X-Git-Url: https://git.mxchange.org/?a=blobdiff_plain;f=inc%2Fmysql-manager.php;h=6824a16c43adc7cafcee3417b50850f3c85e9ac0;hb=39651508549dec13febf6b8dc11079bbc07b68e3;hp=625598d66e02d782deb982ea8f7e4dc04783304a;hpb=b679042bd22371aa267e595db8d0e08941afc9eb;p=mailer.git diff --git a/inc/mysql-manager.php b/inc/mysql-manager.php index 625598d66e..6824a16c43 100644 --- a/inc/mysql-manager.php +++ b/inc/mysql-manager.php @@ -82,12 +82,12 @@ function getTitleFromMenu ($mode, $what, $column = 'what', $ADD = '') { } // Add link into output stream (or return it) for 'You Are Here' navigation -function addYouAreHereLink ($accessLevel, $FQFN, $return = false) { +function addYouAreHereLink ($accessLevel, $FQFN, $return = FALSE) { // Use only filename of the FQFN... $file = basename($FQFN); // Init variables - $LINK_ADD = ''; + $linkAdd = ''; $OUT = ''; $ADD = ''; $prefix = ''; @@ -111,7 +111,7 @@ function addYouAreHereLink ($accessLevel, $FQFN, $return = false) { // Get access level from it $modCheck = getModuleFromFileName($file, $accessLevel); - // Do we have admin? Then display all + // Is there admin? Then display all $ADD = " AND `visible`='Y' AND `locked`='N'"; if (isAdmin()) { // Display all! @@ -125,13 +125,11 @@ function addYouAreHereLink ($accessLevel, $FQFN, $return = false) { $type = 'what'; $search = $file; $modCheck = getModule(); - $ADD = ''; } else { // Other $type = 'menu'; $search = $file; $modCheck = getModule(); - $ADD = ''; } // Begin the navigation line @@ -140,18 +138,19 @@ function addYouAreHereLink ($accessLevel, $FQFN, $return = false) { $GLOBALS['nav_depth'] = '0'; // Run the pre-filter chain - $ret = runFilterChain('pre_youhere_line', array('access_level' => $accessLevel, 'type' => $type, 'search' => $search, 'prefix' => $prefix, 'link_add' => $LINK_ADD, 'content' => '', 'add' => $ADD)); + $ret = runFilterChain('pre_youhere_line', array('access_level' => $accessLevel, 'type' => $type, 'search' => $search, 'prefix' => $prefix, 'link_add' => $linkAdd, 'content' => '', 'add' => $ADD)); // Add pre-content $prefix = $ret['content']; // Add default content - $prefix .= '
'.print_r($GLOBALS['cache_array']['payments'],true).''); - $data[$lookFor] = $GLOBALS['cache_array']['payments'][$lookFor][$pid]; + $data[$lookFor] = $GLOBALS['cache_array']['payments'][$lookFor][$paymentsId]; // Update cache hits incrementStatsEntry('cache_hits'); @@ -900,7 +918,7 @@ function getPaymentData ($pid, $lookFor = 'price') { $result = SQL_QUERY_ESC('SELECT `%s` FROM `{?_MYSQL_PREFIX?}_payments` WHERE `id`=%s LIMIT 1', array( $lookFor, - bigintval($pid) + bigintval($paymentsId) ), __FUNCTION__, __LINE__); // Is the entry there? @@ -918,23 +936,23 @@ function getPaymentData ($pid, $lookFor = 'price') { } // Remove a receiver's id from $receivers and add a link for him to confirm -function removeReceiver (&$receivers, $key, $userid, $poolId, $statsId = 0, $isBonusMail = false) { +function removeReceiver (&$receivers, $key, $userid, $poolId, $statsId = 0, $isBonusMail = FALSE) { // Default is not removed $ret = 'failed'; // Is the userid valid? - if (isValidUserId($userid)) { + if (isValidId($userid)) { // Remove entry from array unset($receivers[$key]); // Is there already a line for this user available? - if ($statsId > 0) { + if (isValidId($statsId)) { // Default is 'normal' mail $type = 'NORMAL'; $rowName = 'stats_id'; // Only when we got a real stats id continue searching for the entry - if ($isBonusMail === true) { + if ($isBonusMail === TRUE) { $type = 'BONUS'; $rowName = 'bonus_id'; } // END - if @@ -951,7 +969,7 @@ function removeReceiver (&$receivers, $key, $userid, $poolId, $statsId = 0, $isB // Was it *not* found? if (SQL_HASZERONUMS($result)) { // So we add one! - SQL_QUERY_ESC("INSERT INTO `{?_MYSQL_PREFIX?}_user_links` (`%s`,`userid`,`link_type`) VALUES (%s,%s,'%s')", + SQL_QUERY_ESC("INSERT INTO `{?_MYSQL_PREFIX?}_user_links` (`%s`, `userid`, `link_type`) VALUES (%s,%s,'%s')", array( $rowName, bigintval($statsId), @@ -959,7 +977,7 @@ function removeReceiver (&$receivers, $key, $userid, $poolId, $statsId = 0, $isB $type ), __FUNCTION__, __LINE__); - // Update 'mails_sent' if sql_patches is updated + // Update 'mails_sent' if ext-sql_patches is updated if (isExtensionInstalledAndNewer('sql_patches', '0.7.4')) { // Update the pool SQL_QUERY_ESC('UPDATE `{?_MYSQL_PREFIX?}_pool` SET `mails_sent`=`mails_sent`+1 WHERE `id`=%s LIMIT 1', @@ -981,15 +999,14 @@ function removeReceiver (&$receivers, $key, $userid, $poolId, $statsId = 0, $isB } // Calculate sum (default) or count records of given criteria -function countSumTotalData ($search, $tableName, $lookFor = 'id', $whereStatement = 'userid', $countRows = false, $add = '', $mode = '=') { - // Init count/sum - $data['res'] = '0'; - +function countSumTotalData ($search, $tableName, $lookFor = 'id', $whereStatement = 'userid', $countRows = FALSE, $add = '', $mode = '=') { + // Debug message //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'search=' . $search . ',tableName=' . $tableName . ',lookFor=' . $lookFor . ',whereStatement=' . $whereStatement . ',add=' . $add); - if ((empty($search)) && ($search != '0')) { + if ((empty($search)) && (!is_null($search))) { // Count or sum whole table? - if ($countRows === true) { + if ($countRows === TRUE) { // Count whole table + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'COUNT!'); $result = SQL_QUERY_ESC('SELECT COUNT(`%s`) AS `res` FROM `{?_MYSQL_PREFIX?}_%s`' . $add . ' LIMIT 1', array( $lookFor, @@ -997,34 +1014,77 @@ function countSumTotalData ($search, $tableName, $lookFor = 'id', $whereStatemen ), __FUNCTION__, __LINE__); } else { // Sum whole table + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'SUM!'); $result = SQL_QUERY_ESC('SELECT SUM(`%s`) AS `res` FROM `{?_MYSQL_PREFIX?}_%s`' . $add . ' LIMIT 1', array( $lookFor, $tableName ), __FUNCTION__, __LINE__); } - } elseif (($countRows === true) || ($lookFor == 'userid')) { + } elseif (($countRows === TRUE) || ($lookFor == 'userid')) { // Count rows - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'COUNT!'); - $result = SQL_QUERY_ESC("SELECT COUNT(`%s`) AS `res` FROM `{?_MYSQL_PREFIX?