2 /************************************************************************
\r
3 * MXChange v0.2.1 Start: 10/07/2004 *
\r
4 * ================ Last change: 10/07/2004 *
\r
6 * -------------------------------------------------------------------- *
\r
7 * File : what-transfer.php *
\r
8 * -------------------------------------------------------------------- *
\r
9 * Short description : Point transfers *
\r
10 * -------------------------------------------------------------------- *
\r
11 * Kurzbeschreibung : Punktetransfers *
\r
12 * -------------------------------------------------------------------- *
\r
14 * -------------------------------------------------------------------- *
\r
15 * Copyright (c) 2003 - 2008 by Roland Haeder *
\r
16 * For more information visit: http://www.mxchange.org *
\r
18 * This program is free software; you can redistribute it and/or modify *
\r
19 * it under the terms of the GNU General Public License as published by *
\r
20 * the Free Software Foundation; either version 2 of the License, or *
\r
21 * (at your option) any later version. *
\r
23 * This program is distributed in the hope that it will be useful, *
\r
24 * but WITHOUT ANY WARRANTY; without even the implied warranty of *
\r
25 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
\r
26 * GNU General Public License for more details. *
\r
28 * You should have received a copy of the GNU General Public License *
\r
29 * along with this program; if not, write to the Free Software *
\r
30 * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, *
\r
31 * MA 02110-1301 USA *
\r
32 ************************************************************************/
\r
34 // Some security stuff...
\r
35 if (ereg(basename(__FILE__), $_SERVER['PHP_SELF']))
\r
37 $INC = substr(dirname(__FILE__), 0, strpos(dirname(__FILE__), "/inc") + 4) . "/security.php";
\r
40 elseif (!IS_LOGGED_IN())
\r
42 LOAD_URL(URL."/modules.php?module=index");
\r
44 elseif ((!EXT_IS_ACTIVE("transfer")) && (!IS_ADMIN()))
\r
46 ADD_FATAL(EXTENSION_PROBLEM_EXT_INACTIVE, "transfer");
\r
50 // Add description as navigation point
\r
51 ADD_DESCR("member", basename(__FILE__));
\r
54 $result = SQL_QUERY_ESC("SELECT opt_in FROM "._MYSQL_PREFIX."_user_data WHERE userid=%d LIMIT 1",
\r
55 array($GLOBALS['userid']), __FILE__, __LINE__);
\r
56 list($opt_in) = SQL_FETCHROW($result);
\r
59 SQL_FREERESULT($result);
\r
62 if (!empty($_GET['mode'])) $MODE = $_GET['mode'];
\r
64 // Check for "faker"
\r
65 if (($opt_in == "N") && ($MODE == "new")) $MODE = "";
\r
69 case "new": // Start new transfer
\r
70 // Get total points and subtract the balance amount from it = maximum transferable points
\r
71 $result = SQL_QUERY_ESC("SELECT SUM(points) FROM "._MYSQL_PREFIX."_user_points WHERE userid=%d AND points > 0",
\r
72 array($GLOBALS['userid']), __FILE__, __LINE__);
\r
73 list($total) = SQL_FETCHROW($result);
\r
74 SQL_FREERESULT($result);
\r
76 // Get totally used points and password
\r
77 $result = SQL_QUERY_ESC("SELECT used_points, password FROM "._MYSQL_PREFIX."_user_data WHERE userid=%d LIMIT 1",
\r
78 array($GLOBALS['userid']), __FILE__, __LINE__);
\r
79 list($used, $pass) = SQL_FETCHROW($result);
\r
80 SQL_FREERESULT($result);
\r
82 // Remember maximum value for template
\r
83 define('__TRANSFER_MAX_VALUE', round($total - $used - $CONFIG['transfer_balance'] - 0.5));
\r
85 if (isset($_POST['ok']))
\r
88 if ($CONFIG['transfer_code'] > 0)
\r
91 $code = GEN_RANDOM_CODE($CONFIG['transfer_code'], $_POST['code_chk'], $GLOBALS['userid'], __TRANSFER_MAX_VALUE);
\r
92 $valid_code = ($code == $_POST['code']);
\r
96 // Zero length (= disabled) is always valid!
