X-Git-Url: https://git.mxchange.org/?a=blobdiff_plain;f=inc%2Fmodules%2Fmember%2Fwhat-mydata.php;h=efa643a7a62225c1b54a0f3975b61e288965ce4f;hb=f7f6e55ee0d90558ad773ce6168767c0af816696;hp=ee8c3d97156d12977889a46882c4a2c306023c02;hpb=0e899620c7a065952d6787c236fb2b33ae337d6a;p=mailer.git diff --git a/inc/modules/member/what-mydata.php b/inc/modules/member/what-mydata.php index ee8c3d9715..efa643a7a6 100644 --- a/inc/modules/member/what-mydata.php +++ b/inc/modules/member/what-mydata.php @@ -32,17 +32,12 @@ ************************************************************************/ // Some security stuff... -if (ereg(basename(__FILE__), $_SERVER['PHP_SELF'])) -{ +if (!defined('__SECURITY')) { $INC = substr(dirname(__FILE__), 0, strpos(dirname(__FILE__), "/inc") + 4) . "/security.php"; require($INC); -} - elseif (!IS_LOGGED_IN()) -{ +} elseif (!IS_MEMBER()) { LOAD_URL("modules.php?module=index"); -} - elseif ((!EXT_IS_ACTIVE("mydata")) && (!IS_ADMIN())) -{ +} elseif (!EXT_IS_ACTIVE("mydata")) { ADD_FATAL(EXTENSION_PROBLEM_EXT_INACTIVE, "mydata"); return; } @@ -50,7 +45,6 @@ if (ereg(basename(__FILE__), $_SERVER['PHP_SELF'])) // Add description as navigation point ADD_DESCR("member", basename(__FILE__)); -OPEN_TABLE("100%", "member_content member_content_align", ""); define('UID_VALUE', $GLOBALS['userid']); $URL = ""; // Detect what the member wants to do @@ -65,20 +59,20 @@ case "show": // Show his data if (EXT_IS_ACTIVE("country", true)) { // New way 0 1 2 3 4 5 6 7 8 9 10 11 12 13 - $result = SQL_QUERY_ESC("SELECT surname, family, street_nr, country_code, zip, city, email, birth_day, birth_month, birth_year, sex, max_mails, receive_mails, last_update FROM "._MYSQL_PREFIX."_user_data WHERE userid=%d LIMIT 1", + $result = SQL_QUERY_ESC("SELECT surname, family, street_nr, country_code, zip, city, email, birth_day, birth_month, birth_year, gender, max_mails, receive_mails, last_update FROM "._MYSQL_PREFIX."_user_data WHERE userid=%s LIMIT 1", array(UID_VALUE), __FILE__, __LINE__); } else { // Old way 0 1 2 3 4 5 6 7 8 9 10 11 12 13 - $result = SQL_QUERY_ESC("SELECT surname, family, street_nr, country, zip, city, email, birth_day, birth_month, birth_year, sex, max_mails, receive_mails, last_update FROM "._MYSQL_PREFIX."_user_data WHERE userid=%d LIMIT 1", + $result = SQL_QUERY_ESC("SELECT surname, family, street_nr, country, zip, city, email, birth_day, birth_month, birth_year, gender, max_mails, receive_mails, last_update FROM "._MYSQL_PREFIX."_user_data WHERE userid=%s LIMIT 1", array(UID_VALUE), __FILE__, __LINE__); } $DATA = SQL_FETCHROW($result); SQL_FREERESULT($result); // Translate / add some things - $DATA[10] = TRANSLATE_SEX($DATA[10]); + $DATA[10] = TRANSLATE_GENDER($DATA[10]); $DATA[13] = MAKE_DATETIME($DATA[13], "0"); // How far is last change on his profile away from now? @@ -96,8 +90,8 @@ case "show": // Show his data if (strlen($DATA[8]) == 1) $DATA[8] = "0".$DATA[8]; switch (GET_LANGUAGE()) { - case "de": define ('DOB', $DATA[7].".".$DATA[8].".".$DATA[9]); break; - default : define ('DOB', $DATA[8]."-".$DATA[7]."-".$DATA[9]); break; + case "de": define('DOB', $DATA[7].".".$DATA[8].".".$DATA[9]); break; + default : define('DOB', $DATA[8]."-".$DATA[7]."-".$DATA[9]); break; } if (EXT_IS_ACTIVE("country")) @@ -111,18 +105,15 @@ case "show": // Show his data break; case "edit": // Edit data - if (EXT_IS_ACTIVE("country", true)) - { + if (EXT_IS_ACTIVE("country", true)) { // New way 0 1 2 3 4 5 6 7 8 9 10 11 12 13 - $result = SQL_QUERY_ESC("SELECT surname, family, street_nr, country_code, zip, city, email, birth_day, birth_month, birth_year, sex, max_mails, receive_mails, last_update -FROM "._MYSQL_PREFIX."