* -------------------------------------------------------------------- *
* Kurzbeschreibung : Manuell einem Mitglied Punkte gutschreiben *
* -------------------------------------------------------------------- *
- * *
+ * $Revision:: $ *
+ * $Date:: $ *
+ * $Tag:: 0.2.1-FINAL $ *
+ * $Author:: $ *
+ * Needs to be in all Files and every File needs "svn propset *
+ * svn:keywords Date Revision" (autoprobset!) at least!!!!!! *
* -------------------------------------------------------------------- *
* Copyright (c) 2003 - 2008 by Roland Haeder *
* For more information visit: http://www.mxchange.org *
// Some security stuff...
if ((!defined('__SECURITY')) || (!IS_ADMIN())) {
- $INC = substr(dirname(__FILE__), 0, strpos(dirname(__FILE__), "/inc") + 4) . "/security.php";
+ $INC = substr(dirname(__FILE__), 0, strpos(dirname(__FILE__), '/inc') + 4) . '/security.php';
require($INC);
}
// Add description as navigation point
-ADD_DESCR("admin", __FILE__);
+ADD_DESCR('admin', __FILE__);
// Fix a notice
-if (!isset($_GET['u_id'])) $_GET['u_id'] = "";
+if (!REQUEST_ISSET_GET('uid')) REQUEST_SET_GET('uid', '');
-if ($_GET['u_id'] == "all")
-{
+if (REQUEST_GET('uid') == "all") {
// Add points to all accounts
- define('__POINTS_VALUE', $_POST['points']);
- if ((isset($_POST['ok'])) && ($_POST['points'] > 0))
- {
- $result_main = SQL_QUERY("SELECT userid FROM `"._MYSQL_PREFIX."_user_data` WHERE status='CONFIRMED' ORDER BY userid", __FILE__, __LINE__);
- while (list($uid) = SQL_FETCHROW($result_main))
- {
- // User ID found in URL so we use this give him some credits
- $result = SQL_QUERY_ESC("SELECT surname, family, email FROM `"._MYSQL_PREFIX."_user_data` WHERE userid=%s AND status='CONFIRMED' LIMIT 1",
- array(bigintval($uid)), __FILE__, __LINE__);
- if (SQL_NUMROWS($result) == 1)
- {
- // Selected user does exist
- list($sname, $fname, $email) = SQL_FETCHROW($result);
- SQL_FREERESULT($result);
-
- if ((isset($_POST['ok'])) && (!empty($_POST['points'])))
- {
- // Ok, add points to used points and send an email to him...
- SUB_POINTS("admin_all", $uid, $_POST['points']);
-
- // Prepare content
- $content = array(
- 'text' => SQL_ESCAPE($_POST['reason']),
- 'points' => bigintval($_POST['points'])
- );
-
- // Load message and send it away
- $msg = LOAD_EMAIL_TEMPLATE("sub-points", $content, bigintval($uid));
- SEND_EMAIL(bigintval($uid), ADMIN_SUB_SUBJ, $msg);
- }
- }
- }
+ // @TODO Rewrite this constant
+ define('__POINTS_VALUE', REQUEST_POST('points'));
+
+ // Is the form sent?
+ if ((isFormSent()) && (REQUEST_POST('points') > 0)) {
+ $result_main = SQL_QUERY("SELECT userid, email FROM `{!_MYSQL_PREFIX!}_user_data` WHERE `status`='CONFIRMED' ORDER BY `userid` ASC",
+ __FILE__, __LINE__);
+ while ($content = SQL_FETCHARRAY($result_main)) {
+ // Ok, add points to used points and send an email to him...
