2 /************************************************************************
3 * MXChange v0.2.1 Start: 08/26/2003 *
4 * =============== Last change: 11/29/2004 *
6 * -------------------------------------------------------------------- *
7 * File : mysql-manager.php *
8 * -------------------------------------------------------------------- *
9 * Short description : All MySQL-related functions *
10 * -------------------------------------------------------------------- *
11 * Kurzbeschreibung : Alle MySQL-Relevanten Funktionen *
12 * -------------------------------------------------------------------- *
15 * $Tag:: 0.2.1-FINAL $ *
17 * Needs to be in all Files and every File needs "svn propset *
18 * svn:keywords Date Revision" (autoprobset!) at least!!!!!! *
19 * -------------------------------------------------------------------- *
20 * Copyright (c) 2003 - 2008 by Roland Haeder *
21 * For more information visit: http://www.mxchange.org *
23 * This program is free software; you can redistribute it and/or modify *
24 * it under the terms of the GNU General Public License as published by *
25 * the Free Software Foundation; either version 2 of the License, or *
26 * (at your option) any later version. *
28 * This program is distributed in the hope that it will be useful, *
29 * but WITHOUT ANY WARRANTY; without even the implied warranty of *
30 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
31 * GNU General Public License for more details. *
33 * You should have received a copy of the GNU General Public License *
34 * along with this program; if not, write to the Free Software *
35 * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, *
37 ************************************************************************/
39 // Some security stuff...
40 if (!defined('__SECURITY')) {
41 $INC = substr(dirname(__FILE__), 0, strpos(dirname(__FILE__), '/inc') + 4) . '/security.php';
45 // "Getter" for module title
46 function getModuleTitle ($mod) {
51 // Is the script installed?
53 // Check if cache is valid
54 if ((GET_EXT_VERSION('cache') >= '0.1.2') && (isset($GLOBALS['cache_array']['modules']['module'])) && (in_array($mod, $GLOBALS['cache_array']['modules']['module']))) {
56 $name = $GLOBALS['cache_array']['modules']['title'][$mod];
59 incrementConfigEntry('cache_hits');
60 } elseif (!EXT_IS_ACTIVE('cache')) {
62 $result = SQL_QUERY_ESC("SELECT title FROM `{!_MYSQL_PREFIX!}_mod_reg` WHERE `module`='%s' LIMIT 1",
63 array($mod), __FUNCTION__, __LINE__);
64 list($name) = SQL_FETCHROW($result);
65 SQL_FREERESULT($result);
72 // Still no luck or empty title?
75 $name = sprintf("%s (%s)", getMessage('LANG_UNKNOWN_MODULE'), $mod);
76 if (SQL_NUMROWS($result) == 0) {
77 // Add module to database
78 $dummy = checkModulePermissions($mod);
86 // "Getter" for module description
87 function getModuleDescription ($mode, $wht, $column = 'what') {
91 if (getConfig('index_home') != '') $wht = getConfig('index_home');
94 // Default is not found
95 $ret = '??? (' . $wht . ')';
98 $result = SQL_QUERY_ESC("SELECT title FROM `{!_MYSQL_PREFIX!}_%s_menu` WHERE %s='%s' LIMIT 1",
99 array($mode, $column, $wht), __FUNCTION__, __LINE__);
101 // Is there an entry?
102 if (SQL_NUMROWS($result) == 1) {
104 list($ret) = SQL_FETCHROW($result);
108 SQL_FREERESULT($result);
112 // Check validity of a given module name (no file extension)
113 function checkModulePermissions ($mod) {
114 // Filter module name (names with low chars and underlines are fine!)
115 $mod = preg_replace("/[^a-z_]/", '', $mod);
117 // Check for prefix is a extension...
118 $modSplit = explode("_", $mod);
119 $extension = ''; $mod_chk = $mod;
120 //* DEBUG: */ echo __LINE__."*".count($modSplit)."*/".$mod."*<br />";
121 if (count($modSplit) == 2) {
122 // Okay, there is a seperator (_) in the name so is the first part a module?
123 //* DEBUG: */ echo __LINE__."*".$modSplit[0]."*<br />";
124 if (EXT_IS_ACTIVE($modSplit[0])) {
125 // The prefix is an extension's name, so let's set it
126 $extension = $modSplit[0]; $mod = $modSplit[1];
130 // Major error in module registry is the default
133 // Check if script is installed if not return a 'done' to prevent some errors
134 if ((!isInstalled()) || (isInstalling()) || (!isAdminRegistered())) {
135 // Not installed or no admin registered or in installation phase
146 // Check if cache is latest version
147 if (GET_EXT_VERSION('cache') >= '0.1.2') {
148 // Is the cache there?
149 //* DEBUG: */ DEBUG_LOG(__FUNCTION__, __LINE__, 'Using cache.');
150 if (!isset($GLOBALS['cache_array']['modules'])) {
151 // This happens when a new extension is registered while ext-cache is installed
155 // Is the module cached?
156 if (isset($GLOBALS['cache_array']['modules']['locked'][$mod_chk])) {
158 //* DEBUG: */ DEBUG_LOG(__FUNCTION__, __LINE__, 'Cache found.');
159 $locked = $GLOBALS['cache_array']['modules']['locked'][$mod_chk];
160 $hidden = $GLOBALS['cache_array']['modules']['hidden'][$mod_chk];
161 $admin = $GLOBALS['cache_array']['modules']['admin_only'][$mod_chk];
162 $mem = $GLOBALS['cache_array']['modules']['mem_only'][$mod_chk];
165 incrementConfigEntry('cache_hits');
168 // No, then we have to update it!
171 } elseif (!EXT_IS_ACTIVE('cache')) {
172 // Check for module in database
173 //* DEBUG: */ DEBUG_LOG(__FUNCTION__, __LINE__, 'Using database.');
174 $result = SQL_QUERY_ESC("SELECT `locked`, `hidden`, `admin_only`, `mem_only` FROM `{!_MYSQL_PREFIX!}_mod_reg` WHERE `module`='%s' LIMIT 1",
175 array($mod_chk), __FUNCTION__, __LINE__);
176 if (SQL_NUMROWS($result) == 1) {
178 //* DEBUG: */ DEBUG_LOG(__FUNCTION__, __LINE__, 'Entry found.');
179 list($locked, $hidden, $admin, $mem) = SQL_FETCHROW($result);
181 } elseif (isDebugModeEnabled()) {
182 // Debug message only in debug-mode...
183 DEBUG_LOG(__FUNCTION__, __LINE__, 'Module ' . $mod_chk . ' not found!');
187 SQL_FREERESULT($result);
189 //* DEBUG: */ DEBUG_LOG(__FUNCTION__, __LINE__, 'ret=' . $ret);
191 // Is the module found?
192 if ($found === true) {
193 // Check returned values against current access permissions
195 // Admin access ----- Guest access ----- --- Guest or member? ---
196 if ((IS_ADMIN()) || (($locked == 'N') && ($admin == 'N') && (($mem == 'N') || (IS_MEMBER())))) {
197 // If you are admin you are welcome for everything!
199 } elseif ($locked == 'Y') {
202 } elseif (($mem == 'Y') && (!IS_MEMBER())) {
203 // You have to login first!
205 } elseif (($admin == 'Y') && (!IS_ADMIN())) {
206 // Only the Admin is allowed to enter this module!
209 // @TODO Nothing helped???
210 DEBUG_LOG(__FUNCTION__, __LINE__, sprintf("ret=%s,locked=%s,admin=%s,mem=%s",
219 // Still no luck or not found?
220 if ((($ret == 'cache_miss') || ($found === false)) && (getOutputMode() == '0')) {
221 // ----- Legacy module ----- ---- Module in base folder ---- --- Module with extension's name ---
222 if ((isFileReadable(sprintf("%sinc/modules/%s.php", constant('PATH'), $mod))) || (isFileReadable(sprintf("%s%s.php", constant('PATH'), $mod))) || (isFileReadable(sprintf("%s%s/%s.php", constant('PATH'), $extension, $mod)))) {
223 // Data is missing so we add it
224 if (GET_EXT_VERSION('sql_patches') >= '0.3.6') {
225 // Since 0.3.6 we have a has_menu column, this took me a half hour
226 // to find a loop here... *sigh*
227 SQL_QUERY_ESC("INSERT INTO `{!_MYSQL_PREFIX!}_mod_reg`
228 (`module`, `locked`, `hidden`, `mem_only`, `admin_only`, `has_menu`) VALUES
229 ('%s','Y','N','N','N','N')", array($mod_chk), __FUNCTION__, __LINE__);
231 // Wrong/missing sql_patches!
232 SQL_QUERY_ESC("INSERT INTO `{!_MYSQL_PREFIX!}_mod_reg`
233 (`module`, `locked`, `hidden`, `mem_only`, `admin_only`) VALUES
234 ('%s','Y','N','N','N')", array($mod_chk), __FUNCTION__, __LINE__);
237 // Everthing is fine?
238 if (SQL_AFFECTEDROWS() < 1) {
239 // Something bad happend!
243 // Destroy cache here
244 // @TODO Rewrite this to a filter
245 rebuildCacheFiles('modreg', 'modreg');
248 $ret = checkModulePermissions($mod_chk);
250 // Module not found we don't add it to the database
254 // Problem with module detected
255 DEBUG_LOG(__FUNCTION__, __LINE__, sprintf("Problem in module %s detected. ret=%s, locked=%s, hidden=%s, mem=%s, admin=%s",
266 //* DEBUG: */ DEBUG_LOG(__FUNCTION__, __LINE__, 'ret=' . $ret);
270 // Add menu description pending on given file name (without path!)
271 function ADD_DESCR ($accessLevel, $FQFN, $return = false, $output = true) {
272 // Use only filename of the FQFN...
273 $file = basename($FQFN);
280 // First we have to do some analysis...
281 if (substr($file, 0, 7) == 'action-') {
282 // This is an action file!
284 $search = substr($file, 7);
285 switch ($accessLevel) {
293 $modCheck = getModule();
296 $AND = " AND (`what`='' OR `what` IS NULL)";
297 } elseif (substr($file, 0, 5) == 'what-') {
298 // This is an admin what file!
