0.2.1/inc/modules/order.php

   1 <?php\r
   2 /************************************************************************\r
   3  * MXChange v0.2.1                                    Start: 10/29/2003 *\r
   4  * ===============                              Last change: 01/06/2006 *\r
   5  *                                                                      *\r
   6  * -------------------------------------------------------------------- *\r
   7  * File              : order.php                                        *\r
   8  * -------------------------------------------------------------------- *\r
   9  * Short description : Submits your order to the administrators         *\r
  10  * -------------------------------------------------------------------- *\r
  11  * Kurzbeschreibung  : Sendet die Buchung an die Administratoren        *\r
  12  * -------------------------------------------------------------------- *\r
  13  *                                                                      *\r
  14  * -------------------------------------------------------------------- *\r
  15  * Copyright (c) 2003 - 2008 by Roland Haeder                           *\r
  16  * For more information visit: http://www.mxchange.org                  *\r
  17  *                                                                      *\r
  18  * This program is free software; you can redistribute it and/or modify *\r
  19  * it under the terms of the GNU General Public License as published by *\r
  20  * the Free Software Foundation; either version 2 of the License, or    *\r
  21  * (at your option) any later version.                                  *\r
  22  *                                                                      *\r
  23  * This program is distributed in the hope that it will be useful,      *\r
  24  * but WITHOUT ANY WARRANTY; without even the implied warranty of       *\r
  25  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the        *\r
  26  * GNU General Public License for more details.                         *\r
  27  *                                                                      *\r
  28  * You should have received a copy of the GNU General Public License    *\r
  29  * along with this program; if not, write to the Free Software          *\r
  30  * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston,               *\r
  31  * MA  02110-1301  USA                                                  *\r
  32  ************************************************************************/\r
  33 \r
  34 // Some security stuff...\r
  35 $URL = "";\r
  36 if (ereg(basename(__FILE__), $_SERVER['PHP_SELF']))\r
  37 {\r
  38         $INC = substr(dirname(__FILE__), 0, strpos(dirname(__FILE__), "/inc") + 4) . "/security.php";\r
  39         require($INC);\r
  40 }\r
  41  elseif ((!EXT_IS_ACTIVE("order")) && (!IS_ADMIN()))\r
  42 {\r
  43         ADD_FATAL(EXTENSION_PROBLEM_EXT_INACTIVE, "order");\r
  44         return;\r
  45 }\r
  46  elseif (!IS_LOGGED_IN())\r
  47 {\r
  48         // Sorry, no guest access!\r
  49         $URL = URL."/modules.php?module=index";\r
  50 }\r
  51  elseif (empty($_GET['order']))\r
  52 {\r
  53         // You cannot call this module directly!\r
  54         $URL = URL."/modules.php?module=login&amp;what=order";\r
  55 }\r
  56 \r
  57 // When URL is empty nothing bad happend here\r
  58 if (empty($URL))\r
  59 {\r
  60         // Is the auto-send mechanism active or inactive?\r
  61         if ($CONFIG['autosend_active'] == "Y")\r
  62         {\r
  63                 // Auto-send is active\r
  64                 define('ADMIN_AUTOSEND',  COMPILE_CODE(ADMIN_AUTOSEND_ACTIVE));\r
  65                 define('MEMBER_AUTOSEND', COMPILE_CODE(MEMBER_AUTOSEND_ACTIVE));\r
  66                 $TYPE = "NEW";\r
  67         }\r
  68          else\r
  69         {\r
  70                 // Auto-send is inactive\r
