X-Git-Url: https://git.mxchange.org/?a=blobdiff_plain;f=inc%2Fmodules%2Fmember%2Fwhat-transfer.php;h=d13f4f82868d216a6997355bd506d0d9d4b4f9b3;hb=414570c5081d337bb6c28dcf521bd8bca02f69e7;hp=59d36bc655c7eeef9a58ca7d21c3ed6ba0a2203a;hpb=82d53dfb7f59fa1e37bd500e3db3d10a9d4a78da;p=mailer.git diff --git a/inc/modules/member/what-transfer.php b/inc/modules/member/what-transfer.php index 59d36bc655..d13f4f8286 100644 --- a/inc/modules/member/what-transfer.php +++ b/inc/modules/member/what-transfer.php @@ -10,7 +10,12 @@ * -------------------------------------------------------------------- * * Kurzbeschreibung : Punktetransfers * * -------------------------------------------------------------------- * - * * + * $Revision:: 856 $ * + * $Date:: 2009-03-06 20:24:32 +0100 (Fr, 06. Mär 2009) $ * + * $Tag:: 0.2.1-FINAL $ * + * $Author:: stelzi $ * + * Needs to be in all Files and every File needs "svn propset * + * svn:keywords Date Revision" (autoprobset!) at least!!!!!! * * -------------------------------------------------------------------- * * Copyright (c) 2003 - 2008 by Roland Haeder * * For more information visit: http://www.mxchange.org * @@ -32,29 +37,29 @@ ************************************************************************/ // Some security stuff... -if (ereg(basename(__FILE__), $_SERVER['PHP_SELF'])) { +if (!defined('__SECURITY')) { $INC = substr(dirname(__FILE__), 0, strpos(dirname(__FILE__), "/inc") + 4) . "/security.php"; require($INC); } elseif (!IS_MEMBER()) { LOAD_URL("modules.php?module=index"); } elseif ((!EXT_IS_ACTIVE("transfer")) && (!IS_ADMIN())) { - ADD_FATAL(EXTENSION_PROBLEM_EXT_INACTIVE, "transfer"); + addFatalMessage(__FILE__, __LINE__, getMessage('EXTENSION_PROBLEM_EXT_INACTIVE'), "transfer"); return; } // Add description as navigation point -ADD_DESCR("member", basename(__FILE__)); +ADD_DESCR("member", __FILE__); // Load data -$result = SQL_QUERY_ESC("SELECT opt_in FROM "._MYSQL_PREFIX."_user_data WHERE userid=%s LIMIT 1", - array($GLOBALS['userid']), __FILE__, __LINE__); +$result = SQL_QUERY_ESC("SELECT opt_in FROM `{!_MYSQL_PREFIX!}_user_data` WHERE userid=%s LIMIT 1", + array($GLOBALS['userid']), __FILE__, __LINE__); list($opt_in) = SQL_FETCHROW($result); // Free memory SQL_FREERESULT($result); $MODE = ""; -if (!empty($_GET['mode'])) $MODE = $_GET['mode']; +if (REQUEST_ISSET_GET(('mode'))) $MODE = REQUEST_GET('mode'); // Check for "faker" if (($opt_in == "N") && ($MODE == "new")) $MODE = ""; @@ -63,273 +68,226 @@ switch ($MODE) { case "new": // Start new transfer // Get total points and subtract the balance amount from it = maximum transferable points - $result = SQL_QUERY_ESC("SELECT SUM(points) FROM "._MYSQL_PREFIX."_user_points WHERE userid=%s AND points > 0", - array($GLOBALS['userid']), __FILE__, __LINE__); - list($total) = SQL_FETCHROW($result); - SQL_FREERESULT($result); - - // Get totally used points and password - $result = SQL_QUERY_ESC("SELECT used_points, password FROM "._MYSQL_PREFIX."_user_data WHERE userid=%s LIMIT 1", - array($GLOBALS['userid']), __FILE__, __LINE__); - list($used, $pass) = SQL_FETCHROW($result); - SQL_FREERESULT($result); + $total = GET_TOTAL_DATA($GLOBALS['userid'], "user_points", "points") - GET_TOTAL_DATA($GLOBALS['userid'], "user_data", "used_points"); // Remember maximum value for template - define('__TRANSFER_MAX_VALUE', round($total - $used - $_CONFIG['transfer_balance'] - 0.5)); + define('__TRANSFER_MAX_VALUE', round($total - getConfig('transfer_balance') - 0.5)); - if (isset($_POST['ok'])) - { + if (IS_FORM_SENT()) { // Add new transfer - if ($_CONFIG['transfer_code'] > 0) - { + if (getConfig('transfer_code') > 