300 $search = substr($file, 5);
302 switch ($accessLevel) {
309 $modCheck = getModule();
311 $AND = " AND `visible`='Y' AND `locked`='N'";
316 $dummy = substr($search, 0, -4);
317 $AND .= " AND `action`='".getModeAction($accessLevel, $dummy)."'";
318 } elseif (($accessLevel == 'sponsor') || ($accessLevel == "engine")) {
319 // Sponsor / engine menu
322 $modCheck = getModule();
328 $modCheck = getModule();
332 // Begin the navigation line
333 if ((!isset($GLOBALS['nav_depth'])) && (!$return)) {
334 $GLOBALS['nav_depth'] = 0;
335 $prefix = "<div class=\"you_are_here\">{--YOU_ARE_HERE--} <strong><a class=\"you_are_here\" href=\"{!URL!}/modules.php?module=".getModule().$LINK_ADD."\">Home</a></strong>";
337 if (!$return) $GLOBALS['nav_depth']++;
341 $prefix .= ' -> ';
343 // We need to remove .php and the end
344 if (substr($search, -4, 4) == '.php') {
346 $search = substr($search, 0, -4);
349 // Get the title from menu
350 $result = SQL_QUERY_ESC("SELECT title FROM `{!_MYSQL_PREFIX!}_%s_menu` WHERE %s='%s' ".$AND." LIMIT 1",
351 array($accessLevel, $type, $search), __FUNCTION__, __LINE__);
354 if (SQL_NUMROWS($result) == 1) {
356 list($ret) = SQL_FETCHROW($result);
358 // Shall we return it?
359 if ($return === true) {
362 } elseif (((GET_EXT_VERSION('sql_patches') >= '0.2.3') && (getConfig('youre_here') == 'Y')) || ((IS_ADMIN()) && ($modCheck == 'admin'))) {
364 $OUT = $prefix . "<strong><a class=\"you_are_here\" href=\"{!URL!}/modules.php?module=" . $modCheck . '&' . $type . '=' . $search.$LINK_ADD . "\">" . $ret . "</a></strong>\n";
366 // Can we close the you-are-here navigation?
367 //* DEBUG: */ echo __LINE__."*".$type.'/'.getWhat()."*<br />\n";
368 if (($type == 'what') || (($type == 'action') && ((!isWhatSet()) || (getWhat() == 'overview')))) {
369 //* DEBUG: */ echo __LINE__.'+'.$type."+<br />\n";
370 // Add closing div and br-tag
371 $OUT .= "</div><br />\n";
372 $GLOBALS['nav_depth'] = '0';
374 // Run the filter chain
375 $ret = runFilterChain('post_youhere_line', array('access_level' => $accessLevel, 'type' => $type, 'content' => ""));
376 $OUT .= $ret['content'];
382 SQL_FREERESULT($result);
384 // Return or output HTML code?
386 // Output HTML code here
395 function ADD_MENU ($mode, $act, $wht) {
396 // Init some variables
402 // is the menu action valid?
403 if (!isMenuActionValid($mode, $act, $wht, true)) {
404 return getCode('MENU_NOT_VALID');
407 // Non-admin shall not see all menus
409 $AND = " AND `visible`='Y' AND `locked`='N'";
412 // Load SQL data and add the menu to the output stream...
413 $result_main = SQL_QUERY_ESC("SELECT title, action FROM `{!_MYSQL_PREFIX!}_%s_menu` WHERE (`what`='' OR `what` IS NULL)".$AND." ORDER BY `sort`",
414 array($mode), __FUNCTION__, __LINE__);
415 //* DEBUG: */ echo __LINE__.'/'.$main_cnt.'/'.$main_action.'/'.$sub_what.':'.getWhat()."*<br />\n";
416 if (SQL_NUMROWS($result_main) > 0) {
417 OUTPUT_HTML("<table border=\"0\" cellspacing=\"0\" cellpadding=\"0\" class=\"".$mode."_menu\">");
418 // There are menus available, so we simply display them... :)
419 while ($content = SQL_FETCHARRAY($result_main)) {
420 //* DEBUG: */ echo __LINE__.'/'.$main_cnt.'/'.$content['action'].'/'.$sub_what.':'.getWhat()."*<br />\n";
422 $GLOBALS['block_mode'] = false;
423 $act = $content['action'];
425 // Load menu header template
426 LOAD_TEMPLATE($mode."_menu_title", false, $content);
429 $result_sub = SQL_QUERY_ESC("SELECT title AS sub_title, what AS sub_what FROM `{!_MYSQL_PREFIX!}_%s_menu` WHERE `action`='%s' AND `what` != '' AND `what` IS NOT NULL ".$AND." ORDER BY `sort`",
430 array($mode, $content['action']), __FUNCTION__, __LINE__);
432 // Get number of rows
433 $ctl = SQL_NUMROWS($result_sub);
435 // Do we have some entries?
440 // Load all sub menus
441 while ($content2 = SQL_FETCHARRAY($result_sub)) {
442 // Merge both arrays in one
443 $content = merge_array($content, $content2);
448 // Full file name for checking menu
449 //* DEBUG: */ echo __LINE__.":!!!!".$content['sub_what']."!!!<br />\n";
450 $INC = sprintf("inc/modules/%s/what-%s.php", $mode, $content['sub_what']);
451 if (isIncludeReadable($INC)) {
452 if ((!empty($wht)) && (($wht == $content['sub_what']))) {
457 $OUT .= "<a name=\"menu\" class=\"menu_blur\" href=\"{!URL!}/modules.php?module=".getModule()."&what=".$content['sub_what']."\" target=\"_self\">";
463 $OUT .= getConfig('menu_blur_spacer') . $content['sub_title'];
465 if (isIncludeReadable($INC)) {
471 if ((!empty($wht)) && (($wht == $content['sub_what']))) {
475 // Remember 'what' for next round and count it up
476 $wht = $content['sub_what']; $cnt++;
481 'what' => $content['sub_what']
484 // Add regular menu row or bottom row?
486 LOAD_TEMPLATE($mode."_menu_row", false, $content);
488 LOAD_TEMPLATE($mode."_menu_bottom", false, $content);
492 // This is a menu block... ;-)
493 $GLOBALS['block_mode'] = true;
494 $INC_BLOCK = sprintf("inc/modules/%s/action-%s.php", $mode, $content['action']);
495 if (isFileReadable($INC_BLOCK)) {
497 if ((!EXT_IS_ACTIVE($content['action'])) || ($content['action'] == 'online')) OUTPUT_HTML("<tr>
499 <td class=\"".$mode."_menu_whats\">");
500 //* DEBUG: */ echo __LINE__.'/'.$main_cnt.'/'.$content['action'].'/'.$content['sub_what'].':'.getWhat()."*<br />\n";
501 loadInclude($INC_BLOCK);
502 //* DEBUG: */ echo __LINE__.'/'.$main_cnt.'/'.$content['action'].'/'.$content['sub_what'].':'.getWhat()."*<br />\n";
503 if ((!EXT_IS_ACTIVE($content['action'])) || ($content['action'] == 'online')) OUTPUT_HTML(" </td>
506 //* DEBUG: */ echo __LINE__.'/'.$main_cnt.'/'.$content['action'].'/'.$content['sub_what'].':'.getWhat()."*<br />\n";
509 //* DEBUG: */ echo __LINE__.'/'.$main_cnt.'/'.$content['action'].'/'.$content['sub_what'].':'.getWhat()."*<br />\n";
510 if (SQL_NUMROWS($result_main) > $main_cnt) {
511 OUTPUT_HTML("<tr><td class=\"".$mode."_menu_seperator\"></td></tr>");
516 SQL_FREERESULT($result_main);
519 //* DEBUG: */ echo __LINE__.'/'.$main_cnt.'/'.$content['action'].'/'.$content['sub_what'].':'.getWhat()."*<br />\n";
520 OUTPUT_HTML("</table>");
524 // Checks wether the current user is a member
525 function IS_MEMBER () {
526 // By default no member
529 // Fix missing 'last' array, damn stupid code :(((
530 // @TODO Try to rewrite this to one or more functions
531 if ((!isset($GLOBALS['last'])) || (!is_array($GLOBALS['last']))) $GLOBALS['last'] = array();
533 // is the cache entry there?
534 if (isset($GLOBALS['is_member'])) {
536 return $GLOBALS['is_member'];
539 // Init global 'status'
540 $GLOBALS['status'] = false;
542 // Fix "deleted" cookies first
543 fixDeletedCookies(array('userid', 'u_hash'));
546 if ((isUserIdSet()) && (isSessionVariableSet('u_hash'))) {
547 // Cookies are set with values, but are they valid?
548 $result = SQL_QUERY_ESC("SELECT password, status, last_module, last_online FROM `{!_MYSQL_PREFIX!}_user_data` WHERE userid=%s LIMIT 1",
549 array(getUserId()), __FUNCTION__, __LINE__);
550 if (SQL_NUMROWS($result) == 1) {
551 // Load data from cookies
552 list($password, $GLOBALS['status'], $mod, $onl) = SQL_FETCHROW($result);
554 // Validate password by created the difference of it and the secret key
555 $valPass = generatePassString($password);
557 // Transfer last module and online time
558 if ((!empty($mod)) && (empty($GLOBALS['last']['module']))) {
559 // @TODO Try to rewrite this to one or more functions
560 $GLOBALS['last']['module'] = $mod;
561 $GLOBALS['last']['online'] = $onl;
564 // So did we now have valid data and an unlocked user?
565 if (($GLOBALS['status'] == 'CONFIRMED') && ($valPass == getSession('u_hash'))) {
566 // Account is confirmed and all cookie data is valid so he is definely logged in! :-)
569 // Maybe got locked etc.
570 //* DEBUG: */ echo __LINE__."!!!<br />";
571 destroyUserSession();
574 // Cookie data is invalid!
575 //* DEBUG: */ echo __LINE__."***<br />";
576 destroyUserSession();
580 SQL_FREERESULT($result);
582 // Cookie data is invalid!
583 //* DEBUG: */ echo __LINE__."///<br />";
584 destroyUserSession();
588 $GLOBALS['is_member'] = $ret;
594 // This patched function will reduce many SELECT queries for the specified or current admin login
595 function IS_ADMIN ($admin = '') {
597 $ret = false; $passCookie = ''; $valPass = '';
598 //* DEBUG: */ echo __LINE__."ADMIN:".$admin."<br />";
600 // If admin login is not given take current from cookies...
