1f261f4f3b656668aa1804431fe3b54eabfc798b
[mailer.git] / inc / mysql-manager.php
1 <?php
2 /************************************************************************
3  * MXChange v0.2.1                                    Start: 08/26/2003 *
4  * ===============                              Last change: 11/29/2004 *
5  *                                                                      *
6  * -------------------------------------------------------------------- *
7  * File              : mysql-manager.php                                *
8  * -------------------------------------------------------------------- *
9  * Short description : All MySQL-related functions                      *
10  * -------------------------------------------------------------------- *
11  * Kurzbeschreibung  : Alle MySQL-Relevanten Funktionen                 *
12  * -------------------------------------------------------------------- *
13  *                                                                      *
14  * -------------------------------------------------------------------- *
15  * Copyright (c) 2003 - 2008 by Roland Haeder                           *
16  * For more information visit: http://www.mxchange.org                  *
17  *                                                                      *
18  * This program is free software; you can redistribute it and/or modify *
19  * it under the terms of the GNU General Public License as published by *
20  * the Free Software Foundation; either version 2 of the License, or    *
21  * (at your option) any later version.                                  *
22  *                                                                      *
23  * This program is distributed in the hope that it will be useful,      *
24  * but WITHOUT ANY WARRANTY; without even the implied warranty of       *
25  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the        *
26  * GNU General Public License for more details.                         *
27  *                                                                      *
28  * You should have received a copy of the GNU General Public License    *
29  * along with this program; if not, write to the Free Software          *
30  * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston,               *
31  * MA  02110-1301  USA                                                  *
32  ************************************************************************/
33
34 // Some security stuff...
35 if (!defined('__SECURITY')) {
36         $INC = substr(dirname(__FILE__), 0, strpos(dirname(__FILE__), "/inc") + 4) . "/security.php";
37         require($INC);
38 }
39
40 //
41 function ADD_MODULE_TITLE($mod) {
42         global $cacheArray, $_CONFIG;
43         $name = ""; $result = false;
44
45         // Is the script installed?
46         if (isBooleanConstantAndTrue('mxchange_installed')) {
47                 // Check if cache is valid
48                 if ((GET_EXT_VERSION("cache") >= "0.1.2") && (isset($cacheArray['modules']['module'])) && (in_array($mod, $cacheArray['modules']['module']))) {
49                         // Load from cache
50                         $name = $cacheArray['modules']['title'][$mod];
51
52                         // Update cache hits
53                         if (getConfig('cache_hits') > 0) { $_CONFIG['cache_hits']++; } else { $_CONFIG['cache_hits'] = 1; }
54                 } elseif (!EXT_IS_ACTIVE("cache")) {
55                         // Load from database
56                         $result = SQL_QUERY_ESC("SELECT title FROM "._MYSQL_PREFIX."_mod_reg WHERE module='%s' LIMIT 1", array($mod), __FILE__, __LINE__);
57                         list($name) = SQL_FETCHROW($result);
58                         SQL_FREERESULT($result);
59                 }
60         } // END - if
61
62         // Trim name
63         $name = trim($name);
64
65         // Still no luck or empty title?
66         if (empty($name)) {
67                 // No name found
68                 $name = sprintf("%s (%s)", LANG_UNKNOWN_MODULE, $mod);
69                 if (SQL_NUMROWS($result) == 0) {
70                         // Add module to database
71                         $dummy = CHECK_MODULE($mod);
72                 } // END - if
73         } // END - if
74
75         // Return name
76         return $name;
77 }
78
79 // Check validity of a given module name (no file extension)
80 function CHECK_MODULE ($mod) {
81         // We need them now here...
82         global $cacheArray, $_CONFIG, $cacheInstance;
83
84         // Filter module name (names with low chars and underlines are fine!)
85         $mod = preg_replace("/[^a-z_]/", "", $mod);
86
87         // Check for prefix is a extension...
88         $modSplit = explode("_", $mod);
89         $extension = ""; $mod_chk = $mod;
90         //* DEBUG: */ echo __LINE__."*".count($modSplit)."*/".$mod."*<br />";
91         if (count($modSplit) == 2) {
92                 // Okay, there is a seperator (_) in the name so is the first part a module?
93                 //* DEBUG: */ echo __LINE__."*".$modSplit[0]."*<br />";
94                 if (EXT_IS_ACTIVE($modSplit[0])) {
95                         // The prefix is an extension's name, so let's set it
96                         $extension = $modSplit[0]; $mod = $modSplit[1];
97                 }
98         }
99
100         // Major error in module registry is the default
101         $ret = "major";
102
103         // Check if script is installed if not return a "done" to prevent some errors
104         if ((!isBooleanConstantAndTrue('mxchange_installed')) || (isBooleanConstantAndTrue('mxchange_installing')) || (!isBooleanConstantAndTrue('admin_registered'))) return "done";
105
106         // Check if cache is latest version
107         $locked = "Y"; $hidden = "N"; $admin = "N"; $mem = "N"; $found = false;
108         if ((GET_EXT_VERSION("cache") >= "0.1.2") && (isset($cacheArray['modules']['module'])) && (is_array($cacheArray['modules']['module']))) {
109                 // Is the module cached?
110                 if (isset($cacheArray['modules']['locked'][$mod_chk])) {
111                         // Check cache
112                         $locked = $cacheArray['modules']['locked'][$mod_chk];
113                         $hidden = $cacheArray['modules']['hidden'][$mod_chk];
114                         $admin  = $cacheArray['modules']['admin_only'][$mod_chk];
115                         $mem    = $cacheArray['modules']['mem_only'][$mod_chk];
116
117                         // Update cache hits
118                         if (getConfig('cache_hits') > 0) { $_CONFIG['cache_hits']++; } else { $_CONFIG['cache_hits'] = 1; }
119                         $found = true;
120                 } else {
121                         // No, then we have to update it!
122                         $ret = "cache_miss";
123                 }
124         } elseif (!EXT_IS_ACTIVE("cache")) {
125                 // Check for module in database
126                 $result = SQL_QUERY_ESC("SELECT locked, hidden, admin_only, mem_only FROM "._MYSQL_PREFIX."_mod_reg WHERE module='%s' LIMIT 1", array($mod_chk), __FILE__, __LINE__);
127                 if (SQL_NUMROWS($result) == 1) {
128                         // Read data
129                         list($locked, $hidden, $admin, $mem) = SQL_FETCHROW($result);
130                         SQL_FREERESULT($result);
131                         $found = true;
132                 }
133         }
134
135         // Check returned values against current access permissions
136         //
137         //  Admin access            ----- Guest access -----           --- Guest   or   member? ---
138         if ((IS_ADMIN()) || (($locked == "N") && ($admin == "N") && (($mem == "N") || (IS_MEMBER())))) {
139                 // If you are admin you are welcome for everything!
140                 $ret = "done";
141         } elseif ($locked == "Y") {
142                 // Module is locked
143                 $ret = "locked";
144         } elseif (($mem == "Y") && (!IS_MEMBER())) {
145                 // You have to login first!
146                 $ret = "mem_only";
147         } elseif (($admin == "Y") && (!IS_ADMIN())) {
148                 // Only the Admin is allowed to enter this module!
149                 $ret = "admin_only";
150         }
151
152         // Still no luck or not found?
153         if (($ret == "major") || ($ret == "cache_miss") || (!$found)) {
154                 //              ----- Legacy module -----                                   ---- Module in base folder  ----                       --- Module with extension's name ---
155                 if ((FILE_READABLE(sprintf("%sinc/modules/%s.php", PATH, $mod))) || (FILE_READABLE(sprintf("%s%s.php", PATH, $mod))) || (FILE_READABLE(sprintf("%s%s/%s.php", PATH, $extension, $mod)))) {
156                         // Data is missing so we add it
157                         if (GET_EXT_VERSION("sql_patches") >= "0.3.6") {
158                                 // Since 0.3.6 we have a has_menu column, this took me a half hour
159                                 // to find a loop here... *sigh*
160                                 $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_mod_reg
161 (module, locked, hidden, mem_only, admin_only, has_menu) VALUES
162 ('%s','Y','N','N','N','N')", array($mod_chk), __FILE__, __LINE__);
163                         } else {
164                                 // Wrong/missing sql_patches!
165                                 $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_mod_reg
166 (module, locked, hidden, mem_only, admin_only) VALUES
167 ('%s','Y','N','N','N')", array($mod_chk), __FILE__, __LINE__);
168                         }
169
170                         // Everthing is fine?
171                         if (SQL_AFFECTEDROWS() < 1) {
172                                 // Something bad happend!
173                                 return "major";
174                         } // END - if
175
176                         // Destroy cache here
177                         REBUILD_CACHE("mod_reg", "modreg");
178
179                         // And reload data
180                         $ret = CHECK_MODULE($mod_chk);
181                 } else {
182                         // Module not found we don't add it to the database
183                         $ret = "404";
184                 }
185         } // END - if
186
187         // Return the value
188         return $ret;
189 }
190
191 // Add menu description pending on given file name (without path!)
192 function ADD_DESCR($ACC_LVL, $file, $return = false, $output = true) {
193         global $NAV_DEPTH, $_CONFIG;
194         // Use only filename of the file ;)
195         $file = basename($file);
196
197         // Init variables
198         $LINK_ADD = ""; $OUT = ""; $AND = "";
199
200         // First we have to do some analysis...
201         if (substr($file, 0, 7) == "action-") {
202                 // This is an action file!
203                 $type = "action";
204                 $search = substr($file, 7);
205                 switch ($ACC_LVL)
206                 {
207                 case "admin":
208                         $modCheck = "admin";
209                         break;
210
211                 case "sponsor":
212                 case "guest":
213                 case "member":
214                         $modCheck = $GLOBALS['module'];
215                         break;
216                 }
217                 $AND = " AND (what='' OR what IS NULL)";
218         } elseif (substr($file, 0, 5) == "what-") {
219                 // This is an admin what file!
220                 $type = "what";
221                 $search = substr($file, 5);
222                 $AND = "";
223                 switch ($ACC_LVL)
224                 {
225                 case "admin":
226                         $modCheck = "admin";
227                         break;
228
229                 case "guest":
230                 case "member":
231                         $modCheck = $GLOBALS['module'];
232                         if (!IS_ADMIN()) {
233                                 $AND = " AND visible='Y' AND locked='N'";
234                         }
235                         break;
236                 }
237                 $dummy = substr($search, 0, -4);
238                 $AND .= " AND action='".GET_ACTION($ACC_LVL, $dummy)."'";
239         } elseif (($ACC_LVL == "sponsor") || ($ACC_LVL == "engine")) {
240                 // Sponsor / engine menu
241                 $type = "what";
242                 $search = $file;
243                 $modCheck = $GLOBALS['module'];
244                 $AND = "";
245         } else {
246                 // Other
247                 $type = "menu";
248                 $search = $file;
249                 $modCheck = $GLOBALS['module'];
250                 $AND = "";
251         }
252         if ((!isset($NAV_DEPTH)) && (!$return)) {
253                 $NAV_DEPTH = 0;
254                 $prefix = "<DIV class=\"you_are_here\">".YOU_ARE_HERE."&nbsp;<STRONG><A class=\"you_are_here\" href=\"".URL."/modules.php?module=".$GLOBALS['module'].$LINK_ADD."\">Home</A></STRONG>";
255         } else {
256                 if (!$return) $NAV_DEPTH++;
257                 $prefix = "";
258         }
259
260         $prefix .= "&nbsp;-&gt;&nbsp;";
261
262         // We need to remove .php and the end
263         if (substr($search, -4, 4) == ".php") {
264                 // Remove the .php
265                 $search = substr($search, 0, -4);
266         } // END - i
267
268         // Get the title from menu
269         $result = SQL_QUERY_ESC("SELECT title FROM "._MYSQL_PREFIX."_%s_menu WHERE %s='%s' ".$AND." LIMIT 1",
270                 array($ACC_LVL, $type, $search), __FILE__, __LINE__);
271
272         // Menu found?