0) { // Check for code - $code = GEN_RANDOM_CODE($_CONFIG['transfer_code'], $_POST['code_chk'], $GLOBALS['userid'], __TRANSFER_MAX_VALUE); - $valid_code = ($code == $_POST['code']); - } - else - { + $code = generateRandomCodde(getConfig('transfer_code'), REQUEST_POST('code_chk'), $GLOBALS['userid'], constant('__TRANSFER_MAX_VALUE')); + $valid_code = ($code == REQUEST_POST('code')); + } else { // Zero length (= disabled) is always valid! $valid_code = true; } // Test password - $valid_pass = ($pass == generateHash($_POST['password'], $pass)); + $valid_pass = ($pass == generateHash(REQUEST_POST('password'), $pass)); // Test transfer amount - $valid_amount = ((!empty($_POST['points'])) && ($_POST['points'] <= __TRANSFER_MAX_VALUE)); + $valid_amount = ((REQUEST_ISSET_POST(('points'))) && (REQUEST_POST('points') <= constant('__TRANSFER_MAX_VALUE'))); // Test reason for transfer - $valid_reason = (!empty($_POST['reason'])); + $valid_reason = (REQUEST_ISSET_POST(('reason'))); // Test if a recipient is selected - $valid_recipient = ($_POST['to_uid'] > 0); + $valid_recipient = (REQUEST_POST('to_uid') > 0); // Check for nickname extension and set additional data $nick = false; $ADD = ", userid"; - if (EXT_IS_ACTIVE("nickname")) - { + if (EXT_IS_ACTIVE("nickname")) { $ADD = ", nickname"; $nick = true; } + // Re-check receivers and own personal data - $result = SQL_QUERY_ESC("SELECT userid, gender, surname, family, email".$ADD." FROM "._MYSQL_PREFIX."_user_data WHERE userid IN ('%s', '%s') AND status='CONFIRMED' ORDER BY userid LIMIT 2", - array($GLOBALS['userid'], bigintval($_POST['to_uid'])), __FILE__, __LINE__); + $result = SQL_QUERY_ESC("SELECT userid, gender, surname, family, email".$ADD." FROM `{!_MYSQL_PREFIX!}_user_data` WHERE userid IN ('%s','%s') AND `status`='CONFIRMED' ORDER BY userid LIMIT 2", + array($GLOBALS['userid'], bigintval(REQUEST_POST('to_uid'))), __FILE__, __LINE__); $valid_data = (SQL_NUMROWS($result) == 2); - if ($valid_code && $valid_pass && $valid_amount && $valid_reason && $valid_recipient) - { + if ($valid_code && $valid_pass && $valid_amount && $valid_reason && $valid_recipient) { // Let's start the transfer and load user data list($uid1, $gender1, $sname1, $fname1, $email1, $nick1) = SQL_FETCHROW($result); list($uid2, $gender2, $sname2, $fname2, $email2, $nick2) = SQL_FETCHROW($result); SQL_FREERESULT($result); - if ($uid1 == $GLOBALS['userid']) - { + // @TODO Rewrite all these constants to array elements + if ($uid1 == $GLOBALS['userid']) { // Data row 1 is sender's data - define('__SENDER_GENDER' , TRANSLATE_GENDER($gender1)); - define('__SENDER_NICK' , $nick1); - define('__SENDER_SNAME' , $sname1); - define('__SENDER_FNAME' , $fname1); - define('__SENDER_EMAIL' , $email1); + define('__SENDER_GENDER' , TRANSLATE_GENDER($gender1)); + define('__SENDER_NICK' , $nick1); + define('__SENDER_SNAME' , $sname1); + define('__SENDER_FNAME' , $fname1); + define('__SENDER_EMAIL' , $email1); // Data row 2 is recpient's data - define('__RECIPIENT_GENDER' , TRANSLATE_GENDER($gender2)); - define('__RECIPIENT_NICK' , $nick2); - define('__RECIPIENT_SNAME', $sname2); - define('__RECIPIENT_FNAME', $fname2); - define('__RECIPIENT_EMAIL', $email2); + define('__RECIPIENT_GENDER', TRANSLATE_GENDER($gender2)); + define('__RECIPIENT_NICK' , $nick2); + define('__RECIPIENT_SNAME' , $sname2); + define('__RECIPIENT_FNAME' , $fname2); + define('__RECIPIENT_EMAIL' , $email2); // Prepare variables for testing $TEST_NICK_SENDER = $nick1; $TEST_NICK_REC = $nick2; - } - else - { + } else { // Data row 2 is sender's data - define('__SENDER_GENDER' , TRANSLATE_GENDER($gender2)); - define('__SENDER_NICK' , $nick2); - define('__SENDER_SNAME' , $sname2); - define('__SENDER_FNAME' , $fname2); - define('__SENDER_EMAIL' , $email2); + define('__SENDER_GENDER' , TRANSLATE_GENDER($gender2)); + define('__SENDER_NICK' , $nick2); + define('__SENDER_SNAME' , $sname2); + define('__SENDER_FNAME' , $fname2); + define('__SENDER_EMAIL' , $email2); // Data row 1 is recpient's data - define('__RECIPIENT_GENDER' , TRANSLATE_GENDER($gender1)); - define('__RECIPIENT_NICK' , $nick1); - define('__RECIPIENT_SNAME', $sname1); - define('__RECIPIENT_FNAME', $fname1); - define('__RECIPIENT_EMAIL', $email1); + define('__RECIPIENT_GENDER', TRANSLATE_GENDER($gender1)); + define('__RECIPIENT_NICK' , $nick1); + define('__RECIPIENT_SNAME' , $sname1); + define('__RECIPIENT_FNAME' , $fname1); + define('__RECIPIENT_EMAIL' , $email1); // Prepare variables for testing $TEST_NICK_SENDER = $nick2; $TEST_NICK_REC = $nick1; } + // Sender's UID is always currently stored in cookie userid... define('__SENDER_UID' , $GLOBALS['userid']); - define('__RECIPIENT_UID' , $_POST['to_uid']); - - $SENDER = __SENDER_UID; - $RECIPIENT = __RECIPIENT_UID; - if ($nick) - { - if (($TEST_NICK_SENDER != __SENDER_UID) && (!empty($TEST_NICK_SENDER))) - { - $SENDER = __SENDER_NICK; + define('__RECIPIENT_UID' , REQUEST_POST('to_uid')); + + $SENDER = constant('__SENDER_UID'); + $RECIPIENT = constant('__RECIPIENT_UID'); + if ($nick) { + if (($TEST_NICK_SENDER != constant('__SENDER_UID')) && (!empty($TEST_NICK_SENDER))) { + $SENDER = constant('__SENDER_NICK'); } - if (($TEST_NICK_REC != __RECIPIENT_UID) && (!empty($TEST_NICK_REC))) - { - $RECIPIENT = __RECIPIENT_NICK; + + if (($TEST_NICK_REC != constant('__RECIPIENT_UID')) && (!empty($TEST_NICK_REC))) { + $RECIPIENT = constant('__RECIPIENT_NICK'); } } // Remember transfer reason and fancy date/time in constants - define('__TRANSFER_REASON', $_POST['reason']); - if (function_exists('CREATE_FANCY_TIME')) - { - define('__TRANSFER_EXPIRES', CREATE_FANCY_TIME($_CONFIG['transfer_age'])); - } - else - { - define('__TRANSFER_EXPIRES', round($_CONFIG['transfer_age']/60/60/24)." ".DAYS); - } + define('__TRANSFER_REASON', REQUEST_POST('reason')); + define('__TRANSFER_EXPIRES', CREATE_FANCY_TIME(getConfig('transfer_age'))); // Generate tranafer id - define('__TRANS_ID', bigintval(GEN_RANDOM_CODE("10", rand(0, 99999), $GLOBALS['userid'], $_POST['reason']))); + define('__TRANS_ID', bigintval(generateRandomCodde("10", mt_rand(0, 99999), $GLOBALS['userid'], REQUEST_POST('reason')))); // Add entries to both tables - $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_user_transfers_in (userid, from_uid, points, reason, time_trans, trans_id) VALUES ('%s', '%s', '%s', '%s', UNIX_TIMESTAMP(), '%s')", - array(bigintval($_POST['to_uid']), $GLOBALS['userid'], bigintval($_POST['points']), addslashes($_POST['reason']), __TRANS_ID), - __FILE__, __LINE__); - $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_user_transfers_out (userid, to_uid, points, reason, time_trans, trans_id) VALUES ('%s', '%s', '%s', '%s', UNIX_TIMESTAMP(), '%s')", - array($GLOBALS['userid'], bigintval($_POST['to_uid']), bigintval($_POST['points']), addslashes($_POST['reason']), __TRANS_ID), - __FILE__, __LINE__); + SQL_QUERY_ESC("INSERT INTO `{!_MYSQL_PREFIX!}_user_transfers_in` (userid, from_uid, points, reason, time_trans, trans_id) VALUES ('%s','%s','%s','%s', UNIX_TIMESTAMP(),'%s')", + array(bigintval(REQUEST_POST('to_uid')), $GLOBALS['userid'], bigintval(REQUEST_POST('points')), REQUEST_POST('reason'), __TRANS_ID), + __FILE__, __LINE__); + SQL_QUERY_ESC("INSERT INTO `{!_MYSQL_PREFIX!