X-Git-Url: https://git.mxchange.org/?a=blobdiff_plain;ds=sidebyside;f=inc%2Fmysql-manager.php;h=83677bd75b389c1e8665beb7dfaf5a19f0acca78;hb=08e7a259eb3649641a680bde64854f54cd5c5b68;hp=f4fa13aec43280d238688a3aa5c4ce686c366abb;hpb=6ccd99da05d2a9ea302b4c904bbdb2320724d42d;p=mailer.git
diff --git a/inc/mysql-manager.php b/inc/mysql-manager.php
index f4fa13aec4..83677bd75b 100644
--- a/inc/mysql-manager.php
+++ b/inc/mysql-manager.php
@@ -32,7 +32,7 @@
************************************************************************/
// Some security stuff...
-if (ereg(basename(__FILE__), $_SERVER['PHP_SELF'])) {
+if (!defined('__SECURITY')) {
$INC = substr(dirname(__FILE__), 0, strpos(dirname(__FILE__), "/inc") + 4) . "/security.php";
require($INC);
}
@@ -44,7 +44,8 @@ function ADD_MODULE_TITLE($mod) {
// Is the script installed?
if (isBooleanConstantAndTrue('mxchange_installed')) {
- if ((GET_EXT_VERSION("cache") >= "0.1.2") && (isset($cacheArray['modules']['module'])) && (is_array($cacheArray['modules']['module'])) && (isset($cacheArray['modules']['module'][$mod]))) {
+ // Check if cache is valid
+ if ((GET_EXT_VERSION("cache") >= "0.1.2") && (isset($cacheArray['modules']['module'])) && (in_array($mod, $cacheArray['modules']['module']))) {
// Load from cache
$name = $cacheArray['modules']['title'][$mod];
@@ -56,7 +57,7 @@ function ADD_MODULE_TITLE($mod) {
list($name) = SQL_FETCHROW($result);
SQL_FREERESULT($result);
}
- }
+ } // END - if
// Trim name
$name = trim($name);
@@ -68,8 +69,10 @@ function ADD_MODULE_TITLE($mod) {
if (SQL_NUMROWS($result) == 0) {
// Add module to database
$dummy = CHECK_MODULE($mod);
- }
- }
+ } // END - if
+ } // END - if
+
+ // Return name
return $name;
}
@@ -156,12 +159,12 @@ function CHECK_MODULE($mod) {
// to find a loop here... *sigh*
$result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_mod_reg
(module, locked, hidden, mem_only, admin_only, has_menu) VALUES
-('%s', 'Y', 'N', 'N', 'N', 'N')", array($mod_chk), __FILE__, __LINE__);
+('%s','Y','N','N','N','N')", array($mod_chk), __FILE__, __LINE__);
} else {
// Wrong/missing sql_patches!
$result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_mod_reg
(module, locked, hidden, mem_only, admin_only) VALUES
-('%s', 'Y', 'N', 'N', 'N')", array($mod_chk), __FILE__, __LINE__);
+('%s','Y','N','N','N')", array($mod_chk), __FILE__, __LINE__);
}
// Everthing is fine?
@@ -171,10 +174,7 @@ function CHECK_MODULE($mod) {
} // END - if
// Destroy cache here
- if (GET_EXT_VERSION("cache") >= "0.1.2") {
- if ($cacheInstance->cache_file("mod_reg", true)) $cacheInstance->cache_destroy();
- unset($cacheArray['modules']);
- } // END - if
+ REBUILD_CACHE("mod_reg", "modreg");
// And reload data
$ret = CHECK_MODULE($mod_chk);
@@ -245,7 +245,7 @@ function ADD_DESCR($ACC_LVL, $file, $return = false, $output = true) {
$AND = "";
}
if ((!isset($DEPTH)) && (!$return)) {
- $DEPTH = "0";
+ $DEPTH = 0;
$prefix = "
".YOU_ARE_HERE."
Home";
} else {
if (!$return) $DEPTH++;
@@ -254,30 +254,49 @@ function ADD_DESCR($ACC_LVL, $file, $return = false, $output = true) {
$prefix .= " -> ";
- if (ereg(".php", $search)) {
- $search = substr($search, 0, strpos($search, ".php"));
- }
+ // We need to remove .php and the end
+ if (substr($search, -4, 4) == ".php") {
+ // Remove the .php
+ $search = substr($search, 0, -4);
+ } // END - i
+ // Get the title from menu
$result = SQL_QUERY_ESC("SELECT title FROM "._MYSQL_PREFIX."_%s_menu WHERE %s='%s' ".$AND." LIMIT 1",
array($ACC_LVL, $type, $search), __FILE__, __LINE__);
+ // Menu found?
if (SQL_NUMROWS($result) == 1) {
+ // Load title
list($ret) = SQL_FETCHROW($result);
- SQL_FREERESULT($result);
+
+ // Shall we return it?
if ($return) {
// Return title
return $ret;
} elseif (((GET_EXT_VERSION("sql_patches") >= "0.2.3") && ($_CONFIG['youre_here'] == "Y")) || ((IS_ADMIN()) && ($MOD_CHECK == "admin"))) {
// Output HTML code
$OUT = $prefix."
".$ret."\n";
+
+ // Can we close the you-are-here navigation?
//* DEBUG: */ echo __LINE__."*".$type."/".$GLOBALS['what']."*
\n";
- if (($type == "what") || (($type == "action") && (!isset($_GET['what'])) && ($GLOBALS['what'] != "welcome"))) {
+ //* DEBUG: */ die("
".print_r($_CONFIG, true)."