273         if (SQL_NUMROWS($result) == 1) {
274                 // Load title
275                 list($ret) = SQL_FETCHROW($result);
276
277                 // Shall we return it?
278                 if ($return) {
279                         // Return title
280                         return $ret;
281                 } elseif (((GET_EXT_VERSION("sql_patches") >= "0.2.3") && (getConfig('youre_here') == "Y")) || ((IS_ADMIN()) && ($modCheck == "admin"))) {
282                         // Output HTML code
283                         $OUT = $prefix."<STRONG><A class=\"you_are_here\" href=\"".URL."/modules.php?module=".$modCheck."&amp;".$type."=".$search.$LINK_ADD."\">".$ret."</A></STRONG>\n";
284
285                         // Can we close the you-are-here navigation?
286                         //* DEBUG: */ echo __LINE__."*".$type."/".$GLOBALS['what']."*<br />\n";
287                         //* DEBUG: */ die("<pre>".print_r($_CONFIG, true)."</pre>");
288                         if (($type == "what") || (($type == "action") && ((!isset($GLOBALS['what'])) || ($GLOBALS['what'] == "overview")))) {
289                                 //* DEBUG: */ echo __LINE__."+".$type."+<br />\n";
290                                 // Add closing div and br-tag
291                                 $OUT .= "</div><br />\n";
292                                 $NAV_DEPTH = "0";
293
294                                 // Run the filter chain
295                                 $ret = RUN_FILTER('post_youhere_line', array('access_level' => $ACC_LVL, 'type' => $type, 'content' => ""));
296                                 $OUT .= $ret['content'];
297                         } // END - if
298                 }
299         } // END - if
300
301         // Free result
302         SQL_FREERESULT($result);
303
304         // Return or output HTML code?
305         if ($output) {
306                 // Output HTML code here
307                 OUTPUT_HTML($OUT);
308         } else {
309                 // Return HTML code
310                 return $OUT;
311         }
312 }
313 //
314 function ADD_MENU($MODE, $act, $wht) {
315         global $_CONFIG;
316
317         // Init some variables
318         $main_cnt = 0;
319         $AND = "";
320         $main_action = "";
321         $sub_what = "";
322
323         if (!VALIDATE_MENU_ACTION($MODE, $act, $wht, true)) return CODE_MENU_NOT_VALID;
324
325         // Non-admin shall not see all menus
326         if (!IS_ADMIN()) {
327                 $AND = " AND visible='Y' AND locked='N'";
328         }
329
330         // Load SQL data and add the menu to the output stream...
331         $result_main = SQL_QUERY_ESC("SELECT title, action FROM "._MYSQL_PREFIX."_%s_menu WHERE (what='' OR what IS NULL)".$AND." ORDER BY sort",
332          array($MODE), __FILE__, __LINE__);
333         //* DEBUG: */ echo __LINE__."/".$main_cnt."/".$main_action."/".$sub_what.":".$GLOBALS['what']."*<br />\n";
334         if (SQL_NUMROWS($result_main) > 0) {
335                 OUTPUT_HTML("<TABLE border=\"0\" cellspacing=\"0\" cellpadding=\"0\" class=\"".$MODE."_menu\">");
336                 // There are menus available, so we simply display them... :)
337                 while (list($main_title, $main_action) = SQL_FETCHROW($result_main)) {
338                         //* DEBUG: */ echo __LINE__."/".$main_cnt."/".$main_action."/".$sub_what.":".$GLOBALS['what']."*<br />\n";
339                         // Init variables
340                         $BLOCK_MODE = false; $act = $main_action;
341
342                         // Prepare content
343                         $content = array(
344                                 'action' => $main_action,
345                                 'title'  => $main_title
346                         );
347
348                         // Load menu header template
349                         LOAD_TEMPLATE($MODE."_menu_title", false, $content);
350
351                         $result_sub = SQL_QUERY_ESC("SELECT title, what FROM "._MYSQL_PREFIX."_%s_menu WHERE action='%s' AND what != '' AND what IS NOT NULL ".$AND." ORDER BY sort",
352                          array($MODE, $main_action), __FILE__, __LINE__);
353                         $ctl = SQL_NUMROWS($result_sub);
354                         if ($ctl > 0) {
355                                 $cnt=0;
356                                 while (list($sub_title, $sub_what) = SQL_FETCHROW($result_sub)) {
357                                         // Init content
358                                         $content = "";
359
360                                         // Full file name for checking menu
361                                         //* DEBUG: */ echo __LINE__.":!!!!".$sub_what."!!!<br />\n";
362                                         $test_inc = sprintf("%sinc/modules/%s/what-%s.php", PATH, $MODE, $sub_what);
363                                         $test = (FILE_READABLE($test_inc));
364                                         if ($test) {
365                                                 if ((!empty($wht)) && (($wht == $sub_what))) {
366                                                         $content = "<STRONG>";
367                                                 }
368
369                                                 // Navigation link
370                                                 $content .= "<A name=\"menu\" class=\"menu_blur\" href=\"".URL."/modules.php?module=".$GLOBALS['module']."&amp;what=".$sub_what.ADD_URL_DATA("")."\" target=\"_self\">";
371                                         } else {
372                                                 $content .= "<I>";
373                                         }
374
375                                         // Menu title
376                                         $content .= getConfig('menu_blur_spacer') . $sub_title;
377
378                                         if ($test) {
379                                                 $content .= "</A>";
380                                         } else {
381                                                 $content .= "</I>";
382                                         }
383
384                                         if ((!empty($wht)) && (($wht == $sub_what))) {
385                                                 $content .= "</STRONG>";
386                                         }
387                                         $wht = $sub_what; $cnt++;
388                                         // Prepare array
389                                         $content =  array(
390                                                 'menu' => $content,
391                                                 'what' => $sub_what
392                                         );
393
394                                         // Add regular menu row or bottom row?
395                                         if ($cnt < $ctl) {
396                                                 LOAD_TEMPLATE($MODE."_menu_row", false, $content);
397                                         } else {
398                                                 LOAD_TEMPLATE($MODE."_menu_bottom", false, $content);
399                                         }
400                                 }
401                         } else {
402                                 // This is a menu block... ;-)
403                                 $BLOCK_MODE = true;
404                                 $INC_BLOCK = sprintf("%sinc/modules/%s/action-%s.php", PATH, $MODE, $main_action);
405                                 if (FILE_READABLE($INC_BLOCK)) {
406                                         // Load include file
407                                         if ((!EXT_IS_ACTIVE($main_action)) || ($main_action == "online")) OUTPUT_HTML("<TR>
408   <TD class=\"".$MODE."_menu_whats\">");
409                                         //* DEBUG: */ echo __LINE__."/".$main_cnt."/".$main_action."/".$sub_what.":".$GLOBALS['what']."*<br />\n";
410                                         include ($INC_BLOCK);
411                                         //* DEBUG: */ echo __LINE__."/".$main_cnt."/".$main_action."/".$sub_what.":".$GLOBALS['what']."*<br />\n";
412                                         if ((!EXT_IS_ACTIVE($main_action)) || ($main_action == "online")) OUTPUT_HTML("  </TD>
413 </TR>");
414                                 }
415                                 //* DEBUG: */ echo __LINE__."/".$main_cnt."/".$main_action."/".$sub_what.":".$GLOBALS['what']."*<br />\n";
416                         }
417                         $main_cnt++;
418                         //* DEBUG: */ echo __LINE__."/".$main_cnt."/".$main_action."/".$sub_what.":".$GLOBALS['what']."*<br />\n";
419                         if (SQL_NUMROWS($result_main) > $main_cnt)      OUTPUT_HTML("<TR><TD class=\"".$MODE."_menu_seperator\"></TD></TR>");
420                 }
421
422                 // Free memory
423                 SQL_FREERESULT($result_main);
424
425                 // Close table
426                 //* DEBUG: */ echo __LINE__."/".$main_cnt."/".$main_action."/".$sub_what.":".$GLOBALS['what']."*<br />\n";
427                 OUTPUT_HTML("</TABLE>");
428         }
429 }
430 // This patched function will reduce many SELECT queries for the specified or current admin login
431 function IS_ADMIN($admin="")
432 {
433         global $cacheArray, $_CONFIG;
434         $ret = false; $passCookie = ""; $valPass = "";
435         //* DEBUG: */ echo __LINE__."ADMIN:".$admin."<br />";
436
437         // If admin login is not given take current from cookies...
438         if ((empty($admin)) && (isSessionVariableSet('admin_login')) && (isSessionVariableSet('admin_md5'))) {
439                 // Get admin login and password from session/cookies
440                 $admin = get_session('admin_login');
441                 $passCookie = get_session('admin_md5');
442         }
443         //* DEBUG: */ echo __LINE__."ADMIN:".$admin."/".$passCookie."<br />";
444
445         // Search in array for entry
446         if (isset($cacheArray['admin_hash'])) {
447                 // Use cached string
448                 $valPass = $cacheArray['admin_hash'];
449         } elseif ((!empty($passCookie)) && (isset($cacheArray['admins']['password'][$admin])) && (!empty($admin))) {
450                 // Count cache hits
451                 if (getConfig('cache_hits') > 0) { $_CONFIG['cache_hits']++; } else { $_CONFIG['cache_hits'] = 1; }
452
453                 // Login data is valid or not?
454                 $valPass = generatePassString($cacheArray['admins']['password'][$admin]);
455
456                 // Cache it away
457                 $cacheArray['admin_hash'] = $valPass;
458         } elseif ((!empty($admin)) && ((!EXT_IS_ACTIVE("cache"))) || (!isset($cacheArray['admins']['password'][$admin]))) {
459                 // Search for admin
460                 $result = SQL_QUERY_ESC("SELECT HIGH_PRIORITY password FROM "._MYSQL_PREFIX."_admins WHERE login='%s' LIMIT 1",
461                         array($admin), __FILE__, __LINE__);
462
463                 // Is he admin?
464                 $passDB = "";
465                 if (SQL_NUMROWS($result) == 1) {
466                         // Admin login was found so let's load password from DB
467                         list($passDB) = SQL_FETCHROW($result);
468
469                         // Temporary cache it
470                         $cacheArray['admins']['password'][$admin] = $passDB;
471
472                         // Generate password hash
473                         $valPass = generatePassString($passDB);
474                 } // END - if
475
476                 // Free memory
477                 SQL_FREERESULT($result);
478         }
479
480         if (!empty($valPass)) {
481                 // Check if password is valid
482                 //* DEBUG: */ print __FUNCTION__."*".$valPass."/".$passCookie."*<br />\n";
483                 $ret = (($valPass == $passCookie) || ((strlen($valPass) == 32) && ($valPass == md5($passCookie))) || (($valPass == "*FAILED*") && (!EXT_IS_ACTIVE("cache"))));
484         }
485
486         // Return result of comparision
487         //* DEBUG: */ if (!$ret) echo __LINE__."OK!<br />";
488         return $ret;
489 }
490 //
491 function ADD_MAX_RECEIVE_LIST($MODE, $default="", $return=false)
492 {
493         global $_POST;
494         $OUT = "";
495         switch ($MODE)
496         {
497         case "guest":
498                 // Guests (in the registration form) are not allowed to select 0 mails per day.
499                 $result = SQL_QUERY("SELECT value, comment FROM "._MYSQL_PREFIX."_max_receive WHERE value > 0 ORDER BY value", __FILE__, __LINE__);
500                 if (SQL_NUMROWS($result) > 0)
501                 {
502                         $OUT = "";
503                         while (list($value, $comment) = SQL_FETCHROW($result))
504                         {
505                                 $OUT .= "      <OPTION value=\"".$value."\"";
506                                 if ($_POST['max_mails'] == $value) $OUT .= " selected=\"selected\"";
507                                 $OUT .= ">".$value." ".PER_DAY;
508                                 if (!empty($comment)) $OUT .= " (".$comment.")";
509                                 $OUT .= "</OPTION>\n";
510                         }
511                         define('__MAX_RECEIVE_OPTIONS', $OUT);
512
513                         // Free memory
514                         SQL_FREERESULT($result);
515                         $OUT = LOAD_TEMPLATE("guest_receive_table", true);
516                 }
517                  else
518                 {
519                         // Maybe the admin has to setup some maximum values?
