14d19efe31ff64b344359158f4dc44816c0eb4ca
[mailer.git] / beg.php
1 <?php
2 /************************************************************************
3  * Mailer v0.2.1-FINAL                                Start: 01/09/2005 *
4  * ===================                          Last change: 01/09/2005 *
5  *                                                                      *
6  * -------------------------------------------------------------------- *
7  * File              : beg.php                                          *
8  * -------------------------------------------------------------------- *
9  * Short description : Beg link for members                             *
10  * -------------------------------------------------------------------- *
11  * Kurzbeschreibung  : Bettel-Link fuer Mitglieder                      *
12  * -------------------------------------------------------------------- *
13  * $Revision::                                                        $ *
14  * $Date::                                                            $ *
15  * $Tag:: 0.2.1-FINAL                                                 $ *
16  * $Author::                                                          $ *
17  * -------------------------------------------------------------------- *
18  * Copyright (c) 2003 - 2009 by Roland Haeder                           *
19  * Copyright (c) 2009 - 2011 by Mailer Developer Team                   *
20  * For more information visit: http://www.mxchange.org                  *
21  *                                                                      *
22  * This program is free software; you can redistribute it and/or modify *
23  * it under the terms of the GNU General Public License as published by *
24  * the Free Software Foundation; either version 2 of the License, or    *
25  * (at your option) any later version.                                  *
26  *                                                                      *
27  * This program is distributed in the hope that it will be useful,      *
28  * but WITHOUT ANY WARRANTY; without even the implied warranty of       *
29  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the        *
30  * GNU General Public License for more details.                         *
31  *                                                                      *
32  * You should have received a copy of the GNU General Public License    *
33  * along with this program; if not, write to the Free Software          *
34  * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston,               *
35  * MA  02110-1301  USA                                                  *
36  ************************************************************************/
37
38 // Load security stuff here
39 require('inc/libs/security_functions.php');
40
41 // Init start time
42 $GLOBALS['startTime'] = microtime(true);
43
44 // Set module
45 $GLOBALS['module'] = 'beg';
46 $GLOBALS['output_mode'] = -1;
47 $errorCode = null;
48
49 // Load the required file(s)
50 require('inc/config-global.php');
51
52 // Set content type
53 setContentType('text/html');
54
55 // Is the 'beg' extension active?
56 redirectOnUninstalledExtension('beg');
57
58 // Check for userid
59 if (isGetRequestParameterSet('userid')) {
60         // Init variables
61         $points = '0';
62
63         // Don't pay is the default...
64         $pay = false;
65
66         // Validate if it is not a number
67         if ((isExtensionActive('nickname')) && (isNicknameUsed(getRequestParameter('userid')))) {
68                 // Maybe we have found a nickname?
69                 fetchUserData(getRequestParameter('userid'), 'nickname');
70         } elseif (isNicknameUsed(getRequestParameter('userid'))) {
71                 // Nickname entered but nickname is not active
72                 $errorCode = getCode('EXTENSION_PROBLEM');
73         } else {
74                 // Direct userid
75                 fetchUserData(getRequestParameter('userid'));
76         }
77
78         // Check if locked in so don't pay points
79         $status = 'failed';
80
81         // Check if account was found
82         if ((isUserDataValid()) && (getUserData('status') == 'CONFIRMED')) {
83                 /*
84                  * Multiply configured values with 100000 and divide with 100000 so we can also handle small values
85                  * If we need more number behind the decimal dot then we just need to increase all these three
86                  * numbers matching to the numbers behind the decimal dot. Simple! ;-)
87                  */
88                 $points = mt_rand((getBegPoints() * 100000), (getBegPointsMax() * 100000)) / 100000;
89
90                 // Set nickname / userid for template
91                 $content['userid'] = getRequestParameter('userid');
92                 $content['clicks'] = (getUserData('beg_clicks') + 1);
93                 $content['banner'] = loadTemplate('beg_banner', true);
94                 $content['points'] = $points;
95         } // END - if
96
97         // User id valid and not webmaster's id?
98         if ((isValidUserId(getUserData('userid'))) && (getBegUserid() != getUserData('userid'))) {
99                 // Update counter
100                 SQL_QUERY_ESC("UPDATE `{?_MYSQL_PREFIX?}_user_data` SET `beg_clicks`=`beg_clicks`+1 WHERE `userid`=%s LIMIT 1",
101                         array(getUserData('userid')), __FILE__, __LINE__);
102
103                 // Check for last entry for userid w/o IP number                            12              33                               2    23              44            3                                          21     1                              1
104                 $result = SQL_QUERY_ESC("SELECT `id` FROM `{?_MYSQL_PREFIX?}_beg_ips` WHERE ((UNIX_TIMESTAMP() - `timeout`) >= {?beg_timeout?} OR ((UNIX_TIMESTAMP() - `timeout`) >= {?beg_userid_timeout?} AND `userid`=%s)) AND (`remote_ip`='%s' OR `sid`='%s') LIMIT 1",
105                         array(getUserData('userid'), detectRemoteAddr(), session_id()), __FILE__, __LINE__);
106
107                 // Entry not found, points set and not logged in?