");
+ if (($type == "what") || (($type == "action") && ((!isset($GLOBALS['what'])) || ($GLOBALS['what'] == "overview")))) {
//* DEBUG: */ echo __LINE__."+".$type."+
\n";
$OUT .= "
\n";
$DEPTH="0";
- }
+
+ // Handle failed logins here if not in guest
+ //* DEBUG: */ echo __FUNCTION__.":type={$type},action={$GLOBALS['action']},what={$GLOBALS['what']},lvl={$ACC_LVL}
\n";
+ if ((($type == "what") || ($type == "action") && ((!isset($GLOBALS['what'])) || ($GLOBALS['what'] == "overview") || ($GLOBALS['what'] == $_CONFIG['index_home']))) && ($ACC_LVL != "guest") && ((GET_EXT_VERSION("sql_patches") >= "0.4.7") || (GET_EXT_VERSION("admins") >= "0.7.0"))) {
+ // Handle failture
+ $OUT .= HANDLE_LOGIN_FAILTURES($ACC_LVL);
+ } // END - if
+ } // END - if
}
- }
+ } // END - if
+
+ // Free result
+ SQL_FREERESULT($result);
// Return or output HTML code?
if ($output) {
@@ -314,11 +333,19 @@ function ADD_MENU($MODE, $act, $wht) {
// There are menus available, so we simply display them... :)
while (list($main_title, $main_action) = SQL_FETCHROW($result_main)) {
//* DEBUG: */ echo __LINE__."/".$main_cnt."/".$main_action."/".$sub_what.":".$GLOBALS['what']."*
\n";
- // Load menu header template
+ // Init variables
$BLOCK_MODE = false; $act = $main_action;
- LOAD_TEMPLATE($MODE."_menu_title", false, $main_title);
- $result_sub = SQL_QUERY_ESC("SELECT title, what FROM "._MYSQL_PREFIX."_%s_menu WHERE action='%s' AND what != '' ".$AND." ORDER BY sort",
+ // Prepare content
+ $content = array(
+ 'action' => $main_action,
+ 'title' => $main_title
+ );
+
+ // Load menu header template
+ LOAD_TEMPLATE($MODE."_menu_title", false, $content);
+
+ $result_sub = SQL_QUERY_ESC("SELECT title, what FROM "._MYSQL_PREFIX."_%s_menu WHERE action='%s' AND what != '' AND what IS NOT NULL ".$AND." ORDER BY sort",
array($MODE, $main_action), __FILE__, __LINE__);
$ctl = SQL_NUMROWS($result_sub);
if ($ctl > 0) {
@@ -355,6 +382,13 @@ function ADD_MENU($MODE, $act, $wht) {
$content .= "";
}
$wht = $sub_what; $cnt++;
+ // Prepare array
+ $content = array(
+ 'menu' => $content,
+ 'what' => $sub_what
+ );
+
+ // Add regular menu row or bottom row?
if ($cnt < $ctl) {
LOAD_TEMPLATE($MODE."_menu_row", false, $content);
} else {
@@ -406,12 +440,18 @@ function IS_ADMIN($admin="")
//* DEBUG: */ echo __LINE__."ADMIN:".$admin."/".$passCookie."
";
// Search in array for entry
- if ((!empty($passCookie)) && (isset($cacheArray['admins']['password'][$admin])) && (!empty($admin))) {
+ if (isset($cacheArray['admin_hash'])) {
+ // Use cached string
+ $valPass = $cacheArray['admin_hash'];
+ } elseif ((!empty($passCookie)) && (isset($cacheArray['admins']['password'][$admin])) && (!empty($admin))) {
// Count cache hits
$_CONFIG['cache_hits']++;
// Login data is valid or not?
$valPass = generatePassString($cacheArray['admins']['password'][$admin]);
+
+ // Cache it away
+ $cacheArray['admin_hash'] = $valPass;
} elseif (!empty($admin)) {
// Search for admin
$result = SQL_QUERY_ESC("SELECT HIGH_PRIORITY password FROM "._MYSQL_PREFIX."_admins WHERE login='%s' LIMIT 1",
@@ -423,9 +463,12 @@ function IS_ADMIN($admin="")
// Admin login was found so let's load password from DB
list($passDB) = SQL_FETCHROW($result);
+ // Temporary cache it
+ $cacheArray['admins']['password'][$admin] = $passDB;
+
// Generate password hash
$valPass = generatePassString($passDB);
- }
+ } // END - if
// Free memory
SQL_FREERESULT($result);
@@ -438,7 +481,7 @@ function IS_ADMIN($admin="")
}
// Return result of comparision
- //* DEBUG: */ if (!$ret) echo __LINE__."OK!
";
+ //* DEBUG: */ if (!$ret) echo __LINE__."OK!
";
return $ret;
}
//
@@ -540,12 +583,18 @@ function WHAT_IS_VALID($act, $wht, $type="guest")
//
function IS_MEMBER()
{
- global $status, $LAST;
+ global $status, $LAST, $cacheArray;
if (!is_array($LAST)) $LAST = array();
$ret = false;
+ // is the cache entry there?
+ if (isset($cacheArray['is_member'])) {
+ // Then return it
+ return $cacheArray['is_member'];
+ } // END - if
+
// Fix "deleted" cookies first
- FIX_DELETED_COOKIES(array('userid', 'u_hash', 'lifetime'));
+ FIX_DELETED_COOKIES(array('userid','u_hash','lifetime'));
// Are cookies set?
if ((!empty($GLOBALS['userid'])) && (isSessionVariableSet('u_hash')) && (isSessionVariableSet('lifetime')) && (defined('COOKIE_PATH')))
@@ -565,13 +614,13 @@ function IS_MEMBER()
if ((!empty($mod)) && (empty($LAST['module']))) { $LAST['module'] = $mod; $LAST['online'] = $onl; }
// So did we now have valid data and an unlocked user?