\r
101 $valid_pass = ($pass == generateHash($_POST['password'], $pass));
\r
103 // Test transfer amount
\r
104 $valid_amount = ((!empty($_POST['points'])) && ($_POST['points'] <= __TRANSFER_MAX_VALUE));
\r
106 // Test reason for transfer
\r
107 $valid_reason = (!empty($_POST['reason']));
\r
109 // Test if a recipient is selected
\r
110 $valid_recipient = ($_POST['to_uid'] > 0);
\r
112 // Check for nickname extension and set additional data
\r
113 $nick = false; $ADD = ", userid";
\r
114 if (EXT_IS_ACTIVE("nickname"))
\r
116 $ADD = ", nickname";
\r
119 // Re-check receivers and own personal data
\r
120 $result = SQL_QUERY_ESC("SELECT userid, sex, surname, family, email".$ADD." FROM "._MYSQL_PREFIX."_user_data WHERE userid IN ('%s', '%s') AND status='CONFIRMED' ORDER BY userid LIMIT 2",
\r
121 array($GLOBALS['userid'], bigintval($_POST['to_uid'])), __FILE__, __LINE__);
\r
122 $valid_data = (SQL_NUMROWS($result) == 2);
\r
124 if ($valid_code && $valid_pass && $valid_amount && $valid_reason && $valid_recipient)
\r
126 // Let's start the transfer and load user data
\r
127 list($uid1, $sex1, $sname1, $fname1, $email1, $nick1) = SQL_FETCHROW($result);
\r
128 list($uid2, $sex2, $sname2, $fname2, $email2, $nick2) = SQL_FETCHROW($result);
\r
129 SQL_FREERESULT($result);
\r
130 if ($uid1 == $GLOBALS['userid'])
\r
132 // Data row 1 is sender's data
\r
133 define('__SENDER_SEX' , TRANSLATE_SEX($sex1));
\r
134 define('__SENDER_NICK' , $nick1);
\r
135 define('__SENDER_SNAME' , $sname1);
\r
136 define('__SENDER_FNAME' , $fname1);
\r
137 define('__SENDER_EMAIL' , $email1);
\r
138 // Data row 2 is recpient's data
\r
139 define('__RECIPIENT_SEX' , TRANSLATE_SEX($sex2));
\r
140 define('__RECIPIENT_NICK' , $nick2);
\r
141 define('__RECIPIENT_SNAME', $sname2);
\r
142 define('__RECIPIENT_FNAME', $fname2);
\r
143 define('__RECIPIENT_EMAIL', $email2);
\r
145 // Prepare variables for testing
\r
146 $TEST_NICK_SENDER = $nick1;
\r
147 $TEST_NICK_REC = $nick2;
\r
151 // Data row 2 is sender's data
\r
152 define('__SENDER_SEX' , TRANSLATE_SEX($sex2));
\r
153 define('__SENDER_NICK' , $nick2);
\r
154 define('__SENDER_SNAME' , $sname2);
\r
155 define('__SENDER_FNAME' , $fname2);
\r
156 define('__SENDER_EMAIL' , $email2);
\r
157 // Data row 1 is recpient's data
\r
158 define('__RECIPIENT_SEX' , TRANSLATE_SEX($sex1));
\r
159 define('__RECIPIENT_NICK' , $nick1);
\r
160 define('__RECIPIENT_SNAME', $sname1);
\r
161 define('__RECIPIENT_FNAME', $fname1);
\r
162 define('__RECIPIENT_EMAIL', $email1);
\r
164 // Prepare variables for testing
\r
165 $TEST_NICK_SENDER = $nick2;
\r
166 $TEST_NICK_REC = $nick1;
\r
168 // Sender's UID is always currently stored in cookie userid...