}_user_transfers_out` (userid, to_uid, points, reason, time_trans, trans_id) VALUES ('%s','%s','%s','%s', UNIX_TIMESTAMP(),'%s')", + array($GLOBALS['userid'], bigintval(REQUEST_POST('to_uid')), bigintval(REQUEST_POST('points')), REQUEST_POST('reason'), __TRANS_ID), + __FILE__, __LINE__); // Add points to account *directly* ... - $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_user_points SET points=points+%s WHERE userid=%s AND ref_depth=0 LIMIT 1", - array(bigintval($_POST['points']), bigintval($_POST['to_uid'])), __FILE__, __LINE__); + ADD_POINTS_REFSYSTEM("member_transfer", bigintval(REQUEST_POST('to_uid')), bigintval(REQUEST_POST('points')), false, "0", false, "direct"); // ... and add it to current user's used points - SUB_POINTS($GLOBALS['userid'], $_POST['points']); + SUB_POINTS("transfer", $GLOBALS['userid'], REQUEST_POST('points')); // First send email to recipient - $msg = LOAD_EMAIL_TEMPLATE("member_transfer_recipient", "", __RECIPIENT_UID); - SEND_EMAIL(__RECIPIENT_EMAIL, TRANSFER_MEMBER_RECIPIENT_SUBJ.": ".$SENDER, $msg); + $msg = LOAD_EMAIL_TEMPLATE("member_transfer_recipient", "", constant('__RECIPIENT_UID')); + SEND_EMAIL(constant('__RECIPIENT_EMAIL'), getMessage('TRANSFER_MEMBER_RECIPIENT_SUBJ').": ".$SENDER, $msg); // Second send email to sender - $msg = LOAD_EMAIL_TEMPLATE("member_transfer_sender", "", __SENDER_UID); - SEND_EMAIL(__SENDER_EMAIL, TRANSFER_MEMBER_SENDER_SUBJ.": ".$RECIPIENT, $msg); + $msg = LOAD_EMAIL_TEMPLATE("member_transfer_sender", "", constant('__SENDER_UID')); + SEND_EMAIL(constant('__SENDER_EMAIL'), getMessage('TRANSFER_MEMBER_SENDER_SUBJ').": ".$RECIPIENT, $msg); // At last send admin mail(s) - $ADMIN_SUBJ = sprintf("%s (%s->%s)", TRANSFER_ADMIN_SUBJECT, $SENDER, $RECIPIENT); + $ADMIN_SUBJ = sprintf("%s (%s->%s)", getMessage('TRANSFER_ADMIN_SUBJECT'), $SENDER, $RECIPIENT); SEND_ADMIN_NOTIFICATION($ADMIN_SUBJ, "admin_transfer_points"); // Transfer is completed - LOAD_TEMPLATE("admin_settings_saved", false, TRANSFER_COMPLETED."
".TRANSFER_CONTINUE_OVERVIEW.""); - } - elseif (!$valid_code) - { + LOAD_TEMPLATE("admin_settings_saved", false, getMessage('TRANSFER_COMPLETED')."
{--TRANSFER_CONTINUE_OVERVIEW--}"); + } elseif (!$valid_code) { // Invalid Touring code! - OUTPUT_HTML("

".TRANSFER_INVALID_CODE."

"); - unset($_POST['ok']); - } - elseif (!$valid_pass) - { + LOAD_TEMPLATE("admin_settings_saved", false, "
{--TRANSFER_INVALID_CODE--}
"); + REQUEST_UNSET_POST('ok'); + } elseif (!$valid_pass) { // Wrong password entered - OUTPUT_HTML("

".TRANSFER_INVALID_PASSWORD."

"); - unset($_POST['ok']); - } - elseif (!$valid_amount) - { + LOAD_TEMPLATE("admin_settings_saved", false, "
{--TRANSFER_INVALID_PASSWORD--}
"); + REQUEST_UNSET_POST('ok'); + } elseif (!$valid_amount) { // Too much points entered - OUTPUT_HTML("

".TRANSFER_INVALID_POINTS."

"); - unset($_POST['ok']); - } - elseif (!$valid_reason) - { + LOAD_TEMPLATE("admin_settings_saved", false, "
{--TRANSFER_INVALID_POINTS--}
"); + REQUEST_UNSET_POST('ok'); + } elseif (!$valid_reason) { // No transfer reason entered - OUTPUT_HTML("

".TRANSFER_INVALID_REASON."

"); - unset($_POST['ok']); - } - elseif (!$valid_recipient) - { + LOAD_TEMPLATE("admin_settings_saved", false, "
{--TRANSFER_INVALID_REASON--}
"); + REQUEST_UNSET_POST('ok'); + } elseif (!$valid_recipient) { // No recipient selected - OUTPUT_HTML("

".TRANSFER_INVALID_RECIPIENT."

"); - unset($_POST['ok']); - } - elseif (!$valid_data) - { + LOAD_TEMPLATE("admin_settings_saved", false, "
{--TRANSFER_INVALID_RECIPIENT--}
"); + REQUEST_UNSET_POST('ok'); + } elseif (!$valid_data) { // No recipient selected - OUTPUT_HTML("

".TRANSFER_INVALID_DATA."