520                 }
521                 break;
522
523         case "member":
524                 // Members are allowed to set to zero mails per day (we will change this soon!)
525                 $result = SQL_QUERY("SELECT value, comment FROM "._MYSQL_PREFIX."_max_receive ORDER BY value", __FILE__, __LINE__);
526                 if (SQL_NUMROWS($result) > 0)
527                 {
528                         $OUT = "";
529                         while (list($value, $comment) = SQL_FETCHROW($result))
530                         {
531                                 $OUT .= "      <OPTION value=\"".$value."\"";
532                                 if ($default == $value) $OUT .= " selected=\"selected\"";
533                                 $OUT .= ">".$value." ".PER_DAY;
534                                 if (!empty($comment)) $OUT .= " (".$comment.")";
535                                 $OUT .= "</OPTION>\n";
536                         }
537                         define('__MAX_RECEIVE_OPTIONS', $OUT);
538                         SQL_FREERESULT($result);
539                         $OUT = LOAD_TEMPLATE("member_receive_table", true);
540                 }
541                  else
542                 {
543                         // Maybe the admin has to setup some maximum values?
544                         $OUT = LOAD_TEMPLATE("admin_settings_saved", true, NO_MAX_VALUES);
545                 }
546                 break;
547         }
548         if ($return)
549         {
550                 // Return generated HTML code
551                 return $OUT;
552         }
553          else
554         {
555                 // Output directly (default)
556                 OUTPUT_HTML($OUT);
557         }
558 }
559 //
560 function SEARCH_EMAIL_USERTAB($email)
561 {
562         $ret = false;
563         $result = SQL_QUERY_ESC("SELECT userid FROM `"._MYSQL_PREFIX."_user_data` WHERE email LIKE '{PER}%s{PER}' LIMIT 1", array($email), __FILE__, __LINE__);
564         if (SQL_NUMROWS($result) == 1) $ret = true;
565         SQL_FREERESULT($result);
566         return $ret;
567 }
568 //
569 function WHAT_IS_VALID($act, $wht, $type="guest")
570 {
571         if (IS_ADMIN())
572         {
573                 // Everything is valid to the admin :-)
574                 return true;
575         }
576          else
577         {
578                 $ret = false;
579                 $result = SQL_QUERY_ESC("SELECT id FROM "._MYSQL_PREFIX."_%s_menu WHERE action='%s' AND what='%s' AND locked='N' LIMIT 1", array($type, $act, $wht), __FILE__, __LINE__);
580                 // Is "what" valid?
581                 if (SQL_NUMROWS($result) == 1) $ret = true;
582                 SQL_FREERESULT($result);
583                 return $ret;
584         }
585 }
586 //
587 function IS_MEMBER()
588 {
589         global $status, $LAST, $cacheArray;
590         if (!is_array($LAST)) $LAST = array();
591         $ret = false;
592
593         // is the cache entry there?
594         if (isset($cacheArray['is_member'])) {
595                 // Then return it
596                 return $cacheArray['is_member'];
597         } // END - if
598
599         // Fix "deleted" cookies first
600         FIX_DELETED_COOKIES(array('userid','u_hash','lifetime'));
601
602         // Are cookies set?
603         if ((!empty($GLOBALS['userid'])) && (isSessionVariableSet('u_hash')) && (isSessionVariableSet('lifetime')) && (defined('COOKIE_PATH')))
604         {
605                 // Cookies are set with values, but are they valid?
606                 $result = SQL_QUERY_ESC("SELECT password, status, last_module, last_online FROM `"._MYSQL_PREFIX."_user_data` WHERE userid=%s LIMIT 1",
607                  array($GLOBALS['userid']), __FILE__, __LINE__);
608                 if (SQL_NUMROWS($result) == 1)
609                 {
610                         // Load data from cookies
611                         list($password, $status, $mod, $onl) = SQL_FETCHROW($result);
612
613                         // Validate password by created the difference of it and the secret key
614                         $valPass = generatePassString($password);
615
616                         // Transfer last module and online time
617                         if ((!empty($mod)) && (empty($LAST['module']))) { $LAST['module'] = $mod; $LAST['online'] = $onl; }
618
619                         // So did we now have valid data and an unlocked user?
620                         //* DEBUG: */ echo $valPass."<br />".get_session('u_hash')."<br />";
621                         if (($status == "CONFIRMED") && ($valPass == get_session('u_hash'))) {
622                                 // Account is confirmed and all cookie data is valid so he is definely logged in! :-)
623                                 $ret = true;
624                         } else {
625                                 // Maybe got locked etc.
626                                 //* DEBUG: */ echo __LINE__."!!!<br />";
627                                 destroy_user_session();
628
629                                 // Reset userid
630                                 $GLOBALS['userid'] = 0;
631                         }
632                 } else {
633                         // Cookie data is invalid!
634                         //* DEBUG: */ echo __LINE__."***<br />";
635                         destroy_user_session();
636
637                         // Reset userid
638                         $GLOBALS['userid'] = 0;
639                 }
640
641                 // Free memory
642                 SQL_FREERESULT($result);
643         } else {
644                 // Cookie data is invalid!
645                 //* DEBUG: */ echo __LINE__."///<br />";
646                 destroy_user_session();
647
648                 // Reset userid
649                 $GLOBALS['userid'] = 0;
650         }
651
652         // Cache status
653         $cacheArray['is_member'] = $ret;
654
655         // Return status
656         return $ret;
657 }
658 //
659 function VALIDATE_MENU_ACTION ($MODE, $act, $wht, $UPDATE=false)
660 {
661         $ret = false;
662         $ADD = "";
663         if ((!IS_ADMIN()) && ($MODE != "admin")) $ADD = " AND locked='N'";
664         //* DEBUG: */ echo __LINE__.":".$MODE."/".$act."/".$wht."*<br />\n";
665         if (($MODE != "admin") && ($UPDATE))
666         {
667                 // Update guest or member menu
668                 $SQL = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_%s_menu SET counter=counter+1 WHERE action='%s' AND what='%s'".$ADD." LIMIT 1",
669                  array($MODE, $act, $wht), __FILE__, __LINE__, false);
670         }
671          elseif ($wht != "overview")
672         {
673                 // Other actions
674                 $SQL = SQL_QUERY_ESC("SELECT id, what FROM "._MYSQL_PREFIX."_%s_menu WHERE action='%s'".$ADD." ORDER BY action DESC LIMIT 1",
675                  array($MODE, $act), __FILE__, __LINE__, false);
676         }
677          else
678         {
679                 // Admin login overview
680                 $SQL = SQL_QUERY_ESC("SELECT id, what FROM "._MYSQL_PREFIX."_%s_menu WHERE action='%s' AND (what='' OR what IS NULL)".$ADD." ORDER BY action DESC LIMIT 1",
681                  array($MODE, $act), __FILE__, __LINE__, false);
682         }
683
684         // Run SQL command
685         $result = SQL_QUERY($SQL, __FILE__, __LINE__);
686         if ($UPDATE)
687         {
688                 if (SQL_AFFECTEDROWS() == 1) $ret = true;
689                 //* DEBUG: */ debug_print_backtrace();
690         }
691          else
692         {
693                 if (SQL_NUMROWS($result) == 1) {
694                         list($id, $wht2) = SQL_FETCHROW($result);
695                         //* DEBUG: */ echo __LINE__."+".$SQL."+<br />\n";
696                         //* DEBUG: */ echo __LINE__."*".$id."/".$wht."/".$wht2."*<br />\n";
697                         $ret = true;
698                 }
699         }
700
701         // Free memory
702         SQL_FREERESULT($result);
703
704         // Return result
705         return $ret;
706 }
707 //
708 function GET_MOD_DESCR($MODE, $wht, $column="what")
709 {
710         // Fix empty "what"
711         if (empty($wht)) {
712                 $wht = "welcome";
713                 if (getConfig('index_home') != "") $wht = getConfig('index_home');
714         } // END - if
715
716         // Default is not found
717         $ret = "??? (".$wht.")";
718
719         // Look for title
720         $result = SQL_QUERY_ESC("SELECT title FROM "._MYSQL_PREFIX."_%s_menu WHERE %s='%s' LIMIT 1",
721                 array($MODE, $column, $wht), __FILE__, __LINE__);
722
723         // Is there an entry?
724         if (SQL_NUMROWS($result) == 1) {
725                 // Fetch the title
726                 list($ret) = SQL_FETCHROW($result);
727         } // END - if
728
729         // Free result
730         SQL_FREERESULT($result);
731         return $ret;
732 }
733 //
734 function SEND_MODE_MAILS($mod, $modes)
735 {
736         global $_CONFIG, $DATA;
737
738         // Load hash
739         $result_main = SQL_QUERY_ESC("SELECT password FROM `"._MYSQL_PREFIX."_user_data` WHERE userid=%s AND status='CONFIRMED' LIMIT 1",
740                 array($GLOBALS['userid']), __FILE__, __LINE__);
741         if (SQL_NUMROWS($result_main) == 1) {
742                 // Load hash from database
743                 list($hashDB) = SQL_FETCHROW($result_main);
744
745                 // Extract salt from cookie
746                 $salt = substr(get_session('u_hash'), 0, -40);
747
748                 // Now let's compare passwords
749                 $hash = generatePassString($hashDB);
750                 if (($hash == get_session('u_hash')) || ($_POST['pass1'] == $_POST['pass2'])) {
751                         // Load user's data
752                         $result = SQL_QUERY_ESC("SELECT gender, surname, family, street_nr, country, zip, city, email FROM `"._MYSQL_PREFIX."_user_data` WHERE userid=%s AND password='%s' LIMIT 1",
753                                 array($GLOBALS['userid'], $hashDB), __FILE__, __LINE__);
754                         if (SQL_NUMROWS($result) == 1) {
755                                 // Load the data
756                                 $DATA = SQL_FETCHROW($result);
757
758                                 // Free result
759                                 SQL_FREERESULT($result);
760
761                                 // Translate gender
762                                 $DATA[0] = TRANSLATE_GENDER($DATA[0]);
763
764                                 // Clear/init the content variable
765                                 $content = "";
766                                 $DATA['info'] = "";
767
768                                 switch ($mod)
769                                 {
770                                 case "mydata":
771                                         foreach ($modes as $mode) {
772                                                 switch ($mode)
773                                                 {
774                                                 case "normal": break; // Do not add any special lines
775
776                                                 case "email": // Email was changed!
