+ // Update?
+ if ($UPDATE) {
+ // Update his data
+ $sql = "UPDATE `{!_MYSQL_PREFIX!}_sponsor_data` SET ";
+ foreach ($DATA['keys'] as $k => $v) {
+ $sql .= $v."='%s', ";
+ }
+
+ // Remove last ", " from SQL string
+ $sql = substr($sql, 0, -2)." WHERE `id`='%s' LIMIT 1";
+ $DATA['values'][] = bigintval(REQUEST_GET('id'));
+
+ // Generate message
+ $message = SPONSOR_GET_MESSAGE(ADMIN_SPONSOR_UPDATED, "updated", $messageArray);
+ $ret = "updated";
+ } elseif ((!$ALREADY) || (($POST['force'] == '1') && (IS_ADMIN()))) {
+ // Add new sponsor, first add more data
+ $DATA['keys'][] = "sponsor_created"; $DATA['values'][] = time();
+ $DATA['keys'][] = 'status';
+ if ((!$NO_UPDATE) && (IS_ADMIN()) && ($GLOBALS['what'] == "add_sponsor")) {
+ // Only allowed for admin
+ $DATA['values'][] = 'PENDING';
+ } else {
+ // Guest area
+ $DATA['values'][] = 'UNCONFIRMED';
+
+ // Generate hash code
+ $DATA['keys'][] = "hash";
+ $DATA['values'][] = md5(session_id().':'.$POST['email'].':'.detectRemoteAddr().':'.detectUserAgent().':'.time());
+ $DATA['keys'][] = "remote_addr";
+ $DATA['values'][] = detectRemoteAddr();
+ }
+
+ // Implode all data into strings
+ $KEYS = implode(", " , $DATA['keys']);
+ $valueS = str_repeat("%s', '", count($DATA['values']) - 1);
+
+ // Generate string
+ $sql = "INSERT INTO `{!_MYSQL_PREFIX!}_sponsor_data` (".$KEYS.") VALUES ('".$valueS."%s')";
+
+ // Generate message
+ $message = SPONSOR_GET_MESSAGE(getMessage('ADMIN_SPONSOR_ADDED'), "added", $messageArray);
+ $ret = "added";
+ } elseif ((!$NO_UPDATE) && (IS_ADMIN())) {
+ // Add all data as hidden data
+ $OUT = '';
+ foreach ($POST as $k => $v) {
+ // Do not add 'force' !
+ if ($k != "force") {
+ $OUT .= "<input type=\"hidden\" name=\"".$k."\" value=\"".stripslashes($v)."\" />\n";
+ }
+ }
+ define('__HIDDEN_DATA', $OUT);
+ define('__EMAIL' , $POST['email']);