2 /************************************************************************
3 * MXChange v0.2.1 Start: 08/26/2003 *
4 * =============== Last change: 11/29/2004 *
6 * -------------------------------------------------------------------- *
7 * File : mysql-manager.php *
8 * -------------------------------------------------------------------- *
9 * Short description : All MySQL-related functions *
10 * -------------------------------------------------------------------- *
11 * Kurzbeschreibung : Alle MySQL-Relevanten Funktionen *
12 * -------------------------------------------------------------------- *
15 * $Tag:: 0.2.1-FINAL $ *
17 * Needs to be in all Files and every File needs "svn propset *
18 * svn:keywords Date Revision" (autoprobset!) at least!!!!!! *
19 * -------------------------------------------------------------------- *
20 * Copyright (c) 2003 - 2008 by Roland Haeder *
21 * For more information visit: http://www.mxchange.org *
23 * This program is free software; you can redistribute it and/or modify *
24 * it under the terms of the GNU General Public License as published by *
25 * the Free Software Foundation; either version 2 of the License, or *
26 * (at your option) any later version. *
28 * This program is distributed in the hope that it will be useful, *
29 * but WITHOUT ANY WARRANTY; without even the implied warranty of *
30 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
31 * GNU General Public License for more details. *
33 * You should have received a copy of the GNU General Public License *
34 * along with this program; if not, write to the Free Software *
35 * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, *
37 ************************************************************************/
39 // Some security stuff...
40 if (!defined('__SECURITY')) {
41 $INC = substr(dirname(__FILE__), 0, strpos(dirname(__FILE__), '/inc') + 4) . '/security.php';
45 // "Getter" for module title
46 function getModuleTitle ($mod) {
51 // Is the script installed?
53 // Check if cache is valid
54 if ((GET_EXT_VERSION('cache') >= '0.1.2') && (isset($GLOBALS['cache_array']['modules']['module'])) && (in_array($mod, $GLOBALS['cache_array']['modules']['module']))) {
56 $name = $GLOBALS['cache_array']['modules']['title'][$mod];
59 incrementConfigEntry('cache_hits');
60 } elseif (!EXT_IS_ACTIVE('cache')) {
62 $result = SQL_QUERY_ESC("SELECT title FROM `{!_MYSQL_PREFIX!}_mod_reg` WHERE `module`='%s' LIMIT 1",
63 array($mod), __FUNCTION__, __LINE__);
64 list($name) = SQL_FETCHROW($result);
65 SQL_FREERESULT($result);
72 // Still no luck or empty title?
75 $name = sprintf("%s (%s)", getMessage('LANG_UNKNOWN_MODULE'), $mod);
76 if (SQL_NUMROWS($result) == 0) {
77 // Add module to database
78 $dummy = checkModulePermissions($mod);
86 // "Getter" for module description
87 function getModuleDescription ($mode, $wht, $column = 'what') {
91 if (getConfig('index_home') != '') $wht = getConfig('index_home');
94 // Default is not found
95 $ret = '??? (' . $wht . ')';
98 $result = SQL_QUERY_ESC("SELECT title FROM `{!_MYSQL_PREFIX!}_%s_menu` WHERE %s='%s' LIMIT 1",
99 array($mode, $column, $wht), __FUNCTION__, __LINE__);
101 // Is there an entry?
102 if (SQL_NUMROWS($result) == 1) {
104 list($ret) = SQL_FETCHROW($result);
108 SQL_FREERESULT($result);
112 // Check validity of a given module name (no file extension)
113 function checkModulePermissions ($mod) {
114 // Filter module name (names with low chars and underlines are fine!)
115 $mod = preg_replace("/[^a-z_]/", '', $mod);
117 // Check for prefix is a extension...
118 $modSplit = explode("_", $mod);
119 $extension = ''; $mod_chk = $mod;
120 //* DEBUG: */ echo __LINE__."*".count($modSplit)."*/".$mod."*<br />";
121 if (count($modSplit) == 2) {
122 // Okay, there is a seperator (_) in the name so is the first part a module?
123 //* DEBUG: */ echo __LINE__."*".$modSplit[0]."*<br />";
124 if (EXT_IS_ACTIVE($modSplit[0])) {
125 // The prefix is an extension's name, so let's set it
126 $extension = $modSplit[0]; $mod = $modSplit[1];
130 // Major error in module registry is the default
133 // Check if script is installed if not return a 'done' to prevent some errors
134 if ((!isInstalled()) || (isInstalling()) || (!isAdminRegistered())) {
135 // Not installed or no admin registered or in installation phase
146 // Check if cache is latest version
147 if (GET_EXT_VERSION('cache') >= '0.1.2') {
148 // Is the cache there?
149 //* DEBUG: */ DEBUG_LOG(__FUNCTION__, __LINE__, 'Using cache.');
150 if (!isset($GLOBALS['cache_array']['modules'])) {
151 // This happens when a new extension is registered while ext-cache is installed
155 // Is the module cached?
156 if (isset($GLOBALS['cache_array']['modules']['locked'][$mod_chk])) {
158 //* DEBUG: */ DEBUG_LOG(__FUNCTION__, __LINE__, 'Cache found.');
159 $locked = $GLOBALS['cache_array']['modules']['locked'][$mod_chk];
160 $hidden = $GLOBALS['cache_array']['modules']['hidden'][$mod_chk];
161 $admin = $GLOBALS['cache_array']['modules']['admin_only'][$mod_chk];
162 $mem = $GLOBALS['cache_array']['modules']['mem_only'][$mod_chk];
165 incrementConfigEntry('cache_hits');
168 // No, then we have to update it!
171 } elseif (!EXT_IS_ACTIVE('cache')) {
172 // Check for module in database
173 //* DEBUG: */ DEBUG_LOG(__FUNCTION__, __LINE__, 'Using database.');
174 $result = SQL_QUERY_ESC("SELECT `locked`, `hidden`, `admin_only`, `mem_only` FROM `{!_MYSQL_PREFIX!}_mod_reg` WHERE `module`='%s' LIMIT 1",
175 array($mod_chk), __FUNCTION__, __LINE__);
176 if (SQL_NUMROWS($result) == 1) {
178 //* DEBUG: */ DEBUG_LOG(__FUNCTION__, __LINE__, 'Entry found.');
179 list($locked, $hidden, $admin, $mem) = SQL_FETCHROW($result);
181 } elseif (isDebugModeEnabled()) {
182 // Debug message only in debug-mode...
183 DEBUG_LOG(__FUNCTION__, __LINE__, 'Module ' . $mod_chk . ' not found!');
187 SQL_FREERESULT($result);
189 //* DEBUG: */ DEBUG_LOG(__FUNCTION__, __LINE__, 'ret=' . $ret);
191 // Is the module found?
192 if ($found === true) {
193 // Check returned values against current access permissions
195 // Admin access ----- Guest access ----- --- Guest or member? ---
196 if ((IS_ADMIN()) || (($locked == 'N') && ($admin == 'N') && (($mem == 'N') || (IS_MEMBER())))) {
197 // If you are admin you are welcome for everything!
199 } elseif ($locked == 'Y') {
202 } elseif (($mem == 'Y') && (!IS_MEMBER())) {
203 // You have to login first!
205 } elseif (($admin == 'Y') && (!IS_ADMIN())) {
206 // Only the Admin is allowed to enter this module!
209 // @TODO Nothing helped???
210 DEBUG_LOG(__FUNCTION__, __LINE__, sprintf("ret=%s,locked=%s,admin=%s,mem=%s",
219 // Still no luck or not found?
220 if (($found === false) && (!EXT_IS_ACTIVE('cache')) && ($ret != 'done')) {
221 // ----- Legacy module ----- ---- Module in base folder ---- --- Module with extension's name ---
222 if ((isFileReadable(sprintf("%sinc/modules/%s.php", constant('PATH'), $mod))) || (isFileReadable(sprintf("%s%s.php", constant('PATH'), $mod))) || (isFileReadable(sprintf("%s%s/%s.php", constant('PATH'), $extension, $mod)))) {
223 // Data is missing so we add it
224 if (GET_EXT_VERSION('sql_patches') >= '0.3.6') {
225 // Since 0.3.6 we have a has_menu column, this took me a half hour
226 // to find a loop here... *sigh*
227 SQL_QUERY_ESC("INSERT INTO `{!_MYSQL_PREFIX!}_mod_reg`
228 (`module`, `locked`, `hidden`, `mem_only`, `admin_only`, `has_menu`) VALUES
229 ('%s','Y','N','N','N','N')", array($mod_chk), __FUNCTION__, __LINE__);
231 // Wrong/missing sql_patches!
232 SQL_QUERY_ESC("INSERT INTO `{!_MYSQL_PREFIX!}_mod_reg`
233 (`module`, `locked`, `hidden`, `mem_only`, `admin_only`) VALUES
234 ('%s','Y','N','N','N')", array($mod_chk), __FUNCTION__, __LINE__);
237 // Everthing is fine?
238 if (SQL_AFFECTEDROWS() < 1) {
239 // Something bad happend!
243 // Destroy cache here
244 // @TODO Rewrite this to a filter
245 rebuildCacheFiles('modreg', 'modreg');
248 $ret = checkModulePermissions($mod_chk);
250 // Module not found we don't add it to the database
253 } elseif ($ret == 'cache_miss') {
254 // Rebuild the cache files
255 rebuildCacheFiles('modreg', 'modreg');
256 } elseif ($found === false) {
257 // Problem with module detected
258 DEBUG_LOG(__FUNCTION__, __LINE__, sprintf("Problem in module %s detected. ret=%s, locked=%s, hidden=%s, mem=%s, admin=%s",
269 //* DEBUG: */ DEBUG_LOG(__FUNCTION__, __LINE__, 'ret=' . $ret);
273 // Add menu description pending on given file name (without path!)
274 function ADD_DESCR ($accessLevel, $FQFN, $return = false, $output = true) {
275 // Use only filename of the FQFN...
276 $file = basename($FQFN);
283 // First we have to do some analysis...
284 if (substr($file, 0, 7) == 'action-') {
285 // This is an action file!
287 $search = substr($file, 7);
288 switch ($accessLevel) {
296 $modCheck = getModule();
299 $AND = " AND (`what`='' OR `what` IS NULL)";
300 } elseif (substr($file, 0, 5) == 'what-') {
301 // This is an admin what file!