- //* DEBUG: */ echo $valPass."
".get_session('u_hash')."
";
+ //* DEBUG: */ echo $valPass."
".get_session('u_hash')."
";
if (($status == "CONFIRMED") && ($valPass == get_session('u_hash'))) {
// Account is confirmed and all cookie data is valid so he is definely logged in! :-)
$ret = true;
} else {
// Maybe got locked etc.
- //* DEBUG: */ echo __LINE__."!!!
";
+ //* DEBUG: */ echo __LINE__."!!!
";
destroy_user_session();
// Remove array elements to prevent errors
@@ -579,7 +628,7 @@ function IS_MEMBER()
}
} else {
// Cookie data is invalid!
- //* DEBUG: */ echo __LINE__."***
";
+ //* DEBUG: */ echo __LINE__."***
";
// Remove array elements to prevent errors
unset($GLOBALS['userid']);
@@ -587,38 +636,35 @@ function IS_MEMBER()
// Free memory
SQL_FREERESULT($result);
- }
- else
- {
+ } else {
// Cookie data is invalid!
- //* DEBUG: */ echo __LINE__."///
";
+ //* DEBUG: */ echo __LINE__."///
";
destroy_user_session();
// Remove array elements to prevent errors
unset($GLOBALS['userid']);
}
+
+ // Cache status
+ $cacheArray['is_member'] = $ret;
+
+ // Return status
return $ret;
}
//
-function UPDATE_LOGIN_DATA ($UPDATE=true) {
- global $LAST;
+function UPDATE_LOGIN_DATA () {
+ global $LAST, $_CONFIG;
if (!is_array($LAST)) $LAST = array();
- // Are the required cookies set?
- if ((!isset($GLOBALS['userid'])) || (!isSessionVariableSet('u_hash')) || (!isSessionVariableSet('lifetime'))) {
- // Nope, then return here to caller function
- return false;
- } else {
- // Secure user ID
- $GLOBALS['userid'] = bigintval(get_session('userid'));
- }
+ // Recheck if logged in
+ if (!IS_MEMBER()) return false;
+
+ // Secure user ID
+ $GLOBALS['userid'] = bigintval(get_session('userid'));
// Extract last online time (life) and how long is auto-login valid (time)
$newl = time() + bigintval(get_session('lifetime'));
- // Recheck if logged in
- if (!IS_MEMBER()) return false;
-
// Load last module and last online time
$result = SQL_QUERY_ESC("SELECT last_module, last_online FROM "._MYSQL_PREFIX."_user_data WHERE userid=%s LIMIT 1", array($GLOBALS['userid']), __FILE__, __LINE__);
if (SQL_NUMROWS($result) == 1) {
@@ -633,10 +679,14 @@ function UPDATE_LOGIN_DATA ($UPDATE=true) {
// This will be displayed on welcome page! :-)
if (empty($LAST['module'])) {
$LAST['module'] = $mod; $LAST['online'] = $onl;
- }
+ } // END - if
+
+ // "what" not set?
if (empty($GLOBALS['what'])) {
+ // Fix it to default
$GLOBALS['what'] = "welcome";
- }
+ if (!empty($_CONFIG['index_home'])) $GLOBALS['what'] = $_CONFIG['index_home'];
+ } // END - if
// Update last module / online time
$result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_user_data SET last_module='%s', last_online=UNIX_TIMESTAMP() WHERE userid=%s LIMIT 1",
@@ -697,16 +747,29 @@ function VALIDATE_MENU_ACTION ($MODE, $act, $wht, $UPDATE=false)
return $ret;
}
//
-function GET_MOD_DESCR($MODE, $wht)
+function GET_MOD_DESCR($MODE, $wht, $column="what")
{
- if (empty($wht)) $wht = "welcome";
+ // Fix empty "what"
+ if (empty($wht)) {
+ $wht = "welcome";
+ if (!empty($_CONFIG['index_home'])) $wht = $_CONFIG['index_home'];
+ } // END - if
+
+ // Default is not found
$ret = "??? (".$wht.")";
- $result = SQL_QUERY_ESC("SELECT title FROM "._MYSQL_PREFIX."_%s_menu WHERE what='%s' LIMIT 1", array($MODE, $wht), __FILE__, __LINE__);
- if (SQL_NUMROWS($result) == 1)
- {
+
+ // Look for title
+ $result = SQL_QUERY_ESC("SELECT title FROM "._MYSQL_PREFIX."_%s_menu WHERE %s='%s' LIMIT 1",
+ array($MODE, $column, $wht), __FILE__, __LINE__);
+
+ // Is there an entry?