"); - unset($_POST['ok']); + LOAD_TEMPLATE("admin_settings_saved", false, "
{--TRANSFER_INVALID_DATA--}
"); + REQUEST_UNSET_POST('ok'); } } - if (!isset($_POST['ok'])) - { + + if (!IS_FORM_SENT()) { // Load member list - if (EXT_IS_ACTIVE("nickname")) - { + if (EXT_IS_ACTIVE("nickname")) { // Load userid and nickname - $result = SQL_QUERY_ESC("SELECT userid, nickname FROM "._MYSQL_PREFIX."_user_data WHERE status='CONFIRMED' AND opt_in='Y' AND userid != '%s' ORDER BY userid", + $result = SQL_QUERY_ESC("SELECT userid, nickname FROM `{!_MYSQL_PREFIX!}_user_data` WHERE `status`='CONFIRMED' AND opt_in='Y' AND userid != '%s' ORDER BY userid", array($GLOBALS['userid']), __FILE__, __LINE__); - } - else - { + } else { // Load only userid - $result = SQL_QUERY_ESC("SELECT userid, userid FROM "._MYSQL_PREFIX."_user_data WHERE status='CONFIRMED' AND opt_in='Y' AND userid != '%s' ORDER BY userid", + $result = SQL_QUERY_ESC("SELECT userid, userid FROM `{!_MYSQL_PREFIX!}_user_data` WHERE `status`='CONFIRMED' AND opt_in='Y' AND userid != '%s' ORDER BY userid", array($GLOBALS['userid']), __FILE__, __LINE__); } - if (SQL_NUMROWS($result) > 0) - { + + if (SQL_NUMROWS($result) > 0) { // Load list - $OUT = " ".$img); - } - else - { + define('__TRANSFER_IMAGE_INPUT', " ".$img); + } else { $code = "00000"; - define('__TRANSFER_IMAGE_INPUT', TRANSFER_NO_CODE); + define('__TRANSFER_IMAGE_INPUT', getMessage('TRANSFER_NO_CODE')); } // Transfer maybe already entered valued' - if (isset($_GET['ok'])) { + if (REQUEST_ISSET_GET('ok')) { // Get values from form - define('__TRANSFER_POINTS_VALUE', bigintval($_POST['points'])); - define('__TRANSFER_REASON_VALUE', strip_tags($_POST['reason'])); + define('__TRANSFER_POINTS_VALUE', bigintval(REQUEST_POST('points'))); + define('__TRANSFER_REASON_VALUE', strip_tags(REQUEST_POST('reason'))); } else { // Set empty values define('__TRANSFER_POINTS_VALUE', ""); @@ -347,64 +305,63 @@ case "list_out": // List only outgoing transactions switch ($MODE) { case "list_in": - $SQL = "SELECT trans_id, from_uid, points, reason, time_trans FROM "._MYSQL_PREFIX."_user_transfers_in WHERE userid=%s ORDER BY time_trans DESC LIMIT ".$_CONFIG['transfer_max']; - $NOTHING = TRANSFER_NO_INCOMING_TRANSFERS; - define('__TRANSFER_SUM', TRANSFER_TOTAL_INCOMING); - define('__TRANSFER_TITLE', TRANSFER_LIST_INCOMING); + $sql = "SELECT trans_id, from_uid, points, reason, time_trans FROM `{!_MYSQL_PREFIX!}_user_transfers_in` WHERE userid=%s ORDER BY time_trans DESC LIMIT ".getConfig('transfer_max'); + // @TODO Rewrite these constants + $NOTHING = getMessage('TRANSFER_NO_INCOMING_TRANSFERS'); + define('__TRANSFER_SUM', getMessage('TRANSFER_TOTAL_INCOMING')); + define('__TRANSFER_TITLE', getMessage('TRANSFER_LIST_INCOMING')); break; case "list_out": - $SQL = "SELECT trans_id, to_uid, points, reason, time_trans FROM "._MYSQL_PREFIX."_user_transfers_out WHERE userid=%s ORDER BY time_trans DESC LIMIT ".$_CONFIG['transfer_max']; - $NOTHING = TRANSFER_NO_OUTGOING_TRANSFERS; - define('__TRANSFER_SUM', TRANSFER_TOTAL_OUTGOING); - define('__TRANSFER_TITLE', TRANSFER_LIST_OUTGOING); + $sql = "SELECT trans_id, to_uid, points, reason, time_trans FROM `{!_MYSQL_PREFIX!}_user_transfers_out` WHERE userid=%s ORDER BY time_trans DESC LIMIT ".getConfig('transfer_max'); + // @TODO Rewrite these constants + $NOTHING = getMessage('TRANSFER_NO_OUTGOING_TRANSFERS'); + define('__TRANSFER_SUM', getMessage('TRANSFER_TOTAL_OUTGOING')); + define('__TRANSFER_TITLE', getMessage('TRANSFER_LIST_OUTGOING')); break; } // Run the SQL command $total = 0; - $result = SQL_QUERY_ESC($SQL, array($GLOBALS['userid']), __FILE__, __LINE__); - if (SQL_NUMROWS($result) > 0) - { + $result = SQL_QUERY_ESC($sql, array($GLOBALS['userid']), __FILE__, __LINE__); + if (SQL_NUMROWS($result) > 0) { $OUT = ""; $SW = 2; - while (list($tid, $uid, $points, $reason, $stamp) = SQL_FETCHROW($result)) - { - if ($type == "OUT") $points = "$points-"; - $OUT .