X-Git-Url: https://git.mxchange.org/?a=blobdiff_plain;f=inc%2Fmodules%2Fguest%2Fwhat-sponsor_login.php;h=efb695ff1049ffbd718eb148d3030a6cea62b408;hb=1f98151ba359a81bb54a1c4c8010b24fa4c9dcf0;hp=bd05f92770e5e2c1bcd32190e4d776633910bf64;hpb=d74aa129862f2320ddca46d9a68f109e3083cfba;p=mailer.git

diff --git a/inc/modules/guest/what-sponsor_login.php b/inc/modules/guest/what-sponsor_login.php
index bd05f92770..efb695ff10 100644
--- a/inc/modules/guest/what-sponsor_login.php
+++ b/inc/modules/guest/what-sponsor_login.php
@@ -10,7 +10,12 @@
  * -------------------------------------------------------------------- *
  * Kurzbeschreibung  : Loginformular und Neues Passwort fuer Sponsor    *
  * -------------------------------------------------------------------- *
- *                                                                      *
+ * $Revision::                                                        $ *
+ * $Date::                                                            $ *
+ * $Tag:: 0.2.1-FINAL                                                 $ *
+ * $Author::                                                          $ *
+ * Needs to be in all Files and every File needs "svn propset           *
+ * svn:keywords Date Revision" (autoprobset!) at least!!!!!!            *
  * -------------------------------------------------------------------- *
  * Copyright (c) 2003 - 2008 by Roland Haeder                           *
  * For more information visit: http://www.mxchange.org                  *
@@ -35,7 +40,7 @@ if (!defined('__SECURITY')) {
 	$INC = substr(dirname(__FILE__), 0, strpos(dirname(__FILE__), "/inc") + 4)."/security.php";
 	require($INC);
 } elseif ((!EXT_IS_ACTIVE("sponsor"))) {
-	addFatalMessage(getMessage('EXTENSION_PROBLEM_EXT_INACTIVE'), "sponsor");
+	addFatalMessage(__FILE__, __LINE__, getMessage('EXTENSION_PROBLEM_EXT_INACTIVE'), "sponsor");
 	return;
 }
 
@@ -43,9 +48,9 @@ if (!defined('__SECURITY')) {
 ADD_DESCR("guest", __FILE__);
 
 $MODE = "";
-if (!empty($_GET['mode'])) {
+if (REQUEST_ISSET_GET(('mode'))) {
 	// A "special" mode of the login system was requested
-	switch ($_GET['mode'])
+	switch (REQUEST_GET('mode'))
 	{
 		case "activate" : $MODE = "activate";  break; // Activation link requested
 		case "lost_pass": $MODE = "lost_pass"; break; // Request new password
@@ -53,7 +58,7 @@ if (!empty($_GET['mode'])) {
 } // END - if
 
 // Check if hash for confirmation of email address is given...
-if (!empty($_GET['hash'])) {
+if (REQUEST_ISSET_GET(('hash'))) {
 	// Lookup sponsor
 	$result = SQL_QUERY_ESC("SELECT id, status, gender, surname, family,
 company, position, tax_ident,
@@ -61,7 +66,7 @@ street_nr1, street_nr2, country, zip, city, email, phone, fax, cell,
 points_amount AS points, last_pay AS pay, last_curr AS curr
 FROM `{!_MYSQL_PREFIX!}_sponsor_data`
 WHERE hash='%s' AND (`status`='UNCONFIRMED' OR `status`='EMAIL')
-LIMIT 1", array($_GET['hash']), __FILE__, __LINE__);
+LIMIT 1", array(REQUEST_GET('hash')), __FILE__, __LINE__);
 	if (SQL_NUMROWS($result) == 1) {
 		// Sponsor found, load his data...
 		$SPONSOR = SQL_FETCHARRAY($result);
@@ -76,7 +81,7 @@ LIMIT 1", array($_GET['hash']), __FILE__, __LINE__);
 			// Set account to pending
 			SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_sponsor_data` SET `status`='PENDING'
 WHERE id='%s' AND hash='%s' AND `status`='UNCONFIRMED' LIMIT 1",
- array(bigintval($SPONSOR['id']), $_GET['hash']), __FILE__, __LINE__);
+ array(bigintval($SPONSOR['id']), REQUEST_GET('hash')), __FILE__, __LINE__);
 
