X-Git-Url: https://git.mxchange.org/?a=blobdiff_plain;f=inc%2Fmodules%2Fadmin%2Fwhat-list_payouts.php;h=b312d6533852f3a03abe0704279273b99026544f;hb=76740e48546bb3fdb9fca65d8d205765f2bd4d68;hp=b9cbf025b58fe42984f178955d545bc943142acc;hpb=d3c4fdd9bfab35389e1a5ff48f3952d527c7b4bb;p=mailer.git
diff --git a/inc/modules/admin/what-list_payouts.php b/inc/modules/admin/what-list_payouts.php
index b9cbf025b5..b312d65338 100644
--- a/inc/modules/admin/what-list_payouts.php
+++ b/inc/modules/admin/what-list_payouts.php
@@ -1,7 +1,7 @@
0)) {
+ if (!isGetRequestParameterSet('task') && (!empty($userid)) && (isValidUserId($userid))) {
// Get task id from database
- $result = SQL_QUERY_ESC("SELECT `id` FROM `{?_MYSQL_PREFIX?}_task_system` WHERE `userid`=%s AND `task_type`='PAYOUT_REQUEST' AND task_created='".$tstamp."' LIMIT 1",
- array(bigintval($userid)), __FILE__, __LINE__);
- list($task) = SQL_FETCHROW($result);
+ $result = SQL_QUERY_ESC("SELECT `id` FROM `{?_MYSQL_PREFIX?}_task_system` WHERE `userid`=%s AND `task_type`='PAYOUT_REQUEST' AND `task_created`=%s LIMIT 1",
+ array(bigintval($userid), bigintval($tstamp)), __FILE__, __LINE__);
+ list($taskId) = SQL_FETCHROW($result);
SQL_FREERESULT($result);
- if (empty($task)) $task = 0;
- } elseif ((empty($userid)) || ($userid == 0)) {
+ if (empty($taskId)) $taskId = '0';
+ } elseif ((empty($userid)) || ($userid == '0')) {
// Cannot obtain member id!
- loadTemplate('admin_settings_saved', false, getMessage('PAYOUT_FAILED_OBTAIN_USERID'));
+ displayMessage('{--ADMIN_PAYOUT_FAILED_OBTAIN_USERID--}');
} else {
// Get task id from URL
- $task = getRequestElement('task');
+ $taskId = getRequestParameter('task');
}
- if ((!empty($task)) && (!empty($userid)) && ($userid > 0)) {
+ if ((!empty($taskId)) && (!empty($userid)) && (isValidUserId($userid))) {
// Load user's data
- $result = SQL_QUERY_ESC("SELECT `email`, `gender`, `surname`, `family` FROM `{?_MYSQL_PREFIX?}_user_data` WHERE `userid`=%s LIMIT 1",
- array(bigintval($userid)), __FILE__, __LINE__);
- list($email, $gender, $surname, $family) = SQL_FETCHROW($result);
- SQL_FREERESULT($result);
+ if (!fetchUserData($userid)) {
+ // Abort here because it is not valid!
+ debug_report_bug(__FILE__, __LINE__, 'No user account ' . $userid . ' found.');
+ } // END - if
- if ((getRequestElement('do') == 'accept') && (!empty($email))) {
+ if ((getRequestParameter('do') == 'accept') && (getUserData('email') != '')) {
// Ok, now we can output the form or execute accepting
if (isFormSent()) {
// Obtain payout type and other data
$result = SQL_QUERY_ESC("SELECT `payout_id` FROM `{?_MYSQL_PREFIX?}_user_payouts` WHERE `id`=%s LIMIT 1",
- array(bigintval(getRequestElement('pid'))), __FILE__, __LINE__);
+ array(bigintval(getRequestParameter('pid'))), __FILE__, __LINE__);
+
+ // Load ptype (id)
list($ptype) = SQL_FETCHROW($result);
+
+ // Free result
SQL_FREERESULT($result);
if (!empty($ptype)) {
// Obtain data from payout type
- $result = SQL_QUERY_ESC("SELECT `from_account`, `from_pass`, `engine_url`, `engine_ret_ok`, `engine_ret_failed`, `pass_enc`, `allow_url`
+ $result = SQL_QUERY_ESC("SELECT
+ `from_account`, `from_pass`, `engine_url`, `engine_ret_ok`, `engine_ret_failed`, `pass_enc`, `allow_url`
FROM
`{?_MYSQL_PREFIX?}_payout_types`
WHERE
`id`=%s
LIMIT 1",
array(bigintval($ptype)), __FILE__, __LINE__);
- list($fuserid, $fpass, $eurl, $eok, $failed, $eenc, $allow) = SQL_FETCHROW($result);
+
+ // Load data
+ $data = SQL_FETCHARRAY($result);
+
+ // Free result
SQL_FREERESULT($result);
- if (!empty($eurl)) {
+ if (!empty($data['engine_url'])) {
// Ok, run URL...