601 if ((empty($admin)) && (isSessionVariableSet('admin_login')) && (isSessionVariableSet('admin_md5'))) {
602 // Get admin login and password from session/cookies
603 $admin = getSession('admin_login');
604 $passCookie = getSession('admin_md5');
606 //* DEBUG: */ echo __LINE__."ADMIN:".$admin.'/'.$passCookie."<br />";
608 // Search in array for entry
609 if (isset($GLOBALS['cache_array']['admin_hash'])) {
611 $valPass = $GLOBALS['cache_array']['admin_hash'];
612 } elseif ((!empty($passCookie)) && (isset($GLOBALS['cache_array']['admins']['password'][$admin])) && (!empty($admin))) {
613 // Login data is valid or not?
614 $valPass = generatePassString($GLOBALS['cache_array']['admins']['password'][$admin]);
617 $GLOBALS['cache_array']['admin_hash'] = $valPass;
620 incrementConfigEntry('cache_hits');
621 } elseif ((!empty($admin)) && ((!EXT_IS_ACTIVE('cache'))) || (!isset($GLOBALS['cache_array']['admins']['password'][$admin]))) {
623 $result = SQL_QUERY_ESC("SELECT HIGH_PRIORITY password FROM `{!_MYSQL_PREFIX!}_admins` WHERE login='%s' LIMIT 1",
624 array($admin), __FUNCTION__, __LINE__);
628 if (SQL_NUMROWS($result) == 1) {
629 // Admin login was found so let's load password from DB
630 list($passDB) = SQL_FETCHROW($result);
632 // Temporary cache it
633 $GLOBALS['cache_array']['admins']['password'][$admin] = $passDB;
635 // Generate password hash
636 $valPass = generatePassString($passDB);
640 SQL_FREERESULT($result);
643 if (!empty($valPass)) {
644 // Check if password is valid
645 //* DEBUG: */ print __FUNCTION__."*".$valPass.'/'.$passCookie."*<br />\n";
646 $ret = (($valPass == $passCookie) || ((strlen($valPass) == 32) && ($valPass == md5($passCookie))) || (($valPass == "*FAILED*") && (!EXT_IS_ACTIVE('cache'))));
649 // Return result of comparision
650 //* DEBUG: */ if (!$ret) echo __LINE__."OK!<br />";
654 // Generates a list of "max receiveable emails per day"
655 function addMaxReceiveList ($mode, $default = '', $return = false) {
661 // Guests (in the registration form) are not allowed to select 0 mails per day.
662 $result = SQL_QUERY("SELECT value, comment FROM `{!_MYSQL_PREFIX!}_max_receive` WHERE value > 0 ORDER BY value",
663 __FUNCTION__, __LINE__);
667 // Members are allowed to set to zero mails per day (we will change this soon!)
668 $result = SQL_QUERY("SELECT value, comment FROM `{!_MYSQL_PREFIX!}_max_receive` ORDER BY value",
669 __FUNCTION__, __LINE__);
673 DEBUG_LOG(__FUNCTION__, __LINE__, sprintf("Invalid mode %s detected.", $mode));
677 // Some entries are found?
678 if (SQL_NUMROWS($result) > 0) {
680 while ($content = SQL_FETCHARRAY($result)) {
681 $OUT .= " <option value=\"".$content['value']."\"";
682 if (REQUEST_POST('max_mails') == $content['value']) $OUT .= ' selected="selected"';
683 $OUT .= ">".$content['value']." {--PER_DAY--}";
684 if (!empty($content['comment'])) $OUT .= " (".$content['comment'].')';
685 $OUT .= "</option>\n";
687 define('__MAX_RECEIVE_OPTIONS', $OUT);
690 $OUT = LOAD_TEMPLATE($mode . '_receive_table', true);
692 // Maybe the admin has to setup some maximum values?
693 debug_report_bug('Nothing is being done here?');
697 SQL_FREERESULT($result);
699 if ($return === true) {
700 // Return generated HTML code
703 // Output directly (default)
708 // Checks wether the given email address is used.
709 function isEmailTaken ($email) {
710 // Query the database
711 $result = SQL_QUERY_ESC("SELECT userid FROM `{!_MYSQL_PREFIX!}_user_data` WHERE email LIKE '{PER}%s{PER}' LIMIT 1",
712 array($email), __FUNCTION__, __LINE__);
714 // Is the email there?
715 $ret = (SQL_NUMROWS($result) == 1);
718 SQL_FREERESULT($result);
724 // Validate the given menu action
725 function isMenuActionValid ($mode, $act, $wht, $UPDATE=false) {
726 // Is the cache entry there and we shall not update?
727 if ((isset($GLOBALS['cache_array']['action_valid'][$mode][$act][$wht])) && ($UPDATE === false)) {
729 incrementConfigEntry('cache_hits');
731 // Then use this cache
732 return $GLOBALS['cache_array']['action_valid'][$mode][$act][$wht];
735 // By default nothing is valid
738 // Look in all menus or only unlocked
740 if ((!IS_ADMIN()) && ($mode != 'admin')) $add = " AND `locked`='N'";
742 //* DEBUG: */ echo __LINE__.':'.$mode.'/'.$act.'/'.$wht."*<br />\n";
743 if (($mode != 'admin') && ($UPDATE === true)) {
744 // Update guest or member menu
745 $sql = SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_%s_menu` SET counter=counter+1 WHERE `action`='%s' AND `what`='%s'".$add." LIMIT 1",
746 array($mode, $act, $wht), __FUNCTION__, __LINE__, false);
747 } elseif (($wht != 'overview') && (!empty($wht))) {
749 $sql = SQL_QUERY_ESC("SELECT id, what FROM `{!_MYSQL_PREFIX!}_%s_menu` WHERE `action`='%s' AND `what`='%s'".$add." ORDER BY action DESC LIMIT 1",
750 array($mode, $act, $wht), __FUNCTION__, __LINE__, false);
752 // Admin login overview
753 $sql = SQL_QUERY_ESC("SELECT id, what FROM `{!_MYSQL_PREFIX!}_%s_menu` WHERE `action`='%s' AND (`what`='' OR `what` IS NULL)".$add." ORDER BY action DESC LIMIT 1",
754 array($mode, $act), __FUNCTION__, __LINE__, false);
758 $result = SQL_QUERY($sql, __FUNCTION__, __LINE__);
759 if ($UPDATE === true) {
760 // Check updated/affected rows
761 $ret = (SQL_AFFECTEDROWS() == 1);
764 $ret = (SQL_NUMROWS($result) == 1);
768 SQL_FREERESULT($result);
771 $GLOBALS['cache_array']['action_valid'][$mode][$act][$wht] = $ret;
778 function sendModeMails ($mod, $modes) {
782 $result_main = SQL_QUERY_ESC("SELECT password FROM `{!_MYSQL_PREFIX!}_user_data` WHERE userid=%s AND `status`='CONFIRMED' LIMIT 1",
783 array(getUserId()), __FUNCTION__, __LINE__);
784 if (SQL_NUMROWS($result_main) == 1) {
785 // Load hash from database
786 list($hashDB) = SQL_FETCHROW($result_main);
788 // Extract salt from cookie
789 $salt = substr(getSession('u_hash'), 0, -40);
791 // Now let's compare passwords
792 $hash = generatePassString($hashDB);
793 if (($hash == getSession('u_hash')) || (REQUEST_POST('pass1') == REQUEST_POST('pass2'))) {
795 $result = SQL_QUERY_ESC("SELECT gender, surname, family, street_nr, country, zip, city, email FROM `{!_MYSQL_PREFIX!}_user_data` WHERE userid=%s AND password='%s' LIMIT 1",
796 array(getUserId(), $hashDB), __FUNCTION__, __LINE__);
797 if (SQL_NUMROWS($result) == 1) {
799 $DATA = SQL_FETCHROW($result);
802 SQL_FREERESULT($result);
805 $DATA[0] = translateGender($DATA[0]);
807 // Clear/init the content variable
814 foreach ($modes as $mode) {
817 case 'normal': break; // Do not add any special lines
819 case 'email': // Email was changed!
820 $content = getMessage('MEMBER_CHANGED_EMAIL').": ".REQUEST_POST('old_addy')."\n";
823 case 'pass': // Password was changed
824 $content = getMessage('MEMBER_CHANGED_PASS')."\n";
828 DEBUG_LOG(__FUNCTION__, __LINE__, sprintf("Unknown mode %s detected.", $mode));
829 $content = getMessage('MEMBER_UNKNOWN_MODE').": ".$mode."\n\n";
834 if (EXT_IS_ACTIVE('country')) {
835 // Replace code with description
836 $DATA[4] = COUNTRY_GENERATE_INFO(REQUEST_POST('country_code'));
839 // Merge content with data from POST
840 $content = merge_array($content, REQUEST_POST_ARRAY());
843 $msg = LOAD_EMAIL_TEMPLATE('member_mydata_notify', $content, getUserId());
845 if (getConfig('admin_notify') == 'Y') {
846 // The admin needs to be notified about a profile change
847 $msg_admin = 'admin_mydata_notify';
848 $sub_adm = getMessage('ADMIN_CHANGED_DATA');
856 $sub_mem = getMessage('MEMBER_CHANGED_DATA');
858 // Output success message
859 $content = "<span class=\"member_done\">{--MYDATA_MAIL_SENT--}</span>";
862 default: // Unsupported module!
863 DEBUG_LOG(__FUNCTION__, __LINE__, sprintf("Unsupported module %s detected.", $mod));
864 $content = "<span class=\"member_failed\">{--UNKNOWN_MODULE--}</span>";
868 // Could not load profile data
869 $content = "<span class=\"member_failed\">{--MEMBER_CANNOT_LOAD_PROFILE--}</span>";
872 // Passwords mismatch
873 $content = "<span class=\"member_failed\">{--MEMBER_PASSWORD_ERROR--}</span>";
876 // Could not load profile
877 $content = "<span class=\"member_failed\">{--MEMBER_CANNOT_LOAD_PROFILE--}</span>";
880 // Send email to user if required
881 if ((!empty($sub_mem)) && (!empty($msg))) {
883 sendEmail($DATA[7], $sub_mem, $msg);
886 // Send only if no other error has occured
887 if (empty($content)) {
888 if ((!empty($sub_adm)) && (!empty($msg_admin))) {
890 sendAdminNotification($sub_adm, $msg_admin, $content, getUserId());
891 } elseif (getConfig('admin_notify') == 'Y') {
892 // Cannot send mails to admin!