+ if (SQL_NUMROWS($result) == 1) {
+ // Fetch the title
list($ret) = SQL_FETCHROW($result);
- SQL_FREERESULT($result);
- }
+ } // END - if
+
+ // Free result
+ SQL_FREERESULT($result);
return $ret;
}
//
@@ -728,7 +791,7 @@ function SEND_MODE_MAILS($mod, $modes)
$hash = generatePassString($hashDB);
if (($hash == get_session('u_hash')) || ($_POST['pass1'] == $_POST['pass2'])) {
// Load user's data
- $result = SQL_QUERY_ESC("SELECT sex, surname, family, street_nr, country, zip, city, email FROM "._MYSQL_PREFIX."_user_data WHERE userid=%s AND password='%s' LIMIT 1",
+ $result = SQL_QUERY_ESC("SELECT gender, surname, family, street_nr, country, zip, city, email FROM "._MYSQL_PREFIX."_user_data WHERE userid=%s AND password='%s' LIMIT 1",
array($GLOBALS['userid'], $hashDB), __FILE__, __LINE__);
if (SQL_NUMROWS($result) == 1) {
// Load the data
@@ -737,8 +800,8 @@ function SEND_MODE_MAILS($mod, $modes)
// Free result
SQL_FREERESULT($result);
- // Translate salutation
- $DATA[0] = TRANSLATE_SEX($DATA[0]);
+ // Translate gender
+ $DATA[0] = TRANSLATE_GENDER($DATA[0]);
// Clear/init the content variable
$content = "";
@@ -844,47 +907,37 @@ function COUNT_MODULE($mod)
// Get action value from mode (admin/guest/member) and what-value
function GET_ACTION ($MODE, &$wht)
{
- global $ret; $ret = "";
- //* DEBUG: */ echo __LINE__."=".$MODE."/".$wht."/".$GLOBALS['action']."=
";
- if ((empty($wht)) && ($MODE != "admin"))
- {
+ global $ret, $_CONFIG;
+ // @DEPRECATED Init status
+ $ret = "";
+
+ //* DEBUG: */ echo __LINE__."=".$MODE."/".$wht."/".$GLOBALS['action']."=
";
+ if ((empty($wht)) && ($MODE != "admin")) {
$wht = "welcome";
- }
- if ($MODE == "admin")
- {
+ if (!empty($_CONFIG['index_home'])) $wht = $_CONFIG['index_home'];
+ } // END - if
+
+ if ($MODE == "admin") {
// Action value for admin area
- if (!empty($GLOBALS['action']))
- {
+ if (!empty($GLOBALS['action'])) {
// Get it directly from URL
return $GLOBALS['action'];
- }
- elseif (($wht == "overview") || (empty($GLOBALS['what'])))
- {
+ } elseif (($wht == "overview") || (empty($GLOBALS['what']))) {
// Default value for admin area
$ret = "login";
}
- }
- elseif (!empty($GLOBALS['action']))
- {
- // Fix welcome value
- if (empty($wht)) $wht = "welcome";
+ } elseif (!empty($GLOBALS['action'])) {
+ // Get it directly from URL
return $GLOBALS['action'];
- }
- else
- {
- // Everything else will be touched after checking the module has a menu assigned
}
//* DEBUG: */ echo __LINE__."*".$ret."*
\n";
- if (MODULE_HAS_MENU($MODE))
- {
+ if (MODULE_HAS_MENU($MODE)) {
// Rewriting modules to menu
- switch ($MODE)
- {
+ switch ($MODE) {
case "index": $MODE = "guest"; break;
case "login": $MODE = "member"; break;
- break;
- }
+ } // END - switch
// Guest and member menu is "main" as the default
if (empty($ret)) $ret = "main";
@@ -892,15 +945,14 @@ function GET_ACTION ($MODE, &$wht)
// Load from database
$result = SQL_QUERY_ESC("SELECT action FROM "._MYSQL_PREFIX."_%s_menu WHERE what='%s' LIMIT 1",
array($MODE, $wht), __FILE__, __LINE__);
- if (SQL_NUMROWS($result) == 1)
- {
+ if (SQL_NUMROWS($result) == 1) {
// Load action value and pray that this one is the right you want... ;-)
list($ret) = SQL_FETCHROW($result);
- }
+ } // END - if
// Free memory
SQL_FREERESULT($result);
- }
+ } // END - if
// Return action value
return $ret;
@@ -910,16 +962,22 @@ function GET_CATEGORY ($cid) {
// Default is not found
$ret = _CATEGORY_404;
- // Lookup the category
- $result = SQL_QUERY_ESC("SELECT cat FROM "._MYSQL_PREFIX."_cats WHERE id=%s LIMIT 1",
- array(bigintval($cid)), __FILE__, __LINE__);
- if (SQL_NUMROWS($result) == 1) {
- // Category found... :-)
- list($ret) = SQL_FETCHROW($result);
- } // END - if
+ // Is the category id set?
+ if ($cid == "0") {
+ // No category
+ $ret = _CATEGORY_NONE;
+ } elseif ($cid > 0) {
+ // Lookup the category in database
+ $result = SQL_QUERY_ESC("SELECT cat FROM "._MYSQL_PREFIX."_cats WHERE id=%s LIMIT 1",
+ array(bigintval($cid)), __FILE__, __LINE__);
+ if (SQL_NUMROWS($result) == 1) {
+ // Category found... :-)
+ list($ret) = SQL_FETCHROW($result);
+ } // END - if
- // Free result
- SQL_FREERESULT($result);
+ // Free result
+ SQL_FREERESULT($result);
+ } // END - if
// Return result
return $ret;
@@ -984,7 +1042,7 @@ function REMOVE_RECEIVER(&$ARRAY, $key, $uid, $pool_id, $stats_id="", $bonus=fal
if (SQL_NUMROWS($result) == 0)
{
// No, so we add one!
