X-Git-Url: https://git.mxchange.org/?a=blobdiff_plain;f=inc%2Fmysql-manager.php;h=491bf296ffee12acb3e81cacc81c5a8297464957;hb=df407c3a035aa8fb211d7191d7a0bb0c64197cc3;hp=39238bf8d5c97eef289f92c28345e7b8565494dd;hpb=3f51c40f4fede87228216f9285b745a339e3891d;p=mailer.git

diff --git a/inc/mysql-manager.php b/inc/mysql-manager.php
index 39238bf8d5..491bf296ff 100644
--- a/inc/mysql-manager.php
+++ b/inc/mysql-manager.php
@@ -112,7 +112,7 @@ function getModuleDescription ($mode, $wht, $column = 'what') {
 // Check validity of a given module name (no file extension)
 function checkModulePermissions ($mod) {
 	// Filter module name (names with low chars and underlines are fine!)
-	$mod = preg_replace("/[^a-z_]/", '', $mod);
+	$mod = preg_replace('/[^a-z_]/', '', $mod);
 
 	// Check for prefix is a extension...
 	$modSplit = explode("_", $mod);
@@ -194,6 +194,9 @@ function checkModulePermissions ($mod) {
 		//
 		//  Admin access            ----- Guest access -----           --- Guest   or   member? ---
 		if ((IS_ADMIN()) || (($locked == 'N') && ($admin == 'N') && (($mem == 'N') || (IS_MEMBER())))) {
+			// Count module
+			countModuleHit($mod_chk);
+
 			// If you are admin you are welcome for everything!
 			$ret = 'done';
 		} elseif ($locked == 'Y') {
@@ -250,7 +253,7 @@ function checkModulePermissions ($mod) {
 			// Module not found we don't add it to the database
 			$ret = '404';
 		}
-	} elseif ($ret == 'cache_miss') {
+	} elseif (($ret == 'cache_miss') && (getOutputMode() > -1)) {
 		// Rebuild the cache files
 		rebuildCacheFiles('modreg', 'modreg');
 	} elseif ($found === false) {
@@ -413,7 +416,7 @@ function ADD_MENU ($mode, $act, $wht) {
 	} // END - if
 
 	// Load SQL data and add the menu to the output stream...
-	$result_main = SQL_QUERY_ESC("SELECT `title`, `action` FROM `{!_MYSQL_PREFIX!}_%s_menu` WHERE (`what`='' OR `what` IS NULL)".$AND." ORDER BY `sort`",
+	$result_main = SQL_QUERY_ESC("SELECT `title`, `action` FROM `{!_MYSQL_PREFIX!}_%s_menu` WHERE (`what`='' OR `what` IS NULL)".$AND." ORDER BY `sort` ASC",
 		array($mode), __FUNCTION__, __LINE__);
 	//* DEBUG: */ echo __LINE__.'/'.$main_cnt.'/'.$main_action.'/'.$sub_what.':'.getWhat()."*<br />\n";
 	if (SQL_NUMROWS($result_main) > 0) {
@@ -486,9 +489,9 @@ function ADD_MENU ($mode, $act, $wht) {
 
 					// Add regular menu row or bottom row?
 					if ($cnt < $ctl) {
-						LOAD_TEMPLATE($mode."_menu_row", false, $content);
+						LOAD_TEMPLATE($mode . '_menu_row', false, $content);
 					} else {
-						LOAD_TEMPLATE($mode."_menu_bottom", false, $content);
+						LOAD_TEMPLATE($mode . '_menu_bottom', false, $content);
 					}
 				}
 			} else {
@@ -523,7 +526,7 @@ function ADD_MENU ($mode, $act, $wht) {
 		// Close table
 		//* DEBUG: */ echo __LINE__.'/'.$main_cnt.'/'.$content['action'].'/'.$content['sub_what'].':'.getWhat()."*<br />\n";
 		OUTPUT_HTML("</table>");
-	}
+	} // END - if
 }
 