893 $content = getMessage('CANNOT_SEND_ADMIN_MAILS');
896 $content = "<span class=\"member_done\">{--MYDATA_MAIL_SENT--}</span>";
901 LOAD_TEMPLATE('admin_settings_saved', false, $content);
904 // Update module counter
905 function countModuleHit($mod) {
907 // Do count all other modules but not accesses on CSS file css.php!
908 SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_mod_reg` SET clicks=clicks+1 WHERE `module`='%s' LIMIT 1",
909 array($mod), __FUNCTION__, __LINE__);
913 // Get action value from mode (admin/guest/member) and what-value
914 function getModeAction ($mode, $wht) {
918 //* DEBUG: */ echo __LINE__.'='.$mode.'/'.$wht.'/'.getAction()."=<br />";
919 if ((empty($wht)) && ($mode != 'admin')) {
921 if (getConfig('index_home') != '') $wht = getConfig('index_home');
924 if ($mode == 'admin') {
925 // Action value for admin area
926 if (REQUEST_ISSET_GET('action')) {
928 return REQUEST_GET('action');
929 } elseif (isActionSet()) {
930 // Get it directly from URL
932 } elseif (($wht == 'overview') || (!isWhatSet())) {
933 // Default value for admin area
936 } elseif (isActionSet()) {
937 // Get it directly from URL
940 //* DEBUG: */ echo __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>): ret=".$ret."<br />\n";
942 // Does the module have a menu?
943 if (MODULE_HAS_MENU($mode)) {
944 // Rewriting modules to menu
946 case 'index': $mode = 'guest'; break;
947 case 'login': $mode = 'member'; break;
950 // Guest and member menu is 'main' as the default
951 if (empty($ret)) $ret = 'main';
953 // Load from database
954 $result = SQL_QUERY_ESC("SELECT action FROM `{!_MYSQL_PREFIX!}_%s_menu` WHERE `what`='%s' LIMIT 1",
955 array($mode, $wht), __FUNCTION__, __LINE__);
956 if (SQL_NUMROWS($result) == 1) {
957 // Load action value and pray that this one is the right you want... ;-)
958 list($ret) = SQL_FETCHROW($result);
962 SQL_FREERESULT($result);
963 } elseif ((GET_EXT_VERSION('sql_patches') == '') && ($mode != 'admin')) {
964 // No sql_patches installed, but maybe we need to register an admin?
965 if (isAdminRegistered()) {
967 // @TODO Why does this lead into an endless loop but we still need it???
968 // @TODO Commented out redirectToUrl('admin.php');
972 // Return action value
976 // Get category name back
977 function getCategory ($cid) {
978 // Default is not found
979 $ret = getMessage('_CATEGORY_404');
981 // Is the category id set?
984 $ret = getMessage('_CATEGORY_NONE');
985 } elseif ($cid > 0) {
986 // Lookup the category in database
987 $result = SQL_QUERY_ESC("SELECT cat FROM `{!_MYSQL_PREFIX!}_cats` WHERE `id`=%s LIMIT 1",
988 array(bigintval($cid)), __FUNCTION__, __LINE__);
989 if (SQL_NUMROWS($result) == 1) {
990 // Category found... :-)
991 list($ret) = SQL_FETCHROW($result);
995 SQL_FREERESULT($result);
1002 // Get a string of "mail title" and price back
1003 function getPaymentTitlePrice ($pid, $full=false) {
1004 // Default is not found
1005 $ret = getMessage('_PAYMENT_404');
1007 // Load payment data
1008 $result = SQL_QUERY_ESC("SELECT mail_title, price FROM `{!_MYSQL_PREFIX!}_payments` WHERE `id`=%s LIMIT 1",
1009 array(bigintval($pid)), __FUNCTION__, __LINE__);
1010 if (SQL_NUMROWS($result) == 1) {
1011 // Payment type found... :-)
1013 // Return only title
1014 list($ret) = SQL_FETCHROW($result);
1016 // Return title and price
1017 list($t, $p) = SQL_FETCHROW($result);
1018 $ret = $t.' / '.translateComma($p).' {!POINTS!}';
1023 SQL_FREERESULT($result);
1029 // Get (basicly) the price of given payment id
1030 function getPaymentPoints ($pid, $lookFor = 'price') {
1034 // Search for it in database
1035 $result = SQL_QUERY_ESC("SELECT %s FROM `{!_MYSQL_PREFIX!}_payments` WHERE `id`=%s LIMIT 1",
1036 array($lookFor, $pid), __FUNCTION__, __LINE__);
1038 // Is the entry there?
1039 if (SQL_NUMROWS($result) == 1) {
1040 // Payment type found... :-)
1041 list($ret) = SQL_FETCHROW($result);
1045 SQL_FREERESULT($result);
1051 // Remove a receiver's ID from $receivers and add a link for him to confirm
1052 function removeReceiver (&$receivers, $key, $uid, $pool_id, $stats_id='', $bonus=false) {
1053 // Default is not removed
1056 // Is the userid valid?
1058 // Remove entry from array
1059 unset($receivers[$key]);
1061 // Is there already a line for this user available?
1062 if ($stats_id > 0) {
1063 // Only when we got a real stats ID continue searching for the entry
1064 $type = 'NORMAL'; $rowName = 'stats_id';
1065 if ($bonus) { $type = 'BONUS'; $rowName = 'bonus_id'; }
1067 // Try to look the entry up
1068 $result = SQL_QUERY_ESC("SELECT `id` FROM `{!_MYSQL_PREFIX!}_user_links` WHERE %s='%s' AND `userid`=%s AND link_type='%s' LIMIT 1",
1069 array($rowName, $stats_id, bigintval($uid), $type), __FUNCTION__, __LINE__);
1071 // Was it *not* found?
1072 if (SQL_NUMROWS($result) == 0) {
1074 SQL_QUERY_ESC("INSERT INTO `{!_MYSQL_PREFIX!}_user_links` (%s, userid, link_type) VALUES ('%s','%s','%s')",
1075 array($rowName, $stats_id, bigintval($uid), $type), __FUNCTION__, __LINE__);
1083 SQL_FREERESULT($result);
1087 // Return status for sending routine
1091 // Calculate sum (default) or count records of given criteria
1092 function GET_TOTAL_DATA ($search, $tableName, $lookFor = 'id', $whereStatement = 'userid', $countRows = false, $add = '') {
1094 //* DEBUG: */ echo $search.'/'.$tableName.'/'.$lookFor.'/'.$whereStatement.'/'.$add.'<br />\n';
1095 if ((empty($search)) && ($search != '0')) {
1096 // Count or sum whole table?
1097 if ($countRows === true) {
1098 // Count whole table
1099 $result = SQL_QUERY_ESC("SELECT COUNT(`%s`) FROM `{!_MYSQL_PREFIX!}_%s`".$add,
1100 array($lookFor, $tableName), __FUNCTION__, __LINE__);
1103 $result = SQL_QUERY_ESC("SELECT SUM(`%s`) FROM `{!_MYSQL_PREFIX!}_%s`".$add,
1104 array($lookFor, $tableName), __FUNCTION__, __LINE__);
1106 } elseif (($countRows === true) || ($lookFor == 'userid')) {
1108 //* DEBUG: */ echo "COUNT!<br />\n";
1109 $result = SQL_QUERY_ESC("SELECT COUNT(`%s`) FROM `{!_MYSQL_PREFIX!}_%s` WHERE `%s`='%s'".$add,
1110 array($lookFor, $tableName, $whereStatement, $search), __FUNCTION__, __LINE__);
1113 //* DEBUG: */ echo "SUM!<br />\n";
1114 $result = SQL_QUERY_ESC("SELECT SUM(`%s`) FROM `{!_MYSQL_PREFIX!}_%s` WHERE `%s`='%s'".$add,
1115 array($lookFor, $tableName, $whereStatement, $search), __FUNCTION__, __LINE__);
1119 list($ret) = SQL_FETCHROW($result);
1122 SQL_FREERESULT($result);
1125 if ((empty($ret)) && ($lookFor != 'counter') && ($lookFor != 'id') && ($lookFor != 'userid')) {
1128 } elseif (''.$ret.'' == '') {
1136 // Getter fro ref level percents
1137 function getReferalLevelPercents ($level) {
1141 // Do we have cache?
1142 if ((isset($GLOBALS['cache_array']['ref_depths']['level'])) && (EXT_IS_ACTIVE('cache'))) {
1143 // First look for level
1144 $key = array_search($level, $GLOBALS['cache_array']['ref_depths']['level']);
1145 if ($key !== false) {
1147 $per = $GLOBALS['cache_array']['ref_depths']['percents'][$key];
1150 incrementConfigEntry('cache_hits');
1152 } elseif (!EXT_IS_ACTIVE('cache')) {
1154 $result_lvl = SQL_QUERY_ESC("SELECT percents FROM `{!_MYSQL_PREFIX!}_refdepths` WHERE level='%s' LIMIT 1",
1155 array(bigintval($level)), __FUNCTION__, __LINE__);
1158 if (SQL_NUMROWS($result_lvl) == 1) {
1160 list($per) = SQL_FETCHROW($result_lvl);
1164 SQL_FREERESULT($result_lvl);
1173 * Dynamic referal system, can also send mails!
1175 * subject = Subject line, write in lower-case letters and underscore is allowed
1176 * uid = Referal ID wich should receive...
1177 * points = ... xxx points
1178 * send_notify = shall I send the referal an email or not?
1179 * rid = inc/modules/guest/what-confirm.php need this (DEPRECATED???)
1180 * locked = Shall I pay it to normal (false) or locked (true) points ammount?
1181 * add_mode = Add points only to $uid or also refs? (WARNING! Changing 'ref' to 'direct'
1182 * for default value will cause no referal will get points ever!!!)
