<?php
/************************************************************************
- * MXChange v0.2.1 Start: 11/14/2003 *
- * =============== Last change: 11/25/2004 *
+ * Mailer v0.2.1-FINAL Start: 11/14/2003 *
+ * =================== Last change: 11/25/2004 *
* *
* -------------------------------------------------------------------- *
* File : mailid.php *
* -------------------------------------------------------------------- *
* Kurzbeschreibung : Bestaetigung von Mails *
* -------------------------------------------------------------------- *
- * $Revision:: 856 $ *
- * $Date:: 2009-03-06 20:24:32 +0100 (Fr, 06. March 2009) $ *
+ * $Revision:: $ *
+ * $Date:: $ *
* $Tag:: 0.2.1-FINAL $ *
- * $Author:: stelzi $ *
- * Needs to be in all Files and every File needs "svn propset *
- * svn:keywords Date Revision" (autoprobset!) at least!!!!!! *
+ * $Author:: $ *
* -------------------------------------------------------------------- *
- * Copyright (c) 2003 - 2008 by Roland Haeder *
+ * Copyright (c) 2003 - 2009 by Roland Haeder *
+ * Copyright (c) 2009 - 2011 by Mailer Developer Team *
* For more information visit: http://www.mxchange.org *
* *
* This program is free software; you can redistribute it and/or modify *
* MA 02110-1301 USA *
************************************************************************/
-// Load security stuff here (Oh, I hope this is not unsecure? Am I paranoia??? ;-) )
-require("inc/libs/security_functions.php");
+// Load security stuff here
+require('inc/libs/security_functions.php');
-// Init "action" and "what"
-$GLOBALS['what'] = "";
-$GLOBALS['action'] = "";
+// Init start time
+$GLOBALS['startTime'] = microtime(true);
// Tell everyone we are in this module
-$GLOBALS['module'] = "mailid";
+$GLOBALS['module'] = 'mailid';
$GLOBALS['output_mode'] = -1;
+$errorCode = '';
// Load the required file(s)
-require("inc/config.php");
-
-if (isInstalled()) {
- // Is the extension active?
- REDIRECT_ON_UNINSTALLED_EXTENSION("mailid");
-
- // Init
- $url_uid = 0; $url_bid = 0; $url_mid = 0;
-
- // Secure all data
- if (REQUEST_ISSET_GET(('uid'))) $url_uid = bigintval(REQUEST_GET('uid'));
- if (REQUEST_ISSET_GET(('mailid'))) $url_mid = bigintval(REQUEST_GET('mailid'));
- if (REQUEST_ISSET_GET(('bonusid'))) $url_bid = bigintval(REQUEST_GET('bonusid'));
-
- // 01 1 12 3 32 21 1 22 10
- if (($url_uid) > 0 && (($url_mid > 0) || ($url_bid > 0)) && (getTotalFatalErrors() == 0)) {
- // Maybe he wants to confirm an email?
- if ($url_mid > 0) {
- // Normal-Mails
- $result = SQL_QUERY_ESC("SELECT link_type FROM `{!_MYSQL_PREFIX!}_user_links` WHERE stats_id=%s AND userid=%s LIMIT 1",
- array($url_mid, $url_uid), __FILE__, __LINE__);
- $type = "mailid"; $DATA = $url_mid;
- } elseif ($url_bid > 0) {
- // Bonus-Mail
- $result = SQL_QUERY_ESC("SELECT link_type FROM `{!_MYSQL_PREFIX!}_user_links` WHERE bonus_id=%s AND userid=%s LIMIT 1",
- array($url_bid, $url_uid), __FILE__, __LINE__);
- $type = "bonusid"; $DATA = $url_bid;
- } else {
- // Problem: No ID entered
- LOAD_URL("index.php");
- }
-
- if (SQL_NUMROWS($result) == 1) {
- // Load the entry
- list($ltype) = SQL_FETCHROW($result);
+require('inc/config-global.php');
+
+// Set content type and HTTP status
+setContentType('text/html');
+setHttpStatus('404 NOT FOUND');
+
+// Is the extension active?
+redirectOnUninstalledExtension('mailid');
+
+// Init
+$userId = '0';
+$bonusId = '0';
+$mailId = '0';
+
+// Secure all data
+if (isGetRequestParameterSet('userid')) $userId = bigintval(getRequestParameter('userid'));
+if (isGetRequestParameterSet('mailid')) $mailId = bigintval(getRequestParameter('mailid'));
+if (isGetRequestParameterSet('bonusid')) $bonusId = bigintval(getRequestParameter('bonusid'));
+
+// 01 1 12 2 2 21 1 2210
+if ((isValidUserId($userId)) && (($mailId > 0) || ($bonusId > 0)) && (!ifFatalErrorsDetected())) {
+ // Init result
+ $result_link = false;
+
+ // Maybe he wants to confirm an email?