\r
169 define('__SENDER_UID' , $GLOBALS['userid']);
\r
170 define('__RECIPIENT_UID' , $_POST['to_uid']);
\r
172 $SENDER = __SENDER_UID;
\r
173 $RECIPIENT = __RECIPIENT_UID;
\r
176 if (($TEST_NICK_SENDER != __SENDER_UID) && (!empty($TEST_NICK_SENDER)))
\r
178 $SENDER = __SENDER_NICK;
\r
180 if (($TEST_NICK_REC != __RECIPIENT_UID) && (!empty($TEST_NICK_REC)))
\r
182 $RECIPIENT = __RECIPIENT_NICK;
\r
186 // Remember transfer reason and fancy date/time in constants
\r
187 define('__TRANSFER_REASON', $_POST['reason']);
\r
188 if (function_exists('CREATE_FANCY_TIME'))
\r
190 define('__TRANSFER_EXPIRES', CREATE_FANCY_TIME($CONFIG['transfer_age']));
\r
194 define('__TRANSFER_EXPIRES', round($CONFIG['transfer_age']/60/60/24)." ".DAYS);
\r
197 // Generate tranafer id
\r
198 define('__TRANS_ID', bigintval(GEN_RANDOM_CODE("10", rand(0, 99999), $GLOBALS['userid'], $_POST['reason'])));
\r
200 // Add entries to both tables
\r
201 $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_user_transfers_in (userid, from_uid, points, reason, time_trans, trans_id) VALUES ('%s', '%s', '%s', '%s', UNIX_TIMESTAMP(), '%s')",
\r
202 array(bigintval($_POST['to_uid']), $GLOBALS['userid'], bigintval($_POST['points']), addslashes($_POST['reason']), __TRANS_ID),
\r
203 __FILE__, __LINE__);
\r
204 $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_user_transfers_out (userid, to_uid, points, reason, time_trans, trans_id) VALUES ('%s', '%s', '%s', '%s', UNIX_TIMESTAMP(), '%s')",
\r
205 array($GLOBALS['userid'], bigintval($_POST['to_uid']), bigintval($_POST['points']), addslashes($_POST['reason']), __TRANS_ID),
\r
206 __FILE__, __LINE__);
\r
208 // Add points to account *directly* ...
\r
209 $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_user_points SET points=points+%s WHERE userid=%d AND ref_depth='0' LIMIT 1",
\r
210 array(bigintval($_POST['points']), bigintval($_POST['to_uid'])), __FILE__, __LINE__);
\r
212 // ... and add it to current user's used points
\r
213 $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_user_data SET used_points=used_points+%s WHERE userid=%d LIMIT 1",
\r
214 array(bigintval($_POST['points']), $GLOBALS['userid']), __FILE__, __LINE__);
\r
216 // First send email to recipient
\r
217 $msg = LOAD_EMAIL_TEMPLATE("member_transfer_recipient", "", __RECIPIENT_UID);
\r
218 SEND_EMAIL(__RECIPIENT_EMAIL, TRANSFER_MEMBER_RECIPIENT_SUBJ.": ".$SENDER, $msg);
\r
220 // Second send email to sender
\r
221 $msg = LOAD_EMAIL_TEMPLATE("member_transfer_sender", "", __SENDER_UID);
\r
222 SEND_EMAIL(__SENDER_EMAIL, TRANSFER_MEMBER_SENDER_SUBJ.": ".$RECIPIENT, $msg);
\r
224 // At last send admin mail(s)
\r
225 $ADMIN_SUBJ = TRANSFER_ADMIN_SUBJECT." (".$SENDER."->".$RECIPIENT.")";
\r
226 if (GET_EXT_VERSION("admins") >= "0.4.1")
\r
228 SEND_ADMIN_EMAILS_PRO($ADMIN_SUBJ, "admin_transfer_points");
\r
232 $msg = LOAD_EMAIL_TEMPLATE("admin_transfer_points");
\r
233 SEND_ADMIN_EMAILS($ADMIN_SUBJ, $msg);
\r
236 // Transfer is completed
\r
237 OUTPUT_HTML ("<P>");
\r
238 LOAD_TEMPLATE("admin_settings_saved", false, TRANSFER_COMPLETED."<BR><A href=\"".URL."/modules.php?module=login&what=transfer\">".TRANSFER_CONTINUE_OVERVIEW."</A>");
\r
239 OUTPUT_HTML ("</P>");
\r
241 elseif (!$valid_code)
\r
243 // Invalid Touring code!