1184 function ADD_POINTS_REFSYSTEM ($subject, $uid, $points, $send_notify = false, $rid = '0', $locked = false, $add_mode = 'ref') {
1185 //* DEBUG: */ print "----------------------- <font color=\"#00aa00\">".__FUNCTION__." - ENTRY</font> ------------------------<ul><li>\n";
1188 // Convert mode to lower-case
1189 $add_mode = strtolower($add_mode);
1191 // When $uid = 0 add points to jackpot
1193 // Add points to jackpot
1194 ADD_JACKPOT($points);
1198 // Add booking record if extension is installed
1199 if (EXT_IS_ACTIVE('booking')) {
1201 ADD_BOOKING_RECORD($subject, $uid, $points, 'add');
1204 // Count up referal depth
1205 if (!isset($GLOBALS['ref_level'])) {
1206 // Initialialize referal system
1207 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>): Referal system initialized!<br />\n";
1208 $GLOBALS['ref_level'] = 0;
1210 // Increase referal level
1211 $GLOBALS['ref_level']++;
1212 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>): Referal level increased. DEPTH={$GLOBALS['ref_level']}<br />\n";
1215 // Default is 'normal' points
1218 // Which points, locked or normal?
1219 if ($locked) $data = 'locked_points';
1221 // Check user account
1222 $result_user = SQL_QUERY_ESC("SELECT refid, email FROM `{!_MYSQL_PREFIX!}_user_data` WHERE userid=%s AND `status`='CONFIRMED' LIMIT 1",
1223 array(bigintval($uid)), __FUNCTION__, __LINE__);
1225 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid},numRows=".SQL_NUMROWS($result_user).",points={$points}<br />\n";
1226 if (SQL_NUMROWS($result_user) == 1) {
1227 // This is the user and his ref
1228 list($ref, $email) = SQL_FETCHROW($result_user);
1229 $GLOBALS['cache_array']['add_uid'][$ref] = $uid;
1232 $per = getReferalLevelPercents($GLOBALS['ref_level']);
1233 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid},points={$points},depth={$GLOBALS['ref_level']},per={$per},mode={$add_mode}<br />\n";
1235 // Some percents found?
1237 // Calculate new points
1238 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid},points={$points},per={$per},depth={$GLOBALS['ref_level']}<br />\n";
1239 $ref_points = $points * $per / 100;
1241 // Pay refback here if level > 0 and in ref-mode
1242 if ((EXT_IS_ACTIVE('refback')) && ($GLOBALS['ref_level'] > 0) && ($per < 100) && ($add_mode == "ref") && (isset($GLOBALS['cache_array']['add_uid'][$uid]))) {
1243 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid},data={$GLOBALS['cache_array']['add_uid'][$uid]},ref_points={$ref_points},depth={$GLOBALS['ref_level']} - BEFORE!<br />\n";
1244 $ref_points = ADD_REFBACK_POINTS($GLOBALS['cache_array']['add_uid'][$uid], $uid, $points, $ref_points);
1245 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid},data={$GLOBALS['cache_array']['add_uid'][$uid]},ref_points={$ref_points},depth={$GLOBALS['ref_level']} - AFTER!<br />\n";
1249 SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_user_points` SET %s=%s+%s WHERE userid=%s AND ref_depth='%s' LIMIT 1",
1250 array($data, $data, $ref_points, bigintval($uid), bigintval($GLOBALS['ref_level'])), __FUNCTION__, __LINE__);
1251 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):data={$data},ref_points={$ref_points},uid={$uid},depth={$GLOBALS['ref_level']},mode={$add_mode} - UPDATE! (".SQL_AFFECTEDROWS().")<br />\n";
1253 // No entry updated?
1254 if (SQL_AFFECTEDROWS() < 1) {
1255 // First ref in this level! :-)
1256 SQL_QUERY_ESC("INSERT INTO `{!_MYSQL_PREFIX!}_user_points` (userid,ref_depth,%s) VALUES (%s,'%s',%s)",
1257 array($data, bigintval($uid), bigintval($GLOBALS['ref_level']), $ref_points), __FUNCTION__, __LINE__);
1258 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):data={$data},ref_points={$ref_points},uid={$uid},depth={$GLOBALS['ref_level']},mode={$add_mode} - INSERTED! (".SQL_AFFECTEDROWS().")<br />\n";
1261 // Update mediadata as well
1262 if (GET_EXT_VERSION('mediadata') >= '0.0.4') {
1264 MEDIA_UPDATE_ENTRY(array('total_points'), 'add', $ref_points);
1267 // Points updated, maybe I shall send him an email?
1268 if (($send_notify) && ($ref > 0) && (!$locked)) {
1272 'level' => bigintval($GLOBALS['ref_level']),
1273 'points' => $ref_points,
1274 'refid' => bigintval($ref)
1277 // Load email template
1278 $msg = LOAD_EMAIL_TEMPLATE('confirm-referal', $content, bigintval($uid));
1280 sendEmail($email, THANX_REFERRAL_ONE, $msg);
1281 } elseif (($send_notify) && ($ref == 0) && (!$locked) && ($add_mode == 'direct') && (!defined('__POINTS_VALUE'))) {
1282 // Direct payment shall be notified about
1283 define('__POINTS_VALUE', $ref_points);
1287 'text' => getMessage('REASON_DIRECT_PAYMENT'),
1288 'points' => translateComma($ref_points)
1292 $msg = LOAD_EMAIL_TEMPLATE('add-points', $content, $uid);
1295 sendEmail($email, getMessage('SUBJECT_DIRECT_PAYMENT'), $msg);
1296 if (!REQUEST_ISSET_GET(('mid'))) LOAD_TEMPLATE('admin_settings_saved', false, getMessage('ADMIN_POINTS_ADDED'));
1299 // Maybe there's another ref?
1300 if (($ref > 0) && ($points > 0) && ($ref != $uid) && ($add_mode == 'ref')) {
1301 // Then let's credit him here...
1302 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid},ref={$ref},points={$points} - ADVANCE!<br />\n";
1303 ADD_POINTS_REFSYSTEM(sprintf("%s_ref:%s", $subject, $GLOBALS['ref_level']), $ref, $points, $send_notify, $ref, $locked);
1309 SQL_FREERESULT($result_user);
1310 //* DEBUG: */ print "</li></ul>----------------------- <font color=\"#aa0000\">".__FUNCTION__." - EXIT</font> ------------------------<br />\n";
1313 // Wrapper function for ADD_POINTS_REFSYSTEM()
1314 function ADD_POINTS_REFSYSTEM_DIRECT ($subject, $uid, $points) {
1315 return ADD_POINTS_REFSYSTEM($subject, $uid, $points, false, 0, false, 'direct');
1318 // Updates the referal counter
1319 function updateReferalCounter ($uid) {
1320 // Make it sure referal level zero (member him-/herself) is at least selected
1321 if (empty($GLOBALS['cache_array']['ref_level'][$uid])) $GLOBALS['cache_array']['ref_level'][$uid] = 1;
1322 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid},level={$GLOBALS['cache_array']['ref_level'][$uid]}<br />\n";
1325 SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_refsystem` SET counter=counter+1 WHERE userid=%s AND level='%s' LIMIT 1",
1326 array(bigintval($uid), $GLOBALS['cache_array']['ref_level'][$uid]), __FUNCTION__, __LINE__);
1328 // When no entry was updated then we have to create it here
1329 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):updated=".SQL_AFFECTEDROWS()."<br />\n";
1330 if (SQL_AFFECTEDROWS() < 1) {
1332 SQL_QUERY_ESC("INSERT INTO `{!_MYSQL_PREFIX!}_refsystem` (userid, level, counter) VALUES (%s,%s,1)",
1333 array(bigintval($uid), $GLOBALS['cache_array']['ref_level'][$uid]), __FUNCTION__, __LINE__);
1334 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid}<br />\n";
1337 // Check for his referal
1338 $result = SQL_QUERY_ESC("SELECT refid FROM `{!_MYSQL_PREFIX!}_user_data` WHERE userid=%s LIMIT 1",
1339 array(bigintval($uid)), __FUNCTION__, __LINE__);
1342 list($ref) = SQL_FETCHROW($result);
1345 SQL_FREERESULT($result);
1346 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid},ref={$ref}<br />\n";
1348 // When he has a referal...
1349 if (($ref > 0) && ($ref != $uid)) {
1350 // Move to next referal level and count his counter one up!
1351 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):ref={$ref} - ADVANCE!<br />\n";
1352 $GLOBALS['cache_array']['ref_level'][$uid]++; updateReferalCounter($ref);
1353 } elseif ((($ref == $uid) || ($ref == 0)) && (GET_EXT_VERSION('cache') >= '0.1.2')) {
1354 // Remove cache here
1355 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):ref={$ref} - CACHE!<br />\n";
1356 rebuildCacheFiles('refsystem', 'refsystem');
1360 $GLOBALS['cache_array']['ref_level'][$uid]--;
1362 // Handle refback here if extension is installed
1363 if (EXT_IS_ACTIVE('refback')) {
1364 updateRefbackTable($uid);
1368 // Sends out mail to all administrators. This function is no longer obsolete
1369 // because we need it when there is no ext-admins installed
1370 function SEND_ADMIN_EMAILS ($subj, $msg) {
1371 // Load all admin email addresses
1372 $result = SQL_QUERY("SELECT email FROM `{!_MYSQL_PREFIX!}_admins` ORDER BY `id` ASC", __FUNCTION__, __LINE__);
1373 while ($content = SQL_FETCHARRAY($result)) {
1374 // Send the email out
1375 sendEmail($content['email'], $subj, $msg);
1379 SQL_FREERESULT($result);
1381 // Really simple... ;-)
1384 // Get ID number from administrator's login name
1385 function GET_ADMIN_ID ($login) {
1386 // By default no admin is found
1390 if (isset($GLOBALS['cache_array']['admins']['aid'][$login])) {
1391 // Use it if found to save SQL queries
1392 $ret = $GLOBALS['cache_array']['admins']['aid'][$login];
1394 // Update cache hits
1395 incrementConfigEntry('cache_hits');
1396 } elseif (!EXT_IS_ACTIVE('cache')) {
1397 // Load from database
1398 $result = SQL_QUERY_ESC("SELECT `id` FROM `{!_MYSQL_PREFIX!}_admins` WHERE login='%s' LIMIT 1",
1399 array($login), __FUNCTION__, __LINE__);
1400 if (SQL_NUMROWS($result) == 1) {
1401 list($ret) = SQL_FETCHROW($result);
1405 SQL_FREERESULT($result);
1410 // "Getter" for current admin id
1411 function getCurrentAdminId () {
1412 // Get the admin login from session
1413 $adminLogin = getSession('admin_login');
1415 // "Solve" it into an id
1416 $adminId = GET_ADMIN_ID($adminLogin);
1418 // Secure and return it
1419 return bigintval($adminId);
1422 // Get password hash from administrator's login name
1423 function GET_ADMIN_HASH ($aid) {
1424 // By default an invalid hash is returned
1427 if (isset($GLOBALS['cache_array']['admins']['password'][$aid])) {
1429 $ret = $GLOBALS['cache_array']['admins']['password'][$aid];
1431 // Update cache hits
1432 incrementConfigEntry('cache_hits');
1433 } elseif (!EXT_IS_ACTIVE('cache')) {
1434 // Load from database
1435 $result = SQL_QUERY_ESC("SELECT password FROM `{!_MYSQL_PREFIX!}_admins` WHERE `id`=%s LIMIT 1",
1436 array($aid), __FUNCTION__, __LINE__);
1437 if (SQL_NUMROWS($result) == 1) {
1439 list($ret) = SQL_FETCHROW($result);
1442 $GLOBALS['cache_array']['admins']['password'][$aid] = $ret;
1446 SQL_FREERESULT($result);
1451 // "Getter" for admin login
1452 function getAdminLogin ($aid) {
1453 // By default a non-existent login is returned (other functions react on this!)