}_%s` WHERE `%s`%s'%s'" . $add . ' LIMIT 1', - array( - $lookFor, - $tableName, - $whereStatement, - $mode, - $search - ), __FUNCTION__, __LINE__); + if (is_null($search)) { + // Fix mode + if ($mode == '=') { + $mode = 'IS'; + } elseif ($mode == '!=') { + $mode = 'IS NOT'; + } + + // Look for NULL/0 + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'COUNT-NULL!'); + $result = SQL_QUERY_ESC("SELECT COUNT(`%s`) AS `res` FROM `{?_MYSQL_PREFIX?}_%s` WHERE (`%s` %s NULL OR `%s`=0)" . $add . ' LIMIT 1', + array( + $lookFor, + $tableName, + $whereStatement, + $mode, + $whereStatement + ), __FUNCTION__, __LINE__); + } else { + // Regular entry + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'COUNT!'); + $result = SQL_QUERY_ESC("SELECT COUNT(`%s`) AS `res` FROM `{?_MYSQL_PREFIX?}_%s` WHERE `%s`%s'%s'" . $add . ' LIMIT 1', + array( + $lookFor, + $tableName, + $whereStatement, + $mode, + $search + ), __FUNCTION__, __LINE__); + } } else { - // Add all rows - //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'SUM!'); - $result = SQL_QUERY_ESC("SELECT SUM(`%s`) AS `res` FROM `{?_MYSQL_PREFIX?}_%s` WHERE `%s`%s'%s'" . $add . ' LIMIT 1', - array( - $lookFor, - $tableName, - $whereStatement, - $mode, - $search - ), __FUNCTION__, __LINE__); + // Sum all rows + if (is_null($search)) { + // Fix mode + if ($mode == '=') { + $mode = 'IS'; + } elseif ($mode == '!=') { + $mode = 'IS NOT'; + } + + // Look for NULL/0 + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'SUM-NULL!'); + $result = SQL_QUERY_ESC("SELECT SUM(`%s`) AS `res` FROM `{?_MYSQL_PREFIX?}_%s` WHERE (`%s` %s NULL OR `%s`=0)" . $add . ' LIMIT 1', + array( + $lookFor, + $tableName, + $whereStatement, + $mode, + $whereStatement + ), __FUNCTION__, __LINE__); + } else { + // Regular entry + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'SUM!'); + $result = SQL_QUERY_ESC("SELECT SUM(`%s`) AS `res` FROM `{?_MYSQL_PREFIX?}_%s` WHERE `%s`%s'%s'" . $add . ' LIMIT 1', + array( + $lookFor, + $tableName, + $whereStatement, + $mode, + $search + ), __FUNCTION__, __LINE__); + } } // Load row @@ -1037,7 +1097,7 @@ function countSumTotalData ($search, $tableName, $lookFor = 'id', $whereStatemen if ((empty($data['res'])) && ($lookFor != 'counter') && ($lookFor != 'id') && ($lookFor != 'userid') && ($lookFor != 'rallye_id')) { // Float number $data['res'] = '0.00000'; - } elseif (''.$data['res'].'' == '') { + } elseif ('' . $data['res'] . '' == '') { // Fix empty result $data['res'] = '0'; } @@ -1051,14 +1111,14 @@ function countSumTotalData ($search, $tableName, $lookFor = 'id', $whereStatemen * Sends out mail to all administrators. This function is no longer obsolete * because we need it when there is no ext-admins installed */ -function sendAdminEmails ($subject, $message, $isBugReport = false) { +function sendAdminEmails ($subject, $message, $isBugReport = FALSE) { // Default is no special header $mailHeader = ''; // Is it a bug report? - if ($isBugReport === true) { + if ($isBugReport === TRUE) { // Then add a reply-to line back to the author (me) - $mailHeader = 'Reply-To: webmaster@mxchange.org' . chr(10); + $mailHeader = 'Reply-To: webmaster@mxchange.org' . PHP_EOL; } // END - if // Load all admin email addresses @@ -1093,7 +1153,7 @@ function getAdminId ($adminLogin) { $result = SQL_QUERY_ESC("SELECT `id` FROM `{?_MYSQL_PREFIX?}_admins` WHERE `login`='%s' LIMIT 1", array($adminLogin), __FUNCTION__, __LINE__); - // Do we have an entry? + // Is there an entry? if (SQL_NUMROWS($result) == 1) { // Get it $data = SQL_FETCHARRAY($result); @@ -1112,7 +1172,7 @@ function getCurrentAdminId () { // Log debug message //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'called!'); - // Do we have cache? + // Is there cache? if (!isset($GLOBALS['current_admin_id'])) { // Get the admin login from session $adminId = getSession('admin_id'); @@ -1133,9 +1193,11 @@ function setCurrentAdminId ($currentAdminId) { // Get password hash from administrator's login name function getAdminHash ($adminId) { + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'adminId=' . $adminId . ' - ENTERED!'); // By default an invalid hash is returned $data['password'] = -1; + // Is admin hash set? if (isAdminHashSet($adminId)) { // Check cache $data['password'] = $GLOBALS['cache_array']['admin']['password'][$adminId]; @@ -1147,7 +1209,7 @@ function getAdminHash ($adminId) { $result = SQL_QUERY_ESC("SELECT `password` FROM `{?_MYSQL_PREFIX?}_admins` WHERE `id`=%s LIMIT 1", array(bigintval($adminId)), __FUNCTION__, __LINE__); - // Do we have an entry? + // Is there an entry? if (SQL_NUMROWS($result) == 1) { // Fetch data $data = SQL_FETCHARRAY($result); @@ -1161,6 +1223,7 @@ function getAdminHash ($adminId) { } // Return password hash + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'adminId=' . $adminId . ',data[password]=' . $data['password'] . ' - EXIT!'); return $data['password']; } @@ -1235,10 +1298,10 @@ function getAdminDefaultAcl ($adminId) { // By default an invalid ACL value is returned $data['default_acl'] = 'NO-ACL'; - // Is sql_patches there and was it found in cache? + // Is ext-sql_patches there and was it found in cache? if (!isExtensionActive('sql_patches')) { // Not found, which is bad, so we need to allow all - $data['default_acl'] = 'allow'; + $data['default_acl'] = 'allow'; } elseif (isset($GLOBALS['cache_array']['admin']['default_acl'][$adminId])) { // Use cache $data['default_acl'] = $GLOBALS['cache_array']['admin']['default_acl'][$adminId]; @@ -1250,7 +1313,7 @@ function getAdminDefaultAcl ($adminId) { $result_admin_id = SQL_QUERY_ESC("SELECT `default_acl` FROM `{?_MYSQL_PREFIX?}_admins` WHERE `id`=%s LIMIT 1", array(bigintval($adminId)), __FUNCTION__, __LINE__); - // Do we have an entry? + // Is there an entry? if (SQL_NUMROWS($result_admin_id) == 1) { // Fetch data $data = SQL_FETCHARRAY($result_admin_id); @@ -1272,10 +1335,10 @@ function getAdminMenuMode ($adminId) { // By default an invalid mode $data['la_mode'] = 'INVALID'; - // Is sql_patches there and was it found in cache? + // Is ext-sql_patches there and was it found in cache? if (!isExtensionActive('sql_patches')) { // Not found, which is bad, so we need to allow all - $data['la_mode'] = 'global'; + $data['la_mode'] = 'global'; } elseif (isset($GLOBALS['cache_array']['admin']['la_mode'][$adminId])) { // Use cache $data['la_mode'] = $GLOBALS['cache_array']['admin']['la_mode'][$adminId]; @@ -1287,7 +1350,7 @@ function getAdminMenuMode ($adminId) { $result_admin_id = SQL_QUERY_ESC("SELECT `la_mode` FROM `{?