschreibung : Alle MySQL-Relevanten Funktionen *
12 * -------------------------------------------------------------------- *
15 * $Tag:: 0.2.1-FINAL $ *
17 * Needs to be in all Files and every File needs "svn propset *
18 * svn:keywords Date Revision" (autoprobset!) at least!!!!!! *
19 * -------------------------------------------------------------------- *
20 * Copyright (c) 2003 - 2008 by Roland Haeder *
21 * For more information visit: http://www.mxchange.org *
23 * This program is free software; you can redistribute it and/or modify *
24 * it under the terms of the GNU General Public License as published by *
25 * the Free Software Foundation; either version 2 of the License, or *
26 * (at your option) any later version. *
28 * This program is distributed in the hope that it will be useful, *
29 * but WITHOUT ANY WARRANTY; without even the implied warranty of *
30 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
31 * GNU General Public License for more details. *
33 * You should have received a copy of the GNU General Public License *
34 * along with this program; if not, write to the Free Software *
35 * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, *
37 ************************************************************************/
39 // Some security stuff...
40 if (!defined('__SECURITY')) {
41 $INC = substr(dirname(__FILE__), 0, strpos(dirname(__FILE__), '/inc') + 4) . '/security.php';
45 // "Getter" for module title
46 function getModuleTitle ($mod) {
51 // Is the script installed?
53 // Check if cache is valid
54 if ((GET_EXT_VERSION('cache') >= '0.1.2') && (isset($GLOBALS['cache_array']['modules']['module'])) && (in_array($mod, $GLOBALS['cache_array']['modules']['module']))) {
56 $name = $GLOBALS['cache_array']['modules']['title'][$mod];
59 incrementConfigEntry('cache_hits');
60 } elseif (!EXT_IS_ACTIVE('cache')) {
62 $result = SQL_QUERY_ESC("SELECT title FROM `{!_MYSQL_PREFIX!}_mod_reg` WHERE `module`='%s' LIMIT 1",
63 array($mod), __FUNCTION__, __LINE__);
64 list($name) = SQL_FETCHROW($result);
65 SQL_FREERESULT($result);
72 // Still no luck or empty title?
75 $name = sprintf("%s (%s)", getMessage('LANG_UNKNOWN_MODULE'), $mod);
76 if (SQL_NUMROWS($result) == 0) {
77 // Add module to database
78 $dummy = checkModulePermissions($mod);
86 // "Getter" for module description
87 function getModuleDescription ($mode, $wht, $column = 'what') {
91 if (getConfig('index_home') != '') $wht = getConfig('index_home');
94 // Default is not found
95 $ret = '??? (' . $wht . ')';
98 $result = SQL_QUERY_ESC("SELECT title FROM `{!_MYSQL_PREFIX!}_%s_menu` WHERE %s='%s' LIMIT 1",
99 array($mode, $column, $wht), __FUNCTION__, __LINE__);
101 // Is there an entry?
102 if (SQL_NUMROWS($result) == 1) {
104 list($ret) = SQL_FETCHROW($result);
108 SQL_FREERESULT($result);
112 // Check validity of a given module name (no file extension)
113 function checkModulePermissions ($mod) {
114 // Filter module name (names with low chars and underlines are fine!)
115 $mod = preg_replace('/[^a-z_]/', '', $mod);
117 // Check for prefix is a extension...
118 $modSplit = explode("_", $mod);
119 $extension = ''; $mod_chk = $mod;
120 //* DEBUG: */ OUTPUT_HTML(__LINE__."*".count($modSplit)."*/".$mod."*<br />");
121 if (count($modSplit) == 2) {
122 // Okay, there is a seperator (_) in the name so is the first part a module?
123 //* DEBUG: */ OUTPUT_HTML(__LINE__."*".$modSplit[0]."*<br />");
124 if (EXT_IS_ACTIVE($modSplit[0])) {
125 // The prefix is an extension's name, so let's set it
126 $extension = $modSplit[0]; $mod = $modSplit[1];
130 // Major error in module registry is the default
133 // Check if script is installed if not return a 'done' to prevent some errors
134 if ((!isInstalled()) || (isInstalling()) || (!isAdminRegistered())) {
135 // Not installed or no admin registered or in installation phase
146 // Check if cache is latest version
147 if (GET_EXT_VERSION('cache') >= '0.1.2') {
148 // Is the cache there?
149 //* DEBUG: */ DEBUG_LOG(__FUNCTION__, __LINE__, 'Using cache.');
150 if (!isset($GLOBALS['cache_array']['modules'])) {
151 // This happens when a new extension is registered while ext-cache is installed
155 // Is the module cached?
156 if (isset($GLOBALS['cache_array']['modules']['locked'][$mod_chk])) {
158 //* DEBUG: */ DEBUG_LOG(__FUNCTION__, __LINE__, 'Cache found.');
159 $locked = $GLOBALS['cache_array']['modules']['locked'][$mod_chk];
160 $hidden = $GLOBALS['cache_array']['modules']['hidden'][$mod_chk];
161 $admin = $GLOBALS['cache_array']['modules']['admin_only'][$mod_chk];
162 $mem = $GLOBALS['cache_array']['modules']['mem_only'][$mod_chk];
165 incrementConfigEntry('cache_hits');
168 // No, then we have to update it!
171 } elseif (!EXT_IS_ACTIVE('cache')) {
172 // Check for module in database
173 //* DEBUG: */ DEBUG_LOG(__FUNCTION__, __LINE__, 'Using database.');
174 $result = SQL_QUERY_ESC("SELECT `locked`, `hidden`, `admin_only`, `mem_only` FROM `{!_MYSQL_PREFIX!}_mod_reg` WHERE `module`='%s' LIMIT 1",
175 array($mod_chk), __FUNCTION__, __LINE__);
176 if (SQL_NUMROWS($result) == 1) {
178 //* DEBUG: */ DEBUG_LOG(__FUNCTION__, __LINE__, 'Entry found.');
179 list($locked, $hidden, $admin, $mem) = SQL_FETCHROW($result);
181 } elseif (isDebugModeEnabled()) {
182 // Debug message only in debug-mode...
183 DEBUG_LOG(__FUNCTION__, __LINE__, 'Module ' . $mod_chk . ' not found!');
187 SQL_FREERESULT($result);
189 //* DEBUG: */ DEBUG_LOG(__FUNCTION__, __LINE__, 'ret=' . $ret);
191 // Is the module found?
192 if ($found === true) {
193 // Check returned values against current access permissions
195 // Admin access ----- Guest access ----- --- Guest or member? ---
196 if ((IS_ADMIN()) || (($locked == 'N') && ($admin == 'N') && (($mem == 'N') || (IS_MEMBER())))) {
198 countModuleHit($mod_chk);
200 // If you are admin you are welcome for everything!
202 } elseif ($locked == 'Y') {
205 } elseif (($mem == 'Y') && (!IS_MEMBER())) {
206 // You have to login first!
208 } elseif (($admin == 'Y') && (!IS_ADMIN())) {
209 // Only the Admin is allowed to enter this module!
212 // @TODO Nothing helped???
213 DEBUG_LOG(__FUNCTION__, __LINE__, sprintf("ret=%s,locked=%s,admin=%s,mem=%s",
222 // Still no luck or not found?
223 if (($found === false) && (!EXT_IS_ACTIVE('cache')) && ($ret != 'done')) {
224 // ----- Legacy module ----- ---- Module in base folder ---- --- Module with extension's name ---
225 if ((isFileReadable(sprintf("%sinc/modules/%s.php", constant('PATH'), $mod))) || (isFileReadable(sprintf("%s%s.php", constant('PATH'), $mod))) || (isFileReadable(sprintf("%s%s/%s.php", constant('PATH'), $extension, $mod)))) {
226 // Data is missing so we add it
227 if (GET_EXT_VERSION('sql_patches') >= '0.3.6') {
228 // Since 0.3.6 we have a has_menu column, this took me a half hour
229 // to find a loop here... *sigh*
230 SQL_QUERY_ESC("INSERT INTO `{!_MYSQL_PREFIX!}_mod_reg`
231 (`module`, `locked`, `hidden`, `mem_only`, `admin_only`, `has_menu`) VALUES
232 ('%s','Y','N','N','N','N')", array($mod_chk), __FUNCTION__, __LINE__);
234 // Wrong/missing sql_patches!
235 SQL_QUERY_ESC("INSERT INTO `{!_MYSQL_PREFIX!}_mod_reg`
236 (`module`, `locked`, `hidden`, `mem_only`, `admin_only`) VALUES
237 ('%s','Y','N','N','N')", array($mod_chk), __FUNCTION__, __LINE__);
240 // Everthing is fine?
241 if (SQL_AFFECTEDROWS() < 1) {
242 // Something bad happend!
246 // Destroy cache here
247 // @TODO Rewrite this to a filter
248 rebuildCacheFiles('modreg', 'modreg');
251 $ret = checkModulePermissions($mod_chk);
253 // Module not found we don't add it to the database
256 } elseif (($ret == 'cache_miss') && (getOutputMode() > -1)) {
257 // Rebuild the cache files
258 rebuildCacheFiles('modreg', 'modreg');
259 } elseif ($found === false) {
260 // Problem with module detected
261 DEBUG_LOG(__FUNCTION__, __LINE__, sprintf("Problem in module %s detected. ret=%s, locked=%s, hidden=%s, mem=%s, admin=%s",
272 //* DEBUG: */ DEBUG_LOG(__FUNCTION__, __LINE__, 'ret=' . $ret);
276 // Add menu description pending on given file name (without path!)
277 function ADD_DESCR ($accessLevel, $FQFN, $return = false, $output = true) {
278 // Use only filename of the FQFN...
279 $file = basename($FQFN);
286 // First we have to do some analysis...
287 if (substr($file, 0, 7) == 'action-') {
288 // This is an action file!
290 $search = substr($file, 7);
291 switch ($accessLevel) {
299 $modCheck = getModule();
302 $AND = " AND (`what`='' OR `what` IS NULL)";
303 } elseif (substr($file, 0, 5) == 'what-') {
304 // This is an admin what file!