+ if ($mailId > 0) {
+ // Member mail
+ $result_link = SQL_QUERY_ESC("SELECT `link_type` FROM `{?_MYSQL_PREFIX?}_user_links` WHERE `stats_id`=%s AND `userid`=%s LIMIT 1",
+ array($mailId, $userId), __FILE__, __LINE__);
+ $type = 'mailid';
+ $urlId = $mailId;
+ } elseif ($bonusId > 0) {
+ // Bonus mail
+ $result_link = SQL_QUERY_ESC("SELECT `link_type` FROM `{?_MYSQL_PREFIX?}_user_links` WHERE `bonus_id`=%s AND `userid`=%s LIMIT 1",
+ array($bonusId, $userId), __FILE__, __LINE__);
+ $type = 'bonusid';
+ $urlId = $bonusId;
+ } else {
+ // Problem: No id entered
+ redirectToUrl('modules.php?module=index');
+ }
- // Clean result
- SQL_FREERESULT($result);
+ if (SQL_NUMROWS($result_link) == 1) {
+ // Load the entry
+ list($ltype) = SQL_FETCHROW($result_link);
- switch ($ltype)
- {
- case "NORMAL":
- // Is the stats ID valid?
- $result = SQL_QUERY_ESC("SELECT pool_id, url, subject FROM `{!_MYSQL_PREFIX!}_user_stats` WHERE id=%s LIMIT 1",
- array($url_mid), __FILE__, __LINE__);
+ // @TODO Rewrite this to a filter
+ switch ($ltype) {
+ case 'NORMAL':
+ // Is the stats id valid?
+ $result = SQL_QUERY_ESC("SELECT `pool_id`, `url`, `subject` FROM `{?_MYSQL_PREFIX?}_user_stats` WHERE `id`=%s LIMIT 1",
+ array($mailId), __FILE__, __LINE__);
break;
- case "BONUS":
+ case 'BONUS':
// Is the bonus extension active?
- REDIRECT_ON_UNINSTALLED_EXTENSION("bonus");
+ redirectOnUninstalledExtension('bonus');
// Bonus-Mails
- $result = SQL_QUERY_ESC("SELECT id, url, subject FROM `{!_MYSQL_PREFIX!}_bonus` WHERE id=%s LIMIT 1",
- array($url_bid), __FILE__, __LINE__);
+ $result = SQL_QUERY_ESC("SELECT id, url, subject FROM `{?_MYSQL_PREFIX?}_bonus` WHERE `id`=%s LIMIT 1",
+ array($bonusId), __FILE__, __LINE__);
break;
- }
- if (SQL_NUMROWS($result) == 1) {
- // Load data
- list($pool, $URL, $EXTRA_TITLE) = SQL_FETCHROW($result);
-
- // Free result
- SQL_FREERESULT($result);
-
- // Compile extra title
- $EXTRA_TITLE = COMPILE_CODE($EXTRA_TITLE);
-
- // Is the user's ID unlocked?
- $result = SQL_QUERY_ESC("SELECT status, gender, surname, family FROM `{!_MYSQL_PREFIX!}_user_data` WHERE userid=%s LIMIT 1",
- array($url_uid), __FILE__, __LINE__);
- if (SQL_NUMROWS($result) == 1) {
- list($status, $gender, $sname, $fname) = SQL_FETCHROW($result);
- SQL_FREERESULT($result);
- if ($status == "CONFIRMED") {
- // User has confirmed his account so we can procede...
- switch ($ltype)
- {
- case "NORMAL":
- $result = SQL_QUERY_ESC("SELECT payment_id FROM `{!_MYSQL_PREFIX!}_user_stats` WHERE pool_id=%s LIMIT 1",
+ default: // Invalid mail type
+ debug_report_bug(__FILE__, __LINE__, 'Invalid mail type ' . $ltype . ' detected.');
+ break;
+ } // END - switch
+
+ if (SQL_NUMROWS($result) == 1) {
+ // Load data
+ list($pool, $url, $title) = SQL_FETCHROW($result);
+
+ // Free result
+ SQL_FREERESULT($result);
+
+ // Set it
+ setExtraTitle($title);
+
+ // Is the user's id unlocked?
+ if (fetchUserData($userId)) {
+ // Status must be CONFIRMED
+ if (getUserData('status') == 'CONFIRMED') {
+ // Update last activity if not admin
+ if (!isAdmin()) {
+ // Is not admin, so update last activity
+ updateLastActivity($userId);
+ } // END - if
+
+ // User has confirmed his account so we can procede...