_MYSQL_PREFIX?}_admins` WHERE `id`=%s LIMIT 1", array(bigintval($adminId)), __FUNCTION__, __LINE__); - // Do we have an entry? + // Is there an entry? if (SQL_NUMROWS($result_admin_id) == 1) { // Fetch data $data = SQL_FETCHARRAY($result_admin_id); @@ -1305,18 +1368,18 @@ function getAdminMenuMode ($adminId) { } // Generates an option list from various parameters -function generateOptions ($table, $id, $name, $default = '', $special = '', $whereStatement = '', $disabled = array(), $callback = '') { +function generateOptions ($table, $key, $value, $default = '', $extra = '', $whereStatement = '', $disabled = array(), $callback = '') { $ret = ''; if ($table == '/ARRAY/') { // Selection from array - if ((is_array($id)) && (is_array($name)) && ((count($id)) == (count($name)) || (!empty($callback)))) { + if ((is_array($key)) && (is_array($value)) && ((count($key)) == (count($value)) || (!empty($callback)))) { // Both are arrays - foreach ($id as $idx => $value) { - $ret .= ''; } // END - foreach } else { // Problem in request - reportBug(__FUNCTION__, __LINE__, 'Not all are arrays: id[' . count($id) . ']=' . gettype($id) . ',name[' . count($name) . ']=' . gettype($name) . ',callback=' . $callback); + reportBug(__FUNCTION__, __LINE__, 'Not all are arrays: key[' . count($key) . ']=' . gettype($key) . ',value[' . count($value) . ']=' . gettype($value) . ',callback=' . $callback); } } else { - // Data from database - $SPEC = ',`' . $id . '`'; - if (!empty($special)) { - $SPEC = ',`' . $special . '` AS `special`'; + /////////////////////// + // Data from database / + /////////////////////// + + // Init extra column (if requested) + $extraColumn = ''; + if (!empty($extra)) { + $extraColumn = ',`' . $extra . '` AS `extra`'; } // END - if - // Query the database - $result = SQL_QUERY_ESC("SELECT `%s` AS `id`,`%s` AS `name`".$SPEC." FROM `{?_MYSQL_PREFIX?}_%s` ".$whereStatement." ORDER BY `%s` ASC", + // Run SQL query + $result = SQL_QUERY_ESC("SELECT `%s` AS `key`, `%s` AS `value`" . $extraColumn . " FROM `{?_MYSQL_PREFIX?}_%s` " . $whereStatement . " ORDER BY `%s` ASC", array( - $id, - $name, + $key, + $value, $table, - $name + $value ), __FUNCTION__, __LINE__); - // Do we have rows? + // Is there rows? if (!SQL_HASZERONUMS($result)) { // Found data so add them as OPTION lines while ($content = SQL_FETCHARRAY($result)) { - // Is special set? - if (!isset($content['special'])) { + // Is extra set? + if (!isset($content['extra'])) { // Set it to empty - $content['special'] = ''; + $content['extra'] = ''; } // END - if - $ret .= ''; } // END - while } else { // No data found @@ -1404,19 +1471,19 @@ function deleteUserAccount ($userid, $reason) { // Search for the points and user data $result = SQL_QUERY_ESC("SELECT - (SUM(p.`points`) - d.`used_points`) AS `points` + (SUM(`p`.`points`) - `d`.`used_points`) AS `points` FROM - `{?_MYSQL_PREFIX?}_user_points` AS p + `{?_MYSQL_PREFIX?}_user_points` AS `p` LEFT JOIN - `{?_MYSQL_PREFIX?}_user_data` AS d + `{?_MYSQL_PREFIX?}_user_data` AS `d` ON - p.`userid`=d.`userid` + `p`.`userid`=`d`.`userid` WHERE - p.`userid`=%s + `p`.`userid`=%s LIMIT 1", array(bigintval($userid)), __FUNCTION__, __LINE__); - // Do we have an entry? + // Is there an entry? if (SQL_NUMROWS($result) == 1) { // Save his points to add them to the jackpot $data = SQL_FETCHARRAY($result); @@ -1453,7 +1520,7 @@ LIMIT 1", } // END - if // Add reason and translate points - $data['text'] = $reason; + $data['text'] = $reason; // Now a mail to the user and that's all... $message = loadEmailTemplate('member_user_deleted', $data, $userid); @@ -1511,10 +1578,17 @@ function generateCategoryOptionsList ($mode, $userid = NULL) { ); // Get categories - $result = SQL_QUERY('SELECT `id`,`cat` FROM `{?_MYSQL_PREFIX?}_cats`' . $whereStatement . ' ORDER BY `sort` ASC', + $result = SQL_QUERY('SELECT + `id`, + `cat` +FROM + `{?_MYSQL_PREFIX?}_cats` +' . $whereStatement . ' +ORDER BY + `sort` ASC', __FUNCTION__, __LINE__); - // Do we have entries? + // Are there entries? if (!SQL_HASZERONUMS($result)) { // ... and begin loading stuff while ($content = SQL_FETCHARRAY($result)) { @@ -1535,7 +1609,7 @@ function generateCategoryOptionsList ($mode, $userid = NULL) { // Start adding all while ($data = SQL_FETCHARRAY($result_userids)) { // Add user count - $userid_cnt += countSumTotalData($data['userid'], 'user_data', 'userid', 'userid', true, runFilterChain('user_exclusion_sql', " AND `status`='CONFIRMED' AND `receive_mails` > 0")); + $userid_cnt += countSumTotalData($data['userid'], 'user_data', 'userid', 'userid', TRUE, runFilterChain('user_exclusion_sql', " AND `status`='CONFIRMED' AND `receive_mails` > 0")); } // END - while // Free memory @@ -1567,10 +1641,10 @@ function addBonusMailToQueue ($subject, $text, $receiverList, $points, $seconds, // Is admin or bonus extension there? if (!isAdmin()) { // Abort here - return false; + return FALSE; } elseif (!isExtensionActive('bonus')) { // Abort here - return false; + return FALSE; } // Calculcate target sent @@ -1584,13 +1658,34 @@ function addBonusMailToQueue ($subject, $text, $receiverList, $points, $seconds, // HTML extension active? if (isExtensionActive('html_mail')) { - // Determine if we have HTML mode active - $HTML = convertBooleanToYesNo($mode == 'html'); - // Add HTML mail - SQL_QUERY_ESC("INSERT INTO `{?_MYSQL_PREFIX?}_bonus` -(`subject`,`text`,`receivers`,`points`,`time`,`data_type`,`timestamp`,`url`,`cat_id`,`target_send`,`mails_sent`,`html_msg`) -VALUES ('%s','%s','%s',%s,%s,'NEW', UNIX_TIMESTAMP(),'%s',%s,%s,%s,'%s')", + SQL_QUERY_ESC("INSERT INTO `{?_MYSQL_PREFIX?}_bonus` ( + `subject`, + `text`, + `receivers`, + `points`, + `time`, + `data_type`, + `timestamp`, + `url`, + `cat_id`, + `target_send`, + `mails_sent`, + `html_msg` +) VALUES ( + '%s', + '%s', + '%s', + %s, + %s, + 'NEW', + UNIX_TIMESTAMP(), + '%s', + %s, + %s, + %s, + '%s' +)", array( $subject, $text, @@ -1601,13 +1696,35 @@ VALUES ('%s','%s','%s',%s,%s,'NEW', UNIX_TIMESTAMP(),'%s',%s,%s,%s,'%s')", bigintval($categoryId), $target, bigintval($receiver), - $HTML + convertBooleanToYesNo($mode == 'html') ), __FUNCTION__, __LINE__); } else { // Add regular mail - SQL_QUERY_ESC("INSERT INTO `{?