- $eurl = compileCode($eurl);
- switch ($eenc) {
+ switch ($data['pass_enc']) {
case 'md5':
- $fpass = md5($fpass);
+ $data['from_pass'] = md5($data['from_pass']);
$tpass = md5($tpass);
break;
case 'base64':
- $fpass = base64_encode($fpass);
+ $data['from_pass'] = base64_encode($data['from_pass']);
$tpass = base64_encode($tpass);
break;
- }
+ } // END - switch
// Transfer variables...
- $eval = "\$URL = \"".$eurl."\";";
- $reason = encodeString(getMessage('PAYOUT_REASON_PAYOUT'), false);
-
- // Run code...
- // @TODO Do we need this time-consuming eval() here?
- eval($eval);
+ $reason = encodeString(getMessage('ADMIN_PAYOUT_REASON'), false);
// Execute transfer
- $ret = sendGetRequest($URL);
+ $ret = sendGetRequest($data['engine_url']);
} else {
// No URL to run
- $ret[0] = $eok;
+ $ret[0] = $data['engine_ret_ok'];
}
- if ($ret[0] == $eok) {
+ if ($ret[0] == $data['engine_ret_ok']) {
// Clear task
- if ($task > 0) {
- runFilterChain('solve_task', $task);
+ if ($taskId > 0) {
+ runFilterChain('solve_task', $taskId);
}
// Clear payout request
SQL_QUERY_ESC("UPDATE `{?_MYSQL_PREFIX?}_user_payouts` SET `status`='ACCEPTED' WHERE `id`=%s LIMIT 1",
- array(bigintval(getRequestElement('pid'))), __FILE__, __LINE__);
+ array(bigintval(getRequestParameter('pid'))), __FILE__, __LINE__);
// Send out mail
- $message = loadEmailTemplate('member_payout_accepted', postRequestElement('text'), $userid);
+ $message = loadEmailTemplate('member_payout_accepted', postRequestParameter('text'), $userid);
// Output message
- if ($allow == 'Y') {
+ if ($data['allow_url'] == 'Y') {
// Banner / Textlink request
- loadTemplate('admin_settings_saved', false, getMessage('PAYOUT_BANNER_ACCEPTED_NOTIFIED'));
+ displayMessage('{--ADMIN_PAYOUT_BANNER_ACCEPTED_NOTIFIED--}');
} else {
// Normal request
- loadTemplate('admin_settings_saved', false, getMessage('PAYOUT_ACCEPTED_NOTIFIED'));
+ displayMessage('{--ADMIN_PAYOUT_ACCEPTED_NOTIFIED--}');
}
// Finally send mail
- sendEmail($email, getMessage('PAYOUT_ACCEPTED_SUBJECT'), $message);
+ sendEmail(getUserData('userid'), '{--MEMBER_PAYOUT_ACCEPTED_SUBJECT--}', $message);
} else {
// Something goes wrong... :-(
- $content = implode("
", $ret);
+ $content = implode('
', $ret);
loadTemplate('admin_payout_failed_transfer', false, $content);
}
} else {
// Cannot load payout id
- loadTemplate('admin_settings_saved', false, "