\r
244 OUTPUT_HTML ("<P><STRONG class=\"member_note\">".TRANSFER_INVALID_CODE."</STRONG></P>");
\r
245 unset($_POST['ok']);
\r
247 elseif (!$valid_pass)
\r
249 // Wrong password entered
\r
250 OUTPUT_HTML ("<P><STRONG class=\"member_note\">".TRANSFER_INVALID_PASSWORD."</STRONG></P>");
\r
251 unset($_POST['ok']);
\r
253 elseif (!$valid_amount)
\r
255 // Too much points entered
\r
256 OUTPUT_HTML ("<P><STRONG class=\"member_note\">".TRANSFER_INVALID_POINTS."</STRONG></P>");
\r
257 unset($_POST['ok']);
\r
259 elseif (!$valid_reason)
\r
261 // No transfer reason entered
\r
262 OUTPUT_HTML ("<P><STRONG class=\"member_note\">".TRANSFER_INVALID_REASON."</STRONG></P>");
\r
263 unset($_POST['ok']);
\r
265 elseif (!$valid_recipient)
\r
267 // No recipient selected
\r
268 OUTPUT_HTML ("<P><STRONG class=\"member_note\">".TRANSFER_INVALID_RECIPIENT."</STRONG></P>");
\r
269 unset($_POST['ok']);
\r
271 elseif (!$valid_data)
\r
273 // No recipient selected
\r
274 OUTPUT_HTML ("<P><STRONG class=\"member_note\">".TRANSFER_INVALID_DATA."</STRONG></P>");
\r
275 unset($_POST['ok']);
\r
278 if (!isset($_POST['ok']))
\r
280 // Load member list
\r
281 if (EXT_IS_ACTIVE("nickname"))
\r
283 // Load userid and nickname
\r
284 $result = SQL_QUERY_ESC("SELECT userid, nickname FROM "._MYSQL_PREFIX."_user_data WHERE status='CONFIRMED' AND opt_in='Y' AND userid != '%s' ORDER BY userid",
\r
285 array($GLOBALS['userid']), __FILE__, __LINE__);
\r
289 // Load only userid
\r
290 $result = SQL_QUERY_ESC("SELECT userid, userid FROM "._MYSQL_PREFIX."_user_data WHERE status='CONFIRMED' AND opt_in='Y' AND userid != '%s' ORDER BY userid",
\r
291 array($GLOBALS['userid']), __FILE__, __LINE__);
\r
293 if (SQL_NUMROWS($result) > 0)
\r
296 $OUT = "<SELECT name=\"to_uid\" size=\"1\" class=\"member_select\">
\r
297 <OPTION value=\"0\">".SELECT_NONE."</OPTION>\n";
\r
298 while (list($uid, $nick) = SQL_FETCHROW($result))
\r
300 $OUT .= "<OPTION value=\"".$uid."\"";
\r
301 if ((isset($_POST['to_uid'])) && ($_POST['to_uid'] == $uid)) $OUT .= " selected=\"selected\"";
\r
303 if (($nick != $uid) && (!empty($nick)))
\r
313 $OUT .= "</OPTION>\n";
\r
315 $OUT .= "</SELECT>\n";
\r
316 define('__TRANSFER_TO_DISABLED', "");
\r
319 SQL_FREERESULT($result);
\r
323 // No one else is opt-in
\r
324 $OUT = TRANSFER_NO_ONE_ELSE_OPT_IN;
\r
325 define('__TRANSFER_TO_DISABLED', " disabled");
\r
327 // Transfer output to constant for the template
\r
328 define('__TRANSFER_USERID_SELECTION', $OUT);
\r
331 if ($CONFIG['transfer_code'] > 0)
\r
333 $rand = rand(0, 99999);
\r
334 $code = GEN_RANDOM_CODE($CONFIG['transfer_code'], $rand, $GLOBALS['userid'], __TRANSFER_MAX_VALUE);
\r
335 $img = GENERATE_IMAGE($code, false);
\r
336 define('__TRANSFER_IMAGE_INPUT', "<INPUT type=\"hidden\" name=\"code_chk\" value=\"".$rand."\"><INPUT type=\"text\" name=\"code\" class=\"member_normal\" size=\"5\" maxlength=\"7\"".__TRANSFER_TO_DISABLED."> ".$img);
\r
341 define('__TRANSFER_IMAGE_INPUT', TRANSFER_NO_CODE);
\r
