<?php
/************************************************************************
- * MXChange v0.2.1 Start: 05/08/2004 *
- * ================ Last change: 08/12/2004 *
+ * Mailer v0.2.1-FINAL Start: 05/08/2004 *
+ * =================== Last change: 08/12/2004 *
* *
* -------------------------------------------------------------------- *
* File : what-list_payouts.php *
* $Date:: $ *
* $Tag:: 0.2.1-FINAL $ *
* $Author:: $ *
- * Needs to be in all Files and every File needs "svn propset *
- * svn:keywords Date Revision" (autoprobset!) at least!!!!!! *
* -------------------------------------------------------------------- *
- * Copyright (c) 2003 - 2008 by Roland Haeder *
- * For more information visit: http://www.mxchange.org *
+ * Copyright (c) 2003 - 2009 by Roland Haeder *
+ * Copyright (c) 2009 - 2012 by Mailer Developer Team *
+ * For more information visit: http://mxchange.org *
* *
* This program is free software; you can redistribute it and/or modify *
* it under the terms of the GNU General Public License as published by *
************************************************************************/
// Some security stuff...
-if ((!defined('__SECURITY')) || (!IS_ADMIN())) {
- $INC = substr(dirname(__FILE__), 0, strpos(dirname(__FILE__), '/inc') + 4) . '/security.php';
- require($INC);
-}
+if ((!defined('__SECURITY')) || (!isAdmin())) {
+ die();
+} // END - if
// Add description as navigation point
-ADD_DESCR('admin', __FILE__);
+addYouAreHereLink('admin', __FILE__);
-if (REQUEST_ISSET_GET(('pid'))) {
- // First let's get the member's ID
- $result = SQL_QUERY_ESC("SELECT userid, target_account, payout_total, payout_timestamp, password FROM `{!_MYSQL_PREFIX!}_user_payouts` WHERE `id`=%s LIMIT 1",
- array(REQUEST_GET('pid')), __FILE__, __LINE__);
- list($uid, $tuid, $points, $tstamp, $tpass) = SQL_FETCHROW($result);
+if (isGetRequestElementSet('pid')) {
+ // First let's get the member's id
+ $result = SQL_QUERY_ESC("SELECT `userid`,`target_account`,`payout_total`,`payout_timestamp`,`password` FROM `{?_MYSQL_PREFIX?}_user_payouts` WHERE `id`=%s LIMIT 1",
+ array(getRequestElement('pid')), __FILE__, __LINE__);
+ list($userid, $tuserid, $points, $tstamp, $tpass) = SQL_FETCHROW($result);
SQL_FREERESULT($result);
// Obtain some data
- if (!REQUEST_ISSET_GET(('task')) && (!empty($uid)) && ($uid > 0)) {
- // Get task ID from database
- $result = SQL_QUERY_ESC("SELECT `id` FROM `{!_MYSQL_PREFIX!}_task_system` WHERE userid=%s AND `task_type`='PAYOUT_REQUEST' AND task_created='".$tstamp."' LIMIT 1",
- array(bigintval($uid)), __FILE__, __LINE__);
- list($task) = SQL_FETCHROW($result);
+ if (!isGetRequestElementSet('task') && (!empty($userid)) && (isValidUserId($userid))) {
+ // Get task id from database
+ $result = SQL_QUERY_ESC("SELECT `id` FROM `{?_MYSQL_PREFIX?}_task_system` WHERE `userid`=%s AND `task_type`='PAYOUT_REQUEST' AND `task_created`=%s LIMIT 1",
+ array(bigintval($userid), bigintval($tstamp)), __FILE__, __LINE__);
+ list($taskId) = SQL_FETCHROW($result);
SQL_FREERESULT($result);
- if (empty($task)) $task = 0;
- } elseif ((empty($uid)) || ($uid == '0')) {
- // Cannot obtain member ID!
- LOAD_TEMPLATE('admin_settings_saved', false, getMessage('PAYOUT_FAILED_OBTAIN_USERID'));
+ if (empty($taskId)) $taskId = '0';
+ } elseif ((empty($userid)) || ($userid == '0')) {
+ // Cannot obtain member id!
