inc/modules/admin/what-add_points.php

   1 <?php
   2 /************************************************************************
   3  * MXChange v0.2.1                                    Start: 11/23/2003 *
   4  * ===============                              Last change: 09/23/2004 *
   5  *                                                                      *
   6  * -------------------------------------------------------------------- *
   7  * File              : what-add_points.php                              *
   8  * -------------------------------------------------------------------- *
   9  * Short description : Add manually points to a user                    *
  10  * -------------------------------------------------------------------- *
  11  * Kurzbeschreibung  : Manuell einem Mitglied Punkte gutschreiben       *
  12  * -------------------------------------------------------------------- *
  13  *                                                                      *
  14  * -------------------------------------------------------------------- *
  15  * Copyright (c) 2003 - 2008 by Roland Haeder                           *
  16  * For more information visit: http://www.mxchange.org                  *
  17  *                                                                      *
  18  * This program is free software; you can redistribute it and/or modify *
  19  * it under the terms of the GNU General Public License as published by *
  20  * the Free Software Foundation; either version 2 of the License, or    *
  21  * (at your option) any later version.                                  *
  22  *                                                                      *
  23  * This program is distributed in the hope that it will be useful,      *
  24  * but WITHOUT ANY WARRANTY; without even the implied warranty of       *
  25  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the        *
  26  * GNU General Public License for more details.                         *
  27  *                                                                      *
  28  * You should have received a copy of the GNU General Public License    *
  29  * along with this program; if not, write to the Free Software          *
  30  * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston,               *
  31  * MA  02110-1301  USA                                                  *
  32  ************************************************************************/
  33
  34 // Some security stuff...
  35 if ((ereg(basename(__FILE__), $_SERVER['PHP_SELF'])) || (!IS_ADMIN()))
  36 {
  37         $INC = substr(dirname(__FILE__), 0, strpos(dirname(__FILE__), "/inc") + 4) . "/security.php";
  38         require($INC);
  39 }
  40 // Add description as navigation point
  41 ADD_DESCR("admin", basename(__FILE__));
  42
  43 // Fix a notice
  44 if (!isset($_GET['u_id'])) $_GET['u_id'] = "";
  45
  46 OPEN_TABLE("100%", "admin_content admin_content_align", "");
  47 if ($_GET['u_id'] == "all")
  48 {
  49         // Add points to all accounts
  50         if ((isset($_POST['ok'])) && ($_POST['points'] > 0))
  51         {
  52                 define('__POINTS_VALUE', $_POST['points']);
  53                 $result_main = SQL_QUERY("SELECT userid FROM "._MYSQL_PREFIX."_user_data WHERE status='CONFIRMED' ORDER BY userid", __FILE__, __LINE__);
  54                 while (list($uid) = SQL_FETCHROW($result_main))
  55                 {
  56                         // User ID found in URL so we use this give him some credits
  57                         $result = SQL_QUERY_ESC("SELECT surname, family, email FROM "._MYSQL_PREFIX."_user_data WHERE userid=%s AND status='CONFIRMED' LIMIT 1",
  58                          array(bigintval($uid)), __FILE__, __LINE__);
  59                         if (SQL_NUMROWS($result) == 1)
  60                         {
  61                                 // Selected user does exist
  62                                 list($sname, $fname, $email) = SQL_FETCHROW($result);
  63                                 SQL_FREERESULT($result);
  64
  65                                 if ((isset($_POST['ok'])) && (!empty($_POST['points'])))
  66                                 {
  67                                         // Ok, add points and send an email to him...
  68                                         $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_user_points SET points=points+(%s) WHERE userid=%s AND ref_depth=0 LIMIT 1",
  69                                          array($_POST['points'], bigintval($uid)), __FILE__, __LINE__);
  70
  71                                         // Update mediadata as well
  72                                         if (GET_EXT_VERSION("mediadata") >= "0.0.4")
  73                                         {
  74                                                 // Update database
  75                                                 MEDIA_UPDATE_ENTRY(array("total_points"), "add", $_POST['points']);
  76                                         }
  77
  78                                         // Load email template and send email away
  79                                         $msg = LOAD_EMAIL_TEMPLATE("add-points", $_POST['reason'], $uid);
  80                                         SEND_EMAIL($email, ADMIN_ADD_SUBJ, $msg);
  81                                 }
  82                         }
  83                 }
  84
  85                 // Free memory
  86                 SQL_FREERESULT($result_main);
  87
  88                 // Output message
  89                 LOAD_TEMPLATE("admin_settings_saved", false, ADMIN_ALL_POINTS_ADDED);
  90         }
  91          else
  92         {
  93                 // Display form add points
  94                 LOAD_TEMPLATE("admin_add_points_all");
  95         }
  96 }
  97  elseif (!empty($_GET['u_id']))
  98 {
  99         // User ID found in URL so we use this give him some credits
 100         $result = SQL_QUERY_ESC("SELECT surname, family, email FROM "._MYSQL_PREFIX."_user_data WHERE userid=%s AND status='CONFIRMED' LIMIT 1",
 101          array(bigintval($_GET['u_id'])), __FILE__, __LINE__);
 102         if (SQL_NUMROWS($result) == 1)
 103         {
 104                 // Selected user does exist
 105                 list($sname, $fname, $email) = SQL_FETCHROW($result);
 106                 SQL_FREERESULT($result);
 107
 108                 if ((isset($_POST['ok'])) && (!empty($_POST['points'])))
 109                 {
 110                         // Ok, add points and send an email to him...
 111                         $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_user_points SET points=points+(%s) WHERE userid=%s AND ref_depth=0 LIMIT 1",
 112                          array($_POST['points'], bigintval($_GET['u_id'])), __FILE__, __LINE__);
 113
 114                         // Remember points in constant
 115                         define('__POINTS_VALUE', $_POST['points']);
 116
 117                         // Message laden
 118                         $msg = LOAD_EMAIL_TEMPLATE("add-points", $_POST['reason'], $_GET['u_id']);
 119
 120                         SEND_EMAIL($email, ADMIN_ADD_SUBJ, $msg);
 121                         LOAD_TEMPLATE("admin_settings_saved", false, ADMIN_POINTS_ADDED);
 122                 }
 123                  else
 124                 {
 125                         // Opps, missing form here
 126                         define('__USER_VALUE', "<A href=\"".CREATE_EMAIL_LINK($email, "user_data")."\">".$sname." ".$fname."</A>");
 127                         define('__UID_VALUE', $_GET['u_id']);
 128                         LOAD_TEMPLATE("admin_add_points");
 129                 }
 130         }
 131          else
 132         {
 133                 // User not found!
 134                 OUTPUT_HTML("<STRONG class=\"admin_failed\">".ADMIN_MEMBER_404_1.$_GET['u_id'].ADMIN_MEMBER_404_2."</STRONG>");
 135         }
 136 }
 137  else
 138 {
 139         // Output selection form with all confirmed user accounts listed
 140         ADD_MEMBER_SELECTION_BOX(true);
 141 }
 142 CLOSE_TABLE();
 143 //
 144 ?>