303 $search = substr($file, 5);
305 switch ($accessLevel) {
312 $modCheck = getModule();
314 $AND = " AND `visible`='Y' AND `locked`='N'";
319 $dummy = substr($search, 0, -4);
320 $AND .= " AND `action`='".getModeAction($accessLevel, $dummy)."'";
321 } elseif (($accessLevel == 'sponsor') || ($accessLevel == "engine")) {
322 // Sponsor / engine menu
325 $modCheck = getModule();
331 $modCheck = getModule();
335 // Begin the navigation line
336 if ((!isset($GLOBALS['nav_depth'])) && (!$return)) {
337 $GLOBALS['nav_depth'] = 0;
338 $prefix = "<div class=\"you_are_here\">{--YOU_ARE_HERE--} <strong><a class=\"you_are_here\" href=\"{!URL!}/modules.php?module=".getModule().$LINK_ADD."\">Home</a></strong>";
340 if (!$return) $GLOBALS['nav_depth']++;
344 $prefix .= ' -> ';
346 // We need to remove .php and the end
347 if (substr($search, -4, 4) == '.php') {
349 $search = substr($search, 0, -4);
352 // Get the title from menu
353 $result = SQL_QUERY_ESC("SELECT title FROM `{!_MYSQL_PREFIX!}_%s_menu` WHERE %s='%s' ".$AND." LIMIT 1",
354 array($accessLevel, $type, $search), __FUNCTION__, __LINE__);
357 if (SQL_NUMROWS($result) == 1) {
359 list($ret) = SQL_FETCHROW($result);
361 // Shall we return it?
362 if ($return === true) {
365 } elseif (((GET_EXT_VERSION('sql_patches') >= '0.2.3') && (getConfig('youre_here') == 'Y')) || ((IS_ADMIN()) && ($modCheck == 'admin'))) {
367 $OUT = $prefix . "<strong><a class=\"you_are_here\" href=\"{!URL!}/modules.php?module=" . $modCheck . '&' . $type . '=' . $search.$LINK_ADD . "\">" . $ret . "</a></strong>\n";
369 // Can we close the you-are-here navigation?
370 //* DEBUG: */ echo __LINE__."*".$type.'/'.getWhat()."*<br />\n";
371 if (($type == 'what') || (($type == 'action') && ((!isWhatSet()) || (getWhat() == 'overview')))) {
372 //* DEBUG: */ echo __LINE__.'+'.$type."+<br />\n";
373 // Add closing div and br-tag
374 $OUT .= "</div><br />\n";
375 $GLOBALS['nav_depth'] = '0';
377 // Run the filter chain
378 $ret = runFilterChain('post_youhere_line', array('access_level' => $accessLevel, 'type' => $type, 'content' => ""));
379 $OUT .= $ret['content'];
385 SQL_FREERESULT($result);
387 // Return or output HTML code?
389 // Output HTML code here
398 function ADD_MENU ($mode, $act, $wht) {
399 // Init some variables
405 // is the menu action valid?
406 if (!isMenuActionValid($mode, $act, $wht, true)) {
407 return getCode('MENU_NOT_VALID');
410 // Non-admin shall not see all menus
412 $AND = " AND `visible`='Y' AND `locked`='N'";
415 // Load SQL data and add the menu to the output stream...
416 $result_main = SQL_QUERY_ESC("SELECT `title`, `action` FROM `{!_MYSQL_PREFIX!}_%s_menu` WHERE (`what`='' OR `what` IS NULL)".$AND." ORDER BY `sort`",
417 array($mode), __FUNCTION__, __LINE__);
418 //* DEBUG: */ echo __LINE__.'/'.$main_cnt.'/'.$main_action.'/'.$sub_what.':'.getWhat()."*<br />\n";
419 if (SQL_NUMROWS($result_main) > 0) {
420 OUTPUT_HTML("<table border=\"0\" cellspacing=\"0\" cellpadding=\"0\" class=\"".$mode."_menu\">");
421 // There are menus available, so we simply display them... :)
422 while ($content = SQL_FETCHARRAY($result_main)) {
423 //* DEBUG: */ echo __LINE__.'/'.$main_cnt.'/'.$content['action'].'/'.$sub_what.':'.getWhat()."*<br />\n";
425 enableBlockMode(false);
426 $act = $content['action'];
428 // Load menu header template
429 LOAD_TEMPLATE($mode . '_menu_title', false, $content);
432 $result_sub = SQL_QUERY_ESC("SELECT `title` AS sub_title, `what` AS sub_what FROM `{!_MYSQL_PREFIX!}_%s_menu` WHERE `action`='%s' AND `what` != '' AND `what` IS NOT NULL ".$AND." ORDER BY `sort`",
433 array($mode, $content['action']), __FUNCTION__, __LINE__);
435 // Get number of rows
436 $ctl = SQL_NUMROWS($result_sub);
438 // Do we have some entries?
443 // Load all sub menus
444 while ($content2 = SQL_FETCHARRAY($result_sub)) {
445 // Merge both arrays in one
446 $content = merge_array($content, $content2);
451 // Full file name for checking menu
452 //* DEBUG: */ echo __LINE__.":!!!!".$content['sub_what']."!!!<br />\n";
453 $INC = sprintf("inc/modules/%s/what-%s.php", $mode, $content['sub_what']);
454 if (isIncludeReadable($INC)) {
455 if ((!empty($wht)) && (($wht == $content['sub_what']))) {
460 $OUT .= "<a name=\"menu\" class=\"menu_blur\" href=\"{!URL!}/modules.php?module=".getModule()."&what=".$content['sub_what']."\" target=\"_self\">";
466 $OUT .= getConfig('menu_blur_spacer') . $content['sub_title'];
468 if (isIncludeReadable($INC)) {
474 if ((!empty($wht)) && (($wht == $content['sub_what']))) {
478 // Remember 'what' for next round and count it up
479 $wht = $content['sub_what']; $cnt++;
484 'what' => $content['sub_what']
487 // Add regular menu row or bottom row?
489 LOAD_TEMPLATE($mode."_menu_row", false, $content);
491 LOAD_TEMPLATE($mode."_menu_bottom", false, $content);
495 // This is a menu block... ;-)
499 $INC_BLOCK = sprintf("inc/modules/%s/action-%s.php", $mode, $content['action']);
500 if (isFileReadable($INC_BLOCK)) {
502 if ((!EXT_IS_ACTIVE($content['action'])) || ($content['action'] == 'online')) OUTPUT_HTML("<tr>
504 <td class=\"".$mode."_menu_whats\">");
505 //* DEBUG: */ echo __LINE__.'/'.$main_cnt.'/'.$content['action'].'/'.$content['sub_what'].':'.getWhat()."*<br />\n";
506 loadInclude($INC_BLOCK);
507 //* DEBUG: */ echo __LINE__.'/'.$main_cnt.'/'.$content['action'].'/'.$content['sub_what'].':'.getWhat()."*<br />\n";
508 if ((!EXT_IS_ACTIVE($content['action'])) || ($content['action'] == 'online')) OUTPUT_HTML(" </td>
511 //* DEBUG: */ echo __LINE__.'/'.$main_cnt.'/'.$content['action'].'/'.$content['sub_what'].':'.getWhat()."*<br />\n";
514 //* DEBUG: */ echo __LINE__.'/'.$main_cnt.'/'.$content['action'].'/'.$content['sub_what'].':'.getWhat()."*<br />\n";
515 if (SQL_NUMROWS($result_main) > $main_cnt) {
516 OUTPUT_HTML("<tr><td class=\"".$mode."_menu_seperator\"></td></tr>");
521 SQL_FREERESULT($result_main);
524 //* DEBUG: */ echo __LINE__.'/'.$main_cnt.'/'.$content['action'].'/'.$content['sub_what'].':'.getWhat()."*<br />\n";
525 OUTPUT_HTML("</table>");
529 // Checks wether the current user is a member
530 function IS_MEMBER () {
531 // By default no member
534 // Fix missing 'last' array, damn stupid code :(((
535 // @TODO Try to rewrite this to one or more functions
536 if ((!isset($GLOBALS['last'])) || (!is_array($GLOBALS['last']))) $GLOBALS['last'] = array();
538 // is the cache entry there?
539 if (isset($GLOBALS['is_member'])) {
541 return $GLOBALS['is_member'];
544 // Init global 'status'
545 $GLOBALS['status'] = false;
547 // Fix "deleted" cookies first
548 fixDeletedCookies(array('userid', 'u_hash'));
551 if ((isUserIdSet()) && (isSessionVariableSet('u_hash'))) {
552 // Cookies are set with values, but are they valid?
553 $result = SQL_QUERY_ESC("SELECT password, status, last_module, last_online FROM `{!_MYSQL_PREFIX!}_user_data` WHERE userid=%s LIMIT 1",
554 array(getUserId()), __FUNCTION__, __LINE__);
555 if (SQL_NUMROWS($result) == 1) {
556 // Load data from cookies
557 list($password, $GLOBALS['status'], $mod, $onl) = SQL_FETCHROW($result);
559 // Validate password by created the difference of it and the secret key
560 $valPass = generatePassString($password);
562 // Transfer last module and online time
563 if ((!empty($mod)) && (empty($GLOBALS['last']['module']))) {
564 // @TODO Try to rewrite this to one or more functions
565 $GLOBALS['last']['module'] = $mod;
566 $GLOBALS['last']['online'] = $onl;
569 // So did we now have valid data and an unlocked user?
570 if (($GLOBALS['status'] == 'CONFIRMED') && ($valPass == getSession('u_hash'))) {
571 // Account is confirmed and all cookie data is valid so he is definely logged in! :-)
574 // Maybe got locked etc.
575 //* DEBUG: */ echo __LINE__."!!!<br />";
576 destroyUserSession();
579 // Cookie data is invalid!
580 //* DEBUG: */ echo __LINE__."***<br />";
581 destroyUserSession();
585 SQL_FREERESULT($result);
587 // Cookie data is invalid!