+ displayMessage('{--ADMIN_PAYOUT_FAILED_OBTAIN_USERID--}');
} else {
- // Get task ID from URL
- $task = REQUEST_GET('task');
+ // Get task id from URL
+ $taskId = getRequestElement('task');
}
- if ((!empty($task)) && (!empty($uid)) && ($uid > 0)) {
+ if ((!empty($taskId)) && (!empty($userid)) && (isValidUserId($userid))) {
// Load user's data
- $result = SQL_QUERY_ESC("SELECT email, gender, surname, family FROM `{!_MYSQL_PREFIX!}_user_data` WHERE userid=%s LIMIT 1",
- array(bigintval($uid)), __FILE__, __LINE__);
- list($email, $gender, $surname, $family) = SQL_FETCHROW($result);
- SQL_FREERESULT($result);
+ if (!fetchUserData($userid)) {
+ // Abort here because it is not valid!
+ reportBug(__FILE__, __LINE__, 'No user account ' . $userid . ' found.');
+ } // END - if
- // Konstante bauen
- define('PAYOUT_USERDATA_VALUE', "<a href=\"".generateMemberEmailLink($email, "user_data")."\">".translateGender($gender)." ".$surname." ".$family."</a>");
-
- if ((REQUEST_GET('do') == "accept") && (!empty($email))) {
+ if ((getRequestElement('do') == 'accept') && (getUserData('email') != '')) {
// Ok, now we can output the form or execute accepting
- if (IS_FORM_SENT()) {
+ if (isFormSent()) {
// Obtain payout type and other data
- $result = SQL_QUERY_ESC("SELECT payout_id FROM `{!_MYSQL_PREFIX!}_user_payouts` WHERE `id`=%s LIMIT 1",
- array(bigintval(REQUEST_GET('pid'))), __FILE__, __LINE__);
+ $result = SQL_QUERY_ESC("SELECT `payout_id` FROM `{?_MYSQL_PREFIX?}_user_payouts` WHERE `id`=%s LIMIT 1",
+ array(bigintval(getRequestElement('pid'))), __FILE__, __LINE__);
+
+ // Load ptype (id)
list($ptype) = SQL_FETCHROW($result);
+
+ // Free result
SQL_FREERESULT($result);
if (!empty($ptype)) {
// Obtain data from payout type
- $result = SQL_QUERY_ESC("SELECT from_account, from_pass, engine_url, engine_ret_ok, engine_ret_failed, pass_enc, allow_url FROM `{!_MYSQL_PREFIX!}_payout_types` WHERE `id`=%s LIMIT 1",
- array(bigintval($ptype)), __FILE__, __LINE__);
- list($fuid, $fpass, $eurl, $eok, $failed, $eenc, $allow) = SQL_FETCHROW($result);
+ $result = SQL_QUERY_ESC("SELECT
+ `from_account`,`from_pass`,`engine_url`,`engine_ret_ok`,`engine_ret_failed`,`pass_enc`,`allow_url`
+FROM
+ `{?_MYSQL_PREFIX?}_payout_types`
+WHERE
+ `id`=%s
+LIMIT 1",
+ array(bigintval($ptype)), __FILE__, __LINE__);
+
+ // Load data
+ $data = SQL_FETCHARRAY($result);
+
+ // Free result
SQL_FREERESULT($result);
- if (!empty($eurl)) {
+ if (!empty($data['engine_url'])) {
// Ok, run URL...
- $eurl = COMPILE_CODE($eurl);
- switch ($eenc)
- {
- case "md5":
- $fpass = md5($fpass);
- $tpass = md5($tpass);
- break;
-
- case "base64":
- $fpass = base64_encode($fpass);
- $tpass = base64_encode($tpass);
- break;
- }
+ switch ($data['pass_enc']) {
+ case 'md5':
+ $data['from_pass'] = md5($data['from_pass']);
+ $tpass = md5($tpass);
+ break;
+
+ case 'base64':
+ $data['from_pass'] = base64_encode($data['from_pass']);
+ $tpass = base64_encode($tpass);
+ break;
+ } // END - switch
// Transfer variables...
- $eval = "\$URL = \"".$eurl."\";";
- $reason = encodeString(getMessage('PAYOUT_REASON_PAYOUT'), false);
-
- // Run code...
