-// Check if refid is set
-if ((!empty($_GET['user'])) && ($CLICK == 1) && ($_SERVER['PHP_SELF'] == "click.php")) {
- // The variable user comes from the click-counter script click.php and we only accept this here
- $GLOBALS['refid'] = bigintval($_GET['user']);
-} elseif (!empty($_POST['refid'])) {
- // Get referral id from variable refid (so I hope this makes my script more compatible to other scripts)
- $GLOBALS['refid'] = SQL_ESCAPE(strip_tags($_POST['refid']));
-} elseif (!empty($_GET['refid'])) {
- // Get referral id from variable refid (so I hope this makes my script more compatible to other scripts)
- $GLOBALS['refid'] = SQL_ESCAPE(strip_tags($_GET['refid']));
-} elseif (!empty($_GET['ref'])) {
- // Set refid=ref (the referral link uses such variable)
- $GLOBALS['refid'] = SQL_ESCAPE(strip_tags($_GET['ref']));
-} elseif (isSessionVariableSet('refid')) {
- // Set session refid als global
- $GLOBALS['refid'] = bigintval(get_session('refid'));
-} elseif (GET_EXT_VERSION("sql_patches") != '') {
- // Set default refid as refid in URL
- $GLOBALS['refid'] = bigintval($_CONFIG['def_refid']);
-} else {
- // No default ID when sql_patches is not installed
- $GLOBALS['refid'] = 0;
-}
+// Transfer userid from session and validate it
+if (isSessionVariableSet('userid')) {
+ // Get it secured from session
+ setUserId(getSession('userid'));