<?php
/************************************************************************
- * MXChange v0.2.1 Start: 10/24/2003 *
- * =============== Last change: 06/30/2004 *
+ * Mailer v0.2.1-FINAL Start: 10/24/2003 *
+ * =================== Last change: 06/30/2004 *
* *
* -------------------------------------------------------------------- *
* File : frametester.php *
* -------------------------------------------------------------------- *
* Kurzbeschreibung : Testet die Mitgliedsseite gegen Frame-Killer *
* -------------------------------------------------------------------- *
- * *
+ * $Revision:: $ *
+ * $Date:: $ *
+ * $Tag:: 0.2.1-FINAL $ *
+ * $Author:: $ *
* -------------------------------------------------------------------- *
- * Copyright (c) 2003 - 2008 by Roland Haeder *
- * For more information visit: http://www.mxchange.org *
+ * Copyright (c) 2003 - 2009 by Roland Haeder *
+ * Copyright (c) 2009 - 2012 by Mailer Developer Team *
+ * For more information visit: http://mxchange.org *
* *
* This program is free software; you can redistribute it and/or modify *
* it under the terms of the GNU General Public License as published by *
// Some security stuff...
if (!defined('__SECURITY')) {
- $INC = substr(dirname(__FILE__), 0, strpos(dirname(__FILE__), "/inc") + 4) . "/security.php";
- require($INC);
-}
+ exit();
+} // END - if
-$MODE = "guest";
+$mode = 'guest';
-if (!empty($_GET['order'])) {
+if (isGetRequestElementSet('order')) {
// Order number placed, is he also logged in?
- if (IS_MEMBER()) {
+ if (isMember()) {
// Ok, test passed... :)
- $result = SQL_QUERY_ESC("SELECT subject, url FROM "._MYSQL_PREFIX."_pool WHERE id=%s AND sender=%s AND data_type='TEMP' LIMIT 1",
- array(bigintval($_GET['order']), $GLOBALS['userid']), __FILE__, __LINE__);
+ $content = getPoolDataFromId(getRequestElement('order'));
// Finally is the entry valid?
- if (SQL_NUMROWS($result) == 1) {
+ if ((count($content) > 0) && ($content['data_type'] == 'TEMP')) {
// Load subject and URL (but forwhat do we need the subject line here???
- list($sub, $url) = SQL_FETCHROW($result);
+ list($url) = SQL_FETCHROW($result);
// This fixes a white page
- $_POST['url'] = $url;
+ setPostRequestElement('url', $url);
// Mode is member
- $MODE = "member";
+ $mode = 'member';
} else {
- // Matching line not found!
- LOAD_URL("modules.php?module=index&what=login");
+ // Matching line not found
+ redirectToUrl('modules.php?module=index&what=login');
}
-
- // Free memory
- SQL_FREERESULT($result);
} else {
// He is no longer logged in
- LOAD_URL("modules.php?module=index&what=login");
+ redirectToUrl('modules.php?module=index&what=login');
}
-}
+} // END - if
-if ((!empty($_POST['url'])) || (!empty($_GET['url'])) || (!empty($_GET['frame']))) {
+if ((isPostRequestElementSet('url')) || (isGetRequestElementSet('url')) || (!isFullPage())) {
// Default URL is ours
- $url = URL;
+ $url = getUrl();
- // Decode URL if set in GET parameters
- if (!empty($_GET['url'])) $url = gzuncompress(base64_decode(str_replace(" ", "+", COMPILE_CODE(urldecode($_GET['url'])))));
-
- // Use URL from POST data if set
- if (!empty($_POST['url'])) $url = $_POST['url'];
+ // Use URL from POST or GET data if set
+ if (isPostRequestElementSet('url')) {
+ // POST data comes first
+ $url = postRequestElement('url');
+ } elseif (isGetRequestElementSet('url')) {
+ // Then GET data
+ $url = decodeString(str_replace(' ', '+', compileUriCode(urldecode(getRequestElement('url')))));
+ }
// Add missing element
- $frame = "";
- if (!empty($_GET['frame'])) $frame = SQL_ESCAPE($_GET['frame']);
- switch ($frame)
- {
- case "":
- switch ($MODE)
- {
- case "member":
- // Build frameset
- define('__ORDER_VALUE', bigintval($_GET['order']));
- define('__URL_VALUE' , DEREFERER($url));
- LOAD_TEMPLATE("member_order_frametester");
- break;
+ $frame = '';
+ if (!isFullPage()) {
+ $frame = getRequestElement('frame');
+ } // END - if
- case "guest":
- define('__URL_VALUE' , DEREFERER($url));
- LOAD_TEMPLATE("guest_frametester");
+ // Switch on 'frame'
+ // @TODO Rewrite this somehow
+ switch ($frame) {
+ case '':
+ switch ($mode) {
+ case 'member':
+ // Build frameset
+ $content['order'] = bigintval(getRequestElement('order'));
+ $content['url'] = generateDereferrerUrl($url);
+ loadTemplate('member_order_frametester', FALSE, $content);
+ break;
+
+ case 'guest':
+ $content['url'] = generateDereferrerUrl($url);
+ loadTemplate('guest_frametester', FALSE, $content);
+ break;
+ } // END - switch
break;
- }
- break;
- case "test_top":
- LOAD_TEMPLATE("admin_settings_saved", false, "<div class=\"guest_done\">".GUEST_FRAMETESTER_TOP."</span>");
- break;
+ case 'test_top':
+ displayMessage('{--GUEST_FRAMETESTER_TOP--}');
+ break;
- case "back": // Back buttom
- LOAD_TEMPLATE("member_order_back", false, $_GET['order']);
- break;
+ case 'back': // Back buttom
+ loadTemplate('member_order_back', FALSE, getRequestElement('order'));
+ break;
- case "send": // Send mail away
- LOAD_TEMPLATE("member_order_send", false, $_GET['order']);
- break;
- }
+ case 'send': // Send mail away
+ loadTemplate('member_order_send', FALSE, getRequestElement('order'));
+ break;
+ } // END - switch
} else {
// Go away...
- LOAD_URL("modules.php?module=login");
+ redirectToUrl('modules.php?module=login');
}
-//
+
+// [EOF]
?>