344 // Transfer maybe already entered valued'
\r
345 if (isset($_GET['ok'])) {
\r
346 // Get values from form
\r
347 define('__TRANSFER_POINTS_VALUE', bigintval($_POST['points']));
\r
348 define('__TRANSFER_REASON_VALUE', strip_tags($_POST['reason']));
\r
350 // Set empty values
\r
351 define('__TRANSFER_POINTS_VALUE', "");
\r
352 define('__TRANSFER_REASON_VALUE', "");
\r
356 LOAD_TEMPLATE("member_transfer_new");
\r
360 case "list_in": // List only incoming transactions
\r
361 case "list_out": // List only outgoing transactions
\r
362 // As you can see I put list_in and list_out together. I now do a switch() again on it for the right SQL command
\r
366 $SQL = "SELECT trans_id, from_uid, points, reason, time_trans FROM "._MYSQL_PREFIX."_user_transfers_in WHERE userid=%d ORDER BY time_trans DESC LIMIT ".$CONFIG['transfer_max'];
\r
367 $NOTHING = TRANSFER_NO_INCOMING_TRANSFERS;
\r
368 define('__TRANSFER_SUM', TRANSFER_TOTAL_INCOMING);
\r
369 define('__TRANSFER_TITLE', TRANSFER_LIST_INCOMING);
\r
373 $SQL = "SELECT trans_id, to_uid, points, reason, time_trans FROM "._MYSQL_PREFIX."_user_transfers_out WHERE userid=%d ORDER BY time_trans DESC LIMIT ".$CONFIG['transfer_max'];
\r
374 $NOTHING = TRANSFER_NO_OUTGOING_TRANSFERS;
\r
375 define('__TRANSFER_SUM', TRANSFER_TOTAL_OUTGOING);
\r
376 define('__TRANSFER_TITLE', TRANSFER_LIST_OUTGOING);
\r
380 // Run the SQL command
\r
382 $result = SQL_QUERY_ESC($SQL, array($GLOBALS['userid']), __FILE__, __LINE__);
\r
383 if (SQL_NUMROWS($result) > 0)
\r
385 $OUT = ""; $SW = 2;
\r
386 while (list($tid, $uid, $points, $reason, $stamp) = SQL_FETCHROW($result))
\r
388 if ($type == "OUT") $points = "$points-";
\r
390 <TD class=\"transfer_row1 switch_sw".$SW." bottom2 right2\">
\r
391 <FONT class=\"transfer_row1\">".$tid."</FONT>
\r
393 <TD class=\"transfer_row2 switch_sw".$SW." bottom2 right2\">
\r
394 <FONT class=\"transfer_row2\">".MAKE_DATETIME($stamp, "3")."</FONT>
\r
396 <TD class=\"transfer_row3 switch_sw".$SW." bottom2 right2\">
\r
397 <FONT class=\"transfer_row3\">".$uid."</FONT>
\r
399 <TD class=\"transfer_row4 switch_sw".$SW." bottom2 right2\">
\r
400 <FONT class=\"transfer_row4\">".$reason."</FONT>
\r
402 <TD class=\"transfer_row5 switch_sw".$SW." bottom2\">
\r
403 <FONT class=\"transfer_row5\">".$points."</FONT>
\r
411 SQL_FREERESULT($result);
\r
415 // Nothing for in or out
\r
417 <TD colspan=\"5\" align=\"center\" class=\"bottom2\" height=\"70\">
\r
418 ".LOAD_TEMPLATE("admin_settings_saved", true, $NOTHING)."
\r
423 // ... and add them to a constant for the template
\r
424 define('__TRANSFER_ROWS', $OUT);
\r
426 // Remeber total amount
\r
427 define('__TRANSFER_TOTAL_VALUE', $total);
\r
429 // Load final template
\r
430 LOAD_TEMPLATE("member_transfer_list");
\r
433 case "list_all": // List all transactions
\r
434 // We fill a temporay table with data from both tables. This is much easier
\r
435 // to code and unstand by you as sub-SELECT queries. I know this is not the
\r
436 // fastest way but it shall be fine for now.