+ // @TODO Rewrite this to a filter
+ switch ($ltype) {
+ case 'NORMAL':
+ $result = SQL_QUERY_ESC("SELECT `payment_id` FROM `{?_MYSQL_PREFIX?}_user_stats` WHERE `pool_id`=%s LIMIT 1",
array(bigintval($pool)), __FILE__, __LINE__);
if (SQL_NUMROWS($result) == 1) {
list($pay) = SQL_FETCHROW($result);
- $time = GET_PAY_POINTS($pay, "time");
- $payment = GET_PAY_POINTS($pay, "payment");
- $VALID = true;
- }
+ $time = getPaymentPoints($pay, 'time');
+ $payment = getPaymentPoints($pay, 'payment');
+ $isValid = true;
+ } // END - if
// Free memory
SQL_FREERESULT($result);
break;
- case "BONUS":
- $result = SQL_QUERY_ESC("SELECT points, time FROM `{!_MYSQL_PREFIX!}_bonus` WHERE id=%s LIMIT 1",
- array($url_bid), __FILE__, __LINE__);
+ case 'BONUS':
+ $result = SQL_QUERY_ESC("SELECT `points`, `time` FROM `{?_MYSQL_PREFIX?}_bonus` WHERE `id`=%s LIMIT 1",
+ array($bonusId), __FILE__, __LINE__);
if (SQL_NUMROWS($result) == 1) {
list($points, $time) = SQL_FETCHROW($result);
- $payment = "0.00000";
- $VALID = true;
- }
+ $payment = '0.00000';
+ $isValid = true;
+ } // END - if
// Free memory
SQL_FREERESULT($result);
break;
- }
- // Add header
- LOAD_INC_ONCE("inc/header.php");
-
- // Was that mail a valid one?
- if ($VALID) {
- // If time is zero seconds we have a sponsor mail. 1 Second shall be set to avoid problems
- if (($time == "0") && ($payment > 0)) { $URL = constant('URL'); $time = "1"; }
- if (($time > 0) && (($payment > 0) || ($points > 0))) {
- // He can confirm this mail!
- // Export data into constants for the template
- define('_UID_VALUE' , $url_uid);
- define('_TYPE_VALUE', $type);
- define('_DATA_VALUE', $DATA);
- define('_URL_VALUE' , DEREFERER($URL));
-
- // Load template
- LOAD_TEMPLATE("mailid_frames");
- } else {
- $msg = getCode('DATA_INVALID');
- }
+ default: // Invalid mail type
+ debug_report_bug(__FILE__, __LINE__, 'Invalid mail type ' . $ltype . ' detected.');
+ break;
+ }
+
+ // Add header
+ loadIncludeOnce('inc/header.php');
+
+ // Was that mail a valid one?
+ if ($isValid === true) {
+ // If time is zero seconds we have a sponsor mail. 1 Second shall be set to avoid problems
+ if (($time == '0') && ($payment > 0)) {
+ $url = getUrl();
+ $time = 1;
+ } // END - if
+
+ if (($time > 0) && (($payment > 0) || ($points > 0))) {
+ // Set HTTP status to okay
+ setHttpStatus('200 OK');
+
+ // Export data into constants for the template
+ $content = array(
+ 'userid' => $userId,
+ 'type' => $type,
+ 'data' => $urlId,
+ 'url' => $url
+ );
+
+ // Load template
+ loadTemplate('mailid_frames', false, $content);
} else {
- $msg = getCode('POSSIBLE_INVALID');
+ $errorCode = getCode('DATA_INVALID');
}
} else {
- $msg = getCode('ACCOUNT_LOCKED');
+ $errorCode = getCode('POSSIBLE_INVALID');
}
} else {
- SQL_FREERESULT($result);
- $msg = getCode('USER_404');
+ $errorCode = getCode('ACCOUNT_' . getUserData('status'));
}
} else {
- SQL_FREERESULT($result);
- $msg = getCode('STATS_404');
+ $errorCode = getCode('USER_404');
}
} else {
- SQL_FREERESULT($result);
- $msg = getCode('ALREADY_CONFIRMED');
+ $errorCode = getCode('STATS_404');
}
} else {
- // Nothing entered
- $msg = getCode('ERROR_MAILID');
+ $errorCode = getCode('ALREADY_CONFIRMED');
}
- // Error code is set?
- if (!empty($msg)) {
- switch (getConfig('mailid_error_redirect')) {
- case "INDEX": // Redirect to index page
- LOAD_URL("modules.php?module=index&msg=".$msg."&ext=mailid");
- break;
-
- case "REJECT": // Redirect to rejection page
- LOAD_CONFIGURED_URL('reject_url');
- break;
-
- default:
- DEBUG_LOG(__FILE__, __LINE__, sprintf("Unknown status %s detected in mailid_error_redirect.", getConfig('mailid_error_redirect')));
- LOAD_URL("modules.php?module=index&msg=".getCode('UNKNOWN_STATUS')."&ext=mailid");
- break;
- }
- } else {
- // Include footer
- LOAD_INC_ONCE("inc/footer.php");
- }
+ // Free result
+ SQL_FREERESULT($result_link);
} else {
- // You have to install first!
- LOAD_URL("install.php");
+ // Nothing entered
+ $errorCode = getCode('ERROR_MAILID');
}
-// Shutdown
-shutdown();
+// Error code is set?
+handleMailIdErrorCode($errorCode);
+
+// Include footer
+loadIncludeOnce('inc/footer.php');
-//
+// [EOF]
?>