- eval($eval);
+ $reason = encodeString(getMessage('ADMIN_PAYOUT_REASON'), false);
// Execute transfer
- $ret = sendGetRequest($URL);
+ $ret = sendGetRequest($data['engine_url']);
} else {
// No URL to run
- $ret[0] = $eok;
+ $ret[0] = $data['engine_ret_ok'];
}
- if ($ret[0] == $eok) {
+ if ($ret[0] == $data['engine_ret_ok']) {
// Clear task
- if ($task > 0) {
- runFilterChain('solve_task', $task);
- }
+ if ($taskId > 0) {
+ runFilterChain('solve_task', $taskId);
+ } // END - if
// Clear payout request
- SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_user_payouts` SET `status`='ACCEPTED' WHERE `id`=%s LIMIT 1",
- array(bigintval(REQUEST_GET('pid'))), __FILE__, __LINE__);
+ SQL_QUERY_ESC("UPDATE `{?_MYSQL_PREFIX?}_user_payouts` SET `status`='ACCEPTED' WHERE `id`=%s LIMIT 1",
+ array(bigintval(getRequestElement('pid'))), __FILE__, __LINE__);
// Send out mail
- $msg = LOAD_EMAIL_TEMPLATE("member_payout_accepted", REQUEST_POST('text'), $uid);
+ $message = loadEmailTemplate('member_payout_accepted', postRequestElement('text'), $userid);
// Output message
- if ($allow == 'Y') {
+ if ($data['allow_url'] == 'Y') {
// Banner / Textlink request
- LOAD_TEMPLATE('admin_settings_saved', false, getMessage('PAYOUT_BANNER_ACCEPTED_NOTIFIED'));
+ displayMessage('{--ADMIN_PAYOUT_BANNER_ACCEPTED_NOTIFIED--}');
} else {
// Normal request
- LOAD_TEMPLATE('admin_settings_saved', false, getMessage('PAYOUT_ACCEPTED_NOTIFIED'));
+ displayMessage('{--ADMIN_PAYOUT_ACCEPTED_NOTIFIED--}');
}
// Finally send mail
- sendEmail($email, getMessage('PAYOUT_ACCEPTED_SUBJECT'), $msg);
+ sendEmail(getUserData('userid'), '{--MEMBER_PAYOUT_ACCEPTED_SUBJECT--}', $message);
} else {
// Something goes wrong... :-(
- $content = implode("<br />", $ret);
- LOAD_TEMPLATE("admin_payout_failed_transfer", false, $content);
+ $content = implode('<br />', $ret);
+ loadTemplate('admin_payout_failed_transfer', false, $content);
}
} else {
// Cannot load payout id
- LOAD_TEMPLATE('admin_settings_saved', false, "<div class=\"admin_failed\">{--PAYOUT_FAILED_OBTAIN_PAYOUT_ID--}</div>");
+ loadTemplate('admin_settings_unsaved', false, '{--ADMIN_PAYOUT_FAILED_OBTAIN_PAYOUT_ID--}');
}
} else {
// Prepare content
$content = array(
- 'task' => $task,
- 'pid' => bigintval(REQUEST_GET('pid'))
+ 'task' => $taskId,
+ 'pid' => bigintval(getRequestElement('pid')),
+ 'user' => '<a href="' . generateEmailLink(getUserData('email'), 'user_data') . '">{%pipe,translateGender=' . getUserData('gender') . '%} ' . getUserData('surname') . ' ' . getUserData('family') . '</a>',
);
// Load template
- LOAD_TEMPLATE("admin_payout_accept_form", false, $content);
+ loadTemplate('admin_payout_accept_form', false, $content);
}
- } elseif ((REQUEST_GET('do') == "reject") && (!empty($email))) {
+ } elseif ((getRequestElement('do') == 'reject') && (getUserData('email') != '')) {
// Ok, now we can output the form or execute rejecting
- if (IS_FORM_SENT()) {
- if ($task > 0) {
+ if (isFormSent()) {
+ if ($taskId > 0) {
// Clear task
- runFilterChain('solve_task', $task);
- }
+ runFilterChain('solve_task', $taskId);
+ } // END - if
// Clear payout request
- SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_user_payouts` SET `status`='REJECTED' WHERE `id`=%s LIMIT 1",