\r
438 // First of all create the temporary table
\r
439 $result = SQL_QUERY("CREATE TEMPORARY TABLE "._MYSQL_PREFIX."_transfers_tmp (
\r
440 trans_id varchar(12) not null default '',
\r
441 party_uid bigint(20) not null default '0',
\r
442 points bigint(20) not null default '0',
\r
443 reason varchar(255) not null default '',
\r
444 time_trans varchar(10) not null default '0',
\r
445 trans_type enum('IN', 'OUT') not null default 'IN',
\r
447 ) TYPE=HEAP", __FILE__, __LINE__);
\r
449 // Let's begin with the incoming list
\r
450 $result = SQL_QUERY_ESC("SELECT trans_id, from_uid, points, reason, time_trans FROM "._MYSQL_PREFIX."_user_transfers_in WHERE userid=%d ORDER BY id LIMIT %s",
\r
451 array($GLOBALS['userid'], $CONFIG['transfer_max']), __FILE__, __LINE__);
\r
452 while ($DATA = SQL_FETCHROW($result))
\r
455 $DATA = implode("', '", $DATA);
\r
456 $res_temp = SQL_QUERY("INSERT INTO "._MYSQL_PREFIX."_transfers_tmp (trans_id, party_uid, points, reason, time_trans, trans_type) VALUES ('".$DATA."')", __FILE__, __LINE__);
\r
460 SQL_FREERESULT($result);
\r
462 // As the last table transfer data from outgoing table to temporary
\r
463 $result = SQL_QUERY_ESC("SELECT trans_id, to_uid, points, reason, time_trans FROM "._MYSQL_PREFIX."_user_transfers_out WHERE userid=%d ORDER BY id LIMIT %s",
\r
464 array($GLOBALS['userid'], $CONFIG['transfer_max']), __FILE__, __LINE__);
\r
465 while ($DATA = SQL_FETCHROW($result))
\r
468 $DATA = implode("', '", $DATA);
\r
469 $res_temp = SQL_QUERY("INSERT INTO "._MYSQL_PREFIX."_transfers_tmp (trans_id, party_uid, points, reason, time_trans, trans_type) VALUES ('".$DATA."')", __FILE__, __LINE__);
\r
473 SQL_FREERESULT($result);
\r
476 if (SQL_NUMROWS($result) > 0)
\r
479 $OUT = ""; $SW = 2;
\r
480 $result = SQL_QUERY("SELECT party_uid, trans_id, points, reason, time_trans, trans_type FROM "._MYSQL_PREFIX."_transfers_tmp ORDER BY time_trans DESC", __FILE__, __LINE__);
\r
481 while(list($uid, $idx, $points, $reason, $stamp, $type) = SQL_FETCHROW($result))
\r
483 if ($type == "OUT") $points = "-$points";
\r
485 <TD class=\"transfer_row1 switch_sw".$SW." bottom2 right2\">
\r
486 <FONT class=\"transfer_row1\">".$idx."</FONT>
\r
488 <TD class=\"transfer_row2 switch_sw".$SW." bottom2 right2\">
\r
489 <FONT class=\"transfer_row2\">".MAKE_DATETIME($stamp, "3")."</FONT>
\r
491 <TD class=\"transfer_row3 switch_sw".$SW." bottom2 right2\">
\r
492 <FONT class=\"transfer_row3\">".$uid."</FONT>
\r
494 <TD class=\"transfer_row4 switch_sw".$SW." bottom2 right2\">
\r
495 <FONT class=\"transfer_row4\">".$reason."</FONT>
\r
497 <TD class=\"transfer_row5 switch_sw".$SW." bottom2\">
\r
498 <FONT class=\"transfer_row5\">".$points."</FONT>
\r
506 SQL_FREERESULT($result);
\r
510 // Nothing for in and out
\r
512 <TD colspan=\"5\" align=\"center\" class=\"bottom2\" height=\"70\">
\r
513 ".LOAD_TEMPLATE("admin_settings_saved", true, TRANSFER_NO_INOUT_TRANSFERS)."