 			// Check on success
 			if (SQL_AFFECTEDROWS() == 1) {
@@ -97,7 +102,7 @@ WHERE id='%s' AND hash='%s' AND `status`='UNCONFIRMED' LIMIT 1",
 			// Changed email adress need to be confirmed
 			SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_sponsor_data` SET `status`='CONFIRMED'
 WHERE id='%s' AND hash='%s' AND `status`='EMAIL' LIMIT 1",
- array(bigintval($SPONSOR['id']), $_GET['hash']), __FILE__, __LINE__);
+ array(bigintval($SPONSOR['id']), REQUEST_GET('hash')), __FILE__, __LINE__);
 
 			// Check on success 
 			if (SQL_AFFECTEDROWS() == 1) {
@@ -120,17 +125,17 @@ WHERE id='%s' AND hash='%s' AND `status`='EMAIL' LIMIT 1",
 	SQL_FREERESULT($result);
 } elseif ($MODE == "activate") {
 	// Send activation link again
-	if (isset($_POST['ok'])) {
+	if (IS_FORM_SENT()) {
 		// Check submitted data
-		if (empty($_POST['email'])) unset($_POST['ok']);
+		if (!REQUEST_ISSET_POST(('email'))) REQUEST_UNSET_POST('ok');
 	}
 
-	if (isset($_POST['ok'])) {
+	if (IS_FORM_SENT()) {
 		// Check email
 		$result = SQL_QUERY_ESC("SELECT id, hash, status, remote_addr, gender, surname, family, sponsor_created
 FROM `{!_MYSQL_PREFIX!}_sponsor_data`
 WHERE email='%s' AND (`status`='UNCONFIRMED' OR `status`='EMAIL') LIMIT 1",
-			array($_POST['email']), __FILE__, __LINE__);
+			array(REQUEST_POST('email')), __FILE__, __LINE__);
 
 		// Entry found?
 		if (SQL_NUMROWS($result) == 1) {
@@ -149,13 +154,13 @@ WHERE email='%s' AND (`status`='UNCONFIRMED' OR `status`='EMAIL') LIMIT 1",
 				// Confirmed email address
 				$msg_sponsor = LOAD_EMAIL_TEMPLATE("sponsor_email", $SPONSOR);
 			}
-			SEND_EMAIL($_POST['email'], SPONSOR_ACTIVATION_LINK_SUBJ, $msg_sponsor);
+			SEND_EMAIL(REQUEST_POST('email'), SPONSOR_ACTIVATION_LINK_SUBJ, $msg_sponsor);
 
 			// Output message
-			LOAD_TEMPLATE("admin_settings_saved", false, SPONSOR_ACTIVATION_LINK_SENT);
+			LOAD_TEMPLATE("admin_settings_saved", false, getMessage('SPONSOR_ACTIVATION_LINK_SENT'));
 		} else {
 			// No account found or not UNCONFIRMED
-			LOAD_TEMPLATE("admin_settings_saved", false, SPONSOR_ACTIVATION_LINK_404);
+			LOAD_TEMPLATE("admin_settings_saved", false, getMessage('SPONSOR_ACTIVATION_LINK_404'));
 		}
 
 		// Free memory
@@ -166,17 +171,17 @@ WHERE email='%s' AND (`status`='UNCONFIRMED' OR `status`='EMAIL') LIMIT 1",
 	}
 } elseif ($MODE == "lost_pass") {
 	// Send new password
-	if (isset($_POST['ok'])) {
+	if (IS_FORM_SENT()) {
 		// Check submitted data
-		if (empty($_POST['email'])) unset($_POST['ok']);
+		if (!REQUEST_ISSET_POST(('email'))) REQUEST_UNSET_POST('ok');
 	} // END - if
 
-	if (isset($_POST['ok'])) {
+	if (IS_FORM_SENT()) {
 		// Check email
 		$result = SQL_QUERY_ESC("SELECT id, hash, remote_addr, gender, surname, family, sponsor_created
 FROM `{!_MYSQL_PREFIX!}_sponsor_data`
 WHERE email='%s' AND id='%s' AND `status`='CONFIRMED' LIMIT 1",
-			array($_POST['email'], bigintval($_POST['id'])), __FILE__, __LINE__);
+			array(REQUEST_POST('email'), bigintval(REQUEST_POST('id'))), __FILE__, __LINE__);
 		// Entry found?
 		if (SQL_NUMROWS($result) == 1) {
 			// Unconfirmed sponsor account found so let's load the requested data
@@ -191,7 +196,7 @@ WHERE email='%s' AND id='%s' AND `status`='CONFIRMED' LIMIT 1",
 