- array(bigintval(REQUEST_GET('pid'))), __FILE__, __LINE__);
+ SQL_QUERY_ESC("UPDATE `{?_MYSQL_PREFIX?}_user_payouts` SET `status`='REJECTED' WHERE `id`=%s LIMIT 1",
+ array(bigintval(getRequestElement('pid'))), __FILE__, __LINE__);
// Send out mail
- $msg = LOAD_EMAIL_TEMPLATE("member_payout_rejected", REQUEST_POST('text'), $uid);
+ $message = loadEmailTemplate('member_payout_rejected', postRequestElement('text'), $userid);
// Output message
- LOAD_TEMPLATE('admin_settings_saved', false, getMessage('PAYOUT_REJECTED_NOTIFIED'));
+ displayMessage('{--ADMIN_PAYOUT_REJECTED_NOTIFIED--}');
// Finally send mail
- sendEmail($email, getMessage('PAYOUT_REJECTED_SUBJECT'), $msg);
+ sendEmail(getUserData('userid'), '{--MEMBER_PAYOUT_REJECTED_SUBJECT--}', $message);
} else {
// Prepare content
$content = array(
- 'task' => $task
- 'pid' => bigintval(REQUEST_GET('pid'))
+ 'task' => $taskId,
+ 'pid' => bigintval(getRequestElement('pid')),
+ 'user' => '<a href="' . generateEmailLink(getUserData('email'), 'user_data') . '">{%pipe,translateGender=' . getUserData('gender') . '%} ' . getUserData('surname') . ' ' . getUserData('family') . '</a>',
);
// Load template
- LOAD_TEMPLATE("admin_payout_reject_form", false, $content);
+ loadTemplate('admin_payout_reject_form', false, $content);
}
} else {
// Cannot load user data
- LOAD_TEMPLATE('admin_settings_saved', false, getMessage('PAYOUT_FAILED_OBTAIN_USERDATA'));
+ displayMessage('{--ADMIN_PAYOUT_FAILED_OBTAIN_USERDATA--}');
}
- } elseif ((empty($task)) || ($task == '0')) {
- // Failed loading task ID
- LOAD_TEMPLATE('admin_settings_saved', false, getMessage('PAYOUT_FAILED_OBTAIN_TASK_ID'));
+ } elseif ((empty($taskId)) || ($taskId == '0')) {
+ // Failed loading task id
+ displayMessage('{--ADMIN_PAYOUT_FAILED_OBTAIN_TASK_ID--}');
}
} else {
- if (!REQUEST_ISSET_GET('do')) REQUEST_SET_GET('do', '');
-
- if (REQUEST_GET('do') == "delete") {
+ if (getRequestElement('do') == 'delete') {
// Delete all requests
- $result = SQL_QUERY("DELETE LOW_PRIORITY FROM `{!_MYSQL_PREFIX!}_user_payouts`", __FILE__, __LINE__);
- }
+ $result = SQL_QUERY("TRUNCATE `{?_MYSQL_PREFIX?}_user_payouts`", __FILE__, __LINE__);
+ } // END - if
// Search for payouts
- $result = SQL_QUERY("SELECT p.id, p.userid AS uid, p.payout_total, p.target_account, p.target_bank, t.type, p.payout_timestamp, p.status, t.allow_url AS allow, p.target_url AS url, p.link_text AS alt, p.banner_url AS banner
-FROM `{!_MYSQL_PREFIX!}_user_payouts` AS p, `{!_MYSQL_PREFIX!}_payout_types` AS t
-WHERE p.payout_id=t.id
-ORDER BY p.payout_timestamp DESC", __FILE__, __LINE__);
-
- if (SQL_NUMROWS($result) > 0) {
+ $result = SQL_QUERY("SELECT
+ p.id, p.userid, p.payout_total, p.target_account,
+ p.target_bank, t.type, p.payout_timestamp, p.status,
+ t.allow_url AS allow, p.target_url AS url, p.link_text AS alt,
+ p.banner_url AS banner
+FROM
+ `{?_MYSQL_PREFIX?}_user_payouts` AS p
+LEFT JOIN
+ `{?_MYSQL_PREFIX?}_payout_types` AS t
+ON
+ p.payout_id=t.id
+ORDER BY
+ p.payout_timestamp DESC", __FILE__, __LINE__);
+
+ if (!SQL_HASZERONUMS($result)) {
// List found payouts
- $OUT = ''; $SW = 2;
+ $OUT = '';