306 $search = substr($file, 5);
308 switch ($accessLevel) {
315 $modCheck = getModule();
317 $AND = " AND `visible`='Y' AND `locked`='N'";
322 $dummy = substr($search, 0, -4);
323 $AND .= " AND `action`='".getModeAction($accessLevel, $dummy)."'";
324 } elseif (($accessLevel == 'sponsor') || ($accessLevel == "engine")) {
325 // Sponsor / engine menu
328 $modCheck = getModule();
334 $modCheck = getModule();
338 // Begin the navigation line
339 if ((!isset($GLOBALS['nav_depth'])) && (!$return)) {
340 $GLOBALS['nav_depth'] = 0;
341 $prefix = "<div class=\"you_are_here\">{--YOU_ARE_HERE--} <strong><a class=\"you_are_here\" href=\"{!URL!}/modules.php?module=".getModule().$LINK_ADD."\">Home</a></strong>";
343 if (!$return) $GLOBALS['nav_depth']++;
347 $prefix .= ' -> ';
349 // We need to remove .php and the end
350 if (substr($search, -4, 4) == '.php') {
352 $search = substr($search, 0, -4);
355 // Get the title from menu
356 $result = SQL_QUERY_ESC("SELECT title FROM `{!_MYSQL_PREFIX!}_%s_menu` WHERE %s='%s' ".$AND." LIMIT 1",
357 array($accessLevel, $type, $search), __FUNCTION__, __LINE__);
360 if (SQL_NUMROWS($result) == 1) {
362 list($ret) = SQL_FETCHROW($result);
364 // Shall we return it?
365 if ($return === true) {
368 } elseif (((GET_EXT_VERSION('sql_patches') >= '0.2.3') && (getConfig('youre_here') == 'Y')) || ((IS_ADMIN()) && ($modCheck == 'admin'))) {
370 $OUT = $prefix . "<strong><a class=\"you_are_here\" href=\"{!URL!}/modules.php?module=" . $modCheck . '&' . $type . '=' . $search.$LINK_ADD . "\">" . $ret . "</a></strong>\n";
372 // Can we close the you-are-here navigation?
373 //* DEBUG: */ OUTPUT_HTML(__LINE__."*".$type.'/'.getWhat()."*<br />");
374 if (($type == 'what') || (($type == 'action') && ((!isWhatSet()) || (getWhat() == 'overview')))) {
375 //* DEBUG: */ OUTPUT_HTML(__LINE__.'+'.$type."+<br />");
376 // Add closing div and br-tag
377 $OUT .= "</div><br />\n";
378 $GLOBALS['nav_depth'] = '0';
380 // Run the filter chain
381 $ret = runFilterChain('post_youhere_line', array('access_level' => $accessLevel, 'type' => $type, 'content' => ""));
382 $OUT .= $ret['content'];
388 SQL_FREERESULT($result);
390 // Return or output HTML code?
392 // Output HTML code here
401 function ADD_MENU ($mode, $act, $wht) {
402 // Init some variables
408 // is the menu action valid?
409 if (!isMenuActionValid($mode, $act, $wht, true)) {
410 return getCode('MENU_NOT_VALID');
413 // Non-admin shall not see all menus
415 $AND = " AND `visible`='Y' AND `locked`='N'";
418 // Load SQL data and add the menu to the output stream...
419 $result_main = SQL_QUERY_ESC("SELECT `title`, `action` FROM `{!_MYSQL_PREFIX!}_%s_menu` WHERE (`what`='' OR `what` IS NULL)".$AND." ORDER BY `sort` ASC",
420 array($mode), __FUNCTION__, __LINE__);
421 //* DEBUG: */ OUTPUT_HTML(__LINE__.'/'.$main_cnt.'/'.$main_action.'/'.$sub_what.':'.getWhat()."*<br />");
422 if (SQL_NUMROWS($result_main) > 0) {
423 OUTPUT_HTML("<table border=\"0\" cellspacing=\"0\" cellpadding=\"0\" class=\"".$mode."_menu\">");
424 // There are menus available, so we simply display them... :)
425 while ($content = SQL_FETCHARRAY($result_main)) {
426 //* DEBUG: */ OUTPUT_HTML(__LINE__.'/'.$main_cnt.'/'.$content['action'].'/'.$sub_what.':'.getWhat()."*<br />");
428 enableBlockMode(false);
429 $act = $content['action'];
431 // Load menu header template
432 LOAD_TEMPLATE($mode . '_menu_title', false, $content);
435 $result_sub = SQL_QUERY_ESC("SELECT `title` AS sub_title, `what` AS sub_what FROM `{!_MYSQL_PREFIX!}_%s_menu` WHERE `action`='%s' AND `what` != '' AND `what` IS NOT NULL ".$AND." ORDER BY `sort`",
436 array($mode, $content['action']), __FUNCTION__, __LINE__);
438 // Get number of rows
439 $ctl = SQL_NUMROWS($result_sub);
441 // Do we have some entries?
446 // Load all sub menus
447 while ($content2 = SQL_FETCHARRAY($result_sub)) {
448 // Merge both arrays in one
449 $content = merge_array($content, $content2);
454 // Full file name for checking menu
455 //* DEBUG: */ OUTPUT_HTML(__LINE__.":!!!!".$content['sub_what']."!!!<br />");
456 $INC = sprintf("inc/modules/%s/what-%s.php", $mode, $content['sub_what']);
457 if (isIncludeReadable($INC)) {
458 if ((!empty($wht)) && (($wht == $content['sub_what']))) {
463 $OUT .= "<a name=\"menu\" class=\"menu_blur\" href=\"{!URL!}/modules.php?module=".getModule()."&what=".$content['sub_what']."\" target=\"_self\">";
469 $OUT .= getConfig('menu_blur_spacer') . $content['sub_title'];
471 if (isIncludeReadable($INC)) {
477 if ((!empty($wht)) && (($wht == $content['sub_what']))) {
481 // Remember 'what' for next round and count it up
482 $wht = $content['sub_what']; $cnt++;
487 'what' => $content['sub_what']
490 // Add regular menu row or bottom row?
492 LOAD_TEMPLATE($mode . '_menu_row', false, $content);
494 LOAD_TEMPLATE($mode . '_menu_bottom', false, $content);
498 // This is a menu block... ;-)
502 $INC_BLOCK = sprintf("inc/modules/%s/action-%s.php", $mode, $content['action']);
503 if (isFileReadable($INC_BLOCK)) {
505 if ((!EXT_IS_ACTIVE($content['action'])) || ($content['action'] == 'online')) OUTPUT_HTML("<tr>
507 <td class=\"".$mode."_menu_whats\">");
508 //* DEBUG: */ OUTPUT_HTML(__LINE__.'/'.$main_cnt.'/'.$content['action'].'/'.$content['sub_what'].':'.getWhat()."*<br />");
509 loadInclude($INC_BLOCK);
510 //* DEBUG: */ OUTPUT_HTML(__LINE__.'/'.$main_cnt.'/'.$content['action'].'/'.$content['sub_what'].':'.getWhat()."*<br />");
511 if ((!EXT_IS_ACTIVE($content['action'])) || ($content['action'] == 'online')) OUTPUT_HTML(" </td>
514 //* DEBUG: */ OUTPUT_HTML(__LINE__.'/'.$main_cnt.'/'.$content['action'].'/'.$content['sub_what'].':'.getWhat()."*<br />");
517 //* DEBUG: */ OUTPUT_HTML(__LINE__.'/'.$main_cnt.'/'.$content['action'].'/'.$content['sub_what'].':'.getWhat()."*<br />");
518 if (SQL_NUMROWS($result_main) > $main_cnt) {
519 OUTPUT_HTML("<tr><td class=\"".$mode."_menu_seperator\"></td></tr>");
524 SQL_FREERESULT($result_main);
527 //* DEBUG: */ OUTPUT_HTML(__LINE__.'/'.$main_cnt.'/'.$content['action'].'/'.$content['sub_what'].':'.getWhat()."*<br />");
528 OUTPUT_HTML("</table>");
532 // Checks wether the current user is a member
533 function IS_MEMBER () {
534 // By default no member
537 // Fix missing 'last' array, damn stupid code :(((
538 // @TODO Try to rewrite this to one or more functions
539 if ((!isset($GLOBALS['last'])) || (!is_array($GLOBALS['last']))) $GLOBALS['last'] = array();
541 // is the cache entry there?
542 if (isset($GLOBALS['is_member'])) {
544 return $GLOBALS['is_member'];
547 // Init global 'status'
548 $GLOBALS['status'] = false;
550 // Fix "deleted" cookies first
551 fixDeletedCookies(array('userid', 'u_hash'));
554 if ((isUserIdSet()) && (isSessionVariableSet('u_hash'))) {
555 // Cookies are set with values, but are they valid?
556 $result = SQL_QUERY_ESC("SELECT `password`, `status`, `last_module`, `last_online` FROM `{!_MYSQL_PREFIX!}_user_data` WHERE `userid`=%s LIMIT 1",
557 array(getUserId()), __FUNCTION__, __LINE__);
558 if (SQL_NUMROWS($result) == 1) {
559 // Load data from cookies
560 list($password, $GLOBALS['status'], $mod, $onl) = SQL_FETCHROW($result);
562 // Validate password by created the difference of it and the secret key
563 $valPass = generatePassString($password);
565 // Transfer last module and online time
566 if ((!empty($mod)) && (empty($GLOBALS['last']['module']))) {
567 // @TODO Try to rewrite this to one or more functions
568 $GLOBALS['last']['module'] = $mod;
569 $GLOBALS['last']['online'] = $onl;
572 // So did we now have valid data and an unlocked user?
573 if (($GLOBALS['status'] == 'CONFIRMED') && ($valPass == getSession('u_hash'))) {
574 // Account is confirmed and all cookie data is valid so he is definely logged in! :-)
577 // Maybe got locked etc.
578 //* DEBUG: */ OUTPUT_HTML(__LINE__."!!!<br />");
579 destroyUserSession();
582 // Cookie data is invalid!
583 //* DEBUG: */ OUTPUT_HTML(__LINE__."***<br />");
584 destroyUserSession();
588 SQL_FREERESULT($result);
590 // Cookie data is invalid!
591 //* DEBUG: */ OUTPUT_HTML(__LINE__."///<br />");
592 destroyUserSession();
596 $GLOBALS['is_member'] = $ret;
602 // This patched function will reduce many SELECT queries for the specified or current admin login
603 function IS_ADMIN ($admin = '') {
605 $ret = false; $passCookie = ''; $valPass = '';
606 //* DEBUG: */ OUTPUT_HTML(__LINE__."ADMIN:".$admin."<br />");
608 // If admin login is not given take current from cookies...