 // Checks wether the current user is a member
@@ -550,7 +553,7 @@ function IS_MEMBER () {
 	// Are cookies set?
 	if ((isUserIdSet()) && (isSessionVariableSet('u_hash'))) {
 		// Cookies are set with values, but are they valid?
-		$result = SQL_QUERY_ESC("SELECT password, status, last_module, last_online FROM `{!_MYSQL_PREFIX!}_user_data` WHERE userid=%s LIMIT 1",
+		$result = SQL_QUERY_ESC("SELECT `password`, `status`, `last_module`, `last_online` FROM `{!_MYSQL_PREFIX!}_user_data` WHERE `userid`=%s LIMIT 1",
 			array(getUserId()), __FUNCTION__, __LINE__);
 		if (SQL_NUMROWS($result) == 1) {
 			// Load data from cookies
@@ -748,15 +751,15 @@ function isMenuActionValid ($mode, $act, $wht, $UPDATE=false) {
 	if (($mode != 'admin') && ($UPDATE === true)) {
 		// Update guest or member menu
 		$sql = SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_%s_menu` SET counter=counter+1 WHERE `action`='%s' AND `what`='%s'".$add." LIMIT 1",
-		array($mode, $act, $wht), __FUNCTION__, __LINE__, false);
+			array($mode, $act, $wht), __FUNCTION__, __LINE__, false);
 	} elseif (($wht != 'overview') && (!empty($wht))) {
 		// Other actions
-		$sql = SQL_QUERY_ESC("SELECT id, what FROM `{!_MYSQL_PREFIX!}_%s_menu` WHERE `action`='%s' AND `what`='%s'".$add." ORDER BY action DESC LIMIT 1",
-		array($mode, $act, $wht), __FUNCTION__, __LINE__, false);
+		$sql = SQL_QUERY_ESC("SELECT `id`, `what` FROM `{!_MYSQL_PREFIX!}_%s_menu` WHERE `action`='%s' AND `what`='%s'".$add." ORDER BY `action` DESC LIMIT 1",
+			array($mode, $act, $wht), __FUNCTION__, __LINE__, false);
 	} else {
 		// Admin login overview
-		$sql = SQL_QUERY_ESC("SELECT id, what FROM `{!_MYSQL_PREFIX!}_%s_menu` WHERE `action`='%s' AND (`what`='' OR `what` IS NULL)".$add." ORDER BY action DESC LIMIT 1",
-		array($mode, $act), __FUNCTION__, __LINE__, false);
+		$sql = SQL_QUERY_ESC("SELECT `id`, `what` FROM `{!_MYSQL_PREFIX!}_%s_menu` WHERE `action`='%s' AND (`what`='' OR `what` IS NULL)".$add." ORDER BY `action` DESC LIMIT 1",
+			array($mode, $act), __FUNCTION__, __LINE__, false);
 	}
 
 	// Run SQL command
@@ -784,8 +787,8 @@ function sendModeMails ($mod, $modes) {
 	global $DATA;
 
 	// Load hash
-	$result_main = SQL_QUERY_ESC("SELECT password FROM `{!_MYSQL_PREFIX!}_user_data` WHERE userid=%s AND `status`='CONFIRMED' LIMIT 1",
-	array(getUserId()), __FUNCTION__, __LINE__);
+	$result_main = SQL_QUERY_ESC("SELECT `password` FROM `{!_MYSQL_PREFIX!}_user_data` WHERE `userid`=%s AND `status`='CONFIRMED' LIMIT 1",
+		array(getUserId()), __FUNCTION__, __LINE__);
 	if (SQL_NUMROWS($result_main) == 1) {
 		// Load hash from database
 		list($hashDB) = SQL_FETCHROW($result_main);
@@ -797,7 +800,7 @@ function sendModeMails ($mod, $modes) {
 		$hash = generatePassString($hashDB);
 		if (($hash == getSession('u_hash')) || (REQUEST_POST('pass1') == REQUEST_POST('pass2'))) {
 			// Load user's data
-			$result = SQL_QUERY_ESC("SELECT gender, surname, family, street_nr, country, zip, city, email FROM `{!_MYSQL_PREFIX!}_user_data` WHERE userid=%s AND password='%s' LIMIT 1",
+			$result = SQL_QUERY_ESC("SELECT gender, surname, family, street_nr, country, zip, city, email FROM `{!_MYSQL_PREFIX!}_user_data` WHERE `userid`=%s AND password='%s' LIMIT 1",
 			array(getUserId(), $hashDB), __FUNCTION__, __LINE__);
 			if (SQL_NUMROWS($result) == 1) {
 				// Load the data
@@ -845,15 +848,15 @@ function sendModeMails ($mod, $modes) {
 						$content = merge_array($content, REQUEST_POST_ARRAY());
 