_MYSQL_PREFIX?}_bonus` -(`subject`,`text`,`receivers`,`points`,`time`,`data_type`,`timestamp`,`url`,`cat_id`,`target_send`,`mails_sent`) -VALUES ('%s','%s','%s',%s,%s,'NEW', UNIX_TIMESTAMP(),'%s',%s,%s,%s)", + SQL_QUERY_ESC("INSERT INTO `{?_MYSQL_PREFIX?}_bonus` ( + `subject`, + `text`, + `receivers`, + `points`, + `time`, + `data_type`, + `timestamp`, + `url`, + `cat_id`, + `target_send`, + `mails_sent` +) VALUES ( + '%s', + '%s', + '%s', + %s, + %s, + 'NEW', + UNIX_TIMESTAMP(), + '%s', + %s, + %s, + %s +)", array( $subject, $text, @@ -1627,7 +1744,7 @@ function generateReceiverList ($categoryId, $receiver, $mode = '') { // Init variables $extraColumns = ''; $receiverList = ''; - $result = false; + $result = FALSE; // Secure data $categoryId = bigintval($categoryId); @@ -1643,25 +1760,35 @@ function generateReceiverList ($categoryId, $receiver, $mode = '') { $addWhere = runFilterChain('user_exclusion_sql', ' '); // Category given? - if ($categoryId > 0) { + if (isValidId($categoryId)) { // Select category - $extraColumns = "LEFT JOIN `{?_MYSQL_PREFIX?}_user_cats` AS c ON d.`userid`=c.`userid`"; - $addWhere = sprintf(" AND c.`cat_id`=%s", $categoryId); + $extraColumns = "LEFT JOIN `{?_MYSQL_PREFIX?}_user_cats` AS `c` ON `d`.`userid`=`c`.`userid`"; + $addWhere = sprintf(" AND `c`.`cat_id`=%s", $categoryId); } // END - if // Exclude users in holiday? if (isExtensionInstalledAndNewer('holiday', '0.1.3')) { // Add something for the holiday extension - $addWhere .= " AND d.`holiday_active`='N'"; + $addWhere .= " AND `d`.`holiday_active`='N'"; } // END - if // Include only HTML recipients? if ((isExtensionActive('html_mail')) && ($mode == 'html')) { - $addWhere .= " AND d.`html`='Y'"; + $addWhere .= " AND `d`.`html`='Y'"; } // END - if // Run query - $result = SQL_QUERY_ESC("SELECT d.`userid` FROM `{?_MYSQL_PREFIX?}_user_data` AS d ".$extraColumns." WHERE d.`status`='CONFIRMED' ".$addWhere." ORDER BY d.`{?order_select?}` {?order_mode?} LIMIT %s", + $result = SQL_QUERY_ESC("SELECT + `d`.`userid` +FROM + `{?_MYSQL_PREFIX?}_user_data` AS `d` + " . $extraColumns . " +WHERE + `d`.`status`='CONFIRMED' + " . $addWhere . " +ORDER BY + `d`.`{?order_select?}` {?order_mode?} +LIMIT %s", array( $receiver ), __FUNCTION__, __LINE__); @@ -1698,17 +1825,17 @@ function reduceRecipientReceivedMails ($column, $id, $count) { // Now load all userids for one big query! $userids = array(); while ($data = SQL_FETCHARRAY($result)) { - // By default we want to reduce and have no mails found + // By default reduce and found no emails $num = 0; // We must now look if he has already confirmed this mail, so might sound double, but it may resolve problems // @TODO Rewrite this to a filter if ((isset($data['stats_id'])) && ($data['stats_id'] > 0)) { // User email - $num = countSumTotalData($data['userid'], 'user_stats_data', 'id', 'userid', true, sprintf(" AND `stats_type`='mailid' AND `stats_data`=%s", bigintval($data['stats_id']))); + $num = countSumTotalData($data['userid'], 'user_stats_data', 'id', 'userid', TRUE, sprintf(" AND `stats_type`='mailid' AND `stats_data`=%s", bigintval($data['stats_id']))); } elseif ((isset($data['bonus_id'])) && ($data['bonus_id'] > 0)) { // Bonus mail - $num = countSumTotalData($data['userid'], 'user_stats_data', 'id', 'userid', true, sprintf(" AND `stats_type`='bonusid' AND `stats_data`=%s", bigintval($data['bonus_id']))); + $num = countSumTotalData($data['userid'], 'user_stats_data', 'id', 'userid', TRUE, sprintf(" AND `stats_type`='bonusid' AND `stats_data`=%s", bigintval($data['bonus_id']))); } // Reduce this users total received emails? @@ -1720,7 +1847,10 @@ function reduceRecipientReceivedMails ($column, $id, $count) { if (count($userids) > 0) { // Now update all user accounts SQL_QUERY_ESC("UPDATE `{?_MYSQL_PREFIX?}_user_data` SET `emails_received`=`emails_received`-1 WHERE `userid` IN (%s) LIMIT %s", - array(implode(',', $userids), count($userids)), __FUNCTION__, __LINE__); + array( + implode(',', $userids), + count($userids) + ), __FUNCTION__, __LINE__); } else { // Nothing deleted displayMessage('{%message,ADMIN_MAIL_NOTHING_DELETED=' . $id . '%}'); @@ -1732,39 +1862,36 @@ function reduceRecipientReceivedMails ($column, $id, $count) { } // Creates a new task -function createNewTask ($subject, $notes, $taskType, $userid = NULL, $adminId = NULL, $strip = true) { +function createNewTask ($subject, $notes, $taskType, $userid = NULL, $adminId = NULL, $strip = TRUE) { // Insert the task data into the database - SQL_QUERY_ESC("INSERT INTO `{?_MYSQL_PREFIX?}_task_system` (`assigned_admin`,`userid`,`status`,`task_type`,`subject`,`text`,`task_created`) VALUES (%s,%s,'NEW','%s','%s','%s', UNIX_TIMESTAMP())", + SQL_QUERY_ESC("INSERT INTO `{?_MYSQL_PREFIX?}_task_system` (`assigned_admin`, `userid`, `status`, `task_type`, `subject`, `text`, `task_created`) VALUES (%s, %s, 'NEW', '%s', '%s', '%s', UNIX_TIMESTAMP())", array( convertZeroToNull($adminId), convertZeroToNull($userid), $taskType, $subject, $notes - ), __FUNCTION__, __LINE__, true, $strip); + ), __FUNCTION__, __LINE__, TRUE, $strip); // Return insert id which is the task id return SQL_INSERTID(); } // Updates last module / online time -function updateLastActivity($userid) { +function updateLastActivity ($userid) { // Is 'what' set? if (isWhatSet()) { // Run the update query SQL_QUERY_ESC("UPDATE `{?_MYSQL_PREFIX?}_user_data` SET - `%s`='%s', + `{%%pipe,getUserLastWhatName%%}`='{%%pipe,getWhat%%}', `last_online`=UNIX_TIMESTAMP(), - `REMOTE_ADDR`='%s' + `REMOTE_ADDR`='{%%pipe,detectRemoteAddr%%}' WHERE `userid`=%s LIMIT 1", array( - getUserLastWhatName(), - getWhat(), - detectRemoteAddr(), bigintval($userid) ), __FUNCTION__, __LINE__); } else { @@ -1772,67 +1899,619 @@ LIMIT 1", SQL_QUERY_ESC("UPDATE `{?_MYSQL_PREFIX?