588 //* DEBUG: */ echo __LINE__."///<br />";
589 destroyUserSession();
593 $GLOBALS['is_member'] = $ret;
599 // This patched function will reduce many SELECT queries for the specified or current admin login
600 function IS_ADMIN ($admin = '') {
602 $ret = false; $passCookie = ''; $valPass = '';
603 //* DEBUG: */ echo __LINE__."ADMIN:".$admin."<br />";
605 // If admin login is not given take current from cookies...
606 if ((empty($admin)) && (isSessionVariableSet('admin_login')) && (isSessionVariableSet('admin_md5'))) {
607 // Get admin login and password from session/cookies
608 $admin = getSession('admin_login');
609 $passCookie = getSession('admin_md5');
611 //* DEBUG: */ echo __LINE__."ADMIN:".$admin.'/'.$passCookie."<br />";
613 // Search in array for entry
614 if (isset($GLOBALS['cache_array']['admin_hash'])) {
616 $valPass = $GLOBALS['cache_array']['admin_hash'];
617 } elseif ((!empty($passCookie)) && (isset($GLOBALS['cache_array']['admins']['password'][$admin])) && (!empty($admin))) {
618 // Login data is valid or not?
619 $valPass = generatePassString($GLOBALS['cache_array']['admins']['password'][$admin]);
622 $GLOBALS['cache_array']['admin_hash'] = $valPass;
625 incrementConfigEntry('cache_hits');
626 } elseif ((!empty($admin)) && ((!EXT_IS_ACTIVE('cache'))) || (!isset($GLOBALS['cache_array']['admins']['password'][$admin]))) {
628 $result = SQL_QUERY_ESC("SELECT HIGH_PRIORITY password FROM `{!_MYSQL_PREFIX!}_admins` WHERE login='%s' LIMIT 1",
629 array($admin), __FUNCTION__, __LINE__);
633 if (SQL_NUMROWS($result) == 1) {
634 // Admin login was found so let's load password from DB
635 list($passDB) = SQL_FETCHROW($result);
637 // Temporary cache it
638 $GLOBALS['cache_array']['admins']['password'][$admin] = $passDB;
640 // Generate password hash
641 $valPass = generatePassString($passDB);
645 SQL_FREERESULT($result);
648 if (!empty($valPass)) {
649 // Check if password is valid
650 //* DEBUG: */ print __FUNCTION__."*".$valPass.'/'.$passCookie."*<br />\n";
651 $ret = (($valPass == $passCookie) || ((strlen($valPass) == 32) && ($valPass == md5($passCookie))) || (($valPass == "*FAILED*") && (!EXT_IS_ACTIVE('cache'))));
654 // Return result of comparision
655 //* DEBUG: */ if (!$ret) echo __LINE__."OK!<br />";
659 // Generates a list of "max receiveable emails per day"
660 function addMaxReceiveList ($mode, $default = '', $return = false) {
666 // Guests (in the registration form) are not allowed to select 0 mails per day.
667 $result = SQL_QUERY("SELECT value, comment FROM `{!_MYSQL_PREFIX!}_max_receive` WHERE value > 0 ORDER BY value",
668 __FUNCTION__, __LINE__);
672 // Members are allowed to set to zero mails per day (we will change this soon!)
673 $result = SQL_QUERY("SELECT value, comment FROM `{!_MYSQL_PREFIX!}_max_receive` ORDER BY value",
674 __FUNCTION__, __LINE__);
678 DEBUG_LOG(__FUNCTION__, __LINE__, sprintf("Invalid mode %s detected.", $mode));
682 // Some entries are found?
683 if (SQL_NUMROWS($result) > 0) {
685 while ($content = SQL_FETCHARRAY($result)) {
686 $OUT .= " <option value=\"".$content['value']."\"";
687 if (REQUEST_POST('max_mails') == $content['value']) $OUT .= ' selected="selected"';
688 $OUT .= ">".$content['value']." {--PER_DAY--}";
689 if (!empty($content['comment'])) $OUT .= " (".$content['comment'].')';
690 $OUT .= "</option>\n";
692 define('__MAX_RECEIVE_OPTIONS', $OUT);
695 $OUT = LOAD_TEMPLATE($mode . '_receive_table', true);
697 // Maybe the admin has to setup some maximum values?
698 debug_report_bug('Nothing is being done here?');
702 SQL_FREERESULT($result);
704 if ($return === true) {
705 // Return generated HTML code
708 // Output directly (default)
713 // Checks wether the given email address is used.
714 function isEmailTaken ($email) {
715 // Query the database
716 $result = SQL_QUERY_ESC("SELECT userid FROM `{!_MYSQL_PREFIX!}_user_data` WHERE email LIKE '{PER}%s{PER}' LIMIT 1",
717 array($email), __FUNCTION__, __LINE__);
719 // Is the email there?
720 $ret = (SQL_NUMROWS($result) == 1);
723 SQL_FREERESULT($result);
729 // Validate the given menu action
730 function isMenuActionValid ($mode, $act, $wht, $UPDATE=false) {
731 // Is the cache entry there and we shall not update?
732 if ((isset($GLOBALS['cache_array']['action_valid'][$mode][$act][$wht])) && ($UPDATE === false)) {
734 incrementConfigEntry('cache_hits');
736 // Then use this cache
737 return $GLOBALS['cache_array']['action_valid'][$mode][$act][$wht];
740 // By default nothing is valid
743 // Look in all menus or only unlocked
745 if ((!IS_ADMIN()) && ($mode != 'admin')) $add = " AND `locked`='N'";
747 //* DEBUG: */ echo __LINE__.':'.$mode.'/'.$act.'/'.$wht."*<br />\n";
748 if (($mode != 'admin') && ($UPDATE === true)) {
749 // Update guest or member menu
750 $sql = SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_%s_menu` SET counter=counter+1 WHERE `action`='%s' AND `what`='%s'".$add." LIMIT 1",
751 array($mode, $act, $wht), __FUNCTION__, __LINE__, false);
752 } elseif (($wht != 'overview') && (!empty($wht))) {
754 $sql = SQL_QUERY_ESC("SELECT id, what FROM `{!_MYSQL_PREFIX!}_%s_menu` WHERE `action`='%s' AND `what`='%s'".$add." ORDER BY action DESC LIMIT 1",
755 array($mode, $act, $wht), __FUNCTION__, __LINE__, false);
757 // Admin login overview
758 $sql = SQL_QUERY_ESC("SELECT id, what FROM `{!_MYSQL_PREFIX!}_%s_menu` WHERE `action`='%s' AND (`what`='' OR `what` IS NULL)".$add." ORDER BY action DESC LIMIT 1",
759 array($mode, $act), __FUNCTION__, __LINE__, false);
763 $result = SQL_QUERY($sql, __FUNCTION__, __LINE__);
764 if ($UPDATE === true) {
765 // Check updated/affected rows
766 $ret = (SQL_AFFECTEDROWS() == 1);
769 $ret = (SQL_NUMROWS($result) == 1);
773 SQL_FREERESULT($result);
776 $GLOBALS['cache_array']['action_valid'][$mode][$act][$wht] = $ret;
783 function sendModeMails ($mod, $modes) {
787 $result_main = SQL_QUERY_ESC("SELECT password FROM `{!_MYSQL_PREFIX!}_user_data` WHERE userid=%s AND `status`='CONFIRMED' LIMIT 1",
788 array(getUserId()), __FUNCTION__, __LINE__);
789 if (SQL_NUMROWS($result_main) == 1) {
790 // Load hash from database
791 list($hashDB) = SQL_FETCHROW($result_main);
793 // Extract salt from cookie
794 $salt = substr(getSession('u_hash'), 0, -40);
796 // Now let's compare passwords
797 $hash = generatePassString($hashDB);
798 if (($hash == getSession('u_hash')) || (REQUEST_POST('pass1') == REQUEST_POST('pass2'))) {
800 $result = SQL_QUERY_ESC("SELECT gender, surname, family, street_nr, country, zip, city, email FROM `{!_MYSQL_PREFIX!}_user_data` WHERE userid=%s AND password='%s' LIMIT 1",
801 array(getUserId(), $hashDB), __FUNCTION__, __LINE__);
802 if (SQL_NUMROWS($result) == 1) {
804 $DATA = SQL_FETCHROW($result);
807 SQL_FREERESULT($result);
810 $DATA[0] = translateGender($DATA[0]);
812 // Clear/init the content variable
819 foreach ($modes as $mode) {
822 case 'normal': break; // Do not add any special lines
824 case 'email': // Email was changed!
825 $content = getMessage('MEMBER_CHANGED_EMAIL').": ".REQUEST_POST('old_addy')."\n";
828 case 'pass': // Password was changed
829 $content = getMessage('MEMBER_CHANGED_PASS')."\n";
833 DEBUG_LOG(__FUNCTION__, __LINE__, sprintf("Unknown mode %s detected.", $mode));
834 $content = getMessage('MEMBER_UNKNOWN_MODE').": ".$mode."\n\n";
839 if (EXT_IS_ACTIVE('country')) {
840 // Replace code with description
841 $DATA[4] = COUNTRY_GENERATE_INFO(REQUEST_POST('country_code'));
844 // Merge content with data from POST
845 $content = merge_array($content, REQUEST_POST_ARRAY());
848 $msg = LOAD_EMAIL_TEMPLATE('member_mydata_notify', $content, getUserId());
850 if (getConfig('admin_notify') == 'Y') {
851 // The admin needs to be notified about a profile change
852 $msg_admin = 'admin_mydata_notify';
853 $sub_adm = getMessage('ADMIN_CHANGED_DATA');
861 $sub_mem = getMessage('MEMBER_CHANGED_DATA');
863 // Output success message
864 $content = "<span class=\"member_done\">{--MYDATA_MAIL_SENT--}</span>";
867 default: // Unsupported module!