 						// Load template
-						$msg = LOAD_EMAIL_TEMPLATE('member_mydata_notify', $content, getUserId());
+						$message = LOAD_EMAIL_TEMPLATE('member_mydata_notify', $content, getUserId());
 
 						if (getConfig('admin_notify') == 'Y') {
 							// The admin needs to be notified about a profile change
-							$msg_admin = 'admin_mydata_notify';
+							$message_admin = 'admin_mydata_notify';
 							$sub_adm   = getMessage('ADMIN_CHANGED_DATA');
 						} else {
 							// No mail to admin
-							$msg_admin = '';
+							$message_admin = '';
 							$sub_adm   = '';
 						}
 
@@ -883,16 +886,16 @@ function sendModeMails ($mod, $modes) {
 	}
 
 	// Send email to user if required
-	if ((!empty($sub_mem)) && (!empty($msg))) {
+	if ((!empty($sub_mem)) && (!empty($message))) {
 		// Send member mail
-		sendEmail($DATA[7], $sub_mem, $msg);
+		sendEmail($DATA[7], $sub_mem, $message);
 	} // END - if
 
 	// Send only if no other error has occured
 	if (empty($content)) {
-		if ((!empty($sub_adm)) && (!empty($msg_admin))) {
+		if ((!empty($sub_adm)) && (!empty($message_admin))) {
 			// Send admin mail
-			sendAdminNotification($sub_adm, $msg_admin, $content, getUserId());
+			sendAdminNotification($sub_adm, $message_admin, $content, getUserId());
 		} elseif (getConfig('admin_notify') == 'Y') {
 			// Cannot send mails to admin!
 			$content = getMessage('CANNOT_SEND_ADMIN_MAILS');
@@ -908,11 +911,9 @@ function sendModeMails ($mod, $modes) {
 
 // Update module counter
 function countModuleHit($mod) {
-	if ($mod != "css") {
-		// Do count all other modules but not accesses on CSS file css.php!
-		SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_mod_reg` SET clicks=clicks+1 WHERE `module`='%s' LIMIT 1",
+	// Do count all other modules but not accesses on CSS file css.php!
+	SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_mod_reg` SET `clicks`=`clicks`+1 WHERE `module`='%s' LIMIT 1",
 		array($mod), __FUNCTION__, __LINE__);
-	} // END - if
 }
 
 // Get action value from mode (admin/guest/member) and what-value
@@ -1054,7 +1055,7 @@ function getPaymentPoints ($pid, $lookFor = 'price') {
 }
 
 // Remove a receiver's ID from $receivers and add a link for him to confirm
-function removeReceiver (&$receivers, $key, $uid, $pool_id, $stats_id='', $bonus=false) {
+function removeReceiver (&$receivers, $key, $uid, $pool_id, $stats_id = '', $bonus = false) {
 	// Default is not removed
 	$ret = 'failed';
 