}_user_data` SET - `%s`=NULL, + `{%%pipe,getUserLastWhatName%%}`=NULL, `last_online`=UNIX_TIMESTAMP(), - `REMOTE_ADDR`='%s' + `REMOTE_ADDR`='{%%pipe,detectRemoteAddr%%}' WHERE `userid`=%s LIMIT 1", array( - getUserLastWhatName(), - detectRemoteAddr(), bigintval($userid) ), __FUNCTION__, __LINE__); } } -/** - * Checks if given subject is found and if not, adds an SQL query to the - * extension registration queue. - */ -function registerExtensionPointsData ($subject, $columnName, $lockedMode, $paymentMethod) { - // Default is old extension version - $add = ''; +// List all given joined rows (callback function from XML) +function doGenericJoinedListEntries ($tableTemplate, $rowTemplate, $noEntryMessageId, $tableName, $tableJoinType, $tableJoinName, $joinOnLeftTable, $joinOnCondition, $joinOnRightTable, $columns, $whereColumns, $orderByColumns, $callbackColumns, $extraParameters = array(), $conditions = array(), $content = array()) { + // Verify that tableName and columns are not empty + if ((!is_array($tableName)) || (count($tableName) != 1)) { + // No tableName specified + reportBug(__FUNCTION__, __LINE__, 'tableName is not given. Please fix your XML,tableName[]=' . gettype($tableName) . '!=array,tableTemplate=' . $tableTemplate . ',rowTemplate=' . $rowTemplate); + } elseif (count($columns) == 0) { + // No columns specified + reportBug(__FUNCTION__, __LINE__, 'columns is not given. Please fix your XML,tableTemplate=' . $tableTemplate . ',rowTemplate=' . $rowTemplate . ',tableName[0]=' . $tableName[0]); + } + + // This is the minimum query, so at least columns and tableName must have entries + $sql = 'SELECT '; - // Is the extension equal or newer 0.8.9? - if ((getExtensionMode() == 'register') || (getExtensionMode() == 'update') || (isExtensionInstalledAndNewer('sql_patches', '0.8.9'))) { - // Then add provider - $add = " AND `account_provider`='EXTENSION'"; + // Get the sql part back from given array + $sql .= getSqlPartFromXmlArray($columns); + + // Add "FROM" + $sql .= getSqlXmlFromTable($tableName); + + // Add "JOIN" + $sql .= getSqlXmlJoinedTable($tableJoinType, $tableJoinName, $joinOnLeftTable, $joinOnCondition, $joinOnRightTable); + + // Add "WHERE" + $sql .= getSqlXmlWhereConditions($whereColumns, $conditions); + + // Add "ORDER BY" + $sql .= getSqlXmlOrderBy($orderByColumns); + + // Now handle all over to the inner function which will execute the listing + doListEntries($sql, $tableTemplate, $noEntryMessageId, $rowTemplate, $callbackColumns, $extraParameters, $content); +} + +// List all given rows (callback function from XML) +function doGenericListEntries ($tableTemplate, $rowTemplate, $noEntryMessageId, $tableName, $columns, $whereColumns, $orderByColumns, $callbackColumns, $extraParameters = array(), $conditions = array(), $content = array()) { + // Verify that tableName and columns are not empty + if ((!is_array($tableName)) || (count($tableName) != 1)) { + // No tableName specified + reportBug(__FUNCTION__, __LINE__, 'tableName is not given. Please fix your XML,tableName[]=' . gettype($tableName) . '!=array,tableTemplate=' . $tableTemplate . ',rowTemplate=' . $rowTemplate); + } elseif (count($columns) == 0) { + // No columns specified + reportBug(__FUNCTION__, __LINE__, 'columns is not given. Please fix your XML,tableTemplate=' . $tableTemplate . ',rowTemplate=' . $rowTemplate . ',tableName[0]=' . $tableName[0]); + } + + // This is the minimum query, so at least columns and tableName must have entries + $sql = 'SELECT '; + + // Get the sql part back from given array + $sql .= getSqlPartFromXmlArray($columns); + + // Add "FROM" + $sql .= getSqlXmlFromTable($tableName); + + // Add "WHERE" + $sql .= getSqlXmlWhereConditions($whereColumns, $conditions); + + // Add "ORDER BY" + $sql .= getSqlXmlOrderBy($orderByColumns); + + // Now handle all over to the inner function which will execute the listing + doListEntries($sql, $tableTemplate, $noEntryMessageId, $rowTemplate, $callbackColumns, $extraParameters, $content); +} + +// Do the listing of entries +function doListEntries ($sql, $tableTemplate, $noEntryMessageId, $rowTemplate, $callbackColumns, $extraParameters = array(), $content = array()) { + // Run the SQL query + $result = SQL_QUERY($sql, __FUNCTION__, __LINE__); + + // Are there some URLs left? + if (!SQL_HASZERONUMS($result)) { + // List all URLs + $OUT = ''; + while ($row = SQL_FETCHARRAY($result)) { + // "Translate" content + foreach ($callbackColumns as $columnName => $callbackName) { + // Fill the callback arguments + $args = array($row[$columnName]); + + // Is there more to add? + if (isset($extraParameters[$columnName])) { + // Add them as well + $args = merge_array($args, $extraParameters[$columnName]); + } // END - if + + // Call the callback-function + //* NOISY-DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'callbackFunction=' . $callbackName . ',args=
'.print_r($args, TRUE).''); + // @TODO If we can rewrite the EL sub-system to support more than one parameter, this call_user_func_array() can be avoided + $row[$columnName] = call_user_func_array($callbackName, $args); + } // END - foreach + + // Load row template + $OUT .= loadTemplate(trim($rowTemplate[0]), TRUE, $row); + } // END - while + + // Is at least one entry set in content? + if ((is_array($content)) && (count($content) > 0)) { + // Then add generic 'rows' element + $content['rows'] = $OUT; + } else { + // Direct output is content + $content = $OUT; + } + + // Load main template + loadTemplate(trim($tableTemplate[0]), FALSE, $content); + } else { + // No URLs in surfbar + displayMessage('{--' .$noEntryMessageId[0] . '--}'); + } + + // Free result + SQL_FREERESULT($result); +} + +// Adds a given entry to the database +function doGenericAddEntries ($tableName, $columns = array(), $filterFunctions = array(), $extraValues = array(), $timeColumns = array(), $columnIndex = NULL) { + //* DEBUG: */ die(__FUNCTION__.':columns=
'.print_r($columns,TRUE).',filterFunctions=
'.print_r($filterFunctions,TRUE).',extraValues=
'.print_r($extraValues,TRUE).',timeColumns=
'.print_r($timeColumns,TRUE).',columnIndex=
'.print_r($columnIndex,TRUE).',POST=