609 if ((empty($admin)) && (isSessionVariableSet('admin_login')) && (isSessionVariableSet('admin_md5'))) {
610 // Get admin login and password from session/cookies
611 $admin = getSession('admin_login');
612 $passCookie = getSession('admin_md5');
614 //* DEBUG: */ OUTPUT_HTML(__LINE__."ADMIN:".$admin.'/'.$passCookie."<br />");
616 // Search in array for entry
617 if (isset($GLOBALS['cache_array']['admin_hash'])) {
619 $valPass = $GLOBALS['cache_array']['admin_hash'];
620 } elseif ((!empty($passCookie)) && (isset($GLOBALS['cache_array']['admins']['password'][$admin])) && (!empty($admin))) {
621 // Login data is valid or not?
622 $valPass = generatePassString($GLOBALS['cache_array']['admins']['password'][$admin]);
625 $GLOBALS['cache_array']['admin_hash'] = $valPass;
628 incrementConfigEntry('cache_hits');
629 } elseif ((!empty($admin)) && ((!EXT_IS_ACTIVE('cache'))) || (!isset($GLOBALS['cache_array']['admins']['password'][$admin]))) {
631 $result = SQL_QUERY_ESC("SELECT HIGH_PRIORITY password FROM `{!_MYSQL_PREFIX!}_admins` WHERE login='%s' LIMIT 1",
632 array($admin), __FUNCTION__, __LINE__);
636 if (SQL_NUMROWS($result) == 1) {
637 // Admin login was found so let's load password from DB
638 list($passDB) = SQL_FETCHROW($result);
640 // Temporary cache it
641 $GLOBALS['cache_array']['admins']['password'][$admin] = $passDB;
643 // Generate password hash
644 $valPass = generatePassString($passDB);
648 SQL_FREERESULT($result);
651 if (!empty($valPass)) {
652 // Check if password is valid
653 //* DEBUG: */ OUTPUT_HTML(__FUNCTION__."*".$valPass.'/'.$passCookie."*<br />");
654 $ret = (($valPass == $passCookie) || ((strlen($valPass) == 32) && ($valPass == md5($passCookie))) || (($valPass == "*FAILED*") && (!EXT_IS_ACTIVE('cache'))));
657 // Return result of comparision
658 //* DEBUG: */ if (!$ret) OUTPUT_HTML(__LINE__."OK!<br />");
662 // Generates a list of "max receiveable emails per day"
663 function addMaxReceiveList ($mode, $default = '', $return = false) {
669 // Guests (in the registration form) are not allowed to select 0 mails per day.
670 $result = SQL_QUERY("SELECT value, comment FROM `{!_MYSQL_PREFIX!}_max_receive` WHERE value > 0 ORDER BY value",
671 __FUNCTION__, __LINE__);
675 // Members are allowed to set to zero mails per day (we will change this soon!)
676 $result = SQL_QUERY("SELECT value, comment FROM `{!_MYSQL_PREFIX!}_max_receive` ORDER BY value",
677 __FUNCTION__, __LINE__);
681 DEBUG_LOG(__FUNCTION__, __LINE__, sprintf("Invalid mode %s detected.", $mode));
685 // Some entries are found?
686 if (SQL_NUMROWS($result) > 0) {
688 while ($content = SQL_FETCHARRAY($result)) {
689 $OUT .= " <option value=\"".$content['value']."\"";
690 if (REQUEST_POST('max_mails') == $content['value']) $OUT .= ' selected="selected"';
691 $OUT .= ">".$content['value']." {--PER_DAY--}";
692 if (!empty($content['comment'])) $OUT .= " (".$content['comment'].')';
693 $OUT .= "</option>\n";
695 define('__MAX_RECEIVE_OPTIONS', $OUT);
698 $OUT = LOAD_TEMPLATE($mode . '_receive_table', true);
700 // Maybe the admin has to setup some maximum values?
701 debug_report_bug('Nothing is being done here?');
705 SQL_FREERESULT($result);
707 if ($return === true) {
708 // Return generated HTML code
711 // Output directly (default)
716 // Checks wether the given email address is used.
717 function isEmailTaken ($email) {
718 // Query the database
719 $result = SQL_QUERY_ESC("SELECT userid FROM `{!_MYSQL_PREFIX!}_user_data` WHERE email LIKE '{PER}%s{PER}' LIMIT 1",
720 array($email), __FUNCTION__, __LINE__);
722 // Is the email there?
723 $ret = (SQL_NUMROWS($result) == 1);
726 SQL_FREERESULT($result);
732 // Validate the given menu action
733 function isMenuActionValid ($mode, $act, $wht, $UPDATE=false) {
734 // Is the cache entry there and we shall not update?
735 if ((isset($GLOBALS['cache_array']['action_valid'][$mode][$act][$wht])) && ($UPDATE === false)) {
737 incrementConfigEntry('cache_hits');
739 // Then use this cache
740 return $GLOBALS['cache_array']['action_valid'][$mode][$act][$wht];
743 // By default nothing is valid
746 // Look in all menus or only unlocked
748 if ((!IS_ADMIN()) && ($mode != 'admin')) $add = " AND `locked`='N'";
750 //* DEBUG: */ OUTPUT_HTML(__LINE__.':'.$mode.'/'.$act.'/'.$wht."*<br />");
751 if (($mode != 'admin') && ($UPDATE === true)) {
752 // Update guest or member menu
753 $sql = SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_%s_menu` SET counter=counter+1 WHERE `action`='%s' AND `what`='%s'".$add." LIMIT 1",
754 array($mode, $act, $wht), __FUNCTION__, __LINE__, false);
755 } elseif (($wht != 'overview') && (!empty($wht))) {
757 $sql = SQL_QUERY_ESC("SELECT `id`, `what` FROM `{!_MYSQL_PREFIX!}_%s_menu` WHERE `action`='%s' AND `what`='%s'".$add." ORDER BY `action` DESC LIMIT 1",
758 array($mode, $act, $wht), __FUNCTION__, __LINE__, false);
760 // Admin login overview
761 $sql = SQL_QUERY_ESC("SELECT `id`, `what` FROM `{!_MYSQL_PREFIX!}_%s_menu` WHERE `action`='%s' AND (`what`='' OR `what` IS NULL)".$add." ORDER BY `action` DESC LIMIT 1",
762 array($mode, $act), __FUNCTION__, __LINE__, false);
766 $result = SQL_QUERY($sql, __FUNCTION__, __LINE__);
767 if ($UPDATE === true) {
768 // Check updated/affected rows
769 $ret = (SQL_AFFECTEDROWS() == 1);
772 $ret = (SQL_NUMROWS($result) == 1);
776 SQL_FREERESULT($result);
779 $GLOBALS['cache_array']['action_valid'][$mode][$act][$wht] = $ret;
786 function sendModeMails ($mod, $modes) {
790 $result_main = SQL_QUERY_ESC("SELECT `password` FROM `{!_MYSQL_PREFIX!}_user_data` WHERE `userid`=%s AND `status`='CONFIRMED' LIMIT 1",
791 array(getUserId()), __FUNCTION__, __LINE__);
792 if (SQL_NUMROWS($result_main) == 1) {
793 // Load hash from database
794 list($hashDB) = SQL_FETCHROW($result_main);
796 // Extract salt from cookie
797 $salt = substr(getSession('u_hash'), 0, -40);
799 // Now let's compare passwords
800 $hash = generatePassString($hashDB);
801 if (($hash == getSession('u_hash')) || (REQUEST_POST('pass1') == REQUEST_POST('pass2'))) {
803 $result = SQL_QUERY_ESC("SELECT gender, surname, family, street_nr, country, zip, city, email FROM `{!_MYSQL_PREFIX!}_user_data` WHERE `userid`=%s AND password='%s' LIMIT 1",
804 array(getUserId(), $hashDB), __FUNCTION__, __LINE__);
805 if (SQL_NUMROWS($result) == 1) {
807 $DATA = SQL_FETCHROW($result);
810 SQL_FREERESULT($result);
813 $DATA[0] = translateGender($DATA[0]);
815 // Clear/init the content variable
822 foreach ($modes as $mode) {
825 case 'normal': break; // Do not add any special lines
827 case 'email': // Email was changed!
828 $content = getMessage('MEMBER_CHANGED_EMAIL').": ".REQUEST_POST('old_addy')."\n";
831 case 'pass': // Password was changed
832 $content = getMessage('MEMBER_CHANGED_PASS')."\n";
836 DEBUG_LOG(__FUNCTION__, __LINE__, sprintf("Unknown mode %s detected.", $mode));
837 $content = getMessage('MEMBER_UNKNOWN_MODE').": ".$mode."\n\n";
842 if (EXT_IS_ACTIVE('country')) {
843 // Replace code with description
844 $DATA[4] = COUNTRY_GENERATE_INFO(REQUEST_POST('country_code'));
847 // Merge content with data from POST
848 $content = merge_array($content, REQUEST_POST_ARRAY());
851 $message = LOAD_EMAIL_TEMPLATE('member_mydata_notify', $content, getUserId());
853 if (getConfig('admin_notify') == 'Y') {
854 // The admin needs to be notified about a profile change
855 $message_admin = 'admin_mydata_notify';
856 $sub_adm = getMessage('ADMIN_CHANGED_DATA');
864 $sub_mem = getMessage('MEMBER_CHANGED_DATA');
866 // Output success message
867 $content = "<span class=\"member_done\">{--MYDATA_MAIL_SENT--}</span>";
870 default: // Unsupported module!
871 DEBUG_LOG(__FUNCTION__, __LINE__, sprintf("Unsupported module %s detected.", $mod));
872 $content = "<span class=\"member_failed\">{--UNKNOWN_MODULE--}</span>";
876 // Could not load profile data
877 $content = "<span class=\"member_failed\">{--MEMBER_CANNOT_LOAD_PROFILE--}</span>";
880 // Passwords mismatch
881 $content = "<span class=\"member_failed\">{--MEMBER_PASSWORD_ERROR--}</span>";
884 // Could not load profile
885 $content = "<span class=\"member_failed\">{--MEMBER_CANNOT_LOAD_PROFILE--}</span>";
888 // Send email to user if required
889 if ((!empty($sub_mem)) && (!empty($message))) {
891 sendEmail($DATA[7], $sub_mem, $message);
894 // Send only if no other error has occured
895 if (empty($content)) {
896 if ((!empty($sub_adm)) && (!empty($message_admin))) {
898 sendAdminNotification($sub_adm, $message_admin, $content, getUserId());
899 } elseif (getConfig('admin_notify') == 'Y') {
900 // Cannot send mails to admin!