868 DEBUG_LOG(__FUNCTION__, __LINE__, sprintf("Unsupported module %s detected.", $mod));
869 $content = "<span class=\"member_failed\">{--UNKNOWN_MODULE--}</span>";
873 // Could not load profile data
874 $content = "<span class=\"member_failed\">{--MEMBER_CANNOT_LOAD_PROFILE--}</span>";
877 // Passwords mismatch
878 $content = "<span class=\"member_failed\">{--MEMBER_PASSWORD_ERROR--}</span>";
881 // Could not load profile
882 $content = "<span class=\"member_failed\">{--MEMBER_CANNOT_LOAD_PROFILE--}</span>";
885 // Send email to user if required
886 if ((!empty($sub_mem)) && (!empty($msg))) {
888 sendEmail($DATA[7], $sub_mem, $msg);
891 // Send only if no other error has occured
892 if (empty($content)) {
893 if ((!empty($sub_adm)) && (!empty($msg_admin))) {
895 sendAdminNotification($sub_adm, $msg_admin, $content, getUserId());
896 } elseif (getConfig('admin_notify') == 'Y') {
897 // Cannot send mails to admin!
898 $content = getMessage('CANNOT_SEND_ADMIN_MAILS');
901 $content = "<span class=\"member_done\">{--MYDATA_MAIL_SENT--}</span>";
906 LOAD_TEMPLATE('admin_settings_saved', false, $content);
909 // Update module counter
910 function countModuleHit($mod) {
912 // Do count all other modules but not accesses on CSS file css.php!
913 SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_mod_reg` SET clicks=clicks+1 WHERE `module`='%s' LIMIT 1",
914 array($mod), __FUNCTION__, __LINE__);
918 // Get action value from mode (admin/guest/member) and what-value
919 function getModeAction ($mode, $wht) {
923 //* DEBUG: */ echo __LINE__.'='.$mode.'/'.$wht.'/'.getAction()."=<br />";
924 if ((empty($wht)) && ($mode != 'admin')) {
926 if (getConfig('index_home') != '') $wht = getConfig('index_home');
929 if ($mode == 'admin') {
930 // Action value for admin area
931 if (REQUEST_ISSET_GET('action')) {
933 return REQUEST_GET('action');
934 } elseif (isActionSet()) {
935 // Get it directly from URL
937 } elseif (($wht == 'overview') || (!isWhatSet())) {
938 // Default value for admin area
941 } elseif (isActionSet()) {
942 // Get it directly from URL
945 //* DEBUG: */ echo __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>): ret=".$ret."<br />\n";
947 // Does the module have a menu?
948 if (MODULE_HAS_MENU($mode)) {
949 // Rewriting modules to menu
951 case 'index': $mode = 'guest'; break;
952 case 'login': $mode = 'member'; break;
955 // Guest and member menu is 'main' as the default
956 if (empty($ret)) $ret = 'main';
958 // Load from database
959 $result = SQL_QUERY_ESC("SELECT action FROM `{!_MYSQL_PREFIX!}_%s_menu` WHERE `what`='%s' LIMIT 1",
960 array($mode, $wht), __FUNCTION__, __LINE__);
961 if (SQL_NUMROWS($result) == 1) {
962 // Load action value and pray that this one is the right you want... ;-)
963 list($ret) = SQL_FETCHROW($result);
967 SQL_FREERESULT($result);
968 } elseif ((GET_EXT_VERSION('sql_patches') == '') && ($mode != 'admin')) {
969 // No sql_patches installed, but maybe we need to register an admin?
970 if (isAdminRegistered()) {
972 // @TODO Why does this lead into an endless loop but we still need it???
973 // @TODO Commented out redirectToUrl('admin.php');
977 // Return action value
981 // Get category name back
982 function getCategory ($cid) {
983 // Default is not found
984 $ret = getMessage('_CATEGORY_404');
986 // Is the category id set?
989 $ret = getMessage('_CATEGORY_NONE');
990 } elseif ($cid > 0) {
991 // Lookup the category in database
992 $result = SQL_QUERY_ESC("SELECT cat FROM `{!_MYSQL_PREFIX!}_cats` WHERE `id`=%s LIMIT 1",
993 array(bigintval($cid)), __FUNCTION__, __LINE__);
994 if (SQL_NUMROWS($result) == 1) {
995 // Category found... :-)
996 list($ret) = SQL_FETCHROW($result);
1000 SQL_FREERESULT($result);
1007 // Get a string of "mail title" and price back
1008 function getPaymentTitlePrice ($pid, $full=false) {
1009 // Default is not found
1010 $ret = getMessage('_PAYMENT_404');
1012 // Load payment data
1013 $result = SQL_QUERY_ESC("SELECT mail_title, price FROM `{!_MYSQL_PREFIX!}_payments` WHERE `id`=%s LIMIT 1",
1014 array(bigintval($pid)), __FUNCTION__, __LINE__);
1015 if (SQL_NUMROWS($result) == 1) {
1016 // Payment type found... :-)
1018 // Return only title
1019 list($ret) = SQL_FETCHROW($result);
1021 // Return title and price
1022 list($t, $p) = SQL_FETCHROW($result);
1023 $ret = $t.' / '.translateComma($p).' {!POINTS!}';
1028 SQL_FREERESULT($result);
1034 // Get (basicly) the price of given payment id
1035 function getPaymentPoints ($pid, $lookFor = 'price') {
1039 // Search for it in database
1040 $result = SQL_QUERY_ESC("SELECT %s FROM `{!_MYSQL_PREFIX!}_payments` WHERE `id`=%s LIMIT 1",
1041 array($lookFor, $pid), __FUNCTION__, __LINE__);
1043 // Is the entry there?
1044 if (SQL_NUMROWS($result) == 1) {
1045 // Payment type found... :-)
1046 list($ret) = SQL_FETCHROW($result);
1050 SQL_FREERESULT($result);
1056 // Remove a receiver's ID from $receivers and add a link for him to confirm
1057 function removeReceiver (&$receivers, $key, $uid, $pool_id, $stats_id='', $bonus=false) {
1058 // Default is not removed
1061 // Is the userid valid?
1063 // Remove entry from array
1064 unset($receivers[$key]);
1066 // Is there already a line for this user available?
1067 if ($stats_id > 0) {
1068 // Only when we got a real stats ID continue searching for the entry
1069 $type = 'NORMAL'; $rowName = 'stats_id';
1070 if ($bonus) { $type = 'BONUS'; $rowName = 'bonus_id'; }
1072 // Try to look the entry up
1073 $result = SQL_QUERY_ESC("SELECT `id` FROM `{!_MYSQL_PREFIX!}_user_links` WHERE %s='%s' AND `userid`=%s AND link_type='%s' LIMIT 1",
1074 array($rowName, $stats_id, bigintval($uid), $type), __FUNCTION__, __LINE__);
1076 // Was it *not* found?
1077 if (SQL_NUMROWS($result) == 0) {
1079 SQL_QUERY_ESC("INSERT INTO `{!_MYSQL_PREFIX!}_user_links` (%s, userid, link_type) VALUES ('%s','%s','%s')",
1080 array($rowName, $stats_id, bigintval($uid), $type), __FUNCTION__, __LINE__);
1088 SQL_FREERESULT($result);
1092 // Return status for sending routine
1096 // Calculate sum (default) or count records of given criteria
1097 function GET_TOTAL_DATA ($search, $tableName, $lookFor = 'id', $whereStatement = 'userid', $countRows = false, $add = '') {
1099 //* DEBUG: */ echo $search.'/'.$tableName.'/'.$lookFor.'/'.$whereStatement.'/'.$add.'<br />\n';
1100 if ((empty($search)) && ($search != '0')) {
1101 // Count or sum whole table?
1102 if ($countRows === true) {
1103 // Count whole table
1104 $result = SQL_QUERY_ESC("SELECT COUNT(`%s`) FROM `{!_MYSQL_PREFIX!}_%s`".$add,
1105 array($lookFor, $tableName), __FUNCTION__, __LINE__);
1108 $result = SQL_QUERY_ESC("SELECT SUM(`%s`) FROM `{!_MYSQL_PREFIX!}_%s`".$add,
1109 array($lookFor, $tableName), __FUNCTION__, __LINE__);
1111 } elseif (($countRows === true) || ($lookFor == 'userid')) {
1113 //* DEBUG: */ echo "COUNT!<br />\n";
1114 $result = SQL_QUERY_ESC("SELECT COUNT(`%s`) FROM `{!_MYSQL_PREFIX!}_%s` WHERE `%s`='%s'".$add,
1115 array($lookFor, $tableName, $whereStatement, $search), __FUNCTION__, __LINE__);
1118 //* DEBUG: */ echo "SUM!<br />\n";
1119 $result = SQL_QUERY_ESC("SELECT SUM(`%s`) FROM `{!_MYSQL_PREFIX!}_%s` WHERE `%s`='%s'".$add,
1120 array($lookFor, $tableName, $whereStatement, $search), __FUNCTION__, __LINE__);
1124 list($ret) = SQL_FETCHROW($result);
1127 SQL_FREERESULT($result);
1130 if ((empty($ret)) && ($lookFor != 'counter') && ($lookFor != 'id') && ($lookFor != 'userid')) {
1133 } elseif (''.$ret.'' == '') {
1141 // Getter fro ref level percents
1142 function getReferalLevelPercents ($level) {
1146 // Do we have cache?
1147 if ((isset($GLOBALS['cache_array']['ref_depths']['level'])) && (EXT_IS_ACTIVE('cache'))) {
1148 // First look for level
1149 $key = array_search($level, $GLOBALS['cache_array']['ref_depths']['level']);
1150 if ($key !== false) {
1152 $per = $GLOBALS['cache_array']['ref_depths']['percents'][$key];
1155 incrementConfigEntry('cache_hits');
1157 } elseif (!EXT_IS_ACTIVE('cache')) {
1159 $result_lvl = SQL_QUERY_ESC("SELECT percents FROM `{!_MYSQL_PREFIX!}_refdepths` WHERE level='%s' LIMIT 1",
1160 array(bigintval($level)), __FUNCTION__, __LINE__);
1163 if (SQL_NUMROWS($result_lvl) == 1) {
1165 list($per) = SQL_FETCHROW($result_lvl);
1169 SQL_FREERESULT($result_lvl);
1178 * Dynamic referal system, can also send mails!
1180 * subject = Subject line, write in lower-case letters and underscore is allowed
1181 * uid = Referal ID wich should receive...
1182 * points = ... xxx points
1183 * send_notify = shall I send the referal an email or not?
1184 * rid = inc/modules/guest/what-confirm.php need this (DEPRECATED???)
1185 * locked = Shall I pay it to normal (false) or locked (true) points ammount?