- $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_user_links (%s, userid, link_type) VALUES ('%s', '%s', '%s')",
+ $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_user_links (%s, userid, link_type) VALUES ('%s','%s','%s')",
array($rowName, $stats_id, bigintval($uid), $type), __FILE__, __LINE__);
$ret = "done";
}
@@ -1002,9 +1060,8 @@ function REMOVE_RECEIVER(&$ARRAY, $key, $uid, $pool_id, $stats_id="", $bonus=fal
return $ret;
}
//
-function GET_TOTAL_DATA($search, $tableName, $lookFor, $whereStatement="userid", $onlyRows=false)
-{
- $ret = "0";
+function GET_TOTAL_DATA($search, $tableName, $lookFor, $whereStatement="userid", $onlyRows=false) {
+ $ret = 0;
if ($onlyRows) {
// Count rows
$result = SQL_QUERY_ESC("SELECT COUNT(%s) FROM "._MYSQL_PREFIX."_%s WHERE %s='%s'",
@@ -1017,15 +1074,16 @@ function GET_TOTAL_DATA($search, $tableName, $lookFor, $whereStatement="userid",
// Load row
list($ret) = SQL_FETCHROW($result);
- //* DEBUG: */ echo __LINE__."*".$DATA."/".$search."/".$tableName."/".$ret."*
\n";
+
+ // Free result
SQL_FREERESULT($result);
- if (empty($ret)) {
- if (($lookFor == "counter") || ($lookFor == "id")) {
- $ret = "0";
- } else {
- $ret = "0.00000";
- }
- }
+
+ // Fix empty values
+ if ((empty($ret)) && ($lookFor != "counter") && ($lookFor != "id") && ($lookFor != "userid")) {
+ $ret = "0.00000";
+ } // END - if
+
+ // Return value
return $ret;
}
/**
@@ -1038,12 +1096,14 @@ function GET_TOTAL_DATA($search, $tableName, $lookFor, $whereStatement="userid",
* rid = inc/modules/guest/what-confirm.php need this
* locked = Shall I pay it to normal (false) or locked (true) points ammount?
* add_mode = Add points only to $uid or also refs? (WARNING! Changing "ref" to "direct"
- * will cause no referral will get points ever!!!)
+ * for default value will cause no referral will get points ever!!!)
*/
-function ADD_POINTS_REFSYSTEM($uid, $points, $send_notify=false, $rid="0", $locked=false, $add_mode="ref")
-{
+function ADD_POINTS_REFSYSTEM($uid, $points, $send_notify=false, $rid="0", $locked=false, $add_mode="ref") {
global $DEPTH, $_CONFIG, $DATA;
+ // Convert mode to lower-case
+ $add_mode = strtolower($add_mode);
+
// Debug message
//DEBUG_LOG(__FUNCTION__.": uid={$uid},points={$points}");
@@ -1057,7 +1117,7 @@ function ADD_POINTS_REFSYSTEM($uid, $points, $send_notify=false, $rid="0", $lock
// Count up referral depth
if (empty($DEPTH)) {
// Initialialize referral system
- $DEPTH = "0";
+ $DEPTH = 0;
} else {
// Increase referral level
$DEPTH++;
@@ -1067,8 +1127,11 @@ function ADD_POINTS_REFSYSTEM($uid, $points, $send_notify=false, $rid="0", $lock
$percents = "percents"; if (isset($_CONFIG['db_percents'])) $percents = $_CONFIG['db_percents'];
$table = "refdepths"; if (isset($_CONFIG['db_table'])) $table = $_CONFIG['db_table'];
+ // Default is "normal" points
+ $data = "points";
+
// Which points, locked or normal?
- $data = "points"; if ($locked) $data = "locked_points";
+ if ($locked) $data = "locked_points";
// Check user account
$result_user = SQL_QUERY_ESC("SELECT refid, email FROM "._MYSQL_PREFIX."_user_data WHERE userid=%s AND status='CONFIRMED' LIMIT 1",
@@ -1121,17 +1184,30 @@ function ADD_POINTS_REFSYSTEM($uid, $points, $send_notify=false, $rid="0", $lock
// Points updated, maybe I shall send him an email?
if (($send_notify) && ($ref > 0) && (!$locked)) {
- // 0 1 2 3
- $DATA = array($per, bigintval($DEPTH), $ref_points, bigintval($ref));
- $msg = LOAD_EMAIL_TEMPLATE("confirm-referral", "", bigintval($uid));
+ // Prepare content
+ $content = array(
+ 'percent' => $per,
+ 'level' => bigintval($DEPTH),
+ 'points' => $ref_points,
+ 'refid' => bigintval($ref)
+ );
+
+ // Load email template
+ $msg = LOAD_EMAIL_TEMPLATE("confirm-referral", $content, bigintval($uid));
SEND_EMAIL($email, THANX_REFERRAL_ONE, $msg);
} elseif (($send_notify) && ($ref == 0) && (!$locked) && ($add_mode == "direct") && (!defined('__POINTS_VALUE'))) {
// Direct payment shall be notified about
define('__POINTS_VALUE', $ref_points);
+ // Prepare content
+ $content = array(
+ 'text' => REASON_DIRECT_PAYMENT,
+ 'points' => TRANSLATE_COMMA($ref_points)
+ );
+
// Load message
- $msg = LOAD_EMAIL_TEMPLATE("add-points", REASON_DIRECT_PAYMENT, $uid);
+ $msg = LOAD_EMAIL_TEMPLATE("add-points", $content, $uid);
// And sent it away
SEND_EMAIL($email, SUBJECT_DIRECT_PAYMENT, $msg);
@@ -1156,8 +1232,9 @@ function ADD_POINTS_REFSYSTEM($uid, $points, $send_notify=false, $rid="0", $lock
function UPDATE_REF_COUNTER($uid)
{
global $REF_LVL, $cacheInstance;
+
// Make it sure referral level zero (member him-/herself) is at least selected
- if (empty($REF_LVL)) $REF_LVL = "0";
+ if (empty($REF_LVL)) $REF_LVL = 0;
// Update counter
$result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_refsystem SET counter=counter+1 WHERE userid=%s AND level='%s' LIMIT 1",
@@ -1167,7 +1244,7 @@ function UPDATE_REF_COUNTER($uid)
if (SQL_AFFECTEDROWS() == 0)
{
// First count!