1456 if (isset($GLOBALS['cache_array']['admins']['login'][$aid])) {
1458 $ret = $GLOBALS['cache_array']['admins']['login'][$aid];
1460 // Update cache hits
1461 incrementConfigEntry('cache_hits');
1462 } elseif (!EXT_IS_ACTIVE('cache')) {
1463 // Load from database
1464 $result = SQL_QUERY_ESC("SELECT login FROM `{!_MYSQL_PREFIX!}_admins` WHERE `id`=%s LIMIT 1",
1465 array(bigintval($aid)), __FUNCTION__, __LINE__);
1466 if (SQL_NUMROWS($result) == 1) {
1468 list($ret) = SQL_FETCHROW($result);
1471 $GLOBALS['cache_array']['admins']['login'][$aid] = $ret;
1475 SQL_FREERESULT($result);
1480 // Get email address of admin id
1481 function getAdminEmail ($aid) {
1482 // By default an invalid emails is returned
1485 if (isset($GLOBALS['cache_array']['admins']['email'][$aid])) {
1487 $ret = $GLOBALS['cache_array']['admins']['email'][$aid];
1489 // Update cache hits
1490 incrementConfigEntry('cache_hits');
1491 } elseif (!EXT_IS_ACTIVE('cache')) {
1492 // Load from database
1493 $result_aid = SQL_QUERY_ESC("SELECT email FROM `{!_MYSQL_PREFIX!}_admins` WHERE `id`=%s LIMIT 1",
1494 array(bigintval($aid)), __FUNCTION__, __LINE__);
1495 if (SQL_NUMROWS($result_aid) == 1) {
1497 list($ret) = SQL_FETCHROW($result_aid);
1500 $GLOBALS['cache_array']['admins']['email'][$aid] = $ret;
1504 SQL_FREERESULT($result_aid);
1511 // Get default ACL of admin id
1512 function getAdminDefaultAcl ($aid) {
1513 // By default an invalid ACL value is returned
1516 // Is sql_patches there and was it found in cache?
1517 if (!EXT_IS_ACTIVE('sql_patches')) {
1518 // Not found, which is bad, so we need to allow all
1520 } elseif (isset($GLOBALS['cache_array']['admins']['def_acl'][$aid])) {
1522 $ret = $GLOBALS['cache_array']['admins']['def_acl'][$aid];
1524 // Update cache hits
1525 incrementConfigEntry('cache_hits');
1526 } elseif (!EXT_IS_ACTIVE('cache')) {
1527 // Load from database
1528 $result_aid = SQL_QUERY_ESC("SELECT default_acl FROM `{!_MYSQL_PREFIX!}_admins` WHERE `id`=%s LIMIT 1",
1529 array(bigintval($aid)), __FUNCTION__, __LINE__);
1530 if (SQL_NUMROWS($result_aid) == 1) {
1532 list($ret) = SQL_FETCHROW($result_aid);
1535 $GLOBALS['cache_array']['admins']['def_acl'][$aid] = $ret;
1539 SQL_FREERESULT($result_aid);
1546 // Generates an option list from various parameters
1547 function generateOptionList ($table, $id, $name, $default='', $special='', $where='') {
1549 if ($table == '/ARRAY/') {
1550 // Selection from array
1551 if (is_array($id) && is_array($name) && count($id) == count($name)) {
1553 foreach ($id as $idx => $value) {
1554 $ret .= '<option value="' . $value . '"';
1555 if ($default == $value) $ret .= ' selected="selected"';
1556 $ret .= '>' . $name[$idx] . '</option>';
1560 // Data from database
1562 if (!empty($special)) $SPEC = ', ' . $special;
1563 $ORDER = $name.$SPEC;
1564 if ($table == 'country') $ORDER = $special;
1565 $result = SQL_QUERY_ESC("SELECT %s, %s".$SPEC." FROM `{!_MYSQL_PREFIX!}_%s` ".$where." ORDER BY %s",
1566 array($id, $ORDER, $table, $name), __FUNCTION__, __LINE__);
1567 if (SQL_NUMROWS($result) > 0) {
1568 // Found data so add them as OPTION lines: $id is the value and $name is the "name" of the option
1569 // @TODO Try to rewrite this to $content = SQL_FETCHARRAY()
1570 while (list($value, $title, $add) = SQL_FETCHROW($result)) {
1571 if (empty($special)) $add = '';
1572 $ret .= '<option value="' . $value . '"';
1573 if ($default == $value) $ret .= ' selected="selected"';
1574 if (!empty($add)) $add = ' ('.$add.')';
1575 $ret .= '>' . $title . $add . '</option>';
1579 SQL_FREERESULT($result);
1582 $ret = '<option value="x">{--SELECT_NONE--}</option>';
1586 // Return - hopefully - the requested data
1589 // Activate exchange
1590 function activateExchange () {
1591 // Is the extension 'user' there?
1592 if (!EXT_IS_ACTIVE('user')) {
1593 // Silently abort here
1597 // Check total amount of users
1598 $totalUsers = GET_TOTAL_DATA('CONFIRMED', 'user_data', 'userid', 'status', true, ' AND max_mails > 0');
1600 if ($totalUsers >= getConfig('activate_xchange')) {
1603 "UPDATE `{!_MYSQL_PREFIX!}_mod_reg` SET `locked`='N', `hidden`='N', `mem_only`='Y' WHERE `module`='order' LIMIT 1",
1604 "UPDATE `{!_MYSQL_PREFIX!}_member_menu` SET `visible`='Y', `locked`='N' WHERE `what`='order' OR `what`='unconfirmed' LIMIT 2",
1605 "UPDATE `{!_MYSQL_PREFIX!}_config` SET `activate_xchange`=0 WHERE `config`=0 LIMIT 1"
1609 runFilterChain('run_sqls');
1612 // @TODO Rewrite this to a filter
1613 rebuildCacheFiles('config', 'config');
1614 rebuildCacheFiles('modreg', 'modreg');
1618 // Deletes a user account with given reason
1619 function deleteUserAccount ($uid, $reason) {
1621 $result = SQL_QUERY_ESC("SELECT (SUM(p.points) - d.used_points) AS points
1622 FROM `{!_MYSQL_PREFIX!}_user_points` AS p
1623 LEFT JOIN `{!_MYSQL_PREFIX!}_user_data` AS d
1624 ON p.userid=d.userid
1625 WHERE p.userid=%s", array(bigintval($uid)), __FUNCTION__, __LINE__);
1626 if (SQL_NUMROWS($result) == 1) {
1627 // Save his points to add them to the jackpot
1628 list($points) = SQL_FETCHROW($result);
1630 // Delete points entries as well
1631 SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM `{!_MYSQL_PREFIX!}_user_points` WHERE userid=%s", array(bigintval($uid)), __FUNCTION__, __LINE__);
1633 // Update mediadata as well
1634 if (GET_EXT_VERSION('mediadata') >= '0.0.4') {
1636 MEDIA_UPDATE_ENTRY(array('total_points'), 'sub', $points);
1639 // Now, when we have all his points adds them do the jackpot!
1640 ADD_JACKPOT($points);
1644 SQL_FREERESULT($result);
1646 // Delete category selections as well...
1647 SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM `{!_MYSQL_PREFIX!}_user_cats` WHERE userid=%s",
1648 array(bigintval($uid)), __FUNCTION__, __LINE__);
1650 // Remove from rallye if found
1651 if (EXT_IS_ACTIVE('rallye')) {
1652 SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM `{!_MYSQL_PREFIX!}_rallye_users` WHERE userid=%s",
1653 array(bigintval($uid)), __FUNCTION__, __LINE__);
1656 // Now a mail to the user and that's all...
1657 $msg = LOAD_EMAIL_TEMPLATE('del-user', array('text' => $reason), $uid);
1658 sendEmail($uid, getMessage('ADMIN_DEL_ACCOUNT'), $msg);
1660 // Ok, delete the account!