901 $content = getMessage('CANNOT_SEND_ADMIN_MAILS');
904 $content = "<span class=\"member_done\">{--MYDATA_MAIL_SENT--}</span>";
909 LOAD_TEMPLATE('admin_settings_saved', false, $content);
912 // Update module counter
913 function countModuleHit($mod) {
914 // Do count all other modules but not accesses on CSS file css.php!
915 SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_mod_reg` SET `clicks`=`clicks`+1 WHERE `module`='%s' LIMIT 1",
916 array($mod), __FUNCTION__, __LINE__);
919 // Get action value from mode (admin/guest/member) and what-value
920 function getModeAction ($mode, $wht) {
924 //* DEBUG: */ OUTPUT_HTML(__LINE__.'='.$mode.'/'.$wht.'/'.getAction()."=<br />");
925 if ((empty($wht)) && ($mode != 'admin')) {
927 if (getConfig('index_home') != '') $wht = getConfig('index_home');
930 if ($mode == 'admin') {
931 // Action value for admin area
932 if (REQUEST_ISSET_GET('action')) {
934 return REQUEST_GET('action');
935 } elseif (isActionSet()) {
936 // Get it directly from URL
938 } elseif (($wht == 'overview') || (!isWhatSet())) {
939 // Default value for admin area
942 } elseif (isActionSet()) {
943 // Get it directly from URL
946 //* DEBUG: */ OUTPUT_HTML(__FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>): ret=".$ret."<br />");
948 // Does the module have a menu?
949 if (MODULE_HAS_MENU($mode)) {
950 // Rewriting modules to menu
952 case 'index': $mode = 'guest'; break;
953 case 'login': $mode = 'member'; break;
956 // Guest and member menu is 'main' as the default
957 if (empty($ret)) $ret = 'main';
959 // Load from database
960 $result = SQL_QUERY_ESC("SELECT action FROM `{!_MYSQL_PREFIX!}_%s_menu` WHERE `what`='%s' LIMIT 1",
961 array($mode, $wht), __FUNCTION__, __LINE__);
962 if (SQL_NUMROWS($result) == 1) {
963 // Load action value and pray that this one is the right you want... ;-)
964 list($ret) = SQL_FETCHROW($result);
968 SQL_FREERESULT($result);
969 } elseif ((GET_EXT_VERSION('sql_patches') == '') && ($mode != 'admin')) {
970 // No sql_patches installed, but maybe we need to register an admin?
971 if (isAdminRegistered()) {
973 // @TODO Why does this lead into an endless loop but we still need it???
974 // @TODO Commented out redirectToUrl('admin.php');
978 // Return action value
982 // Get category name back
983 function getCategory ($cid) {
984 // Default is not found
985 $ret = getMessage('_CATEGORY_404');
987 // Is the category id set?
990 $ret = getMessage('_CATEGORY_NONE');
991 } elseif ($cid > 0) {
992 // Lookup the category in database
993 $result = SQL_QUERY_ESC("SELECT cat FROM `{!_MYSQL_PREFIX!}_cats` WHERE `id`=%s LIMIT 1",
994 array(bigintval($cid)), __FUNCTION__, __LINE__);
995 if (SQL_NUMROWS($result) == 1) {
996 // Category found... :-)
997 list($ret) = SQL_FETCHROW($result);
1001 SQL_FREERESULT($result);
1008 // Get a string of "mail title" and price back
1009 function getPaymentTitlePrice ($pid, $full=false) {
1010 // Default is not found
1011 $ret = getMessage('_PAYMENT_404');
1013 // Load payment data
1014 $result = SQL_QUERY_ESC("SELECT mail_title, price FROM `{!_MYSQL_PREFIX!}_payments` WHERE `id`=%s LIMIT 1",
1015 array(bigintval($pid)), __FUNCTION__, __LINE__);
1016 if (SQL_NUMROWS($result) == 1) {
1017 // Payment type found... :-)
1019 // Return only title
1020 list($ret) = SQL_FETCHROW($result);
1022 // Return title and price
1023 list($t, $p) = SQL_FETCHROW($result);
1024 $ret = $t.' / '.translateComma($p).' {!POINTS!}';
1029 SQL_FREERESULT($result);
1035 // Get (basicly) the price of given payment id
1036 function getPaymentPoints ($pid, $lookFor = 'price') {
1040 // Search for it in database
1041 $result = SQL_QUERY_ESC("SELECT %s FROM `{!_MYSQL_PREFIX!}_payments` WHERE `id`=%s LIMIT 1",
1042 array($lookFor, $pid), __FUNCTION__, __LINE__);
1044 // Is the entry there?
1045 if (SQL_NUMROWS($result) == 1) {
1046 // Payment type found... :-)
1047 list($ret) = SQL_FETCHROW($result);
1051 SQL_FREERESULT($result);
1057 // Remove a receiver's ID from $receivers and add a link for him to confirm
1058 function removeReceiver (&$receivers, $key, $uid, $pool_id, $stats_id = '', $bonus = false) {
1059 // Default is not removed
1062 // Is the userid valid?
1064 // Remove entry from array
1065 unset($receivers[$key]);
1067 // Is there already a line for this user available?
1068 if ($stats_id > 0) {
1069 // Only when we got a real stats ID continue searching for the entry
1070 $type = 'NORMAL'; $rowName = 'stats_id';
1071 if ($bonus) { $type = 'BONUS'; $rowName = 'bonus_id'; }
1073 // Try to look the entry up
1074 $result = SQL_QUERY_ESC("SELECT `id` FROM `{!_MYSQL_PREFIX!}_user_links` WHERE %s='%s' AND `userid`=%s AND link_type='%s' LIMIT 1",
1075 array($rowName, $stats_id, bigintval($uid), $type), __FUNCTION__, __LINE__);
1077 // Was it *not* found?
1078 if (SQL_NUMROWS($result) == 0) {
1080 SQL_QUERY_ESC("INSERT INTO `{!_MYSQL_PREFIX!}_user_links` (`%s`, `userid`, `link_type`) VALUES ('%s','%s','%s')",
1081 array($rowName, $stats_id, bigintval($uid), $type), __FUNCTION__, __LINE__);
1089 SQL_FREERESULT($result);
1093 // Return status for sending routine
1097 // Calculate sum (default) or count records of given criteria
1098 function GET_TOTAL_DATA ($search, $tableName, $lookFor = 'id', $whereStatement = 'userid', $countRows = false, $add = '') {
1100 //* DEBUG: */ OUTPUT_HTML($search.'/'.$tableName.'/'.$lookFor.'/'.$whereStatement.'/'.$add.'<br />');
1101 if ((empty($search)) && ($search != '0')) {
1102 // Count or sum whole table?
1103 if ($countRows === true) {
1104 // Count whole table
1105 $result = SQL_QUERY_ESC("SELECT COUNT(`%s`) FROM `{!_MYSQL_PREFIX!}_%s`".$add,
1106 array($lookFor, $tableName), __FUNCTION__, __LINE__);
1109 $result = SQL_QUERY_ESC("SELECT SUM(`%s`) FROM `{!_MYSQL_PREFIX!}_%s`".$add,
1110 array($lookFor, $tableName), __FUNCTION__, __LINE__);
1112 } elseif (($countRows === true) || ($lookFor == 'userid')) {
1114 //* DEBUG: */ OUTPUT_HTML("COUNT!<br />");
1115 $result = SQL_QUERY_ESC("SELECT COUNT(`%s`) FROM `{!_MYSQL_PREFIX!}_%s` WHERE `%s`='%s'".$add,
1116 array($lookFor, $tableName, $whereStatement, $search), __FUNCTION__, __LINE__);
1119 //* DEBUG: */ OUTPUT_HTML("SUM!<br />");
1120 $result = SQL_QUERY_ESC("SELECT SUM(`%s`) FROM `{!_MYSQL_PREFIX!}_%s` WHERE `%s`='%s'".$add,
1121 array($lookFor, $tableName, $whereStatement, $search), __FUNCTION__, __LINE__);
1125 list($ret) = SQL_FETCHROW($result);
1128 SQL_FREERESULT($result);
1131 if ((empty($ret)) && ($lookFor != 'counter') && ($lookFor != 'id') && ($lookFor != 'userid')) {
1134 } elseif (''.$ret.'' == '') {
1142 // Getter fro ref level percents
1143 function getReferalLevelPercents ($level) {
1147 // Do we have cache?
1148 if ((isset($GLOBALS['cache_array']['ref_depths']['level'])) && (EXT_IS_ACTIVE('cache'))) {
1149 // First look for level
1150 $key = array_search($level, $GLOBALS['cache_array']['ref_depths']['level']);
1151 if ($key !== false) {
1153 $per = $GLOBALS['cache_array']['ref_depths']['percents'][$key];
1156 incrementConfigEntry('cache_hits');
1158 } elseif (!EXT_IS_ACTIVE('cache')) {
1160 $result_lvl = SQL_QUERY_ESC("SELECT percents FROM `{!_MYSQL_PREFIX!}_refdepths` WHERE level='%s' LIMIT 1",
1161 array(bigintval($level)), __FUNCTION__, __LINE__);
1164 if (SQL_NUMROWS($result_lvl) == 1) {
1166 list($per) = SQL_FETCHROW($result_lvl);
1170 SQL_FREERESULT($result_lvl);
1179 * Dynamic referal system, can also send mails!
1181 * subject = Subject line, write in lower-case letters and underscore is allowed
1182 * uid = Referal ID wich should receive...
1183 * points = ... xxx points
1184 * send_notify = shall I send the referal an email or not?
1185 * rid = inc/modules/guest/what-confirm.php need this (DEPRECATED???)
1186 * locked = Shall I pay it to normal (false) or locked (true) points ammount?
1187 * add_mode = Add points only to $uid or also refs? (WARNING! Changing 'ref' to 'direct'
1188 * for default value will cause no referal will get points ever!!!)