- $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_refsystem (userid, level, counter) VALUES ('%s', '%s', '1')",
+ $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_refsystem (userid, level, counter) VALUES ('%s','%s','1')",
array(bigintval($uid), $REF_LVL), __FILE__, __LINE__);
}
@@ -1191,45 +1268,50 @@ function UPDATE_REF_COUNTER($uid)
if ($cacheInstance->cache_file("refsystem", true)) $cacheInstance->cache_destroy();
}
}
-//
-function UPDATE_ONLINE_LIST($SID, $mod, $act, $wht)
-{
+// Updates/extends the online list
+function UPDATE_ONLINE_LIST($SID, $mod, $act, $wht) {
global $_CONFIG;
// Do not update online list when extension is deactivated
if (!EXT_IS_ACTIVE("online", true)) return;
+ // Empty session?
+ if (empty($SID)) {
+ // This is invalid here!
+ print "Invalid session. Backtrace:";
+ debug_print_backtrace();
+ die("
");
+ } // END - if
+
// Initialize variables
- $uid = "0"; $rid = "0"; $MEM = "N"; $ADMIN = "N";
- if (!empty($GLOBALS['userid']))
- {
- // Update member status only when userid is valid
- if (($GLOBALS['userid'] > 0) && (IS_MEMBER()))
- {
- // Is valid user
- $uid = $GLOBALS['userid'];
- $MEM = "Y";
- }
- }
- if (IS_ADMIN())
- {
+ $uid = 0; $rid = 0; $MEM = "N"; $ADMIN = "N";
+
+ // Valid userid?
+ if ((!empty($GLOBALS['userid'])) && ($GLOBALS['userid'] > 0) && (IS_MEMBER())) {
+ // Is valid user
+ $uid = bigintval($GLOBALS['userid']);
+ $MEM = "Y";
+ } // END - if
+
+ if (IS_ADMIN()) {
// Is administrator
$ADMIN = "Y";
- }
+ } // END - if
+
if (isSessionVariableSet('refid')) {
// Check cookie
- if (get_session('refid') > 0) $rid = $GLOBALS['refid'];
- }
+ if (get_session('refid') > 0) $rid = bigintval($GLOBALS['refid']);
+ } // END - if
- // Now Read data
+ // Now search for the user
$result = SQL_QUERY_ESC("SELECT timestamp FROM "._MYSQL_PREFIX."_online
WHERE sid='%s' LIMIT 1",
array($SID), __FILE__, __LINE__);
- if (SQL_NUMROWS($result) == 1)
- {
- SQL_FREERESULT($result);
- $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_online SET
+ // Entry found?
+ if (SQL_NUMROWS($result) == 1) {
+ // Then update it
+ SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_online SET
module='%s',
action='%s',
what='%s',
@@ -1239,24 +1321,18 @@ is_member='%s',
is_admin='%s',
timestamp=UNIX_TIMESTAMP()
WHERE sid='%s' LIMIT 1",
- array(
- $mod,
- $act,
- $wht,
- bigintval($uid),
- bigintval($rid),
- $MEM,
- $ADMIN,
- $SID
-), __FILE__, __LINE__);
- }
- else
- {
+ array($mod, $act, $wht, $uid, $rid, $MEM, $ADMIN, $SID), __FILE__, __LINE__
+ );
+ } else {
// No entry does exists so we simply add it!
- $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_online (module, action, what, userid, refid, is_member, is_admin, timestamp, sid, ip) VALUES ('%s', '%s', '%s', %s, %s, '%s', '%s', UNIX_TIMESTAMP(), '%s', '%s')",
- array($mod, $act, $wht, bigintval($uid), bigintval($rid), $MEM, $ADMIN, $SID, getenv('REMOTE_ADDR')), __FILE__, __LINE__);
+ SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_online (module, action, what, userid, refid, is_member, is_admin, timestamp, sid, ip) VALUES ('%s','%s','%s', %s, %s, '%s','%s', UNIX_TIMESTAMP(), '%s','%s')",
+ array($mod, $act, $wht, $uid, $rid, $MEM, $ADMIN, $SID, getenv('REMOTE_ADDR')), __FILE__, __LINE__
+ );
}
+ // Free result
+ SQL_FREERESULT($result);
+
// Purge old entries
$result = SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM "._MYSQL_PREFIX."_online WHERE timestamp <= (UNIX_TIMESTAMP() - %s)",
array($_CONFIG['online_timeout']), __FILE__, __LINE__);
@@ -1277,13 +1353,15 @@ function SEND_ADMIN_EMAILS($subj, $msg) {
}
// Get ID number from administrator's login name
function GET_ADMIN_ID($login) {
- global $cacheArray;
+ global $cacheArray, $_CONFIG;
$ret = "-1";
if (!empty($cacheArray['admins']['aid'][$login])) {
// Check cache
$ret = $cacheArray['admins']['aid'][$login];
- if (empty($ret)) $ret = "-1";
- } else {
+
+ // Update cache hits
+ $_CONFIG['cache_hits']++;
+ } elseif (!EXT_IS_ACTIVE("cache")) {
// Load from database
$result = SQL_QUERY_ESC("SELECT id FROM "._MYSQL_PREFIX."_admins WHERE login='%s' LIMIT 1",
array($login), __FILE__, __LINE__);
@@ -1300,54 +1378,118 @@ function GET_ADMIN_ID($login) {
// Get password hash from administrator's login name
function GET_ADMIN_HASH($login)
{
- global $cacheArray;
+ global $cacheArray, $_CONFIG;
$ret = "-1";
