Random code generation added. This can be used for so-called cash-buster codes in...
[mailer.git] / birthday_confirm.php
1 <?php
2 /************************************************************************
3  * MXChange v0.2.1                                    Start: 10/03/2004 *
4  * ===============                              Last change: 10/03/2004 *
5  *                                                                      *
6  * -------------------------------------------------------------------- *
7  * File              : birthday_confirm.php                             *
8  * -------------------------------------------------------------------- *
9  * Short description : Birthday bonus confirmation link                 *
10  * -------------------------------------------------------------------- *
11  * Kurzbeschreibung  : Geburtstagsgutschrift bestaetigen                *
12  * -------------------------------------------------------------------- *
13  *                                                                      *
14  * -------------------------------------------------------------------- *
15  * Copyright (c) 2003 - 2008 by Roland Haeder                           *
16  * For more information visit: http://www.mxchange.org                  *
17  *                                                                      *
18  * This program is free software; you can redistribute it and/or modify *
19  * it under the terms of the GNU General Public License as published by *
20  * the Free Software Foundation; either version 2 of the License, or    *
21  * (at your option) any later version.                                  *
22  *                                                                      *
23  * This program is distributed in the hope that it will be useful,      *
24  * but WITHOUT ANY WARRANTY; without even the implied warranty of       *
25  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the        *
26  * GNU General Public License for more details.                         *
27  *                                                                      *
28  * You should have received a copy of the GNU General Public License    *
29  * along with this program; if not, write to the Free Software          *
30  * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston,               *
31  * MA  02110-1301  USA                                                  *
32  ************************************************************************/
33
34 // Load security stuff here (Oh, I hope this is not unsecure? Am I paranoia??? ;-) )
35 require_once("inc/libs/security_functions.php");
36
37 // Init "action" and "what"
38 global $what, $action;
39 $GLOBALS['what'] = ""; $GLOBALS['action'] = "";
40
41 // Set module
42 $GLOBALS['module'] = "birthday_confirm"; $CSS = -1;
43
44 // Load the required file(s)
45 require ("inc/config.php");
46
47 // Is the script installed?
48 if (defined('mxchange_installed') && (isBooleanConstantAndTrue('mxchange_installed'))) {
49         // Script is installed so let's check for his confirmation link...
50         $uid = bigintval($_GET['uid']);
51
52         // Only allow numbers here...
53         $chk = bigintval($_GET['check'], false);
54
55         // Check if link is not clicked so far
56         $result = SQL_QUERY_ESC("SELECT b.points, d.sex, d.surname, d.family, d.status, d.ref_payout
57 FROM "._MYSQL_PREFIX."_user_birthday AS b
58 INNER JOIN "._MYSQL_PREFIX."_user_data AS d
59 ON b.userid=d.userid
60 WHERE b.userid=%d AND b.chk_value='%s' LIMIT 1",
61  array($uid, $chk), __FILE__, __LINE__);
62         //* DEBUG: */ echo "uid=".$uid.",chk=".$chk." (".strlen($chk)."/".strlen($_GET['check'])."/".SQL_NUMROWS($result).")<br />\n";
63
64         // Is an entry there?
65         if (SQL_NUMROWS($result) == 1) {
66                 // Ok, congratulation again! Here's your gift from us...
67                 $data = SQL_FETCHARRAY($result, false);
68
69                 // Is the account confirmed?
70                 if ($data['status'] == "CONFIRMED") {
71                         // Set mode depending on how many mails the member has to confirm
72                         $locked = false;
73                         if (($data['ref_payout'] > 0) && ($_CONFIG['allow_direct_pay'] == 'N')) $locked = true;
74
75                         // Add points to account
76                         $DEPTH = 0;
77                         ADD_POINTS_REFSYSTEM($uid, $data['points'], false, "0", $locked, strtolower($_CONFIG['birthday_mode']));
78
79                         // Remove entry from table
80                         $result = SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM "._MYSQL_PREFIX."_user_birthday WHERE userid=%d AND chk_value='%s' LIMIT 1",
81                          array($uid, $chk), __FILE__, __LINE__);
82
83                         // Update mediadata if version is 0.0.4 or newer
84                         if (GET_EXT_VERSION("mediadata") >= "0.0.4") {
85                                 // Update database
86                                 MEDIA_UPDATE_ENTRY(array("total_points"), "add", $data['points']);
87                         }
88
89                         // Transfer data to constants for the template
90                         define('__SALUT', TRANSLATE_SEX($data['sex']));
91                         define('__SNAME', $data['surname']);
92                         define('__FNAME', $data['family']);
93                         define('__GIFT' , $data['points']);
94
95                         // Load message from template
96                         define('__MSG', LOAD_TEMPLATE("birthday_msg", true));
97                 } else {
98                         // Unconfirmed / locked accounts cannot get points
99                         define('__MSG', BIRTHDAY_CANNOT_STATUS_1.TRANSLATE_STATUS($data['status']).BIRTHDAY_CANNOT_STATUS_2);
100                 }
101         } else {
102                 // Cannot load data!
103                 define('__MSG', BIRTHDAY_CANNOT_LOAD_DATA);
104         }
105
106         // Free memory
107         SQL_FREERESULT($result);
108
109         // Set this because we have no module in URI
110         $GLOBALS['module'] = "birthday_confirm";
111
112         // Include header
113         include(PATH."inc/header.php");
114
115         // Load birthday header template (for your banners, e.g.?)
116         define('__BIRTHDAY_HEADER', LOAD_TEMPLATE("birthday_header", true));
117
118         // Load birthday footer template (for your banners, e.g.?)
119         define('__BIRTHDAY_FOOTER', LOAD_TEMPLATE("birthday_footer", true));
120
121         // Load final template and output it
122         LOAD_TEMPLATE("birthday_confirm");
123
124         // Include footer
125         include(PATH."inc/footer.php");
126 } else {
127         // You have to configure first!
128         LOAD_URL("install.php");
129 }
130 // Really all done here... ;-)
131 ?>