  71                 define('ADMIN_AUTOSEND',  COMPILE_CODE(ADMIN_AUTOSEND_INACTIVE));\r
  72                 define('MEMBER_AUTOSEND', COMPILE_CODE(MEMBER_AUTOSEND_INACTIVE));\r
  73                 $TYPE = "ADMIN";\r
  74         }\r
  75 \r
  76         // Update sending pool\r
  77         $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_pool SET data_type='%s' WHERE id=%d AND sender=%d AND data_type='TEMP' LIMIT 1",\r
  78          array($TYPE, bigintval($_GET['order']), $GLOBALS['userid']), __FILE__, __LINE__);\r
  79 \r
  80         // Finally is the entry valid?\r
  81         if (SQL_AFFECTEDROWS($link) == 1)\r
  82         {\r
  83                 // Update his login data\r
  84                 UPDATE_LOGIN_DATA();\r
  85 \r
  86                 // Load personal data...\r
  87                 $result = SQL_QUERY_ESC("SELECT sex, surname, family, email FROM "._MYSQL_PREFIX."_user_data WHERE userid=%d LIMIT 1",\r
  88                  array($GLOBALS['userid']), __FILE__, __LINE__);\r
  89                 list($sex, $sname, $fname, $email) = SQL_FETCHROW($result);\r
  90                 SQL_FREERESULT($result);\r
  91 \r
  92                 // Load mail again...              0       1        2           3          4      5      6         7\r
  93                 $result = SQL_QUERY_ESC("SELECT subject, text, receivers, payment_id, timestamp, url, cat_id, target_send FROM "._MYSQL_PREFIX."_pool WHERE id=%d AND sender=%d LIMIT 1",\r
  94                  array(bigintval($_GET['order']), $GLOBALS['userid']), __FILE__, __LINE__);\r
  95                 $DATA = SQL_FETCHROW($result);\r
  96                 SQL_FREERESULT($result);\r
  97                 if (empty($DATA[0])) $DATA[0] = DEFAULT_SUBJECT_LINE;\r
  98 \r
  99                 // Calculate used points\r
 100                 $USED = $DATA[7] * GET_PAY_POINTS($DATA[3]);\r
 101 \r
 102                 // Update used points\r
 103                 $ADD = "";\r
 104                 if ($CONFIG['order_max'] == "ORDER") $ADD = ", mail_orders=mail_orders+1";\r
 105                 $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_user_data SET used_points=used_points+%s".$ADD." WHERE userid=%d LIMIT 1",\r
 106                  array($USED, $GLOBALS['userid']), __FILE__, __LINE__);\r
 107 \r
 108                 // Update mediadata as well\r
 109                 if (GET_EXT_VERSION("mediadata") >= "0.0.4")\r
 110                 {\r
 111                         // Update database\r
 112                         MEDIA_UPDATE_ENTRY(array("total_points"), "sub", $USED);\r
 113                 }\r
 114 \r
 115                 // Send an email to the user\r
 116                 $msg_mem = LOAD_EMAIL_TEMPLATE("order-member", "", $GLOBALS['userid']);\r
 117                 SEND_EMAIL($email, MEMBER_NEW_QUEUE, $msg_mem);\r
 118 \r
 119                 // Notify admins about this\r
 120                 if (GET_EXT_VERSION("admins") >= "0.4.1")\r
 121                 {\r
 122                         SEND_ADMIN_EMAILS_PRO(ADMIN_NEW_QUEUE, "order-admin", "", $GLOBALS['userid']);\r
 123                 }\r
 124                  else\r
 125                 {\r
 126                         $msg_admin = LOAD_EMAIL_TEMPLATE("order-admin", "", $GLOBALS['userid']);\r
 127                         SEND_ADMIN_EMAILS(ADMIN_NEW_QUEUE, $msg_admin);\r
 128                 }\r
 129 \r
 130                 // Output back bottom\r
 131                 LOAD_TEMPLATE("member_order-back", false);\r
 132         }\r
 133          else\r
 134         {\r
 135                 // Matching line not found or already "placed" in send queue\r
 136                 $URL = URL."/modules.php?module=login";\r
 137                 LOAD_URL($URL);\r
 138         }\r
 139 }\r
 140  else\r
 141 {\r
 142         // Redirect...\r
 143         LOAD_URL($URL);\r
 144 }\r
 145 //\r
 146 ?>\r