1186 * add_mode = Add points only to $uid or also refs? (WARNING! Changing 'ref' to 'direct'
1187 * for default value will cause no referal will get points ever!!!)
1189 function ADD_POINTS_REFSYSTEM ($subject, $uid, $points, $send_notify = false, $rid = '0', $locked = false, $add_mode = 'ref') {
1190 //* DEBUG: */ print "----------------------- <font color=\"#00aa00\">".__FUNCTION__." - ENTRY</font> ------------------------<ul><li>\n";
1193 // Convert mode to lower-case
1194 $add_mode = strtolower($add_mode);
1196 // When $uid = 0 add points to jackpot
1198 // Add points to jackpot
1199 ADD_JACKPOT($points);
1203 // Add booking record if extension is installed
1204 if (EXT_IS_ACTIVE('booking')) {
1206 ADD_BOOKING_RECORD($subject, $uid, $points, 'add');
1209 // Count up referal depth
1210 if (!isset($GLOBALS['ref_level'])) {
1211 // Initialialize referal system
1212 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>): Referal system initialized!<br />\n";
1213 $GLOBALS['ref_level'] = 0;
1215 // Increase referal level
1216 $GLOBALS['ref_level']++;
1217 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>): Referal level increased. DEPTH={$GLOBALS['ref_level']}<br />\n";
1220 // Default is 'normal' points
1223 // Which points, locked or normal?
1224 if ($locked) $data = 'locked_points';
1226 // Check user account
1227 $result_user = SQL_QUERY_ESC("SELECT refid, email FROM `{!_MYSQL_PREFIX!}_user_data` WHERE userid=%s AND `status`='CONFIRMED' LIMIT 1",
1228 array(bigintval($uid)), __FUNCTION__, __LINE__);
1230 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid},numRows=".SQL_NUMROWS($result_user).",points={$points}<br />\n";
1231 if (SQL_NUMROWS($result_user) == 1) {
1232 // This is the user and his ref
1233 list($ref, $email) = SQL_FETCHROW($result_user);
1234 $GLOBALS['cache_array']['add_uid'][$ref] = $uid;
1237 $per = getReferalLevelPercents($GLOBALS['ref_level']);
1238 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid},points={$points},depth={$GLOBALS['ref_level']},per={$per},mode={$add_mode}<br />\n";
1240 // Some percents found?
1242 // Calculate new points
1243 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid},points={$points},per={$per},depth={$GLOBALS['ref_level']}<br />\n";
1244 $ref_points = $points * $per / 100;
1246 // Pay refback here if level > 0 and in ref-mode
1247 if ((EXT_IS_ACTIVE('refback')) && ($GLOBALS['ref_level'] > 0) && ($per < 100) && ($add_mode == "ref") && (isset($GLOBALS['cache_array']['add_uid'][$uid]))) {
1248 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid},data={$GLOBALS['cache_array']['add_uid'][$uid]},ref_points={$ref_points},depth={$GLOBALS['ref_level']} - BEFORE!<br />\n";
1249 $ref_points = ADD_REFBACK_POINTS($GLOBALS['cache_array']['add_uid'][$uid], $uid, $points, $ref_points);
1250 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid},data={$GLOBALS['cache_array']['add_uid'][$uid]},ref_points={$ref_points},depth={$GLOBALS['ref_level']} - AFTER!<br />\n";
1254 SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_user_points` SET %s=%s+%s WHERE userid=%s AND ref_depth='%s' LIMIT 1",
1255 array($data, $data, $ref_points, bigintval($uid), bigintval($GLOBALS['ref_level'])), __FUNCTION__, __LINE__);
1256 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):data={$data},ref_points={$ref_points},uid={$uid},depth={$GLOBALS['ref_level']},mode={$add_mode} - UPDATE! (".SQL_AFFECTEDROWS().")<br />\n";
1258 // No entry updated?
1259 if (SQL_AFFECTEDROWS() < 1) {
1260 // First ref in this level! :-)
1261 SQL_QUERY_ESC("INSERT INTO `{!_MYSQL_PREFIX!}_user_points` (userid,ref_depth,%s) VALUES (%s,'%s',%s)",
1262 array($data, bigintval($uid), bigintval($GLOBALS['ref_level']), $ref_points), __FUNCTION__, __LINE__);
1263 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):data={$data},ref_points={$ref_points},uid={$uid},depth={$GLOBALS['ref_level']},mode={$add_mode} - INSERTED! (".SQL_AFFECTEDROWS().")<br />\n";
1266 // Update mediadata as well
1267 if (GET_EXT_VERSION('mediadata') >= '0.0.4') {
1269 MEDIA_UPDATE_ENTRY(array('total_points'), 'add', $ref_points);
1272 // Points updated, maybe I shall send him an email?
1273 if (($send_notify) && ($ref > 0) && (!$locked)) {
1277 'level' => bigintval($GLOBALS['ref_level']),
1278 'points' => $ref_points,
1279 'refid' => bigintval($ref)
1282 // Load email template
1283 $msg = LOAD_EMAIL_TEMPLATE('confirm-referal', $content, bigintval($uid));
1285 sendEmail($email, THANX_REFERRAL_ONE, $msg);
1286 } elseif (($send_notify) && ($ref == 0) && (!$locked) && ($add_mode == 'direct') && (!defined('__POINTS_VALUE'))) {
1287 // Direct payment shall be notified about
1288 define('__POINTS_VALUE', $ref_points);
1292 'text' => getMessage('REASON_DIRECT_PAYMENT'),
1293 'points' => translateComma($ref_points)
1297 $msg = LOAD_EMAIL_TEMPLATE('add-points', $content, $uid);
1300 sendEmail($email, getMessage('SUBJECT_DIRECT_PAYMENT'), $msg);
1301 if (!REQUEST_ISSET_GET(('mid'))) LOAD_TEMPLATE('admin_settings_saved', false, getMessage('ADMIN_POINTS_ADDED'));
1304 // Maybe there's another ref?
1305 if (($ref > 0) && ($points > 0) && ($ref != $uid) && ($add_mode == 'ref')) {
1306 // Then let's credit him here...
1307 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid},ref={$ref},points={$points} - ADVANCE!<br />\n";
1308 ADD_POINTS_REFSYSTEM(sprintf("%s_ref:%s", $subject, $GLOBALS['ref_level']), $ref, $points, $send_notify, $ref, $locked);
1314 SQL_FREERESULT($result_user);
1315 //* DEBUG: */ print "</li></ul>----------------------- <font color=\"#aa0000\">".__FUNCTION__." - EXIT</font> ------------------------<br />\n";
1318 // Wrapper function for ADD_POINTS_REFSYSTEM()
1319 function ADD_POINTS_REFSYSTEM_DIRECT ($subject, $uid, $points) {
1320 return ADD_POINTS_REFSYSTEM($subject, $uid, $points, false, 0, false, 'direct');
1323 // Updates the referal counter
1324 function updateReferalCounter ($uid) {
1325 // Make it sure referal level zero (member him-/herself) is at least selected
1326 if (empty($GLOBALS['cache_array']['ref_level'][$uid])) $GLOBALS['cache_array']['ref_level'][$uid] = 1;
1327 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid},level={$GLOBALS['cache_array']['ref_level'][$uid]}<br />\n";
1330 SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_refsystem` SET counter=counter+1 WHERE userid=%s AND level='%s' LIMIT 1",
1331 array(bigintval($uid), $GLOBALS['cache_array']['ref_level'][$uid]), __FUNCTION__, __LINE__);
1333 // When no entry was updated then we have to create it here
1334 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):updated=".SQL_AFFECTEDROWS()."<br />\n";
1335 if (SQL_AFFECTEDROWS() < 1) {
1337 SQL_QUERY_ESC("INSERT INTO `{!_MYSQL_PREFIX!}_refsystem` (userid, level, counter) VALUES (%s,%s,1)",
1338 array(bigintval($uid), $GLOBALS['cache_array']['ref_level'][$uid]), __FUNCTION__, __LINE__);
1339 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid}<br />\n";
1342 // Check for his referal
1343 $result = SQL_QUERY_ESC("SELECT refid FROM `{!_MYSQL_PREFIX!}_user_data` WHERE userid=%s LIMIT 1",
1344 array(bigintval($uid)), __FUNCTION__, __LINE__);
1347 list($ref) = SQL_FETCHROW($result);
1350 SQL_FREERESULT($result);
1351 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid},ref={$ref}<br />\n";
1353 // When he has a referal...
1354 if (($ref > 0) && ($ref != $uid)) {
1355 // Move to next referal level and count his counter one up!