108                 if (((SQL_HASZERONUMS($result)) || (isAdmin())) && ($points > 0) && (!isMember()) && (getBegPayMode() == 'NONE')) {
109                         // Admin is testing?
110                         if (!isAdmin()) {
111                                 /*
112                                  * Remember remote address, userid and timestamp for next click
113                                  * but only when there is no admin begging.
114                                  * Admins shall be able to test it!
115                                  */
116                                 SQL_QUERY_ESC("INSERT INTO `{?_MYSQL_PREFIX?}_beg_ips` (`userid`, `remote_ip`, `sid`, `timeout`) VALUES ('%s','%s','%s', UNIX_TIMESTAMP())",
117                                         array(
118                                                 getUserData('userid'),
119                                                 detectRemoteAddr(),
120                                                 session_id()
121                                         ), __FILE__, __LINE__);
122
123                                 // Was is successfull?
124                                 $pay (!SQL_HASZEROAFFECTED());
125                         } else {
126                                 // Is admin!
127                                 $pay = true;
128                         }
129
130                         // Pay points?
131                         if ($pay === true) {
132                                 // Add points to user or begging rallye account
133                                 if (addPointsBeg(getUserData('userid'), $points)) {
134                                         // Set 'done' message
135                                         $content['message'] = loadTemplate('beg_done', true, $content);
136                                 } else {
137                                         // Error!
138                                         $content['message'] = loadTemplate('beg_failed', true, $content);
139                                 }
140                         } else {
141                                 // Error!
142                                 $content['message'] = loadTemplate('beg_failed', true, $content);
143                         }
144                 } elseif (isMember()) {
145                         // Logged in user found
146                         $content['message'] = loadTemplate('beg_login', true, $content);
147                 } elseif (getBegPayMode() != 'NONE') { // Other pay-mode active!
148                         // Load message template depending on pay-mode
149                         $content['message'] = loadTemplate('beg_pay_mode_' . strtolower(getBegPayMode()), true, $content);
150                         $pay = true;
151                 } else {
152                         // Clicked received while reload lock is active
153                         $content['message'] = loadTemplate('beg_failed', true, $content);
154                 }
155
156                 // Free memory
157                 SQL_FREERESULT($result);
158
159                 // Include header
160                 loadIncludeOnce('inc/header.php');
161
162                 // Load final template
163                 loadTemplate('beg_link', false, $content);
164
165                 // Tracker code enabled? (We don't track users here!
166                 if ((getBegPayMode() != 'NONE') && ($pay === true)) {
167                         // Prepare content for template
168                         // @TODO Opps, what is missing here???
169                         $content = array(
170                         );
171
172                         // Include config-depending template
173                         loadTemplate('beg_pay_code_' . strtolower(getBegPayMode()), false, $content);
174                 } elseif (($pay === false) && (!isset($content['message']))) {
175                         // Cannot pay! :-(
176                         $content['message'] = loadTemplate('beg_failed', true);
177                 }
178
179                 // Include footer
180                 loadIncludeOnce('inc/footer.php');
181         } elseif ((getUserData('status') != 'CONFIRMED') && (getUserData('status') != 'failed')) {
182                 // Maybe locked/unconfirmed account?
183                 $errorCode = generateErrorCodeFromUserStatus();
184         } elseif ((getUserData('userid') == '0') || (getUserData('status') == 'failed')) {
185                 // Inalid or locked account, so let's find out
186                 if (fetchUserData(getRequestParameter('userid'), 'nickname')) {
187                         // Locked account
188                         $errorCode = getCode('ACCOUNT_LOCKED');
189                 } else {
190                         // Invalid nickname! (404)
191                         $errorCode = getCode('USER_404');
192                 }
193         } elseif (getUserData('userid') == getBegUserid()) {
194                 // Webmaster's id cannot beg for points!
195                 $errorCode = getCode('BEG_SAME_AS_OWN');
196         }
197
198         // Reload to index module if an error happens
199         if (!empty($errorCode)) {
200                 redirectToUrl('modules.php?module=index&amp;code=' . $errorCode . '&amp;ext=beg');
201         } // END - if
202 } else {
203         // No userid entered
204         redirectToUrl('modules.php?module=index');
205 }
206
207 // Really all done here... ;-)
208 shutdown();
209
210 // [EOF]
211 ?>