1190 function ADD_POINTS_REFSYSTEM ($subject, $uid, $points, $send_notify = false, $rid = '0', $locked = false, $add_mode = 'ref') {
1191 //* DEBUG: */ OUTPUT_HTML("----------------------- <font color=\"#00aa00\">".__FUNCTION__." - ENTRY</font> ------------------------<ul><li>\n");
1194 // Convert mode to lower-case
1195 $add_mode = strtolower($add_mode);
1197 // When $uid = 0 add points to jackpot
1199 // Add points to jackpot
1200 ADD_JACKPOT($points);
1204 // Add booking record if extension is installed
1205 if (EXT_IS_ACTIVE('booking')) {
1207 ADD_BOOKING_RECORD($subject, $uid, $points, 'add');
1210 // Count up referal depth
1211 if (!isset($GLOBALS['ref_level'])) {
1212 // Initialialize referal system
1213 //* DEBUG: */ OUTPUT_HTML(__FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>): Referal system initialized!<br />");
1214 $GLOBALS['ref_level'] = 0;
1216 // Increase referal level
1217 $GLOBALS['ref_level']++;
1218 //* DEBUG: */ OUTPUT_HTML(__FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>): Referal level increased. DEPTH={$GLOBALS['ref_level']}<br />");
1221 // Default is 'normal' points
1224 // Which points, locked or normal?
1225 if ($locked) $data = 'locked_points';
1227 // Check user account
1228 $result_user = SQL_QUERY_ESC("SELECT refid, email FROM `{!_MYSQL_PREFIX!}_user_data` WHERE `userid`=%s AND `status`='CONFIRMED' LIMIT 1",
1229 array(bigintval($uid)), __FUNCTION__, __LINE__);
1231 //* DEBUG: */ OUTPUT_HTML(__FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid},numRows=".SQL_NUMROWS($result_user).",points={$points}<br />");
1232 if (SQL_NUMROWS($result_user) == 1) {
1233 // This is the user and his ref
1234 list($ref, $email) = SQL_FETCHROW($result_user);
1235 $GLOBALS['cache_array']['add_uid'][$ref] = $uid;
1238 $per = getReferalLevelPercents($GLOBALS['ref_level']);
1239 //* DEBUG: */ OUTPUT_HTML(__FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid},points={$points},depth={$GLOBALS['ref_level']},per={$per},mode={$add_mode}<br />");
1241 // Some percents found?
1243 // Calculate new points
1244 //* DEBUG: */ OUTPUT_HTML(__FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid},points={$points},per={$per},depth={$GLOBALS['ref_level']}<br />");
1245 $ref_points = $points * $per / 100;
1247 // Pay refback here if level > 0 and in ref-mode
1248 if ((EXT_IS_ACTIVE('refback')) && ($GLOBALS['ref_level'] > 0) && ($per < 100) && ($add_mode == "ref") && (isset($GLOBALS['cache_array']['add_uid'][$uid]))) {
1249 //* DEBUG: */ OUTPUT_HTML(__FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid},data={$GLOBALS['cache_array']['add_uid'][$uid]},ref_points={$ref_points},depth={$GLOBALS['ref_level']} - BEFORE!<br />");
1250 $ref_points = ADD_REFBACK_POINTS($GLOBALS['cache_array']['add_uid'][$uid], $uid, $points, $ref_points);
1251 //* DEBUG: */ OUTPUT_HTML(__FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid},data={$GLOBALS['cache_array']['add_uid'][$uid]},ref_points={$ref_points},depth={$GLOBALS['ref_level']} - AFTER!<br />");
1255 SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_user_points` SET %s=%s+%s WHERE `userid`=%s AND ref_depth='%s' LIMIT 1",
1256 array($data, $data, $ref_points, bigintval($uid), bigintval($GLOBALS['ref_level'])), __FUNCTION__, __LINE__);
1257 //* DEBUG: */ OUTPUT_HTML(__FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):data={$data},ref_points={$ref_points},uid={$uid},depth={$GLOBALS['ref_level']},mode={$add_mode} - UPDATE! (".SQL_AFFECTEDROWS().")<br />");
1259 // No entry updated?
1260 if (SQL_AFFECTEDROWS() < 1) {
1261 // First ref in this level! :-)
1262 SQL_QUERY_ESC("INSERT INTO `{!_MYSQL_PREFIX!}_user_points` (userid,ref_depth,%s) VALUES (%s,'%s',%s)",
1263 array($data, bigintval($uid), bigintval($GLOBALS['ref_level']), $ref_points), __FUNCTION__, __LINE__);
1264 //* DEBUG: */ OUTPUT_HTML(__FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):data={$data},ref_points={$ref_points},uid={$uid},depth={$GLOBALS['ref_level']},mode={$add_mode} - INSERTED! (".SQL_AFFECTEDROWS().")<br />");
1267 // Update mediadata as well
1268 if (GET_EXT_VERSION('mediadata') >= '0.0.4') {
1270 MEDIA_UPDATE_ENTRY(array('total_points'), 'add', $ref_points);
1273 // Points updated, maybe I shall send him an email?
1274 if (($send_notify) && ($ref > 0) && (!$locked)) {
1278 'level' => bigintval($GLOBALS['ref_level']),
1279 'points' => $ref_points,
1280 'refid' => bigintval($ref)
1283 // Load email template
1284 $message = LOAD_EMAIL_TEMPLATE('confirm-referal', $content, bigintval($uid));
1286 sendEmail($email, THANX_REFERRAL_ONE, $message);
1287 } elseif (($send_notify) && ($ref == 0) && (!$locked) && ($add_mode == 'direct') && (!defined('__POINTS_VALUE'))) {
1288 // Direct payment shall be notified about
1289 define('__POINTS_VALUE', $ref_points);
1293 'text' => getMessage('REASON_DIRECT_PAYMENT'),
1294 'points' => translateComma($ref_points)
1298 $message = LOAD_EMAIL_TEMPLATE('add-points', $content, $uid);
1301 sendEmail($email, getMessage('SUBJECT_DIRECT_PAYMENT'), $message);
1302 if (!REQUEST_ISSET_GET('mid')) LOAD_TEMPLATE('admin_settings_saved', false, getMessage('ADMIN_POINTS_ADDED'));
1305 // Maybe there's another ref?
1306 if (($ref > 0) && ($points > 0) && ($ref != $uid) && ($add_mode == 'ref')) {
1307 // Then let's credit him here...
1308 //* DEBUG: */ OUTPUT_HTML(__FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid},ref={$ref},points={$points} - ADVANCE!<br />");
1309 ADD_POINTS_REFSYSTEM(sprintf("%s_ref:%s", $subject, $GLOBALS['ref_level']), $ref, $points, $send_notify, $ref, $locked);
1315 SQL_FREERESULT($result_user);
1316 //* DEBUG: */ OUTPUT_HTML("</li></ul>----------------------- <font color=\"#aa0000\">".__FUNCTION__." - EXIT</font> ------------------------<br />");
1319 // Wrapper function for ADD_POINTS_REFSYSTEM()
1320 function ADD_POINTS_REFSYSTEM_DIRECT ($subject, $uid, $points) {
1321 return ADD_POINTS_REFSYSTEM($subject, $uid, $points, false, 0, false, 'direct');
1324 // Updates the referal counter
1325 function updateReferalCounter ($uid) {
1326 // Make it sure referal level zero (member him-/herself) is at least selected
1327 if (empty($GLOBALS['cache_array']['ref_level'][$uid])) $GLOBALS['cache_array']['ref_level'][$uid] = 1;
1328 //* DEBUG: */ OUTPUT_HTML(__FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid},level={$GLOBALS['cache_array']['ref_level'][$uid]}<br />");
1331 SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_refsystem` SET `counter`=`counter`+1 WHERE `userid`=%s AND `level`='%s' LIMIT 1",
1332 array(bigintval($uid), $GLOBALS['cache_array']['ref_level'][$uid]), __FUNCTION__, __LINE__);
1334 // When no entry was updated then we have to create it here
1335 //* DEBUG: */ OUTPUT_HTML(__FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):updated=".SQL_AFFECTEDROWS()."<br />");
1336 if (SQL_AFFECTEDROWS() < 1) {
1338 SQL_QUERY_ESC("INSERT INTO `{!_MYSQL_PREFIX!}_refsystem` (`userid`, `level`, `counter`) VALUES (%s,%s,1)",
1339 array(bigintval($uid), $GLOBALS['cache_array']['ref_level'][$uid]), __FUNCTION__, __LINE__);
1340 //* DEBUG: */ OUTPUT_HTML(__FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid}<br />");
1343 // Check for his referal
1344 $result = SQL_QUERY_ESC("SELECT `refid` FROM `{!_MYSQL_PREFIX!}_user_data` WHERE `userid`=%s LIMIT 1",
1345 array(bigintval($uid)), __FUNCTION__, __LINE__);
1348 list($ref) = SQL_FETCHROW($result);
1351 SQL_FREERESULT($result);
1352 //* DEBUG: */ OUTPUT_HTML(__FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid},ref={$ref}<br />");
1354 // When he has a referal...
1355 if (($ref > 0) && ($ref != $uid)) {
1356 // Move to next referal level and count his counter one up!