1356 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):ref={$ref} - ADVANCE!<br />\n";
1357 $GLOBALS['cache_array']['ref_level'][$uid]++; updateReferalCounter($ref);
1358 } elseif ((($ref == $uid) || ($ref == 0)) && (GET_EXT_VERSION('cache') >= '0.1.2')) {
1359 // Remove cache here
1360 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):ref={$ref} - CACHE!<br />\n";
1361 rebuildCacheFiles('refsystem', 'refsystem');
1365 $GLOBALS['cache_array']['ref_level'][$uid]--;
1367 // Handle refback here if extension is installed
1368 if (EXT_IS_ACTIVE('refback')) {
1369 updateRefbackTable($uid);
1373 // Sends out mail to all administrators. This function is no longer obsolete
1374 // because we need it when there is no ext-admins installed
1375 function SEND_ADMIN_EMAILS ($subj, $msg) {
1376 // Load all admin email addresses
1377 $result = SQL_QUERY("SELECT email FROM `{!_MYSQL_PREFIX!}_admins` ORDER BY `id` ASC", __FUNCTION__, __LINE__);
1378 while ($content = SQL_FETCHARRAY($result)) {
1379 // Send the email out
1380 sendEmail($content['email'], $subj, $msg);
1384 SQL_FREERESULT($result);
1386 // Really simple... ;-)
1389 // Get ID number from administrator's login name
1390 function GET_ADMIN_ID ($login) {
1391 // By default no admin is found
1395 if (isset($GLOBALS['cache_array']['admins']['aid'][$login])) {
1396 // Use it if found to save SQL queries
1397 $ret = $GLOBALS['cache_array']['admins']['aid'][$login];
1399 // Update cache hits
1400 incrementConfigEntry('cache_hits');
1401 } elseif (!EXT_IS_ACTIVE('cache')) {
1402 // Load from database
1403 $result = SQL_QUERY_ESC("SELECT `id` FROM `{!_MYSQL_PREFIX!}_admins` WHERE login='%s' LIMIT 1",
1404 array($login), __FUNCTION__, __LINE__);
1405 if (SQL_NUMROWS($result) == 1) {
1406 list($ret) = SQL_FETCHROW($result);
1410 SQL_FREERESULT($result);
1415 // "Getter" for current admin id
1416 function getCurrentAdminId () {
1417 // Get the admin login from session
1418 $adminLogin = getSession('admin_login');
1420 // "Solve" it into an id
1421 $adminId = GET_ADMIN_ID($adminLogin);
1423 // Secure and return it
1424 return bigintval($adminId);
1427 // Get password hash from administrator's login name
1428 function GET_ADMIN_HASH ($aid) {
1429 // By default an invalid hash is returned
1432 if (isset($GLOBALS['cache_array']['admins']['password'][$aid])) {
1434 $ret = $GLOBALS['cache_array']['admins']['password'][$aid];
1436 // Update cache hits
1437 incrementConfigEntry('cache_hits');
1438 } elseif (!EXT_IS_ACTIVE('cache')) {
1439 // Load from database
1440 $result = SQL_QUERY_ESC("SELECT password FROM `{!_MYSQL_PREFIX!}_admins` WHERE `id`=%s LIMIT 1",
1441 array($aid), __FUNCTION__, __LINE__);
1442 if (SQL_NUMROWS($result) == 1) {
1444 list($ret) = SQL_FETCHROW($result);
1447 $GLOBALS['cache_array']['admins']['password'][$aid] = $ret;
1451 SQL_FREERESULT($result);
1456 // "Getter" for admin login
1457 function getAdminLogin ($aid) {
1458 // By default a non-existent login is returned (other functions react on this!)
1461 if (isset($GLOBALS['cache_array']['admins']['login'][$aid])) {
1463 $ret = $GLOBALS['cache_array']['admins']['login'][$aid];
1465 // Update cache hits
1466 incrementConfigEntry('cache_hits');
1467 } elseif (!EXT_IS_ACTIVE('cache')) {
1468 // Load from database
1469 $result = SQL_QUERY_ESC("SELECT login FROM `{!_MYSQL_PREFIX!}_admins` WHERE `id`=%s LIMIT 1",
1470 array(bigintval($aid)), __FUNCTION__, __LINE__);
1471 if (SQL_NUMROWS($result) == 1) {
1473 list($ret) = SQL_FETCHROW($result);
1476 $GLOBALS['cache_array']['admins']['login'][$aid] = $ret;
1480 SQL_FREERESULT($result);
1485 // Get email address of admin id
1486 function getAdminEmail ($aid) {
1487 // By default an invalid emails is returned
1490 if (isset($GLOBALS['cache_array']['admins']['email'][$aid])) {
1492 $ret = $GLOBALS['cache_array']['admins']['email'][$aid];
1494 // Update cache hits
1495 incrementConfigEntry('cache_hits');
1496 } elseif (!EXT_IS_ACTIVE('cache')) {
1497 // Load from database
1498 $result_aid = SQL_QUERY_ESC("SELECT email FROM `{!_MYSQL_PREFIX!}_admins` WHERE `id`=%s LIMIT 1",
1499 array(bigintval($aid)), __FUNCTION__, __LINE__);
1500 if (SQL_NUMROWS($result_aid) == 1) {
1502 list($ret) = SQL_FETCHROW($result_aid);
1505 $GLOBALS['cache_array']['admins']['email'][$aid] = $ret;
1509 SQL_FREERESULT($result_aid);
1516 // Get default ACL of admin id
1517 function getAdminDefaultAcl ($aid) {
1518 // By default an invalid ACL value is returned
1521 // Is sql_patches there and was it found in cache?
1522 if (!EXT_IS_ACTIVE('sql_patches')) {
1523 // Not found, which is bad, so we need to allow all
1525 } elseif (isset($GLOBALS['cache_array']['admins']['def_acl'][$aid])) {
1527 $ret = $GLOBALS['cache_array']['admins']['def_acl'][$aid];
1529 // Update cache hits
1530 incrementConfigEntry('cache_hits');
1531 } elseif (!EXT_IS_ACTIVE('cache')) {
1532 // Load from database
1533 $result_aid = SQL_QUERY_ESC("SELECT default_acl FROM `{!_MYSQL_PREFIX!}_admins` WHERE `id`=%s LIMIT 1",
1534 array(bigintval($aid)), __FUNCTION__, __LINE__);
1535 if (SQL_NUMROWS($result_aid) == 1) {
1537 list($ret) = SQL_FETCHROW($result_aid);
1540 $GLOBALS['cache_array']['admins']['def_acl'][$aid] = $ret;
1544 SQL_FREERESULT($result_aid);
1551 // Generates an option list from various parameters
1552 function generateOptionList ($table, $id, $name, $default='', $special='', $where='') {
1554 if ($table == '/ARRAY/') {
1555 // Selection from array
1556 if (is_array($id) && is_array($name) && count($id) == count($name)) {
1558 foreach ($id as $idx => $value) {
1559 $ret .= '<option value="' . $value . '"';
1560 if ($default == $value) $ret .= ' selected="selected"';
1561 $ret .= '>' . $name[$idx] . '</option>';
1565 // Data from database
1567 if (!empty($special)) $SPEC = ', ' . $special;
1568 $ORDER = $name.$SPEC;
1569 if ($table == 'country') $ORDER = $special;
1570 $result = SQL_QUERY_ESC("SELECT %s, %s".$SPEC." FROM `{!_MYSQL_PREFIX!}_%s` ".$where." ORDER BY %s",
1571 array($id, $ORDER, $table, $name), __FUNCTION__, __LINE__);
1572 if (SQL_NUMROWS($result) > 0) {
1573 // Found data so add them as OPTION lines: $id is the value and $name is the "name" of the option
1574 // @TODO Try to rewrite this to $content = SQL_FETCHARRAY()
1575 while (list($value, $title, $add) = SQL_FETCHROW($result)) {
1576 if (empty($special)) $add = '';
1577 $ret .= '<option value="' . $value . '"';
1578 if ($default == $value) $ret .= ' selected="selected"';
1579 if (!empty($add)) $add = ' ('.$add.')';
1580 $ret .= '>' . $title . $add . '</option>';
1584 SQL_FREERESULT($result);
1587 $ret = '<option value="x">{--SELECT_NONE--}</option>';
1591 // Return - hopefully - the requested data
1594 // Activate exchange
1595 function activateExchange () {
1596 // Is the extension 'user' there?
1597 if (!EXT_IS_ACTIVE('user')) {
1598 // Silently abort here
1602 // Check total amount of users
1603 $totalUsers = GET_TOTAL_DATA('CONFIRMED', 'user_data', 'userid', 'status', true, ' AND max_mails > 0');
1605 if ($totalUsers >= getConfig('activate_xchange')) {
1608 "UPDATE `{!_MYSQL_PREFIX!}_mod_reg` SET `locked`='N', `hidden`='N', `mem_only`='Y' WHERE `module`='order' LIMIT 1",
1609 "UPDATE `{!_MYSQL_PREFIX!}_member_menu` SET `visible`='Y', `locked`='N' WHERE `what`='order' OR `what`='unconfirmed' LIMIT 2",
1610 "UPDATE `{!_MYSQL_PREFIX!}_config` SET `activate_xchange`=0 WHERE `config`=0 LIMIT 1"
1614 runFilterChain('run_sqls');
1617 // @TODO Rewrite this to a filter
1618 rebuildCacheFiles('config', 'config');
1619 rebuildCacheFiles('modreg', 'modreg');
1623 // Deletes a user account with given reason
1624 function deleteUserAccount ($uid, $reason) {
1626 $result = SQL_QUERY_ESC("SELECT (SUM(p.points) - d.used_points) AS points
1627 FROM `{!_MYSQL_PREFIX!}_user_points` AS p
1628 LEFT JOIN `{!_MYSQL_PREFIX!}_user_data` AS d
1629 ON p.userid=d.userid
1630 WHERE p.userid=%s", array(bigintval($uid)), __FUNCTION__, __LINE__);
1631 if (SQL_NUMROWS($result) == 1) {
1632 // Save his points to add them to the jackpot
1633 list($points) = SQL_FETCHROW($result);
1635 // Delete points entries as well
1636 SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM `{!_MYSQL_PREFIX!}_user_points` WHERE userid=%s", array(bigintval($uid)), __FUNCTION__, __LINE__);
1638 // Update mediadata as well
1639 if (GET_EXT_VERSION('mediadata') >= '0.0.4') {
1641 MEDIA_UPDATE_ENTRY(array('total_points'), 'sub', $points);
1644 // Now, when we have all his points adds them do the jackpot!
1645 ADD_JACKPOT($points);
1649 SQL_FREERESULT($result);
1651 // Delete category selections as well...
1652 SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM `{!_MYSQL_PREFIX!}_user_cats` WHERE userid=%s",
1653 array(bigintval($uid)), __FUNCTION__, __LINE__);
1655 // Remove from rallye if found
1656 if (EXT_IS_ACTIVE('rallye')) {
1657 SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM `{!_MYSQL_PREFIX!}_rallye_users` WHERE userid=%s",
1658 array(bigintval($uid)), __FUNCTION__, __LINE__);
1661 // Now a mail to the user and that's all...
1662 $msg = LOAD_EMAIL_TEMPLATE('del-user', array('text' => $reason), $uid);
1663 sendEmail($uid, getMessage('ADMIN_DEL_ACCOUNT'), $msg);
1665 // Ok, delete the account!
