* Copyright (c) 2003 - 2008 by Roland Haeder *
* For more information visit: http://www.mxchange.org *
* *
- * This program is free software. You can redistribute it and/or modify *
+ * This program is free software; you can redistribute it and/or modify *
* it under the terms of the GNU General Public License as published by *
- * the Free Software Foundation; either version 2 of the License. *
+ * the Free Software Foundation; either version 2 of the License, or *
+ * (at your option) any later version. *
* *
* This program is distributed in the hope that it will be useful, *
* but WITHOUT ANY WARRANTY; without even the implied warranty of *
************************************************************************/
// Some security stuff...
-if ((!defined('__SECURITY')) || (!is_admin())) {
+if ((!defined('__SECURITY')) || (!IS_ADMIN())) {
$INC = substr(dirname(__FILE__), 0, strpos(dirname(__FILE__), "/inc") + 4)."/security.php";
require($INC);
}
// Add description as navigation point
-ADD_DESCR("admin", basename(__FILE__));
+ADD_DESCR("admin", __FILE__);
+
$MSG = "";
-if (isset($_POST['add'])) {
+if (REQUEST_ISSET_POST(('add'))) {
// Check input variables
- if (empty($_POST['pay_name'])) unset($_POST['add']);
- if ((round($_POST['pay_rate']) == 0) || (empty($_POST['pay_rate']))) unset($_POST['add']);
- $_POST['pay_min_count'] = bigintval($_POST['pay_min_count']);
- if (($_POST['pay_min_count'] == 0) || (empty($_POST['pay_min_count']))) unset($_POST['add']);
- if (empty($_POST['pay_currency'])) unset($_POST['add']);
-} elseif ((isset($_POST['edit'])) || (isset($_POST['del'])) || (isset($_POST['change'])) || (isset($_POST['remove']))) {
+ if (!REQUEST_ISSET_POST(('pay_name'))) REQUEST_UNSET_POST(('add'));
+ if ((round(REQUEST_POST('pay_rate')) == 0) || (!REQUEST_ISSET_POST(('pay_rate')))) REQUEST_UNSET_POST(('add'));
+
+ REQUEST_SET_POST('pay_min_count', bigintval(REQUEST_POST('pay_min_count')));
+
+ if ((REQUEST_POST('pay_min_count') == 0) || (!REQUEST_ISSET_POST(('pay_min_count')))) REQUEST_UNSET_POST(('add'));
+ if (!REQUEST_ISSET_POST(('pay_currency'))) REQUEST_UNSET_POST(('add'));
+
+} elseif ((REQUEST_ISSET_POST(('edit'))) || (REQUEST_ISSET_POST(('del'))) || (REQUEST_ISSET_POST(('change'))) || (REQUEST_ISSET_POST(('remove')))) {
// Check if at least one entry was selected
- if (empty($_POST['id'])) {
+ if (!REQUEST_ISSET_POST(('id'))) {
// Nothing selected for editing / deleting???
- unset($_POST['edit']);
- unset($_POST['del']);
- unset($_POST['change']);
- unset($_POST['remove']);
- } elseif (isset($_POST['change'])) {
+ REQUEST_UNSET_POST(('edit'));
+ REQUEST_UNSET_POST(('del'));
+ REQUEST_UNSET_POST(('change'));
+ REQUEST_UNSET_POST(('remove'));
+ } elseif (REQUEST_ISSET_POST(('change'))) {
// Change entries here...
- foreach ($_POST['id'] as $id => $sel) {
+ foreach (REQUEST_POST('id') as $id => $sel) {
// Secure ID
$id = bigintval($id);
// Save entry
- $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_sponsor_paytypes
+ SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_sponsor_paytypes`
SET pay_name='%s', pay_rate='%s', pay_min_count='%s', pay_currency='%s' WHERE id='%s' LIMIT 1",
- array($_POST['name'][$id], $_POST['rate'][$id], bigintval($_POST['min'][$id]), $_POST['curr'][$id], $id),
- __FILE__, __LINE__);
+ array(
+ REQUEST_POST('name', $id),
+ REQUEST_POST('rate', $id),
+ bigintval(REQUEST_POST('min', $id)),
+ REQUEST_POST('curr', $id),
+ $id
+ ), __FILE__, __LINE__);
}
// Generate message
- $MSG = SPONSOR_PAY_ENTRIES_CHANGED;
- } elseif (isset($_POST['remove'])) {
+ $MSG = getMessage('SPONSOR_PAY_ENTRIES_CHANGED');
+ } elseif (REQUEST_ISSET_POST(('remove'))) {
// Remove entries here...
