X-Git-Url: https://git.mxchange.org/?a=blobdiff_plain;f=show_bonus.php;h=ad3ba472f617365b79d6893505dad8089b2be213;hb=2290ae1a5f635d475b3886972a95a8fdb52bd3ce;hp=e32f4c598ac274150fb23877dcc7e89a73cfbdda;hpb=263a089d8a499e0e26d0af9e7aa7639f88b8ca60;p=mailer.git
diff --git a/show_bonus.php b/show_bonus.php
index e32f4c598a..ad3ba472f6 100644
--- a/show_bonus.php
+++ b/show_bonus.php
@@ -14,11 +14,10 @@
* $Date:: $ *
* $Tag:: 0.2.1-FINAL $ *
* $Author:: $ *
- * Needs to be in all Files and every File needs "svn propset *
- * svn:keywords Date Revision" (autoprobset!) at least!!!!!! *
* -------------------------------------------------------------------- *
* Copyright (c) 2003 - 2009 by Roland Haeder *
- * For more information visit: http://www.mxchange.org *
+ * Copyright (c) 2009 - 2012 by Mailer Developer Team *
+ * For more information visit: http://mxchange.org *
* *
* This program is free software; you can redistribute it and/or modify *
* it under the terms of the GNU General Public License as published by *
@@ -40,11 +39,11 @@
require('inc/libs/security_functions.php');
// Init start time
-$GLOBALS['startTime'] = microtime(true);
+$GLOBALS['__start_time'] = microtime(true);
// Set this because we have no module in URI
-$GLOBALS['module'] = 'show_bonus';
-$GLOBALS['output_mode'] = '0';
+$GLOBALS['__module'] = 'show_bonus';
+$GLOBALS['__output_mode'] = '0';
// Load the required file(s)
require('inc/config-global.php');
@@ -58,7 +57,7 @@ redirectOnUninstalledExtension('bonus');
// Include header
loadIncludeOnce('inc/header.php');
-if ((getRequestElement('userid') > 0) && (getRequestElement('d') > 0) && (isGetRequestElementSet('t'))) {
+if ((isValidUserId(getRequestElement('userid'))) && (getRequestElement('d') > 0) && (isGetRequestElementSet('t'))) {
// Set row name
$t = '';
switch (getRequestElement('t')) {
@@ -78,15 +77,20 @@ if ((getRequestElement('userid') > 0) && (getRequestElement('d') > 0) && (isGetR
// Valid type?
if (!empty($t)) {
// Check for data
- $result = SQL_QUERY_ESC("SELECT d.gender, d.surname, d.family, b.level, b.points
+ $result = SQL_QUERY_ESC("SELECT
+ d.`userid`,
+ b.`level`,
+ b.`points`
FROM
`{?_MYSQL_PREFIX?}_user_data` AS d
-RIGHT JOIN
+INNER JOIN
`{?_MYSQL_PREFIX?}_bonus_turbo` AS b
ON
- d.userid=b.userid
+ d.`userid`=b.`userid`
WHERE
- d.`status`='CONFIRMED' AND d.userid=%s AND b.%s=%s
+ d.`status`='CONFIRMED' AND
+ d.`userid`=%s AND
+ b.`%s`=%s
LIMIT 1",
array(
bigintval(getRequestElement('userid')),
@@ -100,8 +104,6 @@ LIMIT 1",
$content = SQL_FETCHARRAY($result);
// Prepare constants for the pre-template
- $content['gender'] = translateGender($content['gender']);
- $content['points'] = translateComma($content['points']);
$content['mailid'] = bigintval(getRequestElement('d'));
$content['rows'] = addBonusRanks(bigintval(getRequestElement('d')), $t, bigintval(getRequestElement('userid')));
@@ -112,18 +114,18 @@ LIMIT 1",
$content['message'] = loadTemplate('show_bonus_msg', true, $content);
} else {
// No data found
- $content['message'] = "{--BONUS_SHOW_NO_DATA--}";
+ $content['message'] = '{--BONUS_SHOW_NO_DATA--}';
}
// Free memory
SQL_FREERESULT($result);
} else {
// Wrong type entered
- $content['message'] = "{--BONUS_SHOW_WRONG_TYPE--}";
+ $content['message'] = '{--BONUS_SHOW_WRONG_TYPE--}';
}
} else {
// Wrong call!
- $content['message'] = "{--BONUS_SHOW_WRONG_CALL--}";
+ $content['message'] = '{--BONUS_SHOW_WRONG_CALL--}';
}
// Load send_bonus header template (for your banners, e.g.?)