while ($content = SQL_FETCHARRAY($result)) {
- if ($content['status'] == "NEW") {
+ if ($content['status'] == 'NEW') {
// Generate links for direct accepting and rejecting
- $content['status'] = "<a href=\"{!URL!}/modules.php?module=admin&what=list_payouts&do=accept&pid=".$content['id']."\">".PAYOUT_ACCEPT_PAYOUT."</a> | <a href=\"{!URL!}/modules.php?module=admin&what=list_payouts&do=reject&pid=".$content['id']."\">".PAYOUT_REJECT_PAYOUT."</a>";
+ $content['status'] = '<a href="{%url=modules.php?module=admin&what=list_payouts&do=accept&pid=' . $content['id'] . '%}">{--ADMIN_PAYOUT_ACCEPT_PAYOUT--}</a>|<a href="{%url=modules.php?module=admin&what=list_payouts&do=reject&pid=' . $content['id'] . '%}">{--ADMIN_PAYOUT_REJECT_PAYOUT--}</a>';
} else {
// Translate status
- $content['status'] = constant('PAYOUT_STATUS_'.strtoupper($content['status']).'');
- $content['status'] = "<div class=\"admin_failed\">".$content['status']."</div>";
+ $content['status'] = translatePayoutStatus($content['status']);
}
// Nothing entered must be secured in member/what-payputs.php !
// Banner/Textlink views/clicks request
if (!empty($content['banner'])) {
// Load template for the banner
- $content['target_account'] = LOAD_TEMPLATE("admin_list_payouts_banner", true, $content);
+ $content['target_account'] = loadTemplate('admin_list_payouts_banner', true, $content);
} else {
// Textlink
- $content['target_account'] = LOAD_TEMPLATE("admin_list_payouts_txt", true, $content);
+ $content['target_account'] = loadTemplate('admin_list_payouts_txt', true, $content);
}
// Admins can addionally test the URL for framekillers
- $content['target_bank'] = "<a href=\"".FRAMETESTER($content['url'])."\" target=\"_blank\">{--CLICK_HERE--}</a>";
- } else {
- // e-currency payout request
- if (empty($content['target_account'])) $content['target_account'] = '---';
- if (empty($content['target_bank'])) $content['target_bank'] = '---';
- }
+ $content['target_bank'] = '<a href="' . generateFrametesterUrl($content['url']) . '" target="_blank">{--CLICK_HERE--}</a>';
+ } // END - if
- // Remember data in array for the template
- $content = array(
- 'sw' => $SW,
- 'ulink' => generateUserProfileLink($content['userid']),
- 'ptype' => translateComma($content['payout_total'])." ".COMPILE_CODE($content['type']),
- 'account' => $content['target_account'],
- 'bank' => $content['target_bank'],
- 'tstamp' => generateDateTime($content['payout_timestamp'], '2'),
- 'status' => $content['status'],
- );
+ // Add/Translate some data
+ $content['payout_timestamp'] = generateDateTime($content['payout_timestamp'], 2);
// Add row and switch color
- $OUT .= LOAD_TEMPLATE("admin_list_payouts_row", true, $content);
- $SW = 3 - $SW;
- }
+ $OUT .= loadTemplate('admin_list_payouts_row', true, $content);
+ } // END - while
// Free memory
SQL_FREERESULT($result);
- define('__PAYOUT_ROWS', $OUT);
// Load final template
- LOAD_TEMPLATE("admin_list_payouts");
+ loadTemplate('admin_list_payouts', false, $OUT);
} else {
// No payout requests are sent so far
- LOAD_TEMPLATE('admin_settings_saved', false, getMessage('PAYOUT_ADMIN_NO_REQUESTS_FOUND'));
+ displayMessage('{--ADMIN_PAYOUT_NO_REQUESTS_FOUND--}');
}
}
-//
+
+// [EOF]
?>