@@ -1076,7 +1077,7 @@ function removeReceiver (&$receivers, $key, $uid, $pool_id, $stats_id='', $bonus
 			// Was it *not* found?
 			if (SQL_NUMROWS($result) == 0) {
 				// So we add one!
-				SQL_QUERY_ESC("INSERT INTO `{!_MYSQL_PREFIX!}_user_links` (%s, userid, link_type) VALUES ('%s','%s','%s')",
+				SQL_QUERY_ESC("INSERT INTO `{!_MYSQL_PREFIX!}_user_links` (`%s`, `userid`, `link_type`) VALUES ('%s','%s','%s')",
 					array($rowName, $stats_id, bigintval($uid), $type), __FUNCTION__, __LINE__);
 				$ret = 'done';
 			} else {
@@ -1224,7 +1225,7 @@ function ADD_POINTS_REFSYSTEM ($subject, $uid, $points, $send_notify = false, $r
 	if ($locked) $data = 'locked_points';
 
 	// Check user account
-	$result_user = SQL_QUERY_ESC("SELECT refid, email FROM `{!_MYSQL_PREFIX!}_user_data` WHERE userid=%s AND `status`='CONFIRMED' LIMIT 1",
+	$result_user = SQL_QUERY_ESC("SELECT refid, email FROM `{!_MYSQL_PREFIX!}_user_data` WHERE `userid`=%s AND `status`='CONFIRMED' LIMIT 1",
 	array(bigintval($uid)), __FUNCTION__, __LINE__);
 
 	//* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid},numRows=".SQL_NUMROWS($result_user).",points={$points}<br />\n";
@@ -1251,7 +1252,7 @@ function ADD_POINTS_REFSYSTEM ($subject, $uid, $points, $send_notify = false, $r
 			} // END - if
 
 			// Update points...
-			SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_user_points` SET %s=%s+%s WHERE userid=%s AND ref_depth='%s' LIMIT 1",
+			SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_user_points` SET %s=%s+%s WHERE `userid`=%s AND ref_depth='%s' LIMIT 1",
 			array($data, $data, $ref_points, bigintval($uid), bigintval($GLOBALS['ref_level'])), __FUNCTION__, __LINE__);
 			//* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):data={$data},ref_points={$ref_points},uid={$uid},depth={$GLOBALS['ref_level']},mode={$add_mode} - UPDATE! (".SQL_AFFECTEDROWS().")<br />\n";
 
@@ -1280,9 +1281,9 @@ function ADD_POINTS_REFSYSTEM ($subject, $uid, $points, $send_notify = false, $r
 				);
 
 				// Load email template
-				$msg = LOAD_EMAIL_TEMPLATE('confirm-referal', $content, bigintval($uid));
+				$message = LOAD_EMAIL_TEMPLATE('confirm-referal', $content, bigintval($uid));
 
-				sendEmail($email, THANX_REFERRAL_ONE, $msg);
+				sendEmail($email, THANX_REFERRAL_ONE, $message);
 			} elseif (($send_notify) && ($ref == 0) && (!$locked) && ($add_mode == 'direct') && (!defined('__POINTS_VALUE'))) {
 				// Direct payment shall be notified about
 				define('__POINTS_VALUE', $ref_points);
@@ -1294,10 +1295,10 @@ function ADD_POINTS_REFSYSTEM ($subject, $uid, $points, $send_notify = false, $r
 				);
 
 				// Load message
-				$msg = LOAD_EMAIL_TEMPLATE('add-points', $content, $uid);
+				$message = LOAD_EMAIL_TEMPLATE('add-points', $content, $uid);
 
 				// And sent it away
-				sendEmail($email, getMessage('SUBJECT_DIRECT_PAYMENT'), $msg);
+				sendEmail($email, getMessage('SUBJECT_DIRECT_PAYMENT'), $message);
 				if (!REQUEST_ISSET_GET('mid')) LOAD_TEMPLATE('admin_settings_saved', false, getMessage('ADMIN_POINTS_ADDED'));
 			}
 