+ SUB_POINTS("admin_all", $content['userid'], REQUEST_POST('points'));
+
+ // Add more content
+ $content['text'] = SQL_ESCAPE(REQUEST_POST('reason'));
+ $content['points'] = bigintval(REQUEST_POST('points'));
+
+ // Load message and send it away
+ $msg = LOAD_EMAIL_TEMPLATE("sub-points", $content, bigintval($content['userid']));
+ sendEmail($content['email'], getMessage('ADMIN_SUB_SUBJ'), $msg);
+ } // END - while
+
// Free memory
SQL_FREERESULT($result_main);
// Output message
- LOAD_TEMPLATE("admin_settings_saved", false, ADMIN_ALL_POINTS_SUBTRACTED);
- }
- else
- {
+ LOAD_TEMPLATE('admin_settings_saved', false, getMessage('ADMIN_ALL_POINTS_SUBTRACTED'));
+ } else {
// Display form add points
LOAD_TEMPLATE("admin_sub_points_all");
}
-}
- elseif (!empty($_GET['u_id']))
-{
+} elseif (REQUEST_ISSET_GET('uid')) {
// User ID found in URL so we use this give him some credits
- $result = SQL_QUERY_ESC("SELECT surname, family, email FROM `"._MYSQL_PREFIX."_user_data` WHERE userid=%s AND status='CONFIRMED' LIMIT 1",
- array(bigintval($_GET['u_id'])),__FILE__, __LINE__);
- if (SQL_NUMROWS($result) == 1)
- {
+ $result = SQL_QUERY_ESC("SELECT surname, family, email FROM `{!_MYSQL_PREFIX!}_user_data` WHERE userid=%s AND `status`='CONFIRMED' LIMIT 1",
+ array(bigintval(REQUEST_GET('uid'))),__FILE__, __LINE__);
+ if (SQL_NUMROWS($result) == 1) {
// Selected user does exist
- list($sname, $fname, $email) = SQL_FETCHROW($result);
- SQL_FREERESULT($result);
+ $content = SQL_FETCHARRAY($result);
- if ((isset($_POST['ok'])) && (!empty($_POST['points'])))
- {
+ if ((isFormSent()) && (REQUEST_ISSET_POST(('points')))) {
// Ok, add to used points and send an email to him...
- SUB_POINTS("admin_single", bigintval($_GET['u_id']), $_POST['points']);
+ SUB_POINTS("admin_single", bigintval(REQUEST_GET('uid')), REQUEST_POST('points'));
- // Prepare content
- $content = array(
- 'text' => SQL_ESCAPE($_POST['reason']),
- 'points' => bigintval($_POST['points'])
- );
+ // Add more content
+ $content['text'] = SQL_ESCAPE(REQUEST_POST('reason'));
+ $content['points'] = bigintval(REQUEST_POST('points'));
// Load email and send it away
- $msg = LOAD_EMAIL_TEMPLATE("sub-points", $content, bigintval($_GET['u_id']));
- SEND_EMAIL(bigintval($_GET['u_id']), ADMIN_SUB_SUBJ, $msg);
+ $msg = LOAD_EMAIL_TEMPLATE("sub-points", $content, bigintval(REQUEST_GET('uid')));
+ sendEmail($content['email'], getMessage('ADMIN_SUB_SUBJ'), $msg);
// Output message
- LOAD_TEMPLATE("admin_settings_saved", false, ADMIN_POINTS_SUBTRACTED);
- }
- else
- {
- // Opps, missing form here
- define('__USER_VALUE', "<A href=\"".CREATE_EMAIL_LINK($email, "user_data")."\">".$sname." ".$fname."</A>");
- define('__UID', bigintval($_GET['u_id']));
+ LOAD_TEMPLATE('admin_settings_saved', false, getMessage('ADMIN_POINTS_SUBTRACTED'));
+ } else {
+ // @TODO Rewrite these constants
+ define('__USER_VALUE', "<a href=\"".generateMemberEmailLink($content['email'], "user_data")."\">".$content['surname']." ".$content['family']."</a>");
+ define('__UID', bigintval(REQUEST_GET('uid')));
+
+ // Load form
LOAD_TEMPLATE("admin_sub_points");
}
- }
- else
- {
+ } else {
// User not found!
- OUTPUT_HTML("<STRONG class=\"admin_failed\">".ADMIN_MEMBER_404_1.$_GET['u_id'].ADMIN_MEMBER_404_2."</STRONG>");
+ LOAD_TEMPLATE('admin_settings_saved', false, "<div class=\"admin_failed\">".sprintf(getMessage('ADMIN_MEMBER_404'), REQUEST_GET('uid'))."</div>");
}
-}
- else
-{
+
+ // Free result
+ SQL_FREERESULT($result);
+} else {
// Output selection form with all confirmed user accounts listed
- ADD_MEMBER_SELECTION_BOX("0", true);
+ ADD_MEMBER_SELECTION_BOX('0', true);
}
//