777                                                         $content = MEMBER_CHANGED_EMAIL.": ".$_POST['old_addy']."\n";
778                                                         break;
779
780                                                 case "pass": // Password was changed
781                                                         $content = MEMBER_CHANGED_PASS."\n";
782                                                         break;
783
784                                                 default:
785                                                         DEBUG_LOG(__FUNCTION__, __LINE__, sprintf("Unknown mode %s detected.", $mode));
786                                                         $content = MEMBER_UNKNOWN_MODE.": ".$mode."\n\n";
787                                                         break;
788                                                 } // END - switch
789                                         } // END - if
790
791                                         if (EXT_IS_ACTIVE("country")) {
792                                                 // Replace code with description
793                                                 $DATA[4] = COUNTRY_GENERATE_INFO($_POST['country_code']);
794                                         } // END - if
795
796                                         // Load template
797                                         $msg = LOAD_EMAIL_TEMPLATE("member_mydata_notify", $content, $GLOBALS['userid']);
798
799                                         if (getConfig('admin_notify') == "Y") {
800                                                 // The admin needs to be notified about a profile change
801                                                 $msg_admin = "admin_mydata_notify";
802                                                 $sub_adm   = ADMIN_CHANGED_DATA;
803                                         } else {
804                                                 // No mail to admin
805                                                 $msg_admin = "";
806                                                 $sub_adm   = "";
807                                         }
808
809                                         // Set subject lines
810                                         $sub_mem = MEMBER_CHANGED_DATA;
811
812                                         // Output success message
813                                         $content = "<SPAN class=\"member_done\">".MYDATA_MAIL_SENT."</SPAN>";
814                                         break;
815
816                                 default:
817                                         DEBUG_LOG(__FUNCTION__, __LINE__, sprintf("Unsupported module %s detected.", $mod));
818                                         $content = "<SPAN class=\"member_failed\">".UNKNOWN_MODULE."</SPAN>";
819                                         break;
820                                 } // END - switch
821                         } else {
822                                 // Could not load profile data
823                                 $content = "<SPAN class=\"member_failed\">".MEMBER_CANNOT_LOAD_PROFILE."</SPAN>";
824                         }
825                 } else {
826                         // Passwords mismatch
827                         $content = "<SPAN class=\"member_failed\">".MEMBER_PASSWORD_ERROR."</SPAN>";
828                 }
829         } else {
830                 // Could not load profile
831                 $content = "<SPAN class=\"member_failed\">".MEMBER_CANNOT_LOAD_PROFILE."</SPAN>";
832         }
833
834         // Send email to user if required
835         if ((!empty($sub_mem)) && (!empty($msg))) {
836                 // Send member mail
837                 SEND_EMAIL($DATA[7], $sub_mem, $msg);
838         } // END - if
839
840         // Send only if no other error has occured
841         if (empty($content)) {
842                 if ((!empty($sub_adm)) && (!empty($msg_admin))) {
843                         // Send admin mail
844                         SEND_ADMIN_NOTIFICATION($sub_adm, $msg_admin, $content, $GLOBALS['userid']);
845                 } elseif (getConfig('admin_notify') == "Y") {
846                         // Cannot send mails to admin!
847                         $content = CANNOT_SEND_ADMIN_MAILS;
848                 } else {
849                         // No mail to admin
850                         $content = "<SPAN class=\"member_done\">".MYDATA_MAIL_SENT."</SPAN>";
851                 }
852         } // END - if
853
854         // Load template
855         LOAD_TEMPLATE("admin_settings_saved", false, $content);
856 }
857 // Update module counter
858 function COUNT_MODULE($mod) {
859         if ($mod != "css") {
860                 // Do count all other modules but not accesses on CSS file css.php!
861                 $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_mod_reg SET clicks=clicks+1 WHERE module='%s' LIMIT 1",
862                         array($mod), __FILE__, __LINE__);
863         } // END - if
864 }
865 // Get action value from mode (admin/guest/member) and what-value
866 function GET_ACTION ($MODE, &$wht)
867 {
868         global $ret, $_CONFIG;
869         // @DEPRECATED Init status
870         $ret = "";
871
872         //* DEBUG: */ echo __LINE__."=".$MODE."/".$wht."/".$GLOBALS['action']."=<br />";
873         if ((empty($wht)) && ($MODE != "admin")) {
874                 $wht = "welcome";
875                 if (getConfig('index_home') != "") $wht = getConfig('index_home');
876         } // END - if
877
878         if ($MODE == "admin") {
879                 // Action value for admin area
880                 if (!empty($GLOBALS['action'])) {
881                         // Get it directly from URL
882                         return $GLOBALS['action'];
883                 } elseif (($wht == "overview") || (empty($GLOBALS['what']))) {
884                         // Default value for admin area
885                         $ret = "login";
886                 }
887         } elseif (!empty($GLOBALS['action'])) {
888                 // Get it directly from URL
889                 return $GLOBALS['action'];
890         }
891         //* DEBUG: */ echo __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>): ret=".$ret."<br />\n";
892
893         if (MODULE_HAS_MENU($MODE)) {
894                 // Rewriting modules to menu
895                 switch ($MODE) {
896                         case "index": $MODE = "guest";  break;
897                         case "login": $MODE = "member"; break;
898                 } // END - switch
899
900                 // Guest and member menu is "main" as the default
901                 if (empty($ret)) $ret = "main";
902
903                 // Load from database
904                 $result = SQL_QUERY_ESC("SELECT action FROM "._MYSQL_PREFIX."_%s_menu WHERE what='%s' LIMIT 1",
905                         array($MODE, $wht), __FILE__, __LINE__);
906                 if (SQL_NUMROWS($result) == 1) {
907                         // Load action value and pray that this one is the right you want... ;-)
908                         list($ret) = SQL_FETCHROW($result);
909                 } // END - if
910
911                 // Free memory
912                 SQL_FREERESULT($result);
913         } // END - if
914
915         // Return action value
916         return $ret;
917 }
918
919 // Get category name back
920 function GET_CATEGORY ($cid) {
921         // Default is not found
922         $ret = _CATEGORY_404;
923
924         // Is the category id set?
925         if ($cid == "0") {
926                 // No category
927                 $ret = _CATEGORY_NONE;
928         } elseif ($cid > 0) {
929                 // Lookup the category in database
930                 $result = SQL_QUERY_ESC("SELECT cat FROM "._MYSQL_PREFIX."_cats WHERE id=%s LIMIT 1",
931                         array(bigintval($cid)), __FILE__, __LINE__);
932                 if (SQL_NUMROWS($result) == 1) {
933                         // Category found... :-)
934                         list($ret) = SQL_FETCHROW($result);
935                 } // END - if
936
937                 // Free result
938                 SQL_FREERESULT($result);
939         } // END - if
940
941         // Return result
942         return $ret;
943 }
944
945 // Get a string of "mail title" and price back
946 function GET_PAYMENT ($pid, $full=false) {
947         // Default is not found
948         $ret = _PAYMENT_404;
949
950         // Load payment data
951         $result = SQL_QUERY_ESC("SELECT mail_title, price FROM "._MYSQL_PREFIX."_payments WHERE id=%s LIMIT 1",
952                 array(bigintval($pid)), __FILE__, __LINE__);
953         if (SQL_NUMROWS($result) == 1) {
954                 // Payment type found... :-)
955                 if (!$full) {
956                         // Return only title
957                         list($ret) = SQL_FETCHROW($result);
958                 } else {
959                         // Return title and price
960                         list($t, $p) = SQL_FETCHROW($result);
961                         $ret = $t." / ".TRANSLATE_COMMA($p)." ".POINTS;
962                 }
963         }
964
965         // Free result
966         SQL_FREERESULT($result);
967
968         // Return result
969         return $ret;
970 }
971
972 // Get (basicly) the price of given payment id
973 function GET_PAY_POINTS($pid, $lookFor="price")
974 {
975         $ret = "-1";
976         $result = SQL_QUERY_ESC("SELECT %s FROM "._MYSQL_PREFIX."_payments WHERE id=%s LIMIT 1",
977                 array($lookFor, $pid), __FILE__, __LINE__);
978         if (SQL_NUMROWS($result) == 1)
979         {
980                 // Payment type found... :-)
981                 list($ret) = SQL_FETCHROW($result);
982                 SQL_FREERESULT($result);
983         }
984         return $ret;
985 }
986
987 // Remove a receiver's ID from $ARRAY and add a link for him to confirm
988 function REMOVE_RECEIVER (&$ARRAY, $key, $uid, $pool_id, $stats_id="", $bonus=false)
989 {
990         $ret = "failed";
991         if ($uid > 0)
992         {
993                 // Remove entry from array
994                 unset($ARRAY[$key]);
995
996                 // Is there already a line for this user available?
997                 if ($stats_id > 0)
998                 {
999                         // Only when we got a real stats ID continue searching for the entry
1000                         $type = "NORMAL"; $rowName = "stats_id";
1001                         if ($bonus) { $type = "BONUS"; $rowName = "bonus_id"; }
1002                         $result = SQL_QUERY_ESC("SELECT id FROM "._MYSQL_PREFIX."_user_links WHERE %s='%s' AND userid=%s AND link_type='%s' LIMIT 1",
1003                          array($rowName, $stats_id, bigintval($uid), $type), __FILE__, __LINE__);
1004                         if (SQL_NUMROWS($result) == 0)
1005                         {
1006                                 // No, so we add one!
1007                                 $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_user_links (%s, userid, link_type) VALUES ('%s','%s','%s')",
1008                                  array($rowName, $stats_id, bigintval($uid), $type), __FILE__, __LINE__);
1009                                 $ret = "done";
1010                         }
1011                          else
1012                         {
1013                                 // Already found
1014                                 $ret = "already";
1015                         }
1016
1017                         // Free memory
1018                         SQL_FREERESULT($result);
1019                 }
1020         }
1021         // Return status for sending routine
1022         return $ret;
1023 }
1024
1025 // Calculate sum (default) or count records of given criteria
1026 function GET_TOTAL_DATA ($search, $tableName, $lookFor, $whereStatement="userid", $onlyRows=false, $add="") {
1027         $ret = 0;
1028         //* DEBUG: */ echo $search."/".$tableName."/".$lookFor."/".$whereStatement."/".$add."<br />\n";
1029         if (($onlyRows) || ($lookFor == "userid")) {
1030                 // Count rows
1031                 //* DEBUG: */ echo "COUNT!<br />\n";
1032                 $result = SQL_QUERY_ESC("SELECT COUNT(`%s`) FROM `"._MYSQL_PREFIX."_%s` WHERE `%s`='%s'".$add,
1033                         array($lookFor, $tableName, $whereStatement, $search), __FILE__, __LINE__);
1034         } else {
1035                 // Add all rows
1036                 //* DEBUG: */ echo "SUM!<br />\n";
1037                 $result = SQL_QUERY_ESC("SELECT SUM(`%s`) FROM `"._MYSQL_PREFIX."_%s` WHERE `%s`='%s'".$add,
1038                         array($lookFor, $tableName, $whereStatement, $search), __FILE__, __LINE__);
1039         }
1040
1041         // Load row
1042         list($ret) = SQL_FETCHROW($result);
1043
1044         // Free result
1045         SQL_FREERESULT($result);
1046
1047         // Fix empty values
1048         if ((empty($ret)) && ($lookFor != "counter") && ($lookFor != "id") && ($lookFor != "userid")) {
1049                 // Float number
1050                 $ret = "0.00000";
1051         } elseif ("".$ret."" == "") {
1052                 // Fix empty result
1053                 $ret = "0";
1054         }
1055
1056         // Return value
1057         return $ret;
1058 }
1059 // "Getter fro ref level percents
1060 function GET_REF_LEVEL_PERCENTS ($level) {
1061         global $cacheInstance, $_CONFIG, $cacheArray;
1062
1063         // Default is zero
1064         $per = 0;
1065
1066         // Do we have cache?
1067         if ((isset($cacheArray['ref_depths']['level'])) && (EXT_IS_ACTIVE("cache"))) {
1068                 // First look for level
1069                 $key = array_search($level, $cacheArray['ref_depths']['level']);
1070                 if ($key !== false) {
1071                         // Entry found!
1072                         $per = $cacheArray['ref_depths']['percents'][$key];
1073
1074                         // Count cache hit
1075                         if (getConfig('cache_hits') > 0) { $_CONFIG['cache_hits']++; } else { $_CONFIG['cache_hits'] = 1; }
1076                 }
1077         } elseif (!EXT_IS_ACTIVE("cache")) {
1078                 // Get referal data
1079                 $result_lvl = SQL_QUERY_ESC("SELECT percents FROM "._MYSQL_PREFIX."_refdepths WHERE level='%s' LIMIT 1",
1080                         array(bigintval($level)), __FILE__, __LINE__);
1081
1082                 // Entry found?
1083                 if (SQL_NUMROWS($result_lvl) == 1) {
1084                         // Get percents
1085                         list($per) = SQL_FETCHROW($result_lvl);
1086                 } // END - if
1087
1088                 // Free result
1089                 SQL_FREERESULT($result_lvl);
1090         }
1091
1092         // Return percent
1093         return $per;
1094 }
1095 /**
1096  *
1097  * Dynamic referal system, can also send mails!