@@ -1372,12 +1373,12 @@ function updateReferalCounter ($uid) {
 
 // Sends out mail to all administrators. This function is no longer obsolete
 // because we need it when there is no ext-admins installed
-function SEND_ADMIN_EMAILS ($subj, $msg) {
+function SEND_ADMIN_EMAILS ($subj, $message) {
 	// Load all admin email addresses
 	$result = SQL_QUERY("SELECT `email` FROM `{!_MYSQL_PREFIX!}_admins` ORDER BY `id` ASC", __FUNCTION__, __LINE__);
 	while ($content = SQL_FETCHARRAY($result)) {
 		// Send the email out
-		sendEmail($content['email'], $subj, $msg);
+		sendEmail($content['email'], $subj, $message);
 	} // END - if
 
 	// Free result
@@ -1633,7 +1634,7 @@ WHERE p.userid=%s", array(bigintval($uid)), __FUNCTION__, __LINE__);
 		list($points) = SQL_FETCHROW($result);
 
 		// Delete points entries as well
-		SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM `{!_MYSQL_PREFIX!}_user_points` WHERE userid=%s", array(bigintval($uid)), __FUNCTION__, __LINE__);
+		SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM `{!_MYSQL_PREFIX!}_user_points` WHERE `userid`=%s", array(bigintval($uid)), __FUNCTION__, __LINE__);
 
 		// Update mediadata as well
 		if (GET_EXT_VERSION('mediadata') >= '0.0.4') {
@@ -1649,21 +1650,21 @@ WHERE p.userid=%s", array(bigintval($uid)), __FUNCTION__, __LINE__);
 	SQL_FREERESULT($result);
 
 	// Delete category selections as well...
-	SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM `{!_MYSQL_PREFIX!}_user_cats` WHERE userid=%s",
+	SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM `{!_MYSQL_PREFIX!}_user_cats` WHERE `userid`=%s",
 	array(bigintval($uid)), __FUNCTION__, __LINE__);
 
 	// Remove from rallye if found
 	if (EXT_IS_ACTIVE('rallye')) {
-		SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM `{!_MYSQL_PREFIX!}_rallye_users` WHERE userid=%s",
+		SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM `{!_MYSQL_PREFIX!}_rallye_users` WHERE `userid`=%s",
 		array(bigintval($uid)), __FUNCTION__, __LINE__);
 	} // END - if
 
 	// Now a mail to the user and that's all...
-	$msg = LOAD_EMAIL_TEMPLATE('del-user', array('text' => $reason), $uid);
-	sendEmail($uid, getMessage('ADMIN_DEL_ACCOUNT'), $msg);
+	$message = LOAD_EMAIL_TEMPLATE('del-user', array('text' => $reason), $uid);
+	sendEmail($uid, getMessage('ADMIN_DEL_ACCOUNT'), $message);
 
 	// Ok, delete the account!
-	SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM `{!_MYSQL_PREFIX!}_user_data` WHERE userid=%s LIMIT 1", array(bigintval($uid)), __FUNCTION__, __LINE__);
+	SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM `{!_MYSQL_PREFIX!}_user_data` WHERE `userid`=%s LIMIT 1", array(bigintval($uid)), __FUNCTION__, __LINE__);
 }
 
 // Generates meta description for given module and 'what' value
@@ -1762,7 +1763,7 @@ function getWhatFromModule ($modCheck) {
 // Subtract points from database and mediadata cache
 function SUB_POINTS ($subject, $uid, $points) {
 	// Add points to used points
-	SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_user_data` SET `used_points`=`used_points`+%s WHERE userid=%s LIMIT 1",
+	SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_user_data` SET `used_points`=`used_points`+%s WHERE `userid`=%s LIMIT 1",
 		array($points, bigintval($uid)), __FUNCTION__, __LINE__);
 