1357 //* DEBUG: */ OUTPUT_HTML(__FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):ref={$ref} - ADVANCE!<br />");
1358 $GLOBALS['cache_array']['ref_level'][$uid]++; updateReferalCounter($ref);
1359 } elseif ((($ref == $uid) || ($ref == 0)) && (GET_EXT_VERSION('cache') >= '0.1.2')) {
1360 // Remove cache here
1361 //* DEBUG: */ OUTPUT_HTML(__FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):ref={$ref} - CACHE!<br />");
1362 rebuildCacheFiles('refsystem', 'refsystem');
1366 $GLOBALS['cache_array']['ref_level'][$uid]--;
1368 // Handle refback here if extension is installed
1369 if (EXT_IS_ACTIVE('refback')) {
1370 updateRefbackTable($uid);
1374 // Sends out mail to all administrators. This function is no longer obsolete
1375 // because we need it when there is no ext-admins installed
1376 function SEND_ADMIN_EMAILS ($subj, $message) {
1377 // Load all admin email addresses
1378 $result = SQL_QUERY("SELECT `email` FROM `{!_MYSQL_PREFIX!}_admins` ORDER BY `id` ASC", __FUNCTION__, __LINE__);
1379 while ($content = SQL_FETCHARRAY($result)) {
1380 // Send the email out
1381 sendEmail($content['email'], $subj, $message);
1385 SQL_FREERESULT($result);
1387 // Really simple... ;-)
1390 // Get ID number from administrator's login name
1391 function GET_ADMIN_ID ($login) {
1392 // By default no admin is found
1396 if (isset($GLOBALS['cache_array']['admins']['aid'][$login])) {
1397 // Use it if found to save SQL queries
1398 $ret = $GLOBALS['cache_array']['admins']['aid'][$login];
1400 // Update cache hits
1401 incrementConfigEntry('cache_hits');
1402 } elseif (!EXT_IS_ACTIVE('cache')) {
1403 // Load from database
1404 $result = SQL_QUERY_ESC("SELECT `id` FROM `{!_MYSQL_PREFIX!}_admins` WHERE login='%s' LIMIT 1",
1405 array($login), __FUNCTION__, __LINE__);
1406 if (SQL_NUMROWS($result) == 1) {
1407 list($ret) = SQL_FETCHROW($result);
1411 SQL_FREERESULT($result);
1416 // "Getter" for current admin id
1417 function getCurrentAdminId () {
1418 // Get the admin login from session
1419 $adminLogin = getSession('admin_login');
1421 // "Solve" it into an id
1422 $adminId = GET_ADMIN_ID($adminLogin);
1424 // Secure and return it
1425 return bigintval($adminId);
1428 // Get password hash from administrator's login name
1429 function GET_ADMIN_HASH ($aid) {
1430 // By default an invalid hash is returned
1433 if (isset($GLOBALS['cache_array']['admins']['password'][$aid])) {
1435 $ret = $GLOBALS['cache_array']['admins']['password'][$aid];
1437 // Update cache hits
1438 incrementConfigEntry('cache_hits');
1439 } elseif (!EXT_IS_ACTIVE('cache')) {
1440 // Load from database
1441 $result = SQL_QUERY_ESC("SELECT password FROM `{!_MYSQL_PREFIX!}_admins` WHERE `id`=%s LIMIT 1",
1442 array($aid), __FUNCTION__, __LINE__);
1443 if (SQL_NUMROWS($result) == 1) {
1445 list($ret) = SQL_FETCHROW($result);
1448 $GLOBALS['cache_array']['admins']['password'][$aid] = $ret;
1452 SQL_FREERESULT($result);
1457 // "Getter" for admin login
1458 function getAdminLogin ($aid) {
1459 // By default a non-existent login is returned (other functions react on this!)
1462 if (isset($GLOBALS['cache_array']['admins']['login'][$aid])) {
1464 $ret = $GLOBALS['cache_array']['admins']['login'][$aid];
1466 // Update cache hits
1467 incrementConfigEntry('cache_hits');
1468 } elseif (!EXT_IS_ACTIVE('cache')) {
1469 // Load from database
1470 $result = SQL_QUERY_ESC("SELECT login FROM `{!_MYSQL_PREFIX!}_admins` WHERE `id`=%s LIMIT 1",
1471 array(bigintval($aid)), __FUNCTION__, __LINE__);
1472 if (SQL_NUMROWS($result) == 1) {
1474 list($ret) = SQL_FETCHROW($result);
1477 $GLOBALS['cache_array']['admins']['login'][$aid] = $ret;
1481 SQL_FREERESULT($result);
1486 // Get email address of admin id
1487 function getAdminEmail ($aid) {
1488 // By default an invalid emails is returned
1491 if (isset($GLOBALS['cache_array']['admins']['email'][$aid])) {
1493 $ret = $GLOBALS['cache_array']['admins']['email'][$aid];
1495 // Update cache hits
1496 incrementConfigEntry('cache_hits');
1497 } elseif (!EXT_IS_ACTIVE('cache')) {
1498 // Load from database
1499 $result_aid = SQL_QUERY_ESC("SELECT email FROM `{!_MYSQL_PREFIX!}_admins` WHERE `id`=%s LIMIT 1",
1500 array(bigintval($aid)), __FUNCTION__, __LINE__);
1501 if (SQL_NUMROWS($result_aid) == 1) {
1503 list($ret) = SQL_FETCHROW($result_aid);
1506 $GLOBALS['cache_array']['admins']['email'][$aid] = $ret;
1510 SQL_FREERESULT($result_aid);
1517 // Get default ACL of admin id
1518 function getAdminDefaultAcl ($aid) {
1519 // By default an invalid ACL value is returned
1522 // Is sql_patches there and was it found in cache?
1523 if (!EXT_IS_ACTIVE('sql_patches')) {
1524 // Not found, which is bad, so we need to allow all
1526 } elseif (isset($GLOBALS['cache_array']['admins']['def_acl'][$aid])) {
1528 $ret = $GLOBALS['cache_array']['admins']['def_acl'][$aid];
1530 // Update cache hits
1531 incrementConfigEntry('cache_hits');
1532 } elseif (!EXT_IS_ACTIVE('cache')) {
1533 // Load from database
1534 $result_aid = SQL_QUERY_ESC("SELECT default_acl FROM `{!_MYSQL_PREFIX!}_admins` WHERE `id`=%s LIMIT 1",
1535 array(bigintval($aid)), __FUNCTION__, __LINE__);
1536 if (SQL_NUMROWS($result_aid) == 1) {
1538 list($ret) = SQL_FETCHROW($result_aid);
1541 $GLOBALS['cache_array']['admins']['def_acl'][$aid] = $ret;
1545 SQL_FREERESULT($result_aid);
1552 // Generates an option list from various parameters
1553 function generateOptionList ($table, $id, $name, $default='', $special='', $where='') {
1555 if ($table == '/ARRAY/') {
1556 // Selection from array
1557 if (is_array($id) && is_array($name) && count($id) == count($name)) {
1559 foreach ($id as $idx => $value) {
1560 $ret .= '<option value="' . $value . '"';
1561 if ($default == $value) $ret .= ' selected="selected"';
1562 $ret .= '>' . $name[$idx] . '</option>';
1566 // Data from database
1568 if (!empty($special)) $SPEC = ', ' . $special;
1569 $ORDER = $name.$SPEC;
1570 if ($table == 'country') $ORDER = $special;
1571 $result = SQL_QUERY_ESC("SELECT %s, %s".$SPEC." FROM `{!_MYSQL_PREFIX!}_%s` ".$where." ORDER BY %s",
1572 array($id, $ORDER, $table, $name), __FUNCTION__, __LINE__);
1573 if (SQL_NUMROWS($result) > 0) {
1574 // Found data so add them as OPTION lines: $id is the value and $name is the "name" of the option
1575 // @TODO Try to rewrite this to $content = SQL_FETCHARRAY()
1576 while (list($value, $title, $add) = SQL_FETCHROW($result)) {
1577 if (empty($special)) $add = '';
1578 $ret .= '<option value="' . $value . '"';
1579 if ($default == $value) $ret .= ' selected="selected"';
1580 if (!empty($add)) $add = ' ('.$add.')';
1581 $ret .= '>' . $title . $add . '</option>';
1585 SQL_FREERESULT($result);
1588 $ret = '<option value="x">{--SELECT_NONE--}</option>';
1592 // Return - hopefully - the requested data
1595 // Activate exchange
1596 function activateExchange () {
1597 // Is the extension 'user' there?
1598 if (!EXT_IS_ACTIVE('user')) {
1599 // Silently abort here
1603 // Check total amount of users
1604 $totalUsers = GET_TOTAL_DATA('CONFIRMED', 'user_data', 'userid', 'status', true, ' AND max_mails > 0');
1606 if ($totalUsers >= getConfig('activate_xchange')) {
1609 "UPDATE `{!_MYSQL_PREFIX!}_mod_reg` SET `locked`='N', `hidden`='N', `mem_only`='Y' WHERE `module`='order' LIMIT 1",
1610 "UPDATE `{!_MYSQL_PREFIX!}_member_menu` SET `visible`='Y', `locked`='N' WHERE `what`='order' OR `what`='unconfirmed' LIMIT 2",
1611 "UPDATE `{!_MYSQL_PREFIX!}_config` SET `activate_xchange`=0 WHERE `config`=0 LIMIT 1"
1615 runFilterChain('run_sqls');
1618 // @TODO Rewrite this to a filter
1619 rebuildCacheFiles('config', 'config');
1620 rebuildCacheFiles('modreg', 'modreg');
1624 // Deletes a user account with given reason
1625 function deleteUserAccount ($uid, $reason) {
1627 $result = SQL_QUERY_ESC("SELECT (SUM(p.points) - d.used_points) AS points
1628 FROM `{!_MYSQL_PREFIX!}_user_points` AS p
1629 LEFT JOIN `{!_MYSQL_PREFIX!}_user_data` AS d
1630 ON p.userid=d.userid
1631 WHERE p.userid=%s", array(bigintval($uid)), __FUNCTION__, __LINE__);
1632 if (SQL_NUMROWS($result) == 1) {
1633 // Save his points to add them to the jackpot
1634 list($points) = SQL_FETCHROW($result);
1636 // Delete points entries as well
1637 SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM `{!_MYSQL_PREFIX!}_user_points` WHERE `userid`=%s", array(bigintval($uid)), __FUNCTION__, __LINE__);
1639 // Update mediadata as well
1640 if (GET_EXT_VERSION('mediadata') >= '0.0.4') {
1642 MEDIA_UPDATE_ENTRY(array('total_points'), 'sub', $points);
1645 // Now, when we have all his points adds them do the jackpot!
1646 ADD_JACKPOT($points);
1650 SQL_FREERESULT($result);
1652 // Delete category selections as well...
1653 SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM `{!_MYSQL_PREFIX!}_user_cats` WHERE `userid`=%s",
1654 array(bigintval($uid)), __FUNCTION__, __LINE__);
1656 // Remove from rallye if found
1657 if (EXT_IS_ACTIVE('rallye')) {
1658 SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM `{!_MYSQL_PREFIX!}_rallye_users` WHERE `userid`=%s",
1659 array(bigintval($uid)), __FUNCTION__, __LINE__);
1662 // Now a mail to the user and that's all...
1663 $message = LOAD_EMAIL_TEMPLATE('del-user', array('text' => $reason), $uid);
1664 sendEmail($uid, getMessage('ADMIN_DEL_ACCOUNT'), $message);
1666 // Ok, delete the account!
