* -------------------------------------------------------------------- *
* Kurzbeschreibung : Das Mitglied ueber ein Formular kontaktieren *
* -------------------------------------------------------------------- *
- * *
+ * $Revision:: $ *
+ * $Date:: $ *
+ * $Tag:: 0.2.1-FINAL $ *
+ * $Author:: $ *
+ * Needs to be in all Files and every File needs "svn propset *
+ * svn:keywords Date Revision" (autoprobset!) at least!!!!!! *
* -------------------------------------------------------------------- *
- * Copyright (c) 2003 - 2008 by Roland Haeder *
+ * Copyright (c) 2003 - 2009 by Roland Haeder *
* For more information visit: http://www.mxchange.org *
* *
* This program is free software; you can redistribute it and/or modify *
************************************************************************/
// Some security stuff...
-if ((!defined('__SECURITY')) || (!is_admin())) {
- $INC = substr(dirname(__FILE__), 0, strpos(dirname(__FILE__), "/inc") + 4) . "/security.php";
- require($INC);
-}
+if ((!defined('__SECURITY')) || (!isAdmin())) {
+ die();
+} // END - if
// Add description as navigation point
-ADD_DESCR("admin", basename(__FILE__));
+addMenuDescription('admin', __FILE__);
// Is a user id given?
-if ((isset($_GET['u_id'])) && (bigintval($_GET['u_id']) > 0)) {
+if ((isGetRequestElementSet('userid')) && (bigintval(getRequestElement('userid')) > 0)) {
// Load user data and display it
- $result = SQL_QUERY_ESC("SELECT surname, family, email FROM "._MYSQL_PREFIX."_user_data WHERE userid=%s LIMIT 1",
- array(bigintval($_GET['u_id'])), __FILE__, __LINE__);
+ $result = SQL_QUERY_ESC("SELECT `surname`, `family`, `email` FROM `{?_MYSQL_PREFIX?}_user_data` WHERE `userid`=%s LIMIT 1",
+ array(bigintval(getRequestElement('userid'))), __FILE__, __LINE__);
// Is a user account found?
if (SQL_NUMROWS($result) == 1) {
$content = SQL_FETCHARRAY($result);
// Including user ID
- $content['u_id'] = bigintval($_GET['u_id']);
+ $content['userid'] = bigintval(getRequestElement('userid'));
// Shall we send the email?
- if (isset($_POST['ok'])) {
+ if (isFormSent()) {
// Insert text
- $content['text'] = trim(strip_tags($_POST['text']));
+ $content['text'] = trim(secureString(postRequestElement('text')));
// Send contact form out
- $msg = LOAD_EMAIL_TEMPLATE("member_contct", $content);
- SEND_EMAIL($content['email'], ADMIN_CONTACT_USER_SUBJECT, $msg);
- LOAD_TEMPLATE("admin_settings_saved", false, ADMIN_USER_CONTACTED);
+ $message = loadEmailTemplate('member_contct', $content);
+ sendEmail($content['email'], getMessage('ADMIN_CONTACT_USER_SUBJECT'), $message);
+ loadTemplate('admin_settings_saved', false, getMessage('ADMIN_USER_CONTACTED'));
} else {
// Load contact form template
- LOAD_TEMPLATE("admin_contct_user_form", false, $content);
+ loadTemplate('admin_contct_user_form', false, $content);
}
} else {
// Not found?
- LOAD_TEMPLATE("admin_settings_saved", false, sprintf(USER_ACCOUNT_404, bigintval($_GET['u_id'])));
+ loadTemplate('admin_settings_saved', false, sprintf(getMessage('USER_ACCOUNT_404'), bigintval(getRequestElement('userid'))));
}
// Free result
SQL_FREERESULT($result);
} else {
// Display selection box
- ADD_MEMBER_SELECTION_BOX();
+ addMemberSelectionBox();
}
-//
+// [EOF]
?>