 			// Prepare email and send it to the sponsor
 			$msg_sponsor = LOAD_EMAIL_TEMPLATE("sponsor_lost", $SPONSOR);
-			SEND_EMAIL($_POST['email'], SPONSOR_LOST_PASSWORD_SUBJ, $msg_sponsor);
+			SEND_EMAIL(REQUEST_POST('email'), SPONSOR_LOST_PASSWORD_SUBJ, $msg_sponsor);
 
 			// Update password
 			SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_sponsor_data` SET password='%s'
@@ -199,10 +204,10 @@ WHERE id='%s' LIMIT 1",
  array(md5($SPONSOR['password']), bigintval($SPONSOR['id'])), __FILE__, __LINE__);
 
 			// Output message
-			LOAD_TEMPLATE("admin_settings_saved", false, SPONSOR_LOST_PASSWORD_SENT);
+			LOAD_TEMPLATE("admin_settings_saved", false, getMessage('SPONSOR_LOST_PASSWORD_SENT'));
 		} else {
 			// No account found or not UNCONFIRMED
-			LOAD_TEMPLATE("admin_settings_saved", false, SPONSOR_LOST_PASSWORD_404);
+			LOAD_TEMPLATE("admin_settings_saved", false, getMessage('SPONSOR_LOST_PASSWORD_404'));
 		}
 
 		// Free memory
@@ -211,18 +216,18 @@ WHERE id='%s' LIMIT 1",
 		// Load form
 		LOAD_TEMPLATE("guest_sponsor_lost");
 	}
-} elseif (isset($_POST['ok'])) {
+} elseif (IS_FORM_SENT()) {
 	// Check status and login data ...
 	$result = SQL_QUERY_ESC("SELECT status FROM `{!_MYSQL_PREFIX!}_sponsor_data`
 WHERE id='%s' AND password='%s' LIMIT 1",
- array(bigintval($_POST['sponsorid']), md5($_POST['pass'])), __FILE__, __LINE__);
+		array(bigintval(REQUEST_POST('sponsorid')), md5(REQUEST_POST('pass'))), __FILE__, __LINE__);
 	if (SQL_NUMROWS($result) == 1) {
 		// Okay, first login data check passed, now has he/she an approved (CONFIRMED) account?
 		list($status) = SQL_FETCHROW($result);
 		if ($status == "CONFIRMED") {
 			// Is confirmed so both is fine and we can continue with login procedure
-			$login = ((set_session('sponsorid'  , bigintval($_POST['sponsorid']))) &&
-			          (set_session('sponsorpass', md5($_POST['pass'])           ))
+			$login = ((set_session('sponsorid'  , bigintval(REQUEST_POST('sponsorid')))) &&
+			          (set_session('sponsorpass', md5(REQUEST_POST('pass'))           ))
 			);
 
 			if ($login) {
@@ -230,7 +235,7 @@ WHERE id='%s' AND password='%s' LIMIT 1",
 				LOAD_URL("modules.php?module=sponsor");
 			} else {
 				// Cookie setup failed!
-				LOAD_TEMPLATE("admin_settings_saved", false, SPONSPOR_COOKIE_SETUP_FAILED);
+				LOAD_TEMPLATE("admin_settings_saved", false, getMessage('SPONSPOR_COOKIE_SETUP_FAILED'));
 
 				// Login formular and other links
 				LOAD_TEMPLATE("guest_sponsor_login");
@@ -245,7 +250,7 @@ WHERE id='%s' AND password='%s' LIMIT 1",
 		}
 	} else {
 		// Account missing or wrong pass! We shall not find this out for the "hacker folks"...
-		LOAD_TEMPLATE("admin_settings_saved", false, SPONSOR_LOGIN_FAILED_404_WRONG_PASS);
+		LOAD_TEMPLATE("admin_settings_saved", false, getMessage('SPONSOR_LOGIN_FAILED_404_WRONG_PASS'));
 
 		// Login formular and other links
 		LOAD_TEMPLATE("guest_sponsor_login");