- switch ($STATUS)
- {
- case "added": // Sponsor successfully added with account status = UNCONFIRMED!
- // Check for his ID number
- $result = SQL_QUERY_ESC("SELECT id, hash FROM `{!_MYSQL_PREFIX!}_sponsor_data` WHERE email='%s' LIMIT 1",
- array(REQUEST_POST('email')), __FILE__, __LINE__);
- if (SQL_NUMROWS($result) == 1) {
- // ID found so let's load it for the confirmation email
- list($id, $hash) = SQL_FETCHROW($result);
-
- // Prepare data for the email template
- define('__ID' , $id);
- define('__HASH' , $hash);
- define('__EMAIL' , REQUEST_POST('email'));
- define('__SURNAME' , REQUEST_POST('surname'));
- define('__FAMILY' , REQUEST_POST('family'));
- define('__GENDER' , TRANSLATE_GENDER(REQUEST_POST('gender')));
- define('__TIMESTAMP', MAKE_DATETIME(time(), 0));
- define('__PASSWORD' , REQUEST_POST('pass1'));
-
- // Generate email and send it to the new sponsor
- $EMAIL_MSG = LOAD_EMAIL_TEMPLATE("sponsor_confirm", $hash);
- SEND_EMAIL(REQUEST_POST('email'), getMessage('SPONSOR_PLEASE_CONFIRM_SUBJ'), $EMAIL_MSG);
-
- // Send mail to admin
- SEND_ADMIN_NOTIFICATION(getMessage('ADMIN_NEW_SPONSOR'), "admin_sponsor_reg", $hash);
-
- // Output message: DONE
- $MSG = $MSGs['added'];
- } else {
- // Sponsor account not found???
- $MSG = sprintf(getMessage('SPONSOR_EMAIL_404'), REQUEST_POST('email'));
- }
-
- // Free memory
- SQL_FREERESULT($result);
- break;
+ switch ($STATUS) {
+ case 'added': // Sponsor successfully added with account status = UNCONFIRMED!
+ // Check for his id number
+ $result = SQL_QUERY_ESC("SELECT `id`, `hash` FROM `{?_MYSQL_PREFIX?}_sponsor_data` WHERE `email`='%s' LIMIT 1",
+ array(postRequestElement('email')), __FILE__, __LINE__);
+ if (SQL_NUMROWS($result) == 1) {
+ // id found so let's load it for the confirmation email
+ list($id, $hash) = SQL_FETCHROW($result);
+
+ // Prepare data for the email template
+ $content['id'] = $id;
+ $content['hash'] = $hash;
+ $content['email'] = secureString(postRequestElement('email'));
+ $content['surname'] = secureString(postRequestElement('surname'));
+ $content['family'] = secureString(postRequestElement('family'));
+ $content['gender'] = translateGender(postRequestElement('gender'));
+ $content['timestamp'] = generateDateTime(time(), 0);
+ $content['password'] = secureString(postRequestElement('pass1'));
+
+ // Generate email and send it to the new sponsor
+ $message = loadEmailTemplate('sponsor_confirm', $hash);
+ sendEmail(postRequestElement('email'), getMessage('SPONSOR_PLEASE_CONFIRM_SUBJ'), $message);
+
+ // Send mail to admin
+ sendAdminNotification(getMessage('ADMIN_NEW_SPONSOR'), 'admin_sponsor_reg', $hash);
+
+ // Output message: DONE
+ $message = $messageArray['added'];
+ } else {
+ // Sponsor account not found???
+ $message = sprintf(getMessage('SPONSOR_EMAIL_404'), postRequestElement('email'));
+ }