- if (!empty($cacheArray['admins']['password'][$login]))
- {
+ if (!empty($cacheArray['admins']['password'][$login])) {
// Check cache
$ret = $cacheArray['admins']['password'][$login];
- if (empty($ret)) $ret = "-1";
- }
- else
- {
+
+ // Update cache hits
+ $_CONFIG['cache_hits']++;
+ } elseif (!EXT_IS_ACTIVE("cache")) {
// Load from database
$result = SQL_QUERY_ESC("SELECT password FROM "._MYSQL_PREFIX."_admins WHERE login='%s' LIMIT 1",
array($login), __FILE__, __LINE__);
- if (SQL_NUMROWS($result) == 1)
- {
+ if (SQL_NUMROWS($result) == 1) {
+ // Fetch data
list($ret) = SQL_FETCHROW($result);
- SQL_FREERESULT($result);
+
+ // Set cache
+ $cacheArray['admins']['password'][$login] = $ret;
}
+
+ // Free result
+ SQL_FREERESULT($result);
}
return $ret;
}
//
function GET_ADMIN_LOGIN ($aid) {
- global $cacheArray;
+ global $cacheArray, $_CONFIG;
$ret = "***";
- if (!empty($cacheArray['admins']['login'])) {
- // Check cache
- if (!empty($cacheArray['admins']['login'][$aid])) {
- $ret = $cacheArray['admins']['login'][$aid];
- } // END - if
- if (empty($ret)) $ret = "***";
- } else {
+ if (!empty($cacheArray['admins']['login'][$aid])) {
+ // Get cache
+ $ret = $cacheArray['admins']['login'][$aid];
+
+ // Update cache hits
+ $_CONFIG['cache_hits']++;
+ } elseif (!EXT_IS_ACTIVE("cache")) {
// Load from database
$result = SQL_QUERY_ESC("SELECT login FROM "._MYSQL_PREFIX."_admins WHERE id=%s LIMIT 1",
- array(bigintval($aid)), __FILE__, __LINE__);
+ array(bigintval($aid)), __FILE__, __LINE__);
if (SQL_NUMROWS($result) == 1) {
// Fetch data
list($ret) = SQL_FETCHROW($result);
// Set cache
$cacheArray['admins']['login'][$aid] = $ret;
- }
+ } // END - if
// Free memory
SQL_FREERESULT($result);
}
return $ret;
}
+// Get email address of admin id
+function GET_ADMIN_EMAIL ($aid) {
+ global $cacheArray, $_CONFIG;
+
+ $ret = "***";
+ if (!empty($cacheArray['admins']['email'])) {
+ // Get cache
+ $ret = $cacheArray['admins']['email'][$aid];
+
+ // Update cache hits
+ $_CONFIG['cache_hits']++;
+ } elseif (!EXT_IS_ACTIVE("cache")) {
+ // Load from database
+ $result_aid = SQL_QUERY_ESC("SELECT email FROM "._MYSQL_PREFIX."_admins WHERE id=%s LIMIT 1",
+ array(bigintval($ret)), __FILE__, __LINE__);
+ if (SQL_NUMROWS($result) == 1) {
+ // Get data
+ list($ret) = SQL_FETCHROW($result_aid);
+
+ // Set cache
+ $cacheArray['admins']['email'][$aid] = $ret;
+ } // END - if
+
+ // Free result
+ SQL_FREERESULT($result_aid);
+ }
+
+ // Return email
+ return $ret;
+}
+// Get default ACL of admin id
+function GET_ADMIN_DEFAULT_ACL ($aid) {
+ global $cacheArray, $_CONFIG;
+
+ $ret = "***";
+ if (!empty($cacheArray['admins']['def_acl'])) {
+ // Use cache
+ $ret = $cacheArray['admins']['def_acl'][$aid];
+
+ // Update cache hits
+ $_CONFIG['cache_hits']++;
+ } else {
+ // Load from database
+ $result_aid = SQL_QUERY_ESC("SELECT default_acl FROM "._MYSQL_PREFIX."_admins WHERE id=%s LIMIT 1",
+ array(bigintval($ret)), __FILE__, __LINE__);
+ if (SQL_NUMROWS($result) == 1) {
+ // Fetch data
+ list($ret) = SQL_FETCHROW($result_aid);
+
+ // Set cache
+ $cacheArray['admins']['def_acl'][$aid] = $ret;
+ }
+
+ // Free result
+ SQL_FREERESULT($result_aid);
+ }
+
+ // Return email
+ return $ret;
+}
//
function ADD_OPTION_LINES($table, $id, $name, $default="",$special="",$where="") {
$ret = "";
@@ -1355,12 +1497,12 @@ function ADD_OPTION_LINES($table, $id, $name, $default="",$special="",$where="")
// Selection from array
if (is_array($id) && is_array($name) && sizeof($id) == sizeof($name)) {
// Both are arrays
- foreach ($id as $idx=>$value) {
+ foreach ($id as $idx => $value) {
$ret .= "\n";
- }
+ } // END - while
// Free memory
SQL_FREERESULT($result);
@@ -1390,7 +1532,7 @@ function ADD_OPTION_LINES($table, $id, $name, $default="",$special="",$where="")
// Return - hopefully - the requested data
return $ret;
}
-// Aiut
+// Activate exchange (DEPERECATED???)
function activateExchange() {
global $_CONFIG;
$result = SQL_QUERY("SELECT userid FROM "._MYSQL_PREFIX."_user_data WHERE status='CONFIRMED' AND max_mails > 0", __FILE__, __LINE__);
@@ -1435,7 +1577,7 @@ WHERE p.userid=%s", array(bigintval($uid)), __FILE__, __LINE__);
if (GET_EXT_VERSION("mediadata") >= "0.0.4") {
// Update database
MEDIA_UPDATE_ENTRY(array("total_points"), "sub", $points);
- }
+ } // END - if
// Now, when we have all his points adds them do the jackpot!