'.print_r($_POST,TRUE).''); + // Verify that tableName and columns are not empty + if ((!is_array($tableName)) || (count($tableName) != 1)) { + // No tableName specified + reportBug(__FUNCTION__, __LINE__, 'tableName is not given. Please fix your XML,tableName[]=' . gettype($tableName) . '!=array: userIdColumn=' . $userIdColumn); + } elseif (count($columns) == 0) { + // No columns specified + reportBug(__FUNCTION__, __LINE__, 'columns is not given. Please fix your XML.'); + } + + // Init columns and value elements + $sqlColumns = array(); + $sqlValues = array(); + + // Default is that all went fine + $GLOBALS['__XML_PARSE_RESULT'] = TRUE; + + // Is there "time columns"? + if (count($timeColumns) > 0) { + // Then "walk" through all entries + foreach ($timeColumns as $column) { + // Convert all (possible) selections + convertSelectionsToEpocheTimeInPostData($column . '_ye'); + } // END - foreach } // END - if - // Is the 'subject' there? - if (((!ifSqlTableExists('points_data')) && ((getExtensionMode() == 'register') || (getExtensionMode() == 'update'))) || (countSumTotalData($subject, 'points_data', 'id', 'subject', true, $add) == 0)) { - // Not found so add an SQL query - addExtensionSql(sprintf("INSERT INTO `{?_MYSQL_PREFIX?}_points_data` (`subject`,`column_name`,`locked_mode`,`payment_method`) VALUES ('%s','%s','%s','%s')", - $subject, - $columnName, - $lockedMode, - $paymentMethod - )); + // Add columns and values + foreach ($columns as $key => $columnName) { + //* NOISY-DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'key=' . $key . ',columnName=' . $columnName); + // Is columnIndex set? + if (!is_null($columnIndex)) { + // Check conditions + //* DEBUG: */ die('columnName=
'.print_r($columnName,TRUE).'columnIndex=
'.print_r($columnIndex,TRUE).''.debug_get_printable_backtrace()); + assert((is_array($columnName)) && (is_string($columnIndex)) && (isset($columnName[$columnIndex]))); + + // Then use that index "blindly" + $columnName = $columnName[$columnIndex]; + } // END - if + + // Debug message + //* NOISY-DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'key=' . $key . ',columnName[' . gettype($columnName) . ']=' . $columnName . ',filterFunctions=' . $filterFunctions[$key] . ',extraValues=' . intval(isset($extraValues[$key])) . ',extraValuesName=' . intval(isset($extraValues[$columnName . '_list']))); + + // Copy entry securely to the final arrays + $sqlColumns[$key] = SQL_ESCAPE($columnName); + $sqlValues[$key] = SQL_ESCAPE(postRequestElement($columnName)); + + // Search for it + $search = key(search_array($columns, 'column', $columnName)); + + // Try to handle call-back functions and/or extra values on the list + //* DEBUG: */ outputHtml($key . '/' . $columnName . '=
'.print_r($columns,true).'search_array()=
'.print_r(search_array($columns, 'column', $columnName), TRUE).''); + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'sqlValues[' . $key . '(' . gettype($key) . ')][' . gettype($sqlValues[$key]) . ']=' . $sqlValues[$key] . ' - BEFORE!'); + if (is_string($key)) { + // Key is a string + $sqlValues[$key] = doHandleExtraValues($filterFunctions, $extraValues, $key . '_list', $sqlValues[$key], array(''), $search); + } else { + // Is a number + $sqlValues[$key] = doHandleExtraValues($filterFunctions, $extraValues, $key, $sqlValues[$key], array(''), $search); + } + + // Is the value not a number? + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'sqlValues[' . $key . '(' . gettype($key) . ')][' . gettype($sqlValues[$key]) . ']=' . $sqlValues[$key] . ' - AFTER!'); + if (($sqlValues[$key] != 'NULL') && (is_string($sqlValues[$key]))) { + // Add quotes around it + $sqlValues[$key] = chr(39) . $sqlValues[$key] . chr(39); + } // END - if + + // Is the value false? + if ($sqlValues[$key] === FALSE) { + // One "parser" didn't like it + $GLOBALS['__XML_PARSE_RESULT'] = FALSE; + break; + } // END - if + } // END - foreach + + // If all values are okay, continue + if ($sqlValues[$key] !== FALSE) { + // Build the SQL query + $sql = 'INSERT INTO `{?_MYSQL_PREFIX?}_' . $tableName[0] . '` (`' . implode('`, `', $sqlColumns) . "`) VALUES (" . implode(',', $sqlValues) . ')'; + + // Run the SQL query + SQL_QUERY($sql, __FUNCTION__, __LINE__); + + // Add id number + setPostRequestElement('id', SQL_INSERTID()); + + // Prepare filter data array + $filterData = array( + 'mode' => 'add', + 'table_name' => $tableName, + 'content' => postRequestArray(), + 'id' => SQL_INSERTID(), + 'subject' => '', + // @TODO Used generic 'userid' here + 'userid_column' => array('userid'), + 'raw_userid' => array('userid'), + 'affected' => SQL_AFFECTEDROWS(), + 'sql' => $sql, + ); + + // Send "build mail" out + runFilterChain('send_build_mail', $filterData); } // END - if } -/** - * Checks if given subject is found and if so, adds an SQL query to the - * extension unregistration queue. - */ -function unregisterExtensionPointsData ($subject) { - // Default is old extension version - $add = ''; +// Edit rows by given id numbers +function doGenericEditEntriesConfirm ($tableName, $columns = array(), $filterFunctions = array(), $extraValues = array(), $timeColumns = array(), $editNow = array(FALSE), $idColumn = array('id'), $userIdColumn = array('userid'), $rawUserId = array('userid'), $cacheFiles = array(), $subject = '') { + // Is there "time columns"? + if (count($timeColumns) > 0) { + // Then "walk" through all entries + foreach ($timeColumns as $column) { + // Convert all (possible) selections + convertSelectionsToEpocheTimeInPostData($column . '_ye'); + } // END - foreach + } // END - if + + // Change them all + $affected = '0'; + foreach (postRequestElement($idColumn[0]) as $id => $sel) { + // Secure id number + $id = bigintval($id); + + // Prepare content array (new values) + $content = array(); + + // Prepare SQL for this row + $sql = sprintf("UPDATE `{?_MYSQL_PREFIX?}_%s` SET", + SQL_ESCAPE($tableName[0]) + ); + + // "Walk" through all entries + foreach (postRequestArray() as $key => $entries) { + // Skip raw userid which is always invalid + if (($key == $rawUserId[0]) || ($key == ($rawUserId[0] . '_raw')) || ($key == 'do_edit')) { + // Continue with next field + //* NOISY-DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'key=' . $key . ',idColumn[0]=' . $idColumn[0] . ',rawUserId=' . $rawUserId[0]); + continue; + } // END - if + + // Debug message + //* NOISY-DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'key=' . $key . ',id=' . $id . ',idColumn[0]=' . $idColumn[0] . ',entries=
'.print_r($entries,TRUE).''); + + // Is entries an array? + if (($key != $idColumn[0]) && (is_array($entries)) && (isset($entries[$id]))) { + // Search for the right array index + $search = key(search_array($columns, 'column', $key)); + + // Add this entry to content + $content[$key] = $entries[$id]; + + // Debug message + //* BUG: */ die($key.'/'.$id.'/'.$search.'=
'.print_r($columns,TRUE).'