- foreach ($_POST['id'] as $id => $sel) {
+ foreach (REQUEST_POST('id') as $id => $sel) {
// Remove entry
- $result = SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM "._MYSQL_PREFIX."_sponsor_paytypes WHERE id='%s' LIMIT 1",
- array(bigintval($id)), __FILE__, __LINE__);
+ SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM `{!_MYSQL_PREFIX!}_sponsor_paytypes` WHERE id='%s' LIMIT 1",
+ array(bigintval($id)), __FILE__, __LINE__);
}
// Generate message
- $MSG = SPONSOR_PAY_ENTRIES_REMOVED;
+ $MSG = getMessage('SPONSOR_PAY_ENTRIES_REMOVED');
}
if (!empty($MSG)) {
// Output message
LOAD_TEMPLATE("admin_settings_saved", false, $MSG);
- OUTPUT_HTML("<br />");
}
}
-if (isset($_POST['add'])) {
+if (REQUEST_ISSET_POST(('add'))) {
// Check if entry with same name does exists
- $result = SQL_QUERY_ESC("SELECT id FROM "._MYSQL_PREFIX."_sponsor_paytypes WHERE pay_name='%s' LIMIT 1",
- array($_POST['pay_name']), __FILE__, __LINE__);
+ $result = SQL_QUERY_ESC("SELECT id FROM `{!_MYSQL_PREFIX!}_sponsor_paytypes` WHERE pay_name='%s' LIMIT 1",
+ array(REQUEST_POST('pay_name')), __FILE__, __LINE__);
if (SQL_NUMROWS($result) == 0) {
// No entry found so add this line
- $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_sponsor_paytypes (pay_name, pay_rate, pay_min_count, pay_currency)
- VALUES ('%s','%s','%s','%s')",
- array(htmlspecialchars($_POST['pay_name']), str_replace(",", ".", $_POST['pay_rate']), bigintval($_POST['pay_min_count']), htmlspecialchars($_POST['pay_currency'])),
- __FILE__, __LINE__);
+ SQL_QUERY_ESC("INSERT INTO `{!_MYSQL_PREFIX!}_sponsor_paytypes` (pay_name, pay_rate, pay_min_count, pay_currency) VALUES ('%s','%s','%s','%s')",
+ array(
+ htmlspecialchars(REQUEST_POST('pay_name')),
+ REVERT_COMMA(REQUEST_POST('pay_rate')),
+ bigintval(REQUEST_POST('pay_min_count')),
+ htmlspecialchars(REQUEST_POST('pay_currency'))
+ ), __FILE__, __LINE__);
// Payment type added!
- $MSG = SPONSOR_ADMIN_PAYTYPE_ADDED_1.$_POST['pay_name'].SPONSOR_ADMIN_PAYTYPE_ADDED_2;
+ $MSG = ADMIN_SPONSOR_PAYTYPE_ADDED_1.REQUEST_POST('pay_name').ADMIN_SPONSOR_PAYTYPE_ADDED_2;
} else {
// Free memory
SQL_FREERESULT($result);
// Entry does already exists
- $MSG = SPONSOR_ADMIN_PAYTYPE_ALREADY_1.$_POST['pay_name'].SPONSOR_ADMIN_PAYTYPE_ALREADY_2;
+ $MSG = ADMIN_SPONSOR_PAYTYPE_ALREADY_1.REQUEST_POST('pay_name').ADMIN_SPONSOR_PAYTYPE_ALREADY_2;
}
// Output message
LOAD_TEMPLATE("admin_settings_saved", false, $MSG);
- OUTPUT_HTML("<br />");
-} elseif ((isset($_POST['edit'])) || (isset($_POST['del']))) {
+} elseif ((REQUEST_ISSET_POST(('edit'))) || (REQUEST_ISSET_POST(('del')))) {
// Load all data
$OUT = ""; $SW = 2;
- foreach ($_POST['id'] as $id => $sel) {
+ foreach (REQUEST_POST('id') as $id => $sel) {
// Load entry
- $result = SQL_QUERY_ESC("SELECT pay_name, pay_rate, pay_min_count, pay_currency FROM "._MYSQL_PREFIX."_sponsor_paytypes WHERE id='%s' LIMIT 1",
+ $result = SQL_QUERY_ESC("SELECT pay_name, pay_rate, pay_min_count, pay_currency FROM `{!_MYSQL_PREFIX!}_sponsor_paytypes` WHERE id='%s' LIMIT 1",
array(bigintval($id)), __FILE__, __LINE__);
if (SQL_NUMROWS($result) == 1) {
// Load data
'curr' => htmlspecialchars($curr)
);
- if (isset($_POST['edit'])) {
+ if (REQUEST_ISSET_POST(('edit'))) {
// Edit entry
$OUT .= LOAD_TEMPLATE("admin_list_sponsor_pay_edit_row", true, $content);
} else {
define('__SPONSOR_ROWS', $OUT);
// Load main template depending on mode (edit/delete)
- if (isset($_POST['edit'])) {
+ if (REQUEST_ISSET_POST(('edit'))) {
// Load main edit template
LOAD_TEMPLATE("admin_list_sponsor_pay_edit");
} else {
}
} else {
// Load all payment types
- $result = SQL_QUERY("SELECT id, pay_name, pay_rate, pay_min_count, pay_currency FROM "._MYSQL_PREFIX."_sponsor_paytypes ORDER BY pay_name",
+ $result = SQL_QUERY("SELECT id, pay_name, pay_rate, pay_min_count, pay_currency FROM `{!_MYSQL_PREFIX!}_sponsor_paytypes` ORDER BY pay_name",
__FILE__, __LINE__);
// Do we have some paytypes setup?
$SW = 2; $OUT = "";
// List alle found payment types
- while(list($id, $name, $rate, $min, $currency) = SQL_FETCHROW($result)) {
+ while (list($id, $name, $rate, $min, $currency) = SQL_FETCHROW($result)) {
// Remember data in array
$content = array(
'sw' => $SW,
define('__LIST_CONTENT', LOAD_TEMPLATE("admin_list_sponsor_pay", true));
} else {
// Noting setup so far!
- define('__LIST_CONTENT', LOAD_TEMPLATE("admin_settings_saved", true, SPONSOR_ADMIN_NO_PAYTYPES));
+ define('__LIST_CONTENT', LOAD_TEMPLATE("admin_settings_saved", true, getMessage('ADMIN_SPONSOR_NO_PAYTYPES')));
}
// Add new payment types here