\r
518 // ... and add them to a constant for the template
\r
519 define('__TRANSFER_ROWS', $OUT);
\r
521 // Remeber total amount
\r
522 define('__TRANSFER_TOTAL_VALUE', $total);
\r
525 define('__TRANSFER_TITLE', TRANSFER_LIST_ALL);
\r
527 // Set "balance" word
\r
528 define('__TRANSFER_SUM', TRANSFER_TOTAL_BALANCE);
\r
530 // Load final template
\r
531 LOAD_TEMPLATE("member_transfer_list");
\r
533 // At the end we don't need a temporay table in memory
\r
534 $result = SQL_QUERY("DROP TABLE IF EXISTS "._MYSQL_PREFIX."_transfers_tmp", __FILE__, __LINE__);
\r
536 // Free some memory...
\r
537 SQL_FREERESULT($result);
\r
540 case "": // Overview page
\r
541 // Check incoming transfers
\r
542 $result = SQL_QUERY_ESC("SELECT COUNT(id) FROM "._MYSQL_PREFIX."_user_transfers_in WHERE userid=%d", array($GLOBALS['userid']), __FILE__, __LINE__);
\r
543 list($dmy) = SQL_FETCHROW($result);
\r
544 SQL_FREERESULT($result);
\r
549 define('__TRANSFER_IN_LINK', "<A href=\"".URL."/modules.php?module=login&what=transfer&mode=list_in\">".$dmy."</A>");
\r
553 define('__TRANSFER_IN_LINK', $dmy);
\r
556 // Check outgoing transfers
\r
557 $result = SQL_QUERY_ESC("SELECT COUNT(id) FROM "._MYSQL_PREFIX."_user_transfers_out WHERE userid=%d", array($GLOBALS['userid']), __FILE__, __LINE__);
\r
558 list($dmy) = SQL_FETCHROW($result);
\r
559 SQL_FREERESULT($result);
\r
564 define('__TRANSFER_OUT_LINK', "<A href=\"".URL."/modules.php?module=login&what=transfer&mode=list_out\">".$dmy."</A>");
\r
568 define('__TRANSFER_OUT_LINK', $dmy);
\r
571 // Total transactions
\r
574 define('__TRANSFER_ALL_LINK', "<A href=\"".URL."/modules.php?module=login&what=transfer&mode=list_all\">".$total."</A>");
\r
578 define('__TRANSFER_ALL_LINK', $total);
\r
581 if (isset($_POST['ok']))
\r
584 $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_user_data SET opt_in='%s' WHERE userid=%d LIMIT 1",
\r
585 array($_POST['opt_in'], $GLOBALS['userid']), __FILE__, __LINE__);
\r
587 // Rember for next switch() command
\r
588 $opt_in = $_POST['opt_in'];
\r
590 // "Settings saved..."
\r
591 OUTPUT_HTML ("<P><STRONG class=\"member_done\">".SETTINGS_SAVED."</STRONG></P>");
\r
596 define('__TRANSFER_ALLOW_Y', " checked");
\r
597 define('__TRANSFER_ALLOW_N', "");
\r
598 define('__TRANSFER_NEW_LINK', "<A href=\"".URL."/modules.php?module=login&what=transfer&mode=new\">".TRANSFER_NOW_LINK."</A>");
\r
602 define('__TRANSFER_ALLOW_Y', "");
\r
603 define('__TRANSFER_ALLOW_N', " checked");
\r
604 define('__TRANSFER_NEW_LINK', TRANSFER_PLEASE_ALLOW_OPT_IN);
\r
608 // Check for latest out-transfers
\r
609 $result = SQL_QUERY_ESC("SELECT time_trans FROM "._MYSQL_PREFIX."_user_transfers_out WHERE time_trans > ".(time() - $CONFIG['transfer_timeout'])." AND userid=%d ORDER BY time_trans DESC LIMIT 1", array($GLOBALS['userid']), __FILE__, __LINE__);
\r
610 if (SQL_NUMROWS($result) == 0)
\r
613 define('__TRANSFER_SETTINGS_CONTENT', LOAD_TEMPLATE("member_transfer_settings", true));
\r
617 // Load newest transaction
\r
618 list($newest) = SQL_FETCHROW($result);
\r
619 SQL_FREERESULT($result);
\r
620 define('__TRANSFER_SETTINGS_CONTENT', TRANSFER_LATEST_IS_1.MAKE_DATETIME($newest, "3").TRANSFER_LATEST_IS_2);
\r
623 LOAD_TEMPLATE("member_transfer_overview");
\r