'.print_r($filterFunctions,TRUE).''); + + // Handle possible call-back functions and/or extra values + $entries[$id] = doHandleExtraValues($filterFunctions, $extraValues, $key, $entries[$id], $userIdColumn, $search); + + // Add key/value pair to SQL string + $sql .= addKeyValueSql($key, $entries[$id]); + } elseif (($key != $idColumn[0]) && (!is_array($entries))) { + // Search for it + $search = key(search_array($columns, 'column', $key)); + //* BUG: */ die($key.'/
'.print_r($search, TRUE).'=
'.print_r($columns, TRUE).''); + + // Debug message + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'key=' . $key . ',entries[' . gettype($entries) . ']=' . $entries . ',search=' . $search . ' - BEFORE!'); + + // Add normal entries as well + $content[$key] = $entries; - // Is the extension equal or newer 0.8.9? - if (isExtensionInstalledAndNewer('sql_patches', '0.8.9')) { - // Then add provider - $add = " AND `account_provider`='EXTENSION'"; + // Handle possible call-back functions and/or extra values + $entries = doHandleExtraValues($filterFunctions, $extraValues, $key, $entries, $userIdColumn, $search); + + // Debug message + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'key=' . $key . ',entries[' . gettype($entries) . ']=' . $entries . ',search=' . $search . ' - AFTER!'); + + // Add key/value pair to SQL string + $sql .= addKeyValueSql($key, $entries); + } + } // END - foreach + + // Finish SQL command + $sql = substr($sql, 0, -1) . " WHERE `" . SQL_ESCAPE($idColumn[0]) . "`=" . $id; + if ((isset($rawUserId[0])) && (isset($userIdColumn[0])) && (isPostRequestElementSet($rawUserId[0])) && (!is_array(postRequestElement($rawUserId[0])))) { + // Add user id as well + $sql .= ' AND `' . $userIdColumn[0] . '`=' . bigintval(postRequestElement($rawUserId[0])); + } // END - if + $sql .= " LIMIT 1"; + + // Run this query + //* BUG: */ die($sql.'
'.print_r(postRequestArray(), TRUE).''); + SQL_QUERY($sql, __FUNCTION__, __LINE__); + + // Add affected rows + $edited = SQL_AFFECTEDROWS(); + $affected += $edited; + + // Load all data from that id + $result = SQL_QUERY_ESC("SELECT * FROM `{?_MYSQL_PREFIX?}_%s` WHERE `%s`=%s LIMIT 1", + array( + $tableName[0], + $idColumn[0], + $id + ), __FUNCTION__, __LINE__); + + // Fetch the data and merge it into $content + $content = merge_array($content, SQL_FETCHARRAY($result)); + + // Prepare filter data array + $filterData = array( + 'mode' => 'edit', + 'table_name' => $tableName, + 'content' => $content, + 'id' => $id, + 'subject' => $subject, + 'userid_column' => $userIdColumn, + 'raw_userid' => $rawUserId, + 'affected' => $edited, + 'sql' => $sql, + ); + + // Send "build mail" out + runFilterChain('send_build_mail', $filterData); + + // Free the result + SQL_FREERESULT($result); + } // END - foreach + + // Delete cache? + if ((count($cacheFiles) > 0) && (!empty($cacheFiles[0]))) { + // Delete cache file(s) + foreach ($cacheFiles as $cache) { + // Skip any empty entries + if (empty($cache)) { + // This may cause trouble in loadCacheFile() + continue; + } // END - if + + // Is the cache file loadable? + if ($GLOBALS['cache_instance']->loadCacheFile($cache)) { + // Then remove it + $GLOBALS['cache_instance']->removeCacheFile(); + } // END - if + } // END - foreach } // END - if - // Is the 'subject' there? - if (countSumTotalData($subject, 'points_data', 'id', 'subject', true, $add) == 1) { - // Found one or more, so add an SQL query - addExtensionSql(sprintf("DELETE LOW_PRIORITY FROM `{?_MYSQL_PREFIX?}_points_data` WHERE `subject`='%s'" . $add . " LIMIT 1", - $subject - )); + // Return affected rows + return $affected; +} + +// Delete rows by given id numbers +function doGenericDeleteEntriesConfirm ($tableName, $columns = array(), $filterFunctions = array(), $extraValues = array(), $deleteNow = array(FALSE), $idColumn = array('id'), $userIdColumn = array('userid'), $rawUserId = array('userid'), $cacheFiles = array()) { + // The base SQL command: + $sql = "DELETE LOW_PRIORITY FROM `{?_MYSQL_PREFIX?}_%s` WHERE `%s` IN (%s)"; + + // Is a user id provided? + //* BUG: */ die('
'.print_r($rawUserId,TRUE).'
'.print_r($userIdColumn,TRUE).''); + if ((isset($rawUserId[0])) && (isset($userIdColumn[0])) && (isPostRequestElementSet($rawUserId[0])) && (!is_array(postRequestElement($rawUserId[0])))) { + // Add user id as well + $sql .= ' AND `' . $userIdColumn[0] . '`=' . bigintval(postRequestElement($rawUserId[0])); } // END - if + + // $idColumn[0] in POST must be an array again + if (!is_array(postRequestElement($idColumn[0]))) { + // This indicates that you have conflicting form field naming with XML names + reportBug(__FUNCTION__, __LINE__, 'You have a wrong form field element, idColumn[0]=' . $idColumn[0]); + } // END - if + + // Delete them all + //* BUG: */ die($sql.'
'.print_r($tableName,TRUE).'
'.print_r($columns,TRUE).'
'.print_r($filterFunctions,TRUE).'
'.print_r($extraValues,TRUE).'
'.print_r($deleteNow,TRUE).'