= " - - ".$tid." - - - ".MAKE_DATETIME($stamp, "3")." - - - ".$uid." - - - ".$reason." - - - ".$points." - -\n"; + // @TODO This should be somehow rewritten to $content = SQL_FETCHARRAY(), see switch() block above for SQL queries + while (list($tid, $uid, $points, $reason, $stamp) = SQL_FETCHROW($result)) { + // Rewrite points + if ($type == "OUT") $points = $points."-"; + + // Prepare content for template + $content = array( + 'sw' => $SW, + 'tid' => $id, + 'stamp' => MAKE_DATETIME($stamp, "3"), + 'uid' => $uid, + 'reason' => $reason, + 'points' => TRANSLATE_COMMA($points) + ); + + // Load row template + $OUT .= LOAD_TEMPLATE("member_transfer_row2", true, $content); + + // Add points and switch color $total += $points; $SW = 3 - $SW; } // Free memory SQL_FREERESULT($result); - } - else - { + } else { // Nothing for in or out - $OUT = " - + $OUT = " + ".LOAD_TEMPLATE("admin_settings_saved", true, $NOTHING)." - -"; + +"; } // ... and add them to a constant for the template + // @TODO Rewrite these constants define('__TRANSFER_ROWS', $OUT); // Remeber total amount @@ -420,102 +377,94 @@ case "list_all": // List all transactions // fastest way but it shall be fine for now. // // First of all create the temporary table - $result = SQL_QUERY("CREATE TEMPORARY TABLE "._MYSQL_PREFIX."_transfers_tmp ( + $result = SQL_QUERY("CREATE TEMPORARY TABLE `{!_MYSQL_PREFIX!}_transfers_tmp` ( trans_id VARCHAR(12) NOT NULL DEFAULT '', party_uid BIGINT(20) UNSIGNED NOT NULL DEFAULT '0', points BIGINT(20) UNSIGNED NOT NULL DEFAULT '0', reason VARCHAR(255) NOT NULL DEFAULT '', time_trans VARCHAR(10) NOT NULL DEFAULT '0', -trans_type ENUM('IN', 'OUT') NOT NULL DEFAULT 'IN', +trans_type ENUM('IN','OUT') NOT NULL DEFAULT 'IN', KEY(party_uid) ) TYPE=HEAP", __FILE__, __LINE__); // Let's begin with the incoming list - $result = SQL_QUERY_ESC("SELECT trans_id, from_uid, points, reason, time_trans FROM "._MYSQL_PREFIX."_user_transfers_in WHERE userid=%s ORDER BY id LIMIT %s", -array($GLOBALS['userid'], $_CONFIG['transfer_max']), __FILE__, __LINE__); - while ($DATA = SQL_FETCHROW($result)) - { + $result = SQL_QUERY_ESC("SELECT trans_id, from_uid, points, reason, time_trans FROM `{!_MYSQL_PREFIX!}_user_transfers_in` WHERE userid=%s ORDER BY `id` LIMIT %s", +array($GLOBALS['userid'], getConfig('transfer_max')), __FILE__, __LINE__); + while ($DATA = SQL_FETCHROW($result)) { $DATA[] = "IN"; - $DATA = implode("', '", $DATA); - $res_temp = SQL_QUERY("INSERT INTO "._MYSQL_PREFIX."_transfers_tmp (trans_id, party_uid, points, reason, time_trans, trans_type) VALUES ('".$DATA."')", __FILE__, __LINE__); + $DATA = implode("','", $DATA); + $res_temp = SQL_QUERY("INSERT INTO `{!_MYSQL_PREFIX!}_transfers_tmp` (trans_id, party_uid, points, reason, time_trans, trans_type) VALUES ('".$DATA."')", __FILE__, __LINE__); } // Free memory SQL_FREERESULT($result); // As the last table transfer data from outgoing table to temporary - $result = SQL_QUERY_ESC("SELECT trans_id, to_uid, points, reason, time_trans FROM "._MYSQL_PREFIX."_user_transfers_out WHERE userid=%s ORDER BY id LIMIT %s", -array($GLOBALS['userid'], $_CONFIG['transfer_max']), __FILE__, __LINE__); - while ($DATA = SQL_FETCHROW($result)) - { + $result = SQL_QUERY_ESC("SELECT trans_id, to_uid, points, reason, time_trans FROM `{!