1098  *
1099  * subject     = Subject line, write in lower-case letters and underscore is allowed
1100  * uid         = Referal ID wich should receive...
1101  * points      = ... xxx points
1102  * send_notify = shall I send the referal an email or not?
1103  * rid         = inc/modules/guest/what-confirm.php need this (DEPRECATED???)
1104  * locked      = Shall I pay it to normal (false) or locked (true) points ammount?
1105  * add_mode    = Add points only to $uid or also refs? (WARNING! Changing "ref" to "direct"
1106  *               for default value will cause no referal will get points ever!!!)
1107  */
1108 function ADD_POINTS_REFSYSTEM ($subject, $uid, $points, $send_notify=false, $rid="0", $locked=false, $add_mode="ref") {
1109         /* DEBUG: */ print "----------------------- <font color=\"#00aa00\">".__FUNCTION__." - ENTRY</font> ------------------------<ul><li>\n";
1110         global $_CONFIG, $DATA, $cacheArray;
1111
1112         // Convert mode to lower-case
1113         $add_mode = strtolower($add_mode);
1114
1115         // When $uid = 0 add points to jackpot
1116         if ($uid == "0") {
1117                 // Add points to jackpot
1118                 ADD_JACKPOT($points);
1119                 return;
1120         } // END - if
1121
1122         // Add booking record if extension is installed
1123         if (EXT_IS_ACTIVE("booking")) {
1124                 // Add record
1125                 ADD_BOOKING_RECORD($subject, $uid, $points, "add");
1126         } // END - if
1127
1128         // Count up referal depth
1129         if (!isset($GLOBALS['ref_level'])) {
1130                 // Initialialize referal system
1131                 /* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>): Referal system initialized!<br />\n";
1132                 $GLOBALS['ref_level'] = 0;
1133         } else {
1134                 // Increase referal level
1135                 $GLOBALS['ref_level']++;
1136                 /* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>): Referal level increased. DEPTH={$GLOBALS['ref_level']}<br />\n";
1137         }
1138
1139         // Default is "normal" points
1140         $data = "points";
1141
1142         // Which points, locked or normal?
1143         if ($locked) $data = "locked_points";
1144
1145         // Check user account
1146         $result_user = SQL_QUERY_ESC("SELECT refid, email FROM `"._MYSQL_PREFIX."_user_data` WHERE userid=%s AND status='CONFIRMED' LIMIT 1",
1147          array(bigintval($uid)), __FILE__, __LINE__);
1148
1149         /* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid},numRows=".SQL_NUMROWS($result_user).",points={$points}<br />\n";
1150         if (SQL_NUMROWS($result_user) == 1) {
1151                 // This is the user and his ref
1152                 list($ref, $email) = SQL_FETCHROW($result_user);
1153                 $cacheArray['add_uid'][$ref] = $uid;
1154
1155                 // Get percents
1156                 $per = GET_REF_LEVEL_PERCENTS($GLOBALS['ref_level']);
1157                 /* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid},points={$points},depth={$GLOBALS['ref_level']},per={$per},mode={$add_mode}<br />\n";
1158
1159                 // Some percents found?
1160                 if ($per > 0) {
1161                         // Calculate new points
1162                         /* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid},points={$points},per={$per},depth={$GLOBALS['ref_level']}<br />\n";
1163                         $ref_points = $points * $per / 100;
1164
1165                         // Pay refback here if level > 0 and in ref-mode
1166                         if ((EXT_IS_ACTIVE("refback")) && ($GLOBALS['ref_level'] > 0) && ($per < 100) && ($add_mode == "ref") && (isset($cacheArray['add_uid'][$uid]))) {
1167                                 /* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid},data={$cacheArray['add_uid'][$uid]},ref_points={$ref_points},depth={$GLOBALS['ref_level']} - BEFORE!<br />\n";
1168                                 $ref_points = ADD_REFBACK_POINTS($cacheArray['add_uid'][$uid], $uid, $points, $ref_points);
1169                                 /* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid},data={$cacheArray['add_uid'][$uid]},ref_points={$ref_points},depth={$GLOBALS['ref_level']} - AFTER!<br />\n";
1170                         } // END - if
1171
1172                         // Update points...
1173                         SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_user_points SET %s=%s+%s WHERE userid=%s AND ref_depth='%s' LIMIT 1",
1174                          array($data, $data, $ref_points, bigintval($uid), bigintval($GLOBALS['ref_level'])), __FILE__, __LINE__);
1175                         /* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):data={$data},ref_points={$ref_points},uid={$uid},depth={$GLOBALS['ref_level']},mode={$add_mode} - UPDATE! (".SQL_AFFECTEDROWS().")<br />\n";
1176
1177                         // No entry updated?
1178                         if (SQL_AFFECTEDROWS() < 1) {
1179                                 // First ref in this level! :-)
1180                                 $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_user_points (userid,ref_depth,%s) VALUES (%s,%s,%s)",
1181                                  array($data, bigintval($uid), bigintval($GLOBALS['ref_level']), $ref_points), __FILE__, __LINE__);
1182                         } // END - if
1183
1184                         // Update mediadata as well
1185                         if (GET_EXT_VERSION("mediadata") >= "0.0.4") {
1186                                 // Update database
1187                                 MEDIA_UPDATE_ENTRY(array("total_points"), "add", $ref_points);
1188                         } // END - if
1189
1190                         // Points updated, maybe I shall send him an email?
1191                         if (($send_notify) && ($ref > 0) && (!$locked)) {
1192                                 // Prepare content
1193                                 $content = array(
1194                                         'percent' => $per,
1195                                         'level'   => bigintval($GLOBALS['ref_level']),
1196                                         'points'  => $ref_points,
1197                                         'refid'   => bigintval($ref)
1198                                 );
1199
1200                                 // Load email template
1201                                 $msg = LOAD_EMAIL_TEMPLATE("confirm-referal", $content, bigintval($uid));
1202
1203                                 SEND_EMAIL($email, THANX_REFERRAL_ONE, $msg);
1204                         } elseif (($send_notify) && ($ref == 0) && (!$locked) && ($add_mode == "direct") && (!defined('__POINTS_VALUE'))) {
1205                                 // Direct payment shall be notified about
1206                                 define('__POINTS_VALUE', $ref_points);
1207
1208                                 // Prepare content
1209                                 $content = array(
1210                                         'text'   => REASON_DIRECT_PAYMENT,
1211                                         'points' => TRANSLATE_COMMA($ref_points)
1212                                 );
1213
1214                                 // Load message
1215                                 $msg = LOAD_EMAIL_TEMPLATE("add-points", $content, $uid);
1216
1217                                 // And sent it away
1218                                 SEND_EMAIL($email, SUBJECT_DIRECT_PAYMENT, $msg);
1219                                 if (!isset($_GET['mid'])) LOAD_TEMPLATE("admin_settings_saved", false, ADMIN_POINTS_ADDED);
1220                         }
1221
1222                         // Maybe there's another ref?
1223                         if (($ref > 0) && ($points > 0) && ($ref != $uid) && ($add_mode == "ref")) {
1224                                 // Then let's credit him here...
1225                                 /* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid},ref={$ref},points={$points} - ADVANCE!<br />\n";
1226                                 ADD_POINTS_REFSYSTEM(sprintf("%s_ref:%s", $subject, $GLOBALS['ref_level']), $ref, $points, $send_notify, $ref, $locked);
1227                         } // END - if
1228                 } // END - if
1229         } // END - if
1230
1231         // Free result
1232         SQL_FREERESULT($result_user);
1233         /* DEBUG: */ print "</li></ul>----------------------- <font color=\"#aa0000\">".__FUNCTION__." - EXIT</font> ------------------------<br />\n";
1234 }
1235 //
1236 function UPDATE_REF_COUNTER ($uid) {
1237         global $cacheArray, $cacheInstance;
1238
1239         // Make it sure referal level zero (member him-/herself) is at least selected
1240         if (empty($cacheArray['ref_level'][$uid])) $cacheArray['ref_level'][$uid] = 1;
1241         //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid},level={$cacheArray['ref_level'][$uid]}<br />\n";
1242
1243         // Update counter
1244         $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_refsystem SET counter=counter+1 WHERE userid=%s AND level='%s' LIMIT 1",
1245                 array(bigintval($uid), $cacheArray['ref_level'][$uid]), __FILE__, __LINE__);
1246
1247         // When no entry was updated then we have to create it here
1248         //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):updated=".SQL_AFFECTEDROWS()."<br />\n";
1249         if (SQL_AFFECTEDROWS() < 1) {
1250                 // First count!
1251                 $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_refsystem (userid, level, counter) VALUES (%s,%s,1)",
1252                         array(bigintval($uid), $cacheArray['ref_level'][$uid]), __FILE__, __LINE__);
1253                 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid}<br />\n";
1254         } // END - if
1255
1256         // Check for his referal
1257         $result = SQL_QUERY_ESC("SELECT refid FROM `"._MYSQL_PREFIX."_user_data` WHERE userid=%s LIMIT 1",
1258                 array(bigintval($uid)), __FILE__, __LINE__);
1259
1260         // Load refid
1261         list($ref) = SQL_FETCHROW($result);
1262
1263         // Free memory
1264         SQL_FREERESULT($result);
1265         //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid},ref={$ref}<br />\n";
1266
1267         // When he has a referal...
1268         if (($ref > 0) && ($ref != $uid)) {
1269                 // Move to next referal level and count his counter one up!