 	// Insert booking record
@@ -1905,9 +1906,14 @@ function generateCategoryOptionsList ($mode) {
 			$uid_cnt = 0;
 			// @TODO Rewrite this to $content = SQL_FETCHARRAY()
 			while (list($ucat) = SQL_FETCHROW($result_uids)) {
-				$result_ver = SQL_QUERY_ESC("SELECT userid FROM `{!_MYSQL_PREFIX!}_user_data`
-WHERE userid=%s AND `status`='CONFIRMED' AND receive_mails > 0".PREPARE_SQL_HTML_HOLIDAY($mode)." LIMIT 1",
-				array(bigintval($ucat)), __FUNCTION__, __LINE__);
+				$result_ver = SQL_QUERY_ESC("SELECT
+	`userid`
+FROM
+	`{!_MYSQL_PREFIX!}_user_data`
+WHERE
+	`userid`=%s AND `status`='CONFIRMED' AND receive_mails > 0".PREPARE_SQL_HTML_HOLIDAY($mode)."
+LIMIT 1",
+					array(bigintval($ucat)), __FUNCTION__, __LINE__);
 
 				// Add user count
 				$uid_cnt += SQL_NUMROWS($result_ver);
@@ -2083,9 +2089,13 @@ function getTimestampFromUserStats ($type, $data, $uid = 0) {
 	// Try to find the entry
 	$result = SQL_QUERY_ESC("SELECT UNIX_TIMESTAMP(`inserted`) AS `stamp`
 FROM `{!_MYSQL_PREFIX!}_user_stats_data`
-WHERE userid=%s AND stats_type='%s' AND stats_data='%s'
+WHERE `userid`=%s AND `stats_type`='%s' AND `stats_data`='%s'
 LIMIT 1",
-	array(bigintval($uid), $type, $data), __FUNCTION__, __LINE__);
+		array(
+			bigintval($uid),
+			$type,
+			$data
+		), __FUNCTION__, __LINE__);
 
 	// Is the entry there?
 	if (SQL_NUMROWS($result) == 1) {
@@ -2115,7 +2125,7 @@ function insertUserStatsRecord ($uid, $type, $data) {
 		array(bigintval($uid), $type, $data), __FUNCTION__, __LINE__);
 	} elseif (is_array($data)) {
 		// Invalid data!
-		DEBUG_LOG(__FUNCTION__, __LINE__, " uid={$uid},type={$type},data={".gettype($data).": Invalid statistics data type!");
+		DEBUG_LOG(__FUNCTION__, __LINE__, "uid={$uid},type={$type},data={".gettype($data).": Invalid statistics data type!");
 	}
 }
 
@@ -2205,7 +2215,7 @@ function reduceRecipientReceivedMails ($column, $id, $count) {
 
 		// Now update all user accounts
 		SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_user_data` SET `emails_received`=`emails_received`-1 WHERE `userid` IN (%s) LIMIT %s",
-		array(implode(',', $UIDs), count($UIDs)), __FUNCTION__, __LINE__);
+			array(implode(',', $UIDs), count($UIDs)), __FUNCTION__, __LINE__);
 	} // END - if
 
 	// Free result
@@ -2272,10 +2282,18 @@ function COUNT_SQLS () {
 // Checks wether the SQLs array is filled
 function IS_SQLS_VALID () {
 	return (
-	(IS_SQLS_INITIALIZED()) &&
-	(COUNT_SQLS() > 0)
+		(IS_SQLS_INITIALIZED())
+		&&
+		(COUNT_SQLS() > 0)
 	);
 }
 
+// Creates a new task
+function createNewTask($subject, $notes, $taskType, $userid = 0, $admin_id = 0, $strip = true) {
+	// Insert the task data into the database
+	SQL_QUERY_ESC("INSERT INTO `{!_MYSQL_PREFIX!}_task_system` (`assigned_admin`, `userid`, `status`, `task_type`, `subject`, `text`, `task_created`) VALUES (%s,%s,'NEW','%s','%s','%s', UNIX_TIMESTAMP())",
+		array($admin_id, $userid, $taskType, $subject, $notes), __FUNCTION__, __LINE__, true, $strip);
+}
+
 // [EOF]
 ?>