X-Git-Url: https://git.mxchange.org/?a=blobdiff_plain;f=inc%2Fmodules%2Fadmin%2Fwhat-add_points.php;h=f514b885cdee17f65e6ffebc4523d5000e16493f;hb=b8ba3824d640da47d5f81485650b5885ba60867b;hp=ab77cda645523dfe6f108218adb063af1c74481a;hpb=963e55ca1ea79e255f235e359cde9f7862191dc5;p=mailer.git diff --git a/inc/modules/admin/what-add_points.php b/inc/modules/admin/what-add_points.php index ab77cda645..f514b885cd 100644 --- a/inc/modules/admin/what-add_points.php +++ b/inc/modules/admin/what-add_points.php @@ -38,7 +38,7 @@ if ((!defined('__SECURITY')) || (!IS_ADMIN())) { } // Add description as navigation point -ADD_DESCR("admin", basename(__FILE__)); +ADD_DESCR("admin", __FILE__); // Fix a notice if (!isset($_GET['u_id'])) $_GET['u_id'] = ""; @@ -58,19 +58,24 @@ if ($_GET['u_id'] == "all") { SQL_FREERESULT($result); if ((isset($_POST['ok'])) && (!empty($_POST['points']))) { + global $DEPTH; + // Remove depth to prevent booking errors. This is a bad coding + // practice, thats also why we need to write this project from + // scratch... + unset($DEPTH); + // Ok, add points and send an email to him... - $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_user_points SET points=points+(%s) WHERE userid=%s AND ref_depth=0 LIMIT 1", - array($_POST['points'], bigintval($uid)), __FILE__, __LINE__); + ADD_POINTS_REFSYSTEM("admin_all", $uid, bigintval($_POST['points']), false, "0", false, "direct"); - // Update mediadata as well - if (GET_EXT_VERSION("mediadata") >= "0.0.4") { - // Update database - MEDIA_UPDATE_ENTRY(array("total_points"), "add", $_POST['points']); - } + // Prepare content + $content = array( + 'text' => SQL_ESCAPE($_POST['reason']), + 'points' => bigintval($_POST['points']) + ); // Load email template and send email away - $msg = LOAD_EMAIL_TEMPLATE("add-points", $_POST['reason'], $uid); - SEND_EMAIL($email, ADMIN_ADD_SUBJ, $msg); + $msg = LOAD_EMAIL_TEMPLATE("add-points", $content, bigintval($uid)); + SEND_EMAIL(bigintval($uid), ADMIN_ADD_SUBJ, $msg); } } } @@ -94,22 +99,30 @@ if ($_GET['u_id'] == "all") { SQL_FREERESULT($result); if ((isset($_POST['ok'])) && (!empty($_POST['points']))) { + global $DEPTH; + // Remove depth to prevent booking errors. This is a bad coding + // practice, thats also why we need to write this project from + // scratch... + unset($DEPTH); + // Ok, add points and send an email to him... - $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_user_points SET points=points+(%s) WHERE userid=%s AND ref_depth=0 LIMIT 1", - array($_POST['points'], bigintval($_GET['u_id'])), __FILE__, __LINE__); + ADD_POINTS_REFSYSTEM("admin_single", bigintval($_GET['u_id']), bigintval($_POST['points']), false, "0", false, "direct"); - // Remember points in constant - define('__POINTS_VALUE', $_POST['points']); + // Prepare content + $content = array( + 'text' => SQL_ESCAPE($_POST['reason']), + 'points' => bigintval($_POST['points']) + ); // Message laden - $msg = LOAD_EMAIL_TEMPLATE("add-points", $_POST['reason'], $_GET['u_id']); + $msg = LOAD_EMAIL_TEMPLATE("add-points", $content, bigintval($_GET['u_id'])); - SEND_EMAIL($email, ADMIN_ADD_SUBJ, $msg); + SEND_EMAIL(bigintval($_GET['u_id']), ADMIN_ADD_SUBJ, $msg); LOAD_TEMPLATE("admin_settings_saved", false, ADMIN_POINTS_ADDED); } else { // Opps, missing form here define('__USER_VALUE', "".$sname." ".$fname.""); - define('__UID_VALUE', $_GET['u_id']); + define('__UID' , bigintval($_GET['u_id'])); LOAD_TEMPLATE("admin_add_points"); } } else {