1270                 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):ref={$ref} - ADVANCE!<br />\n";
1271                 $cacheArray['ref_level'][$uid]++; UPDATE_REF_COUNTER($ref);
1272         } elseif ((($ref == $uid) || ($ref == 0)) && (GET_EXT_VERSION("cache") >= "0.1.2")) {
1273                 // Remove cache here
1274                 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):ref={$ref} - CACHE!<br />\n";
1275                 REBUILD_CACHE("refsystem", "refsystem");
1276         }
1277
1278         // "Walk" back here
1279         $cacheArray['ref_level'][$uid]--;
1280
1281         // Handle refback here if extension is installed
1282         if (EXT_IS_ACTIVE("refback")) {
1283                 UPDATE_REFBACK_TABLE($uid);
1284         } // END - if
1285 }
1286
1287 // OBSOLETE: Sends out mail to all administrators
1288 function SEND_ADMIN_EMAILS ($subj, $msg) {
1289         // Load all admin email addresses
1290         $result = SQL_QUERY("SELECT email FROM "._MYSQL_PREFIX."_admins ORDER BY id ASC", __FILE__, __LINE__);
1291         while (list($email) = SQL_FETCHROW($result)) {
1292                 // Send the email out
1293                 SEND_EMAIL($email, $subj, $msg);
1294         } // END - if
1295
1296         // Free result
1297         SQL_FREERESULT($result);
1298
1299         // Really simple... ;-)
1300 }
1301
1302 // Get ID number from administrator's login name
1303 function GET_ADMIN_ID ($login) {
1304         global $cacheArray, $_CONFIG;
1305         $ret = "-1";
1306         if (isset($cacheArray['admins']['aid'][$login])) {
1307                 // Check cache
1308                 $ret = $cacheArray['admins']['aid'][$login];
1309
1310                 // Update cache hits
1311                 if (getConfig('cache_hits') > 0) { $_CONFIG['cache_hits']++; } else { $_CONFIG['cache_hits'] = 1; }
1312         } elseif (!EXT_IS_ACTIVE("cache")) {
1313                 // Load from database
1314                 $result = SQL_QUERY_ESC("SELECT id FROM "._MYSQL_PREFIX."_admins WHERE login='%s' LIMIT 1",
1315                  array($login), __FILE__, __LINE__);
1316                 if (SQL_NUMROWS($result) == 1) {
1317                         list($ret) = SQL_FETCHROW($result);
1318                 } // END - if
1319
1320                 // Free result
1321                 SQL_FREERESULT($result);
1322         }
1323         return $ret;
1324 }
1325
1326 // "Getter" for current admin id
1327 function GET_CURRENT_ADMIN_ID () {
1328         // Get the admin login from session
1329         $adminLogin = get_session('admin_login');
1330
1331         // "Solve" it into an id
1332         $adminId = GET_ADMIN_ID($adminLogin);
1333
1334         // Secure and return it
1335         return bigintval($adminId);
1336 }
1337
1338 // Get password hash from administrator's login name
1339 function GET_ADMIN_HASH ($aid)
1340 {
1341         global $cacheArray, $_CONFIG;
1342         $ret = "-1";
1343         if (isset($cacheArray['admins']['password'][$aid])) {
1344                 // Check cache
1345                 $ret = $cacheArray['admins']['password'][$aid];
1346
1347                 // Update cache hits
1348                 if (getConfig('cache_hits') > 0) { $_CONFIG['cache_hits']++; } else { $_CONFIG['cache_hits'] = 1; }
1349         } elseif (!EXT_IS_ACTIVE("cache")) {
1350                 // Load from database
1351                 $result = SQL_QUERY_ESC("SELECT password FROM "._MYSQL_PREFIX."_admins WHERE id=%s LIMIT 1",
1352                  array($aid), __FILE__, __LINE__);
1353                 if (SQL_NUMROWS($result) == 1) {
1354                         // Fetch data
1355                         list($ret) = SQL_FETCHROW($result);
1356
1357                         // Set cache
1358                         $cacheArray['admins']['password'][$aid] = $ret;
1359                 }
1360
1361                 // Free result
1362                 SQL_FREERESULT($result);
1363         }
1364         return $ret;
1365 }
1366 //
1367 function GET_ADMIN_LOGIN ($aid) {
1368         global $cacheArray, $_CONFIG;
1369         $ret = "***";
1370         if (isset($cacheArray['admins']['login'][$aid])) {
1371                 // Get cache
1372                 $ret = $cacheArray['admins']['login'][$aid];
1373
1374                 // Update cache hits
1375                 if (getConfig('cache_hits') > 0) { $_CONFIG['cache_hits']++; } else { $_CONFIG['cache_hits'] = 1; }
1376         } elseif (!EXT_IS_ACTIVE("cache")) {
1377                 // Load from database
1378                 $result = SQL_QUERY_ESC("SELECT login FROM "._MYSQL_PREFIX."_admins WHERE id=%s LIMIT 1",
1379                         array(bigintval($aid)), __FILE__, __LINE__);
1380                 if (SQL_NUMROWS($result) == 1) {
1381                         // Fetch data
1382                         list($ret) = SQL_FETCHROW($result);
1383
1384                         // Set cache
1385                         $cacheArray['admins']['login'][$aid] = $ret;
1386                 } // END - if
1387
1388                 // Free memory
1389                 SQL_FREERESULT($result);
1390         }
1391         return $ret;
1392 }
1393 // Get email address of admin id
1394 function GET_ADMIN_EMAIL ($aid) {
1395         global $cacheArray, $_CONFIG;
1396
1397         $ret = "***";
1398         if (isset($cacheArray['admins']['email'][$aid])) {
1399                 // Get cache
1400                 $ret = $cacheArray['admins']['email'][$aid];
1401
1402                 // Update cache hits
1403                 if (getConfig('cache_hits') > 0) { $_CONFIG['cache_hits']++; } else { $_CONFIG['cache_hits'] = 1; }
1404         } elseif (!EXT_IS_ACTIVE("cache")) {
1405                 // Load from database
1406                 $result_aid = SQL_QUERY_ESC("SELECT email FROM "._MYSQL_PREFIX."_admins WHERE id=%s LIMIT 1",
1407                         array(bigintval($aid)), __FILE__, __LINE__);
1408                 if (SQL_NUMROWS($result_aid) == 1) {
1409                         // Get data
1410                         list($ret) = SQL_FETCHROW($result_aid);
1411
1412                         // Set cache
1413                         $cacheArray['admins']['email'][$aid] = $ret;
1414                         } // END - if
1415
1416                 // Free result
1417                 SQL_FREERESULT($result_aid);
1418         }
1419
1420         // Return email
1421         return $ret;
1422 }
1423 // Get default ACL  of admin id
1424 function GET_ADMIN_DEFAULT_ACL ($aid) {
1425         global $cacheArray, $_CONFIG;
1426
1427         $ret = "***";
1428         if (isset($cacheArray['admins']['def_acl'][$aid])) {
1429                 // Use cache
1430                 $ret = $cacheArray['admins']['def_acl'][$aid];
1431
1432                 // Update cache hits
1433                 if (getConfig('cache_hits') > 0) { $_CONFIG['cache_hits']++; } else { $_CONFIG['cache_hits'] = 1; }
1434         } elseif (!EXT_IS_ACTIVE("cache")) {
1435                 // Load from database
1436                 $result_aid = SQL_QUERY_ESC("SELECT default_acl FROM "._MYSQL_PREFIX."_admins WHERE id=%s LIMIT 1",
1437                         array(bigintval($aid)), __FILE__, __LINE__);
1438                 if (SQL_NUMROWS($result_aid) == 1) {
1439                         // Fetch data
1440                         list($ret) = SQL_FETCHROW($result_aid);
1441
1442                         // Set cache
1443                         $cacheArray['admins']['def_acl'][$aid] = $ret;
1444                 }
1445
1446                 // Free result
1447                 SQL_FREERESULT($result_aid);
1448         }
1449
1450         // Return email
1451         return $ret;
1452 }
1453 //
1454 function ADD_OPTION_LINES($table, $id, $name, $default="",$special="",$where="") {
1455         $ret = "";
1456         if ($table == "/ARRAY/") {
1457                 // Selection from array
1458                 if (is_array($id) && is_array($name) && sizeof($id) == sizeof($name)) {
1459                         // Both are arrays
1460                         foreach ($id as $idx => $value) {
1461                                 $ret .= "<OPTION value=\"".$value."\"";
1462                                 if ($default == $value) $ret .= " selected checked";
1463                                 $ret .= ">".$name[$idx]."</OPTION>\n";
1464                         } // END - foreach
1465                 } // END - if
1466         } else {
1467                 // Data from database
1468                 $SPEC = ", ".$id;
1469                 if (!empty($special)) $SPEC = ", ".$special;
1470                 $ORDER = $name.$SPEC;
1471                 if ($table == "country") $ORDER = $special;
1472                 $result = SQL_QUERY_ESC("SELECT %s, %s".$SPEC." FROM "._MYSQL_PREFIX."_%s ".$where." ORDER BY %s",
1473                  array($id, $ORDER, $table, $name), __FILE__, __LINE__);
1474                 if (SQL_NUMROWS($result) > 0) {
1475                         // Found data so add them as OPTION lines: $id is the value and $name is the "name" of the option
1476                         while (list($value, $title, $add) = SQL_FETCHROW($result)) {
1477                                 if (empty($special)) $add = "";
1478                                 $ret .= "<OPTION value=\"".$value."\"";
1479                                 if ($default == $value) $ret .= " selected checked";
1480                                 if (!empty($add)) $add = " (".$add.")";
1481                                 $ret .= ">".$title.$add."</OPTION>\n";
1482                         } // END - while
1483
1484                         // Free memory
1485                         SQL_FREERESULT($result);
1486                 } else {
1487                         // No data found
1488                         $ret = "<OPTION value=\"x\">".SELECT_NONE."</OPTION>\n";
1489                 }
1490         }
1491
1492         // Return - hopefully - the requested data
1493         return $ret;
1494 }
1495 // Activate exchange (DEPERECATED???)
1496 function activateExchange() {
1497         global $_CONFIG;
1498         $result = SQL_QUERY("SELECT userid FROM `"._MYSQL_PREFIX."_user_data` WHERE status='CONFIRMED' AND max_mails > 0", __FILE__, __LINE__);
1499         if (SQL_NUMROWS($result) >= getConfig('activate_xchange'))
1500         {
1501                 // Free memory
1502                 SQL_FREERESULT($result);
1503
1504                 // Activate System
1505                 $SQLs = array(
1506                         "UPDATE "._MYSQL_PREFIX."_mod_reg SET locked='N', hidden='N', mem_only='Y' WHERE module='order' LIMIT 1",
1507                         "UPDATE `"._MYSQL_PREFIX."_member_menu` SET visible='Y', locked='N' WHERE what='order' OR what='unconfirmed' LIMIT 2",
1508                         "UPDATE `"._MYSQL_PREFIX."_config` SET activate_xchange='0' WHERE config=0 LIMIT 1"
1509                 );
1510
1511                 // Run SQLs
1512                 foreach ($SQLs as $sql) {
1513                         $result = SQL_QUERY($sql, __FILE__, __LINE__);
1514                 }
1515
1516                 // @TODO Destroy cache
1517         }
1518 }
1519 //
1520 function DELETE_USER_ACCOUNT($uid, $reason)
1521 {
1522         $points = 0;
1523         $result = SQL_QUERY_ESC("SELECT (SUM(p.points) - d.used_points) AS points
1524 FROM "._MYSQL_PREFIX."_user_points AS p
1525 LEFT JOIN `"._MYSQL_PREFIX."_user_data` AS d
1526 ON p.userid=d.userid
1527 WHERE p.userid=%s", array(bigintval($uid)), __FILE__, __LINE__);
1528         if (SQL_NUMROWS($result) == 1) {
1529                 // Save his points to add them to the jackpot
1530                 list($points) = SQL_FETCHROW($result);
1531                 SQL_FREERESULT($result);
1532
1533                 // Delete points entries as well
1534                 $result = SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM "._MYSQL_PREFIX."_user_points WHERE userid=%s", array(bigintval($uid)), __FILE__, __LINE__);
1535
1536                 // Update mediadata as well
1537                 if (GET_EXT_VERSION("mediadata") >= "0.0.4") {
1538                         // Update database
1539                         MEDIA_UPDATE_ENTRY(array("total_points"), "sub", $points);
1540                 } // END - if
1541
1542                 // Now, when we have all his points adds them do the jackpot!
1543                 ADD_JACKPOT($points);
1544         }
1545
1546         // Delete category selections as well...
1547         $result = SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM "._MYSQL_PREFIX."_user_cats WHERE userid=%s",
1548          array(bigintval($uid)), __FILE__, __LINE__);
1549
1550         // Remove from rallye if found
1551         if (EXT_IS_ACTIVE("rallye")) {
1552                 $result = SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM "._MYSQL_PREFIX."_rallye_users WHERE userid=%s",
1553                  array(bigintval($uid)), __FILE__, __LINE__);
1554         }
1555
1556         // Now a mail to the user and that's all...
1557         $msg = LOAD_EMAIL_TEMPLATE("del-user", array('text' => $reason), $uid);
1558         SEND_EMAIL($uid, ADMIN_DEL_ACCOUNT, $msg);
1559
1560         // Ok, delete the account!