_MYSQL_PREFIX!}_user_transfers_out` WHERE userid=%s ORDER BY `id` LIMIT %s", +array($GLOBALS['userid'], getConfig('transfer_max')), __FILE__, __LINE__); + while ($DATA = SQL_FETCHROW($result)) { $DATA[] = "OUT"; - $DATA = implode("', '", $DATA); - $res_temp = SQL_QUERY("INSERT INTO "._MYSQL_PREFIX."_transfers_tmp (trans_id, party_uid, points, reason, time_trans, trans_type) VALUES ('".$DATA."')", __FILE__, __LINE__); + $DATA = implode("','", $DATA); + $res_temp = SQL_QUERY("INSERT INTO `{!_MYSQL_PREFIX!}_transfers_tmp` (trans_id, party_uid, points, reason, time_trans, trans_type) VALUES ('".$DATA."')", __FILE__, __LINE__); } // Free memory SQL_FREERESULT($result); $total = 0; - if (SQL_NUMROWS($result) > 0) - { + if (SQL_NUMROWS($result) > 0) { + // Search for entries + $result = SQL_QUERY("SELECT party_uid, trans_id, points, reason, time_trans, trans_type FROM `{!_MYSQL_PREFIX!}_transfers_tmp` ORDER BY time_trans DESC", + __FILE__, __LINE__); + // Output rows $OUT = ""; $SW = 2; - $result = SQL_QUERY("SELECT party_uid, trans_id, points, reason, time_trans, trans_type FROM "._MYSQL_PREFIX."_transfers_tmp ORDER BY time_trans DESC", __FILE__, __LINE__); - while(list($uid, $idx, $points, $reason, $stamp, $type) = SQL_FETCHROW($result)) - { - if ($type == "OUT") $points = "-$points"; - $OUT .= " - - ".$idx." - - - ".MAKE_DATETIME($stamp, "3")." - - - ".$uid." - - - ".$reason." - - - ".$points." - -\n"; - $total += $points; + while ($content = SQL_FETCHARRAY($result)) { + // Rewrite points + if ($content['trans_type'] == "OUT") $content['points'] = "-".$content['points'].""; + + // Prepare content for template + $content['sw'] = $SW; + $content['time'] = MAKE_DATETIME($content['time_trans'], "3"); + $content['points'] = TRANSLATE_COMMA($content['points']); + + // Load row template + $OUT .= LOAD_TEMPLATE("member_transfer_row", true, $content); + + // Add points and switch color + $total += $content['points']; $SW = 3 - $SW; } // Free memory SQL_FREERESULT($result); - } - else - { + } else { // Nothing for in and out - $OUT = " - - ".LOAD_TEMPLATE("admin_settings_saved", true, TRANSFER_NO_INOUT_TRANSFERS)." - -"; + $OUT = " + + ".LOAD_TEMPLATE("admin_settings_saved", true, getMessage('TRANSFER_NO_INOUT_TRANSFERS'))." + +"; } // ... and add them to a constant for the template + // @TODO Rewrite all these constants define('__TRANSFER_ROWS', $OUT); // Remeber total amount define('__TRANSFER_TOTAL_VALUE', $total); // Set title - define('__TRANSFER_TITLE', TRANSFER_LIST_ALL); + define('__TRANSFER_TITLE', getMessage('TRANSFER_LIST_ALL')); // Set "balance" word - define('__TRANSFER_SUM', TRANSFER_TOTAL_BALANCE); + define('__TRANSFER_SUM', getMessage('TRANSFER_TOTAL_BALANCE')); // Load final template LOAD_TEMPLATE("member_transfer_list"); // At the end we don't need a temporary table in memory - $result = SQL_QUERY("DROP TABLE IF EXISTS "._MYSQL_PREFIX."_transfers_tmp", __FILE__, __LINE__); + $result = SQL_QUERY("DROP TABLE IF EXISTS `{!_MYSQL_PREFIX!}_transfers_tmp`", __FILE__, __LINE__); // Free some memory... SQL_FREERESULT($result); @@ -523,86 +472,79 @@ array($GLOBALS['userid'], $_CONFIG['transfer_max']), __FILE__, __LINE__); case "": // Overview page // Check incoming transfers - $result = SQL_QUERY_ESC("SELECT COUNT(id) FROM "._MYSQL_PREFIX."_user_transfers_in WHERE userid=%s", array($GLOBALS['userid']), __FILE__, __LINE__); + $result = SQL_QUERY_ESC("SELECT COUNT(id) FROM `{!_MYSQL_PREFIX!