1661 SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM `{!_MYSQL_PREFIX!}_user_data` WHERE userid=%s LIMIT 1", array(bigintval($uid)), __FUNCTION__, __LINE__);
1664 // Generates meta description for given module and 'what' value
1665 function generateMetaDescriptionCode ($mod, $wht) {
1666 // Exclude admin and member's area
1667 if (($mod != 'admin') && ($mod != 'login')) {
1668 // Construct dynamic description
1669 $DESCR = '{!MAIN_TITLE!} '.trim(getConfig('title_middle')) . ' ' . ADD_DESCR('guest', 'what-'.$wht, true);
1671 // Output it directly
1672 OUTPUT_HTML('<meta name="description" content="' . $DESCR . '" />');
1676 unset($GLOBALS['ref_level']);
1679 // Adds points to the jackpot
1680 function ADD_JACKPOT ($points) {
1681 $result = SQL_QUERY("SELECT points FROM `{!_MYSQL_PREFIX!}_jackpot` WHERE ok='ok' LIMIT 1", __FUNCTION__, __LINE__);
1682 if (SQL_NUMROWS($result) == 0) {
1684 SQL_QUERY_ESC("INSERT INTO `{!_MYSQL_PREFIX!}_jackpot` (ok, points) VALUES ('ok','%s')", array($points), __FUNCTION__, __LINE__);
1687 SQL_FREERESULT($result);
1690 SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_jackpot` SET points=points+%s WHERE ok='ok' LIMIT 1",
1691 array($points), __FUNCTION__, __LINE__);
1695 // Subtracts points from the jackpot
1696 function SUB_JACKPOT ($points) {
1700 // Get current points
1701 $result = SQL_QUERY("SELECT points FROM `{!_MYSQL_PREFIX!}_jackpot` WHERE ok='ok' LIMIT 1", __FUNCTION__, __LINE__);
1702 if (SQL_NUMROWS($result) == 0) {
1704 SQL_QUERY("INSERT INTO `{!_MYSQL_PREFIX!}_jackpot` (ok, points) VALUES ('ok', 0.00000)", __FUNCTION__, __LINE__);
1707 list($jackpot) = SQL_FETCHROW($result);
1708 if ($jackpot >= $points) {
1709 // Update points when there are enougth points in jackpot
1710 SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_jackpot` SET points=points-%s WHERE ok='ok' LIMIT 1",
1711 array($points), __FUNCTION__, __LINE__);
1712 $ret = $jackpot - $points;
1717 SQL_FREERESULT($result);
1720 // Checks wether the extension demo is actuve and the admin login is demo (password needs to be demo, too!)
1721 function IS_DEMO () {
1722 return ((EXT_IS_ACTIVE('demo')) && (getSession('admin_login') == 'demo'));
1725 // Gets the matching what name from module
1726 function getWhatFromModule ($modCheck) {
1727 // Is the request element set?
1728 if (REQUEST_ISSET_GET('what')) {
1729 // Then return this!
1730 return REQUEST_GET('what');
1736 //* DEBUG: */ echo __LINE__.'!'.$modCheck."!<br />\n";
1737 switch ($modCheck) {
1745 if (($modCheck == 'index') && (getConfig('index_home') != '')) $wht = getConfig('index_home');
1753 // Return what value
1757 // Subtract points from database and mediadata cache
1758 function SUB_POINTS ($subject, $uid, $points) {
1759 // Add points to used points
1760 SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_user_data` SET `used_points`=`used_points`+%s WHERE userid=%s LIMIT 1",
1761 array($points, bigintval($uid)), __FUNCTION__, __LINE__);
1763 // Insert booking record
1764 // @TODO Rewrite this to a filter
1765 if (EXT_IS_ACTIVE('booking')) {
1767 ADD_BOOKING_RECORD($subject, $uid, $points, 'sub');
1770 // Update mediadata as well
1771 if (GET_EXT_VERSION('mediadata') >= '0.0.4') {
1773 MEDIA_UPDATE_ENTRY(array('total_points'), 'sub', $points);
1777 // Update config entries
1778 function updateConfiguration ($entries, $values, $updateMode='') {
1779 // Do not update config in CSS mode
1780 if ((getOutputMode() == '1') || (getOutputMode() == -1)) {
1784 // Do we have multiple entries?
1785 if (is_array($entries)) {
1788 foreach ($entries as $idx => $entry) {
1790 if (!empty($updateMode)) {
1792 // @TODO Find a way for updating $_CONFIG here
1793 $all .= sprintf("%s=%s%s%s,", $entry, $entry, $updateMode, (float)$values[$idx]);
1795 // Check if string or number
1796 if (($values[$idx] + 0) === $values[$idx]) {
1798 $all .= sprintf("%s=%s,", $entry, (float)$values[$idx]);
1799 } elseif ($values[$idx] == 'UNIX_TIMESTAMP()') {
1800 // Function UNIX_TIMESTAMP() detected
1801 $all .= sprintf("%s=%s,", $entry, $values[$idx]);
1804 $all .= sprintf("%s='%s',", $entry, SQL_ESCAPE($values[$idx]));
1808 // Set it in config as well
1809 setConfigEntry($entry, $values[$idx]);
1812 // Remove last comma
1813 $entries = substr($all, 0, -1);
1814 } elseif (!empty($updateMode)) {
1816 // @TODO Find a way for updating $_CONFIG here
1817 $entries .= sprintf("=%s%s%s", $entries, $updateMode, (float)$values);
1819 // Set it in config first
1820 setConfigEntry($entries, $values);
1822 // Regular entry to update
1823 $entries .= sprintf("='%s'", SQL_ESCAPE($values));
1826 // Run database update
1827 //* DEBUG: */ DEBUG_LOG(__FUNCTION__, __LINE__, "entries={$entries}");
1828 SQL_QUERY("UPDATE `{!_MYSQL_PREFIX!}_config` SET ".$entries." WHERE config=0 LIMIT 1", __FUNCTION__, __LINE__);
1830 // Get affected rows
1831 $affectedRows = SQL_AFFECTEDROWS();
1832 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):entries={$entries},affectedRows={$affectedRows}<br />\n";
1835 rebuildCacheFiles('config', 'config');
1838 // Prepares an SQL statement part for HTML mail and/or holiday depency
1839 // @TODO Can this be rewritten to a filter?
1840 function PREPARE_SQL_HTML_HOLIDAY ($mode) {
1841 // Exclude no users by default
1845 if ($mode == 'html') $MORE = " AND `html`='Y'";
1846 if (GET_EXT_VERSION('holiday') >= '0.1.3') {
1847 // Add something for the holiday extension
1848 $MORE .= " AND `holiday_active`='N'";
1855 // "Getter" for total available receivers
1856 function getTotalReceivers ($mode='normal') {
1858 $result_all = SQL_QUERY("SELECT userid
1859 FROM `{!_MYSQL_PREFIX!}_user_data`
1860 WHERE `status`='CONFIRMED' AND receive_mails > 0 ".PREPARE_SQL_HTML_HOLIDAY($mode),
1861 __FUNCTION__, __LINE__);
1864 $numRows = SQL_NUMROWS($result_all);
1867 SQL_FREERESULT($result_all);
1873 // Returns HTML code with an "<option> list" of all categories
1874 function generateCategoryOptionsList ($mode) {
1875 // Prepare WHERE statement
1876 $whereStatement = " WHERE `visible`='Y'";
1877 if (IS_ADMIN()) $whereStatement = '';
1879 // Initialize array...
1887 $result = SQL_QUERY("SELECT id, cat FROM `{!_MYSQL_PREFIX!}_cats`".$whereStatement." ORDER BY `sort`", __FUNCTION__, __LINE__);
1888 if (SQL_NUMROWS($result) > 0) {
1889 // ... and begin loading stuff
1890 while ($content = SQL_FETCHARRAY($result)) {
1891 // Transfer some data
1892 $CATS['id'][] = $content['id'];
1893 $CATS['name'][] = $content['cat'];
1895 // Check which users are in this category
1896 $result_uids = SQL_QUERY_ESC("SELECT userid FROM `{!_MYSQL_PREFIX!}_user_cats` WHERE cat_id=%s",
1897 array(bigintval($content['id'])), __FUNCTION__, __LINE__);
1901 // @TODO Rewrite this to $content = SQL_FETCHARRAY()
1902 while (list($ucat) = SQL_FETCHROW($result_uids)) {
1903 $result_ver = SQL_QUERY_ESC("SELECT userid FROM `{!_MYSQL_PREFIX!}_user_data`
1904 WHERE userid=%s AND `status`='CONFIRMED' AND receive_mails > 0".PREPARE_SQL_HTML_HOLIDAY($mode)." LIMIT 1",
1905 array(bigintval($ucat)), __FUNCTION__, __LINE__);
1908 $uid_cnt += SQL_NUMROWS($result_ver);
1911 SQL_FREERESULT($result_ver);
1915 SQL_FREERESULT($result_uids);
1918 $CATS['uids'][] = $uid_cnt;
1922 SQL_FREERESULT($result);
1926 foreach ($CATS['id'] as $key => $value) {
1927 if (strlen($CATS['name'][$key]) > 20) $CATS['name'][$key] = substr($CATS['name'][$key], 0, 17)."...";
1928 $OUT .= ' <option value="' . $value . '">' . $CATS['name'][$key] . ' (' . $CATS['uids'][$key] . ' {--USER_IN_CAT--})</option>';
1931 // No cateogries are defined yet
1932 $OUT = '<option class="member_failed">{!MEMBER_NO_CATS!}</option>';
1939 // Add bonus mail to queue
1940 function addBonusMailToQueue ($subject, $text, $receiverList, $points, $seconds, $url, $cat, $mode='normal', $receiver=0) {
1941 // Is admin or bonus extension there?
1945 } elseif (!EXT_IS_ACTIVE('bonus')) {
1950 // Calculcate target sent
1951 $target = countSelection(explode(';', $receiverList));
1953 // Receiver is zero?
1954 if ($receiver == 0) {
1956 $receiver = $target;
1959 // HTML extension active?
1960 if (EXT_IS_ACTIVE('html_mail')) {
1961 // No HTML by default
1965 if ($mode == 'html') $HTML = 'Y';
1968 SQL_QUERY_ESC("INSERT INTO `{!_MYSQL_PREFIX!}_bonus`
1969 (subject, text, receivers, points, time, data_type, timestamp, url, cat_id, target_send, mails_sent, html_msg)
1970 VALUES ('%s','%s','%s','%s','%s','NEW', UNIX_TIMESTAMP(),'%s','%s','%s','%s','%s')",
1980 bigintval($receiver),
1982 ), __FUNCTION__, __LINE__);
1985 SQL_QUERY_ESC("INSERT INTO `{!_MYSQL_PREFIX!}_bonus`
1986 (subject, text, receivers, points, time, data_type, timestamp, url, cat_id, target_send, mails_sent)
1987 VALUES ('%s','%s','%s','%s','%s','NEW', UNIX_TIMESTAMP(),'%s','%s','%s','%s')",
1997 bigintval($receiver),
1998 ), __FUNCTION__, __LINE__);
2002 // Generate a receiver list for given category and maximum receivers
2003 function generateReceiverList ($cat, $receiver, $mode = '') {
2011 $cat = bigintval($cat);
2012 $receiver = bigintval($receiver);
2014 // Is the receiver zero and mode set?