1561         $result = SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM `"._MYSQL_PREFIX."_user_data` WHERE userid=%s LIMIT 1", array(bigintval($uid)), __FILE__, __LINE__);
1562 }
1563 //
1564 function META_DESCRIPTION ($mod, $wht) {
1565         global $_CONFIG;
1566
1567         // Exclude admin and member's area
1568         if (($mod != "admin") && ($mod != "login")) {
1569                 // Construct dynamic description
1570                 $DESCR = MAIN_TITLE." ".trim(getConfig('title_middle'))." ".ADD_DESCR("guest", "what-".$wht, true);
1571
1572                 // Output it directly
1573                 OUTPUT_HTML("<meta name=\"description\" content=\"".$DESCR."\" />");
1574         } // END - if
1575
1576         // Remove depth
1577         unset($GLOBALS['ref_level']);
1578 }
1579 //
1580 function ADD_JACKPOT($points) {
1581         $result = SQL_QUERY("SELECT points FROM "._MYSQL_PREFIX."_jackpot WHERE ok='ok' LIMIT 1", __FILE__, __LINE__);
1582         if (SQL_NUMROWS($result) == 0) {
1583                 // Create line
1584                 $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_jackpot (ok, points) VALUES ('ok','%s')", array($points), __FILE__, __LINE__);
1585         } else {
1586                 // Free memory
1587                 SQL_FREERESULT($result);
1588
1589                 // Update points
1590                 $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_jackpot SET points=points+%s WHERE ok='ok' LIMIT 1",
1591                         array($points), __FILE__, __LINE__);
1592         }
1593 }
1594 //
1595 function SUB_JACKPOT($points) {
1596         // First failed
1597         $ret = "-1";
1598
1599         // Get current points
1600         $result = SQL_QUERY("SELECT points FROM "._MYSQL_PREFIX."_jackpot WHERE ok='ok' LIMIT 1", __FILE__, __LINE__);
1601         if (SQL_NUMROWS($result) == 0) {
1602                 // Create line
1603                 SQL_QUERY("INSERT INTO "._MYSQL_PREFIX."_jackpot (ok, points) VALUES ('ok', 0.00000)", __FILE__, __LINE__);
1604         } else {
1605                 // Read points
1606                 list($jackpot) = SQL_FETCHROW($result);
1607                 if ($jackpot >= $points) {
1608                         // Update points when there are enougth points in jackpot
1609                         SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_jackpot SET points=points-%s WHERE ok='ok' LIMIT 1",
1610                                 array($points), __FILE__, __LINE__);
1611                         $ret = $jackpot - $points;
1612                 } // END - if
1613         }
1614
1615         // Free memory
1616         SQL_FREERESULT($result);
1617 }
1618 //
1619 function IS_DEMO() {
1620         return ((EXT_IS_ACTIVE("demo")) && (get_session('admin_login') == "demo"));
1621 }
1622 //
1623 function LOAD_CONFIG ($no="0") {
1624         global $cacheArray;
1625         $CFG_DUMMY = array();
1626
1627         // Check for cache extension, cache-array and if the requested configuration is in cache
1628         if ((is_array($cacheArray)) && (isset($cacheArray['config'][$no])) && (is_array($cacheArray['config'][$no]))) {
1629                 // Load config from cache
1630                 //* DEBUG: */ echo gettype($cacheArray['config'][$no])."<br />\n";
1631                 foreach ($cacheArray['config'][$no] as $key => $value) {
1632                         $CFG_DUMMY[$key] = $value;
1633                 } // END - foreach
1634
1635                 // Count cache hits if exists
1636                 if ((isset($CFG_DUMMY['cache_hits'])) && (EXT_IS_ACTIVE("cache"))) {
1637                         $CFG_DUMMY['cache_hits']++;
1638                 } // END - if
1639         } elseif ((!EXT_IS_ACTIVE("cache")) || (!isset($cacheArray['config'][$no]))) {
1640                 // Load config from DB
1641                 $result_config = SQL_QUERY_ESC("SELECT * FROM `"._MYSQL_PREFIX."_config` WHERE config=%d LIMIT 1",
1642                         array(bigintval($no)), __FILE__, __LINE__);
1643
1644                 // Get config from database
1645                 $CFG_DUMMY = SQL_FETCHARRAY($result_config);
1646
1647                 // Free result
1648                 SQL_FREERESULT($result_config);
1649
1650                 // Remember this config in the array
1651                 $cacheArray['config'][$no] = $CFG_DUMMY;
1652         }
1653
1654         // Return config array
1655         return $CFG_DUMMY;
1656 }
1657 // Gets the matching what name from module
1658 function GET_WHAT($modCheck) {
1659         global $_CONFIG;
1660
1661         $wht = "";
1662         //* DEBUG: */ echo __LINE__."!".$modCheck."!<br />\n";
1663         switch ($modCheck)
1664         {
1665         case "admin":
1666                 $wht = "overview";
1667                 break;
1668
1669         case "login":
1670         case "index":
1671                 $wht = "welcome";
1672                 if (($modCheck == "index") && (getConfig('index_home') != "")) $wht = getConfig('index_home');
1673                 break;
1674
1675         default:
1676                 $wht = "";
1677                 break;
1678         }
1679
1680         // Return what value
1681         return $wht;
1682 }
1683
1684 // Subtract points from database and mediadata cache
1685 function SUB_POINTS ($subject, $uid, $points) {
1686         // Add points to used points
1687         $result = SQL_QUERY_ESC("UPDATE `"._MYSQL_PREFIX."_user_data` SET `used_points`=`used_points`+%s WHERE userid=%s LIMIT 1",
1688          array($points, bigintval($uid)), __FILE__, __LINE__);
1689
1690         // Insert booking record
1691         if (EXT_IS_ACTIVE("booking")) {
1692                 // Add record
1693                 ADD_BOOKING_RECORD($subject, $uid, $points, "sub");
1694         } // END - if
1695
1696         // Update mediadata as well
1697         if (GET_EXT_VERSION("mediadata") >= "0.0.4") {
1698                 // Update database
1699                 MEDIA_UPDATE_ENTRY(array("total_points"), "sub", $points);
1700         } // END - if
1701 }
1702
1703 // Update config entries
1704 function UPDATE_CONFIG ($entries, $values, $updateMode="") {
1705         global $CSS;
1706
1707         // Do not update config in CSS mode
1708         if (($CSS == "1") || ($CSS == -1)) {
1709                 return;
1710         } // END - if
1711
1712         // Do we have multiple entries?
1713         if (is_array($entries)) {
1714                 // Walk through all
1715                 $all = "";
1716                 foreach ($entries as $idx => $entry) {
1717                         // Update mode set?
1718                         if (!empty($updateMode)) {
1719                                 // Update entry
1720                                 $all .= sprintf("%s=%s%s%s,", $entry, $entry, $updateMode, (float)$values[$idx]);
1721                         } else {
1722                                 // Check if string or number
1723                                 if (($values[$idx] + 0) === $values[$idx]) {
1724                                         // Number detected
1725                                         $all .= sprintf("%s=%s,", $entry, (float)$values[$idx]);
1726                                 } elseif ($values[$idx] == "UNIX_TIMESTAMP()") {
1727                                         // Function UNIX_TIMESTAMP() detected
1728                                         $all .= sprintf("%s=%s,", $entry, $values[$idx]);
1729                                 } else {
1730                                         // String detected
1731                                         $all .= sprintf("%s='%s',", $entry, SQL_ESCAPE($values[$idx]));
1732                                 }
1733                         }
1734                 } // END - foreach
1735
1736                 // Remove last comma
1737                 $entries = substr($all, 0, -1);
1738         } elseif (!empty($updateMode)) {
1739                 // Update mode set
1740                 $entries .= sprintf("=%s%s%s", $entries, $updateMode, (float)$values);
1741         } else {
1742                 // Regular entry to update
1743                 $entries .= sprintf("='%s'", SQL_ESCAPE($values));
1744         }
1745
1746         // Run database update
1747         //* DEBUG: */ DEBUG_LOG(__FUNCTION__, __LINE__, "entries={$entries}");
1748         SQL_QUERY("UPDATE `"._MYSQL_PREFIX."_config` SET ".$entries." WHERE config=0 LIMIT 1", __FILE__, __LINE__);
1749
1750         // Get affected rows
1751         $affectedRows = SQL_AFFECTEDROWS();
1752         //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):entries={$entries},affectedRows={$affectedRows}<br />\n";
1753
1754         // Rebuild cache
1755         REBUILD_CACHE("config", "config");
1756 }
1757
1758 // Prepares an SQL statement part for HTML mail and/or holiday depency
1759 function PREPARE_SQL_HTML_HOLIDAY ($mode) {
1760         // Exclude no users by default
1761         $MORE = "";
1762
1763         // HTML mail?
1764         if ($mode == "html") $MORE = " AND html='Y'";
1765         if (GET_EXT_VERSION("holiday") >= "0.1.3") {
1766                 // Add something for the holiday extension
1767                 $MORE .= " AND holiday_active='N'";
1768         } // END - if
1769
1770         // Return result
1771         return $MORE;
1772 }
1773
1774 // "Getter" for total available receivers
1775 function GET_TOTAL_RECEIVERS ($mode="normal") {
1776         // Query database
1777         $result_all = SQL_QUERY("SELECT userid
1778 FROM "._MYSQL_PREFIX."_user_data
1779 WHERE status='CONFIRMED' AND receive_mails > 0".PREPARE_SQL_HTML_HOLIDAY($mode),
1780                 __FILE__, __LINE__);
1781
1782         // Get num rows
1783         $numRows = SQL_NUMROWS($result_all);
1784
1785         // Free result
1786         SQL_FREERESULT($result_all);
1787
1788         // Return value
1789         return $numRows;
1790 }
1791
1792 // Returns HTML code with an "<option> list" of all categories
1793 function ADD_CATEGORY_OPTIONS ($mode) {
1794         // Prepare WHERE statement
1795         $whereStatement = " WHERE visible='Y'";
1796         if (IS_ADMIN()) $whereStatement = "";
1797
1798         // Initialize array...
1799         $CATS = array(
1800                 'id'   => array(),
1801                 'name' => array(),
1802                 'uids' => array()
1803         );
1804
1805         // Get categories
1806         $result = SQL_QUERY("SELECT id, cat FROM "._MYSQL_PREFIX."_cats".$whereStatement." ORDER BY sort", __FILE__, __LINE__);
1807         if (SQL_NUMROWS($result) > 0) {
1808                 // ... and begin loading stuff
1809                 while (list($id, $cat) = SQL_FETCHROW($result)) {
1810                         // Transfer some data
1811                         $CATS['id'][]   = $id;
1812                         $CATS['name'][] = $cat;
1813
1814                         // Check which users are in this category
1815                         $result_uids = SQL_QUERY_ESC("SELECT userid FROM "._MYSQL_PREFIX."_user_cats WHERE cat_id=%s",
1816                          array(bigintval($id)), __FILE__, __LINE__);
1817
1818                         // Start adding all
1819                         $uid_cnt = 0;
1820                         while (list($ucat) = SQL_FETCHROW($result_uids)) {
1821                                 $result_ver = SQL_QUERY_ESC("SELECT userid FROM "._MYSQL_PREFIX."_user_data
1822 WHERE userid=%s AND status='CONFIRMED' AND receive_mails > 0".PREPARE_SQL_HTML_HOLIDAY($mode)." LIMIT 1",
1823  array(bigintval($ucat)), __FILE__, __LINE__);
1824                                 $uid_cnt += SQL_NUMROWS($result_ver);
1825
1826                                 // Free memory
1827                                 SQL_FREERESULT($result_ver);
1828                         } // END - while
1829
1830                         // Free memory
1831                         SQL_FREERESULT($result_uids);
1832
1833                         // Add counter
1834                         $CATS['uids'][] = $uid_cnt;
1835                 }
1836
1837                 // Free memory
1838                 SQL_FREERESULT($result);
1839
1840                 // Generate options
1841                 $OUT = "";
1842                 foreach ($CATS['id'] as $key => $value) {
1843                         if (strlen($CATS['name'][$key]) > 20) $CATS['name'][$key] = substr($CATS['name'][$key], 0, 17)."...";
1844                         $OUT .= "      <OPTION value=\"".$value."\">".$CATS['name'][$key]." (".$CATS['uids'][$key]." ".USER_IN_CAT.")</OPTION>\n";
1845                 }
1846         } else {
1847                 // No cateogries are defined yet
1848                 $OUT = "<option class=\"member_failed\">".MEMBER_NO_CATS."</option>\n";
1849         }
1850
1851         // Return HTML code
1852         return $OUT;
1853 }
1854
1855 // Add bonus mail to queue
1856 function ADD_BONUS_MAIL_TO_QUEUE ($subject, $text, $receiverList, $points, $seconds, $url, $cat, $mode="normal", $receiver=0) {
1857         // Is admin or bonus extension there?