_user_data WHERE userid=%d LIMIT 1", + $result = SQL_QUERY_ESC("SELECT surname, family, street_nr, country_code, zip, city, email, birth_day, birth_month, birth_year, gender, max_mails, receive_mails, last_update +FROM "._MYSQL_PREFIX."_user_data WHERE userid=%s LIMIT 1", array(UID_VALUE), __FILE__, __LINE__); - } - else - { + } else { // Old way 0 1 2 3 4 5 6 7 8 9 10 11 12 13 - $result = SQL_QUERY_ESC("SELECT surname, family, street_nr, country, zip, city, email, birth_day, birth_month, birth_year, sex, max_mails, receive_mails, last_update -FROM "._MYSQL_PREFIX."_user_data WHERE userid=%d LIMIT 1", + $result = SQL_QUERY_ESC("SELECT surname, family, street_nr, country, zip, city, email, birth_day, birth_month, birth_year, gender, max_mails, receive_mails, last_update +FROM "._MYSQL_PREFIX."_user_data WHERE userid=%s LIMIT 1", array(UID_VALUE), __FILE__, __LINE__); } @@ -203,7 +194,7 @@ FROM "._MYSQL_PREFIX."_user_data WHERE userid=%d LIMIT 1", case "save": // Save entered data // Load old email / password: 0 1 2 - $result = SQL_QUERY_ESC("SELECT email, password, last_update FROM "._MYSQL_PREFIX."_user_data WHERE userid=%d LIMIT 1", + $result = SQL_QUERY_ESC("SELECT email, password, last_update FROM "._MYSQL_PREFIX."_user_data WHERE userid=%s LIMIT 1", array(UID_VALUE), __FILE__, __LINE__); $DATA = SQL_FETCHROW($result); SQL_FREERESULT($result); @@ -224,7 +215,7 @@ case "save": // Save entered data else { // Secure every submitted variable - foreach ($_POST as $key=>$value) + foreach ($_POST as $key => $value) { $_POST[$key] = addslashes($value); } @@ -251,18 +242,18 @@ case "save": // Save entered data { // New way $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_user_data SET -sex='%s', surname='%s', family='%s', +gender='%s', surname='%s', family='%s', street_nr='%s', -country_code=%d, zip=%d, city='%s', +country_code=%s, zip=%s, city='%s', email='%s', -birth_day=%d, birth_month=%d, birth_year=%d, -max_mails=%d, +birth_day=%s, birth_month=%s, birth_year=%s, +max_mails=%s, last_update=UNIX_TIMESTAMP()".$AND.", notified='N', last_profile_sent=UNIX_TIMESTAMP() -WHERE userid=%d AND password='%s' LIMIT 1", +WHERE userid=%s AND password='%s' LIMIT 1", array( - $_POST['sex'], + $_POST['gender'], $_POST['surname'], $_POST['family_name'], $_POST['street_nr'], @@ -282,18 +273,18 @@ array( { // Old way $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_user_data SET -sex='%s', surname='%s', family='%s', +gender='%s', surname='%s', family='%s', street_nr='%s', -country='%s', zip=%d, city='%s', +country='%s', zip=%s, city='%s', email='%s', -birth_day=%d, birth_month=%d, birth_year=%d, +birth_day=%s, birth_month=%s, birth_year=%s, max_mails='%s', last_update=UNIX_TIMESTAMP()".$AND.", notified='N', last_profile_sent=UNIX_TIMESTAMP() -WHERE userid=%d AND password='%s' LIMIT 1", +WHERE userid=%s AND password='%s' LIMIT 1", array( - $_POST['sex'], + $_POST['gender'], $_POST['surname'], $_POST['family_name'], $_POST['street_nr'], @@ -325,17 +316,16 @@ array( break; case "notify": // Switch off notfication - $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_user_data SET notified='N', last_update=UNIX_TIMESTAMP() WHERE userid=%d LIMIT 1", + $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_user_data SET notified='N', last_update=UNIX_TIMESTAMP() WHERE userid=%s LIMIT 1", array($GLOBALS['userid']), __FILE__, __LINE__); $URL = URL."/modules.php?module=login&what=welcome&msg=".urlencode(PROFILE_UPDATED); break; } -CLOSE_TABLE(); -if (!empty($URL)) -{ +if (!empty($URL)) { // Load generated URL LOAD_URL($URL); } + // ?>