1667 SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM `{!_MYSQL_PREFIX!}_user_data` WHERE `userid`=%s LIMIT 1", array(bigintval($uid)), __FUNCTION__, __LINE__);
1670 // Generates meta description for given module and 'what' value
1671 function generateMetaDescriptionCode ($mod, $wht) {
1672 // Exclude admin and member's area
1673 if (($mod != 'admin') && ($mod != 'login')) {
1674 // Construct dynamic description
1675 $DESCR = '{!MAIN_TITLE!} '.trim(getConfig('title_middle')) . ' ' . ADD_DESCR('guest', 'what-'.$wht, true);
1677 // Output it directly
1678 OUTPUT_HTML('<meta name="description" content="' . $DESCR . '" />');
1682 unset($GLOBALS['ref_level']);
1685 // Adds points to the jackpot
1686 function ADD_JACKPOT ($points) {
1687 $result = SQL_QUERY("SELECT points FROM `{!_MYSQL_PREFIX!}_jackpot` WHERE ok='ok' LIMIT 1", __FUNCTION__, __LINE__);
1688 if (SQL_NUMROWS($result) == 0) {
1690 SQL_QUERY_ESC("INSERT INTO `{!_MYSQL_PREFIX!}_jackpot` (ok, points) VALUES ('ok','%s')", array($points), __FUNCTION__, __LINE__);
1693 SQL_FREERESULT($result);
1696 SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_jackpot` SET points=points+%s WHERE ok='ok' LIMIT 1",
1697 array($points), __FUNCTION__, __LINE__);
1701 // Subtracts points from the jackpot
1702 function SUB_JACKPOT ($points) {
1706 // Get current points
1707 $result = SQL_QUERY("SELECT points FROM `{!_MYSQL_PREFIX!}_jackpot` WHERE ok='ok' LIMIT 1", __FUNCTION__, __LINE__);
1708 if (SQL_NUMROWS($result) == 0) {
1710 SQL_QUERY("INSERT INTO `{!_MYSQL_PREFIX!}_jackpot` (ok, points) VALUES ('ok', 0.00000)", __FUNCTION__, __LINE__);
1713 list($jackpot) = SQL_FETCHROW($result);
1714 if ($jackpot >= $points) {
1715 // Update points when there are enougth points in jackpot
1716 SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_jackpot` SET points=points-%s WHERE ok='ok' LIMIT 1",
1717 array($points), __FUNCTION__, __LINE__);
1718 $ret = $jackpot - $points;
1723 SQL_FREERESULT($result);
1726 // Checks wether the extension demo is actuve and the admin login is demo (password needs to be demo, too!)
1727 function IS_DEMO () {
1728 return ((EXT_IS_ACTIVE('demo')) && (getSession('admin_login') == 'demo'));
1731 // Gets the matching what name from module
1732 function getWhatFromModule ($modCheck) {
1733 // Is the request element set?
1734 if (REQUEST_ISSET_GET('what')) {
1735 // Then return this!
1736 return REQUEST_GET('what');
1742 //* DEBUG: */ OUTPUT_HTML(__LINE__.'!'.$modCheck."!<br />");
1743 switch ($modCheck) {
1751 if (($modCheck == 'index') && (getConfig('index_home') != '')) $wht = getConfig('index_home');
1759 // Return what value
1763 // Subtract points from database and mediadata cache
1764 function SUB_POINTS ($subject, $uid, $points) {
1765 // Add points to used points
1766 SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_user_data` SET `used_points`=`used_points`+%s WHERE `userid`=%s LIMIT 1",
1767 array($points, bigintval($uid)), __FUNCTION__, __LINE__);
1769 // Insert booking record
1770 // @TODO Rewrite this to a filter
1771 if (EXT_IS_ACTIVE('booking')) {
1773 ADD_BOOKING_RECORD($subject, $uid, $points, 'sub');
1776 // Update mediadata as well
1777 if (GET_EXT_VERSION('mediadata') >= '0.0.4') {
1779 MEDIA_UPDATE_ENTRY(array('total_points'), 'sub', $points);
1783 // Update config entries
1784 function updateConfiguration ($entries, $values, $updateMode='') {
1785 // Do not update config in CSS mode
1786 if ((getOutputMode() == '1') || (getOutputMode() == -1)) {
1790 // Do we have multiple entries?
1791 if (is_array($entries)) {
1794 foreach ($entries as $idx => $entry) {
1796 if (!empty($updateMode)) {
1798 // @TODO Find a way for updating $_CONFIG here
1799 $all .= sprintf("`%s`=%s%s%s,", $entry, $entry, $updateMode, (float)$values[$idx]);
1801 // Check if string or number
1802 if (($values[$idx] + 0) === $values[$idx]) {
1804 $all .= sprintf("`%s`=%s,", $entry, (float)$values[$idx]);
1805 } elseif ($values[$idx] == 'UNIX_TIMESTAMP()') {
1806 // Function UNIX_TIMESTAMP() detected
1807 $all .= sprintf("`%s`=%s,", $entry, $values[$idx]);
1810 $all .= sprintf("`%s`='%s',", $entry, SQL_ESCAPE($values[$idx]));
1814 // Set it in config as well
1815 setConfigEntry($entry, $values[$idx]);
1818 // Remove last comma
1819 $entries = substr($all, 0, -1);
1820 } elseif (!empty($updateMode)) {
1822 // @TODO Find a way for updating $_CONFIG here
1823 $entries .= sprintf("=%s%s%s", $entries, $updateMode, (float)$values);
1825 // Set it in config first
1826 setConfigEntry($entries, $values);
1828 // Regular entry to update
1829 $entries .= sprintf("='%s'", SQL_ESCAPE($values));
1832 // Run database update
1833 //* DEBUG: */ DEBUG_LOG(__FUNCTION__, __LINE__, "entries={$entries}");
1834 SQL_QUERY("UPDATE `{!_MYSQL_PREFIX!}_config` SET ".$entries." WHERE config=0 LIMIT 1", __FUNCTION__, __LINE__);
1836 // Get affected rows
1837 $affectedRows = SQL_AFFECTEDROWS();
1838 //* DEBUG: */ OUTPUT_HTML(__FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):entries={$entries},affectedRows={$affectedRows}<br />");
1841 rebuildCacheFiles('config', 'config');
1844 // Prepares an SQL statement part for HTML mail and/or holiday depency
1845 // @TODO Can this be rewritten to a filter?
1846 function PREPARE_SQL_HTML_HOLIDAY ($mode) {
1847 // Exclude no users by default
1851 if ($mode == 'html') $MORE = " AND `html`='Y'";
1852 if (GET_EXT_VERSION('holiday') >= '0.1.3') {
1853 // Add something for the holiday extension
1854 $MORE .= " AND `holiday_active`='N'";
1861 // "Getter" for total available receivers
1862 function getTotalReceivers ($mode='normal') {
1864 $result_all = SQL_QUERY("SELECT userid
1865 FROM `{!_MYSQL_PREFIX!}_user_data`
1866 WHERE `status`='CONFIRMED' AND receive_mails > 0 ".PREPARE_SQL_HTML_HOLIDAY($mode),
1867 __FUNCTION__, __LINE__);
1870 $numRows = SQL_NUMROWS($result_all);
1873 SQL_FREERESULT($result_all);
1879 // Returns HTML code with an "<option> list" of all categories
1880 function generateCategoryOptionsList ($mode) {
1881 // Prepare WHERE statement
1882 $whereStatement = " WHERE `visible`='Y'";
1883 if (IS_ADMIN()) $whereStatement = '';
1885 // Initialize array...
1893 $result = SQL_QUERY("SELECT id, cat FROM `{!_MYSQL_PREFIX!}_cats`".$whereStatement." ORDER BY `sort`", __FUNCTION__, __LINE__);
1894 if (SQL_NUMROWS($result) > 0) {
1895 // ... and begin loading stuff
1896 while ($content = SQL_FETCHARRAY($result)) {
1897 // Transfer some data
1898 $CATS['id'][] = $content['id'];
1899 $CATS['name'][] = $content['cat'];
1901 // Check which users are in this category
1902 $result_uids = SQL_QUERY_ESC("SELECT userid FROM `{!_MYSQL_PREFIX!}_user_cats` WHERE cat_id=%s",
1903 array(bigintval($content['id'])), __FUNCTION__, __LINE__);
1907 // @TODO Rewrite this to $content = SQL_FETCHARRAY()
1908 while (list($ucat) = SQL_FETCHROW($result_uids)) {
1909 $result_ver = SQL_QUERY_ESC("SELECT
1912 `{!_MYSQL_PREFIX!}_user_data`
1914 `userid`=%s AND `status`='CONFIRMED' AND receive_mails > 0".PREPARE_SQL_HTML_HOLIDAY($mode)."
1916 array(bigintval($ucat)), __FUNCTION__, __LINE__);
1919 $uid_cnt += SQL_NUMROWS($result_ver);
1922 SQL_FREERESULT($result_ver);
1926 SQL_FREERESULT($result_uids);
1929 $CATS['uids'][] = $uid_cnt;
1933 SQL_FREERESULT($result);
1937 foreach ($CATS['id'] as $key => $value) {
1938 if (strlen($CATS['name'][$key]) > 20) $CATS['name'][$key] = substr($CATS['name'][$key], 0, 17)."...";
1939 $OUT .= ' <option value="' . $value . '">' . $CATS['name'][$key] . ' (' . $CATS['uids'][$key] . ' {--USER_IN_CAT--})</option>';
1942 // No cateogries are defined yet
1943 $OUT = '<option class="member_failed">{!MEMBER_NO_CATS!}</option>';
1950 // Add bonus mail to queue
1951 function addBonusMailToQueue ($subject, $text, $receiverList, $points, $seconds, $url, $cat, $mode='normal', $receiver=0) {
1952 // Is admin or bonus extension there?
1956 } elseif (!EXT_IS_ACTIVE('bonus')) {
1961 // Calculcate target sent
1962 $target = countSelection(explode(';', $receiverList));
1964 // Receiver is zero?
1965 if ($receiver == 0) {
1967 $receiver = $target;
1970 // HTML extension active?
1971 if (EXT_IS_ACTIVE('html_mail')) {
1972 // No HTML by default
1976 if ($mode == 'html') $HTML = 'Y';
1979 SQL_QUERY_ESC("INSERT INTO `{!_MYSQL_PREFIX!}_bonus`
1980 (subject, text, receivers, points, time, data_type, timestamp, url, cat_id, target_send, mails_sent, html_msg)
1981 VALUES ('%s','%s','%s','%s','%s','NEW', UNIX_TIMESTAMP(),'%s','%s','%s','%s','%s')",
1991 bigintval($receiver),
1993 ), __FUNCTION__, __LINE__);
1996 SQL_QUERY_ESC("INSERT INTO `{!_MYSQL_PREFIX!}_bonus`
1997 (subject, text, receivers, points, time, data_type, timestamp, url, cat_id, target_send, mails_sent)
1998 VALUES ('%s','%s','%s','%s','%s','NEW', UNIX_TIMESTAMP(),'%s','%s','%s','%s')",
2008 bigintval($receiver),
2009 ), __FUNCTION__, __LINE__);
2013 // Generate a receiver list for given category and maximum receivers
2014 function generateReceiverList ($cat, $receiver, $mode = '') {
2022 $cat = bigintval($cat);
2023 $receiver = bigintval($receiver);
2025 // Is the receiver zero and mode set?