1858         if (!IS_ADMIN()) {
1859                 // Abort here
1860                 return false;
1861         } elseif (!EXT_IS_ACTIVE("bonus")) {
1862                 // Abort here
1863                 return false;
1864         }
1865
1866         // Calculcate target sent
1867         $target = SELECTION_COUNT(explode(";", $receiverList));
1868
1869         // Receiver is zero?
1870         if ($receiver == 0) {
1871                 // Then auto-fix it
1872                 $receiver = $target;
1873         } // END - if
1874
1875         // HTML extension active?
1876         if (EXT_IS_ACTIVE("html")) {
1877                 // No HTML by default
1878                 $HTML = "N";
1879
1880                 // HTML mode?
1881                 if ($mode == "html") $HTML = "Y";
1882
1883                 // Add HTML mail
1884                 $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_bonus
1885 (subject, text, receivers, points, time, data_type, timestamp, url, cat_id, target_send, mails_sent, html_msg)
1886 VALUES ('%s','%s','%s','%s','%s','NEW', UNIX_TIMESTAMP(),'%s','%s','%s','%s','%s')",
1887  array(
1888         $subject,
1889         $text,
1890         $receiverList,
1891         $points,
1892         $seconds,
1893         $url,
1894         $cat,
1895         $target,
1896         bigintval($receiver),
1897         $HTML
1898 ), __FILE__, __LINE__);
1899         } else {
1900                 // Add regular mail
1901                 $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_bonus
1902 (subject, text, receivers, points, time, data_type, timestamp, url, cat_id, target_send, mails_sent)
1903 VALUES ('%s','%s','%s','%s','%s','NEW', UNIX_TIMESTAMP(),'%s','%s','%s','%s')",
1904  array(
1905         $subject,
1906         $text,
1907         $receiverList,
1908         $points,
1909         $seconds,
1910         $url,
1911         $cat,
1912         $target,
1913         bigintval($receiver),
1914 ), __FILE__, __LINE__);
1915         }
1916 }
1917
1918 // Generate a receiver list for given category and maximum receivers
1919 function GENERATE_RECEIVER_LIST ($cat, $receiver, $mode="") {
1920         global $_CONFIG;
1921
1922         // Init variables
1923         $CAT_TABS     = "%s";
1924         $CAT_WHERE    = "";
1925         $receiverList = "";
1926
1927         // Secure data
1928         $cat      = bigintval($cat);
1929         $receiver = bigintval($receiver);
1930
1931         // Is the receiver zero and mode set?
1932         if (($receiver == 0) && (!empty($mode))) {
1933                 // Auto-fix receiver maximum
1934                 $receiver = GET_TOTAL_RECEIVERS($mode);
1935         } // END - if
1936
1937         // Category given?
1938         if ($cat > 0) {
1939                 // Select category
1940                 $CAT_TABS  = "LEFT JOIN "._MYSQL_PREFIX."_user_cats AS c ON d.userid=c.userid";
1941                 $CAT_WHERE = " AND c.cat_id=%s";
1942         } // END - if
1943
1944         // Exclude users in holiday?
1945         if (GET_EXT_VERSION("holiday") >= "0.1.3") {
1946                 // Add something for the holiday extension
1947                 $CAT_WHERE .= " AND d.holiday_active='N'";
1948         } // END - if
1949
1950         if ((EXT_IS_ACTIVE("html_mail")) && ($mode == "html")) {
1951                 // Only include HTML receivers
1952                 $result = SQL_QUERY_ESC("SELECT d.userid FROM `"._MYSQL_PREFIX."_user_data` AS d ".$CAT_TABS." WHERE d.status='CONFIRMED' AND d.html='Y'".$CAT_WHERE." ORDER BY d.%s %s LIMIT %s",
1953                  array($cat, getConfig('order_select'), getConfig('order_mode'), $receiver), __FILE__, __LINE__);
1954         } else {
1955                 // Include all
1956                 $result = SQL_QUERY_ESC("SELECT d.userid FROM `"._MYSQL_PREFIX."_user_data` AS d ".$CAT_TABS." WHERE d.status='CONFIRMED'".$CAT_WHERE." ORDER BY d.%s %s LIMIT %s",
1957                  array($cat, getConfig('order_select'), getConfig('order_mode'), $receiver), __FILE__, __LINE__);
1958         }
1959
1960         // Entries found?
1961         if ((SQL_NUMROWS($result) >= $receiver) && ($receiver > 0)) {
1962                 // Load all entries
1963                 while (list($REC) = SQL_FETCHROW($result)) {
1964                         // Add receiver when not empty
1965                         if (!empty($REC)) $receiverList .= $REC.";";
1966                 } // END - while
1967
1968                 // Free memory
1969                 SQL_FREERESULT($result);
1970
1971                 // Remove trailing semicolon
1972                 $receiverList = substr($receiverList, 0, -1);
1973         } // END - if
1974
1975         // Return list
1976         return $receiverList;
1977 }
1978
1979 // Get timestamp for given stats type and data
1980 function USER_STATS_GET_TIMESTAMP ($type, $data, $uid = 0) {
1981         // Default timestamp is zero
1982         $stamp = 0;
1983
1984         // User id set?
1985         if ((isset($GLOBALS['userid'])) && ($uid == 0)) {
1986                 $uid = $GLOBALS['userid'];
1987         } // END - if
1988
1989         // Is the extension installed and updated?
1990         if ((!EXT_IS_ACTIVE("sql_patches")) || (EXT_VERSION_IS_OLDER("sql_patches", "0.5.6"))) {
1991                 // Return zero here
1992                 return $stamp;
1993         } // END - if
1994
1995         // Try to find the entry
1996         $result = SQL_QUERY_ESC("SELECT UNIX_TIMESTAMP(`inserted`) AS `stamp`
1997 FROM "._MYSQL_PREFIX."_user_stats_data
1998 WHERE userid=%s AND stats_type='%s' AND stats_data='%s'
1999 LIMIT 1",
2000                 array(bigintval($uid), $type, $data), __FILE__, __LINE__);
2001
2002         // Is the entry there?
2003         if (SQL_NUMROWS($result) == 1) {
2004                 // Get this stamp
2005                 list($stamp) = SQL_FETCHROW($result);
2006         } // END - if
2007
2008         // Free result
2009         SQL_FREERESULT($result);
2010
2011         // Return stamp
2012         return $stamp;
2013 }
2014
2015 // Inserts user stats
2016 function USER_STATS_INSERT_RECORD ($uid, $type, $data) {
2017         // Is the extension installed and updated?
2018         if ((!EXT_IS_ACTIVE("sql_patches")) || (EXT_VERSION_IS_OLDER("sql_patches", "0.5.6"))) {
2019                 // Return zero here
2020                 return false;
2021         } // END - if
2022
2023         // Does it exist?
2024         if ((!USER_STATS_GET_TIMESTAMP($type, $data, $uid)) && (!is_array($data))) {
2025                 // Then insert it!
2026                 SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_user_stats_data (`userid`,`stats_type`,`stats_data`) VALUES (%s,'%s','%s')",
2027                         array(bigintval($uid), $type, $data), __FILE__, __LINE__);
2028         } elseif (is_array($data)) {
2029                 // Invalid data!
2030                 DEBUG_LOG(__FUNCTION__, __LINE__, " uid={$uid},type={$type},data={".gettype($data).": Invalid statistics data type!");
2031         }
2032 }
2033
2034 // "Getter" for array for user refs and points in given level
2035 function GET_USER_REF_POINTS ($uid, $level) {
2036         global $_CONFIG;
2037
2038         //* DEBUG: */ print "----------------------- <font color=\"#00aa00\">".__FUNCTION__." - ENTRY</font> ------------------------<ul><li>\n";
2039         // Default is no refs and no nickname
2040         $ADD = "";
2041         $refs = array();
2042
2043         // Do we have nickname extension installed?
2044         if (EXT_IS_ACTIVE("nickname")) {
2045                 $ADD = ", ud.nickname";
2046         } // END - if
2047
2048         // Get refs from database
2049         $result = SQL_QUERY_ESC("SELECT ur.id, ur.refid, ud.status, ud.last_online, ud.mails_confirmed, ud.emails_received".$ADD."
2050 FROM "._MYSQL_PREFIX."_user_refs AS ur
2051 LEFT JOIN "._MYSQL_PREFIX."_user_points AS up
2052 ON ur.refid=up.userid AND ur.level=0
2053 LEFT JOIN `"._MYSQL_PREFIX."_user_data` AS ud
2054 ON ur.refid=ud.userid
2055 WHERE ur.userid=%s AND ur.level=%s
2056 ORDER BY ur.refid ASC",
2057                 array(bigintval($uid), bigintval($level)), __FILE__, __LINE__);
2058
2059         // Are there some entries?
2060         if (SQL_NUMROWS($result) > 0) {
2061                 // Fetch all entries
2062                 while ($row = SQL_FETCHARRAY($result)) {
2063                         // Get total points of this user
2064                         $row['points'] = GET_TOTAL_DATA($row['refid'], "user_points", "points") - GET_TOTAL_DATA($row['refid'], "user_data", "used_points");
2065
2066                         // Get unconfirmed mails
2067                         $row['unconfirmed']  = GET_TOTAL_DATA($row['refid'], "user_links", "id", "userid", true);
2068
2069                         // Init clickrate with zero
2070                         $row['clickrate'] = 0;
2071
2072                         // Is at least one mail received?
2073                         if ($row['emails_received'] > 0) {
2074                                 // Calculate clickrate
2075                                 $row['clickrate'] = ($row['mails_confirmed'] / $row['emails_received'] * 100);
2076                         } // END - if
2077
2078                         // Activity is "active" by default because if autopurge is not installed
2079                         $row['activity'] = MEMBER_ACTIVITY_ACTIVE;
2080
2081                         // Is autopurge installed and the user inactive?
2082                         if ((EXT_IS_ACTIVE("autopurge")) && ((time() - getConfig('ap_inactive_since')) >= $row['last_online']))  {
2083                                 // Inactive user!
2084                                 $row['activity'] = MEMBER_ACTIVITY_INACTIVE;
2085                         } // END - if
2086
2087                         // Remove some entries
2088                         unset($row['mails_confirmed']);
2089                         unset($row['emails_received']);
2090                         unset($row['last_online']);
2091
2092                         // Add row
2093                         $refs[$row['id']] = $row;
2094                 } // END - while
2095         } // END - if
2096
2097         // Free result
2098         SQL_FREERESULT($result);
2099
2100         // Return result
2101         //* DEBUG: */ print "</li></ul>----------------------- <font color=\"#aa0000\">".__FUNCTION__." - EXIT</font> ------------------------<br />\n";
2102         return $refs;
2103 }
2104
2105 // Recuced the amount of received emails for the receipients for given email
2106 function REDUCT_RECIPIENT_RECEIVED_MAILS ($column, $id, $count) {
2107         // Search for mail in database
2108         $result = SQL_QUERY_ESC("SELECT `userid` FROM `"._MYSQL_PREFIX."_user_links` WHERE `%s`=%s ORDER BY `userid` ASC LIMIT %s",
2109                 array($column, bigintval($id), $count), __FILE__, __LINE__);
2110
2111         // Are there entries?
2112         if (SQL_NUMROWS($result) > 0) {
2113                 // Now load all userids for one big query!
2114                 $UIDs = array();
2115                 while (list($uid) = SQL_FETCHROW($result)) {
2116                         $UIDs[$uid] = $uid;
2117                 } // END - while
2118
2119                 // Now update all user accounts
2120                 SQL_QUERY_ESC("UPDATE `"._MYSQL_PREFIX."_user_data` SET `emails_received`=`emails_received`-1 WHERE `userid` IN (%s) LIMIT %s",
2121                         array(implode(",", $UIDs), count($UIDs)), __FILE__, __LINE__);
2122         } // END - if
2123
2124         // Free result
2125         SQL_FREERESULT($result);
2126 }
2127
2128 // [EOF]
2129 ?>