1666 SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM `{!_MYSQL_PREFIX!}_user_data` WHERE userid=%s LIMIT 1", array(bigintval($uid)), __FUNCTION__, __LINE__);
1669 // Generates meta description for given module and 'what' value
1670 function generateMetaDescriptionCode ($mod, $wht) {
1671 // Exclude admin and member's area
1672 if (($mod != 'admin') && ($mod != 'login')) {
1673 // Construct dynamic description
1674 $DESCR = '{!MAIN_TITLE!} '.trim(getConfig('title_middle')) . ' ' . ADD_DESCR('guest', 'what-'.$wht, true);
1676 // Output it directly
1677 OUTPUT_HTML('<meta name="description" content="' . $DESCR . '" />');
1681 unset($GLOBALS['ref_level']);
1684 // Adds points to the jackpot
1685 function ADD_JACKPOT ($points) {
1686 $result = SQL_QUERY("SELECT points FROM `{!_MYSQL_PREFIX!}_jackpot` WHERE ok='ok' LIMIT 1", __FUNCTION__, __LINE__);
1687 if (SQL_NUMROWS($result) == 0) {
1689 SQL_QUERY_ESC("INSERT INTO `{!_MYSQL_PREFIX!}_jackpot` (ok, points) VALUES ('ok','%s')", array($points), __FUNCTION__, __LINE__);
1692 SQL_FREERESULT($result);
1695 SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_jackpot` SET points=points+%s WHERE ok='ok' LIMIT 1",
1696 array($points), __FUNCTION__, __LINE__);
1700 // Subtracts points from the jackpot
1701 function SUB_JACKPOT ($points) {
1705 // Get current points
1706 $result = SQL_QUERY("SELECT points FROM `{!_MYSQL_PREFIX!}_jackpot` WHERE ok='ok' LIMIT 1", __FUNCTION__, __LINE__);
1707 if (SQL_NUMROWS($result) == 0) {
1709 SQL_QUERY("INSERT INTO `{!_MYSQL_PREFIX!}_jackpot` (ok, points) VALUES ('ok', 0.00000)", __FUNCTION__, __LINE__);
1712 list($jackpot) = SQL_FETCHROW($result);
1713 if ($jackpot >= $points) {
1714 // Update points when there are enougth points in jackpot
1715 SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_jackpot` SET points=points-%s WHERE ok='ok' LIMIT 1",
1716 array($points), __FUNCTION__, __LINE__);
1717 $ret = $jackpot - $points;
1722 SQL_FREERESULT($result);
1725 // Checks wether the extension demo is actuve and the admin login is demo (password needs to be demo, too!)
1726 function IS_DEMO () {
1727 return ((EXT_IS_ACTIVE('demo')) && (getSession('admin_login') == 'demo'));
1730 // Gets the matching what name from module
1731 function getWhatFromModule ($modCheck) {
1732 // Is the request element set?
1733 if (REQUEST_ISSET_GET('what')) {
1734 // Then return this!
1735 return REQUEST_GET('what');
1741 //* DEBUG: */ echo __LINE__.'!'.$modCheck."!<br />\n";
1742 switch ($modCheck) {
1750 if (($modCheck == 'index') && (getConfig('index_home') != '')) $wht = getConfig('index_home');
1758 // Return what value
1762 // Subtract points from database and mediadata cache
1763 function SUB_POINTS ($subject, $uid, $points) {
1764 // Add points to used points
1765 SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_user_data` SET `used_points`=`used_points`+%s WHERE userid=%s LIMIT 1",
1766 array($points, bigintval($uid)), __FUNCTION__, __LINE__);
1768 // Insert booking record
1769 // @TODO Rewrite this to a filter
1770 if (EXT_IS_ACTIVE('booking')) {
1772 ADD_BOOKING_RECORD($subject, $uid, $points, 'sub');
1775 // Update mediadata as well
1776 if (GET_EXT_VERSION('mediadata') >= '0.0.4') {
1778 MEDIA_UPDATE_ENTRY(array('total_points'), 'sub', $points);
1782 // Update config entries
1783 function updateConfiguration ($entries, $values, $updateMode='') {
1784 // Do not update config in CSS mode
1785 if ((getOutputMode() == '1') || (getOutputMode() == -1)) {
1789 // Do we have multiple entries?
1790 if (is_array($entries)) {
1793 foreach ($entries as $idx => $entry) {
1795 if (!empty($updateMode)) {
1797 // @TODO Find a way for updating $_CONFIG here
1798 $all .= sprintf("%s=%s%s%s,", $entry, $entry, $updateMode, (float)$values[$idx]);
1800 // Check if string or number
1801 if (($values[$idx] + 0) === $values[$idx]) {
1803 $all .= sprintf("%s=%s,", $entry, (float)$values[$idx]);
1804 } elseif ($values[$idx] == 'UNIX_TIMESTAMP()') {
1805 // Function UNIX_TIMESTAMP() detected
1806 $all .= sprintf("%s=%s,", $entry, $values[$idx]);
1809 $all .= sprintf("%s='%s',", $entry, SQL_ESCAPE($values[$idx]));
1813 // Set it in config as well
1814 setConfigEntry($entry, $values[$idx]);
1817 // Remove last comma
1818 $entries = substr($all, 0, -1);
1819 } elseif (!empty($updateMode)) {
1821 // @TODO Find a way for updating $_CONFIG here
1822 $entries .= sprintf("=%s%s%s", $entries, $updateMode, (float)$values);
1824 // Set it in config first
1825 setConfigEntry($entries, $values);
1827 // Regular entry to update
1828 $entries .= sprintf("='%s'", SQL_ESCAPE($values));
1831 // Run database update
1832 //* DEBUG: */ DEBUG_LOG(__FUNCTION__, __LINE__, "entries={$entries}");
1833 SQL_QUERY("UPDATE `{!_MYSQL_PREFIX!}_config` SET ".$entries." WHERE config=0 LIMIT 1", __FUNCTION__, __LINE__);
1835 // Get affected rows
1836 $affectedRows = SQL_AFFECTEDROWS();
1837 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):entries={$entries},affectedRows={$affectedRows}<br />\n";
1840 rebuildCacheFiles('config', 'config');
1843 // Prepares an SQL statement part for HTML mail and/or holiday depency
1844 // @TODO Can this be rewritten to a filter?
1845 function PREPARE_SQL_HTML_HOLIDAY ($mode) {
1846 // Exclude no users by default
1850 if ($mode == 'html') $MORE = " AND `html`='Y'";
1851 if (GET_EXT_VERSION('holiday') >= '0.1.3') {
1852 // Add something for the holiday extension
1853 $MORE .= " AND `holiday_active`='N'";
1860 // "Getter" for total available receivers
1861 function getTotalReceivers ($mode='normal') {
1863 $result_all = SQL_QUERY("SELECT userid
1864 FROM `{!_MYSQL_PREFIX!}_user_data`
1865 WHERE `status`='CONFIRMED' AND receive_mails > 0 ".PREPARE_SQL_HTML_HOLIDAY($mode),
1866 __FUNCTION__, __LINE__);
1869 $numRows = SQL_NUMROWS($result_all);
1872 SQL_FREERESULT($result_all);
1878 // Returns HTML code with an "<option> list" of all categories
1879 function generateCategoryOptionsList ($mode) {
1880 // Prepare WHERE statement
1881 $whereStatement = " WHERE `visible`='Y'";
1882 if (IS_ADMIN()) $whereStatement = '';
1884 // Initialize array...
1892 $result = SQL_QUERY("SELECT id, cat FROM `{!_MYSQL_PREFIX!}_cats`".$whereStatement." ORDER BY `sort`", __FUNCTION__, __LINE__);
1893 if (SQL_NUMROWS($result) > 0) {
1894 // ... and begin loading stuff
1895 while ($content = SQL_FETCHARRAY($result)) {
1896 // Transfer some data
1897 $CATS['id'][] = $content['id'];
1898 $CATS['name'][] = $content['cat'];
1900 // Check which users are in this category
1901 $result_uids = SQL_QUERY_ESC("SELECT userid FROM `{!_MYSQL_PREFIX!}_user_cats` WHERE cat_id=%s",
1902 array(bigintval($content['id'])), __FUNCTION__, __LINE__);
1906 // @TODO Rewrite this to $content = SQL_FETCHARRAY()
1907 while (list($ucat) = SQL_FETCHROW($result_uids)) {
1908 $result_ver = SQL_QUERY_ESC("SELECT userid FROM `{!_MYSQL_PREFIX!}_user_data`
1909 WHERE userid=%s AND `status`='CONFIRMED' AND receive_mails > 0".PREPARE_SQL_HTML_HOLIDAY($mode)." LIMIT 1",
1910 array(bigintval($ucat)), __FUNCTION__, __LINE__);
1913 $uid_cnt += SQL_NUMROWS($result_ver);
1916 SQL_FREERESULT($result_ver);
1920 SQL_FREERESULT($result_uids);
1923 $CATS['uids'][] = $uid_cnt;
1927 SQL_FREERESULT($result);
1931 foreach ($CATS['id'] as $key => $value) {
1932 if (strlen($CATS['name'][$key]) > 20) $CATS['name'][$key] = substr($CATS['name'][$key], 0, 17)."...";
1933 $OUT .= ' <option value="' . $value . '">' . $CATS['name'][$key] . ' (' . $CATS['uids'][$key] . ' {--USER_IN_CAT--})</option>';
1936 // No cateogries are defined yet
1937 $OUT = '<option class="member_failed">{!MEMBER_NO_CATS!}</option>';
1944 // Add bonus mail to queue
1945 function addBonusMailToQueue ($subject, $text, $receiverList, $points, $seconds, $url, $cat, $mode='normal', $receiver=0) {
1946 // Is admin or bonus extension there?
1950 } elseif (!EXT_IS_ACTIVE('bonus')) {
1955 // Calculcate target sent
1956 $target = countSelection(explode(';', $receiverList));
1958 // Receiver is zero?
1959 if ($receiver == 0) {
1961 $receiver = $target;
1964 // HTML extension active?
1965 if (EXT_IS_ACTIVE('html_mail')) {
1966 // No HTML by default
1970 if ($mode == 'html') $HTML = 'Y';
1973 SQL_QUERY_ESC("INSERT INTO `{!_MYSQL_PREFIX!}_bonus`
1974 (subject, text, receivers, points, time, data_type, timestamp, url, cat_id, target_send, mails_sent, html_msg)
1975 VALUES ('%s','%s','%s','%s','%s','NEW', UNIX_TIMESTAMP(),'%s','%s','%s','%s','%s')",
1985 bigintval($receiver),
1987 ), __FUNCTION__, __LINE__);
1990 SQL_QUERY_ESC("INSERT INTO `{!_MYSQL_PREFIX!}_bonus`
1991 (subject, text, receivers, points, time, data_type, timestamp, url, cat_id, target_send, mails_sent)
1992 VALUES ('%s','%s','%s','%s','%s','NEW', UNIX_TIMESTAMP(),'%s','%s','%s','%s')",
2002 bigintval($receiver),
2003 ), __FUNCTION__, __LINE__);
2007 // Generate a receiver list for given category and maximum receivers
2008 function generateReceiverList ($cat, $receiver, $mode = '') {
2016 $cat = bigintval($cat);
2017 $receiver = bigintval($receiver);
2019 // Is the receiver zero and mode set?