2026 if (($receiver == 0) && (!empty($mode))) {
2027 // Auto-fix receiver maximum
2028 $receiver = getTotalReceivers($mode);
2034 $CAT_TABS = "LEFT JOIN `{!_MYSQL_PREFIX!}_user_cats` AS c ON d.userid=c.userid";
2035 $CAT_WHERE = " AND c.cat_id=%s";
2038 // Exclude users in holiday?
2039 if (GET_EXT_VERSION('holiday') >= '0.1.3') {
2040 // Add something for the holiday extension
2041 $CAT_WHERE .= " AND d.`holiday_active`='N'";
2044 if ((EXT_IS_ACTIVE('html_mail')) && ($mode == 'html')) {
2045 // Only include HTML receivers
2046 $result = SQL_QUERY_ESC("SELECT d.userid FROM `{!_MYSQL_PREFIX!}_user_data` AS d ".$CAT_TABS." WHERE d.`status`='CONFIRMED' AND d.`html`='Y'".$CAT_WHERE." ORDER BY d.%s %s LIMIT %s",
2047 array($cat, getConfig('order_select'), getConfig('order_mode'), $receiver), __FUNCTION__, __LINE__);
2050 $result = SQL_QUERY_ESC("SELECT d.userid FROM `{!_MYSQL_PREFIX!}_user_data` AS d ".$CAT_TABS." WHERE d.`status`='CONFIRMED'".$CAT_WHERE." ORDER BY d.%s %s LIMIT %s",
2051 array($cat, getConfig('order_select'), getConfig('order_mode'), $receiver), __FUNCTION__, __LINE__);
2055 if ((SQL_NUMROWS($result) >= $receiver) && ($receiver > 0)) {
2057 while ($content = SQL_FETCHARRAY($result)) {
2058 // Add receiver when not empty
2059 if (!empty($content['userid'])) $receiverList .= $content['userid'] . ';';
2063 SQL_FREERESULT($result);
2065 // Remove trailing semicolon
2066 $receiverList = substr($receiverList, 0, -1);
2070 return $receiverList;
2073 // Get timestamp for given stats type and data
2074 function getTimestampFromUserStats ($type, $data, $uid = 0) {
2075 // Default timestamp is zero
2079 if ((isUserIdSet()) && ($uid == 0)) {
2083 // Is the extension installed and updated?
2084 if ((!EXT_IS_ACTIVE('sql_patches')) || (EXT_VERSION_IS_OLDER('sql_patches', '0.5.6'))) {
2089 // Try to find the entry
2090 $result = SQL_QUERY_ESC("SELECT UNIX_TIMESTAMP(`inserted`) AS `stamp`
2091 FROM `{!_MYSQL_PREFIX!}_user_stats_data`
2092 WHERE `userid`=%s AND `stats_type`='%s' AND `stats_data`='%s'
2098 ), __FUNCTION__, __LINE__);
2100 // Is the entry there?
2101 if (SQL_NUMROWS($result) == 1) {
2103 list($stamp) = SQL_FETCHROW($result);
2107 SQL_FREERESULT($result);
2113 // Inserts user stats
2114 function insertUserStatsRecord ($uid, $type, $data) {
2115 // Is the extension installed and updated?
2116 if ((!EXT_IS_ACTIVE('sql_patches')) || (EXT_VERSION_IS_OLDER('sql_patches', '0.5.6'))) {
2122 if ((!getTimestampFromUserStats($type, $data, $uid)) && (!is_array($data))) {
2124 SQL_QUERY_ESC("INSERT INTO `{!_MYSQL_PREFIX!}_user_stats_data` (`userid`,`stats_type`,`stats_data`) VALUES (%s,'%s','%s')",
2125 array(bigintval($uid), $type, $data), __FUNCTION__, __LINE__);
2126 } elseif (is_array($data)) {
2128 DEBUG_LOG(__FUNCTION__, __LINE__, "uid={$uid},type={$type},data={".gettype($data).": Invalid statistics data type!");
2132 // "Getter" for array for user refs and points in given level
2133 function getUserReferalPoints ($uid, $level) {
2134 //* DEBUG: */ OUTPUT_HTML("----------------------- <font color=\"#00aa00\">".__FUNCTION__." - ENTRY</font> ------------------------<ul><li>\n");
2135 // Default is no refs and no nickname
2139 // Do we have nickname extension installed?
2140 if (EXT_IS_ACTIVE('nickname')) {
2141 $add = ', ud.nickname';
2144 // Get refs from database
2145 $result = SQL_QUERY_ESC("SELECT ur.id, ur.refid, ud.status, ud.last_online, ud.mails_confirmed, ud.emails_received".$add."
2146 FROM `{!_MYSQL_PREFIX!}_user_refs` AS ur
2147 LEFT JOIN `{!_MYSQL_PREFIX!}_user_points` AS up
2148 ON ur.refid=up.userid AND ur.level=0
2149 LEFT JOIN `{!_MYSQL_PREFIX!}_user_data` AS ud
2150 ON ur.refid=ud.userid
2151 WHERE ur.userid=%s AND ur.level=%s
2152 ORDER BY ur.refid ASC",
2153 array(bigintval($uid), bigintval($level)), __FUNCTION__, __LINE__);
2155 // Are there some entries?
2156 if (SQL_NUMROWS($result) > 0) {
2157 // Fetch all entries
2158 while ($row = SQL_FETCHARRAY($result)) {
2159 // Get total points of this user
2160 $row['points'] = GET_TOTAL_DATA($row['refid'], 'user_points', 'points') - GET_TOTAL_DATA($row['refid'], 'user_data', 'used_points');
2162 // Get unconfirmed mails
2163 $row['unconfirmed'] = GET_TOTAL_DATA($row['refid'], 'user_links', 'id', 'userid', true);
2165 // Init clickrate with zero
2166 $row['clickrate'] = 0;
2168 // Is at least one mail received?
2169 if ($row['emails_received'] > 0) {
2170 // Calculate clickrate
2171 $row['clickrate'] = ($row['mails_confirmed'] / $row['emails_received'] * 100);
2174 // Activity is 'active' by default because if autopurge is not installed
2175 $row['activity'] = getMessage('MEMBER_ACTIVITY_ACTIVE');
2177 // Is autopurge installed and the user inactive?
2178 if ((EXT_IS_ACTIVE('autopurge')) && ((time() - getConfig('ap_inactive_since')) >= $row['last_online'])) {
2180 $row['activity'] = getMessage('MEMBER_ACTIVITY_INACTIVE');
2183 // Remove some entries
2184 unset($row['mails_confirmed']);
2185 unset($row['emails_received']);
2186 unset($row['last_online']);
2189 $refs[$row['id']] = $row;
2194 SQL_FREERESULT($result);
2197 //* DEBUG: */ OUTPUT_HTML("</li></ul>----------------------- <font color=\"#aa0000\">".__FUNCTION__." - EXIT</font> ------------------------<br />");
2201 // Recuce the amount of received emails for the receipients for given email
2202 function reduceRecipientReceivedMails ($column, $id, $count) {
2203 // Search for mail in database
2204 $result = SQL_QUERY_ESC("SELECT `userid` FROM `{!_MYSQL_PREFIX!}_user_links` WHERE `%s`=%s ORDER BY `userid` ASC LIMIT %s",
2205 array($column, bigintval($id), $count), __FUNCTION__, __LINE__);
2207 // Are there entries?
2208 if (SQL_NUMROWS($result) > 0) {
2209 // Now load all userids for one big query!
2210 // @TODO This can be somehow rewritten
2212 while (list($uid) = SQL_FETCHROW($result)) {
2216 // Now update all user accounts
2217 SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_user_data` SET `emails_received`=`emails_received`-1 WHERE `userid` IN (%s) LIMIT %s",
2218 array(implode(',', $UIDs), count($UIDs)), __FUNCTION__, __LINE__);
2222 SQL_FREERESULT($result);
2226 function INIT_SQLS () {
2230 // Checks wether the sqls array is initialized
2231 function IS_SQLS_INITIALIZED () {
2232 return ((isset($GLOBALS['sqls'])) && (is_array($GLOBALS['sqls'])));
2235 // Setter for SQLs array
2236 function SET_SQLS ($SQLs) {
2237 $GLOBALS['sqls'] = (array) $SQLs;
2240 // Remover for SQLs array
2241 function UNSET_SQLS () {
2242 unset($GLOBALS['sqls']);
2245 // Getter for SQLs array
2246 function GET_SQLS () {
2247 return $GLOBALS['sqls'];
2250 // Add an SQL to the list
2251 function ADD_SQL ($sql) {
2252 //* DEBUG: */ DEBUG_LOG(__FUNCTION__, __LINE__, sprintf("sql=%s, count=%d", $sql, COUNT_SQLS()));
2253 $GLOBALS['sqls'][] = (string) $sql;
2256 // Setter for SQLs key
2257 function SET_SQL_KEY ($key, $value) {
2258 $GLOBALS['sqls'][$key] = (string) $value;
2261 // Merge SQLs together
2262 function MERGE_SQLS ($SQLs) {
2263 SET_SQLS(merge_array(GET_SQLS(), $SQLs));
2266 // Counter for SQLs array
2267 function COUNT_SQLS () {
2271 // Is the array there?
2272 if (IS_SQLS_INITIALIZED()) {
2274 $count = count($GLOBALS['sqls']);
2275 //* DEBUG: */ DEBUG_LOG(__FUNCTION__, __LINE__, sprintf("count=%d", $count));
2282 // Checks wether the SQLs array is filled
2283 function IS_SQLS_VALID () {
2285 (IS_SQLS_INITIALIZED())
2291 // Creates a new task
2292 function createNewTask($subject, $notes, $taskType, $userid = 0, $admin_id = 0, $strip = true) {
2293 // Insert the task data into the database
2294 SQL_QUERY_ESC("INSERT INTO `{!_MYSQL_PREFIX!}_task_system` (`assigned_admin`, `userid`, `status`, `task_type`, `subject`, `text`, `task_created`) VALUES (%s,%s,'NEW','%s','%s','%s', UNIX_TIMESTAMP())",
2295 array($admin_id, $userid, $taskType, $subject, $notes), __FUNCTION__, __LINE__, true, $strip);