'.print_r($idColumn,TRUE).''); + $idList = ''; + foreach (postRequestElement($idColumn[0]) as $id => $sel) { + // Is id zero? + if (!isValidId($id)) { + // Then skip this + continue; + } // END - if + + // Is there a userid? + if (isPostRequestElementSet($userIdColumn[0])) { + // Load all data from that id + $result = SQL_QUERY_ESC("SELECT * FROM `{?_MYSQL_PREFIX?}_%s` WHERE `%s`=%s LIMIT 1", + array( + $tableName[0], + $idColumn[0], + $id + ), __FUNCTION__, __LINE__); + + // Fetch the data + $content = SQL_FETCHARRAY($result); + + // Free the result + SQL_FREERESULT($result); + + // Send "build mails" out + sendGenericBuildMails('delete', $tableName, $content, $id, '', $userIdColumn); + } // END - if + + // Add id number + $idList .= $id . ','; + } // END - foreach + + // Run the query + SQL_QUERY_ESC($sql, + array( + $tableName[0], + $idColumn[0], + convertNullToZero(substr($idList, 0, -1)) + ), __FUNCTION__, __LINE__); + + // Return affected rows + return SQL_AFFECTEDROWS(); +} + +// Build a special template list +// @TODO cacheFiles is not yet supported +function doGenericListBuilder ($prefix, $listType, $tableName, $columns, $filterFunctions, $extraValues, $idColumn, $userIdColumn, $rawUserId = array('userid'), $content = array()) { + // $tableName and $idColumn must bove be arrays! + if ((!is_array($tableName)) || (count($tableName) != 1)) { + // $tableName is no array + reportBug(__FUNCTION__, __LINE__, 'tableName[]=' . gettype($tableName) . '!=array: userIdColumn=' . $userIdColumn); + } elseif (!is_array($idColumn)) { + // $idColumn is no array + reportBug(__FUNCTION__, __LINE__, 'idColumn[]=' . gettype($idColumn) . '!=array: userIdColumn=' . $userIdColumn); + } elseif ((!is_array($userIdColumn)) || (count($userIdColumn) != 1)) { + // $tableName is no array + reportBug(__FUNCTION__, __LINE__, 'userIdColumn[]=' . gettype($userIdColumn) . '!=array: userIdColumn=' . $userIdColumn); + } + + // Init row output + $OUT = ''; + + // "Walk"Â through all entries + //* DEBUG: */ reportBug(__FUNCTION__, __LINE__, 'listType=
'.print_r($listType,TRUE).',tableName
'.print_r($tableName,TRUE).',columns=
'.print_r($columns,TRUE).',filterFunctions=
'.print_r($filterFunctions,TRUE).',extraValues=
'.print_r($extraValues,TRUE).',idColumn=
'.print_r($idColumn,TRUE).',userIdColumn=
'.print_r($userIdColumn,TRUE).',rawUserId=
'.print_r($rawUserId,TRUE).''); + foreach (postRequestElement($idColumn[0]) as $id => $selected) { + // Secure id number + $id = bigintval($id); + + // Get result from a given column array and table name + $result = SQL_RESULT_FROM_ARRAY($tableName[0], $columns, $idColumn[0], $id, __FUNCTION__, __LINE__); + + // Is there one entry? + if (SQL_NUMROWS($result) == 1) { + // Load all data + $row = SQL_FETCHARRAY($result); + + // Filter all data + foreach ($row as $key => $value) { + // Search index + $idx = searchXmlArray($key, $columns, 'column'); + + // Default name is NULL + $name = NULL; + + // Is the name there? + if (isset($columns[$idx]['name'])) { + // Then use it + $name = $columns[$idx]['name']; + } // END - if + + // Skip any missing entries + if ($idx === FALSE) { + // Skip this one + //* DEBUG: */ reportBug(__FUNCTION__, __LINE__, 'key=' . $key . ' - SKIPPED!'); + continue; + } // END - if + + //Â Is there a userid? + //* NOISY-DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'key=' . $key . ',userIdColumn=' . $userIdColumn[0]); + if ($key == $userIdColumn[0]) { + // Add it again as raw id + //* DEBUG: */ reportBug(__FUNCTION__, __LINE__, 'key=' . $key . ',userIdColumn=' . $userIdColumn[0]); + $row[$userIdColumn[0]] = convertZeroToNull($value); + $row[$userIdColumn[0] . '_raw'] = $row[$userIdColumn[0]]; + } // END - if + + // If the key matches the idColumn variable, we need to temporary remember it + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'key=' . $key . ',idColumn=' . $idColumn[0] . ',value=' . $value); + if ($key == $idColumn[0]) { + /* + * Found, so remember it securely (to make sure only id + * numbers can pass, don't use alpha-numerical values!) + */ + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'value=' . $value . ' - set as ' . $prefix . '_list_builder_id_value!'); + $GLOBALS[$prefix . '_list_builder_id_value'] = bigintval($value); + } // END - if + + // Try to handle call-back functions and/or extra values + //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'idx=' . $idx . ',row[' . $key . ']=' . $row[$key]); + //if ($key == 'forced_campaign_created') die($idx.'=
'.print_r($columns,true).'
'.print_r($extraValues,true).''); + $row[$key] = doHandleExtraValues($filterFunctions, $extraValues, $idx, $row[$key], $userIdColumn, ((!is_null($name)) ? $name : $key), $id); + } // END - foreach + + // Then list it + $OUT .= loadTemplate(sprintf("%s_%s_%s_row", + $prefix, + $listType, + $tableName[0] + ), TRUE, $row + ); + } // END - if + + // Free the result + SQL_FREERESULT($result); + } // END - foreach + + // Is there an entry in $content? + if ((is_array($content)) && (count($content) > 0)) { + // Use generic 'rows' + $content['rows'] = $OUT; + } else { + // Use direct output + $content = $OUT; + } + + // Load master template + loadTemplate( + sprintf("%s_%s_%s", + $prefix, + $listType, + $tableName[0] + ), FALSE, $content + ); +} + +// Checks whether given URL is blacklisted +function isUrlBlacklisted ($url) { + // Mark it as not listed by default + $listed = FALSE; + + // Is black-listing enbaled? + if (!isUrlBlacklistEnabled()) { + // No, then all URLs are not in this list + return FALSE; + } elseif (!isset($GLOBALS['blacklist_data'][$url])) { + // Check black-list for given URL + $result = SQL_QUERY_ESC("SELECT UNIX_TIMESTAMP(`timestamp`) AS `blist_timestamp` FROM `{?_MYSQL_PREFIX?}_url_blacklist` WHERE `url`='%s' LIMIT 1", + array($url), __FILE__, __LINE__); + + // Is there an entry? + if (SQL_NUMROWS($result) == 1) { + // Jupp, we got one listed + $GLOBALS['blacklist_data'][$url] = SQL_FETCHARRAY($result); + + // Mark it as listed + $listed = TRUE; + } // END - if + + // Free result + SQL_FREERESULT($result); + } else { + // Is found in cache -> black-listed + $listed = TRUE; + } + + // Return result + return $listed; +} + +// Adds key/value pair to a working SQL string together +function addKeyValueSql ($key, $value) { + // Init SQL + $sql = ''; + + // Is it NULL? + if (($value == 'NULL') || (is_null($value))) { + // Add key with NULL + $sql .= sprintf(' `%s`=NULL,', + SQL_ESCAPE($key) + ); + } elseif ((is_double($value)) || (is_float($value)) || (is_int($value))) { + // Is a number, so addd it directly + $sql .= sprintf(" `%s`=%s,", + SQL_ESCAPE($key), + $value + ); + } else { + // Else add the value escape'd + $sql .= sprintf(" `%s`='%s',", + SQL_ESCAPE($key), + SQL_ESCAPE($value) + ); + } + + // Return SQL string + return $sql; } // [EOF]