}_user_transfers_in` WHERE userid=%s", array($GLOBALS['userid']), __FILE__, __LINE__); list($dmy) = SQL_FETCHROW($result); SQL_FREERESULT($result); $total=$dmy; - if ($dmy > 0) - { - define('__TRANSFER_IN_LINK', "".$dmy.""); - } - else - { + if ($dmy > 0) { + define('__TRANSFER_IN_LINK', "".$dmy.""); + } else { define('__TRANSFER_IN_LINK', $dmy); } // Check outgoing transfers - $result = SQL_QUERY_ESC("SELECT COUNT(id) FROM "._MYSQL_PREFIX."_user_transfers_out WHERE userid=%s", array($GLOBALS['userid']), __FILE__, __LINE__); + $result = SQL_QUERY_ESC("SELECT COUNT(id) FROM `{!_MYSQL_PREFIX!}_user_transfers_out` WHERE userid=%s", array($GLOBALS['userid']), __FILE__, __LINE__); list($dmy) = SQL_FETCHROW($result); SQL_FREERESULT($result); $total+=$dmy; - if ($dmy > 0) - { - define('__TRANSFER_OUT_LINK', "".$dmy.""); - } - else - { + if ($dmy > 0) { + define('__TRANSFER_OUT_LINK', "".$dmy.""); + } else { define('__TRANSFER_OUT_LINK', $dmy); } // Total transactions - if ($total > 0) - { - define('__TRANSFER_ALL_LINK', "".$total.""); - } - else - { + if ($total > 0) { + define('__TRANSFER_ALL_LINK', "".$total.""); + } else { define('__TRANSFER_ALL_LINK', $total); } - if (isset($_POST['ok'])) - { + if (IS_FORM_SENT()) { // Save settings - $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_user_data SET opt_in='%s' WHERE userid=%s LIMIT 1", - array($_POST['opt_in'], $GLOBALS['userid']), __FILE__, __LINE__); + SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_user_data` SET opt_in='%s' WHERE userid=%s LIMIT 1", + array(REQUEST_POST('opt_in'), $GLOBALS['userid']), __FILE__, __LINE__); // Rember for next switch() command - $opt_in = $_POST['opt_in']; + $opt_in = REQUEST_POST('opt_in'); // "Settings saved..." - OUTPUT_HTML("

".SETTINGS_SAVED."

"); + LOAD_TEMPLATE("admin_settings_saved", false, "
{--SETTINGS_SAVED--}
"); } + switch ($opt_in) { - case 'Y': - define('__TRANSFER_ALLOW_Y', ' checked'); + case "Y": + define('__TRANSFER_ALLOW_Y', " checked=\"checked\""); define('__TRANSFER_ALLOW_N', ""); - define('__TRANSFER_NEW_LINK', "".TRANSFER_NOW_LINK.""); + define('__TRANSFER_NEW_LINK', "{--TRANSFER_NOW_LINK--}"); break; - case 'N': + case "N": define('__TRANSFER_ALLOW_Y', ""); - define('__TRANSFER_ALLOW_N', ' checked'); - define('__TRANSFER_NEW_LINK', TRANSFER_PLEASE_ALLOW_OPT_IN); + define('__TRANSFER_ALLOW_N', " checked=\"checked\""); + define('__TRANSFER_NEW_LINK', getMessage('TRANSFER_PLEASE_ALLOW_OPT_IN')); break; } // Check for latest out-transfers - $result = SQL_QUERY_ESC("SELECT time_trans FROM "._MYSQL_PREFIX."_user_transfers_out WHERE time_trans > ".(time() - $_CONFIG['transfer_timeout'])." AND userid=%s ORDER BY time_trans DESC LIMIT 1", array($GLOBALS['userid']), __FILE__, __LINE__); - if (SQL_NUMROWS($result) == 0) - { + $result = SQL_QUERY_ESC("SELECT time_trans +FROM `{!_MYSQL_PREFIX!}_user_transfers_out` +WHERE time_trans > (UNIX_TIMESTAMP() - %s) AND userid=%s +ORDER BY time_trans DESC +LIMIT 1", array(getConfig('transfer_timeout'), $GLOBALS['userid']), __FILE__, __LINE__); + if (SQL_NUMROWS($result) == 0) { // Load template define('__TRANSFER_SETTINGS_CONTENT', LOAD_TEMPLATE("member_transfer_settings", true)); - } - else - { + } else { // Load newest transaction list($newest) = SQL_FETCHROW($result); SQL_FREERESULT($result); - define('__TRANSFER_SETTINGS_CONTENT', TRANSFER_LATEST_IS_1.MAKE_DATETIME($newest, "3").TRANSFER_LATEST_IS_2); + define('__TRANSFER_SETTINGS_CONTENT', sprintf(getMessage('TRANSFER_LATEST_IS'), MAKE_DATETIME($newest, "3"))); } + // Load template LOAD_TEMPLATE("member_transfer_overview"); break;