ADD_JACKPOT($points);
@@ -1452,7 +1594,7 @@ WHERE p.userid=%s", array(bigintval($uid)), __FILE__, __LINE__);
}
// Now a mail to the user and that's all...
- $msg = LOAD_EMAIL_TEMPLATE("del-user", $reason, $uid);
+ $msg = LOAD_EMAIL_TEMPLATE("del-user", array('text' => $reason), $uid);
SEND_EMAIL($uid, ADMIN_DEL_ACCOUNT, $msg);
// Ok, delete the account!
@@ -1477,7 +1619,7 @@ function ADD_JACKPOT($points)
if (SQL_NUMROWS($result) == 0)
{
// Create line
- $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_jackpot (ok, points) VALUES ('ok', '%s')", array($points), __FILE__, __LINE__);
+ $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_jackpot (ok, points) VALUES ('ok','%s')", array($points), __FILE__, __LINE__);
}
else
{
@@ -1531,7 +1673,7 @@ function LOAD_CONFIG($no="0") {
if ((is_array($cacheArray)) && (isset($cacheArray['config'][$no])) && (is_array($cacheArray['config'][$no]))) {
// Load config from cache
//* DEBUG: */ echo gettype($cacheArray['config'][$no])."
\n";
- foreach ($cacheArray['config'][$no] as $key=>$value) {
+ foreach ($cacheArray['config'][$no] as $key => $value) {
$CFG_DUMMY[$key] = $value;
} // END - foreach
@@ -1559,6 +1701,8 @@ function LOAD_CONFIG($no="0") {
}
// Gets the matching what name from module
function GET_WHAT($MOD_CHECK) {
+ global $_CONFIG;
+
$wht = "";
//* DEBUG: */ echo __LINE__."!".$MOD_CHECK."!
\n";
switch ($MOD_CHECK)
@@ -1570,6 +1714,7 @@ function GET_WHAT($MOD_CHECK) {
case "login":
case "index":
$wht = "welcome";
+ if (($MOD_CHECK == "index") && (!empty($_CONFIG['index_home']))) $wht = $_CONFIG['index_home'];
break;
default:
@@ -1626,7 +1771,7 @@ function MODULE_HAS_MENU($mod, $forceDb = false)
// Subtract points from database and mediadata cache
function SUB_POINTS ($uid, $points) {
// Add points to used points
- $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_user_data SET used_points=used_points+%s WHERE userid=%s LIMIT 1",
+ $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_user_data SET `used_points`=`used_points`+%s WHERE userid=%s LIMIT 1",
array($points, bigintval($uid)), __FILE__, __LINE__);
// Update mediadata as well
@@ -1676,14 +1821,8 @@ function UPDATE_CONFIG ($entries, $values, $updateMode="") {
$affectedRows = SQL_AFFECTEDROWS();
//* DEBUG: */ echo __FUNCTION__.":entries={$entries},affectedRows={$affectedRows}
\n";
- // Destroy cache?
- if ((GET_EXT_VERSION("cache") >= "0.1.2") && ($affectedRows == 1)) {
- global $cacheInstance, $_CONFIG, $CSS;
- if ($cacheInstance->cache_file("config", true)) $cacheInstance->cache_destroy();
-
- // Rebuid the cache
- require(PATH."inc/load_cache-config.php");
- } // END - if
+ // Rebuild cache
+ REBUILD_CACHE("config", "config");
}
// Creates a new task for updated extension
function CREATE_EXTENSION_UPDATE_TASK ($admin_id, $subject, $notes) {
@@ -1692,7 +1831,7 @@ function CREATE_EXTENSION_UPDATE_TASK ($admin_id, $subject, $notes) {
array($subject), __FILE__, __LINE__);
if (SQL_NUMROWS($result) == 0) {
// Task not created so it's a brand-new extension which we need to register and create a task for!
- $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_task_system (assigned_admin, userid, status, task_type, subject, text, task_created) VALUES ('%s', '0', 'NEW', 'EXTENSION_UPDATE', '%s', '%s', UNIX_TIMESTAMP())",
+ $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_task_system (assigned_admin, userid, status, task_type, subject, text, task_created) VALUES ('%s','0','NEW','EXTENSION_UPDATE','%s','%s', UNIX_TIMESTAMP())",
array($admin_id, $subject, $notes), __FILE__, __LINE__);
} // END - if
@@ -1718,12 +1857,12 @@ function CREATE_NEW_EXTENSION_TASK ($admin_id, $subject, $ext) {
$msg = LOAD_TEMPLATE("ext_".$ext, true);
} else {
// Load default message
- $msg = LOAD_EMAIL_TEMPLATE("admin_new_ext","", 0);
+ $msg = LOAD_TEMPLATE("admin_new_ext", "", 0);
}
// Task not created so it's a brand-new extension which we need to register and create a task for!
$result_insert = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_task_system (assigned_admin, userid, status, task_type, subject, text, task_created)
-VALUES (%s, 0, 'NEW', 'EXTENSION', '%s', '%s', UNIX_TIMESTAMP())",
+VALUES (%s,0,'NEW','EXTENSION','%s','%s',UNIX_TIMESTAMP())",
array(
$admin_id,
$subject,
@@ -1735,5 +1874,6 @@ VALUES (%s, 0, 'NEW', 'EXTENSION', '%s', '%s', UNIX_TIMESTAMP())",
// Free memory
SQL_FREERESULT($result);
}
+
//
?>