2015 if (($receiver == 0) && (!empty($mode))) {
2016 // Auto-fix receiver maximum
2017 $receiver = getTotalReceivers($mode);
2023 $CAT_TABS = "LEFT JOIN `{!_MYSQL_PREFIX!}_user_cats` AS c ON d.userid=c.userid";
2024 $CAT_WHERE = " AND c.cat_id=%s";
2027 // Exclude users in holiday?
2028 if (GET_EXT_VERSION('holiday') >= '0.1.3') {
2029 // Add something for the holiday extension
2030 $CAT_WHERE .= " AND d.`holiday_active`='N'";
2033 if ((EXT_IS_ACTIVE('html_mail')) && ($mode == 'html')) {
2034 // Only include HTML receivers
2035 $result = SQL_QUERY_ESC("SELECT d.userid FROM `{!_MYSQL_PREFIX!}_user_data` AS d ".$CAT_TABS." WHERE d.`status`='CONFIRMED' AND d.`html`='Y'".$CAT_WHERE." ORDER BY d.%s %s LIMIT %s",
2036 array($cat, getConfig('order_select'), getConfig('order_mode'), $receiver), __FUNCTION__, __LINE__);
2039 $result = SQL_QUERY_ESC("SELECT d.userid FROM `{!_MYSQL_PREFIX!}_user_data` AS d ".$CAT_TABS." WHERE d.`status`='CONFIRMED'".$CAT_WHERE." ORDER BY d.%s %s LIMIT %s",
2040 array($cat, getConfig('order_select'), getConfig('order_mode'), $receiver), __FUNCTION__, __LINE__);
2044 if ((SQL_NUMROWS($result) >= $receiver) && ($receiver > 0)) {
2046 while ($content = SQL_FETCHARRAY($result)) {
2047 // Add receiver when not empty
2048 if (!empty($content['userid'])) $receiverList .= $content['userid'] . ';';
2052 SQL_FREERESULT($result);
2054 // Remove trailing semicolon
2055 $receiverList = substr($receiverList, 0, -1);
2059 return $receiverList;
2062 // Get timestamp for given stats type and data
2063 function getTimestampFromUserStats ($type, $data, $uid = 0) {
2064 // Default timestamp is zero
2068 if ((isUserIdSet()) && ($uid == 0)) {
2072 // Is the extension installed and updated?
2073 if ((!EXT_IS_ACTIVE('sql_patches')) || (EXT_VERSION_IS_OLDER('sql_patches', '0.5.6'))) {
2078 // Try to find the entry
2079 $result = SQL_QUERY_ESC("SELECT UNIX_TIMESTAMP(`inserted`) AS `stamp`
2080 FROM `{!_MYSQL_PREFIX!}_user_stats_data`
2081 WHERE userid=%s AND stats_type='%s' AND stats_data='%s'
2083 array(bigintval($uid), $type, $data), __FUNCTION__, __LINE__);
2085 // Is the entry there?
2086 if (SQL_NUMROWS($result) == 1) {
2088 list($stamp) = SQL_FETCHROW($result);
2092 SQL_FREERESULT($result);
2098 // Inserts user stats
2099 function insertUserStatsRecord ($uid, $type, $data) {
2100 // Is the extension installed and updated?
2101 if ((!EXT_IS_ACTIVE('sql_patches')) || (EXT_VERSION_IS_OLDER('sql_patches', '0.5.6'))) {
2107 if ((!getTimestampFromUserStats($type, $data, $uid)) && (!is_array($data))) {
2109 SQL_QUERY_ESC("INSERT INTO `{!_MYSQL_PREFIX!}_user_stats_data` (`userid`,`stats_type`,`stats_data`) VALUES (%s,'%s','%s')",
2110 array(bigintval($uid), $type, $data), __FUNCTION__, __LINE__);
2111 } elseif (is_array($data)) {
2113 DEBUG_LOG(__FUNCTION__, __LINE__, " uid={$uid},type={$type},data={".gettype($data).": Invalid statistics data type!");
2117 // "Getter" for array for user refs and points in given level
2118 function getUserReferalPoints ($uid, $level) {
2119 //* DEBUG: */ print "----------------------- <font color=\"#00aa00\">".__FUNCTION__." - ENTRY</font> ------------------------<ul><li>\n";
2120 // Default is no refs and no nickname
2124 // Do we have nickname extension installed?
2125 if (EXT_IS_ACTIVE('nickname')) {
2126 $add = ', ud.nickname';
2129 // Get refs from database
2130 $result = SQL_QUERY_ESC("SELECT ur.id, ur.refid, ud.status, ud.last_online, ud.mails_confirmed, ud.emails_received".$add."
2131 FROM `{!_MYSQL_PREFIX!}_user_refs` AS ur
2132 LEFT JOIN `{!_MYSQL_PREFIX!}_user_points` AS up
2133 ON ur.refid=up.userid AND ur.level=0
2134 LEFT JOIN `{!_MYSQL_PREFIX!}_user_data` AS ud
2135 ON ur.refid=ud.userid
2136 WHERE ur.userid=%s AND ur.level=%s
2137 ORDER BY ur.refid ASC",
2138 array(bigintval($uid), bigintval($level)), __FUNCTION__, __LINE__);
2140 // Are there some entries?
2141 if (SQL_NUMROWS($result) > 0) {
2142 // Fetch all entries
2143 while ($row = SQL_FETCHARRAY($result)) {
2144 // Get total points of this user
2145 $row['points'] = GET_TOTAL_DATA($row['refid'], 'user_points', 'points') - GET_TOTAL_DATA($row['refid'], 'user_data', 'used_points');
2147 // Get unconfirmed mails
2148 $row['unconfirmed'] = GET_TOTAL_DATA($row['refid'], 'user_links', 'id', 'userid', true);
2150 // Init clickrate with zero
2151 $row['clickrate'] = 0;
2153 // Is at least one mail received?
2154 if ($row['emails_received'] > 0) {
2155 // Calculate clickrate
2156 $row['clickrate'] = ($row['mails_confirmed'] / $row['emails_received'] * 100);
2159 // Activity is 'active' by default because if autopurge is not installed
2160 $row['activity'] = getMessage('MEMBER_ACTIVITY_ACTIVE');
2162 // Is autopurge installed and the user inactive?
2163 if ((EXT_IS_ACTIVE('autopurge')) && ((time() - getConfig('ap_inactive_since')) >= $row['last_online'])) {
2165 $row['activity'] = getMessage('MEMBER_ACTIVITY_INACTIVE');
2168 // Remove some entries
2169 unset($row['mails_confirmed']);
2170 unset($row['emails_received']);
2171 unset($row['last_online']);
2174 $refs[$row['id']] = $row;
2179 SQL_FREERESULT($result);
2182 //* DEBUG: */ print "</li></ul>----------------------- <font color=\"#aa0000\">".__FUNCTION__." - EXIT</font> ------------------------<br />\n";
2186 // Recuce the amount of received emails for the receipients for given email
2187 function reduceRecipientReceivedMails ($column, $id, $count) {
2188 // Search for mail in database
2189 $result = SQL_QUERY_ESC("SELECT `userid` FROM `{!_MYSQL_PREFIX!}_user_links` WHERE `%s`=%s ORDER BY `userid` ASC LIMIT %s",
2190 array($column, bigintval($id), $count), __FUNCTION__, __LINE__);
2192 // Are there entries?
2193 if (SQL_NUMROWS($result) > 0) {
2194 // Now load all userids for one big query!
2195 // @TODO This can be somehow rewritten
2197 while (list($uid) = SQL_FETCHROW($result)) {
2201 // Now update all user accounts
2202 SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_user_data` SET `emails_received`=`emails_received`-1 WHERE `userid` IN (%s) LIMIT %s",
2203 array(implode(',', $UIDs), count($UIDs)), __FUNCTION__, __LINE__);
2207 SQL_FREERESULT($result);
2211 function INIT_SQLS () {
2215 // Checks wether the sqls array is initialized
2216 function IS_SQLS_INITIALIZED () {
2217 return ((isset($GLOBALS['sqls'])) && (is_array($GLOBALS['sqls'])));
2220 // Setter for SQLs array
2221 function SET_SQLS ($SQLs) {
2222 $GLOBALS['sqls'] = (array) $SQLs;
2225 // Remover for SQLs array
2226 function UNSET_SQLS () {
2227 unset($GLOBALS['sqls']);
2230 // Getter for SQLs array
2231 function GET_SQLS () {
2232 return $GLOBALS['sqls'];
2235 // Add an SQL to the list
2236 function ADD_SQL ($sql) {
2237 //* DEBUG: */ DEBUG_LOG(__FUNCTION__, __LINE__, sprintf("sql=%s, count=%d", $sql, COUNT_SQLS()));
2238 $GLOBALS['sqls'][] = (string) $sql;
2241 // Setter for SQLs key
2242 function SET_SQL_KEY ($key, $value) {
2243 $GLOBALS['sqls'][$key] = (string) $value;
2246 // Merge SQLs together
2247 function MERGE_SQLS ($SQLs) {
2248 SET_SQLS(merge_array(GET_SQLS(), $SQLs));
2251 // Counter for SQLs array
2252 function COUNT_SQLS () {
2256 // Is the array there?
2257 if (IS_SQLS_INITIALIZED()) {
2259 $count = count($GLOBALS['sqls']);
2260 //* DEBUG: */ DEBUG_LOG(__FUNCTION__, __LINE__, sprintf("count=%d", $count));
2267 // Checks wether the SQLs array is filled
2268 function IS_SQLS_VALID () {
2270 (IS_SQLS_INITIALIZED()) &&