2020 if (($receiver == 0) && (!empty($mode))) {
2021 // Auto-fix receiver maximum
2022 $receiver = getTotalReceivers($mode);
2028 $CAT_TABS = "LEFT JOIN `{!_MYSQL_PREFIX!}_user_cats` AS c ON d.userid=c.userid";
2029 $CAT_WHERE = " AND c.cat_id=%s";
2032 // Exclude users in holiday?
2033 if (GET_EXT_VERSION('holiday') >= '0.1.3') {
2034 // Add something for the holiday extension
2035 $CAT_WHERE .= " AND d.`holiday_active`='N'";
2038 if ((EXT_IS_ACTIVE('html_mail')) && ($mode == 'html')) {
2039 // Only include HTML receivers
2040 $result = SQL_QUERY_ESC("SELECT d.userid FROM `{!_MYSQL_PREFIX!}_user_data` AS d ".$CAT_TABS." WHERE d.`status`='CONFIRMED' AND d.`html`='Y'".$CAT_WHERE." ORDER BY d.%s %s LIMIT %s",
2041 array($cat, getConfig('order_select'), getConfig('order_mode'), $receiver), __FUNCTION__, __LINE__);
2044 $result = SQL_QUERY_ESC("SELECT d.userid FROM `{!_MYSQL_PREFIX!}_user_data` AS d ".$CAT_TABS." WHERE d.`status`='CONFIRMED'".$CAT_WHERE." ORDER BY d.%s %s LIMIT %s",
2045 array($cat, getConfig('order_select'), getConfig('order_mode'), $receiver), __FUNCTION__, __LINE__);
2049 if ((SQL_NUMROWS($result) >= $receiver) && ($receiver > 0)) {
2051 while ($content = SQL_FETCHARRAY($result)) {
2052 // Add receiver when not empty
2053 if (!empty($content['userid'])) $receiverList .= $content['userid'] . ';';
2057 SQL_FREERESULT($result);
2059 // Remove trailing semicolon
2060 $receiverList = substr($receiverList, 0, -1);
2064 return $receiverList;
2067 // Get timestamp for given stats type and data
2068 function getTimestampFromUserStats ($type, $data, $uid = 0) {
2069 // Default timestamp is zero
2073 if ((isUserIdSet()) && ($uid == 0)) {
2077 // Is the extension installed and updated?
2078 if ((!EXT_IS_ACTIVE('sql_patches')) || (EXT_VERSION_IS_OLDER('sql_patches', '0.5.6'))) {
2083 // Try to find the entry
2084 $result = SQL_QUERY_ESC("SELECT UNIX_TIMESTAMP(`inserted`) AS `stamp`
2085 FROM `{!_MYSQL_PREFIX!}_user_stats_data`
2086 WHERE userid=%s AND stats_type='%s' AND stats_data='%s'
2088 array(bigintval($uid), $type, $data), __FUNCTION__, __LINE__);
2090 // Is the entry there?
2091 if (SQL_NUMROWS($result) == 1) {
2093 list($stamp) = SQL_FETCHROW($result);
2097 SQL_FREERESULT($result);
2103 // Inserts user stats
2104 function insertUserStatsRecord ($uid, $type, $data) {
2105 // Is the extension installed and updated?
2106 if ((!EXT_IS_ACTIVE('sql_patches')) || (EXT_VERSION_IS_OLDER('sql_patches', '0.5.6'))) {
2112 if ((!getTimestampFromUserStats($type, $data, $uid)) && (!is_array($data))) {
2114 SQL_QUERY_ESC("INSERT INTO `{!_MYSQL_PREFIX!}_user_stats_data` (`userid`,`stats_type`,`stats_data`) VALUES (%s,'%s','%s')",
2115 array(bigintval($uid), $type, $data), __FUNCTION__, __LINE__);
2116 } elseif (is_array($data)) {
2118 DEBUG_LOG(__FUNCTION__, __LINE__, " uid={$uid},type={$type},data={".gettype($data).": Invalid statistics data type!");
2122 // "Getter" for array for user refs and points in given level
2123 function getUserReferalPoints ($uid, $level) {
2124 //* DEBUG: */ print "----------------------- <font color=\"#00aa00\">".__FUNCTION__." - ENTRY</font> ------------------------<ul><li>\n";
2125 // Default is no refs and no nickname
2129 // Do we have nickname extension installed?
2130 if (EXT_IS_ACTIVE('nickname')) {
2131 $add = ', ud.nickname';
2134 // Get refs from database
2135 $result = SQL_QUERY_ESC("SELECT ur.id, ur.refid, ud.status, ud.last_online, ud.mails_confirmed, ud.emails_received".$add."
2136 FROM `{!_MYSQL_PREFIX!}_user_refs` AS ur
2137 LEFT JOIN `{!_MYSQL_PREFIX!}_user_points` AS up
2138 ON ur.refid=up.userid AND ur.level=0
2139 LEFT JOIN `{!_MYSQL_PREFIX!}_user_data` AS ud
2140 ON ur.refid=ud.userid
2141 WHERE ur.userid=%s AND ur.level=%s
2142 ORDER BY ur.refid ASC",
2143 array(bigintval($uid), bigintval($level)), __FUNCTION__, __LINE__);
2145 // Are there some entries?
2146 if (SQL_NUMROWS($result) > 0) {
2147 // Fetch all entries
2148 while ($row = SQL_FETCHARRAY($result)) {
2149 // Get total points of this user
2150 $row['points'] = GET_TOTAL_DATA($row['refid'], 'user_points', 'points') - GET_TOTAL_DATA($row['refid'], 'user_data', 'used_points');
2152 // Get unconfirmed mails
2153 $row['unconfirmed'] = GET_TOTAL_DATA($row['refid'], 'user_links', 'id', 'userid', true);
2155 // Init clickrate with zero
2156 $row['clickrate'] = 0;
2158 // Is at least one mail received?
2159 if ($row['emails_received'] > 0) {
2160 // Calculate clickrate
2161 $row['clickrate'] = ($row['mails_confirmed'] / $row['emails_received'] * 100);
2164 // Activity is 'active' by default because if autopurge is not installed
2165 $row['activity'] = getMessage('MEMBER_ACTIVITY_ACTIVE');
2167 // Is autopurge installed and the user inactive?
2168 if ((EXT_IS_ACTIVE('autopurge')) && ((time() - getConfig('ap_inactive_since')) >= $row['last_online'])) {
2170 $row['activity'] = getMessage('MEMBER_ACTIVITY_INACTIVE');
2173 // Remove some entries
2174 unset($row['mails_confirmed']);
2175 unset($row['emails_received']);
2176 unset($row['last_online']);
2179 $refs[$row['id']] = $row;
2184 SQL_FREERESULT($result);
2187 //* DEBUG: */ print "</li></ul>----------------------- <font color=\"#aa0000\">".__FUNCTION__." - EXIT</font> ------------------------<br />\n";
2191 // Recuce the amount of received emails for the receipients for given email
2192 function reduceRecipientReceivedMails ($column, $id, $count) {
2193 // Search for mail in database
2194 $result = SQL_QUERY_ESC("SELECT `userid` FROM `{!_MYSQL_PREFIX!}_user_links` WHERE `%s`=%s ORDER BY `userid` ASC LIMIT %s",
2195 array($column, bigintval($id), $count), __FUNCTION__, __LINE__);
2197 // Are there entries?
2198 if (SQL_NUMROWS($result) > 0) {
2199 // Now load all userids for one big query!
2200 // @TODO This can be somehow rewritten
2202 while (list($uid) = SQL_FETCHROW($result)) {
2206 // Now update all user accounts
2207 SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_user_data` SET `emails_received`=`emails_received`-1 WHERE `userid` IN (%s) LIMIT %s",
2208 array(implode(',', $UIDs), count($UIDs)), __FUNCTION__, __LINE__);
2212 SQL_FREERESULT($result);
2216 function INIT_SQLS () {
2220 // Checks wether the sqls array is initialized
2221 function IS_SQLS_INITIALIZED () {
2222 return ((isset($GLOBALS['sqls'])) && (is_array($GLOBALS['sqls'])));
2225 // Setter for SQLs array
2226 function SET_SQLS ($SQLs) {
2227 $GLOBALS['sqls'] = (array) $SQLs;
2230 // Remover for SQLs array
2231 function UNSET_SQLS () {
2232 unset($GLOBALS['sqls']);
2235 // Getter for SQLs array
2236 function GET_SQLS () {
2237 return $GLOBALS['sqls'];
2240 // Add an SQL to the list
2241 function ADD_SQL ($sql) {
2242 //* DEBUG: */ DEBUG_LOG(__FUNCTION__, __LINE__, sprintf("sql=%s, count=%d", $sql, COUNT_SQLS()));
2243 $GLOBALS['sqls'][] = (string) $sql;
2246 // Setter for SQLs key
2247 function SET_SQL_KEY ($key, $value) {
2248 $GLOBALS['sqls'][$key] = (string) $value;
2251 // Merge SQLs together
2252 function MERGE_SQLS ($SQLs) {
2253 SET_SQLS(merge_array(GET_SQLS(), $SQLs));
2256 // Counter for SQLs array
2257 function COUNT_SQLS () {
2261 // Is the array there?
2262 if (IS_SQLS_INITIALIZED()) {
2264 $count = count($GLOBALS['sqls']);
2265 //* DEBUG: */ DEBUG_LOG(__FUNCTION__, __LINE__, sprintf("count=%d", $count));
2272 // Checks wether the SQLs array is filled
2273 function IS_SQLS_VALID () {
2275 (IS_SQLS_INITIALIZED()) &&